Binary Analysis
p2psrv.exe help Jun 23 2006 08:37PM
Tommy Gast (tommygast gmail com)
I'm looking for some help with this file. I found this running on a
machine that I have. It placed it's self in the C:\Program
Files\Common Files\Sogou PXP folder. I first noticed it when it was
attempting to connect out to 61.135.130.108 over varius different
ports. I used IDA to take a look at it, but I don't know coding, but
I was able to see that it placed a Trusted Cert in I.E for Beijing
Sohu New Era Information
Technology Co. Ltd. Issued by VeriSign Class 3 Code. And some other
actions. I have a copy for anyone that would like to look at it and I
searched on the internet for the file name and only got back chinese
web sites and a few others nothing with any useful information. I
also ran anti Trojan, Virus and spyware and did not return any hits.
Any
help would be great.

Tom G.

Please email for a copy of this program.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus