Исследование антивирусов 4

**Exxx** · 08.09.2006, 22:18

Отсюда
Complete scanning result of "Setup.exe", received in VirusTotal at 09.08.2006, 18:44:20 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.08.2006 no virus found
Authentium 4.93.8 09.08.2006 no virus found
Avast 4.7.844.0 09.08.2006 no virus found
AVG 386 09.08.2006 no virus found
BitDefender 7.2 09.08.2006 no virus found
CAT-QuickHeal 8.00 09.07.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.08.2006 no virus found
DrWeb 4.33 09.08.2006 no virus found
eTrust-InoculateIT 23.72.119 09.08.2006 no virus found
eTrust-Vet 30.3.3068 09.08.2006 no virus found
Ewido 4.0 09.05.2006 no virus found
Fortinet 2.77.0.0 09.07.2006 suspicious
F-Prot 3.16f 09.08.2006 no virus found
F-Prot4 4.2.1.29 09.07.2006 no virus found
Ikarus 0.2.65.0 09.08.2006 no virus found
Kaspersky 4.0.2.24 09.08.2006 Trojan.Win32.Agent.yu
McAfee 4847 09.07.2006 no virus found
Microsoft 1.1560 09.08.2006 no virus found
NOD32v2 1.1745 09.08.2006 no virus found
Norman 5.90.23 09.08.2006 no virus found
Panda 9.0.0.4 09.08.2006 Suspicious file
Sophos 4.09.0 09.08.2006 no virus found
Symantec 8.0 09.08.2006 no virus found
TheHacker 5.9.8.208 09.08.2006 no virus found
UNA 1.83 09.08.2006 no virus found
VBA32 3.11.1 09.07.2006 no virus found
VirusBuster 4.3.7:9 09.08.2006 no virus found

Aditional Information
File size: 137216 bytes
MD5: 7d247f72d2fef27f058afed9b4bda88e
SHA1: 83501d378567c3844ed1254474cc47c654aa2eb5
packers: Obsidium

Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:

**drongo** · 09.09.2006, 12:48

File: ASRLSetup.exe
Status: INFECTED/MALWARE
MD5 30fe50789e73789e1be4b7a73ebc2d7b
Packers detected: EDIT
Scanner results
AntiVir Found Adware-Spyware/AdvanceSp.A.1 adware
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
Fortinet Found nothing
Kaspersky Anti-Virus Found Backdoor.Win32.VB.ate
NOD32 Found nothing
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found nothing
P.S. Возможно ложное срабатывание , в средстве от шпионов :hXXp://www.appfile.com/software/ASRLSetup.exe

**MOCT** · 09.09.2006, 14:40

Complete scanning result of "ans.exe", received in VirusTotal at 09.09.2006, 12:35:59 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.09.2006 HEUR/Crypted
Authentium 4.93.8 09.09.2006 could be a corrupted executable file
Avast 4.7.844.0 09.08.2006 no virus found
AVG 386 09.08.2006 no virus found
BitDefender 7.2 09.09.2006 no virus found
CAT-QuickHeal 8.00 09.09.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.09.2006 Trojan.Haxdoor-33
eTrust-InoculateIT 23.72.120 09.08.2006 no virus found
eTrust-Vet 30.3.3070 09.09.2006 no virus found
DrWeb 4.33 09.09.2006 no virus found
Ewido 4.0 09.05.2006 no virus found
Fortinet 2.77.0.0 09.09.2006 no virus found
F-Prot 3.16f 09.09.2006 no virus found
F-Prot4 4.2.1.29 09.08.2006 no virus found
Ikarus 0.2.65.0 09.08.2006 Backdoor.Win32.Haxdoor.GS
Kaspersky 4.0.2.24 09.09.2006 no virus found
McAfee 4848 09.08.2006 no virus found
Microsoft 1.1560 09.09.2006 no virus found
NOD32v2 1.1746 09.08.2006 no virus found
Norman 5.80.02 09.08.2006 no virus found
Panda 9.0.0.4 09.08.2006 no virus found
Sophos 4.09.0 09.09.2006 no virus found
Symantec 8.0 09.09.2006 no virus found
TheHacker 5.9.8.208 09.08.2006 no virus found
UNA 1.83 09.08.2006 no virus found
VBA32 3.11.1 09.09.2006 no virus found
VirusBuster 4.3.7:9 09.08.2006 no virus found

Aditional Information
File size: 52237 bytes
MD5: 4f08e6f4834843895d516717c646d7f9
SHA1: 8d2cd6bc0155c29e82affbc610fbbb63e6a0517f

**HATTIFNATTOR** · 09.09.2006, 15:03

vbsys2.dll
MD5 85fee9b46163517dca34a1dec07c102a

AntiVir Found nothing
ArcaVir Found nothing
Avast Found Win32:Agent-BBZ
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
Fortinet Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found Malware.Agent.20 (probable variant)

File: internt.exe
MD5 703f5be2e37c525934f118a482f850ac

AntiVir Found Trojan/LipGame.W.2
ArcaVir Found nothing
Avast Found Win32

ialer-BG
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found Dialer-717
Dr.Web Found Trojan.DownLoader.2163
F-Prot Antivirus Found nothing
Fortinet Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found probably a variant of Win32/Dialer.EB (probable variant)
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found Malware.Agent.20 (probable variant)

на фтп

**Зайцев Олег** · 10.09.2006, 10:34

STATUS: FINISHED Complete scanning result of "doc.log.exe", received in VirusTotal at 09.10.2006, 08:21:56 (CET).
Antivirus Version Update Result
AntiVir 7.1.1.16 09.09.2006 no virus found
Authentium 4.93.8 09.09.2006 W32/Flurry.B
Avast 4.7.844.0 09.08.2006 no virus found
AVG 386 09.08.2006 no virus found
BitDefender 7.2 09.10.2006 Generic.Stration.3DE5FEED
CAT-QuickHeal 8.00 09.09.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.10.2006 Worm.Stration.Y-1
DrWeb 4.33 09.09.2006 no virus found
eTrust-InoculateIT 23.72.120 09.08.2006 no virus found
eTrust-Vet 30.3.3070 09.09.2006 no virus found
Ewido 4.0 09.09.2006 no virus found
Fortinet 2.77.0.0 09.09.2006 suspicious
F-Prot 3.16f 09.09.2006 security risk named W32/Flurry.B
F-Prot4 4.2.1.29 09.09.2006 W32/Flurry.B
Ikarus 0.2.65.0 09.08.2006 no virus found
Kaspersky 4.0.2.24 09.10.2006 no virus found
McAfee 4848 09.08.2006 no virus found
Microsoft 1.1560 09.09.2006 no virus found
NOD32v2 1.1746 09.08.2006 no virus found
Norman 5.90.23 09.08.2006 W32/Suspicious_M.gen
Panda 9.0.0.4 09.09.2006 Suspicious file
Sophos 4.09.0 09.10.2006 W32/Stration-S
Symantec 8.0 09.10.2006 W32.Stration.A@mm
TheHacker 5.9.8.208 09.08.2006 no virus found
UNA 1.83 09.08.2006 no virus found
VBA32 3.11.1 09.10.2006 no virus found
VirusBuster 4.3.7:9 09.09.2006 Trojan.Opnis.Gen!Pac

Aditional Information
File size: 151251 bytes
MD5: c46de6c5c7f7365a0655e5289120f23f
SHA1: e75296a98bccdc2e403b08cfc6aa9d3a7eafc1a8

Это со вчерашнего вечера рассылается по почте, у нас в конторе несколько штук пришло ...

**Shu_b** · 11.09.2006, 11:35

Из раздела помогите:

Complete scanning result of "mssocks.exe", received in VirusTotal at 09.11.2006, 08:56:24 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.11.2006 HEUR/Malware
Authentium 4.93.8 09.11.2006 no virus found
Avast 4.7.844.0 09.08.2006 no virus found
AVG 386 09.08.2006 Generic2.ARY
BitDefender 7.2 09.11.2006 Trojan.Proxy.AE
CAT-QuickHeal 8.00 09.09.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.11.2006 no virus found
DrWeb 4.33 09.11.2006 BACKDOOR.Trojan
eTrust-InoculateIT 23.72.121 09.10.2006 no virus found
eTrust-Vet 30.3.3070 09.09.2006 no virus found
Ewido 4.0 09.10.2006 no virus found
Fortinet 2.77.0.0 09.10.2006 suspicious
F-Prot 3.16f 09.11.2006 no virus found
F-Prot4 4.2.1.29 09.11.2006 no virus found
Ikarus 0.2.65.0 09.08.2006 Trojan-Spy.Win32.Banker.anv
Kaspersky 4.0.2.24 09.11.2006 no virus found
McAfee 4848 09.08.2006 New Malware.n
Microsoft 1.1560 09.11.2006 no virus found
NOD32v2 1.1748 09.11.2006 probably unknown NewHeur_PE virus
Norman 5.90.23 09.08.2006 no virus found
Panda 9.0.0.4 09.10.2006 Bck/YourProxy.A
Sophos 4.09.0 09.11.2006 no virus found
Symantec 8.0 09.11.2006 no virus found
TheHacker 5.9.8.209 09.11.2006 no virus found
UNA 1.83 09.08.2006 no virus found
VBA32 3.11.1 09.11.2006 no virus found
VirusBuster 4.3.7:9 09.10.2006 no virus found

Aditional Information
File size: 29214 bytes
MD5: 1f6016d52abd7e60442ef00d6bb519c4
SHA1: e357f1fce692e0dea6b89774eb054b69b315d2c1
packers: UPack

Complete scanning result of "icodecpack.131.exe", received in VirusTotal at 09.11.2006, 09:20:09 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.11.2006 no virus found
Authentium 4.93.8 09.11.2006 no virus found
Avast 4.7.844.0 09.08.2006 no virus found
AVG 386 09.08.2006 no virus found
BitDefender 7.2 09.11.2006 Trojan.Downloader.Zlob.WT
CAT-QuickHeal 8.00 09.09.2006 no virus found
ClamAV devel-20060426 09.11.2006 no virus found
DrWeb 4.33 09.11.2006 no virus found
eTrust-InoculateIT 23.72.121 09.10.2006 no virus found
eTrust-Vet 30.3.3071 09.11.2006 no virus found
Ewido 4.0 09.10.2006 no virus found
Fortinet 2.77.0.0 09.10.2006 suspicious
F-Prot 3.16f 09.11.2006 no virus found
F-Prot4 4.2.1.29 09.11.2006 no virus found
Ikarus 0.2.65.0 09.08.2006 no virus found
Kaspersky 4.0.2.24 09.11.2006 Trojan-Downloader.Win32.Zlob.ajn
McAfee 4848 09.08.2006 no virus found
Microsoft 1.1560 09.11.2006 no virus found
NOD32v2 1.1748 09.11.2006 no virus found
Norman 5.90.23 09.08.2006 no virus found
Panda 9.0.0.4 09.10.2006 Suspicious file
Sophos 4.09.0 09.11.2006 no virus found
Symantec 8.0 09.11.2006 no virus found
TheHacker 5.9.8.209 09.11.2006 no virus found
UNA 1.83 09.08.2006 no virus found
VBA32 3.11.1 09.11.2006 no virus found
VirusBuster 4.3.7:9 09.10.2006 no virus found

Aditional Information
File size: 56012 bytes
MD5: 89a993dc4415d8132100d31562f26dd9
SHA1: 2f8d2dd1e7453c25560d52c5cd93da02a2bed72e
packers: UPX

**MOCT** · 12.09.2006, 09:27

первый троян грузит второго и третьего.

Complete scanning result of "loader.exe", received in VirusTotal at 09.12.2006, 07:17:14 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.11.2006 HEUR/Malware
Authentium 4.93.8 09.11.2006 no virus found
Avast 4.7.844.0 09.11.2006 no virus found
AVG 386 09.11.2006 no virus found
BitDefender 7.2 09.12.2006 Generic.Malware.dld!!.889E488A
CAT-QuickHeal 8.00 09.11.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.12.2006 no virus found
DrWeb 4.33 09.11.2006 no virus found
eTrust-InoculateIT 23.72.122 09.12.2006 no virus found
eTrust-Vet 30.3.3071 09.11.2006 no virus found
Ewido 4.0 09.11.2006 no virus found
Fortinet 2.77.0.0 09.11.2006 suspicious
F-Prot 3.16f 09.12.2006 no virus found
F-Prot4 4.2.1.29 09.11.2006 no virus found
Ikarus 0.2.65.0 09.11.2006 no virus found
Kaspersky 4.0.2.24 09.12.2006 no virus found
McAfee 4849 09.11.2006 no virus found
Microsoft 1.1560 09.12.2006 no virus found
NOD32v2 1.1750 09.11.2006 no virus found
Norman 5.90.23 09.11.2006 Suspicious_F.gen
Panda 9.0.0.4 09.11.2006 Suspicious file
Sophos 4.09.0 09.11.2006 no virus found
Symantec 8.0 09.12.2006 no virus found
TheHacker 5.9.8.209 09.11.2006 no virus found
UNA 1.83 09.11.2006 no virus found
VBA32 3.11.1 09.12.2006 no virus found
VirusBuster 4.3.7:9 09.11.2006 no virus found

Aditional Information
File size: 2069 bytes
MD5: e7a3afd53b5bcff95cc1beb8e7d4f02f
SHA1: 67d3522c24fbac802637da169b714f4f20ce6096
packers: FSG

Complete scanning result of "downloader.exe", received in VirusTotal at 09.12.2006, 07:21:13 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.11.2006 TR/Dldr.Botol.C.1
Authentium 4.93.8 09.11.2006 no virus found
Avast 4.7.844.0 09.11.2006 no virus found
AVG 386 09.11.2006 no virus found
BitDefender 7.2 09.12.2006 no virus found
CAT-QuickHeal 8.00 09.11.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.12.2006 no virus found
DrWeb 4.33 09.11.2006 no virus found
eTrust-InoculateIT 23.72.122 09.12.2006 no virus found
eTrust-Vet 30.3.3071 09.11.2006 no virus found
Ewido 4.0 09.11.2006 no virus found
Fortinet 2.77.0.0 09.11.2006 suspicious
F-Prot 3.16f 09.12.2006 no virus found
F-Prot4 4.2.1.29 09.11.2006 no virus found
Ikarus 0.2.65.0 09.11.2006 no virus found
Kaspersky 4.0.2.24 09.12.2006 Trojan-Downloader.Win32.Small.dam
McAfee 4849 09.11.2006 no virus found
Microsoft 1.1560 09.12.2006 no virus found
NOD32v2 1.1750 09.11.2006 no virus found
Norman 5.90.23 09.11.2006 no virus found
Panda 9.0.0.4 09.11.2006 Suspicious file
Sophos 4.09.0 09.11.2006 no virus found
Symantec 8.0 09.12.2006 Trojan.Galapoper.A
TheHacker 5.9.8.209 09.11.2006 no virus found
UNA 1.83 09.11.2006 no virus found
VBA32 3.11.1 09.12.2006 no virus found
VirusBuster 4.3.7:9 09.11.2006 no virus found

Aditional Information
File size: 8300 bytes
MD5: 801f72f23e35cfb17c2a602f1f818f66
SHA1: 8e274432854f81d42e4bc031bde6b947674b4703

Complete scanning result of "loadadv455.exe", received in VirusTotal at 09.12.2006, 07:23:51 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.11.2006 TR/Crypt.F.Gen
Authentium 4.93.8 09.11.2006 Possibly a new variant of W32/Downloader-Sml-based!Maximus
Avast 4.7.844.0 09.11.2006 no virus found
AVG 386 09.11.2006 Downloader.Tibs
BitDefender 7.2 09.12.2006 Win32.FpuJunk.2
CAT-QuickHeal 8.00 09.11.2006 no virus found
ClamAV devel-20060426 09.12.2006 no virus found
eTrust-InoculateIT 23.72.122 09.12.2006 no virus found
eTrust-Vet 30.3.3071 09.11.2006 no virus found
DrWeb 4.33 09.11.2006 no virus found
Ewido 4.0 09.11.2006 no virus found
Fortinet 2.77.0.0 09.11.2006 no virus found
F-Prot 3.16f 09.12.2006 Possibly a new variant of W32/Downloader-Sml-based!Maximus
F-Prot4 4.2.1.29 09.11.2006 W32/Downloader-Sml-based!Maximus
Ikarus 0.2.65.0 09.11.2006 no virus found
Kaspersky 4.0.2.24 09.12.2006 Trojan-Downloader.Win32.Small.dnt
McAfee 4849 09.11.2006 no virus found
Microsoft 1.1560 09.12.2006 no virus found
NOD32v2 1.1750 09.12.2006 no virus found
Norman 5.80.02 09.11.2006 no virus found
Panda 9.0.0.4 09.11.2006 Suspicious file
Sophos 4.09.0 09.11.2006 no virus found
Symantec 8.0 09.12.2006 Bloodhound.Tibs
TheHacker 5.9.8.209 09.11.2006 no virus found
UNA 1.83 09.11.2006 no virus found
VBA32 3.11.1 09.12.2006 no virus found
VirusBuster 4.3.7:9 09.11.2006 no virus found

Aditional Information
File size: 8711 bytes
MD5: 77558bd6de32c7ab682d6eb39a7b934a
SHA1: 54905a83d6bb284f3c101e49a1c5ec1d83aa61a5

**Alex_Goodwin** · 12.09.2006, 12:03

ZCodec1000.exe

STATUS: FINISHEDComplete scanning result of "__1056", received in VirusTotal at 09.12.2006, 09:51:41 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.12.2006 TR/Drop.Zlob.acn
Authentium 4.93.8 09.12.2006 no virus found
Avast 4.7.844.0 09.11.2006 no virus found
AVG 386 09.11.2006 Downloader.Zlob.DEZ
BitDefender 7.2 09.12.2006 no virus found
CAT-QuickHeal 8.00 09.11.2006 no virus found
ClamAV devel-20060426 09.12.2006 no virus found
eTrust-InoculateIT 23.72.122 09.12.2006 no virus found
eTrust-Vet 30.3.3073 09.12.2006 no virus found
DrWeb 4.33 09.12.2006 no virus found
Ewido 4.0 09.11.2006 no virus found
Fortinet 2.77.0.0 09.11.2006 no virus found
F-Prot 3.16f 09.12.2006 no virus found
F-Prot4 4.2.1.29 09.12.2006 no virus found
Ikarus 0.2.65.0 09.11.2006 no virus found
Kaspersky 4.0.2.24 09.12.2006 no virus found
McAfee 4849 09.11.2006 no virus found
Microsoft 1.1560 09.12.2006 no virus found
NOD32v2 1.1750 09.12.2006 no virus found
Norman 5.80.02 09.11.2006 no virus found
Panda 9.0.0.4 09.11.2006 no virus found
Sophos 4.09.0 09.12.2006 no virus found
Symantec 8.0 09.12.2006 no virus found
TheHacker 5.9.8.209 09.11.2006 no virus found
UNA 1.83 09.11.2006 no virus found
VBA32 3.11.1 09.12.2006 no virus found
VirusBuster 4.3.7:9 09.11.2006 no virus found

Aditional Information
File size: 73064 bytes
MD5: f1c363300315382a71b50019b4d29ede
SHA1: 7462cc11052cd5cf84ab4bfd80d6301d9e3095a6

Здравствуйте.
В присланном Вами файле не найдено ничего вредоносного.
---------
С уважением, Борис Ямпольский
Вирусный аналитик
ЗАО "Лаборатория Касперского"

Тел.: +7 (095) 797-8700
E-mail: [email protected]
http://www.kaspersky.com http://www.viruslist.com

> Attachment: ZCodec1000.exe

**MOCT** · 13.09.2006, 07:46

Complete scanning result of "SimpleLoader.exe", received in VirusTotal at 09.13.2006, 05:40:29 (CET).

Antivirus Version Update Result
AntiVir 7.1.1.16 09.12.2006 no virus found
Authentium 4.93.8 09.12.2006 no virus found
Avast 4.7.844.0 09.11.2006 no virus found
AVG 386 09.12.2006 no virus found
BitDefender 7.2 09.13.2006 BehavesLike:Trojan.Downloader
CAT-QuickHeal 8.00 09.12.2006 no virus found
ClamAV devel-20060426 09.12.2006 no virus found
DrWeb 4.33 09.12.2006 no virus found
eTrust-InoculateIT 23.72.123 09.13.2006 no virus found
eTrust-Vet 30.3.3073 09.12.2006 no virus found
Ewido 4.0 09.12.2006 no virus found
Fortinet 2.77.0.0 09.13.2006 no virus found
F-Prot 3.16f 09.13.2006 no virus found
F-Prot4 4.2.1.29 09.13.2006 no virus found
Ikarus 0.2.65.0 09.12.2006 no virus found
Kaspersky 4.0.2.24 09.13.2006 no virus found
McAfee 4850 09.12.2006 no virus found
Microsoft 1.1560 09.13.2006 TrojanDropper:Win32/Small.gen
NOD32v2 1.1753 09.12.2006 probably unknown NewHeur_PE virus
Norman 5.90.23 09.12.2006 W32/Downloader
Panda 9.0.0.4 09.12.2006 no virus found
Sophos 4.09.0 09.13.2006 no virus found
Symantec 8.0 09.13.2006 no virus found
TheHacker 5.9.8.210 09.13.2006 no virus found
UNA 1.83 09.11.2006 no virus found
VBA32 3.11.1 09.12.2006 no virus found
VirusBuster 4.3.7:9 09.12.2006 no virus found

Aditional Information
File size: 24576 bytes
MD5: d933e553c6a0abb5da6be1718b24f04d
SHA1: c5d193282b6e0a3ec21d8bfe0c58b5d514d2e0b7

**Alex_Goodwin** · 13.09.2006, 14:35

AntiVir 7.1.1.16 09.13.2006 no virus found
Authentium 4.93.8 09.13.2006 no virus found
Avast 4.7.844.0 09.11.2006 Win32:Trojan-gen. {Delphi}
AVG 386 09.12.2006 no virus found
BitDefender 7.2 09.13.2006 no virus found
CAT-QuickHeal 8.00 09.12.2006 no virus found
ClamAV devel-20060426 09.13.2006 no virus found
eTrust-InoculateIT 23.72.123 09.13.2006 no virus found
eTrust-Vet 30.3.3073 09.12.2006 no virus found
DrWeb 4.33 09.13.2006 VirusConstructor.Xinch
Ewido 4.0 09.13.2006 no virus found
Fortinet 2.77.0.0 09.13.2006 suspicious
F-Prot 3.16f 09.13.2006 no virus found
F-Prot4 4.2.1.29 09.13.2006 no virus found
Ikarus 0.2.65.0 09.12.2006 no virus found
Kaspersky 4.0.2.24 09.13.2006 no virus found
McAfee 4850 09.12.2006 no virus found
Microsoft 1.1560 09.13.2006 no virus found
NOD32v2 1.1753 09.12.2006 probably unknown NewHeur_PE virus
Norman 5.80.02 09.12.2006 no virus found
Panda 9.0.0.4 09.12.2006 Suspicious file
Sophos 4.09.0 09.13.2006 no virus found
Symantec 8.0 09.13.2006 no virus found
TheHacker 5.9.8.210 09.13.2006 no virus found
UNA 1.83 09.11.2006 no virus found
VBA32 3.11.1 09.12.2006 VirusConstructor.Xinch
VirusBuster 4.3.7:9 09.12.2006 Trojan.QHosts.G

Ответ ЛК:

В присланном Вами файле обнаружено новое вредоносное программное обеспечение.
Trojan-PSW.Win32.LdPinch.sh
Его детектирование будет включено в очередное обновление антивирусных баз.
Благодарим за оказанную помощь.

**Синауридзе Александр** · 14.09.2006, 19:06

Complete scanning result of "12345.scr", received in VirusTotal at 09.14.2006, 16:43:51 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.14.2006 HEUR/Crypted
Authentium 4.93.8 09.13.2006 no virus found
Avast 4.7.844.0 09.13.2006 no virus found
AVG 386 09.13.2006 no virus found
BitDefender 7.2 09.14.2006 no virus found
CAT-QuickHeal 8.00 09.14.2006 W32.Brontok.Q
ClamAV devel-20060426 09.14.2006 no virus found
DrWeb 4.33 09.14.2006 Trojan.PWS.LDPinch.1145
eTrust-InoculateIT 23.72.124 09.14.2006 no virus found
eTrust-Vet 30.3.3077 09.14.2006 no virus found
Ewido 4.0 09.14.2006 no virus found
Fortinet 2.82.0.0 09.13.2006 no virus found
F-Prot 3.16f 09.13.2006 no virus found
F-Prot4 4.2.1.29 09.14.2006 no virus found
Ikarus 0.2.65.0 09.14.2006 Backdoor.Win32.Ciadoor.N
Kaspersky 4.0.2.24 09.14.2006 no virus found
McAfee 4851 09.13.2006 no virus found
Microsoft 1.1560 09.14.2006 no virus found
NOD32v2 1.1756 09.14.2006 no virus found
Norman 5.90.23 09.14.2006 W32/Suspicious_M.gen
Panda 9.0.0.4 09.14.2006 Suspicious file
Sophos 4.09.0 09.14.2006 no virus found
Symantec 8.0 09.14.2006 no virus found
TheHacker 5.9.8.211 09.14.2006 no virus found
UNA 1.83 09.13.2006 no virus found
VBA32 3.11.1 09.13.2006 suspected of Malware.Agent.26 (paranoid heuristics)
VirusBuster 4.3.7:9 09.14.2006 no virus found

Aditional Information
File size: 46517 bytes
MD5: cf44cfcbeaa831c3086e99243d70f901
SHA1: ffdae0aedaa59bb2e35882dbb629a43ecfe24821
packers: MEW

**Alex_Goodwin** · 15.09.2006, 10:55

STATUS: FINISHEDComplete scanning result of "__1056", received in VirusTotal at 09.15.2006, 08:44:29 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.14.2006 BDC/Coldfus.11B.Dll
Authentium 4.93.8 09.14.2006 no virus found
Avast 4.7.844.0 09.13.2006 no virus found
AVG 386 09.14.2006 no virus found
BitDefender 7.2 09.15.2006 no virus found
CAT-QuickHeal 8.00 09.14.2006 no virus found
ClamAV devel-20060426 09.14.2006 Trojan.Dropper.Joiner.21
DrWeb 4.33 09.15.2006 no virus found
eTrust-InoculateIT 23.72.125 09.15.2006 no virus found
eTrust-Vet 30.3.3078 09.15.2006 no virus found
Ewido 4.0 09.14.2006 no virus found
Fortinet 2.82.0.0 09.15.2006 no virus found
F-Prot 3.16f 09.14.2006 no virus found
F-Prot4 4.2.1.29 09.14.2006 no virus found
Ikarus 0.2.65.0 09.14.2006 Trojan-Dropper.Win32.Tefil.21.A
Kaspersky 4.0.2.24 09.15.2006 no virus found
McAfee 4852 09.14.2006 W32/Spybot.worm.gen.p
Microsoft 1.1560 09.15.2006 no virus found
NOD32v2 1.1757 09.14.2006 no virus found
Norman 5.90.23 09.14.2006 no virus found
Panda 9.0.0.4 09.14.2006 Suspicious file
Sophos 4.09.0 09.15.2006 no virus found
Symantec 8.0 09.15.2006 no virus found
TheHacker 5.9.8.212 09.15.2006 Trojan/Hami
UNA 1.83 09.14.2006 no virus found
VBA32 3.11.1 09.14.2006 no virus found
VirusBuster 4.3.7:9 09.14.2006 no virus found

Aditional Information
File size: 1744896 bytes
MD5: 92c9f40b4da907589123bcb6cc600fa1
SHA1: 43408d1b230de21c8be607b7c8cd6dd4456ce8b5
packers: Armadillo

Здравствуйте.
В присланном Вами файле обнаружен Trojan-PSW.Win32.LdPinch.axh.
Его детектирование будет включено в очередное обновление антивирусных баз.
Благодарим за оказанную помощь.

**Alex_Goodwin** · 15.09.2006, 11:10

STATUS: FINISHEDComplete scanning result of "__1056", received in VirusTotal at 09.15.2006, 08:57:13 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.15.2006 HEUR/Crypted
Authentium 4.93.8 09.14.2006 no virus found
Avast 4.7.844.0 09.13.2006 no virus found
AVG 386 09.14.2006 no virus found
BitDefender 7.2 09.15.2006 no virus found
CAT-QuickHeal 8.00 09.14.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.14.2006 no virus found
eTrust-InoculateIT 23.72.125 09.15.2006 no virus found
eTrust-Vet 30.3.3078 09.15.2006 no virus found
DrWeb 4.33 09.15.2006 no virus found
Ewido 4.0 09.14.2006 Heuristic.Win32.Morphine-Crypted
Fortinet 2.82.0.0 09.15.2006 suspicious
F-Prot 3.16f 09.14.2006 no virus found
F-Prot4 4.2.1.29 09.14.2006 no virus found
Ikarus 0.2.65.0 09.14.2006 no virus found
Kaspersky 4.0.2.24 09.15.2006 no virus found
McAfee 4852 09.14.2006 New Malware.h
Microsoft 1.1560 09.15.2006 no virus found
NOD32v2 1.1757 09.15.2006 unpack error
Norman 5.80.02 09.14.2006 W32/Suspicious_N.gen
Panda 9.0.0.4 09.14.2006 Suspicious file
Sophos 4.09.0 09.15.2006 no virus found
Symantec 8.0 09.15.2006 no virus found
TheHacker 5.9.8.212 09.15.2006 no virus found
UNA 1.83 09.14.2006 no virus found
VBA32 3.11.1 09.14.2006 suspected of Trojan.Delf.37
VirusBuster 4.3.7:9 09.14.2006 no virus found

Aditional Information
File size: 426496 bytes
MD5: 875c6820aa8e7d391735b9904ed79f21
SHA1: 305d5a13771e73690eb79baed195e1300dc5f4c9
packers: Morphine

**Alex_Goodwin** · 15.09.2006, 11:22

AntiVir 7.2.0.16 09.15.2006 no virus found
Authentium 4.93.8 09.14.2006 no virus found
Avast 4.7.844.0 09.13.2006 no virus found
AVG 386 09.14.2006 no virus found
BitDefender 7.2 09.15.2006 no virus found
CAT-QuickHeal 8.00 09.14.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.14.2006 no virus found
DrWeb 4.33 09.15.2006 no virus found
eTrust-InoculateIT 23.72.125 09.15.2006 no virus found
eTrust-Vet 30.3.3078 09.15.2006 no virus found
Ewido 4.0 09.14.2006 no virus found
Fortinet 2.82.0.0 09.15.2006 suspicious
F-Prot 3.16f 09.14.2006 no virus found
F-Prot4 4.2.1.29 09.14.2006 no virus found
Ikarus 0.2.65.0 09.14.2006 no virus found
Kaspersky 4.0.2.24 09.15.2006 no virus found
McAfee 4852 09.14.2006 New Malware.f
Microsoft 1.1560 09.15.2006 no virus found
NOD32v2 1.1757 09.14.2006 no virus found
Norman 5.90.23 09.14.2006 W32/Suspicious_U.gen
Panda 9.0.0.4 09.14.2006 Suspicious file
Sophos 4.09.0 09.15.2006 no virus found
Symantec 8.0 09.15.2006 no virus found
TheHacker 5.9.8.212 09.15.2006 no virus found
UNA 1.83 09.14.2006 no virus found
VBA32 3.11.1 09.14.2006 no virus found
VirusBuster 4.3.7:9 09.14.2006 no virus found

Aditional Information
File size: 27082 bytes
MD5: 2e8ea67cbff726db0368a2fe125d301a
SHA1: bcfde81b364da38c2cfce4b74cae12e6e91ded65
packers: UPack

**Alex_Goodwin** · 15.09.2006, 14:44

STATUS: FINISHEDComplete scanning result of "__1056", received in VirusTotal at 09.15.2006, 12:39:06 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.15.2006 Worm/Sdbot.664576.B
Authentium 4.93.8 09.14.2006 no virus found
Avast 4.7.844.0 09.13.2006 Win32:Bifrose-CG
AVG 386 09.14.2006 no virus found
BitDefender 7.2 09.15.2006 no virus found
CAT-QuickHeal 8.00 09.14.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 09.14.2006 Trojan.Bifrose-361
eTrust-InoculateIT 23.72.125 09.15.2006 no virus found
eTrust-Vet 30.3.3078 09.15.2006 no virus found
DrWeb 4.33 09.15.2006 no virus found
Ewido 4.0 09.15.2006 Backdoor.Rbot
Fortinet 2.82.0.0 09.15.2006 suspicious
F-Prot 3.16f 09.14.2006 no virus found
F-Prot4 4.2.1.29 09.14.2006 no virus found
Ikarus 0.2.65.0 09.14.2006 no virus found
Kaspersky 4.0.2.24 09.15.2006 Backdoor.Win32.Bifrose.sj
McAfee 4852 09.14.2006 no virus found
Microsoft 1.1560 09.15.2006 no virus found
NOD32v2 1.1758 09.15.2006 no virus found
Norman 5.80.02 09.15.2006 W32/SDBot.AHPV
Panda 9.0.0.4 09.14.2006 Suspicious file
Sophos 4.09.0 09.15.2006 no virus found
Symantec 8.0 09.15.2006 IRC Trojan
TheHacker 5.9.8.212 09.15.2006 no virus found
UNA 1.83 09.14.2006 no virus found
VBA32 3.11.1 09.14.2006 Backdoor.Win32.Bifrose.sj
VirusBuster 4.3.7:9 09.14.2006 no virus found

Aditional Information
File size: 4453 bytes
MD5: 50b8de6b5d337af93c1d86172415647f
SHA1: f873b08b39053805df88433b04f6a82d09efb5fa

**Shu_b** · 15.09.2006, 22:40

сумма

**Синауридзе Александр** · 17.09.2006, 08:34

Complete scanning result of "FND0.NFI", received in VirusTotal at 09.17.2006, 06:16:10 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.16.2006 no virus found
Authentium 4.93.8 09.15.2006 no virus found
Avast 4.7.844.0 09.15.2006 no virus found
AVG 386 09.15.2006 no virus found
BitDefender 7.2 09.17.2006 no virus found
CAT-QuickHeal 8.00 09.15.2006 no virus found
ClamAV devel-20060426 09.17.2006 no virus found
DrWeb 4.33 09.16.2006 Trojan.Spambot
eTrust-InoculateIT 23.72.127 09.16.2006 no virus found
eTrust-Vet 30.3.3078 09.15.2006 no virus found
Ewido 4.0 09.16.2006 no virus found
Fortinet 2.82.0.0 09.17.2006 no virus found
F-Prot 3.16f 09.15.2006 no virus found
F-Prot4 4.2.1.29 09.15.2006 no virus found
Kaspersky 4.0.2.24 09.17.2006 no virus found
McAfee 4853 09.15.2006 no virus found
Microsoft 1.1560 09.17.2006 no virus found
NOD32v2 1.1759 09.16.2006 no virus found
Norman 5.90.23 09.15.2006 no virus found
Panda 9.0.0.4 09.16.2006 no virus found
Sophos 4.09.0 09.16.2006 no virus found
Symantec 8.0 09.17.2006 no virus found
TheHacker 6.0.1.071 09.17.2006 no virus found
UNA 1.83 09.15.2006 TrojanProxy.Win32.Horst.0CC2
VBA32 3.11.1 09.15.2006 no virus found
VirusBuster 4.3.7:9 09.16.2006 no virus found

Aditional Information
File size: 48640 bytes
MD5: 74def88a325869fbe299f379119fe5e4
SHA1: 50e6e770a1d8559c75f9fc91dfcd7b57d33b66b2
packers: XORCrypt, UPX

**mvlab** · 19.09.2006, 01:32

STATUS: FINISHEDComplete scanning result of "SVKP.sys", received in VirusTotal at 09.18.2006, 23:25:06 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.18.2006 no virus found
Authentium 4.93.8 09.18.2006 no virus found
Avast 4.7.844.0 09.15.2006 no virus found
AVG 386 09.18.2006 no virus found
BitDefender 7.2 09.18.2006 no virus found
CAT-QuickHeal 8.00 09.18.2006 Rootkit.Agent.dm
ClamAV devel-20060426 09.18.2006 Trojan.PcClient-42
DrWeb 4.33 09.18.2006 no virus found
eTrust-InoculateIT 23.72.127 09.16.2006 no virus found
eTrust-Vet 30.3.3084 09.18.2006 no virus found
Ewido 4.0 09.18.2006 no virus found
Fortinet 2.82.0.0 09.18.2006 no virus found
F-Prot 3.16f 09.18.2006 no virus found
F-Prot4 4.2.1.29 09.18.2006 no virus found
Ikarus 0.2.65.0 09.18.2006 no virus found
Kaspersky 4.0.2.24 09.18.2006 no virus found
McAfee 4854 09.18.2006 no virus found
Microsoft 1.1560 09.17.2006 no virus found
NOD32v2 1.1761 09.18.2006 no virus found
Norman 5.90.23 09.18.2006 no virus found
Panda 9.0.0.4 09.18.2006 no virus found
Sophos 4.09.0 09.18.2006 no virus found
Symantec 8.0 09.18.2006 no virus found
TheHacker 6.0.1.071 09.17.2006 no virus found
UNA 1.83 09.18.2006 no virus found
VBA32 3.11.1 09.18.2006 no virus found
VirusBuster 4.3.7:9 09.18.2006 Rootkit.Agent.DML

Aditional Information
File size: 2368 bytes
MD5: f05028b163b92c302a74409d683ac9b0
SHA1: 74a943b9f3bf63f8de5c3175f96366b24a661067
packers: embedded

**mvlab** · 19.09.2006, 01:46

STATUS: FINISHEDComplete scanning result of "Save.exe", received in VirusTotal at 09.18.2006, 23:39:28 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.18.2006 ADSPY/SaveNow.CB.19
Authentium 4.93.8 09.18.2006 no virus found
Avast 4.7.844.0 09.15.2006 Win32:Adware-gen.
AVG 386 09.18.2006 Adware Generic.OXE
BitDefender 7.2 09.18.2006 no virus found
CAT-QuickHeal 8.00 09.18.2006 Adware.WhenU.g (Not a Virus)
ClamAV devel-20060426 09.18.2006 no virus found
DrWeb 4.33 09.18.2006 Adware.SaveNow
eTrust-InoculateIT 23.72.127 09.16.2006 no virus found
eTrust-Vet 30.3.3084 09.18.2006 no virus found
Ewido 4.0 09.18.2006 Adware.SaveNow
Fortinet 2.82.0.0 09.18.2006 Adware/SaveNow!014
F-Prot 3.16f 09.18.2006 no virus found
F-Prot4 4.2.1.29 09.18.2006 no virus found
Ikarus 0.2.65.0 09.18.2006 no virus found
Kaspersky 4.0.2.24 09.18.2006 not-a-virus:AdTool.Win32.WhenU.g
McAfee 4854 09.18.2006 potentially unwanted program Adware-SaveNow
Microsoft 1.1560 09.18.2006 WhenU.SaveNow (threat-c)
NOD32v2 1.1761 09.18.2006 probably a variant of Win32/Adware.WhenU.SaveNow
Norman 5.90.23 09.18.2006 W32/SaveNow.SZ
Panda 9.0.0.4 09.18.2006 Adware/SaveNow
Sophos 4.09.0 09.18.2006 no virus found
Symantec 8.0 09.18.2006 no virus found
TheHacker 6.0.1.071 09.17.2006 no virus found
UNA 1.83 09.18.2006 Adware.SaveNow.331C
VBA32 3.11.1 09.18.2006 AdWare.Win32.SaveNow.cb
VirusBuster 4.3.7:9 09.18.2006 no virus found

Aditional Information
File size: 642928 bytes
MD5: ef8bf7756646be6b9fde7e65940ec387
SHA1: f2facb314dbd7d86dbcbee7d5e171800d6281964

**Shu_b** · 19.09.2006, 13:54

Из раздела помогите: t=6257

Complete scanning result of "eraseme_51577.exe", received in VirusTotal at 09.19.2006, 11:46:48 (CET).

Antivirus Version Update Result
AntiVir 7.2.0.16 09.19.2006 TR/Packed.CryptExe
Authentium 4.93.8 09.18.2006 could be a corrupted executable file
Avast 4.7.844.0 09.15.2006 no virus found
AVG 386 09.18.2006 no virus found
BitDefender 7.2 09.19.2006 no virus found
CAT-QuickHeal 8.00 09.18.2006 no virus found
ClamAV devel-20060426 09.19.2006 no virus found
eTrust-InoculateIT 23.72.128 09.19.2006 no virus found
eTrust-Vet 30.3.3086 09.19.2006 no virus found
DrWeb 4.33 09.19.2006 Win32.HLLW.MyBot
Ewido 4.0 09.19.2006 no virus found
Fortinet 2.82.0.0 09.19.2006 suspicious
F-Prot 3.16f 09.18.2006 no virus found
F-Prot4 4.2.1.29 09.18.2006 no virus found
Ikarus 0.2.65.0 09.18.2006 no virus found
Kaspersky 4.0.2.24 09.19.2006 no virus found
McAfee 4854 09.18.2006 no virus found
Microsoft 1.1560 09.19.2006 no virus found
NOD32v2 1.1762 09.19.2006 no virus found
Norman 5.80.02 09.18.2006 no virus found
Panda 9.0.0.4 09.18.2006 no virus found
Sophos 4.09.0 09.19.2006 no virus found
Symantec 8.0 09.19.2006 no virus found
TheHacker 6.0.1.072 09.19.2006 no virus found
UNA 1.83 09.18.2006 no virus found
VBA32 3.11.1 09.19.2006 no virus found
VirusBuster 4.3.7:9 09.18.2006 no virus found

Aditional Information
File size: 14336 bytes
MD5: 1ab834217078af1dcc572b0108e06b31
SHA1: 29b490196fd08e84649d06e71ebfc2f843357a22

Исследование антивирусов 4

Опции темы

Похожие темы

Исследование антивирусов 7

Исследование антивирусов 6

Исследование антивирусов 5

Исследование антивирусов 3

Исследование антивирусов 2

Ваши права в разделе