conprotsetup.exe

Content Protector

Biznes IT, TOV

The application conprotsetup.exe, “Content Protector Setup” by Biznes IT, TOV has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is the uninstaller utility registered in the Windows Control Panel for the program ContentProtector by Artex Management S. A..
Publisher:
"Artex Management S. A."  (signed by Biznes IT, TOV)

Product:
Content Protector

Description:
Content Protector Setup

Version:
2.0.0.1

MD5:
d0925a91886ebbc1e36483d2da197ec3

SHA-1:
d21e3b123a5ecbcdee601a32e0f609f5e0e05d3c

SHA-256:
fe9c0c41927025304e45b19de0ec40c371fba9e3bc31075505d732e10bf09991

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/24/2024 5:12:10 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.ContentProtector (M)
16.9.11.0

File size:
12.4 MB (12,990,064 bytes)

Product version:
2.0.0.1

Copyright:
Copyright: (c) "Artex Management S. A.". All rights reserved.

Original file name:
ConProtSe.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\contentprotector\conprotsetup.exe

Digital Signature
Signed by:

Authority:
COMODO CA Limited

Valid from:
3/22/2016 5:00:00 AM

Valid to:
3/23/2017 4:59:59 AM

Subject:
CN="Biznes IT, TOV", OU=IT, O="Biznes IT, TOV", STREET="vul. Grebinky, 27", L=Poltava, S=Poltavska, PostalCode=36000, C=UA

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F91DC07E437058165D2C57F1BEC9D1EA

File PE Metadata
Compilation timestamp:
4/20/2016 5:12:54 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
98304:LJlHGBODIa1CAAhOkfsR2CuKHq8cyUbFV9C4KnldeMqCII5vQcBiclHzwYBb4tl6:VcmCXGR0GdUbFV+luCII5vQc0EYMJ

Entry address:
0xF064

Entry point:
E8, 17, 45, 00, 00, E9, 73, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 57, 56, 8B, 74, 24, 10, 8B, 4C, 24, 14, 8B, 7C, 24, 0C, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, 68, 03, 00, 00, 0F, BA, 25, 1C, CD, 42, 00, 01, 73, 07, F3, A4, E9, 17, 03, 00, 00, 81, F9, 80, 00, 00, 00, 0F, 82, CE, 01, 00, 00, 8B, C7, 33, C6, A9, 0F, 00, 00, 00, 75, 0E, 0F, BA, 25, 44, B1, 42, 00, 01, 0F, 82, DA, 04, 00, 00, 0F, BA, 25, 1C, CD, 42, 00, 00, 0F, 83, A7, 01, 00, 00...
 
[+]

Entropy:
4.7946

Code size:
121 KB (123,904 bytes)

Program Uninstaller
Program name:
ContentProtector

Display publisher:
Artex Management S. A.

Display version:
2.0

Uninstall string:
C:\Program Files\ContentProtector\ConProtSetup.exe uninst=1


Remove conprotsetup.exe - Powered by Reason Core Security