home

Taiwan Shui Mu Chih Ching Technology Limited

Publisher Information

Taiwan Shui Mu Chih Ching Technology Limited is a software publisher located in Taipei City, Taiwan*. The company is a primary distributor of unwanted software. Thre are 4 additional code signing certificates issued to this publisher.
Authority:
GlobalSign nv-sa

Valid from:
3/4/2015 10:26:37 AM

Valid to:
3/4/2016 10:26:37 AM

Subject:
CN=Taiwan Shui Mu Chih Ching Technology Limited, O=Taiwan Shui Mu Chih Ching Technology Limited, L=Taipei City, S=Taiwan, C=TW

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121003857ab2ad439a7293ef2f1a8b3dcb6

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.TaiwanShuiMuChihChingTechnology, PUP.Service.TaiwanShuiMuChihChingTechnology, PUP.BHO.TaiwanShuiMuChihChingTechnology, PUP.Installer.TaiwanShuiMuChihChingTechnology, PUP.Thinknice, PUP.Thinknice.TaiwanShuiMuChihChingTechnology, PUP.Thinknice.TaiwanSh (M), PUP.Thinknice (M)
100.00%

AVG
Generic
73.33%

Dr.Web
Adware.Mutabaha.121, Adware.Mutabaha.120, Adware.Mutabaha.119, Adware.Mutabaha.117, Threat.Undefined, Adware.Mutabaha.50
71.11%

Bkav FE
W32.HfsAdware
62.22%

ESET NOD32
Win32/ELEX.BM potentially unwanted application, Win32/Thinknice.B potentially unwanted application, Win32/ELEX.CK potentially unwanted application, Win32/ELEX.BU potentially unwanted application, Win32/ELEX.FM potentially unwanted application, Win32/ELEX.GY potentially unwanted application
37.78%

G Data
Win32.Application.SearchProtect.AA@gen, Adware.SearchProtect
31.11%

Malwarebytes
PUP.Optional.ELEX, PUP.Optional.BrowserWatch, PUP.Optional.XTab.A, PUP.Optional.SearchProtect, PUP.Optional.SupTab.A, FraudTool.YAC
31.11%

K7 AntiVirus
Trojan , Unwanted-Program
31.11%

Baidu Antivirus
Adware.Win32.Elex, PUA.Win32.ELEX
26.67%

Vba32 AntiVirus
AdWare.SearchProtect
26.67%

1 / 68      (Adware)
CmdShell.exe (SearchProtect)  (f5bfbed578aa63a34217a3678c4eaf25)

1 / 68      (Adware)
winzipersvc.exe (dsk service by Taiwan Shui Mu Chih Ching Technology Limited)  (e14e883aea687b850fe6eed517f9db64)

1 / 68      (Adware)
winzipersvc.exe (dsk service by Taiwan Shui Mu Chih Ching Technology Limited)  (1532eb8e5fa6937120a6b8501c4da012)

1 / 68      (Adware)
ouilibnl.dll (OUI by Taiwan Shui Mu Chih Ching Technology Limited)  (44f41ff467281cc96ebe0ad2a882119d)

3 / 68      (Adware)
WinZipper.exe (WinZipper by Taiwan Shui Mu Chih Ching Technology Limited)  (d178f206c6c45b3726cb7bb200d9196c)

3 / 68      (Adware)
dup.exe (DUP by Taiwan Shui Mu Chih Ching Technology Limited)  (49e00cb9e02024ab6aef121d1974ebd9)

3 / 68      (Adware)
eUpgrade.exe (Elex Upgrade by Taiwan Shui Mu Chih Ching Technology Limited)  (9295a05fd4be08adce78c6003d89cd7c)

4 / 68      (Adware)
traydownloader.exe (Tray downloader by Taiwan Shui Mu Chih Ching Technology Limited)  (cfdf97ede350e44fad948b786702c5a4)

4 / 68      (Adware)
Picexa.exe (Picexa Viewer by Taiwan Shui Mu Chih Ching Technology Limited)  (e5a7ecd213f3a6d77bb1cb621872a93d)

5 / 68      (Adware)
dup.exe (DUP by Taiwan Shui Mu Chih Ching Technology Limited)  (434f65777ff59aa19cc2cae223a17ae9)

9 / 68      (Adware)
picexasvc.exe (Picexa Viewer by Taiwan Shui Mu Chih Ching Technology Limited)  (4296b3ac7df96db9c16e1e5f1d5c5682)

4 / 68      (Adware)
zlib1.dll (zlib)  (d2f1f99b6437373d2f262f707a1e3a0d)

4 / 68      (Adware)
ssleay32.dll (The OpenSSL Toolkit by The OpenSSL Project, http://www.openssl.org/)  (640d6617c92f6579b9652b71a17e666b)

7 / 68      (Adware)
sqlite3.dll (YAC Security Protection by Elex do Brasil Participaçõesa)  (2ffbec1ffaf8845de758efd08abed3b2)

4 / 68      (Adware)
ouilib.dll (OUI by Elex do Brasil Participaçõesa)  (d9c14deb33af0de12dbe16db25b42eb0)

6 / 68      (Adware)
LIBPNG15.DLL (LibPNG)  (40abae24593ba54e44e9f26a88dbad08)

4 / 68      (Adware)
libeay32.dll (The OpenSSL Toolkit by The OpenSSL Project, http://www.openssl.org/)  (4d9dd421c2b4ec035af5003bc3a33fa4)

4 / 68      (Adware)
libcurl.dll (The cURL library by The cURL library, http://curl.haxx.se/)  (039eaa3bedf5767c0dd193fe37822ad3)

5 / 68      (Adware)
iImportLib.dll (Picexa Viewer by Taiwan Shui Mu Chih Ching Technology Limited)  (0b0f2f15b4115bfe5a74e93ea8c02856)

5 / 68      (Adware)
_@68bb.tmp  (8fc273dd139405dbaae0aa67eb12f1e3)

5 / 68      (Adware)
Uninstall.exe (Picexa Viewer by Taiwan Shui Mu Chih Ching Technology Limited)  (c02dfd669d3bd98e195494ecd54dadb1)

18 / 68    (Adware)
CmdShell.exe (SearchProtect)  (b567e5b608a5113c7137e012be3c2fc2)

9 / 68      (Adware)
suptab.dll (SupTab by Thinknice Co. Limited)  (8707d10010f996f158a02d2bbb5196f5)

21 / 68    (Adware)
protectservice.exe (XTab by XTab system)  (77daa5007d35e8e4ca6f684d976cd9e2)

8 / 68      (Adware)
IeWatchDog.dll (SearchProtect by Search Protecter)  (814941cc67ac0b34d2b5dcc18ad5b6e6)

12 / 68    (Adware)
hpnotify.exe (XTab by XTab system)  (0a645905ca265d37e5cc0dd4f876bcd4)

12 / 68    (Adware)
browerwatchff.dll (XTab)  (283c1f262fd8ebf20041525f1d76ccf6)

12 / 68    (Adware)
browerwatchch.dll (XTab)  (9732a2fdf799702acbd89146ae2c8a6e)

27 / 68    (Adware)
xtab_v4.0.exe (XTab)  (22dc5bc0d2d27d0ad01ac18546fc21b2)

1 / 68      (Adware)
WinZipper.exe (WinZipper by Taiwan Shui Mu Chih Ching Technology Limited)  (6c176619e4004345e48b9d4b12e21511)

 
Latest 30 of 45 files

The certificates below are also signed by Taiwan Shui Mu Chih Ching Technology Limited.

112127474DE010DA49D31D0EE8193EAC2D0E  (Mar 05, 2015 to Mar 04, 2016)

1121BCD23750153699E1F59ACE477A6DE070  (Feb 24, 2014 to Feb 25, 2015)

11214791C542722D5C418927DCC4A64E75B7  (Jan 15, 2015 to Feb 25, 2015)

1121243D90C81CD8FEC70E99813154FB6459  (Mar 13, 2013 to Mar 14, 2014)

The following publishers (by Authenticode signature organization name) are related.

337 Technology Limited

* Note, the details and description above are based on the code signing digital signature issued to Taiwan Shui Mu Chih Ching Technology Limited by GlobalSign nv-sa on March 04, 2015 with the serial number '1121003857ab2ad439a7293ef2f1a8b3dcb6'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.