Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
|
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information... |
File spoolsv.exe received on 2008.06.24 20:34:48 (UTC)
Current status: finished
Current status: finished
Result: 21/33 (63.64%)
| Antivirus | Version | Last Update | Result |
|---|---|---|---|
| AhnLab-V3 | 2008.6.24.0 | 2008.06.24 | Win-Trojan/Hamweq.13824 |
| AntiVir | 7.8.0.59 | 2008.06.24 | TR/Autorun.KT |
| Authentium | 5.1.0.4 | 2008.06.24 | - |
| Avast | 4.8.1195.0 | 2008.06.24 | Win32:Agent-XKO |
| AVG | 7.5.0.516 | 2008.06.24 | Worm/Generic.GWS |
| BitDefender | 7.2 | 2008.06.24 | Backdoor.Hamweq.A |
| CAT-QuickHeal | 9.50 | 2008.06.23 | Worm.AutoRun.czg |
| ClamAV | 0.93.1 | 2008.06.24 | - |
| DrWeb | 4.44.0.09170 | 2008.06.24 | Trojan.Inject.3511 |
| eSafe | 7.0.17.0 | 2008.06.24 | - |
| eTrust-Vet | 31.6.5900 | 2008.06.24 | Win32/SillyAutorun.FR |
| Ewido | 4.0 | 2008.06.24 | Worm.AutoRun.czg |
| F-Prot | 4.4.4.56 | 2008.06.24 | - |
| F-Secure | 7.60.13501.0 | 2008.06.24 | Suspicious:W32/Malware!Gemini |
| Fortinet | 3.14.0.0 | 2008.06.24 | - |
| GData | 2.0.7306.1023 | 2008.06.24 | Win32:Agent-XKO |
| Ikarus | T3.1.1.26.0 | 2008.06.24 | Virus.Worm.Win32.AutoRun.dht |
| Kaspersky | 7.0.0.125 | 2008.06.24 | - |
| McAfee | 5324 | 2008.06.24 | - |
| Microsoft | 1.3604 | 2008.06.24 | Worm:Win32/Hamweq.A |
| NOD32v2 | 3215 | 2008.06.24 | a variant of Win32/AutoRun.KS |
| Norman | 5.80.02 | 2008.06.24 | - |
| Panda | 9.0.0.4 | 2008.06.24 | - |
| Prevx1 | V2 | 2008.06.24 | Malicious Software |
| Rising | 20.50.10.00 | 2008.06.24 | - |
| Sophos | 4.30.0 | 2008.06.24 | W32/Autoham-Fam |
| Sunbelt | 3.0.1153.1 | 2008.06.15 | - |
| Symantec | 10 | 2008.06.24 | W32.SillyFDC |
| TheHacker | 6.2.92.360 | 2008.06.24 | - |
| TrendMicro | 8.700.0.1004 | 2008.06.24 | PAK_Generic.001 |
| VBA32 | 3.12.6.8 | 2008.06.23 | Worm.Win32.AutoRun.dql |
| VirusBuster | 4.5.11.0 | 2008.06.23 | Worm.Hamweg.Gen |
| Webwasher-Gateway | 6.6.2 | 2008.06.24 | Win32.Malware.gen |
| Additional information |
|---|
| File size: 13824 bytes |
| MD5...: 1b8d296e23bf483659b116b95ea91d10 |
| SHA1..: a5cd20b743d6e75fab940f9b3e6a407babac1751 |
| SHA256: afa9b9f3d2bbd9ad18056908edfaa296ce1467b3e52f009b25caa1307c42a9e6 |
| SHA512: fd072c25373eee63326716258ceae85f98227aaf85043c3c94ee5cec68bb0425 8ae45b7539b1f75714557e9ce9b4cfe3233081312884ff64098c307332c3d062 |
| PEiD..: - |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x402c68 timedatestamp.....: 0x0 (Thu Jan 01 00:00:00 1970) machinetype.......: 0x14c (I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x2558 0x2600 5.87 7337fa40456acc3bd39b3638ef971f33 .rdata 0x4000 0x166 0x200 3.40 bc7f4de630fca187f18db4729e8653ac .data 0x5000 0xa00 0xa00 5.40 8b7fe22c34fb945108dba414cf93fe6b ( 2 imports ) > KERNEL32.dll: ExitProcess, LoadLibraryA, lstrlenA, GetCurrentProcess, GetProcAddress, lstrcmpiA, CloseHandle > ADVAPI32.dll: LookupPrivilegeValueA, AdjustTokenPrivileges, OpenProcessToken ( 0 exports ) |
| Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=47A756B90041EF7C360000FD8836A0004BFA9B5C |
ATTENTION:
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
