dllarchi.exe

AnalogX, LLC

This is a setup program which is used to install the application. The file has been seen being downloaded from gsf-cf.softonic.com and multiple other hosts.
Publisher:
AnalogX, LLC  (signed and verified)

MD5:
3b56bf4a32c25031ddf30e36e80986f4

SHA-1:
a31d47f588662ef55db01c2b7088b1d4026bdfa3

SHA-256:
68672ff1381c7935670b7aabd9ba2e161c67d671af1a36f48e85f9fbd8d883bf

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/26/2024 4:41:13 PM UTC  (today)

File size:
357.5 KB (366,120 bytes)

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\downloads\dllarchi.exe

Digital Signature
Signed by:

Authority:
GoDaddy.com, Inc.

Valid from:
5/21/2009 8:07:58 PM

Valid to:
5/21/2010 6:58:20 PM

Subject:
CN="AnalogX, LLC", O="AnalogX, LLC", L=Tempe, S=AZ, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
00AE55A5F80EE0

File PE Metadata
Compilation timestamp:
5/24/2009 3:13:39 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:MefdDoDLhnowxc2kDvJQTGJFnXG8jIPNOXObumw9MLJDkxXn0jp0jQ9p6c789L4:FRoDLvO2kDdJJXG8jIQebFsYIV0zpd8u

Entry address:
0x12357

Entry point:
E8, D7, 71, 00, 00, E9, 16, FE, FF, FF, 8B, 44, 24, 04, A3, A8, 87, 42, 00, C3, 55, 8D, AC, 24, 58, FD, FF, FF, 81, EC, 28, 03, 00, 00, A1, 48, 58, 42, 00, 33, C5, 89, 85, A4, 02, 00, 00, 56, 89, 85, 88, 00, 00, 00, 89, 8D, 84, 00, 00, 00, 89, 95, 80, 00, 00, 00, 89, 5D, 7C, 89, 75, 78, 89, 7D, 74, 66, 8C, 95, A0, 00, 00, 00, 66, 8C, 8D, 94, 00, 00, 00, 66, 8C, 5D, 70, 66, 8C, 45, 6C, 66, 8C, 65, 68, 66, 8C, 6D, 64, 9C, 8F, 85, 98, 00, 00, 00, 8B, B5, AC, 02, 00, 00, 8D, 85, AC, 02, 00, 00, 89, 85, 9C, 00...
 
[+]

Code size:
119.5 KB (122,368 bytes)

The file dllarchi.exe has been discovered within the following programs.

AnalogX DLLArchive  by AnalogX
Publisher's description - “AnalogX DLL Archive assists with DLL file cleanup. When you try to uninstall a program, you often get a window asking you if you want to delete a 'shared' Windows resource, a reference to a DLL file or files that you most likely know nothing about.”
www.analogx.com
About 2% of users remove it
SweetIM for Messenger 3.7  by SweetIM Technologies Ltd.
SweetIM for Messenger is a bundled application (that is either installed through a shareware bundle installation or bundles other freeware apps) that provides a variety of tools that allows the incorporation of emoticons in various Web-based applications, like forums, blogs, facebook, MySpace, Hotmail, Yahoo, Gmail and others.
www.sweetim.com
65% remove it
 
Powered by Should I Remove It?

The file dllarchi.exe has been seen being distributed by the following 29 URLs.

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1485643199&Signature=gyjOmUnDFvTtvSKfq0Fy8jZpAqad8rvPNipM3v4G7gNQniBU-YRha9Sf9AR~g6OL3eJiqeXSW5mtto0S~-X~iKNVlAC67rBCvnODy62w~VtR2aLbsqYZnVsbvpzOPfq6NItXET4LDjzumWA-~Bn9bPm4JqhQdtV4HhxPYt9IE0E_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1466643106&Signature=JFOrkUBKuBX5px9jz939zkxLf064y3HWVTuyyfl0hnLAWPTE8HZ17hEeyH1Wn4MXV-Le9ToAGlHCkC8sWt-L1GVfj-uZ4k1uwrxROxZjttF4X0HyvH8VXRP6FY2MDLbo3cuipxiRLnZXapK8d~kuzJYTivnrm5eH-WOYZX9h-~s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1480674520&Signature=hPZ0RKalotWejr0guPhUdNNFqiJQvN3gICvCx4OpFe9E7NbvrTXhYER7B~Q4RzCddmhpGRdkHAzqeeLeRKNu6eXyGELKk4I2tTmYwsFH~wV3geMmOESipYBkv73TiKl6ZxzPb~GTzP9Fg0qAWDsuV4nvQyDaPdPT30INRSl4jd4_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_br&type=PROGRAM&Expires=1477444361&Signature=EfmMTz9V~Php4V2T6~kN2h9MSJ7TnnWFQ6XvuRt9Cp-NegOpNcnh3c51gbE2MqXvsEX8BddbwR2bG~pP~3qNfikNmEjhb4M~~x1hB5A0zS2DUi8IY0-IGBWMb7rXOqSG9CgKWcyI2lhEi2e9g0XQfTbpYlzzQirGK36aV6TEOjs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1470115833&Signature=iNWWHmX81B18EFS8ICo8JjvWdrGQFw9EPeQw-Btp2snUxBKr-yvOzcBt0U7Uwx-yEjcnb1vmPoU57zO2dTVZPLARKqETjNuRv71EIs52w8Zndc4z7Mih45~7Yd94dB1qkJh3B3edehClV6JdLDkP0o2qaMZA4XJjkzxFYH~n0cs_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1472838036&Signature=Kf925WKxIUlo7D19Yi44ZpxhcW4K2aOVfVCcK5GhsRivFotcUKPEnPBMvhZ7zgxuaPZHjvHzdB6YnsJKFxgA7Ct0H1OWuPXILe-xLKHLMfahFlaPIYVjZqxj6Fm2EVlZvo2jsG41leStQ3Z3TkcH1GZQipGCNLvO2tVgVtSRopM_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1467690784&Signature=QkD4tJ-5G~0FqNfafxjvlQpFuvRWOqNPzHwkbaeQxqLRgKCK65kr0xLueYgfxcaVx3f0o1m0t7zQAKm7UBeeIbvhcz~EcBN6c7~fwmxTIXPnhfKeZHESeizCdtIN39zEXsdfVM1s5AEv1~I36vq-Wgs3Lj4zAfi4W6wV1A-CS6k_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1477232065&Signature=coK9Gv8pX~uIuEq9Elkp3K~DpF~nxkdR1k78xfbh7CbnLZJWyIaK1z-LNfwuIJWaCIRrhWKURXMcjCISQjWPkQf7HMC~ebWHfWtXiDQT0MaMq2u3CoPYYyj1uR065mtWGbBXmt5NsVZsvxTvaOHdIbXH1TB83exU7sN5zT9rHZI_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1462170797&Signature=MASNI3bQHKwr7IY-24~pR88ICM7QxFc5MofQVxrhNdzjPYivrLLT5Iqy3kDhJhGZqbW3u7uIkUqauIEPEYaTEYyeqcdpey~xR7it5sPJDsBgOzJ3Z11AYDAwFERUqOp0yplKBmB1gBxyfXGZX9tozOG0R0SRzzGQ9ZvdVJECh8s_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1468915229&Signature=NBRnQ-wK7sR6JSaWLAOwBockcWDAjoQe37vIJo9l2xGxqCj5GCzzL~xbcgXAvdJ6deqJJMeAsx1xgE58U4dnAwNgSN6KChQ8ST4-Ue~RDydK5tSOEsjVizUS7-0X9ooD7QU0aATs1ijN85nN0v1WdBZYrkZaLIs9JlmUUUk4~uk_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1477264183&Signature=WpBNZsQg3xXI7FRfkl9kp~QVTjmloonspMcRoh1bi47A-L0FjPOBKeYCG3vt4p4~SiArp7jqbPRVh7nfrz-0k4UOM75eqPRvgzBbY0~A1-r1JPuC7912SyPmIhB5bGN-eRfyPyL87Z0rhQfCYlAV4QxuorEJViWG3IPhCFqKQEg_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

http://gsf-cf.softonic.com/a31/d47/.../file?SD_used=0&channel=WEB&fdh=no&id_file=86624&instance=softonic_es&type=PROGRAM&Expires=1468662503&Signature=I3PWCuNmlBHhFW8LIHmfUJJB9eZxa269BbL3R9cspe163rP8RmblQp~BRgJl43p0024QUwbLnuh5jcO8RPbSfjvE3U8zkrjwh2hv2wRKCfRh03En6nFvrJQo1y~dSVyVjFcdGX-sd6LOo9yMY0CQb4AKHaOieQrvyXBxJYma8jY_&Key-Pair-Id=APKAJUA62FNWTI37JTGQ&filename=dllarchi.exe

Scan dllarchi.exe - Powered by Reason Core Security