home

LogiLDA.dll

Logitech Download Assistant

Microsoft Corporation

It is set to automatically execute when any user logs into Windows (through the local user run registry setting) with the name ‘Logitech Download Assistant’.
Publisher:
Logitech, Inc.  (signed by Microsoft Corporation)

Product:
Logitech Download Assistant

Version:
1.10.77.0

MD5:
0f35962448832a6f85f61b3c04542623

SHA-1:
4d3fca403518721366e181a675b3630d51a7f1a3

SHA-256:
b7caab25b7ccddecee4fd70b7882063eddf76bfdc63c9de7478648fa8f01dc73

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)
Whitelisted  (by digital signature)

Analysis date:
11/17/2024 10:25:05 PM UTC  (today)

File size:
3.8 MB (3,943,064 bytes)

Product version:
1.10.77.0

Copyright:
Copyright © 2010-2012 Logitech. All Rights Reserved

Trademarks:
Logitech’s trademarks are either registered trademarks or trademarks of Logitech in the US and/or other countries.

Original file name:
LogiLDA.dll

File type:
Dynamic link library (Win64 DLL)

Language:
English (United States)

Common path:
C:\Windows\System32\logilda.dll

Digital Signature
Signed by:
Microsoft Corporation

Authority:
Microsoft Corporation

Valid from:
12/19/2014 8:27:34 PM

Valid to:
3/19/2016 8:27:34 PM

Subject:
CN=Microsoft Windows Hardware Compatibility Publisher, OU=MOPR, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Issuer:
CN=Microsoft Windows Third Party Component CA 2012, O=Microsoft Corporation, L=Redmond, S=Washington, C=US

Serial number:
330000001DC31A761624754F8000000000001D

File PE Metadata
Compilation timestamp:
9/14/2012 12:51:23 AM

OS version:
6.0

OS bitness:
Win64

Subsystem:
Windows GUI

Linker version:
11.0

Entry address:
0x1DB008

Entry point:
48, 89, 5C, 24, 08, 48, 89, 74, 24, 10, 57, 48, 83, EC, 20, 49, 8B, F8, 8B, DA, 48, 8B, F1, 83, FA, 01, 75, 05, E8, AF, 01, 01, 00, 4C, 8B, C7, 8B, D3, 48, 8B, CE, 48, 8B, 5C, 24, 30, 48, 8B, 74, 24, 38, 48, 83, C4, 20, 5F, E9, 03, 00, 00, 00, CC, CC, CC, 48, 8B, C4, 48, 89, 58, 20, 4C, 89, 40, 18, 89, 50, 10, 48, 89, 48, 08, 56, 57, 41, 56, 48, 83, EC, 50, 49, 8B, F0, 8B, DA, 4C, 8B, F1, BA, 01, 00, 00, 00, 89, 50, B8, 85, DB, 75, 0F, 39, 1D, F8, 6F, 14, 00, 75, 07, 33, C0, E9, D2, 00, 00, 00, 8D, 43, FF...
 
[+]

Code size:
2.2 MB (2,347,520 bytes)

Startup File (All Users Run)
Registry location:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

Name:
Logitech Download Assistant

Command:
C:\Windows\System32\rundll32.exe C:\Windows\System32\logilda.dll,logifetch


herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.