home

Zhiming Chai

Publisher Information

Zhiming Chai is a software publisher located in Nanchang, Jiangxi in China*.
Authority:
StartCom Ltd.

Valid from:
11/15/2011 6:43:22 PM

Valid to:
11/15/2013 2:14:44 PM

Subject:
E=ncuchenfeng@gmail.com, CN=Zhiming Chai, L=Nanchang, S=Jiangxi, C=CN, Description=566223-9hK1L2O1nyxQKgrV

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
0494

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

Qihoo 360 Security
Trojan.Generic, HEUR/Malware.QVM06.Gen, Win32/Trojan.Adware.37e
71.43%

ESET NOD32
Win32/PSWTool.IEPasswordsRevealer (variant), Win32/InstallMonetizer.AN, Win32/InstallMonetizer.AN potentially unwanted
47.62%

avast!
NSIS:InstMonetizer-AU [PUP], NSIS:InstMonetizer-AV [PUP], NSIS:InstMonetizer-CA [PUP]
38.10%

Rising Antivirus
PE:Trojan.Win32.Generic.148FA794!344958868, PE:Trojan.Win32.Generic.151F49E0!354372064, PE:Trojan.Win32.Generic.14BBCFA7!347852711
23.81%

VIPRE Antivirus
Trojan.Win32.Generic
19.05%

AVG
HackTool
19.05%

Fortinet FortiGate
Riskware/IEPasswordsRevealer, W32/InstallMonetizer.AH
19.05%

ESET NOD32
Win32/InstallMonetizer.AN potentially unwanted application
14.29%

Trend Micro House Call
Suspicious_GEN.F47V0918, Suspici.5C7004B2, Suspicious_GEN.F47V0805
14.29%

Avira AntiVirus
SPR/PassView.N
9.52%

5 / 68      (PUP)
setup_piano.exe (Baby Computer Piano by CFSoft)  (b31a0882cb523730e72c1b98be051f88)

0 / 68
screen.exe (Splendid Desktop Helper by CFSoft)  (600013c1f039a60805c7b926e241f0dd)

0 / 68
modifylogo.exe (Easy Logon Screen Changer by CFSoft)  (6d5ef8176e7995cecc1c283c73418307)

0 / 68
screen.exe (Splendid Desktop Helper by CFSoft)  (eca164e0675eb9956dabd99b7b8f1073)

0 / 68
lookpass.exe (Super Asterisk password viewer by CFSoft)  (8f0d2aa67dc8762e2dd4de9b30802235)

0 / 68
screen.exe (Splendid Desktop Helper by CFSoft)  (bc20474e2f65f7664c348f6ac1464d00)

8 / 68      (PUP)
setup.exe (Baby Computer Piano by CFSoft)  (7e532d25940d1e57c1aeedbcec892361)

2 / 68
setup_piano.exe (Baby Computer Piano by CFSoft)  (572c84d6c243ba4511f009e6faf4d03a)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (ad9976ae14f0d68d63634b91296d5e11)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (112f8f631b6051da2f35a65b6f445b4c)

0 / 68
水晶球时钟动态屏保.scr (by CFSoft)  (9c74d3c2336a301f2dfafe2e57cda432)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (802c5402cfe7f0a7c02aba6d5129c4a0)

0 / 68
晨风qq名片照片墙制作工具.exe (by CFSoft)  (baa0d8a1ce15707bbca85d5ac086bad9)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (d9079ab62a03168eaf22750c68f7c60e)

0 / 68
screen.exe (Splendid Desktop Helper by CFSoft)  (6a913eb263de1d56e029663dee88a144)

2 / 68
小狗舔屏动态屏保.scr (Licking Dog Screensaver by CFSoft)  (a1b3cbbdc5d2375aa65a1b19a771094a)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (59662d68d0612e24eecc569ed9ef794f)

0 / 68
dynamicwp.exe (Dynamicwallpaper by CFSoft)  (6da27ec75b384c676b231fec742c7125)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (19286d228a1810b1abb10f935ce4ce7f)

0 / 68
dynamicwp.exe (Dynamicwallpaper by CFSoft)  (60ed003030a509cd43cabb5874fea24a)

2 / 68      (inconclusive)
setup_dynamicwp-1.53.exe (Dynamic Wallpaper Show by CFSoft)  (c7b498b16c0db2091309578bfacff2a9)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (134aa18dd31541270b53868f526a6f72)

1 / 68
Img2QQSkin.DLL (Img2QQSkin Module)  (0e3339b59611d6aeb906ece48f017b85)

0 / 68
Childpiano.exe (Baby Computer Piano by CFSoft)  (75576e4bc4270d392d512ea7026a0936)

2 / 68
ต็ฤิธึวูฐฒืฐฮฤผ.exe (Baby Computer Piano by CFSoft)  (276ebc5da41bfc8be4a21c45dddad229)

3 / 68      (PUP)
setup.exe  (23d127fbeb8b290609cc1892cdf3f6a4)

0 / 68
lookpass.exe (Super Asterisk password viewer by CFSoft)  (7f60a857bbbf5b24e2fe81164a75888f)

4 / 68      (PUP)
setup_piano.exe (Baby Computer Piano by CFSoft)  (a5b28cad8e85c384e9f1a1e7cac05f70)

3 / 68      (PUP)
setup_screen.exe (Splendid Desktop Helper by CFSoft)  (b53fcd360edd6e1b4c73014f79018060)

0 / 68
setup_piano.exe (Baby Computer Piano by CFSoft)  (901494c8130017c88d58679f81e26cbc)

 
Latest 30 of 48 files

* Note, the details and description above are based on the code signing digital signature issued to Zhiming Chai by StartCom Ltd. on November 15, 2011 with the serial number '0494'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.