home

pcspeedmaximizer.exe

PC Speed Maximizer

Smart PC Solutions, Inc.

The application pcspeedmaximizer.exe by Smart PC Solutions has been detected as a potentially unwanted program by 6 anti-malware scanners. This is a setup program which is used to install the application. It is also typically executed from an Internet Explorer cache folder. The file has been seen being downloaded from www.avanquestaffiliates.com and multiple other hosts.
Publisher:
Smart PC Solutions  (signed by Smart PC Solutions, Inc.)

Product:
PC Speed Maximizer

Version:
3.2.0.0

MD5:
d6f0e6f103fc00ce7858ccb6bb272e3b

SHA-1:
f3a9e7ea90c48313bdab9f6727b6917ee7f385b2

SHA-256:
2972f6d0c125c29250481e299a6e4f995feb01f02b481094488de5f8f81585b1

Scanner detections:
6 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 4:28:43 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic5
2015.0.3515

Comodo Security
ApplicUnwnt
18043

ESET NOD32
Win32/AdWare.SpeedingUpMyPC (variant)
8.9634

Reason Heuristics
PUP.Optional.SmartPCSolutions.Q
14.6.10.14

Trend Micro House Call
TROJ_GEN.F47V0402
7.2.94

VIPRE Antivirus
Trojan.Win32.Generic
28006

File size:
2.3 MB (2,363,536 bytes)

Product version:
3.2.0.0

Copyright:
Smart PC Solutions

Trademarks:
Smart PC Solutions

Original file name:
PCSpeedMaximizer

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\pcspeedmaximizer.exe

Digital Signature
Signed by:
Smart PC Solutions, Inc.

Authority:
VeriSign, Inc.

Valid from:
4/4/2011 5:00:00 PM

Valid to:
5/29/2014 4:59:59 PM

Subject:
CN="Smart PC Solutions, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Smart PC Solutions, Inc.", L=Alexandria, S=Virginia, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
502E76B6ACDCDE4F3336BF9286946063

File PE Metadata
Compilation timestamp:
6/19/1992 3:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
49152:O5e2F6eIpzYRN1n1jJje+KYXLAi7A2u4wBPtbB/u5pGrh2tw:O1FWzuhyCb9cZ1tNmXm

Entry address:
0x13068

Entry point:
55, 8B, EC, B9, 1C, 00, 00, 00, 6A, 00, 6A, 00, 49, 75, F9, 53, 56, 57, B8, E0, 2F, 41, 00, E8, B4, 2A, FF, FF, 33, C0, 55, 68, 48, 35, 41, 00, 64, FF, 30, 64, 89, 20, 8D, 55, E4, 33, C0, E8, 34, FC, FE, FF, 8B, 45, E4, 8D, 55, E8, E8, 41, 45, FF, FF, 8B, 45, E8, 8D, 55, EC, E8, FA, 80, FF, FF, 8B, 55, EC, B8, 84, 58, 41, 00, E8, 09, 0E, FF, FF, B8, 88, 58, 41, 00, E8, AB, 0D, FF, FF, 68, 8C, 58, 41, 00, 68, 04, 01, 00, 00, E8, 14, 2C, FF, FF, 85, C0, 76, 44, B8, 88, 58, 41, 00, BA, 8C, 58, 41, 00, B9, 05...
 
[+]

Entropy:
7.9710

Developed / compiled with:
Microsoft Visual C++

Code size:
74 KB (75,776 bytes)

The file pcspeedmaximizer.exe has been seen being distributed by the following 2 URLs.

http://www.avanquestaffiliates.com/.../PCSpeedMaximizer.exe

http://d18okb3pa33axu.cloudfront.net/.../PCSpeedMaximizer2.exe

Remove pcspeedmaximizer.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.