UpdateCheck.exe

StartIsBack

STANISLAV ZINUKHOV

Publisher:
www.startisback.com  (signed by STANISLAV ZINUKHOV)

Product:
StartIsBack

Description:
StartIsBack Update Check Toast

Version:
3.6.0

MD5:
16e9ce05d519093d4f5fc7bbfe2b002a

SHA-1:
47de0c98843dfd5299061a52a1f5202fb3a8aab7

SHA-256:
f8bae2cbd76722d3e034e7cffe2d8d7fe911d973e5ecff975c1840176e2a920b

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 12:06:27 AM UTC  (today)

File size:
20.3 KB (20,816 bytes)

Product version:
3.6.0

Copyright:
Copyright (C) 2013+, Tihiy

Original file name:
UpdateCheck.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\startisback\updatecheck.exe

Digital Signature
Authority:
StartCom Ltd.

Valid from:
11/26/2012 5:32:52 AM

Valid to:
11/27/2014 10:00:32 AM

Subject:
E=tihiy.mozg@gmail.com, CN=STANISLAV ZINUKHOV, L=Moscow, S=Moscow City, C=RU, Description=eSmLh1eo0jo6RFA5

Issuer:
CN=StartCom Class 2 Primary Intermediate Object CA, OU=Secure Digital Certificate Signing, O=StartCom Ltd., C=IL

Serial number:
0817

File PE Metadata
Compilation timestamp:
2/8/2014 2:29:17 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
12.0

CTPH (ssdeep):
384:VRbXQiim6o3lhsSSpdep1KkvIgY4AWnYPLoVVP0V0NT+:VRbB14dePvQ4AW1VVP0y

Entry address:
0x1A70

Entry point:
56, 68, 38, 34, 40, 00, 6A, 00, 68, 00, 00, 10, 00, FF, 15, 48, 30, 40, 00, 85, C0, 74, 08, 6A, 02, FF, 15, 4C, 30, 40, 00, 68, 38, 34, 40, 00, 6A, 01, 6A, 00, FF, 15, 50, 30, 40, 00, 6A, 01, FF, 15, D8, 30, 40, 00, 8B, F0, 85, F6, 75, 0B, E8, 7F, F5, FF, FF, FF, 15, E0, 30, 40, 00, 56, FF, 15, 4C, 30, 40, 00, CC, 83, 6C, 24, 04, 04, E9, 17, 00, 00, 00, 83, 6C, 24, 04, 04, E9, ED, 00, 00, 00, 83, 6C, 24, 04, 04, E9, 13, 01, 00, 00, CC, CC, CC, 55, 8B, EC, 8B, 4D, 0C, 8B, D1, 56, 57, BE, 38, 31, 40, 00, BF...
 
[+]

Code size:
5.5 KB (5,632 bytes)

The file UpdateCheck.exe has been discovered within the following program.

StartIsBack+  by startisback.com
About 7% of users remove it
 
Powered by Should I Remove It?

Scan UpdateCheck.exe - Powered by Reason Core Security