pcftray.exe

Baidu PC Faster

Baidu Online Network Technology (Beijing) Co.,Ltd.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Baidu PC Faster 5.1.0.0’.
Publisher:
Baidu, Inc.  (signed by Baidu Online Network Technology (Beijing) Co.,Ltd.)

Product:
Baidu PC Faster

Description:
PC Faster Tray

Version:
5,1,3,126471

MD5:
3a0aeebcf5ef432edcdd2591f29e3371

SHA-1:
2bf9b2bd22610800ba15c7f906d0cc402aa855de

SHA-256:
bab48157cccb0257a2e006788823b6b3176a4a4babf3f8e6cadb681b85edfe75

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/23/2024 6:34:10 AM UTC  (today)

File size:
2.2 MB (2,333,152 bytes)

Product version:
5,1,3,126471

Copyright:
Copyright (C) 2015 Baidu, Inc. All rights reserved.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\pc faster\5.1.0.0\pcftray.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
3/25/2015 1:00:00 AM

Valid to:
3/26/2016 12:59:59 AM

Subject:
CN="Baidu Online Network Technology (Beijing) Co.,Ltd.", OU=Baidu security, O="Baidu Online Network Technology (Beijing) Co.,Ltd.", L=Beijing, S=Beijing, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5FAEE9E83F32948F3B2040AC6DF0145C

File PE Metadata
Compilation timestamp:
5/7/2015 11:05:27 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

Entry address:
0xD4897

Entry point:
E8, 78, F4, 00, 00, E9, 79, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 80, F9, 40, 73, 15, 80, F9, 20, 73, 06, 0F, A5, C2, D3, E0, C3, 8B, D0, 33, C0, 80, E1, 1F, D3, E2, C3, 33, C0, 33, D2, C3, CC, 8B, 54, 24, 0C, 8B, 4C, 24, 04, 85, D2, 74, 69, 33, C0, 8A, 44, 24, 08, 84, C0, 75, 16, 81, FA, 00, 01, 00, 00, 72, 0E, 83, 3D, 40, 78, 61, 00, 00, 74, 05, E9, 05, F5, 00, 00, 57, 8B, F9, 83, FA, 04, 72, 31, F7, D9, 83, E1, 03, 74, 0C, 2B, D1, 88, 07, 83, C7, 01, 83, E9, 01, 75, F6...
 
[+]

Entropy:
6.3992

Code size:
1.7 MB (1,752,064 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Baidu PC Faster 5.1.0.0

Command:
"C:\Program Files\pc faster\5.1.0.0\pcftray.exe" -auto -start


Scan pcftray.exe - Powered by Reason Core Security