home

dwpupgradeinstaller.exe

DivX Setup

DivX, LLC

This is installed with multiple programs including Configuration DivX and DivX Setup. The file has been seen being downloaded from dist.divx.com and multiple other hosts.
Publisher:
DivX, LLC  (signed and verified)

Product:
DivX Setup

Version:
2.6.3.22

MD5:
fd15537feb1f00d70645aaa30c8ff4a0

SHA-1:
b0ae2e68eea3c345271a1afd3c246f626c24e9f4

SHA-256:
45ea983ea4ccec5159ce473405a1fe745bf961a52c375422f02d5be2de05febb

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 3:40:41 AM UTC  (today)

File size:
977.8 KB (1,001,280 bytes)

Product version:
2.6.3.22

Copyright:
©2000-2013 DivX, LLC (a subsidiary of Rovi Corporation).

Original file name:
DivXSetup.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\local\temp\dwpupgradeinstaller.exe

Digital Signature
Signed by:
DivX, LLC

Authority:
VeriSign, Inc.

Valid from:
10/14/2012 5:00:00 PM

Valid to:
12/14/2014 3:59:59 PM

Subject:
CN="DivX, LLC", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="DivX, LLC", L=Santa Clara, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1F936096A65A95BEB4A7B700B63C36CB

File PE Metadata
Compilation timestamp:
4/12/2014 1:18:11 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
24576:JqVhjPzRfE8RQfSNLu64do8ftzI2/XvcZ5RLgpNL60F2w:JWzRfpQfSNLu64do8ftkacZ5S7L60F2w

Entry address:
0x871C3

Entry point:
E8, 61, DF, 00, 00, E9, 16, FE, FF, FF, 55, 8B, EC, 51, 53, 8B, 45, 0C, 83, C0, 0C, 89, 45, FC, 64, 8B, 1D, 00, 00, 00, 00, 8B, 03, 64, A3, 00, 00, 00, 00, 8B, 45, 08, 8B, 5D, 0C, 8B, 6D, FC, 8B, 63, FC, FF, E0, 5B, C9, C2, 08, 00, 58, 59, 87, 04, 24, FF, E0, 55, 8B, EC, 51, 51, 53, 56, 57, 64, 8B, 35, 00, 00, 00, 00, 89, 75, FC, C7, 45, F8, 2D, 72, 48, 00, 6A, 00, FF, 75, 0C, FF, 75, F8, FF, 75, 08, E8, C1, 91, 01, 00, 8B, 45, 0C, 8B, 40, 04, 83, E0, FD, 8B, 4D, 0C, 89, 41, 04, 64, 8B, 3D, 00, 00, 00, 00...
 
[+]

Entropy:
6.4232

Code size:
695.5 KB (712,192 bytes)

The file dwpupgradeinstaller.exe has been discovered within the following programs.

Configuration DivX  by DivX, Inc.
Configuration DivX is the installer for the DivX player and codecs. DivX is a brand name of products created by DivX, Inc.
www.divx.com
11% remove it
DivX Setup  by DivX, Inc.
DivX Setup is the installer for the DivX player and codecs. DivX is a brand name of products created by DivX, Inc. including the DivX Codec which became popular due to its ability to compress lengthy video segments into small sizes while maintaining relatively high visual quality.
9% remove it
Instalación de DivX  by DivX, Inc.
Publisher's description - “DivX Software includes everything you need to play, create, and stream all the most popular digital video formats. Transfer video to a DivX Certified TV, tablet or mobile phone, and stream your video collection to any DLNA-compatible device.”
7% remove it
 
Powered by Should I Remove It?

The file dwpupgradeinstaller.exe has been seen being distributed by the following 2 URLs.

http://dist.divx.com/.../DivXWebPlayerInstaller.exe

http://download.divx.com/.../DivXWebPlayerInstaller.exe

Scan dwpupgradeinstaller.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.