home

speedfixtoolpro300.exe

Speed Fix Tool Pro

Interads, UAB

The application speedfixtoolpro300.exe, “This installer database contains the logic and data required to install Speed Fix Tool Pro.” by Interads, UAB has been detected as a potentially unwanted program by 3 anti-malware scanners. This is a self-extracting archive and installer and has been known to bundle potentially unwanted software. The file has been seen being downloaded from speedfixtool.com and multiple other hosts.
Publisher:
FixBliss  (signed by Interads, UAB)

Product:
Speed Fix Tool Pro

Description:
This installer database contains the logic and data required to install Speed Fix Tool Pro.

Version:
3.0.0

MD5:
0deea8b57e8d0293e25694dcc7636213

SHA-1:
665b008a4b9554ff36a2fc176e54293d3b83e90f

SHA-256:
098a4e918bfe4e7b1f8771239ad440da09bcfebc22289656ca421e0304dfcb10

Scanner detections:
3 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 4:13:54 PM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Program.Unwanted.754
9.0.1.0280

ESET NOD32
MSIL/Rebrand.LittleRegClean.E potentially unwanted (variant)
9.12365

Reason Heuristics
PUP.FixBliss.RegClean.Optional.Installer.Meta (L)
15.10.7.16

File size:
7 MB (7,305,128 bytes)

Product version:
3.0.0

Copyright:
Copyright (C) 2015 FixBliss

Original file name:
SpeedFixToolProSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\speedfixtoolpro300.exe

Digital Signature
Signed by:
Interads, UAB

Authority:
Symantec Corporation

Valid from:
4/27/2015 7:00:00 PM

Valid to:
4/9/2017 6:59:59 PM

Subject:
CN="Interads, UAB", O="Interads, UAB", L=Kaunas, S=Kaunas, C=LT

Issuer:
CN=Symantec Class 3 SHA256 Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:
6D385FBF6207159A583E3B1E8142BEB7

File PE Metadata
Compilation timestamp:
10/7/2014 10:05:58 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
98304:zG7cl1155MF19bo5DtVi6QStxfcNZiEw2Cio5IuyPobQ8UEc9NBULvGccGeXI:2uQg5D4S7fKO9+oML9ELxcGeY

Entry address:
0xC87EC

Entry point:
E8, 4A, CC, 00, 00, E9, 79, FE, FF, FF, 8B, FF, 55, 8B, EC, 51, 53, 56, 8B, F0, 33, DB, 3B, F3, 75, 1E, E8, 5D, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, C5, D5, FF, FF, 83, C4, 14, 8B, C6, E9, C2, 00, 00, 00, 57, 39, 5D, 0C, 77, 1E, E8, 39, 4D, 00, 00, 6A, 16, 5E, 53, 53, 53, 53, 53, 89, 30, E8, A1, D5, FF, FF, 83, C4, 14, 8B, C6, E9, 9D, 00, 00, 00, 33, C0, 39, 5D, 14, 66, 89, 06, 0F, 95, C0, 40, 39, 45, 0C, 77, 09, E8, 0A, 4D, 00, 00, 6A, 22, EB, CF, 8B, 45, 10, 83, C0, FE, 83, F8, 22, 77...
 
[+]

Entropy:
7.8175  (probably packed)

Code size:
1021.5 KB (1,046,016 bytes)

The file speedfixtoolpro300.exe has been seen being distributed by the following 3 URLs.

http://speedfixtool.com/.../download.php

http://s3.amazonaws.com/.../SpeedFixToolPro300.exe

http://securejump.net/base2.php?id=2

Remove speedfixtoolpro300.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.