endurer - 2009-10-16 22:46:00
附件: 您所在的用户组无法下载或查看附件解压密码:virus
文件说明符 : C:\WINDOWS\system32\NumViewRun.dll
属性 : A---
数字签名:否
PE文件:是
获取文件版本信息大小失败!
创建时间 : 2009-10-16 21:14:8
修改时间 : 2009-10-11 10:59:42
大小 : 57344 字节 56.0 KB
MD5 : 63e8aa6f0b069a6fdbaa9436103143e6
SHA1: 99F7C3C692C9760A71604B08F1AFEE343A10E898
CRC32: 61d2722c
文件 NumViewRun.dll 接收于 2009.10.16 14:40:19 (UTC)
| 反病毒引擎 | 版本 | 最后更新 | 扫描结果 |
| a-squared | 4.5.0.41 | 2009.10.16 | Trojan-Downloader.Small!IK |
| AhnLab-V3 | 5.0.0.2 | 2009.10.16 | - |
| AntiVir | 7.9.1.35 | 2009.10.16 | TR/Dldr.Small.jrs |
| Antiy-AVL | 2.0.3.7 | 2009.10.16 | - |
| Authentium | 5.1.2.4 | 2009.10.16 | - |
| Avast | 4.8.1351.0 | 2009.10.14 | - |
| AVG | 8.5.0.420 | 2009.10.16 | - |
| BitDefender | 7.2 | 2009.10.16 | - |
| CAT-QuickHeal | 10.00 | 2009.10.16 | - |
| ClamAV | 0.94.1 | 2009.10.16 | - |
| Comodo | 2621 | 2009.10.16 | - |
| DrWeb | 5.0.0.12182 | 2009.10.16 | - |
| eSafe | 7.0.17.0 | 2009.10.15 | - |
| eTrust-Vet | 35.1.7071 | 2009.10.16 | - |
| F-Prot | 4.5.1.85 | 2009.10.15 | - |
| F-Secure | 8.0.14470.0 | 2009.10.16 | - |
| Fortinet | 3.120.0.0 | 2009.10.16 | - |
| GData | 19 | 2009.10.16 | - |
| Ikarus | T3.1.1.72.0 | 2009.10.16 | Trojan-Downloader.Small |
| Jiangmin | 11.0.800 | 2009.10.16 | Trojan/Clicker.fc |
| K7AntiVirus | 7.10.872 | 2009.10.16 | - |
| Kaspersky | 7.0.0.125 | 2009.10.16 | - |
| McAfee | 5772 | 2009.10.15 | - |
| McAfee+Artemis | 5772 | 2009.10.15 | - |
| McAfee-GW-Edition | 6.8.5 | 2009.10.16 | Trojan.Dldr.Small.jrs |
| Microsoft | 1.5101 | 2009.10.16 | - |
| NOD32 | 4514 | 2009.10.16 | - |
| Norman | 6.03.02 | 2009.10.16 | - |
| nProtect | 2009.1.8.0 | 2009.10.15 | - |
| Panda | 10.0.2.2 | 2009.10.15 | - |
| PCTools | 4.4.2.0 | 2009.10.16 | - |
| Prevx | 3.0 | 2009.10.16 | - |
| Rising | 21.51.44.00 | 2009.10.16 | - |
| Sophos | 4.46.0 | 2009.10.16 | - |
| Sunbelt | 3.2.1858.2 | 2009.10.15 | - |
| Symantec | 1.4.4.12 | 2009.10.16 | - |
| TheHacker | 6.5.0.2.043 | 2009.10.15 | - |
| TrendMicro | 8.950.0.1094 | 2009.10.16 | - |
| VBA32 | 3.12.10.11 | 2009.10.15 | - |
| ViRobot | 2009.10.16.1988 | 2009.10.16 | - |
| VirusBuster | 4.6.5.0 | 2009.10.15 | - |
| 附加信息 |
| File size: 57344 bytes |
| MD5...: 63e8aa6f0b069a6fdbaa9436103143e6 |
| SHA1..: 99f7c3c692c9760a71604b08f1afee343a10e898 |
| SHA256: 5c6863d75ea32a750aebfa6480260daf2efc0550fee636407f3d5ac1e1907b5f |
| ssdeep: 768:nYjtggmcqqFNKUEVe/AhTy+p1kY8ewYHSS99riB9qnfHiB/8fPwUo7phup:I tgBlDeohThjkDYHSS9vKh8joVh |
| PEiD..: - |
| PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x2de1 timedatestamp.....: 0x4ab07683 (Wed Sep 16 05:24:19 2009) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x8296 0x9000 6.32 4c64e7c9a50cae337b2daf6b40c1f105 .rdata 0xa000 0xf7e 0x1000 5.26 3222c81bb00f632336b8031ae61daade .data 0xb000 0x2948 0x2000 2.45 f4ae566d7d203d21f81c023bda5259b8 .reloc 0xe000 0xf18 0x1000 4.28 1d44a214c2acf81cab6a14a7b2d60780 ( 5 imports ) > KERNEL32.dll: DeleteFileA, OutputDebugStringA, GetLastError, FindClose, FindNextFileA, FindFirstFileA, GetModuleFileNameA, CompareStringW, CompareStringA, LCMapStringW, LCMapStringA, CreateProcessA, SetEnvironmentVariableA, Sleep, RtlUnwind, LoadLibraryA, GetOEMCP, GetACP, GetCPInfo, GetStringTypeW, GetStringTypeA, MultiByteToWideChar, FlushFileBuffers, SetStdHandle, InterlockedIncrement, HeapFree, HeapAlloc, GetTimeZoneInformation, GetSystemTime, GetLocalTime, GetCommandLineA, GetVersion, HeapDestroy, HeapCreate, VirtualFree, InitializeCriticalSection, DeleteCriticalSection, EnterCriticalSection, LeaveCriticalSection, ExitProcess, VirtualAlloc, HeapReAlloc, CloseHandle, WriteFile, GetCurrentThreadId, TlsSetValue, TlsAlloc, TlsFree, SetLastError, TlsGetValue, GetProcAddress, GetModuleHandleA, TerminateProcess, GetCurrentProcess, SetHandleCount, GetStdHandle, GetFileType, GetStartupInfoA, FreeEnvironmentStringsA, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStrings, GetEnvironmentStringsW, SetFilePointer, InterlockedDecrement > USER32.dll: SendMessageA, GetWindowThreadProcessId, GetClassNameA, GetParent, CloseDesktop, SetForegroundWindow, EnumDesktopWindows, PostMessageA, CreateDesktopA, EnumChildWindows > ADVAPI32.dll: RegQueryValueExA, RegCloseKey, RegOpenKeyExA > SHELL32.dll: SHGetSpecialFolderPathA > WS2_32.dll: -, -, -, -, -, -, -, -, -, -, -, - ( 3 exports ) GetDLlVersion, Run, Sunbelt |
| RDS...: NSRL Reference Data Set - |
| pdfid.: - |
| trid..: Win32 Executable MS Visual C++ (generic) (65.2%) Win32 Executable Generic (14.7%) Win32 Dynamic Link Library (generic) (13.1%) Generic Win/DOS Executable (3.4%) DOS Executable Generic (3.4%) |
| sigcheck: publisher....: n/a copyright....: n/a product......: n/a description..: n/a original name: n/a internal name: n/a file version.: n/a comments.....: n/a signers......: - signing date.: - verified.....: Unsigned |
用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; TencentTraveler 4.0; MAXTHON 2.0)