home

speedzookascheduler.exe

Zookaware, LLC.

The application speedzookascheduler.exe by Zookaware has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘SpeedZooka Scheduler’. This file is typically installed with the program SpeedZooka by ZookaWare which is a potentially unwanted software program.
Publisher:
Zookaware, LLC.  (signed and verified)

MD5:
6595f2de659db9a21d98ba5e55843e0e

SHA-1:
d7b6bee61a7fe120b630c79790834bf9fab20795

SHA-256:
479acd381784f794ace929f3cce87e670d7f74dafc6f188643ff5df05f1bd10c

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 4:24:44 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.Zookaware.Startup
15.8.29.18

File size:
386.4 KB (395,704 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\speedzooka\speedzookascheduler.exe

Digital Signature
Signed by:
Zookaware, LLC.

Authority:
Symantec Corporation

Valid from:
8/30/2014 1:00:00 AM

Valid to:
8/30/2017 12:59:59 AM

Subject:
CN="Zookaware, LLC.", O="Zookaware, LLC.", L=Anchorage, S=Alaska, C=US, SERIALNUMBER=10007133, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Alaska, OID.1.3.6.1.4.1.311.60.2.1.3=US

Issuer:
CN=Symantec Class 3 Extended Validation Code Signing CA - G2, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
667978587A1B16965ABBDEF8C3BB6F5B

File PE Metadata
Compilation timestamp:
6/19/1992 10:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:XlAmLN62pBCP14jA4OqnpYBqle6sALGKu9P/LxcFrq9OaOeSseWTBlm:VAmLN62pBU+R/zsABSzKFrsnOeScPm

Entry address:
0x4EE10

Entry point:
55, 8B, EC, 83, C4, F0, B8, 28, EC, 44, 00, E8, 30, 74, FB, FF, A1, CC, FF, 44, 00, 8B, 00, E8, 30, D8, FF, FF, A1, CC, FF, 44, 00, 8B, 00, BA, 7C, EE, 44, 00, E8, 1F, D4, FF, FF, A1, CC, FF, 44, 00, 8B, 00, C6, 40, 5B, 00, 8B, 0D, 04, FF, 44, 00, A1, CC, FF, 44, 00, 8B, 00, 8B, 15, 2C, DE, 44, 00, E8, 14, D8, FF, FF, A1, CC, FF, 44, 00, 8B, 00, E8, 88, D8, FF, FF, E8, 63, 54, FB, FF, 00, 00, 00, FF, FF, FF, FF, 14, 00, 00, 00, 53, 70, 65, 65, 64, 5A, 6F, 6F, 6B, 61, 20, 53, 63, 68, 65, 64, 75, 6C, 65, 72...
 
[+]

Entropy:
6.6071

Developed / compiled with:
Microsoft Visual C++

Code size:
312 KB (319,488 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SpeedZooka Scheduler

Command:
C:\Program Files\speedzooka\speedzookascheduler.exe


The file speedzookascheduler.exe has been discovered within the following program.

SpeedZooka  by ZookaWare
SpeedZooka is marketed as a PC performance optimizer that utilizes several techniques to attempt to increase the speed of the user's PC include registry tuning (which is a practice that is often criticized by experts as producing no results) as well as hard drive scrubbing.
zookaware.com/support
65% remove it
 
Powered by Should I Remove It?

Remove speedzookascheduler.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.