home

jwsearch tool.exe

Version:
1.0.0.142

MD5:
8695657bf87bc78fe8141e710a496b21

SHA-1:
a5cbbe51014534090df61680034c5e192c6c3951

SHA-256:
73f3724d8a2ad1048420bed92ab13ef5456d201cd4cf3b1d68b22b6da449295c

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
8/6/2025 6:45:12 AM UTC  (today)

Scan engine
Detection
Engine version

Rising Antivirus
PE:Trojan.Win32.Generic.14B0487F!347097215
23.00.65.14421

File size:
2.4 MB (2,496,000 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:YQry0UrZ4ldZZTPt2sFo8nNwwxRRriN+2B1CeT5IQE30ot/anOo76gUMS5DXR2eE:YQr5JLRo8OA32JCPld/anugPSVcsvy

Entry address:
0x192DD4

Entry point:
55, 8B, EC, 83, C4, F0, B8, 2C, 28, 59, 00, E8, 0C, 42, E7, FF, A1, 48, 68, 59, 00, 8B, 00, E8, 1C, 1B, F0, FF, 8B, 0D, 0C, 66, 59, 00, A1, 48, 68, 59, 00, 8B, 00, 8B, 15, 68, DB, 58, 00, E8, 1C, 1B, F0, FF, A1, 48, 68, 59, 00, 8B, 00, E8, 90, 1B, F0, FF, E8, BF, 17, E7, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.6540

Developed / compiled with:
Microsoft Visual C++

Code size:
1.6 MB (1,646,592 bytes)

The file jwsearch tool.exe has been discovered within the following programs.

Gmail Notifier Pro  by IntelliBreeze Software
Publisher's description - “Gmail Notifier Pro is a Windows application capable of checking multiple Google Gmail accounts for new mail and display notifications. Google Calendar, Google Reader, Google News, Google Drive, Google+, Facebook, Twitter, Microsoft SkyDrive and RSS/Atom feeds are also supported.”
www.gmailnotifier.se
About 6% of users remove it
WANSCAM version 67.2.0.38  by WANSCAM, Inc.
www.watch-bot.co.uk/support
About 7% of users remove it
 
Powered by Should I Remove It?

The file jwsearch tool.exe has been seen being distributed by the following 5 URLs.

http://script.milrab.no/wanscam/NY CD/.../Search tool.exe

http://www.ctr.com.pl/pobieranie/.../&file=Search tool.exe

https://www.dropbox.com/pri/get/.../Search tool.exe

http://tutoriels.domotique-store.fr/images/WANSCAM/.../logiciel-recherche-camera-wanscam-Windows.exe

http://www.asgariofsweden.se/.../ptg2soekverktyg.exe

Scan jwsearch tool.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.