Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File x_6.exe received on 2009.11.01 05:00:48 (UTC)
Current status: finished
Current status: finished
Result: 31/41 (75.61%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.10.31 | Virus.Win32.DelfInject !IK |
| AhnLab-V3 | 5.0.0.2 | 2009.10.30 | Win-Trojan/Buzus.580608.B |
| AntiVir | 7.9.1.53 | 2009.10.30 | TR/Delf.Inject.Z.462 |
| Antiy-AVL | 2.0.3.7 | 2009.10.30 | Trojan/Win32.Buzus.gen |
| Authentium | 5.1.2.4 | 2009.10.31 | W32/Trojan2.DVSN |
| Avast | 4.8.1351.0 | 2009.10.31 | Win32:Malware-gen |
| AVG | 8.5.0.423 | 2009.11.01 | Crypt.IRC |
| BitDefender | 7.2 | 2009.11.01 | Trojan.Delf.Inject.Z |
| CAT-QuickHeal | 10.00 | 2009.10.31 | Win32.VirTool.DelfInject.gen!AC.9 |
| ClamAV | 0.94.1 | 2009.11.01 | - |
| Comodo | 2799 | 2009.11.01 | TrojWare.Win32.Buzus.~ABQ |
| DrWeb | 5.0.0.12182 | 2009.11.01 | BackDoor.Pigeon.12660 |
| eSafe | 7.0.17.0 | 2009.10.29 | Win32.Delf.Inject.Z |
| eTrust-Vet | 35.1.7094 | 2009.10.30 | - |
| F-Prot | 4.5.1.85 | 2009.10.31 | W32/Trojan2.DVSN |
| F-Secure | 9.0.15370.0 | 2009.10.30 | Trojan.Delf.Inject.Z |
| Fortinet | 3.120.0.0 | 2009.11.01 | PossibleThreat |
| GData | 19 | 2009.11.01 | Trojan.Delf.Inject.Z |
| Ikarus | T3.1.1.72.0 | 2009.10.31 | Virus.Win32.DelfInject |
| Jiangmin | 11.0.800 | 2009.10.31 | Trojan/Buzus.bwd |
| K7AntiVirus | 7.10.885 | 2009.10.31 | Trojan.Win32.Buzus |
| Kaspersky | 7.0.0.125 | 2009.11.01 | Trojan.Win32.Buzus.ckfl |
| McAfee | 5788 | 2009.10.31 | - |
| McAfee+Artemis | 5788 | 2009.10.31 | Artemis!6BA871321EA5 |
| McAfee-GW-Edition | 6.8.5 | 2009.11.01 | Trojan.Delf.Inject.Z.462 |
| Microsoft | 1.5202 | 2009.10.31 | - |
| NOD32 | 4561 | 2009.10.31 | Win32/Injector.IE |
| Norman | 6.03.02 | 2009.10.31 | W32/Delf.ELYM |
| nProtect | 2009.1.8.0 | 2009.11.01 | Trojan/W32.Agent.705024.AB |
| Panda | 10.0.2.2 | 2009.10.31 | Trj/CI.A |
| PCTools | 7.0.3.5 | 2009.10.30 | - |
| Prevx | 3.0 | 2009.11.01 | - |
| Rising | 21.53.60.00 | 2009.11.01 | - |
| Sophos | 4.47.0 | 2009.11.01 | Troj/Buzus-W |
| Sunbelt | 3.2.1858.2 | 2009.10.31 | - |
| Symantec | 1.4.4.12 | 2009.11.01 | - |
| TheHacker | 6.5.0.2.058 | 2009.10.31 | Trojan/Buzus.bupj |
| TrendMicro | 8.950.0.1094 | 2009.11.01 | WORM_MAINBOT.MMS |
| VBA32 | 3.12.10.11 | 2009.10.30 | suspected of Trojan-Dropper.Agent.109 |
| ViRobot | 2009.10.31.2015 | 2009.10.31 | Trojan.Win32.Buzus.517533 |
| VirusBuster | 4.6.5.0 | 2009.10.31 | - |
| Additional information |
|---|
| File size: 705024 bytes |
| MD5 : 6ba871321ea5a015085452958e0dfe6f |
| SHA1 : 5432f71611a2c99c384bfd1ecb5edce0c186d17b |
| SHA256: a95bf9bb1d967450357ce6bd0bdeaf41c92b40d3bccdca8ed3866a454c685ee5 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x6A7BC timedatestamp.....: 0x487DDFB4 (Wed Jul 16 13:47:00 2008) machinetype.......: 0x14C (Intel I386) ( 9 sections ) name viradd virsiz rawdsiz ntrpy md5 .TEXT 0x1000 0x68560 0x68600 6.62 3b13ba2f13cd4b63c244b47677ea15cb .itext 0x6A000 0x920 0xA00 6.18 ae2fdc1e9d777ea3a11a5c74d9a2dfef .data 0x6B000 0x23D4 0x2400 4.57 8f4bc44db41c915c9caa36f0ad37bfb5 .DSS 0x6E000 0x4DCC 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .idata 0x73000 0x2608 0x2800 4.93 a4057ed8fd0997edc277e604406621c9 .tLs 0x76000 0x34 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .rdata 0x77000 0x18 0x200 0.27 6f7577bfc620efe76d51031bf1d60635 .reloc 0x78000 0x5D4C 0x5E00 6.68 fdce7f36cea753b3ea886c7b48a67d0c . 0x7E000 0x3400 0x3400 3.79 8070e7dc3681850a51b8eaa764b1b1b9 ( 7 imports ) > advapi32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey, RegQueryValueExA, RegOpenKeyExA, RegFlushKey, RegCloseKey > comctl32.dll: _TrackMouseEvent, ImageList_SetIconSize, ImageList_GetIconSize, ImageList_Write, ImageList_Read, ImageList_DragShowNolock, ImageList_DragMove, ImageList_DragLeave, ImageList_DragEnter, ImageList_EndDrag, ImageList_BeginDrag, ImageList_Remove, ImageList_DrawEx, ImageList_Draw, ImageList_GetBkColor, ImageList_SetBkColor, ImageList_Add, ImageList_SetImageCount, ImageList_GetImageCount, ImageList_Destroy, ImageList_Create > gdi32.dll: UnrealizeObject, StretchBlt, SetWindowOrgEx, SetWinMetaFileBits, SetViewportOrgEx, SetTextColor, SetStretchBltMode, SetROP2, SetPixel, SetEnhMetaFileBits, SetDIBColorTable, SetBrushOrgEx, SetBkMode, SetBkColor, SelectPalette, SelectObject, SaveDC, RestoreDC, RectVisible, RealizePalette, PlayEnhMetaFile, PatBlt, MoveToEx, MaskBlt, LineTo, IntersectClipRect, GetWindowOrgEx, GetWinMetaFileBits, GetTextMetricsA, GetTextExtentPoint32A, GetSystemPaletteEntries, GetStockObject, GetRgnBox, GetPixel, GetPaletteEntries, GetObjectA, GetEnhMetaFilePaletteEntries, GetEnhMetaFileHeader, GetEnhMetaFileBits, GetDeviceCaps, GetDIBits, GetDIBColorTable, GetDCOrgEx, GetCurrentPositionEx, GetClipBox, GetBrushOrgEx, GetBitmapBits, GdiFlush, ExcludeClipRect, DeleteObject, DeleteEnhMetaFile, DeleteDC, CreateSolidBrush, CreatePenIndirect, CreatePalette, CreateHalftonePalette, CreateFontIndirectA, CreateDIBitmap, CreateDIBSection, CreateCompatibleDC, CreateCompatibleBitmap, CreateBrushIndirect, CreateBitmap, CopyEnhMetaFileA, BitBlt > kernel32.dll: GetACP, Sleep, VirtualFree, VirtualAlloc, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, CompareStringA, WriteFile, UnhandledExceptionFilter, RtlUnwind, RaiseException, GetStdHandle, TlsSetValue, TlsGetValue, LocalAlloc, GetModuleHandleA, lstrcpyA, WriteFile, WaitForSingleObject, VirtualQuery, VirtualAlloc, SizeofResource, SetThreadLocale, SetFilePointer, SetEvent, SetErrorMode, SetEndOfFile, ResetEvent, ReadFile, MulDiv, LockResource, LoadResource, LoadLibraryA, LeaveCriticalSection, InitializeCriticalSection, GlobalFindAtomA, GlobalDeleteAtom, GlobalAddAtomA, GetVersionExA, GetVersion, GetTickCount, GetThreadLocale, GetThreadContext, GetStdHandle, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLocalTime, GetLastError, GetFullPathNameA, GetFileSize, GetDiskFreeSpaceA, GetDateFormatA, GetCurrentThreadId, GetCurrentProcessId, GetCPInfo, FreeResource, InterlockedExchange, FreeLibrary, FormatMessageA, FindResourceA, EnumCalendarInfoA, EnterCriticalSection, DeleteCriticalSection, CreateThread, CreateFileA, CreateEventA, CompareStringA, CloseHandle, Sleep > oleaut32.dll: SysFreeString, SysReAllocStringLen, SysAllocStringLen, SafeArrayPtrOfIndex, SafeArrayGetUBound, SafeArrayGetLBound, SafeArrayCreate, VariantChangeType, VariantCopy, VariantClear, VariantInit > user32.dll: GetKeyboardType, DestroyWindow, LoadStringA, MessageBoxA, CharNextA, CreateWindowExA, WindowFromPoint, WaitMessage, UpdateWindow, UnregisterClassA, UnhookWindowsHookEx, TranslateMessage, TranslateMDISysAccel, TrackPopupMenu, SystemParametersInfoA, ShowWindow, ShowScrollBar, ShowOwnedPopups, SetWindowsHookExA, SetWindowPos, SetWindowPlacement, SetWindowLongW, SetWindowLongA, SetTimer, SetScrollRange, SetScrollPos, SetScrollInfo, SetRect, SetPropA, SetParent, SetMenuItemInfoA, SetMenu, SetForegroundWindow, SetFocus, SetCursor, SetClassLongA, SetCapture, SetActiveWindow, SendMessageW, SendMessageA, ScrollWindow, ScreenToClient, RemovePropA, RemoveMenu, ReleaseDC, ReleaseCapture, RegisterWindowMessageA, RegisterClipboardFormatA, RegisterClassA, RedrawWindow, PtInRect, PostQuitMessage, PostMessageA, PeekMessageW, PeekMessageA, OffsetRect, OemToCharA, MessageBoxA, MapWindowPoints, MapVirtualKeyA, LoadStringA, LoadKeyboardLayoutA, LoadIconA, LoadCursorA, LoadBitmapA, KillTimer, IsZoomed, IsWindowVisible, IsWindowUnicode, IsWindowEnabled, IsWindow, IsRectEmpty, IsIconic, IsDialogMessageW, IsDialogMessageA, IsChild, InvalidateRect, IntersectRect, InsertMenuItemA, InsertMenuA, InflateRect, GetWindowThreadProcessId, GetWindowTextA, GetWindowRect, GetWindowPlacement, GetWindowLongW, GetWindowLongA, GetWindowDC, GetTopWindow, GetSystemMetrics, GetSystemMenu, GetSysColorBrush, GetSysColor, GetSubMenu, GetScrollRange, GetScrollPos, GetScrollInfo, GetPropA, GetParent, GetWindow, GetMessagePos, GetMenuStringA, GetMenuState, GetMenuItemInfoA, GetMenuItemID, GetMenuItemCount, GetMenu, GetLastActivePopup, GetKeyboardState, GetKeyboardLayoutNameA, GetKeyboardLayoutList, GetKeyboardLayout, GetKeyState, GetKeyNameTextA, GetIconInfo, GetForegroundWindow, GetFocus, GetDesktopWindow, GetDCEx, GetDC, GetCursorPos, GetCursor, GetClipboardData, GetClientRect, GetClassLongA, GetClassInfoA, GetCapture, GetActiveWindow, FrameRect, FindWindowA, FillRect, EqualRect, EnumWindows, EnumThreadWindows, EnumChildWindows, EndPaint, EnableWindow, EnableScrollBar, EnableMenuItem, DrawTextA, DrawMenuBar, DrawIconEx, DrawIcon, DrawFrameControl, DrawEdge, DispatchMessageW, DispatchMessageA, DestroyWindow, DestroyMenu, DestroyIcon, DestroyCursor, DeleteMenu, DefWindowProcA, DefMDIChildProcA, DefFrameProcA, CreatePopupMenu, CreateMenu, CreateIcon, ClientToScreen, CheckMenuItem, CallWindowProcA, CallNextHookEx, BeginPaint, CharNextA, CharLowerBuffA, CharLowerA, CharToOemA, AdjustWindowRectEx, ActivateKeyboardLayout > version.dll: VerQueryValueA, GetFileVersionInfoSizeA, GetFileVersionInfoA ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (42.3%) Win32 Dynamic Link Library (generic) (37.6%) Generic Win/DOS Executable (9.9%) DOS Executable Generic (9.9%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=6ba871321ea5a015085452958e0dfe6f |
| ssdeep: 12288:HVFIAhwASi2DFiYG9+LbRQ+Rh7r5rZnxJbv0ZzBZTRFXOUasV/ATXlC:Dr2ASicbvJQ+Rh7NBxtsTZT7+NsV/ArY |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=2F6BAD9400D009DDC21A0AAAD69191000C3B1DA1 |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
