home

etagent.exe

EventTracker

Prism Microsystems, Inc.

It runs as a windows Service named “EventTracker Agent”.
Publisher:
Prism Microsystems, Inc.  (signed and verified)

Product:
EventTracker

Description:
EventTracker Agent Service

Version:
8, 1, 2, 4

MD5:
8441ad47182380d26ea123a762a342f9

SHA-1:
332e65c23e5843276dea2208479f0df361f5589b

SHA-256:
482215b155c900de8fde4da3387bd1ef2be1b94cdecbc8a7ee2ceff1cc3d8603

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/18/2024 5:01:52 PM UTC  (today)

File size:
422.2 KB (432,376 bytes)

Product version:
8, 1, 0, 0

Copyright:
Copyright © 1999-2016

Trademarks:
EventTracker

Original file name:
etagent.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\prism microsystems\eventtracker\agent\etagent.exe

Digital Signature
Signed by:
Prism Microsystems, Inc.

Authority:
COMODO CA Limited

Valid from:
8/7/2013 8:00:00 PM

Valid to:
8/8/2018 7:59:59 PM

Subject:
CN="Prism Microsystems, Inc.", O="Prism Microsystems, Inc.", STREET=8815 Centre Park Drive, STREET=Ste 300, L=Columbia, S=MD, PostalCode=21045, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3C269BC6D66708D5D59BEC690EB635CD

File PE Metadata
Compilation timestamp:
7/27/2016 7:08:45 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:rKjLgwZFvNugKqyJ4dhmxPjq1n3XfoSpbiMDPksEvlPlAF2CK3AG9Bzz5bMxsfH:u3vNugDyydgxMfoSlk19K2CK3AGfzxv

Entry address:
0x38641

Entry point:
E8, BB, EA, 00, 00, E9, 78, FE, FF, FF, CC, CC, CC, CC, CC, 55, 8B, EC, 57, 56, 8B, 75, 0C, 8B, 4D, 10, 8B, 7D, 08, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, A4, 01, 00, 00, 81, F9, 00, 01, 00, 00, 72, 1F, 83, 3D, C4, 51, 49, 00, 00, 74, 16, 57, 56, 83, E7, 0F, 83, E6, 0F, 3B, FE, 5E, 5F, 75, 08, 5E, 5F, 5D, E9, AD, A0, 00, 00, F7, C7, 03, 00, 00, 00, 75, 15, C1, E9, 02, 83, E2, 03, 83, F9, 08, 72, 2A, F3, A5, FF, 24, 95, C4, 87, 43, 00, 90, 8B, C7, BA, 03, 00, 00, 00, 83, E9, 04, 72, 0C, 83...
 
[+]

Entropy:
6.5904

Code size:
347.5 KB (355,840 bytes)

Service
Display name:
EventTracker Agent

Description:
Relays local log data and is usually managed by the central EventTracker Console. If uninstalled locally, corresponding changes will be necessary at the Console. May be restarted to pick up new confi

Type:
Win32OwnProcess, InteractiveProcess


Scan etagent.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.