greg.exe

Global Registration

Acer Incorporated

It runs as a scheduled task under the Windows Task Scheduler triggered daily at a specified time. This is installed with multiple programs including eMachines Registration and Acer Registration.
Publisher:
Acer Incorporated  (signed and verified)

Product:
Global Registration

Version:
1.04.3501

MD5:
2d0bc9cb09d2d9bea4cbf7a9f1465e15

SHA-1:
f9213bf2239fdb2083df1f1e0b19c49af6793c99

SHA-256:
21cb4a335ad60649e26864001381e022ebd6f6014b1ef539ca4082f580364064

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
2/21/2014 12:54:33 AM UTC  (six months ago)

File size:
834.1 KB (854,120 bytes)

Product version:
1.04.3501

Copyright:
Copyright (C) Acer Incorporated 2011

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\gateway\registration\greg.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
9/2/2010 5:00:00 PM

Valid to:
9/13/2013 4:59:59 PM

Subject:
CN=Acer Incorporated, OU=OS Certification Dept., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Acer Incorporated, L=Taipei, S=Taiwan, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
0AD6DAF14C6BE378C0E52AA780D2BC0C

File PE Metadata
Compilation timestamp:
4/21/2011 8:36:07 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
12288:yBkIIcxlGJDb4QakXtZJRjdU9v9a7Q222nWz66P6hL/j4qnZzRxV:1ddjYabb4GZHV

Entry address:
0x3E240

Entry point:
FF, 25, 10, F9, 43, 00, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8D, 4D, F0, E9, 76, DD, FF, FF, 8B, 54, 24, 08, 8D, 42, F8, 8B, 4A, F4, 33, C8, E8, D9, E5, FF, FF, B8, 8C, 2B, 49, 00, E9, B9, FF, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 8D, 4D, C4, E9, 50, F7, FF, FF, 8D, 4D, EC, E9, 3E, DD, FF, FF, 8D, 4D, E8, E9, 36, DD, FF, FF, 8D, 4D, 08, E9, 2E, DD, FF, FF, 8D, 4D, B0, E9, 68, 0A, FD, FF, 8B, 54, 24, 08, 8D, 42, 0C, 8B, 4A, AC, 33, C8, E8, 89, E5, FF, FF, B8, 0C, 2C, 49, 00, E9, 69...
 
[+]

Entropy:
6.2332

Code size:
245.5 KB (251,392 bytes)

Scheduled Task
Task name:
Gateway Registration - Reminder Recall task

Trigger:
Daily (Runs daily at 8:00 AM)


The file greg.exe has been discovered within the following programs.

Acer Registration  by Acer Incorporated
Acer Registration is a program that is pre-installed with Acer laptops. If the laptop has not yet been registered with Acer it will periodically popup and promt the user to register. It runs as a scheduled task or service (depending on the version).
www.acer.com
54% remove it
eMachines Registration  by Acer Incorporated
eMachines Registration is a popup window that prompts the user to register their new eMachine PC if they have not done so already. The program is preinstalled with most new eMachine PCs.
www.emachines.com
19% remove it
Gateway Registration  by Gateway Incorporated
Gateway Registration is a popup window that prompts the user to register their new Gateway PC if they have not done so already. The program is preinstalled with most new Gateway PCs.
www.gateway.com
24% remove it
Packard Bell Registration  by Packard Bell
The Packard Bell Registration program is included by default with most new Packard Bell computers.
www.packardbell.com
26% remove it
 
Powered by Should I Remove It?

There are 8 known variations of greg.exe by Acer Incorporated.

0 / 68
greg.exe  1.04.3507  (eb193f76fdbd86e7c3e08fb916aa5941c8ac0f44)

0 / 68
greg.exe  1.04.3506  (ecbf94a3a2825ee4c4a5d9a6d2e7516e9f55e688)

0 / 68
greg.exe  1.04.3505  (01ff961057c2493f0c0256a2dd34db0d7395896c)

0 / 68
greg.exe  1.03.3004  (a1ea7efbe1caa8ba118c281557b88cacc3cbf743)

0 / 68
greg.exe  1.03.3003  (ce7f4930b2fef94ae2ad6295c950c2c822b47511)

0 / 68
greg.exe  1.03.3002  (820a0f776e0c77757dc03e95997b40999529247c)

0 / 68
greg.exe  1.2.3005.0  (4498138b99f430676f2d7fb2fdc3ac2e2a5294f0)

0 / 68
greg.exe  1.2.3004.0  (3fbb52be3c94bae42b598f663d9ab4a7222b0282)

0 / 68
greghsrw.exe  (059b2f4f8d5a1c20e67e2fab2bfc2439906a5403)

0 / 68
globalregistrationmui.dll  (27a9361d895e927d08b0aca2bb0eb4197bd16e79)

Distribution by Country