-
[code][B]a-squared 4.5.0.41 2009.11.12 Trojan-Ransom!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.12 -
[B]AntiVir 7.9.1.65 2009.11.12 TR/Agent.314368[/B]
[B]Antiy-AVL 2.0.3.7 2009.11.12 Trojan/Win32.PogBlock.gen[/B]
Authentium 5.2.0.5 2009.11.12 -
Avast 4.8.1351.0 2009.11.12 -
[B]AVG 8.5.0.425 2009.11.12 SHeur2.BQNF[/B]
BitDefender 7.2 2009.11.12 -
CAT-QuickHeal 10.00 2009.11.12 -
ClamAV 0.94.1 2009.11.12 -
Comodo 2931 2009.11.12 -
[B]DrWeb 5.0.0.12182 2009.11.12 Trojan.Winlock.313[/B]
eSafe 7.0.17.0 2009.11.11 -
eTrust-Vet 35.1.7117 2009.11.12 -
F-Prot 4.5.1.85 2009.11.12 -
F-Secure 9.0.15370.0 2009.11.11 -
[B]Fortinet 3.120.0.0 2009.11.11 W32/PogBlock.DZ!t[/B]r
GData 19 2009.11.12 -
[B]Ikarus T3.1.1.74.0 2009.11.12 Trojan-Ransom[/B]
Jiangmin 11.0.800 2009.11.12 -
K7AntiVirus 7.10.894 2009.11.11 -
[B]Kaspersky 7.0.0.125 2009.11.12 Trojan-Ransom.Win32.PogBlock.dz[/B]
McAfee 5800 2009.11.12 -
[B]McAfee+Artemis 5800 2009.11.12 Artemis!36A90A29EE51
McAfee-GW-Edition 6.8.5 2009.11.12 Heuristic.BehavesLike.Win32.Suspicious.I
[/B]Microsoft 1.5202 2009.11.12 -
[B]NOD32 4600 2009.11.12 Win32/LockScreen.CW
Norman 6.03.02 2009.11.11 W32/Malware.JUJX
nProtect 2009.1.8.0 2009.11.12 Trojan/W32.PogBlock.314368.B
Panda 10.0.2.2 2009.11.12 Trj/CI.A
[/B]PCTools 7.0.3.5 2009.11.12 -
Prevx 3.0 2009.11.12 -
Rising 22.21.03.09 2009.11.12 -
Sophos 4.47.0 2009.11.12 -
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.12 -
TheHacker 6.5.0.2.066 2009.11.11 -
TrendMicro 9.0.0.1003 2009.11.12 -
VBA32 3.12.10.11 2009.11.11 -
ViRobot 2009.11.12.2033 2009.11.12 -
VirusBuster 4.6.5.0 2009.11.12 -[/code]
File size: 314368 bytes
MD5...: 36a90a29ee5179e1ef66d8b84c30ffe6
SHA1..: 099102dea15df9af983f4a7e256403067546229e
SHA256: 3a226a94a47bbbd1cb32cc906a896fd1e091489d09e9a66ba9f46bc590284604
ssdeep: 6144:MhWqgRVlAr3NZysba2TBTl7yAOAkW5pW6ms:MhaQr3NZyspTtl7yPW5
-
File chknt32.exe received on 2009.11.13 04:59:03 (UTC)
[CODE]Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.11.13 -
AhnLab-V3 5.0.0.2 2009.11.12 -
[B]AntiVir 7.9.1.65 2009.11.12 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.13 -
Authentium 5.2.0.5 2009.11.13 -
Avast 4.8.1351.0 2009.11.12 -
AVG 8.5.0.425 2009.11.12 -
BitDefender 7.2 2009.11.13 -
CAT-QuickHeal 10.00 2009.11.12 -
ClamAV 0.94.1 2009.11.12 -
Comodo 2935 2009.11.13 -
DrWeb 5.0.0.12182 2009.11.13 -
eSafe 7.0.17.0 2009.11.12 -
eTrust-Vet 35.1.7118 2009.11.12 -
F-Prot 4.5.1.85 2009.11.12 -
F-Secure 9.0.15370.0 2009.11.11 -
Fortinet 3.120.0.0 2009.11.13 -
GData 19 2009.11.13 -
Ikarus T3.1.1.74.0 2009.11.13 -
[B]Jiangmin 11.0.800 2009.11.12 TrojanSpy.Zbot.srr[/B]
K7AntiVirus 7.10.894 2009.11.11 -
Kaspersky 7.0.0.125 2009.11.13 -
McAfee 5800 2009.11.12 -
McAfee+Artemis 5800 2009.11.12 -
[B]McAfee-GW-Edition 6.8.5 2009.11.12 Trojan.Dropper.Gen[/B]
Microsoft 1.5202 2009.11.12 -
NOD32 4602 2009.11.13 -
Norman 6.03.02 2009.11.11 -
nProtect 2009.1.8.0 2009.11.13 -
Panda 10.0.2.2 2009.11.13 -
PCTools 7.0.3.5 2009.11.13 -
Prevx 3.0 2009.11.13 -
Rising 22.21.04.01 2009.11.13 -
Sophos 4.47.0 2009.11.13 -
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.13 -
TheHacker 6.5.0.2.067 2009.11.12 -
TrendMicro 9.0.0.1003 2009.11.12 -
VBA32 3.12.10.11 2009.11.13 -
ViRobot 2009.11.13.2034 2009.11.13 -
VirusBuster 4.6.5.0 2009.11.12 -[/CODE]
Additional information
File size: 142082 bytes
MD5...: 360f03ee267b52ee1b5b41e5ff65c29e
File svchost.exe received on 2009.11.13 05:02:22 (UTC)
[CODE]Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
GData 19 2009.11.10 -
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee+Artemis 5797 2009.11.09 -
McAfee-GW-Edition 6.8.5 2009.11.10 -
Microsoft 1.5202 2009.11.10 -
NOD32 4592 2009.11.10 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.13 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 -[/CODE]
Additional information
File size: 460800 bytes
MD5...: 0e2325e8a7a2cc4c2d3964de4f6cc748
-
File config.exe received on 2009.11.13 16:39:47 (UTC)
Result: 12/41 (29.27%)
[QUOTE][B]a-squared 4.5.0.41 2009.11.13 Trojan.Win32.Qhost!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.13 -
AntiVir 7.9.1.65 2009.11.13 -
Antiy-AVL 2.0.3.7 2009.11.13 -
Authentium 5.2.0.5 2009.11.13 -
Avast 4.8.1351.0 2009.11.13 -
AVG 8.5.0.425 2009.11.13 -
BitDefender 7.2 2009.11.13 -
CAT-QuickHeal 10.00 2009.11.13 -
ClamAV 0.94.1 2009.11.13 -
[B]Comodo 2943 2009.11.13 Heur.Suspicious[/B]
[B]DrWeb 5.0.0.12182 2009.11.13 Trojan.Hoster.355[/B]
[B]eSafe 7.0.17.0 2009.11.12 Suspicious File[/B]
eTrust-Vet 35.1.7119 2009.11.13 -
F-Prot 4.5.1.85 2009.11.13 -
F-Secure 9.0.15370.0 2009.11.11 -
Fortinet 3.120.0.0 2009.11.13 -
GData 19 2009.11.13 -
[B]Ikarus T3.1.1.74.0 2009.11.13 Trojan.Win32.Qhost[/B]
Jiangmin 11.0.800 2009.11.12 -
K7AntiVirus 7.10.896 2009.11.13 -
[B]Kaspersky 7.0.0.125 2009.11.13 Trojan.BAT.Qhost.gy[/B]
McAfee 5800 2009.11.12 -
[B]McAfee+Artemis 5800 2009.11.12 Artemis!E1D0EFF13118[/B]
[B]McAfee-GW-Edition 6.8.5 2009.11.13 Heuristic.LooksLike.Win32.ModifiedUPX.B[/B]
Microsoft 1.5202 2009.11.13 -
NOD32 4604 2009.11.13 -
Norman 6.03.02 2009.11.13 -
nProtect 2009.1.8.0 2009.11.13 -
[B]Panda 10.0.2.2 2009.11.13 Trj/CI.A[/B]
PCTools 7.0.3.5 2009.11.13 -
Prevx 3.0 2009.11.13 -
[B]Rising 22.21.04.09 2009.11.13 Dropper.Win32.Agent.zrh[/B]
[B]Sophos 4.47.0 2009.11.13 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.13 -
TheHacker 6.5.0.2.067 2009.11.12 -
[B]TrendMicro 9.0.0.1003 2009.11.13 PAK_Generic.001[/B]
VBA32 3.12.10.11 2009.11.13 -
ViRobot 2009.11.13.2035 2009.11.13 -
VirusBuster 4.6.5.0 2009.11.13 -[/QUOTE]
[url]http://www.virustotal.com/analisis/77cc07825f7e0c9588c11e3ea8de9a1ed330b8288701b2c8be42aa03f20a4abb-1258130387[/url]
-
Файло шлётся в письмах с текстовкой
[QUOTE]Dear Microsoft Customer,
Starting 12/11/2009 the ‘Conficker’ worm began infecting Microsoft customers unusually rapidly. Microsoft has been advised by your Internet provider that your network is infected.
To counteract further spread we advise removing the infection using an antispyware program. We are supplying all effected Windows Users with a free system scan in order to clean any files infected by the virus.
Please install attached file to start the scan. The process takes under a minute and will prevent your files from being compromised. We appreciate your prompt cooperation.
Regards,
Microsoft Windows Agent #2 (Hollis)
Microsoft Windows Computer Safety Division[/QUOTE]
[CODE]Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.11.13 -
AhnLab-V3 5.0.0.2 2009.11.13 -
AntiVir 7.9.1.65 2009.11.13 TR/Crypt.ZPACK.Gen
Antiy-AVL 2.0.3.7 2009.11.13 -
Authentium 5.2.0.5 2009.11.13 W32/Trojan3.BNG
Avast 4.8.1351.0 2009.11.13 -
AVG 8.5.0.425 2009.11.13 -
BitDefender 7.2 2009.11.13 -
CAT-QuickHeal 10.00 2009.11.13 (Suspicious) - DNAScan
ClamAV 0.94.1 2009.11.13 -
Comodo 2943 2009.11.13 -
DrWeb 5.0.0.12182 2009.11.13 -
eSafe 7.0.17.0 2009.11.12 Suspicious File
eTrust-Vet 35.1.7119 2009.11.13 -
F-Prot 4.5.1.85 2009.11.13 W32/Trojan3.BNG
F-Secure 9.0.15370.0 2009.11.11 Suspicious:W32/Malware!Online
Fortinet 3.120.0.0 2009.11.13 -
GData 19 2009.11.13 -
Ikarus T3.1.1.74.0 2009.11.13 -
Jiangmin 11.0.800 2009.11.12 -
K7AntiVirus 7.10.896 2009.11.13 -
Kaspersky 7.0.0.125 2009.11.13 -
McAfee 5800 2009.11.12 -
McAfee+Artemis 5800 2009.11.12 Artemis!74500712A6A8
McAfee-GW-Edition 6.8.5 2009.11.13 Trojan.Crypt.ZPACK.Gen
Microsoft 1.5202 2009.11.13 TrojanDownloader:Win32/Cutwail.gen!C
NOD32 4604 2009.11.13 -
Norman 6.03.02 2009.11.13 -
nProtect 2009.1.8.0 2009.11.13 -
Panda 10.0.2.2 2009.11.13 -
PCTools 7.0.3.5 2009.11.13 -
Prevx 3.0 2009.11.13 Medium Risk Malware
Rising 22.21.04.09 2009.11.13 -
Sophos 4.47.0 2009.11.13 Mal/FakeAV-AX
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.13 -
TheHacker 6.5.0.2.067 2009.11.12 -
TrendMicro 9.0.0.1003 2009.11.13 -
VBA32 3.12.10.11 2009.11.13 -
ViRobot 2009.11.13.2035 2009.11.13 -
VirusBuster 4.6.5.0 2009.11.13 -[/CODE]
Additional information
File size: 55296 bytes
MD5 : 74500712a6a8a4a5951b96b56edec45a
SHA1 : d01998acf475bce2c2bad9f87cef122d34749e1d
SHA256: 9a497aab1129e85baed8c101a04159770c81084698b81648d20215a6901ae364
PEInfo: PE Structure information
-
Новое
[url]http://www.virustotal.com/ru/analisis/e6ed4016a88d2dfeb4113553a7a20dda90d832e31aec0422f83be4d4fc7fe86c-1258134499[/url]
[QUOTE]a-squared 4.5.0.41 2009.11.13 -
AhnLab-V3 5.0.0.2 2009.11.13 -
AntiVir 7.9.1.65 2009.11.13 -
Antiy-AVL 2.0.3.7 2009.11.13 -
Authentium 5.2.0.5 2009.11.13 -
Avast 4.8.1351.0 2009.11.13 -
AVG 8.5.0.425 2009.11.13 -
BitDefender 7.2 2009.11.13 -
[B]CAT-QuickHeal 10.00 2009.11.13 TrojanDropper.VB.mre[/B]
[B]ClamAV 0.94.1 2009.11.13 PUA.Packed.ASPack212[/B]
Comodo 2943 2009.11.13 -
DrWeb 5.0.0.12182 2009.11.13 -
[B]eSafe 7.0.17.0 2009.11.12 Suspicious File[/B]
eTrust-Vet 35.1.7119 2009.11.13 -
F-Prot 4.5.1.85 2009.11.13 -
F-Secure 9.0.15370.0 2009.11.11 -
Fortinet 3.120.0.0 2009.11.13 -
GData 19 2009.11.13 -
Ikarus T3.1.1.74.0 2009.11.13 -
Jiangmin 11.0.800 2009.11.12 -
K7AntiVirus 7.10.896 2009.11.13 -
Kaspersky 7.0.0.125 2009.11.13 -
McAfee 5800 2009.11.12 -
[B]McAfee+Artemis 5800 2009.11.12 Artemis!38668580BB61[/B]
[B]McAfee-GW-Edition 6.8.5 2009.11.13 Heuristic.LooksLike.Trojan.Crypt.ZPACK.B[/B]
Microsoft 1.5202 2009.11.13 -
NOD32 4604 2009.11.13 -
Norman 6.03.02 2009.11.13 -
nProtect 2009.1.8.0 2009.11.13 -
Panda 10.0.2.2 2009.11.13 -
PCTools 7.0.3.5 2009.11.13 -
[B]Prevx 3.0 2009.11.13 Medium Risk Malware[/B]
Rising 22.21.04.09 2009.11.13 -
Sophos 4.47.0 2009.11.13 -
[B]Sunbelt 3.2.1858.2 2009.11.12 Trojan.Win32.Generic!BT[/B]
Symantec 1.4.4.12 2009.11.13 -
TheHacker 6.5.0.2.067 2009.11.12 -
[B]TrendMicro 9.0.0.1003 2009.11.13 PAK_Generic.001[/B]
VBA32 3.12.10.11 2009.11.13 -
ViRobot 2009.11.13.2035 2009.11.13 -
VirusBuster 4.6.5.0 2009.11.13 - [/QUOTE]
[url]http://www.virustotal.com/ru/analisis/bf914aeae039025301243e629a6ffd2f108376acddd61190c0ef3b66b96fce89-1258134678[/url]
[QUOTE]a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
[B]BitDefender 7.2 2009.11.10 Gen:Trojan.Heur.bC5@Y2hszUo[/B]
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
[B]F-Secure 9.0.15370.0 2009.11.09 Gen:Trojan.Heur.bC5@Y2hszUo [/B]
Fortinet 3.120.0.0 2009.11.10 -
[B]GData 19 2009.11.10 Gen:Trojan.Heur.bC5@Y2hszUo[/B]
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee+Artemis 5797 2009.11.09 -
McAfee-GW-Edition 6.8.5 2009.11.10 -
Microsoft 1.5202 2009.11.10 -
NOD32 4592 2009.11.10 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.13 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 - [/QUOTE]
-
[url]http://www.virustotal.com/ru/analisis/ecb9a45ec83eeceff4b71e53e6b0824348fc4b8d0361c80298edce1fa98daf6f-1258229217[/url]
[QUOTE]a-squared 4.5.0.41 2009.11.14 -
AhnLab-V3 5.0.0.2 2009.11.13 -
AntiVir 7.9.1.65 2009.11.13 -
Antiy-AVL 2.0.3.7 2009.11.13 -
Authentium 5.2.0.5 2009.11.14 -
Avast 4.8.1351.0 2009.11.14 -
AVG 8.5.0.425 2009.11.14 -
BitDefender 7.2 2009.11.14 -
CAT-QuickHeal 10.00 2009.11.13 -
ClamAV 0.94.1 2009.11.14 -
Comodo 2955 2009.11.14 -
[B]DrWeb 5.0.0.12182 2009.11.14 DLOADER.Trojan[/B]
eSafe 7.0.17.0 2009.11.12 -
eTrust-Vet 35.1.7121 2009.11.14 -
F-Prot 4.5.1.85 2009.11.14 -
F-Secure 9.0.15370.0 2009.11.11 -
Fortinet 3.120.0.0 2009.11.14 -
GData 19 2009.11.14 -
Ikarus T3.1.1.74.0 2009.11.14 -
[B]Jiangmin 11.0.800 2009.11.12 Trojan/Scar.dar[/B]
K7AntiVirus 7.10.896 2009.11.13 -
Kaspersky 7.0.0.125 2009.11.14 -
McAfee 5802 2009.11.14 -
McAfee+Artemis 5802 2009.11.14 -
McAfee-GW-Edition 6.8.5 2009.11.14 -
Microsoft 1.5202 2009.11.14 -
NOD32 4608 2009.11.14 -
Norman 6.03.02 2009.11.14 -
nProtect 2009.1.8.0 2009.11.14 -
Panda 10.0.2.2 2009.11.14 -
PCTools 7.0.3.5 2009.11.13 -
Prevx 3.0 2009.11.14 -
Rising 22.21.05.04 2009.11.14 -
[B]Sophos 4.47.0 2009.11.14 Sus/Behav-1018[/B]
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.14 -
TheHacker 6.5.0.2.070 2009.11.14 -
[B]TrendMicro 9.0.0.1003 2009.11.14 Cryp_Xin2 [/B]
VBA32 3.12.10.11 2009.11.13 -
ViRobot 2009.11.14.2037 2009.11.14 -
VirusBuster 4.6.5.0 2009.11[/QUOTE]
-
Файл Book_1019.exe получен 2009.11.15 15:46:55 (UTC)
Текущий статус: закончено
Результат: 6/41 (14.64%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.10 Trojan-Downloader.Adload!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.10 ADSPY/AdSpy.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
[B]ClamAV 0.94.1 2009.11.10 PUA.Packed.ASPack212[/B]
Comodo 2905 2009.11.10 -
[B]DrWeb 5.0.0.12182 2009.11.10 Adware.FieryAds.22[/B]
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
GData 19 2009.11.10 -
[B]Ikarus T3.1.1.74.0 2009.11.10 Trojan-Downloader.Adload[/B]
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee+Artemis 5797 2009.11.09 -
[B]McAfee-GW-Edition 6.8.5 2009.11.10 Ad-Spyware.AdSpy.Gen[/B]
Microsoft 1.5202 2009.11.10 -
NOD32 4592 2009.11.10 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.15 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 -[/QUOTE]
Дополнительная информация
File size: 2840636 bytes
MD5...: c242644ab2195e21c4e12db26d179791
SHA1..: 9a389131e813e78c0ca2ff231536e63e10d524b6
SHA256: 9d03bc6ab21defa3a08321ed3a6a72e7d6f45ee4252c4cbad2317683e14b7553
ssdeep: 49152:jvuniWVf68YjB6MhLXNA3onW9FtdP2ZQlWnn4Br1i8qhzRxYnVSvmYE8ej
jnMe6:S/Vf6RB6wLXNA3o8Fr+OW4pkhYnYvmqH
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/9d03bc6ab21defa3a08321ed3a6a72e7d6f45ee4252c4cbad2317683e14b7553-1258300015[/url]
-
Файл opdux.exe получен 2009.11.16 12:15:42 (UTC)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.16 Trojan.Win32.Inhoo!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.13 -
[B]AntiVir 7.9.1.65 2009.11.16 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.16 -
Authentium 5.2.0.5 2009.11.15 -
Avast 4.8.1351.0 2009.11.16 -
AVG 8.5.0.425 2009.11.16 -
BitDefender 7.2 2009.11.16 -
CAT-QuickHeal 10.00 2009.11.16 -
ClamAV 0.94.1 2009.11.15 -
Comodo 2957 2009.11.15 -
DrWeb 5.0.0.12182 2009.11.16 -
eSafe 7.0.17.0 2009.11.16 -
eTrust-Vet 35.1.7122 2009.11.16 -
F-Prot 4.5.1.85 2009.11.15 -
F-Secure 9.0.15370.0 2009.11.11 -
Fortinet 3.120.0.0 2009.11.16 -
GData 19 2009.11.16 -
[B]Ikarus T3.1.1.74.0 2009.11.16 Trojan.Win32.Inhoo[/B]
Jiangmin 11.0.800 2009.11.16 -
K7AntiVirus 7.10.896 2009.11.13 -
Kaspersky 7.0.0.125 2009.11.16 -
McAfee 5803 2009.11.15 -
[B]McAfee+Artemis 5803 2009.11.15 Artemis!45861A208020[/B]
[B]McAfee-GW-Edition 6.8.5 2009.11.16 Heuristic.LooksLike.Win32.SuspiciousPE.B[/B]
Microsoft 1.5202 2009.11.16 -
NOD32 4611 2009.11.16 -
[B]Norman 6.03.02 2009.11.16 OnLineGames.KGCC
nProtect 2009.1.8.0 2009.11.16 Trojan-PWS/W32.WebGame.116522[/B]
Panda 10.0.2.2 2009.11.15 -
PCTools 7.0.3.5 2009.11.16 -
[B]Prevx 3.0 2009.11.16 High Risk Cloaked Malware[/B]
Rising 22.22.00.08 2009.11.16 -
[B]Sophos 4.47.0 2009.11.16 Mal/Taterf-A
Sunbelt 3.2.1858.2 2009.11.12 BehavesLike.Win32.Malware (v)[/B]
Symantec 1.4.4.12 2009.11.16 -
TheHacker 6.5.0.2.070 2009.11.14 -
TrendMicro 9.0.0.1003 2009.11.16 -
[B]VBA32 3.12.10.11 2009.11.15 Trojan-PSW.Win32.OnlineGames.3[/B]
ViRobot 2009.11.16.2039 2009.11.16 -
VirusBuster 4.6.5.0 2009.11.15 -
Дополнительная информация
File size: 116522 bytes
MD5...: 45861a208020a1d229b0edd08d0e0728
SHA1..: 0816185e69fdc55028436e6ad61f5a0886af544b
SHA256: e3ff27178fa318e0a3d02a72f3e0c57b340e4ac15d6a3ee92cd58ba75104d313
ssdeep: 3072:pSI68HHJiSK8DxrAZfWtNvnDFslJ7gjZPFZLWA:pUK9rDxsZfWDDFs/7CdZ<br>
PEiD..: -
PEInfo: PE Structure information<br><br>( base data )<br>entrypointaddress.: 0x10df<br>timedatestamp.....: 0x4ae9205d (Thu Oct 29 04:55:57 2009)<br>machinetype.......: 0x14c (I386)<br><br>( 6 sections )<br>name viradd virsiz rawdsiz ntrpy md5<br>.text 0x1000 0x1e000 0x69a 7.85 161cdb2fe51242369d2e1ad76108af32<br>.data 0x1f000 0x1a000 0x19e00 7.93 8a6df4b740fbc2532d922bfabd195250<br>.rsrc 0x39000 0x2000 0x1696 0.73 4d2293991318c4674c148474722c3b75<br>.reloc 0x3b000 0x4000 0x52a 0.08 4d4e2459bb10d0de2d080a7cba5a8524<br>vnpsg 0x3f000 0x1000 0x69a 0.00 d41d8cd98f00b204e9800998ecf8427e<br> 0x40000 0x3000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br><br>( 1 imports ) <br>> KERNEL32.DLL: GetStartupInfoA, FlushFileBuffers, FlushInstructionCache, GetComputerNameExA, GetCommandLineA, GetModuleHandleA, LoadLibraryA, ExitProcess, GetCurrentProcessId, IsBadReadPtr<br><br>( 0 exports ) <br>
RDS...: NSRL Reference Data Set<br>-
pdfid.: -
trid..: Win32 Executable Generic (68.0%)<br>Generic Win/DOS Executable (15.9%)<br>DOS Executable Generic (15.9%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
<a href='http://info.prevx.com/aboutprogramtext.asp?PX5=CF8A698C2ADF9E45C7D001C9F1596100BAD12C11' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=CF8A698C2ADF9E45C7D001C9F1596100BAD12C11</a>
sigcheck:<br>publisher....: n/a<br>copyright....: n/a<br>product......: n/a<br>description..: n/a<br>original name: n/a<br>internal name: n/a<br>file version.: n/a<br>comments.....: n/a<br>signers......: -<br>signing date.: -<br>verified.....: Unsigned<br>
[/CODE]
-
Судя по строкам в коде, некий "СМС-шпион от Martin Pesch"
[CODE]Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.11.16 -
AhnLab-V3 5.0.0.2 2009.11.16 -
AntiVir 7.9.1.65 2009.11.16 -
Antiy-AVL 2.0.3.7 2009.11.16 -
Authentium 5.2.0.5 2009.11.16 -
Avast 4.8.1351.0 2009.11.16 -
AVG 8.5.0.425 2009.11.16 -
BitDefender 7.2 2009.11.16 -
CAT-QuickHeal 10.00 2009.11.16 -
ClamAV 0.94.1 2009.11.16 -
Comodo 2958 2009.11.16 -
DrWeb 5.0.0.12182 2009.11.16 -
eSafe 7.0.17.0 2009.11.16 -
eTrust-Vet 35.1.7123 2009.11.16 -
F-Prot 4.5.1.85 2009.11.16 -
F-Secure 9.0.15370.0 2009.11.11 -
Fortinet 3.120.0.0 2009.11.16 -
GData 19 2009.11.16 -
Ikarus T3.1.1.74.0 2009.11.16 -
Jiangmin 11.0.800 2009.11.16 -
K7AntiVirus 7.10.897 2009.11.16 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.11.16 -
McAfee 5804 2009.11.16 -
McAfee+Artemis 5804 2009.11.16 -
McAfee-GW-Edition 6.8.5 2009.11.16 -
Microsoft 1.5202 2009.11.16 -
NOD32 4613 2009.11.16 -
Norman 6.03.02 2009.11.16 W32/Banker.C!genr
nProtect 2009.1.8.0 2009.11.16 -
Panda 10.0.2.2 2009.11.16 -
PCTools 7.0.3.5 2009.11.16 -
Prevx 3.0 2009.11.16 Medium Risk Malware
Rising 22.22.00.08 2009.11.16 -
Sophos 4.47.0 2009.11.16 -
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.16 -
TheHacker 6.5.0.2.071 2009.11.16 Trojan/Buzus.bjcf
TrendMicro 9.0.0.1003 2009.11.16 -
VBA32 3.12.10.11 2009.11.15 -
ViRobot 2009.11.16.2039 2009.11.16 Trojan.Win32.Agent.2558416
VirusBuster 4.6.5.0 2009.11.16 -[/CODE]
-
Пришло по почте
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.17 Email-Worm.Win32.Alcaul!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.16 -
AntiVir 7.9.1.65 2009.11.17 -
Antiy-AVL 2.0.3.7 2009.11.17 -
Authentium 5.2.0.5 2009.11.17 -
Avast 4.8.1351.0 2009.11.16 -
AVG 8.5.0.425 2009.11.17 -
BitDefender 7.2 2009.11.17 -
[B]CAT-QuickHeal 10.00 2009.11.17 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.11.17 -
Comodo 2964 2009.11.17 -
DrWeb 5.0.0.12182 2009.11.17 -
[B]eSafe 7.0.17.0 2009.11.16 Win32.Email.Worm.alc[/B]
eTrust-Vet 35.1.7124 2009.11.17 -
F-Prot 4.5.1.85 2009.11.16 -
F-Secure 9.0.15370.0 2009.11.17 -
Fortinet 3.120.0.0 2009.11.16 -
GData 19 2009.11.17 -
[B]Ikarus T3.1.1.74.0 2009.11.17 Email-Worm.Win32.Alcaul[/B]
Jiangmin 11.0.800 2009.11.17 -
K7AntiVirus 7.10.897 2009.11.16 -
Kaspersky 7.0.0.125 2009.11.17 -
McAfee 5804 2009.11.16 -
McAfee+Artemis 5804 2009.11.16 -
McAfee-GW-Edition 6.8.5 2009.11.17 -
Microsoft 1.5202 2009.11.17 -
NOD32 4613 2009.11.16 -
Norman 6.03.02 2009.11.17 -
nProtect 2009.1.8.0 2009.11.17 -
Panda 10.0.2.2 2009.11.16 -
PCTools 7.0.3.5 2009.11.17 -
Prevx 3.0 2009.11.17 -
Rising 22.22.01.06 2009.11.17 -
Sophos 4.47.0 2009.11.17 -
Sunbelt 3.2.1858.2 2009.11.12 -
Symantec 1.4.4.12 2009.11.17 -
TheHacker 6.5.0.2.071 2009.11.16 -
TrendMicro 9.0.0.1003 2009.11.17 -
VBA32 3.12.10.11 2009.11.15 -
ViRobot 2009.11.17.2041 2009.11.17 -
VirusBuster 4.6.5.0 2009.11.16 -
Дополнительная информация
File size: 321252 bytes
MD5 : 9495af761e931137c652aa23edfdb8b1
SHA1 : a8834f74c885c899290b046a986f97ab4ffb2ace
SHA256: bc7b5102b4199b2ea4d1da14c719200122d46c159143e8c3e89026479ba9811b
PEInfo: PE Structure information<br> <br> ( base data )<br> entrypointaddress.: 0xA29A0<br> timedatestamp.....: 0x3EC86C8E (Mon May 19 07:33:02 2003)<br> machinetype.......: 0x14C (Intel I386)<br> <br> ( 3 sections )<br> name viradd virsiz rawdsiz ntrpy md5<br> code 0x1000 0x67000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br>text 0x68000 0x3B000 0x3AC00 7.92 d02a24ba5d833b9df533741aeaf5597d<br>.rsrc 0xA3000 0x7000 0x6A00 4.18 a691aeee67ecb4bd770132f10e1caa78<br> <br> ( 9 imports )<br> <br>> advapi32.dll: RegCloseKey<br>> comctl32.dll: -<br>> comdlg32.dll: GetOpenFileNameA<br>> gdi32.dll: PatBlt<br>> kernel32.dll: LoadLibraryA, GetProcAddress, ExitProcess<br>> ole32.dll: DoDragDrop<br>> oleaut32.dll: -<br>> shlwapi.dll: PathIsURLA<br>> user32.dll: GetDC<br> <br> ( 0 exports )<br>
TrID : File type identification<br>56.9% (.EXE) Win32 EXE Yoda's Crypter (26569/9/4)<br>18.2% (.EXE) Win32 Executable Generic (8527/13/3)<br>16.2% (.DLL) Win32 Dynamic Link Library (generic) (7583/30/2)<br>4.2% (.EXE) Generic Win/DOS Executable (2002/3)<br>4.2% (.EXE) DOS Executable Generic (2000/1)
ssdeep: 6144:HibqIVqfnbpbSdebCVIbY1/JaXxky4BPdlz05pL7ITJcm5DXN2MsQRjx:HIqIWnbhY2Y1/A14B7CpLSN2g9x
PEiD : UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
packers (Kaspersky): UPX
packers (F-Prot): UPX
RDS : NSRL Reference Data Set<br>-[/CODE]
-
File hot.html received on 2009.11.18 15:59:35 (UTC)
Result: 8/41 (19.52%)
[QUOTE]a-squared 4.5.0.41 2009.11.18 Trojan-Downloader.JS.Shadraem!IK
AhnLab-V3 5.0.0.2 2009.11.18 -
AntiVir 7.9.1.70 2009.11.18 HTML/Crypted.Gen
Antiy-AVL 2.0.3.7 2009.11.18 -
Authentium 5.2.0.5 2009.11.18 -
Avast 4.8.1351.0 2009.11.18 HTML:IFrame-KP
AVG 8.5.0.425 2009.11.18 -
BitDefender 7.2 2009.11.18 -
CAT-QuickHeal 10.00 2009.11.17 -
ClamAV 0.94.1 2009.11.18 -
Comodo 2979 2009.11.18 -
DrWeb 5.0.0.12182 2009.11.18 -
eSafe 7.0.17.0 2009.11.18 -
eTrust-Vet 35.1.7127 2009.11.18 -
F-Prot 4.5.1.85 2009.11.17 -
F-Secure 9.0.15370.0 2009.11.17 -
Fortinet 3.120.0.0 2009.11.18 -
GData 19 2009.11.18 HTML:IFrame-KP
Ikarus T3.1.1.74.0 2009.11.18 Trojan-Downloader.JS.Shadraem
Jiangmin 11.0.800 2009.11.18 -
K7AntiVirus 7.10.899 2009.11.18 -
Kaspersky 7.0.0.125 2009.11.18 Trojan-Downloader.JS.Shadraem.a
McAfee 5805 2009.11.17 -
McAfee+Artemis 5805 2009.11.17 -
McAfee-GW-Edition 6.8.5 2009.11.18 Heuristic.Script.Crypted
Microsoft 1.5202 2009.11.18 -
NOD32 4618 2009.11.18 -
Norman 6.03.02 2009.11.18 -
nProtect 2009.1.8.0 2009.11.18 -
Panda 10.0.2.2 2009.11.18 -
PCTools 7.0.3.5 2009.11.18 -
Prevx 3.0 2009.11.18 -
Rising 22.22.02.08 2009.11.18 -
Sophos 4.47.0 2009.11.18 Mal/ObfJS-CB
Sunbelt 3.2.1858.2 2009.11.17 -
Symantec 1.4.4.12 2009.11.18 -
TheHacker 6.5.0.2.072 2009.11.18 -
TrendMicro 9.0.0.1003 2009.11.18 -
VBA32 3.12.12.0 2009.11.18 -
ViRobot 2009.11.18.2043 2009.11.18 -
VirusBuster 5.0.21.0 2009.11.17 - [/QUOTE]
[url]http://www.virustotal.com/analisis/9cfcd351b3aed8519cecf5ba78001ea8d783eb76c8bc4d1ae4bd75cf5006cf7a-1258559975[/url]
-
File userlib.dll received on 2009.11.19 16:18:09 (UTC)
Result: 3/41 (7.32%)
[CODE]Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.11.19 -
AhnLab-V3 5.0.0.2 2009.11.19 -
AntiVir 7.9.1.72 2009.11.19 -
Antiy-AVL 2.0.3.7 2009.11.19 -
Authentium 5.2.0.5 2009.11.19 -
Avast 4.8.1351.0 2009.11.19 -
AVG 8.5.0.425 2009.11.19 -
BitDefender 7.2 2009.11.19 -
CAT-QuickHeal 10.00 2009.11.19 -
ClamAV 0.94.1 2009.11.19 -
Comodo 2979 2009.11.18 -
[B]DrWeb 5.0.0.12182 2009.11.19 Trojan.Winlock.341[/B]
eSafe 7.0.17.0 2009.11.19 -
eTrust-Vet 35.1.7130 2009.11.19 -
F-Prot 4.5.1.85 2009.11.19 -
F-Secure 9.0.15370.0 2009.11.17 -
Fortinet 3.120.0.0 2009.11.19 -
GData 19 2009.11.19 -
Ikarus T3.1.1.74.0 2009.11.19 -
Jiangmin 11.0.800 2009.11.19 -
[B]K7AntiVirus 7.10.900 2009.11.19 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.11.19 -
McAfee 5806 2009.11.18 -
McAfee+Artemis 5806 2009.11.18 -
McAfee-GW-Edition 6.8.5 2009.11.19 -
Microsoft 1.5302 2009.11.19 -
[B]NOD32 4622 2009.11.19 Win32/LockScreen.CZ[/B]
Norman 6.03.02 2009.11.19 -
nProtect 2009.1.8.0 2009.11.19 -
Panda 10.0.2.2 2009.11.18 -
PCTools 7.0.3.5 2009.11.19 -
Prevx 3.0 2009.11.19 -
Rising 22.22.03.09 2009.11.19 -
Sophos 4.47.0 2009.11.19 -
Sunbelt 3.2.1858.2 2009.11.19 -
Symantec 1.4.4.12 2009.11.19 -
TheHacker 6.5.0.2.073 2009.11.18 -
TrendMicro 9.0.0.1003 2009.11.19 -
VBA32 3.12.12.0 2009.11.19 -
ViRobot 2009.11.19.2045 2009.11.19 -
VirusBuster 5.0.21.0 2009.11.19 -[/CODE]
Additional information
File size: 114688 bytes
MD5...: c06063a7028d3b68df9b295fc56cdfc8
SHA1..: aed50512acf6ce6816e95f7892cd50fe51ca88e7
SHA256: a9d095bd1b6b25ea83483c71fcb650390929bd8a567a12f9c650303980dd6d1b
ssdeep: 1536:EEwtiCTKB56FSRxa0kGU7c+gV0Up33ZNgk8VSlpVS2tkB:ofK36FSuXKNMV
sV3tk
PEiD..: -
File pno0001.exe received on 2009.11.19 16:29:08 (UTC)
Result: 14/41 (34.15%)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.5.0.41 2009.11.19 Trojan.Win32.Pakes!A2
AhnLab-V3 5.0.0.2 2009.11.19 Win-Trojan/Pakes.97280[/B]
AntiVir 7.9.1.72 2009.11.19 -
Antiy-AVL 2.0.3.7 2009.11.19 -
Authentium 5.2.0.5 2009.11.19 -
Avast 4.8.1351.0 2009.11.19 -
AVG 8.5.0.425 2009.11.19 -
BitDefender 7.2 2009.11.19 -
[B]CAT-QuickHeal 10.00 2009.11.19 Trojan.Agent.ATV[/B]
ClamAV 0.94.1 2009.11.19 -
[B]Comodo 2979 2009.11.18 TrojWare.Win32.Trojan.Agent.~HDM[/B]
DrWeb 5.0.0.12182 2009.11.19 -
[B]eSafe 7.0.17.0 2009.11.19 Win32.TRCrypt.XPACK[/B]
eTrust-Vet 35.1.7130 2009.11.19 -
F-Prot 4.5.1.85 2009.11.19 -
[B]F-Secure 9.0.15370.0 2009.11.17 Suspicious:W32/Malware!Gemini[/B]
Fortinet 3.120.0.0 2009.11.19 -
GData 19 2009.11.19 -
Ikarus T3.1.1.74.0 2009.11.19 -
Jiangmin 11.0.800 2009.11.19 -
[B]K7AntiVirus 7.10.900 2009.11.19 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.11.19 -
[B]McAfee 5806 2009.11.18 potentially unwanted program Kkrunchy Packed
McAfee+Artemis 5806 2009.11.18 potentially unwanted program Kkrunchy Packed
McAfee-GW-Edition 6.8.5 2009.11.19 Heuristic.LooksLike.Win32.Dropper.B[/B]
Microsoft 1.5302 2009.11.19 -
NOD32 4622 2009.11.19 -
Norman 6.03.02 2009.11.19 -
nProtect 2009.1.8.0 2009.11.19 -
Panda 10.0.2.2 2009.11.18 -
PCTools 7.0.3.5 2009.11.19 -
Prevx 3.0 2009.11.19 -
[B]Rising 22.22.03.09 2009.11.19 Packer.Win32.Agent.GEN[/B]
Sophos 4.47.0 2009.11.19 -
[B]Sunbelt 3.2.1858.2 2009.11.19 Trojan.Win32.Pakes[/B]
Symantec 1.4.4.12 2009.11.19 -
[B]TheHacker 6.5.0.2.073 2009.11.18 Trojan/Pakes[/B]
TrendMicro 9.0.0.1003 2009.11.19 -
VBA32 3.12.12.0 2009.11.19 -
[B]ViRobot 2009.11.19.2045 2009.11.19 Spyware.Pakes.97280[/B]
VirusBuster 5.0.21.0 2009.11.19 -[/CODE]
Additional information
File size: 97280 bytes
MD5...: 0630f5f61bbd95dd28c2558c7092bc07
SHA1..: 29413afbc3a5b5fb03de428a546235559e3170b5
SHA256: ac2192b740c57125067a29d2e0ea6d95b222543398188c5f67bbf01157622685
ssdeep: 1536:1Y0Fv5UEX+k/uR61CxyT/k4ce044gWO9tCFkKE/K/plMCqisOARp6+RyhWL
fh:dFv5UEC6WJje044dytCFlqK/7MCsOAxD
PEiD..: -
PEInfo: PE Structure information
-
File Supernatural_S05E10_Abandon_All_H received on 2009.11.20 10:19:02 (UTC)
Result: 12/41 (29.27%)
[QUOTE][B]a-squared 4.5.0.41 2009.11.20 Riskware.Win32.Vbinder!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.19 -
AntiVir 7.9.1.72 2009.11.20 -
Antiy-AVL 2.0.3.7 2009.11.20 -
Authentium 5.2.0.5 2009.11.19 -
Avast 4.8.1351.0 2009.11.20 -
AVG 8.5.0.425 2009.11.20 -
[B]BitDefender 7.2 2009.11.20 Gen:Trojan.Heur.hm0@dfocoJfi[/B]
CAT-QuickHeal 10.00 2009.11.20 -
ClamAV 0.94.1 2009.11.20 -
Comodo 2983 2009.11.19 -
DrWeb 5.0.0.12182 2009.11.20 -
eSafe 7.0.17.0 2009.11.19 -
[B]eTrust-Vet 35.1.7132 2009.11.20 Win32/VBInject!generic[/B]
F-Prot 4.5.1.85 2009.11.19 -
[B]F-Secure 9.0.15370.0 2009.11.20 Packed:W32/Vbinder.gen!M[/B]
Fortinet 3.120.0.0 2009.11.20 -
[B]GData 19 2009.11.20 Gen:Trojan.Heur.hm0@dfocoJfi[/B]
[B]Ikarus T3.1.1.74.0 2009.11.20 VirTool.Win32.Vbinder[/B]
Jiangmin 11.0.800 2009.11.20 -
K7AntiVirus 7.10.900 2009.11.19 -
Kaspersky 7.0.0.125 2009.11.20 -
McAfee 5807 2009.11.19 -
[B]McAfee+Artemis 5807 2009.11.19 Artemis!4DA16394F226[/B]
McAfee-GW-Edition 6.8.5 2009.11.20 -
[B]Microsoft 1.5302 2009.11.20 VirTool:Win32/Vbinder.gen!GL[/B]
NOD32 4624 2009.11.20 -
[B]Norman 6.03.02 2009.11.20 W32/Obfuscated.C!genr[/B]
nProtect 2009.1.8.0 2009.11.20 -
[B]Panda 10.0.2.2 2009.11.20 Suspicious file[/B]
PCTools 7.0.3.5 2009.11.20 -
[B]Prevx 3.0 2009.11.20 Medium Risk Malware[/B]
Rising 22.22.04.04 2009.11.20 -
[B]Sophos 4.47.0 2009.11.20 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.11.19 -
Symantec 1.4.4.12 2009.11.20 -
TheHacker 6.5.0.2.074 2009.11.19 -
TrendMicro 9.0.0.1003 2009.11.20 -
VBA32 3.12.12.0 2009.11.20 -
ViRobot 2009.11.20.2047 2009.11.20 -
VirusBuster 5.0.21.0 2009.11.19 -[/QUOTE]
[url]http://www.virustotal.com/analisis/d11810fb0dab8831f27417a1ea30eeaf763512ee2ca6b52d1ab28f39ee99b671-1258712342[/url]
-
File VKMaster.exe received on 2009.11.25 06:06:50 (UTC)
Result: 10/41 (24.4%)
[QUOTE][B]a-squared 4.5.0.43 2009.11.25 Trojan.Win32.VkHost!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.24 -
AntiVir 7.9.1.70 2009.11.24 -
[B]Antiy-AVL 2.0.3.7 2009.11.24 Trojan/Win32.VkHost[/B]
Authentium 5.2.0.5 2009.11.24 -
Avast 4.8.1351.0 2009.11.24 -
AVG 8.5.0.425 2009.11.24 -
BitDefender 7.2 2009.11.25 -
CAT-QuickHeal 10.00 2009.11.25 -
ClamAV 0.94.1 2009.11.25 -
[B]Comodo 3026 2009.11.25 Heur.Suspicious[/B]
DrWeb 5.0.0.12182 2009.11.25 -
eSafe 7.0.17.0 2009.11.24 -
eTrust-Vet 35.1.7140 2009.11.24 -
F-Prot 4.5.1.85 2009.11.24 -
F-Secure 9.0.15370.0 2009.11.24 -
Fortinet 4.0.14.0 2009.11.24 -
GData 19 2009.11.25 -
[B]Ikarus T3.1.1.74.0 2009.11.25 Trojan.Win32.VkHost[/B]
[B]Jiangmin 11.0.800 2009.11.24 Trojan/StartPage.bim[/B]
K7AntiVirus 7.10.903 2009.11.23 -
[B]Kaspersky 7.0.0.125 2009.11.25 Trojan.Win32.VkHost.ej[/B]
McAfee 5812 2009.11.24 -
[B]McAfee+Artemis 5812 2009.11.24 Artemis!4918AE2ACCD8[/B]
McAfee-GW-Edition 6.8.5 2009.11.24 -
Microsoft 1.5302 2009.11.24 -
NOD32 4634 2009.11.24 -
Norman 6.03.02 2009.11.24 -
nProtect 2009.1.8.0 2009.11.24 -
[B]Panda 10.0.2.2 2009.11.24 Suspicious file[/B]
PCTools 7.0.3.5 2009.11.25 -
[B]Prevx 3.0 2009.11.25 High Risk Cloaked Malware[/B]
Rising 22.23.02.03 2009.11.25 -
Sophos 4.47.0 2009.11.25 -
Sunbelt 3.2.1858.2 2009.11.25 -
Symantec 1.4.4.12 2009.11.25 -
TheHacker 6.5.0.2.076 2009.11.23 -
TrendMicro 9.0.0.1003 2009.11.25 -
[B]VBA32 3.12.12.0 2009.11.25 Trojan.Win32.VkHost.vmn[/B]
ViRobot 2009.11.25.2052 2009.11.25 -
VirusBuster 5.0.21.0 2009.11.24 -[/QUOTE]
[url]http://www.virustotal.com/analisis/0fa7e74da866a4361a55d276960bdd44dfb54dc82fc1c28c10de5288bc466c3e-1259129210[/url]
-
Файл js1.js получен 2009.11.26 00:12:04 (UTC)
Текущий статус: закончено
Результат: 4/41 (9.76%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.11.25 -
AhnLab-V3 5.0.0.2 2009.11.25 -
[B]AntiVir 7.9.1.78 2009.11.25 JS/iFrame.ZP[/B]
Antiy-AVL 2.0.3.7 2009.11.25 -
Authentium 5.2.0.5 2009.11.25 -
[B]Avast 4.8.1351.0 2009.11.25 HTML:Iframe-inf[/B]
AVG 8.5.0.425 2009.11.25 -
BitDefender 7.2 2009.11.26 -
CAT-QuickHeal 10.00 2009.11.25 -
ClamAV 0.94.1 2009.11.25 -
Comodo 3036 2009.11.25 -
DrWeb 5.0.0.12182 2009.11.25 -
eSafe 7.0.17.0 2009.11.24 -
eTrust-Vet 35.1.7142 2009.11.25 -
F-Prot 4.5.1.85 2009.11.25 -
F-Secure 9.0.15370.0 2009.11.24 -
Fortinet 4.0.14.0 2009.11.25 -
[B]GData 19 2009.11.25 HTML:Iframe-inf[/B]
Ikarus T3.1.1.74.0 2009.11.25 -
Jiangmin 11.0.800 2009.11.25 -
K7AntiVirus 7.10.905 2009.11.25 -
Kaspersky 7.0.0.125 2009.11.25 -
McAfee 5813 2009.11.25 -
McAfee+Artemis 5813 2009.11.25 -
[B]McAfee-GW-Edition 6.8.5 2009.11.25 Script.iFrame.ZP[/B]
Microsoft 1.5302 2009.11.25 -
NOD32 4637 2009.11.25 -
Norman 6.03.02 2009.11.25 -
nProtect 2009.1.8.0 2009.11.25 -
Panda 10.0.2.2 2009.11.25 -
PCTools 7.0.3.5 2009.11.26 -
Prevx 3.0 2009.11.26 -
Rising 22.23.02.09 2009.11.25 -
Sophos 4.47.0 2009.11.26 -
Sunbelt 3.2.1858.2 2009.11.26 -
Symantec 1.4.4.12 2009.11.26 -
TheHacker 6.5.0.2.078 2009.11.25 -
TrendMicro 9.100.0.1001 2009.11.25 -
VBA32 3.12.12.0 2009.11.25 -
ViRobot 2009.11.25.2053 2009.11.25 -
VirusBuster 5.0.21.0 2009.11.25 -[/QUOTE]
Дополнительная информация
File size: 464 bytes
MD5 : c8d70b689752d07fb6b4129960565ea9
SHA1 : 54900c914e777bdfc465d28955979eddd539ef7c
SHA256: 73b0a813fab7c0f758e346994db022da4b2bfe7f7b81f21f6987c2a477398d02
TrID : File type identification
file seems to be plain text/ASCII (0.0%)
ssdeep: 12:SFBt5PBLU5M5vQnDzLMXFF91I193MLDIqJmWJcTrVMbu:SFBt5FU5CvmDWFF0XkD3SHVMq
PEiD : -
RDS : NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/73b0a813fab7c0f758e346994db022da4b2bfe7f7b81f21f6987c2a477398d02-1259194324[/url]
***
Файл js2.js получен 2009.11.26 00:20:22 (UTC)
Текущий статус: закончено
Результат: 1/41 (2.44%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.11.25 -
AhnLab-V3 5.0.0.2 2009.11.25 -
AntiVir 7.9.1.78 2009.11.25 -
Antiy-AVL 2.0.3.7 2009.11.25 -
Authentium 5.2.0.5 2009.11.25 -
Avast 4.8.1351.0 2009.11.25 -
AVG 8.5.0.425 2009.11.25 -
BitDefender 7.2 2009.11.26 -
CAT-QuickHeal 10.00 2009.11.25 -
ClamAV 0.94.1 2009.11.25 -
Comodo 3037 2009.11.26 -
DrWeb 5.0.0.12182 2009.11.25 -
eSafe 7.0.17.0 2009.11.24 -
eTrust-Vet 35.1.7142 2009.11.25 -
F-Prot 4.5.1.85 2009.11.25 -
F-Secure 9.0.15370.0 2009.11.24 -
Fortinet 4.0.14.0 2009.11.25 -
GData 19 2009.11.26 -
Ikarus T3.1.1.74.0 2009.11.25 -
Jiangmin 11.0.800 2009.11.25 -
K7AntiVirus 7.10.905 2009.11.25 -
[B]Kaspersky 7.0.0.125 2009.11.26 Trojan-Downloader.JS.Agent.etc[/B]
McAfee 5813 2009.11.25 -
McAfee+Artemis 5813 2009.11.25 -
McAfee-GW-Edition 6.8.5 2009.11.26 -
Microsoft 1.5302 2009.11.25 -
NOD32 4637 2009.11.25 -
Norman 6.03.02 2009.11.25 -
nProtect 2009.1.8.0 2009.11.25 -
Panda 10.0.2.2 2009.11.25 -
PCTools 7.0.3.5 2009.11.26 -
Prevx 3.0 2009.11.26 -
Rising 22.23.02.09 2009.11.25 -
Sophos 4.47.0 2009.11.26 -
Sunbelt 3.2.1858.2 2009.11.26 -
Symantec 1.4.4.12 2009.11.26 -
TheHacker 6.5.0.2.078 2009.11.25 -
TrendMicro 9.100.0.1001 2009.11.25 -
VBA32 3.12.12.0 2009.11.25 -
ViRobot 2009.11.25.2053 2009.11.25 -
VirusBuster 5.0.21.0 2009.11.25 -[/QUOTE]
Дополнительная информация
File size: 972 bytes
MD5...: f93215e92417e29ec5be1f246399678d
SHA1..: d3a576835a39c82a2813532abc7dca8c27889c32
SHA256: 42fe4ef2a7a270c04bb93d136d37041d9d2fb4e92e8f26aa7f9c11eed46b5f07
ssdeep: 24:QZFWLOPVGO8lP9T3lDaYLCKjMtd/5yfXk61M5:vLd9T3lGYLCKjMt94/kH
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/42fe4ef2a7a270c04bb93d136d37041d9d2fb4e92e8f26aa7f9c11eed46b5f07-1259194822[/url]
***
Файл js3.js получен 2009.11.26 00:23:56 (UTC)
Текущий статус: закончено
Результат: 6/41 (14.64%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.43 2009.11.25 Generic.XPL.ADODB!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.25 -
AntiVir 7.9.1.78 2009.11.25 -
Antiy-AVL 2.0.3.7 2009.11.25 -
Authentium 5.2.0.5 2009.11.25 -
Avast 4.8.1351.0 2009.11.25 -
AVG 8.5.0.425 2009.11.25 -
BitDefender 7.2 2009.11.26 -
CAT-QuickHeal 10.00 2009.11.25 -
ClamAV 0.94.1 2009.11.25 -
Comodo 3037 2009.11.26 -
DrWeb 5.0.0.12182 2009.11.25 -
eSafe 7.0.17.0 2009.11.24 -
eTrust-Vet 35.1.7142 2009.11.25 -
F-Prot 4.5.1.85 2009.11.25 -
F-Secure 9.0.15370.0 2009.11.24 -
Fortinet 4.0.14.0 2009.11.25 -
GData 19 2009.11.26 -
[B]Ikarus T3.1.1.74.0 2009.11.25 Generic.XPL.ADODB[/B]
Jiangmin 11.0.800 2009.11.25 -
K7AntiVirus 7.10.905 2009.11.25 -
Kaspersky 7.0.0.125 2009.11.26 -
McAfee 5813 2009.11.25 -
McAfee+Artemis 5813 2009.11.25 -
[B]McAfee-GW-Edition 6.8.5 2009.11.26 Heuristic.BehavesLike.JS.Exploit.B[/B]
Microsoft 1.5302 2009.11.25 -
NOD32 4637 2009.11.25 -
Norman 6.03.02 2009.11.25 -
nProtect 2009.1.8.0 2009.11.25 -
Panda 10.0.2.2 2009.11.25 -
[B]PCTools 7.0.3.5 2009.11.26 HTML.Psyme.Gen[/B]
Prevx 3.0 2009.11.26 -
Rising 22.23.02.09 2009.11.25 -
[B]Sophos 4.47.0 2009.11.26 Sus/Psyme-A[/B]
Sunbelt 3.2.1858.2 2009.11.26 -
Symantec 1.4.4.12 2009.11.26 -
TheHacker 6.5.0.2.078 2009.11.25 -
TrendMicro 9.100.0.1001 2009.11.25 -
VBA32 3.12.12.0 2009.11.25 -
ViRobot 2009.11.25.2053 2009.11.25 -
[B]VirusBuster 5.0.21.0 2009.11.25 HTML.Psyme.Gen[/B][/QUOTE]
Дополнительная информация
File size: 5100 bytes
MD5...: e31525943fdef580361a8ad018f71736
SHA1..: 2bf16f831abf05139815fa4d5cad7c275224aeae
SHA256: e097e355c51ae57845ba6c346c34bc4489baa0104f955f2a0fc74a6686570e39
ssdeep: 96:0PANgC4OwWJrHa69caEiOHdMlBKgBg+4S:++43WJrHaocaEikMDp
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Unknown!
[url]http://www.virustotal.com/ru/analisis/e097e355c51ae57845ba6c346c34bc4489baa0104f955f2a0fc74a6686570e39-1259195036[/url]
-
В VBA, DrWeb и Symantec файл ушел
Файл tcwoa8mp.scr.part получен 2009.11.27 16:09:24 (UTC)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 8/41 (19.52%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.11.26 -
AhnLab-V3 5.0.0.2 2009.11.26 -
[B]AntiVir 7.9.1.78 2009.11.26 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.26 -
Authentium 5.2.0.5 2009.11.26 -
Avast 4.8.1351.0 2009.11.26 -
AVG 8.5.0.425 2009.11.26 -
BitDefender 7.2 2009.11.26 -
CAT-QuickHeal 10.00 2009.11.26 -
ClamAV 0.94.1 2009.11.26 -
[B]Comodo 3044 2009.11.26 Heur.Packed.Unknown[/B]
DrWeb 5.0.0.12182 2009.11.26 -
eSafe 7.0.17.0 2009.11.24 -
eTrust-Vet 35.1.7143 2009.11.26 -
F-Prot 4.5.1.85 2009.11.25 -
[B]F-Secure 9.0.15370.0 2009.11.24 Suspicious:W32/Malware!Gemini[/B]
Fortinet 4.0.14.0 2009.11.26 -
GData 19 2009.11.26 -
Ikarus T3.1.1.74.0 2009.11.26 -
Jiangmin 11.0.800 2009.11.26 -
K7AntiVirus 7.10.905 2009.11.25 -
Kaspersky 7.0.0.125 2009.11.26 -
McAfee 5813 2009.11.25 -
McAfee+Artemis 5813 2009.11.25 -
[B]McAfee-GW-Edition 6.8.5 2009.11.26 Trojan.Dropper.Gen[/B]
Microsoft 1.5302 2009.11.26 -
NOD32 4639 2009.11.26 -
[B]Norman 6.03.02 2009.11.25 W32/Obfuscated.V[/B]
nProtect 2009.1.8.0 2009.11.26 -
Panda 10.0.2.2 2009.11.26 -
PCTools 7.0.3.5 2009.11.26 -
Prevx 3.0 2009.11.27 -
Rising 22.23.03.10 2009.11.26 -
[B]Sophos 4.48.0 2009.11.26 Sus/UnkPack-C
Sunbelt 3.2.1858.2 2009.11.26 Trojan-Ransom.Win32.SMSer.jk (v)
Symantec 1.4.4.12 2009.11.26 Suspicious.MH690.A[/B]
TheHacker 6.5.0.2.079 2009.11.26 -
TrendMicro 9.100.0.1001 2009.11.26 -
VBA32 3.12.12.0 2009.11.26 -
ViRobot 2009.11.26.2056 2009.11.26 -
VirusBuster 5.0.21.0 2009.11.25 -[/QUOTE]
Дополнительная информация
File size: 141312 bytes
MD5...: 2089ab41530c6394c60009f822228444
SHA1..: fbac52fe484d8752a30eeb41911966bf51a1ab76
SHA256: 3f36cf53d21c4e74ab3373f39eb859f5d885d197fbf348007d79c23e5df116e2
ssdeep: 3072:i98xzIsP/3Dsv7TFMz9wbhH9QI7npj1jNz6N+00D:HznX3gjTFU9tILNz6N
+00D
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/3f36cf53d21c4e74ab3373f39eb859f5d885d197fbf348007d79c23e5df116e2-1259338164[/url]
-
Файл fsuwdm.exe получен 2009.12.01 04:22:19 (UTC)
Текущий статус: закончено
Результат: 19/41 (46.34%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.43 2009.12.01 Worm.Autorun!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.01 -
[B]AntiVir 7.9.1.88 2009.11.30 Worm/Autorun.esq[/B]
Antiy-AVL 2.0.3.7 2009.12.01 -
Authentium 5.2.0.5 2009.11.30 -
Avast 4.8.1351.0 2009.11.30 -
AVG 8.5.0.426 2009.12.01 -
[B]BitDefender 7.2 2009.12.01 Trojan.Generic.IS.548711[/B]
CAT-QuickHeal 10.00 2009.12.01 -
ClamAV 0.94.1 2009.12.01 -
Comodo 3096 2009.12.01 -
DrWeb 5.0.0.12182 2009.12.01 -
[B]eSafe 7.0.17.0 2009.11.30 Win32.Worm.AutoRun.u[/B]
eTrust-Vet 35.1.7149 2009.12.01 -
F-Prot 4.5.1.85 2009.11.30 -
[B]F-Secure 9.0.15370.0 2009.11.29 Trojan.Generic.IS.548711[/B]
Fortinet 4.0.14.0 2009.12.01 -
[B]GData 19 2009.12.01 Trojan.Generic.IS.548711
Ikarus T3.1.1.74.0 2009.12.01 Worm.Autorun[/B]
Jiangmin 11.0.800 2009.11.29 -
[B]K7AntiVirus 7.10.906 2009.11.27 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.12.01 -
[B]McAfee 5818 2009.11.30 Generic.dx!gdd
McAfee+Artemis 5818 2009.11.30 Generic.dx!gdd
McAfee-GW-Edition 6.8.5 2009.11.30 Heuristic.LooksLike.Worm.Autorun.L[/B]
Microsoft 1.5302 2009.12.01 -
NOD32 4650 2009.11.30 -
[B]Norman 6.03.02 2009.11.30 W32/Suspicious_Gen.AFVN
nProtect 2009.1.8.0 2009.11.28 Trojan/W32.Agent.101887
Panda 10.0.2.2 2009.11.30 Trj/CI.A
PCTools 7.0.3.5 2009.12.01 Trojan.Generic[/B]
Prevx 3.0 2009.12.01 -
Rising 22.24.01.01 2009.12.01 -
[B]Sophos 4.48.0 2009.12.01 Mal/Generic-A
Sunbelt 3.2.1858.2 2009.12.01 Trojan.Win32.Generic!BT
Symantec 1.4.4.12 2009.12.01 Trojan Horse
TheHacker 6.5.0.2.082 2009.11.30 W32/AutoRun.esq[/B]
TrendMicro 9.100.0.1001 2009.11.30 -
VBA32 3.12.12.0 2009.11.30 -
ViRobot 2009.12.1.2063 2009.12.01 -
VirusBuster 5.0.21.0 2009.11.30 -[/QUOTE]
Дополнительная информация
File size: 101887 bytes
MD5 : fb9e6b5ecf70319a9265160366758d40
SHA1 : fad215f0578e1d1e7d8bc56947e2aec81db9aea8
SHA256: 29df2d237385b30f2152b7bfd5b8f138182b2874a0b278e9b4ca24dbc5725a6d
PEInfo: PE Structure information
-
Очередные промежуточные итоги народного тестирования Октябрь-Ноябрь:
-
Пришел по скайпу
Файл DCS00006.scr получен 2009.12.02 11:13:26 (UTC)
Текущий статус: закончено
Результат: 10/41 (24.4%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.43 2009.12.02 Riskware.Win32.VBInject!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.02 -
[B]AntiVir 7.9.1.92 2009.12.02 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.7 2009.12.02 -
[B]Authentium 5.2.0.5 2009.12.02 W32/Trojan-Gypikon-based.DM2!Maximus[/B]
Avast 4.8.1351.0 2009.12.02 -
[B]AVG 8.5.0.426 2009.12.02 BackDoor.Generic12.MNM[/B]
BitDefender 7.2 2009.12.02 -
CAT-QuickHeal 10.00 2009.12.02 -
ClamAV 0.94.1 2009.12.02 -
Comodo 3103 2009.12.01 -
DrWeb 5.0.0.12182 2009.12.02 -
eSafe 7.0.17.0 2009.12.01 -
eTrust-Vet 35.1.7152 2009.12.02 -
[B]F-Prot 4.5.1.85 2009.12.01 W32/Trojan-Gypikon-based.DM2!Maximus[/B]
F-Secure 9.0.15370.0 2009.11.29 -
Fortinet 4.0.14.0 2009.12.02 -
GData 19 2009.12.02 -
[B]Ikarus T3.1.1.74.0 2009.12.02 VirTool.Win32.VBInject[/B]
Jiangmin 13.0.900 2009.12.02 -
K7AntiVirus 7.10.906 2009.11.27 -
Kaspersky 7.0.0.125 2009.12.02 -
McAfee 5819 2009.12.01 -
McAfee+Artemis 5819 2009.12.01 -
[B]McAfee-GW-Edition 6.8.5 2009.12.02 Trojan.Dropper.Gen
Microsoft 1.5302 2009.12.02 VirTool:Win32/VBInject.gen!BA[/B]
NOD32 4654 2009.12.02 -
[B]Norman 6.03.02 2009.12.02 W32/Obfuscated.A!genr[/B]
nProtect 2009.1.8.0 2009.12.02 -
[B]Panda 10.0.2.2 2009.12.01 Bck/Bifrost.gen[/B]
PCTools 7.0.3.5 2009.12.02 -
Prevx 3.0 2009.12.02 -
Rising 22.24.02.07 2009.12.02 -
Sophos 4.48.0 2009.12.02 -
Sunbelt 3.2.1858.2 2009.12.02 -
Symantec 1.4.4.12 2009.12.02 -
TheHacker 6.5.0.2.083 2009.12.01 -
TrendMicro 9.100.0.1001 2009.12.02 -
VBA32 3.12.12.0 2009.12.02 -
ViRobot 2009.12.2.2068 2009.12.02 -
VirusBuster 5.0.21.0 2009.12.01 -[/QUOTE]
Дополнительная информация
File size: 127853 bytes
MD5...: 53392b9a43e84ba983287a394d26fdee
SHA1..: 3b13ca048572602d8a572036fc3fb968949f0d3d
SHA256: df0088568531f9265eb3e56fdd546a42d66256d32788d2c66b76230eee71137b
ssdeep: 3072:c8JzVjHbmp5JsZ1prgZWHJTJK5DcSXIeUSJU5MQyBDc2:c8rmZETgZqJTJ9
cvuH2
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/df0088568531f9265eb3e56fdd546a42d66256d32788d2c66b76230eee71137b-1259752406[/url]
-
File setup.exe received on 2009.12.03 14:47:53 (UTC)
Result: 8/41 (19.52%)
[QUOTE]a-squared 4.5.0.43 2009.12.03 -
AhnLab-V3 5.0.0.2 2009.12.03 -
AntiVir 7.9.1.92 2009.12.03 -
Antiy-AVL 2.0.3.7 2009.12.03 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.03 -
AVG 8.5.0.426 2009.12.03 -
BitDefender 7.2 2009.12.03 -
[B]CAT-QuickHeal 10.00 2009.12.03 Trojan.VkHost.is[/B]
ClamAV 0.94.1 2009.12.03 -
[B]Comodo 3103 2009.12.01 Heur.Packed.Unknown[/B]
DrWeb 5.0.0.12182 2009.12.03 -
eSafe 7.0.17.0 2009.12.02 -
eTrust-Vet 35.1.7155 2009.12.03 -
F-Prot 4.5.1.85 2009.12.02 -
F-Secure 9.0.15370.0 2009.12.03 -
Fortinet 4.0.14.0 2009.12.03 -
GData 19 2009.12.03 -
Ikarus T3.1.1.74.0 2009.12.03 -
Jiangmin 13.0.900 2009.12.02 -
K7AntiVirus 7.10.910 2009.12.03 -
[B]Kaspersky 7.0.0.125 2009.12.03 Trojan.Win32.VkHost.iz[/B]
[B]McAfee 5819 2009.12.01 PWS-Banker.gen.ec[/B]
[B]McAfee+Artemis 5819 2009.12.01 PWS-Banker.gen.ec[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.03 Heuristic.LooksLike.Win32.QQpass.H[/B]
Microsoft 1.5302 2009.12.03 -
NOD32 4658 2009.12.03 -
Norman 6.03.02 2009.12.03 -
nProtect 2009.1.8.0 2009.12.03 -
[B]Panda 10.0.2.2 2009.12.03 Trj/Downloader.MDW[/B]
PCTools 7.0.3.5 2009.12.03 -
Prevx 3.0 2009.12.03 -
Rising 22.24.03.06 2009.12.03 -
[B]Sophos 4.48.0 2009.12.03 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.12.03 -
Symantec 1.4.4.12 2009.12.03 -
TheHacker 6.5.0.2.083 2009.12.01 -
TrendMicro 9.100.0.1001 2009.12.03 -
VBA32 3.12.12.0 2009.12.03 -
ViRobot 2009.12.3.2070 2009.12.03 -
VirusBuster 5.0.21.0 2009.12.02 -[/QUOTE]
[url]http://www.virustotal.com/analisis/b3b2109af898aeeaa9b533e7e7e88a2fb7e2be8ab2a76bbb3d2f7b974ddc4db3-1259851673[/url]
-
Тонну такого борохла приходит по аси
Файл foto.jar получен 2009.12.04 13:28:05 (UTC)
Текущий статус: закончено
Результат: 17/41 (41.47%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.04 -
AhnLab-V3 5.0.0.2 2009.12.04 -
[B]AntiVir 7.9.1.92 2009.12.04 JAVA/SMS.J2ME.Age.D
Antiy-AVL 2.0.3.7 2009.12.04 Trojan/J2ME.Agent[/B]
Authentium 5.2.0.5 2009.12.02 -
[B]Avast 4.8.1351.0 2009.12.03 Other:Malware-gen[/B]
AVG 8.5.0.426 2009.12.04 -
[B]BitDefender 7.2 2009.12.04 Trojan.Generic.IS.610206[/B]
CAT-QuickHeal 10.00 2009.12.04 -
[B]ClamAV 0.94.1 2009.12.04 Trojan.SMS
Comodo 3103 2009.12.01 TrojWare.J2ME.SMS.Agent.d
DrWeb 5.0.0.12182 2009.12.04 Java.SMSSend.99[/B]
eSafe 7.0.17.0 2009.12.03 -
eTrust-Vet 35.1.7158 2009.12.04 -
F-Prot 4.5.1.85 2009.12.03 -
[B]F-Secure 9.0.15370.0 2009.12.03 Trojan.Generic.IS.610206[/B]
Fortinet 4.0.14.0 2009.12.04 -
[B]GData 19 2009.12.04 Trojan.Generic.IS.610206
Ikarus T3.1.1.74.0 2009.12.04 Trojan-SMS[/B]
Jiangmin 13.0.900 2009.12.02 -
K7AntiVirus 7.10.910 2009.12.03 -
[B]Kaspersky 7.0.0.125 2009.12.04 Trojan-SMS.J2ME.Agent.d[/B]
McAfee 5821 2009.12.03 -
McAfee+Artemis 5821 2009.12.03 -
[B]McAfee-GW-Edition 6.8.5 2009.12.04 Java.SMS.J2ME.Age.D[/B]
Microsoft 1.5302 2009.12.04 -
[B]NOD32 4659 2009.12.04 J2ME/TrojanSMS.Agent.D[/B]
Norman 6.03.02 2009.12.04 -
nProtect 2009.1.8.0 2009.12.04 -
Panda 10.0.2.2 2009.12.04 -
[B]PCTools 7.0.3.5 2009.12.04 Trojan.Generic[/B]
Prevx 3.0 2009.12.04 -
Rising 22.24.04.10 2009.12.04 -
Sophos 4.48.0 2009.12.04 -
Sunbelt 3.2.1858.2 2009.12.04 -
[B]Symantec 1.4.4.12 2009.12.04 Trojan Horse[/B]
TheHacker 6.5.0.2.084 2009.12.03 -
[B]TrendMicro 9.100.0.1001 2009.12.04 TROJ_AGENT.AWQW
VBA32 3.12.12.0 2009.12.03 Trojan-SMS.J2ME.Agent.d[/B]
ViRobot 2009.12.4.2072 2009.12.04 -
VirusBuster 5.0.21.0 2009.12.03 -[/QUOTE]
Дополнительная информация
File size: 68433 bytes
MD5...: 99112e2a299041c0478e35384fa7753f
SHA1..: b3937b7e6df359b8763ba11df00005e3b7131c46
SHA256: 94271af5ee9b7db897856f421c74d4c879caf1bab091e10ea4cf8448d32954f9
ssdeep: 1536:Abx4kPpu0pEU3/4+vat5OATBgM4bPxhRL+ngk5NS+uxo/4qNpaW5MH:I4kP
pu0aU3/47O7BbPnRLf+iy4qNXw
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/94271af5ee9b7db897856f421c74d4c879caf1bab091e10ea4cf8448d32954f9-1259933285[/url]
-
File setup.exe received on 2009.12.05 21:55:40 (UTC)
Result: 8/41 (19.52%)
[QUOTE]a-squared 4.5.0.43 2009.12.05 -
AhnLab-V3 5.0.0.2 2009.12.05 -
AntiVir 7.9.1.92 2009.12.05 -
Antiy-AVL 2.0.3.7 2009.12.04 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.05 -
AVG 8.5.0.426 2009.12.05 -
BitDefender 7.2 2009.12.05 -
[B]CAT-QuickHeal 10.00 2009.12.05 Trojan.VkHost.is[/B]
ClamAV 0.94.1 2009.12.04 -
[B]Comodo 3103 2009.12.01 Heur.Packed.Unknown[/B]
DrWeb 5.0.0.12182 2009.12.05 -
eSafe 7.0.17.0 2009.12.03 -
eTrust-Vet 35.1.7159 2009.12.04 -
F-Prot 4.5.1.85 2009.12.05 -
F-Secure 9.0.15370.0 2009.12.03 -
Fortinet 4.0.14.0 2009.12.04 -
GData 19 2009.12.05 -
Ikarus T3.1.1.74.0 2009.12.05 -
Jiangmin 13.0.900 2009.12.02 -
K7AntiVirus 7.10.912 2009.12.05 -
[B]Kaspersky 7.0.0.125 2009.12.05 Trojan.Win32.VkHost.jc[/B]
[B]McAfee 5823 2009.12.05 PWS-Banker.gen.ec[/B]
[B]McAfee+Artemis 5823 2009.12.05 PWS-Banker.gen.ec[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.05 Heuristic.LooksLike.Win32.QQpass.H[/B]
Microsoft 1.5302 2009.12.05 -
NOD32 4663 2009.12.05 -
Norman 6.03.02 2009.12.05 -
nProtect 2009.1.8.0 2009.12.05 -
[B]Panda 10.0.2.2 2009.12.05 Trj/Downloader.MDW[/B]
PCTools 7.0.3.5 2009.12.05 -
Prevx 3.0 2009.12.05 -
Rising 22.24.05.04 2009.12.05 -
[B]Sophos 4.48.0 2009.12.05 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.12.05 -
Symantec 1.4.4.12 2009.12.05 -
TheHacker 6.5.0.2.086 2009.12.05 -
TrendMicro 9.100.0.1001 2009.12.05 -
VBA32 3.12.12.0 2009.12.03 -
ViRobot 2009.12.4.2072 2009.12.04 -
VirusBuster 5.0.21.0 2009.12.05 - [/QUOTE]
[url]http://www.virustotal.com/analisis/e449c37fe5bf3f3752215ea87a0ac45ed6faa423c6f46996c2a53f80e28d46ad-1260050140[/url]
-
Файл js1.js получен 2009.12.11 22:25:02 (UTC)
Текущий статус: закончено
Результат: 4/41 (9.76%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.11 -
AhnLab-V3 5.0.0.2 2009.12.11 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
[B]Avast 4.8.1351.0 2009.12.11 HTML:IFrame-JZ[/B]
AVG 8.5.0.427 2009.12.11 -
BitDefender 7.2 2009.12.11 -
CAT-QuickHeal 10.00 2009.12.11 -
ClamAV 0.94.1 2009.12.11 -
Comodo 3208 2009.12.11 -
DrWeb 5.0.0.12182 2009.12.11 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
[B]F-Prot 4.5.1.85 2009.12.11 JS/IFrame.GE.gen[/B]
F-Secure 9.0.15370.0 2009.12.11 -
Fortinet 4.0.14.0 2009.12.11 -
[B]GData 19 2009.12.11 HTML:IFrame-JZ [/B]
Ikarus T3.1.1.74.0 2009.12.11 -
Jiangmin 13.0.900 2009.12.11 -
K7AntiVirus 7.10.918 2009.12.11 -
[B]Kaspersky 7.0.0.125 2009.12.11 Trojan-Clicker.HTML.IFrame.amh[/B]
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.11 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.11 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.11 -
Prevx 3.0 2009.12.11 -
Rising 22.25.04.07 2009.12.11 -
Sophos 4.48.0 2009.12.11 -
Sunbelt 3.2.1858.2 2009.12.11 -
Symantec 1.4.4.12 2009.12.11 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.11 -
VBA32 3.12.12.0 2009.12.10 -
ViRobot 2009.12.11.2083 2009.12.11 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/b79fba7b3b9ae8bdc8715be21e87cee7fa6cd9f2b5cc55ac99a55023aaf3dd81-1260570302[/url]
***
Файл js2.js получен 2009.12.11 22:33:10 (UTC)
Текущий статус: закончено
Результат: 2/41 (4.88%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.11 -
AhnLab-V3 5.0.0.2 2009.12.11 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.11 -
AVG 8.5.0.427 2009.12.11 -
BitDefender 7.2 2009.12.11 -
CAT-QuickHeal 10.00 2009.12.11 -
ClamAV 0.94.1 2009.12.11 -
Comodo 3208 2009.12.11 -
DrWeb 5.0.0.12182 2009.12.11 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.11 -
F-Secure 9.0.15370.0 2009.12.11 -
Fortinet 4.0.14.0 2009.12.11 -
GData 19 2009.12.11 -
Ikarus T3.1.1.74.0 2009.12.11 -
Jiangmin 13.0.900 2009.12.11 -
K7AntiVirus 7.10.918 2009.12.11 -
[B]Kaspersky 7.0.0.125 2009.12.11 Trojan-Downloader.JS.Gumblar.x[/B]
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.11 -
[B]Microsoft 1.5302 2009.12.11 Trojan:JS/Gamburl.C[/B]
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.11 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.11 -
Prevx 3.0 2009.12.11 -
Rising 22.25.04.07 2009.12.11 -
Sophos 4.48.0 2009.12.11 -
Sunbelt 3.2.1858.2 2009.12.11 -
Symantec 1.4.4.12 2009.12.11 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.11 -
VBA32 3.12.12.0 2009.12.10 -
ViRobot 2009.12.11.2083 2009.12.11 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/ea83d90f794bc19d86216de4d9ec78f4043dcbbddc0883bb54ddb2ba52eeb2af-1260570790[/url]
***
Файл js3.js получен 2009.12.11 22:35:13 (UTC)
Текущий статус: закончено
Результат: 8/41 (19.52%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.11 -
AhnLab-V3 5.0.0.2 2009.12.11 -
[B]AntiVir 7.9.1.108 2009.12.11 HTML/Crypted.Gen[/B]
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.11 -
[B]AVG 8.5.0.427 2009.12.11 JS/Downloader.Agent[/B]
BitDefender 7.2 2009.12.11 -
CAT-QuickHeal 10.00 2009.12.11 -
ClamAV 0.94.1 2009.12.11 -
Comodo 3208 2009.12.11 -
DrWeb 5.0.0.12182 2009.12.11 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
[B]F-Prot 4.5.1.85 2009.12.11 JS/Psyme.JN.gen[/B]
F-Secure 9.0.15370.0 2009.12.11 -
Fortinet 4.0.14.0 2009.12.11 -
GData 19 2009.12.11 -
Ikarus T3.1.1.74.0 2009.12.11 -
Jiangmin 13.0.900 2009.12.11 -
K7AntiVirus 7.10.918 2009.12.11 -
Kaspersky 7.0.0.125 2009.12.11 -
[B]McAfee 5829 2009.12.11 VBS/Psyme[/B]
[B]McAfee+Artemis 5829 2009.12.11 VBS/Psyme[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.11 Heuristic.LooksLike.JS.Suspicious.B[/B]
[B]Microsoft 1.5302 2009.12.11 Exploit:JS/ShellCode.gen[/B]
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.11 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.11 -
Prevx 3.0 2009.12.11 -
Rising 22.25.04.07 2009.12.11 -
Sophos 4.48.0 2009.12.11 -
Sunbelt 3.2.1858.2 2009.12.11 -
Symantec 1.4.4.12 2009.12.11 -
[B]TheHacker 6.5.0.2.091 2009.12.11 VBS/Psyme[/B]
TrendMicro 9.100.0.1001 2009.12.11 -
VBA32 3.12.12.0 2009.12.10 -
ViRobot 2009.12.11.2083 2009.12.11 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/a15d2684b53b548014272a994f3f9e449b473feb68bb0cb0363450ffcb04bcee-1260570913[/url]
***
Файл js4.js получен 2009.12.11 22:52:48 (UTC)
Текущий статус: закончено
Результат: 3/41 (7.32%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.11 -
AhnLab-V3 5.0.0.2 2009.12.11 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
[B]Avast 4.8.1351.0 2009.12.11 HTML:IFrame-LE[/B]
AVG 8.5.0.427 2009.12.11 -
BitDefender 7.2 2009.12.11 -
CAT-QuickHeal 10.00 2009.12.11 -
ClamAV 0.94.1 2009.12.11 -
Comodo 3208 2009.12.11 -
DrWeb 5.0.0.12182 2009.12.11 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
[B]F-Prot 4.5.1.85 2009.12.11 JS/IFrame.GE.gen[/B]
F-Secure 9.0.15370.0 2009.12.11 -
Fortinet 4.0.14.0 2009.12.11 -
[B]GData 19 2009.12.11 HTML:IFrame-LE [/B]
Ikarus T3.1.1.74.0 2009.12.11 -
Jiangmin 13.0.900 2009.12.11 -
K7AntiVirus 7.10.918 2009.12.11 -
Kaspersky 7.0.0.125 2009.12.11 -
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.11 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.11 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.11 -
Prevx 3.0 2009.12.11 -
Rising 22.25.04.07 2009.12.11 -
Sophos 4.48.0 2009.12.11 -
Sunbelt 3.2.1858.2 2009.12.11 -
Symantec 1.4.4.12 2009.12.11 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.11 -
VBA32 3.12.12.0 2009.12.10 -
ViRobot 2009.12.11.2083 2009.12.11 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/8d2821b8a5fcff7ce644608860ed1499a44d4f7529f082d42cf75940cdb2f37f-1260571968[/url]
***
Файл js5.js получен 2009.12.11 22:56:35 (UTC)
Текущий статус: закончено
Результат: 2/41 (4.88%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.11 -
AhnLab-V3 5.0.0.2 2009.12.11 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.11 -
AVG 8.5.0.427 2009.12.11 -
BitDefender 7.2 2009.12.11 -
CAT-QuickHeal 10.00 2009.12.11 -
ClamAV 0.94.1 2009.12.11 -
Comodo 3209 2009.12.11 -
DrWeb 5.0.0.12182 2009.12.11 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
[B]F-Prot 4.5.1.85 2009.12.11 JS/Crypted.AD.gen[/B]
F-Secure 9.0.15370.0 2009.12.11 -
Fortinet 4.0.14.0 2009.12.11 -
GData 19 2009.12.11 -
Ikarus T3.1.1.74.0 2009.12.11 -
Jiangmin 13.0.900 2009.12.11 -
K7AntiVirus 7.10.918 2009.12.11 -
[B]Kaspersky 7.0.0.125 2009.12.11 Trojan-Downloader.JS.Kazmet.d[/B]
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.11 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.11 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.11 -
Prevx 3.0 2009.12.11 -
Rising 22.25.04.07 2009.12.11 -
Sophos 4.48.0 2009.12.11 -
Sunbelt 3.2.1858.2 2009.12.11 -
Symantec 1.4.4.12 2009.12.11 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.11 -
VBA32 3.12.12.0 2009.12.10 -
ViRobot 2009.12.11.2083 2009.12.11 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/0e45aedf8af9e0a5ce55bd1de938d6596a649f0fb8fc56364bd0ddaf161df489-1260572195[/url]
***
Файл js6.js получен 2009.12.11 23:04:22 (UTC)
Текущий статус: закончено
Результат: 3/41 (7.32%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.11 -
AhnLab-V3 5.0.0.2 2009.12.11 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
[B]Avast 4.8.1351.0 2009.12.11 JS:Downloader-EN[/B]
AVG 8.5.0.427 2009.12.12 -
BitDefender 7.2 2009.12.11 -
CAT-QuickHeal 10.00 2009.12.11 -
ClamAV 0.94.1 2009.12.11 -
Comodo 3209 2009.12.11 -
DrWeb 5.0.0.12182 2009.12.11 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
[B]F-Prot 4.5.1.85 2009.12.11 JS/IFrame.GE.gen[/B]
F-Secure 9.0.15370.0 2009.12.11 -
Fortinet 4.0.14.0 2009.12.11 -
[B]GData 19 2009.12.11 JS:Downloader-EN [/B]
Ikarus T3.1.1.74.0 2009.12.11 -
Jiangmin 13.0.900 2009.12.11 -
K7AntiVirus 7.10.918 2009.12.11 -
Kaspersky 7.0.0.125 2009.12.11 -
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.11 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.11 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.11 -
Prevx 3.0 2009.12.12 -
Rising 22.25.04.07 2009.12.11 -
Sophos 4.48.0 2009.12.11 -
Sunbelt 3.2.1858.2 2009.12.11 -
Symantec 1.4.4.12 2009.12.11 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.11 -
VBA32 3.12.12.0 2009.12.10 -
ViRobot 2009.12.11.2083 2009.12.11 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/db9240c3db69a61e54f056ba77d99621bc1091e160fb0a679fa688d68d9a1e13-1260572662[/url]
-
Файл qqiliq.zip получен 2009.12.12 09:53:21 (UTC)
Текущий статус: закончено
Результат: 8/41 (19.51%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.12 -
AhnLab-V3 5.0.0.2 2009.12.11 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 W32/Heuristic-CO2!Eldorado
Avast 4.8.1351.0 2009.12.12 -
AVG 8.5.0.427 2009.12.12 -
BitDefender 7.2 2009.12.12 -
CAT-QuickHeal 10.00 2009.12.12 -
ClamAV 0.94.1 2009.12.12 Trojan.Zbot-2015
Comodo 3214 2009.12.12 UnclassifiedMalware
DrWeb 5.0.0.12182 2009.12.12 Win32.HLLW.Autohit.7920
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.11 W32/Heuristic-CO2!Eldorado
F-Secure 9.0.15370.0 2009.12.12 -
Fortinet 4.0.14.0 2009.12.12 PossibleThreat
GData 19 2009.12.12 -
Ikarus T3.1.1.74.0 2009.12.12 -
Jiangmin 13.0.900 2009.12.12 -
K7AntiVirus 7.10.918 2009.12.11 Trojan.Win32.Malware.4
Kaspersky 7.0.0.125 2009.12.12 -
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.12 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.11 -
nProtect 2009.1.8.0 2009.12.12 -
Panda 10.0.2.2 2009.12.11 -
PCTools 7.0.3.5 2009.12.12 -
Prevx 3.0 2009.12.12 Medium Risk Malware
Rising 22.25.05.04 2009.12.12 -
Sophos 4.48.0 2009.12.12 -
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.12 -
VBA32 3.12.12.0 2009.12.12 -
ViRobot 2009.12.12.2085 2009.12.12 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/931a77273d167498fbf99cc9efd3dd5434e87cab6b19da0caa7880c02792d34b-1260611601[/url]
-
[COLOR="Indigo"]Файл instt.exe получен 2009.12.12 11:36:15 (UTC)[/COLOR]
Текущий статус: закончено
Результат: 16/41 (39.03%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.12 Virus.Win32.Trojan!IK[/B]
[B]AhnLab-V3 5.0.0.2 2009.12.12 Win-Trojan/Xema.variant[/B]
[B]AntiVir 7.9.1.108 2009.12.11 HEUR/Malware[/B]
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.12 -
[B]AVG 8.5.0.427 2009.12.12 Generic10.ACCQ[/B]
BitDefender 7.2 2009.12.12 -
[B]CAT-QuickHeal 10.00 2009.12.12 Trojan.Clocsam.a[/B]
ClamAV 0.94.1 2009.12.12 -
Comodo 3215 2009.12.12 -
DrWeb 5.0.0.12182 2009.12.12 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.11 -
F-Secure 9.0.15370.0 2009.12.12 -
[B]Fortinet 4.0.14.0 2009.12.12 PossibleThreat[/B]
GData 19 2009.12.12 -
[B]Ikarus T3.1.1.74.0 2009.12.12 Virus.Win32.Trojan[/B]
[B]Jiangmin 13.0.900 2009.12.12 Trojan/Gowin.b[/B]
[B]K7AntiVirus 7.10.918 2009.12.11 Trojan.Win32.Malware.4[/B]
Kaspersky 7.0.0.125 2009.12.12 -
McAfee 5829 2009.12.11 -
[B]McAfee+Artemis 5829 2009.12.11 Artemis!40DAF36D32B7[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.12 Heuristic.BehavesLike.Win32.Trojan.H[/B]
[B]Microsoft 1.5302 2009.12.11 Trojan:Win32/Clocsam.A[/B]
NOD32 4680 2009.12.11 -
[B]Norman 6.04.03 2009.12.12 W32/Malware.CXNR[/B]
nProtect 2009.1.8.0 2009.12.12 -
[B]Panda 10.0.2.2 2009.12.12 Trj/CI.A[/B]
PCTools 7.0.3.5 2009.12.12 -
[B]Prevx 3.0 2009.12.12 High Risk Worm[/B]
Rising 22.25.05.04 2009.12.12 -
[B]Sophos 4.48.0 2009.12.12 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.12 -
VBA32 3.12.12.0 2009.12.12 -
ViRobot 2009.12.12.2085 2009.12.12 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
Дополнительная информация
File size: 52187 bytes
MD5...: 40daf36d32b73dae2cccb78b597d69e4
SHA1..: cabce6308a4544da518f4af4b13c5b069e07c05f
SHA256: 0eeae9b7375caf1690300eeaebf9dc7443254fd6f3f5f5113893e857ed0b961a
ssdeep: 768:4gP4gq7BH614yiFPk19JbMNDCviVYqahagE7SIjN/UDR22:N4D7U1qcjWNKi
+q8EusNq22
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x2900
timedatestamp.....: 0x3db0fe7f (Sat Oct 19 06:41:03 2002)
machinetype.......: 0x14c (I386)
[COLOR="Indigo"]Файл pcinstalk.exe получен 2009.12.12 11:37:57 (UTC)[/COLOR]
Текущий статус: закончено
Результат: 4/41 (9.76%)
[QUOTE]a-squared 4.5.0.43 2009.12.12 -
AhnLab-V3 5.0.0.2 2009.12.12 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.12 -
AVG 8.5.0.427 2009.12.12 -
BitDefender 7.2 2009.12.12 -
CAT-QuickHeal 10.00 2009.12.12 -
ClamAV 0.94.1 2009.12.12 -
Comodo 3215 2009.12.12 -
DrWeb 5.0.0.12182 2009.12.12 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.11 -
F-Secure 9.0.15370.0 2009.12.12 -
Fortinet 4.0.14.0 2009.12.12 -
GData 19 2009.12.12 -
Ikarus T3.1.1.74.0 2009.12.12 -
Jiangmin 13.0.900 2009.12.12 -
[B]K7AntiVirus 7.10.918 2009.12.11 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.12.12 -
McAfee 5829 2009.12.11 -
McAfee+Artemis 5829 2009.12.11 -
McAfee-GW-Edition 6.8.5 2009.12.12 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.12 -
nProtect 2009.1.8.0 2009.12.12 -
Panda 10.0.2.2 2009.12.12 -
PCTools 7.0.3.5 2009.12.12 -
[B]Prevx 3.0 2009.12.12 Medium Risk Malware[/B]
Rising 22.25.05.04 2009.12.12 -
Sophos 4.48.0 2009.12.12 -
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
[B]TheHacker 6.5.0.2.091 2009.12.11 Trojan/Agent.cikm[/B]
[B]TrendMicro 9.100.0.1001 2009.12.12 TSPY_BANCOS.ATL[/B]
VBA32 3.12.12.0 2009.12.12 -
ViRobot 2009.12.12.2085 2009.12.12 -
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
Дополнительная информация
File size: 176517 bytes
MD5...: 00865807bad7e7e983191056d416481e
SHA1..: 236c97731c1b218fdcc1bdd7beac4abd3fb7f506
SHA256: 8e0d1e45cbb37a49872b4fbd6ff85f5184f23c5469547f8b008667f8f3e9ebd9
ssdeep: 3072:zBpB5GDAqF1OxdXiOnW/r8N1e0UGX8FJ6EhIcUvcPnaYHZMV2:3zG8nriOn
W/rGgGQJVI762V2
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x17de0
timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992)
machinetype.......: 0x14c (I386)
[COLOR="Indigo"]Файл rundlll.exe получен 2009.12.12 11:38:10 (UTC)[/COLOR]
Текущий статус: закончено
Результат: 26/41 (63.42%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.12 Trojan.Win32.Krotten!IK[/B]
[B]AhnLab-V3 5.0.0.2 2009.12.12 Win-Trojan/Krotten.46995[/B]
[B]AntiVir 7.9.1.108 2009.12.11 HEUR/Malware[/B]
[B]Antiy-AVL 2.0.3.7 2009.12.11 Trojan/Win32.Agent.gen[/B]
[B]Authentium 5.2.0.5 2009.12.02 W32/Krotten.A[/B]
Avast 4.8.1351.0 2009.12.12 -
[B]AVG 8.5.0.427 2009.12.12 Agent.DD[/B]
[B]BitDefender 7.2 2009.12.12 Trojan.Krotten.B[/B]
CAT-QuickHeal 10.00 2009.12.12 -
[B]ClamAV 0.94.1 2009.12.12 Trojan.Agent-12182[/B]
[B]Comodo 3215 2009.12.12 TrojWare.Win32.KRotten.~A[/B]
DrWeb 5.0.0.12182 2009.12.12 -
eSafe 7.0.17.0 2009.12.10 -
[B]eTrust-Vet 35.1.7171 2009.12.11 Win32/Orsam.D[/B]
[B]F-Prot 4.5.1.85 2009.12.11 W32/Krotten.A[/B]
[B]F-Secure 9.0.15370.0 2009.12.12 Trojan.Krotten.B[/B]
[B]Fortinet 4.0.14.0 2009.12.12 W32/Krotten.A!tr[/B]
[B]GData 19 2009.12.12 Trojan.Krotten.B[/B]
[B]Ikarus T3.1.1.74.0 2009.12.12 Trojan.Win32.Krotten[/B]
[B]Jiangmin 13.0.900 2009.12.12 TrojanSpy.Small.dr[/B]
[B]K7AntiVirus 7.10.918 2009.12.11 Trojan.Win32.Krotten[/B]
Kaspersky 7.0.0.125 2009.12.12 -
[B]McAfee 5829 2009.12.11 StartPage-IP[/B]
[B]McAfee+Artemis 5829 2009.12.11 StartPage-IP[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.12 Heuristic.BehavesLike.Win32.Trojan.H[/B]
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
[B]Norman 6.04.03 2009.12.12 W32/Agent.GWV[/B]
nProtect 2009.1.8.0 2009.12.12 -
[B]Panda 10.0.2.2 2009.12.12 Trj/Sirery.A[/B]
PCTools 7.0.3.5 2009.12.12 -
[B]Prevx 3.0 2009.12.12 High Risk Cloaked Malware[/B]
[B]Rising 22.25.05.04 2009.12.12 Trojan.Starpage.vr[/B]
[B]Sophos 4.48.0 2009.12.12 Mal/EncPk-LI[/B]
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
TheHacker 6.5.0.2.091 2009.12.11 -
TrendMicro 9.100.0.1001 2009.12.12 -
VBA32 3.12.12.0 2009.12.12 -
[B]ViRobot 2009.12.12.2085 2009.12.12 Trojan.Win32.Shutdowner.46690[/B]
VirusBuster 5.0.21.0 2009.12.11 -[/QUOTE]
Дополнительная информация
File size: 66659 bytes
MD5...: 759aa37d2ad58da2ce731e72b5707111
SHA1..: 171688e4fc529c7da152baffac38fd72ba3287c4
SHA256: 894cc64ff898d5834e2256d5f1790c2052422f884d3f4be7ced166272e64600b
ssdeep: 768:4yKoNLsn4Jp9ZvRInygrpMoZN+WtOl08j7XEHCDwBLpZTPCUvQSr72W:j/sn
4/OycxZN+MK7j8t9zQSr72W
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x37c7
timedatestamp.....: 0x40715c58 (Mon Apr 05 13:17:12 2004)
machinetype.......: 0x14c (I386)
[COLOR="Indigo"]Файл install_sms_cracker.exe получен 2009.12.12 11:55:28 (UTC)[/COLOR]
Текущий статус: закончено
Результат: 5/41 (12.2%)
[QUOTE]a-squared 4.5.0.43 2009.12.12 -
AhnLab-V3 5.0.0.2 2009.12.12 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.12 -
AVG 8.5.0.427 2009.12.12 -
BitDefender 7.2 2009.12.12 -
CAT-QuickHeal 10.00 2009.12.12 -
ClamAV 0.94.1 2009.12.12 -
[B]Comodo 3215 2009.12.12 UnclassifiedMalware[/B]
DrWeb 5.0.0.12182 2009.12.12 -
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.11 -
F-Secure 9.0.15370.0 2009.12.12 -
Fortinet 4.0.14.0 2009.12.12 -
GData 19 2009.12.12 -
Ikarus T3.1.1.74.0 2009.12.12 -
Jiangmin 13.0.900 2009.12.12 -
[B]K7AntiVirus 7.10.918 2009.12.11 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.12.12 -
McAfee 5829 2009.12.11 -
[B]McAfee+Artemis 5829 2009.12.11 Artemis!2F2700812B6E[/B]
McAfee-GW-Edition 6.8.5 2009.12.12 -
Microsoft 1.5302 2009.12.11 -
NOD32 4680 2009.12.11 -
Norman 6.04.03 2009.12.12 -
nProtect 2009.1.8.0 2009.12.12 -
Panda 10.0.2.2 2009.12.12 -
PCTools 7.0.3.5 2009.12.12 -
Prevx 3.0 2009.12.12 -
Rising 22.25.05.04 2009.12.12 -
Sophos 4.48.0 2009.12.12 -
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
[B]TheHacker 6.5.0.2.091 2009.12.11 Trojan/Agent.cikm[/B]
[B]TrendMicro 9.100.0.1001 2009.12.12 TSPY_BANCOS.ATL[/B]
VBA32 3.12.12.0 2009.12.12 -
ViRobot 2009.12.12.2085 2009.12.12 -
VirusBuster 5.0.21.0 2009.12.11 -
[/QUOTE]
Дополнительная информация
File size: 284245 bytes
MD5...: 2f2700812b6ea2da5e1ee6b8e97a91cf
SHA1..: 85f812277a16f78670b6536ace1e09b38b011f0a
SHA256: 822642479740fc9766ae403c55438890fbb6059a63d6c4af8146d3fdac4df6bc
ssdeep: 6144:3zG8nriOnW/rGgG1gVI7LlR3ydyqEt/Ro5Lkau:j1DYrKgy7Llgdhuq58
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x17de0
timedatestamp.....: 0x2a425e19 (Fri Jun 19 22:22:17 1992)
machinetype.......: 0x14c (I386)
-
Только что принес на флешке
Файл stvar.rar получен 2009.12.12 20:06:50 (UTC)
Текущий статус: закончено
Результат: 7/41 (17.08%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.12 -
AhnLab-V3 5.0.0.2 2009.12.12 -
AntiVir 7.9.1.108 2009.12.11 -
Antiy-AVL 2.0.3.7 2009.12.11 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.12 -
AVG 8.5.0.427 2009.12.12 -
BitDefender 7.2 2009.12.12 -
[B]CAT-QuickHeal 10.00 2009.12.12 Worm.AutoRun.gen[/B]
ClamAV 0.94.1 2009.12.12 -
Comodo 3218 2009.12.12 -
[B]DrWeb 5.0.0.12182 2009.12.12 Trojan.Packed.688[/B]
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.12 -
F-Secure 9.0.15370.0 2009.12.12 -
Fortinet 4.0.14.0 2009.12.12 -
GData 19 2009.12.12 -
Ikarus T3.1.1.74.0 2009.12.12 -
Jiangmin 13.0.900 2009.12.12 -
K7AntiVirus 7.10.918 2009.12.11 -
Kaspersky 7.0.0.125 2009.12.12 -
[B]McAfee 5830 2009.12.12 W32/Rimecud
McAfee+Artemis 5830 2009.12.12 W32/Rimecud[/B]
McAfee-GW-Edition 6.8.5 2009.12.12 -
[B]Microsoft 1.5302 2009.12.12 Worm:Win32/Rimecud.A
NOD32 4682 2009.12.12 a variant of Win32/Peerfrag.FG[/B]
Norman 6.04.03 2009.12.12 -
nProtect 2009.1.8.0 2009.12.12 -
Panda 10.0.2.2 2009.12.12 -
PCTools 7.0.3.5 2009.12.12 -
Prevx 3.0 2009.12.12 -
[B]Rising 22.25.05.04 2009.12.12 Worm.Win32.Agent.aww[/B]
Sophos 4.48.0 2009.12.12 -
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
TheHacker 6.5.0.2.092 2009.12.12 -
TrendMicro 9.100.0.1001 2009.12.12 -
VBA32 3.12.12.0 2009.12.12 -
ViRobot 2009.12.12.2085 2009.12.12 -
VirusBuster 5.0.21.0 2009.12.12 -[/QUOTE]
-
Файл JimmTM.jar получен 2009.12.12 21:45:32 (UTC)
Результат: 5/41 (12.2%)
[QUOTE]a-squared 4.5.0.43 2009.12.12 -
AhnLab-V3 5.0.0.2 2009.12.12 -
AntiVir 7.9.1.108 2009.12.11 -
[B]Antiy-AVL 2.0.3.7 2009.12.11 Trojan/J2ME.Jifake[/B]
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.12 -
AVG 8.5.0.427 2009.12.12 -
BitDefender 7.2 2009.12.12 -
CAT-QuickHeal 10.00 2009.12.12 -
ClamAV 0.94.1 2009.12.12 -
Comodo 3220 2009.12.12 -
[B]DrWeb 5.0.0.12182 2009.12.12 Java.SMSSend.117[/B]
eSafe 7.0.17.0 2009.12.10 -
eTrust-Vet 35.1.7171 2009.12.11 -
F-Prot 4.5.1.85 2009.12.12 -
F-Secure 9.0.15370.0 2009.12.12 -
Fortinet 4.0.14.0 2009.12.12 -
GData 19 2009.12.12 -
[B]Ikarus T3.1.1.74.0 2009.12.12 Trojan-SMS[/B]
Jiangmin 13.0.900 2009.12.12 -
K7AntiVirus 7.10.918 2009.12.11 -
[B]Kaspersky 7.0.0.125 2009.12.12 Trojan-SMS.J2ME.Jifake.g[/B]
McAfee 5830 2009.12.12 -
McAfee+Artemis 5830 2009.12.12 -
McAfee-GW-Edition 6.8.5 2009.12.12 -
Microsoft 1.5302 2009.12.12 -
NOD32 4682 2009.12.12 -
Norman 6.04.03 2009.12.12 -
nProtect 2009.1.8.0 2009.12.12 -
Panda 10.0.2.2 2009.12.12 -
PCTools 7.0.3.5 2009.12.12 -
Prevx 3.0 2009.12.12 -
Rising 22.25.05.04 2009.12.12 -
Sophos 4.48.0 2009.12.12 -
Sunbelt 3.2.1858.2 2009.12.12 -
Symantec 1.4.4.12 2009.12.12 -
TheHacker 6.5.0.2.092 2009.12.12 -
TrendMicro 9.100.0.1001 2009.12.12 -
[B]VBA32 3.12.12.0 2009.12.12 Trojan-SMS.J2ME.Jifake.g[/B]
ViRobot 2009.12.12.2085 2009.12.12 -
VirusBuster 5.0.21.0 2009.12.12 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/3d32c66d3df86d1b60e1a2c5e8ec785d4cda0e83729ec16305d82cb7732aa930-1260654332[/url]
-
Файл opr01G1G получен 2009.12.14 16:02:18 (UTC)
Результат: 3/41 (7.32%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.43 2009.12.14 -
AhnLab-V3 5.0.0.2 2009.12.14 -
AntiVir 7.9.1.108 2009.12.14 -
[B]Antiy-AVL 2.0.3.7 2009.12.14 Trojan/JS.Pakes[/B]
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.14 -
AVG 8.5.0.427 2009.12.14 -
BitDefender 7.2 2009.12.14 -
CAT-QuickHeal 10.00 2009.12.14 -
ClamAV 0.94.1 2009.12.14 -
Comodo 3241 2009.12.14 -
DrWeb 5.0.0.12182 2009.12.14 -
eSafe 7.0.17.0 2009.12.14 -
eTrust-Vet 35.1.7174 2009.12.14 -
F-Prot 4.5.1.85 2009.12.14 -
F-Secure 9.0.15370.0 2009.12.14 -
Fortinet 4.0.14.0 2009.12.14 -
GData 19 2009.12.14 -
[B]Ikarus T3.1.1.74.0 2009.12.14 Trojan.JS.Pakes[/B]
Jiangmin 13.0.900 2009.12.14 -
K7AntiVirus 7.10.920 2009.12.14 -
[B]Kaspersky 7.0.0.125 2009.12.14 Trojan.JS.Pakes.bq[/B]
McAfee 5832 2009.12.14 -
McAfee+Artemis 5832 2009.12.14 -
McAfee-GW-Edition 6.8.5 2009.12.14 -
Microsoft 1.5302 2009.12.14 -
NOD32 4686 2009.12.14 -
Norman 6.04.03 2009.12.14 -
nProtect 2009.1.8.0 2009.12.14 -
Panda 10.0.2.2 2009.12.13 -
PCTools 7.0.3.5 2009.12.14 -
Prevx 3.0 2009.12.14 -
Rising 22.26.00.04 2009.12.14 -
Sophos 4.48.0 2009.12.14 -
Sunbelt 3.2.1858.2 2009.12.14 -
Symantec 1.4.4.12 2009.12.14 -
TheHacker 6.5.0.2.092 2009.12.12 -
TrendMicro 9.100.0.1001 2009.12.14 -
VBA32 3.12.12.0 2009.12.13 -
ViRobot 2009.12.14.2087 2009.12.14 -
VirusBuster 5.0.21.0 2009.12.14 - [/QUOTE]
Дополнительная информация
File size: 2256 bytes
MD5...: cf09b399881f3ad2903efb9141fdbaf4
SHA1..: 3addd8f24a5281b1f3a801355aa69fe843354262
SHA256: 517250693929ee04e34e557bc6423e63516990cf9337d0d3ffd7d8acfb93125c
ssdeep: 48:X+ciGOQgvpG+JNnfr18G9J/UsMQNY8QBCjoeQc6NrD6l02Dr/:dJVgvpTBj37
jMQC8TdQcmOjDr/
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
packers (F-Prot): packed
-
[QUOTE=Shu_b;521946]Очередные промежуточные итоги народного тестирования Октябрь-Ноябрь:[/QUOTE]
Ребят, сорри за оффтоп, а почему только [B]помесячные[/B] результаты ? Разве не интересно было бы глянуть [B]за 3 месяца, за полгода, за год [/B]? Соори, если я не в теме, но все же.
-
Кто то искусно склеил пару троянов с инсталером Nero Vision Express и залил на торрент
[COLOR="Navy"]File EULA.exe received on 2009.12.16 19:04:27 (UTC)[/COLOR]
Current status: Finished
Result: 19/41 (46.35%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.16 Trojan-Downloader.Nsis!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.16 -
[B]AntiVir 7.9.1.114 2009.12.16 DR/Agent.cd.108[/B]
Antiy-AVL 2.0.3.7 2009.12.16 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.16 -
AVG 8.5.0.427 2009.12.16 -
BitDefender 7.2 2009.12.16 -
CAT-QuickHeal 10.00 2009.12.16 -
ClamAV 0.94.1 2009.12.16 -
[B]Comodo 3265 2009.12.16 TrojWare.Win32.Downloader.Agent.~YX[/B]
DrWeb 5.0.0.12182 2009.12.16 -
eSafe 7.0.17.0 2009.12.16 -
[B]eTrust-Vet 35.1.7178 2009.12.16 Win32/MaranPWS!SFX[/B]
F-Prot 4.5.1.85 2009.12.15 -
F-Secure 9.0.15370.0 2009.12.16 -
[B]Fortinet 4.0.14.0 2009.12.16 W32/NSIS.AGENT.CD!tr.dldr[/B]
GData 19 2009.12.16 -
[B]Ikarus T3.1.1.78.0 2009.12.16 Trojan-Downloader.Nsis[/B]
Jiangmin 13.0.900 2009.12.16 -
K7AntiVirus 7.10.922 2009.12.16 -
[B]Kaspersky 7.0.0.125 2009.12.16 Trojan-Downloader.NSIS.Agent.cd[/B]
[B]McAfee 5833 2009.12.15 Generic Downloader.x!bjc[/B]
[B]McAfee+Artemis 5833 2009.12.15 Generic Downloader.x!bjc[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.16 Heuristic.BehavesLike.Win32.Dropper.I[/B]
[B]Microsoft 1.5302 2009.12.16 TrojanDownloader:Win32/Agent.MT[/B]
[B]NOD32 4694 2009.12.16 NSIS/TrojanDownloader.Agent.NBD[/B]
[B]Norman 6.04.03 2009.12.16 DLoader.ZSUM[/B]
[B]nProtect 2009.1.8.0 2009.12.16 Trojan-Downloader/W32.Agent.408399[/B]
[B]Panda 10.0.2.2 2009.12.15 Adware/MSAntiSpyware2009[/B]
PCTools 7.0.3.5 2009.12.16 -
Prevx 3.0 2009.12.16 -
[B]Rising 22.26.02.04 2009.12.16 Trojan.Win32.Generic.51ED8694[/B]
[B]Sophos 4.48.0 2009.12.16 Troj/Dldr-BR[/B]
[B]Sunbelt 3.2.1858.2 2009.12.16 Trojan.Win32.Generic!BT[/B]
Symantec 1.4.4.12 2009.12.16 -
TheHacker 6.5.0.2.094 2009.12.15 -
[B]TrendMicro 9.100.0.1001 2009.12.16 TROJ_DDOS.ISR[/B]
VBA32 3.12.12.0 2009.12.16 -
ViRobot 2009.12.16.2092 2009.12.16 -
VirusBuster 5.0.21.0 2009.12.16 -[/QUOTE]
File size: 408399 bytes
MD5...: aa2a9ddd545dd4fd28b53cd3049afc88
SHA1..: b04b679b907dee9aa27861c861b27070c223f035
SHA256: cc6acbf9ea65fd86905a66261d8d4988f74fc8a7c0dc3655954869e54eee716e
ssdeep: 6144:WTfFDbRnOTrAqmfc1FQvpDBKaUqKjbIPcmfcvQe1yUwmhNYjB8syB0zfs8o
:U5ONmfBvpDRUqYbXmfRe0UwmhC8sVo
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x48cfc008 (Tue Sep 16 14:17:44 2008)
machinetype.......: 0x14c (I386)
[COLOR="Navy"]File JDstart.exe received on 2009.12.16 19:07:52 (UTC)[/COLOR]
Current status: finished
Result: 5/40 (12.5%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.16 Trojan-Downloader.Win32.Agent.NBD!A2[/B]
AhnLab-V3 5.0.0.2 2009.12.16 -
AntiVir 7.9.1.114 2009.12.16 -
Antiy-AVL 2.0.3.7 2009.12.16 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.16 -
AVG 8.5.0.427 2009.12.16 -
BitDefender 7.2 2009.12.16 -
CAT-QuickHeal 10.00 2009.12.16 -
ClamAV 0.94.1 2009.12.16 -
Comodo 3265 2009.12.16 -
DrWeb 5.0.0.12182 2009.12.16 -
eSafe 7.0.17.0 2009.12.16 -
eTrust-Vet 35.1.7178 2009.12.16 -
F-Prot 4.5.1.85 2009.12.15 -
F-Secure 9.0.15370.0 2009.12.16 -
Fortinet 4.0.14.0 2009.12.16 -
GData 19 2009.12.16 -
Ikarus T3.1.1.78.0 2009.12.16 -
K7AntiVirus 7.10.922 2009.12.16 -
Kaspersky 7.0.0.125 2009.12.16 -
McAfee 5833 2009.12.15 -
McAfee+Artemis 5833 2009.12.15 -
McAfee-GW-Edition 6.8.5 2009.12.16 -
[B]Microsoft 1.5302 2009.12.16 TrojanDownloader:Win32/Prexjud.A[/B]
[B]NOD32 4694 2009.12.16 NSIS/TrojanDownloader.Agent.NBD[/B]
Norman 6.04.03 2009.12.16 -
nProtect 2009.1.8.0 2009.12.16 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.16 -
Prevx 3.0 2009.12.16 -
[B]Rising 22.26.02.04 2009.12.16 Trojan.Win32.Generic.51ED8695[/B]
Sophos 4.48.0 2009.12.16 -
[B]Sunbelt 3.2.1858.2 2009.12.16 Trojan.Win32.Generic!BT[/B]
Symantec 1.4.4.12 2009.12.16 -
TheHacker 6.5.0.2.094 2009.12.15 -
TrendMicro 9.100.0.1001 2009.12.16 -
VBA32 3.12.12.0 2009.12.16 -
ViRobot 2009.12.16.2092 2009.12.16 -
VirusBuster 5.0.21.0 2009.12.16 -[/QUOTE]
Additional information
File size: 174115 bytes
MD5...: ae1ff351f3e620d4e3c59aea4fe461f4
SHA1..: 2a0d6b40351d7625b0782e8039b44272f1a0751c
SHA256: f13e21019d1b1d82f5d0c59adfd4e2231faf1b4430f632f6f8ccb1099f736a36
ssdeep: 3072:8YL0xqfjyDymJZiYSqovIzqyPo40BEglYtg5mgTtHj5L3HiOZFQ:8oBtFqo
vIqyPo40BTlY+5PLHikFQ
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x30f1
timedatestamp.....: 0x494ce7e5 (Sat Dec 20 12:41:09 2008)
machinetype.......: 0x14c (I386)
[COLOR="Navy"]File svvchst32.exe received on 2009.12.16 19:07:56 (UTC)[/COLOR]
Current status: finished
Result: 16/40 (40%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.16 Trojan-Downloader.Nsis!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.16 -
AntiVir 7.9.1.114 2009.12.16 -
Antiy-AVL 2.0.3.7 2009.12.16 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.16 -
AVG 8.5.0.427 2009.12.16 -
BitDefender 7.2 2009.12.16 -
CAT-QuickHeal 10.00 2009.12.16 -
ClamAV 0.94.1 2009.12.16 -
[B]Comodo 3265 2009.12.16 TrojWare.Win32.Downloader.Agent.~YX[/B]
DrWeb 5.0.0.12182 2009.12.16 -
eSafe 7.0.17.0 2009.12.16 -
eTrust-Vet 35.1.7178 2009.12.16 -
F-Prot 4.5.1.85 2009.12.15 -
F-Secure 9.0.15370.0 2009.12.16 -
[B]Fortinet 4.0.14.0 2009.12.16 W32/NSIS.AGENT.CD!tr.dldr[/B]
GData 19 2009.12.16 -
[B]Ikarus T3.1.1.78.0 2009.12.16 Trojan-Downloader.Nsis[/B]
K7AntiVirus 7.10.922 2009.12.16 -
[B]Kaspersky 7.0.0.125 2009.12.16 Trojan-Downloader.NSIS.Agent.cd[/B]
[B]McAfee 5833 2009.12.15 Generic Downloader.x!bos[/B]
[B]McAfee+Artemis 5833 2009.12.15 Generic Downloader.x!bos[/B]
McAfee-GW-Edition 6.8.5 2009.12.16 -
[B]Microsoft 1.5302 2009.12.16 TrojanDownloader:Win32/Agent.MT[/B]
[B]NOD32 4694 2009.12.16 NSIS/TrojanDownloader.Agent.NBD[/B]
Norman 6.04.03 2009.12.16 -
[B]nProtect 2009.1.8.0 2009.12.16 Trojan-Downloader/W32.Agent.174209[/B]
[B]Panda 10.0.2.2 2009.12.15 Adware/MSAntiSpyware2009[/B]
PCTools 7.0.3.5 2009.12.16 -
Prevx 3.0 2009.12.16 -
[B]Rising 22.26.02.04 2009.12.16 Trojan.Win32.Generic.51ED8698[/B]
[B]Sophos 4.48.0 2009.12.16 Troj/Dldr-BR[/B]
[B]Sunbelt 3.2.1858.2 2009.12.16 Trojan-Downloader.NSIS.Agent.cd[/B]
Symantec 1.4.4.12 2009.12.16 -
TheHacker 6.5.0.2.094 2009.12.15 -
[B]TrendMicro 9.100.0.1001 2009.12.16 TROJ_DDOS.ISR[/B]
VBA32 3.12.12.0 2009.12.16 -
[B]ViRobot 2009.12.16.2092 2009.12.16 Trojan.Win32.Downloader.174209[/B]
VirusBuster 5.0.21.0 2009.12.16 -[/QUOTE]
Additional information
File size: 174209 bytes
MD5...: 1416d03eead9e4ae6bfde4c8e5409f62
SHA1..: 48d2e6d163794462991b3a3b4dda443a48648763
SHA256: 5f7ba8f7a6d141bfa076fdf3ecd8e8d349e814ab1a75a348708a436a059e5b7b
ssdeep: 3072:8YL0xqfjyDymJZiYGovIzqyPo40BEglYtg5mgTtHj5L3HiOZFf:8oBtJovI
qyPo40BTlY+5PLHikFf
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x30f1
timedatestamp.....: 0x494ce7e5 (Sat Dec 20 12:41:09 2008)
machinetype.......: 0x14c (I386)
-
File photo3.scr received on 2009.12.19 15:58:12 (UTC)
Result: 4/41 (9.76%)
[QUOTE]a-squared 4.5.0.43 2009.12.19 -
AhnLab-V3 5.0.0.2 2009.12.19 -
AntiVir 7.9.1.114 2009.12.18 -
Antiy-AVL 2.0.3.7 2009.12.18 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.18 -
AVG 8.5.0.427 2009.12.19 -
BitDefender 7.2 2009.12.19 -
[B]CAT-QuickHeal 10.00 2009.12.19 Worm.Rimecud.A[/B]
ClamAV 0.94.1 2009.12.19 -
Comodo 3299 2009.12.19 -
[B]DrWeb 5.0.0.12182 2009.12.19 Trojan.Packed.688[/B]
eSafe 7.0.17.0 2009.12.16 -
eTrust-Vet 35.1.7184 2009.12.19 -
F-Prot 4.5.1.85 2009.12.18 -
F-Secure 9.0.15370.0 2009.12.19 -
Fortinet 4.0.14.0 2009.12.19 -
GData 19 2009.12.19 -
Ikarus T3.1.1.79.0 2009.12.19 -
Jiangmin 13.0.900 2009.12.19 -
K7AntiVirus 7.10.923 2009.12.17 -
Kaspersky 7.0.0.125 2009.12.19 -
McAfee 5837 2009.12.19 -
McAfee+Artemis 5837 2009.12.19 -
McAfee-GW-Edition 6.8.5 2009.12.19 -
[B]Microsoft 1.5302 2009.12.19 Backdoor:Win32/Bifrose.DN[/B]
NOD32 4702 2009.12.19 -
Norman 6.04.03 2009.12.19 -
nProtect 2009.1.8.0 2009.12.18 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.19 -
Prevx 3.0 2009.12.19 -
Rising 22.26.05.04 2009.12.19 -
[B]Sophos 4.49.0 2009.12.19 Mal/EncPk-MX[/B]
Sunbelt 3.2.1858.2 2009.12.19 -
Symantec 1.4.4.12 2009.12.18 -
TheHacker 6.5.0.2.098 2009.12.18 -
TrendMicro 9.100.0.1001 2009.12.19 -
VBA32 3.12.12.0 2009.12.19 -
ViRobot 2009.12.18.2097 2009.12.18 -
VirusBuster 5.0.21.0 2009.12.18 -[/QUOTE]
[url]http://www.virustotal.com/analisis/b1e0691eb616019fbf7bf4932d9bddf3bc027599df464b0d429049f736d99368-1261238292[/url]
-
[url]http://www.virustotal.com/ru/analisis/f43056511f9e3b81a4aab41d7a9458fade4be5dc5ea649b953bf97196ceae622-1261340645[/url]
[QUOTE]a-squared 4.5.0.43 2009.12.20 -
AhnLab-V3 5.0.0.2 2009.12.19 -
AntiVir 7.9.1.114 2009.12.20 -
Antiy-AVL 2.0.3.7 2009.12.18 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.20 -
AVG 8.5.0.427 2009.12.20 -
BitDefender 7.2 2009.12.20 -
CAT-QuickHeal 10.00 2009.12.19 -
ClamAV 0.94.1 2009.12.20 -
Comodo 3311 2009.12.20 -
DrWeb 5.0.0.12182 2009.12.20 [B]Trojan.BrowseBan.origin[/B]
eSafe 7.0.17.0 2009.12.20 -
eTrust-Vet 35.1.7185 2009.12.19 -
F-Prot 4.5.1.85 2009.12.20 -
F-Secure 9.0.15370.0 2009.12.20 -
Fortinet 4.0.14.0 2009.12.20 -
GData 19 2009.12.20 -
Ikarus T3.1.1.79.0 2009.12.20 -
Jiangmin 13.0.900 2009.12.20 -
K7AntiVirus 7.10.923 2009.12.17 -
Kaspersky 7.0.0.125 2009.12.20 -
McAfee 5838 2009.12.20 -
McAfee+Artemis 5838 2009.12.20 -
McAfee-GW-Edition 6.8.5 2009.12.20 -
Microsoft 1.5302 2009.12.20 [B]Trojan:Win32/Ransom.O[/B]
NOD32 4704 2009.12.20 -
Norman 6.04.03 2009.12.20 [B]W32/BrowseBan.A[/B]
nProtect 2009.1.8.0 2009.12.18 -
Panda 10.0.2.2 2009.12.15 [B]Suspicious file [/B]
PCTools 7.0.3.5 2009.12.20 -
Prevx 3.0 2009.12.20 -
Rising 22.26.06.04 2009.12.20 -
Sophos 4.49.0 2009.12.20 -
Sunbelt 3.2.1858.2 2009.12.20 -
Symantec 1.4.4.12 2009.12.20 -
TheHacker 6.5.0.3.100 2009.12.20 -
TrendMicro 9.100.0.1001 2009.12.20 -
VBA32 3.12.12.0 2009.12.19 -
ViRobot 2009.12.18.2097 2009.12.18 -
VirusBuster 5.0.21.0 2009.12.20 -[/QUOTE]
-
Файл avp.exe получен 2009.12.21 11:23:39 (UTC)
Результат: 10/41 (24.4%)
[QUOTE]a-squared 4.5.0.43 2009.12.21 -
AhnLab-V3 5.0.0.2 2009.12.21 -
[B]AntiVir 7.9.1.114 2009.12.21 TR/Crypt.FKM.Gen [/B]
Antiy-AVL 2.0.3.7 2009.12.18 -
[B]Authentium 5.2.0.5 2009.12.02 W32/SysVenFak.A.gen!Eldorado[/B]
Avast 4.8.1351.0 2009.12.20 -
AVG 8.5.0.427 2009.12.20 -
[B]BitDefender 7.2 2009.12.21 Gen:Trojan.Heur.EG0@tTtRUUeiA[/B]
CAT-QuickHeal 10.00 2009.12.21 -
ClamAV 0.94.1 2009.12.21 -
Comodo 3318 2009.12.21 -
DrWeb 5.0.0.12182 2009.12.21 -
eSafe 7.0.17.0 2009.12.20 -
eTrust-Vet 35.1.7187 2009.12.21 -
[B]F-Prot 4.5.1.85 2009.12.20 W32/SysVenFak.A.gen!Eldorado
F-Secure 9.0.15370.0 2009.12.21 Gen:Trojan.Heur.EG0@tTtRUUeiA [/B]
Fortinet 4.0.14.0 2009.12.20 -
[B]GData 19 2009.12.21 Gen:Trojan.Heur.EG0@tTtRUUeiA[/B]
Ikarus T3.1.1.79.0 2009.12.21 -
Jiangmin 13.0.900 2009.12.21 -
K7AntiVirus 7.10.923 2009.12.17 -
Kaspersky 7.0.0.125 2009.12.21 -
[B]McAfee 5838 2009.12.20 Suspect-0B!0272FCC5C826
McAfee+Artemis 5838 2009.12.20 Suspect-0B!0272FCC5C826
McAfee-GW-Edition 6.8.5 2009.12.21 Trojan.Crypt.FKM.Gen [/B]
Microsoft 1.5302 2009.12.21 -
NOD32 4705 2009.12.21 -
[B]Norman 6.04.03 2009.12.21 W32/Suspicious.B!genr [/B]
nProtect 2009.1.8.0 2009.12.21 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.21 -
Prevx 3.0 2009.12.21 -
Rising 22.27.00.04 2009.12.21 -
Sophos 4.49.0 2009.12.21 -
Sunbelt 3.2.1858.2 2009.12.20 -
Symantec 1.4.4.12 2009.12.21 -
TheHacker 6.5.0.3.101 2009.12.21 -
TrendMicro 9.120.0.1004 2009.12.21 -
VBA32 3.12.12.0 2009.12.19 -
ViRobot 2009.12.21.2099 2009.12.21 -
VirusBuster 5.0.21.0 2009.12.20 - [/QUOTE]
Дополнительная информация
File size: 498688 bytes
MD5...: 0272fcc5c8260c047cec8da1db60b881
SHA1..: baec23f2236ccc8847c4abb656cfe3d7f7aeaa26
SHA256: 3393226a4ae7dfcee063df8b13bea26456f58fee33657fa9e4265da5d7f3007a
ssdeep: 12288:SovPf+QvOZvrm0/ZtBlAnwshVMOcx0klPF5:Smz2Zvrm0rT9sjUx0kr5
...
sigcheck:
publisher....: Microsoft Corporation
copyright....: Copyright (c) Microsoft Corporation 2004
product......: Messenger
description..:
original name: Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S.
and/or other countries.
internal name: msmsgs
file version.: 4.7.3000
comments.....:
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Win32 Executable Borland Delphi 7 (47.1%)
Win32 Executable Borland Delphi 5 (31.7%)
Win32 Executable Borland Delphi 6 (18.4%)
Win32 Executable Delphi generic (1.0%)
Win32 Executable Generic (0.6%)
[url]http://www.virustotal.com/ru/analisis/3393226a4ae7dfcee063df8b13bea26456f58fee33657fa9e4265da5d7f3007a-1261394619[/url]
______________________________
Файл svchost.exe получен 2009.12.21 11:28:43 (UTC)
Результат: 10/40 (25%)
[QUOTE]a-squared 4.5.0.43 2009.12.21 -
AhnLab-V3 5.0.0.2 2009.12.21 -
[B]AntiVir 7.9.1.114 2009.12.21 HEUR/Crypted [/B]
Antiy-AVL 2.0.3.7 2009.12.18 -
[B]Authentium 5.2.0.5 2009.12.02 W32/SysVenFak.A.gen!Eldorado[/B]
Avast 4.8.1351.0 2009.12.21 -
AVG 8.5.0.427 2009.12.21 -
[B]BitDefender 7.2 2009.12.21 Gen:Trojan.Heur.IG0@rGDHRMpO
CAT-QuickHeal 10.00 2009.12.21 Win32.Backdoor.Coolvidoor.D.8 [/B]
ClamAV 0.94.1 2009.12.21 -
Comodo 3318 2009.12.21 -
DrWeb 5.0.0.12182 2009.12.21 -
eSafe 7.0.17.0 2009.12.20 -
eTrust-Vet 35.1.7187 2009.12.21 -
[B]F-Prot 4.5.1.85 2009.12.20 W32/SysVenFak.A.gen!Eldorado
F-Secure 9.0.15370.0 2009.12.21 Gen:Trojan.Heur.IG0@rGDHRMpO[/B]
Fortinet 4.0.14.0 2009.12.20 -
[B]GData 19 2009.12.21 Gen:Trojan.Heur.IG0@rGDHRMpO [/B]
Ikarus T3.1.1.79.0 2009.12.21 -
K7AntiVirus 7.10.923 2009.12.17 -
Kaspersky 7.0.0.125 2009.12.21 -
[B]McAfee 5838 2009.12.20 Suspect-0B!E8A4198BCEFA
McAfee+Artemis 5838 2009.12.20 Suspect-0B!E8A4198BCEFA
McAfee-GW-Edition 6.8.5 2009.12.21 Heuristic.Crypte[/B]d
Microsoft 1.5302 2009.12.21 -
NOD32 4705 2009.12.21 -
Norman 6.04.03 2009.12.21 -
nProtect 2009.1.8.0 2009.12.21 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.21 -
Prevx 3.0 2009.12.21 -
Rising 22.27.00.04 2009.12.21 -
Sophos 4.49.0 2009.12.21 -
Sunbelt 3.2.1858.2 2009.12.20 -
Symantec 1.4.4.12 2009.12.21 -
TheHacker 6.5.0.3.101 2009.12.21 -
TrendMicro 9.120.0.1004 2009.12.21 -
VBA32 3.12.12.0 2009.12.19 -
ViRobot 2009.12.21.2099 2009.12.21 -
VirusBuster 5.0.21.0 2009.12.20 -[/QUOTE]
Дополнительная информация
File size: 559104 bytes
MD5...: e8a4198bcefa1e7c1309f99e70615421
SHA1..: a796538c99e85a16e1f413e28e9865e46be27993
SHA256: 3ff2baf5142eb09a41ba7206f9a4f591d27879ea42fe3db59bace9526ba775e4
ssdeep: 12288:Bgbdu4n2ErFxgkpycNlR2XJiLH/9oEzcjVWjQXE:B+uCr7gk0qRIJy/9ov
[url]http://www.virustotal.com/ru/analisis/3ff2baf5142eb09a41ba7206f9a4f591d27879ea42fe3db59bace9526ba775e4-1261394923[/url]
[size="1"][color="#666686"][B][I]Добавлено через 3 часа 22 минуты[/I][/B][/color][/size]
Файл siszyd32.exe получен 2009.12.21 14:09:30 (UTC)
Результат: 6/41 (14.63%)
[QUOTE]a-squared 4.5.0.43 2009.12.21 -
AhnLab-V3 5.0.0.2 2009.12.21 -
AntiVir 7.9.1.114 2009.12.21 -
Antiy-AVL 2.0.3.7 2009.12.18 -
Authentium 5.2.0.5 2009.12.02 -
Avast 4.8.1351.0 2009.12.21 -
AVG 8.5.0.427 2009.12.21 -
BitDefender 7.2 2009.12.21 -
[B]CAT-QuickHeal 10.00 2009.12.21 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.12.21 -
[B]Comodo 3319 2009.12.21 TrojWare.Win32.Trojan.Agent.Gen[/B]
DrWeb 5.0.0.12182 2009.12.21 -
eSafe 7.0.17.0 2009.12.21 -
eTrust-Vet 35.1.7187 2009.12.21 -
F-Prot 4.5.1.85 2009.12.20 -
F-Secure 9.0.15370.0 2009.12.21 -
Fortinet 4.0.14.0 2009.12.21 -
GData 19 2009.12.21 -
Ikarus T3.1.1.79.0 2009.12.21 -
Jiangmin 13.0.900 2009.12.21 -
K7AntiVirus 7.10.923 2009.12.17 -
Kaspersky 7.0.0.125 2009.12.21 -
McAfee 5838 2009.12.20 -
[B]McAfee+Artemis 5838 2009.12.20 Artemis!FDE00609D582[/B]
McAfee-GW-Edition 6.8.5 2009.12.21 -
Microsoft 1.5302 2009.12.21 -
NOD32 4706 2009.12.21 -
Norman 6.04.03 2009.12.21 -
nProtect 2009.1.8.0 2009.12.21 -
Panda 10.0.2.2 2009.12.15 -
[B]PCTools 7.0.3.5 2009.12.21 Net-Worm.Koobface[/B]
Prevx 3.0 2009.12.21 -
Rising 22.27.00.04 2009.12.21 -
Sophos 4.49.0 2009.12.21 -
[B]Sunbelt 3.2.1858.2 2009.12.20 Worm.Win32.Koobface.Gen.3 (v)
Symantec 1.4.4.12 2009.12.21 W32.Koobface!gen1 [/B]
TheHacker 6.5.0.3.101 2009.12.21 -
TrendMicro 9.120.0.1004 2009.12.21 -
VBA32 3.12.12.0 2009.12.19 -
ViRobot 2009.12.21.2099 2009.12.21 -
VirusBuster 5.0.21.0 2009.12.20 -[/QUOTE]
Дополнительная информация
File size: 33792 bytes
MD5 : fde00609d582831018cc4ac533f1cbba
SHA1 : 79c1a76c3251e4da817c071bfc3cdec5d613780f
SHA256: 3354bad9dfb50993d13f3989f081c9e4c4d1cc5aaa6dffc21a53ba191adedc87
[url]http://www.virustotal.com/ru/analisis/3354bad9dfb50993d13f3989f081c9e4c4d1cc5aaa6dffc21a53ba191adedc87-1261404570[/url]
-
Файл 25151822.exe получен 2009.12.21 16:02:26 (UTC)
Результат: 19/41 (46.35%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.21 Trojan.Win32.FakeAV!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.21 -
[B]AntiVir 7.9.1.114 2009.12.21 TR/FraudPack.afaa[/B]
Antiy-AVL 2.0.3.7 2009.12.18 -
[B]Authentium 5.2.0.5 2009.12.21 W32/FakeAlert.DX3.gen!Eldorado[/B]
Avast 4.8.1351.0 2009.12.21 -
AVG 8.5.0.427 2009.12.21 -
BitDefender 7.2 2009.12.21 -
CAT-QuickHeal 10.00 2009.12.21 -
ClamAV 0.94.1 2009.12.21 -
[B]Comodo 3320 2009.12.21 TrojWare.Win32.FraudTool.TS.~FGA[/B]
[B]DrWeb 5.0.0.12182 2009.12.21 Trojan.Packed.18524[/B]
eSafe 7.0.17.0 2009.12.21 -
eTrust-Vet 35.1.7187 2009.12.21 -
[B]F-Prot 4.5.1.85 2009.12.21 W32/FakeAlert.DX3.gen!Eldorado[/B]
[B]F-Secure 9.0.15370.0 2009.12.21 Suspicious:W32/Malware!Gemini[/B]
Fortinet 4.0.14.0 2009.12.21 -
GData 19 2009.12.21 -
[B]Ikarus T3.1.1.79.0 2009.12.21 Trojan.Win32.FakeAV[/B]
Jiangmin 13.0.900 2009.12.21 -
K7AntiVirus 7.10.925 2009.12.21 -
[B]Kaspersky 7.0.0.125 2009.12.21 Trojan.Win32.FraudPack.afaa[/B]
[B]McAfee 5838 2009.12.20 FakeAlert-KC.d[/B]
[B]McAfee+Artemis 5838 2009.12.20 FakeAlert-KC.d[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.21 Heuristic.LooksLike.Worm.Koobface.H[/B]
[B]Microsoft 1.5302 2009.12.21 Trojan:Win32/Winwebsec[/B]
[B]NOD32 4706 2009.12.21 Win32/Kryptik.BMR[/B]
Norman 6.04.03 2009.12.21 -
nProtect 2009.1.8.0 2009.12.21 -
Panda 10.0.2.2 2009.12.15 -
[B]PCTools 7.0.3.5 2009.12.21 RogueAntiSpyware.SecurityToolFraud[/B]
[B]Prevx 3.0 2009.12.21 Medium Risk Malware[/B]
Rising 22.27.00.04 2009.12.21 -
[B]Sophos 4.49.0 2009.12.21 Mal/FakeAV-AD[/B]
[B]Sunbelt 3.2.1858.2 2009.12.20 FraudTool.Win32.RogueSecurity (v)[/B]
Symantec 1.4.4.12 2009.12.21 -
TheHacker 6.5.0.3.101 2009.12.21 -
TrendMicro 9.120.0.1004 2009.12.21 -
[B]VBA32 3.12.12.0 2009.12.19 Malware-Cryptor.Win32.General.8[/B]
ViRobot 2009.12.21.2099 2009.12.21 -
VirusBuster 5.0.21.0 2009.12.20 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/d5e1b1552563857527338a518ec97447dc3e8dac018a8fb30fbccc9f83e1fb9b-1261411346[/url]
[size="1"][color="#666686"][B][I]Добавлено через 4 часа 6 минут[/I][/B][/color][/size]
Файл photo7.scr получен 2009.12.21 21:10:48 (UTC)
Результат: 9/41 (21.95%)
[QUOTE]a-squared 4.5.0.43 2009.12.21 -
AhnLab-V3 5.0.0.2 2009.12.21 -
AntiVir 7.9.1.122 2009.12.21 -
Antiy-AVL 2.0.3.7 2009.12.18 -
Authentium 5.2.0.5 2009.12.21 -
Avast 4.8.1351.0 2009.12.21 -
AVG 8.5.0.427 2009.12.21 -
BitDefender 7.2 2009.12.21 -
[B]CAT-QuickHeal 10.00 2009.12.21 Worm.Rimecud.A[/B]
ClamAV 0.94.1 2009.12.21 -
Comodo 3323 2009.12.21 -
[B]DrWeb 5.0.0.12182 2009.12.21 Trojan.Packed.688[/B]
eSafe 7.0.17.0 2009.12.21 -
eTrust-Vet 35.1.7188 2009.12.21 -
F-Prot 4.5.1.85 2009.12.21 -
[B]F-Secure 9.0.15370.0 2009.12.21 Suspicious:W32/Malware!Online[/B]
Fortinet 4.0.14.0 2009.12.21 -
GData 19 2009.12.21 -
Ikarus T3.1.1.79.0 2009.12.21 -
Jiangmin 13.0.900 2009.12.21 -
K7AntiVirus 7.10.925 2009.12.21 -
Kaspersky 7.0.0.125 2009.12.21 -
McAfee 5839 2009.12.21 -
[B]McAfee+Artemis 5839 2009.12.21 Artemis!D8C0041D7545[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.21 Heuristic.LooksLike.Win32.Suspicious.H!85[/B]
[B]Microsoft 1.5302 2009.12.21 Backdoor:Win32/Bifrose.DN[/B]
NOD32 4707 2009.12.21 -
Norman 6.04.03 2009.12.21 -
nProtect 2009.1.8.0 2009.12.21 -
[B]Panda 10.0.2.2 2009.12.15 Suspicious file[/B]
PCTools 7.0.3.5 2009.12.21 -
Prevx 3.0 2009.12.21 -
Rising 22.27.00.04 2009.12.21 -
[B]Sophos 4.49.0 2009.12.21 Mal/EncPk-MX[/B]
[B]Sunbelt 3.2.1858.2 2009.12.21 Worm.Win32.Rimecud.a (v)[/B]
Symantec 1.4.4.12 2009.12.21 -
TheHacker 6.5.0.3.103 2009.12.21 -
TrendMicro 9.120.0.1004 2009.12.21 -
VBA32 3.12.12.0 2009.12.19 -
ViRobot 2009.12.21.2099 2009.12.21 -
VirusBuster 5.0.21.0 2009.12.21 -[/QUOTE]
[url]http://www.virustotal.com/ru/analisis/1c42d2d26eddc327630263e7908bff09cf6474d25ad070d95ae8b3ad4c307da3-1261429848[/url]
-
File egaysuc.cn.htm received on 2009.12.22 13:32:30 (UTC)
Result: 10/41 (24.39%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.22 Trojan.HTML.Fraud!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.22 -
AntiVir 7.9.1.122 2009.12.22 -
[B]Antiy-AVL 2.0.3.7 2009.12.22 Trojan/HTML.Fraud[/B]
[B]Authentium 5.2.0.5 2009.12.22 JS/FakeAV.D[/B]
[B]Avast 4.8.1351.0 2009.12.22 JS:FakeAV-CQ[/B]
AVG 8.5.0.427 2009.12.22 -
BitDefender 7.2 2009.12.22 -
CAT-QuickHeal 10.00 2009.12.22 -
ClamAV 0.94.1 2009.12.22 -
Comodo 3331 2009.12.22 -
DrWeb 5.0.1.12181 2009.12.22 -
eSafe 7.0.17.0 2009.12.21 -
eTrust-Vet 35.1.7191 2009.12.22 -
[B]F-Prot 4.5.1.85 2009.12.21 JS/FakeAV.D[/B]
F-Secure 9.0.15370.0 2009.12.22 -
Fortinet 4.0.14.0 2009.12.22 -
[B]GData 19 2009.12.22 JS:FakeAV-CQ[/B]
[B]Ikarus T3.1.1.79.0 2009.12.22 Trojan.HTML.Fraud[/B]
Jiangmin 13.0.900 2009.12.22 -
K7AntiVirus 7.10.926 2009.12.22 -
[B]Kaspersky 7.0.0.125 2009.12.22 Trojan.HTML.Fraud.s[/B]
McAfee 5839 2009.12.21 -
McAfee+Artemis 5839 2009.12.21 -
McAfee-GW-Edition 6.8.5 2009.12.22 -
[B]Microsoft 1.5302 2009.12.22 TrojanDownloader:JS/Renos[/B]
NOD32 4708 2009.12.22 -
Norman 6.04.03 2009.12.22 -
nProtect 2009.1.8.0 2009.12.22 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.22 -
Prevx 3.0 2009.12.22 -
Rising 22.27.01.04 2009.12.22 -
[B]Sophos 4.49.0 2009.12.22 Mal/FakeAvJs-A[/B]
Sunbelt 3.2.1858.2 2009.12.22 -
Symantec 1.4.4.12 2009.12.22 -
TheHacker 6.5.0.3.103 2009.12.22 -
TrendMicro 9.120.0.1004 2009.12.22 -
VBA32 3.12.12.0 2009.12.22 -
ViRobot 2009.12.22.2102 2009.12.22 -
VirusBuster 5.0.21.0 2009.12.21 -[/QUOTE]
[url]http://www.virustotal.com/analisis/262b72dcb2b115c5d90a644c582a3b27c5b1a3349368a08b8946af57f1713d8f-1261488750[/url]
-
Файл vkontakte.exe получен 2009.12.25 10:46:45 (UTC)
Текущий статус: закончено
Результат: 15/41 (36.59%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.43 2009.12.25 Trojan.Win32.Qhost!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.24 -
[B]AntiVir 7.9.1.122 2009.12.24 TR/Hosts.R[/B]
Antiy-AVL 2.0.3.7 2009.12.25 -
Authentium 5.2.0.5 2009.12.25 -
Avast 4.8.1351.0 2009.12.25 -
AVG 8.5.0.430 2009.12.24 -
[B]BitDefender 7.2 2009.12.25 Trojan.Generic.2865533[/B]
CAT-QuickHeal 10.00 2009.12.24 -
ClamAV 0.94.1 2009.12.25 -
[B]Comodo 3362 2009.12.25 Heur.Suspicious[/B]
DrWeb 5.0.1.12222 2009.12.25 Trojan.Hosts.228
eSafe 7.0.17.0 2009.12.24 -
eTrust-Vet 35.1.7197 2009.12.25 -
F-Prot 4.5.1.85 2009.12.25 -
[B]F-Secure 9.0.15370.0 2009.12.24 Trojan.Generic.2865533[/B]
Fortinet 4.0.14.0 2009.12.25 -
[B]GData 19 2009.12.25 Trojan.Generic.2865533
Ikarus T3.1.1.79.0 2009.12.25 Trojan.Win32.Qhost
Jiangmin 13.0.900 2009.12.25 Trojan/StartPage.bim[/B]
K7AntiVirus 7.10.929 2009.12.24 -
[B]Kaspersky 7.0.0.125 2009.12.25 Trojan.Win32.Qhost.mgp[/B]
McAfee 5842 2009.12.24 -
[B]McAfee+Artemis 5842 2009.12.24 Artemis!56CF893C1695
McAfee-GW-Edition 6.8.5 2009.12.25 Trojan.Hosts.R[/B]
Microsoft 1.5302 2009.12.25 -
[B]NOD32 4715 2009.12.24 Win32/Qhost.NPR[/B]
Norman 6.04.03 2009.12.24 -
nProtect 2009.1.8.0 2009.12.24 -
[B]Panda 10.0.2.2 2009.12.15 Trj/CI.A[/B]
PCTools 7.0.3.5 2009.12.25 -
[B]Prevx 3.0 2009.12.25 High Risk Cloaked Malware[/B]
Rising 22.27.04.04 2009.12.25 -
Sophos 4.49.0 2009.12.25 -
Sunbelt 3.2.1858.2 2009.12.24 -
Symantec 1.4.4.12 2009.12.25 -
TheHacker 6.5.0.3.110 2009.12.24 -
TrendMicro 9.120.0.1004 2009.12.25 -
VBA32 3.12.12.0 2009.12.25 -
ViRobot 2009.12.24.2107 2009.12.24 -
VirusBuster 5.0.21.0 2009.12.25 -[/QUOTE]
Дополнительная информация
File size: 146926 bytes
MD5...: 56cf893c169595e1fe7f1ee39a76ea84
SHA1..: eff92fe2cd64bdcbb0205a3a44395bba7d7f9449
SHA256: 395e32c4751a5faf9aa38b0f225eb11a682844928a560420c78e1790dc0145c8
ssdeep: 3072:wBAp5XhKpN4eOyVTGfhEClj8jTk+0hzOuXwQDIW:nbXE9OiTGfhEClq9Udw
Qx
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/395e32c4751a5faf9aa38b0f225eb11a682844928a560420c78e1790dc0145c8-1261738005[/url]
-
File FlashDecoder.exe received on 2009.12.25 20:25:04 (UTC)
Result: 4/41 (9.76%)
[QUOTE]a-squared 4.5.0.43 2009.12.25 -
AhnLab-V3 5.0.0.2 2009.12.25 -
AntiVir 7.9.1.122 2009.12.24 -
Antiy-AVL 2.0.3.7 2009.12.25 -
Authentium 5.2.0.5 2009.12.25 -
[B]Avast 4.8.1351.0 2009.12.25 Win32:FakeAlert-FC[/B]
AVG 8.5.0.430 2009.12.25 -
BitDefender 7.2 2009.12.25 -
CAT-QuickHeal 10.00 2009.12.24 -
ClamAV 0.94.1 2009.12.25 -
Comodo 3366 2009.12.25 -
[B]DrWeb 5.0.1.12222 2009.12.25 Trojan.Winlock.569[/B]
eSafe 7.0.17.0 2009.12.24 -
eTrust-Vet 35.1.7198 2009.12.25 -
F-Prot 4.5.1.85 2009.12.25 -
F-Secure 9.0.15370.0 2009.12.25 -
Fortinet 4.0.14.0 2009.12.25 -
[B]GData 19 2009.12.25 Win32:FakeAlert-FC[/B]
Ikarus T3.1.1.79.0 2009.12.25 -
Jiangmin 13.0.900 2009.12.25 -
K7AntiVirus 7.10.929 2009.12.24 -
Kaspersky 7.0.0.125 2009.12.25 -
McAfee 5842 2009.12.24 -
McAfee+Artemis 5842 2009.12.24 -
McAfee-GW-Edition 6.8.5 2009.12.25 -
Microsoft 1.5302 2009.12.25 -
[B]NOD32 4716 2009.12.25 a variant of Win32/Kryptik.BNK[/B]
Norman 6.04.03 2009.12.24 -
nProtect 2009.1.8.0 2009.12.24 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.25 -
Prevx 3.0 2009.12.25 -
Rising 22.27.04.04 2009.12.25 -
Sophos 4.49.0 2009.12.25 -
Sunbelt 3.2.1858.2 2009.12.25 -
Symantec 1.4.4.12 2009.12.25 -
TheHacker 6.5.0.3.111 2009.12.25 -
TrendMicro 9.120.0.1004 2009.12.25 -
VBA32 3.12.12.0 2009.12.25 -
ViRobot 2009.12.24.2107 2009.12.24 -
VirusBuster 5.0.21.0 2009.12.25 - [/QUOTE]
[url]http://www.virustotal.com/analisis/6b30186a9797a19128ec2ab827b2544014e71c9bd12f85273544281dacaef546-1261772704[/url]
File wpduyf.exe received on 2009.12.25 20:24:44 (UTC)
Result: 4/41 (9.76%)
[QUOTE]a-squared 4.5.0.43 2009.12.25 -
AhnLab-V3 5.0.0.2 2009.12.25 -
AntiVir 7.9.1.122 2009.12.24 -
Antiy-AVL 2.0.3.7 2009.12.25 -
Authentium 5.2.0.5 2009.12.25 -
Avast 4.8.1351.0 2009.12.25 -
AVG 8.5.0.430 2009.12.25 -
BitDefender 7.2 2009.12.25 -
CAT-QuickHeal 10.00 2009.12.24 -
ClamAV 0.94.1 2009.12.25 -
Comodo 3366 2009.12.25 -
DrWeb 5.0.1.12222 2009.12.25 -
eSafe 7.0.17.0 2009.12.24 -
eTrust-Vet 35.1.7198 2009.12.25 -
F-Prot 4.5.1.85 2009.12.25 -
F-Secure 9.0.15370.0 2009.12.25 -
Fortinet 4.0.14.0 2009.12.25 -
GData 19 2009.12.25 -
Ikarus T3.1.1.79.0 2009.12.25 -
Jiangmin 13.0.900 2009.12.25 -
K7AntiVirus 7.10.929 2009.12.24 -
Kaspersky 7.0.0.125 2009.12.25 -
McAfee 5842 2009.12.24 -
McAfee+Artemis 5842 2009.12.24 -
[B]McAfee-GW-Edition 6.8.5 2009.12.25 Heuristic.LooksLike.Win32.Suspicious.H[/B]
Microsoft 1.5302 2009.12.25 -
NOD32 4716 2009.12.25 -
Norman 6.04.03 2009.12.24 -
nProtect 2009.1.8.0 2009.12.24 -
[B]Panda 10.0.2.2 2009.12.15 Suspicious file[/B]
PCTools 7.0.3.5 2009.12.25 -
[B]Prevx 3.0 2009.12.25 High Risk Rootkit[/B]
Rising 22.27.04.04 2009.12.25 -
Sophos 4.49.0 2009.12.25 -
[B]Sunbelt 3.2.1858.2 2009.12.25 Trojan-Spy.Win32.Zbot.gen (v)[/B]
Symantec 1.4.4.12 2009.12.25 -
TheHacker 6.5.0.3.111 2009.12.25 -
TrendMicro 9.120.0.1004 2009.12.25 -
VBA32 3.12.12.0 2009.12.25 -
ViRobot 2009.12.24.2107 2009.12.24 -
VirusBuster 5.0.21.0 2009.12.25 - [/QUOTE]
[url]http://www.virustotal.com/analisis/db88607258548083e986f8b6126503eead6bb54451e48e480b56afa1e405482a-1261772684[/url]
File plugin.exe received on 2009.12.25 20:28:30 (UTC)
Result: 10/41 (24.4%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.25 Trojan.Crypt!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.25 -
[B]AntiVir 7.9.1.122 2009.12.24 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.7 2009.12.25 -
Authentium 5.2.0.5 2009.12.25 -
Avast 4.8.1351.0 2009.12.25 -
AVG 8.5.0.430 2009.12.25 -
BitDefender 7.2 2009.12.25 -
[B]CAT-QuickHeal 10.00 2009.12.24 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.12.25 -
Comodo 3366 2009.12.25 -
DrWeb 5.0.1.12222 2009.12.25 -
eSafe 7.0.17.0 2009.12.24 -
eTrust-Vet 35.1.7198 2009.12.25 -
F-Prot 4.5.1.85 2009.12.25 -
F-Secure 9.0.15370.0 2009.12.25 -
Fortinet 4.0.14.0 2009.12.25 -
GData 19 2009.12.25 -
[B]Ikarus T3.1.1.79.0 2009.12.25 Trojan.Crypt[/B]
Jiangmin 13.0.900 2009.12.25 -
K7AntiVirus 7.10.929 2009.12.24 -
Kaspersky 7.0.0.125 2009.12.25 -
[B]McAfee 5842 2009.12.24 Suspect-1B!EE4F29AC13AD[/B]
[B]McAfee+Artemis 5842 2009.12.24 Suspect-1B!EE4F29AC13AD[/B]
[B]McAfee-GW-Edition 6.8.5 2009.12.25 Heuristic.LooksLike.Win32.Suspicious.C[/B]
Microsoft 1.5302 2009.12.25 -
NOD32 4716 2009.12.25 -
Norman 6.04.03 2009.12.24 -
nProtect 2009.1.8.0 2009.12.24 -
[B]Panda 10.0.2.2 2009.12.15 Suspicious file[/B]
PCTools 7.0.3.5 2009.12.25 -
Prevx 3.0 2009.12.25 -
Rising 22.27.04.04 2009.12.25 -
[B]Sophos 4.49.0 2009.12.25 Sus/UnkPack-C[/B]
[B]Sunbelt 3.2.1858.2 2009.12.25 Trojan-Spy.Win32.Zbot.gen (v)[/B]
Symantec 1.4.4.12 2009.12.25 -
TheHacker 6.5.0.3.111 2009.12.25 -
TrendMicro 9.120.0.1004 2009.12.25 -
VBA32 3.12.12.0 2009.12.25 -
ViRobot 2009.12.24.2107 2009.12.24 -
VirusBuster 5.0.21.0 2009.12.25 - [/QUOTE]
[url]http://www.virustotal.com/analisis/4e6b840fcf296c398954c6e372b58f5e3b2801d5249cf651ce15c85f6f0e221f-1261772910[/url]
File 000 received on 2009.12.25 20:36:50 (UTC)
Result: 2/40 (5%)
[QUOTE]a-squared 4.5.0.43 2009.12.25 -
AhnLab-V3 5.0.0.2 2009.12.25 -
AntiVir 7.9.1.122 2009.12.24 -
Antiy-AVL 2.0.3.7 2009.12.25 -
Authentium 5.2.0.5 2009.12.25 -
[B]Avast 4.8.1351.0 2009.12.25 JS:Redirector-AQ[/B]
AVG 8.5.0.430 2009.12.25 -
BitDefender 7.2 2009.12.25 -
CAT-QuickHeal 10.00 2009.12.24 -
ClamAV 0.94.1 2009.12.25 -
Comodo 3366 2009.12.25 -
DrWeb 5.0.1.12222 2009.12.25 -
eSafe 7.0.17.0 2009.12.24 -
eTrust-Vet 35.1.7198 2009.12.25 -
F-Prot 4.5.1.85 2009.12.25 -
F-Secure 9.0.15370.0 2009.12.25 -
Fortinet 4.0.14.0 2009.12.25 -
[B]GData 19 2009.12.25 JS:Redirector-AQ[/B]
Ikarus T3.1.1.79.0 2009.12.25 -
K7AntiVirus 7.10.929 2009.12.24 -
Kaspersky 7.0.0.125 2009.12.25 -
McAfee 5842 2009.12.24 -
McAfee+Artemis 5842 2009.12.24 -
McAfee-GW-Edition 6.8.5 2009.12.25 -
Microsoft 1.5302 2009.12.25 -
NOD32 4716 2009.12.25 -
Norman 6.04.03 2009.12.24 -
nProtect 2009.1.8.0 2009.12.24 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.25 -
Prevx 3.0 2009.12.25 -
Rising 22.27.04.04 2009.12.25 -
Sophos 4.49.0 2009.12.25 -
Sunbelt 3.2.1858.2 2009.12.25 -
Symantec 1.4.4.12 2009.12.25 -
TheHacker 6.5.0.3.111 2009.12.25 -
TrendMicro 9.120.0.1004 2009.12.25 -
VBA32 3.12.12.0 2009.12.25 -
ViRobot 2009.12.24.2107 2009.12.24 -
VirusBuster 5.0.21.0 2009.12.25 - [/QUOTE]
[url]http://www.virustotal.com/analisis/18d7a8028b4e824ef8500308e63536456cc8af13e52618b5ada8a0a7a777cd79-1261773410[/url]
-
Новоупакованный староTDL3. Жаль только, что видят далеко не все.
[QUOTE]a-squared 4.5.0.43 2009.12.28 -
AhnLab-V3 5.0.0.2 2009.12.28 -
AntiVir 7.9.1.122 2009.12.28 -
Antiy-AVL 2.0.3.7 2009.12.28 -
Authentium 5.2.0.5 2009.12.28 -
Avast 4.8.1351.0 2009.12.27 -
AVG 8.5.0.430 2009.12.28 -
BitDefender 7.2 2009.12.28 -
CAT-QuickHeal 10.00 2009.12.28 -
ClamAV 0.94.1 2009.12.28 -
Comodo 3394 2009.12.28 -
DrWeb 5.0.1.12222 2009.12.28 -
eSafe 7.0.17.0 2009.12.28 -
F-Prot 4.5.1.85 2009.12.27 -
F-Secure 9.0.15370.0 2009.12.28 -
Fortinet 4.0.14.0 2009.12.28 -
GData 19 2009.12.28 -
Ikarus T3.1.1.79.0 2009.12.28 -
Jiangmin 13.0.900 2009.12.28 -
K7AntiVirus 7.10.932 2009.12.28 -
Kaspersky 7.0.0.125 2009.12.28 -
McAfee 5844 2009.12.27 -
McAfee+Artemis 5844 2009.12.27 -
McAfee-GW-Edition 6.8.5 2009.12.28 Heuristic.LooksLike.Trojan.Dropper.A
Microsoft 1.5302 2009.12.26 -
NOD32 4722 2009.12.28 -
Norman 6.04.03 2009.12.28 -
nProtect 2009.1.8.0 2009.12.28 -
Panda 10.0.2.2 2009.12.15 -
PCTools 7.0.3.5 2009.12.28 -
Prevx 3.0 2009.12.28 -
Rising 22.28.00.04 2009.12.28 -
Sophos 4.49.0 2009.12.28 Sus/UnkPack-C
Sunbelt 3.2.1858.2 2009.12.27 -
Symantec 1.4.4.12 2009.12.28 -
TheHacker 6.5.0.3.115 2009.12.28 -
TrendMicro 9.120.0.1004 2009.12.28 Mal_TDSS-11
VBA32 3.12.12.0 2009.12.26 -
ViRobot 2009.12.28.2111 2009.12.28 -
VirusBuster 5.0.21.0 2009.12.28 -[/QUOTE]
[url]http://www.virustotal.com/analisis/9c8babd2e141ac4c75a9830b2328f8176a0895ea6c29e9c96ce03083a60be9df-1262014768[/url]
и
[url]http://www.virustotal.com/analisis/3e4922b77719202fa6c1b8b61fc42c93738506c46f7e0f63fedd809f3fce5a72-1262016674[/url]
-
Файл windows7addon.exe получен 2009.12.28 15:23:46 (UTC)
Текущий статус: закончено
Результат: 12/41 (29.27%)
[QUOTE]
[LEFT]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.43 2009.12.28 Backdoor.Win32.SdBot!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.28 -
[B]AntiVir 7.9.1.122 2009.12.28 Worm/SdBot.80384.4[/B]
Antiy-AVL 2.0.3.7 2009.12.28 -
Authentium 5.2.0.5 2009.12.28 -
Avast 4.8.1351.0 2009.12.27 -
AVG 8.5.0.430 2009.12.28 -
BitDefender 7.2 2009.12.28 -
CAT-QuickHeal 10.00 2009.12.28 -
ClamAV 0.94.1 2009.12.28 -
[B]Comodo 3394 2009.12.28 Heur.Suspicious[/B]
DrWeb 5.0.1.12222 2009.12.28 -
eSafe 7.0.17.0 2009.12.28 -
eTrust-Vet 35.1.7201 2009.12.28 -
F-Prot 4.5.1.85 2009.12.27 -
F-Secure 9.0.15370.0 2009.12.28 -
[B]Fortinet 4.0.14.0 2009.12.28 W32/SDBot.QTV!tr.bdr[/B]
GData 19 2009.12.28 -
[B]Ikarus T3.1.1.79.0 2009.12.28 Backdoor.Win32.SdBot[/B]
Jiangmin 13.0.900 2009.12.28 -
K7AntiVirus 7.10.932 2009.12.28 -
[B]Kaspersky 7.0.0.125 2009.12.28 Backdoor.Win32.SdBot.qtv[/B]
McAfee 5844 2009.12.27 -
McAfee+Artemis 5844 2009.12.27 -
[B]McAfee-GW-Edition 6.8.5 2009.12.28 Worm.SdBot.80384.4[/B]
Microsoft 1.5302 2009.12.26 -
[B]NOD32 4722 2009.12.28 a variant of in32/Injector.ANF[/B]
Norman 6.04.03 2009.12.28 -
nProtect 2009.1.8.0 2009.12.28 -
[B]Panda 10.0.2.2 2009.12.15 Suspicious file[/B]
PCTools 7.0.3.5 2009.12.28 -
[B]Prevx 3.0 2009.12.28 High Risk Cloaked Malware[/B]
Rising 22.28.00.04 2009.12.28 -
[B]Sophos 4.49.0 2009.12.28 Mal/FakeAl-A[/B]
[B]Sunbelt 3.2.1858.2 2009.12.27 Trojan.Win32.Generic!SB.0[/B]
Symantec 1.4.4.12 2009.12.28 -
TheHacker 6.5.0.3.115 2009.12.28 -
TrendMicro 9.120.0.1004 2009.12.28 -
VBA32 3.12.12.0 2009.12.26 -
ViRobot 2009.12.28.2111 2009.12.28 -
VirusBuster 5.0.21.0 2009.12.28 -
[/LEFT]
[/QUOTE]
Дополнительная информация
File size: 80384 bytes
MD5 : 82a3ecbdd761bb8b9174d9b212070e14
SHA1 : f1fe4afd89e6d1bc2008df04a4bc4f2d47693ccb
SHA256: c8b446b2731e0db3e3e0cb2bd16f93ba2c9773538f5eef7bf185025216faf734
PEInfo: PE Structure information
[URL]http://www.virustotal.com/ru/analisis/c8b446b2731e0db3e3e0cb2bd16f93ba2c9773538f5eef7bf185025216faf734-1262013826[/URL]
-
File FlashDecoder.exe received on 2009.12.30 12:03:32 (UTC)
Result: 9/41 (21.96%)
[QUOTE][B]a-squared 4.5.0.43 2009.12.30 Trojan-Dropper.Win32.Sirefef!IK[/B]
AhnLab-V3 5.0.0.2 2009.12.29 -
[B]AntiVir 7.9.1.122 2009.12.30 TR/Drop.Sirefef.B.24[/B]
Antiy-AVL 2.0.3.7 2009.12.30 -
Authentium 5.2.0.5 2009.12.30 -
Avast 4.8.1351.0 2009.12.30 -
AVG 8.5.0.430 2009.12.30 -
BitDefender 7.2 2009.12.30 -
CAT-QuickHeal 10.00 2009.12.30 -
ClamAV 0.94.1 2009.12.30 -
Comodo 3414 2009.12.30 -
[B]DrWeb 5.0.1.12222 2009.12.30 Trojan.MulDrop.56048[/B]
eSafe 7.0.17.0 2009.12.29 -
eTrust-Vet 35.1.7206 2009.12.30 -
F-Prot 4.5.1.85 2009.12.30 -
F-Secure 9.0.15370.0 2009.12.30 -
Fortinet 4.0.14.0 2009.12.30 -
GData 19 2009.12.30 -
[B]Ikarus T3.1.1.79.0 2009.12.30 Trojan-Dropper.Win32.Sirefef[/B]
Jiangmin 13.0.900 2009.12.30 -
K7AntiVirus 7.10.932 2009.12.28 -
[B]Kaspersky 7.0.0.125 2009.12.30 Trojan-Downloader.Win32.Agent.cyox[/B]
McAfee 5846 2009.12.29 -
McAfee+Artemis 5846 2009.12.29 -
[B]McAfee-GW-Edition 6.8.5 2009.12.30 Trojan.Drop.Sirefef.B.24[/B]
[B]Microsoft 1.5302 2009.12.30 TrojanDropper:Win32/Sirefef.B[/B]
[B]NOD32 4728 2009.12.30 Win32/Sirefef.P[/B]
Norman 6.04.03 2009.12.30 -
nProtect 2009.1.8.0 2009.12.30 -
Panda 10.0.2.2 2009.12.30 -
PCTools 7.0.3.5 2009.12.30 -
Prevx 3.0 2009.12.30 -
[B]Rising 22.28.02.04 2009.12.30 Packer.Win32.UnkPacker.b[/B]
Sophos 4.49.0 2009.12.30 -
Sunbelt 3.2.1858.2 2009.12.30 -
Symantec 1.4.4.12 2009.12.30 -
TheHacker 6.5.0.3.121 2009.12.30 -
TrendMicro 9.120.0.1004 2009.12.30 -
VBA32 3.12.12.1 2009.12.30 -
ViRobot 2009.12.30.2116 2009.12.30 -
VirusBuster 5.0.21.0 2009.12.29 - [/QUOTE]
[url]http://www.virustotal.com/analisis/a68810e41b5661e34a1868f11bad42fb3fd58a7482ee948cc6bffb646e6edf6c-1262174612[/url]
Page generated in 0.01382 seconds with 10 queries