» PureLeadsControl.exe
Overview
Analysis
File Details
Programs (1)

PureLeadsControl.exe

Sendori, LLC

This is part of the Sendori web browser toolbar and extension that will modify the browser's default search provider, DNS, and home page functions. The application PureLeadsControl.exe, “PureLeads Elevated Service Controller” by Sendori has been detected as adware by 13 anti-malware scanners. This file is typically installed with the program PureLeads by Sendori, LLC which is a potentially unwanted software program.

File name:

Publisher:

PureLeads (signed by Sendori, LLC)

Product:

PureLeads

Description:

PureLeads Elevated Service Controller

Version:

2.0.18

MD5:

4d5bb0728df5903e50e03a769b0277c5

SHA-1:

529fb8d442c6611393eec414b0d68e512fdc693a

SHA-256:

ae196ff2f79b39fcb0846502bb8cd5933bf225c722393da9ff7aa6797ef6f29d

Scanner detections:

13 / 68

Status:

Adware

Analysis date:

4/25/2024 10:34:57 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Sendori.E

939

Agnitum Outpost

PUA.Sendori

7.1.1

Avira AntiVirus

Adware/Sendori.E.20

7.11.157.204

Bitdefender

Adware.Sendori.E

1.0.20.960

Emsisoft Anti-Malware

Adware.Sendori

8.14.07.11.06

ESET NOD32

Win32/AdWare.Sendori (variant)

8.10023

F-Secure

Adware.Sendori.E

11.2014-11-07_6

G Data

Adware.Sendori

14.7.24

IKARUS anti.virus

AdWare.Sendori

t3scan.1.6.1.0

MicroWorld eScan

Adware.Sendori.E

15.0.0.576

nProtect

Adware.Sendori.E

14.06.30.01

Reason Heuristics

Adware.Sendori.PureLeads (M)

16.3.17.14

VIPRE Antivirus

Trojan.Win32.Generic

30820

File size:

42.3 KB (43,296 bytes)

Product version:

2.0.18

Trademarks:

Dyn (sm)

Original file name:

PureLeadsControl.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\pureleads\pureleadscontrol.exe

Digital Signature

Signed by:

Sendori, LLC

Authority:

VeriSign, Inc.

Valid from:

12/9/2013 7:00:00 PM

Valid to:

12/10/2014 6:59:59 PM

Subject:

CN="Sendori, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Sendori, LLC", L=Oakland, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

310642A25A6D9FB4A7E88E32D87A345F

File PE Metadata

Compilation timestamp:

6/27/2014 2:25:57 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

768:zgJak1SmV9AhV/vow1gDcCEDmXnum8ycs/DLX:zjk7uV3v16DpX

Entry address:

0x129B

Entry point:

E8, FF, 18, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 58, 9C, 40, 00, 89, 0D, 54, 9C, 40, 00, 89, 15, 50, 9C, 40, 00, 89, 1D, 4C, 9C, 40, 00, 89, 35, 48, 9C, 40, 00, 89, 3D, 44, 9C, 40, 00, 66, 8C, 15, 70, 9C, 40, 00, 66, 8C, 0D, 64, 9C, 40, 00, 66, 8C, 1D, 40, 9C, 40, 00, 66, 8C, 05, 3C, 9C, 40, 00, 66, 8C, 25, 38, 9C, 40, 00, 66, 8C, 2D, 34, 9C, 40, 00, 9C, 8F, 05, 68, 9C, 40, 00, 8B, 45, 00, A3, 5C, 9C, 40, 00, 8B, 45, 04, A3, 60, 9C, 40, 00, 8D, 45, 08, A3, 6C, 9C, 40... 
[+]

Entropy:

6.2343

Code size:

19.5 KB (19,968 bytes)

The file PureLeadsControl.exe has been discovered within the following program.

PureLeads by Sendori, LLC

This adware program injects advertisements with its affiliate ad providers in order to serve a number of ad types including banner, inline text links and popups.

pureleads.com

72% remove it

Remove PureLeadsControl.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.