Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File ebay.profile.cpl received on 2009.07.15 22:48:23 (UTC)
Current status: finished
Current status: finished
Result: 23/40 (57.50%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.24 | 2009.07.15 | Trojan.Win32.Buzus!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.07.15 | Win-Trojan/Buzus.215920 |
| AntiVir | 7.9.0.215 | 2009.07.15 | TR/Buzus.aqri |
| Antiy-AVL | 2.0.3.7 | 2009.07.15 | Trojan/Win32.Buzus.gen |
| Authentium | 5.1.2.4 | 2009.07.16 | W32/Trojan2.HLVD |
| Avast | 4.8.1335.0 | 2009.07.15 | Win32:Trojan-gen {Other} |
| BitDefender | 7.2 | 2009.07.15 | Trojan.Delf.Inject.Z |
| CAT-QuickHeal | 10.00 | 2009.07.15 | - |
| ClamAV | 0.94.1 | 2009.07.15 | Trojan.Buzus-4290 |
| Comodo | 1663 | 2009.07.16 | - |
| DrWeb | 5.0.0.12182 | 2009.07.15 | - |
| eSafe | 7.0.17.0 | 2009.07.15 | Win32.TRBuzus.Aqri |
| eTrust-Vet | 31.6.6617 | 2009.07.15 | - |
| F-Prot | 4.4.4.56 | 2009.07.16 | W32/Trojan2.HLVD |
| F-Secure | 8.0.14470.0 | 2009.07.15 | Trojan.Win32.Buzus.bnub |
| Fortinet | 3.120.0.0 | 2009.07.15 | PossibleThreat |
| GData | 19 | 2009.07.15 | Trojan.Delf.Inject.Z |
| Ikarus | T3.1.1.64.0 | 2009.07.15 | Trojan.Win32.Buzus |
| Jiangmin | 11.0.706 | 2009.07.15 | - |
| K7AntiVirus | 7.10.793 | 2009.07.15 | - |
| Kaspersky | 7.0.0.125 | 2009.07.16 | Trojan.Win32.Buzus.bnub |
| McAfee | 5677 | 2009.07.15 | - |
| McAfee+Artemis | 5677 | 2009.07.15 | Artemis!26D432F399EE |
| McAfee-GW-Edition | 6.8.5 | 2009.07.15 | Heuristic.LooksLike.Trojan.Buzus.H |
| Microsoft | 1.4803 | 2009.07.16 | - |
| NOD32 | 4247 | 2009.07.15 | - |
| Norman | 6.01.09 | 2009.07.15 | W32/Smalltroj.OICW |
| nProtect | 2009.1.8.0 | 2009.07.15 | - |
| Panda | 10.0.0.14 | 2009.07.15 | Bck/Hupigon.AZG |
| PCTools | 4.4.2.0 | 2009.07.15 | - |
| Prevx | 3.0 | 2009.07.16 | - |
| Rising | 21.38.24.00 | 2009.07.15 | - |
| Sophos | 4.43.0 | 2009.07.15 | Mal/Generic-A |
| Sunbelt | 3.2.1858.2 | 2009.07.15 | - |
| Symantec | 1.4.4.12 | 2009.07.16 | Backdoor.Graybird |
| TheHacker | 6.3.4.3.368 | 2009.07.15 | Trojan/Buzus.avnz |
| TrendMicro | 8.950.0.1094 | 2009.07.15 | - |
| VBA32 | 3.12.10.8 | 2009.07.15 | Trojan.Win32.Buzus.avnz |
| ViRobot | 2009.7.15.1837 | 2009.07.15 | - |
| VirusBuster | 4.6.5.0 | 2009.07.15 | - |
| Additional information |
|---|
| File size: 215913 bytes |
| MD5 : 26d432f399ee0524636dc93bfc8d3fa1 |
| SHA1 : bb6dce717e85d21752bb5540659f164ab2101b48 |
| SHA256: 7afc4ba1e24b72f9709f4898c9fdc2eb27d2c5b8cce27559bdd97320862450d3 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0xD0C8 timedatestamp.....: 0x2A425E19 (Sat Jun 20 00:22:17 1992) machinetype.......: 0x14C (Intel I386) ( 6 sections ) name viradd virsiz rawdsiz ntrpy md5 CODE 0x1000 0xC318 0xC400 6.54 0767478ef70572313ed1c7cadeec8888 DATA 0xE000 0x1A48 0x1C00 3.26 3e9768db35aba10a18824d96eee97922 BSS 0x10000 0xF75 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .idata 0x11000 0x7C2 0x800 4.62 527907ae15928ad2003f83adf66ab279 .reloc 0x12000 0xFA0 0x1000 6.58 cd83370eac24070e924084abdfb9375d .rsrc 0x13000 0x1000 0x1000 4.20 9457801cb1209b424fb7ae0110a4c72f ( 5 imports ) > advapi32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey > kernel32.dll: DeleteCriticalSection, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, VirtualFree, VirtualAlloc, LocalFree, LocalAlloc, GetVersion, GetCurrentThreadId, WideCharToMultiByte, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLastError, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, WriteFile, UnhandledExceptionFilter, SetFilePointer, SetEndOfFile, RtlUnwind, ReadFile, RaiseException, GetStdHandle, GetFileSize, GetFileType, CreateFileA, CloseHandle, TlsSetValue, TlsGetValue, TlsFree, TlsAlloc, LocalFree, LocalAlloc, WriteFile, VirtualQuery, SizeofResource, SetFilePointer, ReadFile, LoadLibraryA, GetVersionExA, GetThreadLocale, GetStringTypeExA, GetStdHandle, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetDiskFreeSpaceA, GetCPInfo, GetACP, EnumCalendarInfoA, CreateFileA, CloseHandle, Sleep > oleaut32.dll: SysFreeString, SysReAllocStringLen > shell32.dll: SHGetSpecialFolderPathA > user32.dll: GetKeyboardType, LoadStringA, MessageBoxA, CharNextA, MessageBoxA, LoadStringA, GetSystemMetrics, CharNextA, CharToOemA ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (58.3%) Win16/32 Executable Delphi generic (14.1%) Generic Win/DOS Executable (13.7%) DOS Executable Generic (13.6%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) |
| ssdeep: 6144:PLkxa6pdmE2D8Ztls6ohUseYAhoVFWYWUv:Yx5pdmE2D8ZtldrtzoDWX6 |
| PEiD : - |
| packers (F-Prot): XORCrypt |
| packers (Authentium): XORCrypt |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
