VT Community Sign in ▼ Languages ▼
VirusTotal's website has changed, we need new translations, do you feel like helping the community?
Sign in to VT Community

Safety ratings and user comments (disinfection, in-the-wild locations, reverse engineering reports, etc.) on malware and URLs, free and easy.

email
password
Keep me logged in
Forgot your password? Create an account
0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is goodware. 0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is malware.
File name:
uninstall.exe
Submission date:
2009-07-04 20:35:49 (UTC)
Current status:
finished
Result:
1 /41 (2.4%)
VT Community

not reviewed
 Safety score: - 
Antivirus Version Last Update Result
a-squared 4.5.0.18 2009.07.04 -
AhnLab-V3 5.0.0.2 2009.07.04 -
AntiVir 7.9.0.204 2009.07.03 -
Antiy-AVL 2.0.3.1 2009.07.03 -
Authentium 5.1.2.4 2009.07.04 -
Avast 4.8.1335.0 2009.07.04 -
AVG 8.5.0.386 2009.07.03 -
BitDefender 7.2 2009.07.04 -
CAT-QuickHeal 10.00 2009.07.03 -
ClamAV 0.94.1 2009.07.03 -
Comodo 1538 2009.07.02 -
DrWeb 5.0.0.12182 2009.07.04 -
eSafe 7.0.17.0 2009.07.02 -
eTrust-Vet 31.6.6596 2009.07.03 -
F-Prot 4.4.4.56 2009.07.04 -
F-Secure 8.0.14470.0 2009.07.04 -
Fortinet 3.117.0.0 2009.07.03 -
GData 19 2009.07.04 -
Ikarus T3.1.1.64.0 2009.07.04 -
Jiangmin 11.0.706 2009.07.04 -
K7AntiVirus 7.10.783 2009.07.03 -
Kaspersky 7.0.0.125 2009.07.04 -
McAfee 5666 2009.07.04 -
McAfee+Artemis 5666 2009.07.04 -
McAfee-GW-Edition 6.8.5 2009.07.04 -
Microsoft 1.4803 2009.07.04 -
NOD32 4217 2009.07.04 -
Norman 6.01.09 2009.07.04 -
nProtect 2009.1.8.0 2009.07.04 -
Panda 10.0.0.14 2009.07.04 -
PCTools 4.4.2.0 2009.07.03 -
Prevx 3.0 2009.07.04 High Risk Worm
Rising 21.36.52.00 2009.07.04 -
Sophos 4.43.0 2009.07.04 -
Sunbelt 3.2.1858.2 2009.07.04 -
Symantec 1.4.4.12 2009.07.04 -
TheHacker 6.3.4.3.362 2009.07.04 -
TrendMicro 8.950.0.1094 2009.07.04 -
VBA32 3.12.10.7 2009.07.04 -
ViRobot 2009.7.3.1818 2009.07.03 -
VirusBuster 4.6.5.0 2009.07.03 -
Additional information
MD5   : 7e58455683bb681e97752666d770c8bc
SHA1  : 29960fed096224a4083361d4691e9994958f23cc
SHA256: 5c61056eadea79703021751162b463977ae6f5a30f1f823c991f0760b8c44d7e
ssdeep: 768:okoZAFf5YquRWWw0fmF8pZf0YJx9GSFS6sWkJO+eJRn5Am6kRRJ2iZ3igZkgCZIZ:tIif3u[*lb*]nwKHsskJVqAELVigZkgC2Z
File size : 54513 bytes
First seen: 2008-07-17 10:31:05
Last seen : 2010-07-23 17:19:51
Magic: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
TrID:
Win32 Executable MS Visual C++ (generic) (65.2%)[*lb*]Win32 Executable Generic (14.7%)[*lb*]Win32 Dynamic Link Library (generic) (13.1%)[*lb*]Generic Win/DOS Executable (3.4%)[*lb*]DOS Executable Generic (3.4%)
sigcheck:
publisher....: n/a[*lb*]copyright....: n/a[*lb*]product......: n/a[*lb*]description..: n/a[*lb*]original name: n/a[*lb*]internal name: n/a[*lb*]file version.: n/a[*lb*]comments.....: n/a[*lb*]signers......: -[*lb*]signing date.: -[*lb*]verified.....: Unsigned[*lb*]
PEiD: -
packers (F-Prot): NSIS
PEInfo: PE structure information

[[ basic data ]]
entrypointaddress: 0x3145
timedatestamp....: 0x45A92436 (Sat Jan 13 18:25:58 2007)
machinetype......: 0x14C (Intel I386)

[[ 5 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0x59DE, 0x5A00, 6.51, 9d2c33da35c7d461e5367940f2a17f8e
.rdata, 0x7000, 0x10F2, 0x1200, 5.06, 91271e85c1048ae5a465a5a9d34af29f
.data, 0x9000, 0x39A034, 0x400, 5.05, 9455de5b5a1e8b0c7b3be1eb337dde60
.ndata, 0x3A4000, 0x9000, 0x0, 0.0, d41d8cd98f00b204e9800998ecf8427e
.rsrc, 0x3AD000, 0x4A38, 0x4C00, 5.69, be00110845e01f296cce03bebdcf62ae
Prevx Info:
http://info.prevx.com/aboutprogramtext.asp?PX5=9B87AF16F131298DD47E0013308F4000F60A97E9
CWSandbox:
http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=7e58455683bb681e97752666d770c8bc
ThreatExpert:
http://www.threatexpert.com/report.aspx?md5=7e58455683bb681e97752666d770c8bc

VT Community

This file has never been reviewed by any VT Community member. Be the first one to comment on it!
VirusTotal Team
Add your comment... Remember that when you write comments as an anonymous user they receive the lowest possible reputation. So if you have not signed in yet don't forget to do so. How to markup your comments?
You can add basic styles to your comments using the following accepted bbcode tags:

[b]text[/b] -- bold
[i]text[/i] -- italics
[u]text[/u] -- underline
[s]text[/s] -- strikethrough
[code]text[/code] - preformatted text

You can also address comments to particular users using the "@" twitter-like mode. By prepending a "#" symbol to a word you can add custom tags to your comment, tags that can then be searched for.
Goodware
Malware
Spam attachment/link

P2P download
Propagating via IM
Network worm

Drive-by-download






ATTENTION: VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.