advanced pc care - 13% Detection Rate *

Did you just run into a download or a file on your computer that is digitally signed by advanced pc care? Some of the security products refers to the detected files as Program.Unwanted.1386 and Trojan.Win32.Generic!BT. The detection rate for the advanced pc care files collected here is 13%. Please read on for more details.

You will probably see advanced pc care when double-clicking to run the file. The publisher name shows up as the "Verified publisher" in the UAC dialog as the screenshot shows:

Screenshot where advanced pc care appears as the verified publisher in the UAC dialog

You can view the additional details from the advanced pc care digital signature with the following steps:

  1. Open Windows Explorer and locate the advanced pc care file
  2. Right-click on the file and select Properties
  3. Click on the Digital Signatures tab
  4. Click the View Certificate button

Here is a screenshot of a file that has been signed by advanced pc care:

Screenshot of the advanced pc care certificate

As you can see in the screenshot above, Windows states that "This digital signature is OK". This means that the file has been published by advanced pc care and that no one has tampered with the file.

If you click the View Certificate button shown in the screenshot above, you can see all the details of the certificate, such as when it was issued, who issued the certificate, how long it is valid, etc. You can also examine the address for advanced pc care, such as the street name, city and country.

COMODO RSA Code Signing CA has issued the advanced pc care certificates. You can also see the details of the issuer by clicking the View Certificate button shown in the screenshot above.

advanced pc care Files

These are the advanced pc care files I have collected, thanks to the FreeFixer users.

Detection RatioFile Name
1/50apc.exe
2/55efo.exe
4/57advancedpccare.exe
5/57efo.exe
8/57apc.exe
7/57_iu14D2N.tmp
12/57efo.exe
20/59efo.exe

Scanner and Detection Names

Here is the detection names for the advanced pc care files. I've grouped the detection names by each scanner engine. Thanks to VirusTotal for the scan results.

ScannerDetection Names
AVGGeneric7.BACG, Generic.59E
AVwareTrojan.Win32.Generic!BT
AegisLabGeneric7.Bacg!c, Virus.Gen|2|103!c, Risktool.W32.Gen!c, Virus.Gen!c
Antiy-AVLRiskWare[RiskTool]/Win32.AdvancedPcCare.a, Trojan/Win32.TSGeneric
ComodoApplication.Win32.Agent.hygzy, TrojWare.Win32.Agent.qdizi
CyrenW32/Trojan.QART-5367
DrWebProgram.Unwanted.1386, Program.Unwanted.965
ESET-NOD32a variant of MSIL/AdvancedPcCare.B potentially unwanted, a variant of MSIL/EasyFileOpener.A potentially unwanted
FortinetRiskware/AdvancedPcCare
GDataWin32.Application.Agent.5H7CQF
Ikarusnot-a-virus:RiskTool.AdvancedPcCare, PUA.MSIL.Easyfileopener
JiangminRiskTool.AdvancedPcCare.c, RiskTool.AdvancedPcCare.d
K7AntiVirusAdware ( 004fc9481 )
K7GWAdware ( 004fc9481 )
Kasperskynot-a-virus:RiskTool.Win32.AdvancedPcCare.a
MalwarebytesPUP.Optional.EasyFileOpener, PUP.Optional.AdvancedPCCare
McAfeeArtemis!AF094C2E2DB3
McAfee-GW-EditionArtemis!Trojan
PandaPUP/OneSystemCare, PUP/Generic
Qihoo-360Win32/Virus.RiskTool.2b7
RisingPUA.EasyFileOpener!8.E1C1 (cloud:bNHxRaqA5vF)
SymantecTrojan.Gen.2, PUA.AdvancedPCCare
VIPRETrojan.Win32.Generic!BT
ViRobotAdware.Easyfileopener.71904[h]
WebrootW32.Adware.Gen
YandexRiskware.Agent!, Riskware.AdvancedPcCare!

* How the Detection Percentage is Calculated

The detection percentage is based on the fact that I have collected 449 scan reports for the advanced pc care files. 59 of these scan results came up with some sort of detection. You can review the full details of the scan reports by examining the files listed above.

Analysis Details

In the analysis on this page I grouped all certificates where the signer name is set to upper and lower case variants of advanced pc care. These are the signer names:

The analysis is based on certificates with the following serial numbers:

Comments

No comments posted yet.

Leave a reply