home

DZHPI-PROEKT

Publisher Information

DZHPI-PROEKT is a software publisher located in Mukacheve, Zakarpatska in Ukraine*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs.
Authority:
COMODO CA Limited

Valid from:
5/28/2015 3:00:00 AM

Valid to:
5/28/2016 2:59:59 AM

Subject:
CN=DZHPI-PROEKT, O=DZHPI-PROEKT, STREET="vul. Hrafa Fon Shenborna, 49", L=Mukacheve, S=Zakarpatska, PostalCode=89600, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
391a6404f6b8400f91e0d33039f075c3

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.BitcoinMiner.DZHPIPROEKT.Meta, PUP.DZHPIPROEKT (M), Threat.Win.Reputation.IMP, PUP.DZHPIPROEKT.Installer (M), PUP.DZHPIPRO.Installer (M), PUP (M)
89.66%

Baidu Antivirus
Hacktool.Win32.BitCoinMiner
24.14%

IKARUS anti.virus
Trojan.BitCoinMiner, not-a-virus:RiskTool.BitCoinMiner
24.14%

Dr.Web
Trojan.BtcMine.711
24.14%

avast!
Multi:BitCoinMiner-B [PUP], Win32:Malware-gen
17.24%

ESET NOD32
Win32/BitCoinMiner.BY potentially unsafe (variant)
17.24%

K7 AntiVirus
Unwanted-Program
17.24%

Avira AntiVirus
TR/BitCoinMiner.2740224.1, TR/BitCoinMiner.4626752.1
17.24%

ESET NOD32
Win32/BitCoinMiner.BY potentially unsafe application
13.79%

Quick Heal
RiskTool.BitCoinMin.09327
13.79%

1 / 68      (Malware)
cpuminer-gw64.exe  (fc0f60969ad349a6418ad24b59f40bf8)

1 / 68      (Malware)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (4b947fed62b1471187b3095fa14ae9b4)

1 / 68      (Malware)
gpuminer-setup.exe (SGM - Setup by Open Source)  (2eeb6550ee7293e50c991b396d564a42)

1 / 68      (Malware)
cpm.exe  (0e4ea082e1237e8e36988dec4ce118ad)

1 / 68      (PUP)
awh6499.tmp (Setup by Open Source)  (06ec790f531553da7a8d88319df58693)

1 / 68      (PUP)
setup.exe (Setup by Open Source)  (cd3db5746485190732dccdc5b123248b)

1 / 68      (PUP)
gpuminer-setup.exe (SGM - Setup by Open Source)  (eac65f82f2adcb6e0694656e804357da)

1 / 68      (PUP)
gpuminer-setup.exe (SGM - Setup by Open Source)  (f3ae6c71724514aab280160211110fd5)

1 / 68      (PUP)
gpuminer-setup.exe (GPU Miner - Setup by Open Source)  (efed08aa7d96762f78cfaa3ce025f447)

1 / 68      (PUP)
cpm.exe  (eabb9c7dcf99fe4dbbd4ffbc7865a8b9)

10 / 68    (PUP)
cpm.exe  (1b312a7cbe4a3fb02ef4187b89c7cb27)

3 / 68      (PUP)
cpm.exe  (371949b98090dad794a47886ec2b98b9)

8 / 68      (PUP)
cpm.exe  (a981650a95fc7a72872db0f3324ab59c)

9 / 68      (PUP)
cpm.exe  (4eee53cdf148b7ca66590f95f6acafd8)

1 / 68      (PUP)
cpuminer-x11-11.exe (Setup by Open Source)  (8c4da70a9a3c3b843c770d68d348b93c)

1 / 68      (PUP)
adv_183.exe (Setup by Open Source)  (2c7b425f57a181dca462bffc5ea8855e)

3 / 68      (PUP)
cpm.exe  (39b77a690de5e36b62faed09ec0210c4)

1 / 68      (PUP)
cdn.exe (Setup by Open Source)  (579afe1a277e15a9a571aead51af7471)

3 / 68      (PUP)
cpm.exe  (75c2ee49291438af111e4cc55d8b4ca6)

1 / 68      (PUP)
cpm.exe  (c91b4ffa24a98d28ee0a62181a27f947)

7 / 68      (Malware)
cpm.exe  (479b8c1cf2b5765d735e6ae4fbe08448)

1 / 68      (PUP)
sgm.exe (- by Open Source)  (9a7b62f4bd7926f7e3a47113a7576089)

11 / 68    (PUP)
cpuminer.exe (CPU Miner - Setup by Open Source)  (874870b13118b9c3ed571064ed70af82)

7 / 68      (PUP)
cdn.exe (CPU Miner - Setup by Open Source)  (dbc58ad198b7615e74a3d542adccc11e)

6 / 68      (PUP)
cpuminer-x86.exe (cpuminer)  (7fff80b3346bde455bb60ca46efc06e1)

5 / 68      (PUP)
cpuminer-x86.exe (cpuminer)  (bff7bdbf11667dfb2dc25c68c16b2f89)

1 / 68      (PUP)
cpuminer-gw64.exe  (aeed08f2af685a9d1ca9436f9ba4c80b)

1 / 68      (PUP)
cpuminer-gw64.exe  (fc0f60969ad349a6418ad24b59f40bf8)

4 / 68      (PUP)
cpuminer-x11-11.exe (CPU Miner - Setup by Open Source)  (b0765ead8f84ba9b0afbcd08fe4d6b17)

Downloads URLs for files signed by DZHPI-PROEKT.

1 / 68      (PUP)
http://setup-14b7.kxcdn.com/setup.exe  (8c4da70a9a3c3b843c770d68d348b93c)

1 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (579afe1a277e15a9a571aead51af7471)

4 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (b0765ead8f84ba9b0afbcd08fe4d6b17)

11 / 68    (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (874870b13118b9c3ed571064ed70af82)

7 / 68      (PUP)
http://cdn-14b7.kxcdn.com/cdn.exe  (dbc58ad198b7615e74a3d542adccc11e)

The following websites host and distribute files published by DZHPI-PROEKT.

cdn-14b7.kxcdn.com

The following publishers (by Authenticode signature organization name) are related.

Off To Up LLC

LLC

Promgazstroi Proekt, TOV

Synaps Proekt, TOV

LLC

Ukrainski TELE Radio Systemy, TOV

LLC TRK

SEIL SOFT, TOV

The Group

LLC `ELEKRAN SOFT`

SOFT Servis, TOV

Novograd Proekt, TOV

Realinvest SOFT, TOV

SOFT Sistems, TOV

TELE MAKS, TOV

* Note, the details and description above are based on the code signing digital signature issued to DZHPI-PROEKT by COMODO CA Limited on May 28, 2015 with the serial number '391a6404f6b8400f91e0d33039f075c3'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.