home

dtuser.exe

Visicom Media Inc.

This is part of the Visicom VMN web browser toolbar and extension that will modify the browser's default search provider, DNS, and home page functions. The application dtuser.exe by Visicom Media has been detected as a potentially unwanted program by 0 anti-malware scanners.
Publisher:
Visicom Media Inc.  (signed and verified)

Description:
DtUser

Version:
1, 0, 0, 103

MD5:
ae20ff76f44c305130836dc3daeb1876

SHA-1:
e66512cd42a200e39f184c7e9fbb496f3a218a62

SHA-256:
2c9c52924a55560ce5bd0b392ea1263e979c0fb9a63242f0c5f229f58230d217

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 7:57:44 AM UTC  (today)

File size:
498.6 KB (510,528 bytes)

Product version:
1, 0, 0, 103

Copyright:
© 2010-2013 Visicom Media Inc.

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\manycam\dtuser.exe

Digital Signature
Signed by:
Visicom Media Inc.

Authority:
Thawte, Inc.

Valid from:
4/17/2012 7:00:00 PM

Valid to:
6/21/2014 6:59:59 PM

Subject:
CN=Visicom Media Inc., OU=SECURE APPLICATION DEVELOPMENT, O=Visicom Media Inc., L=Brossard, S=Quebec, C=CA

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
2B19B54BB7ABEE1A2623111C029AF449

File PE Metadata
Compilation timestamp:
1/24/2014 1:22:26 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:3snsVx/oUHYoFtzZeiOBeIpDJCDzkj/jTrwTzL:32sVxQOYKkcIpDJCDgjLTrwTf

Entry address:
0x1D47D

Entry point:
E8, 17, 86, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 5D, E9, 8B, 07, 00, 00, 8B, FF, 55, 8B, EC, FF, 75, 08, 51, E8, FF, 86, 00, 00, 59, 59, 5D, C2, 04, 00, 8B, FF, 51, C7, 01, B8, A6, 45, 00, E8, 7B, 86, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 56, 8B, F1, E8, E3, FF, FF, FF, F6, 45, 08, 01, 74, 07, 56, E8, B8, FF, FF, FF, 59, 8B, C6, 5E, 5D, C2, 04, 00, 8B, FF, 55, 8B, EC, FF, 75, 08, 51, E8, 52, 88, 00, 00, 59, 59, 5D, C2, 04, 00, 8B, FF, 51, E8, A1, 87, 00, 00, 59, C3, 8B, FF, 55, 8B, EC, 8B, 45, 08...
 
[+]

Entropy:
6.9424

Code size:
306.5 KB (313,856 bytes)

Remove dtuser.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.