home

GoogleToolbarNotifier.exe

GoogleToolbarNotifier

Google Inc

Publisher:
Google Inc.  (signed by Google Inc)

Product:
GoogleToolbarNotifier

Version:
4, 1, 509, 1944

MD5:
fd7afc4e90852e27b341ff885b0df085

SHA-1:
7cd1de9557db79bd741b8d93e5fa06d1a5567435

SHA-256:
75c4b17bde0cc2d39203ef16c28500c7439a2be838e27d6acb36c8797b36692b

Scanner detections:
9 / 68

Status:
Clean  (9 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/26/2024 7:45:59 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
TR/Dropper.Gen
7.11.94.246

avast!
Win32:Evo-gen [Susp]
2014.9-160215

Comodo Security
UnclassifiedMalware
10067

Emsisoft Anti-Malware
Trojan-Dropper!IK
8.16.02.15.06

IKARUS anti.virus
Trojan-Dropper
t3scan.1.1.107.0

Qihoo 360 Security
HEUR/QVM08.0.Malware.Gen
1.0.0.1077

Rising Antivirus
PE:Trojan.Win32.Generic.127E7BA3!310279075
23.00.65.16213

Trend Micro House Call
TROJ_GEN.RC9H1ID
7.2.46

VIPRE Antivirus
Trojan.Win32.Generic
20158

File size:
38.5 KB (39,408 bytes)

Product version:
4, 1, 509, 1944

Copyright:
Copyright © 2005-2008

Original file name:
GoogleToolbarNotifier.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\google\googletoolbarnotifier\googletoolbarnotifier.exe

Digital Signature
Signed by:
Google Inc

Authority:
VeriSign, Inc.

Valid from:
6/19/2007 7:00:00 AM

Valid to:
6/19/2010 6:59:59 AM

Subject:
CN=Google Inc, OU=Digital ID Class 3 - Netscape Object Signing, O=Google Inc, L=Mountain View, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
3144C06A6CFB5076C15D399572C69421

File PE Metadata
Compilation timestamp:
5/13/2008 1:14:32 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

CTPH (ssdeep):
384:TVnkdeF68JMVqpmXE2ljKdx1DDz8z1wBKByKoBaVAXxvhwzfYJLWEbx7:TVkd+8hOKBJqxvHLVbl

Entry address:
0x103E

Entry point:
55, 8B, EC, 83, EC, 44, 56, FF, 15, 14, 20, 40, 00, 8A, 08, 80, F9, 22, 74, 12, 80, F9, 20, 76, 21, 40, 80, 38, 20, 77, FA, EB, 19, 80, F9, 22, 74, 13, 40, 8A, 08, 84, C9, 75, F4, 80, F9, 22, 75, 08, EB, 05, 80, F9, 20, 77, 07, 40, 8A, 08, 84, C9, 75, F4, 83, 65, E8, 00, 8D, 45, BC, 50, FF, 15, 18, 20, 40, 00, E8, 45, 00, 00, 00, 68, 04, 30, 40, 00, B8, 00, 30, 40, 00, E8, 1E, 00, 00, 00, 59, 6A, 00, FF, 15, 1C, 20, 40, 00, 50, E8, CB, 04, 00, 00, 8B, F0, E8, 36, 00, 00, 00, 56, FF, 15, 10, 20, 40, 00, CC...
 
[+]

Entropy:
5.4883

Developed / compiled with:
Microsoft Visual C++

Code size:
2 KB (2,048 bytes)

Scan GoogleToolbarNotifier.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.