How to remove SETUP.EXE
SETUP.EXE
The module SETUP.EXE has been detected as General Threat
File Details
| MD5: | 82353eca4e39d3f2c6f55b494d5f3fc8 |
| Size: | 996 KB |
| First Published: | 2017-06-09 10:03:01 (7 years ago) |
| Latest Published: | 2020-04-06 11:03:57 (4 years ago) |
| Status: | General Threat (on last analysis) | |
| Analysis Date: | 2020-04-06 11:03:57 (4 years ago) |
Overview
| Signed By: | ElcomSoft Co.Ltd. |
| Status: | Valid |
Common Places:
| %desktop%\mysyncupfiles\2016\elcomsoft.password.recovery.bundle.forensic.edition.v2012\advanced intuit password recovery v2.0 |
| %desktop%\mysyncupfiles\2016\elcomsoft password recovery bundle forensic edition 2015\advanced intuit password recovery 2.0 |
| %temp%\rar$exa0.288\advanced intuit password recovery 2.0 |
| %sysdrive%\x1-aplications\elcomsoft.password.recovery.bundle.forensic.edition.v2012-doaiso\d-eprbfe\advanced intuit password recovery v2.0 |
| %sysdrive%\x1-aplications\elcomsoft.password.recovery.bundle.forensic.edition.2013.16.11.2013\elcomsoft password recovery bundle forensic edition 2013\advanced_intuit_password_recovery_2.0 |
| %desktop%\stay organized, fuckface\!sort clean preload\elcomsoft password recovery\elcomsoft password recovery\advanced_intuit_password_recovery_2.0 |
| %profile%\downloads\password recovery\advanced intuit password recovery v2.0 |
| %profile%\downloads\elcomsoft 2014\elcomsoft password recovery bundle forensic edition\advanced_intuit_password_recovery_2.0 |
| %desktop%\mysyncupfiles\2016\elcomsoft password recovery bundle forensic edition 2015 |
| %desktop%\mysyncupfiles\2016\elcomsoft.password.recovery.bundle.forensic.edition.v2012 |
File Names:
| setup.exe |
| SETUP.EXE |
| 171.exe |
Geography:
| 32.2% | ||
| 9.2% | ||
| 9.2% | ||
| 5.7% | ||
| 5.7% | ||
| 5.7% | ||
| 4.6% | ||
| 3.4% | ||
| 3.4% | ||
| 2.3% | ||
| 2.3% | ||
| 2.3% | ||
| 2.3% | ||
| 2.3% | ||
| 1.1% | ||
| 1.1% | ||
| 1.1% | ||
| 1.1% | ||
| 1.1% | ||
| 1.1% | ||
| 1.1% | ||
| 1.1% |
OS Version:
| Windows 10 | 50.6% | |
| Windows 7 | 41.4% | |
| Windows XP | 4.6% | |
| Windows 8 | 2.3% | |
| Windows 8.1 | 1.1% |
Analysis
| Subsystem: | Windows GUI |
| PE Type: | pe |
| OS Bitness: | 32 |
| Image Base: | 0x00400000 |
| Entry Address: | 0x00003161 |
PE Sections:
| Name | Size of data | MD5 |
| .text | 23552 | a1b38f79702392a322a2841e9bb49f6a |
| .rdata | 4608 | 74487a69e7662347f676ab791311704a |
| .data | 1024 | 1a5131f59b633a1f2793ff45dc9d2429 |
| .ndata | 0 | 00000000000000000000000000000000 |
| .rsrc | 27648 | 592add271f5b8c10e2fd93cb875a876c |
More information:
Download GridinSoft
Anti-Malware - Removal tool for SETUP.EXE
