Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | Magyar | Deutsch | Česky | Polski | Español | English
|
VirusTotal 是一款可疑文件分析服务, 通过各种知名反病毒引擎, 对您所上传的文件进行检测, 以判断文件是否被病毒, 蠕虫, 木马, 以及各类恶意软件感染. 查看详细信息... |
文件 install.exe 接收于 2009.10.14 16:29:18 (UTC)
当前状态: 完成
当前状态: 完成
结果: 15/41 (36.59%)
| 反病毒引擎 | 版本 | 最后更新 | 扫描结果 |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.10.14 | Trojan-Downloader.Win32.Harnig!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.10.13 | - |
| AntiVir | 7.9.1.35 | 2009.10.14 | - |
| Antiy-AVL | 2.0.3.7 | 2009.10.14 | - |
| Authentium | 5.1.2.4 | 2009.10.14 | W32/FakeRean!Generic |
| Avast | 4.8.1351.0 | 2009.10.13 | - |
| AVG | 8.5.0.420 | 2009.10.14 | - |
| BitDefender | 7.2 | 2009.10.14 | - |
| CAT-QuickHeal | 10.00 | 2009.10.14 | (Suspicious) - DNAScan |
| ClamAV | 0.94.1 | 2009.10.14 | Trojan.Peed-476 |
| Comodo | 2599 | 2009.10.13 | - |
| DrWeb | 5.0.0.12182 | 2009.10.14 | - |
| eSafe | 7.0.17.0 | 2009.10.14 | Suspicious File |
| eTrust-Vet | 35.1.7067 | 2009.10.14 | - |
| F-Prot | 4.5.1.85 | 2009.10.14 | W32/FakeRean.A.gen!Eldorado |
| F-Secure | 8.0.14470.0 | 2009.10.14 | - |
| Fortinet | 3.120.0.0 | 2009.10.14 | W32/PackSpam.A!worm |
| GData | 19 | 2009.10.14 | - |
| Ikarus | T3.1.1.72.0 | 2009.10.14 | Trojan-Downloader.Win32.Harnig |
| Jiangmin | 11.0.800 | 2009.10.08 | - |
| K7AntiVirus | 7.10.870 | 2009.10.14 | - |
| Kaspersky | 7.0.0.125 | 2009.10.14 | - |
| McAfee | 5770 | 2009.10.13 | - |
| McAfee+Artemis | 5770 | 2009.10.13 | - |
| McAfee-GW-Edition | 6.8.5 | 2009.10.14 | - |
| Microsoft | 1.5101 | 2009.10.14 | TrojanDownloader:Win32/FakeRean |
| NOD32 | 4507 | 2009.10.14 | a variant of Win32/Kryptik.AUZ |
| Norman | 6.01.09 | 2009.10.14 | W32/FakeAV.AE!genr |
| nProtect | 2009.1.8.0 | 2009.10.14 | - |
| Panda | 10.0.2.2 | 2009.10.14 | - |
| PCTools | 4.4.2.0 | 2009.10.14 | - |
| Prevx | 3.0 | 2009.10.14 | - |
| Rising | 21.51.24.00 | 2009.10.14 | - |
| Sophos | 4.46.0 | 2009.10.14 | Mal/EncPk-KP |
| Sunbelt | 3.2.1858.2 | 2009.10.14 | - |
| Symantec | 1.4.4.12 | 2009.10.14 | Packed.Generic.258 |
| TheHacker | 6.5.0.2.041 | 2009.10.14 | - |
| TrendMicro | 8.950.0.1094 | 2009.10.14 | - |
| VBA32 | 3.12.10.11 | 2009.10.14 | SScope.Trojan.FakeAV.9251616 |
| ViRobot | 2009.10.14.1984 | 2009.10.14 | - |
| VirusBuster | 4.6.5.0 | 2009.10.14 | Trojan.Vilsel.Gen!Pac |
| 附加信息 |
|---|
| File size: 21504 bytes |
| MD5 : 7d96ce7f588613f0343049918de70665 |
| SHA1 : c00a96c4237f2b3fae05bde121bf5fedbae258fe |
| SHA256: 29373749f5c877bb11cfb0b3b18585933519f151abe0f89cfd3e7221ff01b6b6 |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x1B3C timedatestamp.....: 0x47F0DE55 (Mon Mar 31 14:51:33 2008) machinetype.......: 0x14C (Intel I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0xBE0 0xC00 6.93 a734db55277d87db9178e668e2d305e2 .rdata 0x2000 0xFFE 0x1000 4.86 1c4938c5c65b243977760357176e5275 .data 0x3000 0x50B1 0x1A00 7.80 b9cc3e3a95b848310892e424528b5699 .rsrc 0x9000 0x161E 0x1800 3.70 b450fc3df2fe10ffd5ba2f716237326f ( 7 imports ) > advapi32.dll: RegEnumValueW, RegDeleteKeyW, AllocateAndInitializeSid, RegEnumKeyExW, RegDeleteKeyA, RegOpenKeyExA, RegDeleteValueW, RegQueryValueExW, RegQueryValueExA > gdi32.dll: BitBlt, GetObjectW, SelectPalette, CombineRgn, GetTextExtentPoint32A, SetMapMode, GetObjectA, DeleteDC, SaveDC, CreateFontIndirectA, SetTextAlign, IntersectClipRect, Rectangle, LineTo > kernel32.dll: FreeEnvironmentStringsW, FileTimeToSystemTime, lstrcpyA, FlushFileBuffers, InterlockedCompareExchange, GetEnvironmentVariableA, EnterCriticalSection, GetFileInformationByHandle, lstrlenA, MapViewOfFile, Sleep, TlsAlloc, InterlockedIncrement, SetConsoleCtrlHandler, LeaveCriticalSection, FindNextFileW, DeleteCriticalSection, QueryPerformanceCounter, lstrcpynA, HeapAlloc, CreateFileMappingA, LocalFree, GetModuleFileNameA, GetSystemInfo, UnhandledExceptionFilter, GetCurrentProcess, GetProcAddress, lstrcmpW, lstrlenW, GetProcessHeap, GetCurrentThreadId, GetDriveTypeW, GetSystemTimeAsFileTime, FreeEnvironmentStringsA, GetSystemDirectoryW, GetTimeZoneInformation, LockResource, TerminateProcess, CreateDirectoryA, SetLastError, GetCommandLineA, GetTickCount, SetStdHandle, ExitProcess, WideCharToMultiByte, GetDiskFreeSpaceA, GetConsoleCP, TlsFree, GetOEMCP, SetConsoleCP, LoadLibraryExW, FreeLibrary, CloseHandle, IsDebuggerPresent, MultiByteToWideChar, GetModuleHandleA, GlobalReAlloc, WaitForSingleObject, GetVersionExA, FindResourceA, GetCurrentProcessId, CreateEventW, CreateThread, InterlockedExchange, GetLastError, GetVersion, VirtualProtect, GetStartupInfoA, GetModuleFileNameW, DeviceIoControl, TerminateThread, IsValidCodePage, CompareStringW, WriteFile, GetACP, GlobalFree, GetStartupInfoW, ReadFile, LCMapStringA, SetFilePointer, FindClose, GetFileAttributesW, VirtualAlloc > msvcrt.dll: _lock, _onexit, __0exception@@QAE@XZ, memset, _adjust_fdiv, _what@exception@@UBEPBDXZ, __1type_info@@UAE@XZ, __set_app_type, _vsnprintf, _wcsnicmp > ole32.dll: CoInitialize, CoTaskMemAlloc, CoCreateInstance > rpcrt4.dll: RpcStringFreeA > user32.dll: SystemParametersInfoW, SendMessageW, RedrawWindow, IsDialogMessageW, EndPaint, GetMenuItemID, GetWindowTextA, GetWindowLongA, GetActiveWindow, CreatePopupMenu, PtInRect, UnregisterClassA, DispatchMessageA, GetClassNameW, GetCapture, CharUpperW, RegisterClassA, DestroyWindow, GetDC, InvalidateRect, OpenClipboard, LoadStringW, SetCursor, SetFocus, MapWindowPoints, SetClipboardData, GetFocus, UnhookWindowsHookEx, SetDlgItemTextA ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (42.3%) Win32 Dynamic Link Library (generic) (37.6%) Generic Win/DOS Executable (9.9%) DOS Executable Generic (9.9%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=7d96ce7f588613f0343049918de70665 |
| ssdeep: 384:hPvMSIlg9aroNppCOGR8o7z04jUDDSgg6e:xvMSIlW3du3xi66 |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=B037A2130038F26E542C000DC0C9E00074F31A61 |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
注意:
VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.
