home

fixbcd.exe

fixbcd

NetZone Info-Tech Co., Ltd., Shanghai

The application fixbcd.exe by NetZone Info-Tech Co.,, Shanghai has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
NETZONE Corp.  (signed by NetZone Info-Tech Co., Ltd., Shanghai)

Product:
fixbcd

Version:
8.2.0.3254

MD5:
259a1857c5ef737ba5ff1bd4648957b4

SHA-1:
069f44d385812612c5d690537295ae4daa930030

SHA-256:
83177d4548b31352f6ddd4a1d56c686c212d4e311ebefd127adfca3d1e35568e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 9:53:28 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.NetZoneI
17.2.22.11

File size:
802.5 KB (821,752 bytes)

Product version:
8.2.0.3254

Copyright:
Copyright (C) NETZONE Corp. 2008-2009

Original file name:
fixbcd

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\windows\syswow64\fixbcd.exe

Digital Signature
Signed by:
NetZone Info-Tech Co., Ltd., Shanghai

Authority:
VeriSign, Inc.

Valid from:
10/28/2016 7:00:00 AM

Valid to:
12/28/2017 6:59:59 AM

Subject:
CN="NetZone Info-Tech Co., Ltd., Shanghai", OU=研发部, O="NetZone Info-Tech Co., Ltd., Shanghai", L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2BC2913D9BD8223EF5D1C130DAFC0664

File PE Metadata
Compilation timestamp:
6/20/1992 5:22:17 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x1C6E81

Entry point:
E9, 21, C7, FF, FF, 0F, 82, 04, 00, FC, FF, 66, 0F, B6, C0, 66, 0F, BD, C0, F9, B8, 06, 00, 00, 00, 85, D9, 38, C4, 29, C1, F6, D0, 68, BE, A3, 80, 7E, 8A, 45, FE, 60, E8, 86, DE, FB, FF, 9C, 9C, E9, 5C, 1C, FC, FF, 00, 00, 45, 6E, 75, 6D, 52, 65, 73, 6F, 75, 72, 63, 65, 4E, 61, 6D, 65, 73, 57, 00, 7F, 3C, DA, A7, 42, A5, 7B, 38, 9E, 1B, 5D, B4, 25, 90, 4F, 73, 45, 7E, 24, B9, 08, B1, 22, 96, 90, 83, CE, 6C, 51, E0, F8, 21, ED, FA, E3, D7, 76, 5C, 5A, 42, 3A, D1, BD, B5, 38, 09, C4, 53, 88, 10, 06, C5, 05...
 
[+]

Entropy:
7.9636

Packer / compiler:
tElock 0.99 - 1.0 private

Code size:
469.5 KB (480,768 bytes)

Remove fixbcd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.