Report - www.revouninstaller.com/download/revouninstaller.zip

Report Overview

Submitted URL
www.revouninstaller.com/download/revouninstaller.zip
IP
146.20.152.114
ASN
#27357 RACKSPACE
Submitted
2024-03-28 23:45:27
Access
public
Website Title
about:privatebrowsing
Final URL
about:privatebrowsing
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.revouninstaller.com	468593	2007-05-30	2012-05-20	2024-03-27	506 B	9.3 MB	146.20.152.114

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

Files detected

URL
www.revouninstaller.com/download/revouninstaller.zip
IP
146.20.152.114
ASN
#27357 RACKSPACE

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
9.3 MB (9256439 bytes)
Hash
2309d36ae6180075c9d8bfc7ec3f2551
b2d7caf9bac37b779286a8e4a0f541284e4ca343
2b38db36accfe783963608376c220682e1b85f010b9f719ec11aca5ba792b6fa

Archive (48)

Filename

Md5

File type

albanian.ini

bde88d8a583efb06655eec5660144723

Unicode text, UTF-16, little-endian text, with very long lines (601), with CRLF line terminators

arabic.ini

f2d929121754d18b1af2961563f1bd0b

Unicode text, UTF-16, little-endian text, with very long lines (437), with CRLF line terminators

armenian.ini

638e53d920ad2bae00efb01fb5925f6b

Unicode text, UTF-16, little-endian text, with very long lines (315), with CRLF line terminators

azerbaijani.ini

e0f8d403a1116b65253ec550c73e3807

Unicode text, UTF-16, little-endian text, with very long lines (562), with CRLF line terminators

bulgarian.ini

d83d4c96e872b6220b7b43defcaa91d8

Unicode text, UTF-16, little-endian text, with very long lines (705), with CRLF, CR line terminators

czech.ini

f8c698f68de93bcd94e589b09b06e974

Unicode text, UTF-16, little-endian text, with very long lines (668), with CRLF line terminators

danish.ini

bb7000d88216bd1191fa3993d837f2eb

Unicode text, UTF-16, little-endian text, with very long lines (431), with CRLF line terminators

dutch.ini

220ad2074842c39a94828de26f716c49

Unicode text, UTF-16, little-endian text, with very long lines (782), with CRLF line terminators

english.ini

5aa1ff6798cee8e700c7950bee872b16

Unicode text, UTF-16, little-endian text, with very long lines (662), with CRLF line terminators

Estonian.ini

dda2a1b719d38e5e581bdc4fe18d9094

Unicode text, UTF-16, little-endian text, with very long lines (602), with CRLF line terminators

finnish.ini

168ca182b23b51dcdfb64e80bde9c9d3

Unicode text, UTF-16, little-endian text, with very long lines (552), with CRLF line terminators

french.ini

c083ded3ce1e31814d7c899f498bdbd6

Unicode text, UTF-16, little-endian text, with very long lines (653), with CRLF line terminators

german.ini

7de039c2a8fe5752dab6ffd281216324

Unicode text, UTF-16, little-endian text, with very long lines (897), with CRLF line terminators

hebrew.ini

1f4156f67e2567b3e5ef7c61f964913a

Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators

hellenic.ini

52f7af33adf926ef88c85c62e8dcc23e

Unicode text, UTF-16, little-endian text, with very long lines (868), with CRLF line terminators

hindi.ini

5a03dee06efa8189372d3c1dd5068052

Unicode text, UTF-16, little-endian text, with very long lines (754), with CRLF line terminators

hrvatski.ini

f2e91d5c1b3e203cd8bff4640e0aa4ea

Unicode text, UTF-16, little-endian text, with very long lines (596), with CRLF line terminators

hungarian.ini

6fb9e4420c55d705e56e73066bc254b8

Unicode text, UTF-16, little-endian text, with very long lines (671), with CRLF line terminators

indonesian.ini

dfd7efc594c267d227c2ca01338e1688

Unicode text, UTF-16, little-endian text, with very long lines (713), with CRLF line terminators

italiano.ini

514291af4583d650b9765d6c776eccf2

Unicode text, UTF-16, little-endian text, with very long lines (800), with CRLF, CR line terminators

japanese.ini

af5b2a1d956af8a25d67f46c2911d296

Unicode text, UTF-16, little-endian text, with very long lines (397), with CRLF line terminators

korean.ini

4feb1b7bbd3f06fd4d49bc29b53ce24b

Unicode text, UTF-16, little-endian text, with very long lines (400), with CRLF line terminators

kurdish.ini

695655b3259b1480fb5f7727ae110dd8

Unicode text, UTF-16, little-endian text, with very long lines (531), with CRLF line terminators

macedonian.ini

05aa455f948fc62e3c1841c85ff1ddb3

Unicode text, UTF-16, little-endian text, with very long lines (480), with CRLF line terminators

norwegian.ini

7f77ff553ea2c328497439f9ac1aacc3

Unicode text, UTF-16, little-endian text, with very long lines (435), with CRLF line terminators

persian.ini

0a71f3053b63385f1c82411fef287e30

Unicode text, UTF-16, little-endian text, with very long lines (1970), with CRLF line terminators

polish.ini

04b47f3a1a8c36e850cce4d22e55b2ea

Unicode text, UTF-16, little-endian text, with very long lines (512), with CRLF line terminators

portuguese.ini

4556ec7532112345d767c01d25a78d98

Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators

portuguesebrazil.ini

331851922c6cb847d744155d9e5d5688

Unicode text, UTF-16, little-endian text, with very long lines (707), with CRLF line terminators

portuguese_standard.ini

ccf5d728e330b0cf5107833165187521

Unicode text, UTF-16, little-endian text, with very long lines (768), with CRLF line terminators

romanian.ini

7b6e8f7b5220ddf5b155245f7f724f88

Unicode text, UTF-16, little-endian text, with very long lines (742), with CRLF line terminators

russian.ini

470689d1bd5d2b38b1e8578c03bc2f60

Unicode text, UTF-16, little-endian text, with very long lines (488), with CRLF line terminators

serbian.ini

77af582a020b24a5311c487dcb4e074d

Unicode text, UTF-16, little-endian text, with very long lines (436), with CRLF line terminators

serbianLatin.ini

cbc0ff5b44f3e7403b5d597c3f97b7e2

Unicode text, UTF-16, little-endian text, with very long lines (446), with CRLF line terminators

simplifiedchinese.ini

889f5f421d07bd46947f5469ca3530c6

data

slovak.ini

4d046710a79278a0e93dd3ec68b99c2a

Unicode text, UTF-16, little-endian text, with very long lines (510), with CRLF line terminators

slovenian.ini

b1e13bef9446233d3dafd6c63aae953e

Unicode text, UTF-16, little-endian text, with very long lines (675), with CRLF line terminators

spanish.ini

c731fa18308b5ebeac32e06f8b8678e3

Unicode text, UTF-16, little-endian text, with very long lines (628), with CRLF line terminators

swedish.ini

33b058fac4600873b5f346a25db9b0c4

Unicode text, UTF-16, little-endian text, with very long lines (774), with CRLF line terminators

traditionalchinese.ini

33cb94605db1ce30dde93af56a17149e

Unicode text, UTF-16, little-endian text, with CRLF line terminators

turkish.ini

7c4a33fb5ccb28210aafb106388358c7

Unicode text, UTF-16, little-endian text, with very long lines (550), with CRLF line terminators

ukrainian.ini

ead66dfaafe760f6cd26838609b5f5a6

Unicode text, UTF-16, little-endian text, with very long lines (657), with CRLF line terminators

vietnamese.ini

a1a871a6b47c6e7437f3f088c8288d71

Unicode text, UTF-16, little-endian text, with very long lines (722), with CRLF line terminators

LicenseAgreement.txt

13d3876c402174dcd9239c60f559fa7d

Unicode text, UTF-16, little-endian text, with very long lines (497), with CRLF line terminators

Revo Uninstaller Help.pdf

389bb5967f5f7ca87f684bf02cfd3b0b

PDF document, version 1.5, 35 pages

RevoUPort.exe

93cc5f8b151f5ec69d5dfaeaed3f8e19

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

RevoUn.exe

8cca2ad268f06af7c01840d062ac4eeb

PE32+ executable (GUI) x86-64, for MS Windows, 7 sections

RevoUn.exe

eace3fb2fd33f26ae195dda10ee5f5e9

PE32 executable (GUI) Intel 80386, for MS Windows, 4 sections

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/63

JavaScript (0)

HTTP Transactions (1)

URL IP Response Size

www.revouninstaller.com/download/revouninstaller.zip

146.20.152.114

200 OK

9.3 MB

URL User Request GET HTTP/2
www.revouninstaller.com/download/revouninstaller.zip
IP
146.20.152.114:443
ASN
#27357 RACKSPACE

Certificate
IssuerDigiCert Inc
Subjectwww.revouninstaller.com
FingerprintA8:24:EC:B6:9F:98:10:8E:D0:0E:C5:B1:99:26:4A:3F:D8:2F:9A:9C
ValidityWed, 07 Jun 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
Zip archive data, at least v2.0 to extract, compression method=store
Size
9.3 MB (9256439 bytes)
Hash
2309d36ae6180075c9d8bfc7ec3f2551
b2d7caf9bac37b779286a8e4a0f541284e4ca343
2b38db36accfe783963608376c220682e1b85f010b9f719ec11aca5ba792b6fa

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 1/63

HTTP Headers

GET /download/revouninstaller.zip HTTP/1.1
Host: www.revouninstaller.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-frame-options: SAMEORIGIN
permissions-policy: interest-cohort=()
referrer-policy: no-referrer, strict-origin-when-cross-origin
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubdomains
last-modified: Thu, 04 Aug 2016 05:29:39 GMT
etag: "8d3df7-539383c77f6c0"
accept-ranges: bytes
content-length: 9256439
cache-control: max-age=172800
expires: Sat, 30 Mar 2024 23:44:55 GMT
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self';
x-permitted-cross-domain-policies: none
content-type: application/zip
date: Thu, 28 Mar 2024 23:44:55 GMT
server: XYZ
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

Files detected

URL

IP

ASN

File type

Size

Hash

Archive (48)

Detections

JavaScript (0)

HTTP Transactions (1)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers