» cesetup.exe
Overview
Analysis
File Details

cesetup.exe

SpectorSoft Corp.

The application cesetup.exe by SpectorSoft has been detected as a potentially unwanted program by 4 anti-malware scanners.

File name:

cesetup.exe

Publisher:

SpectorSoft Corp. (signed and verified)

MD5:

dad79bc6955a64765eebed8fe9325c03

SHA-1:

0728ffe2004a19a4c284f0b30fae4fc4f88fa8e0

SHA-256:

2625617a690d7c814648ddc5ce07a2a0a618312a7d5c78dd84369e90625e56cd

Scanner detections:

4 / 68

Status:

Potentially unwanted

Analysis date:

4/20/2024 5:10:45 AM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:Spector-J [PUP]

2014.9-141104

Comodo Security

UnclassifiedMalware

17071

ESET NOD32

Win32/Urlbot.NAT (variant)

8.8888

Norman

Urlbot.H

11.20141104

File size:

3.9 MB (4,137,088 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\spectorsoft\spectorcne\cesetup.exe

Digital Signature

Signed by:

SpectorSoft Corp.

Authority:

Thawte, Inc.

Valid from:

3/2/2011 12:00:00 AM

Valid to:

3/24/2013 11:59:59 PM

Subject:

CN=SpectorSoft Corp., OU=SPECTOR 360, O=SpectorSoft Corp., L=Vero Beach, S=Florida, C=US

Issuer:

CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:

1D00FB146BFA0B456BC689CDD7F5B5CE

File PE Metadata

Compilation timestamp:

10/19/2011 5:39:47 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

49152:AA4W9ixy0amU8TPV7BYOT1ELbF3XxsU6FF6Gtf8nOKgR3BWQr2/gLhF2NLxBkfQD:AA4WI6f8TPCLxOF6GtuZF6GNJ

Entry address:

0x817EA

Entry point:

E8, 93, B6, 00, 00, E9, 89, FE, FF, FF, 57, 8B, C6, 83, E0, 0F, 85, C0, 0F, 85, C1, 00, 00, 00, 8B, D1, 83, E1, 7F, C1, EA, 07, 74, 65, EB, 06, 8D, 9B, 00, 00, 00, 00, 66, 0F, 6F, 06, 66, 0F, 6F, 4E, 10, 66, 0F, 6F, 56, 20, 66, 0F, 6F, 5E, 30, 66, 0F, 7F, 07, 66, 0F, 7F, 4F, 10, 66, 0F, 7F, 57, 20, 66, 0F, 7F, 5F, 30, 66, 0F, 6F, 66, 40, 66, 0F, 6F, 6E, 50, 66, 0F, 6F, 76, 60, 66, 0F, 6F, 7E, 70, 66, 0F, 7F, 67, 40, 66, 0F, 7F, 6F, 50, 66, 0F, 7F, 77, 60, 66, 0F, 7F, 7F, 70, 8D, B6, 80, 00, 00, 00, 8D, BF... 
[+]

Entropy:

7.0532

Code size:

657 KB (672,768 bytes)

Remove cesetup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.