home

pctv.exe

Useful Software

This is the Verti bundle installer which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed with minimal consent. The application pctv.exe by Useful Software has been detected as adware by 20 anti-malware scanners. The program is a setup application that uses the Verti Setup installer.
Publisher:
Useful Software  (signed and verified)

Version:
1.0.1.48

MD5:
47d89f0021f0ca0ffee85e7b0b82239c

SHA-1:
7ad4329a0b949df09f4f1a79a6b25182c9d7b075

SHA-256:
3dad8c3749ab8f7045e3c8d8633104c56f1cea7ed42864f7043e0c9e1a6d6aa4

Scanner detections:
20 / 68

Status:
Adware

Description:
This 'download manager' is also considered bundleware, a utility designed to download software (possibly legitimate or opensource) and bundle it with a number of optional offers including ad-supported utilities, toolbars, shopping comparison tools and browser extensions.

Analysis date:
12/26/2024 11:25:12 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Riskware.Agent
7.1.1

AhnLab V3 Security
PUP/Win32.OptimumInstaller
2015.05.06

avast!
Win32:PUP-gen [PUP]
150319-1

AVG
Generic
2016.0.3118

Bkav FE
W32.HfsAdware
1.3.0.6379

Comodo Security
Application.Win32.Verti.JBT
22018

Dr.Web
Adware.Downware.9817
9.0.1.05190

ESET NOD32
Win32/Verti.J potentially unwanted application
7.0.302.0

F-Prot
W32/S-cc83dd4d
v6.4.7.1.166

G Data
Win32.Application.Verti
15.5.25

herdProtect (fuzzy)
variant of {41e23727-cae6-4132-8005-c58f22686669} (Adware)
2015.8.4.9

K7 AntiVirus
Unwanted-Program
13.203.15813

Malwarebytes
PUP.Optional.Useful
v2015.05.06.05

NANO AntiVirus
Riskware.Win32.Verti.dptfbk
0.30.24.1357

Norman
Agent.BKBXY
11.20150506

Panda Antivirus
Trj/Genetic.gen
15.05.06.05

Reason Heuristics
Threat.Verti.Bundler
15.5.6.0

Total Defense
Win32/Tnega.SOOEYZ
37.1.62.1

Vba32 AntiVirus
AdWare.Verti
3.12.26.3

VIPRE Antivirus
Threat.4786530
39676

File size:
360.8 KB (369,480 bytes)

Product version:
1.0.1.48

File type:
Executable application (Win32 EXE)

Bundler/Installer:
Verti Setup

Common path:
C:\users\{user}\downloads\pctv.exe

Digital Signature
Signed by:
Useful Software

Authority:
VeriSign, Inc.

Valid from:
11/19/2014 9:00:00 AM

Valid to:
1/19/2016 8:59:59 AM

Subject:
CN=Useful Software, O=Useful Software, L=Bellevue, S=Washington, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
142135C80AA62D0F15501B4128FC6AEE

File PE Metadata
Compilation timestamp:
1/30/2015 4:18:18 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
6144:m3NlPYFMITLl1kiKDJrf8Ep1RwqTjDUfG7ezksIbdF+fB8OeRVLWT4k6gffwBx88:mdCFfL/KDhfN1RfXU+7BsIbT+58OaVae

Entry address:
0x16D590

Entry point:
60, BE, 00, B0, 51, 00, 8D, BE, 00, 60, EE, FF, 57, EB, 0B, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B...
 
[+]

Entropy:
7.8408

Packer / compiler:
UPX v0.89.6 - v1.02 / v1.05 -v1.24

Code size:
332 KB (339,968 bytes)

Remove pctv.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.