» 7c4857c63af57edc8a801ba2709eef667454de9ab93c5266d480d16ca486915e
Overview
Analysis
File Details

7c4857c63af57edc8a801ba2709eef667454de9ab93c5266d480d16ca486915e

Optimizer Pro 3.2

PC Utilities Software Limited

Part of the Optimizer Pro / Driver 'PC optimizer' product lines marketed by Adsology and distributed through various bundled software (PPI and commission) channels. The file 7c4857c63af57edc8a801ba2709eef667454de9ab93c5266d480d16ca486915e, “Optimizer PRO – Clean up your PC ” by PC Utilities Software Limited has been detected as a potentially unwanted program by 19 anti-malware scanners.

File name:

Publisher:

PCUtilities Software Limited (signed by PC Utilities Software Limited)

Product:

Optimizer Pro 3.2

Description:

Optimizer PRO – Clean up your PC

Version:

3.3.1.7

MD5:

9d427c31a6132e12383880bac2a8fda4

SHA-1:

339dadadf766728ef5438c280766029502e493cf

SHA-256:

7c4857c63af57edc8a801ba2709eef667454de9ab93c5266d480d16ca486915e

Scanner detections:

19 / 68

Status:

Potentially unwanted

Explanation:

Installed with the Optimizer Pro software which is bundled by 3rd-party monetization programs.

Analysis date:

11/27/2024 5:31:42 AM UTC (today)

Scan engine

Detection

Engine version

Agnitum Outpost

Riskware.SpeedingUpMyPC

7.1.1

AhnLab V3 Security

PUP/Win32.OptimizerPro

2015.06.05

Avira AntiVirus

PUA/OptimizerPro.Gen

8.3.1.6

avast!

Win32:MultiPlug-ZL [PUP]

2014.9-150604

AVG

Generic

2016.0.3088

Bkav FE

W32.HfsAdware

1.3.0.6379

Dr.Web

Program.Unwanted.295

9.0.1.0155

ESET NOD32

Win32/Adware.SpeedingUpMyPC.AG (variant)

9.11736

G Data

Win32.Application.OptimizerPro

15.6.25

IKARUS anti.virus

PUA.SProtector

t3scan.1.9.5.0

K7 AntiVirus

Unwanted-Program

13.204.16146

Kaspersky

Trojan-FakeAV.Win32.Agent

14.0.0.1935

Malwarebytes

PUP.Optional.OptimizerPro.A

v2015.06.04.09

NANO AntiVirus

Trojan.Win32.FakeAV.dsjhrr

0.30.24.1636

Qihoo 360 Security

Trojan.Generic

1.0.0.1015

Quick Heal

PUA.Pcutilitie.Gen

6.15.14.00

Reason Heuristics

PUP.PC Utilities.Installer

15.6.4.21

Vba32 AntiVirus

TrojanFakeAV.Agent

3.12.26.4

VIPRE Antivirus

Trojan.Win32.Generic

40832

File size:

5.8 MB (6,123,480 bytes)

Product version:

3.3.1.7

PCUtilities Software Limited

Language:

Language Neutral

Digital Signature

Signed by:

PC Utilities Software Limited

Authority:

COMODO CA Limited

Valid from:

11/21/2014 1:00:00 AM

Valid to:

11/22/2015 12:59:59 AM

Subject:

CN=PC Utilities Software Limited, O=PC Utilities Software Limited, STREET=78 York Street, L=London, PostalCode=W1H 1DP, C=GB

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00F10854548D47F74C920D7091D9057D6E

File PE Metadata

Compilation timestamp:

2/4/2013 7:24:57 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

98304:fyjJ7BUDJyL+Cy09/+Ks28sOChhyKaLY9TuWyqLnlyPVTM:4J7BU5lsVhM8RrYPRM

Entry address:

0x113BC

Entry point:

55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, 2C, 00, 41, 00, E8, E8, 51, FF, FF, 33, C0, 55, 68, 9E, 1A, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 5A, 1A, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, 5B, 41, 00, E8, 16, D8, FF, FF, E8, 65, D3, FF, FF, 80, 3D, DC, 2A, 41, 00, 00, 74, 0C, E8, 2B, D9, FF, FF, 33, C0, E8, 80, 32, FF, FF, 8D, 55, EC, 33, C0, E8, E2, A3, FF, FF, 8B, 55, EC, B8, 50, 86... 
[+]

Entropy:

7.9964

Developed / compiled with:

Microsoft Visual C++

Code size:

63.5 KB (65,024 bytes)

Remove 7c4857c63af57edc8a801ba2709eef667454de9ab93c5266d480d16ca486915e - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.