Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | Magyar | Deutsch | Česky | Polski | Español | English
|
VirusTotal 是一款可疑文件分析服务, 通过各种知名反病毒引擎, 对您所上传的文件进行检测, 以判断文件是否被病毒, 蠕虫, 木马, 以及各类恶意软件感染. 查看详细信息... |
文件 Windows_Media_Player_Flash_Codec_ 接收于 2008.06.13 23:26:37 (UTC)
当前状态: 完成
当前状态: 完成
结果: 6/32 (18.75%)
| 反病毒引擎 | 版本 | 最后更新 | 扫描结果 |
|---|---|---|---|
| AhnLab-V3 | 2008.6.13.1 | 2008.06.13 | - |
| AntiVir | 7.8.0.55 | 2008.06.13 | - |
| Authentium | 5.1.0.4 | 2008.06.14 | - |
| Avast | 4.8.1195.0 | 2008.06.13 | - |
| AVG | 7.5.0.516 | 2008.06.13 | Downloader.Zlob.XNM |
| BitDefender | 7.2 | 2008.06.14 | - |
| CAT-QuickHeal | 9.50 | 2008.06.13 | - |
| ClamAV | 0.92.1 | 2008.06.14 | - |
| DrWeb | 4.44.0.09170 | 2008.06.13 | - |
| eSafe | 7.0.15.0 | 2008.06.12 | Suspicious File |
| eTrust-Vet | 31.6.5873 | 2008.06.14 | - |
| Ewido | 4.0 | 2008.06.13 | - |
| F-Prot | 4.4.4.56 | 2008.06.12 | - |
| F-Secure | 6.70.13260.0 | 2008.06.13 | W32/Malware |
| Fortinet | 3.14.0.0 | 2008.06.13 | - |
| GData | 2.0.7306.1023 | 2008.06.13 | - |
| Ikarus | T3.1.1.26.0 | 2008.06.13 | - |
| Kaspersky | 7.0.0.125 | 2008.06.14 | - |
| McAfee | 5317 | 2008.06.13 | - |
| Microsoft | None | 2008.06.13 | - |
| NOD32v2 | 3186 | 2008.06.13 | Win32/TrojanDownloader.Small.OCY |
| Norman | 5.80.02 | 2008.06.13 | W32/Malware |
| Panda | 9.0.0.4 | 2008.06.13 | - |
| Prevx1 | V2 | 2008.06.14 | - |
| Rising | 20.48.42.00 | 2008.06.13 | - |
| Sophos | 4.30.0 | 2008.06.14 | - |
| Sunbelt | 3.0.1145.1 | 2008.06.05 | Trojan.Win32.Dialer.qn (v) |
| Symantec | 10 | 2008.06.14 | - |
| TheHacker | 6.2.92.349 | 2008.06.13 | - |
| VBA32 | 3.12.6.7 | 2008.06.12 | - |
| VirusBuster | 4.3.26:9 | 2008.06.12 | - |
| Webwasher-Gateway | 6.6.2 | 2008.06.13 | - |
| 附加信息 |
|---|
| Tamano archivo: 50520 bytes |
| MD5...: 3cd98f6304a610fd3713ff67ee118842 |
| SHA1..: 0153fe9b70b8af50540b8158185f3a66a1e99422 |
| SHA256: bb471873ee444c8bd4f33f15761d5f1e5fd6375a0b463cec3201fef3e30bfbe4 |
| SHA512: 40d7d223445554b9dc264a16c743af1201e88ac906c920aca3c5a9fb6ef20b57 ea340e35e7bf0aafb89348bfcece7735b4c4101d33fd9c1724b363c765193fd4 |
| PEiD..: Armadillo v1.71 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x40184e timedatestamp.....: 0x484725c2 (Wed Jun 04 23:31:14 2008) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x286e 0x2a00 5.72 5801a31d884043037c64a15d888ae1e3 .rdata 0x4000 0x686 0x800 4.24 3c486feb66f559b68e45cc346730dc56 .data 0x5000 0x8fec 0x8200 7.98 174734f2a71e9e92a85808d6b50a7938 .rsrc 0xe000 0x120 0x200 1.55 b6fa5e1003c4a65c9c8d0daafd5a7bff ( 2 imports ) > KERNEL32.dll: CloseHandle, WriteFile, GetVersion, GetCommandLineA, GetTempPathA, GetSystemTime, lstrcpyA, CreateProcessA, lstrcatA, ExitProcess, CreateFileA, GetLastError, GetProcAddress, lstrcmpA, lstrlenA, GetTempFileNameA, GetLocalTime, LoadLibraryA, lstrcpynA, OpenMutexA, FindAtomA, GetModuleFileNameA, GetModuleHandleA, GetTickCount, CreateMutexA, IsDebuggerPresent, SetUnhandledExceptionFilter, UnhandledExceptionFilter, GetCurrentProcess, TerminateProcess, VirtualQuery, GetVersionExA, RtlUnwind > USER32.dll: SetDlgItemTextA, wsprintfA, DialogBoxParamA, SetWindowTextA, LoadIconA, GetFocus, IsWindowVisible, EqualRect, GetCaretPos, InflateRect, MessageBoxA, ClientToScreen, SetClassLongA, EndDialog, GetDesktopWindow, GetWindowRect, GetCursorPos ( 0 exports ) |
| Norman Sandbox: [ General information ] * **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**. * **Locates window \"NULL [class IEFrame]\" on desktop. * File length: 50520 bytes. [ Changes to filesystem ] * Creates file C:\WINDOWS\TEMP\gos0999.tmp. * Creates file C:\WINDOWS\TEMP\win0199.tmp. [ Changes to registry ] * Accesses Registry key \"HKLM\SOFTWARE\Microsoft\MSSMGR\\". * Accesses Registry key \"HKCU\Software\Microsoft\MediaPlayer\Preferences\\". * Accesses Registry key \"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\\". [ Process/window information ] * Creates a dialogbox with caption \"Dialog\". * Buttons found in dialogbox: id1[206,7]\"OK\" id2[206,24]\"Cancel\" . * Pressing button with id 1 \"OK\". * Creates a mutex 1009. * Creates a mutex m3d5rt10. * Modifies memory in process explorer.exe. * Creates a thread in process explorer.exe. |
注意:
VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.
