Файл codec.exe получен 2009.06.18 06:29:18 (UTC)
Антивирус Версия Обновление Результат
a-squared 4.5.0.18 2009.06.18 Trojan-Downloader.Win32.FakeRean!IK
AhnLab-V3 5.0.0.2 2009.06.17-
AntiVir 7.9.0.187 2009.06.17 TR/Drop.Agent.sca
Antiy-AVL 2.0.3.1 2009.06.17-
Authentium 5.1.2.4 2009.06.17-
Avast 4.8.1335.0 2009.06.17 Win32:Trojan-gen {Other}
AVG 8.5.0.339 2009.06.17 Generic13.BIIQ
BitDefender 7.2 2009.06.18 Gen:Trojan.Heur.6035CA9FEE
CAT-QuickHeal 10.00 2009.06.18 TrojanDownloader.FraudLoad.er
ClamAV 0.94.1 2009.06.18-
Comodo 1360 2009.06.18-
DrWeb 5.0.0.12182 2009.06.17-
eSafe 7.0.17.0 2009.06.17 Suspicious File
eTrust-Vet 31.6.6566 2009.06.17-
F-Prot 4.4.4.56 2009.06.17-
F-Secure 8.0.14470.0 2009.06.18 Suspicious:W32/Malware!Gemini
Fortinet 3.117.0.0 2009.06.18 W32/FakeAlert.CM!tr
GData 19 2009.06.18 Gen:Trojan.Heur.6035CA9FEE
Ikarus T3.1.1.59.0 2009.06.18 Trojan-Downloader.Win32.FakeRean
Jiangmin 11.0.706 2009.06.18-
K7AntiVirus 7.10.766 2009.06.17-
Kaspersky 7.0.0.125 2009.06.18 Trojan-Downloader.Win32.FraudLoad.erk
McAfee 5649 2009.06.17 FakeAlert-CM
McAfee+Artemis 5649 2009.06.17 FakeAlert-CM
McAfee-GW-Edition 6.7.6 2009.06.18 Trojan.Drop.Agent.sca
Microsoft 1.4701 2009.06.18 TrojanDownloader:Win32/FakeRean
NOD32 4165 2009.06.18 a variant of Win32/Kryptik.SM
Norman 6.01.09 2009.06.17-
nProtect 2009.1.8.0 2009.06.18-
Panda 10.0.0.14 2009.06.17 Trj/CI.A
PCTools 4.4.2.0 2009.06.17-
Prevx 3.0 2009.06.18 Medium Risk Malware
Rising 21.34.30.00 2009.06.18-
Sophos 4.42.0 2009.06.18 Mal/EncPk-IF
Sunbelt 3.2.1858.2 2009.06.18-
Symantec 1.4.4.12 2009.06.18 Packed.Generic.233
TheHacker6.3.4.3.3482009.06.17-
TrendMicro 8.950.0.1094 2009.06.18-
VBA32 3.12.10.7 2009.06.18-
ViRobot 2009.6.18.1793 2009.06.18-
VirusBuster 4.6.5.0 2009.06.17 Trojan.DL.FakeRean.AM
Дополнительная информация File size: 110595 bytesMD5...: a5d3bcee3d8575f1968be7b7ab3c5853SHA1..: 432f7e19c3e2d47a2d0487cb7901fddc01e52a52SHA256: d65c3ab383bf49324000daf49aa6cd6bb847f1356c6085fbb2 87c516d5507125ssdeep: 3072:n1YSbUICy81sygYL0d95QlC06MszFi9X3kuJm:n17bUIC y81fLy9kVOzmG
PEiD..: -TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x12ed
timedatestamp.....: 0x43d993ec (Fri Jan 27 03:30:52 2006)
machinetype.......: 0x14c (I386)
( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.code 0x1000 0x335a 0x3400 7.91 61f0ffd0beb12d37c141cb75bb882c50
.data 0x5000 0x200c1 0x11000 7.97 c28b94d54df38b16074c5b1ce6d4bb05
.idata 0x26000 0x40a 0x800 2.86 6a81227795348858e818129431137fa3
.rsrc 0x27000 0x58c4 0x5c00 5.54 17ccac79d64ab5b23c65817537ed0abf
.reloc 0x2d000 0x20 0x400 0.17 6b6622984ce1ab52d6f81eb6c3512d72
( 3 imports )
>KERNEL32.DLL: WriteConsoleW, ExpandEnvironmentStringsA,QueryPerformanceCounter, GetStdHandle, GetSystemDefaultLangID,GlobalUnlock, CreateDirectoryW, GetCommandLineA, GetTickCount,GetDateFormatW, ReadFile, GetCurrentProcessId,GetFileInformationByHandle, TlsSetValue, ExitProcess, SleepEx,VirtualProtect, LocalFileTimeToFileTime, GetSystemTime,GetCurrentDirectoryA
> USER32.DLL: MessageBoxW, CallWindowProcW,GetWindowLongW, IsRectEmpty, GetWindowPlacement, LoadBitmapW,RegisterClassExW, SetWindowRgn, GetMenu, SetScrollPos, EndDialog,GetClassInfoExW, GetWindowRect, CharNextW, GetScrollInfo
> MSVCRT.DLL: _wcsicmp, _amsg_exit, realloc, _wtol, exit, strchr, _adjust_fdiv
( 0 exports )
PDFiD.: -RDS...: NSRL Reference Data Set
-Prevxinfo: <ahref='http://info.prevx.com/aboutprogramtext.asp?PX5=DF790C5703182127B074019C5 ED2B00025DF6F75'target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=DF790C5703182127B074019C5 ED2B00025DF6F75</a>