pdr6free.exe

MiniTool Power Data Recovery

MiniTool Solution Ltd

This is a setup and installation application. The file has been seen being downloaded from download1821.mediafire.com and multiple other hosts.
Publisher:
MiniTool Solution Ltd.   (signed by MiniTool Solution Ltd)

Product:
MiniTool Power Data Recovery

Description:
MiniTool Power Data Recovery Setup

Version:
6.8

MD5:
eaa97de614367fb579461da25879ecf3

SHA-1:
614f6d1696fb1c0fcabaa32d349d32c26e3868d0

SHA-256:
7edc5bbbb45a4f8dc74cc1436fc293881ad529b5f55d6e1bdbaf1c94e4d8a9a8

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
12/25/2024 1:00:10 PM UTC  (today)

File size:
9.4 MB (9,822,152 bytes)

Product version:
6.8

Copyright:
Copyright © 2006-2013 MiniTool Solution Ltd., all rights reserved.

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\downloads\pdr6free.exe

Digital Signature
Authority:
GlobalSign nv-sa

Valid from:
5/21/2012 7:18:09 PM

Valid to:
5/22/2015 7:18:09 PM

Subject:
E=support@minitool.ca, CN=MiniTool Solution Ltd, O=MiniTool Solution Ltd, L=SURREY, S=British Columbia, C=CA

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121CB5D7302C7544C0407CB59FFDE7FB180

File PE Metadata
Compilation timestamp:
5/29/2012 1:51:48 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:Nmhgqcxy8ditRrA3jB1qDkYjdgzNpHRAitKzIk+V6tdw03r:NjqcxyWQNAl1qtdgxvAl0kC6Lvr

Entry address:
0x16478

Entry point:
55, 8B, EC, 83, C4, A4, 53, 56, 57, 33, C0, 89, 45, C4, 89, 45, C0, 89, 45, A4, 89, 45, D0, 89, 45, C8, 89, 45, CC, 89, 45, D4, 89, 45, D8, 89, 45, EC, B8, B8, 52, 41, 00, E8, AC, 03, FF, FF, 33, C0, 55, 68, 45, 6B, 41, 00, 64, FF, 30, 64, 89, 20, 33, D2, 55, 68, 01, 6B, 41, 00, 64, FF, 32, 64, 89, 22, A1, 48, AB, 41, 00, E8, 56, EC, FF, FF, E8, FD, E7, FF, FF, 8D, 55, EC, 33, C0, E8, 7F, 84, FF, FF, 8B, 55, EC, B8, E8, D6, 41, 00, E8, E2, E9, FE, FF, 6A, 02, 6A, 00, 6A, 01, 8B, 0D, E8, D6, 41, 00, B2, 01...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
84 KB (86,016 bytes)

The file pdr6free.exe has been discovered within the following program.

360Amigo is registry optimizer. 360Amigo System Speedup bundles a branded version of the Conduit Toolbar, designed to deliver search based advertising and results. During installation the user is presented in some cases with the option to install the toolbar (on by default).
www.360amigo.com
53% remove it
 
Powered by Should I Remove It?

The file pdr6free.exe has been seen being distributed by the following 40 URLs.

http://download1821.mediafire.com/q1en4czxacyg/.../pdr6free.exe

https://doc-0g-08-docs.googleusercontent.com/docs/securesc/bfvu026qk7d3aluagbui96i82qp3qt33/3kc0fu5ia1ichg9169l5cq51ujgn43n4/1479794400000/06921483962544565645/.../0Bz8ojEks557UY2dzd1plc0VVRFU?e=download

https://www.mitroiu.it/.../pdr6free.exe

http://power-data-recovery.en.softonic.com/download-tracker?th=1/6CH9aeXedl4L8u BHNJXWTW LP1LFlnGQpxqjlxAPemSpzydROONygDLMhXLMTlkesa85E2lr2EB4Yvr7k9afZu2UTah6nJLJSSLAxkectJP1EohyVaeAV6xS ACZHERcf3W Vk/.../XktFII=

http://download651.mediafire.com/jijmpb61rbvg/.../pdr6free.exe

http://www.file-recovery-software.biz/.../pdr6free.exe

http://minitool-power-data-recovery.soft32.com/get/file/id/.../?no_download_manager=true

http://files.instaluj.cz/dwl/a76f7b2d55bcf4854a814d0d2edfc65a/utility/obnova-souboru-a-dat/minitool-power-data-recovery/.../pdr6free.exe

&onid=2094&oid=3001-2094_4-10561431&rsid=cbsidownloadcomsite&sl=en&sc=us&topicguid=utilities/sys&topicbrcrm=&pid=13345256&mfgid=6285158&merid=6285158&ctype=dm&cval=NONE&devicetype=desktop&pguid=89e908f60dfd09e16663fe86&viewguid=UlRwRbsJAv0kfSkAhgIjHts3TN5o1HH1VK2Y&destUrl=http://software-files-a.cnet.com/s/software/13/34/52/.../pdr6free.exe

Latest 30 of 40 download URLs

Scan pdr6free.exe - Powered by Reason Core Security