Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Ελληνικά | Français | Svenska | Português | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
|
Virustotal is een gratis dienst die verdachte bestanden scant en zorgt voor dat de laatste virussen, wormen, en alle andere soorten malware snel gedetecteerd kunnen worden. Meer informatie... |
Bestand officexp-KB910721-FullFile-ENU.ex ontvangen op 2009.06.17 16:23:03 (UTC)
Huidig status: Einde
Huidig status: Einde
Resultaat: 13/41 (31.71%)
| Antivirus | Versie | Laatst geüpdatet | Resultaat |
|---|---|---|---|
| a-squared | 4.5.0.18 | 2009.06.17 | Win32.Outbreak!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.06.17 | - |
| AntiVir | 7.9.0.187 | 2009.06.17 | TR/Crypt.ZPACK.Gen |
| Antiy-AVL | 2.0.3.1 | 2009.06.17 | - |
| Authentium | 5.1.2.4 | 2009.06.17 | W32/Trojan3.AYH |
| Avast | 4.8.1335.0 | 2009.06.16 | - |
| AVG | 8.5.0.339 | 2009.06.17 | - |
| BitDefender | 7.2 | 2009.06.17 | - |
| CAT-QuickHeal | 10.00 | 2009.06.17 | - |
| ClamAV | 0.94.1 | 2009.06.17 | - |
| Comodo | 1352 | 2009.06.17 | - |
| DrWeb | 5.0.0.12182 | 2009.06.17 | - |
| eSafe | 7.0.17.0 | 2009.06.17 | - |
| eTrust-Vet | 31.6.6564 | 2009.06.17 | - |
| F-Prot | 4.4.4.56 | 2009.06.16 | - |
| F-Secure | 8.0.14470.0 | 2009.06.17 | Trojan-Spy.Win32.Zbot.gen |
| Fortinet | 3.117.0.0 | 2009.06.17 | - |
| GData | 19 | 2009.06.17 | - |
| Ikarus | T3.1.1.59.0 | 2009.06.17 | Win32.Outbreak |
| Jiangmin | 11.0.706 | 2009.06.17 | - |
| K7AntiVirus | 7.10.766 | 2009.06.17 | - |
| Kaspersky | 7.0.0.125 | 2009.06.17 | Trojan-Spy.Win32.Zbot.gen |
| McAfee | 5648 | 2009.06.16 | - |
| McAfee+Artemis | 5648 | 2009.06.16 | Artemis!A61147F4B480 |
| McAfee-GW-Edition | 6.7.6 | 2009.06.17 | Trojan.Crypt.ZPACK.Gen |
| Microsoft | 1.4701 | 2009.06.17 | PWS:Win32/Zbot.PM |
| NOD32 | 4163 | 2009.06.17 | a variant of Win32/Kryptik.TL |
| Norman | 6.01.09 | 2009.06.17 | - |
| nProtect | 2009.1.8.0 | 2009.06.17 | - |
| Panda | 10.0.0.14 | 2009.06.16 | - |
| PCTools | 4.4.2.0 | 2009.06.17 | - |
| Prevx | 3.0 | 2009.06.17 | - |
| Rising | 21.34.24.00 | 2009.06.17 | - |
| Sophos | 4.42.0 | 2009.06.17 | Troj/Spy-CU |
| Sunbelt | 3.2.1858.2 | 2009.06.17 | Trojan-Downloader.Tibs.gen (v) |
| Symantec | 1.4.4.12 | 2009.06.17 | Packed.Generic.232 |
| TheHacker | 6.3.4.3.347 | 2009.06.17 | - |
| TrendMicro | 8.950.0.1094 | 2009.06.17 | - |
| VBA32 | 3.12.10.7 | 2009.06.17 | - |
| ViRobot | 2009.6.17.1792 | 2009.06.17 | - |
| VirusBuster | 4.6.5.0 | 2009.06.17 | - |
| Extra informatie |
|---|
| File size: 81920 bytes |
| MD5 : a61147f4b480d550204128fdf4eb3bcd |
| SHA1 : 26a577cc60c7e64749550c0ac71f29c6e9d0f44b |
| SHA256: 23d69729628a875b8289cfe3c99522d3a660e0c4f800b0fdc40dabf844c8903b |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0xAE59 timedatestamp.....: 0x470DC7A6 (Thu Oct 11 08:50:14 2007) machinetype.......: 0x14C (Intel I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x1153E 0x11600 7.30 132a6c0a4f51292967b79ba833c3f11f .rdata 0x13000 0x2270 0x2400 5.44 3cf74523079c3991f29441dcc7e5aa3a .data 0x16000 0x509A 0x200 1.02 ed80fcd8a595a64280466bcae9fbf6c1 ( 5 imports ) > advapi32.dll: ObjectPrivilegeAuditAlarmW, SetFileSecurityA, NotifyChangeEventLog, ReportEventA, CryptSetKeyParam, ObjectCloseAuditAlarmW, GetNumberOfEventLogRecords, RegReplaceKeyA, BuildExplicitAccessWithNameW, AllocateAndInitializeSid, RegQueryInfoKeyW, CryptExportKey, BuildTrusteeWithSidA, GetSidSubAuthorityCount, GetNamedSecurityInfoExA, StartServiceA, CryptSetHashParam, GetAccessPermissionsForObjectW, ConvertSecurityDescriptorToAccessW, SetEntriesInAccessListW, GetCurrentHwProfileW, ReportEventW, ImpersonateNamedPipeClient, AbortSystemShutdownW, RegEnumValueA, AccessCheckAndAuditAlarmA, CryptAcquireContextA, RegReplaceKeyW, GetEffectiveRightsFromAclA, RegQueryValueExA, CryptSetProviderExA, CryptSetProvParam, LookupPrivilegeDisplayNameW, SetNamedSecurityInfoA, OpenEventLogW, BuildTrusteeWithSidW, CryptAcquireContextW, EnumDependentServicesA, RegSaveKeyA, LookupPrivilegeNameA, LookupAccountSidA, AddAccessDeniedAce, GetUserNameW, DeleteAce, RegCreateKeyW, CryptDecrypt, MakeAbsoluteSD, CryptHashSessionKey, CryptDeriveKey, RegLoadKeyA, ConvertSecurityDescriptorToAccessNamedW, OpenBackupEventLogW, NotifyBootConfigStatus, ChangeServiceConfigA, DestroyPrivateObjectSecurity, LookupPrivilegeDisplayNameA, SetAclInformation, ImpersonateSelf, ObjectPrivilegeAuditAlarmA, ConvertAccessToSecurityDescriptorA, CryptEnumProviderTypesA > kernel32.dll: lstrcmpW, SetCurrentDirectoryA, GetWindowsDirectoryW, lstrlen, GetNumberFormatA, IsSystemResumeAutomatic, CreateFileW, SetDefaultCommConfigA, GlobalUnWire, WriteConsoleOutputCharacterA, IsDBCSLeadByte, EnumTimeFormatsW, GetEnvironmentVariableA, BeginUpdateResourceA, SetPriorityClass, VirtualAlloc, SetCommTimeouts, CopyFileW, OpenFileMappingW, ConvertDefaultLocale, GetBinaryTypeA, GlobalDeleteAtom, LoadModule, VirtualProtect, GetCurrencyFormatW, GetVersionExW, UnlockFileEx, SetLastError, Process32First, ReadFileEx, FormatMessageA, GetExitCodeProcess, EndUpdateResourceW, IsBadWritePtr, DosDateTimeToFileTime, WaitForSingleObject, CloseHandle, SetThreadContext, SuspendThread, ReleaseSemaphore, WriteConsoleInputA, SetStdHandle, DeleteFileW, LoadLibraryA, BuildCommDCBAndTimeoutsW, GetPrivateProfileIntA, WriteConsoleW, GetCurrentDirectoryW, GetCommandLineW, LocalCompact, GetCurrentThread, WriteProcessMemory, GetNumberFormatW, GetConsoleTitleW > ole32.dll: OleCreateLinkToFileEx, OleSetContainedObject, IIDFromString, ReadClassStg, CoCreateGuid, MonikerCommonPrefixWith, OleCreateEmbeddingHelper, PropVariantCopy, StgCreateDocfile, OleCreateMenuDescriptor, WriteFmtUserTypeStg, CoReleaseServerProcess, OleSetMenuDescriptor, CoDisconnectObject, OleCreate, CLSIDFromProgID, RevokeDragDrop, CoRevokeClassObject, OleMetafilePictFromIconAndLabel, CoSetProxyBlanket, ReadStringStream, StgOpenStorage, OleDuplicateData, GetConvertStg, CoGetInstanceFromIStorage, UpdateDCOMSettings, CoGetInstanceFromFile, CLSIDFromString, CoUninitialize, OleSetClipboard, GetHGlobalFromILockBytes, CoRegisterPSClsid, CoCopyProxy, CoTreatAsClass, OpenOrCreateStream, GetClassFile, CoQueryClientBlanket, CreateDataCache, ProgIDFromCLSID, CreateDataAdviseHolder, OleSaveToStream, GetRunningObjectTable, CoMarshalInterThreadInterfaceInStream, OleSave, SetConvertStg, StgIsStorageFile, CoQueryProxyBlanket, ReadOleStg, CoTaskMemFree, CoRegisterClassObject, RegisterDragDrop, OleCreateFromData, CoGetObject, ReleaseStgMedium, CoGetCurrentLogicalThreadId, OleCreateEx, StgOpenStorageOnILockBytes, CoSuspendClassObjects > shlwapi.dll: SHQueryValueExA, StrStrA, SHRegEnumUSValueA, StrFormatKBSizeW, SHCreateStreamOnFileA, PathUnmakeSystemFolderA, PathSkipRootW, PathFileExistsA, PathIsRootW, SHRegOpenUSKeyW, wvnsprintfW, AssocQueryStringByKeyW, StrRetToBufW, SHRegEnumUSKeyW, SHStrDupW, StrStrIA, PathRenameExtensionW, StrToIntW, PathIsRelativeW, PathAddExtensionW, StrCSpnIA, PathRelativePathToA, PathCompactPathW, AssocQueryKeyW, PathIsPrefixA, SHOpenRegStreamA, StrCpyNW, StrRetToStrW, UrlEscapeA, StrCSpnA, UrlApplySchemeA, PathRemoveBlanksA, StrCSpnW, PathFindFileNameW, PathFileExistsW, ColorAdjustLuma, SHDeleteValueW, SHRegDeleteEmptyUSKeyA, StrCmpNIW, SHIsLowMemoryMachine, SHCreateStreamOnFileW, PathIsUNCW, SHEnumValueA, PathIsRootA, PathRemoveArgsA, PathStripPathW, PathCreateFromUrlW, wnsprintfW, PathIsUNCServerW, PathStripToRootW, SHGetInverseCMAP, StrCmpW, SHCreateShellPalette, PathAddExtensionA, StrFromTimeIntervalW, ColorRGBToHLS, PathUnmakeSystemFolderW, StrFormatKBSizeA, PathCombineA, SHOpenRegStreamW, SHRegDeleteUSValueA, UrlGetLocationA, StrCatW > user32.dll: ToAscii, CloseWindowStation, LoadBitmapW, UnhookWinEvent, GetAsyncKeyState, LoadBitmapA, GetUserObjectInformationA, EnumDisplaySettingsW, ValidateRgn, SetThreadDesktop, EnumWindowStationsA, AppendMenuA, SetParent, GetTabbedTextExtentW, DialogBoxIndirectParamW, GetMenuCheckMarkDimensions, SetClassLongW, CreateDialogIndirectParamA, CopyAcceleratorTableW, SetCursor, GrayStringA, SetCapture, TranslateMDISysAccel, SetDeskWallpaper, DrawFrameControl, DdeClientTransaction, ToUnicodeEx, DestroyCaret, SetWindowsHookA, FrameRect, GetDCEx, IsDialogMessageA, DdeCreateStringHandleA, EnumDisplayDevicesA, MessageBeep, GetWindowRgn, IsZoomed, BroadcastSystemMessageW, CheckDlgButton, PtInRect, SetProcessDefaultLayout, CharUpperBuffA, GetMessageTime, DdeQueryStringA, GetWindowTextA, RedrawWindow, DdeInitializeA, DlgDirSelectComboBoxExW, DdeQueryConvInfo, LoadImageA, InsertMenuItemW, GetKeyboardType, CharPrevExA, RegisterClassExA, CharUpperW, SetScrollRange, GetClipCursor, MapVirtualKeyExA, EnumDisplaySettingsExA, DeferWindowPos, EndPaint, EnumChildWindows, RegisterDeviceNotificationW, GetMenuStringA, CharLowerBuffA, GetKeyNameTextA, InvertRect, MessageBoxExW, GetWindowLongA ( 0 exports ) |
| TrID : File type identification Win32 Executable MS Visual C++ (generic) (53.1%) Windows Screen Saver (18.4%) Win32 Executable Generic (12.0%) Win32 Dynamic Link Library (generic) (10.6%) Generic Win/DOS Executable (2.8%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=a61147f4b480d550204128fdf4eb3bcd |
| ssdeep: 1536:SDo6C8JkqBZj7QMJ5MGSXiN3QBW3Go0dXLexnGbBfClGGxGd/b:OHLkqBZ3yGSi3QBWm7EGVfoHA |
| PEiD : - |
| CWSandbox: http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=a61147f4b480d550204128fdf4eb3bcd |
| RDS : NSRL Reference Data Set - |
AANDACHT:
VirusTotal is een gratis dienst aangeboden door Hispasec Sistemas. Er zijn geen garanties over de beschikbaarheid of het voortbestaan ervan. Door het gebruik van meedere scan engines kunnen we een nauwkeuriger resultaat bekomen, dit betekent echter niet dat een bestand ook echt ongevaarlijk is. Er is nog geen oplossing die 100% bescherming biedt tegen virussen en malware.
