AutoUpdate.DLL

SpeedyPC

SpeedyPC Software

This is a part of the SpeedyPC Pro software from ParetoLogic Inc (sometimes bundled through 3rd-party installers). The module AutoUpdate.DLL by SpeedyPC Software has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program SpeedyPC by SpeedyPC Software which is a potentially unwanted software program.
Publisher:
SpeedyPC Software  (signed and verified)

Product:
SpeedyPC

Description:
AutoUpdate DLL

Version:
1, 1, 0, 1

MD5:
81d38d7b35dae85271c8b0a762fd11af

SHA-1:
adaac79e47f8e45c7e6ec9ee187b8d43142ed4cd

SHA-256:
7a1739199af31b3d917a2fa10aa79effd0ba682183bdd30478600814365f080c

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/23/2024 2:29:40 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.ParetoLogic
15.2.11.1

File size:
529.3 KB (542,032 bytes)

Product version:
3.0.1.2

Copyright:
Copyright (C) 2009

Original file name:
AutoUpdate.DLL

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\autoupdate.dll

Digital Signature
Authority:
VeriSign, Inc.

Valid from:
9/10/2009 5:00:00 PM

Valid to:
9/11/2011 4:59:59 PM

Subject:
CN=SpeedyPC Software, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=SpeedyPC Software, L=Vancouver, S=British Columbia, C=CA

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
68D2742E069E0C168138127B757794F2

File PE Metadata
Compilation timestamp:
3/17/2010 5:01:59 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:ZIsntH8Q3g6C+JhOhxncmnBDUzAX1m6Ep1eUFJMWvXBZUqbqQ0geNQDlFvD0Ngw/:ZIsntxRCRnpakX1mnFJMdQ/yDa2

Entry address:
0x3179E

Entry point:
83, 7C, 24, 08, 01, 75, 05, E8, BC, 1B, 01, 00, FF, 74, 24, 04, 8B, 4C, 24, 10, 8B, 54, 24, 0C, E8, ED, FE, FF, FF, 59, C2, 0C, 00, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, E4, 64, 07, 10, 33, C5, 50, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF, 8D, 45, F4, 64, A3, 00, 00, 00, 00, C3, 50, 64, FF, 35, 00, 00, 00, 00, 8D, 44, 24, 0C, 2B, 64, 24, 0C, 53, 56, 57, 89, 28, 8B, E8, A1, E4, 64, 07, 10, 33, C5, 50, 89, 65, F0, FF, 75, FC, C7, 45, FC, FF, FF, FF, FF...
 
[+]

Entropy:
6.6073

Code size:
376 KB (385,024 bytes)

The file AutoUpdate.DLL has been discovered within the following program.

SpeedyPC  by SpeedyPC Software
Publisher's description - “Thanks to SpeedyPC Pro, it is now easy to find out. This innovative software scans your PC in search of ActiveX and Windows registry errors, process performance problems, dangerous malware, privacy files and junk files.”
www.SpeedyPC.com
75% remove it
 
Powered by Should I Remove It?

Remove AutoUpdate.DLL - Powered by Reason Core Security