home

install_flash_player_active_x.exe

Adobe Flash Player ActiveX

Adobe Systems Incorporated

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. The file has been seen being downloaded from 85.185.208.3 and multiple other hosts.
Publisher:
Adobe Systems Incorporated  (signed and verified)

Product:
Adobe® Flash® Player ActiveX

Description:
Adobe® Flash® Player ActiveX Installer

Version:
1.0.20

MD5:
651328afc874d1035d6a1d1151367c7a

SHA-1:
11a81ad1b19344c28b1e1249169f15dfbd2a04f5

SHA-256:
e11debefe07c92ac5e4ebf24ad72146d93923c8264f84f8ff0c89fe8860822e5

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/16/2024 4:00:08 AM UTC  (today)

File size:
1.9 MB (1,962,544 bytes)

Product version:
10.0.32.18

Copyright:
Copyright © 1996-2009 Adobe Systems Incorporated and its licensors. All Rights Reserved.

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\_extra\install_flash_player_active_x.exe

Digital Signature
Signed by:
Adobe Systems Incorporated

Authority:
VeriSign, Inc.

Valid from:
10/24/2008 8:00:00 AM

Valid to:
12/11/2009 7:59:59 AM

Subject:
CN=Adobe Systems Incorporated, OU=Information Systems, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Adobe Systems Incorporated, L=San Jose, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7657F9CBCAC1EA9504838E3ED9355D2D

File PE Metadata
Compilation timestamp:
1/14/2007 2:28:14 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:GcjOKqGZA5wVvzsu6ipNEhf3uyS2YSesgtsoYe7:GT7T+FEhf3u5ygGe7

Entry address:
0x36F2

Entry point:
81, EC, 7C, 01, 00, 00, 53, 55, 56, 33, F6, 57, 89, 74, 24, 18, BB, 10, A7, 40, 00, C6, 44, 24, 10, 20, FF, 15, 30, 80, 40, 00, 56, FF, 15, 7C, 82, 40, 00, A3, D0, 6B, 42, 00, 56, 8D, 44, 24, 30, 68, 60, 01, 00, 00, 50, 56, 68, B8, 14, 42, 00, FF, 15, 58, 81, 40, 00, 68, 34, A8, 40, 00, 68, 20, 63, 42, 00, E8, 72, 29, 00, 00, BD, 00, D4, 42, 00, 55, 68, 00, 04, 00, 00, FF, 15, B8, 80, 40, 00, E8, 64, FF, FF, FF, 85, C0, 75, 24, 68, FB, 03, 00, 00, 55, FF, 15, B4, 80, 40, 00, 68, 2C, A8, 40, 00, 55, E8, 5D...
 
[+]

Entropy:
7.9904

Packer / compiler:
Nullsoft install system v2.x

Code size:
24.5 KB (25,088 bytes)

The file install_flash_player_active_x.exe has been discovered within the following programs.

Adobe Flash Player 11 ActiveX  by Adobe Systems Incorporated
The Adobe Flash Player is freeware software for viewing multimedia, executing Rich Internet Applications, and streaming video and audio, content created on the Adobe Flash platform. Flash Player can run from a web browser (as a browser plug-in) or on supported mobile devices.
www.adobe.com
4% remove it
Adobe Flash Player 11 Plugin  by Adobe Systems Incorporated
Publisher's description - “Adobe Flash Player 11 drives innovation for rich, engaging digital experiences with new features for cross-platform browser-based viewing of expressive rich internet applications, content, and videos across devices.”
5% remove it
Adobe Flash Player 12 ActiveX  by Adobe Systems Incorporated
Publisher's description - “Adobe® Flash® Player 12 drives innovation for rich, engaging digital experiences with new features for cross-platform browser-based viewing of expressive rich internet applications, content, and videos across devices.”
www.adobe.com/support/flashplayer/downloads.html
11% remove it
Adobe Flash Player 12 Plugin  by Adobe Systems Incorporated
Publisher's description - “Cross-platform plugin plays animations, videos and sound files in .SWF format. Adobe® Flash® Player is a lightweight browser plug-in and rich Internet application runtime that delivers consistent and engaging user experiences.”
12% remove it
Alices Tea Cup Madness  by LeeGT-Games
Alices Tea Cup Madness is a casual digital game distributed by LeeGT-Games. During installation, the setup program optionally co-bundles the LeeGT-Games Toolbar by Conduit.
www.LeeGT-Games.com
5% remove it
ASUS VIBE  by Ecareme, Inc.
Publisher's description - “asus@vibe is a one-stop entertainment platform that serves as a value-added service for all ASUS products.”
www.Ecareme.com
About 8% of users remove it
ASUS WebStorage  by eCareme Technologies, Inc.
Publisher's description - “Wherever there is internet connection, ASUS WebStorage can help you to retrieve your data to your notebooks, smartphones or tablets. Everything is securely saved on ASUS WebStorage. With 5GB cloud space you can throw everything on, files, photos, music, videos and lots more.”
www.asuswebstorage.com
22% remove it
Machinarium  by Amanita Design, s.r.o.
Machinarium is a puzzle point-and-click adventure game developed by Amanita Design. The goal of Machinarium is to solve a series of puzzles and brain teasers. The puzzles are linked together by an overworld consisting of a traditional "point and click" adventure story.
www.machinarium.com
About 3% of users remove it
Medad3  by Medadco
www.medadco.ir
About 8% of users remove it
MediaRing Talk  by MediaRing
www.mediaringtalk.com
About 8% of users remove it
 
Latest 20 of 20 programs
Powered by Should I Remove It?

The file install_flash_player_active_x.exe has been seen being distributed by the following 40 URLs.

http://85.185.208.3/.../FlashPlayer.exe

http://didgah.parsianinsurance.com/.../FlashPlayer.exe

http://10.232.115.99/.../FlashPlayer.exe

http://10.232.118.60/.../FlashPlayer.exe

http://eoffice.savehums.ac.ir/.../FlashPlayer.exe

http://didgah.alborz.pnu.ac.ir/.../FlashPlayer.exe

temp:install_flash_player_ax.exe

http://80.75.8.24/.../FlashPlayer.exe

about:internet

https://didgah.bki.ir/.../FlashPlayer.exe

http://192.168.1.49/.../FlashPlayer.exe

http://eo.tums.ac.ir/.../FlashPlayer.exe

http://mis.ajums.ac.ir/.../FlashPlayer.exe

http://217.219.137.206/.../FlashPlayer.exe

http://188.158.122.12/.../FlashPlayer.exe

http://office.miu.ir/.../FlashPlayer.exe

http://188.136.128.185/.../FlashPlayer.exe

http://office.sbu.ac.ir/.../FlashPlayer.exe

http://automation.tam.co.ir/.../FlashPlayer.exe

http://app2.office.behdasht.gov.ir/.../FlashPlayer.exe

http://wapfast.in/files/download/id/.../

http://didgah.isfpnu.ac.ir/.../FlashPlayer.exe

http://eoffice.arvandfz.com/.../FlashPlayer.exe

http://didgah.tabrizu.ac.ir/.../FlashPlayer.exe

http://auto.mamsha.ir/.../FlashPlayer.exe

http://eoffice.nahad.ir/.../FlashPlayer.exe

https://office.sbmu.ac.ir/.../FlashPlayer.exe

http://eo.iums.ac.ir/.../FlashPlayer.exe

http://www.howzeh-khz.com/.../FlashPlayer.exe

http://eoffice.behdasht.gov.ir/.../FlashPlayer.exe

Latest 30 of 40 download URLs

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.