Jump to content

Welcome to Geeks to Go
Geeks to Go Welcome
Create Account Login to Account
Photo

Removal instructions for SpeedItupFree

- - - - - microsmarts

  • Please log in to reply
No replies to this topic

#1
Metallica

Metallica

    Spyware Veteran

  • GeekU Moderator
  • 32,311 posts
Content is republished with permission from Malwarebytes.

What is SpeedItupFree?

The Malwarebytes research team has determined that SpeedItupFree is a "system optimizer". These so-called "system optimizers" use intentional false positives to convince users that their systems have problems. Then they try to sell you their software, claiming it will remove these problems.
More information can be found on our Malwarebytes Labs blog.

How do I know if I am infected with SpeedItupFree?

This is how the main screen of the sytem optimizer looks:

main.png

You will find these icons in your taskbar, your startmenu, and on your desktop:

icons.png

and see this warning during install:

warning1.png

and these screens during "operations":

warning5.png

warning6.png

You may see this entry in your list of installed programs:

warning4.png

and advertisements like these:

ads.png

How did SpeedItupFree get on my computer?

These so-called system optimizers use different methods of getting installed. This particular one was downloaded from their site.

trick.png

How do I remove SpeedItupFree?

Our program Malwarebytes can detect and remove this potentially unwanted application.
  • Please download Malwarebytes to your desktop.
  • Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
  • Then click Finish.
  • Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
  • If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
  • When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
  • Restart your computer when prompted to do so.
Is there anything else I need to do to get rid of SpeedItupFree?
  • No, Malwarebytes removes SpeedItupFree completely.
  • The shortcut called $1 PC Tech Support on the desktop can be deleted.
How would the full version of Malwarebytes help protect me?

We hope our application and this guide have helped you eradicate this system optimizer.

As you can see below the full version of Malwarebytes would have protected you against the SpeedItupFree installer. It would have warned you before the application could install itself, giving you a chance to stop it before it became too late.

protection1.png


Technical details for experts

You may see these entries in FRST logs:

 () C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe
 (RJL Software, Inc.) C:\Program Files (x86)\Display Offer\delayexec.exe
 (MicroSmarts LLC.) C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe
 HKCU\...\Run: [SpeedItupFree] => C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe [7948448 2017-07-21] (MicroSmarts LLC.)
 R2 spdfrmon; C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe [921680 2013-11-01] ()
 C:\Program Files (x86)\Display Offer
 C:\Program Files (x86)\SpeedItup Free
 C:\Windows\SpeedItup Free Setup Log.txt
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free.lnk
 C:\ProgramData\Microsoft\Windows\Start Menu\SpeedItup Free.lnk
 C:\Users\Public\Desktop\SpeedItup Free.lnk
 C:\Windows\SpeedItup Free
 C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free
 C:\ProgramData\spds90.txt
 C:\Users\{username}\AppData\Local\Temp\spuad0.exe
 C:\Users\{username}\AppData\Local\Temp\spuad1.exe

SpeeditupFree (HKLM-x32\...\SpeeditupFree) (Version: 11.20 - MicroSmarts LLC) <==== ATTENTION
Alterations made by the installer:

File system details [View: All details] (Selection)
---------------------------------------------------
    Adds the folder C:\Program Files (x86)\Display Offer
       Adds the file delayexec.exe"="7/20/2013 6:23 PM, 174640 bytes, A
       Adds the file ThankYou"="7/21/2017 1:01 PM, 11168 bytes, A
       Adds the file wait.exe"="8/14/2014 2:33 AM, 1847272 bytes, A
    Adds the folder C:\Program Files (x86)\SpeedItup Free
       Adds the file Checkup.dat"="9/1/2011 3:13 AM, 1366016 bytes, A
       Adds the file delayexec.exe"="3/22/2016 6:32 PM, 174752 bytes, A
       Adds the file Ext.dll"="7/20/2011 6:55 AM, 66048 bytes, A
       Adds the file IRIMG1.JPG"="7/21/2017 12:32 PM, 2362 bytes, A
       Adds the file IRIMG2.JPG"="7/21/2017 12:32 PM, 41278 bytes, A
       Adds the file IRIMG3.JPG"="7/21/2017 12:32 PM, 29054 bytes, A
       Adds the file irunin.dat"="7/21/2017 12:32 PM, 93816 bytes, A
       Adds the file irunin.xml"="7/21/2017 12:32 PM, 16049 bytes, A
       Adds the file order.ini"="7/17/2016 6:34 PM, 33 bytes, A
       Adds the file spdfrmon.exe"="11/1/2013 9:26 PM, 921680 bytes, A
       Adds the file speeditupfree.exe"="7/21/2017 1:00 PM, 7948448 bytes, A
       Adds the file speeditupfree.exe_"="7/21/2017 1:00 PM, 7948448 bytes, A
       Adds the file ThankYou"="7/21/2017 12:32 PM, 52975 bytes, A
       Adds the file upgradepath.ini"="9/12/2015 12:03 AM, 26 bytes, A
    Adds the folder C:\Program Files (x86)\SpeedItup Free\Help
       Adds the file index.html"="9/1/2011 4:06 AM, 6217 bytes, A
    Adds the folder C:\Program Files (x86)\SpeedItup Free\Help\Images
       Adds the file copyright.gif"="3/23/2007 7:58 AM, 517 bytes, A
       Adds the file forhelpfile.jpg"="9/1/2011 4:05 AM, 76941 bytes, A
       Adds the file index_01.gif"="6/8/2011 4:46 AM, 15342 bytes, A
       Adds the file index_02.gif"="6/29/2005 5:00 PM, 5066 bytes, A
       Adds the file index_03.gif"="6/29/2005 5:00 PM, 1611 bytes, A
       Adds the file index_04.gif"="6/29/2005 5:00 PM, 1215 bytes, A
       Adds the file index_05.gif"="6/29/2005 5:00 PM, 393 bytes, A
       Adds the file index_06.gif"="6/29/2005 5:00 PM, 2293 bytes, A
       Adds the file index_07.gif"="6/29/2005 5:00 PM, 936 bytes, A
       Adds the file index_08.gif"="7/2/2005 3:41 PM, 2714 bytes, A
       Adds the file index_09.gif"="6/29/2005 5:00 PM, 1252 bytes, A
       Adds the file index_10.gif"="6/29/2005 5:00 PM, 1457 bytes, A
       Adds the file index_11.gif"="6/29/2005 5:00 PM, 104 bytes, A
       Adds the file index_12.gif"="6/29/2005 5:00 PM, 162 bytes, A
       Adds the file index_13.gif"="6/29/2005 5:00 PM, 3529 bytes, A
       Adds the file index_14.gif"="6/29/2005 5:00 PM, 499 bytes, A
       Adds the file index_15.gif"="6/29/2005 5:00 PM, 471 bytes, A
       Adds the file index_16.gif"="6/29/2005 5:00 PM, 538 bytes, A
       Adds the file index_17.gif"="6/29/2005 5:00 PM, 236 bytes, A
       Adds the file index_18.gif"="6/29/2005 5:00 PM, 543 bytes, A
       Adds the file index_19.gif"="6/29/2005 5:00 PM, 1492 bytes, A
       Adds the file index_20.gif"="6/29/2005 5:00 PM, 506 bytes, A
       Adds the file index_21.gif"="6/29/2005 5:00 PM, 1449 bytes, A
       Adds the file index_22.gif"="6/29/2005 5:00 PM, 436 bytes, A
       Adds the file index_23.gif"="6/29/2005 5:00 PM, 4084 bytes, A
       Adds the file index_24.gif"="6/29/2005 5:00 PM, 476 bytes, A
       Adds the file index_25.gif"="6/29/2005 5:00 PM, 119 bytes, A
       Adds the file spacer.gif"="6/29/2005 5:00 PM, 43 bytes, A
    In the existing folder C:\ProgramData
       Adds the file spds90.txt"="7/21/2017 12:32 PM, 0 bytes, A
    In the existing folder C:\ProgramData\Microsoft\Windows\Start Menu
       Adds the file SpeedItup Free.lnk"="7/21/2017 12:32 PM, 1980 bytes, A
    In the existing folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs
       Adds the file SpeedItup Free.lnk"="7/21/2017 12:32 PM, 1986 bytes, A
    Adds the folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free
       Adds the file SpeedItup Free.lnk"="7/21/2017 12:32 PM, 1992 bytes, A
       Adds the file Uninstall SpeedItup Free.lnk"="7/21/2017 12:32 PM, 1956 bytes, A
    In the existing folder C:\Users\{username}\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch
       Adds the file SpeedItup Free.lnk"="7/21/2017 12:32 PM, 1998 bytes, A
    In the existing folder C:\Users\Public\Desktop
       Adds the file SpeedItup Free.lnk"="7/21/2017 12:32 PM, 1974 bytes, A
    In the existing folder C:\Windows
       Adds the file SpeedItup Free Setup Log.txt"="7/21/2017 12:32 PM, 15146 bytes, A
    Adds the folder C:\Windows\SpeedItup Free
       Adds the file lua5.1.dll"="7/21/2017 12:32 PM, 325960 bytes, A
       Adds the file uninstall.exe"="7/21/2017 12:32 PM, 1353056 bytes, A

Registry details [View: All details] (Selection)
------------------------------------------------
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}]
       "(Default)"="REG_SZ", "spdfrmon.Gate"
       "AuthenticationLevel"="REG_DWORD", 1
       "LocalService"="REG_SZ", "spdfrmon"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\{A245B088-41FA-478E-8DEA-86177F1394BB}]
       "(Default)"="REG_SZ", "spdfrmon"
       "LocalService"="REG_SZ", "spdfrmon"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AppID\spdfrmon.exe]
       "(Default)"="REG_SZ", ""
       "AppID"="REG_SZ", "{A245B088-41FA-478E-8DEA-86177F1394BB}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}]
       "(Default)"="REG_SZ", "ISyncEvents"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}\ProxyStubClsid32]
       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
       "Version"="REG_SZ", "1.0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}]
       "(Default)"="REG_SZ", "ISyncAPI"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}\ProxyStubClsid32]
       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
       "Version"="REG_SZ", "1.0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}]
       "(Default)"="REG_SZ", "_IMySyncEvents"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}\ProxyStubClsid32]
       "(Default)"="REG_SZ", "{00020420-0000-0000-C000-000000000046}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
       "Version"="REG_SZ", "1.0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\spdfrmon.Gate]
       "(Default)"="REG_SZ", "spdfrmon.Gate"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\spdfrmon.Gate\CLSID]
       "(Default)"="REG_SZ", "{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\spdfrmon.Gate\CurVer]
       "(Default)"="REG_SZ", "spdfrmon.Gate.1"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\spdfrmon.Gate.1]
       "(Default)"="REG_SZ", "spdfrmon.Gate"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\spdfrmon.Gate.1\CLSID]
       "(Default)"="REG_SZ", "{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A1011E88-B997-11CF-2222-0080C7B2D6BB}\1.0]
       "(Default)"="REG_SZ", "SpeedItup Type Library"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A1011E88-B997-11CF-2222-0080C7B2D6BB}\1.0\0\win32]
       "(Default)"="REG_SZ", "C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A1011E88-B997-11CF-2222-0080C7B2D6BB}\1.0\FLAGS]
       "(Default)"="REG_SZ", "0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{A1011E88-B997-11CF-2222-0080C7B2D6BB}\1.0\HELPDIR]
       "(Default)"="REG_SZ", "C:\Program Files (x86)\SpeedItup Free"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}]
       "(Default)"="REG_SZ", "spdfrmon.Gate"
       "AppID"="REG_SZ", "{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}\LocalServer32]
       "(Default)"="REG_SZ", "C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}\ProgID]
       "(Default)"="REG_SZ", "spdfrmon.Gate.1"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}\VersionIndependentProgID]
       "(Default)"="REG_SZ", "spdfrmon.Gate"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}]
       "(Default)"="REG_SZ", "ISyncEvents"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}\ProxyStubClsid32]
       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
       "Version"="REG_SZ", "1.0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}]
       "(Default)"="REG_SZ", "ISyncAPI"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}\ProxyStubClsid32]
       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
       "Version"="REG_SZ", "1.0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}]
       "(Default)"="REG_SZ", "_IMySyncEvents"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}\ProxyStubClsid32]
       "(Default)"="REG_SZ", "{00020420-0000-0000-C000-000000000046}"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}\TypeLib]
       "(Default)"="REG_SZ", "{A1011E88-B997-11CF-2222-0080C7B2D6BB}"
       "Version"="REG_SZ", "1.0"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeeditupFree]
       "Contact"="REG_SZ", "MicroSmarts LLC Support Department"
       "DisplayIcon"="REG_SZ", ""C:\Windows\SpeedItup Free\uninstall.exe""
       "DisplayName"="REG_SZ", "SpeeditupFree"
       "DisplayVersion"="REG_SZ", "11.20"
       "HelpLink"="REG_SZ", "http://www.speeditupfree.com"
       "InstallLocation"="REG_SZ", "C:\Program Files (x86)\SpeedItup Free"
       "NoModify"="REG_DWORD", 1
       "NoRepair"="REG_DWORD", 1
       "Publisher"="REG_SZ", "MicroSmarts LLC"
       "UninstallString"="REG_SZ", ""C:\Windows\SpeedItup Free\uninstall.exe" "/U:C:\Program Files (x86)\SpeedItup Free\irunin.xml""
       "URLInfoAbout"="REG_SZ", "http://www.speeditupfree.com"
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\spdfrmon]
       "DisplayName"="REG_SZ", "spdfrmon"
       "ErrorControl"="REG_DWORD", 1
       "Group"="REG_SZ", "UIGroup"
       "ImagePath"="REG_EXPAND_SZ, "C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe"
       "ObjectName"="REG_SZ", "LocalSystem"
       "Start"="REG_DWORD", 2
       "Type"="REG_DWORD", 16
       "WOW64"="REG_DWORD", 1
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
       "SpeedItupFree"="REG_SZ", ""C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe""

Malwarebytes log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 7/21/17
Scan Time: 1:21 PM
Log File: mbamSpeedItUpFree.txt
Administrator: Yes

-Software Information-
Version: 3.1.2.1733
Components Version: 1.0.160
Update Package Version: 1.0.2409
License: Premium

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: {computername}\{username}

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 338965
Threats Detected: 96
Threats Quarantined: 96
Time Elapsed: 2 min, 12 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

-Scan Details-
Process: 3
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\SPDFRMON.EXE, Quarantined, [1201], [329424],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\delayexec.exe, Quarantined, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe, Quarantined, [1201], [329448],1.0.2409

Module: 3
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\SPDFRMON.EXE, Quarantined, [1201], [329424],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\delayexec.exe, Quarantined, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe, Quarantined, [1201], [329448],1.0.2409

Registry Key: 24
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\TYPELIB\{A1011E88-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\INTERFACE\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\INTERFACE\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\INTERFACE\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A1011E88-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{A1011E88-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\spdfrmon, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\spdfrmon.Gate, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\spdfrmon.Gate.1, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\APPID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\APPID\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SpeeditupFree, Delete-on-Reboot, [1201], [329420],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329818],1.0.2409

Registry Value: 4
PUP.Optional.SpeedItUp, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SpeedItupFree, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\APPID\SPDFRMON.EXE|APPID, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\SPDFRMON.EXE|APPID, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\SPDFRMON.EXE|APPID, Delete-on-Reboot, [1201], [329818],1.0.2409

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 6
PUP.Optional.PCOptimizerPro, C:\PROGRAM FILES (X86)\DISPLAY OFFER, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDITUP FREE, Delete-on-Reboot, [1201], [329450],1.0.2409
PUP.Optional.SpeedItUp, C:\WINDOWS\SPEEDITUP FREE, Delete-on-Reboot, [1201], [329420],1.0.2409

File: 56
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\SPDS90.TXT, Delete-on-Reboot, [1201], [329815],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329814],1.0.2409
PUP.Optional.SpeedItUp, C:\USERS\{username}\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329817],1.0.2409
PUP.Optional.SpeedItUp, C:\USERS\PUBLIC\DESKTOP\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329418],1.0.2409
PUP.Optional.PCOptimizerPro, C:\PROGRAM FILES (X86)\DISPLAY OFFER\THANKYOU, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\delayexec.exe, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\wait.exe, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329449],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\CHECKUP.DAT, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\copyright.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\forhelpfile.jpg, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_01.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_02.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_03.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_04.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_05.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_06.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_07.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_08.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_09.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_10.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_11.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_12.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_13.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_14.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_15.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_16.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_17.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_18.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_19.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_20.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_21.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_22.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_23.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_24.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_25.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\spacer.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\index.html, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\delayexec.exe, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Ext.dll, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\IRIMG1.JPG, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\IRIMG2.JPG, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\IRIMG3.JPG, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\irunin.dat, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\irunin.xml, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\order.ini, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe_, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\ThankYou, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\upgradepath.ini, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\WINDOWS\SPEEDITUP FREE SETUP LOG.TXT, Delete-on-Reboot, [1201], [329422],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDITUP FREE\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329450],1.0.2409
PUP.Optional.SpeedItUp, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free\Uninstall SpeedItup Free.lnk, Delete-on-Reboot, [1201], [329450],1.0.2409
PUP.Optional.SpeedItUp, C:\WINDOWS\SPEEDITUP FREE\UNINSTALL.EXE, Delete-on-Reboot, [1201], [329420],1.0.2409
PUP.Optional.SpeedItUp, C:\Windows\SpeedItup Free\lua5.1.dll, Delete-on-Reboot, [1201], [329420],1.0.2409

Physical Sector: 0
(No malicious items detected)


(end)
As mentioned before the full version of Malwarebytes could have protected your computer against this threat.
We use different ways of protecting your computer(s):
  • Dynamically Blocks Malware Sites & Servers
  • Malware Execution Prevention
Save yourself the hassle and get protected.
  • 0

Advertisements





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

featured
Malware Removal How to Guides Windows 7 System Building Download Files Register welcome

Never used a forum? Learn how.