-
Файл 3.exe получен 2009.03.03 10:38:25 (CET)
Текущий статус: закончено
[B]Результат: 2/39 (5.13%)[/B]
Цитата:
[QUOTE]a-squared 4.0.0.101 2009.03.03 -
AhnLab-V3 5.0.0.2 2009.02.27 -
AntiVir 7.9.0.98 2009.03.03 -
Authentium 5.1.0.4 2009.03.03 -
Avast 4.8.1335.0 2009.03.02 -
AVG 8.0.0.237 2009.03.03 -
BitDefender 7.2 2009.03.03 -
CAT-QuickHeal 10.00 2009.03.03 -
ClamAV 0.94.1 2009.03.03 -
Comodo 1017 2009.03.03 -
DrWeb 4.44.0.09170 2009.03.03 -
eSafe 7.0.17.0 2009.03.02 -
eTrust-Vet 31.6.6381 2009.03.03 -
F-Prot 4.4.4.56 2009.03.02 -
F-Secure 8.0.14470.0 2009.03.03 -
Fortinet 3.117.0.0 2009.03.03 -
GData 19 2009.03.03 -
Ikarus T3.1.1.45.0 2009.03.03 -
K7AntiVirus 7.10.654 2009.03.02 -
Kaspersky 7.0.0.125 2009.03.03 -
McAfee 5541 2009.03.02 -
McAfee+Artemis 5541 2009.03.02 -
Microsoft 1.4306 2009.03.03 -
NOD32 3902 2009.03.02 -
[B]Norman 6.00.06 2009.03.02 W32/Zlob.CYXP[/B]
nProtect 2009.1.8.0 2009.03.03 -
Panda 10.0.0.10 2009.03.02 -
PCTools 4.4.2.0 2009.03.02 -
Prevx1 V2 2009.03.03 -
Rising 21.19.11.00 2009.03.03 -
SecureWeb-Gateway 6.7.6 2009.03.03 -
Sophos 4.39.0 2009.03.03 -
[B]Sunbelt 3.2.1858.2 2009.03.02 <Encrypted Archive>[/B]
Symantec 10 2009.03.03 -
TheHacker 6.3.2.6.269 2009.03.02 -
TrendMicro 8.700.0.1004 2009.03.03 -
VBA32 3.12.10.1 2009.03.03 -
ViRobot 2009.3.3.1631 2009.03.03 -
VirusBuster 4.5.11.0 2009.03.02 -[/QUOTE]
Дополнительная информация
File size: 11735191 bytes
MD5...: 579ee530d8d6bd3cf7beb13aeec5fe30
SHA1..: 92bc0cc76e7c43a8a4afb1afd3bb6ccd8445c53c
SHA256: f46e372751155b25d15d89e6b9d8edfcb2cf864c2cee680a8ef27edc19db3d67
SHA512: e4186e5d3819ee1d1f8e1033737de778acff22443e2a1e9f20f38909edbd98d3
6d7bd98b18eea78a183e292b2fe147a36d1955d1cb47cb5c1dd4fc6b91eb8dae
ssdeep: 196608:FTLWeZd0IULK/TJFDFSSvQRPAdtPwmm1BPli4ahhjKlgX3TNAJeR:oeZd
0E/TJdF1oRPAdRmr/ahhjigX3yJK
PEiD..: Armadillo v1.71
TrID..: File type identification
Win64 Executable Generic (54.6%)
Win32 Executable MS Visual C++ (generic) (24.0%)
Windows Screen Saver (8.3%)
Win32 Executable Generic (5.4%)
Win32 Dynamic Link Library (generic) (4.8%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x173a6
timedatestamp.....: 0x47d6fa36 (Tue Mar 11 21:31:34 2008)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x2e906 0x2f000 6.60 9ba09777227435273354d46c8470fbd3
.rdata 0x30000 0x842e 0x9000 4.58 ec25192b7421c9cc51f1a1283f96b143
.data 0x39000 0x9d08 0x6000 2.68 e4b5677a176f441e4836113962ecddba
.rsrc 0x43000 0x9998 0xa000 4.75 91c466c33a8b81107d6d20fbb56fd1da
( 8 imports )
> KERNEL32.dll: WritePrivateProfileStringA, GetProcessVersion, SizeofResource, GetCPInfo, GetOEMCP, RtlUnwind, ExitProcess, TerminateProcess, HeapFree, HeapAlloc, RaiseException, GetTimeZoneInformation, GetSystemTime, GetLocalTime, HeapReAlloc, SetEnvironmentVariableA, SetCurrentDirectoryA, GetStartupInfoA, GetCommandLineA, GetACP, HeapSize, LCMapStringA, LCMapStringW, GetEnvironmentVariableA, GetVersionExA, HeapDestroy, VirtualFree, VirtualAlloc, IsBadWritePtr, SetUnhandledExceptionFilter, CompareStringA, CompareStringW, GetFileType, SetStdHandle, UnhandledExceptionFilter, FreeEnvironmentStringsA, FreeEnvironmentStringsW, GetEnvironmentStrings, GetEnvironmentStringsW, SetHandleCount, GetStdHandle, GetStringTypeA, GetStringTypeW, IsBadReadPtr, IsBadCodePtr, GlobalFlags, SetErrorMode, TlsGetValue, GetProfileStringA, LocalReAlloc, TlsSetValue, GlobalReAlloc, TlsFree, GlobalHandle, TlsAlloc, LocalAlloc, EnterCriticalSection, LeaveCriticalSection, DeleteCriticalSection, InitializeCriticalSection, SetFileTime, SystemTimeToFileTime, LocalFileTimeToFileTime, GetFileTime, MulDiv, SetLastError, FreeLibrary, GetVersion, lstrcatA, GlobalGetAtomNameA, GlobalAddAtomA, GlobalFindAtomA, GetModuleHandleA, GlobalUnlock, GlobalFree, LockResource, FindResourceA, LoadResource, GlobalLock, GlobalAlloc, GlobalDeleteAtom, GetCurrentThread, GetCurrentThreadId, lstrcmpiA, LoadLibraryA, GetProcAddress, SetEndOfFile, UnlockFile, LockFile, FlushFileBuffers, WriteFile, GetCurrentProcess, DuplicateHandle, lstrcmpA, FileTimeToSystemTime, MultiByteToWideChar, WideCharToMultiByte, InterlockedDecrement, CreateDirectoryA, MoveFileA, SetVolumeLabelA, GetDriveTypeA, GetCurrentDirectoryA, GetFileSize, GetDiskFreeSpaceA, FormatMessageA, LocalFree, CreateFileMappingA, MapViewOfFile, UnmapViewOfFile, lstrlenA, CreateProcessA, GetLastError, GetExitCodeProcess, GetTempPathA, GetModuleFileNameA, RemoveDirectoryA, SetFileAttributesA, DeleteFileA, InterlockedIncrement, FindNextFileA, CreateFileA, SetFilePointer, ReadFile, CloseHandle, GetFullPathNameA, lstrcpynA, GetVolumeInformationA, GetFileAttributesA, lstrcpyA, FindFirstFileA, FindClose, FileTimeToLocalFileTime, HeapCreate
> USER32.dll: ScreenToClient, AdjustWindowRectEx, GetSysColor, MapWindowPoints, UpdateWindow, ClientToScreen, GetWindowDC, BeginPaint, EndPaint, TabbedTextOutA, DrawTextA, GrayStringA, LoadStringA, GetClassNameA, PtInRect, GetSysColorBrush, InflateRect, DestroyMenu, InvalidateRect, WinHelpA, GetClassInfoA, RegisterClassA, GetMenu, GetMenuItemCount, GetSubMenu, GetMenuItemID, CreateWindowExA, GetClassLongA, SetPropA, GetPropA, CallWindowProcA, RemovePropA, DefWindowProcA, GetMessageTime, GetMessagePos, GetForegroundWindow, SetForegroundWindow, GetWindow, OffsetRect, IntersectRect, SystemParametersInfoA, GetWindowPlacement, GetWindowRect, CopyRect, GetDC, ReleaseDC, EndDialog, SetActiveWindow, CreateDialogIndirectParamA, DestroyWindow, GetMenuCheckMarkDimensions, LoadBitmapA, GetMenuState, ModifyMenuA, SetMenuItemBitmaps, CheckMenuItem, EnableMenuItem, GetNextDlgTabItem, GetMessageA, GetActiveWindow, GetKeyState, CallNextHookEx, ValidateRect, IsWindowVisible, GetCursorPos, SetWindowsHookExA, GetLastActivePopup, UnhookWindowsHookEx, GetParent, SetFocus, IsWindowEnabled, ShowWindow, SetWindowPos, SetWindowLongA, GetDlgCtrlID, GetWindowTextLengthA, GetWindowTextA, SetWindowTextA, GetWindowLongA, IsDialogMessageA, SendDlgItemMessageA, GetDlgItem, CharUpperA, IsWindow, PostQuitMessage, UnregisterClassA, HideCaret, ShowCaret, CharToOemBuffA, OemToCharBuffA, wsprintfA, MsgWaitForMultipleObjects, TranslateMessage, DispatchMessageA, MessageBoxA, GetTopWindow, RegisterWindowMessageA, GetCapture, EnableWindow, LoadCursorA, SetCursor, IsIconic, GetSystemMetrics, GetClientRect, DrawIcon, PostMessageA, LoadIconA, SendMessageA, PeekMessageA, IsWindowUnicode, CharNextA, DefDlgProcA, DrawFocusRect, ExcludeUpdateRgn, GetFocus
> GDI32.dll: SetMapMode, SetViewportOrgEx, OffsetViewportOrgEx, SetViewportExtEx, ScaleViewportExtEx, SetWindowExtEx, ScaleWindowExtEx, IntersectClipRect, DeleteObject, GetDeviceCaps, CreateSolidBrush, PtVisible, RectVisible, TextOutA, ExtTextOutA, Escape, SetBkMode, GetStockObject, SelectObject, RestoreDC, SaveDC, DeleteDC, GetObjectA, SetBkColor, SetTextColor, GetClipBox, PatBlt, CreateDIBitmap, GetTextExtentPointA, BitBlt, CreateCompatibleDC, CreateBitmap
> comdlg32.dll: GetFileTitleA
> WINSPOOL.DRV: DocumentPropertiesA, ClosePrinter, OpenPrinterA
> ADVAPI32.dll: RegCloseKey, RegCreateKeyExA, RegOpenKeyExA, RegSetValueExA
> SHELL32.dll: SHFileOperationA
> COMCTL32.dll: -
( 0 exports )
packers (F-Prot): ZIP
-
[QUOTE]Файл ConfDriver.exe получен 2009.03.06 00:09:46 (CET)
Результат: [B]17/39 [/B](43.59%)
a-squared 4.0.0.101 2009.03.05 -
[B]AhnLab-V3 5.0.0.2 2009.02.27 Win-Trojan/Buzus.29184.AK [/B]
AntiVir 7.9.0.100 2009.03.05 -
Authentium 5.1.0.4 2009.03.05 -
Avast 4.8.1335.0 2009.03.05 -
[B]AVG 8.0.0.237 2009.03.05 Generic12.ASUT
BitDefender 7.2 2009.03.05 Backdoor.Hamweq.B
CAT-QuickHeal 10.00 2009.03.05 Trojan.Buzus.afet [/B]
ClamAV 0.94.1 2009.03.05 -
[B]Comodo 1027 2009.03.05 Worm.Win32.AutoRun.~ZU
DrWeb 4.44.0.09170 2009.03.05 Trojan.Inject.5370
eSafe 7.0.17.0 2009.03.05 Suspicious File
eTrust-Vet 31.6.6384 2009.03.05 Win32/SillyAutorun.AJE [/B]
F-Prot 4.4.4.56 2009.03.05 -
[B]F-Secure 8.0.14470.0 2009.03.05 Worm.Win32.AutoRun.erh [/B]
Fortinet 3.117.0.0 2009.03.05 -
[B]GData 19 2009.03.05 Backdoor.Hamweq.B [/B]
Ikarus T3.1.1.45.0 2009.03.05 -
K7AntiVirus 7.10.659 2009.03.05 -
[B]Kaspersky 7.0.0.125 2009.03.05 Worm.Win32.AutoRun.erh [/B]
McAfee 5544 2009.03.05 -
McAfee+Artemis 5544 2009.03.05 -
[B]Microsoft 1.4405 2009.03.06 Worm:Win32/Hamweq.A
NOD32 3911 2009.03.05 Win32/AutoRun.KS [/B]
Norman 6.00.06 2009.03.05 -
nProtect 2009.1.8.0 2009.03.05 -
Panda 10.0.0.10 2009.03.05 -
PCTools 4.4.2.0 2009.03.05 -
[B]Prevx1 V2 2009.03.06 Medium Risk Malware [/B]
Rising 21.19.32.00 2009.03.05 -
SecureWeb-Gateway 6.7.6 2009.03.05 -
Sophos 4.39.0 2009.03.05 -
Sunbelt 3.2.1858.2 2009.03.05 -
Symantec 10 2009.03.06 -
TheHacker 6.3.2.7.272 2009.03.05 -
[B]TrendMicro 8.700.0.1004 2009.03.05 PAK_Generic.001
VBA32 3.12.10.1 2009.03.05 Trojan.Win32.Buzus.afet[/B]
ViRobot 2009.3.5.1635 2009.03.05 -
[B]VirusBuster 4.5.11.0 2009.03.05 Worm.AutoRun.FYJ[/B] [/QUOTE]
Дополнительная информация
File size: 29184 bytes
MD5...: 1a5f91554aad217185271b3414e10dcd
SHA1..: d6989ce427e0ff4e723cb11fa09f42147a2b347d
SHA256: 5febb6cef268db2c9c9ad227587f79dae1825a9d2db381afceb1ff98add214fe
___________________________
([B]eTrust[/B] - хорошо сказал :) )
-
Файл avz00001.dta получен 2009.03.06 11:06:59 (CET)
Результат: 4/38 (10.53%)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.03.06 -
AhnLab-V3 5.0.0.2 2009.02.27 -
AntiVir 7.9.0.105 2009.03.06 -
Authentium 5.1.0.4 2009.03.06 -
Avast 4.8.1335.0 2009.03.05 -
AVG 8.0.0.237 2009.03.05 [B]Adload_r.HT[/B]
BitDefender 7.2 2009.03.06 -
CAT-QuickHeal 10.00 2009.03.06 -
ClamAV 0.94.1 2009.03.06 -
Comodo 1027 2009.03.05 -
DrWeb 4.44.0.09170 2009.03.06 -
eSafe 7.0.17.0 2009.03.05 -
eTrust-Vet 31.6.6384 2009.03.05 -
F-Prot 4.4.4.56 2009.03.05 [B]W32/Hexzone.B.gen!Eldorado[/B]
F-Secure 8.0.14470.0 2009.03.06 [B]Trojan-Downloader.Win32.Agent.bjtm[/B]
Fortinet 3.117.0.0 2009.03.06 -
GData 19 2009.03.06 -
Ikarus T3.1.1.45.0 2009.03.06 -
K7AntiVirus 7.10.659 2009.03.05 -
Kaspersky 7.0.0.125 2009.03.06 [B]Trojan-Downloader.Win32.Agent.bjtm[/B]
McAfee 5544 2009.03.05 -
McAfee+Artemis 5544 2009.03.05 -
Microsoft 1.4405 2009.03.06 -
NOD32 3912 2009.03.06 -
Norman 6.00.06 2009.03.05 -
nProtect 2009.1.8.0 2009.03.06 -
Panda 10.0.0.10 2009.03.05 -
PCTools 4.4.2.0 2009.03.05 -
Prevx1 V2 2009.03.06 -
Rising 21.19.42.00 2009.03.06 -
SecureWeb-Gateway 6.7.6 2009.03.06 -
Sophos 4.39.0 2009.03.06 -
Sunbelt 3.2.1858.2 2009.03.06 -
Symantec 10 2009.03.06 -
TheHacker 6.3.2.7.273 2009.03.06 -
TrendMicro 8.700.0.1004 2009.03.05 -
ViRobot 2009.3.6.1637 2009.03.06 -
VirusBuster 4.5.11.0 2009.03.05 - [/CODE]
Дополнительная информация
File size: 509952 bytes
MD5...: 46e1e2567163dca639a3eea51399423c
SHA1..: a8c1b02c5d373cbe33dc13519e4a68a1db1d7bb6
SHA256: 6e2135bdeaeeccb22b1cb7857362980e90f50e225dac599355e2f47557fce12e
SHA512: 4df4bf98b91ff024737143a08863144d588dbb0395c989ba07af24218d2f39eb
077f058691b23fb20931d9601e2ff61eb9b6a03d73d1493aef0b7a83a9d31957
ssdeep: 12288:XH7t3DuI5p1LTVS9c2UIm98ODaPQUPKj1BO5RQEDHM1dDG:Xbt3yKp1LTV
KcgfYPj1BAR57MXi
-
Файл ______________.exe получен 2009.03.09 20:13:40 (CET)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 15/39 (38.47%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.03.09 Trojan-PWS.Win32.VKont!IK[/B]
AhnLab-V3 5.0.0.2 2009.02.27 -
[B]AntiVir 7.9.0.107 2009.03.09 TR/PSW.VKont.A[/B]
Authentium 5.1.0.4 2009.03.09 -
[B]Avast 4.8.1335.0 2009.03.09 Win32:Trojan-gen {Other}
AVG 8.0.0.237 2009.03.09 PSW.Generic6.BBIK
BitDefender 7.2 2009.03.09 Trojan.Generic.1406945
CAT-QuickHeal 10.00 2009.03.09 TrojanPSW.VKont.a[/B]
ClamAV 0.94.1 2009.03.09 -
[B]Comodo 1039 2009.03.09 TrojWare.Win32.PSW.VKont.~A
DrWeb 4.44.0.09170 2009.03.09 Trojan.PWS.Vkontakte.6[/B]
eSafe 7.0.17.0 2009.03.09 -
eTrust-Vet 31.6.6387 2009.03.09 -
F-Prot 4.4.4.56 2009.03.08 -
[B]F-Secure 8.0.14470.0 2009.03.09 Trojan-PSW.Win32.VKont.a[/B]
Fortinet 3.117.0.0 2009.03.09 -
[B]GData 19 2009.03.09 Trojan.Generic.1406945
Ikarus T3.1.1.45.0 2009.03.09 Trojan-PWS.Win32.VKont[/B]
K7AntiVirus 7.10.664 2009.03.09 -
[B]Kaspersky 7.0.0.125 2009.03.09 Trojan-PSW.Win32.VKont.a[/B]
McAfee 5548 2009.03.09 -
McAfee+Artemis 5548 2009.03.09 -
Microsoft 1.4405 2009.03.09 -
NOD32 3921 2009.03.09 -
Norman 6.00.06 2009.03.09 -
[B]nProtect 2009.1.8.0 2009.03.09 Trojan-PWS/W32.VKont.813568[/B]
Panda 10.0.0.10 2009.03.09 -
PCTools 4.4.2.0 2009.03.09 -
Prevx1 V2 2009.03.09 -
Rising 21.20.02.00 2009.03.09 -
[B]SecureWeb-Gateway 6.7.6 2009.03.09 Trojan.PSW.VKont.A[/B]
Sophos 4.39.0 2009.03.09 -
Sunbelt 3.2.1858.2 2009.03.08 -
Symantec 1.4.4.12 2009.03.09 -
TheHacker 6.3.3.0.277 2009.03.09 -
TrendMicro 8.700.0.1004 2009.03.09 -
[B]VBA32 3.12.10.1 2009.03.09 Trojan-PSW.Win32.VKont.a[/B]
ViRobot 2009.3.9.1641 2009.03.09 -
VirusBuster 4.5.11.0 2009.03.09 -[/QUOTE]
Дополнительная информация
File size: 813568 bytes
MD5...: 85740a68e38e51807b1fd4f9190378e3
SHA1..: 995f5fd65a8c9ac8be5aa324e9b35fc51f5f0591
SHA256: 062fc5d9ac296d44223a5ef1b39f2ba9c2f9c12511e84a993dbbf3e3fa7838eb
SHA512: 071696ae10178453a8825bc61e97cb7e617641238d1d39102012aaf4a7949c12
a7345277494a821cdcee05d77d29d2aa2e137e88cad2b5aed373f16899d6cddf
ssdeep: 12288:R/jDEG2cYpCXUm6AJGAh6QkkkmRKcjRula43e:pnSDCXOLik4K1p3
PEiD..: BobSoft Mini Delphi -> BoB / BobSoft
-
File ximr.pif received on 03.11.2009 11:10:09 (CET)
Result: 6/39 (15.39%)
[code]Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.03.11 -
AhnLab-V3 5.0.0.2 2009.03.11 -
[B]AntiVir 7.9.0.109 2009.03.11 Worm/Autorun.esq[/B]
Authentium 5.1.0.4 2009.03.10 -
Avast 4.8.1335.0 2009.03.10 -
AVG 8.0.0.237 2009.03.10 -
BitDefender 7.2 2009.03.11 -
[B]CAT-QuickHeal 10.00 2009.03.11 Worm.AutoRun.upf[/B]
ClamAV 0.94.1 2009.03.11 -
[B]Comodo 1046 2009.03.10 Unclassified Malware[/B]
DrWeb 4.44.0.09170 2009.03.11 -
[B]eSafe 7.0.17.0 2009.03.11 Win32.Worm.AutoRun.u[/B]
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.10 -
F-Secure 8.0.14470.0 2009.03.11 -
Fortinet 3.117.0.0 2009.03.11 -
GData 19 2009.03.11 -
Ikarus T3.1.1.45.0 2009.03.11 -
K7AntiVirus 7.10.665 2009.03.10 -
Kaspersky 7.0.0.125 2009.03.11 -
McAfee 5549 2009.03.10 -
McAfee+Artemis 5549 2009.03.10 -
Microsoft 1.4405 2009.03.11 -
NOD32 3925 2009.03.11 -
Norman 6.00.06 2009.03.10 -
nProtect 2009.1.8.0 2009.03.11 -
Panda 10.0.0.10 2009.03.10 -
PCTools 4.4.2.0 2009.03.10 -
Prevx1 V2 2009.03.11 -
Rising 21.20.22.00 2009.03.11 -
[B]SecureWeb-Gateway 6.7.6 2009.03.11 Worm.Autorun.esq[/B]
Sophos 4.39.0 2009.03.11 -
Sunbelt 3.2.1858.2 2009.03.10 -
Symantec 1.4.4.12 2009.03.11 -
[B]TheHacker 6.3.3.0.278 2009.03.11 W32/AutoRun.esq[/B]
TrendMicro 8.700.0.1004 2009.03.11 -
VBA32 3.12.10.1 2009.03.11 -
ViRobot 2009.3.11.1645 2009.03.11 -
VirusBuster 4.5.11.0 2009.03.10 -[/code]
Additional information
File size: 97791 bytes
MD5...: df7ebd547e890c70d0e802454168b346
SHA1..: 4e6f4197ee2563ed06946c6016d4fac1082ed1fe
SHA256: dfa991a20f3c184292e2eb3500ebfa3466bcaa06ae0d84e8933df9f18c7302f1
SHA512: 182a46b08005b3a7ac4f9a1738d52ad6c667721472a86a989ff2c305c952d027
25cd75c39cc2e2f93c9aefb9709c3b7919a06bc3cec4b224179d5061bc1962f7
ssdeep: 1536:YEwOnbNQKLjWDyy1o5RepJUEbooPRrKKRSq6Hn:Y2NQKPWDyDRepJltZrpR
SfH
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (53.1%)
Windows Screen Saver (18.4%)
Win32 Executable Generic (12.0%)
Win32 Dynamic Link Library (generic) (10.6%)
Generic Win/DOS Executable (2.8%)
PEInfo: PE Structure information
-
А график за февраль будет опубликован?
-
Поддерживаю GeorgeS по данному вопросу. Каждый день захожу, смотрю не появился ли график за февраль.
-
Файл DrShark_cracked.exe получен 2009.03.11 14:31:44 (CET)
Текущий статус: закончено
Результат: 9/39 (23.08%)
[QUOTE]
a-squared - - -
AhnLab-V3 - - -
[B]AntiVir - - TR/Drop.RKit.CM[/B]
Authentium - - -
Avast - - -
[B]AVG - - Downloader.Generic_r.DA[/B]
BitDefender - - -
[B]CAT-QuickHeal - - (Suspicious) - DNAScan[/B]
ClamAV - - -
Comodo - - -
DrWeb - - -
eSafe - - -
eTrust-Vet - - -
[B]F-Prot - - W32/Bepiv.A.gen!Eldorado[/B]
F-Secure - - -
Fortinet - - -
GData - - -
Ikarus - - -
K7AntiVirus - - -
Kaspersky - - -
McAfee - - -
McAfee+Artemis - - -
[B]Microsoft - - Trojan:Win32/Tibs.IR[/B]
[B]NOD32 - - a variant of Win32/AdProt.AF[/B]
Norman - - -
nProtect - - -
[B]Panda - - Suspicious file[/B]
PCTools - - -
Prevx1 - - -
Rising - - -
[B]SecureWeb-Gateway - - Trojan.Drop.RKit.CM[/B]
Sophos - - -
Sunbelt - - -
Symantec - - -
TheHacker - - -
TrendMicro - - -
[B]VBA32 - - BScope.Zhelatin.13[/B]
ViRobot - - -
VirusBuster - - -
[/QUOTE]
Дополнительная информация
MD5: 7b60db539c761b2babd2d15f2b49f525
SHA1: b3bc4af1e0b5cf052012d3b109b41f642721db3f
SHA256: 375072eab89a611d7f82be38d4ba7b2c7aa366cb5f7fcb5d155a1b3f4b36f1a4
SHA512: 212aa4fd7ebc996d09a8339f207af2b6665325ea91fb4b264cf887e14c9dc32460dce745dbb37a99b13a8ae20436a41c13abf1273db322b4aa1f1f729beb5afb
[size="1"][color="#666686"][B][I]Добавлено через 13 минут[/I][/B][/color][/size]
Файл mouth_drillers_keygen.exe получен 2009.03.11 00:40:20 (CET)
Текущий статус: закончено
Результат: 11/39 (28.21%)
[QUOTE]
[B]a-squared 4.0.0.101 2009.03.10 Trojan.Win32.Bepiv!IK[/B]
AhnLab-V3 5.0.0.2 2009.03.10 -
[B]AntiVir 7.9.0.107 2009.03.10 TR/Drop.RKit.CM[/B]
Authentium 5.1.0.4 2009.03.10 -
Avast 4.8.1335.0 2009.03.10 -
[B]AVG 8.0.0.237 2009.03.10 Downloader.Generic_r.DA[/B]
BitDefender 7.2 2009.03.11 -
[B]CAT-QuickHeal 10.00 2009.03.10 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.03.10 -
Comodo 1046 2009.03.10 -
DrWeb 4.44.0.09170 2009.03.11 -
eSafe 7.0.17.0 2009.03.09 -
eTrust-Vet 31.6.6388 2009.03.09 -
[B]F-Prot 4.4.4.56 2009.03.10 W32/Bepiv.A.gen!Eldorado[/B]
F-Secure 8.0.14470.0 2009.03.10 -
Fortinet 3.117.0.0 2009.03.10 -
GData 19 2009.03.10 -
[B]Ikarus T3.1.1.45.0 2009.03.10 Trojan.Win32.Bepiv[/B]
K7AntiVirus 7.10.665 2009.03.10 -
Kaspersky 7.0.0.125 2009.03.11 -
McAfee 5549 2009.03.10 -
McAfee+Artemis 5549 2009.03.10 -
[B]Microsoft 1.4405 2009.03.10 Trojan:Win32/Tibs.IR[/B]
[B]NOD32 3924 2009.03.10 a variant of Win32/AdProt.AF[/B]
Norman 6.00.06 2009.03.10 -
nProtect 2009.1.8.0 2009.03.10 -
[B]Panda 10.0.0.10 2009.03.10 Suspicious file[/B]
PCTools 4.4.2.0 2009.03.10 -
Prevx1 V2 2009.03.11 -
Rising 21.20.11.00 2009.03.10 -
[B]SecureWeb-Gateway 6.7.6 2009.03.10 Trojan.Drop.RKit.CM[/B]
Sophos 4.39.0 2009.03.10 -
Sunbelt 3.2.1858.2 2009.03.10 -
Symantec 1.4.4.12 2009.03.11 -
TheHacker 6.3.3.0.278 2009.03.10 -
TrendMicro 8.700.0.1004 2009.03.10 -
[B]VBA32 3.12.10.1 2009.03.10 BScope.Zhelatin.13[/B]
ViRobot 2009.3.10.1643 2009.03.10 -
VirusBuster 4.5.11.0 2009.03.10 -
[/QUOTE]
Tamano archivo: 423936 bytes
MD5...: 3d085efeb45e1235dd20f32fef05d9f5
SHA1..: fa10896649a0ec80b206b0fc63b5be17ee9ff868
SHA256: 4f89a1911484c61caf4af3412cbcf9abdb052a55bf8e3074124fadbb20bff7e6
SHA512: cbd6179648adc70143f34e08160a0d9cefb97bca9a9f77023175b8ba4d1bdff5
280fa19dd5d56c2d6e4f833347fa91b8c3131b29e5d5edabff2563ab9d225d98
ssdeep: 6144:yKkVQxrxKG9cUxMNuFFg0SRDA8k0PO5lTjJ8+nb/xznFl:BfxrxKG9cUxem
r2k0PKl3J8+bZzT
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x78516
timedatestamp.....: 0x49b35db2 (Sun Mar 08 05:54:58 2009)
machinetype.......: 0x14c (I386)
( 7 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x12192 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rdata 0x14000 0xfa8c 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.data 0x24000 0x39a4 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.rsrc 0x28000 0x3a480 0x2a000 4.11 2bee61ed43584c597a888b692b42b04a
.vmp0 0x63000 0x10944 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
.vmp1 0x74000 0x3d074 0x3d200 7.95 057bdd7375ca355e49aad0d903075749
.reloc 0xb2000 0x98 0x200 1.91 7ce32232fd37f057468080eaef446b63
( 9 imports )
> KERNEL32.dll: GlobalLock
> USER32.dll: LoadCursorA
> ADVAPI32.dll: RegEnumKeyExA
> ole32.dll: CoTaskMemRealloc
> OLEAUT32.dll: -
> GDI32.dll: GetStockObject
> ntdll.dll: RtlFreeHeap
> KERNEL32.dll: LoadLibraryA, VirtualProtect, GetModuleFileNameA, ExitProcess
> USER32.dll: MessageBoxA
( 0 exports )
-
File Putty.zip received on 03.13.2009 15:08:55 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 23/39 (58.98%)
[QUOTE][B]a-squared 4.0.0.101 2009.03.13 Backdoor.Win32.Bifrose!IK[/B]
AhnLab-V3 5.0.0.2 2009.03.13 -
[B]AntiVir 7.9.0.114 2009.03.13 BDS/Bifrose.abwo[/B]
[B]Authentium 5.1.0.4 2009.03.13 W32/Backdoor2.DEIA[/B]
Avast 4.8.1335.0 2009.03.12 -
AVG 8.0.0.237 2009.03.13 -
BitDefender 7.2 2009.03.13 -
[B]CAT-QuickHeal 10.00 2009.03.13 Backdoor.Bifrose.afuq[/B]
ClamAV 0.94.1 2009.03.13 -
[B]Comodo 1053 2009.03.13 Backdoor.Win32.Bifrose.~XH[/B]
DrWeb 4.44.0.09170 2009.03.13 -
[B]eSafe 7.0.17.0 2009.03.12 Suspicious File [/B]
eTrust-Vet 31.6.6388 2009.03.09 -
[B]F-Prot 4.4.4.56 2009.03.13 W32/Backdoor2.DEIA[/B]
[B]F-Secure 8.0.14470.0 2009.03.13 Backdoor.Win32.Bifrose.afuq[/B]
[B]Fortinet 3.117.0.0 2009.03.13 PossibleThreat[/B]
GData 19 2009.03.13 -
[B]Ikarus T3.1.1.45.0 2009.03.13 Backdoor.Win32.Bifrose[/B]
[B]K7AntiVirus 7.10.668 2009.03.12 Backdoor.Win32.Bifrose.afuq[/B]
[B]Kaspersky 7.0.0.125 2009.03.13 Backdoor.Win32.Bifrose.afuq[/B]
[B]McAfee 5551 2009.03.12 Backdoor-CEP[/B]
[B]McAfee+Artemis 5551 2009.03.12 Backdoor-CEP[/B]
[B]McAfee-GW-Edition 6.7.6 2009.03.13 Trojan.Backdoor.Bifrose.abwo[/B]
Microsoft 1.4405 2009.03.13 -
[B]NOD32 3934 2009.03.13 probably a variant of Win32/Bifrose[/B]
[B]Norman 6.00.06 2009.03.13 W32/Bifrose.AKOL[/B]
nProtect 2009.1.8.0 2009.03.13 -
[B]Panda 10.0.0.10 2009.03.13 Bck/Bifrose.AKL[/B]
PCTools 4.4.2.0 2009.03.13 -
Prevx1 V2 2009.03.13 -
Rising 21.20.42.00 2009.03.13 -
Sophos 4.39.0 2009.03.13 -
[B]Sunbelt 3.2.1858.2 2009.03.13 Backdoor.Win32.Bifrose.afuq[/B]
[B]Symantec 1.4.4.12 2009.03.13 Backdoor.Bifrose[/B]
[B]TheHacker 6.3.3.0.281 2009.03.13 Backdoor/Bifrose.abwo[/B]
TrendMicro 8.700.0.1004 2009.03.13 -
[B]VBA32 3.12.10.1 2009.03.12 Backdoor.Win32.Bifrose.afuq[/B]
ViRobot 2009.3.13.1648 2009.03.13 -
[B]VirusBuster 4.6.5.0 2009.03.13 Backdoor.Bifrose.KRU[/B]
[/QUOTE]
File size: 217658 bytes
MD5...: dbe5288e7b022eddfcefa03bb16705ce
SHA1..: ee7fac7ae06f8a9b034c33dfae94bb99793c625e
SHA256: ae4ec7685d1471a9f905bb984c9c055c7845fee539ff1369af112a6c90f8967a
SHA512: 882b308a46b36b79cdfdda9d4e267946adfe91bf3dcbf6fd7279a6d7092c4819
448871475167d3d97969d84e79573366b67a61a9e5567222b50cfd9ec816082d
ssdeep: 6144:5fIcYuyczDuxxuoATKgC9u1CH2hulI6Z6VLW4nxFZ2zzV7r:xIcYuRDuxkF
TKteC2q8LWMv61
PEiD..: -
TrID..: File type identification
ZIP compressed archive (100.0%)
[size="1"][color="#666686"][B][I]Добавлено через 3 часа 6 минут[/I][/B][/color][/size]
File zar80.zip received on 03.13.2009 18:12:44 (CET)
Current status: Loading ... queued waiting scanning finished
Result: 19/39 (48.72%)
[QUOTE][B]a-squared 4.0.0.101 2009.03.13 Trojan.Win32.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.03.13 -
[B]AntiVir 7.9.0.114 2009.03.13 TR/AvKill.Y[/B]
Authentium 5.1.0.4 2009.03.13 -
[B]Avast 4.8.1335.0 2009.03.12 Win32:AVKill-425[/B]
AVG 8.0.0.237 2009.03.13 -
[B]BitDefender 7.2 2009.03.13 Trojan.Avkill.Y[/B]
CAT-QuickHeal 10.00 2009.03.13 -
ClamAV 0.94.1 2009.03.13 -
Comodo 1053 2009.03.13 -
DrWeb 4.44.0.09170 2009.03.13 -
[B]eSafe 7.0.17.0 2009.03.12 Win32.TrojanHorse[/B]
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.13 -
F-Secure 8.0.14470.0 2009.03.13 -
[B]Fortinet 3.117.0.0 2009.03.13 PossibleThreat[/B]
[B]GData 19 2009.03.13 Trojan.Avkill.Y[/B]
[B]Ikarus T3.1.1.45.0 2009.03.13 Trojan.Win32.Agent[/B]
K7AntiVirus 7.10.668 2009.03.12 -
Kaspersky 7.0.0.125 2009.03.13 -
[B]McAfee 5551 2009.03.12 Generic StartPage[/B]
[B]McAfee+Artemis 5551 2009.03.12 Generic!Artemis[/B]
[B]McAfee-GW-Edition 6.7.6 2009.03.13 Trojan.AvKill.Y[/B]
[B]Microsoft 1.4405 2009.03.13 Trojan:Win32/Agent[/B]
[B]NOD32 3935 2009.03.13 probably a variant of Win32/StartPage[/B]
Norman 6.00.06 2009.03.13 -
nProtect 2009.1.8.0 2009.03.13 -
[B]Panda 10.0.0.10 2009.03.13 Adware/Startpage.CTK[/B]
PCTools 4.4.2.0 2009.03.13 -
[B]Prevx1 V2 2009.03.13 Medium Risk Malware[/B]
[B]Rising 21.20.42.00 2009.03.13 Backdoor.Win32.CAK.a[/B]
[B]Sophos 4.39.0 2009.03.13 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.03.13 -
[B]Symantec 1.4.4.12 2009.03.13 Backdoor.Formador[/B]
TheHacker 6.3.3.0.281 2009.03.13 -
TrendMicro 8.700.0.1004 2009.03.13 -
[B]VBA32 3.12.10.1 2009.03.12 Trojan.Dater[/B]
ViRobot 2009.3.13.1648 2009.03.13 -
VirusBuster 4.6.5.0 2009.03.13 -
[/QUOTE]
File size: 2234580 bytes
MD5...: e1a120608f1737a2d9709caab14d9795
SHA1..: 3ae600e731fcf40aaedd0c552104cb39d6c5282c
SHA256: 270fece47b622b770dc74fd722af1a3ac3604795d3183ae850a410adabffa50e
SHA512: cffeb948a5677660d53b9409f6d59f9a5ba19234b14d266d656ad00f02b682d6
54cc10db2235a677579bc3acb85e0fb3a7d22548977465f53811c79277ffa117
ssdeep: 49152:G8P85o+2Hf23YbH4im7dGfcLcMWO0Hoh31nkVXZWk4ZSvTC:Ge3HQYjrm7
duc990HohlnkVXZWH7
PEiD..: -
TrID..: File type identification
ZIP compressed archive (100.0%)
PEInfo: -
packers (Kaspersky): Armadillo, WScript
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=221491A80896B6071B0119D37DDB5A005C35FA30' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=221491A80896B6071B0119D37DDB5A005C35FA30</a>
packers (F-Prot): ZIP, Unicode
-
Файл crack__2009__DrShark_.exe получен 2009.03.13 20:56:53 (CET)
Текущий статус: закончено
Результат: 4/39 (10.26%)
[QUOTE]
a-squared 4.0.0.101 2009.03.13 -
AhnLab-V3 5.0.0.2 2009.03.13 -
AntiVir 7.9.0.114 2009.03.13 -
Authentium 5.1.0.4 2009.03.13 -
Avast 4.8.1335.0 2009.03.12 -
[B]AVG 8.0.0.237 2009.03.13 SHeur2.VMT[/B]
BitDefender 7.2 2009.03.13 -
CAT-QuickHeal 10.00 2009.03.13 -
ClamAV 0.94.1 2009.03.13 -
Comodo 1053 2009.03.13 -
DrWeb 4.44.0.09170 2009.03.13 -
eSafe 7.0.17.0 2009.03.12 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.13 -
F-Secure 8.0.14470.0 2009.03.13 -
Fortinet 3.117.0.0 2009.03.13 -
GData 19 2009.03.13 -
Ikarus T3.1.1.45.0 2009.03.13 -
K7AntiVirus 7.10.668 2009.03.12 -
Kaspersky 7.0.0.125 2009.03.13 -
McAfee 5552 2009.03.13 -
McAfee+Artemis 5552 2009.03.13 -
McAfee-GW-Edition 6.7.6 2009.03.13 -
[B]Microsoft 1.4405 2009.03.13 Trojan:Win32/FakeXPA[/B]
NOD32 3935 2009.03.13 -
Norman 6.00.06 2009.03.13 -
nProtect 2009.1.8.0 2009.03.13 -
Panda 10.0.0.10 2009.03.13 -
PCTools 4.4.2.0 2009.03.13 -
[B]Prevx1 V2 2009.03.13 High Risk Cloaked Malware[/B]
Rising 21.20.42.00 2009.03.13 -
Sophos 4.39.0 2009.03.13 -
Sunbelt 3.2.1858.2 2009.03.13 -
Symantec 1.4.4.12 2009.03.13 -
TheHacker 6.3.3.0.281 2009.03.13 -
TrendMicro 8.700.0.1004 2009.03.13 -
VBA32 3.12.10.1 2009.03.12 -
ViRobot 2009.3.13.1648 2009.03.13 -
[B]VirusBuster 4.6.5.0 2009.03.13 Trojan.Fraudpack.Gen[/B]
[/QUOTE]
Дополнительная информация
File size: 1574912 bytes
MD5...: 7368a35455b8df682be1bd6c928bf48f
SHA1..: f3f2ea8ca366d5bbf8052d2d5d483b8605ce1928
SHA256: d9c46f5f8f4c5e9406caf41cccf8358ceac58ab59f35bc3f7099e531d90d3f60
SHA512: 492152ed9099ad766bacef7cc499175b4b0e60f680583c33d11ed808bb9a6289
adfb57d3ca75ca10de28c9928cc500943b8d31f9200f533dde12555200d3445b
ssdeep: 24576:95oKLBZpodfxzOWNAhsTjFf7+j62IVPPT5A5khFNVVhBXQsyIBo/XM/Kgu
4zG:96KlAdfVQG/V+ORPPFUkNVl5E8/KH
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5d3c
timedatestamp.....: 0x3e800062 (Tue Mar 25 07:08:18 2003)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x8f74 0x9000 6.62 912623f777d72e09b3e33e3eb3b92ecc
.data 0xa000 0x1bec 0x400 4.25 b67e6b028734fe3692a3080d8ebfe3b1
.rsrc 0xc000 0x176eb4 0x177000 7.98 786e08e1e3a8cd10c31f94c7de1ffa9b
( 6 imports )
> ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA
> KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, GetModuleFileNameA, lstrlenA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, lstrcatA, lstrcpyA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, GlobalFree, GlobalUnlock, GlobalLock, GetProcAddress, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, GlobalAlloc
> GDI32.dll: GetDeviceCaps
> USER32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics
> COMCTL32.dll: -
> VERSION.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=2192E52A0B541BD1F001039F54E7B4000423A3DF' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=2192E52A0B541BD1F001039F54E7B4000423A3DF</a>
packers (F-Prot): CAB
[size="1"][color="#666686"][B][I]Добавлено через 14 минут[/I][/B][/color][/size]
Файл setup.exe получен 2009.03.13 21:04:12 (CET)
Текущий статус: закончено
Результат: 2/39 (5.13%)
[QUOTE]
a-squared 4.0.0.101 2009.03.13 -
AhnLab-V3 5.0.0.2 2009.03.13 -
AntiVir 7.9.0.114 2009.03.13 -
Authentium 5.1.0.4 2009.03.13 -
Avast 4.8.1335.0 2009.03.13 -
AVG 8.0.0.237 2009.03.13 -
BitDefender 7.2 2009.03.13 -
CAT-QuickHeal 10.00 2009.03.13 -
ClamAV 0.94.1 2009.03.13 -
Comodo 1053 2009.03.13 -
DrWeb 4.44.0.09170 2009.03.13 -
eSafe 7.0.17.0 2009.03.12 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.13 -
F-Secure 8.0.14470.0 2009.03.13 -
Fortinet 3.117.0.0 2009.03.13 -
GData 19 2009.03.13 -
Ikarus T3.1.1.45.0 2009.03.13 -
K7AntiVirus 7.10.668 2009.03.12 -
Kaspersky 7.0.0.125 2009.03.13 -
McAfee 5552 2009.03.13 -
McAfee+Artemis 5552 2009.03.13 -
[B]McAfee-GW-Edition 6.7.6 2009.03.13 Trojan.Dldr.Agent.xyt[/B]
Microsoft 1.4405 2009.03.13 -
NOD32 3935 2009.03.13 -
Norman 6.00.06 2009.03.13 -
nProtect 2009.1.8.0 2009.03.13 -
[B]Panda 10.0.0.10 2009.03.13 Suspicious file[/B]
PCTools 4.4.2.0 2009.03.13 -
Prevx1 V2 2009.03.13 -
Rising 21.20.42.00 2009.03.13 -
Sophos 4.39.0 2009.03.13 -
Sunbelt 3.2.1858.2 2009.03.13 -
Symantec 1.4.4.12 2009.03.13 -
TheHacker 6.3.3.0.281 2009.03.13 -
TrendMicro 8.700.0.1004 2009.03.13 -
VBA32 3.12.10.1 2009.03.12 -
ViRobot 2009.3.13.1648 2009.03.13 -
VirusBuster 4.6.5.0 2009.03.13 -
[/QUOTE]
Дополнительная информация
File size: 566784 bytes
MD5...: 3405f8153c3703fd5fe0f114182fb786
SHA1..: d84d93c5f10e36fa1fc92a9da4e404bf2c8bd9bd
SHA256: c74c967fc49bc52827256076443794e69c92c94ca56681655458b9f2e28547dc
SHA512: 6c79fbcf5cc7d658614f9dacfafecd61b8f6d450f1c6f343a655b85b08046e1c
9169940ade3141cd11ab27f470b9994b5093a2f1690305e8a2e4abc798b13cb9
ssdeep: 12288:9rQgZtTZtiRTmAndgcPxAR+Wnutrno5Hg/7SvTT3it:9CRTmqJ6R+WK2gu
rT3it
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5d3c
timedatestamp.....: 0x3e800062 (Tue Mar 25 07:08:18 2003)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x8f74 0x9000 6.62 912623f777d72e09b3e33e3eb3b92ecc
.data 0xa000 0x1bec 0x400 4.25 b67e6b028734fe3692a3080d8ebfe3b1
.rsrc 0xc000 0x80d34 0x80e00 7.89 3e3af9bf02f5254927dd49dd93f800ba
( 6 imports )
> ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA
> KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, GetModuleFileNameA, lstrlenA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, lstrcatA, lstrcpyA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, GlobalFree, GlobalUnlock, GlobalLock, GetProcAddress, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, GlobalAlloc
> GDI32.dll: GetDeviceCaps
> USER32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics
> COMCTL32.dll: -
> VERSION.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA
( 0 exports )
packers (F-Prot): CAB
[size="1"][color="#666686"][B][I]Добавлено через 4 минуты[/I][/B][/color][/size]
Файл DrShark_Genuine_Licence.exe получен 2009.03.13 21:07:16 (CET)
Текущий статус: закончено
Результат: 2/39 (5.13%)
[QUOTE]
a-squared 4.0.0.101 2009.03.13 -
AhnLab-V3 5.0.0.2 2009.03.13 -
AntiVir 7.9.0.114 2009.03.13 -
Authentium 5.1.0.4 2009.03.13 -
Avast 4.8.1335.0 2009.03.13 -
AVG 8.0.0.237 2009.03.13 -
BitDefender 7.2 2009.03.13 -
CAT-QuickHeal 10.00 2009.03.13 -
ClamAV 0.94.1 2009.03.13 -
Comodo 1053 2009.03.13 -
DrWeb 4.44.0.09170 2009.03.13 -
eSafe 7.0.17.0 2009.03.12 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.13 -
F-Secure 8.0.14470.0 2009.03.13 -
Fortinet 3.117.0.0 2009.03.13 -
GData 19 2009.03.13 -
Ikarus T3.1.1.45.0 2009.03.13 -
K7AntiVirus 7.10.668 2009.03.12 -
Kaspersky 7.0.0.125 2009.03.13 -
McAfee 5552 2009.03.13 -
McAfee+Artemis 5552 2009.03.13 -
McAfee-GW-Edition 6.7.6 2009.03.13 -
[B]Microsoft 1.4405 2009.03.13 Trojan:Win32/Vundo[/B]
NOD32 3935 2009.03.13 -
Norman 6.00.06 2009.03.13 -
nProtect 2009.1.8.0 2009.03.13 -
Panda 10.0.0.10 2009.03.13 -
PCTools 4.4.2.0 2009.03.13 -
[B]Prevx1 V2 2009.03.13 High Risk Worm[/B]
Rising 21.20.42.00 2009.03.13 -
Sophos 4.39.0 2009.03.13 -
Sunbelt 3.2.1858.2 2009.03.13 -
Symantec 1.4.4.12 2009.03.13 -
TheHacker 6.3.3.0.281 2009.03.13 -
TrendMicro 8.700.0.1004 2009.03.13 -
VBA32 3.12.10.1 2009.03.12 -
ViRobot 2009.3.13.1648 2009.03.13 -
VirusBuster 4.6.5.0 2009.03.13 -
[/QUOTE]
Дополнительная информация
File size: 1672704 bytes
MD5...: 6c105d240371a1ea5d36f755e1aff12a
SHA1..: e97e50e9d266d4de297ede4cc09a443813f18d5d
SHA256: 33fd00af172d3042be85e65eebf3d1d8155eb1eaf860523c43a9928647c4d26b
SHA512: a47186e2d2a46611d859851998c9949c4f9ff404013460be0655d8c80018fcd6
d6ca9ddbea1381f7e431a3c548d178f721ac280c5293420a0d210c3769a15c00
ssdeep: 49152:XbfNT8+u/TN1CQ08cTJ8IR42YU/ZuYZHFJCu5HZLE:Xbfppc28C742YmIE
Y
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5d3c
timedatestamp.....: 0x3e800062 (Tue Mar 25 07:08:18 2003)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x8f74 0x9000 6.62 912623f777d72e09b3e33e3eb3b92ecc
.data 0xa000 0x1bec 0x400 4.25 b67e6b028734fe3692a3080d8ebfe3b1
.rsrc 0xc000 0x18edf8 0x18ee00 7.99 f42b03ac3ca5c83e9ef260eb47be032e
( 6 imports )
> ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA
> KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, GetModuleFileNameA, lstrlenA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, lstrcatA, lstrcpyA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, GlobalFree, GlobalUnlock, GlobalLock, GetProcAddress, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, GlobalAlloc
> GDI32.dll: GetDeviceCaps
> USER32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics
> COMCTL32.dll: -
> VERSION.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA
( 0 exports )
packers (F-Prot): CAB
-
Файл __2008___DrShark_.exe получен 2009.03.16 22:27:07 (CET)
Текущий статус: закончено
Результат: 2/39 (5.13%)
[QUOTE]
a-squared 4.0.0.101 2009.03.16 -
AhnLab-V3 5.0.0.2 2009.03.16 -
AntiVir 7.9.0.116 2009.03.16 -
Authentium 5.1.0.4 2009.03.16 -
Avast 4.8.1335.0 2009.03.16 -
AVG 8.0.0.237 2009.03.16 -
BitDefender 7.2 2009.03.16 -
CAT-QuickHeal 10.00 2009.03.16 -
ClamAV 0.94.1 2009.03.16 -
Comodo 1060 2009.03.16 -
DrWeb 4.44.0.09170 2009.03.16 -
eSafe 7.0.17.0 2009.03.15 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.16 -
F-Secure 8.0.14470.0 2009.03.16 -
Fortinet 3.117.0.0 2009.03.16 -
GData 19 2009.03.16 -
Ikarus T3.1.1.45.0 2009.03.16 -
K7AntiVirus 7.10.673 2009.03.16 -
Kaspersky 7.0.0.125 2009.03.16 -
McAfee 5555 2009.03.16 -
McAfee+Artemis 5555 2009.03.16 -
[B]McAfee-GW-Edition 6.7.6 2009.03.16 Trojan.Dldr.Agent.xyt[/B]
Microsoft 1.4405 2009.03.16 -
NOD32 3938 2009.03.16 -
Norman 6.00.06 2009.03.16 -
nProtect 2009.1.8.0 2009.03.16 -
[B]Panda 10.0.0.10 2009.03.16 Suspicious file[/B]
PCTools 4.4.2.0 2009.03.16 -
Prevx1 V2 2009.03.16 -
Rising 21.21.02.00 2009.03.16 -
Sophos 4.39.0 2009.03.16 -
Sunbelt 3.2.1858.2 2009.03.15 -
Symantec 1.4.4.12 2009.03.16 -
TheHacker 6.3.3.0.283 2009.03.16 -
TrendMicro 8.700.0.1004 2009.03.16 -
VBA32 3.12.10.1 2009.03.16 -
ViRobot 2009.3.16.1650 2009.03.16 -
VirusBuster 4.6.5.0 2009.03.16 -
[/QUOTE]
Дополнительная информация
File size: 566784 bytes
MD5...: aab7c653e1fba61444586e0852542b1a
SHA1..: 6199f548571059a9cef109ec5cf60077c9257e9b
SHA256: 46cb057568bb775e396f8da92462b3d8a767a638afccaf5d3a01fd011c66e33a
SHA512: dc140248202164d22ffb01268c4625827a668ec2c4ff41c39a47b5b0bb0c5efd
1f8b0e72f1aa0079ee09f665a9ea2b1474e521eef3d46561546a523e8c2bbbea
ssdeep: 12288:Dr+gZtTZtARTmAndgcPxAR+Wnutrno5Hg/7SvT:DeRTmqJ6R+WK2gur
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5d3c
timedatestamp.....: 0x3e800062 (Tue Mar 25 07:08:18 2003)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x8f74 0x9000 6.62 912623f777d72e09b3e33e3eb3b92ecc
.data 0xa000 0x1bec 0x400 4.25 b67e6b028734fe3692a3080d8ebfe3b1
.rsrc 0xc000 0x80d34 0x80e00 7.89 afdf07fc94a111c9a955e17d487dc861
( 6 imports )
> ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA
> KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, GetModuleFileNameA, lstrlenA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, lstrcatA, lstrcpyA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, GlobalFree, GlobalUnlock, GlobalLock, GetProcAddress, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, GlobalAlloc
> GDI32.dll: GetDeviceCaps
> USER32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics
> COMCTL32.dll: -
> VERSION.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA
( 0 exports )
packers (F-Prot): CAB
[size="1"][color="#666686"][B][I]Добавлено через 5 минут[/I][/B][/color][/size]
Файл ScreenSavers_DrShark_.exe получен 2009.03.16 22:33:16 (CET)
Текущий статус: закончено
Результат: 16/38 (42.11%)
[QUOTE]
a-squared 4.0.0.101 2009.03.16 -
AhnLab-V3 5.0.0.2 2009.03.16 -
AntiVir 7.9.0.116 2009.03.16 -
Authentium 5.1.0.4 2009.03.16 -
[B]Avast 4.8.1335.0 2009.03.16 Win32:Trojan-gen {Other}
AVG 8.0.0.237 2009.03.16 Downloader.Generic8.YCV
BitDefender 7.2 2009.03.16 MemScan:Trojan.Generic.1465213[/B]
CAT-QuickHeal 10.00 2009.03.16 -
ClamAV 0.94.1 2009.03.16 -
Comodo 1060 2009.03.16 -
[B]DrWeb 4.44.0.09170 2009.03.16 Trojan.Fakealert.4044[/B]
[B]eSafe 7.0.17.0 2009.03.15 Suspicious File[/B]
eTrust-Vet 31.6.6388 2009.03.09 -
[B]F-Prot 4.4.4.56 2009.03.16 W32/Backdoor2.DXLN[/B]
[B]F-Secure 8.0.14470.0 2009.03.16 Trojan-Downloader.Win32.Agent.bkdn[/B]
Fortinet 3.117.0.0 2009.03.16 -
[B]GData 19 2009.03.16 MemScan:Trojan.Generic.1465213[/B]
Ikarus T3.1.1.45.0 2009.03.16 -
K7AntiVirus 7.10.673 2009.03.16 -
[B]Kaspersky 7.0.0.125 2009.03.16 Trojan-Downloader.Win32.Agent.bkdn[/B]
McAfee 5555 2009.03.16 -
McAfee+Artemis 5555 2009.03.16 -
[B]McAfee-GW-Edition 6.7.6 2009.03.16 Trojan.Downloader.Gen[/B]
[B]Microsoft 1.4405 2009.03.16 TrojanDownloader:Win32/Matcash.L[/B]
[B]NOD32 3938 2009.03.16 a variant of Win32/TrojanDownloader.Agent.OUB[/B]
Norman 6.00.06 2009.03.16 -
nProtect 2009.1.8.0 2009.03.16 -
[B]Panda 10.0.0.10 2009.03.16 Generic Trojan[/B]
PCTools 4.4.2.0 2009.03.16 -
[B]Prevx1 V2 2009.03.16 Medium Risk Malware[/B]
[B]Rising 21.21.02.00 2009.03.16 Trojan.Win32.Nodef.fxa[/B]
[B]Sophos 4.39.0 2009.03.16 Mal/EncPk-HJ[/B]
Sunbelt 3.2.1858.2 2009.03.15 -
Symantec 1.4.4.12 2009.03.16 -
TheHacker 6.3.3.0.283 2009.03.16 -
TrendMicro 8.700.0.1004 2009.03.16 -
ViRobot 2009.3.16.1650 2009.03.16 -
VirusBuster 4.6.5.0 2009.03.16 -
[/QUOTE]
Дополнительная информация
File size: 1435136 bytes
MD5...: 5faec4b43d7aa5a72a001c0a64859779
SHA1..: 91ef6d83f894bde1312de147e7fa6b68da9d2b61
SHA256: 842858a38b7d3e54f1a45b3a9559cefb93c5c5473b069a31be23deaaf48afbc7
SHA512: 04f6ab696ee0f4b5d95ef82c34a28f70018817f46e24f1e2e2ebf5d984964598
92e2524f1c06e0738fddfe538280d064173015769a2a44d2eb4d804e934644f1
ssdeep: 24576:6yoDHoBlcCfUwwPgdwrI80POSzRlJ7UIe+p0JvT6zD+VjVa53h6R:6jDHo
Blcq/wPZ8/bJ75uT6z6ih6
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5d3c
timedatestamp.....: 0x3e800062 (Tue Mar 25 07:08:18 2003)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x8f74 0x9000 6.62 912623f777d72e09b3e33e3eb3b92ecc
.data 0xa000 0x1bec 0x400 4.25 b67e6b028734fe3692a3080d8ebfe3b1
.rsrc 0xc000 0x154c38 0x154e00 7.97 42fb972561cb463a3103f935f376ab48
( 6 imports )
> ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA
> KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, GetModuleFileNameA, lstrlenA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, lstrcatA, lstrcpyA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, GlobalFree, GlobalUnlock, GlobalLock, GetProcAddress, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, GlobalAlloc
> GDI32.dll: GetDeviceCaps
> USER32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics
> COMCTL32.dll: -
> VERSION.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=E6D7359B50835C05900000A2247B7B009C91D684' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=E6D7359B50835C05900000A2247B7B009C91D684</a>
packers (Kaspersky): PE_Patch.UPX, UPX, Edit
packers (F-Prot): CAB, RAR
[size="1"][color="#666686"][B][I]Добавлено через 11 минут[/I][/B][/color][/size]
Файл _ver_5.00.0__10.02.2009___DrShark получен 2009.03.16 22:46:02 (CET)
Текущий статус: закончено
Результат: 2/39 (5.13%)
[QUOTE]
a-squared 4.0.0.101 2009.03.16 -
AhnLab-V3 5.0.0.2 2009.03.16 -
AntiVir 7.9.0.116 2009.03.16 -
Authentium 5.1.0.4 2009.03.16 -
Avast 4.8.1335.0 2009.03.16 -
AVG 8.0.0.237 2009.03.16 -
BitDefender 7.2 2009.03.16 -
CAT-QuickHeal 10.00 2009.03.16 -
ClamAV 0.94.1 2009.03.16 -
Comodo 1060 2009.03.16 -
DrWeb 4.44.0.09170 2009.03.16 -
eSafe 7.0.17.0 2009.03.15 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.16 -
F-Secure 8.0.14470.0 2009.03.16 -
Fortinet 3.117.0.0 2009.03.16 -
GData 19 2009.03.16 -
Ikarus T3.1.1.45.0 2009.03.16 -
K7AntiVirus 7.10.673 2009.03.16 -
Kaspersky 7.0.0.125 2009.03.16 -
McAfee 5555 2009.03.16 -
McAfee+Artemis 5555 2009.03.16 -
McAfee-GW-Edition 6.7.6 2009.03.16 -
[B]Microsoft 1.4405 2009.03.16 Trojan:Win32/Vundo[/B]
NOD32 3938 2009.03.16 -
Norman 6.00.06 2009.03.16 -
nProtect 2009.1.8.0 2009.03.16 -
Panda 10.0.0.10 2009.03.16 -
PCTools 4.4.2.0 2009.03.16 -
[B]Prevx1 V2 2009.03.16 High Risk Worm[/B]
Rising 21.21.02.00 2009.03.16 -
Sophos 4.39.0 2009.03.16 -
Sunbelt 3.2.1858.2 2009.03.15 -
Symantec 1.4.4.12 2009.03.16 -
TheHacker 6.3.3.0.283 2009.03.16 -
TrendMicro 8.700.0.1004 2009.03.16 -
VBA32 3.12.10.1 2009.03.16 -
ViRobot 2009.3.16.1650 2009.03.16 -
VirusBuster 4.6.5.0 2009.03.16 -
[/QUOTE]
Дополнительная информация
File size: 2033664 bytes
MD5...: 91cf31d90d899030daf81729cf5b4a94
SHA1..: e3758b60a2cfc3ade6109ea72058a9d89d61763d
SHA256: 6ac9627a497b70c1ac9f544b82a5384106d1e28bda6bc50d32c4fef2bce7a575
SHA512: 2d50a37a0c596a27634f54f0aa8e2815f320702323e8184854938589cab6493b
360210a97d2c8c25a6fc87fc9b6f4e2e16723f8f8245e185cc880ce4cd13cd29
ssdeep: 49152:Q3tCX51cJFzPELRzEDS0iv9fFWkdIekgJ8EM7:Q3tSIFbyRaMwkdIouE
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x5d3c
timedatestamp.....: 0x3e800062 (Tue Mar 25 07:08:18 2003)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x8f74 0x9000 6.62 912623f777d72e09b3e33e3eb3b92ecc
.data 0xa000 0x1bec 0x400 4.25 b67e6b028734fe3692a3080d8ebfe3b1
.rsrc 0xc000 0x1e6ec4 0x1e7000 7.99 daa581e9aec8b8636492f29e94dadccd
( 6 imports )
> ADVAPI32.dll: FreeSid, AllocateAndInitializeSid, EqualSid, GetTokenInformation, OpenProcessToken, AdjustTokenPrivileges, LookupPrivilegeValueA, RegCloseKey, RegDeleteValueA, RegOpenKeyExA, RegSetValueExA, RegQueryValueExA, RegCreateKeyExA, RegQueryInfoKeyA
> KERNEL32.dll: LocalFree, LocalAlloc, GetLastError, GetCurrentProcess, GetModuleFileNameA, lstrlenA, GetSystemDirectoryA, RemoveDirectoryA, FindClose, FindNextFileA, DeleteFileA, SetFileAttributesA, lstrcmpA, FindFirstFileA, lstrcatA, lstrcpyA, _lclose, _llseek, _lopen, WritePrivateProfileStringA, GetWindowsDirectoryA, CreateDirectoryA, GetFileAttributesA, ExpandEnvironmentStringsA, IsDBCSLeadByte, GetShortPathNameA, GetPrivateProfileStringA, GetPrivateProfileIntA, lstrcmpiA, GlobalFree, GlobalUnlock, GlobalLock, GetProcAddress, FreeResource, LockResource, LoadResource, SizeofResource, FindResourceA, CloseHandle, WriteFile, SetFilePointer, SetFileTime, LocalFileTimeToFileTime, DosDateTimeToFileTime, SetCurrentDirectoryA, GetTempFileNameA, ExitProcess, CreateFileA, LoadLibraryExA, lstrcpynA, GetVolumeInformationA, FormatMessageA, GetCurrentDirectoryA, GetVersionExA, GetExitCodeProcess, WaitForSingleObject, CreateProcessA, GetTempPathA, GetSystemInfo, CreateMutexA, SetEvent, CreateEventA, CreateThread, ResetEvent, TerminateThread, GetDriveTypeA, GetModuleHandleA, GetStartupInfoA, GetCommandLineA, QueryPerformanceCounter, GetTickCount, GetCurrentThreadId, GetCurrentProcessId, GetSystemTimeAsFileTime, TerminateProcess, SetUnhandledExceptionFilter, ReadFile, LoadLibraryA, GetDiskFreeSpaceA, MulDiv, EnumResourceLanguagesA, FreeLibrary, GlobalAlloc
> GDI32.dll: GetDeviceCaps
> USER32.dll: ExitWindowsEx, wsprintfA, CharNextA, CharUpperA, CharPrevA, SetWindowLongA, GetWindowLongA, CallWindowProcA, DispatchMessageA, MsgWaitForMultipleObjects, PeekMessageA, SendMessageA, SetWindowPos, ReleaseDC, GetDC, GetWindowRect, SendDlgItemMessageA, GetDlgItem, SetForegroundWindow, SetWindowTextA, MessageBoxA, DialogBoxIndirectParamA, ShowWindow, EnableWindow, GetDlgItemTextA, EndDialog, GetDesktopWindow, MessageBeep, SetDlgItemTextA, LoadStringA, GetSystemMetrics
> COMCTL32.dll: -
> VERSION.dll: GetFileVersionInfoA, VerQueryValueA, GetFileVersionInfoSizeA
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=3190B3A700D2FFF4704F012DDDE82A0032D1F3A5' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=3190B3A700D2FFF4704F012DDDE82A0032D1F3A5</a>
packers (F-Prot): CAB
-
Файл avz00001.dta (twex.exe) получен 2009.03.17 09:31:37 (CET)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 10/39 (25.65%)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.03.17 -
AhnLab-V3 5.0.0.2 2009.03.16 -
[B]AntiVir 7.9.0.116 2009.03.17 TR/Dropper.Gen[/B]
Authentium 5.1.0.4 2009.03.17 -
[B]Avast 4.8.1335.0 2009.03.16 Win32:Rootkit-gen[/B]
AVG 8.0.0.237 2009.03.16 -
BitDefender 7.2 2009.03.17 -
[B]CAT-QuickHeal 10.00 2009.03.17 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.03.17 -
Comodo 1060 2009.03.16 -
[B]DrWeb 4.44.0.09170 2009.03.17 Trojan.PWS.Panda.106[/B]
eSafe 7.0.17.0 2009.03.15 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.16 -
[B]F-Secure 8.0.14470.0 2009.03.17 Trojan-Spy.Win32.Zbot.pox[/B]
Fortinet 3.117.0.0 2009.03.17 -
[B]GData 19 2009.03.17 Win32:Rootkit-gen[/B]
Ikarus T3.1.1.45.0 2009.03.17 -
K7AntiVirus 7.10.673 2009.03.16 -
[B]Kaspersky 7.0.0.125 2009.03.17 Trojan-Spy.Win32.Zbot.pox[/B]
McAfee 5555 2009.03.16 -
McAfee+Artemis 5555 2009.03.16 -
[B]McAfee-GW-Edition 6.7.6 2009.03.17 Trojan.Dropper.Gen
Microsoft 1.4405 2009.03.17 PWS:Win32/Zbot.gen!R[/B]
NOD32 3941 2009.03.17 -
Norman 6.00.06 2009.03.16 -
nProtect 2009.1.8.0 2009.03.17 -
Panda 10.0.0.10 2009.03.16 -
PCTools 4.4.2.0 2009.03.16 -
Prevx1 V2 2009.03.17 -
Rising 21.21.11.00 2009.03.17 -
Sophos 4.39.0 2009.03.17 -
Sunbelt 3.2.1858.2 2009.03.17 -
Symantec 1.4.4.12 2009.03.17 -
TheHacker 6.3.3.0.283 2009.03.16 -
TrendMicro 8.700.0.1004 2009.03.17 -
[B]VBA32 3.12.10.1 2009.03.16 Trojan-Spy.Win32.Zbot[/B]
ViRobot 2009.3.17.1651 2009.03.17 -
VirusBuster 4.6.5.0 2009.03.16 -[/CODE]
[size="1"][color="#666686"][B][I]Добавлено через 2 минуты[/I][/B][/color][/size]
Файл avz00002.dta (uvsync.sys)получен 2009.03.17 09:32:35 (CET)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 16/39 (41.03%)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.03.17 Backdoor.Win32.Haxdoor!IK[/B]
AhnLab-V3 5.0.0.2 2009.03.16 -
AntiVir 7.9.0.116 2009.03.17 -
Authentium 5.1.0.4 2009.03.17 -
Avast 4.8.1335.0 2009.03.16 -
[B]AVG 8.0.0.237 2009.03.16 PSW.Generic7.LS
BitDefender 7.2 2009.03.17 Trojan.Spy.Goldun.NCN[/B]
CAT-QuickHeal 10.00 2009.03.17 -
ClamAV 0.94.1 2009.03.17 -
Comodo 1060 2009.03.16 -
DrWeb 4.44.0.09170 2009.03.17 -
eSafe 7.0.17.0 2009.03.15 -
[B]eTrust-Vet 31.6.6388 2009.03.09 Win32/ProcHide!generic[/B]
F-Prot 4.4.4.56 2009.03.16 -
[B]F-Secure 8.0.14470.0 2009.03.17 Trojan-Spy.Win32.Goldun.bwi[/B]
Fortinet 3.117.0.0 2009.03.17 -
[B]GData 19 2009.03.17 Trojan.Spy.Goldun.NCN
Ikarus T3.1.1.45.0 2009.03.17 Backdoor.Win32.Haxdoor[/B]
K7AntiVirus 7.10.673 2009.03.16 -
[B]Kaspersky 7.0.0.125 2009.03.17 Trojan-Spy.Win32.Goldun.bwi[/B]
McAfee 5555 2009.03.16 -
[B]McAfee+Artemis 5555 2009.03.16 Generic!Artemis[/B]
McAfee-GW-Edition 6.7.6 2009.03.17 -
[B]Microsoft 1.4405 2009.03.17 Backdoor:Win32/Haxdoor[/B]
NOD32 3941 2009.03.17 -
Norman 6.00.06 2009.03.16 -
nProtect 2009.1.8.0 2009.03.17 -
Panda 10.0.0.10 2009.03.16 Trj/CI.A
PCTools 4.4.2.0 2009.03.16 -
[B]Prevx1 V2 2009.03.17 Medium Risk Malware
Rising 21.21.11.00 2009.03.17 RootKit.Win32.Agent.epu[/B]
Sophos 4.39.0 2009.03.17 -
[B]Sunbelt 3.2.1858.2 2009.03.17 Goldun.Fam[/B]
Symantec 1.4.4.12 2009.03.17 -
[B]TheHacker 6.3.3.0.283 2009.03.16 Trojan/Spy.Goldun.bwi[/B]
TrendMicro 8.700.0.1004 2009.03.17 -
[B]VBA32 3.12.10.1 2009.03.16 suspected of Rootkit.Agent.10 (paranoid heuristics)[/B]
ViRobot 2009.3.17.1651 2009.03.17 -
VirusBuster 4.6.5.0 2009.03.16 -[/CODE]
-
Файл contact.exe получен 2009.03.19 10:06:14 (CET)
Результат: 5/39 (12.83%)
[CODE]a-squared 4.0.0.101 2009.03.19 -
AhnLab-V3 5.0.0.2 2009.03.19 -
AntiVir 7.9.0.120 2009.03.18 -
Authentium 5.1.2.4 2009.03.18 -
Avast 4.8.1335.0 2009.03.18 -
AVG 8.5.0.283 2009.03.19 -
BitDefender 7.2 2009.03.19 -
CAT-QuickHeal 10.00 2009.03.19 -
ClamAV 0.94.1 2009.03.19 -
Comodo 1066 2009.03.18 -
DrWeb 4.44.0.09170 2009.03.19 -
eSafe 7.0.17.0 2009.03.18 -
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.18 -
F-Secure 8.0.14470.0 2009.03.19 -
Fortinet 3.117.0.0 2009.03.19 -
GData 19 2009.03.19 -
Ikarus T3.1.1.48.0 2009.03.19 -
K7AntiVirus 7.10.674 2009.03.17 -
Kaspersky 7.0.0.125 2009.03.19 -
McAfee 5557 2009.03.18 -
McAfee+Artemis 5557 2009.03.18 -
[B]McAfee-GW-Edition 6.7.6 2009.03.18 Worm.LooksLike.Rbot
Microsoft 1.4502 2009.03.19 Trojan:Win32/Waledac.gen!A[/B]
NOD32 3947 2009.03.19 -
[B]Norman 6.00.06 2009.03.18 Waledac.AJ[/B]
nProtect 2009.1.8.0 2009.03.19 -
Panda 10.0.0.10 2009.03.18 -
PCTools 4.4.2.0 2009.03.18 -
[B]Prevx1 V2 2009.03.19 High Risk Cloaked Malware[/B]
Rising 21.21.31.00 2009.03.19 -
Sophos 4.39.0 2009.03.19 -
Sunbelt 3.2.1858.2 2009.03.19 -
Symantec 1.4.4.12 2009.03.19 -
TheHacker 6.3.3.0.285 2009.03.19 -
TrendMicro 8.700.0.1004 2009.03.19 -
[B]VBA32 3.12.10.1 2009.03.18 suspected of Malware-Cryptor.Win32.General.4[/B]
ViRobot 2009.3.19.1655 2009.03.19 -
VirusBuster 4.6.5.0 2009.03.18 -[/CODE]
[url]http://www.virustotal.com/ru/analisis/073479b85b16779376e2e0036e71f71b[/url]
-
Файл ygv.exe получен 2009.03.19 21:35:32 (CET)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 8/38 (21.06%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.03.19 -
AhnLab-V3 5.0.0.2 2009.03.19 -
[B]AntiVir 7.9.0.120 2009.03.19 TR/Crypt.XPACK.Gen[/B]
Authentium 5.1.2.4 2009.03.19 -
Avast 4.8.1335.0 2009.03.19 -
AVG 8.5.0.283 2009.03.19 -
BitDefender 7.2 2009.03.19 -
[B]CAT-QuickHeal 10.00 2009.03.19 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.03.19 -
Comodo 1066 2009.03.18 -
DrWeb 4.44.0.09170 2009.03.19 -
[B]eSafe 7.0.17.0 2009.03.19 Suspicious File[/B]
eTrust-Vet 31.6.6388 2009.03.09 -
F-Prot 4.4.4.56 2009.03.19 -
Fortinet 3.117.0.0 2009.03.19 -
GData 19 2009.03.19 -
Ikarus T3.1.1.48.0 2009.03.19 -
K7AntiVirus 7.10.676 2009.03.19 -
Kaspersky 7.0.0.125 2009.03.19 -
McAfee 5558 2009.03.19 -
[B]McAfee+Artemis 5558 2009.03.19 Generic!Artemis
McAfee-GW-Edition 6.7.6 2009.03.19 Trojan.Crypt.XPACK.Gen
Microsoft 1.4502 2009.03.19 VirTool:Win32/Obfuscator.EO[/B]
NOD32 3948 2009.03.19 -
Norman 6.00.06 2009.03.19 -
nProtect 2009.1.8.0 2009.03.19 -[B]
Panda 10.0.0.10 2009.03.19 Suspicious file[/B]
PCTools 4.4.2.0 2009.03.19 -
Prevx1 V2 2009.03.19 -
Rising 21.21.32.00 2009.03.19 -
[B]Sophos 4.39.0 2009.03.19 Mal/Basine-C[/B]
Sunbelt 3.2.1858.2 2009.03.19 -
Symantec 1.4.4.12 2009.03.19 -
TheHacker 6.3.3.0.286 2009.03.19 -
TrendMicro 8.700.0.1004 2009.03.19 -
VBA32 3.12.10.1 2009.03.18 -
ViRobot 2009.3.19.1656 2009.03.19 -
VirusBuster 4.6.5.0 2009.03.19 -[/QUOTE]
Дополнительная информация
File size: 24064 bytes
MD5...: ae0cc33da9fa4e39f02f278ce70b0533
SHA1..: ae53e2ca0c1df0106b7138a22e1d3a3a158a9ae0
SHA256: 3436e7c3052bef71146e9e68cc8479a46669c7b9d24e6e42a6a6e7910c161ece
SHA512: 8d1e3739d65a3a6d18b485eb4a0125316a1635ff49a6169cf1146fd66052f8ae
a98a124e859b63a32af9b8238cc9802dea969d0985c0dfeea2ea702ba52f1f45
ssdeep: 384:2lIZq4A+4UMa9UVxVYCUP3Dq89HPsr8vh9tAwotXuPdI9Pw+nXGN:2lsafaa
VwTPT39HPsgp9tSteK9tnXY
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
-
Файл eawnxi.exe получен 2009.03.23 06:18:40 (CET)[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.03.23 -
AhnLab-V3 5.0.0.2 2009.03.22 -
[B]AntiVir 7.9.0.120 2009.03.22 Worm/Autorun.esq[/B]
Authentium 5.1.2.4 2009.03.23 -
Avast 4.8.1335.0 2009.03.23 -
AVG 8.5.0.283 2009.03.22 -
BitDefender 7.2 2009.03.23 -
CAT-QuickHeal 10.00 2009.03.23 -
ClamAV 0.94.1 2009.03.23 -
[B]Comodo 1080 2009.03.22 Unclassified Malware[/B]
DrWeb 4.44.0.09170 2009.03.23 -
[B]eSafe 7.0.17.0 2009.03.19 Win32.Worm.AutoRun.u[/B]
eTrust-Vet 31.6.6409 2009.03.20 -
F-Prot 4.4.4.56 2009.03.23 -
F-Secure 8.0.14470.0 2009.03.23 -
Fortinet 3.117.0.0 2009.03.22 -
GData 19 2009.03.23 -
Ikarus T3.1.1.48.0 2009.03.23 -
K7AntiVirus 7.10.678 2009.03.21 -
Kaspersky 7.0.0.125 2009.03.23 -
McAfee 5561 2009.03.22 -
McAfee+Artemis 5561 2009.03.22 -
[B]McAfee-GW-Edition 6.7.6 2009.03.22 Worm.Autorun.esq
[/B]Microsoft 1.4502 2009.03.22 -
NOD32 3953 2009.03.21 -
Norman 6.00.06 2009.03.20 -
nProtect 2009.1.8.0 2009.03.23 -
Panda 10.0.0.10 2009.03.22 -
PCTools 4.4.2.0 2009.03.22 -
Prevx1 V2 2009.03.23 -
Rising 21.22.00.00 2009.03.23 -
Sophos 4.39.0 2009.03.23 -
Sunbelt 3.2.1858.2 2009.03.22 -
Symantec 1.4.4.12 2009.03.23 -
[B]TheHacker 6.3.3.4.287 2009.03.23 W32/AutoRun.esq
[/B]TrendMicro 8.700.0.1004 2009.03.23 -
VBA32 3.12.10.1 2009.03.23 -
ViRobot 2009.3.23.1659 2009.03.23 -
VirusBuster 4.6.5.0 2009.03.22 -
[/CODE]
Дополнительная информация
File size: 97791 bytes
MD5...: df7ebd547e890c70d0e802454168b346
SHA1..: 4e6f4197ee2563ed06946c6016d4fac1082ed1fe
SHA256: dfa991a20f3c184292e2eb3500ebfa3466bcaa06ae0d84e8933df9f18c7302f1
SHA512: 182a46b08005b3a7ac4f9a1738d52ad6c667721472a86a989ff2c305c952d027<BR>25cd75c39cc2e2f93c9aefb9709c3b7919a06bc3cec4b224179d5061bc1962f7
ssdeep: 1536:YEwOnbNQKLjWDyy1o5RepJUEbooPRrKKRSq6Hn:Y2NQKPWDyDRepJltZrpR<BR>SfH<BR>
PEiD..: -
TrID..: File type identification<BR>Win32 Executable MS Visual C++ (generic) (53.1%)<BR>Windows Screen Saver (18.4%)<BR>Win32 Executable Generic (12.0%)<BR>Win32 Dynamic Link Library (generic) (10.6%)<BR>Generic Win/DOS Executable (2.8%)
PEInfo: PE Structure information
-
File ___8_____________1.xls (ж_8 бюджет1.xls) received on 03.24.2009 10:13:05 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 2/39 (5.13%)
[CODE]Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.03.24 -
AhnLab-V3 5.0.0.2 2009.03.24 -
AntiVir 7.9.0.120 2009.03.24 EXP/Office.Dropper.Gen
Authentium 5.1.2.4 2009.03.23 -
Avast 4.8.1335.0 2009.03.23 -
AVG 8.5.0.283 2009.03.23 -
BitDefender 7.2 2009.03.24 -
CAT-QuickHeal 10.00 2009.03.24 -
ClamAV 0.94.1 2009.03.24 -
Comodo 1082 2009.03.23 -
DrWeb 4.44.0.09170 2009.03.24 -
eSafe 7.0.17.0 2009.03.23 -
eTrust-Vet 31.6.6414 2009.03.24 -
F-Prot 4.4.4.56 2009.03.23 -
F-Secure 8.0.14470.0 2009.03.24 -
Fortinet 3.117.0.0 2009.03.24 -
GData 19 2009.03.24 -
Ikarus T3.1.1.48.0 2009.03.24 -
K7AntiVirus 7.10.679 2009.03.23 -
Kaspersky 7.0.0.125 2009.03.24 -
McAfee 5562 2009.03.23 -
McAfee+Artemis 5562 2009.03.23 -
McAfee-GW-Edition 6.7.6 2009.03.24 Exploit.Office.Dropper.Gen
Microsoft 1.4502 2009.03.24 -
NOD32 3956 2009.03.24 -
Norman 6.00.06 2009.03.23 -
nProtect 2009.1.8.0 2009.03.24 -
Panda 10.0.0.10 2009.03.24 -
PCTools 4.4.2.0 2009.03.23 -
Prevx1 V2 2009.03.24 -
Rising 21.22.12.00 2009.03.24 -
Sophos 4.39.0 2009.03.24 -
Sunbelt 3.2.1858.2 2009.03.23 -
Symantec 1.4.4.12 2009.03.24 -
TheHacker 6.3.3.4.288 2009.03.24 -
TrendMicro 8.700.0.1004 2009.03.24 -
VBA32 3.12.10.1 2009.03.23 -
ViRobot 2009.3.23.1660 2009.03.24 -
VirusBuster 4.6.5.0 2009.03.23 - [/CODE]
Additional information
File size: 110080 bytes
MD5...: 3460754ac443f614434225ab8a3fbe38
SHA1..: 2800ec7a931893109f0f28bc1ae00d89081f46cd
SHA256: d1c1ed8f6325dc0b52ed4a663c844ae667aa4a5d79e3119efc3945e91d4f8509
SHA512: 9322c48ef644b6f1f8e5350bf732678691ecfb04c457cb688da7b894379b2b37
59c8b8466e2befd717a32e7c987931f2a1927a6179413f701dc7c7e9829b72e9
ssdeep: 768:CxTdfKsdNGTtLtV4mzX2c3TWh7JvGMdl12q9Cr1JPdd49ZA7F7TK+BT0EbDu
Vg:+hvGbP3TWt1Gw1j9Cp3
PEiD..: -
TrID..: File type identification
Microsoft Excel sheet (78.9%)
Generic OLE2 / Multistream Compound File (21.0%)
[size="1"][color="#666686"][B][I]Добавлено через 3 часа 54 минуты[/I][/B][/color][/size]
в предыдущем отлове только 16 антивирусов отлавливали
File macyjf.exe received on 03.24.2009 14:13:29 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 33/40 (82.5%)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.0.0.101 2009.03.24 Trojan.Win32.Autoit!IK
AhnLab-V3 5.0.0.2 2009.03.24 Win-Trojan/Midgare.236544
AntiVir 7.9.0.120 2009.03.24 TR/Onlinegames.A3 [/B]
Antiy-AVL 2.0.3.1 2009.03.24 -
[B]Authentium 5.1.2.4 2009.03.23 W32/Trojan3.AIQ
Avast 4.8.1335.0 2009.03.23 Win32:Agent-AEEP
AVG 8.5.0.283 2009.03.23 Worm/Autoit.LQN
BitDefender 7.2 2009.03.24 Worm.Generic.41831
CAT-QuickHeal 10.00 2009.03.24 Backdoor.Agent.adzv
ClamAV 0.94.1 2009.03.24 Trojan.Autoit-72
Comodo 1082 2009.03.23 TrojWare.Win32.Trojan.Agent.Gen
DrWeb 4.44.0.09170 2009.03.24 Win32.HLLW.Autoruner.6013
eSafe 7.0.17.0 2009.03.23 Win32.Autorun.worm.z [/B]
eTrust-Vet 31.6.6414 2009.03.24 -
[B]F-Prot 4.4.4.56 2009.03.23 W32/Trojan3.AIQ
F-Secure 8.0.14470.0 2009.03.24 Trojan.Win32.Agent2.efp
Fortinet 3.117.0.0 2009.03.24 W32/Autorun.ZF!worm
GData 19 2009.03.24 Worm.Generic.41831
Ikarus T3.1.1.48.0 2009.03.24 Trojan.Win32.Autoit
K7AntiVirus 7.10.679 2009.03.23 Trojan.Win32.Midgare.roo
Kaspersky 7.0.0.125 2009.03.24 Trojan.Win32.Agent2.efp
McAfee 5562 2009.03.23 W32/Autorun.worm.n
McAfee+Artemis 5562 2009.03.23 W32/Autorun.worm.n
McAfee-GW-Edition 6.7.6 2009.03.24 Trojan.Onlinegames.A3
Microsoft 1.4502 2009.03.24 Worm:AutoIt/Renocide.gen!B
NOD32 3957 2009.03.24 Win32/Packed.Autoit.Gen
Norman 6.00.06 2009.03.23 W32/Smalltroj.LCYY [/B]
nProtect 2009.1.8.0 2009.03.24 -
[B]Panda 10.0.0.10 2009.03.24 Trj/Agent.LPX[/B]
PCTools 4.4.2.0 2009.03.24 -
[B]Prevx1 V2 2009.03.24 High Risk System Back Door [/B]
Rising 21.22.12.00 2009.03.24 -
[B]Sophos 4.39.0 2009.03.24 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.03.23 -
[B]Symantec 1.4.4.12 2009.03.24 W32.Harakit
TheHacker 6.3.3.4.288 2009.03.24 Trojan/Midgare.rvm
TrendMicro 8.700.0.1004 2009.03.24 WORM_AUTORUN.HOZ
VBA32 3.12.10.1 2009.03.23 Trojan.Autoit.gen
ViRobot 2009.3.24.1661 2009.03.24 Trojan.Win32.Klone.345416.B [/B]
VirusBuster 4.6.5.0 2009.03.23 - [/CODE]
Additional information
File size: 345416 bytes
MD5...: a68fed9bb2efde1ff0dca8dedff7a736
SHA1..: f45a20db3894e39cedc1c8d211f48acb39889bff
SHA256: 8e2d845d7cb056a05d1e10d2de82632fbeb2fb96edda7298d24e899d53ff1163
SHA512: 5de48df6e28a5033080a42c27c88db8c9f28051fb9fddabcfb1f85f4f0522bdb
86c86b8c21ccea289fb586a9df20a2823aedf460862594f5089e8cc6e9d386f0
ssdeep: 6144:Xjk1EHI7OyXfOe5JnVZFrv7p4TKcw5TCDx+a62foC0ji61D48jso:XjGjPO
evnllBcCMfAC0j88Yo
PEiD..: -
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x90ed0
timedatestamp.....: 0x4850e379 (Thu Jun 12 08:51:05 2008)
machinetype.......: 0x14c (I386)
( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x57000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0x58000 0x3a000 0x39200 7.92 e5dd1823a0945d13b9b1eafb53f1cd15
.rsrc 0x92000 0x1000 0x600 3.17 46fa8faf2149b0d50b1dadb772597c8c
( 13 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess
> ADVAPI32.dll: RegCloseKey
> COMCTL32.dll: ImageList_Create
> comdlg32.dll: GetSaveFileNameW
> GDI32.dll: LineTo
> MPR.dll: WNetUseConnectionW
> ole32.dll: CoInitialize
> OLEAUT32.dll: -
> SHELL32.dll: DragFinish
> USER32.dll: GetDC
> VERSION.dll: VerQueryValueW
> WINMM.dll: timeGetTime
> WSOCK32.dll: -
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=38FE752C48FF656A45B10527AABF3E00D8D6AEF3' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=38FE752C48FF656A45B10527AABF3E00D8D6AEF3</a>
-
File autorun.inf received on 03.25.2009 16:28:29 (CET)
Current status: finished
Result: 18/39 (46.16%)
[CODE]Antivirus Version Last Update Result
a-squared - - Worm.Win32.Conficker!IK
AhnLab-V3 - - -
AntiVir - - -
Antiy-AVL - - -
Authentium - - -
Avast - - -
AVG - - Worm/Generic_c.ZW
BitDefender - - Worm.Autorun.VHG
CAT-QuickHeal - - -
ClamAV - - Worm.Autorun-1838
Comodo - - Worm.Win32.AutoRun.etg
DrWeb - - Win32.HLLW.Shadow
eSafe - - -
eTrust-Vet - - INF/Conficker
F-Prot - - -
F-Secure - - Worm:W32/Downaduprun.A
Fortinet - - -
GData - - Worm.Autorun.VHG
Ikarus - - Worm.Win32.Conficker
K7AntiVirus - - -
Kaspersky - - -
McAfee - - -
McAfee+Artemis - - -
McAfee-GW-Edition - - -
Microsoft - - Worm:Win32/Conficker.B!inf
NOD32 - - INF/Conficker
Norman - - -
nProtect - - -
Panda - - -
PCTools - - -
Prevx1 - - -
Rising - - -
Sophos - - Mal/ConfInf-A
Sunbelt - - INF.Autorun (v)
Symantec - - W32.Downadup!autorun
TheHacker - - W32/Conficker.autorunL
TrendMicro - - TROJ_DOWNAD.AF
VBA32 - - Trojan.Autorun.gen
ViRobot - - -
VirusBuster - - INF.Conficker.F[/CODE]
Additional information
File size: 59306 bytes
MD5...: 060dc978741e7ff27686ca8885802623
SHA1..: 4e32ff1cf3243ce56ff278cc0924b601784463d1
SHA256: 4202574ee60beb13a329f4ba6f6bc55a6e3cfbdfccab929f50024603d9cde020
SHA512: 6665cf3425448730ae8cf04d1d46b20ff088a915a912ed4061136f44639dc10e
a469d38e636281f11850630cf92de41ba946bba2a0a4ef2266cc5408dc587599
ssdeep: 1536:IS+zcVPpjrVmdmwGvp1kGEJ5V7hAUJcFc00LZ:+g9plmW8PD2Gc2Z
PEiD..: -
TrID..: File type identification
Text - UTF-16 (LE) encoded (66.6%)
MP3 audio (33.3%)
PEInfo: -
RDS...: NSRL Reference Data Set
-
packers (F-Prot): Unicode
-
Mycentria
Файл A0045214.exe получен 2009.03.27 16:50:19 (CET)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 8/39 (20.52%)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.03.27 -
AhnLab-V3 5.0.0.2 2009.03.27 -
AntiVir 7.9.0.129 2009.03.27 -
Antiy-AVL 2.0.3.1 2009.03.27 -
Authentium 5.1.2.4 2009.03.27 -
Avast 4.8.1335.0 2009.03.26 -
AVG 8.5.0.283 2009.03.27 -
BitDefender 7.2 2009.03.27 -
CAT-QuickHeal 10.00 2009.03.26 -
ClamAV 0.94.1 2009.03.27 -
[B]Comodo 1086 2009.03.27 ApplicUnsaf.Win32.AdWare.Mycentria.~A[/B]
[B]DrWeb 4.44.0.09170 2009.03.27 Trojan.Mycentria.22[/B]
[B]eSafe 7.0.17.0 2009.03.26 Win32.Banker[/B]
eTrust-Vet 31.6.6420 2009.03.27 -
F-Prot 4.4.4.56 2009.03.27 -
F-Secure 8.0.14470.0 2009.03.27 -
Fortinet 3.117.0.0 2009.03.27 -
GData 19 2009.03.27 -
Ikarus T3.1.1.48.0 2009.03.27 -
K7AntiVirus 7.10.683 2009.03.27 -
Kaspersky 7.0.0.125 2009.03.27 -
[B]McAfee 5565 2009.03.26 potentially unwanted program Generic PUP[/B]
[B]McAfee+Artemis 5565 2009.03.26 potentially unwanted program Generic PUP [/B]
McAfee-GW-Edition 6.7.6 2009.03.27 -
Microsoft 1.4502 2009.03.27 -
[B]NOD32 3969 2009.03.27 Win32/Adware.Mycentria [/B]
Norman 6.00.06 2009.03.27 -
nProtect 2009.1.8.0 2009.03.27 -
Panda 10.0.0.10 2009.03.27 -
PCTools 4.4.2.0 2009.03.27 -
[B]Prevx1 V2 2009.03.27 Medium Risk Malware [/B]
Rising 21.22.42.00 2009.03.27 -
Sophos 4.40.0 2009.03.27 -
Sunbelt 3.2.1858.2 2009.03.26 -
Symantec 1.4.4.12 2009.03.27 -
TheHacker 6.3.3.7.292 2009.03.26 -
TrendMicro 8.700.0.1004 2009.03.27 -
[B]VBA32 3.12.10.1 2009.03.26 Win32.Adware.Mycentria [/B]
ViRobot 2009.3.27.1666 2009.03.27 -
[/CODE]
Дополнительная информация
File size: 55586 bytes
MD5...: 9f5bc21ebdc08e169168124221f5deab
SHA1..: 8f9cda38451f1903a8e3da4ba8ff15927f8fc878
SHA256: 611c6a838934f4312796f88721657c0bc46595aefbced64e4c00c604b04d3536
SHA512: 891f619bab571926629c8e07d508da34c27227e41dc0a62cdacbaa9099e1da6f
9ff077ddad236592add893474cb7c878e033a6f80a26c30db9e6eb2171069859
ssdeep: 1536:FKDqJvz2xyM40DSmJAqAELVigPvtMOUheOs4d:FKDAfCDSmJPAI0uP0eOBd
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x315d
timedatestamp.....: 0x460e79c3 (Sat Mar 31 15:09:55 2007)
machinetype.......: 0x14c (I386)
-
Файл avz00025.dta получен 2009.03.30 12:22:02 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[CODE][B]a-squared 4.0.0.101 2009.03.30 Riskware.AdWare.Mywebsearch!IK [/B]
AhnLab-V3 5.0.0.2 2009.03.30 -
AntiVir 7.9.0.129 2009.03.30 -
[B]Antiy-AVL 2.0.3.1 2009.03.30 AdTool/Win32.MyWebSearch
Authentium 5.1.2.4 2009.03.29 W32/HackTool.BAC [/B]
Avast 4.8.1335.0 2009.03.29 -
AVG 8.5.0.285 2009.03.29 -
BitDefender 7.2 2009.03.30 -
CAT-QuickHeal 10.00 2009.03.30 -
ClamAV 0.94.1 2009.03.29 -
[B]Comodo 1089 2009.03.29 ApplicUnwnt.Win32.Toolbar.MyWebSearch [/B]
DrWeb 4.44.0.09170 2009.03.30 -
eSafe 7.0.17.0 2009.03.27 -
eTrust-Vet 31.6.6424 2009.03.30 -
[B]F-Prot 4.4.4.56 2009.03.29 W32/HackTool.BAC[/B]
F-Secure 8.0.14470.0 2009.03.30 -
[B]Fortinet 3.117.0.0 2009.03.30 W32/MyWebSearch [/B]
GData 19 2009.03.30 -
[B]Ikarus T3.1.1.48.0 2009.03.30 not-a-virus:AdWare.Mywebsearch
K7AntiVirus 7.10.684 2009.03.28 not-a-virus:AdTool.Win32.MyWebSearch.az [/B]
Kaspersky 7.0.0.125 2009.03.30 -
[B]McAfee 5568 2009.03.29 potentially unwanted program MWS
McAfee+Artemis 5568 2009.03.29 potentially unwanted program MWS [/B]
McAfee-GW-Edition 6.7.6 2009.03.30 -
Microsoft 1.4502 2009.03.30 -
[B]NOD32 3974 2009.03.30 Win32/Toolbar.MyWebSearch [/B]
Norman 6.00.06 2009.03.27 -
[B]nProtect 2009.1.8.0 2009.03.30 Trojan-Clicker/W32.Toolbar.57344.B
Panda 10.0.0.10 2009.03.29 Application/MyWebSearch [/B]
PCTools 4.4.2.0 2009.03.29 -
Prevx1 V2 2009.03.30 -
Rising 21.23.03.00 2009.03.30 -
Sophos 4.40.0 2009.03.30 -
Sunbelt 3.2.1858.2 2009.03.29 -
Symantec 1.4.4.12 2009.03.30 -
[B]TheHacker 6.3.3.9.296 2009.03.30 Adware/MyWebSearch.az [/B]
TrendMicro 8.700.0.1004 2009.03.30 -
VBA32 3.12.10.1 2009.03.29 -
[B]ViRobot 2009.3.30.1668 2009.03.30 Adware.AskBar.To.57344 [/B]
VirusBuster 4.6.5.0 2009.03.30 - [/CODE]
Дополнительная информация
File size: 57344 bytes
MD5...: 30e4c0a012ae80e8479523a8d9a3217f
SHA1..: f5e602af05e25de625fd401f9492a66659ea20b7
SHA256: 23b4fd1592eed3c2d06877fa909ed13985e0d3ca76db856cb216a1ec6af4c5cd
SHA512: cd9e775e448c78bc370d4d208a6383308f596d01409d0909c0cbfb34fe9adf2b
410764d3e9c245001d013581f97335edc70c1fb7c090c5e1c011d4e6342e52ca
ssdeep: 768:iARygQiAOPjVbMVcEFjZW4ed44RO2/9IXH+jMF0MjaN5lJJwr6imhAlw:iAR
ygQAj+VcMd2VLMHON53Jw+imhAl
PEiD..: -
-
Файл avz00001.dta получен 2009.03.31 08:16:17 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.03.31 Packer.Krunchy!IK[/B]
AhnLab-V3 5.0.0.2 2009.03.31 -
[B]AntiVir 7.9.0.129 2009.03.30 TR/Drop.Agent.akxp[/B]
Antiy-AVL 2.0.3.1 2009.03.30 -
[B]Authentium 5.1.2.4 2009.03.30 W32/Heuristic-210!Eldorado[/B]
Avast 4.8.1335.0 2009.03.30 -
[B]AVG 8.5.0.285 2009.03.30 SHeur2.YCD
BitDefender 7.2 2009.03.31 Packer.Krunchy.B
CAT-QuickHeal 10.00 2009.03.30 TrojanDropper.Agent.akxp
[/B]ClamAV 0.94.1 2009.03.31 -
Comodo 1090 2009.03.30 -
DrWeb 4.44.0.09170 2009.03.31 -
[B]eSafe 7.0.17.0 2009.03.27 Suspicious File[/B]
eTrust-Vet 31.6.6425 2009.03.30 -
[B]F-Prot 4.4.4.56 2009.03.30 W32/Heuristic-210!Eldorado
F-Secure 8.0.14470.0 2009.03.31 Trojan-Dropper.Win32.Agent.akxp
Fortinet 3.117.0.0 2009.03.31 PossibleThreat
GData 19 2009.03.31 Packer.Krunchy.B
Ikarus T3.1.1.49.0 2009.03.31 Packer.Krunchy
K7AntiVirus 7.10.685 2009.03.30 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.03.31 Trojan-Dropper.Win32.Agent.akxp[/B]
McAfee 5569 2009.03.30 -
[B]McAfee+Artemis 5569 2009.03.30 Generic!Artemis
McAfee-GW-Edition 6.7.6 2009.03.30 Trojan.Drop.Agent.akxp
Microsoft 1.4502 2009.03.31 Trojan:Win32/Meredrop
NOD32 3976 2009.03.30 Win32/IRCBot.AMC
Norman 6.00.06 2009.03.30 W32/Spybot.gen6
[/B]nProtect 2009.1.8.0 2009.03.31 -
[B]Panda 10.0.0.10 2009.03.30 Generic Malware
PCTools 4.4.2.0 2009.03.30 Packed/FRBR
Prevx1 V2 2009.03.31 High Risk Worm
Rising 21.23.10.00 2009.03.31 Trojan.DL.Win32.Nodef.gd
[/B]Sophos 4.40.0 2009.03.31 -
Sunbelt 3.2.1858.2 2009.03.31 -
Symantec 1.4.4.12 2009.03.31 -
[B]TheHacker 6.3.3.9.296 2009.03.30 Trojan/Dropper.Agent.akxp
TrendMicro 8.700.0.1004 2009.03.30 WORM_SPYBOT.AUM[/B]
VBA32 3.12.10.1 2009.03.29 -
ViRobot 2009.3.30.1668 2009.03.31 -
[B]VirusBuster 4.6.5.0 2009.03.30 Packed/FRBR[/B][/CODE]
Дополнительная информация
File size: 23552 bytes
MD5...: 202a1c4c061a09929398bce42001997f
SHA1..: 3a53f384a7f5d17ba01d018ba752b9b025577946
SHA256: a36da5ac32bd8f724dbecf1ecc302d397e1ff471c7a826eaa1afb54bdcb4aa12
SHA512: adf0e7664b5117c5f410962f2a0dc2720ef5c05a8a2486f61031a0575f85f3b2<BR>11b7a0ce3a1c2ba97373f4a0f562c7f3a187b23966b2ba0c09b5dde3df78f5ce
ssdeep: 384:A0s9TUQHU43B5NKdnBEb4lW4vs3Zd7vuEMt1WSltv7EkhlSrFZjYHp7myKYb<BR>wXcE:A0OTUQP3nNzcxYBSlWXYtmVY0sxYp3h/<BR>
PEiD..: -
-
Файл ekfsgs.exe получен 2009.04.01 03:31:06 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.01 Trojan.Win32.Autoit!IK
AhnLab-V3 5.0.0.2 2009.03.31 Win-Trojan/Midgare.236544
AntiVir 7.9.0.129 2009.03.31 TR/Onlinegames.A3
Antiy-AVL 2.0.3.1 2009.03.31 Trojan/Win32.Agent2
Authentium 5.1.2.4 2009.03.31 W32/Trojan3.AIQ
Avast 4.8.1335.0 2009.03.31 Win32:Agent-AEEP
AVG 8.5.0.285 2009.03.31 Agent2.CK
BitDefender 7.2 2009.04.01 Trojan.Heur.AutoIT.1
CAT-QuickHeal 10.00 2009.03.31 Backdoor.Agent.adzv
ClamAV 0.94.1 2009.03.31 Trojan.Autoit-72
[/B]Comodo 1092 2009.03.31 -
DrWeb 4.44.0.09170 2009.04.01 -
[B]eSafe 7.0.17.0 2009.03.31 Suspicious File
[/B]eTrust-Vet 31.6.6427 2009.03.31 -
[B]F-Prot 4.4.4.56 2009.03.31 W32/Trojan3.AIQ
F-Secure 8.0.14470.0 2009.04.01 Trojan.Win32.Agent2.efp
Fortinet 3.117.0.0 2009.04.01 W32/Autorun.HOZ!worm
GData 19 2009.04.01 Trojan.Heur.AutoIT.1
Ikarus T3.1.1.49.0 2009.04.01 Trojan.Win32.Autoit
K7AntiVirus 7.10.687 2009.03.31 Trojan.Win32.Midgare.roo
Kaspersky 7.0.0.125 2009.04.01 Trojan.Win32.Agent2.efp
McAfee 5570 2009.03.31 W32/Autorun.worm.n
McAfee+Artemis 5570 2009.03.31 W32/Autorun.worm.n
McAfee-GW-Edition 6.7.6 2009.03.31 Trojan.Onlinegames.A3
[/B]Microsoft 1.4502 2009.04.01 -
[B]NOD32 3978 2009.03.31 Win32/Packed.Autoit.Gen
Norman 6.00.06 2009.03.31 W32/Smalltroj.LCYY
nProtect 2009.1.8.0 2009.03.31 Trojan/W32.Agent2.336590
Panda 10.0.0.14 2009.03.31 Trj/Agent.LPX
[/B]PCTools 4.4.2.0 2009.03.31 -
Prevx1 V2 2009.04.01 -
Rising 21.23.12.00 2009.03.31 -
Sophos 4.40.0 2009.03.31 -
Sunbelt 3.2.1858.2 2009.04.01 -
[B]Symantec 1.4.4.12 2009.04.01 Infostealer
TheHacker 6.3.3.9.298 2009.04.01 Trojan/Midgare.rvm
TrendMicro 8.700.0.1004 2009.03.31 WORM_AUTORUN.HOZ
VBA32 3.12.10.1 2009.03.31 Trojan.Autoit.gen
[/B]ViRobot 2009.3.31.1669 2009.03.31 -
[B]VirusBuster 4.6.5.0 2009.03.31 Trojan.Autoit.MB[/B]
[/CODE]
Дополнительная информация
File size: 336590 bytes
MD5...: aaf6347999670bd093b5c81c89589d6e
SHA1..: e8e8b5b6f7955d003f502cacefeb74c20706b443
SHA256: 025487b75ca057d42034b02bfb28ee474ac8274771fdb0896cee3c3267c94d87
SHA512: 97a81f82249245a1c3460d52afea26d346999ee5edafb7a77812e28603c82675<BR>67ca4eb3120c07541d8094856fc6ec7cb6e03926149ec0e4ae2ef074c234c849
ssdeep: 6144:Ijk1EHI7OyXfOe5JnVZFrv7p4TKcw5TCg5FUq0F4h/4k:IjGjPOevnllBcC<BR>5FX02h/4k<BR>
PEiD..: -
-
Файл save.exe получен 2009.04.01 10:05:23 (CET)
Результат: 6/39 (15.39%)
[CODE]a-squared 4.0.0.101 2009.04.01 -
AhnLab-V3 5.0.0.2 2009.04.01 -
AntiVir 7.9.0.129 2009.04.01 -
Antiy-AVL 2.0.3.1 2009.04.01 -
Authentium 5.1.2.4 2009.03.31 -
Avast 4.8.1335.0 2009.03.31 -
[B]AVG 8.5.0.285 2009.03.31 Win32/Cryptor[/B]
BitDefender 7.2 2009.04.01 -
CAT-QuickHeal 10.00 2009.04.01 -
ClamAV 0.94.1 2009.04.01 -
Comodo 1092 2009.03.31 -
eSafe 7.0.17.0 2009.03.31 -
eTrust-Vet 31.6.6427 2009.03.31 -
F-Prot 4.4.4.56 2009.03.31 -
F-Secure 8.0.14470.0 2009.04.01 -
[B]Fortinet 3.117.0.0 2009.04.01 W32/PackWaledac.C[/B]
GData 19 2009.04.01 -
Ikarus T3.1.1.49.0 2009.04.01 -
K7AntiVirus 7.10.687 2009.03.31 -
Kaspersky 7.0.0.125 2009.04.01 -
[B]McAfee 5570 2009.03.31 New Malware.bx
McAfee+Artemis 5570 2009.03.31 New Malware.bx[/B]
McAfee-GW-Edition 6.7.6 2009.04.01 -
[B]Microsoft 1.4502 2009.04.01 Trojan:Win32/Waledac.gen!A
NOD32 3979 2009.03.31 a variant of Win32/Kryptik.LP[/B]
Norman 6.00.06 2009.03.31 -
nProtect 2009.1.8.0 2009.04.01 -
Panda 10.0.0.14 2009.03.31 -
PCTools 4.4.2.0 2009.03.31 -
Prevx1 V2 2009.04.01 -
Rising 21.23.20.00 2009.04.01 -
Sophos 4.40.0 2009.04.01 -
Sunbelt 3.2.1858.2 2009.04.01 -
Symantec 1.4.4.12 2009.04.01 -
TheHacker 6.3.4.0.298 2009.04.01 -
TrendMicro 8.700.0.1004 2009.04.01 -
VBA32 3.12.10.1 2009.03.31 -
ViRobot 2009.3.31.1670 2009.04.01 -
VirusBuster 4.6.5.0 2009.03.31 -[/CODE]
[url]http://www.virustotal.com/ru/analisis/24cd12b2d426bbb7c3c9551622f17a18[/url]
-
Вложений: 1
-
[url]http://www.virustotal.com/ru/analisis/fd5b46e32f9345f62fff7620ad200542[/url]
Результат: 9/39 (23.08%)
Форматированные
Печать результатов Антивирус Версия Обновление Результат
a-squared - - Exploit.Office!IK
AhnLab-V3 - - -
AntiVir - - EXP/Office.G
Antiy-AVL - - -
Authentium - - -
Avast - - -
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
Comodo - - -
DrWeb - - -
eSafe - - -
eTrust-Vet - - -
F-Prot - - -
F-Secure - - -
Fortinet - - -
GData - - -
Ikarus - - Exploit.Office
K7AntiVirus - - -
Kaspersky - - -
McAfee - - Exploit-1Table.b
McAfee+Artemis - - Exploit-1Table.b
McAfee-GW-Edition - - Exploit.Office.G
Microsoft - - -
NOD32 - - -
Norman - - ShellCode.B
nProtect - - -
Panda - - -
PCTools - - -
Prevx1 - - -
Rising - - -
Sophos - - Troj/MalDoc-Fam
Sunbelt - - -
Symantec - - -
TheHacker - - -
TrendMicro - - -
VBA32 - - suspected of Exploit.Signature
ViRobot - - -
Дополнительная информация
MD5: 96f47ab44b5ddad96531c03c50be8350
SHA1: 25612c5f85b93280e72b30940d56b8b31f6b8413
SHA256: 2f71a19178e7b09d49d87b12f7a5013bab49896ddb811bb08bb6353ba3857e76
SHA512: 8143524c328cf0c0c254f378ca59a3115e19162becaa0d7de8d4b3ab1c1c11530e8fd0598cbbc9c7ba9f2c5c89f362d6e29c13c617553c63e4501ea0565905fb
[QUOTE][color=#CC0000][b]Просьба публиковать полные результаты, в данном виде (неизвестно когда выполненная) подсчитываться не будет. [/b][/color][/QUOTE]
Файл ______________________.doc получен 2009.03.28 19:37:05 (CET)
Добавил. Извиняюсь только начинаю слать. На компьютере стоят NOD32 BE 4 и Касперский СОС - оба соотв-но файл не приняли за вирус.
-
Файл actxprxy.dll получен 2009.04.07 04:42:28 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.07 Trojan-Downloader.Win32.Small!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.06 -
AntiVir 7.9.0.138 2009.04.06 -
Antiy-AVL 2.0.3.1 2009.04.06 -
[B]Authentium 5.1.2.4 2009.04.07 W32/Backdoor2.DWJU
Avast 4.8.1335.0 2009.04.06 Win32:Patched-JQ
AVG 8.5.0.285 2009.04.07 Win32/Patched.AC
BitDefender 7.2 2009.04.07 Trojan.Generic.1251266
CAT-QuickHeal 10.00 2009.04.06 TrojanDownloader.Small.ap
[/B]ClamAV 0.94.1 2009.04.06 -
Comodo 1101 2009.04.06 -
DrWeb 4.44.0.09170 2009.04.07 -
[B]eSafe 7.0.17.0 2009.04.06 Win32.ActxHck.a
[/B]eTrust-Vet 31.6.6440 2009.04.07 -
[B]F-Prot 4.4.4.56 2009.04.07 W32/Backdoor2.DWJU[/B]
F-Secure 8.0.14470.0 2009.04.07 -
[B]Fortinet 3.117.0.0 2009.04.07 W32/ActxHck.A!tr
GData 19 2009.04.07 Trojan.Generic.1251266
Ikarus T3.1.1.49.0 2009.04.07 Trojan-Downloader.Win32.Small
K7AntiVirus 7.10.694 2009.04.06 Trojan.Win32.Malware
[/B]Kaspersky 7.0.0.125 2009.04.07 -
[B]McAfee 5576 2009.04.06 Generic.dx
McAfee+Artemis 5576 2009.04.06 Generic.dx
[/B]McAfee-GW-Edition 6.7.6 2009.04.06 -
Microsoft 1.4502 2009.04.07 -
NOD32 3990 2009.04.06 -
[B]Norman 6.00.06 2009.04.06 W32/Downloader.UHH
[/B]nProtect 2009.1.8.0 2009.04.07 -
[B]Panda 10.0.0.14 2009.04.06 Trj/CI.A
[/B]PCTools 4.4.2.0 2009.04.06 -
Prevx1 V2 2009.04.07 -
[B]Rising 21.23.41.00 2009.04.03 Win32.Agent.bs
Sophos 4.40.0 2009.04.07 Troj/ActxHck-A
Sunbelt 3.2.1858.2 2009.04.06 Trojan.1
[/B]Symantec 1.4.4.12 2009.04.07 -
TheHacker 6.3.4.0.303 2009.04.07 -
TrendMicro 8.700.0.1004 2009.04.06 -
VBA32 3.12.10.2 2009.04.07 -
ViRobot 2009.4.6.1680 2009.04.06 -
[B]VirusBuster 4.6.5.0 2009.04.06 Backdoor.Agent.IPDH
[/B][/CODE]
Дополнительная информация
File size: 98304 bytes
MD5...: 0b1213e1023872091024aaeae85de230
SHA1..: f23a4cb5478b3f0064f6aff171dd0d7791b0ee9f
SHA256: 0d9e22d5dc99e4c02d96441dbbb92e4767c965133250e3fb2cac850226578d1c
SHA512: a44228486f404dd69c2e3c6fa9f474f40b104d55d16d06b293bd76123df93a40<BR>de08f167a35cf3b3317e88c1fe016dc93c1e52f86649be9d7228b59ea90d1e19
ssdeep: 1536:9ayC3Uhcf6vpvM6c9ZCwjkLwwLS+OikWVyBzo78:h5jcDwv+7ikJBzog<BR>
PEiD..: -
[size="1"][color="#666686"][B][I]Добавлено через 9 минут[/I][/B][/color][/size]
Файл A06_1_.exe получен 2009.04.07 05:02:06 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.07 Generic.Onlinegames!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.06 -
[B]AntiVir 7.9.0.138 2009.04.06 TR/Crypt.XDR.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.06 -
[B]Authentium 5.1.2.4 2009.04.07 W32/OnlineGames.CA.gen!Eldorado
Avast 4.8.1335.0 2009.04.06 Win32:Agent-ACMH
AVG 8.5.0.285 2009.04.07 Downloader.Zlob_r.FK
BitDefender 7.2 2009.04.07 Generic.Onlinegames.14.3AB5EF82
[/B]CAT-QuickHeal 10.00 2009.04.06 -
ClamAV 0.94.1 2009.04.06 -
Comodo 1101 2009.04.06 -
DrWeb 4.44.0.09170 2009.04.07 -
[B]eSafe 7.0.17.0 2009.04.06 Suspicious File
eTrust-Vet 31.6.6440 2009.04.07 Win32/Gamepass!generic
F-Prot 4.4.4.56 2009.04.07 W32/OnlineGames.CA.gen!Eldorado
F-Secure 8.0.14470.0 2009.04.07 Trojan-GameThief.Win32.Magania.aydy
Fortinet 3.117.0.0 2009.04.07 SPY/LdPinch
GData 19 2009.04.07 Generic.Onlinegames.14.3AB5EF82
Ikarus T3.1.1.49.0 2009.04.07 Generic.Onlinegames
K7AntiVirus 7.10.694 2009.04.06 Trojan-PSW.Win32.Magania.aydy
Kaspersky 7.0.0.125 2009.04.07 Trojan-GameThief.Win32.Magania.aydy
McAfee 5576 2009.04.06 Generic Dropper.eb
McAfee+Artemis 5576 2009.04.06 Generic Dropper.eb
McAfee-GW-Edition 6.7.6 2009.04.06 Trojan.Crypt.XDR.Gen
Microsoft 1.4502 2009.04.07 PWS:Win32/Ldpinch.BY
NOD32 3990 2009.04.06 probably a variant of Win32/PSW.OnLineGames.NRD
[/B]Norman 6.00.06 2009.04.06 -
nProtect 2009.1.8.0 2009.04.07 -
[B]Panda 10.0.0.14 2009.04.06 Trj/Lineage.BZE
[/B]PCTools 4.4.2.0 2009.04.06 -
[B]Prevx1 V2 2009.04.07 Medium Risk Malware Dropper
[/B]Rising 21.23.41.00 2009.04.03 -
[B]Sophos 4.40.0 2009.04.07 Troj/LdPinch-SE
Sunbelt 3.2.1858.2 2009.04.06 Trojan-GameThief.Win32.Magania.aydy
Symantec 1.4.4.12 2009.04.07 Infostealer.Gampass
TheHacker 6.3.4.0.303 2009.04.07 Trojan/Magania.aydy
TrendMicro 8.700.0.1004 2009.04.06 Possible_Movly-1
VBA32 3.12.10.2 2009.04.07 Trojan-GameThief.Win32.Magania.aydy
[/B]ViRobot 2009.4.6.1680 2009.04.06 -
[B]VirusBuster 4.6.5.0 2009.04.06 Trojan.DR.OnlineGames.Gen.118[/B][/CODE]
Дополнительная информация
File size: 22142 bytes
MD5...: bda8924fbf125a97a1830ba60a6516f2
SHA1..: 7db492eae22ea8200f631ffa8561709d009b2221
SHA256: 32d44eb218461fafb2b36b1eb3d95231d4f7e7ac972f479614937921096706ac
SHA512: 042118f5566def5e807b5c07dab7d90e449fb834dafeef64517b0c4e3380435d<BR>9f737b2622489be93cc513db13fd06f8ad2d9bf7118d10b4f5a9fcbcf2763f45
ssdeep: 384:cMQDBcN/8OPwR2fES1EIRjO6p4ym0kWOzx+lsoQb414I54x1:vQDON//PwRL<BR>SeIVp4F0TOzAlsoQbiqH<BR>
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
[size="1"][color="#666686"][B][I]Добавлено через 10 минут[/I][/B][/color][/size]
Файл D51_1_.exe получен 2009.04.07 05:14:18 (CET)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.07 -
[B]AhnLab-V3 5.0.0.2 2009.04.06 Dropper/Agent.15360.I
AntiVir 7.9.0.138 2009.04.06 TR/Drop.Zena.A
[/B]Antiy-AVL 2.0.3.1 2009.04.06 -
[B]Authentium 5.1.2.4 2009.04.07 W32/Dropper.AGQO
[/B]Avast 4.8.1335.0 2009.04.06 -
[B]AVG 8.5.0.285 2009.04.07 PSW.OnlineGames.BGHS
BitDefender 7.2 2009.04.07 Dropped:Trojan.Generic.1459536
CAT-QuickHeal 10.00 2009.04.06 TrojanDropper.Agent.zje
[/B]ClamAV 0.94.1 2009.04.06 -
Comodo 1101 2009.04.06 -
DrWeb 4.44.0.09170 2009.04.07 -
eSafe 7.0.17.0 2009.04.06 -
eTrust-Vet 31.6.6440 2009.04.07 -
[B]F-Prot 4.4.4.56 2009.04.07 W32/Dropper.AGQO
F-Secure 8.0.14470.0 2009.04.07 Trojan-Dropper.Win32.Agent.zje
[/B]Fortinet 3.117.0.0 2009.04.07 -
[B]GData 19 2009.04.07 Dropped:Trojan.Generic.1459536
[/B]Ikarus T3.1.1.49.0 2009.04.07 -
[B]K7AntiVirus 7.10.694 2009.04.06 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.04.07 Trojan-Dropper.Win32.Agent.zje
[/B]McAfee 5576 2009.04.06 -
McAfee+Artemis 5576 2009.04.06 -
[B]McAfee-GW-Edition 6.7.6 2009.04.06 Trojan.Drop.Zena.A
Microsoft 1.4502 2009.04.07 Exploit:Win32/Siveras.E
NOD32 3991 2009.04.07 Win32/TrojanDropper.Agent.ZJE
Norman 6.00.06 2009.04.06 W32/Agent.LTIS.dropper
nProtect 2009.1.8.0 2009.04.07 Trojan-Dropper/W32.Agent.15360.G
[/B]Panda 10.0.0.14 2009.04.06 -
PCTools 4.4.2.0 2009.04.06 -
Prevx1 V2 2009.04.07 -
[B]Rising 21.24.10.00 2009.04.07 Trojan.Win32.Undef.soe
Sophos 4.40.0 2009.04.07 Mal/Behav-112
[/B]Sunbelt 3.2.1858.2 2009.04.06 -
Symantec 1.4.4.12 2009.04.07 -
[B]TheHacker 6.3.4.0.303 2009.04.07 Trojan/Dropper.Agent.zje
TrendMicro 8.700.0.1004 2009.04.06 PAK_Generic.001
VBA32 3.12.10.2 2009.04.07 Trojan-Dropper.Win32.Agent.zje
ViRobot 2009.4.6.1680 2009.04.06 Trojan.Win32.Agent.15360.AW
VirusBuster 4.6.5.0 2009.04.06 Trojan.DR.Agent.GCWR[/B][/CODE]
Дополнительная информация
File size: 15360 bytes
MD5...: 60ed6c46181c2df285719f541ef3dc07
SHA1..: a9fbc6fb501b28d668878e9c61797bcea536d788
SHA256: 632b17dd78ddbff3d587ee47e3b8ae3d6c7750382049fec13c2e05d148624106
SHA512: 0eb800bba9aa29ad72d7f4390e6ba875d0001978d224ba28c00a703d9ad0dabd<BR>74579026e47218bd7d021a366285431842d62c7cfa6a587311ae58dec3681735
ssdeep: 384:20Rs1LvqfARgiQGtMFgi+ZxKQ3b8zBXs:200LSfRiQLgi+ZH86<BR>
PEiD..: Armadillo v1.71
[size="1"][color="#666686"][B][I]Добавлено через 4 минуты[/I][/B][/color][/size]
Файл oleadp.dll получен 2009.04.07 05:15:01 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.07 Trojan-Dropper.Agent!IK
[/B]AhnLab-V3 5.0.0.2 2009.04.06 -
[B]AntiVir 7.9.0.138 2009.04.06 TR/Small.bbp
Antiy-AVL 2.0.3.1 2009.04.06 Trojan/Win32.Agent
Authentium 5.1.2.4 2009.04.07 W32/Downldr2.FHII
Avast 4.8.1335.0 2009.04.06 Win32:Trojan-gen {Other}
AVG 8.5.0.285 2009.04.07 Downloader.Agent.AQQU
BitDefender 7.2 2009.04.07 Trojan.Generic.1602684
CAT-QuickHeal 10.00 2009.04.06 TrojanDownloader.Agent.atpy
ClamAV 0.94.1 2009.04.06 Trojan.Downloader-62080
Comodo 1101 2009.04.06 TrojWare.Win32.TrojanDownloader.Agent.~AGW
DrWeb 4.44.0.09170 2009.04.07 DLOADER.Trojan
eSafe 7.0.17.0 2009.04.06 Win32.TRSmall.bbp
eTrust-Vet 31.6.6440 2009.04.07 Win32/SillyDl.GMQ
F-Prot 4.4.4.56 2009.04.07 W32/Downldr2.FHII
F-Secure 8.0.14470.0 2009.04.07 Trojan-Downloader.Win32.Agent.atpy
Fortinet 3.117.0.0 2009.04.07 W32/Agent.ATPY!tr.dldr
GData 19 2009.04.07 Trojan.Generic.1602684
Ikarus T3.1.1.49.0 2009.04.07 Trojan-Dropper.Agent
K7AntiVirus 7.10.694 2009.04.06 Trojan-Downloader.Win32.Agent.atpy
Kaspersky 7.0.0.125 2009.04.07 Trojan-Downloader.Win32.Agent.atpy
McAfee 5576 2009.04.06 Generic Downloader.x
McAfee+Artemis 5576 2009.04.06 Generic Downloader.x
McAfee-GW-Edition 6.7.6 2009.04.06 Trojan.Small.bbp
Microsoft 1.4502 2009.04.07 TrojanDownloader:Win32/Agent.YD
NOD32 3991 2009.04.07 Win32/Agent.ONC
Norman 6.00.06 2009.04.06 W32/Agent.LUMN
nProtect 2009.1.8.0 2009.04.07 Trojan-Downloader/W32.Agent.22016.AY
Panda 10.0.0.14 2009.04.06 Trj/Downloader.MDW
PCTools 4.4.2.0 2009.04.06 Trojan-Downloader.Agent!sd6
Prevx1 V2 2009.04.07 High Risk Worm
Rising 21.24.10.00 2009.04.07 Trojan.Win32.Undef.vbf
[/B]Sophos 4.40.0 2009.04.07 -
[B]Sunbelt 3.2.1858.2 2009.04.06 Trojan-Downloader.Win32.Agent.atpy
Symantec 1.4.4.12 2009.04.07 Trojan Horse
TheHacker 6.3.4.0.303 2009.04.07 Trojan/Downloader.Agent.atpy
[/B]TrendMicro 8.700.0.1004 2009.04.06 -
[B]VBA32 3.12.10.2 2009.04.07 Win32.Agent.ONC
[/B]ViRobot 2009.4.6.1680 2009.04.06 -
[B]VirusBuster 4.6.5.0 2009.04.06 Trojan.DL.Agent.IQPW
[/B][/CODE]
Дополнительная информация
File size: 22016 bytes
MD5...: 9ec06018e2a05e3851386959fde7aa91
SHA1..: a9fb4c9fcd54c2c13f1be33a40a242717998fc3f
SHA256: 88ab242f80ed5cfc01de25ec6d77fdc79ae2fc28a6d271d653884757c34f872c
SHA512: ffaf5ed79d443eeb6f1406d6cf4d691a55744c2e63cfdb4bffe92feee719fdf0<BR>5382f2c15c08fd69c81c56caaa48b55da2aa6c0a443bd841d6bec8b74edc5b80
ssdeep: 384:6tNZ/z4wmn8caDy8D/QW4YqPnEKzwFbL4HPx21VyHPWvyWNdaeI:6tNZ/z49<BR>kDo9xEiTHPgUH0J4e<BR>
PEiD..: Armadillo v1.xx - v2.xx
[size="1"][color="#666686"][B][I]Добавлено через 1 минуту[/I][/B][/color][/size]
Файл D9C002DD.dll получен 2009.04.07 05:20:07 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.07 Generic.Onlinegames!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.06 -
[B]AntiVir 7.9.0.138 2009.04.06 TR/Spy.Gen
[/B]Antiy-AVL 2.0.3.1 2009.04.06 -
[B]Authentium 5.1.2.4 2009.04.07 W32/OnlineGames.CA.gen!Eldorado
Avast 4.8.1335.0 2009.04.06 Win32:Agent-ACMH
AVG 8.5.0.285 2009.04.07 PSW.OnlineGames3.ARG
BitDefender 7.2 2009.04.07 Generic.Onlinegames.14.8518F76E
[/B]CAT-QuickHeal 10.00 2009.04.06 -
ClamAV 0.94.1 2009.04.06 -
Comodo 1101 2009.04.06 -
DrWeb 4.44.0.09170 2009.04.07 -
[B]eSafe 7.0.17.0 2009.04.06 Win32.TRSpy
eTrust-Vet 31.6.6440 2009.04.07 Win32/Gamepass!generic
F-Prot 4.4.4.56 2009.04.07 W32/OnlineGames.CA.gen!Eldorado
F-Secure 8.0.14470.0 2009.04.07 Trojan-GameThief.Win32.Magania.ayej
Fortinet 3.117.0.0 2009.04.07 W32/OnlineGames.MIG!tr.pws
GData 19 2009.04.07 Generic.Onlinegames.14.8518F76E
Ikarus T3.1.1.49.0 2009.04.07 Generic.Onlinegames
K7AntiVirus 7.10.694 2009.04.06 Trojan-PSW.Win32.Magania.ayej
Kaspersky 7.0.0.125 2009.04.07 Trojan-GameThief.Win32.Magania.ayej
[/B]McAfee 5576 2009.04.06 -
[B]McAfee+Artemis 5576 2009.04.06 Generic!Artemis
McAfee-GW-Edition 6.7.6 2009.04.06 Trojan.Spy.Gen
Microsoft 1.4502 2009.04.07 PWS:Win32/OnLineGames.CP
NOD32 3991 2009.04.07 probably a variant of Win32/PSW.OnLineGames.NRD
[/B]Norman 6.00.06 2009.04.06 -
nProtect 2009.1.8.0 2009.04.07 -
Panda 10.0.0.14 2009.04.06 -
[B]Prevx1 V2 2009.04.07 High Risk Fraudulent Security Program
Rising 21.24.10.00 2009.04.07 Trojan.PSW.Win32.Undef.bcn
Sophos 4.40.0 2009.04.07 Troj/LdPinch-SE
[/B]Sunbelt 3.2.1858.2 2009.04.06 -
[B]Symantec 1.4.4.12 2009.04.07 Infostealer.Gampass
TheHacker 6.3.4.0.303 2009.04.07 Trojan/Magania.ayej
TrendMicro 8.700.0.1004 2009.04.06 Mal_OLGM-23
VBA32 3.12.10.2 2009.04.07 Malware-Dropper.Win32.Inject.gen
[/B]ViRobot 2009.4.6.1680 2009.04.06 -
VirusBuster 4.6.5.0 2009.04.06 -[/CODE]
Дополнительная информация
File size: 220262 bytes
MD5...: bf332508508a665c2f9c71b855291772
SHA1..: a43d9b9185594c43475214295c096a7872f07a69
SHA256: 7654c35f26bbae3bf8ff8673e243c351ac3dd7641efecc28d8ea38e4fe63eaf6
SHA512: 282bc26860d1a497e2eed982e3cadaa1cd16995c6a247d5c3c054146a1c2cfba<BR>c0f4dd78617799ad362b2290ec182d279f715ae6380e3bf3e29b9452f8585f22
ssdeep: 192:MeUH36HA2Y+Y8tG1Eaag1b3DgngOzqryaD3kzGQ6dA30nYYsG/OBLa09R+UJ<BR>n:Mec36TQEaa+8gO2dAKvd2pG/OBD3Tn<BR>
PEiD..: -
[size="1"][color="#666686"][B][I]Добавлено через 5 минут[/I][/B][/color][/size]
Файл MB29kg.EXE получен 2009.04.07 05:26:48 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.07 Backdoor.Win32.Agobot!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.06 -
AntiVir 7.9.0.138 2009.04.06 -
Antiy-AVL 2.0.3.1 2009.04.06 -
[B]Authentium 5.1.2.4 2009.04.07 W32/Heuristic-210!Eldorado[/B]
Avast 4.8.1335.0 2009.04.06 -
AVG 8.5.0.285 2009.04.07 -
BitDefender 7.2 2009.04.07 -
[B]CAT-QuickHeal 10.00 2009.04.06 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.06 -
Comodo 1101 2009.04.06 -
DrWeb 4.44.0.09170 2009.04.07 -
[B]eSafe 7.0.17.0 2009.04.06 Suspicious File[/B]
eTrust-Vet 31.6.6440 2009.04.07 -
[B]F-Prot 4.4.4.56 2009.04.07 W32/Heuristic-210!Eldorado[/B]
F-Secure 8.0.14470.0 2009.04.07 -
Fortinet 3.117.0.0 2009.04.07 -
GData 19 2009.04.07 -
[B]Ikarus T3.1.1.49.0 2009.04.07 Backdoor.Win32.Agobot[/B]
K7AntiVirus 7.10.694 2009.04.06 -
Kaspersky 7.0.0.125 2009.04.07 -
McAfee 5576 2009.04.06 -
McAfee+Artemis 5576 2009.04.06 -
McAfee-GW-Edition 6.7.6 2009.04.06 -
Microsoft 1.4502 2009.04.07 -
NOD32 3991 2009.04.07 -
Norman 6.00.06 2009.04.06 -
nProtect 2009.1.8.0 2009.04.07 -
Panda 10.0.0.14 2009.04.06 -
PCTools 4.4.2.0 2009.04.06 -
Prevx1 V2 2009.04.07 -
Rising 21.24.10.00 2009.04.07 -
[B]Sophos 4.40.0 2009.04.07 Sus/ComPack-C
Sunbelt 3.2.1858.2 2009.04.06 VIPRE.Suspicious
[/B]Symantec 1.4.4.12 2009.04.07 -
[B]TheHacker 6.3.4.0.303 2009.04.07 W32/Behav-Heuristic-066
TrendMicro 8.700.0.1004 2009.04.06 PAK_Generic.001[/B]
VBA32 3.12.10.2 2009.04.07 -
ViRobot 2009.4.6.1680 2009.04.06 -
VirusBuster 4.6.5.0 2009.04.06 -[/CODE]
Дополнительная информация
File size: 33280 bytes
MD5...: e971a74fff55c8a03b442e347418ca44
SHA1..: 2e0aa84614aff0841821503388f4c7626a27cb56
SHA256: b88153e71f4f6d5f64e7273c6368535c7fe2133c03562f1d175c29f21c07cd4b
SHA512: 13bc982455bc910a1f64e529ccdb611630f6be9d1dbbecdf7156dd0f6ad7f8e5<BR>3d610abcdba89c9f04916ece68d9d5fc0ea6eeea8c0c096d25dd9bbf481b8681
ssdeep: 768:O1H+8TAC5TcP0P8lypWkcVXJgqUdsuQVLjq+UumnBrjVIJ8oNDvx:O1PTb0l<BR>G8XJgoVPjqBrjVIHDvx<BR>
PEiD..: -
[size="1"][color="#666686"][B][I]Добавлено через 1 час 39 минут[/I][/B][/color][/size]
Файл Dc1.dll получен 2009.04.07 07:02:45 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.07 Trojan.Horse.Pws.Ldpinch.DQY!IK
AhnLab-V3 5.0.0.2 2009.04.06 Win-Trojan/LdPinch.26112.BW
[/B]AntiVir 7.9.0.138 2009.04.06 -
Antiy-AVL 2.0.3.1 2009.04.06 -
[B]Authentium 5.1.2.4 2009.04.07 W32/Trojan.BPOL[/B]
Avast 4.8.1335.0 2009.04.06 -
AVG 8.5.0.285 2009.04.07 -
[B]BitDefender 7.2 2009.04.07 Trojan.Horse.Pws.Ldpinch.DQY[/B]
CAT-QuickHeal 10.00 2009.04.06 -
[B]ClamAV 0.94.1 2009.04.07 Trojan.PWS.LdPinch.DQY
Comodo 1101 2009.04.06 Unclassified Malware
[/B]DrWeb 4.44.0.09170 2009.04.07 -
[B]eSafe 7.0.17.0 2009.04.06 Suspicious File
eTrust-Vet 31.6.6440 2009.04.07 Win32/VMalum.ABBN
F-Prot 4.4.4.56 2009.04.07 W32/Trojan.BPOL
[/B]F-Secure 8.0.14470.0 2009.04.07 -
[B]Fortinet 3.117.0.0 2009.04.07 PossibleThreat
GData 19 2009.04.07 Trojan.Horse.Pws.Ldpinch.DQY
Ikarus T3.1.1.49.0 2009.04.07 Trojan.Horse.Pws.Ldpinch.DQY
K7AntiVirus 7.10.694 2009.04.06 Trojan.Win32.Malware.1
[/B]Kaspersky 7.0.0.125 2009.04.07 -
[B]McAfee 5576 2009.04.06 Generic.dx
McAfee+Artemis 5576 2009.04.06 Generic.dx
[/B]McAfee-GW-Edition 6.7.6 2009.04.06 -
Microsoft 1.4502 2009.04.07 -
NOD32 3991 2009.04.07 -
[B]Norman 6.00.06 2009.04.06 W32/LdPinch.IYH
nProtect 2009.1.8.0 2009.04.07 Trojan-PWS/W32.LdPinch.26112.C
[/B]Panda 10.0.0.14 2009.04.06 -
[B]PCTools 4.4.2.0 2009.04.06 Trojan.Agent.DXEG
Prevx1 V2 2009.04.07 High Risk Information Stealer
Rising 21.24.10.00 2009.04.07 Trojan.PSW.Win32.LdPinch.rat
[/B]Sophos 4.40.0 2009.04.07 -
[B]Sunbelt 3.2.1858.2 2009.04.06 Trojan.Horse.Pws.Ldpinch.DQY
Symantec 1.4.4.12 2009.04.07 Infostealer
[/B]TheHacker 6.3.4.0.303 2009.04.07 -
[B]TrendMicro 8.700.0.1004 2009.04.07 PAK_Generic.001[/B]
VBA32 3.12.10.2 2009.04.07 -
ViRobot 2009.4.7.1681 2009.04.07 -
[B]VirusBuster 4.6.5.0 2009.04.06 Trojan.Agent.DXEG[/B]
[/CODE]
Дополнительная информация
File size: 26112 bytes
MD5...: 32f93c22f79f6658721e82e55f31006a
SHA1..: bbcd66ac2e2298f06d245c0c6ba6fa5ac7cb0857
SHA256: bdfa01e0831c33b13b39bf8fb810bb2b401f703cccb9f5a590ae89b74af9973f
SHA512: 3de27ce23db3fa0bf6bb0363fe2bc3d52d6df9c728456f8496cfc8f83eb9a7c8<BR>e5b14d8a964bfcfacf008b3d9f81a3817f75d08ca249e891b1886e00246bfd20
ssdeep: 384:vZmwHCvIsmQsp3dLTouFEVimS6LTswyuYjNTlcZSGhOFXSb9n7:vZmVveQsZ<BR>dvxIi/biAFCbp<BR>
PEiD..: -
-
Файл avz00001.dta получен 2009.04.08 14:10:46 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[CODE]
Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.08 -
AhnLab-V3 5.0.0.2 2009.04.08 -
AntiVir 7.9.0.138 2009.04.08 -
[B]Antiy-AVL 2.0.3.1 2009.04.08 Backdoor/Win32.KeyStart
Authentium 5.1.2.4 2009.04.08 W32/Damaged_File.gen!Eldorado[/B]
Avast 4.8.1335.0 2009.04.07 -
AVG 8.5.0.285 2009.04.08 -
BitDefender 7.2 2009.04.08 -
CAT-QuickHeal 10.00 2009.04.08 -
ClamAV 0.94.1 2009.04.08 -
Comodo 1105 2009.04.08 -
[B]DrWeb 4.44.0.09170 2009.04.08 Trojan.DownLoad.31797
eSafe 7.0.17.0 2009.04.07 Suspicious File[/B]
eTrust-Vet 31.6.6444 2009.04.08 -
[B]F-Prot 4.4.4.56 2009.04.08 W32/Damaged_File.gen!Eldorado[/B]
F-Secure 8.0.14470.0 2009.04.08 -
Fortinet 3.117.0.0 2009.04.08 -
GData 19 2009.04.08 -
Ikarus T3.1.1.49.0 2009.04.08 -
K7AntiVirus 7.10.695 2009.04.07 -
Kaspersky 7.0.0.125 2009.04.08 -
McAfee 5577 2009.04.07 -
McAfee+Artemis 5577 2009.04.07 -
[B]McAfee-GW-Edition 6.7.6 2009.04.08 Win32.Malware.dam (suspicious)[/B]
Microsoft 1.4502 2009.04.08 -
NOD32 3994 2009.04.07 -
Norman 6.00.06 2009.04.08 -
nProtect 2009.1.8.0 2009.04.08 -
Panda 10.0.0.14 2009.04.07 -
PCTools 4.4.2.0 2009.04.07 -
Prevx1 V2 2009.04.08 -
Rising 21.24.22.00 2009.04.08 -
Sophos 4.40.0 2009.04.08 -
[B]Sunbelt 3.2.1858.2 2009.04.08 VIPRE.Suspicious
Symantec 1.4.4.12 2009.04.08 Suspicious.MH690.A[/B]
TheHacker 6.3.4.0.303 2009.04.08 -
TrendMicro 8.700.0.1004 2009.04.08 -
VBA32 3.12.10.2 2009.04.08 -
ViRobot 2009.4.7.1684 2009.04.08 -
VirusBuster 4.6.5.0 2009.04.07 -
[/CODE]
Дополнительная информация
File size: 70722 bytes
MD5...: 88b7e71e3f16a3b1951af96a4fcd0a3b
SHA1..: 78ce49106664b3f0423d6352c26947a496dbe72b
SHA256: 62c390e08ab7168b88eb9701a72d26bb0fe67e47ca9a7aaf3a612be1d5bcf102
SHA512: f75b65fd88017a4b0b92ffbdb58005dc071c660f88e49a9a894902ca455226d1
9d7a6292da7ed63aaddab8758f8d2678b348be9cdf0c1ecc834b0baaa9413986
ssdeep: 1536:Q6ybwt5R4uxGUex9IElFoEyPo0JF4W7R2ltXD+LKibO:CbwtL4uwbxCStyv
FRglUE
PEiD..: -
[size="1"][color="#666686"][B][I]Добавлено через 3 минуты[/I][/B][/color][/size]
Файл avz00002.dta получен 2009.04.08 14:10:55 (CET)
[CODE]
Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.08 Trojan-Spy.Finanz.J!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.08 -
[B]AntiVir 7.9.0.138 2009.04.08 TR/Dldr.Age.orh.1.A[/B]
Antiy-AVL 2.0.3.1 2009.04.08 -
Authentium 5.1.2.4 2009.04.08 -
Avast 4.8.1335.0 2009.04.07 -
AVG 8.5.0.285 2009.04.08 -
BitDefender 7.2 2009.04.08 -
CAT-QuickHeal 10.00 2009.04.08 -
ClamAV 0.94.1 2009.04.08 -
Comodo 1105 2009.04.08 -
DrWeb 4.44.0.09170 2009.04.08 -
[B]eSafe 7.0.17.0 2009.04.07 Suspicious File[/B]
eTrust-Vet 31.6.6444 2009.04.08 -
F-Prot 4.4.4.56 2009.04.08 -
F-Secure 8.0.14470.0 2009.04.08 -
Fortinet 3.117.0.0 2009.04.08 -
GData 19 2009.04.08 -
[B]Ikarus T3.1.1.49.0 2009.04.08 Trojan-Spy.Finanz.J[/B]
K7AntiVirus 7.10.695 2009.04.07 -
Kaspersky 7.0.0.125 2009.04.08 -
[B]McAfee 5577 2009.04.07 Downloader-BAR
McAfee+Artemis 5577 2009.04.07 Generic!Artemis
McAfee-GW-Edition 6.7.6 2009.04.08 Trojan.Dldr.Age.orh.1.A
Microsoft 1.4502 2009.04.08 TrojanDownloader:Win32/Slupim.B[/B]
NOD32 3994 2009.04.07 -
Norman 6.00.06 2009.04.08 -
nProtect 2009.1.8.0 2009.04.08 -
Panda 10.0.0.14 2009.04.07 -
PCTools 4.4.2.0 2009.04.07 -
[B]Prevx1 V2 2009.04.08 Medium Risk Malware[/B]
Rising 21.24.22.00 2009.04.08 -
[B]Sophos 4.40.0 2009.04.08 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.04.08 -
[B]Symantec 1.4.4.12 2009.04.08 Downloader[/B]
TheHacker 6.3.4.0.303 2009.04.08 -
[B]TrendMicro 8.700.0.1004 2009.04.08 PAK_Generic.001[/B]
VBA32 3.12.10.2 2009.04.08 -
ViRobot 2009.4.7.1684 2009.04.08 -
VirusBuster 4.6.5.0 2009.04.07 -
[/CODE]
Дополнительная информация
File size: 33280 bytes
MD5...: 9e1715c7898a8cd97a162711886989dc
SHA1..: 7777b0cc0bc5894aba0bbcf7bb76f501e58056dd
SHA256: 20adffebe69bf64ea0ec708335a357ff423258733bead565cc6489277beadfa7
SHA512: add645ddc6629446aab0313f6a4587a9887479be830e0417e3ddabcf3dd6f606<br>9ffd3c395c79e45e418f77df42344afef13895311ff7dcf17b8fcdc331a7a090
ssdeep: 768:MghekVD4bDLwkXL621bClvRt+ki4Xl5i/2AQxyBr:MWHVcbfjLh1bIptni4X<br>Li/2H<br>
PEiD..: -
[size="1"][color="#666686"][B][I]Добавлено через 2 минуты[/I][/B][/color][/size]
Файл avz00008.dta получен 2009.04.08 14:13:43 (CET)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.08 -
AhnLab-V3 5.0.0.2 2009.04.08 -
[B]AntiVir 7.9.0.138 2009.04.08 HEUR/Malware[/B]
Antiy-AVL 2.0.3.1 2009.04.08 -
Authentium 5.1.2.4 2009.04.08 -
Avast 4.8.1335.0 2009.04.07 -
AVG 8.5.0.285 2009.04.08 -
[B]BitDefender 7.2 2009.04.08 BehavesLike:Win32.ExplorerHijack[/B]
CAT-QuickHeal 10.00 2009.04.08 -
ClamAV 0.94.1 2009.04.08 -
Comodo 1105 2009.04.08 -
DrWeb 4.44.0.09170 2009.04.08 -
[B]eSafe 7.0.17.0 2009.04.07 Suspicious File[/B]
eTrust-Vet 31.6.6444 2009.04.08 -
F-Prot 4.4.4.56 2009.04.08 -
F-Secure 8.0.14470.0 2009.04.08 -
Fortinet 3.117.0.0 2009.04.08 -
[B]GData 19 2009.04.08 BehavesLike:Win32.ExplorerHijack[/B]
Ikarus T3.1.1.49.0 2009.04.08 -
K7AntiVirus 7.10.695 2009.04.07 -
[B]Kaspersky 7.0.0.125 2009.04.08 Heur.Trojan.Generic[/B]
McAfee 5577 2009.04.07 -
McAfee+Artemis 5577 2009.04.07 -
[B]McAfee-GW-Edition 6.7.6 2009.04.08 Heuristic.Malware[/B]
Microsoft 1.4502 2009.04.08 -
NOD32 3994 2009.04.07 -
Norman 6.00.06 2009.04.08 -
nProtect 2009.1.8.0 2009.04.08 -
Panda 10.0.0.14 2009.04.07 -
PCTools 4.4.2.0 2009.04.07 -
[B]Prevx1 V2 2009.04.08 High Risk Cloaked Malware[/B]
Rising 21.24.22.00 2009.04.08 -
Sophos 4.40.0 2009.04.08 -
Sunbelt 3.2.1858.2 2009.04.08 -
Symantec 1.4.4.12 2009.04.08 -
TheHacker 6.3.4.0.303 2009.04.08 -
[B]TrendMicro 8.700.0.1004 2009.04.08 PAK_Generic.001[/B]
VBA32 3.12.10.2 2009.04.08 -
ViRobot 2009.4.7.1684 2009.04.08 -
VirusBuster 4.6.5.0 2009.04.07 -
[/CODE]
Дополнительная информация
File size: 61952 bytes
MD5...: 6dc3e5662cfc21669bb56bc99ff80060
SHA1..: f054eade47d031d80e5dd2737442a014cf157433
SHA256: f63f22ed4d5ac8e7c6db26b17aeb8f7cb4c5994de1ba4867577bd63fdd5b0926
SHA512: 2b86681ef5cf71553da6a5834ad815f72fae38ed38fd691151d4c79d7f6ab3fe<br>ebf79e7834c4902dc08d00ede69f77019366dd7d22e8a1626897bf24bf18e11a
ssdeep: 1536:NBEb/fUusufovK9D0OJkncY3tzQuAPRjCenGkolgRA:NBEb/suNQA6nxt/A<br>pjCkXJu<br>
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
-
Файл __________.jar.jar получен 2009.04.08 17:25:21 (CET)
Текущий статус: закончено
Результат: 8/40 (20.00%)
[QUOTE]Результат: 8/40 (20%)
Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.08 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.08 -
[B]AntiVir 7.9.0.138 2009.04.08 JAVA/SMS.Konov.e
Antiy-AVL 2.0.3.1 2009.04.08 Trojan/J2ME.Konov[/B]
Authentium 5.1.2.4 2009.04.08 -
Avast 4.8.1335.0 2009.04.08 -
AVG 8.5.0.285 2009.04.08 -
BitDefender 7.2 2009.04.08 -
CAT-QuickHeal 10.00 2009.04.08 -
ClamAV 0.94.1 2009.04.08 -
Comodo 1105 2009.04.08 -
[B]DrWeb 4.44.0.09170 2009.04.08 Java.SMSSend.18[/B]
eSafe 7.0.17.0 2009.04.07 -
eTrust-Vet 31.6.6444 2009.04.08 -
F-Prot 4.4.4.56 2009.04.08 -
[B]F-Secure 8.0.14470.0 2009.04.08 Trojan-SMS.J2ME.Konov.e[/B]
Fortinet 3.117.0.0 2009.04.08 -
GData 19 2009.04.08 -
[B]Ikarus T3.1.1.49.0 2009.04.08 Trojan-SMS[/B]
K7AntiVirus 7.10.695 2009.04.07 -
[B]Kaspersky 7.0.0.125 2009.04.08 Trojan-SMS.J2ME.Konov.e[/B]
McAfee 5577 2009.04.07 -
McAfee+Artemis 5577 2009.04.07 -
McAfee-GW-Edition 6.7.6 2009.04.08 -
Microsoft 1.4502 2009.04.08 -
NOD32 3995 2009.04.08 -
Norman 6.00.06 2009.04.08 -
nProtect 2009.1.8.0 2009.04.08 -
Panda 10.0.0.14 2009.04.08 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.08 -
Rising 21.24.22.00 2009.04.08 -
Sophos 4.40.0 2009.04.08 -
Sunbelt 3.2.1858.2 2009.04.08 -
[B]Symantec 1.4.4.12 2009.04.08 Trojan Horse[/B]
TheHacker 6.3.4.0.303 2009.04.08 -
TrendMicro 8.700.0.1004 2009.04.08 -
VBA32 3.12.10.2 2009.04.08 -
ViRobot 2009.4.7.1684 2009.04.08 -
VirusBuster 4.6.5.0 2009.04.08 -[/QUOTE]
Дополнительная информация
File size: 2366 bytes
MD5...: bef6ca276e3cef380b163c22a119e14c
SHA1..: 6b81c2d01e9fe4dfded625e12be770d7bbdf952c
SHA256: 934fb9228051fa17ae23c39e614f636402f87f2b1bb886a997381a0964e2f475
SHA512: a217a183c5952e164e93045db0c03c5d26dfa25481b174a87c491bd835b155fa
64deb241673056fe5c14dc070666130c214d00b97bd499e26ee8b0be91f4e92c
ssdeep: 48:51FTQo0tOURs9y3VeiTEzrTnHOCmmJwLnDfTBEm7:XFTiOURs9qVeiT6THmX3
J
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
RDS...: NSRL Reference Data Set
-
-
Файл system32.vbs получен 2009.04.11 02:04:48 (CET)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: 16/40 (40%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.11 Trojan.VBS.KillFiles!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.10 -
[B]AntiVir 7.9.0.138 2009.04.10 VBS/KillFiles.U
Antiy-AVL 2.0.3.1 2009.04.10 Trojan/VBS.Disabler
Authentium 5.1.2.4 2009.04.10 VBS/KillFil.U
Avast 4.8.1335.0 2009.04.10 VBS:Zjuka-A
AVG 8.5.0.285 2009.04.10 VBS/Agent[/B]
BitDefender 7.2 2009.04.11 -
CAT-QuickHeal 10.00 2009.04.10 -
[B]ClamAV 0.94.1 2009.04.10 Trojan.VBS.Ejector[/B]
Comodo 1109 2009.04.10 -
[B]DrWeb 4.44.0.09170 2009.04.11 VBS.Corruptor.7[/B]
eSafe 7.0.17.0 2009.04.07 -
eTrust-Vet 31.6.6450 2009.04.11 -
[B]F-Prot 4.4.4.56 2009.04.10 VBS/KillFil.U
F-Secure 8.0.14470.0 2009.04.10 Trojan.VBS.Disabler.j[/B]
Fortinet 3.117.0.0 2009.04.10 -
[B]GData 19 2009.04.11 VBS:Zjuka-A
Ikarus T3.1.1.49.0 2009.04.11 Trojan.VBS.KillFiles[/B]
K7AntiVirus 7.10.698 2009.04.09 -
[B]Kaspersky 7.0.0.125 2009.04.11 Trojan.VBS.Disabler.j[/B]
McAfee 5580 2009.04.10 -
McAfee+Artemis 5580 2009.04.10 -
[B]McAfee-GW-Edition 6.7.6 2009.04.10 Script.KillFiles.U[/B]
Microsoft 1.4502 2009.04.10 -
[B]NOD32 4000 2009.04.10 VBS/Agent.D
Norman 6.00.06 2009.04.09 VBS/Agent.A[/B]
nProtect 2009.1.8.0 2009.04.10 -
Panda 10.0.0.14 2009.04.10 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.11 -
Rising 21.24.44.00 2009.04.10 -
Sophos 4.40.0 2009.04.11 -
Sunbelt 3.2.1858.2 2009.04.10 -
Symantec 1.4.4.12 2009.04.11 -
TheHacker 6.3.4.0.305 2009.04.10 -
TrendMicro 8.700.0.1004 2009.04.10 -
VBA32 3.12.10.2 2009.04.10 -
ViRobot 2009.4.10.1688 2009.04.10 -
VirusBuster 4.6.5.0 2009.04.10 -[/QUOTE]
Дополнительная информация
File size: 7554 bytes
MD5...: f990e831063777c40c6826eb49824986
SHA1..: cb901d7c022d02078cf76f319f5519e41cbd75ed
SHA256: fcac063882593e4809163985420da76021f8e4fe45a036b879b5f708bedeca8d
SHA512: 79a3bd8dd8d4c3e83202755b844b0b7d14d76911572dba7cbace3dcf131e2dd2
28f1a45243e5c5263332062b9456d114392f823287c23a60fa708d2de5ae0b1b
ssdeep: 96:unqEsuV2EsV2EFb2GRdU6MtMoas4rYiHn7feAYIc6CMlBz/fNIDIS5deIHyyG
Kq3:uH2/2IUNm4UqgMF0CHztc/0QJF
PEiD..: -
TrID..: File type identification
Unknown!
PEInfo: -
RDS...: NSRL Reference Data Set
Файл Datren.com получен 2009.04.11 02:07:53 (CET)
Текущий статус: Закончено
Результат: 11/39 (28.21%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.11 Trojan.BAT.KillFiles!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.10 -
[B]AntiVir 7.9.0.138 2009.04.10 BDS/Killfiles.FW
Antiy-AVL 2.0.3.1 2009.04.10 Trojan/BAT.KillFiles[/B]
Authentium 5.1.2.4 2009.04.10 -
Avast 4.8.1335.0 2009.04.10 -
AVG 8.5.0.285 2009.04.10 -
BitDefender 7.2 2009.04.11 -
CAT-QuickHeal 10.00 2009.04.10 -
ClamAV 0.94.1 2009.04.10 -
[B]Comodo 1109 2009.04.10 TrojWare.BAT.KillFiles.fw
DrWeb 4.44.0.09170 2009.04.11 Trojan.Gds.3318[/B]
eSafe 7.0.17.0 2009.04.07 -
eTrust-Vet 31.6.6450 2009.04.11 -
F-Prot 4.4.4.56 2009.04.10 -
Fortinet 3.117.0.0 2009.04.10 -
GData 19 2009.04.11 -
[B]Ikarus T3.1.1.49.0 2009.04.11 Trojan.BAT.KillFiles[/B]
K7AntiVirus 7.10.698 2009.04.09 -
[B]Kaspersky 7.0.0.125 2009.04.11 Trojan.BAT.KillFiles.fw[/B]
McAfee 5580 2009.04.10 -
McAfee+Artemis 5580 2009.04.10 -
[B]McAfee-GW-Edition 6.7.6 2009.04.10 Trojan.Backdoor.Killfiles.FW[/B]
Microsoft 1.4502 2009.04.10 -
NOD32 4000 2009.04.10 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.10 -
Panda 10.0.0.14 2009.04.10 -
PCTools 4.4.2.0 2009.04.08 -
[B]Prevx1 V2 2009.04.11 Medium Risk Malware[/B]
Rising 21.24.44.00 2009.04.10 -
Sophos 4.40.0 2009.04.11 -
Sunbelt 3.2.1858.2 2009.04.10 -
[B]Symantec 1.4.4.12 2009.04.11 Trojan Horse[/B]
TheHacker 6.3.4.0.305 2009.04.10 -
TrendMicro 8.700.0.1004 2009.04.10 -
VBA32 3.12.10.2 2009.04.10 -
[B]ViRobot 2009.4.10.1688 2009.04.10 Spyware.KillFiles.3318[/B]
VirusBuster 4.6.5.0 2009.04.10 -[/QUOTE]
-
Файл codec.exe получен 2009.04.11 20:26:58 (CET)
Текущий статус: Закончено
[QUOTE]Результат: 14/40 (35%)
Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.11 -
AhnLab-V3 5.0.0.2 2009.04.11 -
[B]AntiVir 7.9.0.138 2009.04.11 TR/Dldr.Agent.bqxq[/B]
Antiy-AVL 2.0.3.1 2009.04.11 -
Authentium 5.1.2.4 2009.04.11 -
Avast 4.8.1335.0 2009.04.10 -
[B]AVG 8.5.0.285 2009.04.11 Win32/Heur
BitDefender 7.2 2009.04.11 Trojan.Delf.PQY
CAT-QuickHeal 10.00 2009.04.10 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.10 -
Comodo 1110 2009.04.11 -
DrWeb 4.44.0.09170 2009.04.11 -
[B]eSafe 7.0.17.0 2009.04.07 Suspicious File[/B]
eTrust-Vet 31.6.6450 2009.04.11 -
F-Prot 4.4.4.56 2009.04.11 -
[B]F-Secure 8.0.14470.0 2009.04.11 Trojan-Downloader.Win32.Agent.bqxq[/B]
Fortinet 3.117.0.0 2009.04.11 -
[B]GData 19 2009.04.11 Trojan.Delf.PQY[/B]
Ikarus T3.1.1.49.0 2009.04.11 -
[B]K7AntiVirus 7.10.700 2009.04.11 Trojan-Downloader.Win32.Agent.bqxq
Kaspersky 7.0.0.125 2009.04.11 Trojan-Downloader.Win32.Agent.bqxq[/B]
McAfee 5581 2009.04.11 -
McAfee+Artemis 5581 2009.04.11 -
[B]McAfee-GW-Edition 6.7.6 2009.04.11 Trojan.Dldr.Agent.bqxq
Microsoft 1.4502 2009.04.11 TrojanDownloader:Win32/FakeRean[/B]
NOD32 4001 2009.04.11 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.11 -
Panda 10.0.0.14 2009.04.11 -
PCTools 4.4.2.0 2009.04.08 -
[B]Prevx1 V2 2009.04.11 Medium Risk Malware[/B]
Rising 21.24.52.00 2009.04.11 -
Sophos 4.40.0 2009.04.11 -
Sunbelt 3.2.1858.2 2009.04.11 -
[B]Symantec 1.4.4.12 2009.04.11 Downloader.MisleadApp
TheHacker 6.3.4.0.305 2009.04.11 Trojan/Downloader.Agent.bqxq[/B]
TrendMicro 8.700.0.1004 2009.04.10 -
VBA32 3.12.10.2 2009.04.10 -
ViRobot 2009.4.10.1688 2009.04.10 -
VirusBuster 4.6.5.0 2009.04.11 -[/QUOTE]
Дополнительная информация
File size: 106499 bytes
MD5...: 8aaa3a771b8d223ad587875dac6c82ac
SHA1..: 48416374c9f692b355ad50bd7ee7c41d866f1e7b
SHA256: 6d6368088c1f2e028342ddbf2409f2cf094b3e5ecedb3c4f59e13fd70c6c2b89
SHA512: a52dc8e212d714a3304adeeb7f8538afc1209a9796cd17e7cdd5e31b1443ccc6
c07816f893eb3effad1d8976ffa9453e743bb4d1b6ca2595698b0c2dbcceda50
ssdeep: 3072:j7EE/Iufd4dhGH2Ha3sFVsmT9IN/ai9X3kuy:j7E+fdxyssLBYM
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
[size="1"][color="#666686"][B][I]Добавлено через 6 часов 3 минуты[/I][/B][/color][/size]
Файл _________________________________ получен 2009.04.12 01:51:12 (CET)
Текущий статус: Закончено
Результат: 17/40 (42.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.12 Trojan-Clicker.JS.Agent.h!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.11 -
[B]AntiVir 7.9.0.138 2009.04.11 HTML/Crypted.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.11 -
Authentium 5.1.2.4 2009.04.11 -
[B]Avast 4.8.1335.0 2009.04.11 HTML:Iframe-inf
AVG 8.5.0.285 2009.04.11 JS/Downloader.Agen[/B]t
BitDefender 7.2 2009.04.12 -
[B]CAT-QuickHeal 10.00 2009.04.10 JS/Agent.H1[/B]
ClamAV 0.94.1 2009.04.10 -
Comodo 1110 2009.04.11 -
DrWeb 4.44.0.09170 2009.04.11 -
[B]eSafe 7.0.17.0 2009.04.07 JS.Iframe.en[/B]
eTrust-Vet 31.6.6450 2009.04.11 -
F-Prot 4.4.4.56 2009.04.11 -
[B]F-Secure 8.0.14470.0 2009.04.11 Trojan-Clicker.JS.Agent.h[/B]
Fortinet 3.117.0.0 2009.04.11 -
[B]GData 19 2009.04.12 HTML:Iframe-inf
Ikarus T3.1.1.49.0 2009.04.12 Trojan-Clicker.JS.Agent.h[/B]
K7AntiVirus 7.10.700 2009.04.11 -
[B]Kaspersky 7.0.0.125 2009.04.12 Trojan-Clicker.JS.Agent.h
McAfee 5581 2009.04.11 JS/Downloader.gen
McAfee+Artemis 5581 2009.04.11 JS/Downloader.gen
McAfee-GW-Edition 6.7.6 2009.04.11 Heuristic.Script.Crypted
Microsoft 1.4502 2009.04.11 TrojanDownloader:JS/Psyme.gen[/B]
NOD32 4002 2009.04.11 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.11 -
Panda 10.0.0.14 2009.04.11 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.12 -
Rising 21.24.52.00 2009.04.11 -
[B]Sophos 4.40.0 2009.04.11 Mal/ObfJS-AB
Sunbelt 3.2.1858.2 2009.04.11 Exploit.HTML.IFrame.gen (v)[/B]
Symantec 1.4.4.12 2009.04.12 -
TheHacker 6.3.4.0.305 2009.04.11 -
[B]TrendMicro 8.700.0.1004 2009.04.10 Mal_Hifrm-2[/B]
VBA32 3.12.10.2 2009.04.10 -
ViRobot 2009.4.10.1688 2009.04.10 -
VirusBuster 4.6.5.0 2009.04.11 -[/QUOTE]
Дополнительная информация
File size: 1731 bytes
MD5...: e7d92c8f8fa5b347dd1cf068501e0eea
SHA1..: 623912671069117568d20b850b3424f46f83063a
SHA256: edc7fe75ef8392fad84b256e6145b7eba31017a32eab01f5b326ea288c523b6c
SHA512: b6b2a2fd237b0e6f5123aed7b0ffd3e343b9918d936cc76424ece6ffa143c3e0
924c634f5eaf5c0d1e423cfeb25cd22ecce68f1f90b7eccd2a0e475761be18f5
ssdeep: 48:f+LVIrRo7kB+swHyfMI3/nWlBY08rMWFQ+ez:fG8R/nkyL3PWMMWwz
PEiD..: -
TrID..: File type identification
HyperText Markup Language (100.0%)
PEInfo: -
RDS...: NSRL Reference Data Set
-
Файл a получен 2009.04.12 05:51:23 (CET)
Результат: 11/40 (27.5%)
Форматированные
Печать результатов [code]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.12[/B] [B]Trojan-Downloader.JS.Psyme.cv!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.11 -
[B]AntiVir 7.9.0.138 2009.04.11[/B] [B]HTML/Crypted.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.12 -
Authentium 5.1.2.4 2009.04.11 -
Avast 4.8.1335.0 2009.04.11 -
[B]AVG 8.5.0.285 2009.04.11[/B] [B]JS/Downloader.Agent[/B]
BitDefender 7.2 2009.04.12 -
CAT-QuickHeal 10.00 2009.04.10 -
ClamAV 0.94.1 2009.04.12 -
Comodo 1110 2009.04.11 -
[B]DrWeb 4.44.0.09170 2009.04.11[/B] [B]VBS.Psyme.377[/B]
eSafe 7.0.17.0 2009.04.07 -
eTrust-Vet 31.6.6450 2009.04.11 -
F-Prot 4.4.4.56 2009.04.11 -
[B]F-Secure 8.0.14470.0 2009.04.11[/B] [B]Trojan-Downloader.JS.Iframe.arf[/B]
Fortinet 3.117.0.0 2009.04.11 -
GData 19 2009.04.12 -
[B]Ikarus T3.1.1.49.0 2009.04.12[/B] [B]Trojan-Downloader.JS.Psyme.cv[/B]
K7AntiVirus 7.10.700 2009.04.11 -
[B]Kaspersky 7.0.0.125 2009.04.12[/B] [B]Trojan-Downloader.JS.Iframe.arf[/B]
[B]McAfee 5581 2009.04.11[/B] [B]JS/Wonka[/B]
[B]McAfee+Artemis 5581 2009.04.11[/B] [B]JS/Wonka[/B]
[B]McAfee-GW-Edition 6.7.6 2009.04.11[/B] [B]Heuristic.Script.Crypted[/B]
Microsoft 1.4502 2009.04.11 -
NOD32 4002 2009.04.11 -
Norman 6.00.06 2009.04.09 -
nProtect 2009.1.8.0 2009.04.12 -
Panda 10.0.0.14 2009.04.11 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.12 -
Rising 21.24.60.00 2009.04.12 -
Sophos 4.40.0 2009.04.12 -
[B]Sunbelt 3.2.1858.2 2009.04.11[/B] [B]Trojan-Clicker.HTML.IFrame.gen (v)[/B]
Symantec 1.4.4.12 2009.04.12 -
TheHacker 6.3.4.0.305 2009.04.11 -
TrendMicro 8.700.0.1004 2009.04.10 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.10.1688 2009.04.10 -
VirusBuster 4.6.5.0 2009.04.11 -[/code]
File size: 1549 bytes
MD5...: 7f4e8243134674c085a634ac5e55f99a
SHA1..: 2e45e93b83d33f93dc8bc1842f8f64647925be23
SHA256: ef507f7328beb544db81d52935d982c67099a6874c39bfafaf10acedebbe50e3
SHA512: 571344b99bb358b4cbbbc11480c5702143bbd54f2e580beda3e8586f157cae4e
ad0fe3c6d05b3141b7c52e96127ff70d2df7d53e1fef6e815cf435d347150bea
ssdeep: 24:gcWnHtnI0dNbeYh5zox64JWTXBU7Me49kCqvzocc7TvQ3ppnEGWYWSjhHQG1Q
/NV:gc4IaxeepoLWTXB09LozX4U7YHX1QlVj
PEiD..: -
TrID..: File type identification
HyperText Markup Language (100.0%)
PEInfo: -
RDS...: NSRL Reference Data Set
-
Прислали ссылку в ICQ
[QUOTE]Привет!Новый Jimm c новыми функциями и уменьшенным потреблением
траффика.[/QUOTE]
File Jimm_aspro_FIX.jar received on 04.13.2009 17:57:20 (CET)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.0.0.101 2009.04.13 Riskware.RiskTool.J2ME!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.13 -
AntiVir 7.9.0.138 2009.04.13 -
Antiy-AVL 2.0.3.1 2009.04.13 -
Authentium 5.1.2.4 2009.04.13 -
Avast 4.8.1335.0 2009.04.13 -
AVG 8.5.0.285 2009.04.13 -
BitDefender 7.2 2009.04.13 -
CAT-QuickHeal 10.00 2009.04.13 -
ClamAV 0.94.1 2009.04.13 -
Comodo 1112 2009.04.13 -
DrWeb 4.44.0.09170 2009.04.13 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6453 2009.04.13 -
F-Prot 4.4.4.56 2009.04.11 -
[B]F-Secure 8.0.14470.0 2009.04.13 RiskTool.J2ME.SMSreg.b[/B]
Fortinet 3.117.0.0 2009.04.13 -
GData 19 2009.04.13 -
[B]Ikarus T3.1.1.49.0 2009.04.13 not-a-virus:RiskTool.J2ME[/B]
K7AntiVirus 7.10.700 2009.04.11 -
[B]Kaspersky 7.0.0.125 2009.04.13 not-a-virus:RiskTool.J2ME.SMSreg.b[/B]
McAfee 5583 2009.04.13 -
McAfee+Artemis 5583 2009.04.13 -
McAfee-GW-Edition 6.7.6 2009.04.13 -
Microsoft 1.4502 2009.04.13 -
NOD32 4004 2009.04.13 -
Norman 6.00.06 2009.04.13 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.13 -
PCTools 4.4.2.0 2009.04.08 -
Prevx1 V2 2009.04.13 -
Rising 21.25.04.00 2009.04.13 -
Sophos 4.40.0 2009.04.13 -
Sunbelt 3.2.1858.2 2009.04.12 -
Symantec 1.4.4.12 2009.04.13 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.13 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.13.1690 2009.04.13 -
VirusBuster 4.6.5.0 2009.04.12 -[/CODE]
Additional information
File size: 115340 bytes
MD5...: 363e6ac5d28abd06ac0bd7c4c1b80eb9
SHA1..: 3e42a10bd76253b3ac8c8b60aadff65489311c4a
SHA256: 313529b483e47b9f3cf6e49503fc9abba0b4f94f675b6d9a82ac24511783ef1f
SHA512: 0c1697a5000ce5941b15090564d62abfd500c363363edf70fa02df20ce2f5767
5c4f886b1635fd0381195f54a7df88fe17162bf99695374f8e3a1e58f3a6abca
ssdeep: 1536:0zETyjVPxLgXLYECpYJX6ihRwZUMwnImJzAWZ6pPI65lql2turtVLG36uM5
Dw3OW:NEikXQqih6ZUxnpJM26FlqwwvLGe5057
PEiD..: -
TrID..: File type identification
Java Archive (78.3%)
ZIP compressed archive (21.6%)
PEInfo: -
RDS...: NSRL Reference Data Set
А теперь ещё и предложение скачать DrWeb для мобильного телефона.:)
File DrWeb.jar received on 04.13.2009 18:30:16 (CET)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.0.0.101 2009.04.13 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.13 -
[B]AntiVir 7.9.0.138 2009.04.13 JAVA/SMS.Smaram.C[/B]
Antiy-AVL 2.0.3.1 2009.04.13 -
Authentium 5.1.2.4 2009.04.13 -
[B]Avast 4.8.1335.0 2009.04.13 Other:Malware-gen[/B]
AVG 8.5.0.285 2009.04.13 -
BitDefender 7.2 2009.04.13 -
CAT-QuickHeal 10.00 2009.04.13 -
ClamAV 0.94.1 2009.04.13 -
Comodo 1112 2009.04.13 -
[B]DrWeb 4.44.0.09170 2009.04.13 Java.SMSSend.5[/B]
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6453 2009.04.13 -
F-Prot 4.4.4.56 2009.04.13 -
[B]F-Secure 8.0.14470.0 2009.04.13 Trojan-SMS.J2ME.Smarm.c[/B]
Fortinet 3.117.0.0 2009.04.13 -
[B]GData 19 2009.04.13 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.04.13 Trojan-SMS[/B]
K7AntiVirus 7.10.700 2009.04.11 -
[B]Kaspersky 7.0.0.125 2009.04.13 Trojan-SMS.J2ME.Smarm.c[/B]
McAfee 5583 2009.04.13 -
McAfee+Artemis 5583 2009.04.13 -
[B]McAfee-GW-Edition 6.7.6 2009.04.13 Java.SMS.Smaram.C[/B]
Microsoft 1.4502 2009.04.13 -
NOD32 4004 2009.04.13 -
Norman 6.00.06 2009.04.13 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.13 -
PCTools 4.4.2.0 2009.04.08 -
[B]Prevx1 V2 2009.04.13 High Risk Cloaked Malware[/B]
Rising 21.25.04.00 2009.04.13 -
Sophos 4.40.0 2009.04.13 -
Sunbelt 3.2.1858.2 2009.04.12 -
Symantec 1.4.4.12 2009.04.13 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.13 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.13.1690 2009.04.13 -
VirusBuster 4.6.5.0 2009.04.12 -[/CODE]
Additional information
File size: 106796 bytes
MD5...: 8ba96aa0b0d72cd433e6716522cf03f9
SHA1..: 35a2670378c8c93adbbe9f53beaae73d0f0a0316
SHA256: 42201f0de9e0157ef05cf891c814ce9364706f8d05e518e93734eb18d6499c0a
SHA512: c0f2463a41c81a5befaacf3130dfd26b6c7ac27f09abc4cfd1163300eafaf5d8
31a20d72ab0ec6194e5e0b27236448ba83413062b206c308aa9ce29f5eaa14eb
ssdeep: 1536:opV51puBccBcaBcEBcSBccBch4BcdWBchABc9uBchIBc7U:V1blblRD5jxQ
U
PEiD..: -
TrID..: File type identification
Java Archive (78.3%)
ZIP compressed archive (21.6%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
RDS...: NSRL Reference Data Set
-
Файл jimm.jar получен 2009.04.14 13:44:53 (CET)
Текущий статус: закончено
Результат: 9/40 (22.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.14 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.14 -
[B]AntiVir 7.9.0.138 2009.04.14 JAVA/SMS.Konov.e
Antiy-AVL 2.0.3.1 2009.04.14 Trojan/J2ME.Konov[/B]
Authentium 5.1.2.4 2009.04.14 -
Avast 4.8.1335.0 2009.04.13 -
AVG 8.5.0.285 2009.04.14 -
BitDefender 7.2 2009.04.14 -
CAT-QuickHeal 10.00 2009.04.14 -
ClamAV 0.94.1 2009.04.14 -
Comodo 1113 2009.04.14 -
[B]DrWeb 4.44.0.09170 2009.04.14 Java.SMSSend.18[/B]
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.14 -
F-Secure 8.0.14470.0 2009.04.14 Trojan-SMS.J2ME.Konov.e
Fortinet 3.117.0.0 2009.04.14 -
GData 19 2009.04.14 -
[B]Ikarus T3.1.1.49.0 2009.04.14 Trojan-SMS[/B]
K7AntiVirus 7.10.700 2009.04.11 -
[B]Kaspersky 7.0.0.125 2009.04.14 Trojan-SMS.J2ME.Konov.e[/B]
McAfee 5583 2009.04.13 -
McAfee+Artemis 5583 2009.04.13 -
[B]McAfee-GW-Edition 6.7.6 2009.04.14 Java.SMS.Konov.e[/B]
Microsoft 1.4502 2009.04.14 -
NOD32 4006 2009.04.14 -
Norman 6.00.06 2009.04.14 -
nProtect 2009.1.8.0 2009.04.13 -
Panda 10.0.0.14 2009.04.14 -
PCTools 4.4.2.0 2009.04.14 -
Prevx1 V2 2009.04.14 -
Rising 21.25.12.00 2009.04.14 -
Sophos 4.40.0 2009.04.14 -
Sunbelt 3.2.1858.2 2009.04.13 -
[B]Symantec 1.4.4.12 2009.04.14 Trojan Horse[/B]
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.14 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.14.1692 2009.04.14 -
VirusBuster 4.6.5.0 2009.04.13 -[/QUOTE]
Дополнительная информация
File size: 122288 bytes
MD5...: 85ad202dc5f11d4112fbb8a3b7e2d41a
SHA1..: 63973875559fa56608c33cb076931b0191c2f803
SHA256: cb3e4f6b10b6a6a0cc24ac7a2c8d85049a17b2921c2c41095cfd77b8931742dc
SHA512: 54eb4f94831464c7094ff814025e55e26ecf41ff9c4754216e54469c3979cab1
bf59204688a0ad571edde3574715cf39d7b9f6618cf64545659561faecf0cd30
ssdeep: 3072:WXb2OSN/AAdIHggYmoahfEY8EwO9CDVJeDLHSOQ4u31lifHZ:Wr2NN/VIAr
xUFZcJUL3Glih
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
RDS...: NSRL Reference Data Set
[size="1"][color="#666686"][B][I]Добавлено через 1 час 11 минут[/I][/B][/color][/size]
Файл servises.exe получен 2009.04.14 15:03:46 (CET)
Текущий статус: закончено
Результат: 6/40 (15%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.14 -
AhnLab-V3 5.0.0.2 2009.04.14 -
AntiVir 7.9.0.138 2009.04.14 -
Antiy-AVL 2.0.3.1 2009.04.14 -
Authentium 5.1.2.4 2009.04.14 -
Avast 4.8.1335.0 2009.04.14 -
AVG 8.5.0.285 2009.04.14 -
BitDefender 7.2 2009.04.14 -
CAT-QuickHeal 10.00 2009.04.14 -
ClamAV 0.94.1 2009.04.14 -
Comodo 1113 2009.04.14 -
DrWeb 4.44.0.09170 2009.04.14 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.14 -
F-Secure 8.0.14470.0 2009.04.14 -
Fortinet 3.117.0.0 2009.04.14 -
GData 19 2009.04.14 -
Ikarus T3.1.1.49.0 2009.04.14 -
K7AntiVirus 7.10.700 2009.04.11 -
Kaspersky 7.0.0.125 2009.04.14 -
[B]McAfee 5583 2009.04.13 Spam-Mailbot.h.gen.a
McAfee+Artemis 5583 2009.04.13 Spam-Mailbot.h.gen.a[/B]
McAfee-GW-Edition 6.7.6 2009.04.14 -
[B]Microsoft 1.4502 2009.04.14 Spammer:Win32/Tedroo.I
NOD32 4006 2009.04.14 a variant of Win32/Kryptik.MS[/B]
Norman 6.00.06 2009.04.14 -
nProtect 2009.1.8.0 2009.04.14 -
Panda 10.0.0.14 2009.04.14 -
PCTools 4.4.2.0 2009.04.14 -
[B]Prevx1 V2 2009.04.14 Medium Risk Malware[/B]
Rising 21.25.14.00 2009.04.14 -
[B]Sophos 4.40.0 2009.04.14 Mal/WaledPak-D[/B]
Sunbelt 3.2.1858.2 2009.04.13 -
Symantec 1.4.4.12 2009.04.14 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.14 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.14.1692 2009.04.14 -
VirusBuster 4.6.5.0 2009.04.13 -[/QUOTE]
Дополнительная информация
File size: 46080 bytes
MD5...: e672ffffe0affb7d6f04669dde24f606
SHA1..: e78332688cfa8a62ec9811eaef67f995ad0b1410
SHA256: 855c5b31d7461dd6aad9bd5cd8b6d7d589f524a76daba9679475aaa7a498d00d
SHA512: cbbdf166091a4a71c4585a52eaa9322c209103e95ada66ccf0e71eefd95c0a54
9106dcfa78f83de1bf5f754cd11dfeff0a7b68ee838b15c961745ea903ea7bae
ssdeep: 768:biaOvljgyncACeMCqwbcTXEOIrxHvz6n53sYdHYIIFbkrUrZih6dT:9Oviyn
cAzLcXEOk6nZ/HYnlkiNZ
PEiD..: -
TrID..: File type identification
Windows Screen Saver (37.1%)
Win32 Executable Generic (24.1%)
Win32 Dynamic Link Library (generic) (21.4%)
Clipper DOS Executable (5.7%)
Generic Win/DOS Executable (5.6%)
PEInfo: PE Structure information
-
пинчеподобная малварь
File ghost.exe received on 04.14.2009 17:25:45 (CET)
Current status: finished
Result: 6/40 (15%)
[QUOTE]
Antivirus Version Last Update Result
[B]a-squared 4.0.0.101 2009.04.14 Riskware.Win32.VBInject!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.14 -
AntiVir 7.9.0.138 2009.04.14 -
Antiy-AVL 2.0.3.1 2009.04.14 -
Authentium 5.1.2.4 2009.04.14 -
Avast 4.8.1335.0 2009.04.14 -
AVG 8.5.0.285 2009.04.14 -
BitDefender 7.2 2009.04.14 -
[B]CAT-QuickHeal 10.00 2009.04.14 Win32.Trojan.Agent.895988a9[/B]
ClamAV 0.94.1 2009.04.14 -
Comodo 1113 2009.04.14 -
DrWeb 4.44.0.09170 2009.04.14 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.14 -
F-Secure 8.0.14470.0 2009.04.14 -
Fortinet 3.117.0.0 2009.04.14 -
GData 19 2009.04.14 -
[B]Ikarus T3.1.1.49.0 2009.04.14 VirTool.Win32.VBInject[/B]
K7AntiVirus 7.10.700 2009.04.11 -
Kaspersky 7.0.0.125 2009.04.14 -
McAfee 5584 2009.04.14 -
McAfee+Artemis 5583 2009.04.13 -
McAfee-GW-Edition 6.7.6 2009.04.14 -
[B]Microsoft 1.4502 2009.04.14 VirTool:Win32/VBInject.AE[/B]
[B]NOD32 4006 2009.04.14 a variant of Win32/Injector.MT[/B]
Norman 6.00.06 2009.04.14 -
nProtect 2009.1.8.0 2009.04.14 -
Panda 10.0.0.14 2009.04.14 -
PCTools 4.4.2.0 2009.04.14 -
[B]Prevx1 V2 2009.04.14 Medium Risk Malware[/B]
Rising 21.25.14.00 2009.04.14 -
Sophos 4.40.0 2009.04.14 -
Sunbelt 3.2.1858.2 2009.04.13 -
Symantec 1.4.4.12 2009.04.14 -
TheHacker 6.3.4.0.306 2009.04.12 -
TrendMicro 8.700.0.1004 2009.04.14 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.14.1692 2009.04.14 -
VirusBuster 4.6.5.0 2009.04.14 -
[/QUOTE]
Additional information
File size: 230565 bytes
MD5...: 762d7e4a2361107cf0c189c6f672f3cf
SHA1..: 0995f54b4a4a5c2843b020181485e122a23daa9f
SHA256: 8dfa1ee325c77a9cdb88b1a3315c761f030c66988db5ed2cb18cbe3b0fc448cb
SHA512: 93067dd4ad8cf1367a281a576c2775fa766b7b373878f741c4e8200fd0f0ab47
6f541395f605433b4ee7f66235a8f82f164b0f987ba9f54bc3978bb0da075293
-
Файл xvidDecoder59.exe получен 2009.04.14 22:39:46 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.14 Trojan-Dropper.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.14 -
[B]AntiVir 7.9.0.143 2009.04.14 TR/Drop.Agent.amer[/B]
Antiy-AVL 2.0.3.1 2009.04.14 -
Authentium 5.1.2.4 2009.04.14 -
[B]Avast 4.8.1335.0 2009.04.14 Win32:Trojan-gen {Other}[/B]
AVG 8.5.0.285 2009.04.14 -
BitDefender 7.2 2009.04.14 -
[B]CAT-QuickHeal 10.00 2009.04.14 TrojanDropper.Agent.amer[/B]
ClamAV 0.94.1 2009.04.14 -
Comodo 1113 2009.04.14 -
[B]DrWeb 4.44.0.09170 2009.04.14 Trojan.Winlock.24[/B]
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.14 -
[B]F-Secure 8.0.14470.0 2009.04.14 Trojan-Dropper.Win32.Agent.amer
Fortinet 3.117.0.0 2009.04.14 W32/Agent.AMER!tr
GData 19 2009.04.14 Win32:Trojan-gen {Other}[/B]
[B]Ikarus T3.1.1.49.0 2009.04.14 Trojan-Dropper.Agent
K7AntiVirus 7.10.703 2009.04.14 Trojan-Dropper.Win32.Agent.amer
Kaspersky 7.0.0.125 2009.04.14 Trojan-Dropper.Win32.Agent.amer[/B]
McAfee 5584 2009.04.14 -
McAfee+Artemis 5584 2009.04.14 -
[B]McAfee-GW-Edition 6.7.6 2009.04.14 Trojan.Drop.Agent.amer[/B]
Microsoft 1.4502 2009.04.14 -
NOD32 4007 2009.04.14 -
Norman 6.00.06 2009.04.14 -
nProtect 2009.1.8.0 2009.04.14 -
[B]Panda 10.0.0.14 2009.04.14 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.04.14 -
Prevx1 V2 2009.04.14 -
Rising 21.25.14.00 2009.04.14 -
Sophos 4.40.0 2009.04.14 -
Sunbelt 3.2.1858.2 2009.04.14 -
[B]Symantec 1.4.4.12 2009.04.14 Trojan Horse
TheHacker 6.3.4.0.306 2009.04.12 Trojan/Dropper.Agent.amer[/B]
TrendMicro 8.700.0.1004 2009.04.14 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.14.1692 2009.04.14 -
VirusBuster 4.6.5.0 2009.04.14 -[/QUOTE]
Дополнительная информация
File size: 74752 bytes
MD5...: 272e019cfb9bc49fe2187943e53a0c61
SHA1..: bdba188df500921fa9f91b044ac92830564052eb
SHA256: a629deefac8e0ab884da43e231950ac9f19df5961766729477103e03e93ac51d
SHA512: 1959909f8ea3af74d818fc734f8f5edc239cd86c2bcb61728b94c38ceb6173e5
30243ff328f82963ccfd1d57589f11b76699102f2e8370a51fde8e90d789707f
ssdeep: 1536:W7XDQ6Ch22bqaKNOlzX7g9PUOUukwZ7gU47S0o/S0:W7XDC222XNOlX7WUG
eUSm/
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
-
Файл setup.exe получен 2009.04.15 14:24:56 (CET)
Текущий статус: закончено
Результат: 13/39 (33.34%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.15 Trojan.Win32.Vaklik!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.15 -
[B]AntiVir 7.9.0.143 2009.04.15 ADSPY/AdSpy.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.15 -
[B]Authentium 5.1.2.4 2009.04.14 W32/FakeAlert.4!Generic[/B]
Avast 4.8.1335.0 2009.04.15 -
AVG 8.5.0.287 2009.04.15 -
BitDefender 7.2 2009.04.15 -
CAT-QuickHeal 10.00 2009.04.15 -
ClamAV 0.94.1 2009.04.15 -
Comodo 1115 2009.04.15 -
DrWeb 4.44.0.09170 2009.04.15 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
[B]F-Prot 4.4.4.56 2009.04.14 W32/FakeAlert.4!Generic[/B]
F-Secure 8.0.14470.0 2009.04.15 -
Fortinet 3.117.0.0 2009.04.15 -
GData 19 2009.04.15 -
[B]Ikarus T3.1.1.49.0 2009.04.15 Trojan.Win32.Vaklik[/B]
K7AntiVirus 7.10.704 2009.04.15 -
Kaspersky 7.0.0.125 2009.04.15 -
[B]McAfee 5584 2009.04.14 FakeAlert-BY
McAfee+Artemis 5584 2009.04.14 FakeAlert-BY[/B]
[B]McAfee-GW-Edition 6.7.6 2009.04.15 Ad-Spyware.AdSpy.Gen
Microsoft 1.4502 2009.04.15 TrojanDownloader:Win32/Renos.HL
NOD32 4010 2009.04.15 Win32/Adware.MSAntispyware2009[/B]
Norman 6.00.06 2009.04.14 -
nProtect 2009.1.8.0 2009.04.15 -
Panda 10.0.0.14 2009.04.14 -
PCTools 4.4.2.0 2009.04.14 -
Prevx1 V2 2009.04.15 -
[B]Rising 21.25.23.00 2009.04.15 Packer.Win32.UnkPacker.a
Sophos 4.40.0 2009.04.15 Mal/FakeAV-AH
Sunbelt 3.2.1858.2 2009.04.15 MSAntispyware 2009 (v)[/B]
Symantec 1.4.4.12 2009.04.15 -
TheHacker 6.3.4.0.309 2009.04.15 -
TrendMicro 8.700.0.1004 2009.04.15 -
ViRobot 2009.4.15.1694 2009.04.15 -
VirusBuster 4.6.5.0 2009.04.15 -[/QUOTE]
Дополнительная информация
File size: 87563 bytes
MD5...: 57d1a8388bcba89b1a7a4a030cd6b679
SHA1..: a25489f4a740a0f3b6e02108d4dc616fa62a4047
SHA256: 2f4f31670dbc10adb9ed615186a7820eca63a7d07d7950e104be2e4e9d3a2060
SHA512: f52e9c1f7fcb6f3415b60610fc172c9a3285b797740a41fa69e3fb2493212e1d
919b39f0d30bde57c4ac5b18591825e2b87b4141607b2b05633ddfc7cefa00e6
ssdeep: 1536:Bm7ZLr4Nf5vi68DCf87v9CS/Pl4+5I9/EPm:6ZLUfgeExt+b9n
PEiD..: -
TrID..: File type identification
Win16/32 Executable Delphi generic (25.1%)
Clipper DOS Executable (24.5%)
Generic Win/DOS Executable (24.3%)
DOS Executable Generic (24.2%)
Lumena CEL bitmap (0.7%)
PEInfo: PE Structure information
[size="1"][color="#666686"][B][I]Добавлено через 1 час 59 минут[/I][/B][/color][/size]
Файл video_codec.exe получен 2009.04.15 16:25:01 (CET)
Текущий статус: закончено
Результат: 12/40 (30%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.15 Trojan-Downloader.Win32.FakeRean!IK
AhnLab-V3 5.0.0.2 2009.04.15 Win-Trojan/FakeRean.107523
AntiVir 7.9.0.143 2009.04.15 TR/Dldr.FakeRean[/B]
Antiy-AVL 2.0.3.1 2009.04.15 -
Authentium 5.1.2.4 2009.04.14 -
Avast 4.8.1335.0 2009.04.15 -
[B]AVG 8.5.0.287 2009.04.15 Win32/Heur[/B]
BitDefender 7.2 2009.04.15 -
[B]CAT-QuickHeal 10.00 2009.04.15 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.15 -
Comodo 1115 2009.04.15 -
DrWeb 4.44.0.09170 2009.04.15 -
[B]eSafe 7.0.17.0 2009.04.13 Suspicious File[/B]
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.14 -
[B]F-Secure 8.0.14470.0 2009.04.15 Trojan-Downloader:W32/FakeAlert.ET[/B]
Fortinet 3.117.0.0 2009.04.15 -
GData 19 2009.04.15 -
[B]Ikarus T3.1.1.49.0 2009.04.15 Trojan-Downloader.Win32.FakeRean[/B]
K7AntiVirus 7.10.704 2009.04.15 -
[B]Kaspersky 7.0.0.125 2009.04.15 Trojan.Win32.Agent.cbiw[/B]
McAfee 5584 2009.04.14 -
[B]McAfee+Artemis 5584 2009.04.14 Generic!Artemis
McAfee-GW-Edition 6.7.6 2009.04.15 Trojan.Dldr.FakeRean
Microsoft 1.4502 2009.04.15 TrojanDownloader:Win32/FakeRean[/B]
NOD32 4010 2009.04.15 -
Norman 6.00.06 2009.04.15 -
nProtect 2009.1.8.0 2009.04.15 -
Panda 10.0.0.14 2009.04.14 -
PCTools 4.4.2.0 2009.04.15 -
Prevx1 V2 2009.04.15 -
Rising 21.25.24.00 2009.04.15 -
Sophos 4.40.0 2009.04.15 -
Sunbelt 3.2.1858.2 2009.04.15 -
Symantec 1.4.4.12 2009.04.15 -
TheHacker 6.3.4.0.309 2009.04.15 -
TrendMicro 8.700.0.1004 2009.04.15 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.15.1694 2009.04.15 -
VirusBuster 4.6.5.0 2009.04.15 -[/QUOTE]
Дополнительная информация
File size: 107523 bytes
MD5...: e8a4b719b606ddc9623cd1415a33625d
SHA1..: 2370e692013ec4765c2a32680f97e7b3c9d0b7d9
SHA256: 717703c1811e29a4b8770eae8508fab16ce0a179ab061292d6cff803a2921f50
SHA512: 89376c98177b063990f4e13131236fcc494a72c722a70719f709d1abfe9a4dc6
9346253293397c5c06a4f9c10826e8ca18e67d82f850bc04ddf112b0e7d9f176
ssdeep: 3072:lGU3tTPLNNit6nTrkWwSXosoFOjSjdH6SibHyi9X3kua:NVLDiSPkSXossl
6Sirp8
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
-
File Wprotected.exe received on 04.16.2009 04:37:31 (CET)
[CODE]Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.04.16 -
AhnLab-V3 5.0.0.2 2009.04.15 -
[B]AntiVir 7.9.0.143 2009.04.15 TR/ATRAPS.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.16 -
Authentium 5.1.2.4 2009.04.16 -
Avast 4.8.1335.0 2009.04.15 -
[B]AVG 8.5.0.287 2009.04.16 Generic3.RFF[/B]
CAT-QuickHeal 10.00 2009.04.15 -
ClamAV 0.94.1 2009.04.16 -
Comodo 1115 2009.04.15 -
DrWeb 4.44.0.09170 2009.04.16 -
[B]eSafe 7.0.17.0 2009.04.13 Suspicious File[/B]
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.15 -
F-Secure 8.0.14470.0 2009.04.16 -
Fortinet 3.117.0.0 2009.04.15 -
GData 19 2009.04.16 -
Ikarus T3.1.1.49.0 2009.04.16 -
K7AntiVirus 7.10.704 2009.04.15 -
[B]Kaspersky 7.0.0.125 2009.04.16 Heur.Trojan.Generic[/B]
McAfee 5585 2009.04.15 -
McAfee+Artemis 5585 2009.04.15 -
[B]McAfee-GW-Edition 6.7.6 2009.04.15 Trojan.ATRAPS.Gen
Microsoft 1.4502 2009.04.15 Trojan:Win32/SystemHijack.gen
NOD32 4012 2009.04.16 probably unknown NewHeur_PE[/B]
Norman 6.00.06 2009.04.15 -
nProtect 2009.1.8.0 2009.04.15 -
[B]Panda 10.0.0.14 2009.04.15 Suspicious file[/B]
PCTools 4.4.2.0 2009.04.15 -
Prevx1 V2 2009.04.16 -
Rising 21.25.24.00 2009.04.15 -
[B]Sophos 4.40.0 2009.04.16 Sus/Behav-1014
Sunbelt 3.2.1858.2 2009.04.15 BehavesLike.Win32.Malware (v)[/B]
Symantec 1.4.4.12 2009.04.16 -
TheHacker 6.3.4.0.309 2009.04.16 -
[B]TrendMicro 8.700.0.1004 2009.04.15 PAK_Generic.001
VBA32 3.12.10.2 2009.04.12 suspected of Win32 Shadow AutoStart Install[/B]
ViRobot 2009.4.16.1695 2009.04.16 -
VirusBuster 4.6.5.0 2009.04.15 -[/CODE]
Additional information
File size: 64000 bytes
MD5...: 312b8d1bc674ccd1b86bffb7b27e3771
SHA1..: 0b06ea20887624f1cc49c35dbd7ab68452d6df7e
SHA256: 5d6cda2a61c0038063f2b2277cae80586548f9b615c40f23540b3d158b088f4f
SHA512: 05ebca1faa22354de5b8c3a78ce05fb0d97eae325cbe4611972c622a3ca98109
fcc878a650ad51caa3233056f3d52e2d17f6d8c1b8cda1f8e828239287fb0374
ssdeep: 1536:AfxgkH+AuBTEBostwhrxV/wz4DcINWRc1Lu3BV/oKirx7SfuaF:AfVH+A2E
BvmoycIMc1L8V/oZx7Yl
PEiD..: -
TrID..: File type identification
UPX compressed Win32 Executable (38.5%)
Win32 EXE Yoda's Crypter (33.4%)
Win32 Executable Generic (10.7%)
Win32 Dynamic Link Library (generic) (9.5%)
Win16/32 Executable Delphi generic (2.6%)
PEInfo: PE Structure information
-
Файл avz00006.dta (STTRUTNL.sys) получен 2009.04.16 15:37:18 (CET)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.16 Trojan.Generic!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.16 -
[B]AntiVir 7.9.0.143 2009.04.16 TR/Rootkit.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.16 -
Authentium 5.1.2.4 2009.04.16 -
[B]Avast 4.8.1335.0 2009.04.16 Win32:TrPack[/B]
AVG 8.5.0.287 2009.04.16 -
[B]BitDefender 7.2 2009.04.16 Trojan.Generic.1222859[/B]
CAT-QuickHeal 10.00 2009.04.16 -
ClamAV 0.94.1 2009.04.16 -
Comodo 1116 2009.04.16 -
[B]DrWeb 4.44.0.09170 2009.04.16 Trojan.Sentinel.based[/B]
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.15 -
F-Secure 8.0.14470.0 2009.04.16 -
Fortinet 3.117.0.0 2009.04.16 -
[B]GData 19 2009.04.16 Trojan.Generic.1222859
Ikarus T3.1.1.49.0 2009.04.16 Trojan.Generic
K7AntiVirus 7.10.704 2009.04.15 Trojan.Win32.Malware[/B]
Kaspersky 7.0.0.125 2009.04.16 -
[B]McAfee 5585 2009.04.15 Generic.dx
McAfee+Artemis 5585 2009.04.15 Generic.dx
McAfee-GW-Edition 6.7.6 2009.04.16 Trojan.Rootkit.Gen
Microsoft 1.4502 2009.04.16 Spammer:WinNT/Srizbi.A
NOD32 4013 2009.04.16 probably a variant of Win32/Agent[/B]
Norman 6.00.06 2009.04.15 -
nProtect 2009.1.8.0 2009.04.16 -
Panda 10.0.0.14 2009.04.15 -
PCTools 4.4.2.0 2009.04.15 -
[B]Prevx1 V2 2009.04.16 High Risk Worm[/B]
Rising 21.25.34.00 2009.04.16 -
Sophos 4.40.0 2009.04.16 -
[B]Sunbelt 3.2.1858.2 2009.04.15 Trojan.1
Symantec 1.4.4.12 2009.04.16 Trojan Horse[/B]
TheHacker 6.3.4.0.309 2009.04.16 -
[B]TrendMicro 8.700.0.1004 2009.04.16 Cryp_Xed-3[/B]
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.16.1696 2009.04.16 -
VirusBuster 4.6.5.0 2009.04.15 -
[/CODE]
Дополнительная информация
File size: 178176 bytes
MD5...: e065942dc96c43974d0fd186ee394547
SHA1..: c174be06ef497d2ac4b825f2cd4bed2ee87c867d
SHA256: 89b7d26e004e4f1636e1c782e335782127563edc4953a2d38b436541c76abea1
SHA512: 9f9fc92b4ff91f01489883ac51540ee80bdb8bec3a5d01af07639f9626a46644<br>c59bf3aa21d7853a527fb244a18a3894c39e4cdb584de9fe9f438a041724b2c1
ssdeep: 3072:13tjwmwSwqwh37+Es01KirzMVZYIsRmd8saVWKgRiR8QMhsti4k0bp:ttjw<br>mwSwqwx7qziruZERmdjakhRia2is<br>
PEiD..: -
TrID..: File type identification<br>Generic Win/DOS Executable (49.5%)
-
Файл video_codec.exe получен 2009.04.18 11:24:10 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.18 -
AhnLab-V3 5.0.0.2 2009.04.17 -
AntiVir 7.9.0.143 2009.04.17 -
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.18 -
Avast 4.8.1335.0 2009.04.17 -
[B]AVG 8.5.0.287 2009.04.17 Win32/Heur[/B]
BitDefender 7.2 2009.04.18 -
[B]CAT-QuickHeal 10.00 2009.04.18 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.18 -
Comodo 1117 2009.04.17 -
[B]DrWeb 4.44.0.09170 2009.04.18 Trojan.Fakealert.4216
eSafe 7.0.17.0 2009.04.13 Suspicious File[/B]
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.17 -
F-Secure 8.0.14470.0 2009.04.18 -
Fortinet 3.117.0.0 2009.04.18 -
GData 19 2009.04.18 -
Ikarus T3.1.1.49.0 2009.04.18 -
K7AntiVirus 7.10.707 2009.04.17 -
[B]Kaspersky 7.0.0.125 2009.04.18 Trojan-Downloader.Win32.Agent.broo
McAfee 5587 2009.04.17 Downloader-BOI
McAfee+Artemis 5587 2009.04.17 Downloader-BOI[/B]
McAfee-GW-Edition 6.7.6 2009.04.18 -
[B]Microsoft 1.4502 2009.04.18 TrojanDownloader:Win32/FakeRean[/B]
NOD32 4018 2009.04.18 -
Norman 6.00.06 2009.04.17 -
nProtect 2009.1.8.0 2009.04.18 -
Panda 10.0.0.14 2009.04.17 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.18 -
Rising 21.25.52.00 2009.04.18 -
Sophos 4.40.0 2009.04.18 -
Sunbelt 3.2.1858.2 2009.04.18 -
Symantec 1.4.4.12 2009.04.18 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.18.1685 2009.04.18 -
VirusBuster 4.6.5.0 2009.04.17 -[/QUOTE]
Дополнительная информация
File size: 107011 bytes
MD5...: ae9a600288c2e2dafb6ec141474848fd
SHA1..: 9a462156de7de53dcc29aac7dcba5a6a72ed0e3f
SHA256: b0245819ae02d0bc6e18cdff07f566a3d84e3f6fa8d7c9639dfd332f2d7d60b1
SHA512: 53fb5b3086b1334df157f97b9301af2347c6d578d6e6550d3b4db70fc85b152b
dc7a96a1fad285fe76b535fb2efd06777cbede5a7ed9e460f7425d38040abbed
ssdeep: 1536:DmPkZ+A1yrdEN2uTJQP/F0TfkUDR0GZFalMS0vSVzTotKgrKCVcdTX3kua:
O8yrDuTD5DikFxvSVzUtkCi9X3kua
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
-
Файл setup.exe получен 2009.04.19 10:44:11 (CET)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.19 -
AhnLab-V3 5.0.0.2 2009.04.18 -
[B]AntiVir 7.9.0.148 2009.04.18 ADSPY/AdSpy.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.17 -
[B]Authentium 5.1.2.4 2009.04.19 W32/FakeAlert.4!Generic[/B]
Avast 4.8.1335.0 2009.04.18 -
[B]AVG 8.5.0.287 2009.04.18 Generic13.ZPK[/B]
BitDefender 7.2 2009.04.19 -
CAT-QuickHeal 10.00 2009.04.18 -
ClamAV 0.94.1 2009.04.19 -
Comodo 1120 2009.04.18 -
[B]DrWeb 4.44.0.09170 2009.04.19 Trojan.DownLoad.31851[/B]
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
[B]F-Prot 4.4.4.56 2009.04.19 W32/FakeAlert.4!Generic
F-Secure 8.0.14470.0 2009.04.19 Trojan-Downloader.Win32.FraudLoad.eep[/B]
Fortinet 3.117.0.0 2009.04.19 -
GData 19 2009.04.19 -
Ikarus T3.1.1.49.0 2009.04.19 -
K7AntiVirus 7.10.707 2009.04.17 -
[B]Kaspersky 7.0.0.125 2009.04.19 Trojan-Downloader.Win32.FraudLoad.eep
McAfee 5588 2009.04.18 FakeAlert-BY
McAfee+Artemis 5588 2009.04.18 FakeAlert-BY
McAfee-GW-Edition 6.7.6 2009.04.19 Ad-Spyware.AdSpy.Gen[/B]
Microsoft 1.4502 2009.04.19 -
NOD32 4019 2009.04.18 -
Norman 6.00.06 2009.04.17 -
nProtect 2009.1.8.0 2009.04.19 -
Panda 10.0.0.14 2009.04.18 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.19 -
[B]Rising 21.25.61.00 2009.04.19 Packer.Win32.UnkPacker.a
Sophos 4.40.0 2009.04.19 Mal/FakeAV-AH
Sunbelt 3.2.1858.2 2009.04.18 MSAntispyware 2009 (v)[/B]
Symantec 1.4.4.12 2009.04.19 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.18.1685 2009.04.18 -
[B]VirusBuster 4.6.5.0 2009.04.18 Trojan.DL.FraudLoad.EKE[/B][/QUOTE]
Дополнительная информация
File size: 87563 bytes
MD5...: 68276c5eb83d83ff0ca43f15c42169b9
SHA1..: 7f72ecb858db67d9732e0575f9bb9eb1f4763587
SHA256: 5756f736a6dce21554a7e982d5082ea1e8a842b6d24f6a97a0824774926b8947
SHA512: a141f92b6e948486aa1fe69d2941a777b5c77741e29e4dc069b79be01208aac6
c89f52bd139adb3af7f9e57b6c694777412ae163b82242860eac01a3d5c5dc1a
ssdeep: 768:KstIpKba9LXoY2IehhyNHYEk7NuP6XscqyFaqDldNQUWmy/EPA:LIgUXpeOH
lgS6XFXFVQUxy/EPA
PEiD..: -
TrID..: File type identification
Win16/32 Executable Delphi generic (25.1%)
Clipper DOS Executable (24.5%)
Generic Win/DOS Executable (24.3%)
DOS Executable Generic (24.2%)
Lumena CEL bitmap (0.7%)
PEInfo: PE Structure information
[size="1"][color="#666686"][B][I]Добавлено через 50 минут[/I][/B][/color][/size]
Файл setup___.exe получен 2009.04.19 11:13:51 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.19 -
AhnLab-V3 5.0.0.2 2009.04.18 -
[B]AntiVir 7.9.0.148 2009.04.18 ADSPY/AdSpy.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.17 -
[B]Authentium 5.1.2.4 2009.04.19 W32/FakeAlert.4!Generic[/B]
Avast 4.8.1335.0 2009.04.18 -
AVG 8.5.0.287 2009.04.18 -
BitDefender 7.2 2009.04.19 -
CAT-QuickHeal 10.00 2009.04.18 -
ClamAV 0.94.1 2009.04.19 -
Comodo 1120 2009.04.18 -
DrWeb 4.44.0.09170 2009.04.19 -
eSafe 7.0.17.0 2009.04.13 -
eTrust-Vet 31.6.6455 2009.04.14 -
[B]F-Prot 4.4.4.56 2009.04.19 W32/FakeAlert.4!Generic[/B]
F-Secure 8.0.14470.0 2009.04.19 -
Fortinet 3.117.0.0 2009.04.19 -
GData 19 2009.04.19 -
Ikarus T3.1.1.49.0 2009.04.19 -
K7AntiVirus 7.10.707 2009.04.17 -
Kaspersky 7.0.0.125 2009.04.19 -
McAfee 5588 2009.04.18 -
McAfee+Artemis 5588 2009.04.18 -
[B]McAfee-GW-Edition 6.7.6 2009.04.19 Ad-Spyware.AdSpy.Gen
Microsoft 1.4502 2009.04.19 Trojan:Win32/WinSpywareProtect[/B]
NOD32 4019 2009.04.18 -
Norman 6.00.06 2009.04.17 -
nProtect 2009.1.8.0 2009.04.19 -
Panda 10.0.0.14 2009.04.18 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.19 -
[B]Rising 21.25.62.00 2009.04.19 Packer.Win32.UnkPacker.a
Sophos 4.40.0 2009.04.19 Mal/FakeAV-AH
Sunbelt 3.2.1858.2 2009.04.18 MSAntispyware 2009 (v)[/B]
Symantec 1.4.4.12 2009.04.19 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.18.1685 2009.04.18 -
VirusBuster 4.6.5.0 2009.04.18 -[/QUOTE]
Дополнительная информация
File size: 115712 bytes
MD5...: 93d5add0142d172e41ccfc80b61a0300
SHA1..: 9bfae9fa2341a2b3a0839741516eafc07a6fd879
SHA256: 7f3dfd6a37518543a8a3617df529cd83cf75e3b78e32d6879271465b3f2f1d94
SHA512: c857f552d045051119ff94c196d52d74281d32c0244a7388e79e50c6d7fbdb56
fe74e2321af4dffd87d6c8f5562d3a48ae02db1792fac3095ecd627b7f15dc28
ssdeep: 1536:CMWhZNa/O9OAKc72dwVfvOebxfWV+FHbQA+ym/EPd:NWhZs/GOLWYAOeb0V
cQ9
PEiD..: -
TrID..: File type identification
Win16/32 Executable Delphi generic (25.1%)
Clipper DOS Executable (24.5%)
Generic Win/DOS Executable (24.3%)
DOS Executable Generic (24.2%)
Lumena CEL bitmap (0.7%)
PEInfo: PE Structure information
[size="1"][color="#666686"][B][I]Добавлено через 2 часа 10 минут[/I][/B][/color][/size]
Файл video_codec.exe получен 2009.04.19 13:44:34 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.19 Trojan-Dropper.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.18 -
[B]AntiVir 7.9.0.148 2009.04.18 TR/Dldr.Agent.broo[/B]
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.19 -
Avast 4.8.1335.0 2009.04.18 -
[B]AVG 8.5.0.287 2009.04.18 Win32/Heur[/B]
BitDefender 7.2 2009.04.19 -
[B]CAT-QuickHeal 10.00 2009.04.18 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.19 -
Comodo 1121 2009.04.19 -
[B]DrWeb 4.44.0.09170 2009.04.19 Trojan.Fakealert.4216
eSafe 7.0.17.0 2009.04.13 Suspicious File[/B]
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.19 -
[B]F-Secure 8.0.14470.0 2009.04.19 Trojan-Downloader.Win32.Agent.broo
Fortinet 3.117.0.0 2009.04.19 W32/Agent.BROO!tr.dldr[/B]
GData 19 2009.04.19 -
[B]Ikarus T3.1.1.49.0 2009.04.19 Trojan-Dropper.Agent[/B]
K7AntiVirus 7.10.707 2009.04.17 -
[B]Kaspersky 7.0.0.125 2009.04.19 Trojan-Downloader.Win32.Agent.broo
McAfee 5588 2009.04.18 Downloader-BOI
McAfee+Artemis 5588 2009.04.18 Downloader-BOI
McAfee-GW-Edition 6.7.6 2009.04.19 Trojan.Dldr.Agent.broo
Microsoft 1.4502 2009.04.19 TrojanDownloader:Win32/FakeRean[/B]
NOD32 4019 2009.04.18 -
Norman 6.00.06 2009.04.17 -
nProtect 2009.1.8.0 2009.04.19 -
Panda 10.0.0.14 2009.04.19 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.19 -
Rising 21.25.62.00 2009.04.19 -
[B]Sophos 4.40.0 2009.04.19 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.04.18 -
Symantec 1.4.4.12 2009.04.19 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.18.1685 2009.04.18 -
VirusBuster 4.6.5.0 2009.04.18 -[/QUOTE]
Дополнительная информация
File size: 107011 bytes
MD5...: ae9a600288c2e2dafb6ec141474848fd
SHA1..: 9a462156de7de53dcc29aac7dcba5a6a72ed0e3f
SHA256: b0245819ae02d0bc6e18cdff07f566a3d84e3f6fa8d7c9639dfd332f2d7d60b1
SHA512: 53fb5b3086b1334df157f97b9301af2347c6d578d6e6550d3b4db70fc85b152b
dc7a96a1fad285fe76b535fb2efd06777cbede5a7ed9e460f7425d38040abbed
ssdeep: 1536:DmPkZ+A1yrdEN2uTJQP/F0TfkUDR0GZFalMS0vSVzTotKgrKCVcdTX3kua:
O8yrDuTD5DikFxvSVzUtkCi9X3kua
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
-
Файл index.htm получен 2009.04.19 18:50:42 (CET)
Антивирус Версия Обновление Результат
[CODE]
[B]a-squared 4.0.0.101 2009.04.19 Exploit.JS.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.19 -
AntiVir 7.9.0.148 2009.04.19 -
Antiy-AVL 2.0.3.1 2009.04.17 -
Authentium 5.1.2.4 2009.04.19 -
Avast 4.8.1335.0 2009.04.19 -
[B]AVG 8.5.0.287 2009.04.18 JS/Obfuscated[/B]
BitDefender 7.2 2009.04.19 -
CAT-QuickHeal 10.00 2009.04.18 -
ClamAV 0.94.1 2009.04.19 -
Comodo 1121 2009.04.19 -
[B]DrWeb 4.44.0.09170 2009.04.19 Trojan.DownLoad.35036[/B]
eSafe 7.0.17.0 2009.04.19 -
eTrust-Vet 31.6.6455 2009.04.14 -
F-Prot 4.4.4.56 2009.04.19 -
[B]F-Secure 8.0.14470.0 2009.04.19 Exploit.JS.Agent.agc[/B]
Fortinet 3.117.0.0 2009.04.19 -
GData 19 2009.04.19 -
[B]Ikarus T3.1.1.49.0 2009.04.19 Exploit.JS.Agent[/B]
K7AntiVirus 7.10.707 2009.04.17 -
[B]Kaspersky 7.0.0.125 2009.04.19 Exploit.JS.Agent.agc[/B]
McAfee 5589 2009.04.19 -
McAfee+Artemis 5589 2009.04.19 -
McAfee-GW-Edition 6.7.6 2009.04.19 -
Microsoft 1.4502 2009.04.19 -
NOD32 4019 2009.04.18 -
Norman 6.00.06 2009.04.17 -
nProtect 2009.1.8.0 2009.04.19 -
Panda 10.0.0.14 2009.04.19 -
PCTools 4.4.2.0 2009.04.17 -
Prevx1 V2 2009.04.19 -
Rising 21.25.62.00 2009.04.19 -
Sophos 4.40.0 2009.04.19 -
Sunbelt 3.2.1858.2 2009.04.18 -
Symantec 1.4.4.12 2009.04.19 -
TheHacker 6.3.4.0.309 2009.04.16 -
TrendMicro 8.700.0.1004 2009.04.17 -
VBA32 3.12.10.2 2009.04.12 -
ViRobot 2009.4.18.1685 2009.04.18 -
VirusBuster 4.6.5.0 2009.04.19 -
[/CODE]
Дополнительная информация
File size: 2206 bytes
MD5...: 3ec737affc1e52191c39a2d9dbfc5f34
SHA1..: 1fc64055c758b32a5f06f5e709f2bac1e188f186
SHA256: c13cf6ff8dd7130098be76874d2438fce13c921161a054b1e1ea73fbc4e0b95f
SHA512: fa7f4e5378020a8c34bb334bc11ffdf440a31617dac93c1bb3d4c8033ba0cbe6<BR>e539c49b958479daa8a4552fe016815a7adcd02ff8ec5d01ace6db5c63d81593
ssdeep: 48:rtERaCpNIU1jVAxlnn09cE4MOd/aIdPKv2dNAiS6f:ryRaHWV456cqOdNdSv+<BR>As<BR>
PEiD..: -
TrID..: File type identification<BR>HyperText Markup Language (100.0%)
PEInfo: -
RDS...: NSRL Reference Data Set<BR>-
Page generated in 0.01634 seconds with 10 queries