home

uvPL.EXE

Ulead VideoStudio

Ulead Systems, Inc.

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘UVS11 Preload’.
Publisher:
InterVideo Digital Technology Corporation  (signed by Ulead Systems, Inc.)

Product:
Ulead VideoStudio

Version:
9.0

MD5:
a2876cd17b7902b2c06bcb3d4f07a848

SHA-1:
dd9f571d4f37da1ef8aef7a2571e2d431d654e16

Scanner detections:
10 / 68

Status:
Clean  (10 probable false positive detections)

Explanation:
These detections are probably false positives (erroneous), the file is probably malware free.

Analysis date:
4/16/2024 7:44:21 AM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Patched-JI
2014.9-160212

AVG
Win32/Slugin.A
2017.0.2836

Clam AntiVirus
Trojan.Spy-59563
0.98/21281

Dr.Web
Win32.Wplugin.2
9.0.1.043

ESET NOD32
Win32/Slugin.A virus
10.7.0.302.0

F-Prot
W32/Slugin.B
v6.4.6.5.141

McAfee
Virus.W32/Wplugin
5600.6492

Microsoft Security Essentials
Threat.Undefined
1.213.3291.0

Sophos
Virus 'W32/Slugin-A'
5.22

VIPRE Antivirus
Threat.4314870
46590

File size:
416 KB (425,964 bytes)

Product version:
11.0

Copyright:
Copyright(c) 2007 InterVideo Digital Technology Corporation. All Rights Reserved.

Trademarks:
Ulead Systems, VideoStudio is registered trademarks of Ulead Systems, Inc.

Original file name:
uvPL.EXE

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\ulead systems\ulead videostudio 11\uvpl.exe

Digital Signature
Signed by:
Ulead Systems, Inc.

Authority:
VeriSign, Inc.

Valid from:
8/16/2006 5:00:00 AM

Valid to:
8/17/2007 4:59:59 AM

Subject:
CN="Ulead Systems, Inc.", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Ulead Systems, Inc.", S=Taipei, C=TW

Issuer:
CN=VeriSign Class 3 Code Signing 2004 CA, OU=Terms of use at https://www.verisign.com/rpa (c)04, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
40E49474947044E9BBAFB9526023A8B3

File PE Metadata
Compilation timestamp:
5/25/2055 11:10:40 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
6144:YO5cb8chYFh5kCH1eJzxfo2NqidHOVOSm6A:IRu

Entry address:
0x5FFEC

Entry point:
60, 55, 8B, EC, E8, 14, 00, 00, 00, F8, FC, F5, E8, DB, 00, 00, 00, BD, CF, 6E, EF, 7B, FC, FC, E9, 61, 00, 00, 00, 67, 64, FF, 36, 00, 00, 67, 64, 89, 26, 00, 00, 89, 2D, FE, FF, 45, 00, F8, 31, DB, 53, 68, 10, 00, 00, 00, 68, 00, 00, 01, 00, 68, 00, 00, 00, 80, 53, 68, 00, 08, 00, 00, 68, 01, 00, 00, 00, 68, 00, 00, 00, 80, 68, 40, 00, 00, 00, 53, FF, 15, 8C, 40, 40, 00, 31, C9, 68, 00, 00, 00, 80, 68, 00, 00, 00, 80, 68, 00, 00, 00, 80, 51, 51, 51, 51, 51, 51, 51, 51, 51, FF, 15, 8C, 40, 40, 00, 89, C9...
 
[+]

Entropy:
5.3762

Code size:
12 KB (12,288 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
UVS11 Preload

Command:
C:\Program Files\ulead systems\ulead videostudio 11\uvpl.exe


Scan uvPL.EXE - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.