{14a5ff45-6866-4b2c-8f4e-9533a9248c3c}.exe

The application {14a5ff45-6866-4b2c-8f4e-9533a9248c3c}.exe has been detected as a potentially unwanted program by 2 anti-malware scanners.
Remove {14a5ff45-6866-4b2c-8f4e-9533a9248c3c}.exe - Powered by Reason Core Security
MD5:
459fad5c437c5f8f7bf92abcd55b2d9b

SHA-1:
b3190516e5824839b5996dddf150dddc67f82fc9

SHA-256:
d14299325e2541bae95fe2d95d80506b4c24cdb8e6e8bfe6a8a7b9b276d41e34

Scanner detections:
2 / 68

Status:
Potentially unwanted

Explanation:
Part of the Conduit/ClientConnect toolbar/extension distribution.

Analysis date:
12/6/2016 8:57:07 PM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Conduit.SearchProtect.R potentially unwanted application
7.0.302.0

Malwarebytes
PUP.Optional.Conduit.A
v2014.06.10.11

Remove {14a5ff45-6866-4b2c-8f4e-9533a9248c3c}.exe - Powered by Reason Core Security
File size:
65.6 KB (67,161 bytes)

File type:
Executable application (Win64 EXE)

Common path:
C:\users\{user}\appdata\roaming\iolo\safetynet\manual\{9c1a71a1-f0fa-4b3b-8bfd-3f23baa793b3}\{14a5ff45-6866-4b2c-8f4e-9533a9248c3c}.exe

File PE Metadata
OS bitness:
Win64

CTPH (ssdeep):
1536:MMF/Lh5gfw1st9zzikuwi2IazrcPIA9AJW:/dLLPE93iA5Ia/cPISj

Entry point:
50, 4B, 03, 04, 14, 00, 00, 00, 08, 00, 49, 73, A3, 44, BC, 29, DA, 39, A3, 05, 01, 00, 9D, 61, 02, 00, 2A, 00, 00, 00, 7B, 31, 34, 41, 35, 46, 46, 34, 35, 2D, 36, 38, 36, 36, 2D, 34, 42, 32, 43, 2D, 38, 46, 34, 45, 2D, 39, 35, 33, 33, 41, 39, 32, 34, 38, 43, 33, 43, 7D, 2E, 65, 78, 65, EC, BD, 7D, 7C, 54, D5, B5, F8, 7D, 26, 33, 09, 43, 98, 30, 83, 24, 1A, 15, 34, 0A, 28, 1A, A4, 68, 40, 89, 03, 3A, 48, 26, A0, 12, 1C, 18, 32, 83, 95, 57, 25, 71, 32, 06, 42, 93, 73, 78, 69, 89, 26, 4C, A2, 8C, 87, 51, 6F...
 
[+]

Entropy:
7.9921  (probably packed)

Remove {14a5ff45-6866-4b2c-8f4e-9533a9248c3c}.exe - Powered by Reason Core Security