home

W32Setup

Publisher Information

W32Setup is a software publisher located in Tel-Aviv, Israel*. The company is a primary distributor of unwanted software.
Authority:
COMODO CA Limited

Valid from:
4/27/2014 9:00:00 PM

Valid to:
4/28/2015 8:59:59 PM

Subject:
CN=W32Setup, O=W32Setup, STREET=28 Lenelblome St., L=Tel-Aviv, S=Israel, PostalCode=651307, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00d6d42503aa8b6ea0ecbaef215fa32dca

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.installCore (M)
100.00%

1 / 68      (Adware)
vendas-manager-gestao-de-lojas-e-controle-de-estoque-80-freeware-gerenciador-32-bits.exe  (f58d9e217b2a5393aa27672b55662148)

1 / 68      (Adware)
adm-estoque-440-gerenciador-32-bits.exe  (511c9375179c191aaea56b8359185b7c)

1 / 68      (Adware)
pdf-creator-20-gerenciador-32-bits.exe  (1c000195a7b703df0af1438cac9e3070)

1 / 68      (Adware)
vlc-media-player-213-gerenciador-32-bits.exe  (d06d91b3935896760b73ac38b80fb0ff)

1 / 68      (Adware)
resident evil 2 - dual shock edition ntsc (u).exe  (4e2114d175d204988bfa870c5cdfaaa7)

1 / 68      (Adware)
vlc_media_player_he.exe  (a07c05c5ee64fe9f6a3cbdaf4a7b3074)

1 / 68      (Adware)
icreinstall_emissor-de-nota-promissoria-e-recibos-30-gerenciador-32-bits.exe  (2d9b7dfd0feb8d295c7e54d68fcb0495)

1 / 68      (Adware)
adobe_photoshop_he.exe  (ca0413a3020c6388b8b63ef19e3dca41)

1 / 68      (Adware)
windows-7-language-pack-portugues-brasileiro-pt-br--gerenciador-32-bits.exe  (1b321d1edf3dbc18547fc03766e63eef)

1 / 68      (Adware)
adobe_photoshop_ar.exe  (de44d0ae6e72a466726e35d9509070fd)

1 / 68      (Adware)
tecnobyte-agenda-27-gerenciador-32-bits.exe  (caa8bacf23a61a9a38394b18068b30e7)

1 / 68      (Adware)
microsoft_powerpoint_el.exe  (2a0344d0eba137ad3993b5867b89197f)

1 / 68      (Adware)
free_sound_recorder_el.exe  (103ad7f0868cdbd6ba10539054da0a3e)

1 / 68      (Adware)
fl_studio_el.exe  (6a522786d6f1907b2d92ee38430c49ef)

1 / 68      (Adware)
utorrent_en.exe  (f7c469ca31441aaa65d95408f24cfed2)

1 / 68      (Adware)
advanced_ip_scanner_id.exe  (6a03510aa6660e229d9a9f24217854c7)

1 / 68      (Adware)
winrar.exe  (2524911eecb84081ed20f2e3afeeebb6)

1 / 68      (Adware)
winrar.exe  (b518626821e299aa454a7a9c5bbf3690)

1 / 68      (Adware)
windows_live_messenger_ar.exe  (de0cb016b8481dc0190fef6380f4af70)

1 / 68      (Adware)
microsoft_word_ar.exe  (98a7abe900bb1c9ef5ad09391b8aacf5)

1 / 68      (Adware)
microsoft_office_ar.exe  (64f40379f0f34b4634f30a1cd529dea9)

1 / 68      (Adware)
itunes_it.exe  (5e28965d75490eb6c7a1df10da8ba638)

1 / 68      (Adware)
skype_ar.exe  (435c64ea4761e56f8587a9dc02f4b21b)

1 / 68      (Adware)
hitman-pro-379214-gerenciador-32-bits.exe  (75447bf7a28d8709b2607199ff4bef59)

1 / 68      (Adware)
media-player-classic-6490-gerenciador-32-bits.exe  (ea43f62177b04c2349a8be69ac8208d1)

1 / 68      (Adware)
cdburnerxp-4534746-gerenciador-32-bits.exe  (014a9b9197e27dd776231d399f11b327)

1 / 68      (Adware)
proshow-producer-603397-gerenciador-32-bits.exe  (b40eacb3d47ff9a54afea1e159425d87)

1 / 68      (Adware)
icreinstall_google_chrome_id.exe  (b90a82eceeddb1e710276b4d3c08ada0)

1 / 68      (Adware)
spotflux_ar.exe  (95f11e088941bdeda5fd3d9df3d53e0a)

1 / 68      (Adware)
microsoft_excel_en.exe  (cfeaea5920488dd55139a4f3300e589b)

 
Latest 30 of 263 files

Downloads URLs for files signed by W32Setup.

1 / 68      (Adware)
http://esd.superdownloads.com.br/programas/6681/.../media-player-classic-6490-gerenciador-32-bits.exe  (ea43f62177b04c2349a8be69ac8208d1)

1 / 68      (Adware)
http://api.downloadastro.com/api/downloader/.../el?callback=jsonpCallbackDownload&_=1399383638  (microsoft_powerpoint_el.exe)

1 / 68      (Adware)
http://api.downloadastro.com/api/downloader/.../ar?callback=jsonpCallbackDownload&_=1399139942  (windows_live_messenger_ar.exe)

1 / 68      (Adware)
http://api.downloadastro.com/api/downloader/.../it?callback=jsonpCallbackDownload&_=1399395225  (itunes_it.exe)

* Note, the details and description above are based on the code signing digital signature issued to W32Setup by COMODO CA Limited on April 27, 2014 with the serial number '00d6d42503aa8b6ea0ecbaef215fa32dca'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.