home

Chencheng Cai

Publisher Information

Chencheng Cai is a software developer located in Beijing, China*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs. Thre are 32 additional code signing certificates issued to this publisher.
Authority:
thawte, Inc.

Valid from:
6/17/2016 2:00:00 AM

Valid to:
1/18/2017 12:59:59 AM

Subject:
CN=Chencheng Cai, OU=Individual Developer, O=No Organization Affiliation, L=Beijing, S=Beijing, C=CN

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
38ece5b56085166b9dad890623266739

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Winzipper.Chenchen.Meta (M), PUP.Winzipper.Chenchen.Meta (L), PUP.ELEX.Chenchen.Meta (M), PUP.Elex (M), PUP.ELEX.Chenchen.Installer.Meta (M), PUP.Thinknice.WinZipper (M), PUP.Elex.Chenchen.Meta (M), PUP.Elex.Winzipper.Meta (M), PUP.Elex.Winzipper (M), PUP.ELEX (M), PUP.Winzipper (L)
96.00%

ESET NOD32
Win32/ELEX.IC potentially unwanted application, Win32/ELEX.IE potentially unwanted application, Win32/Floxif.H virus
8.00%

F-Secure
Variant.Strictor.108620, Win32.Floxif.A
6.00%

Emsisoft Anti-Malware
Gen:Variant.Strictor.108620, Win32.Floxif
4.00%

Dr.Web
Adware.Mutabaha.1366, Adware.Mutabaha.1379, Win32.FloodFix.7
4.00%

K7 AntiVirus
Riskware
2.00%

Microsoft Security Essentials
Threat.Undefined
2.00%

F-Prot
W32/Floxif.B
2.00%

avast!
Win32:GenMalicious-BFP [Trj]
2.00%

McAfee
Trojan.Dropper-FIY!8AEF23162610
2.00%

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (6b14008f9bf49b3b24cbb0a5d8f18d7f)

1 / 68      (PUP)
wzupg.exe  (03a0c3ddd63dd12eecf04ed0f350814b)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (6b14008f9bf49b3b24cbb0a5d8f18d7f)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (1f2351ee9696aeabb3259294e1d7e392)

1 / 68      (PUP)
winzipper.exe (dltools.exe by dltools)  (4f1a84fe13dc91e1610285c5b92ee8da)

1 / 68      (PUP)
winziper.exe (winziper by Winziper Pvt)  (61643f0295e9f980133c07452ca2d18a)

1 / 68      (PUP)
winzipper.exe (dltools.exe by dltools)  (e522873f8e6c64c5843d6f243d25b073)

1 / 68      (PUP)
winzipper.exe (dltools.exe by dltools)  (7fb4110743291a83675eb3d31623c63d)

1 / 68      (PUP)
dzkcmjw.exe  (ae354bb560567e57d03181657c528e9d)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (6b14008f9bf49b3b24cbb0a5d8f18d7f)

1 / 68      (PUP)
wzupg.exe  (e89b749dcf9504e9f96e36da05c9a1bc)

1 / 68      (PUP)
wzUninstall.exe (WinZipper by Winziper Pvt)  (5ab668db5cc5c8a09933944d71582ee5)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (6b14008f9bf49b3b24cbb0a5d8f18d7f)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (584818dce4057ca17830baa11b15be79)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (42371622196223a5bff8969882599e76)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (42371622196223a5bff8969882599e76)

1 / 68      (PUP)
wzupg.exe  (9152e9e8c88be9f1a7af34543da1ff90)

1 / 68      (PUP)
tmp00000003bf7e6e406cd5254f  (703a93de18103d0541cc29c557d176cd)

1 / 68      (PUP)
1466497240201605161eng2.zip.tdl (WinZipper by Winziper Pvt)  (745e2b009cdb6c9fb1a4605a85cd3793)

1 / 68      (PUP)
1466486425201605161eng2.zip.tdl (Winziper by Winziper Pvt)  (b416c80a4a7fb42e2e52dd59ebfc1fe8)

1 / 68      (PUP)
1466566317201605301def2.zip.tdl (WinZipper by Winziper Pvt)  (e3b5f4cc0140fc2350a0f957c778b1a9)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (6b14008f9bf49b3b24cbb0a5d8f18d7f)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (b2c76da181b3ffe79a21b6182328f6dd)

1 / 68      (PUP)
winzipersvc.exe (Winziper by Winziper Pvt)  (6b14008f9bf49b3b24cbb0a5d8f18d7f)

10 / 68    (PUP)
winzipper.exe  (8aef23162610f180e2c1d5b82c553a90)

1 / 68      (PUP)
wzUninstall.exe (WinZipper by Winziper Pvt)  (f94ca930d47e1939682e2d9e95d207d0)

1 / 68      (PUP)
wzshellctx64.dll (WinZiper by Winziper Pvt)  (78ead0f9fc23eb3eeeb7317df0e96522)

2 / 68      (PUP)
wzShellctx.dll (WinZiper by Winziper Pvt)  (7048c795d7cd0881ef009e0ec57ea2a4)

1 / 68      (PUP)
wzdl.exe (Winziper by Winziper Pvt)  (12ece919dd28501c228745c81d56e4ed)

1 / 68      (PUP)
wzupg.exe  (7759f351667257a3ce786410121652fa)

 
Latest 30 of 54 files

The certificates below are also signed by Chencheng Cai.

437EFF18668F2949A8387EF2021D76B8  (Oct 19, 2016 to Sep 23, 2017)

3075116CD57C1E0CD4624D000E0D48F4  (Jul 26, 2016 to Jan 18, 2017)

3849AD0AD94858E163C64D14480BFB45  (Sep 26, 2016 to Jan 18, 2017)

40FA13985158ACB4435D05F1B89D98DA  (Jul 28, 2016 to Jan 18, 2017)

7BA6E3663709F53FDC5CC9B998626C04  (Sep 12, 2016 to Jan 18, 2017)

1602B3C8A91624463DFC128FAEFB8AF1  (May 27, 2016 to Jan 18, 2017)

1B38E894E8619E9CFFA77F0FC3F17B4D  (Jun 22, 2016 to Jan 18, 2017)

2931BE83DAB28F03C77CFBA2BD22204D  (Jul 07, 2016 to Jan 18, 2017)

34937668E8DC5B870FBDE612BA9635D2  (Jun 24, 2016 to Jan 18, 2017)

3D7668F12D69ADE858BD3BC551DAACAF  (Jun 02, 2016 to Jan 18, 2017)

10 of 32 code signing certificates issued

* Note, the details and description above are based on the code signing digital signature issued to Chencheng Cai by thawte, Inc. on June 17, 2016 with the serial number '38ece5b56085166b9dad890623266739'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.