home

schedhlp.exe

Seagate Scheduler Helper

Acronis, Inc

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Seagate Scheduler2 Service’.
Publisher:
Seagate  (signed by Acronis, Inc)

Product:
Seagate Scheduler Helper

Version:
1,0,0,257

MD5:
18fcdad04bf822b23c4de48b6be8c741

SHA-1:
31334cb92f95dcd7ece107420c0cb124be148ac7

SHA-256:
65e73e0182e15c28cb9d65b3b501695bc58f4bb657b8ff2f87c64b841b12b8d9

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 4:34:21 AM UTC  (today)

File size:
133.3 KB (136,544 bytes)

Product version:
1,0,0,257

Copyright:
Copyright (C) 2000-2004 Acronis

Trademarks:
Acronis

Original file name:
schedhlp.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\common files\seagate\schedule2\schedhlp.exe

Digital Signature
Signed by:
Acronis, Inc

Authority:
VeriSign, Inc.

Valid from:
9/3/2009 9:00:00 AM

Valid to:
9/25/2012 8:59:59 AM

Subject:
CN="Acronis, Inc", OU=Headquarter, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Acronis, Inc", L=South San Francisco, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
21E515412EC8F5D9C5E55C1E25F67A3E

File PE Metadata
Compilation timestamp:
11/20/2009 8:19:06 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
3072:bmm50RlZnC0RqhvSC8atHwSIhJre4DP6wxxwlin59u:Os0RCvSSt8hjDP6wf59u

Entry address:
0xA8DD

Entry point:
6A, 18, 68, 90, 6D, 41, 00, E8, 0F, 29, 00, 00, BF, 94, 00, 00, 00, 8B, C7, E8, 5B, 29, 00, 00, 89, 65, E8, 8B, F4, 89, 3E, 56, FF, 15, 04, 51, 41, 00, 8B, 4E, 10, 89, 0D, 34, BF, 41, 00, 8B, 46, 04, A3, 40, BF, 41, 00, 8B, 56, 08, 89, 15, 44, BF, 41, 00, 8B, 76, 0C, 81, E6, FF, 7F, 00, 00, 89, 35, 38, BF, 41, 00, 83, F9, 02, 74, 0C, 81, CE, 00, 80, 00, 00, 89, 35, 38, BF, 41, 00, C1, E0, 08, 03, C2, A3, 3C, BF, 41, 00, 33, FF, 57, FF, 15, CC, 50, 41, 00, 66, 81, 38, 4D, 5A, 75, 1F, 8B, 48, 3C, 03, C8, 81...
 
[+]

Entropy:
6.0541

Developed / compiled with:
Microsoft Visual C++ v7.0

Code size:
80 KB (81,920 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Seagate Scheduler2 Service

Command:
"C:\Program Files\common files\seagate\schedule2\schedhlp.exe"


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.