home

MaxRegistryCleaner.exe

Max Registry Cleaner

Max Secure Software India Pvt. Ltd.

The application MaxRegistryCleaner.exe by Max Secure Software India Pvt has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Max Secure Software  (signed by Max Secure Software India Pvt. Ltd.)

Product:
Max Registry Cleaner

Version:
1, 0, 2, 69

MD5:
090ca36ce123a29f078a85398fc61163

SHA-1:
a544a05df279d84dd4fde009e0ee8744724b4cce

SHA-256:
949f79cf861f60e57000ff003673b298649d46a51671cda3d32c65b8ff4795ce

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/23/2024 1:25:32 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.MaxSecure.Optional.Meta (L)
15.11.30.7

File size:
7 MB (7,332,496 bytes)

Product version:
6, 0, 0, 46

Copyright:
(c) Max Secure Software 2012. All rights reserved.

Original file name:
MaxRegistryCleaner.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\max registry cleaner\maxregistrycleaner.exe

Digital Signature
Signed by:
Max Secure Software India Pvt. Ltd.

Authority:
GlobalSign nv-sa

Valid from:
6/29/2010 3:23:42 PM

Valid to:
6/23/2012 1:27:42 AM

Subject:
E=tech@maxpcsecure.com, CN=Max Secure Software India Pvt. Ltd., O=Max Secure Software India Pvt. Ltd., L=pune, S=MH, C=IN

Issuer:
CN=GlobalSign ObjectSign CA, OU=ObjectSign CA, O=GlobalSign nv-sa, C=BE

Serial number:
0100000000012985618846

File PE Metadata
Compilation timestamp:
10/21/2011 3:07:28 AM

OS version:
4.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
49152:fOJHt/hLqRYD1XnXA80p4KF8/20EnNV0Fwy1KmFwPLALlfdNxtzAj5j30R+4JK:GDhLnX4rVaIc0PwK

Entry address:
0x10C640

Entry point:
48, 83, EC, 28, E8, 67, B3, 00, 00, 48, 83, C4, 28, E9, 0E, FD, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 30, 4D, 85, C9, 49, 8B, D9, 49, 8B, F0, 48, 8B, FA, 74, 52, 48, 85, C9, 75, 38, E8, 79, 4C, 00, 00, 45, 33, C9, 45, 33, C0, 33, D2, 33, C9, 48, C7, 44, 24, 20, 00, 00, 00, 00, C7, 00, 16, 00, 00, 00, E8, DB, 47, 00, 00, B8, 16, 00, 00, 00, 48, 8B, 5C, 24, 40, 48, 8B, 74, 24, 48, 48, 83, C4, 30, 5F, C3, 4D, 85, C0, 74, 22, 48...
 
[+]

Entropy:
6.4566

Code size:
3.1 MB (3,261,952 bytes)

Remove MaxRegistryCleaner.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.