How to remove RegistryBooster2WZip.exe

» File
File Details
Overview
Analysis

RegistryBooster2WZip.exe

The module RegistryBooster2WZip.exe has been detected as PUP.Uniblue

RegistryBooster2WZip.exe

Remove RegistryBooster2WZip

File Details

Main Info:

Company Name:	Uniblue
MD5:	22d6a923555d4ecee55993a5e924445f
Size:	3 MB
First Published:	2017-05-30 19:08:23 (7 years ago)
Latest Published:	2020-03-01 03:34:57 (4 years ago)

Analysis:

Status:	PUP.Uniblue (on last analysis)
Analysis Date:	2020-03-01 03:34:57 (4 years ago)

Overview

Digital Signature

Signed By:	Uniblue Systems
Status:	Valid

Common Places:

%temp%\rarsfx0

%sysdrive%\windows.old\users\#\appdata\local\temp

%temp%

Geography:

	33.3%
	33.3%
	33.3%

OS Version:

Windows 7	66.7%
Windows 8.1	33.3%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x00400000
Entry Address:	0x00009a54

PE Sections:

Name	Size of data	MD5
CODE	37376	f9c9dd3f4dceede0add0e7309253e897
DATA	1024	4a56e30ca4646e6369d96abeacb0e6f0
BSS	0	00000000000000000000000000000000
.idata	2560	bb5485bf968b970e5ea81292af2acdba
.tls	0	00000000000000000000000000000000
.rdata	512	9ba824905bf9c7922b6fc87a38b74366
.reloc	0	00000000000000000000000000000000
.rsrc	10752	33426c63a79fb759d8d0e0a33faac21b

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for RegistryBooster2WZip.exe

copyright for information about RegistryBooster2WZip.exe