Sécurité
Résolu/Fermé
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
-
2 mai 2009 à 14:25
Utilisateur anonyme - 5 juin 2009 à 14:06
Utilisateur anonyme - 5 juin 2009 à 14:06
629 réponses
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:19
4 mai 2009 à 22:19
1er
Fichier SktBt2k.sys reçu le 2009.05.04 22:17:46 (CET)
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.04 -
AhnLab-V3 5.0.0.2 2009.05.04 -
AntiVir 7.9.0.160 2009.05.04 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.04 -
CAT-QuickHeal 10.00 2009.05.04 -
ClamAV 0.94.1 2009.05.04 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.04 -
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6488 2009.05.04 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.04 -
Fortinet 3.117.0.0 2009.05.04 -
GData 19 2009.05.04 -
Ikarus T3.1.1.49.0 2009.05.04 -
K7AntiVirus 7.10.723 2009.05.04 -
Kaspersky 7.0.0.125 2009.05.04 -
McAfee 5605 2009.05.04 -
McAfee+Artemis 5605 2009.05.04 -
McAfee-GW-Edition 6.7.6 2009.05.04 -
Microsoft 1.4602 2009.05.04 -
NOD32 4052 2009.05.04 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.04 -
Rising 21.28.04.00 2009.05.04 -
Sophos 4.41.0 2009.05.04 -
Sunbelt 3.2.1858.2 2009.05.04 -
Symantec 1.4.4.12 2009.05.04 -
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.04 -
VBA32 3.12.10.4 2009.05.04 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -
Information additionnelle
File size: 48556 bytes
MD5...: 42a39aa7ed51616e36adb5abddf8349b
SHA1..: 700041c65fb3a759c565b4a5028670ef575d8c4c
SHA256: 4f7b7d33afb9b7d6d611e3d5270b527784892b9a2ab52c55ab4e9122dd603424
SHA512: 05f81fa19c53d6cf7a51f13e87a47d75c50a5e7a60d99af3cef999c8fd252e53<br>c616bc1fe721c994406ee6dc19f47374e3196c4819ef4bdf0b6add3cb913bfc7
ssdeep: 768:35PEAW+zAT+SAfdCKDjp2QAl6zGPkcLer8mYrTl:p8/TCM41ANXrrTl<br>
PEiD..: -
TrID..: File type identification<br>Win64 Executable Generic (95.5%)<br>Generic Win/DOS Executable (2.2%)<br>DOS Executable Generic (2.2%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa480<br>timedatestamp.....: 0x4060814c (Tue Mar 23 18:26:20 2004)<br>machinetype.......: 0x14c (I386)<br><br>( 8 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x320 0x28a2 0x28c0 6.03 37101500c58d6cd043ad629a7dc6c9a3<br>.data 0x2be0 0x104 0x120 2.50 a175845ce2cf0eb6f686374b42a1e646<br>PAGESRP0 0x2d00 0x36bc 0x36c0 6.12 464d071c62d94d8ac954f1884ff0a961<br>PAGESER 0x63c0 0x3dd7 0x3de0 6.23 d2475125539e273f1513bbee0dcc2e11<br>PAGESPR0 0xa1a0 0x2c6 0x2e0 5.88 e9fbe7f70ce668ebe76055f292cda1c2<br>INIT 0xa480 0xd20 0xd20 5.80 f17c518db330bc19d816bdc58ee4eee2<br>.rsrc 0xb1a0 0x490 0x4a0 3.28 ad02a498304589ce9c70d8890a3df5e6<br>.reloc 0xb640 0x6ec 0x700 6.26 5e86356a3398d8d1ba9c3eb2f99e992d<br><br>( 4 imports ) <br>> NTOSKRNL.EXE: PoSetPowerState, IoDeleteDevice, ExFreePool, KeInitializeEvent, IoCreateDevice, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, InterlockedExchange, RtlCopyUnicodeString, ExAllocatePoolWithTag, IoConnectInterrupt, KeSynchronizeExecution, IoOpenDeviceRegistryKey, WRITE_REGISTER_UCHAR, READ_REGISTER_UCHAR, RtlAppendUnicodeStringToString, RtlInitUnicodeString, MmUnmapIoSpace, KeInitializeDpc, RtlIntegerToUnicodeString, ZwClose, RtlDeleteRegistryValue, IoDeleteSymbolicLink, IoSetDeviceInterfaceState, IoRegisterDeviceInterface, RtlWriteRegistryValue, IoCreateSymbolicLink, RtlAppendUnicodeToString, wcslen, KeInitializeTimer, IoDetachDevice, InterlockedDecrement, KeRemoveQueueDpc, IofCompleteRequest, KeWaitForSingleObject, IofCallDriver, IoBuildSynchronousFsdRequest, MmUnlockPagableImageSection, DbgBreakPoint, MmLockPagableDataSection, ExAllocatePoolWithQuotaTag, IoCancelIrp, KeInsertQueueDpc, InterlockedIncrement, RtlQueryRegistryValues, MmQuerySystemSize, KeInitializeSpinLock, MmMapIoSpace, KeDelayExecutionThread, IoAttachDeviceToDeviceStack, PoRequestPowerIrp, PoStartNextPowerIrp, PoCallDriver, KeClearEvent, KeSetEvent, KeQuerySystemTime, memmove, ZwQueryValueKey, ZwSetValueKey, KeSetTimer, KeCancelTimer, IoWriteErrorLogEntry, IoAllocateErrorLogEntry, IoInvalidateDeviceState, IoWMIRegistrationControl, IoDisconnectInterrupt, RtlUnwind<br>> HAL.DLL: ExAcquireFastMutex, ExReleaseFastMutex, READ_PORT_UCHAR, WRITE_PORT_UCHAR, KfReleaseSpinLock, KfAcquireSpinLock<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br>> ntoskrnl.exe: MmLockPagableSectionByHandle, IoGetConfigurationInformation<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=42a39aa7ed51616e36adb5abddf8349b' target='_blank'>http://research.sunbelt-software.com/...
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.04 -
AhnLab-V3 5.0.0.2 2009.05.04 -
AntiVir 7.9.0.160 2009.05.04 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.04 -
CAT-QuickHeal 10.00 2009.05.04 -
ClamAV 0.94.1 2009.05.04 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.04 -
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6488 2009.05.04 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.04 -
Fortinet 3.117.0.0 2009.05.04 -
GData 19 2009.05.04 -
Ikarus T3.1.1.49.0 2009.05.04 -
K7AntiVirus 7.10.723 2009.05.04 -
Kaspersky 7.0.0.125 2009.05.04 -
McAfee 5605 2009.05.04 -
McAfee+Artemis 5605 2009.05.04 -
McAfee-GW-Edition 6.7.6 2009.05.04 -
Microsoft 1.4602 2009.05.04 -
NOD32 4052 2009.05.04 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.04 -
Rising 21.28.04.00 2009.05.04 -
Sophos 4.41.0 2009.05.04 -
Sunbelt 3.2.1858.2 2009.05.04 -
Symantec 1.4.4.12 2009.05.04 -
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.04 -
VBA32 3.12.10.4 2009.05.04 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -
Information additionnelle
File size: 48556 bytes
MD5...: 42a39aa7ed51616e36adb5abddf8349b
SHA1..: 700041c65fb3a759c565b4a5028670ef575d8c4c
SHA256: 4f7b7d33afb9b7d6d611e3d5270b527784892b9a2ab52c55ab4e9122dd603424
SHA512: 05f81fa19c53d6cf7a51f13e87a47d75c50a5e7a60d99af3cef999c8fd252e53<br>c616bc1fe721c994406ee6dc19f47374e3196c4819ef4bdf0b6add3cb913bfc7
ssdeep: 768:35PEAW+zAT+SAfdCKDjp2QAl6zGPkcLer8mYrTl:p8/TCM41ANXrrTl<br>
PEiD..: -
TrID..: File type identification<br>Win64 Executable Generic (95.5%)<br>Generic Win/DOS Executable (2.2%)<br>DOS Executable Generic (2.2%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa480<br>timedatestamp.....: 0x4060814c (Tue Mar 23 18:26:20 2004)<br>machinetype.......: 0x14c (I386)<br><br>( 8 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x320 0x28a2 0x28c0 6.03 37101500c58d6cd043ad629a7dc6c9a3<br>.data 0x2be0 0x104 0x120 2.50 a175845ce2cf0eb6f686374b42a1e646<br>PAGESRP0 0x2d00 0x36bc 0x36c0 6.12 464d071c62d94d8ac954f1884ff0a961<br>PAGESER 0x63c0 0x3dd7 0x3de0 6.23 d2475125539e273f1513bbee0dcc2e11<br>PAGESPR0 0xa1a0 0x2c6 0x2e0 5.88 e9fbe7f70ce668ebe76055f292cda1c2<br>INIT 0xa480 0xd20 0xd20 5.80 f17c518db330bc19d816bdc58ee4eee2<br>.rsrc 0xb1a0 0x490 0x4a0 3.28 ad02a498304589ce9c70d8890a3df5e6<br>.reloc 0xb640 0x6ec 0x700 6.26 5e86356a3398d8d1ba9c3eb2f99e992d<br><br>( 4 imports ) <br>> NTOSKRNL.EXE: PoSetPowerState, IoDeleteDevice, ExFreePool, KeInitializeEvent, IoCreateDevice, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, InterlockedExchange, RtlCopyUnicodeString, ExAllocatePoolWithTag, IoConnectInterrupt, KeSynchronizeExecution, IoOpenDeviceRegistryKey, WRITE_REGISTER_UCHAR, READ_REGISTER_UCHAR, RtlAppendUnicodeStringToString, RtlInitUnicodeString, MmUnmapIoSpace, KeInitializeDpc, RtlIntegerToUnicodeString, ZwClose, RtlDeleteRegistryValue, IoDeleteSymbolicLink, IoSetDeviceInterfaceState, IoRegisterDeviceInterface, RtlWriteRegistryValue, IoCreateSymbolicLink, RtlAppendUnicodeToString, wcslen, KeInitializeTimer, IoDetachDevice, InterlockedDecrement, KeRemoveQueueDpc, IofCompleteRequest, KeWaitForSingleObject, IofCallDriver, IoBuildSynchronousFsdRequest, MmUnlockPagableImageSection, DbgBreakPoint, MmLockPagableDataSection, ExAllocatePoolWithQuotaTag, IoCancelIrp, KeInsertQueueDpc, InterlockedIncrement, RtlQueryRegistryValues, MmQuerySystemSize, KeInitializeSpinLock, MmMapIoSpace, KeDelayExecutionThread, IoAttachDeviceToDeviceStack, PoRequestPowerIrp, PoStartNextPowerIrp, PoCallDriver, KeClearEvent, KeSetEvent, KeQuerySystemTime, memmove, ZwQueryValueKey, ZwSetValueKey, KeSetTimer, KeCancelTimer, IoWriteErrorLogEntry, IoAllocateErrorLogEntry, IoInvalidateDeviceState, IoWMIRegistrationControl, IoDisconnectInterrupt, RtlUnwind<br>> HAL.DLL: ExAcquireFastMutex, ExReleaseFastMutex, READ_PORT_UCHAR, WRITE_PORT_UCHAR, KfReleaseSpinLock, KfAcquireSpinLock<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br>> ntoskrnl.exe: MmLockPagableSectionByHandle, IoGetConfigurationInformation<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=42a39aa7ed51616e36adb5abddf8349b' target='_blank'>http://research.sunbelt-software.com/...
Fichier SktBt2k.sys reçu le 2009.05.04 22:17:46 (CET)
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.04 -
AhnLab-V3 5.0.0.2 2009.05.04 -
AntiVir 7.9.0.160 2009.05.04 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.04 -
CAT-QuickHeal 10.00 2009.05.04 -
ClamAV 0.94.1 2009.05.04 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.04 -
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6488 2009.05.04 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.04 -
Fortinet 3.117.0.0 2009.05.04 -
GData 19 2009.05.04 -
Ikarus T3.1.1.49.0 2009.05.04 -
K7AntiVirus 7.10.723 2009.05.04 -
Kaspersky 7.0.0.125 2009.05.04 -
McAfee 5605 2009.05.04 -
McAfee+Artemis 5605 2009.05.04 -
McAfee-GW-Edition 6.7.6 2009.05.04 -
Microsoft 1.4602 2009.05.04 -
NOD32 4052 2009.05.04 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.04 -
Rising 21.28.04.00 2009.05.04 -
Sophos 4.41.0 2009.05.04 -
Sunbelt 3.2.1858.2 2009.05.04 -
Symantec 1.4.4.12 2009.05.04 -
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.04 -
VBA32 3.12.10.4 2009.05.04 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -
Information additionnelle
File size: 48556 bytes
MD5...: 42a39aa7ed51616e36adb5abddf8349b
SHA1..: 700041c65fb3a759c565b4a5028670ef575d8c4c
SHA256: 4f7b7d33afb9b7d6d611e3d5270b527784892b9a2ab52c55ab4e9122dd603424
SHA512: 05f81fa19c53d6cf7a51f13e87a47d75c50a5e7a60d99af3cef999c8fd252e53<br>c616bc1fe721c994406ee6dc19f47374e3196c4819ef4bdf0b6add3cb913bfc7
ssdeep: 768:35PEAW+zAT+SAfdCKDjp2QAl6zGPkcLer8mYrTl:p8/TCM41ANXrrTl<br>
PEiD..: -
TrID..: File type identification<br>Win64 Executable Generic (95.5%)<br>Generic Win/DOS Executable (2.2%)<br>DOS Executable Generic (2.2%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa480<br>timedatestamp.....: 0x4060814c (Tue Mar 23 18:26:20 2004)<br>machinetype.......: 0x14c (I386)<br><br>( 8 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x320 0x28a2 0x28c0 6.03 37101500c58d6cd043ad629a7dc6c9a3<br>.data 0x2be0 0x104 0x120 2.50 a175845ce2cf0eb6f686374b42a1e646<br>PAGESRP0 0x2d00 0x36bc 0x36c0 6.12 464d071c62d94d8ac954f1884ff0a961<br>PAGESER 0x63c0 0x3dd7 0x3de0 6.23 d2475125539e273f1513bbee0dcc2e11<br>PAGESPR0 0xa1a0 0x2c6 0x2e0 5.88 e9fbe7f70ce668ebe76055f292cda1c2<br>INIT 0xa480 0xd20 0xd20 5.80 f17c518db330bc19d816bdc58ee4eee2<br>.rsrc 0xb1a0 0x490 0x4a0 3.28 ad02a498304589ce9c70d8890a3df5e6<br>.reloc 0xb640 0x6ec 0x700 6.26 5e86356a3398d8d1ba9c3eb2f99e992d<br><br>( 4 imports ) <br>> NTOSKRNL.EXE: PoSetPowerState, IoDeleteDevice, ExFreePool, KeInitializeEvent, IoCreateDevice, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, InterlockedExchange, RtlCopyUnicodeString, ExAllocatePoolWithTag, IoConnectInterrupt, KeSynchronizeExecution, IoOpenDeviceRegistryKey, WRITE_REGISTER_UCHAR, READ_REGISTER_UCHAR, RtlAppendUnicodeStringToString, RtlInitUnicodeString, MmUnmapIoSpace, KeInitializeDpc, RtlIntegerToUnicodeString, ZwClose, RtlDeleteRegistryValue, IoDeleteSymbolicLink, IoSetDeviceInterfaceState, IoRegisterDeviceInterface, RtlWriteRegistryValue, IoCreateSymbolicLink, RtlAppendUnicodeToString, wcslen, KeInitializeTimer, IoDetachDevice, InterlockedDecrement, KeRemoveQueueDpc, IofCompleteRequest, KeWaitForSingleObject, IofCallDriver, IoBuildSynchronousFsdRequest, MmUnlockPagableImageSection, DbgBreakPoint, MmLockPagableDataSection, ExAllocatePoolWithQuotaTag, IoCancelIrp, KeInsertQueueDpc, InterlockedIncrement, RtlQueryRegistryValues, MmQuerySystemSize, KeInitializeSpinLock, MmMapIoSpace, KeDelayExecutionThread, IoAttachDeviceToDeviceStack, PoRequestPowerIrp, PoStartNextPowerIrp, PoCallDriver, KeClearEvent, KeSetEvent, KeQuerySystemTime, memmove, ZwQueryValueKey, ZwSetValueKey, KeSetTimer, KeCancelTimer, IoWriteErrorLogEntry, IoAllocateErrorLogEntry, IoInvalidateDeviceState, IoWMIRegistrationControl, IoDisconnectInterrupt, RtlUnwind<br>> HAL.DLL: ExAcquireFastMutex, ExReleaseFastMutex, READ_PORT_UCHAR, WRITE_PORT_UCHAR, KfReleaseSpinLock, KfAcquireSpinLock<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br>> ntoskrnl.exe: MmLockPagableSectionByHandle, IoGetConfigurationInformation<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=42a39aa7ed51616e36adb5abddf8349b' target='_blank'>http://research.sunbelt-software.com/...
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.05.04 -
AhnLab-V3 5.0.0.2 2009.05.04 -
AntiVir 7.9.0.160 2009.05.04 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.04 -
CAT-QuickHeal 10.00 2009.05.04 -
ClamAV 0.94.1 2009.05.04 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.04 -
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6488 2009.05.04 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.04 -
Fortinet 3.117.0.0 2009.05.04 -
GData 19 2009.05.04 -
Ikarus T3.1.1.49.0 2009.05.04 -
K7AntiVirus 7.10.723 2009.05.04 -
Kaspersky 7.0.0.125 2009.05.04 -
McAfee 5605 2009.05.04 -
McAfee+Artemis 5605 2009.05.04 -
McAfee-GW-Edition 6.7.6 2009.05.04 -
Microsoft 1.4602 2009.05.04 -
NOD32 4052 2009.05.04 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.04 -
Rising 21.28.04.00 2009.05.04 -
Sophos 4.41.0 2009.05.04 -
Sunbelt 3.2.1858.2 2009.05.04 -
Symantec 1.4.4.12 2009.05.04 -
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.04 -
VBA32 3.12.10.4 2009.05.04 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -
Information additionnelle
File size: 48556 bytes
MD5...: 42a39aa7ed51616e36adb5abddf8349b
SHA1..: 700041c65fb3a759c565b4a5028670ef575d8c4c
SHA256: 4f7b7d33afb9b7d6d611e3d5270b527784892b9a2ab52c55ab4e9122dd603424
SHA512: 05f81fa19c53d6cf7a51f13e87a47d75c50a5e7a60d99af3cef999c8fd252e53<br>c616bc1fe721c994406ee6dc19f47374e3196c4819ef4bdf0b6add3cb913bfc7
ssdeep: 768:35PEAW+zAT+SAfdCKDjp2QAl6zGPkcLer8mYrTl:p8/TCM41ANXrrTl<br>
PEiD..: -
TrID..: File type identification<br>Win64 Executable Generic (95.5%)<br>Generic Win/DOS Executable (2.2%)<br>DOS Executable Generic (2.2%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa480<br>timedatestamp.....: 0x4060814c (Tue Mar 23 18:26:20 2004)<br>machinetype.......: 0x14c (I386)<br><br>( 8 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x320 0x28a2 0x28c0 6.03 37101500c58d6cd043ad629a7dc6c9a3<br>.data 0x2be0 0x104 0x120 2.50 a175845ce2cf0eb6f686374b42a1e646<br>PAGESRP0 0x2d00 0x36bc 0x36c0 6.12 464d071c62d94d8ac954f1884ff0a961<br>PAGESER 0x63c0 0x3dd7 0x3de0 6.23 d2475125539e273f1513bbee0dcc2e11<br>PAGESPR0 0xa1a0 0x2c6 0x2e0 5.88 e9fbe7f70ce668ebe76055f292cda1c2<br>INIT 0xa480 0xd20 0xd20 5.80 f17c518db330bc19d816bdc58ee4eee2<br>.rsrc 0xb1a0 0x490 0x4a0 3.28 ad02a498304589ce9c70d8890a3df5e6<br>.reloc 0xb640 0x6ec 0x700 6.26 5e86356a3398d8d1ba9c3eb2f99e992d<br><br>( 4 imports ) <br>> NTOSKRNL.EXE: PoSetPowerState, IoDeleteDevice, ExFreePool, KeInitializeEvent, IoCreateDevice, IoReleaseCancelSpinLock, IoAcquireCancelSpinLock, InterlockedExchange, RtlCopyUnicodeString, ExAllocatePoolWithTag, IoConnectInterrupt, KeSynchronizeExecution, IoOpenDeviceRegistryKey, WRITE_REGISTER_UCHAR, READ_REGISTER_UCHAR, RtlAppendUnicodeStringToString, RtlInitUnicodeString, MmUnmapIoSpace, KeInitializeDpc, RtlIntegerToUnicodeString, ZwClose, RtlDeleteRegistryValue, IoDeleteSymbolicLink, IoSetDeviceInterfaceState, IoRegisterDeviceInterface, RtlWriteRegistryValue, IoCreateSymbolicLink, RtlAppendUnicodeToString, wcslen, KeInitializeTimer, IoDetachDevice, InterlockedDecrement, KeRemoveQueueDpc, IofCompleteRequest, KeWaitForSingleObject, IofCallDriver, IoBuildSynchronousFsdRequest, MmUnlockPagableImageSection, DbgBreakPoint, MmLockPagableDataSection, ExAllocatePoolWithQuotaTag, IoCancelIrp, KeInsertQueueDpc, InterlockedIncrement, RtlQueryRegistryValues, MmQuerySystemSize, KeInitializeSpinLock, MmMapIoSpace, KeDelayExecutionThread, IoAttachDeviceToDeviceStack, PoRequestPowerIrp, PoStartNextPowerIrp, PoCallDriver, KeClearEvent, KeSetEvent, KeQuerySystemTime, memmove, ZwQueryValueKey, ZwSetValueKey, KeSetTimer, KeCancelTimer, IoWriteErrorLogEntry, IoAllocateErrorLogEntry, IoInvalidateDeviceState, IoWMIRegistrationControl, IoDisconnectInterrupt, RtlUnwind<br>> HAL.DLL: ExAcquireFastMutex, ExReleaseFastMutex, READ_PORT_UCHAR, WRITE_PORT_UCHAR, KfReleaseSpinLock, KfAcquireSpinLock<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br>> ntoskrnl.exe: MmLockPagableSectionByHandle, IoGetConfigurationInformation<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=42a39aa7ed51616e36adb5abddf8349b' target='_blank'>http://research.sunbelt-software.com/...
Utilisateur anonyme
4 mai 2009 à 22:23
4 mai 2009 à 22:23
MSKSSRV.sys
MSPCLOCK.sys
MSPQM.sys
fais en autant avec ceux-ci ..?
MSPCLOCK.sys
MSPQM.sys
fais en autant avec ceux-ci ..?
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:26
4 mai 2009 à 22:26
Fichier MSKSSRV.sys reçu le 2009.04.17 22:23:12 (CET)
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.17 -
AhnLab-V3 5.0.0.2 2009.04.17 -
AntiVir 7.9.0.143 2009.04.17 -
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.17 -
Avast 4.8.1335.0 2009.04.17 -
AVG 8.5.0.287 2009.04.17 -
BitDefender 7.2 2009.04.17 -
CAT-QuickHeal 10.00 2009.04.17 -
ClamAV 0.94.1 2009.04.17 -
Comodo 1117 2009.04.17 -
DrWeb 4.44.0.09170 2009.04.17 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.17 -
Fortinet 3.117.0.0 2009.04.17 -
GData 19 2009.04.17 -
Ikarus T3.1.1.49.0 2009.04.17 -
K7AntiVirus 7.10.707 2009.04.17 -
Kaspersky 7.0.0.125 2009.04.17 -
McAfee 5587 2009.04.17 -
McAfee+Artemis 5587 2009.04.17 -
McAfee-GW-Edition 6.7.6 2009.04.17 -
Microsoft 1.4502 2009.04.17 -
NOD32 4017 2009.04.17 -
nProtect 2009.1.8.0 2009.04.17 -
Panda 10.0.0.14 2009.04.17 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.17 -
Rising 21.25.44.00 2009.04.17 -
Sophos 4.40.0 2009.04.17 -
Sunbelt 3.2.1858.2 2009.04.17 -
Symantec 1.4.4.12 2009.04.17 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.17.1698 2009.04.17 -
VirusBuster 4.6.5.0 2009.04.17 -
Information additionnelle
File size: 7552 bytes
MD5...: d1575e71568f4d9e14ca56b7b0453bf1
SHA1..: 9b5514c00e297a0752e489931d46f74ae12cd9a7
SHA256: 4abe0e24786c0d39fa2b885447e56204ca6942fb175e534dce675d7bcf0b176a
SHA512: 01da8d8f6bab6ce260f8e8a97bc9ae279b1e2733e74e667bb067ba903d747736<br>12d85bab8c366ca95d616682fbc1dd08999ef4382f693f2b6e440ee472218fcd
ssdeep: 192:bOEr0Zn6IM+ao9OAG4ylUGn/ixHOLr/TUq5bymA6WY/JWS:L06R+rUAG4CZn<br>o6Tz5WZ6WY/JW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x1365<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x16a 0x180 5.44 ac7eb4ad20e4de9cde1dbb4a1660281b<br>.data 0x480 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x500 0xde0 0xe00 6.15 8fdde6f4684ab5684640685157f556fa<br>INIT 0x1300 0x48a 0x500 5.11 05aff1efd7e12dd8cd775b28289d5a74<br>.rsrc 0x1800 0x3e0 0x400 3.33 81392fc42fa8054315658b5991ba3658<br>.reloc 0x1c00 0x11a 0x180 3.95 082bcdfae0c6f4f19584a1b3087fbf54<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, ExFreePool, ExAllocatePoolWithTag, memmove, RtlCompareMemory, ObfDereferenceObject, ZwSetValueKey, ZwClose, ObReferenceObjectByHandle, IoFileObjectType, IoCreateFile, ZwQueryValueKey, IoOpenDeviceInterfaceRegistryKey, RtlInitUnicodeString, IofCompleteRequest, KeTickCount, KeBugCheckEx<br>> ks.sys: KsQueryDevicePnpObject, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSynchronousIoControlDevice, KsCacheMedium, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.17 -
AhnLab-V3 5.0.0.2 2009.04.17 -
AntiVir 7.9.0.143 2009.04.17 -
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.17 -
Avast 4.8.1335.0 2009.04.17 -
AVG 8.5.0.287 2009.04.17 -
BitDefender 7.2 2009.04.17 -
CAT-QuickHeal 10.00 2009.04.17 -
ClamAV 0.94.1 2009.04.17 -
Comodo 1117 2009.04.17 -
DrWeb 4.44.0.09170 2009.04.17 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.17 -
Fortinet 3.117.0.0 2009.04.17 -
GData 19 2009.04.17 -
Ikarus T3.1.1.49.0 2009.04.17 -
K7AntiVirus 7.10.707 2009.04.17 -
Kaspersky 7.0.0.125 2009.04.17 -
McAfee 5587 2009.04.17 -
McAfee+Artemis 5587 2009.04.17 -
McAfee-GW-Edition 6.7.6 2009.04.17 -
Microsoft 1.4502 2009.04.17 -
NOD32 4017 2009.04.17 -
nProtect 2009.1.8.0 2009.04.17 -
Panda 10.0.0.14 2009.04.17 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.17 -
Rising 21.25.44.00 2009.04.17 -
Sophos 4.40.0 2009.04.17 -
Sunbelt 3.2.1858.2 2009.04.17 -
Symantec 1.4.4.12 2009.04.17 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.17.1698 2009.04.17 -
VirusBuster 4.6.5.0 2009.04.17 -
Information additionnelle
File size: 7552 bytes
MD5...: d1575e71568f4d9e14ca56b7b0453bf1
SHA1..: 9b5514c00e297a0752e489931d46f74ae12cd9a7
SHA256: 4abe0e24786c0d39fa2b885447e56204ca6942fb175e534dce675d7bcf0b176a
SHA512: 01da8d8f6bab6ce260f8e8a97bc9ae279b1e2733e74e667bb067ba903d747736<br>12d85bab8c366ca95d616682fbc1dd08999ef4382f693f2b6e440ee472218fcd
ssdeep: 192:bOEr0Zn6IM+ao9OAG4ylUGn/ixHOLr/TUq5bymA6WY/JWS:L06R+rUAG4CZn<br>o6Tz5WZ6WY/JW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x1365<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x16a 0x180 5.44 ac7eb4ad20e4de9cde1dbb4a1660281b<br>.data 0x480 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x500 0xde0 0xe00 6.15 8fdde6f4684ab5684640685157f556fa<br>INIT 0x1300 0x48a 0x500 5.11 05aff1efd7e12dd8cd775b28289d5a74<br>.rsrc 0x1800 0x3e0 0x400 3.33 81392fc42fa8054315658b5991ba3658<br>.reloc 0x1c00 0x11a 0x180 3.95 082bcdfae0c6f4f19584a1b3087fbf54<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, ExFreePool, ExAllocatePoolWithTag, memmove, RtlCompareMemory, ObfDereferenceObject, ZwSetValueKey, ZwClose, ObReferenceObjectByHandle, IoFileObjectType, IoCreateFile, ZwQueryValueKey, IoOpenDeviceInterfaceRegistryKey, RtlInitUnicodeString, IofCompleteRequest, KeTickCount, KeBugCheckEx<br>> ks.sys: KsQueryDevicePnpObject, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSynchronousIoControlDevice, KsCacheMedium, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.17 -
AhnLab-V3 5.0.0.2 2009.04.17 -
AntiVir 7.9.0.143 2009.04.17 -
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.17 -
Avast 4.8.1335.0 2009.04.17 -
AVG 8.5.0.287 2009.04.17 -
BitDefender 7.2 2009.04.17 -
CAT-QuickHeal 10.00 2009.04.17 -
ClamAV 0.94.1 2009.04.17 -
Comodo 1117 2009.04.17 -
DrWeb 4.44.0.09170 2009.04.17 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.17 -
Fortinet 3.117.0.0 2009.04.17 -
GData 19 2009.04.17 -
Ikarus T3.1.1.49.0 2009.04.17 -
K7AntiVirus 7.10.707 2009.04.17 -
Kaspersky 7.0.0.125 2009.04.17 -
McAfee 5587 2009.04.17 -
McAfee+Artemis 5587 2009.04.17 -
McAfee-GW-Edition 6.7.6 2009.04.17 -
Microsoft 1.4502 2009.04.17 -
NOD32 4017 2009.04.17 -
nProtect 2009.1.8.0 2009.04.17 -
Panda 10.0.0.14 2009.04.17 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.17 -
Rising 21.25.44.00 2009.04.17 -
Sophos 4.40.0 2009.04.17 -
Sunbelt 3.2.1858.2 2009.04.17 -
Symantec 1.4.4.12 2009.04.17 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.17.1698 2009.04.17 -
VirusBuster 4.6.5.0 2009.04.17 -
Information additionnelle
File size: 7552 bytes
MD5...: d1575e71568f4d9e14ca56b7b0453bf1
SHA1..: 9b5514c00e297a0752e489931d46f74ae12cd9a7
SHA256: 4abe0e24786c0d39fa2b885447e56204ca6942fb175e534dce675d7bcf0b176a
SHA512: 01da8d8f6bab6ce260f8e8a97bc9ae279b1e2733e74e667bb067ba903d747736<br>12d85bab8c366ca95d616682fbc1dd08999ef4382f693f2b6e440ee472218fcd
ssdeep: 192:bOEr0Zn6IM+ao9OAG4ylUGn/ixHOLr/TUq5bymA6WY/JWS:L06R+rUAG4CZn<br>o6Tz5WZ6WY/JW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x1365<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x16a 0x180 5.44 ac7eb4ad20e4de9cde1dbb4a1660281b<br>.data 0x480 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x500 0xde0 0xe00 6.15 8fdde6f4684ab5684640685157f556fa<br>INIT 0x1300 0x48a 0x500 5.11 05aff1efd7e12dd8cd775b28289d5a74<br>.rsrc 0x1800 0x3e0 0x400 3.33 81392fc42fa8054315658b5991ba3658<br>.reloc 0x1c00 0x11a 0x180 3.95 082bcdfae0c6f4f19584a1b3087fbf54<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, ExFreePool, ExAllocatePoolWithTag, memmove, RtlCompareMemory, ObfDereferenceObject, ZwSetValueKey, ZwClose, ObReferenceObjectByHandle, IoFileObjectType, IoCreateFile, ZwQueryValueKey, IoOpenDeviceInterfaceRegistryKey, RtlInitUnicodeString, IofCompleteRequest, KeTickCount, KeBugCheckEx<br>> ks.sys: KsQueryDevicePnpObject, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSynchronousIoControlDevice, KsCacheMedium, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.17 -
AhnLab-V3 5.0.0.2 2009.04.17 -
AntiVir 7.9.0.143 2009.04.17 -
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.17 -
Avast 4.8.1335.0 2009.04.17 -
AVG 8.5.0.287 2009.04.17 -
BitDefender 7.2 2009.04.17 -
CAT-QuickHeal 10.00 2009.04.17 -
ClamAV 0.94.1 2009.04.17 -
Comodo 1117 2009.04.17 -
DrWeb 4.44.0.09170 2009.04.17 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.17 -
Fortinet 3.117.0.0 2009.04.17 -
GData 19 2009.04.17 -
Ikarus T3.1.1.49.0 2009.04.17 -
K7AntiVirus 7.10.707 2009.04.17 -
Kaspersky 7.0.0.125 2009.04.17 -
McAfee 5587 2009.04.17 -
McAfee+Artemis 5587 2009.04.17 -
McAfee-GW-Edition 6.7.6 2009.04.17 -
Microsoft 1.4502 2009.04.17 -
NOD32 4017 2009.04.17 -
nProtect 2009.1.8.0 2009.04.17 -
Panda 10.0.0.14 2009.04.17 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.17 -
Rising 21.25.44.00 2009.04.17 -
Sophos 4.40.0 2009.04.17 -
Sunbelt 3.2.1858.2 2009.04.17 -
Symantec 1.4.4.12 2009.04.17 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.17.1698 2009.04.17 -
VirusBuster 4.6.5.0 2009.04.17 -
Information additionnelle
File size: 7552 bytes
MD5...: d1575e71568f4d9e14ca56b7b0453bf1
SHA1..: 9b5514c00e297a0752e489931d46f74ae12cd9a7
SHA256: 4abe0e24786c0d39fa2b885447e56204ca6942fb175e534dce675d7bcf0b176a
SHA512: 01da8d8f6bab6ce260f8e8a97bc9ae279b1e2733e74e667bb067ba903d747736<br>12d85bab8c366ca95d616682fbc1dd08999ef4382f693f2b6e440ee472218fcd
ssdeep: 192:bOEr0Zn6IM+ao9OAG4ylUGn/ixHOLr/TUq5bymA6WY/JWS:L06R+rUAG4CZn<br>o6Tz5WZ6WY/JW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x1365<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x16a 0x180 5.44 ac7eb4ad20e4de9cde1dbb4a1660281b<br>.data 0x480 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x500 0xde0 0xe00 6.15 8fdde6f4684ab5684640685157f556fa<br>INIT 0x1300 0x48a 0x500 5.11 05aff1efd7e12dd8cd775b28289d5a74<br>.rsrc 0x1800 0x3e0 0x400 3.33 81392fc42fa8054315658b5991ba3658<br>.reloc 0x1c00 0x11a 0x180 3.95 082bcdfae0c6f4f19584a1b3087fbf54<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, ExFreePool, ExAllocatePoolWithTag, memmove, RtlCompareMemory, ObfDereferenceObject, ZwSetValueKey, ZwClose, ObReferenceObjectByHandle, IoFileObjectType, IoCreateFile, ZwQueryValueKey, IoOpenDeviceInterfaceRegistryKey, RtlInitUnicodeString, IofCompleteRequest, KeTickCount, KeBugCheckEx<br>> ks.sys: KsQueryDevicePnpObject, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSynchronousIoControlDevice, KsCacheMedium, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:28
4 mai 2009 à 22:28
Fichier MSPCLOCK.sys reçu le 2009.01.20 18:47:43 (CET)
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.73 2009.01.20 -
AhnLab-V3 5.0.0.2 2009.01.20 -
AntiVir 7.9.0.57 2009.01.20 -
Authentium 5.1.0.4 2009.01.19 -
Avast 4.8.1281.0 2009.01.20 -
AVG 8.0.0.229 2009.01.20 -
BitDefender 7.2 2009.01.20 -
CAT-QuickHeal 10.00 2009.01.20 -
ClamAV 0.94.1 2009.01.20 -
Comodo 939 2009.01.20 -
DrWeb 4.44.0.09170 2009.01.20 -
eSafe 7.0.17.0 2009.01.20 -
eTrust-Vet 31.6.6317 2009.01.20 -
F-Prot 4.4.4.56 2009.01.19 -
F-Secure 8.0.14470.0 2009.01.20 -
Fortinet 3.117.0.0 2009.01.15 -
GData 19 2009.01.20 -
Ikarus T3.1.1.45.0 2009.01.20 -
K7AntiVirus 7.10.596 2009.01.20 -
Kaspersky 7.0.0.125 2009.01.20 -
McAfee 5501 2009.01.20 -
McAfee+Artemis 5500 2009.01.19 -
Microsoft 1.4205 2009.01.20 -
NOD32 3781 2009.01.20 -
Norman 5.93.01 2009.01.20 -
nProtect 2009.1.8.0 2009.01.20 -
Panda 9.5.1.2 2009.01.20 -
PCTools 4.4.2.0 2009.01.20 -
Prevx1 V2 2009.01.20 -
Rising 21.13.11.00 2009.01.20 -
SecureWeb-Gateway 6.7.6 2009.01.20 -
Sophos 4.37.0 2009.01.20 -
Sunbelt 3.2.1835.2 2009.01.16 -
Symantec 10 2009.01.20 -
TheHacker 6.3.1.5.224 2009.01.20 -
TrendMicro 8.700.0.1004 2009.01.20 -
VBA32 3.12.8.10 2009.01.19 -
ViRobot 2009.1.20.1569 2009.01.20 -
VirusBuster 4.5.11.0 2009.01.20 -
Information additionnelle
File size: 5376 bytes
MD5...: 325bb26842fc7ccc1fcce2c457317f3e
SHA1..: 9eed6e8b8384d1bd0d7aaec62026d5b102594275
SHA256: c07be560513b1fb91d756494f0ba4aeeb2e1998de0e1c21ee83db1183b0cee91
SHA512: 50f5a1125afd49ec3fecd80312f96b89adca96fe5c7ddfeaa19d7ce24d2a2769<br>db3e6fbb020f44a1546fc76b6144ad2984de96a58e1c825f4f73dd04ff4415a1<br>
ssdeep: 96:lyDJZ22vZuS2q2dmCF5BcklFraJow2WP2GWVMWs8:gDi2vZuFhdmevD5vWP2G<br>WSp8<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x10a65<br>timedatestamp.....: 0x48025376 (Sun Apr 13 18:39:50 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x60 0x80 2.50 c6d5b2ae856f285d8e263c67c83dcd77<br>.data 0x380 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x400 0x5cc 0x600 4.69 3829fd709f00fb41fd7dcd381878c8a3<br>INIT 0xa00 0x5b6 0x600 5.25 b3981973cea762958eb7e155bda6aca4<br>.rsrc 0x1000 0x3e8 0x400 3.36 7fb0b8eb91574c5aa24b841a47d5c931<br>.reloc 0x1400 0xf0 0x100 4.08 3723b942f74f4c00c5f95bb1a8455195<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, IofCompleteRequest, ExFreePool, KeInitializeEvent, ExAllocatePoolWithTag, KeTickCount<br>> ks.sys: KsiDefaultClockAddMarkEvent, KsiPropertyDefaultClockGetFunctionTable, KsiPropertyDefaultClockGetState, KsiPropertyDefaultClockGetResolution, KsiPropertyDefaultClockGetCorrelatedPhysicalTime, KsiPropertyDefaultClockGetCorrelatedTime, KsiPropertyDefaultClockGetPhysicalTime, KsiPropertyDefaultClockGetTime, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSetDefaultClockTime, KsSetDefaultClockState, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsAllocateDefaultClock, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsFreeDefaultClock, KsFreeEventList, KsPropertyHandler, KsEnableEvent, KsDisableEvent, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.73 2009.01.20 -
AhnLab-V3 5.0.0.2 2009.01.20 -
AntiVir 7.9.0.57 2009.01.20 -
Authentium 5.1.0.4 2009.01.19 -
Avast 4.8.1281.0 2009.01.20 -
AVG 8.0.0.229 2009.01.20 -
BitDefender 7.2 2009.01.20 -
CAT-QuickHeal 10.00 2009.01.20 -
ClamAV 0.94.1 2009.01.20 -
Comodo 939 2009.01.20 -
DrWeb 4.44.0.09170 2009.01.20 -
eSafe 7.0.17.0 2009.01.20 -
eTrust-Vet 31.6.6317 2009.01.20 -
F-Prot 4.4.4.56 2009.01.19 -
F-Secure 8.0.14470.0 2009.01.20 -
Fortinet 3.117.0.0 2009.01.15 -
GData 19 2009.01.20 -
Ikarus T3.1.1.45.0 2009.01.20 -
K7AntiVirus 7.10.596 2009.01.20 -
Kaspersky 7.0.0.125 2009.01.20 -
McAfee 5501 2009.01.20 -
McAfee+Artemis 5500 2009.01.19 -
Microsoft 1.4205 2009.01.20 -
NOD32 3781 2009.01.20 -
Norman 5.93.01 2009.01.20 -
nProtect 2009.1.8.0 2009.01.20 -
Panda 9.5.1.2 2009.01.20 -
PCTools 4.4.2.0 2009.01.20 -
Prevx1 V2 2009.01.20 -
Rising 21.13.11.00 2009.01.20 -
SecureWeb-Gateway 6.7.6 2009.01.20 -
Sophos 4.37.0 2009.01.20 -
Sunbelt 3.2.1835.2 2009.01.16 -
Symantec 10 2009.01.20 -
TheHacker 6.3.1.5.224 2009.01.20 -
TrendMicro 8.700.0.1004 2009.01.20 -
VBA32 3.12.8.10 2009.01.19 -
ViRobot 2009.1.20.1569 2009.01.20 -
VirusBuster 4.5.11.0 2009.01.20 -
Information additionnelle
File size: 5376 bytes
MD5...: 325bb26842fc7ccc1fcce2c457317f3e
SHA1..: 9eed6e8b8384d1bd0d7aaec62026d5b102594275
SHA256: c07be560513b1fb91d756494f0ba4aeeb2e1998de0e1c21ee83db1183b0cee91
SHA512: 50f5a1125afd49ec3fecd80312f96b89adca96fe5c7ddfeaa19d7ce24d2a2769<br>db3e6fbb020f44a1546fc76b6144ad2984de96a58e1c825f4f73dd04ff4415a1<br>
ssdeep: 96:lyDJZ22vZuS2q2dmCF5BcklFraJow2WP2GWVMWs8:gDi2vZuFhdmevD5vWP2G<br>WSp8<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x10a65<br>timedatestamp.....: 0x48025376 (Sun Apr 13 18:39:50 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x60 0x80 2.50 c6d5b2ae856f285d8e263c67c83dcd77<br>.data 0x380 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x400 0x5cc 0x600 4.69 3829fd709f00fb41fd7dcd381878c8a3<br>INIT 0xa00 0x5b6 0x600 5.25 b3981973cea762958eb7e155bda6aca4<br>.rsrc 0x1000 0x3e8 0x400 3.36 7fb0b8eb91574c5aa24b841a47d5c931<br>.reloc 0x1400 0xf0 0x100 4.08 3723b942f74f4c00c5f95bb1a8455195<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, IofCompleteRequest, ExFreePool, KeInitializeEvent, ExAllocatePoolWithTag, KeTickCount<br>> ks.sys: KsiDefaultClockAddMarkEvent, KsiPropertyDefaultClockGetFunctionTable, KsiPropertyDefaultClockGetState, KsiPropertyDefaultClockGetResolution, KsiPropertyDefaultClockGetCorrelatedPhysicalTime, KsiPropertyDefaultClockGetCorrelatedTime, KsiPropertyDefaultClockGetPhysicalTime, KsiPropertyDefaultClockGetTime, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSetDefaultClockTime, KsSetDefaultClockState, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsAllocateDefaultClock, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsFreeDefaultClock, KsFreeEventList, KsPropertyHandler, KsEnableEvent, KsDisableEvent, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.73 2009.01.20 -
AhnLab-V3 5.0.0.2 2009.01.20 -
AntiVir 7.9.0.57 2009.01.20 -
Authentium 5.1.0.4 2009.01.19 -
Avast 4.8.1281.0 2009.01.20 -
AVG 8.0.0.229 2009.01.20 -
BitDefender 7.2 2009.01.20 -
CAT-QuickHeal 10.00 2009.01.20 -
ClamAV 0.94.1 2009.01.20 -
Comodo 939 2009.01.20 -
DrWeb 4.44.0.09170 2009.01.20 -
eSafe 7.0.17.0 2009.01.20 -
eTrust-Vet 31.6.6317 2009.01.20 -
F-Prot 4.4.4.56 2009.01.19 -
F-Secure 8.0.14470.0 2009.01.20 -
Fortinet 3.117.0.0 2009.01.15 -
GData 19 2009.01.20 -
Ikarus T3.1.1.45.0 2009.01.20 -
K7AntiVirus 7.10.596 2009.01.20 -
Kaspersky 7.0.0.125 2009.01.20 -
McAfee 5501 2009.01.20 -
McAfee+Artemis 5500 2009.01.19 -
Microsoft 1.4205 2009.01.20 -
NOD32 3781 2009.01.20 -
Norman 5.93.01 2009.01.20 -
nProtect 2009.1.8.0 2009.01.20 -
Panda 9.5.1.2 2009.01.20 -
PCTools 4.4.2.0 2009.01.20 -
Prevx1 V2 2009.01.20 -
Rising 21.13.11.00 2009.01.20 -
SecureWeb-Gateway 6.7.6 2009.01.20 -
Sophos 4.37.0 2009.01.20 -
Sunbelt 3.2.1835.2 2009.01.16 -
Symantec 10 2009.01.20 -
TheHacker 6.3.1.5.224 2009.01.20 -
TrendMicro 8.700.0.1004 2009.01.20 -
VBA32 3.12.8.10 2009.01.19 -
ViRobot 2009.1.20.1569 2009.01.20 -
VirusBuster 4.5.11.0 2009.01.20 -
Information additionnelle
File size: 5376 bytes
MD5...: 325bb26842fc7ccc1fcce2c457317f3e
SHA1..: 9eed6e8b8384d1bd0d7aaec62026d5b102594275
SHA256: c07be560513b1fb91d756494f0ba4aeeb2e1998de0e1c21ee83db1183b0cee91
SHA512: 50f5a1125afd49ec3fecd80312f96b89adca96fe5c7ddfeaa19d7ce24d2a2769<br>db3e6fbb020f44a1546fc76b6144ad2984de96a58e1c825f4f73dd04ff4415a1<br>
ssdeep: 96:lyDJZ22vZuS2q2dmCF5BcklFraJow2WP2GWVMWs8:gDi2vZuFhdmevD5vWP2G<br>WSp8<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x10a65<br>timedatestamp.....: 0x48025376 (Sun Apr 13 18:39:50 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x60 0x80 2.50 c6d5b2ae856f285d8e263c67c83dcd77<br>.data 0x380 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x400 0x5cc 0x600 4.69 3829fd709f00fb41fd7dcd381878c8a3<br>INIT 0xa00 0x5b6 0x600 5.25 b3981973cea762958eb7e155bda6aca4<br>.rsrc 0x1000 0x3e8 0x400 3.36 7fb0b8eb91574c5aa24b841a47d5c931<br>.reloc 0x1400 0xf0 0x100 4.08 3723b942f74f4c00c5f95bb1a8455195<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, IofCompleteRequest, ExFreePool, KeInitializeEvent, ExAllocatePoolWithTag, KeTickCount<br>> ks.sys: KsiDefaultClockAddMarkEvent, KsiPropertyDefaultClockGetFunctionTable, KsiPropertyDefaultClockGetState, KsiPropertyDefaultClockGetResolution, KsiPropertyDefaultClockGetCorrelatedPhysicalTime, KsiPropertyDefaultClockGetCorrelatedTime, KsiPropertyDefaultClockGetPhysicalTime, KsiPropertyDefaultClockGetTime, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSetDefaultClockTime, KsSetDefaultClockState, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsAllocateDefaultClock, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsFreeDefaultClock, KsFreeEventList, KsPropertyHandler, KsEnableEvent, KsDisableEvent, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.73 2009.01.20 -
AhnLab-V3 5.0.0.2 2009.01.20 -
AntiVir 7.9.0.57 2009.01.20 -
Authentium 5.1.0.4 2009.01.19 -
Avast 4.8.1281.0 2009.01.20 -
AVG 8.0.0.229 2009.01.20 -
BitDefender 7.2 2009.01.20 -
CAT-QuickHeal 10.00 2009.01.20 -
ClamAV 0.94.1 2009.01.20 -
Comodo 939 2009.01.20 -
DrWeb 4.44.0.09170 2009.01.20 -
eSafe 7.0.17.0 2009.01.20 -
eTrust-Vet 31.6.6317 2009.01.20 -
F-Prot 4.4.4.56 2009.01.19 -
F-Secure 8.0.14470.0 2009.01.20 -
Fortinet 3.117.0.0 2009.01.15 -
GData 19 2009.01.20 -
Ikarus T3.1.1.45.0 2009.01.20 -
K7AntiVirus 7.10.596 2009.01.20 -
Kaspersky 7.0.0.125 2009.01.20 -
McAfee 5501 2009.01.20 -
McAfee+Artemis 5500 2009.01.19 -
Microsoft 1.4205 2009.01.20 -
NOD32 3781 2009.01.20 -
Norman 5.93.01 2009.01.20 -
nProtect 2009.1.8.0 2009.01.20 -
Panda 9.5.1.2 2009.01.20 -
PCTools 4.4.2.0 2009.01.20 -
Prevx1 V2 2009.01.20 -
Rising 21.13.11.00 2009.01.20 -
SecureWeb-Gateway 6.7.6 2009.01.20 -
Sophos 4.37.0 2009.01.20 -
Sunbelt 3.2.1835.2 2009.01.16 -
Symantec 10 2009.01.20 -
TheHacker 6.3.1.5.224 2009.01.20 -
TrendMicro 8.700.0.1004 2009.01.20 -
VBA32 3.12.8.10 2009.01.19 -
ViRobot 2009.1.20.1569 2009.01.20 -
VirusBuster 4.5.11.0 2009.01.20 -
Information additionnelle
File size: 5376 bytes
MD5...: 325bb26842fc7ccc1fcce2c457317f3e
SHA1..: 9eed6e8b8384d1bd0d7aaec62026d5b102594275
SHA256: c07be560513b1fb91d756494f0ba4aeeb2e1998de0e1c21ee83db1183b0cee91
SHA512: 50f5a1125afd49ec3fecd80312f96b89adca96fe5c7ddfeaa19d7ce24d2a2769<br>db3e6fbb020f44a1546fc76b6144ad2984de96a58e1c825f4f73dd04ff4415a1<br>
ssdeep: 96:lyDJZ22vZuS2q2dmCF5BcklFraJow2WP2GWVMWs8:gDi2vZuFhdmevD5vWP2G<br>WSp8<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x10a65<br>timedatestamp.....: 0x48025376 (Sun Apr 13 18:39:50 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x60 0x80 2.50 c6d5b2ae856f285d8e263c67c83dcd77<br>.data 0x380 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x400 0x5cc 0x600 4.69 3829fd709f00fb41fd7dcd381878c8a3<br>INIT 0xa00 0x5b6 0x600 5.25 b3981973cea762958eb7e155bda6aca4<br>.rsrc 0x1000 0x3e8 0x400 3.36 7fb0b8eb91574c5aa24b841a47d5c931<br>.reloc 0x1400 0xf0 0x100 4.08 3723b942f74f4c00c5f95bb1a8455195<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, IofCompleteRequest, ExFreePool, KeInitializeEvent, ExAllocatePoolWithTag, KeTickCount<br>> ks.sys: KsiDefaultClockAddMarkEvent, KsiPropertyDefaultClockGetFunctionTable, KsiPropertyDefaultClockGetState, KsiPropertyDefaultClockGetResolution, KsiPropertyDefaultClockGetCorrelatedPhysicalTime, KsiPropertyDefaultClockGetCorrelatedTime, KsiPropertyDefaultClockGetPhysicalTime, KsiPropertyDefaultClockGetTime, KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsSetDefaultClockTime, KsSetDefaultClockState, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsAllocateDefaultClock, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsFreeDefaultClock, KsFreeEventList, KsPropertyHandler, KsEnableEvent, KsDisableEvent, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:30
4 mai 2009 à 22:30
Fichier mspqm.sys reçu le 2009.04.23 23:18:03 (CET)
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.23 -
AhnLab-V3 5.0.0.2 2009.04.23 -
AntiVir 7.9.0.155 2009.04.23 -
Antiy-AVL 2.0.3.1 2009.04.23 -
Authentium 5.1.2.4 2009.04.23 -
Avast 4.8.1335.0 2009.04.23 -
AVG 8.5.0.287 2009.04.23 -
BitDefender 7.2 2009.04.23 -
CAT-QuickHeal 10.00 2009.04.23 -
ClamAV 0.94.1 2009.04.23 -
Comodo 1130 2009.04.23 -
DrWeb 4.44.0.09170 2009.04.23 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6440 2009.04.20 -
F-Prot 4.4.4.56 2009.04.23 -
F-Secure 8.0.14470.0 2009.04.23 -
Fortinet 3.117.0.0 2009.04.23 -
GData 19 2009.04.23 -
Ikarus T3.1.1.49.0 2009.04.23 -
K7AntiVirus 7.10.714 2009.04.23 -
Kaspersky 7.0.0.125 2009.04.23 -
McAfee 5594 2009.04.23 -
McAfee+Artemis 5594 2009.04.23 -
McAfee-GW-Edition 6.7.6 2009.04.23 -
Microsoft 1.4602 2009.04.23 -
NOD32 4031 2009.04.23 -
Norman 6.00.06 2009.04.23 -
nProtect 2009.1.8.0 2009.04.23 -
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.23 -
Prevx1 3.0 2009.04.23 -
Rising 21.26.34.00 2009.04.23 -
Sophos 4.41.0 2009.04.23 -
Sunbelt 3.2.1858.2 2009.04.23 -
Symantec 1.4.4.12 2009.04.23 -
TheHacker 6.3.4.0.313 2009.04.23 -
TrendMicro 8.700.0.1004 2009.04.23 -
VBA32 3.12.10.2 2009.04.23 -
ViRobot 2009.4.23.1706 2009.04.23 -
VirusBuster 4.6.5.0 2009.04.23 -
Information additionnelle
File size: 4992 bytes
MD5...: bad59648ba099da4a17680b39730cb3d
SHA1..: efc0c76a25ecc8b1c5cb537f95cf20b0d96d747c
SHA256: 9ad4c7c94c186c8815d0bc75dcafb962158da6935a244ba243edddeb33f9816c
SHA512: 36a3ba23a9343781a96410fc34e9106a9556d6cf2527efdcbc98214052b18479<br>c09633314ef37b5a7aa3f29649d8c5f215e4dc6973113fdd6eabd0ea3ce3efca
ssdeep: 96:ZirRv/9WbBReBLmfk/wmy8lyWgG6ZwWwGG:2J9WLeBLmGwmy4yW56ZwW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa65<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 5 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.data 0x300 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x380 0x674 0x680 5.72 b75b478349ff5665ab3cd7239cb1ab26<br>INIT 0xa00 0x43c 0x480 5.22 a6a2751b10bb682ee300298e2cd4db5d<br>.rsrc 0xe80 0x3e8 0x400 3.36 038b42c5eb4977e8b1d5c661f4585d4b<br>.reloc 0x1280 0xdc 0x100 3.79 48e2d313dba8977c99933a449a38dc23<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, IofCompleteRequest, ExAllocatePoolWithTag, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, ExFreePool, KeInitializeEvent, KeInitializeSpinLock, KeTickCount<br>> ks.sys: KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsDispatchSpecificProperty, KsRemoveIrpFromCancelableQueue, KsAddIrpToCancelableQueue, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsCancelIo, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.23 -
AhnLab-V3 5.0.0.2 2009.04.23 -
AntiVir 7.9.0.155 2009.04.23 -
Antiy-AVL 2.0.3.1 2009.04.23 -
Authentium 5.1.2.4 2009.04.23 -
Avast 4.8.1335.0 2009.04.23 -
AVG 8.5.0.287 2009.04.23 -
BitDefender 7.2 2009.04.23 -
CAT-QuickHeal 10.00 2009.04.23 -
ClamAV 0.94.1 2009.04.23 -
Comodo 1130 2009.04.23 -
DrWeb 4.44.0.09170 2009.04.23 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6440 2009.04.20 -
F-Prot 4.4.4.56 2009.04.23 -
F-Secure 8.0.14470.0 2009.04.23 -
Fortinet 3.117.0.0 2009.04.23 -
GData 19 2009.04.23 -
Ikarus T3.1.1.49.0 2009.04.23 -
K7AntiVirus 7.10.714 2009.04.23 -
Kaspersky 7.0.0.125 2009.04.23 -
McAfee 5594 2009.04.23 -
McAfee+Artemis 5594 2009.04.23 -
McAfee-GW-Edition 6.7.6 2009.04.23 -
Microsoft 1.4602 2009.04.23 -
NOD32 4031 2009.04.23 -
Norman 6.00.06 2009.04.23 -
nProtect 2009.1.8.0 2009.04.23 -
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.23 -
Prevx1 3.0 2009.04.23 -
Rising 21.26.34.00 2009.04.23 -
Sophos 4.41.0 2009.04.23 -
Sunbelt 3.2.1858.2 2009.04.23 -
Symantec 1.4.4.12 2009.04.23 -
TheHacker 6.3.4.0.313 2009.04.23 -
TrendMicro 8.700.0.1004 2009.04.23 -
VBA32 3.12.10.2 2009.04.23 -
ViRobot 2009.4.23.1706 2009.04.23 -
VirusBuster 4.6.5.0 2009.04.23 -
Information additionnelle
File size: 4992 bytes
MD5...: bad59648ba099da4a17680b39730cb3d
SHA1..: efc0c76a25ecc8b1c5cb537f95cf20b0d96d747c
SHA256: 9ad4c7c94c186c8815d0bc75dcafb962158da6935a244ba243edddeb33f9816c
SHA512: 36a3ba23a9343781a96410fc34e9106a9556d6cf2527efdcbc98214052b18479<br>c09633314ef37b5a7aa3f29649d8c5f215e4dc6973113fdd6eabd0ea3ce3efca
ssdeep: 96:ZirRv/9WbBReBLmfk/wmy8lyWgG6ZwWwGG:2J9WLeBLmGwmy4yW56ZwW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa65<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 5 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.data 0x300 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x380 0x674 0x680 5.72 b75b478349ff5665ab3cd7239cb1ab26<br>INIT 0xa00 0x43c 0x480 5.22 a6a2751b10bb682ee300298e2cd4db5d<br>.rsrc 0xe80 0x3e8 0x400 3.36 038b42c5eb4977e8b1d5c661f4585d4b<br>.reloc 0x1280 0xdc 0x100 3.79 48e2d313dba8977c99933a449a38dc23<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, IofCompleteRequest, ExAllocatePoolWithTag, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, ExFreePool, KeInitializeEvent, KeInitializeSpinLock, KeTickCount<br>> ks.sys: KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsDispatchSpecificProperty, KsRemoveIrpFromCancelableQueue, KsAddIrpToCancelableQueue, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsCancelIo, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.23 -
AhnLab-V3 5.0.0.2 2009.04.23 -
AntiVir 7.9.0.155 2009.04.23 -
Antiy-AVL 2.0.3.1 2009.04.23 -
Authentium 5.1.2.4 2009.04.23 -
Avast 4.8.1335.0 2009.04.23 -
AVG 8.5.0.287 2009.04.23 -
BitDefender 7.2 2009.04.23 -
CAT-QuickHeal 10.00 2009.04.23 -
ClamAV 0.94.1 2009.04.23 -
Comodo 1130 2009.04.23 -
DrWeb 4.44.0.09170 2009.04.23 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6440 2009.04.20 -
F-Prot 4.4.4.56 2009.04.23 -
F-Secure 8.0.14470.0 2009.04.23 -
Fortinet 3.117.0.0 2009.04.23 -
GData 19 2009.04.23 -
Ikarus T3.1.1.49.0 2009.04.23 -
K7AntiVirus 7.10.714 2009.04.23 -
Kaspersky 7.0.0.125 2009.04.23 -
McAfee 5594 2009.04.23 -
McAfee+Artemis 5594 2009.04.23 -
McAfee-GW-Edition 6.7.6 2009.04.23 -
Microsoft 1.4602 2009.04.23 -
NOD32 4031 2009.04.23 -
Norman 6.00.06 2009.04.23 -
nProtect 2009.1.8.0 2009.04.23 -
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.23 -
Prevx1 3.0 2009.04.23 -
Rising 21.26.34.00 2009.04.23 -
Sophos 4.41.0 2009.04.23 -
Sunbelt 3.2.1858.2 2009.04.23 -
Symantec 1.4.4.12 2009.04.23 -
TheHacker 6.3.4.0.313 2009.04.23 -
TrendMicro 8.700.0.1004 2009.04.23 -
VBA32 3.12.10.2 2009.04.23 -
ViRobot 2009.4.23.1706 2009.04.23 -
VirusBuster 4.6.5.0 2009.04.23 -
Information additionnelle
File size: 4992 bytes
MD5...: bad59648ba099da4a17680b39730cb3d
SHA1..: efc0c76a25ecc8b1c5cb537f95cf20b0d96d747c
SHA256: 9ad4c7c94c186c8815d0bc75dcafb962158da6935a244ba243edddeb33f9816c
SHA512: 36a3ba23a9343781a96410fc34e9106a9556d6cf2527efdcbc98214052b18479<br>c09633314ef37b5a7aa3f29649d8c5f215e4dc6973113fdd6eabd0ea3ce3efca
ssdeep: 96:ZirRv/9WbBReBLmfk/wmy8lyWgG6ZwWwGG:2J9WLeBLmGwmy4yW56ZwW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa65<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 5 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.data 0x300 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x380 0x674 0x680 5.72 b75b478349ff5665ab3cd7239cb1ab26<br>INIT 0xa00 0x43c 0x480 5.22 a6a2751b10bb682ee300298e2cd4db5d<br>.rsrc 0xe80 0x3e8 0x400 3.36 038b42c5eb4977e8b1d5c661f4585d4b<br>.reloc 0x1280 0xdc 0x100 3.79 48e2d313dba8977c99933a449a38dc23<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, IofCompleteRequest, ExAllocatePoolWithTag, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, ExFreePool, KeInitializeEvent, KeInitializeSpinLock, KeTickCount<br>> ks.sys: KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsDispatchSpecificProperty, KsRemoveIrpFromCancelableQueue, KsAddIrpToCancelableQueue, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsCancelIo, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.23 -
AhnLab-V3 5.0.0.2 2009.04.23 -
AntiVir 7.9.0.155 2009.04.23 -
Antiy-AVL 2.0.3.1 2009.04.23 -
Authentium 5.1.2.4 2009.04.23 -
Avast 4.8.1335.0 2009.04.23 -
AVG 8.5.0.287 2009.04.23 -
BitDefender 7.2 2009.04.23 -
CAT-QuickHeal 10.00 2009.04.23 -
ClamAV 0.94.1 2009.04.23 -
Comodo 1130 2009.04.23 -
DrWeb 4.44.0.09170 2009.04.23 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6440 2009.04.20 -
F-Prot 4.4.4.56 2009.04.23 -
F-Secure 8.0.14470.0 2009.04.23 -
Fortinet 3.117.0.0 2009.04.23 -
GData 19 2009.04.23 -
Ikarus T3.1.1.49.0 2009.04.23 -
K7AntiVirus 7.10.714 2009.04.23 -
Kaspersky 7.0.0.125 2009.04.23 -
McAfee 5594 2009.04.23 -
McAfee+Artemis 5594 2009.04.23 -
McAfee-GW-Edition 6.7.6 2009.04.23 -
Microsoft 1.4602 2009.04.23 -
NOD32 4031 2009.04.23 -
Norman 6.00.06 2009.04.23 -
nProtect 2009.1.8.0 2009.04.23 -
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.23 -
Prevx1 3.0 2009.04.23 -
Rising 21.26.34.00 2009.04.23 -
Sophos 4.41.0 2009.04.23 -
Sunbelt 3.2.1858.2 2009.04.23 -
Symantec 1.4.4.12 2009.04.23 -
TheHacker 6.3.4.0.313 2009.04.23 -
TrendMicro 8.700.0.1004 2009.04.23 -
VBA32 3.12.10.2 2009.04.23 -
ViRobot 2009.4.23.1706 2009.04.23 -
VirusBuster 4.6.5.0 2009.04.23 -
Information additionnelle
File size: 4992 bytes
MD5...: bad59648ba099da4a17680b39730cb3d
SHA1..: efc0c76a25ecc8b1c5cb537f95cf20b0d96d747c
SHA256: 9ad4c7c94c186c8815d0bc75dcafb962158da6935a244ba243edddeb33f9816c
SHA512: 36a3ba23a9343781a96410fc34e9106a9556d6cf2527efdcbc98214052b18479<br>c09633314ef37b5a7aa3f29649d8c5f215e4dc6973113fdd6eabd0ea3ce3efca
ssdeep: 96:ZirRv/9WbBReBLmfk/wmy8lyWgG6ZwWwGG:2J9WLeBLmGwmy4yW56ZwW<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.9%)<br>DOS Executable Generic (49.8%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0xa65<br>timedatestamp.....: 0x48025377 (Sun Apr 13 18:39:51 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 5 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.data 0x300 0x8 0x80 0.38 0c41a08c90a7d5e81bf065649ebabedc<br>PAGE 0x380 0x674 0x680 5.72 b75b478349ff5665ab3cd7239cb1ab26<br>INIT 0xa00 0x43c 0x480 5.22 a6a2751b10bb682ee300298e2cd4db5d<br>.rsrc 0xe80 0x3e8 0x400 3.36 038b42c5eb4977e8b1d5c661f4585d4b<br>.reloc 0x1280 0xdc 0x100 3.79 48e2d313dba8977c99933a449a38dc23<br><br>( 2 imports ) <br>> NTOSKRNL.EXE: IoDeleteDevice, IoAttachDeviceToDeviceStack, IoCreateDevice, IofCompleteRequest, ExAllocatePoolWithTag, KeLeaveCriticalRegion, ExReleaseFastMutexUnsafe, ExAcquireFastMutexUnsafe, KeEnterCriticalRegion, ExFreePool, KeInitializeEvent, KeInitializeSpinLock, KeTickCount<br>> ks.sys: KsSetDevicePnpAndBaseObject, KsAllocateDeviceHeader, KsDispatchSpecificProperty, KsRemoveIrpFromCancelableQueue, KsAddIrpToCancelableQueue, KsDereferenceSoftwareBusObject, KsAllocateObjectHeader, KsReferenceSoftwareBusObject, KsFreeObjectHeader, KsCancelIo, KsPropertyHandler, KsNullDriverUnload, KsSetMajorFunctionHandler, KsDefaultForwardIrp, KsDefaultDispatchPower, KsDefaultDispatchPnp<br><br>( 0 exports ) <br>
PDFiD.: -
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:32
4 mai 2009 à 22:32
Fichier A0009136.ex_ reçu le 2009.04.13 13:31:00 (CET)
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.13 -
AhnLab-V3 5.0.0.2 2009.04.13 -
AntiVir 7.9.0.138 2009.04.11 -
Antiy-AVL 2.0.3.1 2009.04.13 -
Authentium 5.1.2.4 2009.04.11 -
Avast 4.8.1335.0 2009.04.12 -
AVG 8.5.0.285 2009.04.13 -
BitDefender 7.2 2009.04.13 -
CAT-QuickHeal 10.00 2009.04.13 -
ClamAV 0.94.1 2009.04.13 -
Comodo 1112 2009.04.13 -
DrWeb 4.44.0.09170 2009.04.13 -
eSafe 7.0.17.0 2009.04.12 -
eTrust-Vet 31.6.6453 2009.04.13 -
F-Prot 4.4.4.56 2009.04.11 -
F-Secure 8.0.14470.0 2009.04.13 -
Fortinet 3.117.0.0 2009.04.13 -
GData 19 2009.04.13 -
Ikarus T3.1.1.49.0 2009.04.13 -
K7AntiVirus 7.10.700 2009.04.11 -
Kaspersky 7.0.0.125 2009.04.13 -
McAfee 5582 2009.04.12 -
McAfee+Artemis 5582 2009.04.12 -
McAfee-GW-Edition 6.7.6 2009.04.11 -
Microsoft 1.4502 2009.04.13 -
NOD32 4003 2009.04.13 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.12 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.13 -
Rising 21.25.03.00 2009.04.13 -
Sophos 4.40.0 2009.04.13 -
Sunbelt 3.2.1858.2 2009.04.12 -
Symantec 1.4.4.12 2009.04.13 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.13 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.13.1690 2009.04.13 -
VirusBuster 4.6.5.0 2009.04.12 -
Information additionnelle
File size: 42752 bytes
MD5...: cb08aed0de2dd889a8a820cd8082d83c
SHA1..: a23c13598c1ad0f5e5d965df58f32926ec26581c
SHA256: b1a9d493390aedf6eff8bcaa3b33ec31758452ab497c34c0728cdda1d8dcbf2a
SHA512: 24ffc13e06fb84f5e942eaa050895df63bee6e5b283727d7add8c3b6d4c597b0<br>fc3d1da2dd69bbd98fa08591753834c1378ebfa9e82de70f5931adf7a93799ec
ssdeep: 768:jupsJmUfOykKTQ0/JcONK+eqtj8zgfEcaZbhmaJeU6z6:jOs4UaLgJcOhJSB<br>ZtmasU6z<br>
PEiD..: -
TrID..: File type identification<br>Win32 Executable Generic (68.0%)<br>Generic Win/DOS Executable (15.9%)<br>DOS Executable Generic (15.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x8f85<br>timedatestamp.....: 0x480252b5 (Sun Apr 13 18:36:37 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 7 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x362e 0x3680 6.61 3f18bc226d1238116f9635fb29eec36a<br>.rdata 0x3980 0x18d 0x200 3.73 c74c3e3b754c99e62c6d2400501a38b3<br>.data 0x3b80 0x84 0x100 1.19 b88d1222127098e79c25d1b1069e894c<br>PAGE 0x3c80 0x52cd 0x5300 6.61 7aeb14312362552edd0a1380689459ad<br>INIT 0x8f80 0xa6e 0xa80 6.18 a3b682ee0334a981ec0887d432ef4283<br>.rsrc 0x9a00 0x3e8 0x400 3.38 f171aff7155315c5062cc97ecf0c31fb<br>.reloc 0x9e00 0x8dc 0x900 6.37 76688d08e206227ba91550080d35c2d6<br><br>( 3 imports ) <br>> ntoskrnl.exe: KeBugCheckEx, KeTickCount, MmAllocateContiguousMemorySpecifyCache, ZwEnumerateValueKey, ExFreePoolWithTag, ZwQueryKey, KeWaitForSingleObject, IofCallDriver, IoBuildDeviceIoControlRequest, KeInitializeEvent, IoDetachDevice, IoAttachDeviceToDeviceStack, IoDeleteDevice, IoCreateDevice, KeInitializeDpc, KeInitializeTimer, ZwQueryValueKey, ZwClose, ZwOpenKey, RtlInitUnicodeString, MmGetPhysicalAddress, IoBuildSynchronousFsdRequest, IoFreeMdl, MmFreePagesFromMdl, IoAllocateMdl, _allshr, KeSetEvent, MmAllocatePagesForMdl, KeInsertQueueDpc, KeClearEvent, KeSetTargetProcessorDpc, KeQueryActiveProcessors, ObfDereferenceObject, ExRegisterCallback, ExCreateCallback, ExUnregisterCallback, IoFreeWorkItem, KeCancelTimer, IoQueueWorkItem, IoAllocateWorkItem, KeSetTimerEx, IoWMIRegistrationControl, IofCompleteRequest, PoCallDriver, PoStartNextPowerIrp, MmFreeContiguousMemory, ExAllocatePoolWithTag, DbgPrint, RtlCopyUnicodeString, DbgBreakPoint<br>> HAL.dll: HalGetBusDataByOffset, ExAcquireFastMutex, ExReleaseFastMutex, HalSetBusDataByOffset, KeGetCurrentIrql<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.13 -
AhnLab-V3 5.0.0.2 2009.04.13 -
AntiVir 7.9.0.138 2009.04.11 -
Antiy-AVL 2.0.3.1 2009.04.13 -
Authentium 5.1.2.4 2009.04.11 -
Avast 4.8.1335.0 2009.04.12 -
AVG 8.5.0.285 2009.04.13 -
BitDefender 7.2 2009.04.13 -
CAT-QuickHeal 10.00 2009.04.13 -
ClamAV 0.94.1 2009.04.13 -
Comodo 1112 2009.04.13 -
DrWeb 4.44.0.09170 2009.04.13 -
eSafe 7.0.17.0 2009.04.12 -
eTrust-Vet 31.6.6453 2009.04.13 -
F-Prot 4.4.4.56 2009.04.11 -
F-Secure 8.0.14470.0 2009.04.13 -
Fortinet 3.117.0.0 2009.04.13 -
GData 19 2009.04.13 -
Ikarus T3.1.1.49.0 2009.04.13 -
K7AntiVirus 7.10.700 2009.04.11 -
Kaspersky 7.0.0.125 2009.04.13 -
McAfee 5582 2009.04.12 -
McAfee+Artemis 5582 2009.04.12 -
McAfee-GW-Edition 6.7.6 2009.04.11 -
Microsoft 1.4502 2009.04.13 -
NOD32 4003 2009.04.13 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.12 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.13 -
Rising 21.25.03.00 2009.04.13 -
Sophos 4.40.0 2009.04.13 -
Sunbelt 3.2.1858.2 2009.04.12 -
Symantec 1.4.4.12 2009.04.13 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.13 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.13.1690 2009.04.13 -
VirusBuster 4.6.5.0 2009.04.12 -
Information additionnelle
File size: 42752 bytes
MD5...: cb08aed0de2dd889a8a820cd8082d83c
SHA1..: a23c13598c1ad0f5e5d965df58f32926ec26581c
SHA256: b1a9d493390aedf6eff8bcaa3b33ec31758452ab497c34c0728cdda1d8dcbf2a
SHA512: 24ffc13e06fb84f5e942eaa050895df63bee6e5b283727d7add8c3b6d4c597b0<br>fc3d1da2dd69bbd98fa08591753834c1378ebfa9e82de70f5931adf7a93799ec
ssdeep: 768:jupsJmUfOykKTQ0/JcONK+eqtj8zgfEcaZbhmaJeU6z6:jOs4UaLgJcOhJSB<br>ZtmasU6z<br>
PEiD..: -
TrID..: File type identification<br>Win32 Executable Generic (68.0%)<br>Generic Win/DOS Executable (15.9%)<br>DOS Executable Generic (15.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x8f85<br>timedatestamp.....: 0x480252b5 (Sun Apr 13 18:36:37 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 7 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x362e 0x3680 6.61 3f18bc226d1238116f9635fb29eec36a<br>.rdata 0x3980 0x18d 0x200 3.73 c74c3e3b754c99e62c6d2400501a38b3<br>.data 0x3b80 0x84 0x100 1.19 b88d1222127098e79c25d1b1069e894c<br>PAGE 0x3c80 0x52cd 0x5300 6.61 7aeb14312362552edd0a1380689459ad<br>INIT 0x8f80 0xa6e 0xa80 6.18 a3b682ee0334a981ec0887d432ef4283<br>.rsrc 0x9a00 0x3e8 0x400 3.38 f171aff7155315c5062cc97ecf0c31fb<br>.reloc 0x9e00 0x8dc 0x900 6.37 76688d08e206227ba91550080d35c2d6<br><br>( 3 imports ) <br>> ntoskrnl.exe: KeBugCheckEx, KeTickCount, MmAllocateContiguousMemorySpecifyCache, ZwEnumerateValueKey, ExFreePoolWithTag, ZwQueryKey, KeWaitForSingleObject, IofCallDriver, IoBuildDeviceIoControlRequest, KeInitializeEvent, IoDetachDevice, IoAttachDeviceToDeviceStack, IoDeleteDevice, IoCreateDevice, KeInitializeDpc, KeInitializeTimer, ZwQueryValueKey, ZwClose, ZwOpenKey, RtlInitUnicodeString, MmGetPhysicalAddress, IoBuildSynchronousFsdRequest, IoFreeMdl, MmFreePagesFromMdl, IoAllocateMdl, _allshr, KeSetEvent, MmAllocatePagesForMdl, KeInsertQueueDpc, KeClearEvent, KeSetTargetProcessorDpc, KeQueryActiveProcessors, ObfDereferenceObject, ExRegisterCallback, ExCreateCallback, ExUnregisterCallback, IoFreeWorkItem, KeCancelTimer, IoQueueWorkItem, IoAllocateWorkItem, KeSetTimerEx, IoWMIRegistrationControl, IofCompleteRequest, PoCallDriver, PoStartNextPowerIrp, MmFreeContiguousMemory, ExAllocatePoolWithTag, DbgPrint, RtlCopyUnicodeString, DbgBreakPoint<br>> HAL.dll: HalGetBusDataByOffset, ExAcquireFastMutex, ExReleaseFastMutex, HalSetBusDataByOffset, KeGetCurrentIrql<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.13 -
AhnLab-V3 5.0.0.2 2009.04.13 -
AntiVir 7.9.0.138 2009.04.11 -
Antiy-AVL 2.0.3.1 2009.04.13 -
Authentium 5.1.2.4 2009.04.11 -
Avast 4.8.1335.0 2009.04.12 -
AVG 8.5.0.285 2009.04.13 -
BitDefender 7.2 2009.04.13 -
CAT-QuickHeal 10.00 2009.04.13 -
ClamAV 0.94.1 2009.04.13 -
Comodo 1112 2009.04.13 -
DrWeb 4.44.0.09170 2009.04.13 -
eSafe 7.0.17.0 2009.04.12 -
eTrust-Vet 31.6.6453 2009.04.13 -
F-Prot 4.4.4.56 2009.04.11 -
F-Secure 8.0.14470.0 2009.04.13 -
Fortinet 3.117.0.0 2009.04.13 -
GData 19 2009.04.13 -
Ikarus T3.1.1.49.0 2009.04.13 -
K7AntiVirus 7.10.700 2009.04.11 -
Kaspersky 7.0.0.125 2009.04.13 -
McAfee 5582 2009.04.12 -
McAfee+Artemis 5582 2009.04.12 -
McAfee-GW-Edition 6.7.6 2009.04.11 -
Microsoft 1.4502 2009.04.13 -
NOD32 4003 2009.04.13 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.12 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.13 -
Rising 21.25.03.00 2009.04.13 -
Sophos 4.40.0 2009.04.13 -
Sunbelt 3.2.1858.2 2009.04.12 -
Symantec 1.4.4.12 2009.04.13 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.13 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.13.1690 2009.04.13 -
VirusBuster 4.6.5.0 2009.04.12 -
Information additionnelle
File size: 42752 bytes
MD5...: cb08aed0de2dd889a8a820cd8082d83c
SHA1..: a23c13598c1ad0f5e5d965df58f32926ec26581c
SHA256: b1a9d493390aedf6eff8bcaa3b33ec31758452ab497c34c0728cdda1d8dcbf2a
SHA512: 24ffc13e06fb84f5e942eaa050895df63bee6e5b283727d7add8c3b6d4c597b0<br>fc3d1da2dd69bbd98fa08591753834c1378ebfa9e82de70f5931adf7a93799ec
ssdeep: 768:jupsJmUfOykKTQ0/JcONK+eqtj8zgfEcaZbhmaJeU6z6:jOs4UaLgJcOhJSB<br>ZtmasU6z<br>
PEiD..: -
TrID..: File type identification<br>Win32 Executable Generic (68.0%)<br>Generic Win/DOS Executable (15.9%)<br>DOS Executable Generic (15.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x8f85<br>timedatestamp.....: 0x480252b5 (Sun Apr 13 18:36:37 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 7 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x362e 0x3680 6.61 3f18bc226d1238116f9635fb29eec36a<br>.rdata 0x3980 0x18d 0x200 3.73 c74c3e3b754c99e62c6d2400501a38b3<br>.data 0x3b80 0x84 0x100 1.19 b88d1222127098e79c25d1b1069e894c<br>PAGE 0x3c80 0x52cd 0x5300 6.61 7aeb14312362552edd0a1380689459ad<br>INIT 0x8f80 0xa6e 0xa80 6.18 a3b682ee0334a981ec0887d432ef4283<br>.rsrc 0x9a00 0x3e8 0x400 3.38 f171aff7155315c5062cc97ecf0c31fb<br>.reloc 0x9e00 0x8dc 0x900 6.37 76688d08e206227ba91550080d35c2d6<br><br>( 3 imports ) <br>> ntoskrnl.exe: KeBugCheckEx, KeTickCount, MmAllocateContiguousMemorySpecifyCache, ZwEnumerateValueKey, ExFreePoolWithTag, ZwQueryKey, KeWaitForSingleObject, IofCallDriver, IoBuildDeviceIoControlRequest, KeInitializeEvent, IoDetachDevice, IoAttachDeviceToDeviceStack, IoDeleteDevice, IoCreateDevice, KeInitializeDpc, KeInitializeTimer, ZwQueryValueKey, ZwClose, ZwOpenKey, RtlInitUnicodeString, MmGetPhysicalAddress, IoBuildSynchronousFsdRequest, IoFreeMdl, MmFreePagesFromMdl, IoAllocateMdl, _allshr, KeSetEvent, MmAllocatePagesForMdl, KeInsertQueueDpc, KeClearEvent, KeSetTargetProcessorDpc, KeQueryActiveProcessors, ObfDereferenceObject, ExRegisterCallback, ExCreateCallback, ExUnregisterCallback, IoFreeWorkItem, KeCancelTimer, IoQueueWorkItem, IoAllocateWorkItem, KeSetTimerEx, IoWMIRegistrationControl, IofCompleteRequest, PoCallDriver, PoStartNextPowerIrp, MmFreeContiguousMemory, ExAllocatePoolWithTag, DbgPrint, RtlCopyUnicodeString, DbgBreakPoint<br>> HAL.dll: HalGetBusDataByOffset, ExAcquireFastMutex, ExReleaseFastMutex, HalSetBusDataByOffset, KeGetCurrentIrql<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.04.13 -
AhnLab-V3 5.0.0.2 2009.04.13 -
AntiVir 7.9.0.138 2009.04.11 -
Antiy-AVL 2.0.3.1 2009.04.13 -
Authentium 5.1.2.4 2009.04.11 -
Avast 4.8.1335.0 2009.04.12 -
AVG 8.5.0.285 2009.04.13 -
BitDefender 7.2 2009.04.13 -
CAT-QuickHeal 10.00 2009.04.13 -
ClamAV 0.94.1 2009.04.13 -
Comodo 1112 2009.04.13 -
DrWeb 4.44.0.09170 2009.04.13 -
eSafe 7.0.17.0 2009.04.12 -
eTrust-Vet 31.6.6453 2009.04.13 -
F-Prot 4.4.4.56 2009.04.11 -
F-Secure 8.0.14470.0 2009.04.13 -
Fortinet 3.117.0.0 2009.04.13 -
GData 19 2009.04.13 -
Ikarus T3.1.1.49.0 2009.04.13 -
K7AntiVirus 7.10.700 2009.04.11 -
Kaspersky 7.0.0.125 2009.04.13 -
McAfee 5582 2009.04.12 -
McAfee+Artemis 5582 2009.04.12 -
McAfee-GW-Edition 6.7.6 2009.04.11 -
Microsoft 1.4502 2009.04.13 -
NOD32 4003 2009.04.13 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.12 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.13 -
Rising 21.25.03.00 2009.04.13 -
Sophos 4.40.0 2009.04.13 -
Sunbelt 3.2.1858.2 2009.04.12 -
Symantec 1.4.4.12 2009.04.13 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.13 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.13.1690 2009.04.13 -
VirusBuster 4.6.5.0 2009.04.12 -
Information additionnelle
File size: 42752 bytes
MD5...: cb08aed0de2dd889a8a820cd8082d83c
SHA1..: a23c13598c1ad0f5e5d965df58f32926ec26581c
SHA256: b1a9d493390aedf6eff8bcaa3b33ec31758452ab497c34c0728cdda1d8dcbf2a
SHA512: 24ffc13e06fb84f5e942eaa050895df63bee6e5b283727d7add8c3b6d4c597b0<br>fc3d1da2dd69bbd98fa08591753834c1378ebfa9e82de70f5931adf7a93799ec
ssdeep: 768:jupsJmUfOykKTQ0/JcONK+eqtj8zgfEcaZbhmaJeU6z6:jOs4UaLgJcOhJSB<br>ZtmasU6z<br>
PEiD..: -
TrID..: File type identification<br>Win32 Executable Generic (68.0%)<br>Generic Win/DOS Executable (15.9%)<br>DOS Executable Generic (15.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x8f85<br>timedatestamp.....: 0x480252b5 (Sun Apr 13 18:36:37 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 7 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x300 0x362e 0x3680 6.61 3f18bc226d1238116f9635fb29eec36a<br>.rdata 0x3980 0x18d 0x200 3.73 c74c3e3b754c99e62c6d2400501a38b3<br>.data 0x3b80 0x84 0x100 1.19 b88d1222127098e79c25d1b1069e894c<br>PAGE 0x3c80 0x52cd 0x5300 6.61 7aeb14312362552edd0a1380689459ad<br>INIT 0x8f80 0xa6e 0xa80 6.18 a3b682ee0334a981ec0887d432ef4283<br>.rsrc 0x9a00 0x3e8 0x400 3.38 f171aff7155315c5062cc97ecf0c31fb<br>.reloc 0x9e00 0x8dc 0x900 6.37 76688d08e206227ba91550080d35c2d6<br><br>( 3 imports ) <br>> ntoskrnl.exe: KeBugCheckEx, KeTickCount, MmAllocateContiguousMemorySpecifyCache, ZwEnumerateValueKey, ExFreePoolWithTag, ZwQueryKey, KeWaitForSingleObject, IofCallDriver, IoBuildDeviceIoControlRequest, KeInitializeEvent, IoDetachDevice, IoAttachDeviceToDeviceStack, IoDeleteDevice, IoCreateDevice, KeInitializeDpc, KeInitializeTimer, ZwQueryValueKey, ZwClose, ZwOpenKey, RtlInitUnicodeString, MmGetPhysicalAddress, IoBuildSynchronousFsdRequest, IoFreeMdl, MmFreePagesFromMdl, IoAllocateMdl, _allshr, KeSetEvent, MmAllocatePagesForMdl, KeInsertQueueDpc, KeClearEvent, KeSetTargetProcessorDpc, KeQueryActiveProcessors, ObfDereferenceObject, ExRegisterCallback, ExCreateCallback, ExUnregisterCallback, IoFreeWorkItem, KeCancelTimer, IoQueueWorkItem, IoAllocateWorkItem, KeSetTimerEx, IoWMIRegistrationControl, IofCompleteRequest, PoCallDriver, PoStartNextPowerIrp, MmFreeContiguousMemory, ExAllocatePoolWithTag, DbgPrint, RtlCopyUnicodeString, DbgBreakPoint<br>> HAL.dll: HalGetBusDataByOffset, ExAcquireFastMutex, ExReleaseFastMutex, HalSetBusDataByOffset, KeGetCurrentIrql<br>> WMILIB.SYS: WmiCompleteRequest, WmiSystemControl<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
packers (Kaspersky): PE_Patch
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:32
4 mai 2009 à 22:32
voilà, j'ai tout posté
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:34
4 mai 2009 à 22:34
la bonne nouvelle, sans parler trop vite, est qu'il coupe moins
Utilisateur anonyme
4 mai 2009 à 22:50
4 mai 2009 à 22:50
tu peux me donner les propriétés de ce fichier dans windows ?
InZU31.exe
InZU31.exe
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:54
4 mai 2009 à 22:54
fichier : application
description : prassi sofware multilangage setup and uninstaller
description : prassi sofware multilangage setup and uninstaller
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 22:55
4 mai 2009 à 22:55
c'est bon ce que je t'ai donné ?
Utilisateur anonyme
4 mai 2009 à 23:00
4 mai 2009 à 23:00
si tu te mets dessus sans cliquer il apparait quoi dans l'infobulle ?
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 23:04
4 mai 2009 à 23:04
description : prassi sofware multilangage setup and uninstaller
entreprise : prassi sofware
version : 3.1.0.140
création : 15/01/2009
taille : 216 Ko
entreprise : prassi sofware
version : 3.1.0.140
création : 15/01/2009
taille : 216 Ko
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 23:17
4 mai 2009 à 23:17
lol, je sais pas du tout, je t'ai écris mot à mot ce qui est écrit
en tout cas pour le moment ça ne coupe plus
en tout cas pour le moment ça ne coupe plus
Utilisateur anonyme
4 mai 2009 à 23:20
4 mai 2009 à 23:20
tu as un logiciel du nom de prassi dans program files ?
edit :
apparemment c est un logiciel de gravure
edit :
apparemment c est un logiciel de gravure
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 23:21
4 mai 2009 à 23:21
ça c'est possible, je grave beaucoup de dvd, et j'ai eu des versions d'1 mois avant d'en trouver un bien
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 23:22
4 mai 2009 à 23:22
il y en a que je n'ai pas réussi à désinstaller, en fait ils ne sont plus présent, mais il reste l'icône
Utilisateur anonyme
4 mai 2009 à 23:36
4 mai 2009 à 23:36
retente la defrag pendant que ca va mieux :)(au moins l analyse)
nat1961
Messages postés
1080
Date d'inscription
lundi 13 avril 2009
Statut
Membre
Dernière intervention
25 novembre 2021
2
4 mai 2009 à 23:50
4 mai 2009 à 23:50
j'ai parlé trop vite, il a recoupé , et j'ai eu du mal à le rallumer,
windows à refait une verif du disque
windows à refait une verif du disque
