Fehlende Berechtingungen

Julian Z.

Hi die lsass.exe datei finde ich leider nicht auf meinem PC, aber hier ist das Ergebniss für winlogen.exe:



File winlogen.exe received on 11.05.2008 16:02:33 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2008.11.5.3 2008.11.05 -
AntiVir 7.9.0.26 2008.11.05 TR/Crypt.XPACK.Gen
Authentium 5.1.0.4 2008.11.05 -
Avast 4.8.1248.0 2008.11.04 Win32:Lighty-B
AVG 8.0.0.161 2008.11.05 SHeur.CQFG
BitDefender 7.2 2008.11.05 Packer.Malware.Lighty.N
CAT-QuickHeal 9.50 2008.11.04 -
ClamAV 0.94.1 2008.11.05 -
DrWeb 4.44.0.09170 2008.11.05 Trojan.Packed.1208
eSafe 7.0.17.0 2008.11.05 -
eTrust-Vet 31.6.6190 2008.11.05 Win32/FakeAlert.IJ
Ewido 4.0 2008.11.05 -
F-Prot 4.4.4.56 2008.11.05 -
F-Secure 8.0.14332.0 2008.11.05 -
Fortinet 3.117.0.0 2008.11.05 -
GData 19 2008.11.05 Packer.Malware.Lighty.N
Ikarus T3.1.1.45.0 2008.11.05 VirTool.Win32.Obfuscator.DF
K7AntiVirus 7.10.516 2008.11.04 -
Kaspersky 7.0.0.125 2008.11.05 -
McAfee 5424 2008.11.04 Generic.dx
Microsoft 1.4005 2008.11.05 Trojan:Win32/Ertfor.A
NOD32 3586 2008.11.05 probably a variant of Win32/TrojanDownloader.Small.NTQ
Norman 5.80.02 2008.11.05 -
Panda 9.0.0.4 2008.11.05 Generic Malware
PCTools 4.4.2.0 2008.11.05 -
Prevx1 V2 2008.11.05 Worm
Rising 21.02.22.00 2008.11.05 -
SecureWeb-Gateway 6.7.6 2008.11.05 Trojan.Crypt.XPACK.Gen
Sophos 4.35.0 2008.11.05 -
Sunbelt 3.1.1783.2 2008.11.05 Trojan-Clicker.Win32.Agent.sea
Symantec 10 2008.11.05 Trojan.Virantix.C
TheHacker 6.3.1.1.140 2008.11.05 -
TrendMicro 8.700.0.1004 2008.11.05 -
VBA32 3.12.8.9 2008.11.05 -
ViRobot 2008.11.5.1453 2008.11.05 -
VirusBuster 4.5.11.0 2008.11.05 Trojan.FakeAlert.Gen!Pac.3
Additional information
File size: 15000 bytes
MD5...: f542d1186e1a342916a24ce8d8f3a2b8
SHA1..: 6aaa4a2f9412c0fc565297ad7ae1dd1e8533129c
SHA256: 838026efe27e7ead053f0bc1186291b8eba85198cf1dbb815b8a9ac52db5dd45
SHA512: b6337beae21600223eaf012feeea325cb1d0bd0930c3eb4effddc52079954339<br>aa51dfd1993e1bcdc94ea2d94aaaa4d651c0d9d88ceee5576b3a4793863ac5f7
PEiD..: -
TrID..: File type identification<br>Win32 Executable Generic (42.3%)<br>Win32 Dynamic Link Library (generic) (37.6%)<br>Generic Win/DOS Executable (9.9%)<br>DOS Executable Generic (9.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x401008<br>timedatestamp.....: 0x48ff3b94 (Wed Oct 22 14:41:24 2008)<br>machinetype.......: 0x14c (I386)<br><br>( 4 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x1000 0x2000 0x200 5.03 1d35d9bb08f731ee56f34c95531c661e<br>.data 0x3000 0x2000 0x1e00 7.22 de10d81d7607c6985ff2a1fb2f5b1b79<br>.xdata 0x5000 0x3000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br>.rsrc 0x8000 0x3000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br><br>( 3 imports ) <br>&gt; KERNEL32.DLL: CloseHandle, CreatePipe, ExitProcess, FreeEnvironmentStringsW, GetBinaryType, GetCommMask, GetCommModemStatus, GetConsoleOutputCP, GetEnvironmentVariableW, GetFullPathNameW, GetHandleInformation, GetProfileIntW, GetThreadLocale, GlobalUnWire, GlobalUnfix, HeapReAlloc, LocalShrink, LockFile, LockFileEx, OpenFileMappingA, OpenFileMappingW, OpenSemaphoreA, SetCriticalSectionSpinCount, SetFileApisToANSI, SetLocaleInfoA, SetStdHandle, WriteFile, WriteProcessMemory, WriteProfileStringA, lstrcmpiA<br>&gt; USER32.DLL: ArrangeIconicWindows, CascadeChildWindows, CharToOemW, CloseDesktop, CopyRect, CreateAcceleratorTableA, DefDlgProcA, DeleteMenu, DrawAnimatedRects, EndTask, GetDlgCtrlID, GetGuiResources, GetInputState, GetKeyNameTextW, GetSubMenu, GrayStringA, GrayStringW, IsDialogMessage, LoadAcceleratorsA, LoadAcceleratorsW, LoadCursorA, LoadMenuIndirectA, MessageBoxW, RegisterLogonProcess, SetFocus, SetLastErrorEx, SetParent, SetRectEmpty, SetWindowsHookA, WINNLSGetIMEHotkey<br>&gt; GDI32.DLL: CloseEnhMetaFile, CopyMetaFileA, CreateBitmapIndirect, CreateDiscardableBitmap, CreateFontIndirectA, CreatePatternBrush, CreateRoundRectRgn, DeleteColorSpace, DeleteObject, DeviceCapabilitiesExA, GdiGetBatchLimit, GetCharABCWidthsW, GetClipRgn, GetColorSpace, GetPaletteEntries, GetROP2, GetRasterizerCaps, GetTextCharsetInfo, GetWorldTransform, PaintRgn, PatBlt, ResizePalette, SelectPalette, SetROP2, SetRectRgn, SetWindowExtEx, TranslateCharsetInfo, UpdateColors<br><br>( 0 exports ) <br>
Prevx info: http://info.prevx.com/aboutprogramte...8624003DC849B3