home

Uninstall.exe

Mixxen

Surf Island Solutions

This is the uninstall module for the Injekt branded web browser extension program which injects advertising in the web browser as well as modifies the browser settings. The uninstaller is registered within Control Panel > Add/Remove Programs. The application Uninstall.exe by Surf Island Solutions has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software.
Publisher:
Surf Island Solutions  (signed and verified)

Product:
Mixxen

Description:
Mixxen Uninstall

Version:
1.0.0.0

MD5:
a36238d3ff755cb2b6c5bde31448ced2

SHA-1:
c81c595263cc6157cdb5be3372f443dd26efcd93

SHA-256:
266067d18cd8cbad82bd362eb0699183732aa0a30c27394cc9bca8cd5d9f210d

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Injects display ads (banner ads), in-text ads, interstitial ads, or other types of ads in the web browser as well as alters the browsers settings (home page, search, DNS, and security protocols).

Analysis date:
11/24/2024 8:04:38 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Injekt (M)
17.1.30.8

File size:
687.8 KB (704,352 bytes)

Product version:
1.0.0.0

Copyright:
Copyright © Surf Island Solutions 2014

Original file name:
Uninstall.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\ProgramData\mixxen\uninstall.exe

Digital Signature
Signed by:
Surf Island Solutions

Authority:
VeriSign, Inc.

Valid from:
3/2/2014 7:00:00 PM

Valid to:
3/3/2015 6:59:59 PM

Subject:
CN=Surf Island Solutions, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Surf Island Solutions, L=St. James, S=St. James, C=BB

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6FB79DDB9BE296B956A7181848AE7E71

File PE Metadata
Compilation timestamp:
12/16/2014 8:57:14 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

.NET CLR dependent:
Yes

Entry address:
0x840EE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
7.8227

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
520.5 KB (532,992 bytes)

Remove Uninstall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.