home

f_00d578

herdProtect Anti-Malware Scanner Portable Edition

Reason Company Software Inc.

Warning, this is an unsigned version of herdProtect and might be compromised. If you have this version on your PC please remove it and install a legitimate version from our website.
The file has been seen being downloaded from oficina.egosystems.com.ar and multiple other hosts.
Publisher:
Reason Company Software Inc.

Product:
herdProtect Anti-Malware Scanner Portable Edition

Description:
herdProtect Anti-Malware Scanner (Portable Edition)

Version:
1.0.3.9

MD5:
e8cd7d40ac25ab4e28df71ccb55b0579

SHA-1:
ec3e8de5acaa62fc56f2f062847c00342116466d

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

False Positives:
A number of engines detected this file but were erroneous detections (false positives).

Analysis date:
11/23/2024 8:04:10 AM UTC  (today)

File size:
2.7 MB (2,827,152 bytes)

Product version:
1.0.3.9

Copyright:
Copyright Reason Company Software Inc.

Trademarks:
herdProtect is a Trademark of Reason Company Software Inc.

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\temp\webkit\cache\f_00d578

The file f_00d578 has been seen being distributed by the following 50 URLs.

http://oficina.egosystems.com.ar:8888/PROGRAMAS/.../herdProtectScan_Portable.exe

https://cdn.discordapp.com/attachments/203952296516648960/.../herdProtectScan_Portable.exe

ftp://192.168.1.251/share/.../herdProtectScan_Portable.exe

https://onedrive.live.com/download.aspx?cid=4C2D9E99696527E8&resid=4C2D9E99696527E8!212709&canary=W8H8A NPNkPvnb4zAfhOZgSpWIu6KS PvRs4TKRvZZo=0&ithint=.exe

http://www.nonags.org/.../dfa.asp

https://www.dropbox.com/pri/get/.../herdProtectScan_Portable.exe

https://doc-0k-28-docs.googleusercontent.com/docs/securesc/mfrd315mg54rsuo18erh404q06dqe6n2/p06e6pu5v415ueaob1uo91h92n494654/1479506400000/09678150908517115224/.../0BxkoRpT0URm7OVlhNHRlZHZncVE?e=download

https://onedrive.live.com/download.aspx?cid=5FCEBED9FB112BDE&authKey=!AiD0j_s5k2k7gZ8&resid=5FCEBED9FB112BDE!13493&canary=Bptyh2GHS1gh01ZoVAhFTMZdNng84RCJlXgyKtoI1tA=6&ithint=.exe

https://www.google.com/url?hl=en&q=http://www.herdprotect.com/.../herdProtectScan_Portable.exe&source=gmail&ust=1480336214871000&usg=AFQjCNFwGjFC9Wpq1H0c2-CHsXvUxRYpbA

http://l.facebook.com/l.php?u=http://www.herdprotect.com/.../herdProtectScan_Portable.exe&h=AAQHH4zD7

http://ks1.sagaoutsourcing.com/vsaPres/web20/core/Downloader.ashx?displayName=herdProtectScan_Portable.exe&filepath=/ManagedFiles/.../herdProtectScan_Portable.exe

http://redirect.viglink.com/?format=go&jsonp=vglnk_147958663021015&key=51332a94507008460ab1441f024051d7&libId=ivpnehaz01000aau000DA1g1fdmo1tj4nc&loc=http://www.tomsguide.com/answers/id-3170696/malware-infested-google-chrome-double-search-bar-popping.html&v=1&out=https://www.herdprotect.com/.../herdProtectScan_Portable.exe&title=Malware infested in Google Chrome. Double search bar popping up - Malware - Antivirus / Security / Privacy&txt=https://www.herdprotect.com/.../herdProtectScan_...

https://www.google.com/url?hl=en&q=http://www.herdprotect.com/.../herdProtectScan_Portable.exe&source=gmail&ust=1480924720701000&usg=AFQjCNFNFf9HGFuH_ISpiONGm2waa9GGQA

http://webmail.wowway.biz/hwebmail/services/go.php?url=http://www.herdprotect.com/.../herdProtectScan_Portable.exe

https://dl-mail.ymail.com/ws/download/mailboxes/@.id==VjJ-HREGvMVuZ4oRJ40CP6Q439k0lclidUB-UWkHFpBvDIJ1Qw33MKllx8inNORx4ElQUWhjIv2uHVC2R0Wv8Q9VgQ/messages/@.id==APjkimIAAtvDV3E1BgqHUG7ggOc/content/parts/@.id==2/raw?appid=YahooMailNeo&token=zitEzqOML3j84e6ealFTT5U7-km5qEQF52lp7AcCuBaFia479K6e7UMUl9pH4K-XeOCiPcqWC-bLmG_VPCr-RBh-J5C6LyUnkpuuSevalNc&error=https://us-mg5.mail.yahoo.com/.../iframemsg?id=5ea75f93-c386-e142-9d43-dd3312c19053&ymreqid=83bcafca-51ae-4ef4-018f-35000c010000

http://filepony.de/.../herdProtectScan_Portable.exe

http://cdn.reasonsecurity.com/resources/.../reason-core-security-setup.exe

https://app.box.com/index.php?rm=box_download_shared_file&shared_name=czqxkufmtkjt38c8lg6k1hagfpkidb3k&file_id=f_62570701038

https://dl.boxcloud.com/d/.../_pLNYSUIWeZ3V3QDDk7U2haTYPeWI9_WL_408da0W0z5HLH0GfLs0IC97Ot6tGRNW9IfAntZXJnz0-PtmtVegJ_R2ZPrXK08yKZyifbZPb_bLqCkC8KUlpdl9ySLFidy60hW2kSz6cyPy-_EJiKGYmEjkWKOw1cyHCpTdbBS2pHhS-RhLxjRWvqxlPo20DIeH9ge9zk-aI_30j9y1MhvbBIB7iD3zFRrFFVKjHsvSDbHMLt4-GH3ZDSyS3qG2yoTAZuMTwRsUd5UJ2pUG8wj96OF8bhxf3LPF0c-G6CBMkXthqz3pK8bVdz2hxdqQpq0TntQHd288Kz-VeyN7bbOXpv64gc85IXdlStBALGScQGV2rZra_YtenAIj3phkjVsSVm1LYBUqG-GxGYjdtBp12LWEDt6ViDi7qXcCf3e053qH0Xna8WpFwU1il3wgoOYmZdzxTwMXbvV38rokvPy-u_Gs9AKOuagl1NEQhwTsT9FnZzMdfEDzjQ8q7OVSeTMBd9YXw6p7T77AaPRm5WFKMS2q4D3llY_I3YweDoe9WdXSVAbJYiH0UTJptgoie72TqJ8kcVnIE9xEpVUY4eJr1V_NbI5WUMTR9KAP6IdLWYbtG2psNTPesulvWYgV9Q0h70CcEIcmCUIXZ-gTjy9qlJtzm1bbscKe2oc1i9Rr1rwDoCz0yBUTAqou-S1i5hsK22SqG32aPw5xW6MX1p1-tvildJzJ5rGM_whbrgzp0abiNMdHZOhWVfampi_UOHU_Y_4gos64FQvAy60u-ZUBdKMpOSgbWWTzvK-400ixlO_eBzvNPpXfjmMQnoF-OntQmrPlpQShl9xm_RUz6uUhUV30fLcS4YPHm6doWIkKe3YVAT1bOAuWtTVM9xTBn2tm4gkxNbTM4whvU1VzJPSfOT1j9ruQb37-tSdV1yT3XwAqz715GPVGizCuFBUVeptskHW1n90cwND

https://dl.boxcloud.com/d/.../38KtR91fMs5bd3b6P9jUV0SbrWowYgLxIYIvXNFkpuOK-wKhdMa3zbS2XNObU1N6uMpX1qk5dyYVB1WkDHc81PTgXm6KQm8TmaBMEFV6oy3IkCUSK0-QPOp-iZ2vZDZCf34IpBHxSkLEDZ0VqhXueev8djzsTky-mM4ohZcWqymhH5_Y-pIRsINGxrMUavEqJVq3V5Z8AG76RXGDhrbKUKksBSRAaC2AihUzybaRpzQWd-EcC9zkTdSrJiviR4ZxPrrxZXjsQsQNizEB3ZG33g6737xGihOgJBOGHC4G60HJBTF1VY2XCWG2_yfzzIbKgUJ42v1HqgUXsBAZYzCj8-8-qkZP3x2i63cPmkIRcY6ZA5kgRRg0t2Pp7620hBk1DTUJW01fj1ufX83cFfLF4vVqhU2qQs3UAWOt8UMgvvXaAuNsC7J3xpN7oMlerBtGRNGgR7-jAOewVbQEjT2VskDhm3xX-9w297Yr-NRqnY60pjkEBLjKtHZkkzhIlDvcqc5oYth_NIGKLYDI9H4SlJQxB5xNw6X4hfOMKO844Y0-WVDnJ3X7Y098TuTmDyPPT2Hx5yqp1z3fMmeyDGy6GM-0gph-B3D8DSnbd2jJ6CwKB8FqmlWIywiAW0OaoxidRN6Kg2ea_3SpXyFvdEjEhGo6y9sZ3nqp8IAt-9CtniPV731ggRCMXvtEePlqFdHSevnehcwTh5G8slF-Vg1EGxfDjYY__1wOVzgErp12urXWLQO21mLIWj9XIJFWP3ej9JDrCWlQ7pJCbFsfJoHGPEKSU851RMXG2VZAMdW2Yja54rn6Nqs0bpIvCX2-zvUGg4CxH3qDXdz35-9nPKDka6G9R_7OqYbEqIaKeehR3tHLR5NYivkUV2fTMPhhzFDDEgQbnU0zCkPH15SpLw8wQuVmLgwRJiIjeyBfXVdXUwwW9fz5iQbve0b4iub-QnxyRm132mSDn1Lk

http://filepony.de/.../herdProtectScan_Portable.exe

http://filepony.de/.../herdProtectScan_Portable.exe

http://filepony.de/.../herdProtectScan_Portable.exe

https://doc-00-0c-docs.googleusercontent.com/docs/securesc/pd60p2cp9bhcos977avn1fta9t3n861r/kth24bjv3o94grjf3uj60u5grdteia7t/1458504000000/.../13522804775051939310/0B_CiejdbF0_DNEE4RFZjVGxaZmM?e=download

https://secure.giga-downloads.de/dl/.../

http://192.168.0.3/.../10. herdProtectScan_Portable.exe

https://www.herdprotect.com/mwg-internal/.../progress?id=nFvxD3J72iKzsJ2cLNVl4bRBdK7J_CejmIfbIik4IlE,&dl

https://doc-14-9s-docs.googleusercontent.com/docs/securesc/0ur4u1nbcps3kofvcepd37emr5gf1f58/5n6jelc0h3ih01mc2cq4653n52cs4mn7/1454421600000/.../04829749599126238008/0B-xeb6fRbsvoaGFVWDJpRUFVTm8?e=download

http://filepony.de/.../herdProtectScan_Portable.exe

http://owncloud.myredcloud.ca:3389/owncloud/index.php/apps/files/ajax/.../Tools&files=herdProtectScan_Portable.exe

Latest 30 of 81 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.