» onesafe_pc_cleaner.exe
Overview
Analysis
File Details
Downloads (146)

onesafe_pc_cleaner.exe

OneSafe PC Cleaner

AVANQUEST SOFTWARE

The program is a setup application that uses the Inno Setup installer. The file has been seen being downloaded from webtools.avanquest.com and multiple other hosts.

File name:

Publisher:

AVANQUEST SOFTWARE (signed and verified)

Product:

OneSafe PC Cleaner

Version:

4.1

MD5:

e418b0fd342639b87a09f1c0c1124680

SHA-1:

fc699815de9397661b97e5d2790b63b6be56b640

SHA-256:

3124b4a877c06e2e551d1e8af127a9d68e4b1179ad367f86e296b677302d3c88

Scanner detections:

3 / 68

Status:

Clean (3 probable false positive detections)

Explanation:

These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:

11/23/2024 10:29:49 AM UTC (today)

Scan engine

Detection

Engine version

Dr.Web

riskware program Program.Unwanted.611

9.0.1.05190

ESET NOD32

Win32/Adware.SpeedingUpMyPC.AU application

8.0.319.0

F-Secure

Trojan.GenericKD.3300776

5.15.96

File size:

1.9 MB (1,990,016 bytes)

Product version:

4.1

File type:

Executable application (Win32 EXE)

Installer:

Inno Setup

Language:

Language Neutral

Common path:

C:\users\{user}\downloads\programs\onesafe_pc_cleaner.exe

Digital Signature

Signed by:

AVANQUEST SOFTWARE

Authority:

Symantec Corporation

Valid from:

2/13/2015 2:00:00 AM

Valid to:

3/7/2017 1:59:59 AM

Subject:

CN=AVANQUEST SOFTWARE, O=AVANQUEST SOFTWARE, L=Paris, S=Ile de France, C=FR

Issuer:

CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

6720EB953FB3B3DD5351FF987A4D7CD7

File PE Metadata

Compilation timestamp:

6/20/1992 12:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

49152:fahzYNtLwPl0k97H+pxaOxhyZZLhmUoMOYDoJYiSWSSinXBg2:iZYNtK0k1H+pxPhQkUZ3DovyRg2

Entry address:

0x9C40

Entry point:

55, 8B, EC, 83, C4, C4, 53, 56, 57, 33, C0, 89, 45, F0, 89, 45, DC, E8, 86, 94, FF, FF, E8, 8D, A6, FF, FF, E8, 1C, A9, FF, FF, E8, 53, C9, FF, FF, E8, 9A, C9, FF, FF, E8, C9, F2, FF, FF, E8, 30, F4, FF, FF, 33, C0, 55, 68, FC, A2, 40, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, C5, A2, 40, 00, 64, FF, 32, 64, 89, 22, A1, 14, C0, 40, 00, E8, 96, FE, FF, FF, E8, C9, FA, FF, FF, 8D, 55, F0, 33, C0, E8, 83, CF, FF, FF, 8B, 55, F0, B8, E8, CD, 40, 00, E8, 32, 95, FF, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, CD... 
[+]

Entropy:

7.9939

Packer / compiler:

Inno Setup v5.x - Installer Maker

Code size:

37 KB (37,888 bytes)

The file onesafe_pc_cleaner.exe has been seen being distributed by the following 50 URLs.

http://webtools.avanquest.com/download.cfm?filter=1163867_4199707_136118_794458_Apr 08, 2016&tracking=4199707&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190378_3o1_E51289133514383521946391035_-1_4199707_13gir_533_E5128913351438351887880899_m_19_-3677862989115169643_794458___2_h_44tm_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=899247&tracking=4199747&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_250027_3o1_BA8AE4DDCF6657012114689794_-1_4199747_13gir_533_BA8AE4DDCF6657011352802298_m_19_-3347150084170641474_899247___0_71_4oa9_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=908017&tracking=4199687&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_260667_3o1_C47F2DE8C6870580812009455_-1_4199687_13gir_533_C47F2DE8C68705791624000098_m_19_-3681477954879376870_908017___2_1b_4pk5_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=26381&tracking=AQ_CA_PP_AFD_OSPCC&keyword=EN_LP1&campaignID=AFD2&mrmid=&clickid=AFSRQ_Os0wgAA_-G_ao5uvLXNQ7cQLz3MigE1YApsJ9EBgAAAAAEAAE&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=897227&tracking=4199757&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_206488_3o1_A695BD56A8144903454543442_-1_4199757_13gir_533_A695BD56A814490331962886670_m_19_-2100990433750928858_897227___0_48_4bp2_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=810658&tracking=4199767&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_198338_3o1_78D0B6F85313011444388449_-1_4199767_13gir_535_78D0B6F8531301131769285362_m_19_1859593835639899618_810658___2_1b_48d8_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=901587&tracking=4199687&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_207588_3o1_B260406FD8290661705362158_-1_4199687_13gir_533_B260406FD829065232951269_m_19_8278310346804190078_901587___2_2v_4c4k_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=902577&tracking=4287897&keyword=1212237&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_256877_3pn_A562DE781819779071253768_-1_4287897_14vqd_533_A562DE7818197789152591871_m_19_-3411401725029454321_902577___0_6k_4pdt_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=907297&tracking=4199757&keyword=1231547&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_260127_3o1_62D3C8D6F441273461250681473_-1_4199757_15ilr_533_62D3C8D6F441273451391889424_m_19_113032042841091379_907297___2_1v_4q27_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=906177&tracking=4294187&keyword=1219267&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190438_3o1_193F7A8E1916563821558139442_-1_4294187_156m3_535_193F7A8E191656381991563769_m_19_-2908222670439261751_906177___2_3v_3qka_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=907297&tracking=4199757&keyword=1231547&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_260127_3o1_6F2AEDD9734406562759760528_-1_4199757_15ilr_533_6F2AEDD9734406561796244095_m_19_-2915161715180779236_907297___2_37_4q27_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=907297&tracking=4199757&keyword=1231547&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_260127_3o1_BB244CBEF16283581712676185_-1_4199757_15ilr_534_BB244CBEF16283572025761649_m_19_2280483051373517938_907297___2_f_4q27_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=810388&tracking=4282377&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_198338_3pn_E1EA3968B3559041650997746_-1_4282377_13gir_533_E1EA3968B3559032109798897_m_19_-2503300916090137225_810388___2_1b_48d8_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=907297&tracking=4199757&keyword=1231547&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_260127_3o1_1883FEC7BE51359121262047378_-1_4199757_15ilr_535_1883FEC7BE513591117050091_m_19_-1562620861035823503_907297___2_51_4q27_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=810388&tracking=4282377&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_198338_3pn_62BDBCA2F7400828114869012_-1_4282377_13gir_535_62BDBCA2F7400827520276930_m_19_-6443805106953478099_810388___2_70_48d8_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=794448&tracking=4199747&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190378_3pn_53556A93A3302816278836211_-1_4199747_13gir_533_53556A93A330281611445181587_m_19_6483383159222053747_794448___2_0_44tm_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=825408&tracking=4199747&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_206628_3o1_C78D34384351112721058028803_-1_4199747_13gir_533_C78D3438435111271982507511_m_19_-4860757866397201277_825408___0_0_4bpc_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=906177&tracking=4294187&keyword=1219267&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190438_3pn_3C7010471B11235641540844213_-1_4294187_156m3_533_3C7010471B11235631392966617_m_19_-5557282602009949576_906177___2_0_3qka_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=906177&tracking=4199767&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190438_3o1_CBE289A4255062930145383072_-1_4199767_13gir_533_CBE289A42550629291352212690_m_19_9009069896940217345_906177___0_4e_3qka_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=857487&tracking=4199767&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_224557_3o1_29D043E899114758622044902548_-1_4199767_13gir_533_29D043E899114758611323794950_m_19_-1514606372725017494_857487___0_5f_4hej_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=874097&tracking=4199667&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_235647_3o1_4E98D5B7958601944658348_-1_4199667_13gir_535_4E98D5B7958591499810842_m_19_-1871443339320828673_874097___2_1o_4kv3_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=70259&tracking=AQ_CA_PP_AFD_OSPCC&keyword=EN_LP1&campaignID=AFD2&mrmid=&clickid=ALJf74iZ0wgAA_-LF1mDF2xNmfTeTrZCu_Nd9eWYdC1NAAAAAAAIAAE&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=872197&tracking=4161307&keyword=EN_LP1&campaignID=VEL-CVM&mrmid=&clickid=v1_7922128_234637_3o1_156DE23CE7195432538920875254_-1_4161307_12vt3_533_156DE23CE71954325371376492207_m_19_-6382843253273976579_872197___-1_k_46mi_19_&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=906177&tracking=4294187&keyword=1219267&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190438_3pn_EE937BD1F16264761358804713_-1_4294187_156m3_522_EE937BD1F16264751469761917_m_19_6401285887313034293_906177___2_3s_3qka_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=906177&tracking=4199767&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190438_3o1_286743DDF238912225169286_-1_4199767_13gir_533_286743DDF2389121456247303_m_19_-8078947955597313576_906177___0_0_3qka_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=794438&tracking=4199697&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_190378_3o1_F3D5E35A613478002016193715_-1_4199697_13gir_533_F3D5E35A613477991928631006_m_19_-8155258872477105558_794438___2_0_44tm_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=899247&tracking=4199737&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_250027_3o1_F368D912F919853821232134918_-1_4199737_13gir_535_F368D912F91985381125689680_m_19_-1300821921801193156_899247___2_4j_4oa9_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=899247&tracking=4199747&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_250027_3o1_1EA09FCFA64005282485449844_-1_4199747_13gir_533_1EA09FCFA64005281265596994_m_19_-8207951965978358080_899247___2_2s_4oa9_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?filter=853367&tracking=4199747&keyword=1163867&campaignID=VEL-CVM&mrmid=&clickid=v1_7956107_206798_3pa_1DEFFFAB762857556801451474_-1_4199747_13gir_533_1DEFFFAB7628575551904114050_m_19_6928828612300139127_853367___2_5f_4bri_19&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

http://webtools.avanquest.com/download.cfm?tracking=AQ_CA_EN_PP_FB_OSPCC&keyword=Jeune_Vendeur&campaignID=FB&clickid=&filter=page1&go=http://cdn.onesafe-software.com/OneSafe_PC_Cleaner/.../OneSafe_PC_Cleaner.exe

Latest 30 of 146 download URLs

Scan onesafe_pc_cleaner.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.