systemprogressiveprotectionremovaltool.exe

Security Stronghold LLC

The application systemprogressiveprotectionremovaltool.exe by Security Stronghold has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Widgi Toolbar Removal Tool by Security Stronghold.
Publisher:
Security Stronghold LLC  (signed and verified)

Version:
1.0.0.0

MD5:
d0a095fb2f8c8827b038dd99045b308b

SHA-1:
d0c933ec79bf5f36102b1f41187581aaae96cdbf

SHA-256:
7da9d7edc423d4dc34b08f1e8a9476738e7e51bb5afa0bde386340a095c8d761

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 9:39:46 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.10.3.19

File size:
5.3 MB (5,588,408 bytes)

Product version:
1.0.0.0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\system progressive protection removal tool\systemprogressiveprotectionremovaltool.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
8/16/2012 5:41:30 AM

Valid to:
11/10/2013 8:49:56 AM

Subject:
E=manager@securitystronghold.com, CN=Security Stronghold LLC, O=Security Stronghold LLC, L=Astrakhan, S=Astrakhan region, C=RU

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121A8E6D4E8876A9E02DB5215F60B91C5F5

File PE Metadata
Compilation timestamp:
11/19/2012 11:08:35 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:cwYM2PuJtuzfbcSabIdR1lC+C6fhmxUDG://JtVSa8dWUDG

Entry address:
0x3B8BCC

Entry point:
55, 8B, EC, B9, 0A, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, B8, 18, 8F, 7A, 00, E8, 14, 33, C5, FF, 8B, 35, 00, FA, 7E, 00, 33, C0, 55, 68, E2, 8D, 7B, 00, 64, FF, 30, 64, 89, 20, 8D, 55, E4, 33, C0, E8, 66, BF, C4, FF, 8B, 45, E4, 8D, 55, E8, E8, 9F, AD, C6, FF, 8B, 45, E8, 8D, 4D, EC, 33, D2, E8, 9E, AB, C6, FF, 8B, 55, EC, 8B, C6, E8, E4, F0, C4, FF, BB, 02, 00, 00, 00, 8D, 45, DC, 8B, 16, 0F, B7, 54, 5A, FC, E8, 28, FC, C4, FF, 8B, 45, DC, 8D, 55, E0, E8, 45, 8D, C6, FF, 8B, 45, E0, 50, 8D...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3.7 MB (3,897,344 bytes)

The file systemprogressiveprotectionremovaltool.exe has been discovered within the following program.

Widgi Toolbar Removal Tool  by Security Stronghold
Widgi Toolbar Removal Tool is designed to remove the adware from the user PC however it also bundles various applications including the Pro registry cleaner which will download utilities from its server and scan the user's PC.
www.securitystronghold.com/gates/remove-widgi-toolbar.html
55% remove it
 
Powered by Should I Remove It?

Remove systemprogressiveprotectionremovaltool.exe - Powered by Reason Core Security