unins000.exe

SUPER TUNEUP TECHNOLOGIES LLP

The application unins000.exe by SUPER TUNEUP TECHNOLOGIES LLP has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is the uninstaller utility registered in the Windows Control Panel for the program Tuneup Pro by tuneuppro.com. This file is typically installed with the program Tuneup Pro by tuneuppro.com. While running, it connects to the Internet address a0.f0.2bd0.ip4.static.sl-reverse.com on port 80 using the HTTP protocol.
Publisher:
SUPER TUNEUP TECHNOLOGIES LLP  (signed and verified)

Description:
Setup/Uninstall

Version:
51.1052.0.0

MD5:
c5c92b113c5560bf72c994b687c045a3

SHA-1:
0cad7f4c76b94c25b880372e15ed5ce25de10407

SHA-256:
5efadd28f8301111bc0fdcd5ec8afbb71d09fff4354afde3d8ca4cd476c677cd

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/5/2024 10:02:41 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.SecurePCCleaner.SUPERTUN.Installer.Meta (M)
16.7.7.22

File size:
1.1 MB (1,196,816 bytes)

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\tuneup pro\unins000.exe

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
11/16/2014 6:00:00 PM

Valid to:
11/17/2015 5:59:59 PM

Subject:
CN=SUPER TUNEUP TECHNOLOGIES LLP, O=SUPER TUNEUP TECHNOLOGIES LLP, L=Jaipur, S=Rajasthan, C=IN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
369C741630C6896C1F08CB934C5AB8C6

File PE Metadata
Compilation timestamp:
7/9/2012 8:41:30 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
24576:HYwCLCUplZhgjXj8YcgoniqO3CBiO0jmS+Elzcy8ZNZNx9Zo:uGUhni7eSRzcZp0

Entry address:
0xFCF94

Entry point:
55, 8B, EC, 83, C4, F0, 53, 56, 57, B8, 84, AC, 4F, 00, E8, 95, BF, F0, FF, 6A, EC, A1, C4, 0D, 50, 00, 8B, 00, 8B, 98, 70, 01, 00, 00, 53, E8, 28, CE, F0, FF, 25, 7F, FF, FF, FF, 50, 6A, EC, A1, C4, 0D, 50, 00, 53, E8, 7D, D0, F0, FF, 33, C0, 55, 68, 0F, D0, 4F, 00, 64, FF, 30, 64, 89, 20, 6A, 01, E8, D0, C7, F0, FF, E8, DF, D9, FF, FF, A1, BC, A8, 4F, 00, 50, 68, 20, A9, 4F, 00, A1, C4, 0D, 50, 00, 8B, 00, E8, 38, EE, F7, FF, E8, 33, DA, FF, FF, 33, C0, 5A, 59, 59, 64, 89, 10, EB, 19, E9, CC, 76, F0, FF...
 
[+]

Entropy:
6.3589

Developed / compiled with:
Microsoft Visual C++

Code size:
1005 KB (1,029,120 bytes)

Program Uninstaller
Program name:
Tuneup Pro

Display publisher:
tuneuppro.com

Display version:
1.08

Uninstall string:
"C:\Program Files\Tuneup Pro\unins000.exe" /silent


The file unins000.exe has been discovered within the following program.

Tuneup Pro  by tuneuppro.com
Tuneup Pro is marketed as a PC performance optimizer that utilizes several techniques to attempt to increase the speed of the user's PC include registry tuning (which is a practice that is often criticized by experts as producing no results) as well as hard drive scrubbing.
www.tuneuppro.com
39% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communications in live environments.

TCP (HTTP):
Connects to a0.f0.2bd0.ip4.static.sl-reverse.com  (208.43.240.160:80)

TCP (HTTP):
Connects to 122-252-144-216.static.reverse.lstn.net  (216.144.252.122:80)

Remove unins000.exe - Powered by Reason Core Security