home

drivergenius.dll

Driver Genius Professional Edition

Wuhan Jiduo Information Technology Co.,Ltd.

The module drivergenius.dll by Wuhan Jiduo Information Technology Co.,Ltd has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Driver-Soft Inc.  (signed by Wuhan Jiduo Information Technology Co.,Ltd.)

Product:
Driver Genius Professional Edition

Version:
9.00.0176

MD5:
284e36a7a4cb21d6b37fc935c3746f68

SHA-1:
986853a3f5edb89065399ec7cbab993c4bbe67f0

SHA-256:
9a996cada43c368c132fde2dc037464664aef0a08f473fb6dfb6f706153643d2

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/25/2024 1:14:14 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
Win32.Generic
16.2.10.16

File size:
2.8 MB (2,969,216 bytes)

Product version:
9.00.0176

Copyright:
Copyright (C) 2002-2009 Driver-Soft Inc.

Original file name:
DriverGenius.exe

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\driver-soft\drivergenius\drivergenius.dll

Digital Signature
Signed by:
Wuhan Jiduo Information Technology Co.,Ltd.

Authority:
WoSign, Inc.

Valid from:
5/22/2008 2:00:00 AM

Valid to:
5/23/2010 1:59:59 AM

Subject:
CN=Driver-Soft.com, OU=Class 3 - for Microsoft Authenticode Signing, O="Wuhan Jiduo Information Technology Co.,Ltd.", L=Wuhan, S=Hubei, C=CN

Issuer:
CN=WoSign Code Signing Authority, O="WoSign, Inc.", C=US

Serial number:
79E59F0AC0FF47090A57C16B38B1BD

File PE Metadata
Compilation timestamp:
6/12/2009 6:17:19 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
49152:zwygMWGYfu9+wkNqBMRvW9ukLyaU461aHoa3uZVyknyodPBDxndAhd04rlx08pz8:zwygXB29+wk4BieuYyeHRuHvBbQdFSmQ

Entry address:
0x1000

Entry point:
68, 01, B0, 7E, 00, E8, 01, 00, 00, 00, C3, C3, 77, 15, 5C, AF, C1, 4F, 93, A5, C7, A0, 9A, 8B, 44, D2, C5, BA, EF, B5, C8, C1, 07, 0A, 00, 59, 25, 9A, A7, EF, 99, 14, 32, BA, 95, D7, 54, 1C, B2, 4C, FF, FD, 9D, 37, BF, 60, 66, 4C, 06, 7B, 6F, 4B, 7D, F5, 77, 38, 67, 86, BB, C0, 46, 7B, E4, 02, 2F, 35, 4E, 01, 47, D1, 19, A3, 74, 6A, 89, C2, DD, 25, F0, 53, 34, C0, F8, 14, EA, C5, A6, 3A, 1E, BB, 4B, 22, 85, E2, B2, D6, 80, CA, A8, 02, 3F, E7, EF, 69, E8, 91, C0, 38, B1, 19, EE, 51, A4, 22, FE, A2, 77, F4...
 
[+]

Packer / compiler:
ASProtect v1.2x (New Strain)

Code size:
1.6 MB (1,634,304 bytes)

Remove drivergenius.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.