Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File yahoo4setup.exe received on 2009.11.05 00:13:01 (UTC)
Current status: finished
Current status: finished
Result: 16/41 (39.02%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.11.04 | - |
| AhnLab-V3 | 5.0.0.2 | 2009.11.04 | - |
| AntiVir | 7.9.1.53 | 2009.11.04 | - |
| Antiy-AVL | 2.0.3.7 | 2009.11.04 | Trojan/Win32.Agent.gen |
| Authentium | 5.2.0.5 | 2009.11.04 | - |
| Avast | 4.8.1351.0 | 2009.11.04 | Win32:Malware-gen |
| AVG | 8.5.0.423 | 2009.11.05 | Downloader.Agent2.LDH |
| BitDefender | 7.2 | 2009.11.05 | Trojan.Generic.2603104 |
| CAT-QuickHeal | 10.00 | 2009.11.04 | - |
| ClamAV | 0.94.1 | 2009.11.04 | - |
| Comodo | 2841 | 2009.11.04 | - |
| DrWeb | 5.0.0.12182 | 2009.11.04 | - |
| eSafe | 7.0.17.0 | 2009.11.04 | - |
| eTrust-Vet | 35.1.7103 | 2009.11.04 | - |
| F-Prot | 4.5.1.85 | 2009.11.04 | - |
| F-Secure | 9.0.15370.0 | 2009.11.04 | - |
| Fortinet | 3.120.0.0 | 2009.11.04 | - |
| GData | 19 | 2009.11.05 | Trojan.Generic.2603104 |
| Ikarus | T3.1.1.74.0 | 2009.11.04 | Trojan-Dropper.Agent |
| Jiangmin | 11.0.800 | 2009.11.04 | - |
| K7AntiVirus | 7.10.888 | 2009.11.04 | - |
| Kaspersky | 7.0.0.125 | 2009.11.05 | Trojan-Downloader.Win32.Agent.crco |
| McAfee | 5792 | 2009.11.04 | - |
| McAfee+Artemis | 5792 | 2009.11.04 | Artemis!3D4A3FEBE3BC |
| McAfee-GW-Edition | 6.8.5 | 2009.11.04 | Heuristic.BehavesLike.Win32.Suspicious.J |
| Microsoft | 1.5202 | 2009.11.04 | - |
| NOD32 | 4574 | 2009.11.04 | probably unknown NewHeur_PE |
| Norman | 6.03.02 | 2009.11.04 | - |
| nProtect | 2009.1.8.0 | 2009.11.04 | - |
| Panda | 10.0.2.2 | 2009.11.04 | Trj/CI.A |
| PCTools | 7.0.3.5 | 2009.11.04 | Trojan.Generic |
| Prevx | 3.0 | 2009.11.05 | - |
| Rising | 21.54.24.00 | 2009.11.04 | - |
| Sophos | 4.47.0 | 2009.11.05 | Mal/Generic-A |
| Sunbelt | 3.2.1858.2 | 2009.11.04 | - |
| Symantec | 1.4.4.12 | 2009.11.05 | Trojan Horse |
| TheHacker | 6.5.0.2.061 | 2009.11.05 | - |
| TrendMicro | 9.0.0.1003 | 2009.11.04 | - |
| VBA32 | 3.12.10.11 | 2009.11.04 | suspected of Embedded.Trojan-Downloader.Win32.Agent.crco |
| ViRobot | 2009.11.4.2021 | 2009.11.04 | - |
| VirusBuster | 4.6.5.0 | 2009.11.04 | Trojan.DL.Agent.PHAI |
| Additional information |
|---|
| File size: 601028 bytes |
| MD5 : 3d4a3febe3bc340ab391820591ec9822 |
| SHA1 : 31e54cb39329e55981d152573e0e7be030a123d9 |
| SHA256: 172cc73b0217041937099908d8c3bdc45fd3b4dfee8b7dc01ac09bddf661dd63 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x3233 timedatestamp.....: 0x494CE7DF (Sat Dec 20 13:41:03 2008) machinetype.......: 0x14C (Intel I386) ( 5 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x5A4A 0x5C00 6.42 baa0bbc3631ab14b4619a5f0f8c20230 .rdata 0x7000 0x1190 0x1200 5.18 db16645055619c0cc73276ff5c3adb75 .data 0x9000 0x1AF98 0x400 4.71 889379c97ddaedb548a899642f74c872 .ndata 0x24000 0xB000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .rsrc 0x2F000 0x1188 0x1200 3.74 15f487d8d517d737160e286ce2bfef71 ( 8 imports ) > advapi32.dll: RegQueryValueExA, RegSetValueExA, RegEnumKeyA, RegEnumValueA, RegOpenKeyExA, RegDeleteKeyA, RegDeleteValueA, RegCloseKey, RegCreateKeyExA > comctl32.dll: ImageList_AddMasked, ImageList_Destroy, -, ImageList_Create > gdi32.dll: SetBkColor, GetDeviceCaps, DeleteObject, CreateBrushIndirect, CreateFontIndirectA, SetBkMode, SetTextColor, SelectObject > kernel32.dll: CompareFileTime, SearchPathA, GetShortPathNameA, GetFullPathNameA, MoveFileA, SetCurrentDirectoryA, GetFileAttributesA, GetLastError, CreateDirectoryA, SetFileAttributesA, Sleep, GetTickCount, CreateFileA, GetFileSize, GetModuleFileNameA, GetCurrentProcess, CopyFileA, ExitProcess, SetFileTime, GetTempPathA, GetCommandLineA, SetErrorMode, LoadLibraryA, lstrcpynA, GetDiskFreeSpaceA, GlobalUnlock, GlobalLock, CreateThread, CreateProcessA, RemoveDirectoryA, GetTempFileNameA, lstrlenA, lstrcatA, GetSystemDirectoryA, GetVersion, CloseHandle, lstrcmpiA, lstrcmpA, ExpandEnvironmentStringsA, GlobalFree, GlobalAlloc, WaitForSingleObject, GetExitCodeProcess, GetModuleHandleA, LoadLibraryExA, GetProcAddress, FreeLibrary, MultiByteToWideChar, WritePrivateProfileStringA, GetPrivateProfileStringA, WriteFile, ReadFile, MulDiv, SetFilePointer, FindClose, FindNextFileA, FindFirstFileA, DeleteFileA, GetWindowsDirectoryA > ole32.dll: CoTaskMemFree, OleInitialize, OleUninitialize, CoCreateInstance > shell32.dll: SHGetPathFromIDListA, SHBrowseForFolderA, SHGetFileInfoA, ShellExecuteA, SHFileOperationA, SHGetSpecialFolderLocation > user32.dll: EndDialog, ScreenToClient, GetWindowRect, EnableMenuItem, GetSystemMenu, SetClassLongA, IsWindowEnabled, SetWindowPos, GetSysColor, GetWindowLongA, SetCursor, LoadCursorA, CheckDlgButton, GetMessagePos, LoadBitmapA, CallWindowProcA, IsWindowVisible, CloseClipboard, SetClipboardData, EmptyClipboard, RegisterClassA, TrackPopupMenu, AppendMenuA, CreatePopupMenu, GetSystemMetrics, SetDlgItemTextA, GetDlgItemTextA, MessageBoxIndirectA, CharPrevA, DispatchMessageA, PeekMessageA, DestroyWindow, CreateDialogParamA, SetTimer, SetWindowTextA, PostQuitMessage, SetForegroundWindow, wsprintfA, SendMessageTimeoutA, FindWindowExA, SystemParametersInfoA, CreateWindowExA, GetClassInfoA, DialogBoxParamA, CharNextA, OpenClipboard, ExitWindowsEx, IsWindow, GetDlgItem, SetWindowLongA, LoadImageA, GetDC, EnableWindow, InvalidateRect, SendMessageA, DefWindowProcA, BeginPaint, GetClientRect, FillRect, DrawTextA, EndPaint, ShowWindow > version.dll: GetFileVersionInfoSizeA, GetFileVersionInfoA, VerQueryValueA ( 0 exports ) |
| TrID : File type identification Win32 Executable MS Visual C++ (generic) (65.2%) Win32 Executable Generic (14.7%) Win32 Dynamic Link Library (generic) (13.1%) Generic Win/DOS Executable (3.4%) DOS Executable Generic (3.4%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=3d4a3febe3bc340ab391820591ec9822 |
| ssdeep: 12288:z+F+ATUAFNxoqJDbmz+8xbadb6ad4531NokUeAMzRNPkWB+qE2nNpW0tqYRN:SY+UAnGqJDbmz+9H4seAMzRBkOxNs0tr |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=6F68B2ECC45BE6A02B940985E64EAB009B255100 |
| PEiD : - |
| packers (F-Prot): NSIS |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
