Исследование антивирусов 5

08:59:48 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.36 02.09.2007 TR/Crypt.PCMM.Gen
Authentium 4.93.8 02.09.2007 no virus found
Avast 4.7.936.0 02.09.2007 no virus found
AVG 386 02.09.2007 no virus found
BitDefender 7.2 02.10.2007 no virus found
CAT-QuickHeal 9.00 02.09.2007 (Suspicious) - DNAScan
ClamAV devel-20060426 02.09.2007 no virus found
DrWeb 4.33 02.09.2007 BackDoor.Mailbot
eSafe 7.0.14.0 02.09.2007 Win32.SdBot.beb
eTrust-Vet 30.4.3384 02.10.2007 no virus found
Ewido 4.0 02.09.2007 Backdoor.SdBot.beb
Fortinet 2.85.0.0 02.10.2007 W32/SDBot.BEB!tr.bdr
F-Prot 4.2.1.29 02.09.2007 no virus found
F-Secure 6.70.13030.0 02.10.2007 Backdoor.Win32.SdBot.beb
Ikarus T3.1.0.31 02.10.2007 Backdoor.Win32.SdBot.beb
Kaspersky 4.0.2.24 02.10.2007 Backdoor.Win32.SdBot.beb
McAfee 4960 02.09.2007 W32/Sdbot.worm!76714
Microsoft 1.2204 02.10.2007 no virus found
NOD32v2 2049 02.10.2007 no virus found
Norman 5.80.02 02.09.2007 no virus found
Panda 9.0.0.4 02.09.2007 W32/Sdbot.JKF.worm
Prevx1 V2 02.10.2007 no virus found
Sophos 4.13.0 02.08.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 VIPRE.Suspicious
Symantec 10 02.10.2007 no virus found
TheHacker 6.1.6.055 02.09.2007 no virus found
UNA 1.83 02.09.2007 Backdoor.SdBot.1217
VBA32 3.11.2 02.09.2007 Backdoor.Win32.SdBot.beb
VirusBuster 4.3.19:9 02.09.2007 no virus found

Complete scanning result of "msg.nyNVvm", received in VirusTotal at 02.10.2007, 11:27:26 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.36 02.09.2007 TR/Dldr.iBill.L
Authentium 4.93.8 02.09.2007 W32/Downloader.BBAV[/B]
Avast 4.7.936.0 02.09.2007 no virus found
AVG 386 02.09.2007 no virus found
BitDefender 7.2 02.10.2007 no virus found
CAT-QuickHeal 9.00 02.09.2007 no virus found
ClamAV devel-20060426 02.10.2007 no virus found
DrWeb 4.33 02.09.2007 no virus found
eSafe 7.0.14.0 02.09.2007 no virus found
eTrust-Vet 30.4.3384 02.10.2007 no virus found
Ewido 4.0 02.09.2007 no virus found
Fortinet 2.85.0.0 02.10.2007 suspicious
[B]F-Prot 4.2.1.29 02.09.2007 W32/Downloader.BBAV[/B]
F-Secure 6.70.13030.0 02.10.2007 no virus found
Ikarus T3.1.0.31 02.10.2007 no virus found
Kaspersky 4.0.2.24 02.10.2007 no virus found
[B]McAfee 4960 02.09.2007 New Win32[/B]
Microsoft 1.2204 02.10.2007 no virus found
NOD32v2 2049 02.10.2007 no virus found
Norman 5.80.02 02.09.2007 no virus found
[B]Panda 9.0.0.4 02.09.2007 Suspicious file[/B]
Prevx1 V2 02.10.2007 no virus found
Sophos 4.13.0 02.08.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.10.2007 no virus found
TheHacker 6.1.6.055 02.09.2007 no virus found
UNA 1.83 02.09.2007 no virus found
[B]VBA32 3.11.2 02.09.2007 suspected of I-Worm (double extension)[/B]
VirusBuster 4.3.19:9 02.09.2007 no virus found

Aditional Information
File size: 15309 bytes
MD5: 2d07870d80655861f25bb91989f85d09
SHA1: 7e3e1320480d899263b284e5a84492f6b2eaf2ea

15:48:22 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.36 02.09.2007 no virus found
Authentium 4.93.8 02.09.2007 no virus found
Avast 4.7.936.0 02.09.2007 no virus found
AVG 386 02.09.2007 no virus found
BitDefender 7.2 02.10.2007 Adware.MyWebSearch.AU
CAT-QuickHeal 9.00 02.09.2007 no virus found
ClamAV devel-20060426 02.10.2007 Adware.Mywebsearch-2
DrWeb 4.33 02.10.2007 no virus found
eSafe 7.0.14.0 02.09.2007 no virus found
eTrust-Vet 30.4.3384 02.10.2007 no virus found
Ewido 4.0 02.10.2007 no virus found
Fortinet 2.85.0.0 02.10.2007 W32/MyWebSearch
F-Prot 4.2.1.29 02.09.2007 no virus found
F-Secure 6.70.13030.0 02.10.2007 no virus found
Ikarus T3.1.0.31 02.10.2007 not-a-virus:AdWare.Win32.MyWebSearch
Kaspersky 4.0.2.24 02.10.2007 not-a-virus:AdTool.Win32.MyWebSearch
McAfee 4960 02.09.2007 potentially unwanted program MWS
Microsoft 1.2204 02.10.2007 no virus found
NOD32v2 2050 02.10.2007 no virus found
Norman 5.80.02 02.09.2007 no virus found
Panda 9.0.0.4 02.10.2007 Application/MyWebSearch
Prevx1 V2 02.10.2007 no virus found
Sophos 4.13.0 02.08.2007 MyWebSearch
Sunbelt 2.2.907.0 02.09.2007 MyWebSearch Toolbar
Symantec 10 02.10.2007 no virus found
TheHacker 6.1.6.055 02.09.2007 no virus found
UNA 1.83 02.09.2007 no virus found
VBA32 3.11.2 02.09.2007 no virus found
VirusBuster 4.3.19:9 02.09.2007 no virus found

Complete scanning result of "foto.rar", received in VirusTotal at 02.11.2007, 09:35:26 (CET).
Antivirus Version Update Result
[B]AntiVir 7.3.1.36 02.09.2007 TR/PSW.LdPinch.bmh[/B]
Authentium 4.93.8 02.09.2007 no virus found
Avast 4.7.936.0 02.11.2007 no virus found
[B]AVG 386 02.10.2007 PSW.Ldpinch.EJI[/B]
BitDefender 7.2 02.11.2007 no virus found
[B]CAT-QuickHeal 9.00 02.09.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.10.2007 no virus found
[B]DrWeb 4.33 02.10.2007 Trojan.PWS.LDPinch.1423
eSafe 7.0.14.0 02.09.2007 Win32.LdPinch.bmh[/B]
eTrust-Vet 30.4.3384 02.10.2007 no virus found
[B]Ewido 4.0 02.10.2007 Trojan.LdPinch.bmh
Fortinet 2.85.0.0 02.11.2007 W32/LdPinch.BMH!tr.pws[/B]
F-Prot 4.2.1.29 02.09.2007 no virus found
[B]F-Secure 6.70.13030.0 02.10.2007 Trojan-PSW.Win32.LdPinch.bmh[/B]
Ikarus T3.1.0.31 02.11.2007 no virus found
[B]Kaspersky 4.0.2.24 02.11.2007 Trojan-PSW.Win32.LdPinch.bmh[/B]
McAfee 4960 02.09.2007 no virus found
Microsoft 1.2204 02.11.2007 no virus found
NOD32v2 2051 02.10.2007 no virus found
Norman 5.80.02 02.09.2007 no virus found
[B]Panda 9.0.0.4 02.10.2007 Suspicious file[/B]
Prevx1 V2 02.11.2007 no virus found
Sophos 4.13.0 02.08.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.11.2007 no virus found
[B]TheHacker 6.1.6.056 02.11.2007 Trojan/PSW.LdPinch.bmh[/B]
UNA 1.83 02.09.2007 no virus found
[B]VBA32 3.11.2 02.10.2007 Trojan-PSW.Win32.LdPinch.bmh[/B]
VirusBuster 4.3.19:9 02.10.2007 no virus found

Aditional Information
File size: 29180 bytes
MD5: d1ba2c7856a3be5559a76bfdd1eade6e
SHA1: 89cb4bf8f76b618d662ab4b16e5a97a2ac3c5ff6

Complete scanning result of "flash.exe", received in VirusTotal at 02.12.2007, 16:44:55 (CET).


Antivirus Version Update Result

[B]AntiVir 7.3.1.36 02.12.2007 DIAL/30835.A[/B]
Authentium 4.93.8 02.12.2007 no virus found
Avast 4.7.936.0 02.12.2007 no virus found
AVG 386 02.12.2007 no virus found
[B]BitDefender 7.2 02.12.2007 Trojan.Dropper.Zlob.C[/B]
CAT-QuickHeal 9.00 02.12.2007 no virus found
ClamAV devel-20060426 02.12.2007 no virus found
[B]DrWeb 4.33 02.12.2007 Trojan.MulDrop.5509
eSafe 7.0.14.0 02.12.2007 Win32.LdPinch.bia[/B]
eTrust-Vet 30.4.3391 02.12.2007 no virus found
Ewido 4.0 02.11.2007 no virus found
[B]Fortinet 2.85.0.0 02.12.2007 W32/LdPinch.BIA!tr.pws[/B]
F-Prot 4.2.1.29 02.12.2007 no virus found
[B]F-Secure 6.70.13030.0 02.12.2007 Trojan-PSW.Win32.LdPinch.bia
Ikarus T3.1.0.31 02.12.2007 Trojan-PWS.Win32.LdPinch.bia
Kaspersky 4.0.2.24 02.12.2007 Trojan-PSW.Win32.LdPinch.bia[/B]
McAfee 4960 02.09.2007 no virus found
Microsoft 1.2204 02.12.2007 no virus found
NOD32v2 2055 02.12.2007 no virus found
Norman 5.80.02 02.12.2007 no virus found
[B]Panda 9.0.0.4 02.12.2007 Suspicious file[/B]
Prevx1 V2 02.12.2007 no virus found
Sophos 4.13.0 02.12.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.12.2007 no virus found
TheHacker 6.1.6.056 02.11.2007 no virus found
UNA 1.83 02.09.2007 no virus found
[B]VBA32 3.11.2 02.11.2007 Trojan.MulDrop.5509[/B]
VirusBuster 4.3.19:9 02.12.2007 no virus found

Aditional Information
File size: 30219 bytes
MD5: eaf40e9230cf1de78a8a8f50bbca5b7d
SHA1: 19c1ffd9ff9f6139bb9595dc9463299788bf05c6

Из темы [url]http://virusinfo.info/showthread.php?t=7935[/url]
Complete scanning result of "avz00001.dta", received in VirusTotal at 02.13.2007, 11:34:20 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.36 02.13.2007 TR/Crypt.XPACK.Gen
Authentium 4.93.8 02.12.2007 W32/PWStealer.FJQ[/B]
Avast 4.7.936.0 02.12.2007 no virus found
[B]AVG 386 02.12.2007 PSW.Generic3.CWB[/B]
BitDefender 7.2 02.13.2007 no virus found
[B]CAT-QuickHeal 9.00 02.13.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.12.2007 no virus found
[B]DrWeb 4.33 02.13.2007 Trojan.PWS.Pero[/B]
[B]eSafe 7.0.14.0 02.12.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3394 02.13.2007 no virus found
[B]Ewido 4.0 02.12.2007 Trojan.Ceda.a[/B]
[B]Fortinet 2.85.0.0 02.13.2007 suspicious
F-Prot 4.2.1.29 02.12.2007 W32/PWStealer.FJQ[/B]
[B]F-Secure 6.70.13030.0 02.13.2007 Trojan-PSW.Win32.Ceda.a[/B]
Ikarus T3.1.0.31 02.13.2007 no virus found
[B]Kaspersky 4.0.2.24 02.13.2007 Trojan-PSW.Win32.Ceda.a[/B]
McAfee 4961 02.12.2007 no virus found
[B]Microsoft 1.2204 02.13.2007 TrojanDownloader:Win32/Clagger.gen!B
NOD32v2 2056 02.12.2007 probably a variant of Win32/Genetik
Norman 5.80.02 02.13.2007 Suspicious_F.gen
Panda 9.0.0.4 02.13.2007 Suspicious file
Prevx1 V2 02.13.2007 Trojan.SystemPoser[/B]
Sophos 4.13.0 02.12.2007 no virus found
[B]Sunbelt 2.2.907.0 02.09.2007 VIPRE.Suspicious[/B]
Symantec 10 02.13.2007 no virus found
TheHacker 6.1.6.056 02.11.2007 no virus found
UNA 1.83 02.09.2007 no virus found
VBA32 3.11.2 02.12.2007 no virus found
[B]VirusBuster 4.3.19:9 02.12.2007 novirus:Packed/FSG[/B]

Aditional Information
File size: 27021 bytes
MD5: 4243b966baff1c80fb72ee5485858089
SHA1: 324dd146ca237096acdc78b81a855c9f05f34058
packers: FSG
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=fbc175572579[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "msrdwint.exe", received in VirusTotal at 02.13.2007, 19:50:54 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.37 02.13.2007 no virus found
Authentium 4.93.8 02.12.2007 no virus found
Avast 4.7.936.0 02.13.2007 no virus found
AVG 386 02.13.2007 no virus found
BitDefender 7.2 02.13.2007 no virus found
CAT-QuickHeal 9.00 02.13.2007 (Suspicious) - DNAScan
ClamAV devel-20060426 02.13.2007 no virus found
DrWeb 4.33 02.13.2007 Win32.HLLM.Limar
eSafe 7.0.14.0 02.12.2007 Suspicious Trojan/Worm
eTrust-Vet 30.4.3394 02.13.2007 no virus found
Ewido 4.0 02.13.2007 no virus found
Fortinet 2.85.0.0 02.13.2007 suspicious
F-Prot 4.2.1.29 02.12.2007 no virus found
F-Secure 6.70.13030.0 02.13.2007 no virus found
Ikarus T3.1.0.31 02.13.2007 Backdoor.Win32.Agobot.NQ
Kaspersky 4.0.2.24 02.13.2007 no virus found
McAfee 4961 02.12.2007 New Malware.n
Microsoft 1.2204 02.13.2007 no virus found
NOD32v2 2057 02.13.2007 a variant of Win32/Stration.XJ
Norman 5.80.02 02.13.2007 no virus found
Panda 9.0.0.4 02.13.2007 Suspicious file
Prevx1 V2 02.13.2007 Malware:SysCovert
Sophos 4.14.0 02.13.2007 Mal/Packer
Sunbelt 2.2.907.0 02.09.2007 VIPRE.Suspicious
Symantec 10 02.13.2007 no virus found
TheHacker 6.1.6.056 02.11.2007 no virus found
UNA 1.83 02.13.2007 no virus found
VBA32 3.11.2 02.13.2007 MalwareScope.Worm.Warezov.1
VirusBuster 4.3.19:9 02.13.2007 novirus:Packed/Upack

Complete scanning result of "avz00006.dta", received in VirusTotal at 02.13.2007, 20:22:46 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.13.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 02.12.2007 no virus found
Avast 4.7.936.0 02.13.2007 no virus found
AVG 386 02.13.2007 no virus found
BitDefender 7.2 02.13.2007 no virus found
[B]CAT-QuickHeal 9.00 02.13.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.13.2007 no virus found
DrWeb 4.33 02.13.2007 no virus found
[B]eSafe 7.0.14.0 02.12.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3394 02.13.2007 no virus found
Ewido 4.0 02.13.2007 no virus found
[B]Fortinet 2.85.0.0 02.13.2007 suspicious[/B]
F-Prot 4.2.1.29 02.12.2007 no virus found
F-Secure 6.70.13030.0 02.13.2007 no virus found
Ikarus T3.1.0.31 02.13.2007 no virus found
Kaspersky 4.0.2.24 02.13.2007 no virus found
McAfee 4961 02.12.2007 no virus found
Microsoft 1.2204 02.13.2007 no virus found
[B]NOD32v2 2057 02.13.2007 probably unknown NewHeur_PE virus[/B]
Norman 5.80.02 02.13.2007 no virus found
Panda 9.0.0.4 02.13.2007 no virus found
[B]Prevx1 V2 02.13.2007 Worm.Beagle.DZ[/B]
Sophos 4.14.0 02.13.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.13.2007 no virus found
TheHacker 6.1.6.056 02.11.2007 no virus found
UNA 1.83 02.13.2007 no virus found
VBA32 3.11.2 02.13.2007 no virus found
VirusBuster 4.3.19:9 02.13.2007 no virus found

Aditional Information
File size: 51131 bytes
MD5: 1c3e1e796c98e60c2c8b91e48e401c23
SHA1: 4cf32a92de29a80b420d09de327999050136de16
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=31eb77103843[/url]

Complete scanning result of "avz00003.dta", received in VirusTotal at 02.13.2007, 20:22:02 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.13.2007 TR/Dldr.Stration.Gen[/B]
Authentium 4.93.8 02.12.2007 no virus found
Avast 4.7.936.0 02.13.2007 no virus found
AVG 386 02.13.2007 no virus found
BitDefender 7.2 02.13.2007 no virus found
[B]CAT-QuickHeal 9.00 02.13.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.13.2007 no virus found
[B]DrWeb 4.33 02.13.2007 Win32.HLLM.Beagle
eSafe 7.0.14.0 02.12.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3394 02.13.2007 no virus found
Ewido 4.0 02.13.2007 no virus found
[B]Fortinet 2.85.0.0 02.13.2007 suspicious[/B]
F-Prot 4.2.1.29 02.12.2007 no virus found
F-Secure 6.70.13030.0 02.13.2007 no virus found
Ikarus T3.1.0.31 02.13.2007 no virus found
Kaspersky 4.0.2.24 02.13.2007 no virus found
McAfee 4961 02.12.2007 no virus found
Microsoft 1.2204 02.13.2007 no virus found
[B]NOD32v2 2057 02.13.2007 probably unknown NewHeur_PE virus[/B]
Norman 5.80.02 02.13.2007 no virus found
Panda 9.0.0.4 02.13.2007 no virus found
[B]Prevx1 V2 02.13.2007 Malware.Trojan.Backdoor.Gen[/B]
Sophos 4.14.0 02.13.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.13.2007 no virus found
TheHacker 6.1.6.056 02.11.2007 no virus found
UNA 1.83 02.13.2007 no virus found
VBA32 3.11.2 02.13.2007 no virus found
VirusBuster 4.3.19:9 02.13.2007 no virus found

Aditional Information
File size: 22192 bytes
MD5: 2b9bb0434814b7ea3556dd8648cc5669
SHA1: b869f85ffe96f9be1aa595e79dc2d357d5d1c876
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=391077103630[/url]

Это не хотел постить, но результат ВБА удивил.

Complete scanning result of "avz00005.dta", received in VirusTotal at 02.13.2007, 20:55:03 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.13.2007 TR/Dldr.Bagle.BH
Authentium 4.93.8 02.12.2007 W32/Mitglieder.VK[/B]
Avast 4.7.936.0 02.13.2007 no virus found
[B]AVG 386 02.13.2007 I-Worm/Bagle
BitDefender 7.2 02.13.2007 Trojan.Downloader.Bagle.AS[/B]
CAT-QuickHeal 9.00 02.13.2007 no virus found
[B]ClamAV devel-20060426 02.13.2007 Trojan.Downloader-548
DrWeb 4.33 02.13.2007 Win32.HLLM.Beagle[/B]
eSafe 7.0.14.0 02.12.2007 no virus found
[B]eTrust-Vet 30.4.3394 02.13.2007 Win32/Glieder.EH[/B]
Ewido 4.0 02.13.2007 no virus found
[B]Fortinet 2.85.0.0 02.13.2007 W32/Bagle.BH!tr.dldr
F-Prot 4.2.1.29 02.12.2007 W32/Mitglieder.VK
F-Secure 6.70.13030.0 02.13.2007 Trojan-Downloader.Win32.Bagle.bh[/B]
[B]Ikarus T3.1.0.31 02.13.2007 Trojan-Downloader.Win32.Bagle.bh
Kaspersky 4.0.2.24 02.13.2007 Trojan-Downloader.Win32.Bagle.bh
McAfee 4961 02.12.2007 W32/Bagle.gen
Microsoft 1.2204 02.13.2007 Win32/Bagle.gen!encrypted[/B]
[B]NOD32v2 2057 02.13.2007 Win32/Bagle.HJ
Norman 5.80.02 02.13.2007 W32/Mitglied.ACA
Panda 9.0.0.4 02.13.2007 Trj/Mitglieder.ME[/B]
Prevx1 V2 02.13.2007 no virus found
[B]Sophos 4.14.0 02.13.2007 Mal/Bagpk-A
Sunbelt 2.2.907.0 02.09.2007 VIPRE.Suspicious[/B]
[B]Symantec 10 02.13.2007 Trojan.Tooso.R
TheHacker 6.1.6.056 02.11.2007 Trojan/Downloader.Bagle.bh
UNA 1.83 02.13.2007 TrojanDownloader.Win32.Bagle.A227[/B]
VBA32 3.11.2 02.13.2007 no virus found
[B]VirusBuster 4.3.19:9 02.13.2007 Trojan.DL.Bagle.LJ[/B]

Aditional Information
File size: 1958746 bytes
MD5: ab26d999ae025c410a2b721cb25be695
SHA1: 16f075f768d0aa2bfe8dca51bb077934fb2f52f7
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "avz00002.dta", received in VirusTotal at 02.13.2007, 20:54:08 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.13.2007 TR/Rkit.Bagle.GL[/B]
Authentium 4.93.8 02.12.2007 no virus found
Avast 4.7.936.0 02.13.2007 no virus found
AVG 386 02.13.2007 no virus found
BitDefender 7.2 02.13.2007 no virus found
CAT-QuickHeal 9.00 02.13.2007 no virus found
ClamAV devel-20060426 02.13.2007 no virus found
DrWeb 4.33 02.13.2007 no virus found
eSafe 7.0.14.0 02.12.2007 no virus found
eTrust-Vet 30.4.3394 02.13.2007 no virus found
Ewido 4.0 02.13.2007 no virus found
[B]Fortinet 2.85.0.0 02.13.2007 suspicious[/B]
F-Prot 4.2.1.29 02.12.2007 no virus found
[B]F-Secure 6.70.13030.0 02.13.2007 Email-Worm.Win32.Bagle.hj[/B]
Ikarus T3.1.0.31 02.13.2007 no virus found
[B]Kaspersky 4.0.2.24 02.13.2007 Email-Worm.Win32.Bagle.hj
McAfee 4961 02.12.2007 NTRootKit-W[/B]
Microsoft 1.2204 02.13.2007 no virus found
[B]NOD32v2 2057 02.13.2007 a variant of Win32/Bagle[/B]
Norman 5.80.02 02.13.2007 no virus found
Panda 9.0.0.4 02.13.2007 no virus found
[B]Prevx1 V2 02.13.2007 Bagle.Rootkit[/B]
Sophos 4.14.0 02.13.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.13.2007 no virus found
TheHacker 6.1.6.056 02.11.2007 no virus found
UNA 1.83 02.13.2007 no virus found
VBA32 3.11.2 02.13.2007 no virus found
VirusBuster 4.3.19:9 02.13.2007 no virus found

Aditional Information
File size: 69248 bytes
MD5: a3769f16f8a603eced9ef13ffa9e312f
SHA1: d2248764a45d38125050cc95693c7334e7e441f5
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=5a2f77103519[/url]

scanning result of "winzlo32.dll", received in VirusTotal at 02.14.2007, 11:03:53 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.14.2007 TR/Crypt.PEC2X.Gen [/B]
Authentium 4.93.8 02.14.2007 no virus found
Avast 4.7.936.0 02.14.2007 no virus found
[B]AVG 386 02.14.2007 Generic3.AGG [/B]
BitDefender 7.2 02.14.2007 no virus found
CAT-QuickHeal 9.00 02.13.2007 no virus found
ClamAV devel-20060426 02.14.2007 no virus found
DrWeb 4.33 02.14.2007 no virus found
[B]eSafe 7.0.14.0 02.14.2007 Win32.Agent.qt [/B]
eTrust-Vet 30.4.3397 02.14.2007 no virus found
Ewido 4.0 02.13.2007 no virus found
[B]Fortinet 2.85.0.0 02.14.2007 W32/Agent.QT!tr [/B]
F-Prot 4.2.1.29 02.14.2007 no virus found
[B]F-Secure 6.70.13030.0 02.14.2007 Trojan.Win32.Agent.qt
Ikarus T3.1.0.31 02.14.2007 Trojan.Win32.Agent.qt
Kaspersky 4.0.2.24 02.14.2007 Trojan.Win32.Agent.qt
McAfee 4962 02.13.2007 BackDoor-CVT [/B]
Microsoft 1.2204 02.14.2007 no virus found
[B]NOD32v2 2059 02.14.2007 a variant of Win32/Agent.QT
Norman 5.80.02 02.14.2007 W32/Agent.dam
Panda 9.0.0.4 02.14.2007 Suspicious file [/B]
Prevx1 V2 02.14.2007 no virus found
Sophos 4.14.0 02.13.2007 no virus found
[B]Sunbelt 2.2.907.0 02.09.2007 VIPRE.Suspicious [/B]
Symantec 10 02.14.2007 no virus found
[B]TheHacker 6.1.6.057 02.14.2007 Trojan/Agent.qt [/B]
UNA 1.83 02.13.2007 no virus found
VBA32 3.11.2 02.13.2007 no virus found
VirusBuster 4.3.19:9 02.14.2007 no virus found


Aditional Information
File size: 18432 bytes
MD5: b5fa8436d10db4252e3bc03f9de95458
SHA1: d9ebb3f031fa05c30df11a467a2fcc04cffcaf48
packers: PECOMPACT
packers: PecBundle, PECompact
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Что характерно, два дня назад его никто не обнаруживал..

Complete scanning result of "access-dvd1183.exe", received in VirusTotal at 02.14.2007, 23:28:31 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.37 02.14.2007 no virus found
Authentium 4.93.8 02.14.2007 no virus found
Avast 4.7.936.0 02.14.2007 no virus found
AVG 386 02.14.2007 no virus found
BitDefender 7.2 02.14.2007 no virus found
CAT-QuickHeal 9.00 02.14.2007 no virus found
ClamAV devel-20060426 02.14.2007 no virus found
DrWeb 4.33 02.14.2007 no virus found
eSafe 7.0.14.0 02.14.2007 no virus found
eTrust-Vet 30.4.3397 02.14.2007 no virus found
Ewido 4.0 02.14.2007 no virus found
Fortinet 2.85.0.0 02.14.2007 no virus found
F-Prot 4.2.1.29 02.14.2007 no virus found
[B]F-Secure 6.70.13030.0 02.14.2007 W32/Malware.IFN[/B]
Ikarus T3.1.0.31 02.14.2007 no virus found
Kaspersky 4.0.2.24 02.14.2007 no virus found
McAfee 4963 02.14.2007 no virus found
[B]Microsoft 1.2204 02.14.2007 password protected
NOD32v2 2061 02.14.2007 the file is probably password protected.[/B]
Norman 5.80.02 02.14.2007 no virus found
Panda 9.0.0.4 02.14.2007 no virus found
Prevx1 V2 02.14.2007 no virus found
Sophos 4.14.0 02.13.2007 no virus found
Sunbelt 2.2.907.0 02.09.2007 no virus found
Symantec 10 02.14.2007 no virus found
TheHacker 6.1.6.057 02.14.2007 no virus found
UNA 1.83 02.14.2007 no virus found
[B]VBA32 3.11.2 02.14.2007 MalwareScope.Worm.Warezov.7[/B]
VirusBuster 4.3.19:9 02.14.2007 no virus found

Aditional Information
File size: 197799 bytes
MD5: 081e0dfd0fee8ba2efb4e69c87221285
SHA1: d775cbe62ac3c672202bfd07ef79a1f5a39264d5
packers: BINARYRES, UPX, BINARYRES

Complete scanning result of "ndis.sys", received in VirusTotal at 02.15.2007, 11:12:53 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.37 02.15.2007 no virus found
Authentium 4.93.8 02.15.2007 no virus found
Avast 4.7.936.0 02.14.2007 no virus found
AVG 386 02.14.2007 no virus found
[B]BitDefender 7.2 02.15.2007 Trojan.Agent.AJH
CAT-QuickHeal 9.00 02.15.2007 SpamTool.Agent.u (Not a Virus)[/B]
ClamAV devel-20060426 02.15.2007 no virus found
DrWeb 4.33 02.15.2007 no virus found
eSafe 7.0.14.0 02.14.2007 no virus found
eTrust-Vet 30.4.3400 02.15.2007 no virus found
Ewido 4.0 02.14.2007 no virus found
[B]Fortinet 2.85.0.0 02.15.2007 suspicious[/B]
F-Prot 4.2.1.29 02.15.2007 no virus found
[B]F-Secure 6.70.13030.0 02.15.2007 SpamTool.Win32.Agent.y[/B]
Ikarus T3.1.0.31 02.15.2007 no virus found
[B]Kaspersky 4.0.2.24 02.15.2007 SpamTool.Win32.Agent.y[/B]
McAfee 4963 02.14.2007 no virus found
[B]Microsoft 1.2204 02.15.2007 Spammer:Win32/Mailbot.P
NOD32v2 2062 02.15.2007 a variant of Win32/Spabot.NAC
[/B]Norman 5.80.02 02.14.2007 no virus found
Panda 9.0.0.4 02.15.2007 no virus found
Prevx1 V2 02.15.2007 no virus found
Sophos 4.14.0 02.13.2007 no virus found
Sunbelt 2.2.907.0 02.15.2007 no virus found
Symantec 10 02.15.2007 no virus found
TheHacker 6.1.6.057 02.14.2007 no virus found
[B]UNA 1.83 02.14.2007 SpamTool.Win32.Agent.2889[/B]
VBA32 3.11.2 02.14.2007 no virus found
VirusBuster 4.3.19:9 02.14.2007 no virus found

Aditional Information
File size: 274564 bytes
MD5: 036adf7c154ecf2ff14e55fb664fffcc
SHA1: 1137f4601593773336fa42e08535bc9355c24e56
packers: UPX
packers: BINARYRES, UPX
packers: UPX

Прикреплён в соответствии с правилами.
Лог на Virustotal - вот.
Есть зверь или ругается на пакер - непонятно, ибо Upack-анпекера нет.
Файл сохранён как 070218_053653_rld-wfkg_45d7bbc5ee5fb.rar
Размер файла 1812
MD5 9f34f530fb24e661b32637ee7a79d1eb

Complete scanning result of "rld-wfkg.exe", received in VirusTotal at 02.18.2007, 03:27:34 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.37 02.17.2007 no virus found
Authentium 4.93.8 02.16.2007 no virus found
Avast 4.7.936.0 02.18.2007 no virus found
AVG 386 02.17.2007 no virus found
BitDefender 7.2 02.18.2007 no virus found
CAT-QuickHeal 9.00 02.16.2007 (Suspicious) - DNAScan
ClamAV devel-20060426 02.17.2007 no virus found
DrWeb 4.33 02.17.2007 no virus found
eSafe 7.0.14.0 02.16.2007 suspicious Trojan/Worm
eTrust-Vet 30.4.3408 02.17.2007 no virus found
Ewido 4.0 02.17.2007 no virus found
Fortinet 2.85.0.0 02.17.2007 suspicious
F-Prot 4.2.1.29 02.16.2007 no virus found
F-Secure 6.70.13030.0 02.17.2007 no virus found
Ikarus T3.1.0.31 02.17.2007 Trojan-Dropper.Win32.Agent.ane
Kaspersky 4.0.2.24 02.18.2007 no virus found
McAfee 4965 02.16.2007 no virus found
Microsoft 1.2204 02.17.2007 no virus found
NOD32v2 2067 02.17.2007 no virus found
Norman 5.80.02 02.16.2007 W32/Suspicious_U.gen
Panda 9.0.0.4 02.17.2007 Suspicious file
Prevx1 V2 02.18.2007 no virus found
Sophos 4.14.0 02.16.2007 Mal/Packer
Sunbelt 2.2.907.0 02.17.2007 VIPRE.Suspicious
Symantec 10 02.18.2007 no virus found
TheHacker 6.1.6.059 02.16.2007 no virus found
UNA 1.83 02.16.2007 no virus found
VBA32 3.11.2 02.17.2007 no virus found
VirusBuster 4.3.19:9 02.17.2007 novirus:Packed/Upack

Aditional Information
File size: 2027 bytes
MD5: 914c221671792964f666a4864d9000f1
SHA1: a206bfec16b3f8dfc35fbab9d2961f088a0d9c0b
packers: UPACK
packers: UPack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
========================

add: ложное срабатывание

Complete scanning result of "fail.scr", received in VirusTotal at 02.19.2007, 01:48:37 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.18.2007 HEUR/Crypted[/B]
Authentium 4.93.8 02.16.2007 no virus found
Avast 4.7.936.0 02.18.2007 no virus found
AVG 386 02.18.2007 no virus found
BitDefender 7.2 02.18.2007 no virus found
[B]CAT-QuickHeal 9.00 02.16.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.18.2007 no virus found
DrWeb 4.33 02.18.2007 no virus found
eSafe 7.0.14.0 02.18.2007 no virus found
eTrust-Vet 30.4.3410 02.18.2007 no virus found
Ewido 4.0 02.18.2007 no virus found
Fortinet 2.85.0.0 02.18.2007 suspicious
F-Prot 4.2.1.29 02.16.2007 no virus found
F-Secure 6.70.13030.0 02.18.2007 no virus found
Ikarus T3.1.0.31 02.18.2007 no virus found
Kaspersky 4.0.2.24 02.19.2007 no virus found
McAfee 4965 02.16.2007 no virus found
Microsoft 1.2204 02.18.2007 no virus found
NOD32v2 2069 02.18.2007 no virus found
Norman 5.80.02 02.16.2007 no virus found
[B]Panda 9.0.0.4 02.18.2007 Suspicious file[/B]
Prevx1 V2 02.19.2007 no virus found
Sophos 4.14.0 02.19.2007 no virus found
[B]Sunbelt 2.2.907.0 02.17.2007 VIPRE.Suspicious[/B]
TheHacker 6.1.6.059 02.16.2007 no virus found
UNA 1.83 02.16.2007 no virus found
VBA32 3.11.2 02.18.2007 no virus found
VirusBuster 4.3.19:9 02.18.2007 no virus found

Aditional Information
File size: 51147 bytes
MD5: 4ccfbe54d9c49077a988082804d56ea5
SHA1: 0164d8376693f5f0680a69aafe9378e8911414b1
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

После обновления баз по КАВ это будет Trojan-PSW.Win32.LdPinch.bmk

Complete scanning result of "jkhhe.2ll", received in VirusTotal at 02.19.2007, 23:21:13 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.19.2007 TR/Vundo.Gen [/B]
Authentium 4.93.8 02.19.2007 no virus found
Avast 4.7.936.0 02.19.2007 no virus found
AVG 386 02.19.2007 no virus found
[B]BitDefender 7.2 02.19.2007 MemScan:Trojan.Vundo.W[/B]
CAT-QuickHeal 9.00 02.19.2007 no virus found
ClamAV devel-20060426 02.19.2007 no virus found
[B]DrWeb 4.33 02.19.2007 Trojan.Virtumod [/B]
[B]eSafe 7.0.14.0 02.19.2007 suspicious Trojan/Worm [/B]
eTrust-Vet 30.4.3412 02.19.2007 no virus found
Ewido 4.0 02.19.2007 no virus found
FileAdvisor 1 02.19.2007 no virus found
[B]Fortinet 2.85.0.0 02.19.2007 suspicious [/B]
F-Prot 4.2.1.29 02.19.2007 no virus found
F-Secure 6.70.13030.0 02.19.2007 no virus found
[B]Ikarus T3.1.0.31 02.19.2007 Trojan.Vundo.W[/B]
Kaspersky 4.0.2.24 02.19.2007 no virus found
McAfee 4966 02.19.2007 no virus found
Microsoft 1.2204 02.19.2007 no virus found
NOD32v2 2070 02.19.2007 no virus found
Norman 5.80.02 02.19.2007 no virus found
Panda 9.0.0.4 02.19.2007 no virus found
Prevx1 V2 02.19.2007 no virus found
Sophos 4.14.0 02.19.2007 no virus found
[B]Sunbelt 2.2.907.0 02.17.2007 VIPRE.Suspicious [/B]
[B]Symantec 10 02.19.2007 Trojan.Vundo [/B]
TheHacker 6.1.6.060 02.19.2007 no virus found
UNA 1.83 02.19.2007 no virus found
[B]VBA32 3.11.2 02.19.2007 Adware.Virtumonde
VirusBuster 4.3.19:9 02.19.2007 Adware.Vundo.Gen!Pac3 [/B]


Aditional Information
File size: 277059 bytes
MD5: 5b41e6272a35e6eac178426484a20fef
SHA1: 84e41ddca116c518d3e066630b880e0824442173
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

t=8032
Complete scanning result of "higehsg.dll", received in VirusTotal at 02.20.2007, 13:20:11 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.37 02.20.2007 no virus found
Authentium 4.93.8 02.19.2007 no virus found
Avast 4.7.936.0 02.19.2007 no virus found
[B]AVG 386 02.19.2007 Generic3.AHO[/B]
BitDefender 7.2 02.20.2007 no virus found
[B]CAT-QuickHeal 9.00 02.20.2007 Hoax.Renos.na (Not a Virus)[/B]
ClamAV devel-20060426 02.20.2007 no virus found
[B]DrWeb 4.33 02.20.2007 Trojan.Fakealert.236[/B]
eSafe 7.0.14.0 02.20.2007 no virus found
[B]eTrust-Vet 30.4.3414 02.20.2007 Win32/Spax!generic[/B]
Ewido 4.0 02.19.2007 no virus found
FileAdvisor 1 02.20.2007 no virus found
[B]Fortinet 2.85.0.0 02.20.2007 FakeAlert.G!tr[/B]
F-Prot 4.2.1.29 02.19.2007 no virus found
F-Secure 6.70.13030.0 02.20.2007 no virus found
Ikarus T3.1.0.31 02.20.2007 no virus found
Kaspersky 4.0.2.24 02.20.2007 no virus found
[B]McAfee 4966 02.19.2007 FakeAlert-G[/B]
Microsoft 1.2204 02.20.2007 no virus found
[B]NOD32v2 2072 02.20.2007 Win32/Hoax.Renos.NAP
Norman 5.80.02 02.20.2007 W32/Renos.IV[/B]
Panda 9.0.0.4 02.20.2007 no virus found
[B]Prevx1 V2 02.20.2007 Generic.Zlob!DL[/B]
Sophos 4.14.0 02.19.2007 no virus found
[B]Sunbelt 2.2.907.0 02.17.2007 Trojan.FakeAlert[/B]
Symantec 10 02.20.2007 no virus found
TheHacker 6.1.6.061 02.20.2007 no virus found
UNA 1.83 02.20.2007 no virus found
[B]VBA32 3.11.2 02.19.2007 suspected of Downloader.Zlob.28 (paranoid heuristics)[/B]
VirusBuster 4.3.19:9 02.19.2007 no virus found

Aditional Information
File size: 20992 bytes
MD5: af9a727cb610c8569e5b1a8c15a15b8d
SHA1: 7e63cd2fe98be1e34f6a5bbe6953dfb5d99c611f

[U]Ложное срабатывание[/U]

Скачал программу FAST Defrag внутри есть файлик close.com AVZ закричал Warezov, закинул на VirusTotal:
AntiVir 7.3.1.37 02.20.2007 no virus found
Authentium 4.93.8 02.19.2007 no virus found
Avast 4.7.936.0 02.20.2007 no virus found
AVG 386 02.20.2007 no virus found
[B]BitDefender 7.2 02.20.2007 Trojan.Spy.Keysave.B[/B]
CAT-QuickHeal 9.00 02.20.2007 (Suspicious) - DNAScan
ClamAV devel-20060426 02.20.2007 no virus found
DrWeb 4.33 02.20.2007 no virus found
eSafe 7.0.14.0 02.20.2007 suspicious Trojan/Worm
eTrust-Vet 30.4.3414 02.20.2007 no virus found
[B]Ewido 4.0 02.20.2007 Worm.Warezov.fh [/B]
FileAdvisor 1 02.20.2007 no virus found
[B]Fortinet 2.85.0.0 02.20.2007 W32/Stration.FH@mm [/B]
F-Prot 4.2.1.29 02.19.2007 no virus found
F-Secure 6.70.13030.0 02.20.2007 no virus found
[B]Ikarus T3.1.0.31 02.20.2007 Trojan-Spy.Win32.KeySave [/B]
Kaspersky 4.0.2.24 02.20.2007 no virus found
McAfee 4967 02.20.2007 no virus found
Microsoft 1.2204 02.20.2007 no virus found
NOD32v2 2072 02.20.2007 no virus found
Norman 5.80.02 02.20.2007 no virus found
Panda 9.0.0.4 02.20.2007 no virus found
Prevx1 V2 02.20.2007 no virus found
Sophos 4.14.0 02.19.2007 no virus found
Sunbelt 2.2.907.0 02.17.2007 VIPRE.Suspicious
Symantec 10 02.20.2007 no virus found
TheHacker 6.1.6.061 02.20.2007 no virus found
[B]UNA 1.83 02.20.2007 I-Worm.Warezov.fh [/B]
[B]VBA32 3.11.2 02.20.2007 Email-Worm.Win32.Warezov.fh [/B]
VirusBuster 4.3.19:9 02.20.2007 no virus found

Отослал [EMAIL="[email protected]"][email protected][/EMAIL] действительно клин :)

из t=8046

Complete scanning result of "brrotate.dll", received in VirusTotal at 02.21.2007, 07:45:50 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.20.2007 HEUR/Malware[/B]
Authentium 4.93.8 02.19.2007 no virus found
Avast 4.7.936.0 02.20.2007 no virus found
AVG 386 02.20.2007 no virus found
BitDefender 7.2 02.21.2007 no virus found
CAT-QuickHeal 9.00 02.20.2007 no virus found
ClamAV devel-20060426 02.20.2007 no virus found
DrWeb 4.33 02.20.2007 no virus found
[B]eSafe 7.0.14.0 02.20.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3414 02.20.2007 no virus found
Ewido 4.0 02.20.2007 no virus found
FileAdvisor 1 02.21.2007 no virus found
[B]Fortinet 2.85.0.0 02.21.2007 suspicious[/B]
F-Prot 4.2.1.29 02.19.2007 no virus found
F-Secure 6.70.13030.0 02.20.2007 no virus found
Ikarus T3.1.0.31 02.21.2007 no virus found
Kaspersky 4.0.2.24 02.21.2007 no virus found
McAfee 4967 02.20.2007 no virus found
Microsoft 1.2204 02.21.2007 no virus found
NOD32v2 2072 02.20.2007 no virus found
Norman 5.80.02 02.20.2007 no virus found
[B]Panda 9.0.0.4 02.20.2007 Adware/AdRotator[/B]
Prevx1 V2 02.21.2007 no virus found
Sophos 4.14.0 02.19.2007 no virus found
Sunbelt 2.2.907.0 02.17.2007 no virus found
Symantec 10 02.21.2007 no virus found
TheHacker 6.1.6.062 02.21.2007 no virus found
UNA 1.83 02.20.2007 no virus found
VBA32 3.11.2 02.20.2007 no virus found
VirusBuster 4.3.19:9 02.20.2007 no virus found

Aditional Information
File size: 61440 bytes
MD5: 95f5983e3368f34aee4a2df3db3d0477
SHA1: ff7d4ad9e387570bb474618f69d06d5594405df6
packers: UPX
packers: UPX
packers: UPX


Complete scanning result of "xpupdate.exe", received in VirusTotal at 02.21.2007, 07:47:09 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.20.2007 TR/Peed.A.39[/B]
Authentium 4.93.8 02.19.2007 no virus found
Avast 4.7.936.0 02.20.2007 no virus found
[B]AVG 386 02.20.2007 Downloader.Tibs
BitDefender 7.2 02.21.2007 Trojan.Peed.Gen
CAT-QuickHeal 9.00 02.20.2007 I-Worm.Zhelatine.ah
[/B]ClamAV devel-20060426 02.20.2007 no virus found
[B]DrWeb 4.33 02.20.2007 Trojan.Packed.29
eSafe 7.0.14.0 02.20.2007 Suspicious Trojan/Worm
eTrust-Vet 30.4.3414 02.20.2007 Win32/Tibs!generic
[/B]Ewido 4.0 02.20.2007 no virus found
FileAdvisor 1 02.21.2007 no virus found
[B]Fortinet 2.85.0.0 02.21.2007 suspicious
[/B]F-Prot 4.2.1.29 02.19.2007 no virus found
[B]F-Secure 6.70.13030.0 02.20.2007 W32/Tibs.gen39
Ikarus T3.1.0.31 02.21.2007 Email-Worm.Win32.Zhelatin.ah
[/B]Kaspersky 4.0.2.24 02.21.2007 no virus found
McAfee 4967 02.20.2007 no virus found
Microsoft 1.2204 02.21.2007 no virus found
[B]NOD32v2 2072 02.20.2007 Win32/Nuwar.gen
Norman 5.80.02 02.20.2007 W32/Tibs.gen39
Panda 9.0.0.4 02.20.2007 Adware/BraveSentry
Prevx1 V2 02.21.2007 Win32.Malware.gen
[/B]Sophos 4.14.0 02.19.2007 no virus found
[B]Sunbelt 2.2.907.0 02.17.2007 VIPRE.Suspicious
[/B]Symantec 10 02.21.2007 no virus found
TheHacker 6.1.6.062 02.21.2007 no virus found
UNA 1.83 02.20.2007 no virus found
[B]VBA32 3.11.2 02.20.2007 Worm.Win32.Nuwar.gen
VirusBuster 4.3.19:9 02.20.2007 Trojan.Tibs.Gen!Pac44[/B]

t=8056

Complete scanning result of "tuvsqrs.dll", received in VirusTotal at 02.21.2007, 13:56:11 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.21.2007 TR/Crypt.ULPM.Gen[/B]
Authentium 4.93.8 02.21.2007 no virus found
Avast 4.7.936.0 02.21.2007 no virus found
AVG 386 02.20.2007 no virus found
[B]BitDefender 7.2 02.21.2007 MemScan:Adware.VirtuMonde.DY[/B]
CAT-QuickHeal 9.00 02.20.2007 no virus found
ClamAV devel-20060426 02.21.2007 no virus found
[B]DrWeb 4.33 02.21.2007 Trojan.Virtumod
eSafe 7.0.14.0 02.20.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3417 02.21.2007 no virus found
Ewido 4.0 02.21.2007 no virus found
FileAdvisor 1 02.21.2007 no virus found
[B]Fortinet 2.85.0.0 02.21.2007 suspicious[/B]
F-Prot 4.2.1.29 02.21.2007 no virus found
F-Secure 6.70.13030.0 02.21.2007 no virus found
[B]Ikarus T3.1.0.31 02.21.2007 not-a-virus:AdWare.Win32.Virtumonde.ha
Kaspersky 4.0.2.24 02.21.2007 not-a-virus:AdWare.Win32.Virtumonde.ha[/B]
McAfee 4967 02.20.2007 no virus found
Microsoft 1.2204 02.21.2007 no virus found
NOD32v2 2072 02.20.2007 no virus found
Norman 5.80.02 02.21.2007 no virus found
[B]Panda 9.0.0.4 02.20.2007 Suspicious file[/B]
Prevx1 V2 02.21.2007 no virus found
Sophos 4.14.0 02.21.2007 no virus found
Sunbelt 2.2.907.0 02.17.2007 no virus found
Symantec 10 02.21.2007 no virus found
TheHacker 6.1.6.062 02.21.2007 no virus found
UNA 1.83 02.20.2007 no virus found
VBA32 3.11.2 02.20.2007 no virus found
VirusBuster 4.3.19:9 02.20.2007 no virus found

Aditional Information
File size: 26637 bytes
MD5: f88ecb520077b1dbe8fbb4b45b4c455b
SHA1: de6d9f0ec5d06cec4394591409fabfd232183a72


Complete scanning result of "iifef.dll", received in VirusTotal at 02.21.2007, 14:33:14 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.37 02.21.2007 no virus found
Authentium 4.93.8 02.21.2007 no virus found
Avast 4.7.936.0 02.21.2007 no virus found
[B]AVG 386 02.20.2007 Downloader.Zlob.FC
BitDefender 7.2 02.21.2007 MemScan:Adware.Virtumonde.EB[/B]
CAT-QuickHeal 9.00 02.20.2007 no virus found
ClamAV devel-20060426 02.21.2007 no virus found
[B]DrWeb 4.33 02.21.2007 Trojan.Virtumod
eSafe 7.0.14.0 02.20.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3417 02.21.2007 no virus found
Ewido 4.0 02.21.2007 no virus found
FileAdvisor 1 02.21.2007 no virus found
[B]Fortinet 2.85.0.0 02.21.2007 suspicious[/B]
F-Prot 4.2.1.29 02.21.2007 no virus found
F-Secure 6.70.13030.0 02.21.2007 no virus found
Ikarus T3.1.0.31 02.21.2007 no virus found
[B]Kaspersky 4.0.2.24 02.21.2007 no virus found (not-a-virus:AdWare.Win32.Virtumonde.ha)*[/B]
McAfee 4967 02.20.2007 no virus found
Microsoft 1.2204 02.21.2007 no virus found
NOD32v2 2072 02.20.2007 no virus found
Norman 5.80.02 02.21.2007 no virus found
[B]Panda 9.0.0.4 02.20.2007 Suspicious file[/B]
Prevx1 V2 02.21.2007 no virus found
Sophos 4.14.0 02.21.2007 no virus found
Sunbelt 2.2.907.0 02.17.2007 no virus found
Symantec 10 02.21.2007 no virus found
TheHacker 6.1.6.062 02.21.2007 no virus found
UNA 1.83 02.20.2007 no virus found
VBA32 3.11.2 02.20.2007 no virus found
[B]VirusBuster 4.3.19:9 02.20.2007 Trojan.DL.Vundo.Gen!Pac.6
[/B]
Aditional Information
File size: 281652 bytes
MD5: e0874ae53b943bf78ae30a9325235699
SHA1: 670030f9ff6c89762df22f96dd30c72eb181dffd

* по ответу вирлаба KAV

Complete scanning result of "x.exw", received in VirusTotal at 02.21.2007, 22:43:25 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.37 02.21.2007 TR/Rootkit.Gen[/B]
Authentium 4.93.8 02.21.2007 no virus found
[B]Avast 4.7.936.0 02.21.2007 Win32:Agent-EXH[/B]
AVG 386 02.21.2007 no virus found
BitDefender 7.2 02.21.2007 no virus found
CAT-QuickHeal 9.00 02.21.2007 no virus found
ClamAV devel-20060426 02.21.2007 no virus found
DrWeb 4.33 02.21.2007 no virus found
[B]eSafe 7.0.14.0 02.21.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3417 02.21.2007 no virus found
[B]Ewido 4.0 02.21.2007 Rootkit.Small[/B]
FileAdvisor 1 02.21.2007 no virus found
Fortinet 2.85.0.0 02.21.2007 no virus found
F-Prot 4.2.1.29 02.21.2007 no virus found
F-Secure 6.70.13030.0 02.21.2007 no virus found
Ikarus T3.1.0.31 02.21.2007 no virus found
Kaspersky 4.0.2.24 02.21.2007 no virus found
McAfee 4968 02.21.2007 no virus found
Microsoft 1.2204 02.21.2007 no virus found
NOD32v2 2073 02.21.2007 no virus found
Norman 5.80.02 02.21.2007 no virus found
[B]Panda 9.0.0.4 02.21.2007 Suspicious file
Prevx1 V2 02.21.2007 Downloader.Drev.A[/B]
Sophos 4.14.0 02.21.2007 no virus found
Sunbelt 2.2.907.0 02.17.2007 no virus found
Symantec 10 02.21.2007 no virus found
TheHacker 6.1.6.062 02.21.2007 no virus found
UNA 1.83 02.21.2007 no virus found
[B]VBA32 3.11.2 02.20.2007 suspected of Embedded.Backdoor.Win32.Agent.aiu[/B]
VirusBuster 4.3.19:9 02.21.2007 no virus found

Aditional Information
File size: 13824 bytes
MD5: 4c058f13d8bafa55ad8e6499ab0c095d
SHA1: 251fd0028509cb4bc13caad29e602c8aabf264c4
packers: UPX
packers: UPX
packers: UPX, BINARYRES
packers: UPX
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=52c859786634[/url]

Complete scanning result of "setup.exe", received in VirusTotal at 02.23.2007, 18:09:10 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.23.2007 DR/Zlob.Gen[/B]
Authentium 4.93.8 02.23.2007 no virus found
Avast 4.7.936.0 02.23.2007 no virus found
AVG 386 02.23.2007 no virus found
BitDefender 7.2 02.23.2007 no virus found
CAT-QuickHeal 9.00 02.23.2007 no virus found
ClamAV devel-20060426 02.22.2007 no virus found
DrWeb 4.33 02.23.2007 no virus found
[B]eSafe 7.0.14.0 02.23.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3424 02.23.2007 no virus found
Ewido 4.0 02.23.2007 no virus found
FileAdvisor 1 02.23.2007 no virus found
[B]Fortinet 2.85.0.0 02.23.2007 suspicious[/B]
F-Prot 4.3.1.45 02.22.2007 no virus found
F-Secure 6.70.13030.0 02.23.2007 no virus found
Ikarus T3.1.0.31 02.23.2007 no virus found
Kaspersky 4.0.2.24 02.23.2007 no virus found
McAfee 4969 02.22.2007 no virus found
Microsoft 1.2204 02.23.2007 no virus found
NOD32v2 2077 02.23.2007 no virus found
Norman 5.80.02 02.23.2007 no virus found
Panda 9.0.0.4 02.23.2007 no virus found
Prevx1 V2 02.23.2007 no virus found
Sophos 4.14.0 02.21.2007 no virus found
Sunbelt 2.2.907.0 02.22.2007 no virus found
Symantec 10 02.23.2007 no virus found
TheHacker 6.1.6.063 02.23.2007 no virus found
UNA 1.83 02.22.2007 no virus found
VBA32 3.11.2 02.22.2007 no virus found
VirusBuster 4.3.19:9 02.23.2007 no virus found

Aditional Information
File size: 61146 bytes
MD5: e0c7f961d8e8db449199a93c3b1a3900
SHA1: 172b4e5a32dfe08b177f72186b123641829674e6
packers: UPX
packers: UPX, BINARYRES, BINARYRES
packers: UPX

Complete scanning result of "Photo.rar", received in VirusTotal at 02.25.2007,
18:51:54 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.25.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 02.25.2007 no virus found
Avast 4.7.936.0 02.23.2007 no virus found
[B]AVG 386 02.25.2007 Win32/Ngvck[/B]
BitDefender 7.2 02.25.2007 no virus found
[B]CAT-QuickHeal 9.00 02.24.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.25.2007 no virus found
DrWeb 4.33 02.25.2007 no virus found
[B]eSafe 7.0.14.0 02.25.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3424 02.23.2007 no virus found
[B]Ewido 4.0 02.25.2007 Trojan.LdPinch.bkg[/B]
FileAdvisor 1 02.25.2007 no virus found
[B]Fortinet 2.85.0.0 02.25.2007 W32/LdPinch.BKG!tr.pws[/B]
F-Prot 4.3.1.45 02.25.2007 no virus found
[B]F-Secure 6.70.13030.0 02.25.2007 Trojan-PSW.Win32.LdPinch.bkg[/B]
[B]Ikarus T3.1.0.31 02.25.2007 Trojan.Win32.Agent.aee[/B]
[B]Kaspersky 4.0.2.24 02.25.2007 Trojan-PSW.Win32.LdPinch.bkg[/B]
McAfee 4970 02.23.2007 no virus found
Microsoft 1.2204 02.25.2007 no virus found
NOD32v2 2080 02.25.2007 no virus found
Norman 5.80.02 02.23.2007 no virus found
[B]Panda 9.0.0.4 02.25.2007 Suspicious file[/B]
Prevx1 V2 02.25.2007 no virus found
Sophos 4.14.0 02.24.2007 no virus found
[B]Sunbelt 2.2.907.0 02.24.2007 VIPRE.Suspicious[/B]
Symantec 10 02.25.2007 no virus found
[B]TheHacker 6.1.6.064 02.25.2007 Trojan/PSW.LdPinch.bkg[/B]
[B]UNA 1.83 02.23.2007 Trojan.PSW.Win32.LdPinch.C807[/B]
[B]VBA32 3.11.2 02.24.2007 suspected of Trojan-PSW.Pinch.7 (paranoid heuristics)[/B]
VirusBuster 4.3.19:9 02.25.2007 no virus found

Aditional Information
File size: 32471 bytes
MD5: 2a2be2bafab184dfd68c0f7eeb42a95b
SHA1: dd08f991bbdc67260718cea698c9e412b40789d3
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that
are deemed suspicious through heuristics.

Симантек сегодня "порадовал":
Complete scanning result of "autoexec.ex_", received in VirusTotal at 02.26.2007, 16:33:11 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.26.2007 HEUR/Crypted[/B]
[B]Authentium 4.93.8 02.25.2007 Possibly a new variant of W32/HLLI-MewOrleans-based!Maximus[/B]
Avast 4.7.936.0 02.26.2007 no virus found
AVG 386 02.25.2007 no virus found
BitDefender 7.2 02.26.2007 no virus found
[B]CAT-QuickHeal 9.00 02.26.2007 W32.Brontok.Q[/B]
ClamAV devel-20060426 02.26.2007 no virus found
DrWeb 4.33 02.26.2007 no virus found
[B]eSafe 7.0.14.0 02.25.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3434 02.26.2007 no virus found
Ewido 4.0 02.26.2007 no virus found
FileAdvisor 1 02.26.2007 no virus found
Fortinet 2.85.0.0 02.26.2007 no virus found
[B]F-Prot 4.3.1.45 02.26.2007 W32/Threat-HLLIM-based!Maximus[/B]
F-Secure 6.70.13030.0 02.26.2007 no virus found
[B]Ikarus T3.1.1.3 02.26.2007 Backdoor.Win32.Ciadoor.N[/B]
Kaspersky 4.0.2.24 02.26.2007 no virus found
McAfee 4970 02.23.2007 no virus found
Microsoft 1.2204 02.26.2007 no virus found
NOD32v2 2081 02.26.2007 no virus found
[B]Norman 5.80.02 02.26.2007 W32/Suspicious_M.gen[/B]
[B]Panda 9.0.0.4 02.26.2007 Suspicious file[/B]
Prevx1 V2 02.26.2007 no virus found
[B]Sophos 4.14.0 02.24.2007 Mal/Basine-A[/B]
[B]Sunbelt 2.2.907.0 02.24.2007 VIPRE.Suspicious[/B]
[COLOR="Red"]Symantec 10 02.26.2007 no virus found[/COLOR]
TheHacker 6.1.6.065 02.26.2007 no virus found
UNA 1.83 02.23.2007 no virus found
[B]VBA32 3.11.2 02.25.2007 MalwareScope.Trojan-PSW.Pinch.6[/B]
[B]VirusBuster 4.3.19:9 02.26.2007 novirus: Packed/MEW[/B]

Aditional Information
File size: 23884 bytes
MD5: f5d74a9696f24aeafdcde3e09a6eca24
SHA1: 6ad1bad5b2165a3eab1b440fe27273277131ab88
packers: MEW

два раза:

Complete scanning result of "avz00001.dta", received in VirusTotal at 02.26.2007, 16:36:59 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.26.2007 TR/Agent.36441[/B]
Authentium 4.93.8 02.25.2007 no virus found
Avast 4.7.936.0 02.26.2007 no virus found
[B]AVG 386 02.25.2007 Downloader.Generic3.QQD[/B]
[B]BitDefender 7.2 02.26.2007 Trojan.AVKiller.Agent.D[/B]
[B]CAT-QuickHeal 9.00 02.26.2007 TrojanDownloader.Agent.awf[/B]
ClamAV devel-20060426 02.26.2007 no virus found
[B]DrWeb 4.33 02.26.2007 Trojan.DownLoader.18943[/B]
[B]eSafe 7.0.14.0 02.26.2007 Win32.Agent.awf[/B]
eTrust-Vet 30.4.3434 02.26.2007 no virus found
[B]Ewido 4.0 02.26.2007 Downloader.Agent.awf[/B]
FileAdvisor 1 02.26.2007 no virus found
[B]Fortinet 2.85.0.0 02.26.2007 W32/Tibs.gen[/B]
F-Prot 4.3.1.45 02.26.2007 no virus found
[B]F-Secure 6.70.13030.0 02.26.2007 Trojan-Downloader.Win32.Agent.awf[/B]
[B]Ikarus T3.1.1.3 02.26.2007 Trojan-Downloader.Win32.Agent.awf[/B]
[B]Kaspersky 4.0.2.24 02.26.2007 Trojan-Downloader.Win32.Agent.awf[/B]
McAfee 4970 02.23.2007 no virus found
Microsoft 1.2204 02.26.2007 no virus found
[B]NOD32v2 2081 02.26.2007 probably a variant of Win32/TrojanDownloader.Agent.AWF[/B]
[B]Norman 5.80.02 02.26.2007 W32/DLoader.CBHX[/B]
[B]Panda 9.0.0.4 02.26.2007 Trj/Lozyt.A[/B]
Prevx1 V2 02.26.2007 no virus found
Sophos 4.14.0 02.24.2007 no virus found
Sunbelt 2.2.907.0 02.24.2007 no virus found
[COLOR="Red"]Symantec 10 02.26.2007 no virus found[/COLOR]
[B]TheHacker 6.1.6.065 02.26.2007 Trojan/FakeMsg[/B]
[B]UNA 1.83 02.23.2007 TrojanDownloader.Win32.Agent.241C[/B]
[B]VBA32 3.11.2 02.25.2007 Trojan-Downloader.Win32.Agent.awf[/B]
[B]VirusBuster 4.3.19:9 02.26.2007 Trojan.DL.Agent.SJJ[/B]

Aditional Information
File size: 37141 bytes
MD5: 56fa464c5d410675b72089f95f0690d1
SHA1: ea67d4be4d72ef7d18d57609f331fca774fc0522
packers: UPX
packers: UPX
packers: UPX

в результате чего скоропостижно скончался...:'-(

t=8163
Complete scanning result of "usr32.dll", received in VirusTotal at 02.27.2007, 09:19:16 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.27.2007 TR/Agent.AKR.8[/B]
Authentium 4.93.8 02.26.2007 no virus found
[B]Avast 4.7.936.0 02.26.2007 Win32:Agent-EQR
AVG 386 02.25.2007 Downloader.Agent.IOY
BitDefender 7.2 02.27.2007 Trojan.Agent.AKR[/B]
CAT-QuickHeal 9.00 02.26.2007 no virus found
ClamAV devel-20060426 02.27.2007 no virus found
DrWeb 4.33 02.27.2007 no virus found
[B]eSafe 7.0.14.0 02.27.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.4.3438 02.27.2007 no virus found
[B]Ewido 4.0 02.26.2007 Downloader.Agent.bga[/B]
FileAdvisor 1 02.27.2007 no virus found
[B]Fortinet 2.85.0.0 02.27.2007 suspicious[/B]
F-Prot 4.3.1.45 02.26.2007 no virus found
[B]F-Secure 6.70.13030.0 02.27.2007 Trojan-Downloader.Win32.Agent.bga[/B]
Ikarus T3.1.1.3 02.27.2007 no virus found
[B]Kaspersky 4.0.2.24 02.27.2007 Trojan-Downloader.Win32.Agent.bga[/B]
McAfee 4971 02.26.2007 no virus found
Microsoft 1.2204 02.27.2007 no virus found
NOD32v2 2082 02.26.2007 no virus found
[B]Norman 5.80.02 02.26.2007 W32/DLoader.CAFT
Panda 9.0.0.4 02.27.2007 Suspicious file[/B]
Prevx1 V2 02.27.2007 no virus found
[B]Sophos 4.14.0 02.26.2007 Troj/Agent-ECG
Sunbelt 2.2.907.0 02.24.2007 VIPRE.Suspicious[/B]
Symantec 10 02.27.2007 no virus found
TheHacker 6.1.6.065 02.26.2007 no virus found
[B]UNA 1.83 02.26.2007 TrojanDownloader.Win32.Agent.F8B6
VBA32 3.11.2 02.26.2007 Trojan-Downloader.Win32.Agent.bga
VirusBuster 4.3.19:9 02.26.2007 novirus:Packed/Upack
[/B]
Aditional Information
File size: 4995 bytes
MD5: af7fd47b25284e9cda67aa6685ecaa61
SHA1: 0c0efd4dba99b2ab07ca17534e9eca01833561ef
packers: Upack

Complete scanning result of "britney.rar", received in VirusTotal at 02.27.2007, 11:50:24 (CET).


Antivirus Version Update Result

[B]AntiVir 7.3.1.38 02.27.2007 TR/PSW.LdPinch.boi[/B]
Authentium 4.93.8 02.26.2007 no virus found
Avast 4.7.936.0 02.26.2007 no virus found
AVG 386 02.25.2007 no virus found
BitDefender 7.2 02.27.2007 no virus found
CAT-QuickHeal 9.00 02.26.2007 no virus found
ClamAV devel-20060426 02.27.2007 no virus found
DrWeb 4.33 02.27.2007 no virus found
eSafe 7.0.14.0 02.27.2007 no virus found
eTrust-Vet 30.4.3438 02.27.2007 no virus found
[B]Ewido 4.0 02.27.2007 Downloader.Nurech.aa[/B]
FileAdvisor 1 02.27.2007 no virus found
Fortinet 2.85.0.0 02.27.2007 no virus found
F-Prot 4.3.1.45 02.26.2007 no virus found
[B]F-Secure 6.70.13030.0 02.27.2007 Trojan-PSW.Win32.LdPinch.boi[/B]
[B]Ikarus T3.1.1.3 02.27.2007 MalwareScope.Trojan-Spy.BZub.1
Kaspersky 4.0.2.24 02.27.2007 Trojan-PSW.Win32.LdPinch.boi
McAfee 4971 02.26.2007 MultiDropper-JD[/B]
Microsoft 1.2204 02.27.2007 no virus found
NOD32v2 2082 02.26.2007 no virus found
Norman 5.80.02 02.27.2007 no virus found
Panda 9.0.0.4 02.27.2007 no virus found
Prevx1 V2 02.27.2007 no virus found
[B]Sophos 4.14.0 02.26.2007 Mal/Basine-A[/B]
Sunbelt 2.2.907.0 02.24.2007 no virus found
Symantec 10 02.27.2007 no virus found
TheHacker 6.1.6.065 02.26.2007 no virus found
UNA 1.83 02.26.2007 no virus found
[B]VBA32 3.11.2 02.26.2007 suspected of Embedded.MalwareScope.Trojan-PSW.Pinch.26
VirusBuster 4.3.19:9 02.26.2007 novirus:Packed/FSG[/B]

Aditional Information
File size: 44179 bytes
MD5: c4b52934d5622deea62edd8ccab5c048
SHA1: 9d683933f7de07c9e2e595629c034d0a5326ee5d
packers: BINARYRES, FSG

Complete scanning result of "Paris_Hilton.scr", received in VirusTotal at 02.27.2007, 18:12:38 (CET).


Antivirus Version Update Result

[B]AntiVir 7.3.1.38 02.27.2007 TR/PSW.LdPinch.bog[/B]
Authentium 4.93.8 02.26.2007 no virus found
Avast 4.7.936.0 02.27.2007 no virus found
AVG 7.5.0.441 02.27.2007 no virus found
BitDefender 7.2 02.27.2007 no virus found
[B]CAT-QuickHeal 9.00 02.27.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.27.2007 no virus found
[B]DrWeb 4.33 02.27.2007 Trojan.PWS.LDPinch.1407
eSafe 7.0.14.0 02.27.2007 Suspicious Trojan/Worm
eTrust-Vet 30.4.3438 02.27.2007 no virus found
Ewido 4.0 02.27.2007 Trojan.LdPinch.bog[/B]
FileAdvisor 1 02.27.2007 no virus found
[B]Fortinet 2.85.0.0 02.27.2007 PossibleThreat[/B]
F-Prot 4.3.1.45 02.26.2007 no virus found
[B]F-Secure 6.70.13030.0 02.27.2007 Trojan-PSW.Win32.LdPinch.bog[/B]
Ikarus T3.1.1.3 02.27.2007 no virus found
[B]Kaspersky 4.0.2.24 02.27.2007 Trojan-PSW.Win32.LdPinch.bog
McAfee 4971 02.26.2007 New Poly Win32[/B]
Microsoft 1.2204 02.27.2007 no virus found
NOD32v2 2083 02.27.2007 no virus found
Norman 5.80.02 02.27.2007 no virus found
[B]Panda 9.0.0.4 02.27.2007 Suspicious file[/B]
Prevx1 V2 02.27.2007 no virus found
Sophos 4.14.0 02.26.2007 no virus found
[B]Sunbelt 2.2.907.0 02.24.2007 VIPRE.Suspicious
Symantec 10 02.27.2007 Infostealer[/B]
TheHacker 6.1.6.065 02.26.2007 no virus found
UNA 1.83 02.26.2007 no virus found
VBA32 3.11.2 02.26.2007 no virus found
VirusBuster 4.3.19:9 02.27.2007 no virus found

Aditional Information
File size: 33758 bytes
MD5: 719e2cc705df87c03826468c7797c2f3
SHA1: 16ec93296530819507ace53c2c62efb5d542a84a
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Пришел по ICQ:

Complete scanning result of "ICQUpdate.exe", received in VirusTotal at 02.27.2007, 20:58:03 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.27.2007 TR/Crypt.XDR.Gen[/B]
Authentium 4.93.8 02.26.2007 no virus found
Avast 4.7.936.0 02.27.2007 no virus found
AVG 7.5.0.441 02.27.2007 no virus found
BitDefender 7.2 02.27.2007 no virus found
[B]CAT-QuickHeal 9.00 02.27.2007 Trojan.Donn.U[/B]
[B]ClamAV devel-20060426 02.27.2007 Trojan.Downloader-88[/B]
DrWeb 4.33 02.27.2007 no virus found
eSafe 7.0.14.0 02.27.2007 no virus found
eTrust-Vet 30.4.3438 02.27.2007 no virus found
Ewido 4.0 02.27.2007 no virus found
FileAdvisor 1 02.27.2007 no virus found
Fortinet 2.85.0.0 02.27.2007 suspicious
F-Prot 4.3.1.45 02.26.2007 no virus found
F-Secure 6.70.13030.0 02.27.2007 no virus found
Ikarus T3.1.1.3 02.27.2007 no virus found
Kaspersky 4.0.2.24 02.27.2007 no virus found
McAfee 4972 02.27.2007 no virus found
Microsoft 1.2204 02.27.2007 no virus found
NOD32v2 2083 02.27.2007 no virus found
Norman 5.80.02 02.27.2007 no virus found
Panda 9.0.0.4 02.27.2007 Suspicious file
Prevx1 V2 02.27.2007 no virus found
Sophos 4.14.0 02.26.2007 no virus found
Sunbelt 2.2.907.0 02.24.2007 no virus found
Symantec 10 02.27.2007 no virus found
TheHacker 6.1.6.065 02.26.2007 no virus found
UNA 1.83 02.27.2007 no virus found
[B]VBA32 3.11.2 02.26.2007 suspected of Trojan-PSW.Pinch.23 (paranoid heuristics)[/B]
VirusBuster 4.3.19:9 02.27.2007 no virus found

Aditional Information
File size: 60891 bytes
MD5: dbf567de5884e8c18dadc15f02d9680a
SHA1: 70b5869c48469f34673142309ce84e0c035d6c1d
packers: ASPACK
packers: Aspack

Complete scanning result of "avz00001.dta", received in VirusTotal at 02.28.2007, 18:43:38 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 02.28.2007 TR/PSW.Small.BS.52
Authentium 4.93.8 02.27.2007 could be infected with an unknown virus [/B]
Avast 4.7.936.0 02.28.2007 no virus found
[B]AVG 7.5.0.447 02.28.2007 PSW.Generic3.ESQ
BitDefender 7.2 02.28.2007 Trojan.PWS.Pinch.A
CAT-QuickHeal 9.00 02.28.2007 TrojanPSW.Small.bs [/B]
ClamAV devel-20060426 02.28.2007 no virus found
[B]DrWeb 4.33 02.28.2007 Trojan.PWS.Haiuy
eSafe 7.0.14.0 02.28.2007 Win32.Polipos.sus
eTrust-Vet 30.6.3441 02.28.2007 Win32/Ursnif!generic
Ewido 4.0 02.28.2007 Trojan.Small.bs [/B]
FileAdvisor 1 02.28.2007 no virus found
[B]Fortinet 2.85.0.0 02.28.2007 suspicious [/B]
F-Prot 4.3.1.45 02.28.2007 no virus found
[B]F-Secure 6.70.13030.0 02.28.2007 Trojan-PSW.Win32.Small.bs
Ikarus T3.1.1.3 02.28.2007 Trojan-Downloader.Win32.Zlob.and
Kaspersky 4.0.2.24 02.28.2007 Trojan-PSW.Win32.Small.bs
McAfee 4972 02.27.2007 New Malware.aj
Microsoft 1.2204 02.28.2007 PWS:Win32/Agent.BC[/B]
NOD32v2 2085 02.28.2007 no virus found
[B]Norman 5.80.02 02.28.2007 W32/Smalltroj.ZWV
Panda 9.0.0.4 02.28.2007 Trj/Spyforms.H
Prevx1 V2 02.28.2007 Malware.Trojan.Backdoor.Gen
Sophos 4.14.0 02.26.2007 Mal/Behav-027
Sunbelt 2.2.907.0 02.24.2007 VIPRE.Suspicious
Symantec 10 02.28.2007 Infostealer.Snifula.B [/B]
TheHacker 6.1.6.065 02.26.2007 no virus found
[B]UNA 1.83 02.27.2007 Win32.virus
VBA32 3.11.2 02.27.2007 MalwareScope.Trojan-PSW.Pinch.1
VirusBuster 4.3.19:9 02.28.2007 Packed/Upack[/B]

Complete scanning result of "fail.exe", received in VirusTotal at 02.28.2007, 20:19:51 (CET).


Antivirus Version Update Result

[B]AntiVir 7.3.1.38 02.28.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 02.27.2007 no virus found
Avast 4.7.936.0 02.28.2007 no virus found
AVG 7.5.0.447 02.28.2007 no virus found
BitDefender 7.2 02.28.2007 no virus found
[B]CAT-QuickHeal 9.00 02.28.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 02.28.2007 no virus found
DrWeb 4.33 02.28.2007 no virus found
eSafe 7.0.14.0 02.28.2007 no virus found
eTrust-Vet 30.6.3441 02.28.2007 no virus found
Ewido 4.0 02.28.2007 no virus found
FileAdvisor 1 02.28.2007 no virus found
[B]Fortinet 2.85.0.0 02.28.2007 suspicious[/B]
F-Prot 4.3.1.45 02.28.2007 no virus found
[B]F-Secure 6.70.13030.0 02.28.2007 W32/Malware[/B]
Ikarus T3.1.1.3 02.28.2007 no virus found
Kaspersky 4.0.2.24 02.28.2007 no virus found
McAfee 4973 02.28.2007 no virus found
Microsoft 1.2204 02.28.2007 no virus found
[B]NOD32v2 2085 02.28.2007 probably a variant of Win32/PSW.LdPinch[/B]
[B]Norman 5.80.02 02.28.2007 W32/Malware[/B]
[B]Panda 9.0.0.4 02.28.2007 Suspicious file[/B]
Prevx1 V2 02.28.2007 no virus found
Sophos 4.14.0 02.26.2007 no virus found
[B]Sunbelt 2.2.907.0 02.24.2007 VIPRE.Suspicious[/B]
Symantec 10 02.28.2007 no virus found
TheHacker 6.1.6.065 02.26.2007 no virus found
UNA 1.83 02.27.2007 no virus found
VBA32 3.11.2 02.27.2007 no virus found
VirusBuster 4.3.19:9 02.28.2007 no virus found

Aditional Information
File size: 52190 bytes
MD5: 838e6db101a1774b6b8079d2d4474b74
SHA1: 779078906b99ab7502b536f777b87cb45663790b
norman sandbox: [ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: [email][email protected][/email] - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* **Locates window "NULL [class AVP.AlertDialog]" on desktop.
* **Locates window "NULL [class AVP.AhAppChangedDialog]" on desktop.
* **Locates window "NULL [class AVP.AhLearnDialog]" on desktop.
* **Locates window "NULL [class AVP.Product_Notification]" on desktop.

[ Network ]
* Bypass installed firewall.

Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.


[QUOTE=Shu_b;97603]опять пинчи...

Complete scanning result of "britney1._xe", received in VirusTotal at 02.28.2007, 07:37:14 (CET).
[/QUOTE]
[URL="http://virusinfo.info/showpost.php?p=97474&postcount=68"]Повтор...[/URL]

[Shu] Спасибо, убрал.

Complete scanning result of "Sex_Uniform.scr", received in VirusTotal at 03.01.2007, 05:18:35 (CET).


Antivirus Version Update Result

[B]AntiVir 7.3.1.38 02.28.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 02.28.2007 no virus found
Avast 4.7.936.0 02.28.2007 no virus found
AVG 7.5.0.447 02.28.2007 no virus found
BitDefender 7.2 03.01.2007 no virus found
[B]CAT-QuickHeal 9.00 02.28.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 03.01.2007 no virus found
[B]DrWeb 4.33 02.28.2007 Trojan.PWS.LDPinch.1417
eSafe 7.0.14.0 02.28.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.6.3443 02.28.2007 no virus found
Ewido 4.0 02.28.2007 no virus found
FileAdvisor 1 03.01.2007 no virus found
[B]Fortinet 2.85.0.0 02.28.2007 suspicious[/B]
F-Prot 4.3.1.45 02.28.2007 no virus found
[B]F-Secure 6.70.13030.0 02.28.2007 Trojan-PSW.Win32.LdPinch.bex[/B]
Ikarus T3.1.1.3 02.28.2007 no virus found
[B]Kaspersky 4.0.2.24 03.01.2007 Trojan-PSW.Win32.LdPinch.bex
McAfee 4973 02.28.2007 New Poly Win32[/B]
Microsoft 1.2204 03.01.2007 no virus found
[B]NOD32v2 2085 02.28.2007 a variant of Win32/PSW.LdPinch.NCB[/B]
Norman 5.80.02 02.28.2007 no virus found
Panda 9.0.0.4 02.28.2007 Suspicious file
Prevx1 V2 03.01.2007 no virus found
Sophos 4.14.0 03.01.2007 no virus found
[B]Sunbelt 2.2.907.0 03.01.2007 VIPRE.Suspicious
Symantec 10 03.01.2007 Bloodhound.W32.1[/B]
TheHacker 6.1.6.066 03.01.2007 no virus found
UNA 1.83 02.28.2007 no virus found
VBA32 3.11.2 02.28.2007 no virus found
VirusBuster 4.3.19:9 02.28.2007 no virus found

Aditional Information
File size: 24542 bytes
MD5: 8733c4c4e8b1c8e30294f0ca1bbc3d65
SHA1: 2c86ad5be6de42e359741af72df8f111592884b5
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

STATUS: FINISHEDComplete scanning result of "svcipa.exe", received in VirusTotal at 03.01.2007, 05:23:48 (CET).

Antivirus Version Update Result

AntiVir 7.3.1.38 02.28.2007 TR/Agent.36441
Authentium 4.93.8 02.28.2007 is a security risk or a "backdoor" program
[B]Avast 4.7.936.0 02.28.2007 no virus found [/B]
AVG 7.5.0.447 02.28.2007 Downloader.Generic3.QQD
BitDefender 7.2 03.01.2007 Trojan.AVKiller.Agent.D
CAT-QuickHeal 9.00 02.28.2007 TrojanDownloader.Agent.awf
[B]ClamAV devel-20060426 03.01.2007 no virus found [/B]
DrWeb 4.33 02.28.2007 Trojan.DownLoader.18943
eSafe 7.0.14.0 02.28.2007 suspicious Trojan/Worm
eTrust-Vet 30.6.3443 02.28.2007 Win32/Pidyay.A
Ewido 4.0 02.28.2007 Downloader.Agent.awf
[B]FileAdvisor 1 03.01.2007 no virus found [/B]
Fortinet 2.85.0.0 02.28.2007 W32/Tibs.gen
F-Prot 4.3.1.45 02.28.2007 W32/Downloader
F-Secure 6.70.13030.0 02.28.2007 Trojan-Downloader.Win32.Agent.awf
[B]Ikarus T3.1.1.3 02.28.2007 no virus found[/B]
Kaspersky 4.0.2.24 03.01.2007 Trojan-Downloader.Win32.Agent.awf
[B]McAfee 4973 02.28.2007 no virus found[/B]
Microsoft 1.2204 03.01.2007 Trojan:Win32/Zonebac.A
NOD32v2 2085 02.28.2007 probably a variant of Win32/TrojanDownloader.Agent.AWF
Norman 5.80.02 02.28.2007 W32/DLoader.CBHX
Panda 9.0.0.4 02.28.2007 Trj/Lozyt.A
[B]Prevx1 V2 03.01.2007 no virus found[/B]
Sophos 4.14.0 03.01.2007 Troj/Agent-ECV
[B]Sunbelt 2.2.907.0 03.01.2007 no virus found [/B]
Symantec 10 03.01.2007 Trojan.Zonebac [B](а имеющийся "на страже" не замечает, хотя файл в памяти)
[/B]TheHacker 6.1.6.066 03.01.2007 Trojan/FakeMsg
UNA 1.83 02.28.2007 TrojanDownloader.Win32.Agent.241C
VBA32 3.11.2 02.28.2007 Trojan-Downloader.Win32.Agent.awf
VirusBuster 4.3.19:9 02.28.2007 Trojan.DL.Agent.SJJ

Aditional Information
File size: 36736 bytes
MD5: 60159534ec7ce9da0b55c98895ae3e00
SHA1: e54abed2d30ab4451505a06ddb56994ca248d291
packers: UPX
packers: UPX

Из темы [url]http://virusinfo.info/showthread.php?t=8200[/url]

Complete scanning result of "avz00003.dta", received in VirusTotal at 03.01.2007, 18:03:46 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 03.01.2007 TR/Spy.Vundo.AF[/B]
Authentium 4.93.8 02.28.2007 no virus found
Avast 4.7.936.0 03.01.2007 no virus found
[B]AVG 7.5.0.447 03.01.2007 Downloader.Zlob.FC
BitDefender 7.2 03.01.2007 MemScan:Trojan.Vundo.AF[/B]
CAT-QuickHeal 9.00 03.01.2007 no virus found
ClamAV devel-20060426 03.01.2007 no virus found
[B]DrWeb 4.33 03.01.2007 Trojan.Virtumod
eSafe 7.0.14.0 02.28.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.6.3444 03.01.2007 no virus found
Ewido 4.0 03.01.2007 no virus found
FileAdvisor 1 03.01.2007 no virus found
Fortinet 2.85.0.0 03.01.2007 suspicious
F-Prot 4.3.1.45 02.28.2007 no virus found
F-Secure 6.70.13030.0 03.01.2007 no virus found
[B]Ikarus T3.1.1.3 03.01.2007 MemScanTrojan.Vundo.AF[/B]
Kaspersky 4.0.2.24 03.01.2007 no virus found
McAfee 4973 02.28.2007 no virus found
Microsoft 1.2204 03.01.2007 no virus found
[B]NOD32v2 2087 03.01.2007 probably a variant of Win32/Adware.Virtumonde.O[/B]
Norman 5.80.02 03.01.2007 no virus found
[B]Panda 9.0.0.4 03.01.2007 Suspicious file[/B]
Prevx1 V2 03.01.2007 no virus found
[B]Sophos 4.14.0 03.01.2007 Virtumundo[/B]
Sunbelt 2.2.907.0 03.01.2007 no virus found
[B]Symantec 10 03.01.2007 Trojan.Vundo[/B]
TheHacker 6.1.6.067 03.01.2007 no virus found
UNA 1.83 02.28.2007 no virus found
VBA32 3.11.2 02.28.2007 no virus found
[B]VirusBuster 4.3.19:9 03.01.2007 Trojan.DL.Vundo.Gen!Pac.6[/B]

Aditional Information
File size: 281652 bytes
MD5: a20cafe5da9b51d58a5d7f3384cd23fc
SHA1: 88795b7dbb9d17a04c7aa994212561e5332ee535

Из темы [url]http://virusinfo.info/showthread.php?t=8200[/url]

Complete scanning result of "livemsgr.exe", received in VirusTotal at 03.01.2007, 19:56:27 (CET).

Antivirus Version Update Result
[B]AntiVir 7.3.1.38 03.01.2007 Worm/Sdbot.223232.3[/B]
Authentium 4.93.8 03.01.2007 no virus found
Avast 4.7.936.0 03.01.2007 no virus found
[B]AVG 7.5.0.447 03.01.2007 Generic3.FZL[/B]
[B]BitDefender 7.2 03.01.2007 DeepScan:Generic.Sdbot.2A3939A7
CAT-QuickHeal 9.00 03.01.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 03.01.2007 no virus found
DrWeb 4.33 03.01.2007 no virus found
eSafe 7.0.14.0 02.28.2007 no virus found
eTrust-Vet 30.6.3444 03.01.2007 no virus found
Ewido 4.0 03.01.2007 no virus found
FileAdvisor 1 03.01.2007 no virus found
[B]Fortinet 2.85.0.0 03.01.2007 suspicious[/B]
F-Prot 4.3.1.45 02.28.2007 no virus found
F-Secure 6.70.13030.0 03.01.2007 no virus found
Ikarus T3.1.1.3 03.01.2007 no virus found
Kaspersky 4.0.2.24 03.01.2007 no virus found
McAfee 4974 03.01.2007 no virus found
Microsoft 1.2204 03.01.2007 no virus found
[B]NOD32v2 2087 03.01.2007 probably unknown NewHeur_PE virus[/B]
Norman 5.80.02 03.01.2007 no virus found
[B]Panda 9.0.0.4 03.01.2007 W32/Gaobot.PGR.worm[/B]
[B]Prevx1 V2 03.01.2007 Malware.Trojan.Backdoor.Gen[/B]
Sophos 4.14.0 03.01.2007 no virus found
[B]Sunbelt 2.2.907.0 03.01.2007 VIPRE.Suspicious[/B]
Symantec 10 03.01.2007 no virus found
TheHacker 6.1.6.067 03.01.2007 no virus found
UNA 1.83 03.01.2007 no virus found
[B]VBA32 3.11.2 02.28.2007 suspected of Backdoor.Hupigon.14 (paranoid heuristics)[/B]
VirusBuster 4.3.19:9 03.01.2007 no virus found

Aditional Information
File size: 226304 bytes
MD5: 70c7860b65f1f5119858ce4f39b28e09
SHA1: 7bf42148ddc7dc42c45f7e751c222f5f4ef1ce76
packers: PE-Armor
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=51f679492710[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Привет всем, выловила тут очередной, уже третий за последний год вирус. avast установленый по случаю поимки, ничего не отдетектил (нашёл правда в system32 пару библиотек давно удалённых троянов, брутфорс и т.п. :) ). Это кстати камень в огород тому, кто высказывался тут в том духе что антивирус на компьютере должен быть обязательно, пару разделов назад. За сим прошу откланятся. Спасибо что вы есть.

Complete scanning result of "itunesff.exe", received in VirusTotal at 03.02.2007, 01:12:32 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.38 03.01.2007 DIAL/Generic
Authentium 4.93.8 03.01.2007 no virus found
Avast 4.7.936.0 03.01.2007 no virus found
AVG 7.5.0.447 03.01.2007 Potentially harmful program Dialer.DXX
BitDefender 7.2 03.02.2007 no virus found
CAT-QuickHeal 9.00 03.01.2007 no virus found
ClamAV devel-20060426 03.02.2007 no virus found
DrWeb 4.33 03.01.2007 no virus found
eSafe 7.0.14.0 02.28.2007 suspicious Trojan/Worm
eTrust-Vet 30.6.3446 03.02.2007 no virus found
Ewido 4.0 03.01.2007 Dialer.Delf.i
FileAdvisor 1 03.02.2007 no virus found
Fortinet 2.85.0.0 03.01.2007 Dial/Delf
F-Prot 4.3.1.45 03.01.2007 no virus found
F-Secure 6.70.13030.0 03.01.2007 W32/Dialer.BECS
Ikarus T3.1.1.3 03.01.2007 not-a-virus:Dialer.Win32.Delf.i
Kaspersky 4.0.2.24 03.02.2007 not-a-virus:Dialer.Win32.Delf.i
McAfee 4974 03.01.2007 no virus found
Microsoft 1.2204 03.01.2007 no virus found
NOD32v2 2087 03.01.2007 no virus found
Norman 5.80.02 03.01.2007 W32/Dialer.BECS
Panda 9.0.0.4 03.01.2007 Suspicious file
Prevx1 V2 03.02.2007 no virus found
Sophos 4.14.0 03.01.2007 no virus found
Sunbelt 2.2.907.0 03.01.2007 no virus found
Symantec 10 03.02.2007 no virus found
TheHacker 6.1.6.067 03.01.2007 no virus found
UNA 1.83 03.01.2007 Dialer.Delf.F3C0
VBA32 3.11.2 03.01.2007 Dialer.Win32.Delf.i
VirusBuster 4.3.19:9 03.01.2007 no virus found

Aditional Information
File size: 29696 bytes
MD5: 1ecb1da7d037d1fce4037450c1b15a7d
SHA1: 55134fa1073412423ebc46d173b3ea18caa1af49
packers: UPX

STATUS: FINISHEDComplete scanning result of "counter_1_.htm", received in VirusTotal at 03.01.2007, 19:35:10 (CET).

Antivirus Version Update Result

AntiVir 7.3.1.38 03.01.2007 no virus found
Authentium 4.93.8 03.01.2007 no virus found
Avast 4.7.936.0 03.01.2007 no virus found
AVG 7.5.0.447 03.01.2007 no virus found
BitDefender 7.2 03.01.2007 no virus found
CAT-QuickHeal 9.00 03.01.2007 no virus found
ClamAV devel-20060426 03.01.2007 no virus found
[B]DrWeb 4.33 03.01.2007 Trojan.DownLoader.18376
eSafe 7.0.14.0 02.28.2007 Win32.VBS.Agent.n
eTrust-Vet 30.6.3444 03.01.2007 VBS/Petch
Ewido 4.0 03.01.2007 Downloader.Agent.n[/B]
FileAdvisor 1 03.01.2007 no virus found
[B]Fortinet 2.85.0.0 03.01.2007 VBS/Agent.N!tr.dldr[/B]
F-Prot 4.3.1.45 02.28.2007 no virus found
[B]F-Secure 6.70.13030.0 03.01.2007 Trojan-Downloader.VBS.Agent.n
Ikarus T3.1.1.3 03.01.2007 Trojan-Downloader.VBS.Agent.n
Kaspersky 4.0.2.24 03.01.2007 Trojan-Downloader.VBS.Agent.n[/B]
McAfee 4974 03.01.2007 no virus found
[B]Microsoft 1.2204 03.01.2007 TrojanDownloader:VBS/Agent.B[/B]
NOD32v2 2087 03.01.2007 no virus found
Norman 5.80.02 03.01.2007 no virus found
[B]Panda 9.0.0.4 03.01.2007 Trj/Downloader.NBT[/B]
Prevx1 V2 03.01.2007 no virus found
Sophos 4.14.0 03.01.2007 no virus found
Sunbelt 2.2.907.0 03.01.2007 no virus found
[B]Symantec 10 03.01.2007 Downloader[/B]
TheHacker 6.1.6.067 03.01.2007 no virus found
UNA 1.83 03.01.2007 no virus found
VBA32 3.11.2 02.28.2007 no virus found
[B]VirusBuster 4.3.19:9 03.01.2007 JS.Psyme.CT[/B]

Aditional Information
File size: 1899 bytes
MD5: e5d265c972c3001345e41b1d83ffeba0
SHA1: 65b1e6b635db74b1012d8b21b798bb47ff50b70b
packers: ENCODED SCRIPT

--------------------------
P.S. Погрешил на домашний Симантек в предыдущем сообщении. Он всё прекрасно видит, - [I]если[/I] восстановить повторной (поверх) инсталляцией функции, покореженные упомянутым там трояном. :L

Complete scanning result of "___1059", received in VirusTotal at 03.03.2007, 09:44:27 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.38 03.02.2007 no virus found
Authentium 4.93.8 03.02.2007 no virus found
[B]Avast 4.7.936.0 03.02.2007 Win32:Tibs-AFH[/B]
AVG 7.5.0.447 03.02.2007 no virus found
BitDefender 7.2 03.03.2007 no virus found
CAT-QuickHeal 9.00 03.02.2007 no virus found
ClamAV devel-20060426 03.03.2007 no virus found
DrWeb 4.33 03.02.2007 no virus found
eSafe 7.0.14.0 02.28.2007 no virus found
eTrust-Vet 30.6.3449 03.03.2007 no virus found
Ewido 4.0 03.02.2007 no virus found
FileAdvisor 1 03.03.2007 no virus found
Fortinet 2.85.0.0 03.03.2007 no virus found
F-Prot 4.3.1.45 03.03.2007 no virus found
[B]F-Secure 6.70.13030.0 03.03.2007 Trojan-Downloader.Win32.Small.dam[/B]
Ikarus T3.1.1.3 03.03.2007 no virus found
[B]Kaspersky 4.0.2.24 03.03.2007 Trojan-Downloader.Win32.Small.dam[/B]
McAfee 4975 03.02.2007 no virus found
Microsoft 1.2204 03.03.2007 no virus found
[B]NOD32v2 2091 03.03.2007 Win32/Fuclip.A[/B]
Norman 5.80.02 03.02.2007 no virus found
Panda 9.0.0.4 03.03.2007 no virus found
Prevx1 V2 03.03.2007 no virus found
[B]Sophos 4.14.0 03.03.2007 Troj/Small-DOR[/B]
Sunbelt 2.2.907.0 03.01.2007 no virus found
Symantec 10 03.03.2007 no virus found
TheHacker 6.1.6.067 03.01.2007 no virus found
UNA 1.83 03.02.2007 no virus found
[B]VBA32 3.11.2 03.03.2007 OScope.Worm.GSDA.Nuwar
VirusBuster 4.3.19:9 03.02.2007 Trojan.DL.Tibs.Gen!Pac13[/B]

Aditional Information
File size: 839627 bytes
MD5: 6a2dadad633bcb7ec825f52ea2cc9381
SHA1: efb11f4fb4ec7e311d0b34481ec4f471470cb746

File "serv.exe" received on 03.03.2007 at 11:49:20 (CET) is being scanned by VirusTotal in this moment. Results will be shown as they're generated.

[B]Antivirus Version Update Result
AntiVir 7.3.1.38 03.02.2007 TR/Crypt.XDR.Gen[/B]
Authentium 4.93.8 03.02.2007 no virus found
[B]Avast 4.7.936.0 03.03.2007 Win32:Warezov-BDI
AVG 7.5.0.447 03.03.2007 I-Worm/Stration
BitDefender 7.2 03.03.2007 DeepScan:Generic.Stration.12101348
CAT-QuickHeal 9.00 03.02.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20060426 03.03.2007 no virus found
DrWeb 4.33 03.03.2007 no virus found
[B]eSafe 7.0.14.0 02.28.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.6.3449 03.03.2007 no virus found
Ewido 4.0 03.03.2007 no virus found
FileAdvisor 1 03.03.2007 no virus found
Fortinet 2.85.0.0 03.03.2007 suspicious
F-Prot 4.3.1.45 03.03.2007 no virus found
F-Secure 6.70.13030.0 03.03.2007 no virus found
[B]Ikarus T3.1.1.3 03.03.2007 Backdoor.Win32.Agobot.NQ[/B]
Kaspersky 4.0.2.24 03.03.2007 no virus found
[B]McAfee 4975 03.02.2007 New Malware.n[/B]
Microsoft 1.2204 03.03.2007 no virus found
[B]NOD32v2 2091 03.03.2007 a variant of Win32/Stration.XJ[/B]
Norman 5.80.02 03.02.2007 no virus found
[B]Panda 9.0.0.4 03.03.2007 Suspicious file[/B]
Prevx1 V2 03.03.2007 no virus found
[B]Sophos 4.14.0 03.03.2007 Mal/Packer
Sunbelt 2.2.907.0 03.01.2007 VIPRE.Suspicious[/B]

Aditional Information
File size: 111190 bytes
MD5: 117e94346705cafc71d233f4a757ad68
SHA1: 18f4de893227db557739bcc1621eac9948053571
packers: Upack
packers: UPACK
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "setup.ex_", received in VirusTotal at 03.03.2007, 13:08:36 (CET).

Antivirus Version Update Result
AntiVir 7.3.1.38 03.02.2007 no virus found
Authentium 4.93.8 03.02.2007 no virus found
Avast 4.7.936.0 03.03.2007 no virus found
AVG 7.5.0.447 03.03.2007 no virus found
[B]BitDefender 7.2 03.03.2007 Trojan.Zlob.Y[/B]
CAT-QuickHeal 9.00 03.02.2007 no virus found
ClamAV devel-20060426 03.03.2007 no virus found
DrWeb 4.33 03.03.2007 no virus found
eSafe 7.0.14.0 02.28.2007 no virus found
eTrust-Vet 30.6.3449 03.03.2007 no virus found
Ewido 4.0 03.03.2007 no virus found
FileAdvisor 1 03.03.2007 no virus found
[B]Fortinet 2.85.0.0 03.03.2007 suspicious[/B]
F-Prot 4.3.1.45 03.03.2007 no virus found
[B]F-Secure 6.70.13030.0 03.03.2007 Trojan-Downloader.Win32.Zlob.bpl[/B]
Ikarus T3.1.1.3 03.03.2007 no virus found
[B]Kaspersky 4.0.2.24 03.03.2007 Trojan-Downloader.Win32.Zlob.bpl[/B]
McAfee 4975 03.02.2007 no virus found
Microsoft 1.2204 03.03.2007 no virus found
[B]NOD32v2 2091 03.03.2007 Win32/TrojanDownloader.Zlob.ASV[/B]
Norman 5.80.02 03.02.2007 no virus found
Panda 9.0.0.4 03.03.2007 no virus found
Prevx1 V2 03.03.2007 no virus found
Sophos 4.14.0 03.03.2007 no virus found
Sunbelt 2.2.907.0 03.01.2007 no virus found
[B]Symantec 10 03.03.2007 Trojan.Emcodec[/B]
TheHacker 6.1.6.067 03.01.2007 no virus found
UNA 1.83 03.02.2007 no virus found
[B]VBA32 3.11.2 03.03.2007 suspected of Downloader.Zlob.16 (paranoid heuristics)[/B]
VirusBuster 4.3.19:9 03.02.2007 no virus found

Aditional Information
File size: 72447 bytes
MD5: 3ba70123c97b4a1faa14103052a54e9c
SHA1: c4cb7148e73c2070627ff21888a1371b83502705
packers: BINARYRES, BINARYRES