Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File nospywarethanks.exe received on 2009.08.05 22:29:03 (UTC)
Current status: finished
Current status: finished
Result: 4/40 (10.00%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.24 | 2009.08.05 | Trojan.Win32.FakeXPA!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.08.05 | - |
| AntiVir | 7.9.0.240 | 2009.08.05 | - |
| Antiy-AVL | 2.0.3.7 | 2009.08.05 | - |
| Authentium | 5.1.2.4 | 2009.08.05 | - |
| Avast | 4.8.1335.0 | 2009.08.05 | - |
| AVG | 8.5.0.406 | 2009.08.05 | - |
| BitDefender | 7.2 | 2009.08.06 | - |
| CAT-QuickHeal | 10.00 | 2009.08.05 | - |
| ClamAV | 0.94.1 | 2009.08.05 | - |
| Comodo | 1879 | 2009.08.06 | - |
| DrWeb | 5.0.0.12182 | 2009.08.05 | - |
| eTrust-Vet | 31.6.6660 | 2009.08.05 | - |
| F-Prot | 4.4.4.56 | 2009.08.05 | - |
| F-Secure | 8.0.14470.0 | 2009.08.05 | - |
| Fortinet | 3.120.0.0 | 2009.08.05 | - |
| GData | 19 | 2009.08.05 | - |
| Ikarus | T3.1.1.64.0 | 2009.08.05 | Trojan.Win32.FakeXPA |
| Jiangmin | 11.0.800 | 2009.08.05 | - |
| K7AntiVirus | 7.10.811 | 2009.08.05 | - |
| Kaspersky | 7.0.0.125 | 2009.08.06 | - |
| McAfee | 5699 | 2009.08.05 | FakeAlert-DI |
| McAfee+Artemis | 5699 | 2009.08.05 | FakeAlert-DI |
| McAfee-GW-Edition | 6.8.5 | 2009.08.05 | - |
| Microsoft | 1.4903 | 2009.08.04 | - |
| NOD32 | 4310 | 2009.08.05 | - |
| Norman | 6.01.09 | 2009.08.05 | - |
| nProtect | 2009.1.8.0 | 2009.08.05 | - |
| Panda | 10.0.0.14 | 2009.08.05 | - |
| PCTools | 4.4.2.0 | 2009.08.05 | - |
| Prevx | 3.0 | 2009.08.06 | - |
| Rising | 21.41.24.00 | 2009.08.05 | - |
| Sophos | 4.44.0 | 2009.08.05 | - |
| Sunbelt | 3.2.1858.2 | 2009.08.05 | - |
| Symantec | 1.4.4.12 | 2009.08.05 | - |
| TheHacker | 6.3.4.3.377 | 2009.08.05 | - |
| TrendMicro | 8.950.0.1094 | 2009.08.05 | - |
| VBA32 | 3.12.10.9 | 2009.08.05 | - |
| ViRobot | 2009.8.5.1869 | 2009.08.05 | - |
| VirusBuster | 4.6.5.0 | 2009.08.05 | - |
| Additional information |
|---|
| File size: 167936 bytes |
| MD5 : c9dfc0829c892e3a58265a4fd8ec5d64 |
| SHA1 : 0d326f7301ae4617d0affb448caeb911b3e555f2 |
| SHA256: 7e8cd272e83020c63f5fdc087fcc03f23c3690fbc66ef9e2c5b10320de0d2225 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x17F4E timedatestamp.....: 0x46240F20 (Tue Apr 17 02:04:48 2007) machinetype.......: 0x14C (Intel I386) ( 8 sections ) name viradd virsiz rawdsiz ntrpy md5 .init 0x1000 0x18F3F 0x19000 7.14 a33a3558d3623f95f2163c788ef27590 DATA 0x1A000 0x1729 0x2000 0.00 0829f71740aab1ab98b33eae21dee122 .reloc 0x1C000 0x2967 0x3000 0.00 4072783b8efb99a9e5817067d68f61c6 .edata 0x1F000 0x266DD1 0x2000 1.29 ee2a2178f1d85d7ce69dba4667e562ef .bss 0x286000 0x5E 0x1000 0.00 620f0b67a91f7f74151bc5be745b7110 .rdata 0x287000 0x418 0x1000 0.04 34c59197693110906bf951dd4ba45bfd .idata 0x288000 0x2199 0x3000 0.93 37dee08d040b8cbb611436e01725f5c4 .rsrc 0x28B000 0x2264 0x3000 4.93 e6cd45065cb2796e83dcddb6ad783505 ( 1 imports ) > kernel32.dll: GetStdHandle, WriteFile, DeleteFileA, ExitThread, ReadFile, GlobalFree, ReadConsoleW, DeleteAtom, CreateDirectoryA, GetFileTime, CopyFileExW, GetCPInfo, FindFirstFileA, Sleep, CopyFileExA, CopyFileA, DeleteFileW, ReadFile, GetCommandLineA, GetStdHandle, FindFirstFileA, GlobalFree, CopyFileW, GetConsoleMode, GetComputerNameA, GetFileSize, GetLastError, CreateThread, GetCPInfo, OpenFile, CopyFileExA, GetLastError, ReadConsoleW, ExitThread, GetCommandLineA, CopyFileA, WriteFile, CreateThread, FindAtomA, FindFirstFileA, DeleteFileA, ReadFile, ReadConsoleA, CreateProcessA, GetFileSize, DeleteAtom, GlobalFree, CopyFileExA, GetComputerNameA, GetFileSize, DeleteFileA, CopyFileExA, GetConsoleMode, FindFirstFileA, GetCPInfo, OpenFileMappingA, DeleteFileW, ReadFile, GetLastError, Sleep, CopyFileW ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (42.3%) Win32 Dynamic Link Library (generic) (37.6%) Generic Win/DOS Executable (9.9%) DOS Executable Generic (9.9%) VXD Driver (0.1%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=c9dfc0829c892e3a58265a4fd8ec5d64 |
| ssdeep: 1536:gj55fQUq6EfWK9FEIkzPDGZnY2d0FrJm2qf+1OkoyXfxGuGS5x0BPtzlbce:gjcUq6zKzoPDGVKLc21OkoyvguXyBrb |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
