dplauncher.exe

Driver Pro

Subeo Tech, Inc.

The application dplauncher.exe, “Driver Pro - Update your drivers now!” by Subeo Tech has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat. It is set to automatically start when a user logs into Windows via the current user run registry key under the display name ‘Driver Pro’. This file is typically installed with the program Driver Pro v3.0 by PC Utilities Pro which is a potentially unwanted software program.
Publisher:
PC Utilities Pro  (signed by Subeo Tech, Inc.)

Product:
Driver Pro

Description:
Driver Pro - Update your drivers now!

Version:
3.0.0.0

MD5:
864de1f45f2aa85460ad3fea4d27dadb

SHA-1:
b4c21a7fc4ba95314b6269853b23ef9f4e79d51b

SHA-256:
717329da4b6fa2c4c882e3e528d1cea416f4ebd2a10255cf7485e06a4dfbe490

Scanner detections:
1 / 68

Status:
Potentially unwanted

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
11/15/2024 12:23:14 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.PC Utilities (M)
16.7.27.16

File size:
330.3 KB (338,224 bytes)

Product version:
3.0.0

Copyright:
PC Utilities Pro

Trademarks:
PC Utilities Pro

Original file name:
DriverPro

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\driver pro\dplauncher.exe

Digital Signature
Authority:
GoDaddy.com, Inc.

Valid from:
11/22/2011 7:49:01 AM

Valid to:
11/21/2012 11:14:37 AM

Subject:
CN="Subeo Tech, Inc.", O="Subeo Tech, Inc.", L=Reno, S=NV, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
27D4E25FB4CFE9

File PE Metadata
Compilation timestamp:
6/19/1992 6:22:17 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
6144:YGSQ6rs2iaFmjeb+EUvSE6KqqLqqTaqCcWxZELL2w8:ebrNiaEjeycKqqLqqTaqCcWxqHJ8

Entry address:
0x65430

Entry point:
60, BE, 00, C0, 45, 00, 8D, BE, 00, 50, FA, FF, 57, 83, CD, FF, EB, 10, 90, 90, 90, 90, 90, 90, 8A, 06, 46, 88, 07, 47, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 72, ED, B8, 01, 00, 00, 00, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, 01, DB, 73, 0B, 75, 19, 8B, 1E, 83, EE, FC, 11, DB, 72, 10, 48, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11, C0, EB, D4, 31, C9, 83, E8, 03, 72, 11, C1, E0, 08, 8A, 06, 46, 83, F0, FF, 74, 78, D1, F8, 89, C5, EB, 0B, 01, DB, 75, 07, 8B, 1E, 83, EE, FC, 11, DB, 11...
 
[+]

Entropy:
4.9531

Packer / compiler:
UPX 2.90LZMA

Code size:
40 KB (40,960 bytes)

Startup File (User Run)
Registry location:
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Driver Pro

Command:
C:\Program Files\driver pro\dplauncher.exe


The file dplauncher.exe has been discovered within the following program.

Driver Pro v3.0  by PC Utilities Pro
It is a brand run by Adsology, a company that facilitates distribution of its brands of 'PC optimization' utilities by through bundled installations. Brands include Optimizer Pro, PC Repair, Driver Pro, Soft Reports and many others.
www.pcutilitiespro.com
69% remove it
 
Powered by Should I Remove It?

Remove dplauncher.exe - Powered by Reason Core Security