home

foxit reader en5.4.5.124(toolbar) setup.exe

Foxit Reader Setup

Foxit Corporation

This is a setup and installation application. The file has been seen being downloaded from software.oldversion.com and multiple other hosts.
Publisher:
Foxit Corporation   (signed by Foxit Corporation)

Product:
Foxit Reader Setup

Version:
5.4.5.124

MD5:
d4e8845ab7fb0451eca712562e4fe663

SHA-1:
f53194fe335c1df41f1bc945626206d3f844fa89

SHA-256:
e5d7fd10c9817b821266b68caf66e5dbfd69806eab5750067d051f41d844b82f

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/25/2024 10:45:34 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Bundled.Toolbar.Ask (variant)
8.9259

File size:
15.7 MB (16,461,048 bytes)

Product version:
5.4.5.124

Copyright:
Copyright © 2005-2013 Foxit Corporation

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\{random}.tmp\foxit reader en5.4.5.124(toolbar) setup.exe

Digital Signature
Signed by:
Foxit Corporation

Authority:
GoDaddy.com, Inc.

Valid from:
5/4/2010 4:33:52 AM

Valid to:
5/4/2013 4:33:52 AM

Subject:
CN=Foxit Corporation, O=Foxit Corporation, L=Fremont, S=CA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
64A7A038A7B2

File PE Metadata
Compilation timestamp:
4/11/2010 12:57:59 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
393216:XZ40fa0r1Uzg8MUo+/Gm4OUd9QTYmOJ2jEVKggwNdV3:p00r1Uz4+R4DdyTYmUGSxgadd

Entry address:
0x163C4

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 54, 55, 41, 00, E8, 70, 04, FF, FF, 33, C0, 55, 68, 91, 6A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 4D, 6A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, A6, EF, FF, FF, E8, B1, EA, FF, FF, 8D, 55, EC, 33, C0, E8, FB, 87, FF, FF, 8B, 55, EC, B8, B0, D6, 41, 00, E8, A6, EA, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, B0, D6, 41, 00, B2, 01...
 
[+]

Entropy:
7.9758

Developed / compiled with:
Microsoft Visual C++

Code size:
85 KB (87,040 bytes)

The file foxit reader en5.4.5.124(toolbar) setup.exe has been discovered within the following programs.

360Amigo System Speedup Free  by 360Amigo
360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
360Amigo System Speedup PRO  by 360Amigo
360Amigo System Speedup is a tool of Windows that works quickly in identifying the problem and fix it if there are some mistakes that result in slow system performance.
56% remove it
 
Powered by Should I Remove It?

The file foxit reader en5.4.5.124(toolbar) setup.exe has been seen being distributed by the following 24 URLs.

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4NDI5MTU2ODtzOjI6ImlkIjtpOjEzODMwO3M6NDoiZmlsZSI7czo2MToiZm94aXQtcGRmLXJlYWRlci01LTQtNS0wMTI0LUZveGl0UmVhZGVyNTQ1LjAxMjRfZW51X1NldHVwLmV4ZSI7czozOiJ1cmwiO3M6NjE6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9mb3hpdC1wZGYtcmVhZGVyLTUtNC01LTAxMjQiO3M6NDoicGFzcyI7czozMjoiZWI5MzIyNjAxNWFlNzZjMGQ3ZjdhNGY2ZWYxMDNjMWUiO30=

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ4Mzk2OTA2NjtzOjI6ImlkIjtpOjEwMTU5O3M6NDoiZmlsZSI7czozMzoiRm94aXRSZWFkZXI1NDUuMDEyNF9lbnVfU2V0dXAuZXhlIjtzOjM6InVybCI7czo2NzoiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL2ZveGl0LXBkZi1yZWFkZXItNS00LTUtYnVpbGQtMDEyNCI7czo0OiJwYXNzIjtzOjMyOiJhM2NhYjU1N2Y2OThkY2ZiZjc3YmVhMDQ4ZTc1NTBmMiI7fQ==

http://fs37.filehippo.com/6899/.../FoxitReader545.0124_enu_Setup.exe

temp:FoxitReader545.0124_enu_Setup.exe

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3NTQxMjU4MTtzOjI6ImlkIjtpOjEzODMwO3M6NDoiZmlsZSI7czo2MToiZm94aXQtcGRmLXJlYWRlci01LTQtNS0wMTI0LUZveGl0UmVhZGVyNTQ1LjAxMjRfZW51X1NldHVwLmV4ZSI7czozOiJ1cmwiO3M6NjE6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9mb3hpdC1wZGYtcmVhZGVyLTUtNC01LTAxMjQiO3M6NDoicGFzcyI7czozMjoiOGU3YmI1MWMwMTFhNjI1ZTE5ZDUwOWE1MzdjODBkMGYiO30=

http://fs37.filehippo.com/6013/.../FoxitReader545.0124_enu_Setup.exe

http://filehippo.com/download/file/.../

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ2MjAzMjIzNztzOjI6ImlkIjtpOjEwMTU5O3M6NDoiZmlsZSI7czozMzoiRm94aXRSZWFkZXI1NDUuMDEyNF9lbnVfU2V0dXAuZXhlIjtzOjM6InVybCI7czo2NzoiaHR0cDovL3d3dy5vbGR2ZXJzaW9uLmNvbS93aW5kb3dzL2ZveGl0LXBkZi1yZWFkZXItNS00LTUtYnVpbGQtMDEyNCI7czo0OiJwYXNzIjtzOjMyOiIyMzAyYTZmNGNlMTAxYjYxZGVmMTViMjdlN2EzZWYxYyI7fQ==

http://software.oldversion.com/download.php?f=YTo1OntzOjQ6InRpbWUiO2k6MTQ3MzgwNTYyNztzOjI6ImlkIjtpOjEzODMwO3M6NDoiZmlsZSI7czo2MToiZm94aXQtcGRmLXJlYWRlci01LTQtNS0wMTI0LUZveGl0UmVhZGVyNTQ1LjAxMjRfZW51X1NldHVwLmV4ZSI7czozOiJ1cmwiO3M6NjE6Imh0dHA6Ly93d3cub2xkdmVyc2lvbi5jb20vd2luZG93cy9mb3hpdC1wZGYtcmVhZGVyLTUtNC01LTAxMjQiO3M6NDoicGFzcyI7czozMjoiNmViZjQ3YTRkMjQyM2MxNTE0MmM4NTI4NjkxOWNlMzEiO30=

http://share2.earthlinktele.com/download.aspx?file=1821088875

http://www.siat.unrc.edu.ar/siat2/archivos/idAula131283/software//FoxitReader545.0124_enu_Setup.exe

ftp://ee0646702bb219bb203976fab1d77a3b:1359746574@ftpclubicb9a.clubic.com/.../foxit-reader_foxit_reader_5.4.5.0124_anglais_13808.exe

https://portal.interrisk.pl/Downloads/.../FoxitReader.exe

http://filehippo.com/download/file/.../

http://fs34.filehippo.com/3904/.../FoxitReader545.0124_enu_Setup.exe

http://fs12.filehippo.com/1362/.../FoxitReader545.0124_enu_Setup.exe

http://fs40.filehippo.com/8800/.../FoxitReader545.0124_enu_Setup.exe

http://fs13.filehippo.com/2277/.../FoxitReader545.0124_enu_Setup.exe

http://www.foxitsoftware.com/.../latest.php?product=Foxit-Reader

http://fs40.filehippo.com/4243/.../FoxitReader545.0124_enu_Setup.exe

https://mail.google.com/mail/u/.../?ui=2&ik=5d6413f0f6&view=att&th=141685cf93fe862c&attid=0.1&disp=safe&realattid=f_hm620ib90&zw

https://mail-attachment.googleusercontent.com/attachment/u/.../?ui=2&ik=5d6413f0f6&view=att&th=141685cf93fe862c&attid=0.1&disp=safe&realattid=f_hm620ib90&zw&saduie=AG9B_P93Ugppz-HbhQuF79C53nRm&sadet=1380435654429&sads=y5Y2nmzyvsxnG8vD0KZ4JEfhZpg

https://mail-attachment.googleusercontent.com/attachment/u/.../?ui=2&ik=5d6413f0f6&view=att&th=141685cf93fe862c&attid=0.1&disp=safe&realattid=f_hm620ib90&zw&saduie=AG9B_P93Ugppz-HbhQuF79C53nRm&sadet=1380435654429&sads=y5Y2nmzyvsxnG8vD0KZ4JEfhZpg&sadssc=1

http://cdn04.foxitsoftware.com/pub/foxit/reader/desktop/win/5.x/5.4/.../FoxitReader545.0124_enu_Setup.exe

Scan foxit reader en5.4.5.124(toolbar) setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.