home

peer.dll

PPVA kernel module

PPLive Corporation

Publisher:
Synacast  (signed by PPLive Corporation)

Product:
PPVA kernel module

Description:
PP加速器核心特性支持模块

Version:
2, 3, 0, 2690

MD5:
cd15dc10d816a19245b898ed9816b6f3

SHA-1:
c81c778fcc35d3b31bf0525ff0861b125af2c2a4

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
4/25/2024 7:53:25 AM UTC  (today)

File size:
2.5 MB (2,662,760 bytes)

Product version:
2, 3, 0, 2690

Copyright:
Copyright (C) 2008 Synacast Corporation.

Original file name:
peer.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\common files\pplivenetwork\1.0.1.0525\kernel\peer.dll

Digital Signature
Signed by:
PPLive Corporation

Authority:
VeriSign, Inc.

Valid from:
11/19/2009 7:00:00 AM

Valid to:
11/19/2012 6:59:59 AM

Subject:
CN=PPLive Corporation, OU=Product Planning Dept., OU=Digital ID Class 3 - Microsoft Software Validation v2, O=PPLive Corporation, L=Shanghai, S=Shanghai, C=CN

Issuer:
CN=VeriSign Class 3 Code Signing 2009-2 CA, OU=Terms of use at https://www.verisign.com/rpa (c)09, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
6D527F4D7D6C1A2BA7EF81D50C89D765

File PE Metadata
Compilation timestamp:
2/24/2012 4:48:53 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
49152:7q7eOiaGJX229/6i9hCHJUMJrbnZRGZVZXml932mTIiFEteiTR8Y7Es:7q6as2e/6sAHWirbZAZVZXk932IEtj

Entry address:
0x1933BD

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, E6, CB, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 56, 8B, 75, 08, 85, F6, 7C, 09, E8, 57, CC, 00, 00, 3B, 30, 7C, 07, E8, 4E, CC, 00, 00, 8B, 30, E8, 4D, CC, 00, 00, 8B, 04, B0, 5E, 5D, C3, 8B, FF, 55, 8B, EC, 53, 56, E8, 5F, 70, 00, 00, 8B, F0, 33, DB, 3B, F3, 75, 07, B8, D0, 17, 1F, 10, EB, 4D, 57, BF, 86, 00, 00, 00, 39, 5E, 24, 75, 18, 6A, 01, 57, E8, A4, 4D, 00, 00, 59, 59, 89, 46, 24, 3B, C3...
 
[+]

Entropy:
6.5092

Code size:
1.9 MB (2,010,624 bytes)

Scan peer.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.