Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File game2.exe received on 2009.10.24 06:14:57 (UTC)
Current status: finished
Current status: finished
Result: 27/41 (65.85%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.10.23 | Trojan-Spy.Win32.Zbot!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.10.23 | - |
| AntiVir | 7.9.1.44 | 2009.10.23 | TR/Crypt.ZPACK.Gen |
| Antiy-AVL | 2.0.3.7 | 2009.10.23 | Trojan/Win32.Zbot.gen |
| Authentium | 5.1.2.4 | 2009.10.24 | - |
| Avast | 4.8.1351.0 | 2009.10.24 | Win32:Malware-gen |
| AVG | 8.5.0.423 | 2009.10.23 | PSW.Generic7.AGTD |
| BitDefender | 7.2 | 2009.10.24 | Gen:Trojan.Heur.Zbot.fmW@cOwSyDi |
| CAT-QuickHeal | 10.00 | 2009.10.23 | - |
| ClamAV | 0.94.1 | 2009.10.24 | - |
| Comodo | 2711 | 2009.10.24 | - |
| DrWeb | 5.0.0.12182 | 2009.10.24 | Trojan.PWS.Panda.122 |
| eSafe | 7.0.17.0 | 2009.10.22 | - |
| eTrust-Vet | 35.1.7082 | 2009.10.23 | - |
| F-Prot | 4.5.1.85 | 2009.10.23 | - |
| F-Secure | 9.0.15370.0 | 2009.10.22 | Trojan-Spy:W32/Zbot.gen!B |
| Fortinet | 3.120.0.0 | 2009.10.24 | W32/Agent_bw.D!tr |
| GData | 19 | 2009.10.24 | Gen:Trojan.Heur.Zbot.fmW@cOwSyDi |
| Ikarus | T3.1.1.72.0 | 2009.10.23 | Trojan-Spy.Win32.Zbot |
| Jiangmin | 11.0.800 | 2009.10.24 | - |
| K7AntiVirus | 7.10.878 | 2009.10.23 | Trojan-Spy.Win32.Zbot.gen |
| Kaspersky | 7.0.0.125 | 2009.10.24 | Trojan-Spy.Win32.Zbot.gen |
| McAfee | 5780 | 2009.10.23 | Spy-Agent.bw.gen.d |
| McAfee+Artemis | 5780 | 2009.10.23 | Spy-Agent.bw.gen.d |
| McAfee-GW-Edition | 6.8.5 | 2009.10.24 | Heuristic.BehavesLike.Win32.AdSpyware.H |
| Microsoft | 1.5202 | 2009.10.24 | PWS:Win32/Zbot.gen!R |
| NOD32 | 4537 | 2009.10.23 | a variant of Win32/Kryptik.AET |
| Norman | 6.03.02 | 2009.10.23 | W32/Banker.FAPK |
| nProtect | 2009.1.8.0 | 2009.10.24 | - |
| Panda | 10.0.2.2 | 2009.10.23 | Trj/CI.A |
| PCTools | 4.4.2.0 | 2009.10.19 | - |
| Prevx | 3.0 | 2009.10.24 | - |
| Rising | 21.52.50.00 | 2009.10.24 | Backdoor.Win32.Ntos.fv |
| Sophos | 4.46.0 | 2009.10.24 | Mal/Zbot-O |
| Sunbelt | 3.2.1858.2 | 2009.10.24 | Trojan-Spy.Win32.Zbot.gen (v) |
| Symantec | 1.4.4.12 | 2009.10.24 | Infostealer.Banker.C |
| TheHacker | 6.5.0.2.051 | 2009.10.22 | - |
| TrendMicro | 8.950.0.1094 | 2009.10.24 | TSPY_ZBOT.SMD |
| VBA32 | 3.12.10.11 | 2009.10.23 | Malware-Cryptor.Win32.Vals.11 |
| ViRobot | 2009.10.23.2003 | 2009.10.23 | - |
| VirusBuster | 4.6.5.0 | 2009.10.23 | TrojanSpy.ZBot.Gen!Pac.8 |
| Additional information |
|---|
| File size: 83456 bytes |
| MD5 : 6a36d6bc060309d07ec6ed6fd44f4855 |
| SHA1 : 4af5694fd953e256f952d1d1d5375f46bcde98b7 |
| SHA256: e8050c17fe2d933117225e41e6eeef5ef568f510bb4ba8769ee5aa6d1ecbeb91 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0xA699 timedatestamp.....: 0x471D459D (Tue Oct 23 02:51:41 2007) machinetype.......: 0x14C (Intel I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xFD0C 0xFE00 6.94 cbe96accecf3f68951e03ac72ec63108 .rdata 0x11000 0x41A0 0x4200 5.70 1942d07de6eb0e789fb4b8294c3ed673 .data 0x16000 0x10F 0x200 1.27 3d9b78f36e66bc6efef358ce6a4c5fbc ( 5 imports ) > advapi32.dll: CryptDestroyHash, LookupPrivilegeValueW, GetTrusteeTypeA, SetSecurityDescriptorDacl, GetEffectiveRightsFromAclA, GetTrusteeNameW, GetUserNameA, BuildSecurityDescriptorA, SetNamedSecurityInfoExW, BuildTrusteeWithNameA, AdjustTokenGroups, CloseServiceHandle, GetAclInformation, LogonUserW, SetServiceBits, GetSecurityDescriptorSacl, SetEntriesInAclA, SetEntriesInAuditListA, SetNamedSecurityInfoA, CryptSetHashParam, ConvertAccessToSecurityDescriptorA, QueryServiceConfigW, ObjectPrivilegeAuditAlarmW, GetNamedSecurityInfoW, SetThreadToken, CryptVerifySignatureW, RegCreateKeyA, AllocateAndInitializeSid, ClearEventLogW, ControlService, SetAclInformation, GetUserNameW, BuildImpersonateExplicitAccessWithNameA, ReadEventLogA, CryptContextAddRef, RegEnumKeyExW, GetKernelObjectSecurity, SetEntriesInAccessListA, GetServiceDisplayNameW, GetOldestEventLogRecord, ReadEventLogW, AbortSystemShutdownA, RegSetValueW, RegDeleteValueA, RegQueryMultipleValuesW, GetTrusteeTypeW, DeleteService, RegLoadKeyA, LookupPrivilegeNameW, LookupPrivilegeValueA, AddAccessAllowedAce, OpenServiceW, PrivilegeCheck, GetCurrentHwProfileW, IsValidAcl, SetSecurityDescriptorOwner, RegDeleteKeyW, BackupEventLogW, GetAccessPermissionsForObjectA, AccessCheckAndAuditAlarmW, CryptGenRandom, DestroyPrivateObjectSecurity, PrivilegedServiceAuditAlarmA, CryptSetProviderExA, RegFlushKey, IsValidSecurityDescriptor, RegSaveKeyA, SetSecurityInfoExA, GetAuditedPermissionsFromAclA, RegSetValueA, LookupAccountNameA, CreateServiceW, RegLoadKeyW, RegQueryValueA, GetMultipleTrusteeW, BuildImpersonateExplicitAccessWithNameW, GetFileSecurityW, GetSidLengthRequired, GetMultipleTrusteeOperationW, LookupPrivilegeNameA, OpenBackupEventLogW, StartServiceCtrlDispatcherA, RegGetKeySecurity, ObjectOpenAuditAlarmA, GetNamedSecurityInfoA, GetEffectiveRightsFromAclW, LogonUserA, CryptDecrypt, LookupPrivilegeDisplayNameA, LookupSecurityDescriptorPartsA, GetCurrentHwProfileA, SetNamedSecurityInfoW, SetSecurityInfo, PrivilegedServiceAuditAlarmW, ConvertSecurityDescriptorToAccessW, AdjustTokenPrivileges, ObjectPrivilegeAuditAlarmA, RegEnumValueW, SetNamedSecurityInfoExA, AllocateLocallyUniqueId, OpenBackupEventLogA, TrusteeAccessToObjectA, CryptSetProviderExW, BackupEventLogA, CryptEncrypt, BuildExplicitAccessWithNameA, CryptVerifySignatureA, ChangeServiceConfigA, NotifyChangeEventLog, DuplicateToken, AbortSystemShutdownW, RegDeleteKeyA, CryptAcquireContextW, CryptReleaseContext, GetTrusteeNameA, EnumServicesStatusW, RegQueryMultipleValuesA, CryptImportKey, ImpersonateLoggedOnUser, SetTokenInformation, RegSetKeySecurity > kernel32.dll: EscapeCommFunction, ReadConsoleInputA, GetEnvironmentStrings, GlobalUnlock, EnumTimeFormatsA, ReadConsoleA, GetFileAttributesExW, CreateMailslotW, FindAtomA, MapViewOfFileEx, EnumDateFormatsA, FreeLibraryAndExitThread, WaitCommEvent, GlobalFlags, GetExitCodeProcess, SetMailslotInfo, WriteProfileStringW, VirtualAlloc, ReadConsoleOutputCharacterW, lstrcmpW, EndUpdateResourceA, SetSystemTime, EnumDateFormatsExW, SetHandleInformation, GetProcessHeaps, SetCommBreak, EraseTape, BackupWrite, GetPrivateProfileIntA, lstrcpynW, GetTimeFormatA, FormatMessageA, GetProfileIntA, VirtualProtect, lstrcatA, FreeEnvironmentStringsW, ClearCommBreak, GetFileType, WideCharToMultiByte, lstrcmpA, GetCommTimeouts, lstrlenW, TerminateProcess, lstrcat, PurgeComm, WritePrivateProfileSectionW, LocalFlags, GetProfileStringA, GetCurrentThreadId, CreateNamedPipeA, SetConsoleCursorPosition, GetStringTypeExA, GetPrivateProfileSectionA, RemoveDirectoryA, GetFileAttributesExA, GetDevicePowerState, GetConsoleTitleA, GetCommMask, GetNamedPipeHandleStateA, WaitForSingleObjectEx, WriteFileGather, GlobalFindAtomA, SetConsoleActiveScreenBuffer, GetModuleHandleW, IsDebuggerPresent, EnumSystemLocalesW, ScrollConsoleScreenBufferW, DebugActiveProcess, GlobalCompact, GetNumberFormatW, BuildCommDCBAndTimeoutsW, SwitchToFiber, UnmapViewOfFile, CallNamedPipeA, lstrcpyW, FlushConsoleInputBuffer, LoadLibraryExW, LoadResource, OpenFile, UnhandledExceptionFilter, CreateSemaphoreW, GlobalWire, GetDefaultCommConfigA, MoveFileW, GetSystemDirectoryA, GetTempFileNameA, GetWindowsDirectoryW, SystemTimeToTzSpecificLocalTime, SuspendThread, FindFirstChangeNotificationW, EnumSystemCodePagesA, GlobalReAlloc, SetVolumeLabelW, GlobalUnWire, VirtualQueryEx, GetPrivateProfileSectionNamesA, DefineDosDeviceW, GetSystemDirectoryW, CreateSemaphoreA, LocalShrink, SetHandleCount, FlushInstructionCache, EnumResourceLanguagesW, UnlockFileEx, GetCommModemStatus, HeapCreate, WriteConsoleInputA, GetThreadSelectorEntry, GetDateFormatW, LCMapStringW, GetCompressedFileSizeA, ExpandEnvironmentStringsA, CancelIo, SetFileAttributesA, CloseHandle, ReadFile > ole32.dll: CoResumeClassObjects, CoInitialize, OleMetafilePictFromIconAndLabel, OleCreateFromData, OleGetIconOfClass, OleGetAutoConvert, OleRun, MonikerCommonPrefixWith, CoTreatAsClass, CoGetCurrentProcess, DllDebugObjectRPCHook, CoLoadLibrary, CoFileTimeNow, CreateItemMoniker, CoFreeLibrary, CoSuspendClassObjects, OleCreateEmbeddingHelper, CoDisconnectObject, CoReleaseMarshalData, CoGetMalloc, CreateDataCache, CoGetStandardMarshal, CoGetMarshalSizeMax, OleConvertOLESTREAMToIStorage, CoGetCallerTID, WriteStringStream, CoQueryAuthenticationServices, FreePropVariantArray, SetConvertStg, SetDocumentBitStg, BindMoniker, CoRegisterSurrogate, CoRegisterMallocSpy, GetHGlobalFromILockBytes, CoReleaseServerProcess, CoUninitialize, GetHookInterface, ReadFmtUserTypeStg, OleSetMenuDescriptor, CoCreateFreeThreadedMarshaler, IIDFromString, OleSave, CoQueryProxyBlanket, UtGetDvtd16Info, OleInitialize, CoFileTimeToDosDateTime, CoQueryReleaseObject, StgOpenStorageEx, ReadClassStm, CoGetPSClsid, UpdateDCOMSettings, OleSetContainedObject, OpenOrCreateStream, ReadOleStg, PropVariantClear, StgCreateStorageEx, OleCreateDefaultHandler, PropVariantCopy, CoRevertToSelf, CoRevokeMallocSpy, CoGetObject, CreateOleAdviseHolder, CoFreeAllLibraries, StgCreateDocfile, OleConvertOLESTREAMToIStorageEx, CoMarshalInterThreadInterfaceInStream, CoRegisterClassObject, OleDoAutoConvert, UtConvertDvtd16toDvtd32, CoRegisterMessageFilter, StgOpenStorageOnILockBytes, CoIsOle1Class, ProgIDFromCLSID, OleConvertIStorageToOLESTREAMEx, CreateStreamOnHGlobal, ReadClassStg, CoGetCallContext, OleSaveToStream, CoSwitchCallContext, StgIsStorageILockBytes, CoMarshalInterface, OleCreateLinkFromDataEx, OleLoadFromStream, RevokeDragDrop, GetHGlobalFromStream, WriteOleStg, StgOpenStorage, OleCreateStaticFromData, WriteClassStm, ReleaseStgMedium, GetConvertStg, StgOpenAsyncDocfileOnIFillLockBytes, StringFromGUID2, CreateBindCtx, CoGetCurrentLogicalThreadId, WriteFmtUserTypeStg, GetDocumentBitStg, CoCopyProxy, OleQueryLinkFromData, CoSetProxyBlanket > shlwapi.dll: SHCopyKeyA, StrCpyW, PathFileExistsW, UrlGetLocationA, PathFindExtensionW, SHRegGetUSValueA, SHOpenRegStream2A, PathIsFileSpecA, SHOpenRegStream2W, PathCompactPathExW, SHOpenRegStreamW, StrToIntExW, StrToIntExA, PathBuildRootA, PathGetArgsA, SHRegDeleteUSValueW, PathIsUNCA, UrlCompareW, PathGetArgsW, PathBuildRootW, StrFormatKBSizeW, StrCatBuffA, AssocQueryStringA, PathIsUNCServerW, StrRChrIW, PathStripPathW, PathAddExtensionA, SHGetValueW, SHRegWriteUSValueW, AssocQueryKeyA, PathFileExistsA, PathSkipRootA, UrlIsNoHistoryA, SHRegCreateUSKeyW, PathRemoveBackslashA, SHQueryInfoKeyA, PathIsNetworkPathA, PathUnquoteSpacesW, PathCreateFromUrlW, PathRemoveExtensionA, ChrCmpIW, SHRegQueryUSValueA, PathIsFileSpecW, PathIsLFNFileSpecA, StrCmpW, StrRetToBufW, PathRemoveArgsW, wvnsprintfA, PathRelativePathToW, PathParseIconLocationA, UrlEscapeW, SHCreateStreamOnFileW, PathGetCharTypeA, PathIsNetworkPathW, UrlCreateFromPathA, SHRegGetBoolUSValueA, SHDeleteValueW, PathRemoveBlanksA, StrStrA, PathUndecorateA, PathQuoteSpacesA, UrlCombineW, UrlCanonicalizeA, PathIsRootW, SHRegSetUSValueW, PathRenameExtensionA, PathRemoveBackslashW, SHRegEnumUSKeyW, UrlIsA, PathAppendW, PathMatchSpecW, PathFindNextComponentW, PathCompactPathW, PathFindFileNameA, SHCreateStreamOnFileA, UrlUnescapeA, StrDupA, StrRStrIW, UrlCompareA, StrRChrW, PathStripPathA, SHRegGetUSValueW, SHCreateShellPalette, SHRegOpenUSKeyA, StrRStrIA, PathSearchAndQualifyA, UrlCombineA, StrFromTimeIntervalW, PathFindSuffixArrayW, UrlEscapeA, SHQueryValueExA, StrCmpIW, PathUnmakeSystemFolderA, PathGetDriveNumberA, PathIsSameRootW, UrlIsOpaqueA, StrNCatW, UrlIsOpaqueW, SHRegCloseUSKey, SHRegDeleteUSValueA, ColorHLSToRGB, StrRChrA, PathMakeSystemFolderW, SHRegQueryUSValueW, PathIsDirectoryA, PathIsDirectoryEmptyW, StrRetToStrW, PathIsUNCServerA, PathGetDriveNumberW, PathIsUNCServerShareA, AssocQueryStringByKeyW, StrCSpnIW, StrToIntW, PathIsURLA, AssocQueryStringW, StrTrimW, UrlUnescapeW, PathCompactPathExA, SHRegEnumUSKeyA, PathCreateFromUrlA, SHRegSetUSValueA > user32.dll: SetPropA, DrawMenuBar, IsWindowEnabled, PostQuitMessage, GetCaretBlinkTime, DdeKeepStringHandle, DrawFocusRect, RegisterClipboardFormatW, FindWindowExW, GetWindowRgn, CharLowerBuffA, GetKeyNameTextW, GetUpdateRect, EnumDisplaySettingsA, GetCursorInfo, EnumWindowStationsA, LookupIconIdFromDirectory, BringWindowToTop, GetClipboardFormatNameW, CharPrevA, LoadMenuA, IsIconic, ShowCaret, GetClassInfoA, SetWindowsHookA, OemToCharBuffW, ExcludeUpdateRgn, FindWindowExA, SetMessageQueue, DlgDirSelectComboBoxExA, GetDlgItem, SetForegroundWindow, EnumPropsA, GetUpdateRgn, DispatchMessageW, ToAsciiEx, TileWindows, CallMsgFilterA, SwapMouseButton, CharUpperBuffA, SetCapture, DdeClientTransaction, EnumDisplayDevicesW, GetPropW, DdeAbandonTransaction, KillTimer, VkKeyScanExA, CreateDialogIndirectParamA, SetClassLongW, GetKeyboardLayoutNameW, RemovePropW, PostMessageW, GetProcessDefaultLayout, IsCharLowerW, GetCursorPos, DrawStateW, ScreenToClient, WINNLSEnableIME, DrawTextExA, GetClipboardSequenceNumber, ArrangeIconicWindows, DrawFrame, GetFocus, DialogBoxIndirectParamW, LoadKeyboardLayoutW, GetComboBoxInfo, CallMsgFilterW, ChangeDisplaySettingsA, TranslateMDISysAccel, SendIMEMessageExW, FlashWindow, VkKeyScanA, GetMonitorInfoA, GetDesktopWindow, ToUnicode, DdeImpersonateClient, UnionRect, DdeAddData, DrawEdge, IsDialogMessageW, CharPrevExA, IsRectEmpty, SetWindowsHookW, DefMDIChildProcW, DestroyWindow, EndDeferWindowPos, OffsetRect, ChangeClipboardChain, FindWindowW, DestroyCursor, SendDlgItemMessageW, IsMenu, DrawCaption, IsCharUpperW, GetScrollBarInfo, GetInputState, SetMessageExtraInfo, OpenIcon, OemToCharBuffA, GetMenuDefaultItem, GetWindowLongW, GetSystemMenu, SendDlgItemMessageA, DrawTextA, CopyAcceleratorTableA, SetClipboardData, DestroyMenu, CreateCaret, SendMessageW, DestroyCaret, SetWindowsHookExW, DlgDirListW, DrawIcon, DdeAccessData, GetGUIThreadInfo, EnumDesktopWindows, ShowScrollBar, DefWindowProcA, EnableWindow, CreateDialogParamW, GetOpenClipboardWindow, WaitForInputIdle, ReleaseDC, GetKeyboardLayout, GetNextDlgGroupItem, ShowCursor, GetDC ( 0 exports ) |
| TrID : File type identification Win32 Executable MS Visual C++ (generic) (65.2%) Win32 Executable Generic (14.7%) Win32 Dynamic Link Library (generic) (13.1%) Generic Win/DOS Executable (3.4%) DOS Executable Generic (3.4%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=6a36d6bc060309d07ec6ed6fd44f4855 |
| ssdeep: 1536:G7Ws/m0cDnvXJiaOfng9BcmvYRw56PWmOMVGHIBIVWcpENI2Sq7+sE:G7XOtDnBixY9Bjvn6ZPaagzcIe7 |
| sigcheck: publisher....: n/a copyright....: n/a product......: n/a description..: n/a original name: n/a internal name: n/a file version.: n/a comments.....: n/a signers......: - signing date.: - verified.....: Unsigned |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=6588F448008D498846A4012B308F670091EEE3DA |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
