Below is the report...........
Thanks,
Joe
--------------
ALCRMV.EXE received on 2010.07.10 14:47:54 (UTC)
Current status: finished
Result: 3/40 (7.50%)
Compact Print results
Antivirus Version Last Update Result
a-squared 5.0.0.31 2010.07.10 -
AhnLab-V3 2010.07.10.00 2010.07.09 -
AntiVir 8.2.4.10 2010.07.09 -
Antiy-AVL 2.0.3.7 2010.07.09 -
Authentium 5.2.0.5 2010.07.10 -
Avast 4.8.1351.0 2010.07.10 Win32:Malware-gen
Avast5 5.0.332.0 2010.07.10 Win32:Malware-gen
AVG 9.0.0.836 2010.07.10 -
BitDefender 7.2 2010.07.10 -
CAT-QuickHeal 11.00 2010.07.10 -
ClamAV 0.96.0.3-git 2010.07.10 -
Comodo 5381 2010.07.10 -
DrWeb 5.0.2.03300 2010.07.10 -
eTrust-Vet 36.1.7696 2010.07.10 -
F-Prot 4.6.1.107 2010.07.09 -
F-Secure 9.0.15370.0 2010.07.09 -
Fortinet 4.1.143.0 2010.07.10 -
GData 21 2010.07.10 Win32:Malware-gen
Ikarus T3.1.1.84.0 2010.07.10 -
Jiangmin 13.0.900 2010.07.10 -
Kaspersky 7.0.0.125 2010.07.10 -
McAfee 5.400.0.1158 2010.07.10 -
McAfee-GW-Edition 2010.1 2010.07.05 -
Microsoft 1.5902 2010.07.10 -
NOD32 5267 2010.07.10 -
Norman 6.05.11 2010.07.10 -
nProtect 2010-07-10.01 2010.07.10 -
Panda 10.0.2.7 2010.07.10 -
PCTools 7.0.3.5 2010.07.10 -
Prevx 3.0 2010.07.10 -
Rising 22.55.04.04 2010.07.09 -
Sophos 4.55.0 2010.07.10 -
Sunbelt 6566 2010.07.10 -
Symantec 20101.1.0.89 2010.07.10 -
TheHacker 6.5.2.1.311 2010.07.08 -
TrendMicro 9.120.0.1004 2010.07.10 -
TrendMicro-HouseCall 9.120.0.1004 2010.07.10 -
VBA32 3.12.12.6 2010.07.09 -
ViRobot 2010.6.29.3912 2010.07.10 -
VirusBuster 5.0.27.0 2010.07.09 -
Additional information
File size: 139264 bytes
MD5 : b0f1b46426ee2467395df642cd8900cf
SHA1 : 1a616ac4f22bd831eff0e754a6cf78231637c6df
SHA256: 30153fc6f78da1ee0f7939894be3c05dd93f27691be2388abb5d4dc59b0478fc
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5A0D
timedatestamp.....: 0x3F171EAE (Fri Jul 18 00:09:50 2003)
machinetype.......: 0x14C (Intel I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x16062 0x17000 6.37 e8a62d25181de0f806911e4b2146f70f
.rdata 0x18000 0x4D98 0x5000 4.79 039d77668c92b8eee7a7365cb8c9f1a8
.data 0x1D000 0x6068 0x2000 3.92 e9ac21d24d073090774c881b3fcd97c1
.rsrc 0x24000 0x2F48 0x3000 3.97 b3041e9c97db4097aa33e5f6d8b689eb
( 7 imports )
> advapi32.dll: RegCreateKeyExA, RegSetValueExA, RegOpenKeyExA, RegDeleteValueA, RegOpenKeyA, RegDeleteKeyA, RegCloseKey, RegQueryValueExA
> comctl32.dll: -
> gdi32.dll: GetClipBox, SetBkColor, GetObjectA, DeleteDC, SaveDC, RestoreDC, SelectObject, GetStockObject, SetBkMode, SetMapMode, SetViewportOrgEx, OffsetViewportOrgEx, SetViewportExtEx, ScaleViewportExtEx, SetWindowExtEx, ScaleWindowExtEx, IntersectClipRect, CreateBitmap, PatBlt, DeleteObject, GetDeviceCaps, CreateSolidBrush, PtVisible, RectVisible, TextOutA, ExtTextOutA, Escape, CreateDIBitmap, CreateCompatibleDC, BitBlt, GetTextExtentPointA, SetTextColor
> kernel32.dll: RtlUnwind, GetStartupInfoA, ExitProcess, TerminateProcess, HeapAlloc, RaiseException, HeapReAlloc, HeapSize, GetACP, UnhandledExceptionFilter, FreeEnvironmentStringsA, FreeEnvironmentStringsW, GetEnvironmentStrings, HeapFree, WideCharToMultiByte, HeapCreate, VirtualFree, VirtualAlloc, IsBadWritePtr, LCMapStringA, LCMapStringW, SetUnhandledExceptionFilter, GetStringTypeA, GetStringTypeW, IsBadReadPtr, IsBadCodePtr, SetStdHandle, FindNextFileA, GetLastError, FormatMessageA, LocalFree, SetLastError, GetProfileStringA, FlushFileBuffers, SetFilePointer, WriteFile, GetCurrentProcess, SetErrorMode, GetOEMCP, GetCPInfo, SizeofResource, GetProcessVersion, WritePrivateProfileStringA, GlobalFlags, lstrcpynA, TlsGetValue, LocalReAlloc, TlsSetValue, EnterCriticalSection, GlobalReAlloc, LeaveCriticalSection, TlsFree, GlobalHandle, DeleteCriticalSection, TlsAlloc, InitializeCriticalSection, MulDiv, LoadLibraryA, FreeLibrary, GetVersion, GlobalGetAtomNameA, GlobalAddAtomA, GlobalFindAtomA, GetModuleHandleA, OutputDebugStringA, Sleep, GetProcAddress, MultiByteToWideChar, InterlockedDecrement, GetCommandLineA, InterlockedIncrement, GlobalUnlock, GlobalFree, LockResource, FindResourceA, LoadResource, CloseHandle, GetModuleFileNameA, GlobalLock, GlobalAlloc, GlobalDeleteAtom, lstrcmpA, lstrcmpiA, GetCurrentThread, GetCurrentThreadId, LocalAlloc, lstrlenA, GetWindowsDirectoryA, FindFirstFileA, lstrcpyA, lstrcatA, SetFileAttributesA, DeleteFileA, GetFileType, HeapDestroy, GetEnvironmentStringsW, SetHandleCount, GetStdHandle
> setupapi.dll: SetupCloseInfFile, SetupDiGetClassDevsA, SetupGetInfFileListA, SetupGetStringFieldA, SetupFindFirstLineA, SetupOpenInfFileA, SetupDiEnumDeviceInfo, SetupDiDestroyDeviceInfoList, SetupDiRemoveDevice, SetupDiGetDeviceRegistryPropertyA, SetupDiGetDeviceInstanceIdA
> user32.dll: SetWindowTextA, ShowWindow, ClientToScreen, GetWindowDC, BeginPaint, IsDialogMessageA, EndPaint, DrawTextA, GrayStringA, LoadCursorA, GetClassNameA, PtInRect, TabbedTextOutA, LoadStringA, GetSysColorBrush, InflateRect, DestroyMenu, InvalidateRect, GetTopWindow, GetCapture, WinHelpA, wsprintfA, GetClassInfoA, RegisterClassA, GetMenu, GetMenuItemCount, GetSubMenu, UpdateWindow, DefWindowProcA, CreateWindowExA, GetClassLongA, SetPropA, UnhookWindowsHookEx, GetPropA, CallWindowProcA, RemovePropA, GetMessageTime, GetMessagePos, GetForegroundWindow, GetWindow, SetWindowLongA, OffsetRect, IntersectRect, GetWindowRect, CopyRect, GetDC, ReleaseDC, EndDialog, SetActiveWindow, IsWindow, CreateDialogIndirectParamA, DestroyWindow, GetDlgItem, GetMenuCheckMarkDimensions, LoadBitmapA, GetMenuState, ModifyMenuA, SetMenuItemBitmaps, CheckMenuItem, EnableMenuItem, GetFocus, GetNextDlgTabItem, GetMessageA, TranslateMessage, DispatchMessageA, GetActiveWindow, GetKeyState, CallNextHookEx, ValidateRect, IsWindowVisible, PeekMessageA, GetCursorPos, SetWindowsHookExA, GetParent, GetLastActivePopup, IsWindowEnabled, GetWindowLongA, MessageBoxA, SetCursor, PostQuitMessage, LoadIconA, EnableWindow, GetClientRect, IsIconic, MapWindowPoints, GetSysColor, SetFocus, AdjustWindowRectEx, ScreenToClient, SendDlgItemMessageA, GetWindowTextA, GetDlgCtrlID, GetMenuItemID, GetWindowTextLengthA, PostMessageA, SendMessageA, DrawIcon, GetSystemMetrics, RegisterWindowMessageA, SetWindowPos, GetWindowPlacement, SystemParametersInfoA, SetForegroundWindow, ShowCaret, IsWindowUnicode, CharNextA, DefDlgProcA, DrawFocusRect, ExcludeUpdateRgn, HideCaret, UnregisterClassA
> winspool.drv: OpenPrinterA, DocumentPropertiesA, ClosePrinter
( 0 exports )
TrID : File type identification
Win64 Executable Generic (54.6%)
Win32 Executable MS Visual C++ (generic) (24.0%)
Windows Screen Saver (8.3%)
Win32 Executable Generic (5.4%)
Win32 Dynamic Link Library (generic) (4.8%)
ssdeep: 3072:TMF6KWkHBBj8FJQ+mZRS+BavbaQo6wV2NnyI:TMF6KWYBBIFWPF2N
sigcheck: publisher....: Realtek Semiconductor Corp.
copyright....: Copyright (C) 2000-2001 Realtek Semiconductor Corp.
product......: Realtek AC_97 Removing Tool
description..: Tool for Removing Drivers
original name: alcrmv.exe
internal name: alcrmv
file version.: 1, 6, 2, 0
comments.....: Written by Desker
signers......: -
signing date.: -
verified.....: Unsigned
PEiD : -
RDS : NSRL Reference Data Set