home

speedzookascheduler.exe

ZookaWare, LLC.

The application speedzookascheduler.exe by ZookaWare has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘SpeedZooka Scheduler’. This file is typically installed with the program SpeedZooka by ZookaWare which is a potentially unwanted software program.
Publisher:
ZookaWare, LLC.  (signed and verified)

MD5:
c9ef3a09403a7906cde4c8f1ff61d5d6

SHA-1:
551aa74fc2143c6864edb41556d74bc1072fb192

SHA-256:
23a46892062cff54c30d96f31eedacdfa79e081c548a4f66e114bf34a0f3b05c

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/19/2024 12:14:55 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Optional.ZookaWare.T
14.8.25.15

File size:
386 KB (395,224 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\speedzooka\speedzookascheduler.exe

Digital Signature
Signed by:
ZookaWare, LLC.

Authority:
DigiCert Inc

Valid from:
9/11/2013 6:00:00 PM

Valid to:
9/3/2014 6:00:00 AM

Subject:
CN="ZookaWare, LLC.", O="ZookaWare, LLC.", L=Anchorage, S=Alaska, C=US, PostalCode=99501, STREET=900 W 5th Ave Ste 101, SERIALNUMBER=10007133, OID.1.3.6.1.4.1.311.60.2.1.2=Alaska, OID.1.3.6.1.4.1.311.60.2.1.3=US, OID.2.5.4.15=Private Organization

Issuer:
CN=DigiCert EV Code Signing CA, OU=www.digicert.com, O=DigiCert Inc, C=US

Serial number:
0259DD919772C4D601F3389893D08654

File PE Metadata
Compilation timestamp:
6/19/1992 4:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:5lAmLN62pBCP14jA4OqnpYBqle6sALGKu9P/LxcFrq9OaOeSseWTplf:/AmLN62pBU+R/zsABSzKFrsnOeScnf

Entry address:
0x4EE10

Entry point:
55, 8B, EC, 83, C4, F0, B8, 28, EC, 44, 00, E8, 30, 74, FB, FF, A1, CC, FF, 44, 00, 8B, 00, E8, 30, D8, FF, FF, A1, CC, FF, 44, 00, 8B, 00, BA, 7C, EE, 44, 00, E8, 1F, D4, FF, FF, A1, CC, FF, 44, 00, 8B, 00, C6, 40, 5B, 00, 8B, 0D, 04, FF, 44, 00, A1, CC, FF, 44, 00, 8B, 00, 8B, 15, 2C, DE, 44, 00, E8, 14, D8, FF, FF, A1, CC, FF, 44, 00, 8B, 00, E8, 88, D8, FF, FF, E8, 63, 54, FB, FF, 00, 00, 00, FF, FF, FF, FF, 14, 00, 00, 00, 53, 70, 65, 65, 64, 5A, 6F, 6F, 6B, 61, 20, 53, 63, 68, 65, 64, 75, 6C, 65, 72...
 
[+]

Entropy:
6.5989

Developed / compiled with:
Microsoft Visual C++

Code size:
312 KB (319,488 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
SpeedZooka Scheduler

Command:
C:\Program Files\speedzooka\speedzookascheduler.exe


The file speedzookascheduler.exe has been discovered within the following program.

SpeedZooka  by ZookaWare
SpeedZooka is marketed as a PC performance optimizer that utilizes several techniques to attempt to increase the speed of the user's PC include registry tuning (which is a practice that is often criticized by experts as producing no results) as well as hard drive scrubbing.
zookaware.com/support
65% remove it
 
Powered by Should I Remove It?

Remove speedzookascheduler.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.