Report - www.revouninstaller.com/download/revouninstaller.zip

Report Overview

Visitedpublic

2024-05-06 10:54:10

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
www.revouninstaller.com	468593	2007-05-30	2012-05-20 23:20:16	2024-04-26 11:53:42	506 B	9.3 MB	146.20.152.114

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

www.revouninstaller.com/download/revouninstaller.zip

IP / ASN

146.20.152.114

#27357 RACKSPACE

File Overview

File TypeZip archive data, at least v2.0 to extract, compression method=store

Size9.3 MB (9256439 bytes)

MD52309d36ae6180075c9d8bfc7ec3f2551

SHA1b2d7caf9bac37b779286a8e4a0f541284e4ca343

SHA2562b38db36accfe783963608376c220682e1b85f010b9f719ec11aca5ba792b6fa

Archive (48)

Modified	Filename	Size	MD5	File type
2016-07-26 15:11	albanian.ini	107 kB	bde88d8a583efb06655eec5660144723	Unicode text, UTF-16, little-endian text, with very long lines (601), with CRLF line terminators
2016-07-26 15:11	arabic.ini	82 kB	f2d929121754d18b1af2961563f1bd0b	Unicode text, UTF-16, little-endian text, with very long lines (437), with CRLF line terminators
2016-07-26 15:11	armenian.ini	52 kB	638e53d920ad2bae00efb01fb5925f6b	Unicode text, UTF-16, little-endian text, with very long lines (315), with CRLF line terminators
2016-07-29 12:51	azerbaijani.ini	108 kB	e0f8d403a1116b65253ec550c73e3807	Unicode text, UTF-16, little-endian text, with very long lines (562), with CRLF line terminators
2016-07-26 15:11	bulgarian.ini	110 kB	d83d4c96e872b6220b7b43defcaa91d8	Unicode text, UTF-16, little-endian text, with very long lines (705), with CRLF, CR line terminators
2016-07-26 15:11	czech.ini	99 kB	f8c698f68de93bcd94e589b09b06e974	Unicode text, UTF-16, little-endian text, with very long lines (668), with CRLF line terminators
2016-07-26 15:11	danish.ini	88 kB	bb7000d88216bd1191fa3993d837f2eb	Unicode text, UTF-16, little-endian text, with very long lines (431), with CRLF line terminators
2016-07-26 15:11	dutch.ini	107 kB	220ad2074842c39a94828de26f716c49	Unicode text, UTF-16, little-endian text, with very long lines (782), with CRLF line terminators
2016-07-26 15:11	english.ini	102 kB	5aa1ff6798cee8e700c7950bee872b16	Unicode text, UTF-16, little-endian text, with very long lines (662), with CRLF line terminators
2016-07-26 15:11	Estonian.ini	100 kB	dda2a1b719d38e5e581bdc4fe18d9094	Unicode text, UTF-16, little-endian text, with very long lines (602), with CRLF line terminators
2016-07-26 15:11	finnish.ini	102 kB	168ca182b23b51dcdfb64e80bde9c9d3	Unicode text, UTF-16, little-endian text, with very long lines (552), with CRLF line terminators
2016-07-26 15:11	french.ini	116 kB	c083ded3ce1e31814d7c899f498bdbd6	Unicode text, UTF-16, little-endian text, with very long lines (653), with CRLF line terminators
2016-07-26 12:35	german.ini	120 kB	7de039c2a8fe5752dab6ffd281216324	Unicode text, UTF-16, little-endian text, with very long lines (897), with CRLF line terminators
2016-07-26 15:11	hebrew.ini	62 kB	1f4156f67e2567b3e5ef7c61f964913a	Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators
2016-07-26 15:11	hellenic.ini	124 kB	52f7af33adf926ef88c85c62e8dcc23e	Unicode text, UTF-16, little-endian text, with very long lines (868), with CRLF line terminators
2016-07-29 12:51	hindi.ini	106 kB	5a03dee06efa8189372d3c1dd5068052	Unicode text, UTF-16, little-endian text, with very long lines (754), with CRLF line terminators
2016-07-26 15:11	hrvatski.ini	94 kB	f2e91d5c1b3e203cd8bff4640e0aa4ea	Unicode text, UTF-16, little-endian text, with very long lines (596), with CRLF line terminators
2016-07-26 15:11	hungarian.ini	108 kB	6fb9e4420c55d705e56e73066bc254b8	Unicode text, UTF-16, little-endian text, with very long lines (671), with CRLF line terminators
2016-07-26 15:11	indonesian.ini	104 kB	dfd7efc594c267d227c2ca01338e1688	Unicode text, UTF-16, little-endian text, with very long lines (713), with CRLF line terminators
2016-07-26 15:11	italiano.ini	115 kB	514291af4583d650b9765d6c776eccf2	Unicode text, UTF-16, little-endian text, with very long lines (800), with CRLF, CR line terminators
2016-07-26 15:11	japanese.ini	61 kB	af5b2a1d956af8a25d67f46c2911d296	Unicode text, UTF-16, little-endian text, with very long lines (397), with CRLF line terminators
2016-07-26 15:11	korean.ini	60 kB	4feb1b7bbd3f06fd4d49bc29b53ce24b	Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators
2016-07-26 15:11	kurdish.ini	69 kB	695655b3259b1480fb5f7727ae110dd8	Unicode text, UTF-16, little-endian text, with very long lines (531), with CRLF line terminators
2016-07-26 15:11	macedonian.ini	87 kB	05aa455f948fc62e3c1841c85ff1ddb3	Unicode text, UTF-16, little-endian text, with very long lines (480), with CRLF line terminators
2016-07-26 15:11	norwegian.ini	91 kB	7f77ff553ea2c328497439f9ac1aacc3	Unicode text, UTF-16, little-endian text, with very long lines (435), with CRLF line terminators
2016-07-26 15:09	persian.ini	113 kB	0a71f3053b63385f1c82411fef287e30	Unicode text, UTF-16, little-endian text, with very long lines (1970), with CRLF line terminators
2016-07-26 15:11	polish.ini	98 kB	04b47f3a1a8c36e850cce4d22e55b2ea	Unicode text, UTF-16, little-endian text, with very long lines (512), with CRLF line terminators
2016-07-26 15:11	portuguese.ini	114 kB	4556ec7532112345d767c01d25a78d98	Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators
2016-07-26 15:11	portuguesebrazil.ini	113 kB	331851922c6cb847d744155d9e5d5688	Unicode text, UTF-16, little-endian text, with very long lines (707), with CRLF line terminators
2016-07-26 15:11	portuguese_standard.ini	114 kB	ccf5d728e330b0cf5107833165187521	Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators
2016-07-26 15:11	romanian.ini	110 kB	7b6e8f7b5220ddf5b155245f7f724f88	Unicode text, UTF-16, little-endian text, with very long lines (742), with CRLF line terminators
2016-07-26 15:11	russian.ini	103 kB	470689d1bd5d2b38b1e8578c03bc2f60	Unicode text, UTF-16, little-endian text, with very long lines (488), with CRLF line terminators
2016-07-26 15:11	serbian.ini	97 kB	77af582a020b24a5311c487dcb4e074d	Unicode text, UTF-16, little-endian text, with very long lines (436), with CRLF line terminators
2016-07-26 15:11	serbianLatin.ini	98 kB	cbc0ff5b44f3e7403b5d597c3f97b7e2	Unicode text, UTF-16, little-endian text, with very long lines (446), with CRLF line terminators
2016-07-26 15:11	simplifiedchinese.ini	47 kB	889f5f421d07bd46947f5469ca3530c6	data
2016-07-26 15:11	slovak.ini	94 kB	4d046710a79278a0e93dd3ec68b99c2a	Unicode text, UTF-16, little-endian text, with very long lines (510), with CRLF line terminators
2016-07-26 15:11	slovenian.ini	106 kB	b1e13bef9446233d3dafd6c63aae953e	Unicode text, UTF-16, little-endian text, with very long lines (675), with CRLF line terminators
2016-07-26 15:11	spanish.ini	118 kB	c731fa18308b5ebeac32e06f8b8678e3	Unicode text, UTF-16, little-endian text, with very long lines (628), with CRLF line terminators
2016-07-26 15:11	swedish.ini	103 kB	33b058fac4600873b5f346a25db9b0c4	Unicode text, UTF-16, little-endian text, with very long lines (774), with CRLF line terminators
2016-07-26 15:11	traditionalchinese.ini	45 kB	33cb94605db1ce30dde93af56a17149e	Unicode text, UTF-16, little-endian text, with CRLF line terminators
2016-07-26 15:11	turkish.ini	97 kB	7c4a33fb5ccb28210aafb106388358c7	Unicode text, UTF-16, little-endian text, with very long lines (550), with CRLF line terminators
2016-07-26 15:11	ukrainian.ini	104 kB	ead66dfaafe760f6cd26838609b5f5a6	Unicode text, UTF-16, little-endian text, with very long lines (657), with CRLF line terminators
2016-07-26 15:11	vietnamese.ini	97 kB	a1a871a6b47c6e7437f3f088c8288d71	Unicode text, UTF-16, little-endian text, with very long lines (722), with CRLF line terminators
2016-08-02 16:27	LicenseAgreement.txt	6.8 kB	13d3876c402174dcd9239c60f559fa7d	Unicode text, UTF-16, little-endian text, with very long lines (497), with CRLF line terminators
2016-07-29 12:44	Revo Uninstaller Help.pdf	1.9 MB	389bb5967f5f7ca87f684bf02cfd3b0b	PDF document, version 1.5, 35 pages
2016-08-02 14:27	RevoUPort.exe	203 kB	93cc5f8b151f5ec69d5dfaeaed3f8e19	PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections
2016-08-02 16:45	RevoUn.exe	15 MB	8cca2ad268f06af7c01840d062ac4eeb	PE32+ executable (GUI) x86-64, for MS Windows, 7 sections
2016-08-02 16:45	RevoUn.exe	13 MB	eace3fb2fd33f26ae195dda10ee5f5e9	PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/63

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

GET www.revouninstaller.com/download/revouninstaller.zip

146.20.152.114

200 OK

9.3 MB

URL

www.revouninstaller.com/download/revouninstaller.zip

IP / ASN

146.20.152.114

#27357 RACKSPACE

Requested byN/A

Resource Info

File typeZip archive data, at least v2.0 to extract, compression method=store

First Seen2023-06-22

Last Seen2025-07-04

Times Seen297

Size9.3 MB (9256439 bytes)

MD52309d36ae6180075c9d8bfc7ec3f2551

SHA1b2d7caf9bac37b779286a8e4a0f541284e4ca343

SHA2562b38db36accfe783963608376c220682e1b85f010b9f719ec11aca5ba792b6fa

Certificate Info

IssuerDigiCert Inc

Subjectwww.revouninstaller.com

FingerprintBA:7F:71:27:2D:F5:5B:AA:34:B6:0D:1D:6B:4C:2A:3A:F3:99:3B:09

ValidityThu, 28 Mar 2024 00:00:00 GMT - Mon, 28 Apr 2025 23:59:59 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/63

HTTP Headers

GET /download/revouninstaller.zip HTTP/1.1
Host: www.revouninstaller.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
strict-transport-security: max-age=31536000; includeSubdomains
last-modified: Thu, 04 Aug 2016 05:29:39 GMT
etag: "8d3df7-539383c77f6c0"
accept-ranges: bytes
content-length: 9256439
cache-control: max-age=172800
expires: Wed, 08 May 2024 10:53:38 GMT
content-type: application/zip
date: Mon, 06 May 2024 10:53:38 GMT
server: Apache
X-Firefox-Spdy: h2