303 lines
13 KiB
XML
303 lines
13 KiB
XML
<xml version="1.0" encoding="utf-8">
|
|
<!--
|
|
This file is part of the pestudio solution (www.winitor.com)
|
|
It contains the Thresholds used by the solution.-->
|
|
|
|
<settings>
|
|
<setting>
|
|
<enable>1</enable>
|
|
</setting>
|
|
</settings>
|
|
|
|
<thresholds>
|
|
<minimums>
|
|
<Image id="0">10240</Image>
|
|
<Header id="1">64</Header>
|
|
<DosStub id="2">20</DosStub>
|
|
<FileHeader id="3">20</FileHeader>
|
|
<OptionaHeader id="4">224</OptionaHeader>
|
|
<DataDirectory id="5">1</DataDirectory>
|
|
<String id="6">4</String>
|
|
<VersionInfo id="7">100</VersionInfo>
|
|
<BuiltinResource id="8">4</BuiltinResource>
|
|
<Code id="9">256</Code>
|
|
<Manifest id="10">80</Manifest>
|
|
<ResourceHtml id="11">128</ResourceHtml>
|
|
<CustomResource id="12">20</CustomResource>
|
|
<CustomDefault id="13">10</CustomDefault>
|
|
<DiskSection id="14">10</DiskSection>
|
|
<DigitalCertificate id="15">100</DigitalCertificate>
|
|
<InitializedData id="16">0</InitializedData>
|
|
<XY id="17"></XY>
|
|
<XY id="18"></XY>
|
|
<XY id="19"></XY>
|
|
<XY id="20"></XY>
|
|
<XY id="21"></XY>
|
|
<XY id="22"></XY>
|
|
<XY id="23"></XY>
|
|
<XY id="24"></XY>
|
|
<XY id="25"></XY>
|
|
<XY id="26"></XY>
|
|
<XY id="27"></XY>
|
|
<XY id="28"></XY>
|
|
<XY id="29"></XY>
|
|
|
|
<ImportedLibraries id="30">3</ImportedLibraries>
|
|
<ImportedSymbols id="31">10</ImportedSymbols>
|
|
<Sections id="32">1</Sections>
|
|
<ExportedSymbols id="33">0</ExportedSymbols>
|
|
<Strings id="34">100</Strings>
|
|
<Directories id="35">16</Directories>
|
|
<XXXXX id="36">2</XXXXX>
|
|
<EmptyDirectories id="37">15</EmptyDirectories>
|
|
<BlackListedStrings id="38">10</BlackListedStrings>
|
|
<VirustotalFileEnginesPositiv id="39">1</VirustotalFileEnginesPositiv>
|
|
<BlackListedImportedFunctions id="40">1</BlackListedImportedFunctions>
|
|
<BlackListedSectionNames id="41">1</BlackListedSectionNames>
|
|
<ObsolteteImportedFunctions id="42">1</ObsolteteImportedFunctions>
|
|
<HttpStrings id="43">0</HttpStrings>
|
|
<BlackListedExportedFunctions id="44">1</BlackListedExportedFunctions>
|
|
<UndocumentedFunctions id="45">1</UndocumentedFunctions>
|
|
<WritableAndExecutableSections id="46">0</WritableAndExecutableSections>
|
|
<ExecutableSections id="47">0</ExecutableSections>
|
|
<AntidebugFunctions id="48">0</AntidebugFunctions>
|
|
<OrdinalFunctions id="49">0</OrdinalFunctions>
|
|
<UnsafeFunctions id="50">0</UnsafeFunctions>
|
|
<ElevatedFunctions id="51">0</ElevatedFunctions>
|
|
<EmbeddedPeFiles id="52">0</EmbeddedPeFiles>
|
|
<RegisteredExceptionHandlers id="53">0</RegisteredExceptionHandlers>
|
|
<NamelessSections id="54">0</NamelessSections>
|
|
<SharedSections id="55">0</SharedSections>
|
|
<ResourceLanguages id="56">0</ResourceLanguages>
|
|
<SmtpStrings id="57">0</SmtpStrings>
|
|
<FtpStrings id="58">0</FtpStrings>
|
|
<RegexStrings id="59">0</RegexStrings>
|
|
<WindowsPrivilegesStrings id="60">0</WindowsPrivilegesStrings>
|
|
<OIDsStrings id="61">0</OIDsStrings>
|
|
<AntivirusStrings id="62">0</AntivirusStrings>
|
|
<VirustotalOverlayEnginesPositiv id="63">2</VirustotalOverlayEnginesPositiv>
|
|
<AvStrings id="64">0</AvStrings>
|
|
<PrivilegesStrings id="65">0</PrivilegesStrings>
|
|
<OidStrings id="66">0</OidStrings>
|
|
<AgentStrings id="67">0</AgentStrings>
|
|
<ExtensionStrings id="68">0</ExtensionStrings>
|
|
<SddlStrings id="69">0</SddlStrings>
|
|
<FolderStrings id="70">0</FolderStrings>
|
|
<GuidStrings id="71">0</GuidStrings>
|
|
<RegistryStrings id="72">0</RegistryStrings>
|
|
<OsStrings id="73">0</OsStrings>
|
|
<ProductsStrings id="74">0</ProductsStrings>
|
|
<SidStrings id="75">0</SidStrings>
|
|
<ProtocolStrings id="76">0</ProtocolStrings>
|
|
<FileExtensions id="77">0</FileExtensions>
|
|
<KeyboardKeys id="78">0</KeyboardKeys>
|
|
|
|
<DebugAge id="100">1</DebugAge>
|
|
<DebugTimeDateStampYear id="101">2009</DebugTimeDateStampYear>
|
|
<TimeDateStampYear id="102">2005</TimeDateStampYear>
|
|
<CertificateIssuerYear id="103">2009</CertificateIssuerYear>
|
|
<CertificateSubjectYear id="104">2009</CertificateSubjectYear>
|
|
|
|
<SecurityManagement id="150">0</SecurityManagement>
|
|
<Authorization id="151">0</Authorization>
|
|
<Registry id="152">0</Registry>
|
|
<MemoryManagement id="153">0</MemoryManagement>
|
|
<ToolHelp id="154">0</ToolHelp>
|
|
<Backup id="155">0</Backup>
|
|
<EventLogging id="156">0</EventLogging>
|
|
<EventTracing id="157">0</EventTracing>
|
|
<ErrorHandling id="158">0</ErrorHandling>
|
|
<DirectoryManagement id="159">0</DirectoryManagement>
|
|
<Debugging id="160">0</Debugging>
|
|
<Console id="161">0</Console>
|
|
<ImageHlp id="162">0</ImageHlp>
|
|
<Communication id="163">0</Communication>
|
|
<COM id="164">0</COM>
|
|
<SystemInformation id="165">0</SystemInformation>
|
|
<PackageQuery id="166">0</PackageQuery>
|
|
<Setup id="167">0</Setup>
|
|
<StructuredStorage id="168">0</StructuredStorage>
|
|
<Ddeml id="169">0</Ddeml>
|
|
<Clipboard id="170">0</Clipboard>
|
|
<WinINet id="171">0</WinINet>
|
|
<DynamicLibrary id="172">0</DynamicLibrary>
|
|
<ProcessAndThread id="173">1</ProcessAndThread>
|
|
<WinHttp id="174">1</WinHttp>
|
|
<Zw id="175">0</Zw>
|
|
<Rtl id="176">0</Rtl>
|
|
<Nt id="177">0</Nt>
|
|
<DhcpServerManagement id="178">0</DhcpServerManagement>
|
|
<NetworkManagement id="179">0</NetworkManagement>
|
|
<Dns id="180">0</Dns>
|
|
<MailSlot id="181">0</MailSlot>
|
|
<Rpc id="182">0</Rpc>
|
|
<Seh id="183">0</Seh>
|
|
<Service id="184">0</Service>
|
|
<FileManagement id="185">0</FileManagement>
|
|
<VideoCapture id="186">0</VideoCapture>
|
|
<Cabinet id="187">0</Cabinet>
|
|
<SingleInstanceStore id="188">0</SingleInstanceStore>
|
|
<PerformanceCounters id="189">0</PerformanceCounters>
|
|
<Atom id="190">0</Atom>
|
|
<DeviceManagement id="191">0</DeviceManagement>
|
|
<Ras id="192">0</Ras>
|
|
<RasScripting id="193">0</RasScripting>
|
|
<WinSnmp id="194">0</WinSnmp>
|
|
<RouterInformation id="195">0</RouterInformation>
|
|
<Ndr id="196">0</Ndr>
|
|
<PowerManagement id="197">0</PowerManagement>
|
|
<RemoteDesktop id="198">0</RemoteDesktop>
|
|
<Wlan id="199">0</Wlan>
|
|
<Snmp id="200">0</Snmp>
|
|
<WinDbgExt id="201">0</WinDbgExt>
|
|
<Dde id="202">0</Dde>
|
|
|
|
</minimums>
|
|
|
|
<maximums>
|
|
<Image id="0">10485760</Image>
|
|
<Header id="1">64</Header>
|
|
<DosStub id="2">2048</DosStub>
|
|
<FileHeader id="3">20</FileHeader>
|
|
<OptionaHeader id="4">260</OptionaHeader>
|
|
<DataDirectory id="5">16</DataDirectory>
|
|
<String id="6">256</String>
|
|
<VersionInfo id="7">6144</VersionInfo>
|
|
<BuiltinResource id="8">2000</BuiltinResource>
|
|
<Code id="9">-1</Code>
|
|
<Manifest id="10">3000</Manifest>
|
|
<ResourceHtml id="11">4096</ResourceHtml>
|
|
<CustomResource id="12">512000</CustomResource>
|
|
<CustomDefault id="13">512000</CustomDefault>
|
|
<DiskSection id="14">-1</DiskSection>
|
|
<DigitalCertificate id="15">8192</DigitalCertificate>
|
|
<InitializedData id="16">1048576</InitializedData>
|
|
<XY id="17"></XY>
|
|
<XY id="18"></XY>
|
|
<XY id="19"></XY>
|
|
<XY id="20"></XY>
|
|
<XY id="21"></XY>
|
|
<XY id="22"></XY>
|
|
<XY id="23"></XY>
|
|
<XY id="24"></XY>
|
|
<XY id="25"></XY>
|
|
<XY id="26"></XY>
|
|
<XY id="27"></XY>
|
|
<XY id="28"></XY>
|
|
<XY id="29"></XY>
|
|
|
|
<ImportedLibraries id="30">50</ImportedLibraries>
|
|
<ImportedSymbols id="31">500</ImportedSymbols>
|
|
<Sections id="32">15</Sections>
|
|
<ExportedSymbols id="33">3000</ExportedSymbols>
|
|
<Strings id="34">2000</Strings>
|
|
<Directories id="35">16</Directories>
|
|
<XXXXX id="36">24</XXXXX>
|
|
<EmptyDirectories id="37">15</EmptyDirectories>
|
|
<BlackListedStrings id="38">30</BlackListedStrings>
|
|
<VirustotalEnginesPositiv id="39">1</VirustotalEnginesPositiv>
|
|
<BlackListedImportedFunctions id="40">1</BlackListedImportedFunctions>
|
|
<BlackListedSectionNames id="41">1</BlackListedSectionNames>
|
|
<ObsolteteImportedFunctions id="42">5</ObsolteteImportedFunctions>
|
|
<HttpStrings id="43">5</HttpStrings>
|
|
<BlackListedExportedFunctions id="44">3</BlackListedExportedFunctions>
|
|
<UndocumentedFunctions id="45">3</UndocumentedFunctions>
|
|
<WritableAndExecutableSections id="46">0</WritableAndExecutableSections>
|
|
<ExecutableSections id="47">1</ExecutableSections>
|
|
<AntidebugFunctions id="48">1</AntidebugFunctions>
|
|
<OrdinalFunctions id="49">10</OrdinalFunctions>
|
|
<UnsafeFunctions id="50">5</UnsafeFunctions>
|
|
<ElevatedFunctions id="51">5</ElevatedFunctions>
|
|
<EmbeddedPeFiles id="52">1</EmbeddedPeFiles>
|
|
<RegisteredExceptionHandlers id="53">10</RegisteredExceptionHandlers>
|
|
<NamelessSections id="54">1</NamelessSections>
|
|
<SharedSections id="55">1</SharedSections>
|
|
<ResourceLanguages id="56">3</ResourceLanguages>
|
|
<SmtpStrings id="57">1</SmtpStrings>
|
|
<FtpStrings id="58">1</FtpStrings>
|
|
<RegexStrings id="59">1</RegexStrings>
|
|
<WindowsPrivilegesStrings id="60">1</WindowsPrivilegesStrings>
|
|
<OIDsStrings id="61">1</OIDsStrings>
|
|
<AntivirusStrings id="62">1</AntivirusStrings>
|
|
<VirustotalOverlayEnginesPositiv id="63">1</VirustotalOverlayEnginesPositiv>
|
|
<AvStrings id="64">1</AvStrings>
|
|
<PrivilegesStrings id="65">1</PrivilegesStrings>
|
|
<OidStrings id="66">1</OidStrings>
|
|
<AgentStrings id="67">1</AgentStrings>
|
|
<ExtensionStrings id="68">1</ExtensionStrings>
|
|
<SddlStrings id="69">1</SddlStrings>
|
|
<FolderStrings id="70">1</FolderStrings>
|
|
<GuidStrings id="71">1</GuidStrings>
|
|
<RegistryStrings id="72">1</RegistryStrings>
|
|
<OsStrings id="73">1</OsStrings>
|
|
<ProductsStrings id="74">1</ProductsStrings>
|
|
<SidStrings id="75">1</SidStrings>
|
|
<ProtocolStrings id="76">1</ProtocolStrings>
|
|
<FileExtensions id="77">5</FileExtensions>
|
|
<KeyboardKeys id="78">2</KeyboardKeys>
|
|
|
|
<DebugAge id="100">30</DebugAge>
|
|
<DebugTimeDateStampYear id="101">2015</DebugTimeDateStampYear>
|
|
<TimeDateStampYear id="102">2015</TimeDateStampYear>
|
|
<CertificateIssuerYear id="103">2013</CertificateIssuerYear>
|
|
<CertificateSubjectYear id="104">2013</CertificateSubjectYear>
|
|
|
|
<SecurityManagement id="150">1</SecurityManagement>
|
|
<Authorization id="151">1</Authorization>
|
|
<Registry id="152">1</Registry>
|
|
<MemoryManagement id="153">1</MemoryManagement>
|
|
<ToolHelp id="154">1</ToolHelp>
|
|
<Backup id="155">1</Backup>
|
|
<EventLogging id="156">1</EventLogging>
|
|
<EventTracing id="157">0</EventTracing>
|
|
<ErrorHandling id="158">1</ErrorHandling>
|
|
<DirectoryManagement id="159">1</DirectoryManagement>
|
|
<Debugging id="160">1</Debugging>
|
|
<Console id="161">1</Console>
|
|
<ImageHlp id="162">1</ImageHlp>
|
|
<Communication id="163">1</Communication>
|
|
<COM id="164">10</COM>
|
|
<SystemInformation id="165">5</SystemInformation>
|
|
<PackageQuery id="166">2</PackageQuery>
|
|
<Setup id="167">1</Setup>
|
|
<StructuredStorage id="168">3</StructuredStorage>
|
|
<Ddeml id="169">3</Ddeml>
|
|
<Clipboard id="170">3</Clipboard>
|
|
<WinINet id="171">3</WinINet>
|
|
<DynamicLibrary id="172">1</DynamicLibrary>
|
|
<ProcessAndThread id="173">1</ProcessAndThread>
|
|
<WinHttp id="174">1</WinHttp>
|
|
<Zw id="175">1</Zw>
|
|
<Rtl id="176">1</Rtl>
|
|
<Nt id="177">1</Nt>
|
|
<DhcpServerManagement id="178">1</DhcpServerManagement>
|
|
<NetworkManagement id="179">1</NetworkManagement>
|
|
<Dns id="180">1</Dns>
|
|
<MailSlot id="181">1</MailSlot>
|
|
<Rpc id="182">1</Rpc>
|
|
<Seh id="183">1</Seh>
|
|
<Service id="184">1</Service>
|
|
<FileManagement id="185">1</FileManagement>
|
|
<VideoCapture id="186">1</VideoCapture>
|
|
<Cabinet id="187">1</Cabinet>
|
|
<SingleInstanceStore id="188">1</SingleInstanceStore>
|
|
<PerformanceCounters id="189">1</PerformanceCounters>
|
|
<Atom id="190">1</Atom>
|
|
<DeviceManagement id="191">1</DeviceManagement>
|
|
<Ras id="192">1</Ras>
|
|
<RasScripting id="193">1</RasScripting>
|
|
<WinSnmp id="194">1</WinSnmp>
|
|
<RouterInformation id="195">1</RouterInformation>
|
|
<Ndr id="196">1</Ndr>
|
|
<PowerManagement id="197">1</PowerManagement>
|
|
<RemoteDesktop id="198">1</RemoteDesktop>
|
|
<Wlan id="199">1</Wlan>
|
|
<Snmp id="200">1</Snmp>
|
|
<WinDbgExt id="201">1</WinDbgExt>
|
|
<Dde id="202">1</Dde>
|
|
|
|
</maximums>
|
|
|
|
</thresholds>
|
|
</xml>
|