spd.exe
cFosSpeed Service by cFos Software GmbH (Signed)
Warning 20 antivirus scanners has detected malware in various versions of spd.exe.
Overview
spd.exe has 14 known versions, the most recent one is 9.60.2114. It is started as a Windows Service called 'cFosSpeedS' with the name 'cFosSpeedS' and described as “Performs latency measurement and privileged operations for cFosSpeed”. . The average file size is about 456.05 KB. It is an authenticode code-signed executable issued to cFos Software GmbH by the certification authority GlobalSign nv-sa. During the process's lifecycle, the typical CPU resource utilization is about 0.0086% including both foreground and background operations, the average private memory consumption is about 5.43 MB with the maximum memory reaching around 7.93 MB. Addionally, typically read and write I/O disk operations is about 12.97 KB per minute for reads and 45 Bytes per minute for writes.
Details |
File name: | spd.exe |
Publisher: | cFos Software GmbH |
Product name: | cFosSpeed Service |
Typical file path: | C:\Program Files\cfosspeed\spd.exe |
Certificate |
Issued to: | cFos Software GmbH |
Authority (CA): | GlobalSign nv-sa |
Windows Service |
Service name: | cFosSpeedS |
Display name: | cFosSpeedS |
Description: | “Performs latency measurement and privileged operations for cFosSpeed” |
Type: | Win32OwnProcess |
Programs installed in
(Note, the programs listed below are for all versions of cFosSpeed Service.)
“ACDSee Pro 7 has everything you need to manage, perfect, and present your images. Carry out digital asset management and all the essential tasks of your photography workflow in one complete, amazingly...”
cFosSpeed is a software solution for traffic shaping for the Windows operating system. It improves Internet latency while maintaining high transfer rates. The program attaches itself as a device drive...
“When Internet Explorer loads very slowly for no clear reason, it's usually due to inefficient management. ASRock is rolling out super efficient web management in the motherboard industry. XFast LAN is...”
Behaviors
(Note, the behaviors below are for all versions of spd.exe, select a unique version for details.)
Services
Runs under 'SYSTEM\CurrentControlSet\Services' by the Service Controller (services.exe)
- cFosSpeedS
- 'cFosSpeedS' (cFosSpeed System Service)
Malware detections
Based on 40+ industry antivirus scanners, 20 of them detected the following malware.
Antivirus engine | Engine version | Detection | File version |
Agnitum |
5.5.1.3 |
Riskware.BitCoinMiner!cN4k6V0cTKE |
9.04.2051 |
AhnLab V3 Internet Security |
2013.09.28 |
Malware/Win32.Suspicious |
9.04.2051 |
Avira AntiVir |
7.11.104.212 |
TR/Crypt.Agent.OSW.51 |
9.04.2051 |
avast! |
8.0.1489.320 |
Win32:BitCoinMiner-CA [Trj] |
9.04.2051 |
Baidu Antivirus |
3.5.1.41473 |
Trojan.Win32.Agent.peo |
9.04.2051 |
Bkav Security |
1.3.0.4246 |
HW32.CDB.10c6 |
9.04.2051 |
Commtouch |
5.4.1.7 |
W32/Trojan.NNTI-2486 |
9.04.2051 |
Comodo Internet Security |
17007 |
UnclassifiedMalware |
9.04.2051 |
ESET NOD32 |
7.8848 |
a variant of Win32/BitCoinMiner.AK |
9.04.2051 |
Fortinet |
5.1.147.0 |
W32/BitCoinMiner.K |
9.04.2051 |
Ikarus |
T3.1.5.4.0 |
Win32.SuspectCrc |
9.04.2051 |
Kaspersky |
9.0.0.837 |
UDS:DangerousObject.Multi.Generic |
9.04.2051 |
McAfee |
5.600.1067 |
RDN/Generic.tfr!cq |
9.04.2051 |
McAfee Gateway Anti-Malware |
v2013-dat |
Heuristic.BehavesLike.Win32.Suspicious-BAY.G |
9.04.2051 |
Panda Antivirus |
10.0.3.5 |
Trj/CI.A |
9.04.2051 |
PC Tools |
9.0.0.2 |
SecurityRisk.Bitcoinminer |
9.04.2051 |
Symantec |
20131.1.5.61 |
Bitcoinminer |
9.04.2051 |
Trend Micro |
9.740.0.1012 |
TROJ_GEN.R47CEF1 |
9.04.2051 |
Trend Micro HouseCall |
9.700.0.1001 |
TROJ_GEN.R47CEF1 |
9.04.2051 |
VIPRE Antivirus |
21872 |
Trojan.Win32.Generic!BT |
9.04.2051 |
All file variations of spd.exe
Distribution by Windows OS
OS version | distribution |
Windows 7 Ultimate |
56.52% |
|
Microsoft Windows XP |
13.04% |
|
Windows 8 Single Language |
8.70% |
|
Windows 8 Pro with Media Center |
8.70% |
|
Windows Vista Ultimate |
4.35% |
|
Windows 7 Home Premium |
4.35% |
|
Windows 7 Professional |
4.35% |
|
Distribution by country
Egypt installs about 17.39% of cFosSpeed Service.
Distribution by PC manufacturer
PC Manufacturer | distribution |
Toshiba |
38.10% |
|
ASUS |
19.05% |
|
Hewlett-Packard |
19.05% |
|
Dell |
9.52% |
|
American Megatrends |
9.52% |
|
Acer |
4.76% |
|