StartApps.exe

Boosting for Main Application

Xportsoft Technologies

The application StartApps.exe, “Starting up the applicaiton” by Xportsoft Technologies has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘PC Optimizer Pro’. This file is typically installed with the program PC Optimizer Pro by PC Optimizer Pro, Inc..
Publisher:
Tweaking Tools  (signed by Xportsoft Technologies)

Product:
Boosting for Main Application

Description:
Starting up the applicaiton

Version:
1.0.0.5

MD5:
41836a26871b7762781371e377164e3b

SHA-1:
268b97e2bffb7cbff68bea117a39d18de7519b8d

SHA-256:
cc51d7e0be386c7b9ecaae0174374d326b4b9eaa9e965e517014dcd343afecda

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
12/27/2024 5:36:00 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win64.Generic.XportsoftTechnologies.Meta
15.12.19.19

File size:
421.6 KB (431,744 bytes)

Product version:
1.0.0.5

Copyright:
(c) Tweaking Tools. All rights reserved.

Original file name:
StartApps.exe

File type:
Executable application (Win64 EXE)

Language:
English (United States)

Common path:
C:\Program Files\pc optimizer pro\startapps.exe

Digital Signature
Authority:
The USERTRUST Network

Valid from:
10/11/2009 8:00:00 PM

Valid to:
10/12/2010 7:59:59 PM

Subject:
CN=Xportsoft Technologies, O=Xportsoft Technologies, STREET="Cabin No 12-13, Chhabra Building, Gulati Market, Mahesh Nagar", L=Ambala Cantt, S=Haryana, PostalCode=133001, C=IN

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00E77DDB005DF0938FC6896599648E42DC

File PE Metadata
Compilation timestamp:
8/11/2010 8:34:02 AM

OS version:
5.2

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:u75xqq4s/tqlIDrBNrqD8BUcHGG9xpWXzLJTzB72m4qHASBc1dwWq:ufl4s/tqlI/BNrY8nmAxpW+GOnwB

Entry address:
0x28D34

Entry point:
48, 83, EC, 28, E8, B7, 3F, 00, 00, 48, 83, C4, 28, E9, 16, FE, FF, FF, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, CC, 66, 66, 0F, 1F, 84, 00, 00, 00, 00, 00, 48, 3B, 0D, 79, D0, 02, 00, 75, 11, 48, C1, C1, 10, 66, F7, C1, FF, FF, 75, 02, F3, C3, 48, C1, C9, 10, E9, 29, 40, 00, 00, CC, 40, 53, 48, 83, EC, 20, BA, 08, 00, 00, 00, 8D, 4A, 18, E8, CD, 41, 00, 00, 48, 8B, C8, 48, 8B, D8, E8, AE, 3B, 00, 00, 48, 89, 05, CB, 46, 03, 00, 48, 89, 05, BC, 46, 03, 00, 48, 85, DB, 75, 05, 8D, 43, 18...
 
[+]

Entropy:
6.0357

Code size:
243.5 KB (249,344 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
PC Optimizer Pro

Command:
"C:\Program Files\pc optimizer pro\startapps.exe" -s


The file StartApps.exe has been discovered within the following program.

PC Optimizer Pro  by PC Optimizer Pro, Inc.
This is a PC optimization program that is supposed to increase the speed of computer by removing invalid entries the computer's registry.
www.twekingtools.com/PC Optimizer Pro
53% remove it
 
Powered by Should I Remove It?

Remove StartApps.exe - Powered by Reason Core Security