home

PCSpeedDoctor.exe

PC SpeedDoctor

Dotcom Internet Marketing Limited

The application PCSpeedDoctor.exe by Dotcom Internet Marketing Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
PCSpeedDoctor.com  (signed by Dotcom Internet Marketing Limited)

Product:
PC SpeedDoctor

Version:
1.0.0.4

MD5:
9a19364c753377ac66bd2cd5c5cb8b88

SHA-1:
73ab98d6ad153ca70d26316860d7eaaa8d3dcfd1

SHA-256:
b07e7af0ed0609dff80fd0b0bfe6be85eb5abe1d1e4d3034040bedacdab04f21

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/24/2024 1:57:20 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.2.21.11

File size:
1.5 MB (1,530,488 bytes)

Product version:
1.0.0.4

Copyright:
Copyright © PCSpeedDoctor.com

Original file name:
PCSpeedDoctor.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\pcspeeddoctor\pcspeeddoctor.exe

Digital Signature
Signed by:
Dotcom Internet Marketing Limited

Authority:
VeriSign, Inc.

Valid from:
1/25/2011 4:00:00 PM

Valid to:
1/26/2012 3:59:59 PM

Subject:
CN=Dotcom Internet Marketing Limited, OU=PC Speed Doctor, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Dotcom Internet Marketing Limited, L="Havant ", S=Hampshire, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
156411EECA0DFCC37B6AB14EF81A512D

File PE Metadata
Compilation timestamp:
2/15/2011 4:15:48 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:wInk2BNuBz9GsDmkVypr21mzqqhkQF0i99wc8EBypr21mzqQB:fNuBzgsDmkrhqhUK9lLnhQB

Entry address:
0x1039EE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 04, 00, 03, 00, 00, 00, 30, 00, 00, 80, 0E, 00, 00, 00, C0, 00, 00, 80, 10, 00, 00, 00, D8, 00, 00, 80, 18, 00, 00, 00, F0, 00, 00, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 10, 00, 02, 00, 00, 00, 08, 01, 00, 80, 03, 00, 00, 00, 20, 01, 00, 80, 04, 00, 00, 00, 38, 01, 00, 80, 05, 00, 00, 00, 50, 01, 00, 80, 06, 00, 00, 00, 68, 01, 00, 80, 07, 00, 00, 00, 80, 01...
 
[+]

Entropy:
6.4975

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
1 MB (1,055,232 bytes)

Remove PCSpeedDoctor.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.