» tetsnste_uninstall.exe
Overview
Analysis
File Details
Behaviors (1)

tetsnste_uninstall.exe

The application tetsnste_uninstall.exe has been detected as a potentially unwanted program by 28 anti-malware scanners. This is the uninstaller utility registered in the Windows Control Panel for the program Windows Live Updater.

File name:

MD5:

62e748025cac4d8d0d567053a3463544

SHA-1:

90132c85203962276d0c3f3979b20781e9bea8bb

SHA-256:

bae8be10f7a6d43e438ab8ba0374adb0910d12faeb03ee062110b6e337443061

Scanner detections:

28 / 68

Status:

Potentially unwanted

Analysis date:

4/23/2024 7:07:24 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Symmi.42106

801

Agnitum Outpost

PUA.Kraddare

7.1.1

Avira AntiVirus

TR/Symmi.42106.9

7.11.175.130

avast!

Win32:Adware-BRI [Adw]

2014.9-141126

AVG

Generic5

2015.0.3279

Baidu Antivirus

Adware.Win32.Kraddare

4.0.3.141126

Bitdefender

Gen:Variant.Adware.Symmi.42106

1.0.20.1650

Comodo Security

ApplicUnwnt

19659

Dr.Web

DLOADER.Trojan

9.0.1.0330

Emsisoft Anti-Malware

Gen:Variant.Adware.Symmi.42106

8.14.11.26.12

ESET NOD32

Win32/AdWare.Kraddare.IL (variant)

8.10485

Fortinet FortiGate

Riskware/Kraddare

11/26/2014

F-Secure

Gen:Variant.Adware.Symmi.42106

11.2014-26-11_4

G Data

Gen:Variant.Adware.Symmi.42106

14.11.24

K7 AntiVirus

Adware

13.183.13521

Kaspersky

not-a-virus:AdWare.Win32.Kraddare

14.0.0.2890

McAfee

RDN/Generic PUP.x!cdv

5600.6935

MicroWorld eScan

Gen:Variant.Adware.Symmi.42106

15.0.0.990

NANO AntiVirus

Trojan.Win32.Symmi.cyyvqz

0.28.2.62440

Norman

Troj_Generic.UACYK

11.20141126

Panda Antivirus

Trj/Genetic.gen

14.11.26.12

Qihoo 360 Security

Win32/Trojan.395

1.0.0.1015

Rising Antivirus

PE:Trojan.Win32.Generic.16C78C33!382176307

23.00.65.141124

Sophos

Kraddare

4.98

Trend Micro House Call

TROJ_SPNR.15FI14

7.2.330

Trend Micro

TROJ_SPNR.15FI14

10.465.26

VIPRE Antivirus

Trojan.Win32.Generic

33542

Zillya! Antivirus

Adware.Kraddare.Win32.2214

2.0.0.1938

File size:

284.5 KB (291,328 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\windows\tetsnste_uninstall.exe

File PE Metadata

Compilation timestamp:

5/17/2014 10:34:03 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:c9Hh08EpAa/trtFlxPkHwlPAwOcQjiyiFC:cMAaDlsH0Pb+jOI

Entry address:

0x226A3

Entry point:

E8, 64, 77, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 57, 83, CF, FF, 85, F6, 75, 14, E8, 11, 0E, 00, 00, C7, 00, 16, 00, 00, 00, E8, 77, 24, 00, 00, 0B, C7, EB, 44, F6, 46, 0C, 83, 74, 38, 56, E8, 1B, 81, 00, 00, 56, 8B, F8, E8, 06, 84, 00, 00, 56, E8, 16, 79, 00, 00, 50, E8, 36, 83, 00, 00, 83, C4, 10, 85, C0, 79, 05, 83, CF, FF, EB, 12, 8B, 46, 1C, 85, C0, 74, 0B, 50, E8, B5, E4, FF, FF, 83, 66, 1C, 00, 59, 83, 66, 0C, 00, 8B, C7, 5F, 5E, 5D, C3, 6A, 0C, 68, 90, B2, 43, 00, E8, 7A... 
[+]

Entropy:

6.4972

Code size:

202.5 KB (207,360 bytes)

Program Uninstaller

Program name:

Windows Live Updater

Uninstall string:

C:\windows\tetsnste_uninstall.exe

Remove tetsnste_uninstall.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.