home

00000ad5

ViewerEnvChecker ActiveX Control Module

Xinics Inc.

Publisher:
(C) Xinics  (signed by Xinics Inc.)

Product:
ViewerEnvChecker ActiveX Control Module

Version:
2, 0, 0, 30

MD5:
80241865096e3df90526a3741f297257

SHA-1:
4d21ac2e972ebfeecf0900bace88d23da27306a8

SHA-256:
9f1721cc10ec8e3bdfa4cbe3c705012a68404dc8a126c5ffa48f2a081348b395

Scanner detections:
1 / 68

Status:
Clean  (1 probable false positive detection)

Explanation:
This is mosty likely a false positive detection, the file is probably clean.

Analysis date:
4/26/2024 12:29:11 PM UTC  (today)

Scan engine
Detection
Engine version

Trend Micro House Call
TROJ_GEN.F47V0501
7.2.324

File size:
734.1 KB (751,672 bytes)

Product version:
2, 0, 0, 30

Copyright:
Copyright (C) 2008-2013

Original file name:
ViewerEnvChecker.OCX

Common path:
C:\ProgramData\application data\symantec\symantec endpoint protection\00000ad5

Digital Signature
Signed by:
Xinics Inc.

Authority:
Thawte, Inc.

Valid from:
7/28/2011 9:00:00 AM

Valid to:
8/27/2013 8:59:59 AM

Subject:
CN=Xinics Inc., O=Xinics Inc., L=Guro-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
4B255EE100D0FAAFBE8E92FEB62F5112

File PE Metadata
Compilation timestamp:
4/19/2013 3:48:42 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
12288:h2mOkQrLhkGjc3Ny1WKUfNf0n0rhPrFY7bfspxfa8QlL28:ekr3NWWfNfa0rhDqvfVZ28

Entry address:
0x61E8F

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, CF, EA, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 6A, 00, FF, 75, 14, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 3A, EB, 00, 00, 83, C4, 14, 5D, C3, 8B, FF, 55, 8B, EC, 8B, 45, 08, 66, 8B, 08, 40, 40, 66, 85, C9, 75, F6, 2B, 45, 08, D1, F8, 48, 5D, C3, 8B, FF, 55, 8B, EC, 8B, 55, 08, 53, 56, 57, 33, FF, 3B, D7, 74, 07, 8B, 5D, 0C, 3B, DF, 77, 1E, E8, 38, 05, 00, 00, 6A, 16, 5E, 89, 30, 57, 57, 57, 57...
 
[+]

Entropy:
6.4942

Code size:
515.5 KB (527,872 bytes)

Scan 00000ad5 - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.