home

hJ8kNv7tFd50Lm

Publisher Information

hJ8kNv7tFd50Lm is a software publisher*. The company is a primary distributor of unwanted software.
Authority:
hJ8kNv7tFd50Lm

Valid from:
12/24/2014 5:03:05 AM

Valid to:
12/31/2039 6:59:59 PM

Subject:
CN=hJ8kNv7tFd50Lm

Issuer:
CN=hJ8kNv7tFd50Lm

Serial number:
567700fab6660ca6472397f88f3fc415

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.hJ8kNv7tFd50Lm.G, PUP.hJ8kNv7tFd50Lm.E, PUP.hJ8kNv7tFd50Lm.K, PUP.hJ8kNv7tFd50Lm.H, PUP.hJ8kNv7t (M), PUP (M)
100.00%

Emsisoft Anti-Malware
Gen:Trojan.Heur.TP.qq1@b4Ue16ii, Gen:Trojan.Heur.TP.rq1@bW1r4zgi, Gen:Variant.Kazy.525382, Gen:Variant.Adware.Kazy.525382
83.33%

Avira AntiVirus
TR/Crypt.XPACK.Gen, TR/Adload.tsgee, Adware/MultiPlug.hdy
83.33%

MicroWorld eScan
Gen:Trojan.Heur.TP.qq1@b4Ue16ii, Gen:Trojan.Heur.TP.rq1@bW1r4zgi, Gen:Variant.Kazy.525382, Gen:Variant.Adware.Kazy.525382
83.33%

Bitdefender
Gen:Trojan.Heur.TP.qq1@b4Ue16ii, Gen:Trojan.Heur.TP.rq1@bW1r4zgi, Gen:Variant.Kazy.525382, Gen:Variant.Adware.Kazy.525382
83.33%

G Data
Gen:Trojan.Heur.TP.qq1@b4Ue16ii, Gen:Trojan.Heur.TP.rq1@bW1r4zgi, Gen:Trojan.Heur.TP.rq1@b45r56ai, Gen:Trojan.Heur.TP.qq1@bqC9iZoi
83.33%

AhnLab V3 Security
Adware/Win32.MultiPlug
83.33%

Rising Antivirus
PE:Malware.XPACK!1.64D5
83.33%

Dr.Web
Trojan.DownLoader11.38912, Trojan.DownLoader11.24193
83.33%

Baidu Antivirus
Adware.Win32.MultiPlug
83.33%

1 / 68      (Adware)
priceless_soft_partner.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (27b1c7287387653001d6c6ed2f102c9d)

1 / 68      (Adware)
priceless_soft_partner.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (200e738edd059d248bacbd741102b9b7)

1 / 68      (Adware)
tmps.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (23a9c59a88172e05d1d320c5658e1204)

26 / 68    (Adware)
1m8s5a3g0n7t4b2h0o6u.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (5cf223cce7663871a3b5ea4b20bc301a)

32 / 68    (Adware)
jadv4xcwkq.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (728570eb765822c217b655b0908758b6)

25 / 68    (Adware)
tmps.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (0bed9ed57807ac39c71a5cab17cc09ee)

27 / 68    (Adware)
4952154921.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (b9e70156a62da9c471a66fd528701afa)

19 / 68    (Adware)
scstmp.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (7417fd639454dc4a7a00d3383eb9cb77)

25 / 68    (Adware)
tmps.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (f4cecad9e449dbb537e2b271b34d10dd)

24 / 68    (Adware)
scstmp.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (913773561740b40028b87b9b1b105ad4)

20 / 68    (Adware)
scstmp.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (502ddb13446f7d08338d34f064d71b59)

20 / 68    (Adware)
adv_63.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (9ce4919a5d6e9686270f07e820b604b4)

21 / 68    (Adware)
8p5v3d0j7q4x2e8l6r3y.exe (TODO: 5n3u0b7i4o2v8d6j3q1w)  (2fe3c545357a09510d0185b87709431a)

26 / 68    (Adware)
tmps.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (2df3444b7fcef074a858847bcb94ce60)

25 / 68    (Adware)
8646603728.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (27f40bcdf2921ea2dda245dc7c4ad3be)

25 / 68    (Adware)
scstmp.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (2292869720f99ae323a5ffbf37b62745)

16 / 68    (Adware)
tmps.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (f55780ef61095d0bbb0ba6d9fb576928)

26 / 68    (Adware)
adv_63.exe (TODO: 8k5q3x0f7l4s2y8g6m3t)  (030cc88d567317cfb2baa92ca8d12aaf)

Downloads URLs for files signed by hJ8kNv7tFd50Lm.

1 / 68      (Adware)
http://dl643.settleship.org/tmps.exe  (23a9c59a88172e05d1d320c5658e1204)

27 / 68    (Adware)
http://dl625.depotion.org/tmps.exe  (b9e70156a62da9c471a66fd528701afa)

25 / 68    (Adware)
http://dl642.settleship.org/tmps.exe  (0bed9ed57807ac39c71a5cab17cc09ee)

The following websites host and distribute files published by hJ8kNv7tFd50Lm.

dl643.settleship.org

dl642.settleship.org

dl625.depotion.org

The following publishers (by Authenticode signature organization name) are related.

Jmna9lHm

* Note, the details and description above are based on the code signing digital signature issued to hJ8kNv7tFd50Lm by hJ8kNv7tFd50Lm on December 24, 2014 with the serial number '567700fab6660ca6472397f88f3fc415'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.