» PureLeadsControl.exe
Overview
Analysis
File Details
Programs (1)

PureLeadsControl.exe

Sendori, LLC

This is part of the Sendori web browser toolbar and extension that will modify the browser's default search provider, DNS, and home page functions. The application PureLeadsControl.exe, “PureLeads Elevated Service Controller” by Sendori has been detected as adware by 13 anti-malware scanners. This file is typically installed with the program PureLeads by Sendori, LLC which is a potentially unwanted software program.

File name:

Publisher:

PureLeads (signed by Sendori, LLC)

Product:

PureLeads

Description:

PureLeads Elevated Service Controller

Version:

2.0.17

MD5:

8fc73242b60ab66695832d17e2acf663

SHA-1:

64bbd9350bb37656a8f86adf6dd600eb3b81bc96

SHA-256:

0087e113256dbc08733c22459179c464ab53287ddb42b3cb801b6e4cf8ecd411

Scanner detections:

13 / 68

Status:

Adware

Analysis date:

4/20/2024 2:22:59 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Sendori.E

857

Agnitum Outpost

PUA.Sendori

7.1.1

Avira AntiVirus

Adware/Sendori.E.20

7.11.157.204

Bitdefender

Adware.Sendori.E

1.0.20.1370

Emsisoft Anti-Malware

Adware.Sendori

8.14.10.01.12

ESET NOD32

Win32/AdWare.Sendori (variant)

8.10023

F-Secure

Adware.Sendori.E

11.2014-01-10_4

G Data

Adware.Sendori

14.10.24

IKARUS anti.virus

AdWare.Sendori

t3scan.1.6.1.0

MicroWorld eScan

Adware.Sendori.E

15.0.0.822

nProtect

Adware.Sendori.E

14.06.30.01

Reason Heuristics

Adware.Sendori.PureLeads (M)

16.3.17.14

VIPRE Antivirus

Trojan.Win32.Generic

30820

File size:

42.3 KB (43,296 bytes)

Product version:

2.0.17

Trademarks:

Dyn (sm)

Original file name:

PureLeadsControl.exe

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\pureleads\pureleadscontrol.exe

Digital Signature

Signed by:

Sendori, LLC

Authority:

VeriSign, Inc.

Valid from:

12/9/2013 7:00:00 PM

Valid to:

12/10/2014 6:59:59 PM

Subject:

CN="Sendori, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Sendori, LLC", L=Oakland, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

310642A25A6D9FB4A7E88E32D87A345F

File PE Metadata

Compilation timestamp:

1/23/2014 2:15:31 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

768:cgJak1SmV9AhV/vow1gDcCEDmXnum8ycxaxLE8yKf:cjk7uV3v16DUDR4

Entry address:

0x129B

Entry point:

E8, FF, 18, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 58, 9C, 40, 00, 89, 0D, 54, 9C, 40, 00, 89, 15, 50, 9C, 40, 00, 89, 1D, 4C, 9C, 40, 00, 89, 35, 48, 9C, 40, 00, 89, 3D, 44, 9C, 40, 00, 66, 8C, 15, 70, 9C, 40, 00, 66, 8C, 0D, 64, 9C, 40, 00, 66, 8C, 1D, 40, 9C, 40, 00, 66, 8C, 05, 3C, 9C, 40, 00, 66, 8C, 25, 38, 9C, 40, 00, 66, 8C, 2D, 34, 9C, 40, 00, 9C, 8F, 05, 68, 9C, 40, 00, 8B, 45, 00, A3, 5C, 9C, 40, 00, 8B, 45, 04, A3, 60, 9C, 40, 00, 8D, 45, 08, A3, 6C, 9C, 40... 
[+]

Entropy:

6.2342

Code size:

19.5 KB (19,968 bytes)

The file PureLeadsControl.exe has been discovered within the following program.

PureLeads by Sendori, LLC

This adware program injects advertisements with its affiliate ad providers in order to serve a number of ad types including banner, inline text links and popups.

pureleads.com

72% remove it

Remove PureLeadsControl.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.