» hpqscnvw.EXE
Overview
Analysis
File Details

hpqscnvw.EXE

hpqscnvw Application

The executable hpqscnvw.EXE has been detected as malware by 29 anti-virus scanners.

File name:

hpqscnvw.EXE

Product:

hpqscnvw Application

Description:

hpqscnvw

Version:

9.0.0.108

MD5:

5d462f7376d92f7b29c186f265b640c8

SHA-1:

e842eb2af00948ee46bfcfbbb2eff66fa899cddc

SHA-256:

74da14deab828a11a709289719e473a62f16015dbeac098049eb6a9a7d3ec804

Scanner detections:

29 / 68

Status:

File is infected by a Virus

Explanation:

The file is infected by a polymorphic file infector virus.

Analysis date:

4/30/2024 4:52:29 PM UTC (today)

Scan engine

Detection

Engine version

AhnLab V3 Security

Win32/Hidrag

5.0.

Avira AntiVirus

W32/Hidrag.a

7.9.1.114

Emsisoft A-Squared

Virus.Win32.Hidrag!IK

4.5.0.43

avast!

Win32:Jeefo

2014.9-170306

AVG

Win32/Hidrag.A

2018.0.2448

Bitdefender

Win32.Jeefo.B

1.0.20.325

Clam AntiVirus

W32.Jeefo-3

0.98/171

Comodo Security

Win32.Jeefo.A

3309

Dr.Web

Win32.HLLP.Jeefo.36352

9.0.1.065

ESET NOD32

Win32/Jeefo

11.4703

Fortinet FortiGate

W32/Jeefo.A

3/6/2017

F-Prot

W32/Jeefo.A

v6.4.5.1.85

F-Secure

Win32.Jeefo.B

11.2017-06-03_2

G Data

Win32.Jeefo

17.3.19

IKARUS anti.virus

Virus.Win32.Hidrag

t3scan.1.1.79.0

K7 AntiVirus

Virus.Win32.Hidrag.a

13.7.10.923

Kaspersky

Virus.Win32.Hidrag

14.0.0.-1266

McAfee

W32/Jeefo

5600.6104

Microsoft Security Essentials

Virus:Win32/Jeefo.A

1.163.1557.0

Norman

W32/Hidrag.A

11.20170306

nProtect

Virus/W32.Hidrag

2009.1.8.0

Panda Antivirus

W32/Jeefo.A

17.03.06.06

Prevx

Medium Risk Malware

3.0

Quick Heal

W32.Jeefo.A

3.17.10.00

Rising Antivirus

Win32.HiDrag.a

23.00.65.17304

Sophos

W32/Jeefo-A

4.49

Trend Micro

PE_JEEFO.A

10.465.06

Vba32 AntiVirus

Win32.HLLP.Jeefo

3.12.12.0

ViRobot

Win32.Hidrag

2009.12.18.2097

File size:

279.5 KB (286,208 bytes)

Product version:

9.0.0.108

Original file name:

hpqscnvw.EXE

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\Program Files\hp\digital imaging\bin\hpqscnvw.exe

File PE Metadata

Compilation timestamp:

8/24/2001 12:00:00 PM

OS version:

4.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.55

Entry address:

0x11F0

Entry point:

55, 89, E5, 83, EC, 08, 83, C4, F4, 6A, 02, A1, C8, B2, 40, 00, FF, D0, E8, 79, FF, FF, FF, C9, C3, 00, 00, 00, 00, 00, 00, 00, 49, 6A, 65, 65, 66, 6F, 21, 45, 73, 62, 68, 70, 6F, 21, 77, 6A, 73, 76, 74, 2F, 21, 43, 70, 73, 6F, 21, 6A, 6F, 21, 62, 21, 75, 73, 70, 71, 6A, 64, 62, 6D, 21, 74, 78, 62, 6E, 71, 2F, 00, 5C, 00, 20, 00, 22, 00, 8D, 76, 00, 55, 89, E5, 8B, 4D, 08, 8B, 55, 0C, 31, C0, 39, D0, 73, 08, 00, 04, 08, 40, 39, D0, 72, F8, C9, C3, 8D, 76, 00, 55, 89, E5, 8B, 4D, 08, 8B, 55, 0C, 31, C0, 39... 
[+]

Packer / compiler:

Video-Lan-Client

Code size:

32.5 KB (33,280 bytes)

Remove hpqscnvw.EXE - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.