Srpski | Македонски | العربية | Suomi | ihMdI | 
| עברית | 
| Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | 
| Magyar | Deutsch | Česky | Polski | Español | English
| עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | Magyar | Deutsch | Česky | Polski | Español | English
|
VirusTotal 是一款可疑文件分析服务, 通过各种知名反病毒引擎, 对您所上传的文件进行检测, 以判断文件是否被病毒, 蠕虫, 木马, 以及各类恶意软件感染. 查看详细信息... |
文件 exeHelper.com 接收于 2009.11.01 05:10:59 (UTC)
当前状态: 完成
当前状态: 完成
结果: 8/41 (19.51%)
| 反病毒引擎 | 版本 | 最后更新 | 扫描结果 |
|---|---|---|---|
| a-squared | 4.5.0.41 | 2009.10.31 | Trojan.Agent!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.10.30 | - |
| AntiVir | 7.9.1.53 | 2009.10.30 | - |
| Antiy-AVL | 2.0.3.7 | 2009.10.30 | - |
| Authentium | 5.1.2.4 | 2009.10.31 | - |
| Avast | 4.8.1351.0 | 2009.10.31 | - |
| AVG | 8.5.0.423 | 2009.11.01 | Downloader.Banload |
| BitDefender | 7.2 | 2009.11.01 | - |
| CAT-QuickHeal | 10.00 | 2009.10.31 | - |
| ClamAV | 0.94.1 | 2009.11.01 | - |
| Comodo | 2800 | 2009.11.01 | Heur.Suspicious |
| DrWeb | 5.0.0.12182 | 2009.11.01 | - |
| eSafe | 7.0.17.0 | 2009.10.29 | - |
| eTrust-Vet | 35.1.7094 | 2009.10.30 | - |
| F-Prot | 4.5.1.85 | 2009.10.31 | - |
| F-Secure | 9.0.15370.0 | 2009.10.30 | - |
| Fortinet | 3.120.0.0 | 2009.11.01 | - |
| GData | 19 | 2009.11.01 | - |
| Ikarus | T3.1.1.72.0 | 2009.10.31 | Trojan.Agent |
| Jiangmin | 11.0.800 | 2009.10.31 | - |
| K7AntiVirus | 7.10.885 | 2009.10.31 | - |
| Kaspersky | 7.0.0.125 | 2009.11.01 | - |
| McAfee | 5788 | 2009.10.31 | - |
| McAfee+Artemis | 5788 | 2009.10.31 | Artemis!DDF52581809B |
| McAfee-GW-Edition | 6.8.5 | 2009.11.01 | Heuristic.BehavesLike.Win32.PasswordStealer.I |
| Microsoft | 1.5202 | 2009.10.31 | - |
| NOD32 | 4561 | 2009.10.31 | - |
| Norman | 6.03.02 | 2009.10.31 | W32/Banload.AZJR |
| nProtect | 2009.1.8.0 | 2009.11.01 | - |
| Panda | 10.0.2.2 | 2009.10.31 | Suspicious file |
| PCTools | 7.0.3.5 | 2009.10.30 | - |
| Prevx | 3.0 | 2009.11.01 | - |
| Rising | 21.53.60.00 | 2009.11.01 | - |
| Sophos | 4.47.0 | 2009.11.01 | - |
| Sunbelt | 3.2.1858.2 | 2009.10.31 | - |
| Symantec | 1.4.4.12 | 2009.11.01 | - |
| TheHacker | 6.5.0.2.058 | 2009.10.31 | - |
| TrendMicro | 8.950.0.1094 | 2009.11.01 | - |
| VBA32 | 3.12.10.11 | 2009.10.30 | - |
| ViRobot | 2009.10.31.2015 | 2009.10.31 | - |
| VirusBuster | 4.6.5.0 | 2009.10.31 | - |
| 附加信息 |
|---|
| File size: 288256 bytes |
| MD5 : ddf52581809b1814d57194dc8dd2ad7f |
| SHA1 : 90542e720ae66532a3e1757430b28ca5e6be89d9 |
| SHA256: cc4e515bcfcf2a6b23bb886d8d073b3f488ef64c054136f61833d1d3e11097ca |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x1220 timedatestamp.....: 0x4ADE65EF (Wed Oct 21 03:37:51 2009) machinetype.......: 0x14C (Intel I386) ( 6 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x3FEE0 0x40000 6.08 9c47b0fed0d6a4488aed7244ae03f624 .data 0x41000 0xE30 0x1000 1.30 6471b643c4f1901d66c6acbdd0ee1a3b .rdata 0x42000 0x3940 0x3A00 5.24 ac106160b39d6e04dde186e94d619a51 .bss 0x46000 0x53B0 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e .idata 0x4C000 0xB70 0xC00 4.84 8b0c992fd02e3aa490deb9fa1ef232ca .rsrc 0x4D000 0xB84 0xC00 3.98 36662960d278a2d7aee96d6fa80b866e ( 4 imports ) > advapi32.dll: AdjustTokenPrivileges, LookupPrivilegeValueA, OpenProcessToken, RegCloseKey, RegDeleteKeyA, RegDeleteValueA, RegEnumValueA, RegOpenKeyExA, RegQueryInfoKeyA, RegQueryValueExA, RegSetValueExA > kernel32.dll: AddAtomA, CloseHandle, CreateProcessA, CreateSemaphoreA, CreateToolhelp32Snapshot, DeleteFileA, ExitProcess, FindAtomA, FindFirstFileA, GetAtomNameA, GetCurrentProcess, GetLastError, InterlockedDecrement, InterlockedIncrement, OpenProcess, Process32First, Process32Next, ReleaseSemaphore, RemoveDirectoryA, SetLastError, SetUnhandledExceptionFilter, Sleep, TerminateProcess, TlsAlloc, TlsFree, TlsGetValue, TlsSetValue, WaitForSingleObject > msvcrt.dll: _fdopen, _read, _strdup, _write, __getmainargs, __mb_cur_max, __p__environ, __p__fmode, __set_app_type, _assert, _cexit, _ctype, _errno, _filelengthi64, _fstati64, _iob, _isctype, _lseeki64, _onexit, _pctype, _setmode, _strdate, _strnicmp, _strtime, _vsnprintf, abort, atexit, atoi, fclose, fflush, fgetpos, fopen, fprintf, fputs, fread, free, fsetpos, fwrite, getc, localeconv, malloc, memchr, memcpy, memmove, memset, putc, setlocale, setvbuf, signal, strcat, strcmp, strcoll, strcpy, strftime, strlen, strtod, strtok, strxfrm, system, ungetc > shell32.dll: SHGetFolderPathA ( 0 exports ) |
| TrID : File type identification Win32 Executable Generic (38.3%) Win32 Dynamic Link Library (generic) (34.1%) Win16/32 Executable Delphi generic (9.3%) Generic Win/DOS Executable (9.0%) DOS Executable Generic (9.0%) |
| ThreatExpert: http://www.threatexpert.com/report.aspx?md5=ddf52581809b1814d57194dc8dd2ad7f |
| ssdeep: 6144:CCtKIWLvRrk55WYlykqjPlPduei5InZ7FMpxhJIU/hrGnK9MjEFu3UPTXcG/EP4R:MLvRrk55WYlykqjPlPdrxnZ5MpjJIQzv |
| Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=467BB984004ACC7E666204623C42DB00E7DE0BE9 |
| PEiD : - |
| RDS : NSRL Reference Data Set - |
注意:
VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.
