Ho rifatto la scansione del file e questo è il risultato completo
Antivirus Versione Ultimo aggiornamento Risultato
a-squared 4.5.0.43 2009.12.29 -
AhnLab-V3 5.0.0.2 2009.12.29 -
AntiVir 7.9.1.122 2009.12.29 -
Antiy-AVL 2.0.3.7 2009.12.29 -
Authentium 5.2.0.5 2009.12.29 -
Avast 4.8.1351.0 2009.12.29 -
AVG 8.5.0.430 2009.12.29 -
BitDefender 7.2 2009.12.29 -
CAT-QuickHeal 10.00 2009.12.29 -
ClamAV 0.94.1 2009.12.29 -
Comodo 3404 2009.12.29 -
DrWeb 5.0.1.12222 2009.12.29 -
eSafe 7.0.17.0 2009.12.28 -
eTrust-Vet 35.1.7203 2009.12.29 -
F-Prot 4.5.1.85 2009.12.28 -
F-Secure 9.0.15370.0 2009.12.29 -
Fortinet 4.0.14.0 2009.12.29 -
GData 19 2009.12.29 -
Ikarus T3.1.1.79.0 2009.12.29 -
Jiangmin 13.0.900 2009.12.29 -
K7AntiVirus 7.10.932 2009.12.28 -
Kaspersky 7.0.0.125 2009.12.29 -
McAfee 5845 2009.12.28 -
McAfee+Artemis 5845 2009.12.28 -
McAfee-GW-Edition 6.8.5 2009.12.29 -
Microsoft 1.5302 2009.12.29 -
NOD32 4725 2009.12.29 -
Norman 6.04.03 2009.12.29 -
nProtect 2009.1.8.0 2009.12.29 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.29 -
Prevx 3.0 2009.12.29 -
Rising 22.28.01.03 2009.12.29 -
Sophos 4.49.0 2009.12.29 -
Sunbelt 3.2.1858.2 2009.12.29 -
Symantec 1.4.4.12 2009.12.29 -
TheHacker 6.5.0.3.117 2009.12.29 -
TrendMicro 9.120.0.1004 2009.12.29 -
VBA32 3.12.12.1 2009.12.28 -
ViRobot 2009.12.29.2114 2009.12.29 -
VirusBuster 5.0.21.0 2009.12.28 -
Informazioni addizionali
File size: 445312 bytes
MD5...: 7a06d4f4e5558a9ce6d87d0536901d88
SHA1..: b14d37d5ba44c89bca76d4f59db7f93cd77d79f4
SHA256: be602c3d09ab684a87c0f2fa67313cef0b9817da77fab7b8c6 9dd33a37bcab2d
ssdeep: 3072:/VgUa9EcWPeWSm/5/jiqyzOYP3v06+mhXErCiTkr/Ilgz9twXLIH3IRvhpD
4K24d:/aJE/nn52qyaYfv9N4ezz34PD4Kdl
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x30f33
timedatestamp.....: 0x44e255aa (Tue Aug 15 23:15:54 2006)
machinetype.......: 0x14c (I386)
( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1c000 0x22965 0x23000 6.57 6c4bd7cd85dee49f28567e656a18f903
.rdata 0x3f000 0x3c24 0x4000 5.14 1687bcdaefd0fc0c212798b838ae28a3
.data 0x43000 0x23150 0x1e000 5.33 f6bc870575f523563db838a73f44c76e
.rsrc 0x67000 0x69d0 0x7000 4.66 ef6f99f8e1d73dd34d7ed72341d217da
.reloc 0x6e000 0x281a 0x3000 5.82 3ba4575353c26f244864320ddeaa7c00
( 11 imports )
> VERSION.dll: GetFileVersionInfoSizeW, VerQueryValueW, GetFileVersionInfoW
> KERNEL32.dll: SystemTimeToTzSpecificLocalTime, GetTimeZoneInformation, TerminateProcess, CreateProcessW, GetDriveTypeW, GetLogicalDrives, CreateThread, ResetEvent, OpenEventW, SetEvent, LoadLibraryW, CreateEventW, InitializeCriticalSection, GetFullPathNameW, GetSystemDirectoryW, WaitForMultipleObjects, GetTempPathW, GetCommandLineW, GetVersion, GetModuleFileNameW, FlushFileBuffers, LocalAlloc, SetConsoleCtrlHandler, SetEndOfFile, IsBadCodePtr, SetUnhandledExceptionFilter, SetStdHandle, GetStringTypeW, GetStringTypeA, GetVersionExA, GetUserDefaultLCID, EnumSystemLocalesA, GetLocaleInfoA, IsValidCodePage, IsValidLocale, GetCPInfo, GetModuleFileNameA, ReadFile, GetFileType, GetStdHandle, SetHandleCount, GetCommandLineA, GetEnvironmentStrings, GetEnvironmentStringsW, FreeEnvironmentStringsW, FreeEnvironmentStringsA, UnhandledExceptionFilter, SystemTimeToFileTime, GetCurrentThread, TlsGetValue, TlsFree, TlsAlloc, TlsSetValue, GetCurrentThreadId, IsBadWritePtr, VirtualAlloc, VirtualFree, HeapCreate, HeapDestroy, LCMapStringW, LCMapStringA, FatalAppExitA, DeleteCriticalSection, ExitProcess, GetStartupInfoW, GetModuleHandleA, WideCharToMultiByte, RtlUnwind, HeapFree, HeapAlloc, HeapReAlloc, LoadLibraryA, FindFirstFileW, FindNextFileW, FindClose, CompareFileTime, FileTimeToLocalFileTime, SetEnvironmentVariableA, lstrlenW, CreateFileMappingW, MapViewOfFile, GetFileSize, UnmapViewOfFile, GetTickCount, VirtualProtect, IsBadReadPtr, GetCurrentDirectoryW, GetOEMCP, DeviceIoControl, SetFileAttributesW, DeleteFileW, CopyFileW, InterlockedIncrement, InterlockedDecrement, WaitForSingleObject, EnterCriticalSection, LeaveCriticalSection, WriteFile, MultiByteToWideChar, DosDateTimeToFileTime, LocalFileTimeToFileTime, FileTimeToSystemTime, GetDateFormatW, GetTimeFormatW, GetLocaleInfoW, GlobalAlloc, GlobalLock, GlobalUnlock, GetFileAttributesW, LocalFree, FormatMessageW, Sleep, HeapSize, DebugBreak, GetModuleHandleW, GetProcAddress, InterlockedExchange, SetLastError, CreateFileW, FindResourceW, LoadResource, SizeofResource, LockResource, GetCurrentProcess, CloseHandle, GetVersionExW, CreateFileA, SetFilePointer, GetLastError, CompareStringA, CompareStringW, GetACP, GetStartupInfoA, RaiseException
> USER32.dll: EndPaint, BeginPaint, PtInRect, IsZoomed, CallWindowProcW, DrawFrameControl, CreateDialogParamW, UnionRect, OffsetRect, GetSystemMetrics, EndDeferWindowPos, EnumChildWindows, BeginDeferWindowPos, GetPropW, DeferWindowPos, GetClassNameW, SetWindowPlacement, UpdateWindow, LoadAcceleratorsW, GetMessageW, TranslateAcceleratorW, ScreenToClient, DrawTextW, GetWindowTextW, wsprintfW, IsDialogMessageW, TranslateMessage, DispatchMessageW, DialogBoxIndirectParamW, GetWindowLongW, SetWindowLongW, SetFocus, GetMenu, CheckMenuItem, GetWindowPlacement, GetDlgItemTextW, SetTimer, EnableWindow, DialogBoxParamW, KillTimer, DefWindowProcW, MsgWaitForMultipleObjects, LoadIconW, SetWindowTextW, DestroyIcon, PostQuitMessage, SetDlgItemTextW, IsWindowEnabled, CheckDlgButton, IsDlgButtonChecked, RegisterClassExW, ShowWindow, MapWindowPoints, CreateWindowExW, SetCapture, ReleaseCapture, EndDialog, GetParent, GetWindowRect, MoveWindow, GetDlgItem, LoadCursorW, GetSysColorBrush, GetSysColor, ChildWindowFromPoint, InvalidateRect, SetCursor, OpenClipboard, EmptyClipboard, SendMessageW, SetClipboardData, CloseClipboard, LoadStringW, PostMessageW, MessageBoxW, InflateRect, SetPropW, GetClientRect
> GDI32.dll: EndDoc, GetStockObject, GetObjectW, EndPage, SetBkMode, SetTextColor, SelectObject, StartPage, StartDocW, SetMapMode, CreateFontIndirectW, GetDeviceCaps
> comdlg32.dll: GetSaveFileNameW, PrintDlgW
> ADVAPI32.dll: RegQueryInfoKeyW, GetSecurityDescriptorLength, MakeAbsoluteSD, MakeSelfRelativeSD, RegOpenKeyExW, RegQueryValueW, RegConnectRegistryW, RegEnumKeyExW, RegCreateKeyExW, RegCreateKeyW, RegSetValueExW, RegCloseKey, RegDeleteKeyW, OpenProcessToken, LookupPrivilegeValueW, AdjustTokenPrivileges, RegQueryValueExA, RegOpenKeyExA, RegQueryValueExW, RegGetKeySecurity, IsValidSecurityDescriptor, CloseServiceHandle, DeleteService, QueryServiceStatus, ControlService, OpenServiceW, OpenSCManagerW, StartServiceW, CreateServiceW, SetServiceStatus, RegEnumKeyW, RegDeleteValueW, FreeSid, EqualSid, GetTokenInformation, AllocateAndInitializeSid, RegisterServiceCtrlHandlerW, StartServiceCtrlDispatcherW, RegEnumValueW
> SHELL32.dll: CommandLineToArgvW, ShellExecuteW, ExtractIconExW
> ole32.dll: CreateBindCtx
> OLEAUT32.dll: -, -, -, -, -, -, -, -, -, -, -
> COMCTL32.dll: ImageList_Create, ImageList_ReplaceIcon, PropertySheetW, -
> MPR.dll: WNetEnumResourceW, WNetOpenEnumW, WNetCloseEnum
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
sigcheck:
publisher....: Sysinternals - www.sysinternals.com
copyright....: Copyright (C) 2005-2006 Bryce Cogswell and Mark Russinovich
product......: Sysinternals Rootkitrevealer
description..: Rootkit detection utility
original name:
internal name:
file version.: 1.70
comments.....:
signers......: -
signing date.: -
verified.....: Unsigned
Rispondi quotando