home

condefsetup.exe

Content Defender

LLC

The application condefsetup.exe, “Content Defender Setup” by LLC has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program Content Defender by Artex Management S. A..
Publisher:
"Artex Management S. A."  (signed by LLC )

Product:
Content Defender

Description:
Content Defender Setup

Version:
1.15.0.1

MD5:
6017c1e0f5662963f14293eb74dbdf29

SHA-1:
021656285ef3f99efc593577888b1c0ca2880713

SHA-256:
188f8213c8d150592ca957438082b697a982ce9c97d2d7b889c3ea819d7cba47

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/15/2024 3:54:25 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Artex (M)
16.8.5.17

File size:
5.4 MB (5,616,408 bytes)

Product version:
1.15.0.1

Copyright:
Copyright (C) 2015

Original file name:
ConDefSe.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\content defender\condefsetup.exe

Digital Signature
Signed by:
LLC

Authority:
COMODO CA Limited

Valid from:
11/10/2015 6:00:00 AM

Valid to:
11/10/2016 5:59:59 AM

Subject:
CN="LLC ""IT-PROF""", OU=IT, O="LLC ""IT-PROF""", STREET="prosp. Heroyiv Stalinhrada, 48", L=Kiev, S=Kiev, PostalCode=04213, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
7B1E28BB38088B1862D9E29DE894FEEB

File PE Metadata
Compilation timestamp:
11/12/2015 8:51:53 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
98304:K33UTs6uKIbTpAkJHaA4l56xbRnIDOea7seV6vkaiv8LMccSCphW2mabk/c:WkL2bKkNu6p1v7s0baFMc4hX9

Entry address:
0xB623

Entry point:
E8, 05, 50, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 0F, 03, C1, 1B, C9, 0B, C1, 59, E9, 6A, F9, FF, FF, 51, 8D, 4C, 24, 08, 2B, C8, 83, E1, 07, 03, C1, 1B, C9, 0B, C1, 59, E9, 54, F9, FF, FF, CC, CC, CC, CC, 55, 8B, EC, 83, EC, 18, 53, 8B, 5D, 0C, 56, 57, C6, 45, FF, 00, 8B, 7B, 08, 8D, 73, 10, 33, 3D, 40, 30, 42, 00, C7, 45, F4, 01, 00, 00, 00, 8B, 07, 83, F8, FE, 74, 0D, 8B, 4F, 04, 03, CE, 33, 0C, 30, E8, 35, E9, FF, FF, 8B, 47, 08, 8B, 4F, 0C, 03, CE, 33, 0C, 30, E8...
 
[+]

Code size:
95.5 KB (97,792 bytes)

Program Uninstaller
Program name:
Content Defender

Display publisher:
Artex Management S. A.

Display version:
1.80

Uninstall string:
C:\Program Files\Content Defender\ConDefSetup.exe uninst=1


Remove condefsetup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.