home

backup4all.exe

Backup4all

Softland S.R.L.

It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Backup4all Professional 4’. This file is installed with the program Backup4all Professional 4.
Publisher:
Softland  (signed by Softland S.R.L.)

Product:
Backup4all

Description:
Backup4all application

Version:
4.7.0.270

MD5:
fc705d8de5407dc227356a21043eead1

SHA-1:
db729785b5e616c414fc7b2dd0f84e64b1314ac2

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/19/2024 8:00:26 AM UTC  (today)

Scan engine
Detection
Engine version

Bkav FE
HW32.Packed
1.3.0.7400

Vba32 AntiVirus
TrojanSpy.KeyLogger
3.12.26.4

File size:
6.7 MB (7,034,728 bytes)

Product version:
4.7.0.270

Copyright:
© Softland. All rights reserved.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\softland\backup4all professional 4\backup4all.exe

Digital Signature
Signed by:
Softland S.R.L.

Authority:
VeriSign, Inc.

Valid from:
2/28/2012 7:00:00 AM

Valid to:
2/28/2013 6:59:59 AM

Subject:
CN=Softland S.R.L., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Softland S.R.L., L=Cluj-Napoca, S=Cluj, C=RO

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4D666AB7C46E9702375EB8928DE82376

File PE Metadata
Compilation timestamp:
5/3/2012 4:30:17 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
83.82

CTPH (ssdeep):
196608:n3weFh4odjrGm3mG1rWZHp8Bmc5322LOAn:n3wm3GmlV+fc5322LO

Entry address:
0x86FDFB

Entry point:
E8, 3B, 7A, 00, 00, E9, 16, FE, FF, FF, 6A, 0C, 68, C8, 2F, CB, 00, E8, 8F, 3A, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, 0C, 6A, CB, 00, 77, 22, 6A, 04, E8, 48, 3C, 00, 00, 59, 83, 65, FC, 00, 56, E8, 43, 5E, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 9B, 3A, 00, 00, C3, 6A, 04, E8, 45, 3B, 00, 00, 59, C3, 55, 8B, 6C, 24, 08, 83, FD, E0, 0F, 87, 9F, 00, 00, 00, 53, 8B, 1D, D8, 31, CA, 00, 56, 57, 33, F6, 39, 35, F0, 55, CB, 00, 8B, FD, 75, 18, E8, DC, 37, 00...
 
[+]

Entropy:
7.7995  (probably packed)

Code size:
448 KB (458,752 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Backup4all Professional 4

Command:
"C:\Program Files\softland\backup4all professional 4\backup4all.exe" \s


The file backup4all.exe has been discovered within the following program.

Backup4all Professional 4  by Softland
Publisher's description - “With Backup4all Professional you can easily backup to any local or network drive, backup to FTP (with support for SSL encryption, proxy server, passive mode), SFTP, backup to DVD, CD, Blu-ray, HD-DVD, or other removable media (such as USB drives).”
www.backup4all.com/backup4all-professional.html
About 7% of users remove it
 
Powered by Should I Remove It?

Scan backup4all.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.