Code:
Alles auswählen Aufklappen ATTFilter
Datei dvmurl.dll empfangen 2009.09.06 09:02:54 (UTC)
Status: Laden ... Wartend Warten Überprüfung Beendet Nicht gefunden Gestoppt
Ergebnis: 0/41 (0%)
File size: 146528 bytes
MD5...: 31951e15cbc303b885634f420bce7ead
SHA1..: 0c119b99dad2c9b97b58e216688ddff4f143000f
SHA256: 1b29e332b6f0505a61624da20e732cb48cd8b321b0f5409b212d157117f487d8
ssdeep: 3072:GbaGiaYE94CWK2+X8bvASTq7AsKau+MWAqHFOOA9saWKpozp56l/:GbhVn4
C4e8ItMT0wJ9X0u
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1cbdc
timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992)
machinetype.......: 0x14c (I386)
( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
CODE 0x1000 0x1bbf4 0x1bc00 6.48 23c351682cd52f916083e86bdbbc468e
DATA 0x1d000 0x968 0xa00 4.21 2fc9921b2c2141aae75d223dba402b37
BSS 0x1e000 0x93d 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.idata 0x1f000 0xfde 0x1000 4.86 7b4a2afc1d6d6569b614dc40538fd5fe
.edata 0x20000 0xa3 0x200 1.84 595d554622848f6104eb32eb0b6ebe9c
.reloc 0x21000 0x2304 0x2400 6.64 4db7e74956bd6ba5b6d605ec2fa01815
.rsrc 0x24000 0x2600 0x2600 3.79 16ac20960dd88aaf3d34acb2e325591f
( 15 imports )
> kernel32.dll: DeleteCriticalSection, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, VirtualFree, VirtualAlloc, LocalFree, LocalAlloc, GetVersion, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, WriteFile, UnhandledExceptionFilter, RtlUnwind, RaiseException, GetStdHandle
> user32.dll: GetKeyboardType, LoadStringA, MessageBoxA, CharNextA
> advapi32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey
> oleaut32.dll: SysFreeString, SysReAllocStringLen, SysAllocStringLen
> kernel32.dll: TlsSetValue, TlsGetValue, TlsFree, TlsAlloc, LocalFree, LocalAlloc
> advapi32.dll: RegSetValueExA, RegQueryValueExA, RegOpenKeyExA, RegOpenKeyA, RegFlushKey, RegDeleteValueA, RegDeleteKeyA, RegCreateKeyExA, RegCloseKey
> kernel32.dll: WriteFile, WaitForSingleObject, VirtualQuery, SetFilePointer, SetEvent, SetErrorMode, SetEndOfFile, ResetEvent, ReadFile, MultiByteToWideChar, MulDiv, LoadLibraryA, LeaveCriticalSection, InitializeCriticalSection, GetVersionExA, GetUserDefaultLangID, GetThreadLocale, GetStringTypeExA, GetStdHandle, GetShortPathNameA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLocalTime, GetLastError, GetFullPathNameA, GetDiskFreeSpaceA, GetDateFormatA, GetCurrentThreadId, GetCPInfo, GetACP, InterlockedIncrement, InterlockedExchange, InterlockedDecrement, FreeLibrary, FormatMessageA, FindFirstFileA, FindClose, EnumCalendarInfoA, EnterCriticalSection, DeleteCriticalSection, CreateFileA, CreateEventA, CompareStringA, CloseHandle
> gdi32.dll: UnrealizeObject, SetTextColor, SetROP2, SetBkMode, SetBkColor, SelectPalette, SelectObject, MoveToEx, GetTextMetricsA, GetSystemPaletteEntries, GetStockObject, GetDeviceCaps, GetCurrentPositionEx, DeleteObject, DeleteDC, CreatePenIndirect, CreatePalette, CreateFontIndirectA, CreateBrushIndirect
> user32.dll: ReleaseDC, PostThreadMessageA, MessageBoxA, LoadStringA, LoadIconA, GetSystemMetrics, GetSysColor, GetDC, CharNextA, CharToOemA
> ole32.dll: CoTaskMemFree, StringFromCLSID, CoLockObjectExternal, CoDisconnectObject, CoRevokeClassObject, CoRegisterClassObject, CoUninitialize, CoInitialize, IsEqualGUID
> oleaut32.dll: CreateErrorInfo, GetErrorInfo, SetErrorInfo, RegisterTypeLib, LoadTypeLib, SysFreeString
> ole32.dll: IsEqualGUID, CoTaskMemFree, StringFromCLSID
> kernel32.dll: Sleep
> oleaut32.dll: SafeArrayPtrOfIndex, SafeArrayGetUBound, SafeArrayGetLBound, SafeArrayCreate, VariantChangeType, VariantCopy, VariantClear, VariantInit
> wininet.dll: InternetOpenUrlA, InternetOpenA, InternetCloseHandle
( 4 exports )
DllCanUnloadNow, DllGetClassObject, DllRegisterServer, DllUnregisterServer
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Windows OCX File (89.4%)
Win32 Executable Generic (6.1%)
Win16/32 Executable Delphi generic (1.5%)
Generic Win/DOS Executable (1.4%)
DOS Executable Generic (1.4%)
06.09.2009, 10:10
Baum-Darstellung