Srpski | Македонски | العربية | Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | Magyar | Deutsch | Česky | Polski | Español | English
Virus Total

VirusTotal 是一款可疑文件分析服务, 通过各种知名反病毒引擎, 对您所上传的文件进行检测, 以判断文件是否被病毒, 蠕虫, 木马, 以及各类恶意软件感染. 查看详细信息...
文件 1IBCe3r2.exe 接收于 2008.02.27 17:30:33 (UTC)
当前状态: 完成
结果: 12/32 (37.50%)
反病毒引擎 版本 最后更新 扫描结果
AhnLab-V3 2008.2.27.0 2008.02.27 Win32/NSAnti.suspicious
AntiVir 7.6.0.67 2008.02.27 TR/Crypt.ULPM.Gen
Authentium 4.93.8 2008.02.27 -
Avast 4.7.1098.0 2008.02.27 -
AVG 7.5.0.516 2008.02.27 -
BitDefender 7.2 2008.02.27 BehavesLike:Win32.ExplorerHijack
CAT-QuickHeal 9.50 2008.02.26 -
ClamAV 0.92.1 2008.02.27 -
DrWeb 4.44.0.09170 2008.02.27 -
eSafe 7.0.15.0 2008.02.26 suspicious Trojan/Worm
eTrust-Vet 31.3.5567 2008.02.27 -
Ewido 4.0 2008.02.27 -
F-Prot 4.4.2.54 2008.02.26 -
F-Secure 6.70.13260.0 2008.02.27 W32/Malware
FileAdvisor 1 2008.02.27 -
Fortinet 3.14.0.0 2008.02.27 -
Ikarus T3.1.1.20 2008.02.27 -
Kaspersky 7.0.0.125 2008.02.27 -
McAfee 5238 2008.02.26 -
Microsoft 1.3301 2008.02.27 -
NOD32v2 2906 2008.02.27 probably a variant of Win32/Genetik
Norman 5.80.02 2008.02.26 W32/Malware
Panda 9.0.0.4 2008.02.27 Suspicious file
Prevx1 V2 2008.02.27 Heuristic: Suspicious File With Outbound Communications
Rising 20.33.22.00 2008.02.27 -
Sophos 4.27.0 2008.02.27 Mal/HckPk-A
Sunbelt 3.0.893.0 2008.02.23 -
Symantec 10 2008.02.27 -
TheHacker 6.2.9.229 2008.02.25 -
VBA32 3.12.6.2 2008.02.27 suspected of Win32.Trojan-Downloader
VirusBuster 4.3.26:9 2008.02.27 -
Webwasher-Gateway 6.6.2 2008.02.27 Trojan.Crypt.ULPM.Gen
附加信息
File size: 69632 bytes
MD5: 47917647b82412384e0729626f9008be
SHA1: e5d6bf56d31a648cacba2c1c645c1d67728abba0
PEiD: -
norman sandbox: [ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* File length: 69632 bytes.

[ Changes to registry ]
* Sets value \"DisableScriptDebuggerIE\"=\"yes\" in key \"HKCU\Software\Microsoft\Internet Explorer\Main\".
* Sets value \"Error Dlg Displayed On Every Error\"=\"no\" in key \"HKCU\Software\Microsoft\Internet Explorer\Main\".

[ Network services ]
* Opens URL: http://194.126.193.120/ping.php/21/405.
* Connects to \"194.126.193.120\" on port 80 (TCP).
* Opens URL: 194.126.193.120/ping.php/21/405.

[ Process/window information ]
* Creates a mutex IjiAh39FSH.
* Modifies other process memory.
* Creates a remote thread.
Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=12B8745B003C56E9103801D4DFAF4900679B62E9

注意 注意: VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.

扫描其它文件