home

optimizerpro.exe

Optimizer Pro v3.2

PC Utilities Software Limited

Part of the Optimizer Pro / Driver 'PC optimizer' product lines marketed by Adsology and distributed through various bundled software (PPI and commission) channels. The application optimizerpro.exe, “Optimizer Pro – Clean up your PC” by PC Utilities Software Limited has been detected as a potentially unwanted program by 33 anti-malware scanners. Also know as BrowserDefender, this bundled service will prevent various web browser toolbars and extensions from running as well as block changes to the search page and provider.
Publisher:
PCUtilities Software Limited  (signed by PC Utilities Software Limited)

Product:
Optimizer Pro v3.2

Description:
Optimizer Pro – Clean up your PC

Version:
3.3.1.7

MD5:
223d061aa016f3ba08172addd10a2ec1

SHA-1:
1022f220dfe3d58a364cc3c568a6c695ac868805

SHA-256:
dc2458f1b772fcf8372d140dfe8a61a6c70af722d456a2d2ff3dc37ab46e8534

Scanner detections:
33 / 68

Status:
Potentially unwanted

Explanation:
Installed with the Optimizer Pro software which is bundled by 3rd-party monetization programs.

Analysis date:
4/26/2024 3:13:30 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.12849989
674

Agnitum Outpost
Trojan.Inject
7.1.1

Avira AntiVirus
TR/Bprotector.2018872
7.11.212.236

avast!
Win32:Malware-gen
2014.9-150401

AVG
Win32/DH{gRKBE4EOICIlABM1gQw}
2016.0.3152

Bitdefender
Gen:Variant.Zusy.133230
1.0.20.455

Bkav FE
W32.HfsAdware
1.3.0.6379

Clam AntiVirus
Win.Trojan.Inject-10791
0.98/21511

Comodo Security
Application.Win32.OptimizerPro.FY
21267

Dr.Web
riskware program Program.Unwanted.295
9.0.1.091

Emsisoft Anti-Malware
Gen:Variant.Zusy.133230
8.15.04.01.02

ESET NOD32
Win32/Adware.SpeedingUpMyPC.AB application
9.7.0.302.0

Fortinet FortiGate
W32/Inject.UMUB!tr
4/1/2015

F-Secure
Trojan.Generic.12850669
11.2015-01-04_4

G Data
Win32.Application.OptimizerPro
15.4.25

herdProtect (fuzzy)
variant of of_us-i3-optimizerpro_chk_0_188.exe (PUP)
2015.7.6.10

IKARUS anti.virus
PUA.SpeedingUpMyPC
t3scan.1.8.6.0

K7 AntiVirus
Adware
13.204.16151

Kaspersky
UDS:DangerousObject.Multi.Generic
14.0.0.2257

Malwarebytes
PUP.Optional.OptimizerPR0
v2015.04.01.02

McAfee
Artemis!223D061AA016
5600.6808

MicroWorld eScan
Trojan.Generic.12850669
16.0.0.273

NANO AntiVirus
Trojan.Win32.Inject.dpcnsi
0.30.8.659

Panda Antivirus
Trj/Genetic.gen
15.04.01.02

Qihoo 360 Security
Win32/Trojan.Multi.daf
1.0.0.1015

Quick Heal
PUA.OptimizerPro.A9
4.15.14.00

Reason Heuristics
PUP.PC Utilities
15.4.1.14

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.R08NC0OC615
7.2.91

Trend Micro
TROJ_GEN.R047C0ECF15
10.465.01

Vba32 AntiVirus
Trojan.Inject
3.12.26.3

VIPRE Antivirus
Threat.5068139
40828

Zillya! Antivirus
Trojan.Inject.Win32.159090
2.0.0.2207

File size:
7 MB (7,339,984 bytes)

Product version:
3.3.1.7

Copyright:
PCUtilities Software Limited

Original file name:
OptimizerPR0

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\ProgramData\{1df7e8cf-a490-a469-1df7-7e8cfa49a33e}\optimizerpro.exe

Digital Signature
Signed by:
PC Utilities Software Limited

Authority:
COMODO CA Limited

Valid from:
11/20/2014 7:00:00 PM

Valid to:
11/21/2015 6:59:59 PM

Subject:
CN=PC Utilities Software Limited, O=PC Utilities Software Limited, STREET=78 York Street, L=London, PostalCode=W1H 1DP, C=GB

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F10854548D47F74C920D7091D9057D6E

File PE Metadata
Compilation timestamp:
2/25/2015 8:07:30 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
196608:2x+PjfCEoXj1/2DneuyDr8jsQEzCNOJvlC0FI:2xqYx/2LTyDAjsWOJXFI

Entry address:
0xEAC7

Entry point:
E8, 06, 7A, 00, 00, E9, 89, FE, FF, FF, 8B, FF, 55, 8B, EC, 83, EC, 20, 8B, 45, 08, 56, 57, 6A, 08, 59, BE, 20, 95, 42, 00, 8D, 7D, E0, F3, A5, 89, 45, F8, 8B, 45, 0C, 5F, 89, 45, FC, 5E, 85, C0, 74, 0C, F6, 00, 08, 74, 07, C7, 45, F4, 00, 40, 99, 01, 8D, 45, F4, 50, FF, 75, F0, FF, 75, E4, FF, 75, E0, FF, 15, 1C, 91, 42, 00, C9, C2, 08, 00, CC, CC, CC, 8B, 4C, 24, 04, F7, C1, 03, 00, 00, 00, 74, 24, 8A, 01, 83, C1, 01, 84, C0, 74, 4E, F7, C1, 03, 00, 00, 00, 75, EF, 05, 00, 00, 00, 00, 8D, A4, 24, 00, 00...
 
[+]

Entropy:
7.9795  (probably packed)

Code size:
160 KB (163,840 bytes)

Remove optimizerpro.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.