PUP.Optimizer Pro

By CagedTech in Potentially Unwanted Programs

Threat Scorecard

Popularity Rank:	1,979
Threat Level:	10 % (Normal)
Infected Computers:	158,967

First Seen:	February 27, 2012
Last Seen:	April 18, 2026
OS(es) Affected:	Windows

Table of Contents

Aliases

6 security vendors flagged this file as malicious.

Antivirus Vendor	Detection
AVG	Generic.943
Fortinet	Riskware/OptimizerPro
GData	Win32.Application.OptimizerPro.D
Comodo	Application.Win32.OptimizerPro.FY
K7AntiVirus	Trojan ( 004b4eea1 )
AVG	PCCleaner.B

SpyHunter Detects & Remove PUP.Optimizer Pro

File System Details

PUP.Optimizer Pro may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	A0016645.exe	87217247d99dd350a595399fb11b349a	4,135
Name: A0016645.exe MD5: 87217247d99dd350a595399fb11b349a Size: 1 MB (1005056 bytes) Detections: 4,135 Type: Executable File Path: %SYSTEMDRIVE%\System Volume Information\_restore{1482FBC4-D623-4D68-A189-5D24729852CB}\RP66\A0016645.exe Group: Malware file Last Updated: August 13, 2025
2.	SystemOptimizerPro.exe	1b592c4c5c4163013c0fe3b318e53b58	2,658
Name: SystemOptimizerPro.exe MD5: 1b592c4c5c4163013c0fe3b318e53b58 Size: 671.35 KB (671352 bytes) Detections: 2,658 Type: Executable File Path: C:\Program Files (x86)\System Optimizer Pro\SystemOptimizerPro.exe Group: Malware file Last Updated: December 27, 2020
3.	optimizerpro_soft_partner.exe	f99fe6705021d01c4b0cce88ec840900	167
Name: optimizerpro_soft_partner.exe MD5: f99fe6705021d01c4b0cce88ec840900 Size: 7.34 MB (7346640 bytes) Detections: 167 Type: Executable File Path: %ALLUSERSPROFILE%\{739d6ad0-adc8-ea31-739d-d6ad0adcab42} Group: Malware file Last Updated: June 9, 2020
4.	updater.exe	745547148e14b08c21dcc94df3e5d907	97
Name: updater.exe MD5: 745547148e14b08c21dcc94df3e5d907 Size: 208.89 KB (208896 bytes) Detections: 97 Type: Executable File Path: %ALLUSERSPROFILE%\Application Data\OptimizerPro Group: Malware file Last Updated: November 15, 2020
5.	ix_updater.exe	2b399e7f9491fb199f4398d113f7a5ca	76
Name: ix_updater.exe MD5: 2b399e7f9491fb199f4398d113f7a5ca Size: 208.89 KB (208896 bytes) Detections: 76 Type: Executable File Path: %ALLUSERSPROFILE%\Application Data\OptimizerPro Group: Malware file Last Updated: March 22, 2016
6.	OptProSmartScan.exe.vir	90a6db4b67c2be17b017cd62ffd2de9b	71
Name: OptProSmartScan.exe.vir MD5: 90a6db4b67c2be17b017cd62ffd2de9b Size: 197.11 KB (197112 bytes) Detections: 71 Path: C:\4_ OOPS Keys_2017\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe.vir Group: Malware file Last Updated: December 15, 2020
7.	hqghumeaylnlf.exe	2c983fb9a489bd40b7d353db2cd459fa	70
Name: hqghumeaylnlf.exe MD5: 2c983fb9a489bd40b7d353db2cd459fa Size: 6.54 MB (6542000 bytes) Detections: 70 Type: Executable File Path: %ALLUSERSPROFILE%\{2b26dba2-2849-372f-2b26-6dba22846e88} Group: Malware file Last Updated: June 22, 2016
8.	OptProLauncher.exe	9196b950852fa2356920dff8ff71e558	10
Name: OptProLauncher.exe MD5: 9196b950852fa2356920dff8ff71e558 Size: 159.77 KB (159776 bytes) Detections: 10 Type: Executable File Path: %PROGRAMFILES%\Optimizer Pro Group: Malware file Last Updated: May 8, 2013
9.	OptimizerProInstaller.exe	16954b7e555944640479c0c15e7158cc	10
Name: OptimizerProInstaller.exe MD5: 16954b7e555944640479c0c15e7158cc Size: 7.34 MB (7346640 bytes) Detections: 10 Type: Executable File Path: %ALLUSERSPROFILE%\{d2c4f7bf-483c-91d6-d2c4-4f7bf483defd} Group: Malware file Last Updated: March 26, 2016
10.	OPTISetup.exe	1080746182dd51c6f9c89f1ad6a15643	1
Name: OPTISetup.exe MD5: 1080746182dd51c6f9c89f1ad6a15643 Size: 5.94 MB (5940728 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\{2487f1c0-90bf-82c6-2487-7f1c090bc702} Group: Malware file Last Updated: February 10, 2015
11.	PCOptimizer.exe	1236e6ac9a8b3d50127885ee047d42a7	1
Name: PCOptimizer.exe MD5: 1236e6ac9a8b3d50127885ee047d42a7 Size: 7.33 MB (7339984 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\{03ac5f25-441c-034d-03ac-c5f254417c95} Group: Malware file Last Updated: March 30, 2016

More files

Registry Details

PUP.Optimizer Pro may create the following registry entry or registry entries:

CLSID

{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}

{EBFCF40E-A87B-463F-A782-55BDD4160B5E}

File name without path

LiveSupport.lnk

Optimizer Pro.lnk

www.pcutilitiespro[1].xml

Regexp file mask

%TEMP%\OptimizerPro.exe

%temp%\optprosetup.exe

%WinDir%\System32\Tasks\Optimizer Pro Schedule

%WINDIR%\System32\Tasks\Optscan

%WINDIR%\System32\Tasks\Periodic Synchronize Task

%WINDIR%\Tasks\Optscan.job

%WINDIR%\Tasks\Periodic Synchronize Task.job

HKEY..\..\..\..{RegistryKeys}

Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}\_eb12ba5e

Software\LiveSupport

Software\Microsoft\Internet Explorer\DOMStorage\www.pcoptimizerpro.com

software\microsoft\shared tools\msconfig\startupreg\Optimizer Pro

SOFTWARE\Microsoft\Tracing\Optimizer_Pro_RASAPI32

SOFTWARE\Microsoft\Tracing\Optimizer_Pro_RASMANCS

SOFTWARE\Microsoft\Tracing\OptimizerPro_RASAPI32

SOFTWARE\Microsoft\Tracing\OptimizerPro_RASMANCS

SOFTWARE\Microsoft\Tracing\OptProStart_RASAPI32

SOFTWARE\Microsoft\Tracing\OptProStart_RASMANCS

Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\C:\Program Files (x86)\Optimizer Pro\OptimizerPro.exe

Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers\C:\Program Files\Optimizer Pro\OptimizerPro.exe

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimizer Pro Schedule

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OptimizerPro-S-480333868

SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Periodic Synchronize Task

Software\Optimizer Pro

SOFTWARE\OptimizerPro

SOFTWARE\Wow6432Node\Microsoft\Tracing\Optimizer_Pro_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\Optimizer_Pro_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Tracing\OptimizerPro_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\OptimizerPro_RASMANCS

SOFTWARE\Wow6432Node\Microsoft\Tracing\OptProStart_RASAPI32

SOFTWARE\Wow6432Node\Microsoft\Tracing\OptProStart_RASMANCS

SOFTWARE\Wow6432Node\OptimizerPro

SOFTWARE\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}

SOFTWARE\Wow6432Node\{6791A2F3-FC80-475C-A002-C014AF797E9C}

SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}

SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}

SYSTEM\ControlSet001\services\23cb3056

SYSTEM\ControlSet001\services\24a6f44f

SYSTEM\ControlSet001\services\c31ed948

SYSTEM\ControlSet002\services\23cb3056

SYSTEM\ControlSet002\services\24a6f44f

SYSTEM\ControlSet002\services\c31ed948

SYSTEM\CurrentControlSet\services\23cb3056

SYSTEM\CurrentControlSet\services\24a6f44f

SYSTEM\CurrentControlSet\services\c31ed948

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

LiveSupport_is1

Optimizer Pro v3.2_is1

Optimizer Pro_is1

OptimizerPro

SP_617c7ac4

SP_d1475c3a

Directories

PUP.Optimizer Pro may create the following directory or directories:

%ALLUSERSPROFILE%\Application Data\BetterSoft\OptimizerPro

%ALLUSERSPROFILE%\Application Data\House Of Soft

%ALLUSERSPROFILE%\Application Data\InstallMate\OptimizerPro

%ALLUSERSPROFILE%\Application Data\SetApp

%ALLUSERSPROFILE%\Application Data\SummerSoft

%ALLUSERSPROFILE%\BetterSoft\OptimizerPro

%ALLUSERSPROFILE%\Beware

%ALLUSERSPROFILE%\House Of Soft

%ALLUSERSPROFILE%\InstallMate\OptimizerPro

%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\LiveSupport

%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Optimizer Pro

%ALLUSERSPROFILE%\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2

%ALLUSERSPROFILE%\SummerSoft

%APPDATA%\Microsoft\Windows\Start Menu\Programs\Optimizer Pro

%APPDATA%\Optimizer Pro

%AllUsersProfile%\Application Data\QuickSet

%AllUsersProfile%\Application Data\WinterSoft

%AllUsersProfile%\QuickSet

%AllUsersProfile%\SetApp

%AllUsersProfile%\WinterSoft

%PROGRAMFILES%\Optimizer Pro

%ProgramFiles%\LiveSupport

%ProgramFiles%\Optimizer Pro 3.13

%ProgramFiles%\Optimizer Pro 3.16

%ProgramFiles%\Optimizer Pro 3.31

%ProgramFiles(x86)%\LiveSupport

%ProgramFiles(x86)%\Optimizer Pro 3.13

%ProgramFiles(x86)%\Optimizer Pro 3.16

%ProgramFiles(x86)%\Optimizer Pro 3.31

%USERPROFILE%\Documents\Optimizer Pro

%UserProfile%\My Documents\Optimizer Pro

Analysis Report

General information

Family Name:	PUP.Optimizer Pro
Signature status:	Root Not Trusted

Known Samples

MD5: 816985324629311183c661179cbf6991

SHA1: 4da6f541b07f2574c3fe32efe5ad86b77b2e6f2c

SHA256: 2030B1C95E9AFBD0F3C7638CAC2750E221BB5DC6A736E72689CAC981D5DDEE02

File Size: 5.81 MB, 5807696 bytes

MD5: 8990d4ddba5c3c44e5578799bbcd689a

SHA1: 56c1d9c428b45a270df28e65387301fa83e3a7f1

SHA256: A3DB3498102EE968D9B25F0F085B770A832DDBB22DF675405F659F886F042F27

File Size: 5.91 MB, 5906352 bytes

MD5: db3ba0bfc3be4473b9b7e1391943f842

SHA1: dd9f99e76ee2e28f35f0778739afeeaf0386643c

SHA256: EA5BC705F5866A8965E9251C7DAC0AEC601D9BC0F7E60AD6C53B1408BB2CEAC3

File Size: 6.67 MB, 6665808 bytes

MD5: 25cd3f335c0c67b0b84d7ce3d0e3ee9e

SHA1: 745abd52a9331c27f9913c76aa773580b87adb2d

SHA256: ED3ABD3419FA635DC2BD06135BA64FFF27A40ED2B8DBBB1909AC7704C0A28BA7

File Size: 2.29 MB, 2292264 bytes

MD5: 3a3aa67dacd184a4e9e7cb56726dfcac

SHA1: b7e02c2caf4f3b184d945b4f7706c73e3a2e7674

SHA256: 81A3B184B742565251E6BEFEB0E835AA507BBA3A82E060AC056EF72B3E2CB182

File Size: 4.53 MB, 4529768 bytes

MD5: e667a210dd2cdf68d1524e0071f56e7d

SHA1: 704970f8f2ba4932bca44f0eddde1dc69cce2192

SHA256: D121B8D311C73004D4E6AAC765F39B1EFFB5FAAF7D769B8077F2334BD1A7FA26

File Size: 5.83 MB, 5827064 bytes

MD5: 7109599585fbb7bf8d1ac4d6580ebccb

SHA1: ba65edb032cda78664880277b279f39476b13791

SHA256: 7543F260710C39ED2F2BB9981E7A0B8BABD61835471B51B5287CDFD04284FF74

File Size: 6.16 MB, 6159352 bytes

MD5: c5cd508a9850ab5f1ed22f5db49652f8

SHA1: 99df9ef8f5c01c90084114e9c00ba65844255ae5

SHA256: 9DB6D6B8F33552E656ED4308B3CA708B8216969397EF28BDC3CA81174025BC69

File Size: 6.47 MB, 6470512 bytes

MD5: be2e711eded9d91a62b756dc9b01dcb4

SHA1: 2651aabc0def0e730b36b94692676a0ee51c3724

SHA256: BA10BACBFD20C62C5E4BF7760EF6015E388457B85D73E41ACECD21BB7F880A8E

File Size: 8.03 MB, 8030200 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have debug information
File doesn't have exports table
File doesn't have relocations information
File doesn't have resources
File has exports table
File has TLS information
File is 32-bit executable
File is either console or GUI application
File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)

File is Native application (NOT .NET application)
File is not packed
IMAGE_FILE_DLL is not set inside PE header (Executable)
IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name	Value
Comments	This installation was built with Inno Setup.
Company Name	PC Utilities Pro PC Utilities Software Limited PC Utilities Software Limited
File Description	Fix, clean, optimize your PC! Fix PC problems and optimize performance Fix PC problems and optimize performance OptimizerPro – Clean up your PC
File Version	3.2.0.3 3.2.0.2 3.2.0.1 3.2 3.0.1.0
Internal Name	OptimizerPro Optimizer Pro
Legal Copyright	PC Utilities Pro PC Utilities Software Limited PC Utilities Software Limited
Legal Trademarks	PC Utilities Pro
Original Filename	OptimizerPro Optimizer Pro
Product Name	Optimizer Pro Optimizer Pro 3.2 Optimizer Pro v3.2
Product Version	3.2.0.3 3.2.0.2 3.2.0.1 3.2 3.0.1.0

Digital Signatures

Signer	Root	Status
PC Utilities Software Limited	AddTrust External CA Root	Root Not Trusted
PC Utilities Software Limited	Go Daddy Secure Certification Authority	Hash Mismatch
PC Utilities Software Limited	UTN-USERFirst-Object	Root Not Trusted

Block Information

Total Blocks:	872
Potentially Malicious Blocks:	3
Whitelisted Blocks:	854
Unknown Blocks:	15

Visual Map

0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ? ? ? 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 1 0 0 0 0 0 0 2 0 0 0 0 1 1 1 1 2 2 0 0 0 1 0 0 0 0 0 1 0 0 0 1 1 0 0 0 0 0 0 0 1 0 0 0 1 0 0 0 0 0 0 1 0 0 0 1 2 0 0 0 1 0 1 0 0 0 0 0 0 0 1 1 0 1 0 1 1 0 0 0 1 0 0 0 0 0 0 0 0 0 1 1 3 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 1 0 0 0 0 0 1 1 0 0 0 0 0 2 3 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 1 0 0 0 0 0 1 0 0 1 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 1 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 2 2 1 0 0 2 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 x ? ? 0 ? ? ? ? ? ? ? 0 ? ? 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ?

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Files Modified

File	Attributes
c:\program files (x86)\optimizer pro\cookiesexception.txt	Synchronize,Write Data
c:\program files (x86)\optimizer pro\english.ini	Synchronize,Write Data
c:\program files (x86)\optimizer pro\file_id.diz	Synchronize,Write Data
c:\program files (x86)\optimizer pro\homepage.url	Synchronize,Write Data
c:\program files (x86)\optimizer pro\is-1asb3.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-3uh8l.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-6h697.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-6q4ho.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-75mev.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-a8j1m.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data

c:\program files (x86)\optimizer pro\is-c182b.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-dc7nv.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-fg97i.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-ir2vg.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-kmdsg.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-lvuh5.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-qqjoe.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-u2sko.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-ufdsa.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-ul38b.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\is-vr5fu.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\optimizerpro.chm	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optimizerpro.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optproguard.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optprolauncher.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optproreminder.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optproschedule.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optprosmartscan.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optprostart.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\optprouninstaller.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\scan.gif	Synchronize,Write Data
c:\program files (x86)\optimizer pro\sqlite3.dll	Synchronize,Write Data
c:\program files (x86)\optimizer pro\startuplist.txt	Synchronize,Write Data
c:\program files (x86)\optimizer pro\unins000.dat	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\program files (x86)\optimizer pro\unins000.exe	Synchronize,Write Data
c:\program files (x86)\optimizer pro\unins000.msg	Generic Write,Read Attributes
c:\programdata\microsoft\windows\start menu\programs\optimizer pro v3.2\check updates.lnk	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\programdata\microsoft\windows\start menu\programs\optimizer pro v3.2\help.lnk	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\programdata\microsoft\windows\start menu\programs\optimizer pro v3.2\optimizer pro on the web.lnk	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\programdata\microsoft\windows\start menu\programs\optimizer pro v3.2\optimizer pro.lnk	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\programdata\microsoft\windows\start menu\programs\optimizer pro v3.2\uninstall optimizer pro.lnk	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-1ia1n.tmp\99df9ef8f5c01c90084114e9c00ba65844255ae5_0006470512.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-1km21.tmp\optprosetup.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-29uka.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-29uka.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-29uka.tmp\optprocrash.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-45vo2.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-45vo2.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-45vo2.tmp\itdownload.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-45vo2.tmp\optprohelper.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-45vo2.tmp\optpromon.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-4rhmr.tmp\56c1d9c428b45a270df28e65387301fa83e3a7f1_0005906352.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-a670m.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-a670m.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-a670m.tmp\optprocrash.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-eko38.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-eko38.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-eko38.tmp\itdownload.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-eko38.tmp\optprocrash.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-eko38.tmp\optprohelper.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-on8h1.tmp\optimizer_pro.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-oui1c.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-oui1c.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-oui1c.tmp\itdownload.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-oui1c.tmp\optprohelper.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-oui1c.tmp\optpromon.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-p5h4e.tmp\setup.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-r7h9f.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-r7h9f.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-r7h9f.tmp\optprocrash.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-r9cji.tmp\_isetup\_setup64.tmp	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-r9cji.tmp\_isetup\_shfoldr.dll	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\users\user\appdata\local\temp\is-r9cji.tmp\itdownload.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-r9cji.tmp\optprocrash.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-r9cji.tmp\optprohelper.dll	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-st3uh.tmp\optprosetup.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\is-tpcaj.tmp\optprosetup.tmp	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\optprosetup.exe	Generic Write,Read Attributes
c:\users\user\appdata\local\temp\{3246003b-7a9f-4690-86c8-88f7d40c43b2}\setup.exe	Generic Write,Read Attributes
c:\users\user\desktop\optimizer pro.lnk	Generic Read,Write Data,Write Attributes,Write extended,Append data
c:\windows\temp\optimizer_pro.exe	Generic Read,Write Data,Write Attributes,Write extended,Append data

Registry Modifications

Key::Value	Data	API Name
HKCU\software\optimizer pro::setupname	c:\users\user\downloads\4da6f541b07f2574c3fe32efe5ad86b77b2e6f2c_0005807696	RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::proxybypass		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::intranetname		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::uncasintranet		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::autodetect		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::proxybypass		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::intranetname		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::uncasintranet		RegNtPreCreateKey
HKCU\software\microsoft\windows\currentversion\internet settings\zonemap::autodetect		RegNtPreCreateKey
HKCU\software\optimizer pro::language		RegNtPreCreateKey

HKCU\software\microsoft\windows\currentversion\run::optimizer pro	C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: setup version	5.5.3 (u)	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: app path	C:\Program Files (x86)\Optimizer Pro	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::installlocation	C:\Program Files (x86)\Optimizer Pro\	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: icon group	Optimizer Pro v3.2	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: user	Hmhcqhdy	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: selected tasks	desktopicon	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: deselected tasks		RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::inno setup: language	en	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::displayname	Optimizer Pro v3.2	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::displayicon	C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::uninstallstring	"C:\Program Files (x86)\Optimizer Pro\unins000.exe"	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::quietuninstallstring	"C:\Program Files (x86)\Optimizer Pro\unins000.exe" /SILENT	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::publisher	PC Utilities Software Limited	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::urlinfoabout	http://www.pcutilitiespro.com	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::helplink	http://www.pcutilitiespro.com	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::urlupdateinfo	http://www.pcutilitiespro.com	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::nomodify		RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::norepair		RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::installdate	%	RegNtPreCreateKey
HKLM\software\wow6432node\microsoft\windows\currentversion\uninstall\optimizer pro_is1::estimatedsize	玂	RegNtPreCreateKey
HKCU\software\optimizer pro::cufvalue	CUF=0	RegNtPreCreateKey
HKCU\software\optimizer pro::culvalue		RegNtPreCreateKey
HKCU\software\optimizer pro::cbm		RegNtPreCreateKey
HKCU\software\optimizer pro::setupname	c:\users\user\downloads\b7e02c2caf4f3b184d945b4f7706c73e3a2e7674_0004529768	RegNtPreCreateKey
HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75		RegNtPreCreateKey
HKCU\software\optimizer pro::setupname	c:\users\user\downloads\704970f8f2ba4932bca44f0eddde1dc69cce2192_0005827064	RegNtPreCreateKey
HKCU\software\optimizer pro::ir	1	RegNtPreCreateKey
HKCU\software\optimizer pro::sessionid	240D0B08-8F54-4462-854D-D11B0D1F855C	RegNtPreCreateKey
HKCU\software\optimizer pro::setupname	c:\users\user\downloads\ba65edb032cda78664880277b279f39476b13791_0006159352	RegNtPreCreateKey
HKCU\software\optimizer pro::sessionid	F208C465-C7F4-4947-A0-87-D4-42-95-80-49-32	RegNtPreCreateKey
HKCU\software\optimizer pro::setupname	c:\users\user\downloads\2651aabc0def0e730b36b94692676a0ee51c3724_0008030200	RegNtPreCreateKey
HKCU\software\optimizer pro::sessionid	86FC6625-3BF6-4D09-A468-D1CC5EAFFE6B	RegNtPreCreateKey

Windows API Usage

Category	API
Process Manipulation Evasion	NtUnmapViewOfSection
Process Shell Execute	CreateProcess
Anti Debug	IsDebuggerPresent NtQuerySystemInformation
User Data Access	GetComputerName GetUserName GetUserObjectInformation
Keyboard Access	GetKeyState
Network Winsock2	WSAttemptAutodialName
Network Winhttp	WinHttpOpen
Syscall Use	ntdll.dll!NtAlpcSendWaitReceivePort ntdll.dll!NtClose ntdll.dll!NtCreateFile ntdll.dll!NtCreateSection ntdll.dll!NtFreeVirtualMemory ntdll.dll!NtMapViewOfSection ntdll.dll!NtOpenFile ntdll.dll!NtOpenKey ntdll.dll!NtOpenProcessToken ntdll.dll!NtQueryAttributesFile Show More ntdll.dll!NtQueryDebugFilterState ntdll.dll!NtQueryInformationProcess ntdll.dll!NtQueryInformationToken ntdll.dll!NtQuerySystemInformationEx ntdll.dll!NtQueryValueKey ntdll.dll!NtQueryVirtualMemory ntdll.dll!NtQueryVolumeInformationFile ntdll.dll!NtReadFile ntdll.dll!NtSetEvent ntdll.dll!NtSetInformationFile ntdll.dll!NtSetInformationProcess ntdll.dll!NtSetInformationVirtualMemory ntdll.dll!NtSetInformationWorkerFactory ntdll.dll!NtTestAlert ntdll.dll!NtTraceControl ntdll.dll!NtUnmapViewOfSection ntdll.dll!NtWaitForSingleObject ntdll.dll!NtWriteFile

Shell Command Execution


							C:\Users\Hmhcqhdy\AppData\Local\Temp\{3246003B-7A9F-4690-86C8-88F7D40C43B2}\setup.exe  /VERYSILENT


							"C:\Users\Hmhcqhdy\AppData\Local\Temp\is-P5H4E.tmp\setup.tmp" /SL5="$2013E,5190660,85504,C:\Users\Hmhcqhdy\AppData\Local\Temp\{3246003B-7A9F-4690-86C8-88F7D40C43B2}\setup.exe" /VERYSILENT


							"C:\Users\Joupwlrw\AppData\Local\Temp\is-4RHMR.tmp\56c1d9c428b45a270df28e65387301fa83e3a7f1_0005906352.tmp" /SL5="$10260,5394382,115200,c:\users\user\downloads\56c1d9c428b45a270df28e65387301fa83e3a7f1_0005906352"


							C:\WINDOWS\SysWOW64\rundll32.exe C:\WINDOWS\system32\rundll32.exe c:\users\user\downloads\745abd52a9331c27f9913c76aa773580b87adb2d_0002292264.,LiQMAxHB


							C:\Windows\Temp\Optimizer_Pro.exe  /VERYSILENT


									"C:\Users\Doclpsxy\AppData\Local\Temp\is-ON8H1.tmp\Optimizer_Pro.tmp" /SL5="$7030A,3916235,118784,C:\Windows\Temp\Optimizer_Pro.exe" /VERYSILENT


									C:\Users\Yknhxlqx\AppData\Local\Temp\\optprosetup.exe /VERYSILENT /MMJS


									"C:\Users\Yknhxlqx\AppData\Local\Temp\is-1KM21.tmp\optprosetup.tmp" /SL5="$4032C,5126792,115200,C:\Users\Yknhxlqx\AppData\Local\Temp\optprosetup.exe" /VERYSILENT /MMJS


									C:\Users\Qanoctma\AppData\Local\Temp\\optprosetup.exe /VERYSILENT


									"C:\Users\Qanoctma\AppData\Local\Temp\is-ST3UH.tmp\optprosetup.tmp" /SL5="$C0242,5466181,115200,C:\Users\Qanoctma\AppData\Local\Temp\optprosetup.exe" /VERYSILENT


									"C:\Users\Fmniaadg\AppData\Local\Temp\is-1IA1N.tmp\99df9ef8f5c01c90084114e9c00ba65844255ae5_0006470512.tmp" /SL5="$3037C,5950896,85504,c:\users\user\downloads\99df9ef8f5c01c90084114e9c00ba65844255ae5_0006470512"


									C:\Users\Tzijqogt\AppData\Local\Temp\\optprosetup.exe /VERYSILENT


									"C:\Users\Tzijqogt\AppData\Local\Temp\is-TPCAJ.tmp\optprosetup.tmp" /SL5="$B0278,7331860,115200,C:\Users\Tzijqogt\AppData\Local\Temp\optprosetup.exe" /VERYSILENT

PUP.Optimizer Pro

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove PUP.Optimizer Pro

File System Details

Registry Details

Directories

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Icons

File Icons

Windows PE Version Information

Windows PE Version Information

Digital Signatures

Digital Signatures

Block Information

Block Information

Visual Map

Files Modified

Files Modified

Registry Modifications

Registry Modifications

Windows API Usage

Windows API Usage

Shell Command Execution

Shell Command Execution

Submit Comment

Trending

Most Viewed