home

系统优化加速工具v1.37.1476511951.exe

Lenovo (Beijing) Limited

Publisher:
Lenovo (Beijing) Limited  (signed and verified)

MD5:
4b21ffc435dca91c459aa64427eb0c1f

SHA-1:
459fd421c7d147e5c4cd623e59612cfe0e131179

SHA-256:
03805493b2ea893c5185eb140c2b21c63134cd147719edd058aba034df7a6470

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/27/2024 2:21:17 AM UTC  (today)

File size:
4.8 MB (5,057,376 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\lenovo\lenovotools\系统优化加速工具v1.37.1476511951.exe

Digital Signature
Signed by:
Lenovo (Beijing) Limited

Authority:
Symantec Corporation

Valid from:
4/23/2015 8:00:00 AM

Valid to:
5/23/2017 7:59:59 AM

Subject:
CN=Lenovo (Beijing) Limited, OU=Technical Support, O=Lenovo (Beijing) Limited, L=Beijing, S=Beijing, C=CN

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
00BFA27FBEC381416F78399F1B2AACA9

File PE Metadata
Compilation timestamp:
8/15/2016 3:15:49 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
14.0

CTPH (ssdeep):
98304:VskQKQwnxj3AJyUDLCuOUFYegyuAKfUvGMVlRJcVHRS5RTwOM:V09QlQQUDLCuOUiyuAKftMXvJY

Entry address:
0x1CAB5

Entry point:
E8, 99, 04, 00, 00, E9, 80, FE, FF, FF, 3B, 0D, B8, 91, 43, 00, F2, 75, 02, F2, C3, F2, E9, 0F, 06, 00, 00, 83, 61, 04, 00, 8B, C1, 83, 61, 08, 00, C7, 41, 04, 60, FF, 42, 00, C7, 01, FC, 08, 43, 00, C3, 55, 8B, EC, 56, FF, 75, 08, 8B, F1, E8, 44, 38, FF, FF, C7, 06, 08, 09, 43, 00, 8B, C6, 5E, 5D, C2, 04, 00, 83, 61, 04, 00, 8B, C1, 83, 61, 08, 00, C7, 41, 04, 10, 09, 43, 00, C7, 01, 08, 09, 43, 00, C3, 55, 8B, EC, 83, EC, 0C, 8D, 4D, F4, E8, A7, FF, FF, FF, 68, 58, 6C, 43, 00, 8D, 45, F4, 50, E8, CD, 28...
 
[+]

Entropy:
7.9886  (probably packed)

Code size:
184 KB (188,416 bytes)

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.