home

nero-6.6.1.4_no_yt.exe

Nero AG

This is a setup program which is used to install the application. This is installed with Nero Burning ROM 11. The file has been seen being downloaded from s10571.chomikuj.pl and multiple other hosts.
Publisher:
Nero AG  (signed and verified)

MD5:
99b45823b7322e5b496e71261c22c440

SHA-1:
036d9cca3f80e6d0489abeb3017ad923d1bf5419

SHA-256:
18b9f2e1a722096ca66a063d630f2a91f1b4bb040ae2c920a332e5f30f90f7eb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 2:01:16 PM UTC  (today)

File size:
33 MB (34,590,128 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\nero\update 6.6.1.4\nero-6.6.1.4_no_yt.exe

Digital Signature
Signed by:
Nero AG

Authority:
VeriSign, Inc.

Valid from:
6/22/2005 1:00:00 AM

Valid to:
6/23/2006 12:59:59 AM

Subject:
CN=Nero AG, OU=LEGAL DEPARTMENT, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Nero AG, L=Karlsbad, S=Baden Wuerttemberg, C=DE

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6868E22964B8D661130ECE1850A0A2F1

File PE Metadata
Compilation timestamp:
12/7/2002 1:51:36 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
786432:d/qod12EXr5updEGwrLoE9tuXksYRyqvFSvwgURxJs5UPXs:dzdOnKUytu1nqQnwjs5SXs

Entry address:
0x1000

Entry point:
E9, 27, 17, 00, 00, 00, 00, 00, 00, 90, 90, 90, 55, 8B, EC, 50, B8, 02, 00, 00, 00, 81, C4, 04, F0, FF, FF, 50, 48, 75, F6, 81, C4, F0, F1, FF, FF, 8B, 45, FC, 53, 56, 57, 8B, 7D, 10, 8B, 75, 0C, 8B, 5D, 08, 8B, D6, FF, 75, 14, 68, 01, 21, 41, 00, 6A, 00, 6A, 00, 8B, C3, 8B, CF, E8, 7D, 40, 00, 00, 81, EE, 10, 01, 00, 00, 74, 0C, 4E, 0F, 84, F1, 02, 00, 00, E9, A1, 05, 00, 00, 89, 1D, 5C, 28, 41, 00, 89, 1D, 60, 28, 41, 00, 83, 3D, 0C, 39, 41, 00, 00, 74, 13, FF, 35, 0C, 39, 41, 00, 6A, 01, 68, 80, 00, 00...
 
[+]

Entropy:
7.9994

Packer / compiler:
WinRAR, 0x32-bit SFX Module

Code size:
68 KB (69,632 bytes)

The file nero-6.6.1.4_no_yt.exe has been discovered within the following program.

Nero Burning ROM 11  by Nero AG
Nero Burning ROM 11, commonly called Nero, is an optical disc authoring program for Microsoft Windows by Nero AG. Nero contains a player for DVDs, video files, audio files, an image viewer, and software to assist with production of DVDs and other multimedia content.
www.nero.com
23% remove it
 
Powered by Should I Remove It?

The file nero-6.6.1.4_no_yt.exe has been seen being distributed by the following 4 URLs.

http://s10571.chomikuj.pl/File.aspx?e=B-X32E0oKL4bjXNj4dlvm76McVmrPwBU_diHJ-CjtV_zu-iLhX7l4H3h8ZLJrkWD2SamFDQjCstWeZfbEPUbrtJXoUB_sTwVFTCuz7wpIICtcR9bpmu2v6dqyHmvjMs4C6J-DItKJlLnVCQrrWTciA&pv=2

ftp://192.168.191.111/programs/.../Nero Burning ROM 6.6.1.4.exe

http://s10571.chomikuj.pl/File.aspx?e=B-X32E0oKL4bjXNj4dlvm34UqI9MuXdauI3ckpi-eUUYi3adhzBXUTfP9zFZJwSTZ92tJg9G9G2MnELM4PYxwQlY39tNgDH1gLtqLA3O2OVbtyo8Rc_6yGJ06wUjLPgW1pgiDYcKAcaJmouBR_kfpg&pv=2

http://s10571.chomikuj.pl/File.aspx?e=B-X32E0oKL4bjXNj4dlvm7E4L93CLCAb7pqHl1TLo0pKQVzZ95L1esj5XIbXv9t9uJjeTJ35bLDTUS8PJTRi5CNmxCvmYs4-VVc1dXoSC_wPYUk6q3yMiBSCuNhl8oVNh9EZG6fO1FHj_ufAuZ7V2A&pv=2

Scan nero-6.6.1.4_no_yt.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.