× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c6e7419ea72d1703f72292743a999f4a6cf0c6734ba1ee92c6af18ba8b1a3a23
File name: 285c3dc75669dfbcf72ad9fcac4891e67b5fe00f
Detection ratio: 0 / 43
Analysis date: 2011-07-10 19:51:56 UTC ( 2 years, 9 months ago ) View latest
Probably harmless! There are strong indicators suggesting that this file is safe to use.
Antivirus Result Update
AVG 20110710
AhnLab-V3 20110710
AntiVir 20110710
Antiy-AVL 20110710
Avast 20110710
Avast5 20110710
BitDefender 20110710
CAT-QuickHeal 20110710
ClamAV 20110710
Commtouch 20110710
Comodo 20110710
DrWeb 20110710
Emsisoft 20110710
F-Prot 20110710
F-Secure 20110710
Fortinet 20110710
GData 20110710
Ikarus 20110710
Jiangmin 20110710
K7AntiVirus 20110710
Kaspersky 20110710
McAfee 20110710
McAfee-GW-Edition 20110710
Microsoft 20110710
NOD32 20110710
Norman 20110710
PCTools 20110708
Panda 20110710
Prevx 20110710
Rising 20110708
SUPERAntiSpyware 20110710
Sophos 20110710
Symantec 20110710
TheHacker 20110710
TrendMicro 20110710
TrendMicro-HouseCall 20110710
VBA32 20110708
VIPRE 20110710
ViRobot 20110710
VirusBuster 20110710
eSafe 20110707
eTrust-Vet 20110708
nProtect 20110710
The file being studied is a Portable Executable file! More specifically, it is a Win32 DLL file for the Windows GUI subsystem.
Authenticode signature block
Copyright
© Microsoft Corporation. All rights reserved.

Publisher Microsoft Windows
Product Microsoft® Windows® Operating System
Original name DInput8.dll
Internal name DInput8.dll
File version 6.1.7600.16385 (win7_rtm.090713-1255)
Description Microsoft DirectInput
Signature verification Signed file, verified signature
Signing date 8:35 PM 11/20/2010
Signers
[+] Microsoft Windows
Status Certificate out of its validity period
Valid from 10:57 PM 12/7/2009
Valid to 10:57 PM 3/7/2011
Valid usage Code Signing, NT5 Crypto
Algorithm SHA1
Thumbrint 02ECEEA9D5E0A9F3E39B6F4EC3F7131ED4E352C4
Serial number 61 15 23 0F 00 00 00 00 00 0A
[+] Microsoft Windows Verification PCA
Status Valid
Valid from 10:55 PM 9/15/2005
Valid to 11:05 PM 3/15/2016
Valid usage Code Signing, NT5 Crypto
Algorithm SHA1
Thumbrint 5DF0D7571B0780783960C68B78571FFD7EDAF021
Serial number 61 07 02 DC 00 00 00 00 00 0B
[+] Microsoft Root Certificate Authority
Status Valid
Valid from 12:19 AM 5/10/2001
Valid to 12:28 AM 5/10/2021
Valid usage All
Algorithm SHA1
Thumbrint CDD4EEAE6000AC7F40C3802C171E30148030C072
Serial number 79 AD 16 A1 4A A0 A5 AD 4C 73 58 F4 07 13 2E 65
Counter signers
[+] Microsoft Time-Stamp Service
Status Certificate out of its validity period
Valid from 8:12 PM 7/25/2008
Valid to 8:22 PM 7/25/2011
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint 56E832A33DDC8CF2C916DA7CBB1175CBACABAE2C
Serial number 61 03 DC F6 00 00 00 00 00 0C
[+] Microsoft Time-Stamp PCA
Status Valid
Valid from 1:53 PM 4/3/2007
Valid to 2:03 PM 4/3/2021
Valid usage Timestamp Signing
Algorithm SHA1
Thumbrint 375FCB825C3DC3752A02E34EB70993B4997191EF
Serial number 61 16 68 34 00 00 00 00 00 1C
[+] Microsoft Root Certificate Authority
Status Valid
Valid from 12:19 AM 5/10/2001
Valid to 12:28 AM 5/10/2021
Valid usage All
Algorithm SHA1
Thumbrint CDD4EEAE6000AC7F40C3802C171E30148030C072
Serial number 79 AD 16 A1 4A A0 A5 AD 4C 73 58 F4 07 13 2E 65
PE header basic information
Target machine Intel 386 or later processors and compatible processors
Compilation timestamp 2009-07-14 01:05:05
Entry Point 0x0001EC5C
Number of sections 4
PE sections
PE imports
RegCreateKeyExW
RegCloseKey
RegCreateKeyW
InitializeAcl
RegSetKeySecurity
RegDeleteValueW
RegDeleteKeyW
GetSecurityInfo
RegQueryValueExW
SetSecurityDescriptorDacl
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
GetUserNameW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
AddAccessAllowedAceEx
GetLengthSid
SetEntriesInAclW
RegSetValueExW
SetSecurityDescriptorControl
FreeSid
RegEnumValueW
AllocateAndInitializeSid
InitializeSecurityDescriptor
DeviceIoControl
InitializeCriticalSection
HeapFree
LocalReAlloc
EnterCriticalSection
ReleaseMutex
LoadResource
lstrlenA
GetModuleFileNameW
GetLastError
WaitForSingleObject
GetVersionExW
FreeLibrary
QueryPerformanceCounter
MulDiv
LocalAlloc
GetTickCount
DisableThreadLibraryCalls
GetProcAddress
lstrcmpiW
lstrlenW
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
SystemTimeToFileTime
CompareFileTime
SetThreadPriority
GetFileSize
DuplicateHandle
CreateThread
UnhandledExceptionFilter
MultiByteToWideChar
MapViewOfFile
WaitForMultipleObjects
InterlockedCompareExchange
GetPrivateProfileStringW
GetProcessHeap
CreateFileMappingW
CloseHandle
WideCharToMultiByte
LoadLibraryW
SetFilePointer
GetSystemDirectoryW
ReadFile
WriteFileEx
InterlockedExchange
SetUnhandledExceptionFilter
CreateMutexW
ResetEvent
GetSystemTimeAsFileTime
lstrcmpW
GetModuleHandleW
GetFullPathNameA
SetEvent
LocalFree
TerminateProcess
ResumeThread
CreateEventW
GetVersion
FreeLibraryAndExitThread
GetWindowsDirectoryW
UnmapViewOfFile
FindResourceW
CreateFileW
SleepEx
CreateProcessW
InterlockedDecrement
Sleep
GetFullPathNameW
ReadFileEx
CreateFileA
HeapAlloc
GetCurrentThreadId
InterlockedIncrement
GetCurrentProcessId
LeaveCriticalSection
MapWindowPoints
RegisterWindowMessageW
GetForegroundWindow
IntersectRect
GetPropW
LoadCursorW
DefWindowProcW
ReleaseCapture
keybd_event
MapVirtualKeyW
ClipCursor
SendNotifyMessageW
SetPropW
ToUnicodeEx
PostThreadMessageW
GetSystemMetrics
SetWindowLongW
IsWindow
PeekMessageW
GetWindowRect
UnhookWindowsHookEx
SetCapture
CharUpperW
TranslateMessage
GetMessageTime
PostMessageW
CallNextHookEx
GetInputState
DispatchMessageW
GetCursorPos
GetWindowThreadProcessId
GetRawInputDeviceInfoW
RegisterClassW
mouse_event
LoadStringW
SubtractRect
SetCursorPos
RemovePropW
SystemParametersInfoW
IsIconic
GetKeyNameTextW
GetAsyncKeyState
SetTimer
CallWindowProcW
GetKeyboardLayout
GetActiveWindow
ShowCursor
GetClientRect
MapVirtualKeyExW
GetDesktopWindow
SetWindowsHookExW
IsRectEmpty
LoadIconW
CreateWindowExW
MsgWaitForMultipleObjects
GetWindowLongW
DestroyWindow
GetKeyboardType
GetRawInputDeviceList
_amsg_exit
strchr
malloc
_vsnwprintf
iswctype
_CIatan2
memset
_wcsnicmp
_CIsin
_CIsqrt
_ftol2_sse
_except_handler4_common
_XcptFilter
_CIcos
_wsplitpath_s
free
towupper
memcpy
_initterm
PE exports
Number of PE resources by type
RT_RCDATA 9
MUI 1
RT_VERSION 1
Number of PE resources by language
ENGLISH US 11
ExifTool file metadata
SubsystemVersion
6.1

LinkerVersion
9.0

ImageVersion
6.1

FileSubtype
0

FileVersionNumber
6.1.7600.16385

UninitializedDataSize
0

LanguageCode
English (U.S.)

FileFlagsMask
0x003f

CharacterSet
Unicode

InitializedDataSize
55808

FileOS
Windows NT 32-bit

MIMEType
application/octet-stream

LegalCopyright
Microsoft Corporation. All rights reserved.

FileVersion
6.1.7600.16385 (win7_rtm.090713-1255)

TimeStamp
2009:07:14 02:05:05+01:00

FileType
Win32 DLL

PEType
PE32

InternalName
DInput8.dll

FileAccessDate
2014:04:19 14:12:30+01:00

ProductVersion
6.1.7600.16385

FileDescription
Microsoft DirectInput

OSVersion
6.1

FileCreateDate
2014:04:19 14:12:30+01:00

OriginalFilename
DInput8.dll

Subsystem
Windows GUI

MachineType
Intel 386 or later, and compatibles

CompanyName
Microsoft Corporation

CodeSize
127488

ProductName
Microsoft Windows Operating System

ProductVersionNumber
6.1.7600.16385

EntryPoint
0x1ec5c

ObjectFileType
Dynamic link library

File identification
MD5 5e08ac958be05247ff1539e0d1ce7905
SHA1 285c3dc75669dfbcf72ad9fcac4891e67b5fe00f
SHA256 c6e7419ea72d1703f72292743a999f4a6cf0c6734ba1ee92c6af18ba8b1a3a23
ssdeep
3072:YjgHqRWK4uO+Vbe3JBHJWV25vPdBK3sdVsRS1TO:YcHA4LyekGvFBwsdVY4

imphash 22c3ed06cd5e9f31fdb0ae3fc3973cf7
File size 142.0 KB ( 145408 bytes )
File type Win32 DLL
Magic literal
PE32 executable for MS Windows (DLL) (GUI) Intel 80386 32-bit

TrID DirectShow filter (55.3%)
Windows ActiveX control (31.9%)
Win32 Executable MS Visual C++ (generic) (8.5%)
Win32 Dynamic Link Library (generic) (1.8%)
Win32 Executable (generic) (1.2%)
Tags
peexe signed pedll

VirusTotal metadata
First submission 2009-12-02 11:01:20 UTC ( 4 years, 4 months ago )
Last submission 2014-04-19 13:12:08 UTC ( 22 hours, 17 minutes ago )
File names A8F0C5D80038554438DC02ED29945300234BA7D8.dll
dinput8.dll
5e08ac958be05247ff1539e0d1ce7905
smona_c6e7419ea72d1703f72292743a999f4a6cf0c6734ba1ee92c6af18ba8b1a3a23.bin
smona130788699950286721552
5e08ac958be05247ff1539e0d1ce7905
dinput8.dll
dinput_.dll
file-2942736_dll
285c3dc75669dfbcf72ad9fcac4891e67b5fe00f
imm-flt-61888
imm-flt-24485
dinput8_dll_5e08ac958be05247ff1539e0d1ce7905
dinput8_dl.dll
dinput8.dll
DInput8.dll
imm-flt-48182
dinput8_.dll
dinput8.dll
dinput8.dll
dinput8.dll
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
Behaviour characterization
Zemana
screen-capture
keylogger

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!