home

optimizerpro.exe

Optimizer Pro

PC Utilities Software Limited

Part of the Optimizer Pro / Driver 'PC optimizer' product lines marketed by Adsology and distributed through various bundled software (PPI and commission) channels. The application optimizerpro.exe, “Fix, clean, optimize your PC!” by PC Utilities Software Limited has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is also typically executed from an Internet Explorer cache folder.
Publisher:
PC Utilities Pro  (signed by PC Utilities Software Limited)

Product:
Optimizer Pro

Description:
Fix, clean, optimize your PC!

Version:
3.0.1.0

MD5:
798e10651983a0ce220d0db4e7c262e9

SHA-1:
00185bb941e768b0783a1b47ba84ae7e6d2e4a9f

SHA-256:
a0b324cd9a08ec50bb0a8f7a1c58666af72ab1190b818acecad8485c85e2e900

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
Installed with the Optimizer Pro software which is bundled by 3rd-party monetization programs.

Analysis date:
11/2/2024 7:23:50 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.PC Utilities (M)
17.3.15.7

File size:
3.6 MB (3,800,184 bytes)

Product version:
3.0.1.0

Copyright:
PC Utilities Pro

Trademarks:
PC Utilities Pro

Original file name:
OptimizerPro

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\optimizerpro.exe

Digital Signature
Signed by:
PC Utilities Software Limited

Authority:
GoDaddy.com, Inc.

Valid from:
4/5/2013 7:29:35 PM

Valid to:
4/3/2015 3:23:14 PM

Subject:
CN=PC Utilities Software Limited, O=PC Utilities Software Limited, L=London, S=UK, C=GB

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
2B239BABC97410

File PE Metadata
Compilation timestamp:
6/19/1992 11:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

Entry address:
0x13474

Entry point:
55, 8B, EC, B9, 27, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 53, 56, 57, B8, EC, 33, 41, 00, E8, F8, 26, FF, FF, 33, C0, 55, 68, 44, 39, 41, 00, 64, FF, 30, 64, 89, 20, B2, 01, A1, 38, 2F, 41, 00, E8, 3A, FB, FF, FF, 8B, D8, BA, 01, 00, 00, 80, 8B, C3, E8, CC, FB, FF, FF, B1, 01, BA, 5C, 39, 41, 00, 8B, C3, E8, 22, FC, FF, FF, 84, C0, 74, 20, 8D, 55, EC, 33, C0, E8, FC, F7, FE, FF, 8B, 4D, EC, BA, 7C, 39, 41, 00, 8B, C3, E8, 29, FD, FF, FF, 8B, C3, E8, 6A, FB, FF, FF, B2, 01, 8B, C3, 8B, 08, FF, 51, FC, 8D...
 
[+]

Entropy:
7.9859

Developed / compiled with:
Microsoft Visual C++

Code size:
75 KB (76,800 bytes)

Remove optimizerpro.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.