home

etagent.exe

EventTracker

Prism Microsystems, Inc.

It runs as a windows Service named “EventTracker Agent”.
Publisher:
Prism Microsystems, Inc.  (signed and verified)

Product:
EventTracker

Description:
EventTracker Agent Service

Version:
7, 6, 22, 2

MD5:
34a002e9241604951bd57fb0a510d91c

SHA-1:
bd7c07a155ef2d54e5c169dd3f1320df7973f433

SHA-256:
ecd3bf63858e483f85ebbac43c8ef1f93625b3263c3100b609aabccbd2a399a3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/26/2024 12:02:28 AM UTC  (today)

File size:
383.6 KB (392,848 bytes)

Product version:
7, 6, 0, 0

Copyright:
Copyright © 1999-2015

Trademarks:
EventTracker

Original file name:
etagent.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\prism microsystems\eventtracker\agent\etagent.exe

Digital Signature
Signed by:
Prism Microsystems, Inc.

Authority:
COMODO CA Limited

Valid from:
8/7/2013 8:00:00 PM

Valid to:
8/8/2018 7:59:59 PM

Subject:
CN="Prism Microsystems, Inc.", O="Prism Microsystems, Inc.", STREET=8815 Centre Park Drive, STREET=Ste 300, L=Columbia, S=MD, PostalCode=21045, C=US

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
3C269BC6D66708D5D59BEC690EB635CD

File PE Metadata
Compilation timestamp:
3/2/2015 4:44:33 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:CXtZ3eR3P8BF6R6Wcxj/SqmUriyl6ksEHRtCIV2kF44KqN2TUlw9hNjyxKxJ:CXtdk3kBzuk1xH2kF44KqYIw9bj7J

Entry address:
0x33705

Entry point:
E8, A7, C8, 00, 00, E9, 78, FE, FF, FF, CC, 55, 8B, EC, 57, 56, 8B, 75, 0C, 8B, 4D, 10, 8B, 7D, 08, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, A4, 01, 00, 00, 81, F9, 00, 01, 00, 00, 72, 1F, 83, 3D, A4, 86, 48, 00, 00, 74, 16, 57, 56, 83, E7, 0F, 83, E6, 0F, 3B, FE, 5E, 5F, 75, 08, 5E, 5F, 5D, E9, 20, A1, 00, 00, F7, C7, 03, 00, 00, 00, 75, 15, C1, E9, 02, 83, E2, 03, 83, F9, 08, 72, 2A, F3, A5, FF, 24, 95, 84, 38, 43, 00, 90, 8B, C7, BA, 03, 00, 00, 00, 83, E9, 04, 72, 0C, 83, E0, 03, 03, C8...
 
[+]

Entropy:
6.5756

Code size:
319 KB (326,656 bytes)

Service
Display name:
EventTracker Agent

Description:
Relays local log data and is usually managed by the central EventTracker Console. If uninstalled locally, corresponding changes will be necessary at the Console. May be restarted to pick up new confi

Type:
Win32OwnProcess, InteractiveProcess


Scan etagent.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.