home

setup.exe

InstallShield

InstallShield Corporation, Inc.

It runs as a scheduled task under the Windows Task Scheduler.
Publisher:
InstallShield Corporation, Inc.

Product:
InstallShield

Description:
Setup Launcher ( SETUP.EXE)

Version:
3.00.111.0

MD5:
dc38a8baa941f7f7529b2ee1e2714921

SHA-1:
498fe8be404bb3fa4af4da3704566467d09629b1

SHA-256:
23df73f98b4d65d555d57742afe5a7ed84e72383cef6241b7ccbe49419e97614

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/25/2024 8:46:03 PM UTC  (today)

File size:
44.3 KB (45,312 bytes)

Product version:
3.00.111.0

Copyright:
Copyright InstallShield Corporation, Inc. 1990-1996 Phone : (847) 240-9111

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\cehv7 module 03 scanning networks\ping sweep tools\ping scanner pro\setup.exe

File PE Metadata
OS version:
252.33696

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
2.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:t8sQwboPNALUN+T67gzA85COuSahucDzPjnOZ/OW5MpJ:lWNA4gW7gzAuCOuDh5bnC/OW5Mp

Entry address:
0x1110109

Entropy:
6.4921

Code size:
256 KB (262,146 bytes)

Scheduled Task
Task name:
{2A2AF841-81A5-4B94-B4D5-CAA8E4863EE4}

Trigger:
Registration (Runs on registration)


The file setup.exe has been discovered within the following programs.

Gemini Bar Stock  by Gemini Business Systems Ltd
About 1% of users remove it
MortgageBASE  by Filogix Limited Partnership
www.filogix.com
About 2% of users remove it
Photo Transport  by Casio Computer Co., Ltd.
Publisher's description - “Photo Transport provides you with the following capabilities. Transfer of images from your computer to the camera. Transfer of computer screen shots to the camera as JPG images.”
support.casio.com/download.php?rgn=5&cid=001&pid=198
About 3% of users remove it
The Grid 2 Canadian Multilingual  by Sensory Software
www.sensorysoftware.com
About 5% of users remove it
The Grid 2 English (UK)  by Sensory Software
Publisher's description - “Thunder is award-winning free screenreader talking software for people with little or no sight. It works well with Windows 7, Vista or XP. Thunder is available all over the world in several languages and it really is absolutely FREE!”
About 7% of users remove it
UDesign  by Rapid Prototyping Systems Ltd
www.ultraframe.co.uk
About 2% of users remove it
 
Powered by Should I Remove It?

The file setup.exe has been seen being distributed by the following 17 URLs.

ftp://ftp.infotask.com.br/Softwares/.../SETUP.EXE

ftp://10.0.0.111/.../SETUP.EXE

ftp://10.120.42.8/Progarm/Dictionary lao - viet - viet - lao/.../SETUP.EXE

http://fr.official-drivers.com/setup.exe

temp:SETUP.EXE

http://www.anyprotect.com/dl.php?sct=NONC&data=null&anyprotect_id=1&r=ap_web1_nc&pr=s&prm=dXJsPXt7aHR0cDovL2QzODltNGw1YjV3bGNiLmNsb3VkZnJvbnQubmV0L2xwMy5odG1sP2NoPWFwX3dlYjEmYXV0bz0xJnNzcGRhdGE9bnltMUNLbnpwNS1aM2FENVBSQUNHTm5PeDdqU2tfaThQeUlPTVRjNUxqSXdNQzQyTXk0eE9ETW9BVEMyZ2VDWUJRLi59fQ==

ftp://192.168.100.12/Other Software/.../kundli/SETUP.EXE

http://www3.gobiernodecanarias.org/medusa/contenidosdigitales/programasflash/cnice/NEE/.../Instalar.exe

http://www.redlineweber.com/html/Fuel_Injection/software_install/.../SETUP.EXE

http://109.169.22.153/install/.../setup.exe

http://ttb.lpdownclsva006.com/download/request/.../0sWftDAQ?ClickID=&PubID=&uid=Py10JaG6dW

https://doc-0o-as-docs.googleusercontent.com/docs/securesc/98oqsinhbbvpggsn1l4i2ls7qglpp28m/75js3fc08dbadjgp54uno0cq6lq4ehlg/1466402400000/.../06878943883372080674/0B92yaLkybuNrUEFkZ1I1TmNUaDA?e=download

ftp://10.0.153.250/Amharic/.../SETUP.EXE

http://az803221.vo.msecnd.net/.../Setup.exe

ftp://stiac.hd.free.fr/Polaris/Install Opticon bis/.../SETUP.EXE

http://fc18.spaces.ru/f/0/1391146164/42027056/0/.../PDD_na_PK_Setup_2009-spaces.ru-spaces.ru.exe

http://download.drivertuner.com/download/.../setup.exe

Scan setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.