home

uninstall.exe

GenTechnologies Apps, LLC

This is the uninstall module for the Injekt branded web browser extension program which injects advertising in the web browser as well as modifies the browser settings. The uninstaller is registered within Control Panel > Add/Remove Programs. The application uninstall.exe by GenTechnologies Apps has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a setup and installation application and has been known to bundle potentially unwanted software. This is the uninstaller utility registered in the Windows Control Panel for the program Movie Mode by GenTechnologies Apps, LLC. This file is typically installed with the program Movie Mode by GenTechnologies Apps, LLC which is a potentially unwanted software program.
Publisher:
GenTechnologies Apps, LLC  (signed and verified)

MD5:
b8b4db25bd9431454c396676adaf32a3

SHA-1:
5d5d6202688457284a37baa0415ff6949ee3a398

SHA-256:
10dabc1df84fff0fc1e18447e6dd9f7dc02d3ab75e54969314e5c1922d6c8c35

Scanner detections:
1 / 68

Status:
Adware

Explanation:
Injects display ads (banner ads), in-text ads, interstitial ads, or other types of ads in the web browser as well as alters the browsers settings (home page, search, DNS, and security protocols).

Analysis date:
4/19/2024 12:57:54 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Injekt.GenTechnologiesApps.Installer (M)
16.1.10.1

File size:
510.9 KB (523,120 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\ProgramData\moviemode\uninstall.exe

Digital Signature
Signed by:
GenTechnologies Apps, LLC

Authority:
VeriSign, Inc.

Valid from:
5/2/2014 2:00:00 AM

Valid to:
5/3/2015 1:59:59 AM

Subject:
CN="GenTechnologies Apps, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="GenTechnologies Apps, LLC", L=Grandville, S=Michigan, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
169927F400601EBFFB8BCB8CA159DB85

File PE Metadata
Compilation timestamp:
7/25/2014 8:17:01 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
12288:Qek+Tdut9eVd9KGQBVI7gDxhmQaxa/nUjhnOititj7:5ZTQ9GQVIsx4QaxxMioj7

Entry address:
0x40E73

Entry point:
E8, 7E, D3, 00, 00, E9, 7F, FE, FF, FF, CC, CC, CC, 57, 56, 8B, 74, 24, 10, 8B, 4C, 24, 14, 8B, 7C, 24, 0C, 8B, C1, 8B, D1, 03, C6, 3B, FE, 76, 08, 3B, F8, 0F, 82, 68, 03, 00, 00, 0F, BA, 25, EC, 44, 47, 00, 01, 73, 07, F3, A4, E9, 17, 03, 00, 00, 81, F9, 80, 00, 00, 00, 0F, 82, CE, 01, 00, 00, 8B, C7, 33, C6, A9, 0F, 00, 00, 00, 75, 0E, 0F, BA, 25, 60, 20, 47, 00, 01, 0F, 82, DA, 04, 00, 00, 0F, BA, 25, EC, 44, 47, 00, 00, 0F, 83, A7, 01, 00, 00, F7, C7, 03, 00, 00, 00, 0F, 85, B8, 01, 00, 00, F7, C6, 03...
 
[+]

Code size:
379 KB (388,096 bytes)

Program Uninstaller
Program name:
Movie Mode

Display publisher:
GenTechnologies Apps, LLC

Display version:
2.7.26

Uninstall string:
C:\ProgramData\MovieMode\uninstall.exe /kb=y /ic=1


The file uninstall.exe has been discovered within the following program.

Movie Mode  by GenTechnologies Apps, LLC
Run by Creative Island Media, LLC, this is an adware (ad-supported) web browser extension that is difficult to remove and will hijack the user's web browser search page as well as inject advertisements.
www.moviemodeapp.com
88% remove it
 
Powered by Should I Remove It?

Remove uninstall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.