Windows - Software Lifecycle - Uninstall Splashtop Streamer

What the Splashtop Streamer uninstaller does

This Automox Worklet™ removes Splashtop Streamer from Windows endpoints by using the application's built-in uninstall mechanism. The Worklet detects and removes both 32-bit and 64-bit instances installed on workstations or servers.

The Worklet first checks the Windows registry to identify installed versions, then executes the appropriate uninstall string (either the quiet uninstall command or the MSI uninstall process depending on how Splashtop was installed). This approach maintains consistent removal across your environment without manual intervention.

Why remove Splashtop Streamer from your endpoints

Leaving unused remote access software installed creates unauthorized entry points into your network. When organizations transition to different remote access solutions or eliminate Splashtop from their approved software list, endpoints with lingering installations remain vulnerable to exploitation. Attackers target legacy remote access tools that administrators forget to remove, using them as backdoors for initial access and lateral movement.

Using this Worklet maintains complete and consistent removal across all endpoints, eliminating leftover files or registry entries that manual removal might miss. This automated approach scales to hundreds or thousands of endpoints without requiring individual technician involvement.

How Splashtop Streamer removal works

1. Evaluation phase: The Worklet queries the Windows registry at HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall and HKLM:\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall to check for any installed version of Splashtop Streamer. It checks both registry hives to detect 32-bit and 64-bit installations on 64-bit systems, and checks the 32-bit hive on 32-bit systems.

2. Remediation phase: When Splashtop Streamer is detected, the Worklet executes the uninstall string with the silent flag (/S for executable installers or /qn /norestart for MSI packages). It runs each detected version through the uninstaller and verifies that the exit code indicates success (exit code 0, 1641, or 3010 are all treated as successful uninstallation).

Splashtop Streamer removal requirements

• Windows 10, Windows 11, Windows Server 2016, or later

• Local administrator privileges to access the registry and execute the uninstaller

• Splashtop Streamer must be installed for the Worklet to proceed with uninstallation

• No active Splashtop Streamer sessions running (the uninstaller handles background processes)

Expected state after Splashtop Streamer removal

After the Worklet completes successfully, Splashtop Streamer is completely removed from the endpoint. All registry entries, application files, and associated services are uninstalled. The endpoint no longer has the Splashtop Streamer remote access capability.

Verification: Check the Windows Control Panel Add/Remove Programs list (or Settings > Apps > Apps and features on Windows 10/11) where Splashtop Streamer should no longer appear. Run Get-ItemProperty HKLM:\Software\Microsoft\Windows\CurrentVersion\Uninstall\* | Where-Object {$_.DisplayName -like "*Splashtop*"} in PowerShell to confirm no registry entries remain. If you run the Worklet again and it reports success with no remediation needed, the removal was complete.

How to validate uninstall splashtop streamer changes

1. Run this Worklet on a pilot Windows endpoint and review evaluation output for uninstall splashtop streamer.

2. Confirm Automox activity logs show successful completion and exit code 0.

3. Verify endpoint state using checks aligned to evaluation script logic, such as Write-Output, Get-ChildItem, Get-ItemProperty.

4. Validate remediation effects from script operations such as Get-ChildItem, Get-ItemProperty, Where-Object, then rerun evaluation for compliance.

For technical validation, compare endpoint state to the Worklet evaluation logic and remediation flow for uninstall splashtop streamer. This supports repeatable software lifecycle workflows, faster change control review, and auditable compliance evidence.

Useful script references for this Worklet include evaluation operations such as Write-Output, Get-ChildItem, Get-ItemProperty and remediation operations such as Get-ChildItem, Get-ItemProperty, Where-Object. Use these indicators to verify that endpoint changes match intended policy outcomes.