» LinkLogger.exe
Overview
Analysis
File Details
Programs (1)

LinkLogger.exe

Link Logger

Binary Visions Inc

This file is installed with the program Link Logger Uninstall.

File name:

LinkLogger.exe

Publisher:

Binary Visions Inc. (signed by Binary Visions Inc)

Product:

Link Logger

Description:

Professional Logging tool for iptables, IPCop, Smoothwall etc

Version:

2.4.16.27

MD5:

6b4be057fc401e7b2e34a4b27a04d4d8

SHA-1:

136778dcecbb48ab1c0409f1fc064d4f25869b46

SHA-256:

70990114ef86d8c7d4096add10c9dc31eac8a05aebb3c591c6f3e7e4a10d0215

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

11/16/2024 3:34:07 AM UTC (today)

Scan engine

Detection

Engine version

Qihoo 360 Security

HEUR/Malware.QVM11.Gen

1.0.0.1015

File size:

1.4 MB (1,425,304 bytes)

Product version:

2.4.0.0

Original file name:

LinkLogger.exe

File type:

Executable application (Win32 EXE)

Common path:

C:\Program Files\link logger\linklogger.exe

Digital Signature

Signed by:

Binary Visions Inc

Authority:

VeriSign, Inc.

Valid from:

7/20/2007 9:00:00 AM

Valid to:

1/5/2009 8:59:59 AM

Subject:

CN=Binary Visions Inc, OU=Product Development, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Binary Visions Inc, L=Calgary, S=Alberta, C=CA

Issuer:

CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

3B139232781D37021220A4C5E74D47BB

File PE Metadata

Compilation timestamp:

6/20/1992 7:22:17 AM

OS version:

1.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

24576:2OLFGFn3vqCGrq4TjrZ/jR3XbMQOxe8cC5/gsuaK5Nehu6tZ6mGzes7l:2x3yCXMrfwQOxe8zLuP5IL6DzeE

Entry address:

0x47AE80

Entry point:

60, BE, 00, 70, 72, 00, 8D, BE, 00, A0, CD, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89... 
[+]

Entropy:

7.9109

Packer / compiler:

UPX 2.90LZMA

Code size:

1.3 MB (1,396,736 bytes)

The file LinkLogger.exe has been discovered within the following program.

Link Logger Uninstall by Binary Visions Inc

Publisher's description - “LINK LOGGER allows you to monitor your firewall traffic in real time so you can track your network for both internal and external abuses. Watch as LINK LOGGER tracks worms and hackers as they try to attack your network.”

www.LinkLogger.com

8% remove it

Scan LinkLogger.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.