EXETOOLS FORUM  

Go Back   EXETOOLS FORUM > General > Community Tools

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 07-25-2012, 03:34
mm10121991 mm10121991 is offline
VIP
 
Join Date: Feb 2011
Posts: 133
Rept. Given: 29
Rept. Rcvd 56 Times in 34 Posts
Thanks Given: 2
Thanks Rcvd at 4 Times in 3 Posts
mm10121991 Reputation: 58
Arrow Exeinfo PE ver.0.0.3.1

Exeinfo PE - ver.0.0.3.1 by A.S.L

* version 2012.05.18 with 645 signatures *

PHP Code:
http://rghost.ru/39346618 
Reply With Quote
The Following 6 Users Gave Reputation+1 to mm10121991 For This Useful Post:
alekine322 (07-29-2012), chessgod101 (07-25-2012), giv (07-26-2012), mr.exodia (07-25-2012), uranus64 (07-25-2012), zeuscane (07-25-2012)
The Following User Says Thank You to mm10121991 For This Useful Post:
niculaita (10-09-2015)
  #2  
Old 07-26-2012, 15:39
giv's Avatar
giv giv is offline
VIP
 
Join Date: Jan 2011
Location: Romania
Posts: 1,619
Rept. Given: 795
Rept. Rcvd 1,261 Times in 549 Posts
Thanks Given: 184
Thanks Rcvd at 325 Times in 100 Posts
giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299
Well...

Let's keep'it here.
Attached Files
File Type: zip exeinfope.zip (1.02 MB, 58 views)
Reply With Quote
  #3  
Old 07-26-2012, 17:19
mr.exodia's Avatar
mr.exodia mr.exodia is offline
Super Moderator
 
Join Date: Nov 2011
Posts: 820
Rept. Given: 475
Rept. Rcvd 1,153 Times in 308 Posts
Thanks Given: 73
Thanks Rcvd at 425 Times in 168 Posts
mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299
I gotta admit I wasn't expecting any updates... maybe it will be useful after all

Greetings
__________________
x64dbg: http://x64dbg.com
My Blog: http://mrexodia.cf
Reply With Quote
  #4  
Old 09-07-2012, 20:28
cjack's Avatar
cjack cjack is offline
Family
 
Join Date: Jan 2002
Posts: 126
Rept. Given: 146
Rept. Rcvd 169 Times in 30 Posts
Thanks Given: 129
Thanks Rcvd at 151 Times in 33 Posts
cjack Reputation: 100-199 cjack Reputation: 100-199
Mmmhhh, Symantec Anti-Virus detect a trojan horse in the app dll.....maybe a false alarm.....someone can confirm?
Reply With Quote
  #5  
Old 09-08-2012, 08:29
zemo zemo is offline
Friend
 
Join Date: Jan 2009
Posts: 93
Rept. Given: 37
Rept. Rcvd 18 Times in 8 Posts
Thanks Given: 4
Thanks Rcvd at 1 Time in 1 Post
zemo Reputation: 18
Symantac antivirus is the trojan my friend... trash on it.

Quote:
Originally Posted by cjack View Post
Mmmhhh, Symantec Anti-Virus detect a trojan horse in the app dll.....maybe a false alarm.....someone can confirm?
Reply With Quote
  #6  
Old 09-08-2012, 11:27
abincn
 
Posts: n/a
I can't use advanced_scan.no advanced_scan.dll
Reply With Quote
  #7  
Old 09-09-2012, 02:32
user1's Avatar
user1 user1 is offline
Family
 
Join Date: Sep 2012
Location: Romania
Posts: 484
Rept. Given: 301
Rept. Rcvd 100 Times in 49 Posts
Thanks Given: 189
Thanks Rcvd at 115 Times in 59 Posts
user1 Reputation: 21
Smile

Quote:
Originally Posted by zemo View Post
Symantac antivirus is the trojan my friend... trash on it.
No virus, false alarm.
Reply With Quote
The Following User Says Thank You to user1 For This Useful Post:
niculaita (10-09-2015)
  #8  
Old 09-09-2012, 20:13
giv's Avatar
giv giv is offline
VIP
 
Join Date: Jan 2011
Location: Romania
Posts: 1,619
Rept. Given: 795
Rept. Rcvd 1,261 Times in 549 Posts
Thanks Given: 184
Thanks Rcvd at 325 Times in 100 Posts
giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299
Quote:
Originally Posted by zemo View Post
Symantac antivirus is the trojan my friend... trash on it.
Do you believe this alarms?
Symantec have one of the strangest range of alarms.
From here 80% will be reported as virus/trojan/malware. This is due to software packing most of the cases. So do not believe this crap anymore.
Reply With Quote
  #9  
Old 10-22-2012, 17:13
xtiaoshi's Avatar
xtiaoshi xtiaoshi is offline
bbs.pediy.com
 
Join Date: Feb 2005
Location: China. MainLand
Posts: 1,035
Rept. Given: 140
Rept. Rcvd 428 Times in 183 Posts
Thanks Given: 17
Thanks Rcvd at 144 Times in 68 Posts
xtiaoshi Reputation: 400-499 xtiaoshi Reputation: 400-499 xtiaoshi Reputation: 400-499 xtiaoshi Reputation: 400-499 xtiaoshi Reputation: 400-499
Exeinfo Pe v.0.0.3.2 Beta 2012.07.17 with 658 signatures
Attached Files
File Type: rar Exeinfo_v0032work_658sign.rar (1.05 MB, 70 views)
__________________
妤把抉忍把忘技技扶抉快 抉忌快扼扭快折快扶我快 志抑扭批扼抗忘 我 Windows Crack 妍忌批折快扶我快
妖忘技-Dabei Guanyin 坎抉忱抒我扼忘找找志忘 妖忘技 忌快戒 技我找忘忌抒忘
Reply With Quote
The Following 7 Users Gave Reputation+1 to xtiaoshi For This Useful Post:
alekine322 (10-23-2012), bolo2002 (10-24-2012), chessgod101 (10-23-2012), giv (10-22-2012), nikkapedd (10-23-2012), riverstore (10-22-2012), uranus64 (10-22-2012)
  #10  
Old 10-22-2012, 17:38
giv's Avatar
giv giv is offline
VIP
 
Join Date: Jan 2011
Location: Romania
Posts: 1,619
Rept. Given: 795
Rept. Rcvd 1,261 Times in 549 Posts
Thanks Given: 184
Thanks Rcvd at 325 Times in 100 Posts
giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299
Any update to any PE detective is more than welcomed.
Reply With Quote
  #11  
Old 10-23-2012, 03:47
cxj98
 
Posts: n/a
I would like wait for Protection ID get upgate. bcoz this detector is much powful.
Reply With Quote
  #12  
Old 10-23-2012, 16:28
riverstore riverstore is offline
Family
 
Join Date: Aug 2012
Posts: 47
Rept. Given: 111
Rept. Rcvd 40 Times in 17 Posts
Thanks Given: 22
Thanks Rcvd at 3 Times in 3 Posts
riverstore Reputation: 40
Thanks for the news and the attachment, but it still doesn't detect Themida
Reply With Quote
  #13  
Old 10-23-2012, 17:07
cxj98
 
Posts: n/a
Quote:
Originally Posted by riverstore View Post
Thanks for the news and the attachment, but it still doesn't detect Themida
try to update peid userdb.txt yourself, here is new themida peid sign

[Themida v2.0.1.0 - v2.1.x.x * Sign.By.cxj98]
signature = 83 EC ?? 50 53 E8 ?? ?? ?? ?? CC
ep_only = true
Reply With Quote
  #14  
Old 10-23-2012, 19:15
giv's Avatar
giv giv is offline
VIP
 
Join Date: Jan 2011
Location: Romania
Posts: 1,619
Rept. Given: 795
Rept. Rcvd 1,261 Times in 549 Posts
Thanks Given: 184
Thanks Rcvd at 325 Times in 100 Posts
giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299
Quote:
Originally Posted by riverstore View Post
Thanks for the news and the attachment, but it still doesn't detect Themida
Maybe not the latest versions but the oldest are detected all for sure.
Reply With Quote
  #15  
Old 10-23-2012, 19:25
riverstore riverstore is offline
Family
 
Join Date: Aug 2012
Posts: 47
Rept. Given: 111
Rept. Rcvd 40 Times in 17 Posts
Thanks Given: 22
Thanks Rcvd at 3 Times in 3 Posts
riverstore Reputation: 40
Quote:
Originally Posted by cxj98 View Post
try to update peid userdb.txt yourself, here is new themida peid sign

[Themida v2.0.1.0 - v2.1.x.x * Sign.By.cxj98]
signature = 83 EC ?? 50 53 E8 ?? ?? ?? ?? CC
ep_only = true
Thanks! In a video tutorial by giv, I see that his ExeInfo can detect Themida
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



All times are GMT +8. The time now is 06:10.


劼ICP掘05004977瘍
vBulletin Security provided by vBSecurity v2.2.0 (Lite) - vBulletin Mods & Addons Copyright © 2017 DragonByte Technologies Ltd.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX