» autocad revit mep 2014 cr_10924_i70003768_il345.exe
Overview
Analysis
File Details

autocad revit mep 2014 cr_10924_i70003768_il345.exe

Google Chrome Portable

LLC BUDІMEKS

The application autocad revit mep 2014 cr_10924_i70003768_il345.exe by LLC BUDІMEKS has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It bundles adware offers using the Amonetize, a Pay-Per-Install (PPI) monetization and distribution download manager. The software offerings provided are based on the PC's geo-location at the time of install.

File name:

Publisher:

PortableApps.com (signed by LLC BUDІMEKS)

Product:

Google Chrome Portable

Version:

43.0.2357.134

MD5:

98be8ea4bdc86606fa18a626f73c3630

SHA-1:

602917e1732097f4ec7a5ae32af8ec58621e5998

SHA-256:

129564d82415890bceef6cc83ad7ef81e126de3d8ea6d6a36cdd7839c09d6a79

Scanner detections:

1 / 68

Status:

Potentially unwanted

Analysis date:

11/6/2024 7:36:14 AM UTC (today)

Scan engine

Detection

Engine version

Reason Heuristics

PUP.Amonetize.Bundler (M)

17.3.15.20

File size:

1.4 MB (1,460,752 bytes)

Product version:

43.0.2357.134

2007-2015 PortableApps.com, PortableApps.com Installer 3.0.19.0

Trademarks:

PortableApps.com is a registered trademark of Rare Ideas, LLC.

Original file name:

GoogleChromePortable_43.0.2357.134_online.paf.exe

File type:

Executable application (Win32 EXE)

Language:

Language Neutral

Digital Signature

Signed by:

LLC BUDІMEKS

Authority:

COMODO CA Limited

Valid from:

8/26/2015 9:00:00 PM

Valid to:

8/26/2016 8:59:59 PM

Subject:

CN=LLC BUDІMEKS, O=LLC BUDІMEKS, STREET=Cvitna 34, L=Gorodockey area Galichani vilage, S=Lvovskaja, PostalCode=81523, C=UA

Issuer:

CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00E9F1B23ADDECC133378F48EBB20F9E3D

File PE Metadata

Compilation timestamp:

10/12/2015 7:32:48 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

12.0

Entry address:

0x1C338C

Entry point:

68, E4, 84, BB, 00, E8, 9C, F5, FF, FF, 96, C9, 3B, F6, 66, 03, BB, E3, 67, 6C, 57, 3A, E1, 26, C2, 32, D2, 72, 57, 96, C9, 3A, FE, 46, 25, BA, E5, 66, 77, 57, 3E, D9, 0C, D7, 34, D5, 5A, 38, F3, 28, 86, F4, 0B, C9, 07, 54, E6, E8, 7E, 72, 34, 8B, 7D, F4, 2B, D1, 2B, F1, 8B, 4D, F8, F5, F8, F6, C7, 08, 0F, B7, BC, 79, B0, 01, 00, 00, 66, F7, C5, F5, 50, F5, 81, FA, 00, 00, 00, 01, 0F, 83, 31, 00, 00, 00, 3B, 45, FC, 0F, 83, 79, A0, 01, 00, 0F, B6, 08, F8, A9, 87, 22, 8A, 68, C1, E6, 08, 66, 85, F6, F8, C1... 
[+]

Code size:

1.3 MB (1,354,240 bytes)

Remove autocad revit mep 2014 cr_10924_i70003768_il345.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.