home

control proyectos diagramas gantt.exe

PortalProgramas

This belongs to a Solimba product that may be bundled with additional PUPs or may be part of an ad-supported software program. The application control proyectos diagramas gantt.exe, “Application Installer 2x” by PortalProgramas has been detected as adware by 13 anti-malware scanners. The program is a setup application that uses the Solimba DownloadMR installer. It uses the Solimba download manager to push adware offers during the download and setup process. Bundled adware includes search and shopping web browser toolbars.
Publisher:
apps installer   (signed by PortalProgramas)

Description:
Application Installer 2x

Version:
3.1.9

MD5:
aff740f2ca8e706f178c827aeda26248

SHA-1:
0416912b6476fbad365569036880c4d9859d4064

SHA-256:
e71c581c32eab261989d11fc9998fc69db7c77f858da03d722098c57764d1d63

Scanner detections:
13 / 68

Status:
Adware

Explanation:
Uses the Solimba installer to bundle adware offers.

Description:
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:
4/26/2024 3:54:06 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Graftor.143692
529

avast!
Win32:Adware-BQN [Trj]
2014.9-150825

AVG
Adware BundleApp
2016.0.3007

Bkav FE
W32.HfsAdware
1.3.0.6379

Dr.Web
Adware.Downware.2488
9.0.1.0237

Emsisoft Anti-Malware
Gen:Variant.Adware.Graftor.143692
8.15.08.25.12

ESET NOD32
Win32/FirseriaInstaller.F potentially unwanted application
9.7.0.302.0

F-Secure
Gen:Variant.Adware.Graftor
11.2015-25-08_3

herdProtect (fuzzy)
variant of office convert pdf to jpg jpeg tiff free.exe (Adware)
2015.8.25.0

Kaspersky
not-a-virus:AdWare.Win32.Fiseria
14.0.0.1530

Norman
Gen:Variant.Adware.Graftor.143692
11.20150825

Reason Heuristics
Adware.Solimba.PortalProgramas.Installer (M)
15.7.23.23

VIPRE Antivirus
Threat.4782980
33706

File size:
495.1 KB (506,968 bytes)

Product version:
3.1.3

Copyright:
Copyright © 2014

Original file name:
installer2x.exe

File type:
Executable application (Win32 EXE)

Bundler/Installer:
Solimba DownloadMR

Common path:
C:\users\{user}\downloads\control proyectos diagramas gantt.exe

Digital Signature
Signed by:
PortalProgramas

Authority:
COMODO CA Limited

Valid from:
1/2/2014 6:00:00 PM

Valid to:
1/3/2015 5:59:59 PM

Subject:
CN=PortalProgramas, OU=Tech, O=PortalProgramas, STREET="Balmes 1, primera planta", L=Terrassa, S=Barcelona, PostalCode=08225, C=ES

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00FD1E07CCAABD98839CDBE058C9F8B3E9

File PE Metadata
Compilation timestamp:
3/21/2014 11:11:22 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
12288:PVrRyPl0OwaRLwfWtUboZ2vk0u0V532JhU1wr4BjWOT:PVwPlRwPLcj42JhfWjpT

Entry address:
0xE559

Entry point:
E8, CD, 79, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 20, 8B, 45, 08, 56, 57, 6A, 08, 59, BE, 78, E4, 41, 00, 8D, 7D, E0, F3, A5, 89, 45, F8, 8B, 45, 0C, 5F, 89, 45, FC, 5E, 85, C0, 74, 0C, F6, 00, 08, 74, 07, C7, 45, F4, 00, 40, 99, 01, 8D, 45, F4, 50, FF, 75, F0, FF, 75, E4, FF, 75, E0, FF, 15, 24, E1, 41, 00, C9, C2, 08, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 60, 54, 42, 00, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 64...
 
[+]

Entropy:
7.6573

Code size:
115 KB (117,760 bytes)

The file control proyectos diagramas gantt.exe has been seen being distributed by the following URL.

http://dl.downloadsireigheesae.com/n/3.1.8/.../Control proyectos diagramas Gantt.exe

Remove control proyectos diagramas gantt.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.