GoogleDNSHelper.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 1/56 Related 2714
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 89.50 KB (91648 bytes)
Compile time: 2009-12-21 13:55:03
MD5: 7b43d3abf1a6fa6776df85567954574e
SHA1: 88935c91f59bd915357d33e33cc277984f1635df
SHA256: 6121455c173c69cee994e981a077c475839bb35da1a9b6b91708c743b11a51d3
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 4 import resource debug relocation
First submission: 2016-10-04 22:39:02
Last submission: 2016-10-04 22:39:02
Filename detected: - GoogleDNSHelper.exe (1)
URL file hosting
hXXp://inversekarma.in/docs/GoogleDNSHelper.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2016-10-04 23:20:07 [1/56] VirusTotal
PE Sections 1 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x11c74 73216 7fab3a5bee445b887b8373ad960e9f0b cea9b12d0fbd8275c9d0da50fe231dcb9b7ff3d4
.rsrc 0x14000 0x42b0 17408 cca8383d91e03759ad97b5d82a079c92 ff906f6976856309a03f8b10b083404b06bfb6c4
.reloc 0x1a000 0xc 512 dca9a130a9830971e4576fd93217bdb6 9e07e52b630bd172c94604d6faee214b44c36e66
PE Resources
Name Offset Size Language Sublanguage Data
RT_ICON 0x15ae8 9640 LANG_NEUTRAL SUBLANG_NEUTRAL
RT_GROUP_ICON 0x18090 48 LANG_NEUTRAL SUBLANG_NEUTRAL
RT_VERSION 0x14190 1092 LANG_NEUTRAL SUBLANG_NEUTRAL
RT_MANIFEST 0x180c0 490 LANG_NEUTRAL SUBLANG_NEUTRAL
  • API Alert
  • Anti Debug
Meta Info
LegalCopyright: Copyright \xa9 Inverse Karma 2009
Assembly Version: 1.2.0.0
InternalName: GoogleDNSHelper.exe
FileVersion: 1.2.0.0
CompanyName: Inverse Karma
LegalTrademarks: Ganesh Prasannah
Comments: A simple utility to configure your internet connection to use Google Public DNS
ProductName: Google DNS Helper
ProductVersion: 1.2.0.0
FileDescription: Google DNS Helper
Translation: 0x0000 0x04b0
OriginalFilename: GoogleDNSHelper.exe
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
8.8.4.4
8.8.8.8
URL(s)
http://inversekarma.in
Assembly Version
GoogleDNSHelper.exe
Rather go back to your old DNS server?
Your current DNS address:
SetDNSServerSearchOrder
VarFileInfo
No DNS saved!
Comments
ProductVersion
Restore DNS
textBox1
8.8.4.4
pictureBox2
Are you sure you want to restore your DNS address?
Restore Successful
A simple utility to configure your internet connection to use Google Public DNS
Inverse Karma
InternalName
DNSServerSearchOrder
Error #
Switch Successful
groupBox1
button1
groupBox3
groupBox2
VS_VERSION_INFO
1.2.0.0
StringFileInfo
label1
IPEnabled
http://inversekarma.in
Translation
Below, you can see your current DNS server address. The Google DNS Helper can backup this address and switch it to Google's DNS address. You can restore your original address anytime you want.
Are you sure you want to do it again?
(Users upgrading to a newer version might wanna click on 'Yes')
LegalCopyright
About
label3
DNS address succesfully switched to Google Public DNS.
FileVersion
Copyright
WorkingDNS
Confirm Restore
label2
SELECT * FROM Win32_NetworkAdapterConfiguration WHERE IPEnabled = 'TRUE'
label4
Google DNS Helper
label5
Thank you Google, StackOverflow && MSDN Social for helping me put together this free utility. Hope you find it useful.
Form2
Form1
Switch to Google Public DNS
linkLabel1
DNS address succesfully restored to
FileDescription
Switch to Google DNS
Restore DNS
8.8.8.8
OriginalFilename
$this.Icon
info
About Google DNS Helper
speedo
label2.Text
Confirm Switching
2009 - Ganesh Prasannah
CompanyName
LegalTrademarks
000004b0
Inverse Karma 2009
ProductName
button2
Win32_NetworkAdapterConfiguration
What is this?
google_public_dns
GoogleDNSHelper.Properties.Resources
Looks like you're using Google's DNS server already.
Ganesh Prasannah
pictureBox1
InsertSeparator
AutoScaleMode
*Z8h
~w=B7&
DefaultSettingValueAttribute
/hk
EB)1
PNG
.cctor
FromForm
Object
set_FormBorderStyle
mscorlib
fSystem.Drawing.Icon, System.Drawing, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3aBj
*f%;
mfByPosition
bYM[HE?
TextBoxBase
QSystem.Drawing, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a
set_AcceptButton
3System.Resources.Tools.StronglyTypedResourceBuilder
set_UseVisualStyleBackColor
ManagementObject
System.Runtime.InteropServices
ControlCollection
GoogleDNSHelper.Form2.resources
get_Controls
Label
AssemblyConfigurationAttribute
ManagementBaseObject
]UI5
CultureInfo
Form
LinkLabelLinkClickedEventHandler
BSJB
SizeF
7=s}
x5B8'
SI<CLHC
2.0.0.0
s[Va
set_MinimizeBox
G ?0d
isAlreadyUsing
C/3|R
System.Runtime.CompilerServices
&\8,X|hg
Size
lL2,
set_ShowInTaskbar
^UH5SMC
op_Equality
s666
n "E
0 hiI
Zero
LJP
Enum
p< _
HcPSa
L\(3
mfDisabled
get_Culture
AssemblyDescriptionAttribute
Default
0X8t
get_Length
EnableVisualStyles
`-cc
mfSeparator
InvokeMethod
RG:Aslb
G.,)
bYMQLF=
HG_B
AssemblyCompanyAttribute
gfghlo
C*'$
ComVisibleAttribute
ResumeLayout
NewID
TBB%4
SystemMenu
sssk|
<?xml version="1.0" encoding="UTF-8" standalone="yes"?> <assembly xmlns="urn:schemas-microsoft-com:asm.v1" manifestVersion="1.0"> <assemblyIdentity version="1.0.0.0" name="MyApplication.app"/> <trustInfo xmlns="urn:schemas-microsoft-com:asm.v2"> <security> <requestedPrivileges xmlns="urn:schemas-microsoft-com:asm.v3"> <requestedExecutionLevel level="asInvoker" uiAccess="false"/> </requestedPrivileges> </security> </trustInfo> </assembly>
groupBox1
System.ComponentModel
groupBox3
}!e\Q
GuidAttribute
NewId
SetCompatibleTextRenderingDefault
FormStartPosition
mfBarBreak
lSystem.Resources.ResourceReader, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089#System.Resources.RuntimeResourceSet
mfByCommand
PictureBox
DebuggingModes
Flags
MessageBoxIcon
xusv
GoogleDNSHelper
D@ a
get_Assembly
!This program cannot be run in DOS mode. $
AssemblyCultureAttribute
ButtonBase
ds53
t"s%
x)K@1
GetMethodParameters
}vAK@1
ArrangedElementCollection
Dispose
set_TextAlign
5^7K
7)'#
@ &
orr>
groupBox2
AssemblyTrademarkAttribute
Xv>m
get_Current
FormBorderStyle
set_Text
google_public_dns
LinkLabelLinkClickedEventArgs
mfChecked
set_ClientSize
ToString
NL=r
#Blob
Control
mfUnchecked
isBackupPresent
Program
@@@PPP
button2_Click
InsertMenu
$f96a4f74-5222-4ef7-b471-d793cddc0953
textBox1
get_info
Save
Type
resourceCulture
G1/.
B.b&
c2
ContentAlignment
UIDATXG
mfPopup
ed6
set_Culture
get_ResourceManager
AssemblyTitleAttribute
apiInsertMenu
ShowDialog
>%H1Uf
TextBox
IntPtr
speedo
} h_TQKC7
defaultInstance
)fk\
HorizontalAlignment
UNDUMJF
v2.0.50727
add_Load
GoogleDNSHelper.exe
SettingsBase
cqX9
get_Name
Start
set_Item
LinkLabel
t!- ]
get_Default
d*#s
width
c0 6
@"r0X
get_google_public_dns
Data
Exception
'/`K
5SL+
vG@`
EditorBrowsableState
^UH5
1fY &
add_Click
.ctor
GetSystemMenu
set_Size
h_TQ
GetTypeFromHandle
get_MessageBoxFont
DllImportAttribute
GetEnumerator
Form2_Load
DialogResult
<;;]]]FFE
Main
-A KX
.text
]UI5LE<
get_Text
GetObject
D:\Drive F\Code Zone\Dot NET\GoogleDNSHelper\GoogleDNSHelper\obj\Debug\GoogleDNSHelper.pdb
;a#xA2
apiGetSystemMenu
0$8J6
Button
System.Configuration
set_TabStop
System.Reflection
System.Windows.Forms.Layout
PerformLayout
Boolean
ISupportInitialize
WrapNonExceptionThrows
SI<C
SystemFonts
OA simple utility to configure your internet connection to use Google Public DNS
@.reloc
bYMQHB9
+4!'
Resources
Form1_Load
set_WorkingDNS
CompilationRelaxationsAttribute
get_speedo
PAsV
@/Rd
add_LinkClicked
wmSysCommand
! `0
MoveNext
label1
label2
label3
label4
label5
Ganesh Prasannah
get_WorkingDNS
a,t
AppendSeparator
linkLabel1_LinkClicked
m_SystemMenu
ManagementObjectSearcher
set_ReadOnly
`.rsrc
&(K (G4
hMenu
button2
button1

s.-+
IconData
bYMQ
set_AutoScaleDimensions
ItemFlags
bYM[
lf,
pictureBox1
pictureBox2
@yZ@
MessageBox
UMCUMLJ
+@ Z
bReset
USER32
set_Image
IEND
set_Font
#x' ^i
Settings
MenuHandle
RSDS9
8rwo:3 D3
Google DNS Helper
linkLabel1
P hV
set_TabIndex
GIF89a
IDisposable
GoogleDNSHelper.Properties.Resources.resources
iCCPICC Profile
Synchronized
E j@
,@
FVwt 4
get_Item
FontStyle
s)&#
height
RuntimeCompatibilityAttribute
R@ }4c
-<3L9@,
AssemblyProductAttribute
Assembly
9.0.0.0
Copyright
get_Handle
GraphicsUnit
<Module>
Concat
Inverse Karma 2009
System.Drawing.Size
ReferenceEquals
SuspendLayout
sender
Process
value
Bitmap
Culture
IButtonControl
ToInt32
{LSW
CompilerGeneratedAttribute
6tzmK
GoT.
{sKD=3
WindowHandle
ManagementStatus
UNDU
y-UK=
m_SysMenu
mPfYr
t[@S
*Vs"
button1_Click
System.Management
#GUID
/i>@`ar
AssemblyFileVersionAttribute
IContainer
set_AutoScaleMode
Inverse Karma
get_ProductVersion
Item
System.Resources
ResetSystemMenu
GetString
EndInit
Form2
GoogleDNSHelper.Form1.resources
hSystem.Drawing.Bitmap, System.Drawing, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3afSystem.Drawing.Icon, System.Drawing, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3aPADPADPtM.E
NoSystemMenuException
components
RuntimeTypeHandle
set_MaximizeBox
3~:x
ApplicationSettingsBase
>0"/
1@#+
rMpc(=lM
1.2.0.0
AppendMenuW
set_AutoSize
Icon
EventHandler
STAThreadAttribute
$lA@
mfString
IHDR
Form1
@ a@
GetInstances
Position
me[
System.Globalization
KKKZZZ
ResourceManager
Show
IconSize
}vAG=-
Font
GoogleDNSHelper.Properties
NETSCAPE2.0
AssemblyVersionAttribute
WindowMessages
ContainerControl
System
EventArgs
Application
]pN#
System.Drawing.Icon
String
g?w)1y
_CorExeMain
DebuggerNonUserCodeAttribute
VerifyItemID
gJ4&@
MakeTheBigSwitch
h@*<_
x RLB
cHRM
ManagementClass
O`J@
x5h`U
WorkingDNS
ihi```
UserScopedSettingAttribute
#Strings
System.Collections
Image
u!Y
get_Msg
AppendMenu
set_Icon
Every time you visit a website, your computer performs a DNS lookup. In fact, your computer performs hundreds of lookups everyday! Google Public DNS is a free, global Domain Name System (DNS) resolution service, that you can use as an alternative to your current DNS provider.
AssemblyCopyrightAttribute
GroupBox
Message
ManagementObjectCollection
EditorBrowsableAttribute
yqOme[
RG:A[UL
mscoree.dll
WndProc
m_AboutID
,l(AQ
BeginInit
UL>
resourceMan
MessageBoxButtons
get_ErrorCode
mfGrayed
info
-P F
System.Diagnostics
IEnumerator
set_StartPosition
System.Drawing
ManagementObjectEnumerator
System.Windows.Forms
InsertMenuW
;/^
mfBreak
0 j9
set_Name
set_Enabled
System.Drawing.Bitmap
)3f`
ManagementException
KMicrosoft.VisualStudio.Editors.SettingsDesigner.SettingsSingleFileGenerator
DebuggableAttribute
'p/K
get_WParam
System.CodeDom.Compiler
;{ P
3mJ<
GeneratedCodeAttribute
disposing
value__
InitializeComponent
ComponentResourceManager
Remove
InvokeMethodOptions
apiAppendMenu
i Zs
"IxwwNh$_
set_Location
g OP
Point
!1dB
gAMA

#infosec #automation

TheSystem Itself @ 2016-10-04 22:39:02