pccleaners.exe

PC Cleaners

PC Cleaners Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘PC Cleaners’.
Publisher:
PC Cleaners Inc.  (signed and verified)

Product:
PC Cleaners

Description:
PC Cleaner

Version:
10.0.0.0

MD5:
3e5db759229a2bc97e638415364f38e2

SHA-1:
0007eafd1ad70687db13d659fff8ad79e2cbee43

SHA-256:
a238690cb9ce77e0ca132bfef9957eaa183b1e2570383ceaa1a5fd51e8b0a8fe

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 11:54:58 AM UTC  (today)

File size:
44.8 MB (46,928,656 bytes)

Product version:
10.0.0.0

Copyright:
(c) PC Cleaners Inc. All rights reserved.

Original file name:
PCGUI.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\pc cleaners\pccleaners.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
5/9/2011 5:00:00 PM

Valid to:
1/26/2012 3:59:59 PM

Subject:
CN=PC Cleaners Inc., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=PC Cleaners Inc., L=Newport Beach, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
440A97C2F8BE34654CDD9D1ADCF81D64

File PE Metadata
Compilation timestamp:
10/7/2011 10:22:25 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:23qLjVljXB+gdqct3xxMjiyOvpHpUjCfOLd6lHiQ7SvYAy/8jxklf:23afq8xx3NpmLQugGY

Entry address:
0x7DF7E

Entry point:
E8, B8, 70, 00, 00, E9, 79, FE, FF, FF, 3B, 0D, 30, 68, 4E, 00, 75, 02, F3, C3, E9, 3A, 71, 00, 00, 8B, FF, 55, 8B, EC, 56, 8B, 75, 14, 57, 33, FF, 3B, F7, 75, 04, 33, C0, EB, 65, 39, 7D, 08, 75, 1B, E8, B8, 2D, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57, 57, E8, 4B, 14, 00, 00, 83, C4, 14, 8B, C6, EB, 45, 39, 7D, 10, 74, 16, 39, 75, 0C, 72, 11, 56, FF, 75, 10, FF, 75, 08, E8, 9F, 1E, 00, 00, 83, C4, 0C, EB, C1, FF, 75, 0C, 57, FF, 75, 08, E8, 0E, 1D, 00, 00, 83, C4, 0C, 39, 7D, 10, 74, B6, 39, 75, 0C, 73...
 
[+]

Entropy:
2.3997

Code size:
715 KB (732,160 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
PC Cleaners

Command:
"C:\Program Files\pc cleaners\pccleaners.exe" \minimize


Scan pccleaners.exe - Powered by Reason Core Security