home

setup.exe

Secure PC Cleaner

SYS SECURE PC SOFTWARE LLP

The file setup.exe by SYS SECURE PC SOFTWARE LLP has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The file has been seen being downloaded from securepccleaner.com and multiple other hosts.
Publisher:
www.securepccleaner.com/   (signed by SYS SECURE PC SOFTWARE LLP)

Product:
Secure PC Cleaner

Version:
Secure PC Cleaner

MD5:
90fae4edb4133642bd22e80c56fd71d8

SHA-1:
f6c9debecf51898f1ed2860b60141618673b484e

SHA-256:
e675ffe2e5ad03847335d099e7c09d7e839d0ea26dfd81370e1382ad88a0cbb5

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 5:28:35 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.SecurePCCleaner.SYSSECUR.Installer.Meta (L)
16.6.14.10

File size:
3.9 MB (4,101,464 bytes)

Product version:
4.5

Copyright:
© www.securepccleaner.com/

Language:
Language Neutral

Common path:
C:\users\{user}\appdata\local\microsoft\windows\inetcache\ie\{random}\setup.exe.qb0ywa8.partial

Digital Signature
Signed by:
SYS SECURE PC SOFTWARE LLP

Authority:
Symantec Corporation

Valid from:
2/11/2016 1:00:00 AM

Valid to:
2/11/2017 12:59:59 AM

Subject:
CN=SYS SECURE PC SOFTWARE LLP, O=SYS SECURE PC SOFTWARE LLP, L=Jaipur, S=Rajasthan, C=IN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
26DC4AA5B755C1CF47EF06729B21AB5E

File PE Metadata
Compilation timestamp:
7/16/2015 3:24:20 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:Cpkzz4a4H/QFbDSCNAkz6PUtkSXvD1hP0:2la4H/MSCN5+PUKSfL0

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 34, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 1E, D8, FF, FF, E8, 6D, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 33, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 54, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file setup.exe has been seen being distributed by the following 50 URLs.

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=71630941&context=adkm_3ee810f1-cd8a-4c9d-86ee-23edd4ff8796

http://securepccleaner.com/getip_build_lp.asp?utm_source=1072&utm_campaign=1072&utm_pubid=5007&clickid=AAhuuBhz0wgAA_91pVCT7SwHBOjyQoN8RCRNAwYFwsdOAAAAAAAGAAE&campid=602785

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjM3MSMyMjYjM3w3MTY1fENBfDN8MXx8fHdmeW8xNnZnenk0enw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fHBobWpvZjlyZG9lYXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=70444812&context=adkm_ac12f35e-adb5-467b-a00a-2e90a390488c

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8YTJWNSpaVEEyTnpGa09EaGpaR0poT0RnMU56Vm1OREl3WTJJMU5tSXhPRFpqTVRVfDE0bnRvdzAwMXFsZXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1074&utm_campaign=1074&utm_pubid=136118&clickid=v1_7968497_190378_3o1_838BB192E735191282038600820_-1_4304667_15fpb_536_838BB192E73519127815175361_m_19_-8860803563511813375_794438___2_68_44tm_19&tag=794438&ad_id=4304667

http://securepccleaner.com/getip_build_lp.asp?utm_source=1074&utm_campaign=1074&utm_pubid=136328&clickid=v1_7968367_254567_3pn_7CC044CCE1668830573703813_-1_4302617_15g9j_536_7CC044CCE16688291383786986_m_19_-4265012382582686979_795568___-1_72_4548_19&tag=795568&ad_id=4302617

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8YTJWNSpaVEEyTnpGa09EaGpaR0poT0RnMU56Vm1OREl3WTJJMU5tSXhPRFpqTVRVfDk1Y2lrN2VzYzBocXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=130_7716_727&uniqueid=NDUjMjM0NCMyMjYjNzI3fDcxMTh8SVR8M3wxfDc3MTZ8WTJnKk56Y3hOZ35jekp6Kk1UUTJNVGMxT1RRNU5tMWlNRGM1TmpjeE56STBNamt-YTJWNSpZakE0TkROa05qWXpOall3T0RobFlXRm1NVFk1TTJOaE9XSm1abU0zTXpJfGpsNHdvYmk2N2xnN3w

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=71630941&context=adkm_49b20332-b07f-4941-ad54-8e5f192fc563

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=130_7716_727&uniqueid=NDUjMjUyNCMyMjYjNzI3fDczNDJ8REV8M3wxfDc3MTZ8Y3pKeipNVFEyTWpNNE5qSXhNVzFpTkRZMk1USTBNak01T1RBfGVucDZiMzFqdXJqYnw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1072&utm_campaign=1072&utm_pubid=6379&clickid=ABSXiMhy0wgAA_9ySSQsDvJx0cm-RKZPaQdcGtZSwbGnAAAAAAAHAAE&campid=602776

http://securepccleaner.com/getip_build_lp.asp?utm_source=1056&utm_campaign=1056&subid=73970562&context=adkm_25e49699-b112-4830-bd17-861ce0db3963

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDEwZGp2bHRuMDE3aHw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8YTJWNSpaVEEyTnpGa09EaGpaR0poT0RnMU56Vm1OREl3WTJJMU5tSXhPRFpqTVRVfDF6MTdzMHN0dW82ZXw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1067&utm_campaign=1067&utm_pubid=012220609&subid=012220609035043739485

http://securepccleaner.com/getip_build_lp.asp?utm_source=1029sp&utm_campaign=1029sp&utm_pubid=782643087&utm_subid=270483

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGM5ZDB6cjFjaTV6dnw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fGxzenkzMzV1ajR4bHw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8YTJWNSpaVEEyTnpGa09EaGpaR0poT0RnMU56Vm1OREl3WTJJMU5tSXhPRFpqTVRVfG5kaWZzcTVxdzBoNnw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fHdzNzd4N3lpMW1ta3w

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fDM2YWV1bzh5OTJndnw

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=1__3&uniqueid=NDUjMjEzMyMyMjYjM3w3MTY5fEZSfDN8MXx8fHlkcWZ6MDZwdXc3MHw

http://secure.11-pn-installer.com/o/.../setup.exe

http://software.softwaare.net/d/click/.../?uid=c2xpZD0wJmJyc3I9Mzg0MSZjaXBpZD0xNTA5MDAwJmN1ND03JmNpcmlkPUI2QTk1Q0M2N0YxMTYwMTAxMzgwMDgzMTY2JmNpY21wPTY2OTQ0OCZvc2lkPTUzNSZjaXNpZD1CNkE5NUNDNjdGMTE2MDA5MzE3NzQ0NTE3JmJvPTEmY2l1aWQ9MzUyMTg0Njg4NTQyMjMyOTI1OSZzdWJpZD0xMDUwJm1tdD0tMSZjbnRyeT0yMjcmc289MSZjcmlkPTM1Mzc4NDgmZXhjaWQ9MjImcHViaWQ9OTcwMA== &sid=- &filename=Setup

http://securepccleaner.com/getip_build_lp.asp?utm_source=1067&utm_campaign=1067&utm_pubid=012220609&subid=012220609034944613286

http://securepccleaner.com/getip_build_lp.asp?utm_source=1072&utm_campaign=1072&utm_pubid=6712&clickid=ADrDI1530wgAA_-LF1gIwjgWXpT7SJugn1A40GZ0Q1SsAQAAAAAJAAE&campid=686647

http://securepccleaner.com/getip_build_lp.asp?utm_source=1043&utm_campaign=1043&utm_pubid=130_7716_727&uniqueid=NDUjMjM0NCMyMjYjNzI3fDcxMTh8SVR8M3wxfDc3MTZ8Y3pKeipNVFEyTWpFeE1UY3pPVzFpTWpnd056RTRNelV3T1RRfDExM242eXc1Zm1tN3w

http://securepccleaner.com/getip_build_lp.asp?utm_source=1067&utm_campaign=1067&utm_pubid=012220609&subid=012220609034917435636

Latest 30 of 174 download URLs

Remove setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.