home

OptProCrash.dll

PC Utilities Software Limited

Part of the Optimizer Pro / Driver 'PC optimizer' product lines marketed by Adsology and distributed through various bundled software (PPI and commission) channels. The module OptProCrash.dll by PC Utilities Software Limited has been detected as a potentially unwanted program by 18 anti-malware scanners. Also know as BrowserDefender, this bundled service will prevent various web browser toolbars and extensions from running as well as block changes to the search page and provider.
Publisher:
PC Utilities Software Limited  (signed and verified)

MD5:
778ce48a89867e2dc107193ee607dfb4

SHA-1:
5b5827002b89fd73e047ddbedc29b5ec1fbe44a4

SHA-256:
cadacbfdf27151a81f42b43bb517a7f604ebf26808cc594450d43f36381df7c5

Scanner detections:
18 / 68

Status:
Potentially unwanted

Explanation:
Installed with the Optimizer Pro software which is bundled by 3rd-party monetization programs.

Analysis date:
4/19/2024 7:09:17 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Bprotector.5
826

AegisLab AV Signature
AdWare.MSIL.DomaIQ
2.1.4+

Agnitum Outpost
Riskware.Agent
7.1.1

Avira AntiVirus
TR/BProtector.Gen2
7.11.182.172

avast!
Win32:BProtect-J [Trj]
2014.9-141101

AVG
Dropper.Generic_r
2015.0.3304

Bitdefender
Gen:Variant.Adware.Bprotector.5
1.0.20.1525

Comodo Security
Application.Win32.BProtect.COLC
19960

Dr.Web
Trojan.WebPick.13
9.0.1.0305

Emsisoft Anti-Malware
Gen:Variant.Adware.Bprotector
8.14.11.01.05

ESET NOD32
Win32/SProtector (variant)
8.10654

F-Secure
Gen:Variant.Adware.Bprotector.5
11.2014-01-11_7

G Data
Gen:Variant.Adware.Bprotector
14.11.24

K7 AntiVirus
Trojan
13.185.13866

MicroWorld eScan
Gen:Variant.Adware.Bprotector.5
15.0.0.915

Reason Heuristics
PUP.PCUtilities.L
14.11.1.5

Sophos
BProtector
4.98

SUPERAntiSpyware
Adware.BProtector/Variant
10265

File size:
3.9 MB (4,081,480 bytes)

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\optimizer pro\optprocrash.dll

Digital Signature
Signed by:
PC Utilities Software Limited

Authority:
GoDaddy.com, Inc.

Valid from:
4/5/2013 7:29:35 PM

Valid to:
4/3/2015 3:23:14 PM

Subject:
CN=PC Utilities Software Limited, O=PC Utilities Software Limited, L=London, S=UK, C=GB

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
2B239BABC97410

File PE Metadata
Compilation timestamp:
12/22/2013 12:05:52 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
98304:2elxQkN0X0c4E1f8RyXlI5n0jL4yGqCDdMLCyG2IQZTbs27:RlxQGo0c4E1f2y1I50n4yGDwdJIUTY27

Entry address:
0xE5C62

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 42, BE, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, E8, 53, 25, 10, E8, 4F, 08, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 0C, AC, 29, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 08, 16, 24, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
2.2 MB (2,358,272 bytes)

Remove OptProCrash.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.