home

北京天瑞地安网络科技有限公司

Publisher Information

北京天瑞地安网络科技有限公司 is a software publisher located in 北京市, China*.
Authority:
VeriSign, Inc.

Valid from:
5/7/2015 8:00:00 AM

Valid to:
5/7/2016 7:59:59 AM

Subject:
CN=北京天瑞地安网络科技有限公司, O=北京天瑞地安网络科技有限公司, L=北京市, S=北京市, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6cac2d28c3f0828b2ef49b40aa2b1287

Status:
Inconclusive detections from multiple engines

Scan engine
Details
Detections

ESET NOD32
Win32/Kuping.B potentially unwanted application, Win32/Kuping.K potentially unwanted application
43.75%

ESET NOD32
Win32/Kuping.K potentially unwanted (variant), probably unknown NewHeur_PE, Win32/Adware.Agent.NQL (variant)
37.50%

K7 AntiVirus
Adware
31.25%

McAfee
Artemis!A1ADDD0FEE32, Artemis!CFF1AF8D0EAF, Artemis!A7E2D6E5378F, Artemis!1D5432B3FB2A
25.00%

Kaspersky
HEUR:Trojan-Downloader.Win32.Generic, not-a-virus:RiskTool.Win32.Kuping
25.00%

VIPRE Antivirus
Trojan.Win32.Generic
25.00%

Avira AntiVirus
PUA/Kuping.Gen, TR/Samca.kbqw, ADWARE/Agent.lokz
18.75%

Trend Micro
Mal_DLDER, TROJ_GEN.R047C0OGF16, TROJ_GEN.R03EC0OGH16
18.75%

Sophos
Mal/DownLdr-AC, Generic PUA HG (PUA), Generic PUA OE (PUA)
18.75%

Dr.Web
c:\users\test\appdata\local\temp\0a6bc82f2479178a20f3b666fb1afee9d3fe5f83 /RP:C:\Users\test\AppData\, Trojan.Advload.origin
18.75%

0 / 68
nz2rn7f7.sys  (499911e9c96c8aaca5ee415cec4c6e0f)

0 / 68
iyݸh0l94.sys  (b8651392d1d060619753cac8aeb509f2)

0 / 68
iqn5ocdg.sys  (83f31b30690cc5070b10bda8c553a4d6)

0 / 68
uiengine.dll  (bd08595afb832266c4a0e7976d930a1f)

0 / 68
httpdownmanager.dll  (b1a93f3f1b188b069422fa0011b26ab4)

16 / 68    (PUP)
mtv_cai_1001.exe  (1d5432b3fb2a23fe586c010f0f52dd50)

15 / 68    (PUP)
mtv_cai_1001.exe  (a7e2d6e5378f3f9e1d8303bbebc3c5e8)

2 / 68
yfliveshow.exe  (d37c1ce9e7011c31ecbf7e898a8ac7b1)

0 / 68
Uninstall.exe  (96d8e699b661aad2fb58326685913c2f)

13 / 68    (PUP)
dstser.exe  (cff1af8d0eaf2be969ffd743d829dbea)

0 / 68
jszn.exe  (eed71c9992fc582caeafbc8dd0e4315f)

0 / 68
xlsz_0200.exe  (4a456de24699dfb38dc224c83e8b564d)

0 / 68
xlsz_0600.exe  (b2f30bf32f9deaa5fc2a60a3b183fafd)

1 / 68      (inconclusive)
藝妘湮桵橾扷苤舜落翑1.5.exe  (5adc2f00029c9d2b9f347b371df9dc98)

0 / 68
cospcspc504.exe  (74c65c3f9a79ad53641385fff3ff0857)

1 / 68      (inconclusive)
tkmosadnafzkarw.exe  (0391fc3caf10060d21774c68e69a5be7)

0 / 68
sevice.obj  (8e5460bc8292803aac20238317900eb1)

0 / 68
残霞造梦西游3辅助7.5.exe  (27007707400438c783b18acbd1851409)

0 / 68
good.exe  (46928b0a698f84341ef46205e25ba9a2)

0 / 68
cj1.exe  (78ca4f17af11a2587dcac21b41b5c1d2)

0 / 68
xlsz_0200.exe  (7eec36da8e34702632f5a032dc1f5d5e)

1 / 68      (inconclusive)
xlsz_0600.exe  (3c659811ead11ae1700cf5d14e26786e)

9 / 68      (Malware)
ck_mcvt.exe  (a1addd0fee32df0212419efad99aaac3)

1 / 68      (inconclusive)
leg923_en_d.exe  (38d0e43bc23c5957d8324cf3c554ae2b)

1 / 68      (inconclusive)
nnqpfzsbxdhjpcw.exe  (3c6ed19af2c729a09f174fd0371c48c6)

0 / 68
7.rar  (b92d30282f24fc8692604ce744b0669c)

0 / 68
davpiucsbflwf.exe  (f9357544278652855720348b9599fd05)

1 / 68      (inconclusive)
mrhpjfyony.exe  (f856c0f39354e45c898cd1a4bd37e687)

3 / 68      (inconclusive)
leg923_en_d.exe  (25496f4fac7a48b2f5ce4a931c1305b3)

0 / 68
ck_mcvt.exe  (9a9aecb70ffb9475be07ca8edbfce2fe)

 
Latest 30 of 36 files

Downloads URLs for files signed by 北京天瑞地安网络科技有限公司.

1 / 68      (inconclusive)
http://www.52fzba.com/forum.php?mod=attachment&aid=MTI5MzAyfGRkNTgzYzdjfDE0NjgzMTQ4NjZ8NTM5NzI2fDcyOTAxODI=&ck=d86e4764  (藝妘湮桵橾扷苤舜落翑1.5.exe)

The following websites host and distribute files published by 北京天瑞地安网络科技有限公司.

www.52fzba.com

* Note, the details and description above are based on the code signing digital signature issued to 北京天瑞地安网络科技有限公司 by VeriSign, Inc. on May 07, 2015 with the serial number '6cac2d28c3f0828b2ef49b40aa2b1287'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.