home

scudownloader.exe

System Checkup

iolo technologies, LLC

This is a setup program which is used to install the application. This file is installed with the program System Checkup 3.5. The file has been seen being downloaded from download.iolo.net and multiple other hosts.
Publisher:
iolo technologies, LLC  (signed and verified)

Product:
System Checkup®

Version:
3.5.1.33

MD5:
e16bb304fe4c780adc87dd61be0d6bd6

SHA-1:
b02eafedececb2ac722f7c13988274509274073c

SHA-256:
967eac507b7372d0a6f2ff163145ee9fb0d28ab796416455a5d869058f10e306

Scanner detections:
5 / 68

Status:
Clean  (5 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 7:19:04 AM UTC  (today)

Scan engine
Detection
Engine version

AVG
iolo technologies
2015.0.3352

Dr.Web
BackDoor.IRC.Sdbot.18152
9.0.1.0257

Emsisoft Anti-Malware
Android.Trojan.GingerMaster.CA
8.14.09.14.10

Trend Micro House Call
TROJ_GEN.F47V0727
7.2.257

XVirus List
Win.Detected
2.3.31

File size:
7.2 MB (7,497,800 bytes)

Product version:
3.5.1.33

Copyright:
Copyright 1998-2014 iolo technologies, LLC. All rights reserved.

Trademarks:
System Checkup is a registered trademark of iolo technologies, LLC

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\scudownloader.exe

Digital Signature
Signed by:
iolo technologies, LLC

Authority:
VeriSign, Inc.

Valid from:
9/30/2012 9:00:00 PM

Valid to:
10/6/2015 8:59:59 PM

Subject:
CN="iolo technologies, LLC", OU=internet sales, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="iolo technologies, LLC", L=Los Angeles, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6C21770045938D8E872B30E91043E82B

File PE Metadata
Compilation timestamp:
3/10/2014 4:18:32 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:/AIPL7mgMUbvg08+P0lApk5FIL1rVi7mFi8WtF:4IPiwgf+P0ugF2EXz

Entry address:
0xA9F001

Entry point:
60, E8, 03, 00, 00, 00, E9, EB, 04, 5D, 45, 55, C3, E8, 01, 00, 00, 00, EB, 5D, BB, ED, FF, FF, FF, 03, DD, 81, EB, 00, F0, A9, 00, 83, BD, 88, 04, 00, 00, 00, 89, 9D, 88, 04, 00, 00, 0F, 85, CB, 03, 00, 00, 8D, 85, 94, 04, 00, 00, 50, FF, 95, A9, 0F, 00, 00, 89, 85, 8C, 04, 00, 00, 8B, F0, 8D, 7D, 51, 57, 56, FF, 95, A5, 0F, 00, 00, AB, B0, 00, AE, 75, FD, 38, 07, 75, EE, 8D, 45, 7A, FF, E0, 56, 69, 72, 74, 75, 61, 6C, 41, 6C, 6C, 6F, 63, 00, 56, 69, 72, 74, 75, 61, 6C, 46, 72, 65, 65, 00, 56, 69, 72, 74...
 
[+]

Packer / compiler:
ASPack v2.12

Code size:
3.4 MB (3,588,608 bytes)

The file scudownloader.exe has been discovered within the following program.

System Checkup 3.5  by iolo technologies, LLC
Publisher's description - “In just minutes you’ll know exactly what is slowing your computer down. You’ll get a customized report detailing all your computer’s errors plus how to fix them!”
www.iolo.com
47% remove it
 
Powered by Should I Remove It?

The file scudownloader.exe has been seen being distributed by the following 4 URLs.

http://download.iolo.net/scu/3/partners/.../SCUDownloader.exe

http://www.emjcd.com/pi105js0-K/sz3/HHGGMMPH/HNGHOPM/G/LNJPGIKKGHPNLMGHOI/NHMPLNLtJJMvHHuKOGGqOKOvMPOKGvOJ?q=z<w38!GPHz-C3SOw7K-8CC3-DD46GCJQ<1DD9://GGG.3x8A8wI.w86:SK/w52w4-LRKLSTQ-LLKKQQTL<<a<1DD9://.../By68Fy-C9IGuBy<

http://cj.dotomi.com/ci108r098R/07C/QQPPVVYQ/QWPQXYV/P/P/P?c=l<<s440://777.uoz1zn9.nzx:JB/nwtnv-CIBCJKH-CCBBHHKC<<R<s440://.../2pxz6p-3097l2p<

http://www.jdoqocy.com/click-1701896-11006691

Scan scudownloader.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.