home

lspsurf.exe

AutoCAD

The executable lspsurf.exe has been detected as malware by 9 anti-virus scanners.
Publisher:
Autodesk, Inc*  (Invalid match)

Product:
AutoCAD

Version:
17.2.56.0

MD5:
46812948c3f0337edd3803ec98aeeee6

SHA-1:
5e57f207b4ad68c6db2a68f06953702e3c3b0386

SHA-256:
847e43216320fe84052e6f9f21da4ec6e33e34bba69e40b43887a324aeca3d30

Scanner detections:
9 / 68

Status:
Malware

Analysis date:
4/16/2024 12:54:19 PM UTC  (today)

Scan engine
Detection
Engine version

avast!
Win32:Vitro
150102-1

AVG
Win32/Virut
2014.0.4253

Comodo Security
Virus.Win32.Virut.CE
20835

ESET NOD32
Win32/Virut.NBP virus
7.0.302.0

Fortinet FortiGate
W32/Virut.CE
1/25/2015

NANO AntiVirus
Virus.Win32.Virut-Gen.bwpxnc
0.30.0.64812

Norman
Virut.EH
11.20150125

Trend Micro House Call
PE_VIRUX.AA-1
7.2.25

Trend Micro
PE_VIRUX.AA-1
10.465.25

File size:
182.7 KB (187,063 bytes)

Product version:
17.2.56.0

Copyright:
Copyright (c) 1982-2008 by Autodesk, Inc.

Original file name:
lspsurf.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\autocad 2009\express\lspsurf.exe

File PE Metadata
Compilation timestamp:
5/14/1999 2:08:32 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
3072:JdSwK8Y42UiwO6IsGkyRvD0Zrjof8OhJygvybbx9z42If8U:BK8Y42UiwO6IsGkyR7J3hM

Entry address:
0x227DE

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
4.6848

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
132 KB (135,168 bytes)

Remove lspsurf.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.