Christina [Gast] schrieb am 25.April.2010, 13:04:03 in der Kategorie pc.security
ave.exe Virus - getarnt als Windows Firewall
und hier ist das Ergebnis für die atiumdva32 datei.
Datei atiumdva32.dll empfangen 2010.04.25 11:00:47 (UTC)
Status: Laden ... Wartend Warten Überprüfung Beendet Nicht gefunden Gestoppt
Ergebnis: 13/41 (31.71%)
Antivirus Version letzte aktualisierung Ergebnis
a-squared 4.5.0.50 2010.04.25 -
AhnLab-V3 5.0.0.2 2010.04.24 -
AntiVir 8.2.1.224 2010.04.23 -
Antiy-AVL 2.0.3.7 2010.04.23 -
Authentium 5.2.0.5 2010.04.25 W32/Tracur.A.gen!Eldorado
Avast 4.8.1351.0 2010.04.24 Win32:Dracur-B
Avast5 5.0.332.0 2010.04.24 Win32:Dracur-B
AVG 9.0.0.787 2010.04.25 Generic17.BHLL
BitDefender 7.2 2010.04.25 -
CAT-QuickHeal 10.00 2010.04.23 -
ClamAV 0.96.0.3-git 2010.04.25 -
Comodo 4678 2010.04.25 TrojWare.Win32.Trojan.Agent.Gen
DrWeb 5.0.2.03300 2010.04.25 -
eSafe 7.0.17.0 2010.04.22 -
eTrust-Vet 35.2.7448 2010.04.24 -
F-Prot 4.5.1.85 2010.04.25 W32/Tracur.A.gen!Eldorado
F-Secure 9.0.15370.0 2010.04.25 -
Fortinet 4.0.14.0 2010.04.25 -
GData 21 2010.04.25 Win32:Dracur-B
Ikarus T3.1.1.80.0 2010.04.25 -
Jiangmin 13.0.900 2010.04.25 -
Kaspersky 7.0.0.125 2010.04.25 -
McAfee 5.400.0.1158 2010.04.25 -
McAfee-GW-Edition 6.8.5 2010.04.23 -
Microsoft 1.5703 2010.04.25 Trojan:Win32/Dursg.E
NOD32 5058 2010.04.25 -
Norman 6.04.11 2010.04.25 -
nProtect 2010-04-25.01 2010.04.25 -
Panda 10.0.2.7 2010.04.24 Trj/CI.A
PCTools 7.0.3.5 2010.04.25 HeurEngine.ZeroDayThreat
Prevx 3.0 2010.04.25 -
Rising 22.44.06.04 2010.04.25 -
Sophos 4.53.0 2010.04.25 Mal/Basine-C
Sunbelt 6218 2010.04.25 Trojan.Win32.Generic!BT
Symantec 20091.2.0.41 2010.04.25 Suspicious.DLoader
TheHacker 6.5.2.0.268 2010.04.25 -
TrendMicro 9.120.0.1004 2010.04.25 -
TrendMicro-HouseCall 9.120.0.1004 2010.04.25 -
VBA32 3.12.12.4 2010.04.23 -
ViRobot 2010.4.24.2293 2010.04.25 -
VirusBuster 5.0.27.0 2010.04.24 -
weitere Informationen
File size: 156160 bytes
MD5...: 20b4ec02120a97260bf51e9da1421ea4
SHA1..: 246c122f71684d5a8bd774e3194f03f787f0da7c
SHA256: a7c7dec5efa41cabe5fa498ccdc3ab594c8707305451b9b893c7d772430fd652
ssdeep: 3072:iMfJGEFhaALdKCeDYUyBF80Rly3gUL4OS7vcZDMqHE44:rGEHv85yBiSly3
gKZDMe
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x214bf
timedatestamp.....: 0x49716182 (Sat Jan 17 04:41:38 2009)
machinetype.......: 0x14c (I386)
( 6 sections )
name viradd virsiz rawdsiz ntrpy md5
CODE 0x1000 0x205a5 0x20600 6.66 2a8b4a6982bcda5f133e3c026a8fdf2a
DATA 0x22000 0xf75 0x600 3.87 20875ee8369cb418efcd576a2dac2442
BSS 0x23000 0xf86 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.idata 0x24000 0x9fd 0xa00 4.62 b5e6a458224ee14c9e5464f4a351dd40
.reloc 0x25000 0x1181 0x1200 6.70 86b72ee9b32be26dd48d26c57a66a734
.rsrc 0x27000 0x4000 0x3600 4.22 3bd376bbedefc75a86e996dadab6962f
( 10 imports )
> kernel32.dll: DeleteCriticalSection, LeaveCriticalSection, EnterCriticalSection, InitializeCriticalSection, VirtualFree, VirtualAlloc, LocalFree, LocalAlloc, GetVersion, GetCurrentThreadId, InterlockedDecrement, InterlockedIncrement, VirtualQuery, WideCharToMultiByte, MultiByteToWideChar, lstrlenA, lstrcpynA, LoadLibraryExA, GetThreadLocale, GetStartupInfoA, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetCommandLineA, FreeLibrary, FindFirstFileA, FindClose, ExitProcess, WriteFile, UnhandledExceptionFilter, RtlUnwind, RaiseException, GetStdHandle
> user32.dll: GetKeyboardType, LoadStringA, MessageBoxA, CharNextA
> advapi32.dll: RegQueryValueExA, RegOpenKeyExA, RegCloseKey
> oleaut32.dll: SysFreeString, SysReAllocStringLen, SysAllocStringLen
> kernel32.dll: TlsSetValue, TlsGetValue, TlsFree, TlsAlloc, LocalFree, LocalAlloc
> kernel32.dll: WriteFile, WaitForSingleObject, VirtualQuery, SetFilePointer, SetEvent, SetEndOfFile, ResetEvent, ReadFile, LeaveCriticalSection, InitializeCriticalSection, GetVersionExA, GetThreadLocale, GetStringTypeExA, GetStdHandle, GetProcAddress, GetModuleHandleA, GetModuleFileNameA, GetLocaleInfoA, GetLocalTime, GetLastError, GetFullPathNameA, GetDiskFreeSpaceA, GetDateFormatA, GetCurrentThreadId, GetCPInfo, GetACP, FormatMessageA, EnumCalendarInfoA, EnterCriticalSection, DeleteCriticalSection, CreateFileA, CreateEventA, CompareStringA, CloseHandle
> user32.dll: MessageBoxA, LoadStringA, GetSystemMetrics, CharNextA, CharToOemA
> kernel32.dll: Sleep
> oleaut32.dll: SafeArrayPtrOfIndex, SafeArrayGetUBound, SafeArrayGetLBound, SafeArrayCreate, VariantChangeType, VariantCopy, VariantClear, VariantInit
> dsound.dll: DirectSoundCreate
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
Archiv