home

tmp0000016bf371c978b5f18d40

HP Defender

LLC Arctic West

The file tmp0000016bf371c978b5f18d40 has been detected as malware by 1 anti-virus scanner.
Publisher:
My Company  (signed by LLC Arctic West)

Product:
HP Defender

Version:
2.0.1.22

MD5:
7d272e1af3c32e0281d361aae6db2ae2

SHA-1:
bda4185dc74796b29ed02892b9f1dde83aad9313

SHA-256:
29d33c5dfb204e9bf87c7a04302604747fb80b33a13625f6cadee32b21f256ab

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/15/2024 2:24:04 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
16.8.30.7

File size:
512 KB (524,288 bytes)

Product version:
2.0.1.22

Common path:
C:\windows\temp\tmp0000016bf371c978b5f18d40

Digital Signature
Signed by:
LLC Arctic West

Authority:
COMODO CA Limited

Valid from:
9/28/2015 3:00:00 AM

Valid to:
9/28/2016 2:59:59 AM

Subject:
CN=LLC Arctic West, O=LLC Arctic West, STREET=Lviv highway 1, L=Mikolaiv, S=Lvovskaja, PostalCode=81600, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7075EED8FD41FB930A69637B00C3C062

File PE Metadata
Compilation timestamp:
2/19/2012 5:01:57 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.22

CTPH (ssdeep):
3072:ylpaWRRu3tsyJe6U3NcYK2cUSZzjSqgZpOq:yru3K962C3U2jSXr

Entry address:
0x4131

Code size:
33.5 KB (34,304 bytes)

Remove tmp0000016bf371c978b5f18d40 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.