Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File plugin_setup.exe received on 2009.10.02 18:38:00 (UTC)
Current status: finished
Current status: finished
Result: 28/41 (68.29%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.24 | 2009.10.02 | Trojan-Spy.Win32.Zbot!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.10.02 | - |
| AntiVir | 7.9.1.27 | 2009.10.02 | TR/Spy.ZBot.8140.26 |
| Antiy-AVL | 2.0.3.7 | 2009.10.02 | Trojan/Win32.Zbot.gen |
| Authentium | 5.1.2.4 | 2009.10.02 | W32/Zbot.AJH |
| Avast | 4.8.1351.0 | 2009.10.02 | - |
| AVG | 8.5.0.412 | 2009.10.02 | PSW.Generic7.ABMS |
| BitDefender | 7.2 | 2009.10.02 | Backdoor.Bot.107010 |
| CAT-QuickHeal | 10.00 | 2009.10.01 | - |
| ClamAV | 0.94.1 | 2009.10.02 | - |
| Comodo | 2493 | 2009.10.02 | TrojWare.Win32.TrojanSpy.Zbot.Gen |
| DrWeb | 5.0.0.12182 | 2009.10.02 | Trojan.PWS.Panda.122 |
| eSafe | 7.0.17.0 | 2009.10.01 | - |
| eTrust-Vet | 31.6.6773 | 2009.10.02 | - |
| F-Prot | 4.5.1.85 | 2009.10.02 | W32/Zbot.AJH |
| F-Secure | 8.0.14470.0 | 2009.10.02 | Trojan-Spy.Win32.Zbot.gen |
| Fortinet | 3.120.0.0 | 2009.10.02 | W32/Zbot!tr |
| GData | 19 | 2009.10.02 | Backdoor.Bot.107010 |
| Ikarus | T3.1.1.72.0 | 2009.10.02 | Trojan-Spy.Win32.Zbot |
| Jiangmin | 11.0.800 | 2009.09.27 | - |
| K7AntiVirus | 7.10.858 | 2009.10.01 | - |
| Kaspersky | 7.0.0.125 | 2009.10.02 | Trojan-Spy.Win32.Zbot.gen |
| McAfee | 5759 | 2009.10.02 | Generic PWS.y!yg |
| McAfee+Artemis | 5759 | 2009.10.02 | Generic PWS.y!yg |
| McAfee-GW-Edition | 6.8.5 | 2009.10.02 | Heuristic.BehavesLike.Win32.Downloader.H |
| Microsoft | 1.5101 | 2009.10.02 | PWS:Win32/Zbot.gen!R |
| NOD32 | 4477 | 2009.10.02 | Win32/Spy.Zbot.UN |
| Norman | 6.01.09 | 2009.10.02 | W32/Zbot.JZP |
| nProtect | 2009.1.8.0 | 2009.10.02 | - |
| Panda | 10.0.2.2 | 2009.10.02 | Trj/CI.A |
| PCTools | 4.4.2.0 | 2009.10.02 | - |
| Prevx | 3.0 | 2009.10.02 | Medium Risk Malware |
| Rising | 21.49.22.00 | 2009.09.30 | - |
| Sophos | 4.45.0 | 2009.10.02 | Mal/Generic-A |
| Sunbelt | 3.2.1858.2 | 2009.10.02 | Trojan-Spy.Win32.Zbot.gen |
| Symantec | 1.4.4.12 | 2009.10.02 | Infostealer.Banker.C |
| TheHacker | 6.5.0.2.026 | 2009.10.02 | - |
| TrendMicro | 8.950.0.1094 | 2009.10.02 | TSPY_ZBOT.PG |
| VBA32 | 3.12.10.11 | 2009.09.30 | Trojan-Spy.Win32.Zbot.gen |
| ViRobot | 2009.10.2.1968 | 2009.10.02 | - |
| VirusBuster | 4.6.5.0 | 2009.10.02 | TrojanSpy.Zbot.NDK |
| Additional information |
|---|
| File size: 81408 bytes |
| MD5 : 90a4d664364fc87c2f572f767e28c819 |
| SHA1 : 4a0ab819508f765b48eb3db2e70b10b8d40c6dad |
| SHA256: 8c1a43dd619aca1c00a8adfd2e1d97674a8189b08c05fececcc707cb87f63a06 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0xA86F timedatestamp.....: 0x47C5970F (Wed Feb 27 17:59:59 2008) machinetype.......: 0x14C (Intel I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xF4E8 0xF600 6.91 9b2af7b63e1710890ab216c1446bcfb2 .rdata 0x11000 0x4130 0x4200 5.66 a3829fb2f31efe62cf2e4235b1735092 .data 0x16000 0x126 0x200 1.02 30ff68e9e93079ae376797f3cf454776 ( 5 imports ) > advapi32.dll: RegSetValueExA, BuildExplicitAccessWithNameW, GetNamedSecurityInfoA, RegReplaceKeyA, QueryServiceObjectSecurity, RegSaveKeyW, EnumDependentServicesW, GetSecurityInfo, StartServiceW, BuildImpersonateTrusteeW, ImpersonateLoggedOnUser, RegUnLoadKeyW, QueryServiceLockStatusW, ClearEventLogW, RegCreateKeyW, CreateServiceA, BackupEventLogA, CryptEnumProvidersA, RegOpenKeyExW, RegOpenKeyW, GetNamedSecurityInfoExW, EqualSid, ConvertAccessToSecurityDescriptorA, CryptGenRandom, RegSetValueW, SetSecurityDescriptorDacl, GetSecurityDescriptorOwner, CryptSetProviderExA, LookupAccountSidA, CancelOverlappedAccess, ObjectDeleteAuditAlarmA, RegisterServiceCtrlHandlerW, CryptGenKey, OpenEventLogW, ObjectCloseAuditAlarmW, GetOverlappedAccessResults, BuildExplicitAccessWithNameA, CryptEnumProviderTypesA, LookupSecurityDescriptorPartsA, CreateProcessAsUserW, BuildImpersonateExplicitAccessWithNameA, GetSecurityDescriptorGroup, ConvertAccessToSecurityDescriptorW, GetLengthSid, SetFileSecurityW, CryptGetProvParam, OpenEventLogA, AddAccessAllowedAce, PrivilegeCheck, RegisterEventSourceA, GetNumberOfEventLogRecords, RegConnectRegistryA, LookupPrivilegeValueW, RegQueryMultipleValuesA, SetNamedSecurityInfoA, OpenBackupEventLogA, GetSidSubAuthorityCount, StartServiceCtrlDispatcherW, CryptSetKeyParam, MakeAbsoluteSD, RegEnumKeyExW, RegUnLoadKeyA, LogonUserA, GetTrusteeTypeA, BuildSecurityDescriptorA, LookupPrivilegeDisplayNameA, CreateServiceW, CryptSetHashParam, RegConnectRegistryW, ConvertSecurityDescriptorToAccessNamedW, ObjectDeleteAuditAlarmW, AbortSystemShutdownA, MapGenericMask, RegOpenKeyExA, CryptSignHashA, CopySid, SetEntriesInAuditListW, CryptExportKey, SetEntriesInAclW, UnlockServiceDatabase, ObjectOpenAuditAlarmA, CryptSetProviderW, CryptAcquireContextA, RegSetValueA, RegFlushKey, GetSecurityDescriptorDacl, ReadEventLogA, OpenServiceW, GetAccessPermissionsForObjectA, LookupPrivilegeDisplayNameW, IsTextUnicode, ConvertSecurityDescriptorToAccessA, InitiateSystemShutdownW, CryptCreateHash, ObjectPrivilegeAuditAlarmW, DuplicateToken, GetMultipleTrusteeOperationA, DeregisterEventSource, CryptHashSessionKey, GetTokenInformation, GetAclInformation, DestroyPrivateObjectSecurity, GetUserNameA, LookupAccountNameW, ObjectPrivilegeAuditAlarmA, GetNamedSecurityInfoW, RegCreateKeyExA, GetServiceDisplayNameW, GetAuditedPermissionsFromAclW, IsValidAcl, CryptSetProvParam, LookupPrivilegeNameW, SetServiceBits, EnumDependentServicesA, RegQueryValueW, GetSecurityInfoExA, RegDeleteValueW, CryptAcquireContextW > kernel32.dll: GetDriveTypeW, WinExec, ReadConsoleA, GetSystemDefaultLangID, HeapCreate, SleepEx, GetCompressedFileSizeW, SetEnvironmentVariableA, PrepareTape, BuildCommDCBA, FindNextChangeNotification, LocalFileTimeToFileTime, SetUnhandledExceptionFilter, GetOverlappedResult, GetPrivateProfileStringW, FindResourceExW, WriteFileEx, VirtualProtectEx, GetPrivateProfileIntA, SetCurrentDirectoryW, MultiByteToWideChar, WriteTapemark, GetACP, ResumeThread, SetConsoleCursorPosition, RequestDeviceWakeup, VerLanguageNameW, HeapLock, PulseEvent, GetConsoleTitleA, GetTempFileNameA, GetLongPathNameW, GetCalendarInfoW, SuspendThread, GetDiskFreeSpaceExA, GetDefaultCommConfigA, SetMailslotInfo, SetHandleCount, DuplicateHandle, Process32Next, lstrcpy, GetDriveTypeA, EnumSystemLocalesA, EscapeCommFunction, SearchPathW, VirtualFree, WriteProfileStringW, lstrcmpiW, CopyFileA, GetBinaryTypeW, IsBadHugeWritePtr, GetTimeFormatA, GetQueuedCompletionStatus, GetVolumeInformationW, ReadConsoleInputA, GetConsoleCursorInfo, GetEnvironmentVariableW, GlobalReAlloc, VirtualAllocEx, CreateNamedPipeA, FlushViewOfFile, GetTempPathW, SetTapeParameters, GetProcessShutdownParameters, SetLocalTime, OpenSemaphoreW, WaitNamedPipeA, FillConsoleOutputCharacterW, OpenWaitableTimerA, SetProcessAffinityMask, SetCurrentDirectoryA, GetCommandLineA, CopyFileExA, GlobalMemoryStatus, GetThreadContext, VirtualQueryEx, CreatePipe, TerminateProcess, GetLocaleInfoA, Sleep, LoadLibraryW, ConvertThreadToFiber, CopyFileExW, DeleteAtom, FindClose, GlobalCompact, FreeConsole, QueueUserAPC, FindAtomA, CreateMailslotA, SetTapePosition, GetEnvironmentStrings, SystemTimeToFileTime, CompareStringA, FreeEnvironmentStringsA, ClearCommError, WriteConsoleA, GetConsoleTitleW, CreateDirectoryExW, EnumCalendarInfoExW, GetFileAttributesA, CreateFileMappingW, LocalHandle, TlsFree, CreateProcessW, CreateMutexA, GetExitCodeProcess, SetCommBreak, FindResourceA, CancelIo, SystemTimeToTzSpecificLocalTime, ClearCommBreak, GetVersionExA, GetProcessWorkingSetSize, lstrlen, ReadFileScatter, ScrollConsoleScreenBufferA, GetProfileSectionW, PeekNamedPipe, lstrcmp, LockResource, UnlockFile, VirtualAlloc, GetFileSize, SetupComm, GetPrivateProfileSectionA, LocalFlags, GetDateFormatW, WritePrivateProfileStringA, CommConfigDialogA, GenerateConsoleCtrlEvent, GlobalDeleteAtom, OpenFileMappingA, GetStringTypeExW, FindFirstFileW, EnumSystemCodePagesW, GetFileTime, TerminateThread, WriteConsoleInputA, UpdateResourceA, ReadFileEx, GetMailslotInfo, lstrcpyn, GetCommState, FileTimeToLocalFileTime, GetLocalTime, FindResourceExA, GetThreadSelectorEntry, GetNumberOfConsoleInputEvents, VirtualProtect > ole32.dll: CoGetInterfaceAndReleaseStream, OleCreateDefaultHandler, CoRegisterClassObject, CoCreateInstanceEx, CoRegisterChannelHook, WriteOleStg, CoCreateInstance, CoMarshalInterThreadInterfaceInStream, UpdateDCOMSettings, CoLoadLibrary, CreateClassMoniker, RevokeDragDrop, OleLoadFromStream, OleGetIconOfClass, CoRevokeClassObject, MkParseDisplayName, CoQueryClientBlanket, OleDraw, OpenOrCreateStream, OleIsCurrentClipboard, MonikerCommonPrefixWith, OleMetafilePictFromIconAndLabel, StgGetIFillLockBytesOnFile, CoUninitialize, UtConvertDvtd32toDvtd16, ReadStringStream, OleNoteObjectVisible, OleLockRunning, GetConvertStg, StgCreateDocfile, CoSuspendClassObjects, StgOpenStorage, OleDoAutoConvert, OleIsRunning, OleLoad, IIDFromString, StgOpenStorageEx, OleInitialize, OleBuildVersion, ReadFmtUserTypeStg, OleGetIconOfFile, OleConvertIStorageToOLESTREAM, FreePropVariantArray, OleQueryCreateFromData, OleGetAutoConvert, OleCreateLinkFromData, StgCreateDocfileOnILockBytes, CoFileTimeNow, CoGetClassObject, GetDocumentBitStg, OleSetAutoConvert, CreateDataAdviseHolder, CoGetPSClsid, CoGetCallContext, IsEqualGUID, StringFromGUID2, OleCreateFromDataEx, OleRun, OleCreateMenuDescriptor, CoGetCurrentProcess, RegisterDragDrop, CoInitializeSecurity, OleCreateLinkToFile, PropVariantCopy, OleSaveToStream, CoTaskMemRealloc, OleCreate, StgOpenStorageOnILockBytes, DoDragDrop, UtGetDvtd32Info, CoTaskMemAlloc, CoInitializeEx, OleCreateEmbeddingHelper, CoMarshalInterface, CoResumeClassObjects, OleCreateEx, OleSetMenuDescriptor, EnableHookObject, CreateILockBytesOnHGlobal, UtGetDvtd16Info, GetClassFile, MonikerRelativePathTo, OleRegGetMiscStatus, CLSIDFromString, OleCreateFromData, OleConvertIStorageToOLESTREAMEx, OleCreateStaticFromData, ReadClassStm, CoQueryProxyBlanket, ReadOleStg, CoGetTreatAsClass, CoDosDateTimeToFileTime, OleRegEnumFormatEtc > shlwapi.dll: PathStripPathW, SHRegOpenUSKeyA, StrCmpNW, wvnsprintfW, wnsprintfW, PathCanonicalizeA, PathMakePrettyA, PathGetCharTypeW, UrlUnescapeA, SHRegDeleteEmptyUSKeyW, SHQueryValueExW, PathUnmakeSystemFolderW, UrlIsOpaqueW, PathIsUNCServerShareW, PathSetDlgItemPathW, PathAppendA, PathIsRelativeW, PathStripToRootA, PathCanonicalizeW, StrStrA, PathFindExtensionA, UrlHashW, StrCmpW, PathStripPathA, SHStrDupA, GetMenuPosFromID, StrFormatByteSizeA, PathUndecorateW, SHIsLowMemoryMachine, StrRChrIA, PathQuoteSpacesW, PathFindFileNameA, UrlGetLocationA, PathUndecorateA, SHDeleteKeyA, IntlStrEqWorkerW, UrlGetPartA, UrlCombineW, StrRetToStrW, StrRChrIW, SHDeleteKeyW, PathIsFileSpecW, PathFindOnPathA, StrToIntExW, UrlCanonicalizeW, StrChrIA, PathCommonPrefixW, PathIsNetworkPathA, PathGetArgsW, PathCreateFromUrlA, StrFromTimeIntervalW, PathFindOnPathW, PathGetCharTypeA, SHRegOpenUSKeyW, AssocQueryKeyW, PathStripToRootW, ColorRGBToHLS, SHRegQueryUSValueA, StrRetToStrA, SHRegGetUSValueA, PathMakePrettyW, SHRegEnumUSKeyW, PathIsSystemFolderW, StrCSpnW, PathSearchAndQualifyA, StrFormatByteSize64A, PathIsURLW, PathSkipRootW, SHEnumValueW, PathRemoveArgsW, PathGetDriveNumberW, PathSearchAndQualifyW, StrCmpIW, StrPBrkW, UrlEscapeA, PathFindExtensionW, SHCopyKeyW, StrNCatW, StrTrimW, PathIsDirectoryEmptyA, StrSpnW, SHRegQueryUSValueW, ChrCmpIA, PathMakeSystemFolderA, SHOpenRegStreamA, PathFindNextComponentA, StrFormatKBSizeA, AssocQueryStringW, PathCreateFromUrlW, UrlIsNoHistoryW, StrCmpNIA, StrCpyW, SHCopyKeyA, StrSpnA, SHCreateStreamOnFileW, UrlCreateFromPathW, PathCompactPathA, SHRegGetBoolUSValueA, ColorAdjustLuma, UrlCanonicalizeA, PathCombineA, SHStrDupW, PathGetArgsA, PathSkipRootA, UrlIsNoHistoryA, SHRegDuplicateHKey, StrRChrA > user32.dll: CharUpperW, CreateWindowExW, GetMenuItemInfoW, SetParent, PtInRect, SetWindowRgn, GetWindowTextLengthA, RegisterClipboardFormatW, CreateIconIndirect, SetMenuInfo, SetClassWord, DrawCaption, DdeClientTransaction, UnloadKeyboardLayout, SetClassLongW, SetActiveWindow, CharNextA, SetPropA, CharUpperBuffA, DrawStateA, CreateCaret, TabbedTextOutA, SetKeyboardState, DdeAddData, EqualRect, CreateDialogParamA, SetPropW, RegisterClassExW, CreateWindowStationW, DlgDirSelectExW, SetMessageExtraInfo, FindWindowW, IsDialogMessageA, DdeAccessData, MessageBoxExW, SetMenuItemInfoW, GetUserObjectInformationW, CharLowerA, SetRectEmpty, SetWindowsHookW, FlashWindowEx, SwapMouseButton, ArrangeIconicWindows, GetMenuItemID, GetMessageExtraInfo, GetProcessWindowStation, SetDeskWallpaper, CreateIcon, RealGetWindowClass, GetPropA, UnhookWinEvent, IntersectRect, InSendMessageEx, GetClassInfoW, GetWindowDC, GetWindowWord, RegisterClipboardFormatA, DdeNameService, IsCharAlphaNumericW, AnyPopup, InflateRect, OpenIcon, UnpackDDElParam, GetAncestor, DragDetect, InSendMessage, SendMessageTimeoutA, MonitorFromRect, DestroyWindow, CharLowerBuffW, ScreenToClient, EnableScrollBar, GetWindowRgn, UnhookWindowsHookEx, GetDlgItemTextA, SendMessageCallbackW, RegisterWindowMessageA, DdeQueryConvInfo, DrawTextExA, GetSysColorBrush, CloseWindow, SetSysColors, GetGuiResources, MessageBoxExA, AppendMenuW, DestroyCursor, EnumClipboardFormats, SetForegroundWindow, GetScrollPos, GetKeyboardLayoutNameA, GetKeyboardLayoutNameW, LoadStringA, RegisterClassW, PaintDesktop, GetDC, IsCharAlphaW, GetMenuItemRect, DdeKeepStringHandle, UnregisterClassA, SetDlgItemInt, GetClassLongA, LoadCursorFromFileA, GetWindowModuleFileNameW, GetDlgItemTextW, GetDesktopWindow, SetClipboardViewer, CharPrevW, GetClassNameA, FindWindowExA, EndDeferWindowPos, DdeGetLastError, DlgDirListA, CallMsgFilterA, ChangeDisplaySettingsExA, SetMenuContextHelpId, GetMenuContextHelpId, DeleteMenu, GetMenuDefaultItem, GetClientRect ( 0 exports ) |
| TrID : File type identification Win32 Executable MS Visual C++ (generic) (53.1%) Windows Screen Saver (18.4%) Win32 Executable Generic (12.0%) Win32 Dynamic Link Library (generic) (10.6%) Generic Win/DOS Executable (2.8%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=90a4d664364fc87c2f572f767e28c819 |
| ssdeep: 1536:l8umyeSC5SzZljmzNuLM2g8Clg4o7v9ckn5+owsQ1K1T0o3hKFMYMiJ3:NmbS0IbCzrhtgn7vZRQQ1T0o3hKFvf |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=9ED370CB00F7EE713E8601EEEF546A004EBD8D81 |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
