home

LogiLDA.dll

Logitech Download Assistant

Microsoft Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Logitech Download Assistant’.
Publisher:
Logitech, Inc.  (signed by Microsoft Corporation)

Product:
Logitech Download Assistant

Version:
1.10.77.0

MD5:
93284ffa7c25cb28c8ef3cc5bd7f3541

SHA-1:
0fa95415d974731339cddd36b84f273d200bc28c

SHA-256:
04197cf4cb5b96125d9f83b365d25c6c42642cdac19939d38eb2a31b5de021d2

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/17/2024 10:50:10 PM UTC  (today)

File size:
3.8 MB (3,942,424 bytes)

Product version:
1.10.77.0

Copyright:
Copyright © 2010-2012 Logitech. All Rights Reserved

Trademarks:
Logitech’s trademarks are either registered trademarks or trademarks of Logitech in the US and/or other countries.

Original file name:
LogiLDA.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\Windows\System32\logilda.dll

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
12/19/2014 8:27:34 PM

Valid to:
3/19/2016 8:27:34 PM

Subject:
CN=Microsoft Windows Hardware Compatibility Publisher, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Windows Third Party Component CA 2012, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
330000001DC31A761624754F8000000000001D

File PE Metadata
Compilation timestamp:
9/14/2012 12:51:23 AM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x1DB008

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, AF, 01, 01, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 20, 4C, 89, 40, 18, 89, 50, 10, 48, 89, 48, 08, 56, 57, 41, 56, 48, 83, EC, 50, 49, 8B, F0, 8B, DA, 4C, 8B, F1, BA, 01, 00, 00, 00, 89, 50, B8, 85, DB, 75, 0F, 39, 1D, F8, 6F, 14, 00, 75, 07, 33, C0, E9, D2, 00, 00, 00, 8D, 43, FF...
 
[+]

Entropy:
6.2003

Code size:
2.2 MB (2,347,520 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Logitech Download Assistant

Command:
C:\Windows\System32\rundll32.exe C:\Windows\System32\logilda.dll,logifetch


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.