home

CloseAll.exe

SpywareDetector

Max Secure Software India Pvt. Ltd.

The application CloseAll.exe, “Max Spyware Detector CloseAll Application” by Max Secure Software India Pvt has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Max Secure Software  (signed by Max Secure Software India Pvt. Ltd.)

Product:
SpywareDetector

Description:
Max Spyware Detector CloseAll Application

Version:
4, 0, 0, 0

MD5:
9b16546459e0e7fb53c5d41d2206049c

SHA-1:
d93228cb340643c0ba6be7db7ba639148d720605

SHA-256:
cdfca991e39d60566667b61c8e093fed772fbee5a28a01b3405a70e9a6a064ac

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/20/2024 5:10:28 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.MaxSecure.Optional (L)
17.1.19.15

File size:
260.9 KB (267,184 bytes)

Product version:
19, 0, 1, 0

Copyright:
(c) Max Secure Software 2009. All rights reserved.

Original file name:
CloseAll.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\spywaredetector\closeall.exe

Digital Signature
Signed by:
Max Secure Software India Pvt. Ltd.

Authority:
GlobalSign nv-sa

Valid from:
7/3/2009 4:19:56 AM

Valid to:
7/4/2010 4:19:50 AM

Subject:
E=tech@maxpcsecure.com, CN=Max Secure Software India Pvt. Ltd., OU=Opertaions, O=Max Secure Software India Pvt. Ltd., L=Pune, S=MH, C=IN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
010000000001224089724D

File PE Metadata
Compilation timestamp:
7/13/2009 8:14:15 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
9.0

Entry address:
0x1B867

Entry point:
E8, F7, B8, 00, 00, E9, A5, FE, FF, FF, 6A, 0C, 68, F0, BC, 43, 00, E8, 1F, 10, 00, 00, 83, 65, E4, 00, 8B, 75, 08, 3B, 35, 84, 33, 44, 00, 77, 22, 6A, 04, E8, 57, 79, 00, 00, 59, 83, 65, FC, 00, 56, E8, 3A, C1, 00, 00, 59, 89, 45, E4, C7, 45, FC, FE, FF, FF, FF, E8, 09, 00, 00, 00, 8B, 45, E4, E8, 2B, 10, 00, 00, C3, 6A, 04, E8, 52, 78, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 83, FE, E0, 0F, 87, A1, 00, 00, 00, 53, 57, 8B, 3D, D8, 20, 43, 00, 83, 3D, 8C, 32, 44, 00, 00, 75, 18, E8, D8, B0, 00...
 
[+]

Entropy:
6.4168

Code size:
194 KB (198,656 bytes)

Remove CloseAll.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.