registrybooster.exe
RegistryBooster by Uniblue Systems (Signed)
Warning 3 antivirus scanners has detected malware in various versions of registrybooster.exe.
Overview
There are 3 versions of registrybooster.exe in the wild, the latest version being 6.1.1.0. registrybooster.exe is run as a standard windows process with the logged in user's account privileges. The process displays a GUI (graphical user interface) which allows the user to interact with it as well as displays a notification icon in the taskbar. The process utilizes the Windows Task Scheduler to automatically launch the file as a process when a user logs into Windows. The average file size is about 53.04 KB. The file is a digitally signed and issued to Uniblue Systems by VeriSign. Numerous variations of registrybooster.exe have been installed with both Uniblue RegistryBooster and Uniblue RegistryBooster 2010. During the process's lifecycle, the typical CPU resource utilization is about 0.0039% including both foreground and background operations, the average private memory consumption is about 97.62 MB. Addionally, typically read and write I/O disk operations is about 172.01 KB per minute for reads and 7.47 KB per minute for writes.
What is registrybooster.exe?
Uniblue RegistryBoosteris a Windows registry repair software utility designed to fix potentially damaged registry entries by scanning for entries that point to various files that are no longer active on the PC.
About registrybooster.exe (from Uniblue Systems)
“Have you noticed that the longer you have your computer, the slower it runs and the more it crashes? Often this is because whenever you install or uninstall software, adjust hardware or change setting”
Details |
File name: | registrybooster.exe |
Publisher: | Uniblue Systems Limited |
Product name: | RegistryBooster |
Description: | Uniblue RegistryBooster |
Typical file path: | C:\Program Files\uniblue\registrybooster\registrybooster.exe |
Certificate |
Issued to: | Uniblue Systems |
Authority (CA): | VeriSign |
Effective date: | Tuesday, April 20, 2010 |
Expiration date: | Sunday, May 5, 2013 |
Programs installed in
(Note, the programs listed below are for all versions of RegistryBooster.)
Uniblue RegistryBooster is registry utility whose purported purpose is to remove redundant items from the Windows registry. The software helps to automate the process of looking for invalid entries, m...
This is a 'registry cleaner' that is supposed to clean or fix a PC by removing invalid registry settings.
Behaviors
(Note, the behaviors below are for all versions of registrybooster.exe, select a unique version for details.)
Scheduled tasks startups
Set to load on user login (bypasses Windows UAC if enabled)
- Login entry path '\RegistryBooster'
Scheduled tasks
- The task 'RegistryBooster' runs on logon in the path '\RegistryBooster'
Malware detections
Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
Antivirus engine | Engine version | Detection | File version |
ESET NOD32 |
7.8175 |
Win32/RegistryBooster |
6.0.10.7 |
ESET NOD32 |
7.8430 |
Win32/RegistryBooster |
6.1.1.0 |
NOD32 |
7273 |
Win32/RegistryBooster |
6.0.7.2 |
All file variations of registrybooster.exe
Distribution by Windows OS
OS version | distribution |
Windows 7 Home Premium |
77.78% |
|
Windows XP Professional |
11.11% |
|
Windows Vista Ultimate |
11.11% |
|
Distribution by country
United States installs about 75.00% of RegistryBooster.