home

ZhGui.dll

速浪桌面

Yantai Daocaoren Network Technology Co.,Ltd.

Publisher:
Yantai ZhengHao Network Technology Co.,Ltd.  (signed by Yantai Daocaoren Network Technology Co.,Ltd.)

Product:
速浪桌面

Version:
1.0.0.4

MD5:
2e790f87d0adf046fab65a376ea9526d

SHA-1:
0dc01e74a55bed0af49bc9e7b2e1633a8d0fa182

SHA-256:
93807853d05f252e7160fb65ac582215ab36bcbf1d406dae48e8141f2cb2f6ba

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
11/24/2024 10:38:38 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
riskware program Program.Unwanted.432
9.0.1.05190

File size:
602.9 KB (617,408 bytes)

Product version:
1.0.0.4

Copyright:
Copyright (C) 2014

Original file name:
ZhGui.dll

File type:
Dynamic link library (Win32 DLL)

Language:
Chinese (Simplified, PRC)

Common path:
C:\Program Files\sulangdesk\zhgui.dll

Digital Signature
Signed by:
Yantai Daocaoren Network Technology Co.,Ltd.

Authority:
VeriSign, Inc.

Valid from:
6/3/2014 8:00:00 AM

Valid to:
6/3/2017 7:59:59 AM

Subject:
CN="Yantai Daocaoren Network Technology Co.,Ltd.", O="Yantai Daocaoren Network Technology Co.,Ltd.", L=Yantai, S=Shandong, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6D19470478FF3868FDD9B0445697B86C

File PE Metadata
Compilation timestamp:
9/26/2014 8:15:05 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

Entry address:
0x5349E

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 76, 03, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, CC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, 20, D3, 08, 10, 89, 0D, 1C, D3, 08, 10, 89, 15, 18, D3, 08, 10, 89, 1D, 14, D3, 08, 10, 89, 35, 10, D3, 08, 10, 89, 3D, 0C, D3, 08, 10, 66, 8C, 15, 38, D3, 08, 10, 66, 8C, 0D, 2C, D3, 08, 10, 66, 8C, 1D, 08, D3, 08, 10, 66, 8C, 05, 04, D3, 08, 10, 66, 8C, 25, 00, D3, 08, 10, 66, 8C, 2D, FC, D2, 08, 10, 9C, 8F, 05, 30, D3...
 
[+]

Entropy:
6.6324

Code size:
350 KB (358,400 bytes)

Scan ZhGui.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.