alexatoolbarremovaltool.exe

Removal Tool

Security Stronghold LLC

The application alexatoolbarremovaltool.exe by Security Stronghold has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. Additionally, the file is typically installed by a number of programs including Deep Throat Removal Tool by Security Stronghold and Coupon Bar Removal Tool [1] by Security Stronghold.
Publisher:
Security Stronghold  (signed by Security Stronghold LLC)

Product:
Removal Tool

Version:
1.0.0.0

MD5:
64b8e85eb4b44b116b1d30e7ab7c4275

SHA-1:
615b9a058a457be22e0d119666983461fd302647

SHA-256:
c775b0a465c0aff3fd90a9869ebccf3d8bd17f3c339573e643d4d06109567c50

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 6:45:47 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.2.29.16

File size:
3.3 MB (3,438,520 bytes)

Product version:
1.0.0.0

Copyright:
(C) Security Stronghold, 2003-2010

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\alexa toolbar removal tool\alexatoolbarremovaltool.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
10/10/2011 12:49:57 PM

Valid to:
10/10/2012 12:49:57 PM

Subject:
E=manager@securitystronghold.com, CN=Security Stronghold LLC, O=Security Stronghold LLC, L=Astrakhan, S=Astrakhan region, C=RU

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
112178C42A18008AB27616B3F5140692C337

File PE Metadata
Compilation timestamp:
10/3/2011 2:00:11 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:AcQIbrPre4qmcf+BZkTUwIXHENrTy5T3AnnLJddxcppIz1a:qIXdqmoTUwIXHwaanYJ

Entry address:
0x21CDD0

Entry point:
55, 8B, EC, B9, 0A, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, B8, F0, 88, 61, 00, E8, FC, C4, DE, FF, 8B, 35, D0, D6, 64, 00, 33, C0, 55, 68, E6, CF, 61, 00, 64, FF, 30, 64, 89, 20, 8D, 55, E4, 33, C0, E8, 56, 67, DE, FF, 8B, 45, E4, 8D, 55, E8, E8, 3F, 20, DF, FF, 8B, 45, E8, 8D, 4D, EC, 33, D2, E8, 8A, 1C, DF, FF, 8B, 55, EC, 8B, C6, E8, AC, 96, DE, FF, BB, 02, 00, 00, 00, 8D, 45, DC, 8B, 16, 0F, B7, 54, 5A, FC, E8, 14, 98, DE, FF, 8B, 45, DC, 8D, 55, E0, E8, 31, 01, DF, FF, 8B, 45, E0, 50, 8D...
 
[+]

Entropy:
6.8144

Developed / compiled with:
Microsoft Visual C++

Code size:
2.1 MB (2,209,792 bytes)

The file alexatoolbarremovaltool.exe has been discovered within the following programs.

Babylon Toolbar Removal Tool  by Security Stronghold
During installation, the Security Stronghold Removal Tool utility will provide various bundled applications including RegClean Pro registry cleaner. It will then download utilities from its server and scan the user's PC.
www.SecurityStronghold.com
68% remove it
Coupon Bar Removal Tool [1]  by Security Stronghold
64% remove it
Deep Throat Removal Tool  by Security Stronghold
Publisher's description - “DeepThroat 1.0 can infect your PC from different sources. It can infiltrate computer through peer-to-peer applications, adult sites and also it can come bundled with adware or spyware. Then it copies its file(s) to your hard disk. Its typical file name is morfitwebentrance.exe .”
60% remove it
Free Download Manager Removal Tool  by Security Stronghold
67% remove it
Win 32. Trojan . Keylogger Removal Tool  by Security Stronghold
Publisher's description - “One of the main rules of a Win32.Trojan.Keylogger-safe machine is installation of Win32.Trojan.Keylogger removal tool. Win32.Trojan.Keylogger is not spoken to steal any private information such as VISA or MasterCard numbers but it doesn't denote that you should not remove Win32.”
67% remove it
 
Powered by Should I Remove It?

Remove alexatoolbarremovaltool.exe - Powered by Reason Core Security