home

GuoDouUI.dll

GuoDouUI

Zhenjiang ChangYou Network Technology Co., Ltd.

Publisher:
镇江畅游网络科技有限公司  (signed by Zhenjiang ChangYou Network Technology Co., Ltd.)

Product:
GuoDouUI

Description:
果豆应用

Version:
1.00

MD5:
fcff43eec77f4e8979c8cf7940e44bbd

SHA-1:
4d2ba9aa01271b6381156cf7b3a882f8abf25dd6

SHA-256:
5abbe2793a262561c14e679a8f7ef1acc02a0e65b16d71e942561bc4c12a2f0a

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 7:21:56 PM UTC  (today)

Scan engine
Detection
Engine version

AVG
Generic
2016.0.3236

File size:
77.5 KB (79,392 bytes)

Product version:
1.00

Copyright:
镇江畅游网络科技版权所有 (C)2014

Original file name:
GuoDouUI.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Chinese (Simplified, PRC)

Common path:
C:\Program Files\guodou\201501072218\guodouui.dll

Digital Signature
Signed by:
Zhenjiang ChangYou Network Technology Co., Ltd.

Authority:
VeriSign, Inc.

Valid from:
3/6/2014 6:00:00 PM

Valid to:
3/7/2015 5:59:59 PM

Subject:
CN="Zhenjiang ChangYou Network Technology Co., Ltd.", OU=技术部, OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Zhenjiang ChangYou Network Technology Co., Ltd.", L=Zhenjiang, S=Jiangsu, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
5E647F3525E873BEEE27CE28AD420537

File PE Metadata
Compilation timestamp:
10/27/2014 8:13:15 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
768:ZF4rEufwhaqhelBAud8NDZ/B4ushS+nz+PHI4QxuP76LPUSouTJV7TJUOSA8:ZFXbaeeUXGzHMsTJBuOSA8

Entry address:
0x1814

Entry point:
5A, 68, 18, DE, 00, 11, 68, 1C, DE, 00, 11, 52, E9, E9, FF, FF, FF, 00, 00, 00, 58, 00, 00, 00, 30, 00, 00, 00, 50, 00, 00, 00, 40, 00, 00, 00, 2F, BD, CB, 10, C0, 2B, 98, 45, B4, 63, A9, 45, 69, 44, F0, BF, 00, 00, 00, 00, 02, 00, 02, 00, 00, 00, 50, 61, 67, 65, 27, 20, 47, 75, 6F, 44, 6F, 75, 55, 49, 00, DA, B5, B1, C7, B0, B9, A4, 47, 75, 6F, 44, 6F, 75, 55, 49, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, A0, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
5.4811

Developed / compiled with:
Microsoft Visual Basic v6.0

Code size:
48 KB (49,152 bytes)

Scan GuoDouUI.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.