home

liveupdate.exe

Driver Genius LiveBDUpdater

ADMIN@CRACK Shareware KILLER :)

The application liveupdate.exe has been detected as a potentially unwanted program by 20 anti-malware scanners. Additionally, the file is typically installed by a number of programs including Driver Genius Professional Edition by Driver-Soft Inc. and Driver Genius by Driver-Soft Inc., both potentially unwanted software. While running, it connects to the Internet address f8.a9.e443.ip4.static.sl-reverse.com on port 80 using the HTTP protocol.
Publisher:
ADMIN@CRACK Shareware KILLER :)

Product:
Driver Genius LiveBDUpdater

Version:
1.0.0.3

MD5:
32a6c75530521520676a6cc5f67c641f

SHA-1:
4316621c8b4a92ddbd851ade8a9f379c1e6e0ebb

Scanner detections:
20 / 68

Status:
Potentially unwanted

Analysis date:
11/27/2024 6:44:26 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.Generic.7584927
915

Bitdefender
Trojan.Generic.7584927
1.0.20.1075

Bkav FE
W32.Clodd1f.Trojan
1.3.0.4959

Clam AntiVirus
Win.Trojan.7584927
0.98/21411

Comodo Security
UnclassifiedMalware
18894

Emsisoft Anti-Malware
Trojan.Generic.7584927
8.14.08.03.11

Fortinet FortiGate
W32/SPNR.0BE312!tr
8/3/2014

F-Secure
Trojan.Generic.7584927
11.2014-03-08_1

G Data
Trojan.Generic.7584927
14.8.24

IKARUS anti.virus
not-a-virus.Crack.DriverGen
t3scan.1.6.1.0

McAfee
Artemis!32A6C7553052
5600.7049

MicroWorld eScan
Trojan.Generic.7584927
15.0.0.645

Norman
Suspicious_Gen4.AICAR
11.20140803

nProtect
Trojan.Generic.7584927
14.07.18.01

Panda Antivirus
Generic Trojan
14.08.03.11

Rising Antivirus
PE:Trojan.Win32.Generic.151C5033!354177075
23.00.65.14801

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_SPNR.0BE312
7.2.215

Trend Micro
TROJ_SPNR.0BE312
10.465.03

VIPRE Antivirus
Trojan.Win32.Generic
31376

File size:
24.5 KB (25,088 bytes)

Product version:
1.0.0.3

Original file name:
LiveDBUpdater.exe

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\driver-soft\drivergenius\liveupdate.exe

File PE Metadata
Compilation timestamp:
4/8/2012 10:29:31 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.50

CTPH (ssdeep):
384:YKSRxqhYzyVqIvJ177T+o1pYVFTlF5yDIT7wBUF9ZYt9ry90Vr:6RxqhyyBB177HqXPyPG3Yt9ryo

Entry address:
0x1C06

Entry point:
6A, 00, E8, C9, 00, 00, 00, A3, 40, 2D, 40, 00, 6A, 00, 68, BA, 17, 40, 00, 6A, 00, 68, E8, 03, 00, 00, 50, E8, 3E, 00, 00, 00, 6A, 00, E8, AF, 00, 00, 00, CC, FF, 25, 30, 29, 40, 00, FF, 25, 34, 29, 40, 00, FF, 25, 38, 29, 40, 00, FF, 25, 3C, 29, 40, 00, FF, 25, 40, 29, 40, 00, FF, 25, 44, 29, 40, 00, FF, 25, 48, 29, 40, 00, FF, 25, 4C, 29, 40, 00, FF, 25, 50, 29, 40, 00, FF, 25, 54, 29, 40, 00, FF, 25, 5C, 29, 40, 00, FF, 25, 60, 29, 40, 00, FF, 25, 64, 29, 40, 00, FF, 25, 68, 29, 40, 00, FF, 25, 6C, 29...
 
[+]

Packer / compiler:
TASM / MASM

Code size:
4 KB (4,096 bytes)

The file liveupdate.exe has been discovered within the following programs.

Driver Genius  by Driver-Soft Inc.
Driver Genius is a software application designed to check the PC's currently installed drivers against a database of available drivers for a number of software and device hardware applications.
www.driver-soft.com
70% remove it
Driver Genius Professional Edition  by Driver-Soft Inc.
This is an application designed to check the computer's installed drivers against a database of available drivers for a number of software and device hardware applications.
65% remove it
 
Powered by Should I Remove It?

The executing file has been seen to make the following network communication in live environments.

TCP (HTTP):
Connects to f8.a9.e443.ip4.static.sl-reverse.com  (67.228.169.248:80)

Remove liveupdate.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.