home

Wuhan Weijun Technology Co. Ltd.

Publisher Information

Wuhan Weijun Technology Co. Ltd. is a software publisher located in Wuhan, Hubei in China*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs.
Authority:
VeriSign, Inc.

Valid from:
8/7/2013 8:00:00 AM

Valid to:
8/8/2015 7:59:59 AM

Subject:
CN=Wuhan Weijun Technology Co. Ltd., OU=技术部, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Wuhan Weijun Technology Co. Ltd., L=Wuhan, S=Hubei, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6db193a74109c3699cec1aa4ea943833

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.StartPage.WuhanWei.Meta (M), PUP.StartPage.WuhanWei.Installer.Meta (M), PUP.StartPage (M)
82.00%

VIPRE Antivirus
BehavesLike.Win32.Malware.bsw (vs), Trojan.Win32.Generic.pak!cobra, Trojan.Win32.Generic!SB.0
16.00%

Trend Micro House Call
Suspicious_GEN.F47V1230, Suspicious_GEN.F47V0116, TROJ_GEN.F47V0106, TROJ_GEN.F47V0315, TROJ_GEN.R0CBH07K213, TROJ_GEN.F47V0830
16.00%

McAfee
Artemis!A4812A3957BB, Artemis!80B1D696302C, Artemis!1FF51FF2A323, Artemis!7D4E972B76BD, Artemis!D4F7CD723B6C, Artemis!04051F45ABBE, Artemis!FD789A6E4F3A
16.00%

Norman
DLoader.AOCCN
16.00%

Comodo Security
UnclassifiedMalware, Application.Win32.StartPage.IKS
10.00%

ESET NOD32
Win32/RiskWare.StartPage, Win32/Wukong (variant)
8.00%

Vba32 AntiVirus
BScope.Lipler.045, Backdoor.DarkKomet
6.00%

Clam AntiVirus
Win.Worm.Chir-1370, Win.Trojan.Agent-915039
6.00%

NANO AntiVirus
Trojan.Win32.Gendal.cxdjev, Trojan.Win32.Kazy.drwvht
6.00%

1 / 68      (PUP)
llgamebox.exe  (bfcd666eb01bbcd8676b997c2948262d)

1 / 68      (PUP)
setupp_006.exe  (e144586e9569c3e986f0411dc3cb5578)

1 / 68      (PUP)
setup_27408.exe (by www.cr173.com)  (2bdad33a277545387307f53f26bec06a)

1 / 68      (PUP)
inject.dll  (5762a0dfe9d09243d3649cb325d85c9a)

1 / 68      (PUP)
setupp_006.exe (by www.pc6.com)  (edc96e1b05b42db73285d59b31358caa)

1 / 68      (PUP)
playgame.exe (by www.962.net)  (291841cd6a56d4fe7a83514edaabea5d)

1 / 68      (PUP)
cr173_noad-3.6.2.0.exe (by www.cr173.com)  (eee98049543b934ee31c122a33a5b025)

1 / 68      (PUP)
xixiaddress_22586.exe (by www.cr173.com)  (2b6809eb5db44a0d63304b78944d8b53)

1 / 68      (PUP)
xixiys_23437.exe (by www.cr173.com)  (daef2983d9b24b78e33e85e7723ab5ee)

1 / 68      (PUP)
minidownloader.exe  (2b0869dd9a4cca29e3dacb50c0006a43)

1 / 68      (PUP)
box_b.exe  (4357b600ddc540886ed5292d46765bec)

1 / 68      (PUP)
address_5107.exe (by www.cr173.com)  (1c84c924a04028faa832781a42150a05)

1 / 68      (PUP)
安装程序.exe  (4d5465310317e1b23a58f4c0082c274c)

1 / 68      (PUP)
playgame.exe (by www.fxxz.com)  (4efda2eb564dddaa70c7ba503a6c7862)

1 / 68      (PUP)
Install.exe  (ef1c3585f72aa27cb52401fc82a805fa)

1 / 68      (PUP)
setup_24599.exe (by www.cr173.com)  (9f87221c6c7be716d2d12b9ed42c8627)

1 / 68      (PUP)
setup_g4.exe (by www.cr173.com)  (35afef2e88b64efb8fecec5cf13b2884)

1 / 68      (PUP)
wjbb.dll  (ded87b87d7275f1b20539397ceadb7c1)

1 / 68      (PUP)
安装程序.exe  (8e9f61aedad5d87af3a22b9a97f1abe7)

1 / 68      (PUP)
Install.exe  (89885965a01d2b8e338751fd30f462e1)

1 / 68      (PUP)
setup_c1.exe (by www.cr173.com)  (9668e3ebd167dd8f1ca1825efda0ccc9)

1 / 68      (PUP)
minidownloader.exe  (a31e16d396061cc9475b2c44d587c868)

1 / 68      (PUP)
安装程序.exe  (cd92084a472a1f14437c948201d1df7e)

4 / 68      (Malware)
setupp_a.exe (by www.pc6.com)  (308e64647ddf9df3ae2d1d0eb9d7aaae)

1 / 68      (PUP)
playgame.exe (by www.fxxz.com)  (48972cd0d50a4dd927e46b37131247b8)

5 / 68      (PUP)
uzzf_1349.exe (by www.cr173.com)  (3e91a71626c0cb21b08f8856db620548)

1 / 68      (PUP)
lele_xixi.exe (by www.962.net)  (102d3f0c8e142673e86266c73cc84e39)

4 / 68      (Malware)
setupp_b.exe (by www.pc6.com)  (fd789a6e4f3ae4042ab4d125df13aef9)

1 / 68      (PUP)
lele_a2.exe (by www.962.net)  (1c4d8a581fec6c0628e1108eeeda23a0)

15 / 68    (PUP)
setup_g1.exe (by Wuhan Weijun Technology Co)  (04051f45abbe32bb8addc976ca403b80)

 
Latest 30 of 72 files

Downloads URLs for files signed by Wuhan Weijun Technology Co. Ltd..

18 / 68    (PUP)
http://boxdown.962.net/.../lele_path.exe  (d4f7cd723b6ca99f49869afb0bcffa53)

18 / 68    (PUP)
http://boxdown.962.net/.../lelebot_32969.exe  (d4f7cd723b6ca99f49869afb0bcffa53)

15 / 68    (PUP)
http://box.cr173.com/setup_g4.exe  (04051f45abbe32bb8addc976ca403b80)

5 / 68      (PUP)
http://box.cr173.com/.../setup_45558.exe  (3e91a71626c0cb21b08f8856db620548)

The following websites host and distribute files published by Wuhan Weijun Technology Co. Ltd..

box.cr173.com

* Note, the details and description above are based on the code signing digital signature issued to Wuhan Weijun Technology Co. Ltd. by VeriSign, Inc. on August 07, 2013 with the serial number '6db193a74109c3699cec1aa4ea943833'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.