| filename | SpITIRDevMft.dll | |
|---|---|---|
| size | 661024 (0xa1620) | |
| md5 | 65903b32c7bca22c621acd376454943d | |
| type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | |
| mimetype | application/x-dosexec | |
| clamav | scan pending | |
| virustotal | → scan with virustotal.com | |
| histogram | ||
MZ Header
| signature | MZ |
| bytes_in_last_block | 0x90 |
| blocks_in_file | 3 |
| num_relocs | 0 |
| header_paragraphs | 4 |
| min_extra_paragraphs | 0 |
| max_extra_paragraphs | 0xffff |
| ss | 0 |
| sp | 0xb8 |
| checksum | 0 |
| ip | 0 |
| cs | 0 |
| reloc_table_offset | 0x40 |
| overlay_number | 0 |
| reserved0 | 0 |
| oem_id | 0 |
| oem_info | 0 |
| reserved2 | 0 |
| reserved3 | 0 |
| reserved4 | 0 |
| reserved5 | 0 |
| reserved6 | 0 |
| lfanew | 0xf8 |
Rich Header
| lib id | version | times used |
|---|---|---|
| 259 | 24123 | 6 |
| 260 | 24123 | 13 |
| 261 | 24123 | 37 |
| 147 | 30729 | 51 |
| 1 | 0 | 104 |
| 260 | 24610 | 1 |
| 261 | 24215 | 11 |
| 256 | 24215 | 1 |
| 255 | 24210 | 1 |
| 151 | 0 | 1 |
| 258 | 24215 | 1 |
DOS stub
00000000: 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 |........!..L.!Th| 00000010: 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f |is program canno| 00000020: 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 |t be run in DOS | 00000030: 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 |mode....$.......|
PE Header
Sections
Data Directory
| module_name | hint | ord | function_name |
|---|---|---|---|
| api-ms-win-core-debug-l1-1-1.dll | 7 | OutputDebugStringW | |
| api-ms-win-core-debug-l1-1-1.dll | 4 | DebugBreak | |
| api-ms-win-core-debug-l1-1-1.dll | 5 | IsDebuggerPresent | |
| api-ms-win-core-handle-l1-1-0.dll | 2 | DuplicateHandle | |
| api-ms-win-core-handle-l1-1-0.dll | CloseHandle | ||
| api-ms-win-core-synch-l1-2-0.dll | 10 | CreateMutexW | |
| api-ms-win-core-synch-l1-2-0.dll | 17 | EnterCriticalSection | |
| api-ms-win-core-synch-l1-2-0.dll | 15 | DeleteCriticalSection | |
| api-ms-win-core-synch-l1-2-0.dll | 41 | SetEvent | |
| api-ms-win-core-synch-l1-2-0.dll | 24 | InitializeCriticalSection | |
| api-ms-win-core-synch-l1-2-0.dll | 26 | InitializeCriticalSectionEx | |
| api-ms-win-core-synch-l1-2-0.dll | 35 | ReleaseMutex | |
| api-ms-win-core-synch-l1-2-0.dll | 29 | LeaveCriticalSection | |
| api-ms-win-core-synch-l1-2-0.dll | 54 | WaitForSingleObject | |
| api-ms-win-core-synch-l1-2-0.dll | 6 | CreateEventW | |
| MFPlat.DLL | 33 | MFCreate2DMediaBuffer | |
| MFPlat.DLL | 36 | MFCreateAlignedMemoryBuffer | |
| MFPlat.DLL | 60 | MFCreateMediaExtensionActivate | |
| MFPlat.DLL | 47 | MFCreateEventQueue | |
| MFPlat.DLL | 80 | MFCreateSample | |
| MFPlat.DLL | 199 | MFTEnumEx | |
| MFPlat.DLL | 58 | MFCreateMediaEvent | |
| MFPlat.DLL | 39 | MFCreateAttributes | |
| MFPlat.DLL | 64 | MFCreateMediaType | |
| MFPlat.DLL | 67 | MFCreateMemoryBuffer | |
| MFPlat.DLL | 139 | MFGetSystemTime | |
| MFPlat.DLL | 136 | MFGetStrideForBitmapInfoHeader | |
| api-ms-win-core-com-l1-1-1.dll | 82 | StringFromGUID2 | |
| api-ms-win-core-com-l1-1-1.dll | 65 | CoTaskMemFree | |
| api-ms-win-core-com-l1-1-1.dll | 9 | CoCreateInstance | |
| api-ms-win-core-com-l1-1-1.dll | 78 | PropVariantClear | |
| api-ms-win-core-com-l1-1-1.dll | 81 | StringFromCLSID | |
| MF.dll | 78 | MFEnumDeviceSources | |
| api-ms-win-eventing-classicprovider-l1-1-0.dll | 2 | GetTraceLoggerHandle | |
| api-ms-win-eventing-classicprovider-l1-1-0.dll | 7 | UnregisterTraceGuids | |
| api-ms-win-eventing-classicprovider-l1-1-0.dll | 5 | TraceMessage | |
| api-ms-win-eventing-classicprovider-l1-1-0.dll | GetTraceEnableFlags | ||
| api-ms-win-eventing-classicprovider-l1-1-0.dll | 1 | GetTraceEnableLevel | |
| api-ms-win-eventing-classicprovider-l1-1-0.dll | 3 | RegisterTraceGuidsW | |
| api-ms-win-core-errorhandling-l1-1-1.dll | 5 | GetLastError | |
| api-ms-win-core-errorhandling-l1-1-1.dll | 15 | SetUnhandledExceptionFilter | |
| api-ms-win-core-errorhandling-l1-1-1.dll | 17 | UnhandledExceptionFilter | |
| api-ms-win-core-errorhandling-l1-1-1.dll | 7 | RaiseException | |
| api-ms-win-core-errorhandling-l1-1-1.dll | 13 | SetLastError | |
| api-ms-win-core-processthreads-l1-1-2.dll | 32 | GetStartupInfoW | |
| api-ms-win-core-processthreads-l1-1-2.dll | 77 | TerminateProcess | |
| api-ms-win-core-processthreads-l1-1-2.dll | 12 | GetCurrentProcess | |
| api-ms-win-core-processthreads-l1-1-2.dll | 47 | IsProcessorFeaturePresent | |
| api-ms-win-core-processthreads-l1-1-2.dll | 17 | GetCurrentThreadId | |
| api-ms-win-core-processthreads-l1-1-2.dll | 13 | GetCurrentProcessId | |
| api-ms-win-core-sysinfo-l1-2-1.dll | 20 | GetSystemTimeAsFileTime | |
| api-ms-win-core-sysinfo-l1-2-1.dll | 25 | GetTickCount64 | |
| api-ms-win-core-string-l1-1-0.dll | 7 | WideCharToMultiByte | |
| api-ms-win-core-libraryloader-l1-2-0.dll | 16 | GetModuleFileNameW | |
| api-ms-win-core-libraryloader-l1-2-0.dll | 20 | GetModuleHandleW | |
| api-ms-win-core-libraryloader-l1-2-0.dll | 1 | DisableThreadLibraryCalls | |
| api-ms-win-core-registry-l1-1-0.dll | 44 | RegSetValueExW | |
| api-ms-win-core-registry-l1-1-0.dll | 9 | RegDeleteTreeW | |
| api-ms-win-core-registry-l1-1-0.dll | 3 | RegCreateKeyExW | |
| api-ms-win-core-registry-l1-1-0.dll | RegCloseKey | ||
| api-ms-win-crt-stdio-l1-1-0.dll | 15 | __stdio_common_vsprintf_s | |
| api-ms-win-crt-stdio-l1-1-0.dll | __acrt_iob_func | ||
| api-ms-win-crt-stdio-l1-1-0.dll | 19 | __stdio_common_vswprintf_s | |
| api-ms-win-crt-stdio-l1-1-0.dll | 17 | __stdio_common_vswprintf | |
| api-ms-win-crt-stdio-l1-1-0.dll | 3 | __stdio_common_vfprintf | |
| api-ms-win-crt-math-l1-1-0.dll | 105 | _libm_sse2_pow_precise | |
| api-ms-win-crt-string-l1-1-0.dll | 137 | strcpy_s | |
| api-ms-win-crt-string-l1-1-0.dll | 133 | strcat_s | |
| api-ms-win-crt-string-l1-1-0.dll | 131 | memset | |
| api-ms-win-crt-string-l1-1-0.dll | 74 | _wcsicmp | |
| api-ms-win-crt-runtime-l1-1-0.dll | 30 | _crt_at_quick_exit | |
| api-ms-win-crt-runtime-l1-1-0.dll | 31 | _crt_atexit | |
| api-ms-win-crt-runtime-l1-1-0.dll | 59 | _invalid_parameter_noinfo_noreturn | |
| api-ms-win-crt-runtime-l1-1-0.dll | 36 | _execute_onexit_table | |
| api-ms-win-crt-runtime-l1-1-0.dll | 82 | _wassert | |
| api-ms-win-crt-runtime-l1-1-0.dll | 23 | _cexit | |
| api-ms-win-crt-runtime-l1-1-0.dll | 62 | _register_onexit_function | |
| api-ms-win-crt-runtime-l1-1-0.dll | 54 | _initialize_onexit_table | |
| api-ms-win-crt-runtime-l1-1-0.dll | 57 | _initterm_e | |
| api-ms-win-crt-runtime-l1-1-0.dll | 53 | _initialize_narrow_environment | |
| api-ms-win-crt-runtime-l1-1-0.dll | 87 | abort | |
| api-ms-win-crt-runtime-l1-1-0.dll | 106 | terminate | |
| api-ms-win-crt-runtime-l1-1-0.dll | 56 | _initterm | |
| api-ms-win-crt-runtime-l1-1-0.dll | 25 | _configure_narrow_argv | |
| api-ms-win-crt-runtime-l1-1-0.dll | 65 | _seh_filter_dll | |
| api-ms-win-crt-utility-l1-1-0.dll | 29 | srand | |
| api-ms-win-crt-utility-l1-1-0.dll | 27 | rand | |
| api-ms-win-core-profile-l1-1-0.dll | QueryPerformanceCounter | ||
| api-ms-win-core-interlocked-l1-2-0.dll | 6 | InterlockedFlushSList | |
| api-ms-win-core-interlocked-l1-2-0.dll | InitializeSListHead | ||
| api-ms-win-core-interlocked-l1-2-0.dll | 9 | InterlockedPushEntrySList | |
| api-ms-win-core-rtlsupport-l1-2-0.dll | 5 | RtlUnwind | |
| api-ms-win-core-fibers-l1-1-1.dll | 3 | FlsSetValue | |
| api-ms-win-core-fibers-l1-1-1.dll | 2 | FlsGetValue | |
| api-ms-win-core-fibers-l1-1-1.dll | FlsAlloc | ||
| api-ms-win-core-fibers-l1-1-1.dll | 1 | FlsFree | |
| api-ms-win-core-util-l1-1-0.dll | 4 | EncodePointer | |
| api-ms-win-crt-heap-l1-1-0.dll | 11 | _free_base | |
| api-ms-win-crt-heap-l1-1-0.dll | 25 | malloc | |
| api-ms-win-crt-heap-l1-1-0.dll | 8 | _callnewh | |
| api-ms-win-crt-heap-l1-1-0.dll | 24 | free | |
| api-ms-win-crt-heap-l1-1-0.dll | 16 | _malloc_base | |
| api-ms-win-crt-heap-l1-1-0.dll | 9 | _calloc_base | |
| api-ms-win-crt-convert-l1-1-0.dll | 81 | atol |
| ord | entry_va | function_name | |
|---|---|---|---|
| 1 | 0x10250 | DllCanUnloadNow | |
| 2 | 0x102b0 | DllGetClassObject | |
| 3 | 0x10350 | DllRegisterServer | |
| 4 | 0x10390 | DllUnregisterServer |
StringTable 040904b0
| CompanyName | Sunplus Innovation Tehnology Inc. |
| FileDescription | IR DeviceMFT |
| FileVersion | 1.0.18.33 |
| InternalName | SpITDevMft.dll |
| LegalCopyright | Copyright (C) 2015-2018 |
| OriginalFilename | SpITDevMft.dll |
| ProductName | SunplusIT IR DeviceMFT |
| ProductVersion | 1.0.18.33 |
VS_FIXEDFILEINFO
| FileVersion | 1.0.18.33 |
| ProductVersion | 1.0.18.33 |
| StrucVersion | 0x10000 |
| FileFlagsMask | 0x3f |
| FileFlags | 0 |
| FileOS | 0x40004 |
| FileType | 2 |
| FileSubtype | 0 |
Signers (1)
issuer: /C=US/O=Symantec Corporation/OU=Symantec Trust Network/CN=Symantec Class 3 Extended Validation Code Signing CA - G2
serial: 1ADF23CAA56922E36D21DAB89674B0CF
Certificates (2)
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:1a:32:cb:75:9c:97:b8:cf:ac:11:8d:d5:12:7f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=VeriSign, Inc., OU=VeriSign Trust Network, OU=(c) 2006 VeriSign, Inc. - For authorized use only, CN=VeriSign Class 3 Public Primary Certification Authority - G5
Validity
Not Before: Mar 4 00:00:00 2014 GMT
Not After : Mar 3 23:59:59 2024 GMT
Subject: C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA - G2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d0:18:02:ee:ed:a2:8d:08:58:63:0f:26:d7:dd:
22:7b:88:f6:e4:c7:ec:3b:26:18:78:d3:c7:a4:20:
53:8d:83:7c:a5:3f:7e:a5:c8:2b:47:df:0d:f5:a6:
d9:c3:1d:25:93:60:cf:7c:dc:ea:03:2c:be:78:7f:
5c:48:6d:a7:02:d9:49:f8:a1:eb:eb:9a:61:7c:9f:
c0:26:d6:dc:15:d8:b8:10:7c:20:ba:5e:f4:28:f6:
a8:ea:a7:5c:7c:c6:9c:90:90:34:3c:b6:22:ac:fe:
ba:0c:3a:1e:d6:5e:84:b6:5b:f0:a3:81:70:78:8a:
8d:46:52:7b:fc:db:49:f3:29:13:11:74:4f:8d:16:
b3:c2:e3:a0:2d:c7:03:04:9d:cc:c3:72:e1:0e:0c:
fb:02:8e:f1:26:17:7b:6e:ae:f8:b7:33:8b:a6:61:
4b:45:df:f2:25:44:c7:f7:b0:98:23:36:dc:28:79:
0a:e8:9b:72:88:a8:d8:e8:ae:7b:7f:0a:64:45:a5:
f0:57:92:9a:77:06:45:1e:eb:9f:e8:66:f3:7a:7d:
92:81:5f:00:2d:1e:b8:f6:56:13:5a:62:0d:b7:47:
a1:8f:72:ef:83:5e:82:e0:94:98:e1:ac:a5:ad:86:
37:e0:a7:d3:ba:b1:3e:7a:eb:45:a8:f1:c1:44:7d:
e2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
X509v3 CRL Distribution Points:
Full Name:
URI:http://s.symcb.com/pca3-g5.crl
X509v3 Extended Key Usage: critical
Code Signing
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
OCSP - URI:http://s.symcd.com
X509v3 Certificate Policies:
Policy: X509v3 Any Policy
CPS: https://d.symcb.com/cps
User Notice:
Explicit Text: https://d.symcb.com/rpa
X509v3 Subject Alternative Name:
DirName:/CN=SymantecPKI-1-629
X509v3 Subject Key Identifier:
16:66:DE:4A:34:E3:50:A7:11:86:03:B1:6C:A9:C6:AC:CD:59:6E:9B
X509v3 Authority Key Identifier:
7F:D3:65:A7:C2:DD:EC:BB:F0:30:09:F3:43:39:FA:02:AF:33:31:33
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
3f:5b:19:f3:fa:13:d5:75:38:2a:5a:ee:9f:5a:a0:4c:a9:1d:
c5:cc:94:ee:de:15:fe:f5:10:6e:a4:1b:a5:64:83:54:18:58:
c4:0b:28:a1:85:c3:4e:74:e5:ff:89:7c:fe:d5:ed:3c:ba:71:
9f:56:02:26:8f:16:2a:88:fe:b0:a3:27:22:ce:4b:e2:38:8e:
00:a6:3a:86:5f:9d:e5:3e:a8:de:64:49:41:74:41:21:fd:07:
c8:84:17:da:1d:65:30:82:cb:26:4f:39:d6:04:27:a4:81:b1:
4b:49:c3:23:8b:7e:02:32:18:27:b7:ab:0b:f3:18:72:b6:a4:
ee:67:06:6f:38:a6:58:8d:e0:f1:7e:5d:a4:60:c6:a8:e5:50:
5f:e0:e8:ba:e2:8f:99:58:b6:b5:a0:a8:76:f1:a2:f1:1c:88:
41:72:7e:52:97:9b:0a:36:99:8d:50:f7:01:eb:3c:e7:f0:22:
6a:e5:35:8c:63:36:8a:1a:b1:d9:67:66:5f:97:1a:ef:a8:20:
9d:f0:2f:ba:6c:ce:d9:94:85:00:f1:58:f1:7d:c9:7c:22:b5:
07:5d:02:c6:e6:0b:bf:ab:93:93:ff:27:18:8e:33:36:7e:57:
34:f1:c3:af:04:c1:84:f1:56:b3:e8:87:83:36:f8:d3:0a:31:
dc:6e:2c:6d
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:df:23:ca:a5:69:22:e3:6d:21:da:b8:96:74:b0:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Symantec Corporation, OU=Symantec Trust Network, CN=Symantec Class 3 Extended Validation Code Signing CA - G2
Validity
Not Before: Apr 25 00:00:00 2016 GMT
Not After : Apr 25 23:59:59 2019 GMT
Subject: jurisdictionC=TW/businessCategory=Private Organization/serialNumber=28112364, C=TW, ST=Taiwan, L=Hsinchu, O=SUNPLUS INNOVATION TECHNOLOGY INC., CN=SUNPLUS INNOVATION TECHNOLOGY INC.
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:bd:d7:04:c1:3a:b4:80:03:23:af:76:eb:26:dd:
6c:be:4f:fb:a9:73:93:df:0c:5f:71:07:96:8e:65:
36:2b:3b:38:1d:0c:34:97:42:3b:9b:86:d7:5b:3b:
35:51:ca:91:68:94:a6:59:95:b2:8a:b1:87:0e:9f:
9e:85:07:26:b7:3b:5a:24:14:eb:b7:be:13:08:55:
91:36:a2:28:8f:be:7c:7c:14:fc:12:b7:6d:71:db:
39:d1:50:0b:64:20:90:e6:1e:c8:f9:28:0d:b3:48:
1d:55:c4:c7:68:7c:6a:f3:4c:1f:1c:50:5f:cf:0c:
42:e9:5d:30:61:c9:5e:03:4c:34:d7:a3:3f:76:b3:
28:5e:ed:00:43:3d:0d:13:34:5a:f9:b9:89:fc:2f:
55:5b:b7:25:7e:71:55:94:d5:5e:10:64:d5:c9:57:
e6:d6:e2:a9:78:6e:c9:2a:5a:cf:20:34:9f:36:a9:
f6:ef:43:8a:23:95:46:42:af:7e:6f:3f:77:6f:17:
db:d0:8e:76:94:03:d0:20:ba:21:ef:a6:99:e8:85:
27:fc:22:8d:99:63:e8:4a:a0:51:06:f9:8e:57:d5:
a2:6e:ab:16:2f:28:87:da:59:49:31:11:a0:93:4c:
dd:6f:90:c8:3f:b2:8d:49:ea:5a:a4:2d:6d:ce:59:
42:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Alternative Name:
othername: Permanent Identifier::<unsupported>
X509v3 Basic Constraints:
CA:FALSE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:http://sw.symcb.com/sw.crl
X509v3 Certificate Policies:
Policy: 2.23.140.1.3
CPS: https://d.symcb.com/cps
User Notice:
Explicit Text: https://d.symcb.com/rpa
X509v3 Extended Key Usage: critical
Code Signing
X509v3 Authority Key Identifier:
16:66:DE:4A:34:E3:50:A7:11:86:03:B1:6C:A9:C6:AC:CD:59:6E:9B
X509v3 Subject Key Identifier:
DF:0B:69:45:4A:E1:8F:DF:3C:6D:E1:6F:66:30:A2:16:05:D6:E6:5A
Authority Information Access:
OCSP - URI:http://sw.symcd.com
CA Issuers - URI:http://sw1.symcb.com/sw.crt
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
46:f5:c8:65:9e:63:6a:4b:ed:ba:c9:83:76:d7:51:3b:0a:59:
ac:be:e2:5e:76:fd:74:09:42:6e:47:f2:bc:32:70:56:55:3c:
f6:d5:cd:f4:6e:46:fe:a4:20:de:c7:fb:be:76:e4:30:46:5e:
26:e0:47:f3:59:64:2d:de:0d:73:41:cf:8d:9d:a6:86:ef:8d:
8a:7f:01:e6:89:0b:8b:f0:a3:d6:76:e2:c2:62:90:75:ee:5e:
c7:51:95:a5:8e:8b:7f:0a:e1:17:33:b0:63:38:3d:a5:05:02:
ff:ab:c7:19:0c:16:dd:cb:15:4a:d1:a0:77:0c:9a:99:07:fa:
48:49:d9:1e:72:84:8d:f5:e4:c8:fc:7e:cb:34:c2:3d:d7:08:
aa:b3:a0:39:13:53:d2:19:b4:a5:7e:6a:2a:f5:87:82:81:01:
58:89:d2:27:31:05:1c:40:c8:ef:db:4c:41:69:e3:e5:a8:d0:
15:ba:0f:a7:b0:06:ab:c6:48:65:5b:e8:67:95:55:ef:56:6f:
69:48:8d:f0:9f:06:46:7a:88:2f:b1:79:43:8c:38:39:6a:bd:
18:9e:a1:c2:9e:f4:f2:bd:40:ce:0b:8a:71:77:6f:de:8f:cf:
4c:7b:23:dc:a0:6f:e0:96:c1:93:1e:72:e0:ad:d2:f1:17:9a:
be:3d:38:ad
undefined method `first' for #
 |
| Please donate some bucks to keep this site up and running: | |
| Ko-fi | |
|---|---|
| Yandex.Money | |
| Thank you! | |
everything is OK