home

fixmyregistry.exe

SmartTweak Software Ltd

The application fixmyregistry.exe, “FixMyRegistry Installation ” by SmartTweak Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program FixMyRegistry by SmartTweak Software.
Publisher:
SmartTweak Software   (signed by SmartTweak Software Ltd)

Description:
FixMyRegistry Installation

Version:
7.0.0.191

MD5:
b76aeb8f4d4e22eab35fc70fae47c8e9

SHA-1:
90821d61224bfdcc578a8461d590a4c4e3b5aee1

SHA-256:
47cf24b5d5ebcb41fc06070ab51655fbb560be5e90caf096e337731b5c056704

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 9:28:11 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.2.9.2

File size:
2.7 MB (2,845,408 bytes)

Copyright:
All rights reserved

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\{ccf5d5cc-47c1-4224-a296-ef047ff0221f}\fixmyregistry.exe

Digital Signature
Signed by:
SmartTweak Software Ltd

Authority:
Thawte, Inc.

Valid from:
5/9/2011 3:00:00 AM

Valid to:
5/9/2013 2:59:59 AM

Subject:
CN=SmartTweak Software Ltd, OU=IT Department, O=SmartTweak Software Ltd, L=Rostov-on-Don, S=Rostov-on-Don, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
6699CC0BE07AF8B99313774639759B1B

File PE Metadata
Compilation timestamp:
6/16/2009 5:37:20 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:khXM/KvXnHs6gSHk9A6p2dGw4sb1eF8CuCiW+sn6wlreEP0H8UBm:qtvHau6uGyJ08C+Wt6AeEz

Entry address:
0x1D3C4C

Entry point:
55, 8B, EC, B9, 28, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, 57, B8, 7C, F8, 5C, 00, E8, AB, 47, E3, FF, 33, C0, 55, 68, CA, 57, 5D, 00, 64, FF, 30, 64, 89, 20, 33, C0, 55, 68, 7C, 3D, 5D, 00, 64, FF, 30, 64, 89, 20, C7, 05, B8, 64, 5E, 00, 94, 00, 00, 00, 68, B8, 64, 5E, 00, E8, B3, 50, E3, FF, E8, 1A, 68, FE, FF, 84, C0, 74, 6B, B2, 01, A1, FC, DB, 42, 00, E8, BA, A0, E5, FF, 8B, D8, BA, 00, 00, 00, 80, 8B, C3, E8, 88, A1, E5, FF, 8D, 55, E4, 33, C0, E8, 66, F8, E2, FF, 8B, 45, E4, 8D, 55, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.8 MB (1,921,024 bytes)

Program Uninstaller
Program name:
FixMyRegistry

Display publisher:
SmartTweak Software

Display version:
7.0.0.191

Uninstall string:
"C:\ProgramData\{CCF5D5CC-47C1-4224-A296-EF047FF0221F}\FixMyRegistry.exe" REMOVE=TRUE MODIFY=FALSE


Remove fixmyregistry.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.