home

tuneup utilities 2014 full serial (mega).exe

Igor Kostеnko

The application tuneup utilities 2014 full serial (mega).exe, “Installer for ClearAsky Installer” by Igor Kostеnko has been detected as adware by 25 anti-malware scanners. The program is a setup application that uses the Tarma Installer installer. The setup program uses Web-Pick's InstalleRex download manager and installer to bundle potentially unwanted ad-supported software which includes toolbars and browser extensions through a pay-per-install monetization scheme.
Publisher:
ClearAsky Installer  (signed by Igor Kostеnko)

Product:
ClearAsky Installer

Description:
Installer for ClearAsky Installer

Version:
2014.7.12.1336

MD5:
d96216867a7cdfe70d0eac81c2592901

SHA-1:
f726adf7822c8650f6b257c541540384cdbf2242

SHA-256:
a9925050150bb29092fdc80181184b1aecddc68e9f342833a1ab8d1fa06e2b97

Scanner detections:
25 / 68

Status:
Adware

Explanation:
Uses the InstalleRex from WebPick Internet Holdings to install bundled add-ons including toolbars and other web browser extensions.

Analysis date:
4/18/2024 4:03:11 AM UTC  (today)

Scan engine
Detection
Engine version

Agnitum Outpost
Trojan.AntiFW
7.1.1

AhnLab V3 Security
PUP/Win32.TSULoader
2014.07.30

Avira AntiVirus
Adware/InstallRex.A.3
7.11.160.190

avast!
Win32:InstalleRex-CH [PUP]
2014.9-140729

AVG
Generic
2015.0.3398

Bkav FE
W32.FamVT.AntiFWK.Trojan
1.3.0.4959

Comodo Security
Application.Win32.InstalleRex.KG
18854

Dr.Web
Threat.Undefined
9.0.1.0210

ESET NOD32
Win32/InstalleRex.M potentially unwanted application
8.7.0.302.0

F-Prot
W32/InstallRex.B.gen
v6.4.7.1.166

G Data
Win32.Application.InstalleRex
14.7.24

herdProtect (fuzzy)
variant of kmspico v8.8.1 activator for windows vista_7_8 and office 2013.exe (Adware)
2014.9.10.4

IKARUS anti.virus
PUA.BInstaller
t3scan.1.6.1.0

K7 AntiVirus
Unwanted-Program
13.181.12872

Kaspersky
Trojan.Win32.AntiFW
14.0.0.3485

Malwarebytes
PUP.Optional.InstalRex
v2014.07.29.09

McAfee
PUP-FMK
5600.7054

NANO AntiVirus
Riskware.Win32.InfoLeak.cvgqot
0.28.2.60881

Panda Antivirus
PUP/TSUploader
14.09.10.12

Qihoo 360 Security
Malware.QVM20.Gen
1.0.0.1015

Quick Heal
Trojan.AntiFW.A5
7.14.14.00

Reason Heuristics
Adware.WebPick.Installer.i
14.8.1.0

Sophos
MultiPlug
4.98

Vba32 AntiVirus
Downware.TSU
3.12.26.3

VIPRE Antivirus
Threat.4150696
31208

File size:
314.2 KB (321,760 bytes)

Product version:
1.0.0.3

Copyright:
Copyright © 2014 ClearAsky Installer

Original file name:
TSULoader.exe

File type:
Executable application (Win32 EXE)

Installer:
Tarma Installer

Common path:
C:\users\{user}\downloads\tuneup utilities 2014 full serial (mega).exe

Digital Signature
Signed by:
Igor Kostеnko

Authority:
Unizeto Technologies S.A.

Valid from:
6/26/2014 6:42:25 AM

Valid to:
6/26/2015 6:42:25 AM

Subject:
E=igor.kostenko.1968@list.ru, CN=Igor Kostеnko, O=Igor Kostеnko, C=UA

Issuer:
CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:
73D7EEFE98832175BCF7B05E053D7063

File PE Metadata
Compilation timestamp:
3/12/2013 4:21:45 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:3r5bUzkuvcBYC47l2xGnV6OjJaV490B6lKPk3JDEbk0teSVtu:3rqkuveY3RnV6c800oIpbv0SVtu

Entry address:
0x14DB

Entry point:
55, 8B, EC, 81, EC, 2C, 06, 00, 00, 53, 56, 33, DB, 57, 66, 89, 9D, DC, FB, FF, FF, 89, 5D, F4, 89, 5D, FC, FF, 15, 74, 30, 40, 00, A3, 08, 44, 40, 00, FF, 15, 70, 30, 40, 00, 8B, F8, 8D, 45, EC, 50, FF, 15, 6C, 30, 40, 00, FF, 15, 68, 30, 40, 00, 8B, F0, F7, D6, 33, F7, FF, 15, 64, 30, 40, 00, 33, F0, 8B, 45, F0, 33, 45, EC, 68, 04, 01, 00, 00, 33, F0, 8D, 85, D4, F9, FF, FF, 50, 53, FF, 15, 60, 30, 40, 00, 85, C0, 75, 41, FF, 15, 5C, 30, 40, 00, 83, F8, 78, 75, 1A, 68, A8, 32, 40, 00, E8, 43, FB, FF, FF...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
7.5 KB (7,680 bytes)

Remove tuneup utilities 2014 full serial (mega).exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.