home

anti-keylogger.exe

Anti-Keylogger

Global Information Technology (UK) Limited

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Anti-keylogger’.
Publisher:
Global Information Technology (UK) Limited  (signed and verified)

Product:
Anti-Keylogger

Version:
10, 3, 1, 0

MD5:
215b4e9404fa885033d09014f6bb3cba

SHA-1:
ea312097e0ff582c7b91604895b5edfce51ad14e

SHA-256:
38ce64881d9b7e796bb56aebc794b75600867478b89a96fe5881350180d6f8fe

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/24/2024 10:29:48 PM UTC  (today)

File size:
399.7 KB (409,296 bytes)

Product version:
10, 3, 1, 0

Copyright:
Copyright © 2000-2012, Global Information Technology (UK) Limited. All Rights Reserved

Original file name:
AntiKeylogger.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\anti-keylogger\anti-keylogger.exe

Digital Signature
Signed by:
Global Information Technology (UK) Limited

Authority:
COMODO CA Limited

Valid from:
11/3/2011 1:00:00 AM

Valid to:
11/3/2013 12:59:59 AM

Subject:
CN=Global Information Technology (UK) Limited, OU=Domain Control Validated, O=Global Information Technology (UK) Limited, STREET="Suite 12, 43 Bedford Steet", STREET=COVENT GARDEN, L=London, S=London, PostalCode=WC2E 9HA, C=GB

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
194DDF56DDD0565FFA1A15D16C303D46

File PE Metadata
Compilation timestamp:
2/11/2012 2:02:27 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:pZ8T2ehnZM4Vqh/KJJ6Sqqu737zP0eBHxtnHkv:pZ8Cew/KJ6SqquZtnHkv

Entry address:
0x26890

Entry point:
81, EC, 54, 0B, 00, 00, 53, 56, 8D, 84, 24, 50, 0B, 00, 00, 68, 60, 63, 42, 00, 50, 33, DB, 33, F6, E8, 02, 9B, 00, 00, 83, C4, 08, 68, 20, 63, 42, 00, E8, B5, 3C, 00, 00, 85, C0, 0F, 84, C5, 23, 00, 00, 55, 57, 6A, 04, 68, 00, 10, 00, 00, 68, 33, 0C, 00, 00, 53, FF, 15, 44, 64, 46, 00, 68, 33, 0C, 00, 00, 8B, E8, 68, FC, 45, 42, 00, 55, 89, 6C, 24, 1C, E8, 22, 69, 00, 00, 8B, 0D, 9C, 62, 46, 00, 8B, 15, A0, 62, 46, 00, A1, AC, 62, 46, 00, 89, 0D, 04, 66, 46, 00, 8B, 0D, A8, 62, 46, 00, 89, 15, 80, 66, 46...
 
[+]

Code size:
384.5 KB (393,728 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Anti-keylogger

Command:
C:\Program Files\anti-keylogger\anti-keylogger.exe \autorun


Scan anti-keylogger.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.