home

ftsc_certd.exe

certreg Application

Feitian Technologies Co., Ltd.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘FTSCCERTD’.
Publisher:
EnterSafe  (signed by Feitian Technologies Co., Ltd.)

Product:
certreg Application

Description:
certreg MFC Application

Version:
1, 0, 9, 611

MD5:
8cba95ea60c3c9aa1a4157290214c4de

SHA-1:
ea426b70719c0feb3628d96c2825cf4f7f619df4

SHA-256:
7db4aa7c52bfe17b384889644c480d317d3802a450ec0cd4669bb1f3b3fe6bfc

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/20/2024 2:49:59 AM UTC  (today)

File size:
109.3 KB (111,904 bytes)

Product version:
1, 0, 9, 611

Copyright:
Copyright (C) 2007-2009 EnterSafe

Original file name:
certreg.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\entersafe\ftcos-pk\ftsc_certd.exe

Digital Signature
Signed by:
Feitian Technologies Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
5/28/2007 5:30:00 AM

Valid to:
6/3/2010 5:29:59 AM

Subject:
CN="Feitian Technologies Co., Ltd.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Feitian Technologies Co., Ltd.", L="Beijing,China", S="Beijing,China", C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7C69EE7C8D365DB92CCCE349578078CF

File PE Metadata
Compilation timestamp:
6/11/2009 9:12:28 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:k6q/tNQYe7HgncS03PXh1baqUynF3xyiZr7I53cVzdgzE6bP4APDn:qrq7HgncFbbRlxDls52gzEK/T

Entry address:
0xF03F

Entry point:
55, 8B, EC, 6A, FF, 68, E0, 17, 41, 00, 68, CC, F1, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, CC, 13, 41, 00, 59, 83, 0D, 60, 6C, 41, 00, FF, 83, 0D, 64, 6C, 41, 00, FF, FF, 15, C8, 13, 41, 00, 8B, 0D, 54, 6C, 41, 00, 89, 08, FF, 15, C4, 13, 41, 00, 8B, 0D, 50, 6C, 41, 00, 89, 08, A1, C0, 13, 41, 00, 8B, 00, A3, 5C, 6C, 41, 00, E8, 1D, 01, 00, 00, 39, 1D, 00, 65, 41, 00, 75, 0C, 68, C8, F1, 40, 00, FF, 15, BC, 13...
 
[+]

Entropy:
5.7545

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
64 KB (65,536 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
FTSCCERTD

Command:
C:\Program Files\entersafe\ftcos-pk\ftsc_certd.exe


Scan ftsc_certd.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.