00008601.exe

IObit Malware Fighter

IObit Information Technology

This is a setup program which is used to install the application. This file is installed with the program IObit Malware Fighter. The file has been seen being downloaded from files1.majorgeeks.com and multiple other hosts.
Publisher:
IObit   (signed by IObit Information Technology)

Product:
IObit Malware Fighter

Version:
2.3

MD5:
e861285205317d97caba97d3763011be

SHA-1:
016876e8c5cba18826434f10ec0fafc7e59ce566

SHA-256:
732c242391e086569348535240705d9e1485a073e61f7b97fe482627053221b1

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
12/24/2024 11:16:28 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Toolbar.Widgi (variant)
8.9511

File size:
26 MB (27,264,776 bytes)

Product version:
2.3

Copyright:
Copyright© 2005-2013

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\ProgramData\wiso internet security\temp\webguard\00008601.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
1/15/2013 1:00:00 AM

Valid to:
2/15/2016 12:59:59 AM

Subject:
CN=IObit Information Technology, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=IObit Information Technology, L=Chengdu, S=Sichuan, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
11CADAF29DA4C3CB113BF1877B120103

File PE Metadata
Compilation timestamp:
10/13/2013 10:19:32 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
786432:zxtO2+0nh1lscnd3exMbs7gg3NcNVV1/s3:NE3ghzdnMxM0PcNVHs3

Entry address:
0x113BC

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
63.5 KB (65,024 bytes)

The file 00008601.exe has been discovered within the following programs.

Publisher's description - “IObit Malware Fighter is an advanced malware & spyware removal utility that detects, removes the deepest infections, and protects your PC from various potential spyware, adware, trojans, keyloggers, bots, worms, and hijackers.”
www.iobit.com/malware-fighter.html
22% remove it
 
Powered by Should I Remove It?

The file 00008601.exe has been seen being distributed by the following 18 URLs.

Scan 00008601.exe - Powered by Reason Core Security