home

setup_toolwizcare.exe

ToolWiz Care

Igloo systems Inc.

This is a setup program which is used to install the application. This is installed with Toolwiz Care. The file has been seen being downloaded from doc-04-94-docs.googleusercontent.com and multiple other hosts.
Publisher:
ToolWiz  (signed by Igloo systems Inc.)

Product:
ToolWiz Care

Version:
4.0.0.1200

MD5:
bc9f0735d065fbdc75aacb60cb047535

SHA-1:
8421a420d7fd000279f9fc43d7f8c41cf9d976bd

SHA-256:
dfa358dbd12a429ed11e955a36b5a861b4bc60d7ab7b078f6a2f3957dbc03d5c

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/29/2024 7:36:42 AM UTC  (today)

File size:
7.2 MB (7,524,184 bytes)

Product version:
4.0

Copyright:
Copyright(c) 2016 by ToolWiz.com

Trademarks:
ToolWiz

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\setup_toolwizcare.exe

Digital Signature
Signed by:
Igloo systems Inc.

Authority:
Symantec Corporation

Valid from:
1/5/2016 3:00:00 AM

Valid to:
1/5/2017 2:59:59 AM

Subject:
CN=Igloo systems Inc., O=Igloo systems Inc., L=Namyangju-si, S=Gyeonggi-do, C=KR

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
676EC2A34B70B332C4A74A7FB2E3A606

File PE Metadata
Compilation timestamp:
6/20/1992 1:22:17 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:i6/GTwTWfau/dQbPvGDgVtc+OBI59vgmGwMvoJfdGHmgwUXm3SYtvWen6MQ5o6md:itFd8vOUmwwJmgwUXm3SKe0+Zhz6kNWx

Entry address:
0xF99001

Entry point:
60, E9, 3D, 04, 00, 00, 37, 68, C2, A0, DF, A7, C6, 1B, EF, 75, 82, A0, DC, 91, ED, 3D, 0F, 73, 82, A0, 5C, F1, 3A, E9, 9B, 4C, C6, 29, 42, B0, 8F, E4, DF, 43, 43, C6, DC, 4C, C6, 67, 5A, 7F, FF, E4, DF, 4C, C6, A0, DF, C1, 43, A4, 95, 08, C6, F0, 20, D9, C6, EB, 9B, 4C, 4F, 25, DF, 06, 82, A0, 54, B4, 4B, 3D, CE, 06, 82, A0, 8C, 1C, 39, 35, 23, 06, 82, A0, 56, C9, 3A, 9F, 9B, 4C, 4B, 3D, C1, 06, 82, A0, 8C, 1B, 39, 35, 23, 06, 82, A0, 56, C9, C6, E0, 9B, 4C, 4B, 25, 6A, 75, 82, A0, 20, AC, 86, CB, CA, 4C...
 
[+]

Packer / compiler:
ASPack v2.11

Code size:
1.3 MB (1,400,832 bytes)

The file setup_toolwizcare.exe has been discovered within the following program.

Toolwiz Care  by ToolWiz
Publisher's description - “ToolWiz Care is a set of free-of-charge tools designed to speed up your PC and give your system a full range of care.”
www.Toolwiz.com
4% remove it
 
Powered by Should I Remove It?

The file setup_toolwizcare.exe has been seen being distributed by the following 4 URLs.

https://doc-04-94-docs.googleusercontent.com/docs/securesc/39n2kqrvf4nob4ba4bd7abs52l2um3qf/3qkh8mlhtjvd8g3fd6drjekiko9qg991/1476777600000/.../17947385437032820363/0B4MsJWAftTTfY1hORU94dFQyRDg?e=download

http://www.toolwiz.com/.../Setup_ToolwizCare.exe

http://mirrorf.donmare.net/b5/6/1/.../Setup_ToolwizCare.exe

http://www.softportal.com/getsoft-23797-toolwiz-care-2.html

Scan setup_toolwizcare.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.