Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File SDPIOSYS.SYS received on 2009.07.08 21:06:57 (UTC)
Current status: finished
Current status: finished
Result: 21/41 (51.22%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.18 | 2009.07.08 | Rootkit.Win32.Agent.agw!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.07.08 | Win-Trojan/Vanti.161792 |
| AntiVir | 7.9.0.204 | 2009.07.08 | - |
| Antiy-AVL | 2.0.3.1 | 2009.07.08 | Trojan/Win32.Agent.gen |
| Authentium | 5.1.2.4 | 2009.07.08 | - |
| Avast | 4.8.1335.0 | 2009.07.08 | Win32:Rootkit-gen |
| AVG | 8.5.0.386 | 2009.07.08 | BackDoor.Generic9.AFCW |
| BitDefender | 7.2 | 2009.07.08 | - |
| CAT-QuickHeal | 10.00 | 2009.07.08 | - |
| ClamAV | 0.94.1 | 2009.07.08 | - |
| Comodo | 1584 | 2009.07.08 | UnclassifiedMalware |
| DrWeb | 5.0.0.12182 | 2009.07.08 | - |
| eSafe | 7.0.17.0 | 2009.07.08 | Rootkit.Win32.Agent. |
| eTrust-Vet | 31.6.6604 | 2009.07.08 | - |
| F-Prot | 4.4.4.56 | 2009.07.08 | - |
| F-Secure | 8.0.14470.0 | 2009.07.08 | - |
| Fortinet | 3.117.0.0 | 2009.07.03 | W32/Agent.AGW!tr.rkit |
| GData | 19 | 2009.07.08 | Win32:Rootkit-gen |
| Ikarus | T3.1.1.64.0 | 2009.07.08 | Rootkit.Win32.Agent.agw |
| Jiangmin | 11.0.706 | 2009.07.08 | Rootkit.Vanti.exp |
| K7AntiVirus | 7.10.787 | 2009.07.08 | Rootkit.Win32.Agent.agw |
| Kaspersky | 7.0.0.125 | 2009.07.08 | - |
| McAfee | 5670 | 2009.07.08 | - |
| McAfee+Artemis | 5670 | 2009.07.08 | - |
| McAfee-GW-Edition | 6.8.5 | 2009.07.08 | - |
| Microsoft | 1.4803 | 2009.07.08 | - |
| NOD32 | 4225 | 2009.07.08 | - |
| Norman | 6.01.09 | 2009.07.08 | W32/Rootkit.EXJ |
| nProtect | 2009.1.8.0 | 2009.07.08 | - |
| Panda | 10.0.0.14 | 2009.07.08 | Generic Rootkit |
| PCTools | 4.4.2.0 | 2009.07.08 | Rootkit.Agent!ct |
| Prevx | 3.0 | 2009.07.08 | High Risk System Back Door |
| Rising | 21.37.24.00 | 2009.07.08 | - |
| Sophos | 4.43.0 | 2009.07.08 | - |
| Sunbelt | 3.2.1858.2 | 2009.07.08 | Bulk Trojan |
| Symantec | 1.4.4.12 | 2009.07.08 | - |
| TheHacker | 6.3.4.3.363 | 2009.07.08 | Trojan/Agent.agw |
| TrendMicro | 8.950.0.1094 | 2009.07.08 | TROJ_ROOTKITD.F |
| VBA32 | 3.12.10.7 | 2009.07.08 | Rootkit.Win32.Agent.agw |
| ViRobot | 2009.7.8.1824 | 2009.07.08 | Trojan.Win32.Agent.161792 |
| VirusBuster | 4.6.5.0 | 2009.07.08 | - |
| Additional information |
|---|
| File size: 161792 bytes |
| MD5 : 770872e7c4985d3fdf8755ec632c11e1 |
| SHA1 : f951fb11cec7f92e8693dd2b8a27b5a1abd7bfc7 |
| SHA256: c841be8965505d3b514bfae81d48b34d96596a7d9936255f60df6a82396fd08b |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x2F0 timedatestamp.....: 0x3C639C3B (Fri Feb 8 10:36:59 2002) machinetype.......: 0x14C (Intel I386) ( 5 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x280 0x245BC 0x245C0 7.93 14962ea4654e2c4d200f93e0bf80154f .rdata 0x24840 0x20D0 0x20E0 7.97 34fa4cdbcd8e8386664da0aa8b06ea3e .data 0x26920 0x9A0 0x9A0 3.69 1d89424aa6a8668c280ccc286da8c299 INIT 0x272C0 0x284 0x2A0 4.89 ed4a1331777e6e5c69455e06486f0f49 .reloc 0x27560 0x298 0x2A0 2.74 7dc104658be4acaa920cac5b20965c8e ( 2 imports ) > hal.dll: HalTranslateBusAddress, ExAcquireFastMutex, ExReleaseFastMutex > ntoskrnl.exe: RtlInitAnsiString, IofCompleteRequest, RtlAnsiStringToUnicodeString, ExFreePool, ExAllocatePoolWithTag, ObReferenceObjectByHandle, ObfDereferenceObject, RtlFreeUnicodeString, IoCreateDevice, KeSetTimer, KeCancelTimer, KeSetEvent, IoStartNextPacket, MmUnmapIoSpace, MmMapIoSpace, IoCreateUnprotectedSymbolicLink, KeInitializeTimer, KeInitializeEvent, KeInitializeDpc ( 0 exports ) |
| TrID : File type identification Generic Win/DOS Executable (49.9%) DOS Executable Generic (49.8%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=770872e7c4985d3fdf8755ec632c11e1 |
| ssdeep: 3072:R+rbuiFWkFgrndW6p8V3UXKWo3RRQWiTb8YS8beW5NzhPR:R+rbUkAndW443ROWiTb8YS8CCP |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=5CB42CB200688EA9786D022D1387A8003CF2CC9A |
| PEiD : - |
| CWSandbox: http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=770872e7c4985d3fdf8755ec632c11e1 |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
