Author Topic: weird file (Read 5433 times)

Axon · « **on:** March 05, 2013, 03:51:11 am »

Just found this in my usb stick, look at the modification date

Corrupted_Fear · « **Reply #1 on:** March 05, 2013, 04:10:47 am »

Future self giving you a powerful detection tool that will be needed in your upcoming mission that you are unaware of currently?

Zesh · « **Reply #2 on:** March 05, 2013, 04:21:22 am »

Quote from: Corrupted_Fear on March 05, 2013, 04:10:47 am

Future self giving you a powerful detection tool that will be needed in your upcoming mission that you are unaware of currently?

Aha, most likely

proxx · « **Reply #3 on:** March 05, 2013, 04:54:28 am »

Quote from: Axon on March 05, 2013, 03:51:11 am

Just found this in my usb stick, look at the modification date

Yeah either the above

Or maybe youve used a machine somewhere that had the time settings changed.
Some punk.

Or the other obvious awnser.

Kulverstukas · « **Reply #4 on:** March 05, 2013, 08:19:32 am »

Or it's a piece of virus... if you say you found it on a USB stick, then it makes sense. Why would Windows put NTDETECT.COM on a usb stick for no reason.

Fur · « **Reply #5 on:** March 05, 2013, 08:21:14 am »

File times can be changed easily.

Code: (Csharp) [Select]

// Change a file's last accessed time to the 1/1/2037 at 00:00:00.
DateTime newDate = new DateTime(2037, 1, 1);
File.SetLastAccessTime("path/to/file", newDate);

9/02/2038 at 03:14:08 is the maximum 32-bit unix time, after which is will reset to 1901.

Looks like the typical result of a usb spreader to me.
0/10 would not run.

Sorry if I sound like Captain Obvious.

Axon · « **Reply #6 on:** March 05, 2013, 08:36:55 am »

I haven't used it in a couple of weeks or more,but recently a friend of mine used it to transfer movies between his computer to another friend's computer at the office. I just asked my friend and he said he only used it to transfer movies.

Deque · « **Reply #7 on:** March 05, 2013, 08:51:32 am »

Several viruses use the modification date to a certain number of years in the future to mark files that they have infected. So they can prevent infecting files more than once.
Have you uploaded it to virustotal or similar?
You should notify your friends if that is a virus.

Axon · « **Reply #8 on:** March 05, 2013, 09:07:43 am »

Hold on... I think I know where this file came from, a while ago my older brother had some malfunctions in his Windows XP PC, the problem as I remember it was that C://WINDOWS/system32 doesn't exist, so he downloaded some fix file or something like that, and used my usb to burn this iso file on it, anyway next to this file there is a folder called I386 and it's filled with windows shit.

So I think this is a false alarm. However, I also have two files named WIN51 and WIN51IC, and both of them were modified on Monday,Nov 7 1988.

EvilZone

News:

Author Topic: weird file (Read 5433 times)

Axon

weird file

Corrupted_Fear

Re: weird file

Zesh

Re: weird file

proxx

Re: weird file

Kulverstukas

Re: weird file

Fur

Re: weird file

Axon

Re: weird file

Deque

Re: weird file

Axon

Re: weird file