| |  Brower Fenster öffnet automatisch, Infected Meldung
Bei xfcodec.dll wurde nichts entdeckt
Ergebnis: 0/36 (0%) Zitat:
File size: 42320 bytes
MD5...: 9fe3e497a942a5a9cb9e3ad3d8efde36
SHA1..: 7f0aa6e1cdf6c45161a6a47a40cfa3726cab2967
SHA256: 1ce9b18dec99461d09e216d3564044d3514fc44181203f6f4885507ded9e8cf4
SHA512: 54138973e141d3b1c0825063b29bef1107c74930794b35d1175ce4cffc3b4a2a
8642f609434a7f5cd1b9fb0d78d727d9bd4e8713cff3d0291c4867598b228519
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x10007670
timedatestamp.....: 0x48d1a1cf (Thu Sep 18 00:33:19 2008)
machinetype.......: 0x14c (I386)
( 6 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x6ae1 0x6c00 6.47 d0e9e9da9e0d3347c0614c10b821fa91
.rdata 0x8000 0xab1 0xc00 4.47 66631ac83a273fc22206bd4c44549b2d
.data 0x9000 0x63fc 0x200 1.15 4c081c22a223dd877a968ed8dcda112e
.CRT 0x10000 0x14 0x200 0.06 fcb057e0302e89dbfdeef4b46e70dc1c
.rsrc 0x11000 0x380 0x400 3.99 1c071885701fd7eeff07505dc2c31c94
.reloc 0x12000 0xb3e 0xc00 6.53 8c1ef75bf54e3d31d915a6c96ba5775b
( 3 imports )
> WINMM.dll: DefDriverProc
> KERNEL32.dll: WaitForSingleObject, LoadLibraryA, QueryPerformanceFrequency, GetTickCount, QueryPerformanceCounter, OutputDebugStringA, CloseHandle, CreateEventW, CreateThread, CreateMutexW, RaiseException, ReleaseMutex, SetEvent, GetProcAddress, FreeLibrary
> USER32.dll: wvsprintfA, MessageBoxW
( 2 exports )
DriverProc, XfireCodecCompress
| Ist wohl von xFire
Bei yv12vfw.dll selbes Ergebniss Zitat:
File size: 217088 bytes
MD5...: dd602c1fba3a3e962627569c9e10af7c
SHA1..: d81cabff225dffdb4b244a0348ba213f98592ff2
SHA256: 83f16a27f4d1e28d79d6d3b3f589518d82bbac947f868d5969b47e8dedb76ba3
SHA512: 3a61b724bc1f3dbf7de1e4ac2677f79979d73989ea1b5eb200c4b4db9c61dd27
cd155e132ead2be4e7225e59d69b52f82b303bb6528c152c2be3fbfdb4f91eea
PEiD..: Armadillo v1.xx - v2.xx
TrID..: File type identification
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1c40c7d7
timedatestamp.....: 0x4013ec64 (Sun Jan 25 16:18:44 2004)
machinetype.......: 0x14c (I386)
( 9 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x192d2 0x1a000 6.61 5aad0c4aabe78dc2946820c9020b4d46
MMXCODE1 0x1b000 0x15dd 0x2000 4.98 5fe93d2ac42df837757dae46365840a5
.rdata 0x1d000 0x145b 0x2000 3.61 9bea31ed36e1dfc81274f2665e45ea10
.data 0x1f000 0x7de4 0x4000 2.35 346a533c6530e537273ff920dbd5a078
H26xColo 0x27000 0x7784 0x8000 0.45 3f7b1c92254241417fcc6cd517a71317
MMXDATA1 0x2f000 0x1c0 0x1000 0.81 b24401e4ba5403f7ff985ae30a7d4000
MMXCCDAT 0x30000 0x4828 0x5000 5.39 f1f12a58b43260ed6c172de6a2159435
.rsrc 0x35000 0x1aa0 0x2000 2.98 678e62bb1b2cec65f1f2e3e0269df2f7
.reloc 0x37000 0x1cfe 0x2000 4.81 ccc6631df5a6cdc229a349b73de5aa3e
( 5 imports )
> KERNEL32.DLL: WaitForSingleObject, GetSystemInfo, MultiByteToWideChar, GetPrivateProfileIntA, IsBadReadPtr, InterlockedDecrement, InterlockedIncrement, GetLastError, CreateThread, GetCurrentThreadId, TlsSetValue, ExitThread, RtlUnwind, GetCommandLineA, GetVersion, InitializeCriticalSection, DeleteCriticalSection, EnterCriticalSection, LeaveCriticalSection, ExitProcess, WideCharToMultiByte, LCMapStringA, LCMapStringW, TlsAlloc, TlsFree, SetLastError, TlsGetValue, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, GetProcAddress, GetModuleHandleA, SetHandleCount, CloseHandle, GetFileType, GetStartupInfoA, GetModuleFileNameA, FreeEnvironmentStringsA, FreeEnvironmentStringsW, GetEnvironmentStrings, GetEnvironmentStringsW, GetEnvironmentVariableA, GetVersionExA, HeapDestroy, HeapCreate, VirtualFree, WriteFile, GetCPInfo, GetStringTypeA, GetStringTypeW, VirtualAlloc, HeapReAlloc, IsBadWritePtr, SetFilePointer, SetUnhandledExceptionFilter, IsBadCodePtr, GetACP, GetOEMCP, LoadLibraryA, SetStdHandle, FlushFileBuffers, HeapFree, GetProcessHeap, HeapAlloc, GetStdHandle
> ADVAPI32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey
> GDI32.dll: GetSystemPaletteEntries
> USER32.dll: DialogBoxParamA, PostMessageA, EndDialog, ReleaseDC, GetDC
> WINMM.dll: DefDriverProc
( 2 exports )
DllMain, DriverProc
| Ich muss aber sagen nachdem ich alles gemacht habe, passiert es nicht mehr, heute ist es mir nicht aufgefallen, ich denke mal deine Tipps haben mein Problem beseitigt  .
Gruß,
apuz
|
09.10.2008, 23:32
Baum-Darstellung