Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Italiano | 
| 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
|
VirusTotal é um serviço que analisa arquivos suspeitos e proporciona uma rápida detecção de vírus, worms, cavalos de tróia, e todos os tipos de arquivos maliciosos detectados por vários mecanismos de antivírus. Mais informações... |
Arquivo officexp-KB910721-FullFile-ENU.ex recebido em 2009.06.17 16:23:03 (UTC)
Andamento: terminado
Andamento: terminado
Resultado: 13/41 (31.71%)
| Antivírus | Versão | Última Atualização | Resultado |
|---|---|---|---|
| a-squared | 4.5.0.18 | 2009.06.17 | Win32.Outbreak!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.06.17 | - |
| AntiVir | 7.9.0.187 | 2009.06.17 | TR/Crypt.ZPACK.Gen |
| Antiy-AVL | 2.0.3.1 | 2009.06.17 | - |
| Authentium | 5.1.2.4 | 2009.06.17 | W32/Trojan3.AYH |
| Avast | 4.8.1335.0 | 2009.06.16 | - |
| AVG | 8.5.0.339 | 2009.06.17 | - |
| BitDefender | 7.2 | 2009.06.17 | - |
| CAT-QuickHeal | 10.00 | 2009.06.17 | - |
| ClamAV | 0.94.1 | 2009.06.17 | - |
| Comodo | 1352 | 2009.06.17 | - |
| DrWeb | 5.0.0.12182 | 2009.06.17 | - |
| eSafe | 7.0.17.0 | 2009.06.17 | - |
| eTrust-Vet | 31.6.6564 | 2009.06.17 | - |
| F-Prot | 4.4.4.56 | 2009.06.16 | - |
| F-Secure | 8.0.14470.0 | 2009.06.17 | Trojan-Spy.Win32.Zbot.gen |
| Fortinet | 3.117.0.0 | 2009.06.17 | - |
| GData | 19 | 2009.06.17 | - |
| Ikarus | T3.1.1.59.0 | 2009.06.17 | Win32.Outbreak |
| Jiangmin | 11.0.706 | 2009.06.17 | - |
| K7AntiVirus | 7.10.766 | 2009.06.17 | - |
| Kaspersky | 7.0.0.125 | 2009.06.17 | Trojan-Spy.Win32.Zbot.gen |
| McAfee | 5648 | 2009.06.16 | - |
| McAfee+Artemis | 5648 | 2009.06.16 | Artemis!A61147F4B480 |
| McAfee-GW-Edition | 6.7.6 | 2009.06.17 | Trojan.Crypt.ZPACK.Gen |
| Microsoft | 1.4701 | 2009.06.17 | PWS:Win32/Zbot.PM |
| NOD32 | 4163 | 2009.06.17 | a variant of Win32/Kryptik.TL |
| Norman | 6.01.09 | 2009.06.17 | - |
| nProtect | 2009.1.8.0 | 2009.06.17 | - |
| Panda | 10.0.0.14 | 2009.06.16 | - |
| PCTools | 4.4.2.0 | 2009.06.17 | - |
| Prevx | 3.0 | 2009.06.17 | - |
| Rising | 21.34.24.00 | 2009.06.17 | - |
| Sophos | 4.42.0 | 2009.06.17 | Troj/Spy-CU |
| Sunbelt | 3.2.1858.2 | 2009.06.17 | Trojan-Downloader.Tibs.gen (v) |
| Symantec | 1.4.4.12 | 2009.06.17 | Packed.Generic.232 |
| TheHacker | 6.3.4.3.347 | 2009.06.17 | - |
| TrendMicro | 8.950.0.1094 | 2009.06.17 | - |
| VBA32 | 3.12.10.7 | 2009.06.17 | - |
| ViRobot | 2009.6.17.1792 | 2009.06.17 | - |
| VirusBuster | 4.6.5.0 | 2009.06.17 | - |
| Informações adicionais |
|---|
| File size: 81920 bytes |
| MD5 : a61147f4b480d550204128fdf4eb3bcd |
| SHA1 : 26a577cc60c7e64749550c0ac71f29c6e9d0f44b |
| SHA256: 23d69729628a875b8289cfe3c99522d3a660e0c4f800b0fdc40dabf844c8903b |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0xAE59 timedatestamp.....: 0x470DC7A6 (Thu Oct 11 08:50:14 2007) machinetype.......: 0x14C (Intel I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x1153E 0x11600 7.30 132a6c0a4f51292967b79ba833c3f11f .rdata 0x13000 0x2270 0x2400 5.44 3cf74523079c3991f29441dcc7e5aa3a .data 0x16000 0x509A 0x200 1.02 ed80fcd8a595a64280466bcae9fbf6c1 ( 5 imports ) > advapi32.dll: ObjectPrivilegeAuditAlarmW, SetFileSecurityA, NotifyChangeEventLog, ReportEventA, CryptSetKeyParam, ObjectCloseAuditAlarmW, GetNumberOfEventLogRecords, RegReplaceKeyA, BuildExplicitAccessWithNameW, AllocateAndInitializeSid, RegQueryInfoKeyW, CryptExportKey, BuildTrusteeWithSidA, GetSidSubAuthorityCount, GetNamedSecurityInfoExA, StartServiceA, CryptSetHashParam, GetAccessPermissionsForObjectW, ConvertSecurityDescriptorToAccessW, SetEntriesInAccessListW, GetCurrentHwProfileW, ReportEventW, ImpersonateNamedPipeClient, AbortSystemShutdownW, RegEnumValueA, AccessCheckAndAuditAlarmA, CryptAcquireContextA, RegReplaceKeyW, GetEffectiveRightsFromAclA, RegQueryValueExA, CryptSetProviderExA, CryptSetProvParam, LookupPrivilegeDisplayNameW, SetNamedSecurityInfoA, OpenEventLogW, BuildTrusteeWithSidW, CryptAcquireContextW, EnumDependentServicesA, RegSaveKeyA, LookupPrivilegeNameA, LookupAccountSidA, AddAccessDeniedAce, GetUserNameW, DeleteAce, RegCreateKeyW, CryptDecrypt, MakeAbsoluteSD, CryptHashSessionKey, CryptDeriveKey, RegLoadKeyA, ConvertSecurityDescriptorToAccessNamedW, OpenBackupEventLogW, NotifyBootConfigStatus, ChangeServiceConfigA, DestroyPrivateObjectSecurity, LookupPrivilegeDisplayNameA, SetAclInformation, ImpersonateSelf, ObjectPrivilegeAuditAlarmA, ConvertAccessToSecurityDescriptorA, CryptEnumProviderTypesA > kernel32.dll: lstrcmpW, SetCurrentDirectoryA, GetWindowsDirectoryW, lstrlen, GetNumberFormatA, IsSystemResumeAutomatic, CreateFileW, SetDefaultCommConfigA, GlobalUnWire, WriteConsoleOutputCharacterA, IsDBCSLeadByte, EnumTimeFormatsW, GetEnvironmentVariableA, BeginUpdateResourceA, SetPriorityClass, VirtualAlloc, SetCommTimeouts, CopyFileW, OpenFileMappingW, ConvertDefaultLocale, GetBinaryTypeA, GlobalDeleteAtom, LoadModule, VirtualProtect, GetCurrencyFormatW, GetVersionExW, UnlockFileEx, SetLastError, Process32First, ReadFileEx, FormatMessageA, GetExitCodeProcess, EndUpdateResourceW, IsBadWritePtr, DosDateTimeToFileTime, WaitForSingleObject, CloseHandle, SetThreadContext, SuspendThread, ReleaseSemaphore, WriteConsoleInputA, SetStdHandle, DeleteFileW, LoadLibraryA, BuildCommDCBAndTimeoutsW, GetPrivateProfileIntA, WriteConsoleW, GetCurrentDirectoryW, GetCommandLineW, LocalCompact, GetCurrentThread, WriteProcessMemory, GetNumberFormatW, GetConsoleTitleW > ole32.dll: OleCreateLinkToFileEx, OleSetContainedObject, IIDFromString, ReadClassStg, CoCreateGuid, MonikerCommonPrefixWith, OleCreateEmbeddingHelper, PropVariantCopy, StgCreateDocfile, OleCreateMenuDescriptor, WriteFmtUserTypeStg, CoReleaseServerProcess, OleSetMenuDescriptor, CoDisconnectObject, OleCreate, CLSIDFromProgID, RevokeDragDrop, CoRevokeClassObject, OleMetafilePictFromIconAndLabel, CoSetProxyBlanket, ReadStringStream, StgOpenStorage, OleDuplicateData, GetConvertStg, CoGetInstanceFromIStorage, UpdateDCOMSettings, CoGetInstanceFromFile, CLSIDFromString, CoUninitialize, OleSetClipboard, GetHGlobalFromILockBytes, CoRegisterPSClsid, CoCopyProxy, CoTreatAsClass, OpenOrCreateStream, GetClassFile, CoQueryClientBlanket, CreateDataCache, ProgIDFromCLSID, CreateDataAdviseHolder, OleSaveToStream, GetRunningObjectTable, CoMarshalInterThreadInterfaceInStream, OleSave, SetConvertStg, StgIsStorageFile, CoQueryProxyBlanket, ReadOleStg, CoTaskMemFree, CoRegisterClassObject, RegisterDragDrop, OleCreateFromData, CoGetObject, ReleaseStgMedium, CoGetCurrentLogicalThreadId, OleCreateEx, StgOpenStorageOnILockBytes, CoSuspendClassObjects > shlwapi.dll: SHQueryValueExA, StrStrA, SHRegEnumUSValueA, StrFormatKBSizeW, SHCreateStreamOnFileA, PathUnmakeSystemFolderA, PathSkipRootW, PathFileExistsA, PathIsRootW, SHRegOpenUSKeyW, wvnsprintfW, AssocQueryStringByKeyW, StrRetToBufW, SHRegEnumUSKeyW, SHStrDupW, StrStrIA, PathRenameExtensionW, StrToIntW, PathIsRelativeW, PathAddExtensionW, StrCSpnIA, PathRelativePathToA, PathCompactPathW, AssocQueryKeyW, PathIsPrefixA, SHOpenRegStreamA, StrCpyNW, StrRetToStrW, UrlEscapeA, StrCSpnA, UrlApplySchemeA, PathRemoveBlanksA, StrCSpnW, PathFindFileNameW, PathFileExistsW, ColorAdjustLuma, SHDeleteValueW, SHRegDeleteEmptyUSKeyA, StrCmpNIW, SHIsLowMemoryMachine, SHCreateStreamOnFileW, PathIsUNCW, SHEnumValueA, PathIsRootA, PathRemoveArgsA, PathStripPathW, PathCreateFromUrlW, wnsprintfW, PathIsUNCServerW, PathStripToRootW, SHGetInverseCMAP, StrCmpW, SHCreateShellPalette, PathAddExtensionA, StrFromTimeIntervalW, ColorRGBToHLS, PathUnmakeSystemFolderW, StrFormatKBSizeA, PathCombineA, SHOpenRegStreamW, SHRegDeleteUSValueA, UrlGetLocationA, StrCatW > user32.dll: ToAscii, CloseWindowStation, LoadBitmapW, UnhookWinEvent, GetAsyncKeyState, LoadBitmapA, GetUserObjectInformationA, EnumDisplaySettingsW, ValidateRgn, SetThreadDesktop, EnumWindowStationsA, AppendMenuA, SetParent, GetTabbedTextExtentW, DialogBoxIndirectParamW, GetMenuCheckMarkDimensions, SetClassLongW, CreateDialogIndirectParamA, CopyAcceleratorTableW, SetCursor, GrayStringA, SetCapture, TranslateMDISysAccel, SetDeskWallpaper, DrawFrameControl, DdeClientTransaction, ToUnicodeEx, DestroyCaret, SetWindowsHookA, FrameRect, GetDCEx, IsDialogMessageA, DdeCreateStringHandleA, EnumDisplayDevicesA, MessageBeep, GetWindowRgn, IsZoomed, BroadcastSystemMessageW, CheckDlgButton, PtInRect, SetProcessDefaultLayout, CharUpperBuffA, GetMessageTime, DdeQueryStringA, GetWindowTextA, RedrawWindow, DdeInitializeA, DlgDirSelectComboBoxExW, DdeQueryConvInfo, LoadImageA, InsertMenuItemW, GetKeyboardType, CharPrevExA, RegisterClassExA, CharUpperW, SetScrollRange, GetClipCursor, MapVirtualKeyExA, EnumDisplaySettingsExA, DeferWindowPos, EndPaint, EnumChildWindows, RegisterDeviceNotificationW, GetMenuStringA, CharLowerBuffA, GetKeyNameTextA, InvertRect, MessageBoxExW, GetWindowLongA ( 0 exports ) |
| TrID : File type identification Win32 Executable MS Visual C++ (generic) (53.1%) Windows Screen Saver (18.4%) Win32 Executable Generic (12.0%) Win32 Dynamic Link Library (generic) (10.6%) Generic Win/DOS Executable (2.8%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=a61147f4b480d550204128fdf4eb3bcd |
| ssdeep: 1536:SDo6C8JkqBZj7QMJ5MGSXiN3QBW3Go0dXLexnGbBfClGGxGd/b:OHLkqBZ3yGSi3QBWm7EGVfoHA |
| PEiD : - |
| CWSandbox: http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=a61147f4b480d550204128fdf4eb3bcd |
| RDS : NSRL Reference Data Set - |
ATENÇÃO:
VirusTotal é um serviço gratuito oferecido por Hispasec Sistemas. Não há garantias quanto à disponibilidade e continuidade desse serviço. Apesar da taxa de detecção proporcionada pelo uso de múltiplos mecanismos de antivírus ser muito superior àquela oferecida por um único produto, os resultados NÃO garantem a possibilidade de um arquivo ser inofensivo. Atualmente, não há qualquer solução que ofereça 100% de eficiência na detecção de vírus e arquivos maliciosos..
