home

uninstall.exe

iMesh

iMesh Inc.

This is a self-extracting archive and installer.
Publisher:
iMesh Inc  (signed by iMesh Inc.)

Product:
iMesh

Description:
iMesh Uninstall

Version:
12.5.0.134242

MD5:
f3fc17f12db926c353fc020ba97ff335

SHA-1:
ee1fc847b76ba0c1cbe2a28631eb9673a8c72408

Scanner detections:
8 / 68

Status:
Clean  (8 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/23/2024 4:30:08 AM UTC  (today)

Scan engine
Detection
Engine version

Clam AntiVirus
Win.Adware.Searchsuite-3
0.98/21411

Dr.Web
Adware.Bandoo.167
9.0.1.046

ESET NOD32
Win32/Toolbar.SearchSuite (variant)
10.10734

Fortinet FortiGate
Riskware/SearchSuite
2/15/2016

K7 AntiVirus
Unwanted-Program
13.185.14021

Malwarebytes
PUP.Optional.Bandoo.A
v2016.02.15.02

NANO AntiVirus
Riskware.Win32.Bandoo.dhrive
0.28.6.63362

Trend Micro House Call
Suspicious_GEN.F47V047
7.2.46

File size:
305.6 KB (312,915 bytes)

Product version:
12.5.0.134242

Copyright:
Copyright (C) 2013

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Documents and Settings\{user}\Local settings\temp\{random}.tmp\uninstall.exe

Digital Signature
Signed by:
iMesh Inc.

Authority:
Thawte, Inc.

Valid from:
9/19/2012 7:00:00 AM

Valid to:
10/20/2014 6:59:59 AM

Subject:
CN=iMesh Inc., OU=SECURE APPLICATION DEVELOPMENT, O=iMesh Inc., L=New York, S=New York, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
2646E896402D759E5F88860208638F62

File PE Metadata
Compilation timestamp:
5/30/2013 3:09:15 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:AX47XeWEw96smVomO371pzsVJoHKitX3Z4zytbLB:AX/w9p1F371mV2Hz4zkN

Entry address:
0x38AF

Entry point:
60, E8, 00, 00, 00, 00, 5B, 81, EB, D0, 48, 19, 01, 83, EC, 74, 8B, EC, 8B, 83, AB, 4B, 19, 01, 89, 45, 00, 8B, 83, B3, 4B, 19, 01, 03, 45, 00, 89, 45, 2C, 8B, 83, B7, 4B, 19, 01, 03, 45, 00, 89, 45, 30, C7, 45, 14, 00, 00, 00, 00, C7, 45, 18, 00, 00, 00, 00, C7, 45, 1C, 00, 00, 00, 00, 8B, 45, 14, FF, 45, 14, 66, 33, C9, 8A, 8C, 03, FF, 4B, 19, 01, 84, C9, 74, 7A, 8B, 45, 1C, 66, 01, 4D, 1C, 03, C3, 05, 13, 4C, 19, 01, 50, 8B, 45, 2C, FF, 10, 85, C0, 0F, 84, 5E, 02, 00, 00, 89, 45, 10, 8B, 45, 1C, 03, C3...
 
[+]

Entropy:
7.2546

Packer / compiler:
ASPack v1.08.04

Code size:
29.5 KB (30,208 bytes)

Scan uninstall.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.