瑞星卡卡安全论坛

首页 » 技术交流区 » 可疑文件交流 » qmc.exe---43b521fa3c4439170267be996dc570ad
endurer - 2009-10-16 20:03:00

 附件: 您所在的用户组无法下载或查看附件
解压密码:virus

文件说明符 : C:\Program Files\Common Files\system\qmc.exe
属性 : A---
数字签名:否
PE文件:是
获取文件版本信息大小失败!
创建时间 : 2009-10-16 19:48:1
修改时间 : 2009-10-11 12:59:58
大小 : 61520 字节 60.80 KB
MD5 : 43b521fa3c4439170267be996dc570ad
SHA1: 42708F9DB7AE27C68D9876F28744C63967509227
CRC32: 88a23ba9

文件 qmc.exe 接收于 2009.10.16 11:54:32 (UTC)
反病毒引擎版本最后更新扫描结果
a-squared4.5.0.412009.10.16Trojan.Win32.Antavmu!IK
AhnLab-V35.0.0.22009.10.16Packed/Upack
AntiVir7.9.1.352009.10.16TR/Hijacker.Gen
Antiy-AVL2.0.3.72009.10.16Trojan/Win32.Antavmu.gen
Authentium5.1.2.42009.10.16W32/Heuristic-210!Eldorado
Avast4.8.1351.02009.10.14Win32:Spyware-gen
AVG8.5.0.4202009.10.16BackDoor.Generic11.ANKZ
BitDefender7.22009.10.16Generic.Malware.Pdldg.87B49B4D
CAT-QuickHeal10.002009.10.16Win32.Trojan.Glox.gen!damaged.3
ClamAV0.94.12009.10.16-
Comodo26202009.10.16Heur.Packed.Unknown
DrWeb5.0.0.121822009.10.16MULDROP.Trojan
eSafe7.0.17.02009.10.15Suspicious File
eTrust-Vet35.1.70712009.10.16Win32/Dogbab!generic
F-Prot4.5.1.852009.10.15W32/Heuristic-210!Eldorado
F-Secure8.0.14470.02009.10.16Trojan.Win32.Antavmu.egj
Fortinet3.120.0.02009.10.16PossibleThreat
GData192009.10.16Generic.Malware.Pdldg.87B49B4D
IkarusT3.1.1.72.02009.10.16Trojan.Win32.Antavmu
Jiangmin11.0.8002009.10.16Trojan/PSW.OnLineGames.bbut
K7AntiVirus7.10.8722009.10.16-
Kaspersky7.0.0.1252009.10.16Trojan.Win32.Antavmu.egj
McAfee57722009.10.15Generic.dx!fbm
McAfee+Artemis57722009.10.15Generic.dx!fbm
McAfee-GW-Edition6.8.52009.10.16Heuristic.LooksLike.Win32.Suspicious.A
Microsoft1.51012009.10.16Trojan:Win32/Meredrop
NOD3245142009.10.16Win32/Rootkit.Agent.NOA
Norman6.03.022009.10.16W32/Packed_Upack.A
nProtect2009.1.8.02009.10.15Trojan/W32.Antavmu.61520
Panda10.0.2.22009.10.15Trj/CI.A
PCTools4.4.2.02009.10.15Packed/Upack
Prevx3.02009.10.16Medium Risk Malware
Rising21.51.43.002009.10.16-
Sophos4.46.02009.10.16Mal/Generic-A
Sunbelt3.2.1858.22009.10.15Trojan.Win32.Packer.Upack0.3.9 (v)
Symantec1.4.4.122009.10.16Trojan Horse
TheHacker6.5.0.2.0432009.10.15Trojan/Antavmu.egj
TrendMicro8.950.0.10942009.10.16Cryp_Xed-12
VBA323.12.10.112009.10.15Trojan.Win32.Antavmu.egj
ViRobot2009.10.16.19882009.10.16-
VirusBuster4.6.5.02009.10.15Packed/Upack
附加信息
File size: 61520 bytes
MD5...: 43b521fa3c4439170267be996dc570ad
SHA1..: 42708f9db7ae27c68d9876f28744c63967509227
SHA256: 9afb10687cf2d7a07faef3d24c0e2d4e04275d90d65493af52da0c9a70f6d71f
ssdeep: 1536:pFe9sBWoklGEZB2xgb+M0fz9nedrRwCVTw5Qkts4:XBo7Db2xU+MsMdyQWN
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1018
timedatestamp.....: 0x4011b0be (Fri Jan 23 23:39:42 2004)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
PS 0x1000 0x26000 0x1f0 5.32 9e4f65e697ba503963c15d381a6b5dfb
@__C 0x27000 0x16000 0xee50 8.00 ab70a91b841dc231d4721dc3a0d970d6
cB@ 0x3d000 0x1000 0x1f0 5.32 9e4f65e697ba503963c15d381a6b5dfb

( 0 imports )

( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: DOS Executable Generic (100.0%)
<a href='http://info.prevx.com/aboutprogramtext.asp?PX5=02E9AB9050B4A8EAF0DB000FBDE621004810AAD4' target='_blank'>http://info.prevx.com/aboutprogr ... BDE621004810AAD4<;/a>
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (Avast): Upack
packers (Authentium): UPack, UPack, UPack
packers (F-Prot): UPack


用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; TencentTraveler 4.0; MAXTHON 2.0)
瑞星工程师19 - 2009-10-16 20:06:00
样本已经收集,感谢您对瑞星的支持!
1
查看完整版本: qmc.exe---43b521fa3c4439170267be996dc570ad
© 2000 - 2025 Rising Corp. Ltd.