home

uninstall.exe

Search Snacks, LLC

This is part of the InfoAtoms browser extension which will display variopus forms of advertising in the web browser by injecting new ads such as banner, text-links and search results. The application uninstall.exe, “Search Snacks Setup” by Search Snacks has been detected as adware by 11 anti-malware scanners. The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This is the uninstaller utility registered in the Windows Control Panel for the program Search Snacks 1.10.0.0 by Search Snacks.
Publisher:
Search Snacks  (signed by Search Snacks, LLC)

Product:
Search Snacks

Description:
Search Snacks Setup

Version:
1.10.0.0

MD5:
942760116102eba792f864570a74ccfe

SHA-1:
6a4b06b1460899a00263c1ccacb1f3b76515320b

SHA-256:
4cb84ec4da383708be7945602370495264c91fc94a36e09a7b472927bd5ee895

Scanner detections:
11 / 68

Status:
Adware

Analysis date:
4/20/2024 2:45:55 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Adware.Vitruvian.B
798

Bitdefender
Adware.Vitruvian.B
1.0.20.1660

Dr.Web
Adware.Plugin.274
9.0.1.0332

Emsisoft Anti-Malware
Adware.Vitruvian
8.14.11.28.03

F-Secure
Adware.Vitruvian.B
11.2014-28-11_6

G Data
Adware.Vitruvian
14.11.24

Malwarebytes
PUP.Optional.SearchSnacks.A
v2014.11.28.03

MicroWorld eScan
Adware.Vitruvian.B
15.0.0.996

nProtect
Adware.Vitruvian.B
14.10.19.01

Reason Heuristics
PUP.Installer.SearchSnacks.J
14.11.28.15

VIPRE Antivirus
InfoAtoms
34090

File size:
307.1 KB (314,448 bytes)

Product version:
1.10.0.0

Copyright:
(c) 2014 Search Snacks

Original file name:
searchsnacks-setup.exe

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\Program Files\searchsnacks_1.10.0.0\uninstall.exe

Digital Signature
Signed by:
Search Snacks, LLC

Authority:
GlobalSign nv-sa

Valid from:
4/3/2014 3:07:56 PM

Valid to:
4/3/2016 3:07:56 PM

Subject:
E=support@search-snacks.com, CN="Search Snacks, LLC", O="Search Snacks, LLC", L=Dover, S=Delaware, C=US

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11213239AF4AE4C69B97F803376A194F08F4

File PE Metadata
Compilation timestamp:
12/5/2009 3:52:06 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:EScw/EpmX4IuAPpuJfVBXoydwrLgGZe+lVE:q/YVuAopVBeMJ+lS

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 6F, 44, 00, E8, 09, 2C, 00, 00, A3, A4, 6E, 44, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, 9C, 42, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 2E, 44, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, F0, 46, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.0452

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

Program Uninstaller
Program name:
Search Snacks 1.10.0.0

Display publisher:
Search Snacks

Display version:
1.10.0.0

Uninstall string:
C:\Program Files (x86)\SearchSnacks_1.10.0.0\Uninstall.exe


Remove uninstall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.