home

optimizerpro.exe

The application optimizerpro.exe has been detected as adware by 8 anti-malware scanners. Also know as BrowserDefender, this bundled service will prevent various web browser toolbars and extensions from running as well as block changes to the search page and provider. It is also typically executed from the user's temporary directory.
MD5:
6f697319166a1a2c47a93c8fd882bbfd

SHA-1:
7f26dcfcbaae1baf30627b57975bf6c88259aba9

SHA-256:
8c1770d8819c08dd5ffbf079583965b8a1923de3b87be61e302dcd91327fd42b

Scanner detections:
8 / 68

Status:
Adware

Explanation:
This service will prevent resources from modifying the web browser's home and search pages as well as the search provider set by the product, an affiliate search engine partner.

Analysis date:
4/16/2024 4:27:36 PM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
Trojan/Win32.Clicker
2014.07.26

AVG
Adware Generic5.ATRO
2014.0.3986

Dr.Web
Trojan.NtRootKit.17528
9.0.1.05190

ESET NOD32
Win32/AdWare.SpeedingUpMyPC.L application
7.0.302.0

IKARUS anti.virus
AdWare.Bprotector
t3scan.1.6.1.0

Reason Heuristics
PUP.OptimizerPro.M
14.7.25.10

Rising Antivirus
PE:Trojan.Win32.Generic.16C5B127!382054695
23.00.65.14723

Total Defense
Win32/Tnega.MHdEFO
37.0.11080

File size:
408.9 KB (418,723 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\local\temp\optimizerpro.exe

File PE Metadata
Compilation timestamp:
5/15/2014 9:34:57 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
12288:6oaxrsevx827XthG888888888888W88888888888kSxG:BaRPvx827X3AxG

Entry address:
0x3D74C

Entry point:
55, 8B, EC, 83, C4, F0, B8, F8, A5, 43, 00, E8, 14, C4, FC, FF, E8, 03, 86, FC, FF, 8D, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.4746

Developed / compiled with:
Microsoft Visual C++

Code size:
240.5 KB (246,272 bytes)

Remove optimizerpro.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.