home

dlcgmon.exe

DellPhoto AIO Printer 810 Device Monitor

Dell Incorporated

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘dlcgmon.exe’.
Publisher:
Dell  (signed by Dell Incorporated)

Product:
DellPhoto AIO Printer 810 Device Monitor

Version:
3.80.0.0

MD5:
0bc21f890d465f9e3a20232fe2cddf5c

SHA-1:
5f40376360725fdabd314713d43147826f7f0f57

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 5:24:52 AM UTC  (today)

File size:
424.9 KB (435,080 bytes)

Product version:
3.80.0.0

Original file name:
dlcgmon.exe

File type:
Executable application (Win32 EXE)

Language:
Spanish

Common path:
C:\Program Files\dell aio 810\dlcgmon.exe

Digital Signature
Signed by:
Dell Incorporated

Authority:
Thawte Consulting (Pty) Ltd.

Valid from:
10/11/2006 7:00:00 PM

Valid to:
10/5/2007 6:59:59 PM

Subject:
CN=Dell Incorporated, OU=SINGAPORE DESIGN CENTER, O=Dell Incorporated, L=Austin, S=Texas, C=US

Issuer:
CN=Thawte Code Signing CA, O=Thawte Consulting (Pty) Ltd., C=ZA

Serial number:
1C73656D25FE43534472B2DBE50FF497

File PE Metadata
Compilation timestamp:
10/2/2006 4:52:38 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
6144:W6gUbPvnNXqsgPhVg+bSCe3p7aTgEnRMNVZPpcZ9ZhyN/ZRyNG5EDZRyNT:wUrnNXqsgPhVg+bSCe3p7a0oRMZPks

Entry address:
0x1BF6

Entry point:
55, 8B, EC, 6A, FF, 68, 90, 24, 42, 00, 68, 94, 1D, 40, 00, 64, A1, 00, 00, 00, 00, 50, 64, 89, 25, 00, 00, 00, 00, 83, EC, 68, 53, 56, 57, 89, 65, E8, 33, DB, 89, 5D, FC, 6A, 02, FF, 15, CC, 22, 42, 00, 59, 83, 0D, 30, C2, 42, 00, FF, 83, 0D, 34, C2, 42, 00, FF, FF, 15, D0, 22, 42, 00, 8B, 0D, 64, C0, 42, 00, 89, 08, FF, 15, D4, 22, 42, 00, 8B, 0D, 60, C0, 42, 00, 89, 08, A1, D8, 22, 42, 00, 8B, 00, A3, 2C, C2, 42, 00, E8, 2E, 01, 00, 00, 39, 1D, 40, 84, 42, 00, 75, 0C, 68, 90, 1D, 40, 00, FF, 15, DC, 22...
 
[+]

Entropy:
5.7041

Developed / compiled with:
Microsoft Visual C++ v6.0

Code size:
132 KB (135,168 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
dlcgmon.exe

Command:
"C:\Program Files\dell aio 810\dlcgmon.exe"


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.