home

北京知行锐景科技有限公司

Publisher Information

北京知行锐景科技有限公司 is a software publisher located in 北京市, China*.
Authority:
WoSign CA Limited

Valid from:
3/20/2015 1:26:49 PM

Valid to:
3/20/2016 2:26:49 PM

Subject:
CN=北京知行锐景科技有限公司, O=北京知行锐景科技有限公司, L=北京市, S=北京市, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA G2, O=WoSign CA Limited, C=CN

Serial number:
3a6b9b1f59b7dbd50befd1259bb8264e

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

Dr.Web
Adware.Downware.11005, Adware.Downware.11013, Adware.Qjwmonkey.18, Adware.Chindo.5
87.50%

avast!
Win32:Malware-gen, Win32:Adware-gen [Adw]
62.50%

Avira AntiVirus
APPL/Qjwmonkey.tdz, PUA/Downware.614320, ADWARE/ShopBox.1733328
50.00%

K7 AntiVirus
Adware
37.50%

Agnitum Outpost
PUA.Downloader, PUA.Downware
37.50%

McAfee
Artemis!4C760B409135, Artemis!790EE90CC591, Artemis!9C2E8DB847BD
37.50%

ESET NOD32
Win32/Adware.Qjwmonkey (variant), Win32/ShopBox.A potentially unwanted (variant)
37.50%

IKARUS anti.virus
not-a-virus:Downloader.BindEx, PUA.ShopBox
37.50%

Fortinet FortiGate
Riskware/Qjwmonkey, Riskware/ShopBox
37.50%

Trend Micro House Call
Suspicious_GEN.F47V0413, PUA_ShopBox
25.00%

1 / 68      (inconclusive)
DuiLib.dll (Direct UI Support)  (5283ebdce25a3a69f99ef73996551162)

0 / 68
BBGame.exe (by China BBGame Technology Co.)  (f765223ec1a9bfe520d65d9ebda6bf51)

13 / 68    (PUP)
gminst_g_5.exe  (9c2e8db847bd011f12365864e1311717)

0 / 68
ht_y_ss2_06255.exe  (7a14623f6309f02a10f3cf6dfeddd358)

14 / 68    (PUP)
qsvmp4_3.1@81_428463.exe (Downloader)  (790ee90cc5911f4d14ebc5a4ef154502)

5 / 68      (PUP)
mp3doctorpro@3323@.exe (by zol)  (6b009b9b9cc5b39380a73248b9a0f16b)

21 / 68    (PUP)
microsoftofficev2003520ab7e@81_428458.exe (Downloader)  (4c760b409135e9dcf01d26fb121d0835)

1 / 68      (inconclusive)
wrar521@10344@.exe (by zol)  (3b8f9fa0b3b7c929ce7c8efedf6846f4)

1 / 68      (inconclusive)
windowsxpsp3ab@261778@.exe (by zol)  (c0fd19c0e4a252efb1864b267fb154ae)

2 / 68      (inconclusive)
ppt_2010.03@400099@.exe (by zol)  (c34df0543e51528f23c3d472e8796943)

Downloads URLs for files signed by 北京知行锐景科技有限公司.

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=c89a56a145a57b8bb&softid=105670&subcateid=726&site=10&server=10&rand=2026282  (windowsxpsp3ab@261778@.exe)

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=6828fb163e99d74dd&softid=50184&subcateid=726&site=10&server=10&rand=3025351  (windowsxpsp3ab@261778@.exe)

1 / 68      (inconclusive)
http://www.skycn.com/?m=downloader&id=7719  (wrar521@10344@.exe)

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=e8cb4c697f67a460b&softid=313019&subcateid=50&site=10&server=10&rand=8282547  (windowsxpsp3ab@261778@.exe)

5 / 68      (PUP)
http://www.skycn.com/?m=downloader&id=6345  (mp3doctorpro@3323@.exe)

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=bc29f4c14ea51514c&softid=135373&subcateid=327&site=10&server=10&rand=3597235  (windowsxpsp3ab@261778@.exe)

5 / 68      (PUP)
http://www.skycn.com/?m=downloader&id=2  (mp3doctorpro@3323@.exe)

2 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=5d56a9f687fb016b5&softid=358176&subcateid=74&site=10&server=10&rand=4680348  (ppt_2010.03@400099@.exe)

21 / 68    (PUP)
http://xiazai.zol.com.cn/down.php?nn=3b1b5efb7fbaec6b0&softid=421113&subcateid=1367&site=10&server=10&rand=8974216  (microsoftofficev2003520ab7e@81_428458.exe)

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=2db2ff6812a847ad3&softid=425074&subcateid=1266&site=10&server=10&rand=5222239  (windowsxpsp3ab@261778@.exe)

1 / 68      (inconclusive)
http://www.skycn.com/?m=downloader&id=6460  (wrar521@10344@.exe)

5 / 68      (PUP)
http://www.skycn.com/?m=downloader&id=2982  (mp3doctorpro@3323@.exe)

1 / 68      (inconclusive)
http://www.skycn.com/?m=downloader&id=10344  (wrar521@10344@.exe)

21 / 68    (PUP)
http://xiazai.zol.com.cn/down.php?nn=bc29f4c14ea51514c&softid=135373&subcateid=327&site=10&server=10&rand=2964579  (microsoftofficev2003520ab7e@81_428458.exe)

5 / 68      (PUP)
http://www.skycn.com/?m=downloader&id=10344  (mp3doctorpro@3323@.exe)

2 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=256dc19e81e936583&softid=42377&subcateid=1266&site=10&server=10&rand=8215983  (ppt_2010.03@400099@.exe)

1 / 68      (inconclusive)
http://www.skycn.com/?m=downloader&id=3032  (wrar521@10344@.exe)

1 / 68      (inconclusive)
http://www.skycn.com/?m=downloader&id=962  (wrar521@10344@.exe)

5 / 68      (PUP)
http://www.skycn.com/?m=downloader&id=3323  (mp3doctorpro@3323@.exe)

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=e34691e586565d17a&softid=428288&subcateid=48&site=10&server=10&rand=6905357  (windowsxpsp3ab@261778@.exe)

1 / 68      (inconclusive)
http://xiazai.zol.com.cn/down.php?nn=e40cff8f3198ffd30&softid=261778&subcateid=325&site=8&server=8&rand=3922373  (windowsxpsp3ab@261778@.exe)

The following websites host and distribute files published by 北京知行锐景科技有限公司.

www.skycn.com

xiazai.zol.com.cn

The following publishers (by Authenticode signature organization name) are related.

Hefei Lewei Information Technology Co.,Ltd.

北京智德典康电子商务有限公司

Anhui Shuyang Science and Technology Co., Ltd.

Anhui Haiyang Software Technology Co., Ltd.

Maanshan Zhiye Software Technology Co.,Ltd.

Shanghai Yishen Network Technology Co., Ltd.

ShenZhen Thunder Networking Technologies Ltd.

Zhuhai Kingsoft Office Software Co.,Ltd

Green Creatures Environment Protection Science End Technology Co., Ltd.

Shenzhen Teeqee Technology Co.,Ltd

BeiJing Baidu Netcom Science Technology Co., Ltd

BitTorrent Inc

北京莱富特佰网络科技股份有限公司

IDM Computer Solutions, Inc.

BEIJING QIYI CENTURY SCIENCE&TECHNOLOGY CO.,LTD.

Shenzhen Thinksky Technology Co.,Ltd

Qihoo 360 Software (Beijing) Company Limited

* Note, the details and description above are based on the code signing digital signature issued to 北京知行锐景科技有限公司 by WoSign CA Limited on March 20, 2015 with the serial number '3a6b9b1f59b7dbd50befd1259bb8264e'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.