home

regorganizer.exe

Reg Organizer

Konstantin Polyakov

Publisher:
ChemTable Software  (signed by Konstantin Polyakov)

Product:
Reg Organizer

Version:
5.0.0.0

MD5:
fa832493865368286b6cce0e35a4e164

SHA-1:
36a189f19cb6a063d5f900abec59272c3afd86e6

SHA-256:
7e74b2d15e0a6a710278f1eb92b25b9bc33f5d8cf649a4ec3c8fc0613166d655

Scanner detections:
3 / 68

Status:
Clean  (3 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/25/2024 2:35:41 AM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
PUA.Packed.ASPack
0.98/18155

Rising Antivirus
Suspicious
23.00.65.141106

Trend Micro House Call
WORM_BAGLE.BMH
7.2.312

File size:
2.7 MB (2,871,488 bytes)

Product version:
5.0 RC1

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\reg organizer\regorganizer.exe

Digital Signature
Signed by:
Konstantin Polyakov

Authority:
The USERTRUST Network

Valid from:
6/23/2009 4:00:00 AM

Valid to:
6/24/2010 3:59:59 AM

Subject:
CN=Konstantin Polyakov, O=Konstantin Polyakov, STREET="Mira str., 36-18", L=Ekaterinburg, S=N/A, PostalCode=620078, C=RU

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00975D70435BCFE7E20AC00DD74BA0CB32

File PE Metadata
Compilation timestamp:
11/25/2009 10:05:41 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.0

CTPH (ssdeep):
49152:EJOvYlgDcbd/NmqKodtuIyffg/MQ34F66KDdh:hq/NKEUr6Mq4F6F3

Entry address:
0x1000

Entry point:
68, 01, 90, 9D, 00, E8, 01, 00, 00, 00, C3, C3, C3, 36, DD, 4E, 22, F9, 27, FB, 8F, 45, 8D, 88, A6, 86, 4B, A4, 86, B2, 41, E4, 7E, D0, D0, 5F, 13, 02, 9B, 34, 2E, A7, 6D, D6, B7, CF, 06, 20, 2E, 0B, 29, DD, A9, 27, 36, FC, 08, CE, 90, BB, B6, 91, E3, AD, CF, 9B, 14, 9F, 24, 60, 99, 61, 95, FB, 39, 11, 38, 5E, B0, C2, 9B, 5E, AF, 65, 1C, A1, 68, EE, 3D, D0, C9, B7, 9F, 46, B4, E3, EB, 02, C4, 36, 00, 93, 2B, A7, 70, C8, 23, 54, 3A, 0D, BB, F8, CA, 05, DF, F3, 0D, 76, 6A, 25, 37, CF, D2, C4, 59, 9E, 80, 83...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
3.3 MB (3,510,272 bytes)

Scan regorganizer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.