dfsetup206.exe

Defraggler

Piriform Ltd

The program is a setup application that uses the NSIS (Nullsoft Scriptable Install System) installer. This file is installed with the program Defraggler. The file has been seen being downloaded from 209.212.146.19 and multiple other hosts.
Publisher:
Piriform Ltd  (signed and verified)

Product:
Defraggler

Description:
Defraggler Installer

Version:
1.0.0.0

MD5:
39de6438f695a8de46aa798f88619294

SHA-1:
3eaef9d5a1a89d922cad4a900ace18a20de80449

SHA-256:
43e2c82b60f7a1e7f85fe54aa83e1c15fa489dd424a3aec3f1b2fe5c7a5e0691

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
11/23/2024 4:37:37 AM UTC  (today)

Scan engine
Detection
Engine version

ESET NOD32
Win32/Bundled.Toolbar.Google
8.9668

File size:
3.2 MB (3,326,280 bytes)

Copyright:
Copyright © 2006-2011 Piriform Ltd

File type:
Executable application (Win32 EXE)

Installer:
NSIS (Nullsoft Scriptable Install System)

Language:
Language Neutral

Common path:
C:\users\{user}\downloads\dfsetup206.exe

Digital Signature
Signed by:

Authority:
VeriSign, Inc.

Valid from:
7/27/2009 7:00:00 PM

Valid to:
8/23/2011 6:59:59 PM

Subject:
CN=Piriform Ltd, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Piriform Ltd, L=London, S=London, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
2F5A8C1E932EDBFD4893916FC880DFE7

File PE Metadata
Compilation timestamp:
12/5/2009 4:50:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
98304:D9KfEb3ndSIjwwLym1s3SNNfio4hmsj3SeiqjgE6:0enUuw2ZgqNfvgm4u

Entry address:
0x323C

Entry point:
81, EC, 80, 01, 00, 00, 53, 55, 56, 33, DB, 57, 89, 5C, 24, 18, C7, 44, 24, 10, 30, 91, 40, 00, 33, F6, C6, 44, 24, 14, 20, FF, 15, 30, 70, 40, 00, 68, 01, 80, 00, 00, FF, 15, B4, 70, 40, 00, 53, FF, 15, 7C, 72, 40, 00, 6A, 08, A3, 58, 3F, 42, 00, E8, 09, 2C, 00, 00, A3, A4, 3E, 42, 00, 53, 8D, 44, 24, 34, 68, 60, 01, 00, 00, 50, 53, 68, 58, F4, 41, 00, FF, 15, 58, 71, 40, 00, 68, B8, 91, 40, 00, 68, A0, 36, 42, 00, E8, BC, 28, 00, 00, FF, 15, B0, 70, 40, 00, BF, 00, 90, 42, 00, 50, 57, E8, AA, 28, 00, 00...
 
[+]

Entropy:
7.9942

Packer / compiler:
Nullsoft install system v2.x

Code size:
23 KB (23,552 bytes)

The file dfsetup206.exe has been discovered within the following programs.

Defraggler  by Piriform
Defraggler is a defragmentation utility which allows users to defragment individual files on their computer system. Defraggler can defragment individual files, groups of files (in a folder) or an entire disk partition, either by the user's command or automatically on a schedule.
www.piriform.com/defraggler
5% remove it
 
Powered by Should I Remove It?

The file dfsetup206.exe has been seen being distributed by the following 4 URLs.

http://209.212.146.19/~nowjar/dl/load/Pc Softwares/.../Defraggler 2.06.328(MyWapking.org).exe

Scan dfsetup206.exe - Powered by Reason Core Security