Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File rdr.exe received on 2009.01.20 00:28:23 (UTC)
Current status: finished
Current status: finished
Result: 5/39 (12.82%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.0.0.73 | 2009.01.19 | - |
| AhnLab-V3 | 2009.1.20.1 | 2009.01.19 | - |
| AntiVir | 7.9.0.57 | 2009.01.19 | - |
| Authentium | 5.1.0.4 | 2009.01.19 | - |
| Avast | 4.8.1281.0 | 2009.01.19 | - |
| AVG | 8.0.0.229 | 2009.01.20 | Win32/Cryptor |
| BitDefender | 7.2 | 2009.01.20 | Trojan.Spy.ZBot.PE |
| CAT-QuickHeal | 10.00 | 2009.01.19 | - |
| ClamAV | 0.94.1 | 2009.01.19 | - |
| Comodo | 937 | 2009.01.19 | - |
| DrWeb | 4.44.0.09170 | 2009.01.20 | - |
| eSafe | 7.0.17.0 | 2009.01.19 | - |
| eTrust-Vet | 31.6.6315 | 2009.01.19 | - |
| F-Prot | 4.4.4.56 | 2009.01.19 | - |
| F-Secure | 8.0.14470.0 | 2009.01.19 | - |
| Fortinet | 3.117.0.0 | 2009.01.15 | - |
| GData | 19 | 2009.01.20 | Trojan.Spy.ZBot.PE |
| Ikarus | T3.1.1.45.0 | 2009.01.19 | - |
| K7AntiVirus | 7.10.595 | 2009.01.19 | - |
| Kaspersky | 7.0.0.125 | 2009.01.20 | - |
| McAfee | 5500 | 2009.01.19 | - |
| McAfee+Artemis | 5500 | 2009.01.19 | - |
| Microsoft | 1.4205 | 2009.01.20 | - |
| NOD32 | 3779 | 2009.01.19 | a variant of Win32/Kryptik.FH |
| Norman | 5.93.01 | 2009.01.19 | - |
| nProtect | 2009.1.8.0 | 2009.01.19 | Trojan.Spy.ZBot.PE |
| Panda | 9.5.1.2 | 2009.01.19 | - |
| PCTools | 4.4.2.0 | 2009.01.19 | - |
| Prevx1 | V2 | 2009.01.20 | - |
| Rising | 21.13.02.00 | 2009.01.19 | - |
| SecureWeb-Gateway | 6.7.6 | 2009.01.19 | - |
| Sophos | 4.37.0 | 2009.01.20 | - |
| Sunbelt | 3.2.1835.2 | 2009.01.16 | - |
| Symantec | 10 | 2009.01.20 | - |
| TheHacker | 6.3.1.5.224 | 2009.01.20 | - |
| TrendMicro | 8.700.0.1004 | 2009.01.19 | - |
| VBA32 | 3.12.8.10 | 2009.01.19 | - |
| ViRobot | 2009.1.19.1565 | 2009.01.19 | - |
| VirusBuster | 4.5.11.0 | 2009.01.19 | - |
| Additional information |
|---|
| File size: 66048 bytes |
| MD5...: 62c5589b2239dd5c02443831d7591c8d |
| SHA1..: 3d7992007235253f74cc22953231867ae4a95e5e |
| SHA256: 8afb325e1445288a93897c96a12c074d870794e08701b1d5dd70ac0c215f0eda |
| SHA512: ea8e765067533ed12d644f58ee7bf60573d57f482f0967bf831e4c445b91135e 5846acf84a56850e1d1170bb70c525b9940fba732493c5dade0d72b075a48bb5 |
| ssdeep: 1536:qf9FDT68PgVb2WF07vCiERTESOD93f2JrWnEfLZZ9LYef1QmDFEmSLWhsZl d1G:qFFDuygL0bCTRgSK93OJrWGLn9f9Qr12 |
| PEiD..: - |
| TrID..: File type identification Win32 Executable Generic (38.4%) Win32 Dynamic Link Library (generic) (34.1%) Win16/32 Executable Delphi generic (9.3%) Generic Win/DOS Executable (9.0%) DOS Executable Generic (9.0%) |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x402f41 timedatestamp.....: 0x492c3040 (Tue Nov 25 17:05:04 2008) machinetype.......: 0x14c (I386) ( 2 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xfbd4 0xfc00 6.79 17773a1d697f04ff1d4c32e234123656 .data 0x11000 0x405b 0x200 0.42 8d60e89d83a73118d151dcf8d37df468 ( 4 imports ) > KERNEL32.dll: VirtualAlloc, HeapAlloc, GetFileAttributesA, GetTimeZoneInformation, SystemTimeToFileTime, VirtualProtect, CreateMutexW, LeaveCriticalSection, GetLocalTime, FindNextFileW, lstrlenW, SetFileTime, LoadLibraryA, GetSystemTime, InitializeCriticalSection, lstrcatA, MultiByteToWideChar, lstrcmpiA, lstrcmpiW, CreateProcessW > ADVAPI32.dll: RegCreateKeyExA, RegEnumKeyExA, RegQueryValueExA, CryptAcquireContextW, DuplicateTokenEx, RegDeleteValueA, CryptReleaseContext, CryptDestroyHash, GetUserNameW, CryptCreateHash, RegCloseKey, CryptGetHashParam > USER32.dll: OpenDesktopA, GetClassNameA, GetWindowTextA, MsgWaitForMultipleObjects, PeekMessageA, GetIconInfo, OpenWindowStationA, GetMessageA, GetWindowLongA, ExitWindowsEx, ToUnicode, GetKeyState, CloseWindowStation, GetDlgItemTextA > SHLWAPI.dll: PathFileExistsW, SHDeleteKeyA, wvnsprintfA, PathRemoveFileSpecW, StrStrW, StrCmpNIW, PathFindFileNameW, PathCombineW, wnsprintfA, PathMatchSpecW, wvnsprintfW, wnsprintfW ( 0 exports ) |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
