home

pcvisit_profisupport_gastgeber.exe

pcvisit ProfiSupport

pcvisit software ag

It runs as a scheduled task under the Windows Task Scheduler.
Publisher:
pcvisit software ag  (signed and verified)

Product:
pcvisit ProfiSupport

Description:
pcvisit ProfiSupport Gastgeber

Version:
8.3.5.2630

MD5:
6a67afeacc0f762f89499554ab86b042

SHA-1:
223bed0eed86e75c854b9c57ec2fcef884e20d31

SHA-256:
788ebdc7551e1e0493f5dc8ca6be702c2a412c20e986e312b340980860f416b0

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/16/2024 8:47:03 PM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Packed/PECompact
7.1.1

Vba32 AntiVirus
BScope.Trojan-Dropper.Injector
3.12.24.3

File size:
1.1 MB (1,135,992 bytes)

Product version:
8.3.5.2630

Copyright:
Copyright © 2004-2009

Original file name:
gastgeber.exe

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\Program Files\pcvisit software ag\pcvisit profisupport\pcvisit_profisupport_gastgeber.exe

Digital Signature
Signed by:
pcvisit software ag

Authority:
VeriSign, Inc.

Valid from:
7/4/2010 2:00:00 AM

Valid to:
8/15/2011 1:59:59 AM

Subject:
CN=pcvisit software ag, OU=Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=pcvisit software ag, L=Dresden, S=Sachsen, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
22AE32030D5586DD10422BF1FDA6E94F

File PE Metadata
Compilation timestamp:
2/9/2011 10:21:35 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
24576:n3/ltLZpkrS9fOjAUe6p2F1mw4dBh3vjkwYTjQIKL5CDbZmB5:nvzdqwGsNmw21jkwqjQIKLuo5

Entry address:
0x1000

Entry point:
B8, 04, AB, 9E, 00, 50, 64, FF, 35, 00, 00, 00, 00, 64, 89, 25, 00, 00, 00, 00, 33, C0, 89, 08, 50, 45, 43, 6F, 6D, 70, 61, 63, 74, 32, 00, 2D, B5, DA, 21, FA, 8B, 2B, B5, 67, 0E, 3F, A3, 0E, 50, 6A, B7, 21, 2E, 8C, F6, 5E, 3A, B0, B7, 7D, FE, 3E, 66, 24, F1, DC, A9, 6D, 55, 9E, 11, 57, D4, 84, C1, 4A, B7, E8, 79, D7, 7C, 45, 71, 5F, 7B, 92, 45, A9, 4E, EE, 2B, D6, 3A, 68, 93, 64, C2, D5, C4, 0F, A8, 7F, BB, 6A, 6F, 68, 60, 47, E8, 76, 2C, EC, A8, 3F, C2, B3, 44, A3, 62, 1A, AD, 61, 78, D0, AF, 09, 10, 9F...
 
[+]

Packer / compiler:
PECompact v2

Code size:
2.3 MB (2,388,480 bytes)

Scheduled Task
Task name:
caloa2 130208754181712381


Scan pcvisit_profisupport_gastgeber.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.