文件 QQ____________.exe 接收于 2010.03.18 12:04:25 (UTC)反病毒引擎 版本 最后更新 扫描结果
a-squared 4.5.0.50 2010.03.18 -
AhnLab-V3 5.0.0.2 2010.03.18 -
AntiVir 8.2.1.194 2010.03.18 -
Antiy-AVL 2.0.3.7 2010.03.18 -
Authentium 5.2.0.5 2010.03.18 W32/Agent.CM.gen!Eldorado
Avast 4.8.1351.0 2010.03.18 -
Avast5 5.0.332.0 2010.03.18 -
AVG 9.0.0.787 2010.03.18 -
BitDefender 7.2 2010.03.18 -
CAT-QuickHeal 10.00 2010.03.18 -
ClamAV 0.96.0.0-git 2010.03.18 Trojan.Downloader-72711
Comodo 4304 2010.03.18 -
DrWeb 5.0.1.12222 2010.03.18 -
eSafe 7.0.17.0 2010.03.17 -
eTrust-Vet 35.2.7372 2010.03.18 Win32/FlyAgent!generic
F-Prot 4.5.1.85 2010.03.17 W32/Agent.CM.gen!Eldorado
F-Secure 9.0.15370.0 2010.03.18 -
Fortinet 4.0.14.0 2010.03.18 -
GData 19 2010.03.18 -
Ikarus T3.1.1.80.0 2010.03.18 -
Jiangmin 13.0.900 2010.03.18 -
K7AntiVirus 7.10.1000 2010.03.17 Generic.Malware.4
Kaspersky 7.0.0.125 2010.03.18 -
McAfee 5923 2010.03.17 -
McAfee+Artemis 5923 2010.03.17 -
McAfee-GW-Edition 6.8.5 2010.03.18 Heuristic.BehavesLike.Win32.Spyware.P
Microsoft 1.5605 2010.03.17 -
NOD32 4954 2010.03.18 a variant of Win32/Packed.FlyStudio
Norman 6.04.09 2010.03.18 -
nProtect 2009.1.8.0 2010.03.18 Trojan/W32.Genome.8192.D
Panda 10.0.2.2 2010.03.17 -
PCTools 7.0.3.5 2010.03.18 -
Prevx 3.0 2010.03.18 Medium Risk Malware
Rising 22.39.03.04 2010.03.18 -
Sophos 4.51.0 2010.03.18 -
Sunbelt 5948 2010.03.18 -
Symantec 20091.2.0.41 2010.03.18 Suspicious.Insight
TheHacker 6.5.2.0.236 2010.03.18 -
TrendMicro 9.120.0.1004 2010.03.18 -
VBA32 3.12.12.2 2010.03.17 Win32.FlyStudio.NKP
ViRobot 2010.3.18.2234 2010.03.18 -
VirusBuster 5.0.27.0 2010.03.17 -
附加信息
File size: 8192 bytes
MD5 : 1f567c2bcae7c1c8626fbb79f9800993
SHA1 : c47d919f5c2068b58e47b6ccfb263a2dc1a7391b
SHA256: a6babc227e824e8be94c87236b554056b48fe793bf55493738a2b4d7a61bfd77
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x1000<BR>timedatestamp.....: 0x59BFFA3 (Mon Dec 25 06:33:23 1972)<BR>machinetype.......: 0x14C (Intel I386)<BR><BR>( 4 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>.text 0x1000 0x22C 0x400 3.56 0ebb8343585a72ffe6649584e8373340<BR>.rdata 0x2000 0x194 0x200 3.64 684bd04c4e90ebb1ac24b9d56ab5240e<BR>.data 0x3000 0xC00 0xC00 3.44 7a463fe1279f2f0d1161386aa92fbc9d<BR>.rsrc 0x4000 0x878 0xA00 4.35 32cccbc61bb15e65de5c89d43ec83268<BR><BR>( 3 imports )<BR><BR>> advapi32.dll: RegQueryValueExA, RegCloseKey, RegOpenKeyExA<BR>> kernel32.dll: FreeLibrary, lstrcatA, GetModuleFileNameA, ExitProcess, LoadLibraryA, GetProcAddress, lstrlenA<BR>> user32.dll: MessageBoxA<BR><BR>( 0 exports )<BR>
TrID : File type identification<BR>Win32 Executable Generic (38.5%)<BR>Win32 Dynamic Link Library (generic) (34.2%)<BR>Clipper DOS Executable (9.1%)<BR>Generic Win/DOS Executable (9.0%)<BR>DOS Executable Generic (9.0%)
ssdeep: 96:2qc0wV01XfSYKQW5Kk5Cat66z3sT4Kk5CatS6D:kqh3KlET6wT4EU
sigcheck: publisher....: n/a<BR>copyright....: ______ ________<BR>product......: QQ____<BR>description..: QQ____<BR>original name: n/a<BR>internal name: n/a<BR>file version.: 1.0.0.0<BR>comments.....: QQ____<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
Prevx Info: <A href="http://info.prevx.com/aboutprogramtext.asp?PX5=47EF75970044640620AC00FC40009C00BDCC5869" target=_blank>http://info.prevx.com/aboutprogramtext.asp?PX5=47EF75970044640620AC00FC40009C00BDCC5869</A>
PEiD : -
RDS : NSRL Reference Data Set<BR>-
