home

fixmyregistry.exe

SmartTweak Software Ltd

The application fixmyregistry.exe, “FixMyRegistry Installation ” by SmartTweak Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program FixMyRegistry by SmartTweak Software.
Publisher:
SmartTweak Software   (signed by SmartTweak Software Ltd)

Description:
FixMyRegistry Installation

Version:
9.0.0.6

MD5:
524690da5ea137c0a0597a4ecbebb8fb

SHA-1:
e66232bdb09ad6d6774e4f200124cecc4c8f71d9

SHA-256:
545e2861a1cba924a0a009ed3f22f69a659e02b89dc3240fadb352b04d2eac7f

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 10:04:41 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.2.9.3

File size:
2.7 MB (2,846,136 bytes)

Copyright:
All rights reserved

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\ProgramData\{c2d2e7f4-d432-4c53-af08-923af2ea37eb}\fixmyregistry.exe

Digital Signature
Signed by:
SmartTweak Software Ltd

Authority:
Thawte, Inc.

Valid from:
5/9/2011 2:00:00 AM

Valid to:
5/9/2013 1:59:59 AM

Subject:
CN=SmartTweak Software Ltd, OU=IT Department, O=SmartTweak Software Ltd, L=Rostov-on-Don, S=Rostov-on-Don, C=RU

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
6699CC0BE07AF8B99313774639759B1B

File PE Metadata
Compilation timestamp:
6/16/2009 4:37:20 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:IhXM/KvXnHs6gSHk9A6p2dGw4sb1eF8CuCiW+sn6wlreEP0H8UB5:2tvHau6uGyJ08C+Wt6AeEM

Entry address:
0x1D3C4C

Entry point:
55, 8B, EC, B9, 28, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, 57, B8, 7C, F8, 5C, 00, E8, AB, 47, E3, FF, 33, C0, 55, 68, CA, 57, 5D, 00, 64, FF, 30, 64, 89, 20, 33, C0, 55, 68, 7C, 3D, 5D, 00, 64, FF, 30, 64, 89, 20, C7, 05, B8, 64, 5E, 00, 94, 00, 00, 00, 68, B8, 64, 5E, 00, E8, B3, 50, E3, FF, E8, 1A, 68, FE, FF, 84, C0, 74, 6B, B2, 01, A1, FC, DB, 42, 00, E8, BA, A0, E5, FF, 8B, D8, BA, 00, 00, 00, 80, 8B, C3, E8, 88, A1, E5, FF, 8D, 55, E4, 33, C0, E8, 66, F8, E2, FF, 8B, 45, E4, 8D, 55, E8...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
1.8 MB (1,921,024 bytes)

Program Uninstaller
Program name:
FixMyRegistry

Display publisher:
SmartTweak Software

Display version:
9.0.0.6

Uninstall string:
"C:\ProgramData\{C2D2E7F4-D432-4C53-AF08-923AF2EA37EB}\FixMyRegistry.exe" REMOVE=TRUE MODIFY=FALSE


Remove fixmyregistry.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.