winsweeper_2014.exe

WinSweeper

Solvusoft Corporation

The application winsweeper_2014.exe, “WinSweeper Setup ” by Solvusoft has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. The program is a setup application that uses the Inno Setup installer. This file is typically installed with the program DriverDoc by Solvusoft Corporation. The file has been seen being downloaded from store.solvusoft.com and multiple other hosts.
Publisher:
Solvusoft Corporation   (signed by Solvusoft Corporation)

Product:
WinSweeper

Description:
WinSweeper Setup

Version:
1.2.61

MD5:
0e0ea3852d0dcf7e249f987e6eb27a2d

SHA-1:
da0379c84e5d2cd2e4cf3d465933b91acb5b152b

SHA-256:
760daa4f470e807a4d52fbe8b7f2380f2e97629160cf445408f0b1ee5653c94b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 12:19:49 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.WinThruster.SolvusoftCorporation.Installer.Meta (L)
15.12.24.9

File size:
1.3 MB (1,331,064 bytes)

Product version:
1.2.61

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\winsweeper_2014.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
7/14/2011 9:00:00 PM

Valid to:
7/13/2013 8:59:59 PM

Subject:
CN=Solvusoft Corporation, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Solvusoft Corporation, L=Las Vegas, S=Nevada, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
4D1E69142E0E559ACB79A2C3EC3AA479

File PE Metadata
Compilation timestamp:
10/30/2010 6:54:54 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:9MjhkCwrn3/Pw4Z03YcPBdEqIevpks6yuSR1iCJSe0Lr0aoQNPX0+:0/KwfxP79IevpkYuSxYe0Lwk

Entry address:
0x16478

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, B0, 52, 41, 00, E8, AC, 03, FF, FF, 33, C0, 55, 68, 45, 6B, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 01, 6B, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 4E, EC, FF, FF, E8, F5, E7, FF, FF, 8D, 55, EC, 33, C0, E8, 7F, 84, FF, FF, 8B, 55, EC, B8, AC, D6, 41, 00, E8, E2, E9, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, AC, D6, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
84 KB (86,016 bytes)

The file winsweeper_2014.exe has been discovered within the following program.

DriverDoc  by Solvusoft Corporation
www.solvusoft.com
About 4% of users remove it
 
Powered by Should I Remove It?

The file winsweeper_2014.exe has been seen being distributed by the following 50 URLs.

https://store.solvusoft.com/order/.../CXbQ==

https://store.solvusoft.com/order/servant.php?sid=2Xrl83Fnk6KOsomnpM/.../FUbQ==

https://store.solvusoft.com/order/.../FxbQ==

https://store.solvusoft.com/order/servant.php?sid=2Xrl83GSn mNunGkpN/.../FUbQ==

https://store.solvusoft.com/order/.../BYbQ==

https://store.solvusoft.com/order/.../GXbQ==

https://store.solvusoft.com/order/.../F5bQ==

https://store.solvusoft.com/order/.../BUbQ==

https://store.solvusoft.com/order/servant.php?sid=2Xrl85iao u0snGkpN/.../GTbQ==

https://store.solvusoft.com/order/.../B9bQ==

https://store.solvusoft.com/order/.../CbbQ==

https://store.solvusoft.com/order/.../CXbQ==

https://store.solvusoft.com/.../servant.php?sid=2Xrl83Gql6ONsoXupK 6ZXKE4YLgcbFt

https://store.solvusoft.com/order/.../BcbQ==

https://store.solvusoft.com/order/.../BUbQ==

https://store.solvusoft.com/order/.../CbbQ==

http://dl.cleverbridge.com/668/.../WinSweeper_2013.exe

https://store.solvusoft.com/order/servant.php?sid=2Xrl85iEk6WOsnHsft/.../FxbQ==

https://store.solvusoft.com/order/servant.php?sid=2Xrl85iEk6KNsnGnfc/.../FpbQ==

https://store.solvusoft.com/order/.../F5bQ==

http://download.solvusoft.com/downloads/.../WinSweeper_2013.exe

https://store.solvusoft.com/order/.../BtbQ==

https://store.solvusoft.com/order/.../F5bQ==

https://store.solvusoft.com/order/.../BcbQ==

https://store.solvusoft.com/order/.../FxbQ==

https://store.solvusoft.com/order/.../FxbQ==

https://store.solvusoft.com/order/.../FlbQ==

https://store.solvusoft.com/order/.../BcbQ==

https://store.solvusoft.com/order/.../F9bQ==

Latest 30 of 74 download URLs

Remove winsweeper_2014.exe - Powered by Reason Core Security