home

Microsoft.DirectX.AudioVideoPlayback.dll

Microsoft DirectX for Windows

Iminent

While the file properties state the file is developed by 'Microsoft Corporation', this is not the case and it is designed just to look like a legitimate Microsoft system file. The module Microsoft.DirectX.AudioVideoPlayback.dll, “Microsoft Managed AudioVideoPlayback” by Iminent has been detected as a potentially unwanted program by 5 anti-malware scanners.
Publisher:
Microsoft Corporation  (signed by Iminent)

Product:
Microsoft® DirectX for Windows®

Description:
Microsoft Managed AudioVideoPlayback

Version:
5.04.00.2904

MD5:
c720febcbc4749e738f2fd9d1c726dc3

SHA-1:
511d9400c8a8859ff0bad216881d4593b0430f99

SHA-256:
69e237c07ce148b63e5a0b84b86970da6d72f4000d8daa264e7678566e5259ac

Scanner detections:
5 / 68

Status:
Potentially unwanted

Analysis date:
4/24/2024 11:36:39 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Bkav FE
W32.HfsAdware
1.3.0.7237

Dr.Web
Adware.Iminent.35
9.0.1.039

ESET NOD32
Win32/Toolbar.Iminent.E potentially unwanted application
10.7.0.302.0

Reason Heuristics
PUP.Sien.Iminent (M)
16.2.8.10

VIPRE Antivirus
Threat.4784938
42326

File size:
57.6 KB (58,984 bytes)

Product version:
5.04.00.2904

Copyright:
Copyright © Microsoft Corporation. All rights reserved.

Original file name:
Microsoft.DirectX.AudioVideoPlayback.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\iminent\microsoft.directx.audiovideoplayback.dll

Digital Signature
Signed by:
Iminent

Authority:
GlobalSign nv-sa

Valid from:
2/4/2014 11:29:10 AM

Valid to:
4/2/2015 5:55:45 AM

Subject:
CN=Iminent, O=Iminent, L=Paris, S=France, C=FR

Issuer:
CN=GlobalSign CodeSigning CA - G2, O=GlobalSign nv-sa, C=BE

Serial number:
11216F31C65792A5D372269806F288027171

File PE Metadata
Compilation timestamp:
7/9/2004 11:06:56 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
7.10

.NET CLR dependent:
Yes

CTPH (ssdeep):
768:lBJPuUm+QFYqG9se2k5R7vtv8+80t2TxJNdfr83A/E9t3DAsmB2O+Qr6:Ju8qYqK6k5R7O+80tKxJN983aErmrxu

Entry address:
0xCC0C

Entry point:
FF, 25, 48, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 20, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 1C, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 18, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 24, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 58, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 54, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 50, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 30, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 34, 10, 40, 00, CC, CC, CC, CC, CC, CC, FF, 25, 38, 10, 40, 00, CC, CC...
 
[+]

Entropy:
6.0015

Code size:
48.5 KB (49,664 bytes)

Remove Microsoft.DirectX.AudioVideoPlayback.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.