jv16pt_preworker2.exe

Macecraft Software (Macecraft Oy)

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘jv16 PT 2017 (System Startup Check)’. This is installed with jv16 PowerTools 2017.
Publisher:
Macecraft Software (Macecraft Oy)  (signed and verified)

MD5:
312d89695c745e4215b78ed02abf06fe

SHA-1:
46e6039ce1eec902b04e6b02fc242021da9a60b4

SHA-256:
a3412ed08ccd62ff7c0c3ea6a117e774dcfcb04704a05bc6e3aea885df720cee

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/15/2024 1:28:37 PM UTC  (today)

File size:
455.9 KB (466,840 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\jv16 powertools 2017\jv16pt_preworker2.exe

Digital Signature
Authority:
COMODO CA Limited

Valid from:
5/4/2015 1:00:00 AM

Valid to:
5/4/2017 12:59:59 AM

Subject:
CN=Macecraft Software (Macecraft Oy), O=Macecraft Software (Macecraft Oy), STREET=Isolinnankatu 21E, L=PORI, S=Satakunta, PostalCode=28100, C=FI

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
2B19A97CD29B956096EFD458777284BA

File PE Metadata
Compilation timestamp:
2/16/2017 5:37:04 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x181270

Entry point:
60, BE, 00, 30, 51, 00, 8D, BE, 00, E0, EE, FF, C7, 87, 04, FA, 13, 00, 19, 2A, A1, 42, 57, 89, E5, 8D, 9C, 24, 80, C1, FF, FF, 31, C0, 50, 39, DC, 75, FB, 46, 46, 53, 68, D4, FB, 17, 00, 57, 83, C3, 04, 53, 68, 62, E2, 06, 00, 56, 83, C3, 04, 53, 50, C7, 03, 03, 00, 00, 00, 90, 90, 90, 55, 57, 56, 53, 83, EC, 7C, 8B, 94, 24, 90, 00, 00, 00, C7, 44, 24, 74, 00, 00, 00, 00, C6, 44, 24, 73, 00, 8B, AC, 24, 9C, 00, 00, 00, 8D, 42, 04, 89, 44, 24, 78, B8, 01, 00, 00, 00, 0F, B6, 4A, 02, 89, C3, D3, E3, 89, D9...
 
[+]

Entropy:
7.9891  (probably packed)

Code size:
444 KB (454,656 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
jv16 PT 2017 (System Startup Check)

Command:
"C:\Program Files\jv16 powertools 2017\jv16pt_preworker2.exe" \sysstartupcheck \pC:"C:\Program Files\jv16 powertools 2017\"


The file jv16pt_preworker2.exe has been discovered within the following programs.

jv16 PowerTools 2017  by Macecraft Software
www.macecraft.com
About 5% of users remove it
 
Powered by Should I Remove It?

Scan jv16pt_preworker2.exe - Powered by Reason Core Security