home

zlib1.dll

zlib

DriverDevelop.com

zlib1.dll is the zLib Compression Library used for lossless data-compression and is recompiled by DriverDevelop.com. The module zlib1.dll, “zlib data compression library” by DriverDevelop.com has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. Note, this is a common distributed file and although it has been detected it might not be a threat is un-coupled from its distribution source.
Publisher:
DriverDevelop.com  (signed and verified)

Product:
zlib

Description:
zlib data compression library

Version:
1.2.5

MD5:
dba461083dd58306ee5f2d50f523cfb9

SHA-1:
9eb1093bf0f0bac1cb1f27e93c5abd173d36bbe5

Scanner detections:
1 / 68

Status:
Potentially unwanted

Explanation:
This is the zLib Compression Library used for lossless data-compression. While the file itself is not dangerous, it is part of a program that has been detected.

Analysis date:
4/26/2024 9:42:54 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.1.18.7

File size:
69 KB (70,648 bytes)

Product version:
1.2.5

Copyright:
(C) 1995-2006 Jean-loup Gailly & Mark Adler

Original file name:
zlib1.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\kingsoft\klive business\zlib1.dll

Digital Signature
Signed by:
DriverDevelop.com

Authority:
DriverDevelop.com

Valid from:
8/15/2009 11:02:01 AM

Valid to:
8/13/2019 11:02:01 AM

Subject:
E=ca@zndev.com, CN=DriverDevelop.com Signtools Test cert, OU=Dept. CodeSign CA, O=DriverDevelop.com, S=BeiJing, C=CN

Issuer:
E=ca@zndev.com, CN=DriverDevelop.com CA, OU=DriverDevelop.com CA, O=DriverDevelop.com, L=BeiJing, S=BeiJing, C=CN

Serial number:
011E

File PE Metadata
Compilation timestamp:
1/14/2011 12:24:58 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows Console

Linker version:
10.0

Entry address:
0xA7CC

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 42, 04, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 60, 01, 01, 10, 89, 0D, 5C, 01, 01, 10, 89, 15, 58, 01, 01, 10, 89, 1D, 54, 01, 01, 10, 89, 35, 50, 01, 01, 10, 89, 3D, 4C, 01, 01, 10, 66, 8C, 15, 78, 01, 01, 10, 66, 8C, 0D, 6C, 01, 01, 10, 66, 8C, 1D, 48, 01, 01, 10, 66, 8C, 05, 44, 01, 01, 10, 66, 8C, 25, 40, 01, 01, 10, 66, 8C, 2D, 3C, 01, 01, 10, 9C, 8F, 05, 70, 01...
 
[+]

Entropy:
6.8273

Code size:
39.5 KB (40,448 bytes)

Remove zlib1.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.