home

hdd regenerator.exe

Abstradrome

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘HDD Regenerator’. This file is installed with the program HDD Regenerator.
Publisher:
Abstradrome  (signed and verified)

MD5:
acbb91346bc0b676a5876ecdec1a3a28

SHA-1:
dc6a2c9a5d17415fbd4a76d08f2188ced33113c7

SHA-256:
6a6d3479c53f5a1621fae1203f20f80ac9c79de19932dc36a6209f20f6e8bb9c

Scanner detections:
2 / 68

Status:
Clean  (2 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 2:44:55 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
PAK_Generic.009
7.2.13

Trend Micro
PAK_Generic.009
10.465.13

File size:
2.3 MB (2,425,104 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\hdd regenerator\hdd regenerator.exe

Digital Signature
Signed by:
Abstradrome

Authority:
The USERTRUST Network

Valid from:
8/1/2010 5:00:00 PM

Valid to:
8/2/2015 4:59:59 PM

Subject:
CN=Abstradrome, O=Abstradrome, STREET="Prohodchikov 16, 224", L=Moscow, S=Moscow, PostalCode=129347, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00D8AFFED58D5D741099FD285157733B00

File PE Metadata
Compilation timestamp:
10/19/2010 3:37:00 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
83.82

CTPH (ssdeep):
49152:RfbxE+YG/YONd8TcE+PcddjtHxjEvoCQmYqMFc+IA:RtYJONE+0ddjUvMmYKtA

Entry address:
0xB128FF

Entry point:
E8, E0, D7, 00, 00, E9, 16, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, 55, 8B, EC, 57, 56, 8B, 75, 0C, 8B, 4D, 10, 8B, 7D, 08, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, A4, 01, 00, 00, 81, F9, 00, 01, 00, 00, 72, 1F, 83, 3D, 24, F3, F7, 00, 00, 74, 16, 57, 56, 83, E7, 0F, 83, E6, 0F, 3B, FE, 5E, 5F, 75, 08, 5E, 5F, 5D, E9, A8, D8, 00, 00, F7, C7, 03, 00, 00, 00, 75, 15, C1, E9, 02, 83, E2, 03, 83, F9, 08, 72, 2A, F3, A5, FF, 24, 95, 84, 2A, F1, 00, 90, 8B, C7, BA, 03, 00, 00, 00, 83, E9, 04, 72...
 
[+]

Entropy:
7.5895

Code size:
708 KB (724,992 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
HDD Regenerator

Command:
"C:\Program Files\hdd regenerator\hdd regenerator.exe"


The file hdd regenerator.exe has been discovered within the following program.

HDD Regenerator  by Abstradrome
Publisher's description - “Hard disk drive is an integral part of every computer. It stores all your information. One of the most prevalent defects of hard drives is bad sectors on the disk surface. Bad sectors are a part of the disk surface which contains not readable, but frequently necessary information.”
www.abstradrome.com/hdd.html
4% remove it
 
Powered by Should I Remove It?

Scan hdd regenerator.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.