home

GoogleIt.exe

GoogleIt

XetoWare

Publisher:
XetoWare  (signed and verified)

Product:
GoogleIt

Version:
1.00

MD5:
f37cd3250c713486358c811badaf0df7

SHA-1:
99303bc6e70b28d5dc576eaa72f7c50565b04a67

SHA-256:
b64cb8fbe9ec42beeeb875c4a0dccdfb5b2c608b50a3946b83317c9c8bf81924

Scanner detections:
3 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/23/2024 7:34:03 PM UTC  (today)

Scan engine
Detection
Engine version

Comodo Security
UnclassifiedMalware
20765

Dr.Web
Adware.Downware.11069
9.0.1.05190

ESET NOD32
probably unknown NewHeur_PE virus
8.0.319.0

File size:
138.1 KB (141,448 bytes)

Product version:
1.00

Copyright:
Copyright (c) XetoWare 2012

Original file name:
GoogleIt.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\googleit\googleit.exe

Digital Signature
Signed by:
XetoWare

Authority:
COMODO CA Limited

Valid from:
8/20/2012 3:00:00 AM

Valid to:
8/21/2013 2:59:59 AM

Subject:
CN=XetoWare, O=XetoWare, STREET=25 Bourke Street, L=Sydney, S=NSW, PostalCode=2167, C=AU

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00DC6C15F713EB986754B2F272BFBA66C1

File PE Metadata
Compilation timestamp:
11/29/2012 11:47:27 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
3072:R/Nx5vaxZss0mEHUIpQZh9h45VN4Eqq/y8:R/PlMdWnpQZh9h4NLLK8

Entry address:
0x1428

Entry point:
68, 4C, 1A, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 86, E8, 7C, 8A, 74, E5, 80, 4E, 8F, BE, 08, D2, CD, 57, 9E, 4E, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 00, 00, 00, 00, 00, 00, 50, 72, 6F, 6A, 65, 63, 74, 31, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, FF, CC, 31, 00, 0B, 3C, 32, DA, 85, D0, A7, A3, 43, 94, 63, CA, B2, E7, DA, 40, 68, FD, 0D, A2, 62, E0, 68, DC, 46, 9A, 74, 5A, 67, B9, 28, 03, 13, 3A, 4F, AD, 33, 99, 66, CF, 11, B7, 0C, 00...
 
[+]

Developed / compiled with:
Microsoft Visual Basic v5.0

Code size:
20 KB (20,480 bytes)

Scan GoogleIt.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.