Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | Magyar | Deutsch | Česky | Polski | Español | English
|
VirusTotal 是一款可疑文件分析服务, 通过各种知名反病毒引擎, 对您所上传的文件进行检测, 以判断文件是否被病毒, 蠕虫, 木马, 以及各类恶意软件感染. 查看详细信息... |
文件 msn.exe 接收于 2009.11.01 04:57:48 (UTC)
当前状态: 完成
当前状态: 完成
结果: 24/41 (58.54%)
| 反病毒引擎 | 版本 | 最后更新 | 扫描结果 |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.10.31 | - |
| AhnLab-V3 | 5.0.0.2 | 2009.10.30 | - |
| AntiVir | 7.9.1.53 | 2009.10.30 | SPR/Tool.DelfInject.108032AX |
| Antiy-AVL | 2.0.3.7 | 2009.10.30 | - |
| Authentium | 5.1.2.4 | 2009.10.31 | - |
| Avast | 4.8.1351.0 | 2009.10.31 | Win32:Trojan-gen |
| AVG | 8.5.0.423 | 2009.11.01 | BackDoor.Generic12.AHM.dropper |
| BitDefender | 7.2 | 2009.11.01 | Trojan.Generic.2597974 |
| CAT-QuickHeal | 10.00 | 2009.10.31 | - |
| ClamAV | 0.94.1 | 2009.11.01 | - |
| Comodo | 2799 | 2009.11.01 | UnclassifiedMalware |
| DrWeb | 5.0.0.12182 | 2009.11.01 | Trojan.MulDrop.38361 |
| eSafe | 7.0.17.0 | 2009.10.29 | Win32.SPRTool.DelfIn |
| eTrust-Vet | 35.1.7094 | 2009.10.30 | - |
| F-Prot | 4.5.1.85 | 2009.10.31 | - |
| F-Secure | 9.0.15370.0 | 2009.10.30 | - |
| Fortinet | 3.120.0.0 | 2009.11.01 | W32/BDoor.KAL!worm.p2p |
| GData | 19 | 2009.11.01 | Trojan.Generic.2597974 |
| Ikarus | T3.1.1.72.0 | 2009.10.31 | VirTool.Win32.DelfInject |
| Jiangmin | 11.0.800 | 2009.10.31 | - |
| K7AntiVirus | 7.10.885 | 2009.10.31 | Trojan.Win32.Malware.1 |
| Kaspersky | 7.0.0.125 | 2009.11.01 | P2P-Worm.Win32.Palevo.kal |
| McAfee | 5788 | 2009.10.31 | BackDoor-EGK |
| McAfee+Artemis | 5788 | 2009.10.31 | Artemis!01E068BAFEE9 |
| McAfee-GW-Edition | 6.8.5 | 2009.11.01 | Riskware.Tool.DelfInject.108032AX |
| Microsoft | 1.5202 | 2009.10.31 | VirTool:Win32/DelfInject.gen!AX |
| NOD32 | 4561 | 2009.10.31 | IRC/SdBot |
| Norman | 6.03.02 | 2009.10.31 | Smalldoor.JLLE.dropper |
| nProtect | 2009.1.8.0 | 2009.11.01 | Trojan/W32.Agent.108032.AH |
| Panda | 10.0.2.2 | 2009.10.31 | Generic Malware |
| PCTools | 7.0.3.5 | 2009.10.30 | - |
| Prevx | 3.0 | 2009.11.01 | - |
| Rising | 21.53.60.00 | 2009.11.01 | - |
| Sophos | 4.47.0 | 2009.11.01 | Mal/Generic-A |
| Sunbelt | 3.2.1858.2 | 2009.10.31 | Trojan.Win32.Generic!BT |
| Symantec | 1.4.4.12 | 2009.11.01 | - |
| TheHacker | 6.5.0.2.058 | 2009.10.31 | - |
| TrendMicro | 8.950.0.1094 | 2009.11.01 | TROJ_HUPIGON.NHR |
| VBA32 | 3.12.10.11 | 2009.10.30 | P2P-Worm.Win32.Palevo.kal |
| ViRobot | 2009.10.31.2015 | 2009.10.31 | - |
| VirusBuster | 4.6.5.0 | 2009.10.31 | - |
| 附加信息 |
|---|
| File size: 108032 bytes |
| MD5 : 01e068bafee973aac0c5179d65707927 |
| SHA1 : 6c64728e6cb5e7ab700f6bf6206502747472dd4e |
| SHA256: 1e8d56bd5f75030d6508d82a88963d58cf1180e37f0f27967db96a6afe085cff |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x645C timedatestamp.....: 0x480251CD (Sun Apr 13 20:32:45 2008) machinetype.......: 0x14C (Intel I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x99C8 0x9A00 6.58 87fe10d9dbd6b4e42fc70a9a4ecaa575 .data 0xB000 0x1BE4 0x400 4.25 99858e86526942a66950c7139f78a725 .rsrc 0xD000 0x11000 0x10400 6.97 410446f7135143551178c33bf75593fd ( 6 imports ) > advapi32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA > comctl32.dll: - > gdi32.dll: GetDeviceCaps > kernel32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, lstrlenA, GetModuleFileNameA, GetSystemDirectoryA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, lstrcpyA, GlobalFree, GlobalUnlock, GlobalLock, GlobalAlloc, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, FreeResource, GetProcAddress, LoadResource, SizeofResource, FindResourceA, lstrcatA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, LockResource > user32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics > version.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA ( 0 exports ) |
| TrID : File type identification Win64 Executable Generic (63.0%) Win32 Executable MS Visual C++ (generic) (27.7%) Win32 Executable Generic (6.2%) Generic Win/DOS Executable (1.4%) DOS Executable Generic (1.4%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=01e068bafee973aac0c5179d65707927 |
| ssdeep: 3072:HGu9BlfzWIbXWm+w0Jz5sNhAY88tdeenUhFqrSQN8ZENYD/:H/0uoaoFEzNO |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=2D25EF260092EC2AA67E01DEB3FDF3004BFBA224 |
| PEiD : - |
| packers (F-Prot): CAB |
| packers (Authentium): CAB |
| RDS : NSRL Reference Data Set - |
注意:
VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.
