» tuneup.exe
Overview
Analysis
File Details

tuneup.exe

phone database

Stanislav Kabin

The is the installer for the WebPick InstalleRex download manager which bundles applications with offers for additional 3rd party software, mostly unwanted adware, and may be installed without consent. The application tuneup.exe by Stanislav Kabin has been detected as adware by 23 anti-malware scanners.

File name:

tuneup.exe

Publisher:

a (signed by Stanislav Kabin)

Product:

phone database

Version:

7.4.0.0

MD5:

2ffcb3055188f7d88aad8e17aaa75a88

SHA-1:

bff9a5ada8efe175025fc24a30b282da5b6da181

SHA-256:

e124351cfca4089462bf4ca1d39327315dab910a4294578e23f876af69d9d827

Scanner detections:

23 / 68

Status:

Adware

Analysis date:

4/25/2024 12:14:44 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.Dropper.103

920

Agnitum Outpost

PUA.MultiPlug

7.1.1

AhnLab V3 Security

PUP/Win32.DomaIQ

2014.07.30

Avira AntiVirus

Adware/MultiPlug.aoa

7.11.164.128

avast!

Win32:PUP-gen [PUP]

140617-1

AVG

Generic5

2015.0.3398

Bitdefender

Gen:Variant.Adware.Dropper.103

1.0.20.1050

Comodo Security

Application.Win32.Multiplug.GETF

19018

Dr.Web

Trojan.WebPick.2757

9.0.1.05190

Emsisoft Anti-Malware

Gen:Variant.Adware.Dropper.103

8.14.07.29.09

ESET NOD32

Win32/AdWare.MultiPlug.AP (variant)

8.10173

F-Secure

Gen:Variant.Adware.Dropper.103

11.2014-29-07_3

G Data

Gen:Variant.Adware.Dropper.103

14.7.24

IKARUS anti.virus

PUA.InstallRex

t3scan.1.6.1.0

K7 AntiVirus

Adware

13.181.12872

Malwarebytes

PUP.Optional.Unizeto

v2014.07.29.09

McAfee

PUP-FMP

5600.7054

MicroWorld eScan

Gen:Variant.Adware.Dropper.103

15.0.0.630

NANO AntiVirus

Riskware.Win32.MLW.dcitpt

0.28.2.61148

Panda Antivirus

Trj/Genetic.gen

14.07.29.09

Reason Heuristics

PUP.StanislavKabin.G

14.7.29.20

Vba32 AntiVirus

AdWare.Agent

3.12.26.3

VIPRE Antivirus

Threat.4150696

31208

File size:

780.4 KB (799,120 bytes)

Product version:

7.4.0.0

Original file name:

accomplish

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\downloads\tuneup.exe

Digital Signature

Signed by:

Stanislav Kabin

Authority:

Unizeto Technologies S.A.

Valid from:

6/23/2014 6:58:15 AM

Valid to:

6/23/2015 6:58:15 AM

Subject:

E=Stanislav.Kabin@hotmail.com, CN=Stanislav Kabin, O=Stanislav Kabin, C=RU

Issuer:

CN=Certum Code Signing CA, OU=Certum Certification Authority, O=Unizeto Technologies S.A., C=PL

Serial number:

3469022839E88D596EA6FE14C990AF76

File PE Metadata

Compilation timestamp:

7/17/2014 7:12:53 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:qhiDoNJQWSSojXpji8gi/ea0EXB3HhPp2:eiDPWSS4pjhx/t3hY

Entry address:

0x1590E

Entry point:

E8, 66, 75, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, D8, BD, 42, 00, E8, 3C, 27, 00, 00, E8, BC, 0E, 00, 00, 0F, B7, F0, 6A, 02, E8, F9, 74, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, A0, 3A, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8... 
[+]

Code size:

138 KB (141,312 bytes)

Remove tuneup.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.