home

taskmgr.dll

IObit TaskSchedule Dynamic Link Library

Cheng Du VTools Information Technology

The module taskmgr.dll by Cheng Du VTools Information Technology has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Driver Booster by IObit.
Publisher:
IObit  (signed by Cheng Du VTools Information Technology)

Product:
IObit TaskSchedule Dynamic Link Library

Version:
1.0.0.311

MD5:
d9a82f8c4cc812baf15ea6597fecdeaf

SHA-1:
bc774adc7cfdf9e6d0a8493e96dcd5d2aad50c82

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/19/2024 10:31:57 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.ChengDuVToolsInformationTechnology.H
14.10.29.17

File size:
327.8 KB (335,696 bytes)

Product version:
1.0

Copyright:
Copyright © 2013 IObit

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\iobit\driver booster\taskmgr.dll

Digital Signature
Signed by:
Cheng Du VTools Information Technology

Authority:
VeriSign, Inc.

Valid from:
12/11/2011 2:00:00 AM

Valid to:
1/26/2014 1:59:59 AM

Subject:
CN=Cheng Du VTools Information Technology, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Cheng Du VTools Information Technology, L=ChengDu, S=SiChuan, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1B5D68E0AFA12E8F1159C668DD228431

File PE Metadata
Compilation timestamp:
5/24/2013 9:00:47 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:5/0DcAfAR6+ycGUIivGkz2TtufBsFMUkFh2ozR0pZMzAY:l09fAMnUtOQqMUg29szAY

Entry address:
0x107B5

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 4A, 9A, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 78, F1, 04, 10, 89, 0D, 74, F1, 04, 10, 89, 15, 70, F1, 04, 10, 89, 1D, 6C, F1, 04, 10, 89, 35, 68, F1, 04, 10, 89, 3D, 64, F1, 04, 10, 66, 8C, 15, 90, F1, 04, 10, 66, 8C, 0D, 84, F1, 04, 10, 66, 8C, 1D, 60, F1, 04, 10, 66, 8C, 05, 5C, F1, 04, 10, 66, 8C, 25, 58, F1, 04, 10, 66, 8C, 2D, 54, F1, 04, 10, 9C, 8F, 05, 88, F1...
 
[+]

Code size:
144.5 KB (147,968 bytes)

The file taskmgr.dll has been discovered within the following program.

Driver Booster  by IObit
Publisher's description - “Outdated drivers may heavily affect your PC performance and lead to system crashes. Driver Booster scans and identifies outdated drivers automatically, and downloads and installs the right update for you with just ONE click, saving you loads of time.”
www.iobit.com
43% remove it
 
Powered by Should I Remove It?

Remove taskmgr.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.