Anti-Virus-1: new fake antivirus
Anti-Virus-1: new fake antivirus
Posted: February 20th, 2009<!-- | Author: | Filed under: --> | Tags: Fake antivirus, Rogue |
Sites that distribute this:
Av1-site info
Av1-download info
a944a2c430ee9fffe5cb0b03139c921337e9dfd2e82e872058839251d32f3d28 ssdeep: 1536:luw9CaLG6L+vJ4s/6kkHr/C1RGi5Y7A0xoJ:jRG6L+lTk2bGi5YPxo PEiD..: - TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%) PEInfo: PE Structure information
( base data )
entrypointaddress.: 0×402251
timedatestamp'..: 0×4999a598 (Mon Feb 16 17:42:48 2009)
machinetype''.: 0×14c (I386)
( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0×1000 0×712c 0×7200 6.58 c760987fe39e0977bcae5d0c40b9848d
.rdata 0×9000 0×2c9c 0×2e00 5.30 59d80ef15a167957ec0394e308051ddd
.data 0xc000 0×21bc 0xe00 2.47 6ee4b8914cc69f76588bb18764af2e5e
.rsrc 0xf000 0×4a10 0×4c00 5.60 99580890a59ec945f09e20510f4b8e97
.reloc 0×14000 0×1390 0×1400 3.84 73b76a54072e077b2e7ad5a4720332cb
( 7 imports )
> WININET.dll: InternetReadFile, InternetQueryDataAvailable, InternetErrorDlg, HttpSendRequestW, HttpOpenRequestW, InternetCloseHandle, InternetConnectW, InternetOpenW
> SHLWAPI.dll: PathAppendW
> WINHTTP.dll: WinHttpReceiveResponse, WinHttpSendRequest, WinHttpOpenRequest, WinHttpConnect, WinHttpOpen, WinHttpQueryDataAvailable, WinHttpReadData, WinHttpCloseHandle
> KERNEL32.dll: GetStringTypeA, WideCharToMultiByte, GetLocaleInfoA, IsValidCodePage, GetOEMCP, GetACP, GetCPInfo, ExitProcess, MultiByteToWideChar, GetStringTypeW, GetLastError, CreateProcessW, CloseHandle, OpenMutexW, CreateMutexW, GetModuleFileNameW, CreateFileW, SetFilePointer, ReadFile, WriteFile, LoadLibraryA, RtlUnwind, LCMapStringA, LCMapStringW, CreateDirectoryW, LeaveCriticalSection, InitializeCriticalSectionAndSpinCount, HeapSize, GetSystemTimeAsFileTime, HeapAlloc, HeapFree, GetStartupInfoW, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, RaiseException, DeleteCriticalSection, EnterCriticalSection, VirtualFree, VirtualAlloc, HeapReAlloc, HeapCreate, GetModuleHandleW, Sleep, GetProcAddress, GetStdHandle, GetModuleFileNameA, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineW, SetHandleCount, GetFileType, GetStartupInfoA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, InterlockedIncrement, SetLastError, GetCurrentThreadId, InterlockedDecrement, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId
> USER32.dll: GetDesktopWindow, MessageBoxW, LoadStringW
> ADVAPI32.dll: RegCreateKeyExW, RegCloseKey, RegSetValueExW, RegOpenKeyExW, RegOpenCurrentUser, RegSetValueExA
> SHELL32.dll: SHGetFolderPathW, -
About the Author:
Subscribe RSS Feed
Sitemap
Contact Us
Navigation
Finding Jobs in Exciting World of Technology!
Tips for Finding Computer & IT Careers
Changing Careers? Look Here To Find Info on Exciting Computer & IT Careers!
Fixing Your PC
Computer Help 911
Customize Your Ipod
Tips & Cool Stuff for Your IPOD
Help for Your PC
PowerfulTips for Maintaining & Repairing Your PC
Tips for Maintaining Windows
Help Maintaining & Repairing Your Windows Software
PC Stuff for Nerds
Nerds Find PC Tips and Cool Computer Accessories
Printer & Computer Repair
Valuable Information to Help Fix & Maintain Your PC & Printers
Printer & Computer Sales & Repair
Valuable Information to Help Choose and Buy the Best PCs & Printers
Archives
- June, 2009
- July, 2009
- August, 2009
- September, 2009
- October, 2009
- November, 2009
- December, 2009
- January, 2010
- February, 2010
- March, 2010
- April, 2010
- May, 2010
- June, 2010
- July, 2010
- August, 2010
- September, 2010
- October, 2010
- November, 2010
- December, 2010
- January, 2011
- February, 2011
- March, 2011
- April, 2011
- May, 2011
- June, 2011
- July, 2011
- August, 2011
- September, 2011
- October, 2011
- November, 2011
- December, 2011
- January, 2012
- February, 2012