TRJSCAN.EXE

Trojan Scanner

Simply Super Software

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘TrojanScanner’.
Publisher:
Simply Super Software  (signed and verified)

Product:
Trojan Scanner

Version:
6.9.1.1331

MD5:
809f6542127203d760907d72d8c787e2

SHA-1:
40a34629cfa6dab442b3d87e5547817bfda515d8

SHA-256:
b8d7c868bacc89bc489752ba384de4588ba6a5e99490d57ed12ec41344e9dd6e

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/5/2024 8:22:25 PM UTC  (today)

Scan engine
Detection
Engine version

F-Prot
W32/Patched.Y.gen
4.6.5.141

File size:
1.6 MB (1,661,856 bytes)

Product version:
6.9

Copyright:
© 1999-2014 Simply Super Software

Original file name:
TRJSCAN.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\trojan remover\trjscan.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
9/19/2011 3:00:00 AM

Valid to:
9/19/2014 2:59:59 AM

Subject:
CN=Simply Super Software, O=Simply Super Software, STREET=PO Box 2849, L=Nuneaton, S=Warwickshire, PostalCode=CV10 7YX, C=GB

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00A59D170370F5AC26A4C367349EF2AC2D

File PE Metadata
Compilation timestamp:
2/17/2014 7:12:44 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:WPc22LCIYV9xwP5NyDAtlJLpXF9PTsZi86ACBh+mpQHV9c:YX2myN60XPTEi86ACBh+cQHV+

Entry address:
0x3819E0

Entry point:
C3, C3, C3, C3, C3, C3, C3, C3, 00, E0, D5, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 28, 8B, 1E, 83, EE, FC, 11, DB, 72, 1F, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C9, EB, 52, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 75, D1, F8, 89...
 
[+]

Entropy:
7.0268

Code size:
892 KB (913,408 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
TrojanScanner

Command:
C:\Program Files\trojan remover\trjscan.exe \boot


Scan TRJSCAN.EXE - Powered by Reason Core Security