trz5f00.tmp

Application Manager

MediaTechSoft Inc.

This is part of a Performersoft product, a 'PC optimzation' application that provides minimal benifits and may have been bundled by a third party installer. The file trz5f00.tmp by MediaTechSoft has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program BitGuard by MediaTechSoft Inc. which is a potentially unwanted software program.
Publisher:
PerformerSoft LLC  (signed by MediaTechSoft Inc.)

Product:
Application Manager

Description:
Protector

Version:
2,7,1769,27

MD5:
b0709680a86bdd99f968752c9449b809

SHA-1:
166d009b068c2ee367704779dfae1477af45b969

SHA-256:
dad74779542e84d9358b7f24cc21a831c2f63bab4931c2dd2a4d561a24794ab6

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/27/2024 3:40:05 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Performersoft (M)
17.1.20.20

File size:
2.6 MB (2,735,584 bytes)

Product version:
2,7,1769,27

Copyright:
Copyright 2012

Language:
English (United States)

Common path:
C:\ProgramData\bitguard\2.7.1769.27\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\trz5f00.tmp

Digital Signature
Authority:
GoDaddy.com, Inc.

Valid from:
8/4/2013 10:09:22 AM

Valid to:
3/29/2016 7:18:00 PM

Subject:
CN=MediaTechSoft Inc., O=MediaTechSoft Inc., L=Beaverton, S=Oregon, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
047346D0687AB1

File PE Metadata
Compilation timestamp:
10/22/2013 5:09:35 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

Entry address:
0x170997

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, E3, E0, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 83, EC, 14, 56, 8B, 75, 08, 57, 33, FF, 89, 7D, F8, 89, 7D, F4, 89, 7D, FC, 3B, F7, 75, 13, E8, 34, 11, 00, 00, 6A, 16, 5E, 89, 30, E8, F3, 7C, 00, 00, 8B, C6, EB, 54, 53, 6A, 24, 68, FF, 00, 00, 00, 56, E8, 89, F0, FF, FF, 8B, 5D, 0C, 83, C4, 0C, 3B, DF, 75, 11, E8, 09, 11, 00, 00, 6A, 16, 5E, 89, 30, E8, C8, 7C, 00, 00, EB, 28, 8B, 43, 04, 8B, 0B...
 
[+]

Entropy:
6.7030

Code size:
1.8 MB (1,928,192 bytes)

The file trz5f00.tmp has been discovered within the following program.

BitGuard  by MediaTechSoft Inc.
BitGuard also known as BProtector, Application Manager and Browser Protector is an application designed to prevent the removal of software installed by the provider and affiliates (including web browser extensions deployed by PerformerSoft).
www.mediatechsoft.com/contact.html
74% remove it
 
Powered by Should I Remove It?

Remove trz5f00.tmp - Powered by Reason Core Security