home

pctuto_01net_vlc.exe

PCTuto

Agence Exclusive

This is the Eorezo installer which may include software offers for unwanted programs including toolbars. The application pctuto_01net_vlc.exe, “PCTuto Setup ” by Agence Exclusive has been detected as a potentially unwanted program by 27 anti-malware scanners. The program is a setup application that uses the Inno Setup installer. This browser extension displays targeted advertising by monitoring the URLs viewed in the web browser.
Publisher:
Agence-Exclusive   (signed by Agence Exclusive)

Product:
PCTuto

Description:
PCTuto Setup

MD5:
30ca6f27989fc9c453c4131aca265a20

SHA-1:
9d82cb39e6219586995cb07e99e1125c32d2eb34

SHA-256:
4f53c5ce09f1547a801171b2cb40a7b214d7b830bebf0d1342ac4861741b3cf5

Scanner detections:
27 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 11:49:29 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.EoRezo.P
756

Agnitum Outpost
Adware.Agent
7.1.1

Avira AntiVirus
ADWARE/Adware.Gen
7.11.134.40

avast!
Win32:Adware-gen [Adw]
2014.9-150110

AVG
MalSign.Adware
2016.0.3234

Baidu Antivirus
AdWare.Win32.EoRezo
4.0.3.15110

Bitdefender
Adware.EoRezo.P
1.0.20.50

Bkav FE
W32.Cloddb7.Trojan
1.3.0.4959

Clam AntiVirus
Adware.Agent-5200
0.98/18355

Emsisoft Anti-Malware
Adware.EoRezo.P
8.15.01.10.04

ESET NOD32
Win32/Adware.EoRezo (variant)
9.9488

Fortinet FortiGate
Riskware/EoRezo
1/10/2015

F-Secure
Adware.EoRezo.P
11.2015-10-01_7

G Data
Adware.EoRezo
15.1.24

IKARUS anti.virus
Win32.SuspectCrc
t3scan.2.2.29

Malwarebytes
Trojan.Eorezo
v2015.01.10.04

Microsoft Security Essentials
Adware:Win32/EoRezo
1.10302

MicroWorld eScan
Adware.EoRezo.P
16.0.0.30

Norman
Smalltroj.ZOLH
11.20150110

nProtect
Adware.EoRezo.P
14.02.28.01

Qihoo 360 Security
Trojan.Generic
1.0.0.1015

Reason Heuristics
PUP.Installer.AgenceExclusive.Q
15.1.10.4

Rising Antivirus
PE:Trojan.Win32.Generic.1524E088!354738312
23.00.65.15108

Sophos
EoRezo Adware
4.98

Trend Micro House Call
TROJ_GEN.R47CDD6
7.2.10

Trend Micro
TROJ_GEN.R47CDD6
10.465.10

VIPRE Antivirus
Trojan.Win32.Generic
26966

File size:
1.9 MB (1,970,208 bytes)

File type:
Executable application (Win32 EXE)

Installer:
Inno Setup

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\pctuto_01net_vlc.exe

Digital Signature
Signed by:
Agence Exclusive

Authority:
VeriSign, Inc.

Valid from:
1/19/2011 1:00:00 AM

Valid to:
1/23/2012 12:59:59 AM

Subject:
CN=Agence Exclusive, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Agence Exclusive, L=Paris, S=Ile de France, C=FR

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
612CB1F3C82CC0C69A0C351146C131A3

File PE Metadata
Compilation timestamp:
10/30/2010 10:54:54 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:LW2ho77ktR2Lsp0Fb/KrfU8BdJVbui1lKU/MGbEZQu:lu7BYSFb/h8Bd3Si3ChQu

Entry address:
0x16478

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, B0, 52, 41, 00, E8, AC, 03, FF, FF, 33, C0, 55, 68, 45, 6B, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 01, 6B, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 4E, EC, FF, FF, E8, F5, E7, FF, FF, 8D, 55, EC, 33, C0, E8, 7F, 84, FF, FF, 8B, 55, EC, B8, AC, D6, 41, 00, E8, E2, E9, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, AC, D6, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
84 KB (86,016 bytes)

Remove pctuto_01net_vlc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.