在使用本网站之前,请确保您了解并同意我们的数据保护政策。 查看隐私政策
在线病毒检测器 | v.1.0.172.174 |
数据库版本: | 2024-04-22 12:00:34 |
这是一个通用检测名称,用于识别具有特洛伊木马特征的潜在有害或可疑文件或程序。这是一种伪装成合法或良性程序但包含恶意代码或功能的恶意软件。
File | ep_setup.exe |
已检查 | 2024-04-22 12:09:57 |
MD5 | 70238c15bc23e1ba24e61d3ec7c75a5d |
SHA1 | a2db5a689af3ee18ebd746017b7834b041165f3f |
SHA256 | 167f90fad0d3df4e2bfd4a6b07e459a6e414f63fa20e473aedc8c82f3b21eaef |
SHA512 | 596e934b77a5d81072f92b267cc8856fb3ffb27c413b30890f107fdb9eefd88797a99beb724e25ad740dea3c32e6a541069ee64e0985083e30f2abbff93932af |
Imphash | 305fb72e72b5901adbaec24662d253ae |
File Size | 2529792 bytes |
Gridinsoft能够识别并消除Spy.Win64.Gen.tr,无需进一步的用户干预。
CompanyName | VALINET Solutions SRL |
FileDescription | ExplorerPatcher Setup Program |
FileVersion | 22621.3296.64.1 |
InternalName | ep_setup.exe |
LegalCopyright | Copyright (C) 2006-2024 VALINET Solutions SRL. All rights reserved. |
OriginalFilename | ep_setup.exe |
ProductName | ExplorerPatcher |
ProductVersion | 22621.3296.64.1 |
Translation | 0x0409 0x04b0 |
Image Base: | 0x140000000 |
Entry Point: | 0x140005384 |
Compilation: | 2024-03-13 04:32:43 |
Checksum: | 0x00000000 (Actual: 0x00273bc6) |
OS Version: | 6.0 |
PDB Path: | D:\a\ExplorerPatcher\ExplorerPatcher\build\Release\ep_setup.pdb |
PEiD: | PE32+ executable (GUI) x86-64, for MS Windows |
Sign: | The PE file does not contain a certificate table. |
Sections: | 7 |
Imports: | KERNEL32, USER32, ADVAPI32, SHELL32, ole32, OLEAUT32, RstrtMgr, VERSION, SHLWAPI, |
Exports: | 4 |
Resources: | 42 |
名称 | 虚拟地址 | 虚拟大小 | 原始大小 | MD5 | 熵 |
---|---|---|---|---|---|
.text | 0x00001000 | 0x0001b440 | 0x0001b600 | 8b7f016cfaf571279cf72e1f8230493d | 6.46 |
.rdata | 0x0001d000 | 0x0000d3ba | 0x0000d400 | 434d52fcbd68b09e0b75bf1f61457504 | 4.97 |
.data | 0x0002b000 | 0x00001f60 | 0x00000c00 | 820a9f2aa87351630406cc20c8f516ed | 1.94 |
.pdata | 0x0002d000 | 0x00001518 | 0x00001600 | b9636809627487fe6bfde2bfef981f61 | 5.09 |
_RDATA | 0x0002f000 | 0x000001f4 | 0x00000200 | d0aa4922ed6424216162caa029671c8c | 3.65 |
.rsrc | 0x00030000 | 0x0023df28 | 0x0023e000 | 59c74a5de3aa2fa17137faa44aba5ae6 | 6.05 |
.reloc | 0x0026e000 | 0x000006bc | 0x00000800 | 3b76314b2ac7766314c8ff9167fcc1e8 | 5.04 |