» speedanalysissetup04.exe
Overview
Analysis
File Details
Downloads (1)

speedanalysissetup04.exe

PurpleTech Software Inc

This is part of a Performersoft product, a 'PC optimzation' application that provides minimal benifits and may have been bundled by a third party installer. The application speedanalysissetup04.exe by PurpleTech Software Inc has been detected as adware by 17 anti-malware scanners. The file has been seen being downloaded from softologic.com.

File name:

Publisher:

PurpleTech Software Inc (signed and verified)

MD5:

ad4d2fa450502c28bf3650ba31ae4cd0

SHA-1:

3d536fa946f8cd7313e8c79a94136f90b70d7c4d

SHA-256:

59255869722893d4f3ff54e15932969861228ffac9c9e5e6e26dd369dfa220c4

Scanner detections:

17 / 68

Status:

Adware

Analysis date:

4/20/2024 4:19:53 AM UTC (today)

Scan engine

Detection

Engine version

avast!

Win32:BProtect-A [PUP]

2014.9-131125

Bitdefender

Gen:Variant.Adware.Sees.1

1.0.20.1645

Clam AntiVirus

Win.Adware.BProtector

0.98/18155

Comodo Security

Heur.Suspicious

17171

Dr.Web

Adware.Plugin.115

9.0.1.0204

Emsisoft Anti-Malware

Gen:Variant.Adware.Sees

8.13.11.25.12

ESET NOD32

Win32/Toolbar.Besttoolbars

7.8975

Fortinet FortiGate

Riskware/Fam.NB

11/25/2013

F-Secure

Gen:Variant.Adware.Sees.1

11.2013-25-11_2

G Data

Gen:Variant.Adware.Sees

13.11.22

Kaspersky

Trojan-Downloader.Win32.MultiDL

14.0.0.4516

Malwarebytes

PUP.Optional.SpeedAnalysis.A

v2013.11.25.12

McAfee

Artemis!AD4D2FA45050

5600.7270

Reason Heuristics

PUP.Installer.PurpleTechSoftware.U

14.8.7.17

Sophos

Generic PUA DN

4.94

Trend Micro House Call

TROJ_GEN.F47V0801

7.2.329

Vba32 AntiVirus

TrojanDownloader.MultiDL

3.12.24.3

File size:

2 MB (2,122,560 bytes)

File type:

Executable application (Win32 EXE)

Common path:

C:\users\{user}\downloads\speedanalysissetup04.exe

Digital Signature

Signed by:

PurpleTech Software Inc

Authority:

GoDaddy.com, Inc.

Valid from:

9/11/2012 7:45:58 PM

Valid to:

9/11/2015 7:45:58 PM

Subject:

CN=PurpleTech Software Inc, O=PurpleTech Software Inc, L=Beaverton, S=OR, C=US

Issuer:

SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:

00C5C4C135A4BC

File PE Metadata

Compilation timestamp:

9/26/2011 6:21:28 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

Entry address:

0x3883

Code size:

27.5 KB (28,160 bytes)

The file speedanalysissetup04.exe has been seen being distributed by the following URL.

http://softologic.com/files/.../SpeedAnalysisSetup04.exe

Remove speedanalysissetup04.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.