home

SETUPPROCESS

Publisher Information

SETUPPROCESS is a software publisher located in Badalona, Barcelona in Spain*. The company is a primary distributor of unwanted software. SETUPPROCESS run by Firseria/Solimba Aplicaciones S.L. based on Spain is a company that runs various download portals including winportal.com which is designed as a download site that distributes legitimate software, however they use a custom download manager (DownloadMR) to package bundled offers with each installation that include adware, toolbars and various other potential unwanted software.
Authority:
DigiCert Inc

Valid from:
11/26/2013 10:00:00 PM

Valid to:
12/1/2014 10:00:00 AM

Subject:
CN=SETUPPROCESS, O=SETUPPROCESS, L=Badalona, S=Barcelona, C=ES

Issuer:
CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0a8abfc7c80d0c2f0a3a89cf6139a91d

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Solimba (M)
100.00%

1 / 68      (Adware)
autocad.exe (installer manager by ·RapidDown·)  (88d93ba9ca8f02e061715821e8692388)

1 / 68      (Adware)
defraggler.exe (installer manager by ·RapidDown·)  (a31275b2a56796b24fcb010e624086b9)

1 / 68      (Adware)
pdf download.exe (by setup process)  (514ab1253457635462af2490b2bd492e)

1 / 68      (Adware)
skype.exe (by setupprocess)  (4c899c6b2ee09c1c7db82872b938951f)

1 / 68      (Adware)
utorrent.exe (by setupprocess)  (dee16f7ebe58b36832b5c5615056a2e2)

1 / 68      (Adware)
autodesk dwg trueview.exe (by setupprocess)  (42f3214016d936569b910181c1de2607)

1 / 68      (Adware)
mediaget.exe (installation process by SetupProcess SL)  (e72d3cf5ffe5e39c222c4b5730a548ad)

1 / 68      (Adware)
avast! antivirus.exe (by setupprocess)  (cc7119160fce175121a2628b70370c4a)

1 / 68      (Adware)
the sims 2.exe (by setup process)  (f7a4bb7dba7e6ded0404a8d1d3d0a94b)

1 / 68      (Adware)
utorrent.exe (installation process by Setup Process (r))  (bd78a06c72b7f98327689c990f7e4611)

1 / 68      (Adware)
daemon tools.exe (by setupprocess)  (e2f64ecebe1d0c32a831aa84cdb55d52)

1 / 68      (Adware)
super heroes marvel.exe (by setup process)  (031ddb32d413f6027b373012879033dd)

1 / 68      (Adware)
lego batman 2- dc superheroes 1.0.0.exe (by setup process)  (23d22bb13195950334f1514357fa9b2b)

1 / 68      (Adware)
adobe flash player.exe (by setup process)  (422d2acd9c462456cebb46ea91a72c22)

1 / 68      (Adware)
google chrome.exe (by setupprocess)  (a148570f686b076121911b943b4eb06e)

1 / 68      (Adware)
microsoft office 2010.exe (installation process by SetupProcess SL)  (bcf57d614bb494689c7b54b5cc8a0870)

1 / 68      (Adware)
whatsapp pour pc.exe (by setupprocess)  (babae54b3bb984e1a4a8fc1e065848f2)

1 / 68      (Adware)
utorrent.exe (installation process by Setup Process (r))  (5b4391db36a04ec88ed9ddd9ecb97b05)

1 / 68      (Adware)
google earth.exe (installation process by Setup Process (r))  (002efb5549bfb1cf9275edea12bc998f)

1 / 68      (Adware)
setup.exe (installation process by Setup Process (r))  (3f044769754f1f93c71fa9518d27be5b)

1 / 68      (Adware)
atube catcher.exe (installation process by Setup Process (r))  (d3f218cb13e4075ca95b744810a7b224)

1 / 68      (Adware)
microsoft office 2010.exe (installation process by Setup Process (r))  (03c009cc1ec8cdc47980f459349b926a)

1 / 68      (Adware)
utorrent.exe (installation process by Setup Process (r))  (f833bc1d1c460806bd899f1022610f9d)

1 / 68      (Adware)
imgburn.exe (by setup process)  (18e944fae1910a51672f6b3938cd1625)

1 / 68      (Adware)
utorrent.exe (by setupprocess)  (75859badc5fef89e16f9cafa2aa9d4c3)

1 / 68      (Adware)
internet explorer 9.exe (by setup process)  (1716846177d08f71a5479949f8a53df6)

1 / 68      (Adware)
atube catcher.exe (by setupprocess)  (3749f0bde8b01465288c4b3a4c95ac05)

1 / 68      (Adware)
winrar.exe (by setupprocess)  (efa9ec5d3f7cc4be89c01a9143423c39)

1 / 68      (Adware)
flvmplayer.exe (by setupprocess)  (c00c7a436948f762100cfddcc6c72031)

1 / 68      (Adware)
free studio.exe (installation process by SetupProcess SL)  (fa1aa9e48b7ba858cae3a52db2cfad00)

 
Latest 30 of 5,837 files

Downloads URLs for files signed by SETUPPROCESS.

1 / 68      (Adware)
http://www.win-install.com/google-chrome/download/.../305  (google chrome.exe)

1 / 68      (Adware)
http://dl.downloadahsaequouzet.com/n/3.0.30.5/.../WhatsApp pour PC.exe  (babae54b3bb984e1a4a8fc1e065848f2)

1 / 68      (Adware)
http://dl.downloadbeiphuwooxee.com/n/.../uTorrent.exe  (f833bc1d1c460806bd899f1022610f9d)

1 / 68      (Adware)
http://pt.download366.info/atube-catcher/download/.../740  (atube catcher.exe)

1 / 68      (Adware)
http://www.download366.net/free-studio/download/.../246  (free studio.exe)

1 / 68      (Adware)
http://www.download366.info/instagram-downloader/download/.../11127  (instagram downloader.exe)

1 / 68      (Adware)
http://download-new.utorrent.com/endpoint/utorrent/os/windows/track/.../  (utorrent.exe)

1 / 68      (Adware)
http://dl01.fabdmr.com/n/.../J_DOWNLOADER.exe  (e300f45b9ef71f360dc63fbcc710cbdd)

1 / 68      (Adware)
http://dl.downloadahsaequouzet.com/n/.../Virtual DJ.exe  (05beec7ccaa18b3fd396401ab4dc0f47)

The following publishers (by Authenticode signature organization name) are related.

Solimba Aplicaciones S.L.

Apps Installer S.L.

FIRSERIA, S.L.

Firseria

Apps Installer SL

Bechiro S.L.

POPELER SYSTEM, S.L.

Popeler System sl

PortalProgramas

RAPIDDOWN

* Note, the details and description above are based on the code signing digital signature issued to SETUPPROCESS by DigiCert Inc on November 26, 2013 with the serial number '0a8abfc7c80d0c2f0a3a89cf6139a91d'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.