» supoptstats.dll
Overview
Analysis
File Details
Behaviors (1)

supoptstats.dll

Super PC Tools Limited

The module supoptstats.dll by Super PC Tools Limited has been detected as a potentially unwanted program by 12 anti-malware scanners. It runs as a separate (within the context of its own process) windows Service named “SuperOptimizer Stats”. Also know as BrowserDefender, this bundled service will prevent various web browser toolbars and extensions from running as well as block changes to the search page and provider.

File name:

supoptstats.dll

Publisher:

Super PC Tools Limited (signed and verified)

MD5:

b1e917c6c88519a1537c403db7381b11

SHA-1:

21c4e14b8e0e6646c03d90f355643a8ec5d834b2

SHA-256:

3151bb0c03e816e8fa2a0c7a7501f7e4a80c7e5c333481c4e604f2118a7e803b

Scanner detections:

12 / 68

Status:

Potentially unwanted

Explanation:

This service will prevent resources from modifying the web browser's home and search pages as well as the search provider set by the product, an affiliate search engine partner.

Analysis date:

4/24/2024 6:29:55 AM UTC (today)

Scan engine

Detection

Engine version

Avira AntiVirus

TR/Bprotector.1822768

3.6.1.96

Baidu Antivirus

Adware.Win32.MultiPlug

4.0.3.15425

Bkav FE

W32.HfsAdware

1.3.0.6379

Dr.Web

riskware program Program.Unwanted.274

9.0.1.0115

ESET NOD32

Win32/Adware.MultiPlug.IX (variant)

9.11522

Fortinet FortiGate

Riskware/MultiPlug

7/26/2015

K7 AntiVirus

Adware

13.203.15693

McAfee

Artemis!E9FFDA921991

5600.6693

Panda Antivirus

PUP/OptimizerPro

15.07.26.05

Qihoo 360 Security

Win32/Trojan.863

1.0.0.1015

Reason Heuristics

PUP.PC Utilities.SuperPCTools

15.4.24.23

Trend Micro House Call

Suspicious_GEN.F47V0418

7.2.207

File size:

1.7 MB (1,822,768 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\Program Files\super optimizer\supoptstats.dll

Digital Signature

Signed by:

Super PC Tools Limited

Authority:

COMODO CA Limited

Valid from:

12/16/2014 7:00:00 PM

Valid to:

12/17/2015 6:59:59 PM

Subject:

CN=Super PC Tools Limited, OU=IT Department, O=Super PC Tools Limited, STREET="89 New Bond Street, 5th Floor", L=London, S=England W1S 1DA, PostalCode=W1S 1DA, C=GB

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00BB6EC488D02F4A9CB509ED84C4BAFE65

File PE Metadata

Compilation timestamp:

4/16/2015 10:37:09 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

11.0

CTPH (ssdeep):

24576:u58b8eaMGirBF09of9RWKEWO8V5eoTKfnDj+w8G5rAq5fD52Bp2/R/DdmL3wgue/:g9i3aYWY8oCH8cflV/gueQa

Entry address:

0x913A

Entry point:

55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 43, 47, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, F0, 2E, 05, 10, E8, 17, 06, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, B8, 6E, 1B, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, E0, 51, 04, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4... 
[+]

Entropy:

7.8871

Developed / compiled with:

Microsoft Visual C++

Code size:

267.5 KB (273,920 bytes)

Service

Display name:

SuperOptimizer Stats

Service name:

cae99edb

Type:

Win32OwnProcess

Remove supoptstats.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.