文件 Not available, prior to VT database update 接收于 2008.02.24 14:57:29 (UTC)
当前状态: 完成
结果: 18/33 (54.55%)
| 反病毒引擎 | 版本 | 最后更新 | 扫描结果 | | AhnLab-V3 | - | - | - | | AntiVir | - | - | TR/Drop.Agent.WF.83 | | Authentium | - | - | - | | Avast | - | - | Win32:Agent-OWT | | AVG | - | - | BackDoor.Hupigon3.AEUZ | | BitDefender | - | - | Trojan.Dropper.RIL | | CAT-QuickHeal | - | - | - | | ClamAV | - | - | Trojan.Dropper-3144 | | DrWeb | - | - | Trojan.MulDrop.11143 | | eSafe | - | - | suspicious Trojan/Worm | | eTrust-Vet | - | - | - | | Ewido | - | - | - | | F-Prot | - | - | W32/Trojan.CFMM | | F-Secure | - | - | Malware.BPKG | | FileAdvisor | - | - | - | | Fortinet | - | - | W32/Agent.WF!tr | | Ikarus | - | - | - | | Kaspersky | - | - | Trojan-Dropper.Win32.Agent.wf | | McAfee | - | - | - | | Microsoft | - | - | - | | NOD32v2 | - | - | Win32/TrojanDropper.Agent.WF | | Norman | - | - | Malware.BPKG | | Panda | - | - | Trj/Multidropper.RHY | | Prevx1 | - | - | - | | Rising | - | - | Dropper.Win32.Agent.k | | SAVMail | - | - | - | | Sophos | - | - | - | | Sunbelt | - | - | Trojan-Dropper.RIL | | Symantec | - | - | - | | TheHacker | - | - | - | | VBA32 | - | - | Trojan-Dropper.Win32.Agent.wf | | VirusBuster | - | - | - | | Webwasher-Gateway | - | - | Trojan.Drop.Agent.WF.83 |
| 附加信息 | | File size: 582558 bytes | | MD5 : 9bcfeb2cd472a2c211e91bb2c50626fc | | SHA1 : 94b02bbb2a95b4a8c6752f27d7103bb26f4e73c3 | | SHA256: eb1d58c5c0b22506e905f44d1486aac0ed87f911c1bb735c9cf3dcbfa2c12b5e | PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x465278A6 (Tue May 22 06:59:18 2007)
machinetype.......: 0x14C (Intel I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xB000 0xA600 6.41 078ea854cca2bf764053bce4c5bfabb6
.data 0xC000 0x10000 0xE00 5.98 7545cc4b5ed0c219a2135dfdc0b74f7e
.idata 0x1C000 0x1000 0x1000 4.91 fd8feba71f9ac9dfb6113d7aa284d4ce
.rsrc 0x1D000 0x79C4 0x7A00 4.18 9ebcd14b1a42bd2ceb89e9125a17a60a
( 7 imports )
> advapi32.dll: RegCloseKey, RegCreateKeyExA, RegOpenKeyExA, RegQueryValueExA, RegSetValueExA
> comctl32.dll: -
> gdi32.dll: DeleteObject
> kernel32.dll: CloseHandle, CompareStringA, CreateDirectoryA, CreateDirectoryW, CreateFileA, CreateFileW, DeleteFileA, DeleteFileW, DosDateTimeToFileTime, ExitProcess, ExpandEnvironmentStringsA, FileTimeToLocalFileTime, FileTimeToSystemTime, FindClose, FindFirstFileA, FindFirstFileW, FindNextFileA, FindNextFileW, FindResourceA, FreeLibrary, GetCPInfo, GetCommandLineA, GetCurrentDirectoryA, GetDateFormatA, GetFileAttributesA, GetFileAttributesW, GetFileType, GetFullPathNameA, GetLastError, GetLocaleInfoA, GetModuleFileNameA, GetModuleHandleA, GetNumberFormatA, GetProcAddress, GetProcessHeap, GetStdHandle, GetTempPathA, GetTickCount, GetTimeFormatA, GetVersionExA, GlobalAlloc, HeapAlloc, HeapFree, HeapReAlloc, IsDBCSLeadByte, LoadLibraryA, LocalFileTimeToFileTime, MoveFileA, MoveFileExA, MultiByteToWideChar, OpenFile, ReadFile, SetCurrentDirectoryA, SetEnvironmentVariableA, SetFileAttributesA, SetFileAttributesW, SetFilePointer, SetFileTime, SetLastError, SetVolumeLabelA, Sleep, SystemTimeToFileTime, WaitForSingleObject, WideCharToMultiByte, WriteFile, _lclose, lstrcmpiA, lstrlenA
> ole32.dll: CLSIDFromString, CoCreateInstance, CreateStreamOnHGlobal, OleInitialize, OleUninitialize
> shell32.dll: SHBrowseForFolderA, SHChangeNotify, SHFileOperationA, SHGetFileInfoA, SHGetMalloc, SHGetSpecialFolderLocation, ShellExecuteExA, SHGetPathFromIDListA
> user32.dll: CharLowerA, CharToOemA, CharToOemBuffA, CharUpperA, CopyRect, CreateWindowExA, DefWindowProcA, DestroyIcon, DestroyWindow, DialogBoxParamA, DispatchMessageA, EnableWindow, EndDialog, FindWindowExA, GetClassNameA, GetClientRect, GetDlgItem, GetDlgItemTextA, GetMessageA, GetParent, GetSysColor, GetSystemMetrics, GetWindow, GetWindowLongA, GetWindowRect, GetWindowTextA, IsWindow, IsWindowVisible, LoadBitmapA, LoadCursorA, LoadIconA, LoadStringA, MapWindowPoints, MessageBoxA, OemToCharA, OemToCharBuffA, PeekMessageA, PostMessageA, RegisterClassExA, SendDlgItemMessageA, SendMessageA, SetDlgItemTextA, SetFocus, SetMenu, SetWindowLongA, SetWindowPos, SetWindowTextA, ShowWindow, TranslateMessage, UpdateWindow, WaitForInputIdle, wsprintfA, wvsprintfA
( 0 exports )
| TrID : File type identification
96.2% (.EXE) WinRAR Self Extracting archive (518022/5)
1.5% (.EXE) Win32 Executable Generic (8527/13/3)
1.4% (.DLL) Win32 Dynamic Link Library (generic) (7583/30/2)
0.3% (.EXE) Generic Win/DOS Executable (2002/3)
0.3% (.EXE) DOS Executable Generic (2000/1) | | ssdeep: 12288:VV7Ogp/FafaM9DaSX5OvdSkjn6NZ60DnfO3vXKmVz:HamafRBR5w56s3vf | | Prevx Info: http://info.prevx.com/aboutprogramtext.asp?PX5=AAFF23B29E227952E3700845E6BF0B000056FF92 | | PEiD : - | | packers (Kaspersky): UPX | | packers (F-Prot): ZIP, UPX | | packers (Authentium): ZIP, ZIP, UPX | RDS : NSRL Reference Data Set
- |
 注意: VirusTotal 是 Hispasec Sistemas 提供的免费服务. 我们不保证任何该服务的可用性和持续性. 尽管使用多种反病毒引擎所提供的检测率优于使用单一产品, 但这些结果并不保证文件无害. 目前来说, 没有任何一种解决方案可以提供 100% 的病毒和恶意软件检测率. 如果您购买了一款声称具有此能力的产品, 那么您可能已经成为受害者.
|
楼主: jck1996
[复制链接]
发表于 2010-1-11 08:39:50
啥时候放出UGuard啊,级别是启发级别还是?
期待
发表于 2010-1-15 11:59:46
一朝怕蛇咬。十年怕井绳呀 我怕怕了
