home

speedfixtool-setup.exe

Speed Fix Tool

Fixbliss

The application speedfixtool-setup.exe, “This installer database contains the logic and data required to install Speed Fix Tool.” by Fixbliss has been detected as a potentially unwanted program by 2 anti-malware scanners. This is a setup and installation application and has been known to bundle potentially unwanted software. The file has been seen being downloaded from RevenueWire's SafeCart distribution platform adformula.speedfixtool.safecart.com and multiple other hosts.
Publisher:
Fixbliss  (signed and verified)

Product:
Speed Fix Tool

Description:
This installer database contains the logic and data required to install Speed Fix Tool.

Version:
2.5.7

MD5:
d864b2f8af28a4bbb6c943bb79f22177

SHA-1:
550c71260bc72ead1f2166192020f4e611555471

SHA-256:
101b602ca35509eaaa395dfc36be64f4096ef6bb57e992c091ed7d58719458e6

Scanner detections:
2 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 9:52:22 AM UTC  (today)

Scan engine
Detection
Engine version

G Data
Win32.Application.SpeedFix
14.9.24

Reason Heuristics
PUP.FixBliss.Optional.Installer.Meta (L)
15.8.26.16

File size:
6.1 MB (6,425,992 bytes)

Product version:
2.5.7

Copyright:
Copyright (C) 2014 FixBliss

Original file name:
SpeedFixToolSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\speedfixtool-setup.exe

Digital Signature
Signed by:
Fixbliss

Authority:
COMODO CA Limited

Valid from:
11/25/2013 7:00:00 PM

Valid to:
11/26/2014 6:59:59 PM

Subject:
CN=Fixbliss, O=Fixbliss, STREET="K. Donelaičio g. 62, Kauno m", L=Kupiskis, S=Kupiskis, PostalCode=40113, C=LT

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
0081D31A0F55D47E5F29A0AD98D6DC5D0F

File PE Metadata
Compilation timestamp:
8/12/2014 9:30:15 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
196608:DXmAMbD5UKseHgZ7ppG/HjMOj31PhVTAfJu:gD5UhesoHQOLZv+Ju

Entry address:
0xC875C

Entry point:
E8, 47, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4E, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4E, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4E, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Entropy:
7.7784  (probably packed)

Code size:
1021.5 KB (1,046,016 bytes)

The file speedfixtool-setup.exe has been seen being distributed by the following 20 URLs.

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_106_3850337

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_106_3850337

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_120_3714354

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_120_3714354

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_125_3928912

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_125_3928912

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_120_4019475

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_120_4019475

http://adformula.speedfixtool.safecart.com/.../download

http://adformula.speedfixtool.revenuewire.net/.../download

http://bannermath.com/tracking202/.../off.php?acip=31124&pci=

http://speedfixtool.com/.../download.php

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_120_4119864

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_120_4119864

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_106_3979681

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_106_3979681

http://adformula.speedfixtool.safecart.com/.../download?omx9mxwm_120_3706294

http://adformula.speedfixtool.revenuewire.net/.../download?omx9mxwm_120_3706294

http://speedfixtool.com/.../SpeedFixTool-Setup.exe

http://securejump.net/base2.php?id=2

Remove speedfixtool-setup.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.