Uninstall.exe

Uninstall Application

ReviverSoft LLC

The application Uninstall.exe, “RegistryReviver Uninstall Application” by ReviverSoft has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is the uninstaller utility registered in the Windows Control Panel for the program RegistryReviver by ReviverSoft LLC..
Publisher:
ReviverSoft LLC.  (signed by ReviverSoft LLC)

Product:
Uninstall Application

Description:
RegistryReviver Uninstall Application

Version:
1, 0, 0, 2

MD5:
642ec3b67f295d44a635e73741d699f0

SHA-1:
86569e4bbc7a24e3e962eff55fba5e93d0fd1919

SHA-256:
d0f6229922c68260be39661dd4a684b446a474eb78f5c79ea81bce93e1f33f70

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/23/2024 10:11:15 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win64.Generic
16.7.23.10

File size:
77.6 KB (79,504 bytes)

Product version:
1, 0, 0, 2

Copyright:
(c) ReviverSoft LLC.. All rights reserved.

Original file name:
Uninstall.exe

File type:
Executable application (Win64 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\reviversoft\registry reviver\uninstall.exe

Digital Signature
Signed by:

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
10/28/2009 5:00:00 PM

Valid to:
10/26/2010 4:59:59 PM

Subject:
CN=ReviverSoft LLC, OU=Secure Application Development, O=ReviverSoft LLC, L=Walnut Creek, S=California, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
63EB81EA551540406D7B7123BD90D4C3

File PE Metadata
Compilation timestamp:
1/18/2010 4:35:44 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
1536:JHxY8VEBCPc+MZjhu9drRKAaX1sXJVLSGjPVSw:xxY886c+M1hu97xScJVLSE8w

Entry address:
0x2D80

Entry point:
48, 83, EC, 28, E8, 07, 32, 00, 00, 48, 83, C4, 28, E9, 0E, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 40, 53, 48, 83, EC, 60, 48, 8B, 05, D3, 96, 00, 00, 48, 8B, DA, 48, 8D, 54, 24, 20, 48, 89, 02, 48, 8B, 05, C9, 96, 00, 00, 48, 89, 42, 08, 48, 8B, 05, C6, 96, 00, 00, 48, 89, 42, 10, 48, 8B, 05, C3, 96, 00, 00, 48, 89, 42, 18, 48, 8B, 05, C0, 96, 00, 00, 48, 89, 42, 20, 48, 8B, 05, BD, 96, 00, 00, 48, 89, 42, 28, 48, 8B, 05, BA, 96, 00, 00, 48, 89, 42, 30, 48, 8B, 05, B7, 96, 00...
 
[+]

Entropy:
5.9974

Code size:
41.5 KB (42,496 bytes)

Program Uninstaller
Program name:
RegistryReviver

Display publisher:
ReviverSoft LLC.

Display version:
1.3.13

Uninstall string:
C:\Program Files\ReviverSoft\Registry Reviver\Uninstall.exe


Remove Uninstall.exe - Powered by Reason Core Security