home

internationalcybersecurityprotectionalliancevirusremovaltool.exe

Security Stronghold LLC

The application internationalcybersecurityprotectionalliancevirusremovaltool.exe by Security Stronghold has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. Additionally, the file is typically installed by a number of programs including Mixi DJRemoval Tool (4) by Security Stronghold and USBFlashdisk Removal Tool by Security Stronghold.
Publisher:
Security Stronghold  (signed by Security Stronghold LLC)

Version:
1.0.0.100

MD5:
239ca1e78f6b9725c8215cc89c27d718

SHA-1:
cf68962bea612991b3cf4d2882305146db774471

SHA-256:
e8ee63ba9fe632a568b94e34915826e5a57ea4c4c28684b9e0c2803b908bd3ae

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/18/2024 8:49:32 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.8.11.8

File size:
5.4 MB (5,673,400 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\international cyber security protection alliance virus removal tool\internationalcybersecurityprotectionalliancevirusremovaltool.exe

Digital Signature
Signed by:
Security Stronghold LLC

Authority:
GlobalSign nv-sa

Valid from:
8/16/2012 4:41:30 AM

Valid to:
11/10/2013 5:49:56 AM

Subject:
E=manager@securitystronghold.com, CN=Security Stronghold LLC, O=Security Stronghold LLC, L=Astrakhan, S=Astrakhan region, C=RU

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121A8E6D4E8876A9E02DB5215F60B91C5F5

File PE Metadata
Compilation timestamp:
5/13/2013 8:30:33 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:eWcRbsqhVhgSlDXrHrgrwBWhWCIxuxP2LYkGobwWx1LJTEZJ6mK8q98Lppyk:eWchsqsXhVP2MkGCwWIL4k

Entry address:
0x3A4BC0

Entry point:
55, 8B, EC, B9, 0A, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 51, 53, 56, B8, E8, 4A, 79, 00, E8, 2C, 7C, C6, FF, 8B, 35, 24, 32, 80, 00, 33, C0, 55, 68, D6, 4D, 7A, 00, 64, FF, 30, 64, 89, 20, 8D, 55, E4, 33, C0, E8, 72, FF, C5, FF, 8B, 45, E4, 8D, 55, E8, E8, FB, F5, C7, FF, 8B, 45, E8, 8D, 4D, EC, 33, D2, E8, FA, F3, C7, FF, 8B, 55, EC, 8B, C6, E8, 74, 3B, C6, FF, BB, 02, 00, 00, 00, 8D, 45, DC, 8B, 16, 0F, B7, 54, 5A, FC, E8, 44, 46, C6, FF, 8B, 45, DC, 8D, 55, E0, E8, 51, D6, C7, FF, 8B, 45, E0, 50, 8D...
 
[+]

Entropy:
6.7191

Developed / compiled with:
Microsoft Visual C++

Code size:
3.6 MB (3,815,424 bytes)

The file internationalcybersecurityprotectionalliancevirusremovaltool.exe has been discovered within the following programs.

Babylon Toolbar Removal Tool  by Security Stronghold
During installation, the Security Stronghold Removal Tool utility will provide various bundled applications including RegClean Pro registry cleaner. It will then download utilities from its server and scan the user's PC.
www.SecurityStronghold.com
68% remove it
Delta Search Toolbar Removal Tool  by Security Stronghold
82% remove it
Mixi DJRemoval Tool (4)  by Security Stronghold
52% remove it
Shopping Sidekick Removal Tool  by Security Stronghold
Publisher's description - “Shopping Sidekick copies its file(s) to your hard disk. Its typical file name is ShoppingSidekick.exe. Then it creates new startup key with name Shopping Sidekick and value ShoppingSidekick.exe. You can also find it in your processes list with name ShoppingSidekick.”
63% remove it
USBFlashdisk Removal Tool  by Security Stronghold
Publisher's description - “Fast, easy, and handy, USB Flashdisk Removal Tool protects your computer against USB Flashdisk that does harm to your computer and breaks your privacy. USB Flashdisk Removal Tool scans your hard disks and registry and destroys any manifestation of USB Flashdisk.”
54% remove it
 
Powered by Should I Remove It?

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.