uninstall.exe

360Amigo System SpeedUp

Business Bakers

The application uninstall.exe, “360Amigo System SpeedUp Installor” by Business Bakers has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. This file is typically installed with the program 360Amigo System Speedup PRO by 360Amigo. The file has been seen being downloaded from files1.majorgeeks.com and multiple other hosts.
Publisher:
360Amigo  (signed by Business Bakers)

Product:
360Amigo System SpeedUp

Description:
360Amigo System SpeedUp Installor

Version:
1.2.1.7900

MD5:
d6e98b7d949584665f187e4afd466428

SHA-1:
e00a91c1a36b6463db17915a4db4c7b20db4bd10

SHA-256:
29c741e983d1e6f753be05c479bd9ab7f40066aba8ce569f9af9ad456339182e

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/25/2024 6:48:34 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.Installer.BusinessBakers.J
14.3.5.1

File size:
3.3 MB (3,476,768 bytes)

Product version:
1.2.1

Copyright:
Copyright 2012 by 360Amigo

Trademarks:
360Amigo

Original file name:
Setup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United Kingdom)

Common path:
C:\Program Files\360amigo\uninstall.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
8/16/2011 8:00:00 PM

Valid to:
8/16/2012 7:59:59 PM

Subject:
CN=Business Bakers, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Business Bakers, L=Helsinki, S=Helsinki, C=FI

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
08FFDE64490119842E1D0271FB0FE97A

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:5z+pUKIAzljHB4fbAEy5b8q9Ge1f9gM7sC/TCNKzdhahBuv23:F+lLzljHBUbAEtde7hTtzrsuu3

Entry address:
0xA4D001

Entry point:
60, E9, 3D, 04, 00, 00, E9, 24, 04, 00, 01, EB, 00, BB, 31, 39, 44, 00, 04, DD, 2B, 9D, D1, 3F, 44, 00, 84, BD, FC, 49, 45, 00, 00, 89, 9E, FC, 49, 44, 01, 0F, 85, 66, 04, 00, 00, C7, 86, 33, 39, 44, 01, 00, 00, 00, 01, 8D, 85, 04, 4B, 44, 00, 50, 00, 96, 00, 4B, 45, 00, 89, 85, 01, 4A, 44, 00, 8C, F8, 8D, 9D, 12, 4A, 44, 00, 54, 50, FF, 95, FD, 4A, 44, 00, 8A, 85, FC, 3F, 45, 00, 8D, 9D, 1F, 4A, 44, 00, 54, 57, FF, 95, FD, 4A, 44, 00, 8A, 85, 00, 40, 45, 00, 8D, 85, B6, 39, 44, 00, 00, E1, DC, 03, 14, 00...
 
[+]

Entropy:
7.9985

Packer / compiler:
ASProtect v1.1

Code size:
1.2 MB (1,243,648 bytes)

The file uninstall.exe has been discovered within the following programs.

360Amigo System Speedup is a tool of Windows that works quickly in identifying the problem and fix it if there are some mistakes that result in slow system performance.
www.360amigo.com
56% remove it
 
Powered by Should I Remove It?

The file uninstall.exe has been seen being distributed by the following 12 URLs.

http://files1.majorgeeks.com/46a36a35a3c58cdc8cccceef67833b78/.../360amigosetup.exe

Remove uninstall.exe - Powered by Reason Core Security