home

Hefei Lewei Information Technology Co.,Ltd.

Publisher Information

Hefei Lewei Information Technology Co.,Ltd. is a software publisher located in Hefei, Anhui in China*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs.
Authority:
WoSign CA Limited

Valid from:
10/29/2015 2:17:37 PM

Valid to:
10/29/2016 2:17:37 PM

Subject:
CN="Hefei Lewei Information Technology Co.,Ltd.", O="Hefei Lewei Information Technology Co.,Ltd.", L=Hefei, S=Anhui, C=CN

Issuer:
CN=WoSign Class 3 Code Signing CA, O=WoSign CA Limited, C=CN

Serial number:
5ab7015b756534acc678e7db75d22d97

Scanner detections:
Detections  (90% detected)

Scan engine
Details
Detections

avast!
Win32:Adware-gen [Adw], Win32:Evo-gen [Susp]
54.29%

Dr.Web
Adware.Qjwmonkey.47, Adware.Qjwmonkey.49, Adware.Qjwmonkey.60, Adware.Qjwmonkey.64, Adware.Qjwmonkey.62, Adware.Qjwmonkey.67
54.29%

ESET NOD32
Win32/Adware.Qjwmonkey (variant)
51.43%

G Data
Win32.Adware.Qjwmonkey, Gen:Variant.Application.Bundler.84
48.57%

Avira AntiVirus
APPL/Qjwmonkey.cfk
45.71%

IKARUS anti.virus
PUA.Qjwmonkey
45.71%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696
40.00%

K7 AntiVirus
Adware
37.14%

Rising Antivirus
PE:Adware.Qjwmonkey!1.A299 [F], PE:Malware.Generic/QRS!1.9E2D [F], PE:Malware.Generic(Thunder)!1.A1C4 [F], Malware.Undefined!8.C-OvPOhWADn0M (Cloud)
37.14%

Reason Heuristics
(M), Adware.Qjwmonkey
34.29%

0 / 68
batterymon@81_41985.exe (downloader)  (7364d2a9cc6768aa4e203cbc2951cd2a)

1 / 68      (PUP)
thunder_dl_7.9.43.5054@81_135373.exe (downloader of lewell)  (11a3c3492bff5ef6ec9c06cb9db0a14f)

26 / 68    (PUP)
echo回声辅助@34_126756.exe (downloader)  (fb6999986e7eab47328c1758d531e120)

14 / 68    (PUP)
thunder_dl_7.9.40.5006review@81_135373.exe (downloader of lewell)  (ee89560fc7a13d51188d1c4d76e39f96)

0 / 68
xiuxiu-v4.3.1@249_13688.exe (downloader)  (0bdfbf5ec0bca4be63e1e73efaac11b5)

0 / 68
hosts解析器@34_132899.exe (downloader)  (c48d8c9064528b4952c62993a6e02d3f)

0 / 68
福昕pdf编辑器中文版(foxit+pdf+editor)@133_214.exe (downloader)  (060721e2838775b11bb8217375009259)

1 / 68      (Malware)
adobe+cc+2015+激活补丁@135_50325.exe (downloader)  (8433214e4c68dc9033314d8a29b27a7c)

27 / 68    (PUP)
风越文件批量改名器@34_130941.exe (downloader)  (d646213298b3f7920b3e6e8e1a7cf160)

4 / 68      (PUP)
朱天才解读太极拳—朱天才+著@155_1302541.exe (downloader)  (c5be3bcc321d74437c7037e8c7d4035e)

6 / 68      (PUP)
qvodsetup5.19.196@81_328754.exe (downloader of lewell)  (bb174f22f28e8ee57a3f4f6f83baa7c8)

4 / 68      (PUP)
qvodsetup5.19.196@81_328754.exe (downloader of lewell)  (c0e4827671dc35fc00493e797a807f19)

7 / 68      (PUP)
qvodplayer_3.0.1.59@81_428724.exe (downloader of lewell)  (667b8c066219fac67414a20173d4f829)

13 / 68    (PUP)
扑克牌特效展示@177_64996.exe (downloader)  (a50cefc83739a0b57c4251351be37895)

1 / 68      (Malware)
46w+4ol6.exe (downloader)  (2b34de7855fd9966c038391cd441d2e0)

1 / 68      (Malware)
edius下载@25_67035.exe (downloader)  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
p2p种子搜索神器@25_67533.exe (downloader)  (5b6387f919f44accd6f189b82e6126aa)

1 / 68      (Malware)
telegram(telegram电脑版)@34_68643.exe (downloader)  (8404b09e2a136e4fa4f56cd420a356b8)

1 / 68      (Malware)
视频转换快手@83_65.exe (downloader)  (14c5b85d57e23e212315818c08512457)

1 / 68      (Malware)
microsoft+office+2003+sp3【完整版】简体中文免费版@135_18204.exe (downloader)  (33085c7488ab0a760a79e7dd7b378c76)

19 / 68    (PUP)
qq8.2@81_428274.exe (downloader of lewell)  (5db5eed1d3dab624ba936c6ec524fcec)

26 / 68    (PUP)
像素海盗+(pixel+piracy)汉化中文破解版v2.5.0.7@132_22916.exe (downloader of lewell)  (bc85996beed010db1725064811c10346)

1 / 68      (Malware)
virtual@34_82833.exe (downloader)  (42bdc6ce946f90787505185cce285139)

1 / 68      (Malware)
360流量防火墙@34_18013.exe (downlaoder of lewell)  (a5f26d8e83042cd72cf4418b532c1756)

6 / 68      (PUP)
dbf阅读器+v4.1+绿色免费中文版@25_40482.exe (downsoft)  (fada473d8d4e86422f80b6cf732a35f8)

22 / 68    (PUP)
《性感海灘4》+剣闘士存檔@55_50747.exe (downloader of lewell)  (ca4453b6111f3c903cb7e410de9aae69)

5 / 68      (PUP)
8b32061eb4030d3768f3615f9be742e6e3d523c3 (downloader of lewell)  (de69fa03a43c51a7ba3c8bf005bb00a1)

19 / 68    (PUP)
w.p.s.4885.20.2394@81_420641.exe (downloader of lewell)  (e977bc103bd21974bf3f484ac2b0db63)

1 / 68      (Malware)
pdf@34_148369.exe (downloader of lewell)  (3914b4dc194f252c319da9387d5c16ee)

28 / 68    (PUP)
baofeng5.57.0202@81_109667.exe (downloader of lewell)  (bb5c89621b8f02f0cea5ce2ff4452efb)

 
Latest 30 of 39 files

Downloads URLs for files signed by Hefei Lewei Information Technology Co.,Ltd..

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?softid=430989&subcateid=279&site=10&checkStr=834152761d509fc73&pos=dxgs1&rand=5b0d98  (edius下载@25_67035.exe)

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?softid=430967&subcateid=726&site=10&checkStr=e6a1d0e06cd608eea&pos=dxgs2&rand=3faf64  (edius下载@25_67035.exe)

22 / 68    (PUP)
http://url.goosai.com/.../Internet@34_146302.exe  (ca4453b6111f3c903cb7e410de9aae69)

1 / 68      (Malware)
http://url.tduou.com/.../????????mega??@271_86232.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://driver.zol.com.cn/.../116660_117_9.shtml  (edius下载@25_67035.exe)

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?nn=116d77f282860ce3f&softid=430321&subcateid=1266&site=10&server=10&rand=6948341  (pdf@34_148369.exe)

1 / 68      (Malware)
http://url2000.downkr.com/.../Adobe photoshop CS6 v13.0 ??????? - ???????????@195_40990.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://url.tudown.com/.../ProDAD DeFishr(????????????) v1.0.65.1 ?????@135_46070.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://url.tduou.com/.../????@260_38458.exe  (dcf2047f5e3d843fd77b55b291d231b4)

0 / 68
http://url.tduou.com/.../?????ios?@206_54986.exe  (060721e2838775b11bb8217375009259)

1 / 68      (Malware)
http://driver.zol.com.cn/.../432458_6_9.shtml  (edius下载@25_67035.exe)

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?softid=437460&subcateid=325&site=10&checkStr=d03a409bdb090332c&pos=dxgs1&rand=798d40  (edius下载@25_67035.exe)

1 / 68      (Malware)
http://url.tduou.com/.../RPG Maker VX(RPG????) V1.03?RPG???????????? @213_4001.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?softid=415443&subcateid=102&site=10&checkStr=816d3ce5457de0f65&pos=dxgs1&rand=c6b16c  (edius下载@25_67035.exe)

1 / 68      (Malware)
http://url.tduou.com/.../????Primo@68_30538.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?softid=433537&subcateid=325&site=10&checkStr=3c17bea37e54efda9&pos=dxgs1&rand=c5f7f3  (edius下载@25_67035.exe)

1 / 68      (Malware)
http://url.tduou.com/.../Honey@212_150848.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://url.tduou.com/.../Yoosee??? v1.0.0.13 ??PC?@135_52136.exe  (8433214e4c68dc9033314d8a29b27a7c)

1 / 68      (Malware)
http://url.tduou.com/.../bb4050@220_460173.exe  (dcf2047f5e3d843fd77b55b291d231b4)

0 / 68
http://url.tduou.com/.../wulogo11203@220_506863.exe  (c48d8c9064528b4952c62993a6e02d3f)

13 / 68    (PUP)
http://url.tudown.com/.../Windows@34_147488.exe  (a50cefc83739a0b57c4251351be37895)

1 / 68      (Malware)
http://xiazai.zol.com.cn/down.php?softid=135373&subcateid=327&site=10&checkStr=bc29f4c14ea51514c&pos=dxgs1&rand=371947  (edius下载@25_67035.exe)

11 / 68    (PUP)
http://xiazai.zol.com.cn/down.php?nn=7e34bdcd0d65e6947&softid=352928&subcateid=1266&site=10&server=10&rand=9202199&position=1  (sshsecureshellclient3.2.9@145_372685.exe.part)

1 / 68      (Malware)
http://url.tduou.com/.../??@260_98952.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://count.cncrk.com/Download.asp?ID=106426&t=s0&sid=110934  (视频转换快手@83_65.exe)

1 / 68      (Malware)
http://url.tduou.com/down/.../64?)@240_77371.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://url.tduou.com/.../????????????? 2.1.2 ???@240_141388.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://url.tduou.com/.../????PC???@225_289093.exe  (dcf2047f5e3d843fd77b55b291d231b4)

1 / 68      (Malware)
http://url.tduou.com/.../????go@198_125585.exe  (dcf2047f5e3d843fd77b55b291d231b4)

19 / 68    (PUP)
http://url.goosai.com/.../picsart??? v5.16.1 ??PC?@135_43984.exe  (e977bc103bd21974bf3f484ac2b0db63)

 
Latest 30 of 255 download URLs

The following websites host and distribute files published by Hefei Lewei Information Technology Co.,Ltd..

xiazaiqi2.33lc.com

url.tduou.com

url2000.downkr.com

url.tudown.com

url.goosai.com

xiazaiqi2.xpgod.com

url.downxia.com

driver.zol.com.cn

down10.zol.com.cn

xiazai.zol.com.cn

count.ddooo.com

The following publishers (by Authenticode signature organization name) are related.

北京智德典康电子商务有限公司

Anhui Shuyang Science and Technology Co., Ltd.

北京知行锐景科技有限公司

Huai'an Qianfeng Network Technology Co., Ltd.

Anhui Haiyang Software Technology Co., Ltd.

Maanshan Zhiye Software Technology Co.,Ltd.

Shanghai Yishen Network Technology Co., Ltd.

北京鸿达万方科技有限公司

Shenzhen Teeqee Technology Co.,Ltd

BeiJing Baidu Netcom Science Technology Co., Ltd

Zhuhai Kingsoft Office Software Co.,Ltd

Ruifeng Network Technology Co., Ltd.

Green Creatures Environment Protection Science End Technology Co., Ltd.

ShenZhen Thunder Networking Technologies Ltd.

ZhongXiang ZhiXing Network Service Co., Ltd.

Shenzhen Thinksky Technology Co.,Ltd

Qihoo 360 Software (Beijing) Company Limited

IDM Computer Solutions, Inc.

北京莱富特佰网络科技股份有限公司

BEIJING QIYI CENTURY SCIENCE&TECHNOLOGY CO.,LTD.

马鞍山百助网络科技有限公司

BitTorrent Inc

* Note, the details and description above are based on the code signing digital signature issued to Hefei Lewei Information Technology Co.,Ltd. by WoSign CA Limited on October 29, 2015 with the serial number '5ab7015b756534acc678e7db75d22d97'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.