Should I block it?

60%
60% of PCs block this file from running.
Possible reason:
Performance resource utilization

VersionsAdditional versions

1, 0, 1, 35 6.00%
1, 0, 1, 35 4.00%
1, 0, 1, 35 10.00%
1, 0, 1, 34 22.00%
1, 0, 1, 34 2.00%
1, 0, 1, 33 2.00%
1, 0, 1, 32 2.00%
1, 0, 1, 30 6.00%
1, 0, 1, 30 38.00%
1, 0, 1, 15 8.00%

Relationships

Parent process
Related files

PE structurePE file structure

Show functions
Import table
advapi32.dll
GetSecurityDescriptorSacl, RegQueryValueExA, RegCloseKey, RegOpenKeyA, SetSecurityInfo, ConvertStringSecurityDescriptorToSecurityDescriptorW, RegDeleteValueA, RegOpenKeyExA, RegCreateKeyExA, RegSetValueExA
kernel32.dll
GetTickCount, WriteFile, InitializeCriticalSection, Sleep, CreateDirectoryA, FindFirstFileA, GetProcAddress, RemoveDirectoryA, CopyFileA, FindClose, LoadLibraryA, CreateFileMappingA, MoveFileA, FindNextFileA, DeleteCriticalSection, CloseHandle, DeleteFileA, GlobalAlloc, GetLastError, GlobalFree, OpenMutexA, GetModuleFileNameA, CreateMutexA, GetVersionExA, LocalFree, SetFilePointer, SystemTimeToFileTime, SetFileTime, FreeLibrary, ReadFile, GetCurrentDirectoryA, LocalFileTimeToFileTime, GetStringTypeW, GetStringTypeA, FlushFileBuffers, SetStdHandle, GetLocaleInfoA, GetCurrentProcessId, QueryPerformanceCounter, GetEnvironmentStringsW, FreeEnvironmentStringsW, GetEnvironmentStrings, FreeEnvironmentStringsA, GetTimeZoneInformation, GetConsoleMode, GetConsoleCP, LCMapStringW, MultiByteToWideChar, WideCharToMultiByte, LCMapStringA, IsValidCodePage, GetOEMCP, UnmapViewOfFile, MapViewOfFile, CreateFileA, WriteConsoleA, GetConsoleOutputCP, WriteConsoleW, SetEnvironmentVariableA, SetEndOfFile, GetProcessHeap, CompareStringA, GetACP, GetCPInfo, HeapReAlloc, CompareStringW, GetFileAttributesA, GetModuleHandleW, ExitProcess, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, HeapFree, HeapAlloc, GetSystemTimeAsFileTime, GetCommandLineA, GetStartupInfoA, RaiseException, RtlUnwind, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, InterlockedIncrement, SetLastError, GetCurrentThreadId, InterlockedDecrement, GetStdHandle, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSectionAndSpinCount, HeapSize, SetHandleCount, GetFileType, HeapCreate, VirtualFree, VirtualAlloc, GetModuleHandleA
shell32.dll
SHGetFolderPathA, ShellExecuteA
user32.dll
wsprintfA, DestroyWindow, SetTimer, CreateDialogParamA, KillTimer, LoadIconA, SendMessageA, IsDialogMessageA, TranslateMessage, MessageBoxA, PeekMessageA, SetClassLongA, GetDlgItem, CheckDlgButton, GetLastInputInfo, ShowWindow, IsDlgButtonChecked, DispatchMessageA, SetWindowTextA, MessageBoxIndirectA, GetDesktopWindow
version.dll
VerQueryValueA, GetFileVersionInfoA, GetFileVersionInfoSizeA
wininet.dll
HttpSendRequestA, InternetConnectA, HttpQueryInfoA, InternetOpenA, InternetCloseHandle, InternetReadFile, HttpOpenRequestA

visicom_antiphishing.exe

Anti-phishing Domain Advisor by Visicom Media Inc. (Signed)

Remove visicom_antiphishing.exe
Version:   1, 0, 1, 15
MD5:   ba6f80fdb595502eb8b160bef5af25c8
SHA1:   dba21096eec17a6de7be6ad0624391a678f0ff32
SHA256:   78abdfbcb00132c90917b3c300c6e7ed8efb1ef36c53b8d8c426bd9fa27baac4

What is visicom_antiphishing.exe?

The Visicom Anti-phishing Domain Advisor Toolbar, powered by Panda Security, will analyze the current web sites you are visiting against a URL database and determine if the site is a potential phishing threat. The toolbar is also included in both Panda Cloud Antivirus free and paid version.

About visicom_antiphishing.exe (from Visicom Media Inc.)

The Anti-phishing Domain Advisor ensures you navigate the Web safely by protecting you from "phishing sites" (copycats of legitimate sites that steal your personal info) or "malware sites" designed to

DetailsDetails

File name:visicom_antiphishing.exe
Publisher:Visicom Media Inc. (Powered by Panda Security)
Product name:Anti-phishing Domain Advisor
Description:Visicom Media Anti-phishing Domain Advisor (Powered by Panda Security)
Typical file path:C:\ProgramData\anti-phishing domain advisor\visicom_antiphishing.exe
File version:1, 0, 1, 15
Product version:1.0
Size:226.66 KB (232,104 bytes)
Certificate
Issued to:Visicom Media Inc.
Authority (CA):Thawte
Expiration date:Saturday, June 21, 2014
Digital DNA
PE subsystem:Windows GUI
File packed:No
.NET CLR:No
More details

ResourcesPrograms

The following program will install this file
Visicom Media Inc.
  82% remove
The Visicom Anti-phishing Domain Advisor Toolbar, powered by Panda Security, will analyze the current web sites you are visiting against a URL database and determine if the site is a potential phishing threat. The toolbar is also included in both Panda Cloud Antivirus free and paid version. The toolbar will automaticlaly modify the user's web browser home page, DNS settings and search settings (per their EULA).

BehaviorsBehaviors

Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
  • 'Anti-phishing Domain Advisor' → "C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe"
Network connections
  • [TCP] visicom-47.nationalnet.com (66.115.174.8:80)

  • ResourcesResource utilization

    (Note: statistics below are averages based on a minimum sample size of 200 unique participants)
    Averages
     
    CPU
    Total CPU:0.08198031%
    0.028634%
    Kernel CPU:0.04251301%
    0.013761%
    User CPU:0.03946730%
    0.014873%
    Kernel CPU time:671 ms/min
    100,923,805ms/min
    Memory
    Private memory:8.34 MB
    21.59 MB
    Private (maximum):3.29 MB
    Private (minimum):1.51 MB
    Non-paged memory:8.34 MB
    21.59 MB
    Virtual memory:167.25 MB
    140.96 MB
    Virtual memory (peak):240.15 MB
    169.69 MB
    Working set:2.91 MB
    18.61 MB
    Working set (peak):154.62 MB
    37.95 MB
    Resource allocations
    Threads:11
    12
    Handles:320
    600
    GUI GDI count:9
    103
    GUI GDI peak:11
    142
    GUI USER count:6
    49
    GUI USER peak:6
    71

    BehaviorsProcess properties

    Integrety level:High
    Platform:32-bit
    Command line:"C:\ProgramData\anti-phishing domain advisor\visicom_antiphishing.exe"
    Owner:User
    Parent process:LogonUI.exe (Windows Logon User Interface Host by Microsoft)

    ResourcesThreads

    Averages
     
    visicom_antiphishing.exe (main module)
    Total CPU:0.14031290%
    0.272967%
    Kernel CPU:0.04071580%
    0.107585%
    User CPU:0.09959710%
    0.165382%
    CPU cycles:3,931,791/sec
    5,741,424/sec
    Memory:244 KB
    1.16 MB
    WININET.dll
    Total CPU:0.00062644%
    Kernel CPU:0.00062644%
    User CPU:0.00000000%
    CPU cycles:19,451/sec
    Memory:980 KB

    Windows OS versionsDistribution by Windows OS

    OS versiondistribution
    Windows 7 Home Premium 36.00%
    Windows 7 Ultimate N 24.00%
    Microsoft Windows XP 14.00%
    Windows 7 Ultimate 12.00%
    Windows 7 Professional 8.00%
    Windows Vista Ultimate 2.00%
    Windows Vista Home Premium 2.00%
    Windows 8 Pro 2.00%

    Distribution by countryDistribution by country

    United States installs about 69.57% of Anti-phishing Domain Advisor.

    OEM distributionDistribution by PC manufacturer

    PC Manufacturerdistribution
    Dell 34.78%
    Hewlett-Packard 21.74%
    Toshiba 17.39%
    Acer 13.04%
    Lenovo 8.70%
    Samsung 4.35%
    Should I remove It? Clean your PC of unwanted adware, toolbars and bloatware.

    Download it for FREE