-
Антивирус;Версия;Обновление;Результат
AhnLab-V3;2008.1.16.11;2008.01.16;Win32/Dellboy.Gen
AntiVir;7.6.0.48;2008.01.16;TR/Proxy.Delf.CA
Authentium;4.93.8;2008.01.16;W32/Fujack.A - Packed
Avast;4.7.1098.0;2008.01.16;Win32:Delf-CKB
AVG;7.5.0.516;2008.01.16;Worm/Generic.AGX
BitDefender;7.2;2008.01.16;Win32.Worm.Fujacks.K
CAT-QuickHeal;9.00;2008.01.16;W32.Fujack.h
ClamAV;0.91.2;2008.01.16;Worm.Fujack-2
DrWeb;4.44.0.09170;2008.01.16;Win32.HLLW.Whboy
eSafe;7.0.15.0;2008.01.16;suspicious Trojan/Worm
eTrust-Vet;31.3.5462;2008.01.16;Win32/Emerleox.BM
Ewido;4.0;2008.01.16;Worm.Fujack.h
FileAdvisor;1;2008.01.16;-
Fortinet;3.14.0.0;2008.01.16;W32/Viking.AA
F-Prot;4.4.2.54;2008.01.15;W32/Fujack.A
F-Secure;6.70.13260.0;2008.01.16;W32/Fujack.P
Ikarus;T3.1.1.20;2008.01.16;Worm.Win32.Fujack.aa
Kaspersky;7.0.0.125;2008.01.16;Worm.Win32.Fujack.l
McAfee;5209;2008.01.16;W32/Fujacks.s
Microsoft;1.3109;2008.01.16;Virus:Win32/Fujacks.I
NOD32v2;2799;2008.01.16;Win32/Fujacks.T
Norman;5.80.02;2008.01.16;W32/Fujack.P
Panda;9.0.0.4;2008.01.15;W32/Radoppan.S
Prevx1;V2;2008.01.16;-
Rising;20.27.22.00;2008.01.16;Worm.Win32.Nimaya.e
Sophos;4.24.0;2008.01.16;W32/Fujacks-J
Sunbelt;2.2.907.0;2008.01.15;VIPRE.Suspicious
TheHacker;6.2.9.188;2008.01.16;W32/Fujacks.aa
VBA32;3.12.2.5;2008.01.15;Worm.Win32.Fujack.h
VirusBuster;4.3.26:9;2008.01.16;Win32.HLLP.WHBoy.AE
Webwasher-Gateway;6.6.2;2008.01.16;Trojan.Proxy.Delf.CA
Дополнительная информация
File size: 68570 bytes
MD5: 000ac09f027e139b64b2cd0823c874fc
SHA1: 214c5a228ddedd9ee7405eb7b01766883d3dcf3a
PEiD: FSG v2.0 -> bart/xt
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
Файл index_1___1_.htm получен 2008.01.17 06:43:17 (CET)Антивирус Версия Обновление Результат
[B]AhnLab-V3 2008.1.17.10 2008.01.16 HTML/Psyme
AntiVir 7.6.0.48 2008.01.16 HTML/Dldr.Agen.N.15
Authentium 4.93.8 2008.01.16 JS/Psyme.DV
[/B]Avast 4.7.1098.0 2008.01.16 -
[B]AVG 7.5.0.516 2008.01.16 Exploit
BitDefender 7.2 2008.01.17 Trojan.Downloader.JS.FT[/B]
CAT-QuickHeal 9.00 2008.01.16 -
[B]ClamAV 0.91.2 2008.01.17 JS.Psyme-16
DrWeb 4.44.0.09170 2008.01.16 Exploit.Bundle
eSafe 7.0.15.0 2008.01.16 JS.Psyme.ld[/B]
eTrust-Vet 31.3.5464 2008.01.17 -
[B]Ewido 4.0 2008.01.16 Downloader.Psyme.mt[/B]
FileAdvisor 1 2008.01.17 -
Fortinet 3.14.0.0 2008.01.17 -
[B]F-Prot 4.4.2.54 2008.01.16 JS/Psyme.DV
F-Secure 6.70.13260.0 2008.01.17 JS/Psyme.DV
Ikarus T3.1.1.20 2008.01.17 Exploit.JS.Agent.au
Kaspersky 7.0.0.125 2008.01.17 Trojan-Downloader.JS.Psyme.kd
[/B]McAfee 5209 2008.01.16 -
[B]Microsoft 1.3109 2008.01.17 Exploit:JS/MS06014.I
NOD32v2 2800 2008.01.17 HTML/Exploit.IESlice.NAC
[/B]Norman 5.80.02 2008.01.16 -
Panda 9.0.0.4 2008.01.17 -
[B]Prevx1 V2 2008.01.17 TROJAN.DOWNLOADER.GEN
[/B]Rising 20.27.22.00 2008.01.16 -
[B]Sophos 4.24.0 2008.01.17 Troj/Mulex-B
Sunbelt 2.2.907.0 2008.01.17 Trojan-Downloader.JS.FT
Symantec 10 2008.01.17 Downloader
[/B]TheHacker 6.2.9.189 2008.01.17 -
VBA32 3.12.2.5 2008.01.15 -
VirusBuster 4.3.26:9 2008.01.16 -
[B]Webwasher-Gateway 6.6.2 2008.01.16 Script.Dldr.Agen.N.15[/B]
Дополнительная информация
File size: 31743 bytes
MD5: 377a34067f2bf26159b4864dfff0156a
SHA1: f174a63950e113141924597b8a7ed6ea3734a50d
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=377A3406FF7F2BF27B610059B4864D00FFF0156A[/url]
-
File ADSTechnologyInstall.exe received on 01.17.2008 22:29:45 (CET)
AhnLab-V3 2008.1.18.10 2008.01.17 -
[B]AntiVir 7.6.0.48 2008.01.17 DR/Agent.UJ[/B]
Authentium 4.93.8 2008.01.17 -
Avast 4.7.1098.0 2008.01.17 -
AVG 7.5.0.516 2008.01.17 -
[B]BitDefender 7.2 2008.01.17 Adware.BHO.WQB[/B]
CAT-QuickHeal 9.00 2008.01.17 -
ClamAV 0.91.2 2008.01.17 -
[B]DrWeb 4.44.0.09170 2008.01.17 Adware.AdsTech[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5465 2008.01.17 -
Ewido 4.0 2008.01.17 -
FileAdvisor 1 2008.01.17 -
[B]Fortinet 3.14.0.0 2008.01.17 Adware/Agent[/B]
F-Prot 4.4.2.54 2008.01.17 -
F-Secure 6.70.13260.0 2008.01.17 -
Ikarus T3.1.1.20 2008.01.17 -
[B]Kaspersky 7.0.0.125 2008.01.17 not-a-virus:AdWare.Win32.Agent.uj[/B]
McAfee 5210 2008.01.17 -
Microsoft 1.3109 2008.01.17 -
NOD32v2 2802 2008.01.17 -
Norman 5.80.02 2008.01.17 -
Panda 9.0.0.4 2008.01.17 -
[B]Prevx1 V2 2008.01.17 ADWARE.BHO.WQB[/B]
Rising 20.27.31.00 2008.01.17 -
Sophos 4.24.0 2008.01.17 -
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.17 -
TheHacker 6.2.9.189 2008.01.17 -
[B]VBA32 3.12.2.5 2008.01.15 AdWare.Win32.Agent.uj[/B]
VirusBuster 4.3.26:9 2008.01.17 -
[B]Webwasher-Gateway 6.6.2 2008.01.17 Trojan.Dropper.Agent.UJ[/B]
Additional information
File size: 306285 bytes
MD5: 42271b63a8fec2ce41d8755a91560bbc
SHA1: 280e789fb0248a223aa2de16c923f568eb6b189a
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=3CDFB9AB6DB83CAEAC4E04F6EC5FAC007B978F0C[/url]
File setup.exe received on 01.19.2008 00:34:39 (CET)
AhnLab-V3 2008.1.19.10 2008.01.18 -
[B]AntiVir 7.6.0.48 2008.01.18 DR/FraudTool.SmartAntiSpyware.B[/B]
Authentium 4.93.8 2008.01.17 -
[B]Avast 4.7.1098.0 2008.01.18 Win32:SmartAntiSpy[/B]
AVG 7.5.0.516 2008.01.18 -
BitDefender 7.2 2008.01.19 -
CAT-QuickHeal 9.00 2008.01.18 -
[B]ClamAV 0.91.2 2008.01.18 Adware.Fakealert-25
DrWeb 4.44.0.09170 2008.01.18 Trojan.Fakealert.368[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5470 2008.01.18 -
Ewido 4.0 2008.01.18 -
FileAdvisor 1 2008.01.19 -
[B]Fortinet 3.14.0.0 2008.01.18 Misc/SmartAntiSpyware[/B]
F-Prot 4.4.2.54 2008.01.19 -
F-Secure 6.70.13260.0 2008.01.18 -
[B]Ikarus T3.1.1.20 2008.01.18 not-a-virus:.FraudTool.Win32.SmartAntiSpyware.b
Kaspersky 7.0.0.125 2008.01.19 not-a-virus:FraudTool.Win32.SmartAntiSpyware.b[/B]
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.18 -
[B]NOD32v2 2806 2008.01.18 Win32/FraudTool.SmartAntiSpyware.B[/B]
Norman 5.80.02 2008.01.18 -
[B]Panda 9.0.0.4 2008.01.18 Application/SmartAntiSpyware[/B]
Prevx1 V2 2008.01.19 -
Rising 20.27.42.00 2008.01.18 -
Sophos 4.24.0 2008.01.18 -
[B]Sunbelt 2.2.907.0 2008.01.17 Trojan-Dropper.FraudTool.SmartAntiSpyware.B[/B]
Symantec 10 2008.01.19 -
TheHacker 6.2.9.191 2008.01.18 -
VBA32 3.12.2.5 2008.01.15 -
VirusBuster 4.3.26:9 2008.01.18 -
[B]Webwasher-Gateway 6.6.2 2008.01.18 Trojan.Dropper.FraudTool.SmartAntiSpyware.B[/B]
Additional information
File size: 391187 bytes
MD5: 6c126e36a73970b4fd841ff7dc45f372
SHA1: 66dc9501d808aeaa1c1ef7052c55c164afb77005
PEiD: -
packers: RAR, Unicode
-
=)
AhnLab-V3 2008.1.19.10 2008.01.18 -
AntiVir 7.6.0.48 2008.01.20 -
Authentium 4.93.8 2008.01.20 -
Avast 4.7.1098.0 2008.01.20 -
AVG 7.5.0.516 2008.01.19 -
BitDefender 7.2 2008.01.20 -
CAT-QuickHeal 9.00 2008.01.19 -
ClamAV 0.91.2 2008.01.20 -
[b]DrWeb 4.44.0.09170 2008.01.19 Trojan.DownLoader.43001[/b]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5470 2008.01.18 -
Ewido 4.0 2008.01.19 -
FileAdvisor 1 2008.01.20 -
Fortinet 3.14.0.0 2008.01.20 -
F-Prot 4.4.2.54 2008.01.19 -
F-Secure 6.70.13260.0 2008.01.19 -
Ikarus T3.1.1.20 2008.01.20 -
Kaspersky 7.0.0.125 2008.01.20 -
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.20 -
NOD32v2 2807 2008.01.19 -
Norman 5.80.02 2008.01.18 -
Panda 9.0.0.4 2008.01.19 -
Prevx1 V2 2008.01.20 -
Rising 20.27.61.00 2008.01.20 -
Sophos 4.24.0 2008.01.20 -
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.20 -
TheHacker 6.2.9.191 2008.01.19 -
VBA32 3.12.2.5 2008.01.19 -
VirusBuster 4.3.26:9 2008.01.20 -
Webwasher-Gateway 6.6.2 2008.01.20 -
-
msindeo.dll
Файл avz00002.dta получен 2008.01.21 08:37:50 (CET)
[code][b]AntiVir 7.6.0.48 2008.01.21 TR/Crypt.ULPM.Gen
Authentium 4.93.8 2008.01.21 Possibly a new variant of W32/new-malware!Maximus
Avast 4.7.1098.0 2008.01.20 Win32:Neptunia-DP
AVG 7.5.0.516 2008.01.20 PSW.Generic5.AHAD[/b]
BitDefender 7.2 2008.01.21 -
CAT-QuickHeal 9.00 2008.01.19 -
ClamAV 0.91.2 2008.01.21 -
[b]DrWeb 4.44.0.09170 2008.01.20 Trojan.PWS.GoldSpy
eSafe 7.0.15.0 2008.01.16 suspicious Trojan/Worm[/b]
eTrust-Vet 31.3.5475 2008.01.21 -
Ewido 4.0 2008.01.20 -
FileAdvisor 1 2008.01.21 -
Fortinet 3.14.0.0 2008.01.21 -
[b]F-Prot 4.4.2.54 2008.01.21 W32/Goldun.A.gen!Eldorado[/b]
F-Secure 6.70.13260.0 2008.01.21 -
[b]Ikarus T3.1.1.20 2008.01.21 Trojan-Spy.Win32.Agent.rb[/b]
Kaspersky 7.0.0.125 2008.01.21 -
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.21 -
NOD32v2 2809 2008.01.21 -
Norman 5.80.02 2008.01.20 -
[b]Panda 9.0.0.4 2008.01.20 Suspicious file
Prevx1 V2 2008.01.21 Heuristic: Suspicious Browser Help Object[/b]
Rising 20.28.00.00 2008.01.21 -
[b]Sophos 4.24.0 2008.01.21 Troj/Dowdec-Gen
Sunbelt 2.2.907.0 2008.01.17 VIPRE.Suspicious[/b]
Symantec 10 2008.01.21 -
TheHacker 6.2.9.191 2008.01.19 -
[b]VBA32 3.12.2.5 2008.01.21 suspected of Downloader.Small.33[/b]
VirusBuster 4.3.26:9 2008.01.20 -
[b]Webwasher-Gateway 6.6.2 2008.01.21 Trojan.Crypt.ULPM.Gen[/b][/code]
File size: 12800 bytes
MD5: 28a6b93a4460134e2b037b3a866ccef3
SHA1: 8beb0a608d8f287bbc5ac0582f99cec80c2d5b52
PEiD: -
packers: UPX
packers: UPX
packers: UPX
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=6D77A07500FC88F9329A003BCD7BFD00FEE53E2C[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
T-16724
[code]Файл avz00008.dta получен 2008.01.21 16:48:26 (CET)
Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.22.10 2008.01.21 -
[B]AntiVir 7.6.0.48 2008.01.21 DR/Delphi.Gen[/B]
Authentium 4.93.8 2008.01.21 -
Avast 4.7.1098.0 2008.01.20 -
[B]AVG 7.5.0.516 2008.01.21 Delf.DID[/B]
BitDefender 7.2 2008.01.21 -
[B]CAT-QuickHeal 9.00 2008.01.21 Trojan.Buzus.s[/B]
ClamAV 0.91.2 2008.01.21 -
DrWeb 4.44.0.09170 2008.01.21 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5475 2008.01.21 -
Ewido 4.0 2008.01.21 -
FileAdvisor 1 2008.01.21 -
Fortinet 3.14.0.0 2008.01.21 -
[B]F-Prot 4.4.2.54 2008.01.21 W32/Trojan2.TAD
F-Secure 6.70.13260.0 2008.01.21 Zbot.Y
Ikarus T3.1.1.20 2008.01.21 Trojan-Dropper.Win32.FriJoiner.cr
Kaspersky 7.0.0.125 2008.01.21 Heur.Trojan.Generic
McAfee 5211 2008.01.18 Spy-Agent.cj.gen.h
Microsoft 1.3109 2008.01.21 VirTool:Win32/DelfInject.gen!AC[/B]
NOD32v2 2811 2008.01.21 -
[B]Norman 5.80.02 2008.01.21 Zbot.Y[/B]
Panda 9.0.0.4 2008.01.20 -
Prevx1 V2 2008.01.21 -
[B]Rising 20.28.02.00 2008.01.21 Trojan.DL.Win32.Agent.bxw[/B]
Sophos 4.24.0 2008.01.21 -
Sunbelt 2.2.907.0 2008.01.17 -
[B]Symantec 10 2008.01.21 Backdoor.Bifrose
TheHacker 6.2.9.191 2008.01.19 Trojan/Dropper.FriJoiner.cw
VBA32 3.12.2.5 2008.01.21 Trojan-Dropper.Win32.FriJoiner.cr[/B]
VirusBuster 4.3.26:9 2008.01.21 -
[B]Webwasher-Gateway 6.6.2 2008.01.21 Trojan.Dropper.Delphi.Gen[/B]
Дополнительная информация
File size: 524288 bytes
MD5: 9f21f6ec4a7b395727fb704c2bdcc358
SHA1: f092943379c88e5c7d6eb9b43d644c7780cbaee7
PEiD: BobSoft Mini Delphi -> BoB / BobSoft[/code]
-
Файл __.htm получен 2008.01.22 02:48:50 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.22.10 2008.01.21 -
AntiVir 7.6.0.48 2008.01.21 -
Authentium 4.93.8 2008.01.21 -
Avast 4.7.1098.0 2008.01.21 -
AVG 7.5.0.516 2008.01.21 -
BitDefender 7.2 2008.01.22 -
CAT-QuickHeal 9.00 2008.01.21 -
[B]ClamAV 0.91.2 2008.01.22 JS.Small[/B]
[B]DrWeb 4.44.0.09170 2008.01.21 VBS.Psyme.377[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5475 2008.01.21 -
Ewido 4.0 2008.01.21 -
FileAdvisor 1 2008.01.22 -
Fortinet 3.14.0.0 2008.01.21 -
F-Prot 4.4.2.54 2008.01.21 -
F-Secure 6.70.13260.0 2008.01.22 -
[B]Ikarus T3.1.1.20 2008.01.22 Trojan-Downloader.JS.Inor.A[/B]
Kaspersky 7.0.0.125 2008.01.22 -
McAfee 5212 2008.01.21 -
[B]Microsoft 1.3109 2008.01.22 Exploit:HTML/IframeRef.gen[/B]
NOD32v2 2812 2008.01.21 -
Norman 5.80.02 2008.01.21 -
Panda 9.0.0.4 2008.01.21 -
Prevx1 V2 2008.01.22 -
Rising 20.28.02.00 2008.01.21 -
[B]Sophos 4.24.0 2008.01.22 Mal/FunDF-A[/B]
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.22 -
TheHacker 6.2.9.193 2008.01.22 -
[B]VBA32 3.12.2.5 2008.01.21 Trojan-Downloader.JS.Psyme.cv
VirusBuster 4.3.26:9 2008.01.21 JS.Psyme.AX
[/B]Webwasher-Gateway 6.6.2 2008.01.21 -
Дополнительная информация
File size: 34951 bytes
MD5: c7072576f08e439a0ec84a0d8b3cd2cf
SHA1: b9954d4455b8f1671dfba1567185885ea22ef6ca
PEiD: -
-
File onlinepatch.exe received on 01.22.2008 18:17:20 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2008.1.23.10 2008.01.22 -
[B]AntiVir 7.6.0.48 2008.01.22 HEUR/Malware[/B]
Authentium 4.93.8 2008.01.22 -
Avast 4.7.1098.0 2008.01.22 -
AVG 7.5.0.516 2008.01.22 -
BitDefender 7.2 2008.01.22 -
CAT-QuickHeal 9.00 2008.01.22 -
ClamAV 0.91.2 2008.01.22 -
DrWeb 4.44.0.09170 2008.01.22 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5477 2008.01.22 -
Ewido 4.0 2008.01.22 -
FileAdvisor 1 2008.01.22 -
Fortinet 3.14.0.0 2008.01.22 -
F-Prot 4.4.2.54 2008.01.21 -
F-Secure 6.70.13260.0 2008.01.22 -
Ikarus T3.1.1.20 2008.01.22 -
Kaspersky 7.0.0.125 2008.01.22 -
McAfee 5212 2008.01.21 -
Microsoft 1.3109 2008.01.22 -
NOD32v2 2815 2008.01.22 -
Norman 5.80.02 2008.01.22 -
Panda 9.0.0.4 2008.01.21 -
Prevx1 V2 2008.01.22 -
Rising 20.28.12.00 2008.01.22 -
[B]Sophos 4.24.0 2008.01.22 Mal/Basine-C[/B]
[B]Sunbelt 2.2.907.0 2008.01.17 VIPRE.Suspicious[/B]
Symantec 10 2008.01.22 -
TheHacker 6.2.9.194 2008.01.22 -
[B]VBA32 3.12.2.5 2008.01.21 suspected of Trojan-PSW.Pinch.3 (paranoid heuristics)[/B]
VirusBuster 4.3.26:9 2008.01.22 -
[B]Webwasher-Gateway 6.6.2 2008.01.22 Heuristic.Malware[/B]
Additional information
File size: 133043 bytes
MD5: b962a4245c9267c0f9b7856722980952
SHA1: b1d2b6652b7c93b4ea0278ea2c992ec1647d63e0
PEiD: -
packers: Orien
-
AhnLab-V3 2008.1.23.10 2008.01.22 -
[B]AntiVir 7.6.0.48 2008.01.22 Worm/Ntech.AI[/B]
Authentium 4.93.8 2008.01.22 -
Avast 4.7.1098.0 2008.01.22 -
[B]AVG 7.5.0.516 2008.01.22 SHeur.AOIK[/B]
BitDefender 7.2 2008.01.22 -
CAT-QuickHeal 9.00 2008.01.22 -
ClamAV 0.91.2 2008.01.22 -
DrWeb 4.44.0.09170 2008.01.22 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5477 2008.01.22 -
Ewido 4.0 2008.01.22 -
FileAdvisor 1 2008.01.22 -
Fortinet 3.14.0.0 2008.01.22 -
F-Prot 4.4.2.54 2008.01.21 -
F-Secure 6.70.13260.0 2008.01.22 -
Ikarus T3.1.1.20 2008.01.22 -
Kaspersky 7.0.0.125 2008.01.22 -
McAfee 5212 2008.01.21 -
[B]Microsoft 1.3109 2008.01.22 VirTool:WinNT/Cutwail.gen!B[/B]
NOD32v2 2815 2008.01.22 -
Norman 5.80.02 2008.01.22 -
Panda 9.0.0.4 2008.01.21 -
Prevx1 V2 2008.01.22 -
Rising 20.28.12.00 2008.01.22 -
[B]Sophos 4.24.0 2008.01.22 Troj/Pushdo-Gen[/B]
Sunbelt 2.2.907.0 2008.01.17 -
[B]Symantec 10 2008.01.22 Downloader[/B]
TheHacker 6.2.9.194 2008.01.22 -
VBA32 3.12.2.5 2008.01.21 -
[B]VirusBuster 4.3.26:9 2008.01.22 Trojan.DR.Pandex.Gen.4
Webwasher-Gateway 6.6.2 2008.01.22 Worm.Ntech.AI[/B]
Дополнительная информация
File size: 29184 bytes
MD5: 1ea4a43afdfdeb61c7386295d3c6f8e3
SHA1: 695e58b5aadb85a3467627d2515acc0b669b0372
PEiD: -
-
File SmilesQip_ICQ.exe received on 01.23.2008 00:11:33 (CET)
AhnLab-V3 2008.1.23.10 2008.01.22 -
[B]AntiVir 7.6.0.48 2008.01.22 HEUR/Crypted[/B]
Authentium 4.93.8 2008.01.22 -
Avast 4.7.1098.0 2008.01.22 -
AVG 7.5.0.516 2008.01.22 -
BitDefender 7.2 2008.01.22 -
[B]CAT-QuickHeal 9.00 2008.01.22 TrojanPSW.LdPinch.fer[/B]
ClamAV 0.91.2 2008.01.22 -
DrWeb 4.44.0.09170 2008.01.22 -
[B]eSafe 7.0.15.0 2008.01.16 Suspicious File[/B]
eTrust-Vet 31.3.5477 2008.01.22 -
Ewido 4.0 2008.01.22 -
FileAdvisor 1 2008.01.23 -
Fortinet 3.14.0.0 2008.01.22 -
F-Prot 4.4.2.54 2008.01.22 -
[B]F-Secure 6.70.13260.0 2008.01.22 Trojan-PSW.Win32.LdPinch.fer[/B]
Ikarus T3.1.1.20 2008.01.22 -
[B]Kaspersky 7.0.0.125 2008.01.23 Trojan-PSW.Win32.LdPinch.fer[/B]
McAfee 5213 2008.01.22 -
Microsoft 1.3109 2008.01.22 -
NOD32v2 2815 2008.01.22 -
Norman 5.80.02 2008.01.22 -
Panda 9.0.0.4 2008.01.22 -
Prevx1 V2 2008.01.23 -
Rising 20.28.12.00 2008.01.22 -
Sophos 4.24.0 2008.01.22 -
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.22 -
[B]TheHacker 6.2.9.194 2008.01.22 Trojan/PSW.LdPinch.fer[/B]
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.22 -
[B]Webwasher-Gateway 6.6.2 2008.01.22 Heuristic.Crypted[/B]
Additional information
File size: 78336 bytes
MD5: 524df7401bc599e6437b3b73fd7ce436
SHA1: 684b8133b66a98066181c05f18ce276982088118
PEiD: -
-
Файл finreal.-exe получен 2008.01.15 19:05:06 (CET)
[B]AhnLab-V3 2008.1.16.10 2008.01.15 Win-AppCare/Webmoner.618496[/B]
AntiVir 7.6.0.48 2008.01.15 -
Authentium 4.93.8 2008.01.13 -
[B]Avast 4.7.1098.0 2008.01.14 Win32:Trojan-gen {Other}[/B]
[B]AVG 7.5.0.516 2008.01.14 Generic7.PAQ[/B]
BitDefender 7.2 2008.01.15 -
[B]CAT-QuickHeal 9.00 2008.01.15 Hoax.WebMoner.bd (Not a Virus)[/B]
ClamAV 0.91.2 2008.01.14 -
[B]DrWeb 4.44.0.09170 2008.01.15 Joke.Finreal[/B]
eSafe 7.0.15.0 2008.01.14 -
eTrust-Vet 31.3.5459 2008.01.15 -
[B]Ewido 4.0 2008.01.15 Not-A-Virus.Hoax.Win32.WebMoner.bd[/B]
[B]FileAdvisor 1 2008.01.15 High threat detected[/B]
[B]Fortinet 3.14.0.0 2008.01.15 Misc/WebMoner[/B]
F-Prot 4.4.2.54 2008.01.14 -
[B]F-Secure 6.70.13030.0 2008.01.15 not-virus:Hoax.Win32.WebMoner.bd[/B]
[B]Ikarus T3.1.1.20 2008.01.15 not-a-virus:Hoax.Win32.WebMoner.bd[/B]
[B]Kaspersky 7.0.0.125 2008.01.15 not-virus:Hoax.Win32.WebMoner.bd[/B]
McAfee 5208 2008.01.15 -
Microsoft 1.3109 2008.01.15 -
NOD32v2 2793 2008.01.15 -
[B]Norman 5.80.02 2008.01.15 W32/Webmoner.MI[/B]
[B]Panda 9.0.0.4 2008.01.14 Trj/Webmoner.O[/B]
[B]Prevx1 V2 2008.01.15 Generic.Malware[/B]
[B]Rising 20.27.12.00 2008.01.15 AdWare.Win32.WebMoner.bd[/B]
Sophos 4.24.0 2008.01.15 -
[B]Sunbelt 2.2.907.0 2008.01.15 Hoax.Win32.WebMoner.bd[/B]
Symantec 10 2008.01.15 -
[B]TheHacker 6.2.9.187 2008.01.13 Aplicacion/WebMoner.bd[/B]
VBA32 3.12.2.5 2008.01.13 -
VirusBuster 4.3.26:9 2008.01.15 -
[B]Webwasher-Gateway 6.6.2 2008.01.15 Riskware.Hoax.Webmoner.BD[/B]
Дополнительная информация
File size: 618496 bytes
MD5: 758acb4a461722d3f3bbf62f3a25844b
SHA1: 50e53b51faf3b2e4b9050b83c87b23a03bf8dc92
-
ntos.exe
Файл avz00001.dta получен 2008.01.25 10:28:32 (CET)
[code]AhnLab-V3 2008.1.25.11 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.01.25 -
Avast 4.7.1098.0 2008.01.25 -
[B]AVG 7.5.0.516 2008.01.24 Pakes_c.KD
BitDefender 7.2 2008.01.25 Trojan.Spy.Agent.NNK[/B]
CAT-QuickHeal 9.00 2008.01.24 -
ClamAV 0.91.2 2008.01.25 -
DrWeb 4.44.0.09170 2008.01.25 -
[B]eSafe 7.0.15.0 2008.01.16 Suspicious File[/B]
eTrust-Vet 31.3.5484 2008.01.25 -
Ewido 4.0 2008.01.24 -
FileAdvisor 1 2008.01.25 -
Fortinet 3.14.0.0 2008.01.25 -
F-Prot 4.4.2.54 2008.01.24 -
[B]F-Secure 6.70.13260.0 2008.01.24 Suspicious:W32/Malware!Gemini[/B]
Ikarus T3.1.1.20 2008.01.25 -
Kaspersky 7.0.0.125 2008.01.25 -
McAfee 5215 2008.01.24 -
Microsoft 1.3109 2008.01.25 -
NOD32v2 2821 2008.01.25 -
Norman 5.80.02 2008.01.24 -
[B]Panda 9.0.0.4 2008.01.24 Suspicious file[/B]
Prevx1 V2 2008.01.25 -
Rising 20.28.41.00 2008.01.25 -
[B]Sophos 4.25.0 2008.01.25 Mal/Behav-066[/B]
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.25 -
TheHacker 6.2.9.196 2008.01.23 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.24 -
[B]Webwasher-Gateway 6.6.2 2008.01.25 Trojan.Crypt.XPACK.Gen[/B][/code]
File size: 78848 bytes
MD5: 1bad09e84b67336ae4a13cfcc3bb3029
SHA1: e0abccd2c21948423521ee28048330fc8ed09f46
PEiD: -
[size="1"][color="#666686"][B][I]Добавлено через 3 часа 15 минут[/I][/B][/color][/size]
С того же пациента
Windows\TEMP\winlogon.exe
Файл avz00001.dta получен 2008.01.25 13:49:01 (CET)
[code]AhnLab-V3 2008.1.25.11 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 DR/Delphi.Gen[/B]
Authentium 4.93.8 2008.01.25 -
Avast 4.7.1098.0 2008.01.25 -
AVG 7.5.0.516 2008.01.24 -
[B]BitDefender 7.2 2008.01.25 Trojan.PSW.LdPinch.AKX[/B]
CAT-QuickHeal 9.00 2008.01.24 -
ClamAV 0.91.2 2008.01.25 -
[B]DrWeb 4.44.0.09170 2008.01.25 Trojan.Packed.147[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5484 2008.01.25 -
Ewido 4.0 2008.01.24 -
FileAdvisor 1 2008.01.25 -
Fortinet 3.14.0.0 2008.01.25 -
F-Prot 4.4.2.54 2008.01.24 -
[B]F-Secure 6.70.13260.0 2008.01.25 LdPinch.STT
Ikarus T3.1.1.20 2008.01.25 Virus.Win32.Zapchast.DA[/B]
Kaspersky 7.0.0.125 2008.01.25 -
McAfee 5215 2008.01.24 -
[B]Microsoft 1.3109 2008.01.25 VirTool:Win32/DelfInject.gen!AA
NOD32v2 2822 2008.01.25 a variant of Win32/Injector.J
Norman 5.80.02 2008.01.24 LdPinch.STT[/B]
Panda 9.0.0.4 2008.01.24 -
Prevx1 V2 2008.01.25 -
[B]Rising 20.28.41.00 2008.01.25 Trojan.DL.Win32.Agent.bxw
Sophos 4.25.0 2008.01.25 Mal/Dropper-T[/B]
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.25 -
TheHacker 6.2.9.196 2008.01.23 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.24 -
[B]Webwasher-Gateway 6.6.2 2008.01.25 Trojan.Dropper.Delphi.Gen[/B][/code]
File size: 42496 bytes
MD5: 9209632936a12b31a8fc5db199aa3eb3
SHA1: a59a0cea1faf2e0ece0ebdfcc1cab3d5a86ca273
PEiD: -
-
File regger_icq__c__Isis.exe received on 01.25.2008 21:35:55 (CET)
[B]AhnLab-V3 2008.1.26.10 2008.01.25 Win-Trojan/LdPinch.46081
AntiVir 7.6.0.53 2008.01.25 DIAL/46081.A
Authentium 4.93.8 2008.01.25 is a security risk or a \"backdoor\" program
Avast 4.7.1098.0 2008.01.25 Win32:LdPinch-VQ
AVG 7.5.0.516 2008.01.25 PSW.Ldpinch.DNO
BitDefender 7.2 2008.01.25 Trojan.Pws.Ldpinch.BGZ[/B]
CAT-QuickHeal 9.00 2008.01.24 -
[B]ClamAV 0.91.2 2008.01.25 Trojan.Spy-1724
DrWeb 4.44.0.09170 2008.01.25 Trojan.MulDrop.4895
eSafe 7.0.15.0 2008.01.16 Win32.LdPinch.bgz[/B]
eTrust-Vet 31.3.5484 2008.01.25 -
[B]Ewido 4.0 2008.01.25 Trojan.LdPinch.bgz[/B]
FileAdvisor 1 2008.01.25 -
[B]Fortinet 3.14.0.0 2008.01.25 W32/LdPinch.BGZ!tr.pws
F-Prot 4.4.2.54 2008.01.25 W32/PWS!82c1
F-Secure 6.70.13260.0 2008.01.25 W32/Dialer.BBGX
Ikarus T3.1.1.20 2008.01.25 Trojan-PWS.Win32.LdPinch.bgz
Kaspersky 7.0.0.125 2008.01.25 Trojan-PSW.Win32.LdPinch.bgz[/B]
[COLOR="Red"]McAfee 5215 2008.01.24 -[/COLOR]
[B]Microsoft 1.3109 2008.01.25 TrojanDownloader:Win32/Agent.XE
NOD32v2 2823 2008.01.25 Win32/PSW.LdPinch.BHR
Norman 5.80.02 2008.01.24 W32/Dialer.BBGX
Panda 9.0.0.4 2008.01.25 Trj/Ldpinch.WE
Prevx1 V2 2008.01.25 Generic.Malware
Rising 20.28.41.00 2008.01.25 Trojan.PSW.Win32.LdPinch.bgz
Sophos 4.25.0 2008.01.25 Mal/Generic-A
Sunbelt 2.2.907.0 2008.01.25 Trojan-PWS.Win32.Ldpinch.gen
Symantec 10 2008.01.25 Infostealer
TheHacker 6.2.9.197 2008.01.25 Trojan/PSW.LdPinch.bgz
VBA32 3.12.2.5 2008.01.21 Trojan.MulDrop.4895[/B]
VirusBuster 4.3.26:9 2008.01.25 -
[B]Webwasher-Gateway 6.6.2 2008.01.25 Dialer.46081.A[/B]
Additional information
File size: 47105 bytes
MD5: 9f7756fa8b591ed7abca2f5553082d82
SHA1: 19a64786b3935af2a183b7249ddea8ce376e959d
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=844C72F301343BCAB8CF002EFD659A008ED34480[/url]
File IcqFucker.zip received on 01.25.2008 22:19:50 (CET)
AhnLab-V3 2008.1.26.10 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 TR/Drop.Tiny.M.22[/B]
[B]Authentium 4.93.8 2008.01.25 is a dropper for W32/Dropper.DHK
Avast 4.7.1098.0 2008.01.25 Win32:JunkPoly
AVG 7.5.0.516 2008.01.25 Dropper.Generic.IWX
BitDefender 7.2 2008.01.25 Packer.Pohernah.A[/B]
CAT-QuickHeal 9.00 2008.01.25 -
[B]ClamAV 0.91.2 2008.01.25 Trojan.Dropper-173
DrWeb 4.44.0.09170 2008.01.25 Trojan.MulDrop.5419
eSafe 7.0.15.0 2008.01.16 Win32.Tiny.m[/B]
eTrust-Vet 31.3.5484 2008.01.25 -
[B]Ewido 4.0 2008.01.25 Dropper.Tiny.m[/B]
FileAdvisor 1 2008.01.25 -
[B]Fortinet 3.14.0.0 2008.01.25 W32/Tiny.M!tr
F-Prot 4.4.2.54 2008.01.25 W32/Dropper.DHK
F-Secure 6.70.13260.0 2008.01.25 Trojan-Dropper.Win32.Tiny.m
Ikarus T3.1.1.20 2008.01.25 Trojan-Dropper.Win32.Tiny.m
Kaspersky 7.0.0.125 2008.01.25 Trojan-Dropper.Win32.Tiny.m[/B]
[B][COLOR="Red"]McAfee 5215 2008.01.24 -[/COLOR]
Microsoft 1.3109 2008.01.25 TrojanDropper:Win32/Small[/B]
[COLOR="#ff0000"]NOD32v2 2823 2008.01.25 -[/COLOR]
[B]Norman 5.80.02 2008.01.24 PolyCrypt.F.dropper
Panda 9.0.0.4 2008.01.25 Generic Malware
Prevx1 V2 2008.01.25 Generic.Malware[/B]
Rising 20.28.41.00 2008.01.25 -
[B]Sophos 4.25.0 2008.01.25 Mal/Basine-C
Sunbelt 2.2.907.0 2008.01.25 Trojan-Dropper.Win32.Tiny.m[/B]
[COLOR="#ff0000"]Symantec 10 2008.01.25 -[/COLOR]
[B]TheHacker 6.2.9.197 2008.01.25 Trojan/Dropper.Tiny.m
VBA32 3.12.2.5 2008.01.21 Trojan.MulDrop.5038
VirusBuster 4.3.26:9 2008.01.25 Trojan.DR.Webmoner.Gen.2
Webwasher-Gateway 6.6.2 2008.01.25 Trojan.Drop.Tiny.M.22[/B]
Additional information
File size: 385052 bytes
MD5: 9e87f7de3578576ff0e6f5c5d8499b36
SHA1: e22cca5909b78e0fb3e1bb56ea3e056f4cd69289
PEiD: -
packers: PE_Patch
File AntiICQ.exe received on 01.26.2008 22:04:18 (CET)
AhnLab-V3 2008.1.26.10 2008.01.25 -
AntiVir 7.6.0.53 2008.01.25 -
Authentium 4.93.8 2008.01.26 -
Avast 4.7.1098.0 2008.01.26 -
AVG 7.5.0.516 2008.01.26 -
BitDefender 7.2 2008.01.26 -
[B]CAT-QuickHeal 9.00 2008.01.25 TrojanPSW.Agent.xf[/B]
ClamAV 0.91.2 2008.01.26 -
DrWeb 4.44.0.09170 2008.01.26 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5486 2008.01.26 -
Ewido 4.0 2008.01.26 -
FileAdvisor 1 2008.01.26 -
Fortinet 3.14.0.0 2008.01.26 -
F-Prot 4.4.2.54 2008.01.26 -
[B]F-Secure 6.70.13260.0 2008.01.26 Suspicious:W32/Malware!Gemini
Ikarus T3.1.1.20 2008.01.26 Trojan-Proxy.Win32.Delf.av
Kaspersky 7.0.0.125 2008.01.26 Trojan-PSW.Win32.Agent.xh[/B]
McAfee 5216 2008.01.26 -
Microsoft 1.3109 2008.01.26 -
NOD32v2 2824 2008.01.26 -
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.26 -
[B]Prevx1 V2 2008.01.26 Heuristic: Suspicious File With Mass Email Capabilities[/B]
Rising 20.28.52.00 2008.01.26 -
Sophos 4.25.0 2008.01.26 -
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.26 -
TheHacker 6.2.9.199 2008.01.26 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.26 -
Webwasher-Gateway 6.6.2 2008.01.26 -
Additional information
File size: 1026560 bytes
MD5: ba20c555d0ec2e6e75edbcbd59ddab1e
SHA1: 7512ef3606faa50285f93788c1d743bb3614a0db
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=62D9396400A9BCE3AAC90F3599D65500E4B1B162[/url]
-
ehevcwfq.dll
[quote]Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.26.10 2008.01.25 -
AntiVir 7.6.0.53 2008.01.25 TR/Dldr.ConHook.Gen
Authentium 4.93.8 2008.01.26 -
Avast 4.7.1098.0 2008.01.26 Win32:TratBHO
AVG 7.5.0.516 2008.01.26 Lop
BitDefender 7.2 2008.01.26 -
CAT-QuickHeal 9.00 2008.01.25 -
ClamAV 0.91.2 2008.01.26 -
DrWeb 4.44.0.09170 2008.01.26 -
eSafe 7.0.15.0 2008.01.16 Suspicious File
eTrust-Vet 31.3.5486 2008.01.26 -
Ewido 4.0 2008.01.26 -
FileAdvisor 1 2008.01.26 -
Fortinet 3.14.0.0 2008.01.26 -
F-Prot 4.4.2.54 2008.01.26 W32/Virtumonde.G.gen!Eldorado
F-Secure 6.70.13260.0 2008.01.26 -
Ikarus T3.1.1.20 2008.01.26 -
Kaspersky 7.0.0.125 2008.01.26 -
McAfee 5216 2008.01.26 -
Microsoft 1.3109 2008.01.26 Trojan:Win32/Vundo.gen!A
NOD32v2 2824 2008.01.26 -
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.26 Suspicious file
Prevx1 V2 2008.01.26 Trojan.Vundo
Rising 20.28.52.00 2008.01.26 -
Sophos 4.25.0 2008.01.26 Troj/Virtum-Gen
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.26 -
TheHacker 6.2.9.199 2008.01.26 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.26 Adware.Vundo.V.Gen
Webwasher-Gateway 6.6.2 2008.01.26 Trojan.Dldr.ConHook.Gen[/quote]
Дополнительная информация
File size: 78709 bytes
MD5: f379658bab738c81ddfd787493151848
SHA1: 2398a70e6bef0455ee5ce1b221334670896a321e
PEiD: -
-
Файл ***.rar получен 2008.01.27 12:43:53 (CET)
Текущий статус: закончено
Результат: 8/32 (25.00%)
[QUOTE]Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.26.10 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 HEUR/Crypted[/B]
Authentium 4.93.8 2008.01.26 -
Avast 4.7.1098.0 2008.01.27 -
AVG 7.5.0.516 2008.01.26 -
[B]BitDefender 7.2 2008.01.27 DeepScan:Generic.LdPinch1.9FBE2AFE[/B]
CAT-QuickHeal 9.00 2008.01.25 -
ClamAV 0.91.2 2008.01.27 -
DrWeb 4.44.0.09170 2008.01.27 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5486 2008.01.26 -
Ewido 4.0 2008.01.27 -
FileAdvisor 1 2008.01.27 -
Fortinet 3.14.0.0 2008.01.27 -
[B]F-Prot 4.4.2.54 2008.01.26 W32/LdPinch.I.gen!Eldorado[/B]
F-Secure 6.70.13260.0 2008.01.26 -
[B]Ikarus T3.1.1.20 2008.01.27 MalwareScope.Trojan-PWS.Pinch.1[/B]
[COLOR="Red"]Kaspersky 7.0.0.125 2008.01.27 -[/COLOR]
McAfee 5216 2008.01.26 -
Microsoft 1.3109 2008.01.27 PWS:Win32/Ldpinch.gen
[COLOR="Red"]NOD32v2 2825 2008.01.27 -[/COLOR]
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.26 -
Prevx1 V2 2008.01.27 -
Rising 20.28.62.00 2008.01.27 -
[B]Sophos 4.25.0 2008.01.27 Mal/Basine-C[/B]
[B]Sunbelt 2.2.907.0 2008.01.25 VIPRE.Suspicious[/B]
Symantec 10 2008.01.27 -
TheHacker 6.2.9.199 2008.01.26 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.26 -
[B]Webwasher-Gateway 6.6.2 2008.01.27 Heuristic.Crypted[/B]
Дополнительная информация
File size: 540945 bytes
MD5: 996d1a46ec5dcddf79cd8df808bd6e48
SHA1: 872c012259afd684fd13641e7fb2d9ca3731d2ea
PEiD: -
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/QUOTE]
-
Файл index.htm получен 2008.01.29 01:53:46 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.29.10 2008.01.28 -
[B]AntiVir 7.6.0.56 2008.01.28 HTML/Crypted.Gen
Authentium 4.93.8 2008.01.26 JS/IFrame.AC
[/B]Avast 4.7.1098.0 2008.01.28 -
AVG 7.5.0.516 2008.01.28 -
BitDefender 7.2 2008.01.29 -
CAT-QuickHeal 9.00 2008.01.28 -
ClamAV 0.91.2 2008.01.28 -
[B]DrWeb 4.44.0.09170 2008.01.28 Trojan.DownLoader.42681
eSafe 7.0.15.0 2008.01.28 JS.Agent.ag[/B]
eTrust-Vet 31.3.5493 2008.01.28 -
[B]Ewido 4.0 2008.01.29 Downloader.Iframe.u
[/B]FileAdvisor 1 2008.01.29 -
Fortinet 3.14.0.0 2008.01.29 -
[B]F-Prot 4.4.2.54 2008.01.28 JS/IFrame.AC
F-Secure 6.70.13260.0 2008.01.29 JS/IFrame.AC
[/B]Ikarus T3.1.1.20 2008.01.29 -
[B]Kaspersky 7.0.0.125 2008.01.29 Trojan-Clicker.HTML.IFrame.fh
[/B]McAfee 5217 2008.01.28 -
[B]Microsoft 1.3109 2008.01.28 Virus:JS/Decdec.A[/B]
NOD32v2 2829 2008.01.28 -
Norman 5.80.02 2008.01.28 -
Panda 9.0.0.4 2008.01.28 -
Prevx1 V2 2008.01.29 -
Rising 20.29.01.00 2008.01.28 -
[B]Sophos 4.25.0 2008.01.29 Troj/Decdec-A[/B]
Sunbelt 2.2.907.0 2008.01.29 -
Symantec 10 2008.01.29 -
TheHacker 6.2.9.201 2008.01.28 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.28 -
[B]Webwasher-Gateway 6.6.2 2008.01.28 Script.Crypted.Gen[/B]
Дополнительная информация
File size: 24064 bytes
MD5: 5038d53ba18ea691b491a0b6bdb69350
SHA1: 822b787ac841e54afa32762e5c4329123be86b5f
PEiD: -
-
AhnLab-V3 2008.1.19.10 2008.01.18 -
[B]AntiVir 7.6.0.48 2008.01.18 TR/Agent.58677 [/B]
Authentium 4.93.8 2008.01.19 -
[B]Avast 4.7.1098.0 2008.01.18 Win32:Trojan-gen {Other} [/B]
AVG 7.5.0.516 2008.01.18 -
[B]BitDefender 7.2 2008.01.19 Trojan.Agent.BGX
CAT-QuickHeal 9.00 2008.01.19 (Suspicious) - DNAScan
[/B]ClamAV 0.91.2 2008.01.18 -
DrWeb 4.44.0.09170 2008.01.18 -
[B]eSafe 7.0.15.0 2008.01.16 suspicious Trojan/Worm [/B]
eTrust-Vet 31.3.5470 2008.01.18 -
Ewido 4.0 2008.01.18 -
[B]FileAdvisor 1 2008.01.19 High threat detected
Fortinet 3.14.0.0 2008.01.19 W32/Basine.C!tr
[/B]F-Prot 4.4.2.54 2008.01.19 -
[B]F-Secure 6.70.13260.0 2008.01.18 W32/LdPinch.RGL
Ikarus T3.1.1.20 2008.01.19 Trojan-PWS.Win32.LdPinch.boy
[/B]Kaspersky 7.0.0.125 2008.01.19 -
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.18 -
NOD32v2 2807 2008.01.19 -
[B]Norman 5.80.02 2008.01.18 W32/LdPinch.RGL
Panda 9.0.0.4 2008.01.18 Generic Malware
Prevx1 V2 2008.01.19 Generic.Malware
[/B]Rising 20.27.42.00 2008.01.18 -
[B]Sophos 4.24.0 2008.01.19 Mal/Basine-C
Sunbelt 2.2.907.0 2008.01.17 VIPRE.Suspicious
Symantec 10 2008.01.19 Bloodhound.W32.EP
TheHacker 6.2.9.191 2008.01.18 W32/Behav-Heuristic-061
[/B]VBA32 3.12.2.5 2008.01.15 -
[B]VirusBuster 4.3.26:9 2008.01.18 Trojan.Agent.VEO
Webwasher-Gateway 6.6.2 2008.01.18 Trojan.Agent.58677[/B]
-
error404.dll
Файл e404d.dll_ получен 2008.01.30 09:59:04 (CET)
[code]AhnLab-V3 2008.1.30.11 2008.01.30 -
AntiVir 7.6.0.57 2008.01.30 -
Authentium 4.93.8 2008.01.30 -
[B]Avast 4.7.1098.0 2008.01.30 Win32:Agent-PSR
AVG 7.5.0.516 2008.01.30 Agent.MOM[/B]
BitDefender 7.2 2008.01.30 -
CAT-QuickHeal 9.00 2008.01.29 -
ClamAV 0.91.2 2008.01.30 -
DrWeb 4.44.0.09170 2008.01.30 -
[B]eSafe 7.0.15.0 2008.01.28 Suspicious File[/B]
eTrust-Vet 31.3.5497 2008.01.30 -
Ewido 4.0 2008.01.29 -
FileAdvisor 1 2008.01.30 -
Fortinet 3.14.0.0 2008.01.30 -
F-Prot 4.4.2.54 2008.01.29 -
F-Secure 6.70.13260.0 2008.01.30 -
[B]Ikarus T3.1.1.20 2008.01.29 Trojan-Clicker.Win32.Small.BG[/B]
Kaspersky 7.0.0.125 2008.01.30 -
McAfee 5218 2008.01.29 -
Microsoft 1.3109 2008.01.28 -
[B]NOD32v2 2834 2008.01.30 a variant of Win32/Agent.NNU[/B]
Norman 5.80.02 2008.01.29 -
Panda 9.0.0.4 2008.01.29 -
[B]Prevx1 V2 2008.01.30 E404Bho:Adware-b[/B]
Rising 20.29.21.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.30 Mal/Heuri-E
Sunbelt 2.2.907.0 2008.01.30 VIPRE.Suspicious
Symantec 10 2008.01.30 Adware.Adpopup[/B]
TheHacker 6.2.9.201 2008.01.28 -
VBA32 3.12.2.6 2008.01.29 -
[B]VirusBuster 4.3.26:9 2008.01.29 Adware.Agent.WYF[/B]
Webwasher-Gateway 6.6.2 2008.01.30 -[/code]
File size: 51712 bytes
MD5: 950f2c1c3839150587009e03948c50c2
SHA1: 6938e99b67d9945df8e79cc7213a40e9533a40d3
PEiD: PECompact 2.xx --> BitSum Technologies
packers: PECompact, PECompact
packers: PecBundle, PECompact
packers: PE_Patch.PECompact, PecBundle, PECompact
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=23754C3C003929C6CAC8007B2BBE4D00730D69FF[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
Файл system32.rar получен 2008.01.30 15:50:59 (CET)
AhnLab-V3 2008.1.31.10 2008.01.30 -
[B]AntiVir 7.6.0.57 2008.01.30 TR/Crypt.XPACK.Gen [/B]
Authentium 4.93.8 2008.01.30 -
[B]Avast 4.7.1098.0 2008.01.30 Win32:JunkPoly
AVG 7.5.0.516 2008.01.30 Win32/PolyCrypt
BitDefender 7.2 2008.01.30 DeepScan:Generic.LdPinch1.705481DA [/B]
CAT-QuickHeal 9.00 2008.01.29 -
ClamAV 0.91.2 2008.01.30 -
[B]DrWeb 4.44.0.09170 2008.01.30 Trojan.Packed.153
eSafe 7.0.15.0 2008.01.28 Suspicious File [/B]
eTrust-Vet 31.3.5497 2008.01.30 -
Ewido 4.0 2008.01.30 -
FileAdvisor 1 2008.01.30 -
Fortinet 3.14.0.0 2008.01.30 -
F-Prot 4.4.2.54 2008.01.29 -
F-Secure 6.70.13260.0 2008.01.30 -
Ikarus T3.1.1.20 2008.01.30 -
[B]Kaspersky 7.0.0.125 2008.01.30 Heur.Trojan.Generic
McAfee 5218 2008.01.29 New Malware.bl [/B]
Microsoft 1.3109 2008.01.28 -
NOD32v2 2836 2008.01.30 -
Norman 5.80.02 2008.01.29 -
[B]Panda 9.0.0.4 2008.01.29 Suspicious file
Prevx1 V2 2008.01.30 Heuristic: Suspicious Code [/B]
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.30 Mal/Basine-C
Sunbelt 2.2.907.0 2008.01.30 VIPRE.Suspicious
Symantec 10 2008.01.30 Bloodhound.Packed.31 [/B]
TheHacker 6.2.9.201 2008.01.28 -
VBA32 3.12.2.6 2008.01.29 -
VirusBuster 4.3.26:9 2008.01.29 -
[B]Webwasher-Gateway 6.6.2 2008.01.30 Trojan.Crypt.XPACK.Gen [/B]
-
sanitardiska
Файл avz00003.dta получен 2008.01.30 17:42:08 (CET)
[code]AhnLab-V3 2008.1.31.10 2008.01.30 -
AntiVir 7.6.0.59 2008.01.30 -
Authentium 4.93.8 2008.01.30 -
[B]Avast 4.7.1098.0 2008.01.30 Win32:Adware-gen[/B]
AVG 7.5.0.516 2008.01.30 -
BitDefender 7.2 2008.01.30 -
CAT-QuickHeal 9.00 2008.01.29 -
ClamAV 0.91.2 2008.01.30 -
DrWeb 4.44.0.09170 2008.01.30 -
[B]eSafe 7.0.15.0 2008.01.28 suspicious Trojan/Worm[/B]
eTrust-Vet 31.3.5497 2008.01.30 -
Ewido 4.0 2008.01.30 -
[B]FileAdvisor 1 2008.01.30 High threat detected[/B]
Fortinet 3.14.0.0 2008.01.30 -
F-Prot 4.4.2.54 2008.01.29 -
F-Secure 6.70.13260.0 2008.01.30 -
[B]Ikarus T3.1.1.20 2008.01.30 Trojan-Downloader.Win32.QQHelper.vn[/B]
Kaspersky 7.0.0.125 2008.01.30 -
McAfee 5218 2008.01.29 -
Microsoft 1.3109 2008.01.28 -
NOD32v2 2836 2008.01.30 -
Norman 5.80.02 2008.01.29 -
[B]Panda 9.0.0.4 2008.01.29 Application/PCDriveTool[/B]
Prevx1 V2 2008.01.30 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.30 WinFixer[/B]
Sunbelt 2.2.907.0 2008.01.30 -
TheHacker 6.2.9.202 2008.01.30 -
VBA32 3.12.2.6 2008.01.29 -
VirusBuster 4.3.26:9 2008.01.30 -
[B]Webwasher-Gateway 6.6.2 2008.01.30 Riskware.PCDriveTool[/B][/code]
File size: 197632 bytes
MD5: dd8e0b4ad94243120439c49bc9813ef2
SHA1: 06c58004af8d75cd52114b13a086a75664a8f6eb
PEiD: -
Bit9 info: [url]http://fileadvisor.bit9.com/services/extinfo.aspx?md5=dd8e0b4ad94243120439c49bc9813ef2[/url]
packers: UPX
packers: PE_Patch.UPX, UPX
-
Файл index.htm получен 2008.02.01 01:58:21 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.1.10 2008.01.31 -
AntiVir 7.6.0.59 2008.01.31 -
Authentium 4.93.8 2008.01.31 -
Avast 4.7.1098.0 2008.02.01 -
AVG 7.5.0.516 2008.01.31 -
BitDefender 7.2 2008.02.01 -
CAT-QuickHeal 9.00 2008.01.30 -
ClamAV 0.92 2008.01.31 -
[B]DrWeb 4.44.0.09170 2008.01.31 Worm.Sifiliz[/B]
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5501 2008.02.01 -
Ewido 4.0 2008.01.31 -
FileAdvisor 1 2008.02.01 -
Fortinet 3.14.0.0 2008.01.31 -
F-Prot 4.4.2.54 2008.01.30 -
[B]F-Secure 6.70.13260.0 2008.01.31 Trojan-Downloader.JS.Remora.bg
[/B]Ikarus T3.1.1.20 2008.02.01 -
[B]Kaspersky 7.0.0.125 2008.02.01 Trojan-Downloader.JS.Remora.bg
[/B]McAfee 5220 2008.01.31 -
Microsoft 1.3109 2008.02.01 -
NOD32v2 2841 2008.02.01 -
Norman 5.80.02 2008.01.31 -
Panda 9.0.0.4 2008.01.31 -
Prevx1 V2 2008.02.01 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.31 Mal/ObfJS-R[/B]
Sunbelt 2.2.907.0 2008.02.01 -
Symantec 10 2008.02.01 -
TheHacker 6.2.9.203 2008.01.30 -
VBA32 3.12.2.6 2008.01.31 -
VirusBuster 4.3.26:9 2008.01.31 -
Webwasher-Gateway 6.6.2 2008.02.01 -
Дополнительная информация
File size: 24033 bytes
MD5: 49ea90c5d9dec69efd4050b1c3b3346b
SHA1: 1fbe03de0685da4c9c617dfd226e2d4a2af9ad67
PEiD: -
-
[url]http://www.virustotal.com/analisis/641c53101f2f9f78a37210e515e0a04b[/url]
Зловред в NTFS-потоке (stream) svchost.exe:ext.exe
File d.exe received on 01.24.2008 20:52:44 (CET)
[B]Result: 8/31[/B] (25.81%)
[CODE]Antivirus Version Last Update Result
AhnLab-V3 2008.1.25.10 2008.01.24 -
[B]AntiVir 7.6.0.48 2008.01.24 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.01.24 -
Avast 4.7.1098.0 2008.01.23 -
AVG 7.5.0.516 2008.01.24 -
[B]BitDefender 7.2 2008.01.24 BehavesLike:Win32.ExplorerHijack[/B]
CAT-QuickHeal 9.00 2008.01.24 -
ClamAV 0.91.2 2008.01.24 -
DrWeb 4.44.0.09170 2008.01.24 -
[B]eSafe 7.0.15.0 2008.01.16 suspicious Trojan/Worm[/B]
eTrust-Vet 31.3.5482 2008.01.24 -
Ewido 4.0 2008.01.24 -
FileAdvisor 1 2008.01.24 -
Fortinet 3.14.0.0 2008.01.24 -
F-Prot 4.4.2.54 2008.01.24 -
F-Secure 6.70.13260.0 2008.01.24 -
[B]Ikarus T3.1.1.20 2008.01.24 Virus.Win32.Obfuscated.BTM
Kaspersky 7.0.0.125 2008.01.24 Heur.Trojan.Generic[/B]
McAfee 5214 2008.01.23 -
[B]Microsoft 1.3109 2008.01.24 Trojan:Win32/Pugeju.A[/B]
NOD32v2 2820 2008.01.24 -
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.24 -
[B]Prevx1 V2 2008.01.24 Covert.Code[/B]
Rising 20.28.31.00 2008.01.24 -
[B]Sophos 4.24.0 2008.01.24 Mal/Behav-150[/B]
Sunbelt 2.2.907.0 2008.01.23 -
Symantec 10 2008.01.24 -
TheHacker 6.2.9.196 2008.01.23 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.24 -[/CODE]
Additional information
File size: 51200 bytes
MD5: 71d7d37bcc9554229ef53624b1aa687e
SHA1: 7f49cf680a1b5375e104fe6a5b85cbb5f812f627
PEiD: -
packers: UPX
packers: PE_Patch.UPX, UPX
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=20E538D700917DC9C82400EA8220D200A1579A40[/url]
-
Вложений: 3
-
Файл menu.dll получен 2008.02.02 05:12:53 (CET)
AhnLab-V3 2008.2.2.10 2008.02.01 -
AntiVir 7.6.0.61 2008.02.01 -
[B]Authentium 4.93.8 2008.02.01 W32/Trojan.BPOL[/B]
[B]Avast 4.7.1098.0 2008.02.01 Win32:Horse-AA[/B]
AVG 7.5.0.516 2008.02.01 -
[B]BitDefender 7.2 2008.02.02 Trojan.Horse.Pws.Ldpinch.DQY[/B]
CAT-QuickHeal 9.00 2008.02.01 -
ClamAV 0.92 2008.02.02 -
DrWeb 4.44.0.09170 2008.02.01 -
eSafe 7.0.15.0 2008.01.28 -
[B]eTrust-Vet 31.3.5504 2008.02.01 Win32/VMalum.ABBN[/B]
Ewido 4.0 2008.02.01 -
[B]FileAdvisor 1 2008.02.02 High threat detected[/B]
Fortinet 3.14.0.0 2008.02.02 -
[B]F-Prot 4.4.2.54 2008.02.01 W32/Trojan.BPOL[/B]
[B]F-Secure 6.70.13260.0 2008.02.01 W32/LdPinch.IYH[/B]
[B]Ikarus T3.1.1.20 2008.02.02 Trojan.Horse.Pws.Ldpinch.DQY[/B]
Kaspersky 7.0.0.125 2008.02.02 -
McAfee 5221 2008.02.01 -
Microsoft 1.3204 2008.02.02 -
NOD32v2 2845 2008.02.02 -
[B]Norman 5.80.02 2008.02.01 W32/LdPinch.IYH[/B]
[B]Panda 9.0.0.4 2008.02.01 Suspicious file[/B]
[B]Prevx1 V2 2008.02.02 Infostealer[/B]
[B]Rising 20.29.22.00 2008.01.30 Trojan.PSW.Win32.LdPinch.rat[/B]
Sophos 4.26.0 2008.02.02 -
[B]Sunbelt 2.2.907.0 2008.02.02 Trojan.Horse.Pws.Ldpinch.DQY[/B]
[B]Symantec 10 2008.02.02 Infostealer[/B]
TheHacker 6.2.9.205 2008.02.01 -
VBA32 3.12.6.0 2008.02.02 -
VirusBuster 4.3.26:9 2008.02.01 -
Webwasher-Gateway 6.6.2 2008.02.01 -
Дополнительная информация
File size: 26112 bytes
MD5: 32f93c22f79f6658721e82e55f31006a
SHA1: bbcd66ac2e2298f06d245c0c6ba6fa5ac7cb0857
PEiD: -
Bit9 info: [url]http://fileadvisor.bit9.com/services/extinfo.aspx?md5=32f93c22f79f6658721e82e55f31006a[/url]
packers: UPX
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=A0B427CC00A2B43E6656006DFEA7FE0035C7E59B[/url]
-
Файл IPRTbox.exe получен 2008.02.05 00:04:37 (CET)
Текущий статус: закончено
Результат: 7/32 (21.88%)
Форматированные
Печать результатов Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.5.10 2008.02.04 -
AntiVir 7.6.0.62 2008.02.04 -
Authentium 4.93.8 2008.02.04 -
Avast 4.7.1098.0 2008.02.04 -
AVG 7.5.0.516 2008.02.04 -
BitDefender 7.2 2008.02.04 -
CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.04 -
DrWeb 4.44.0.09170 2008.02.04 -
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5511 2008.02.04 -
Ewido 4.0 2008.02.04 -
FileAdvisor 1 2008.02.05 -
Fortinet 3.14.0.0 2008.02.04 -
[B]F-Prot 4.4.2.54 2008.02.04 W32/Heuristic-162!Eldorado[/B]
F-Secure 6.70.13260.0 2008.02.04 -
[B]Ikarus T3.1.1.20 2008.02.04 Trojan-Downloader.Win32.Banload.kl[/B]
Kaspersky 7.0.0.125 2008.02.04 -
McAfee 5222 2008.02.04 -
Microsoft 1.3204 2008.02.04 -
NOD32v2 2848 2008.02.04 -
Norman 5.80.02 2008.02.04 -
[B]Panda 9.0.0.4 2008.02.04 Suspicious file[/B]
Prevx1 V2 2008.02.05 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.04 Sus/ComPack-C
Sunbelt 2.2.907.0 2008.02.02 VIPRE.Suspicious[/B]
Symantec 10 2008.02.04 -
TheHacker 6.2.9.208 2008.02.04 -
[B]VBA32 3.12.6.0 2008.02.03 Trojan-PSW.Win32.LdPinch.bsj[/B]
VirusBuster 4.3.26:9 2008.02.04 -
[B]Webwasher-Gateway 6.6.2 2008.02.04 Win32.Malware.gen[/B]
Файл ______________________________.ra получен 2008.02.05 00:08:14 (CET)
Текущий статус: закончено
Результат: 2/32 (6.25%)
Форматированные
Печать результатов Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.5.10 2008.02.04 -
AntiVir 7.6.0.62 2008.02.04 -
Authentium 4.93.8 2008.02.04 -
Avast 4.7.1098.0 2008.02.04 -
AVG 7.5.0.516 2008.02.04 -
BitDefender 7.2 2008.02.04 -
CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.04 -
DrWeb 4.44.0.09170 2008.02.04 -
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5511 2008.02.04 -
Ewido 4.0 2008.02.04 -
FileAdvisor 1 2008.02.05 -
Fortinet 3.14.0.0 2008.02.04 -
F-Prot 4.4.2.54 2008.02.04 -
F-Secure 6.70.13260.0 2008.02.04 -
Ikarus T3.1.1.20 2008.02.04 -
Kaspersky 7.0.0.125 2008.02.04 -
McAfee 5222 2008.02.04 -
Microsoft 1.3204 2008.02.04 -
NOD32v2 2848 2008.02.04 -
Norman 5.80.02 2008.02.04 -
Panda 9.0.0.4 2008.02.04 -
Prevx1 V2 2008.02.05 -
Rising 20.29.22.00 2008.01.30 -
Sophos 4.26.0 2008.02.04 -
Sunbelt 2.2.907.0 2008.02.02 -
Symantec 10 2008.02.04 -
[B]TheHacker 6.2.9.208 2008.02.04 Trojan/Small.e
VBA32 3.12.6.0 2008.02.03 Trojan-Clicker.SWF.Small.e[/B]
VirusBuster 4.3.26:9 2008.02.04 -
Webwasher-Gateway 6.6.2 2008.02.04 -
-
Тема [url]http://virusinfo.info/showthread.php?t=17687[/url]
[CODE]Файл mssrv32.exe получен 2008.02.07 11:48:31 (CET)
Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.6.10 2008.02.05 -
[B]AntiVir 7.6.0.62 2008.02.07 HEUR/Crypted[/B]
Authentium 4.93.8 2008.02.06 -
Avast 4.7.1098.0 2008.02.06 -
[B]AVG 7.5.0.516 2008.02.06 Crypt.H[/B]
BitDefender 7.2 2008.02.07 -
CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.07 -
DrWeb 4.44.0.09170 2008.02.07 -
[B]eSafe 7.0.15.0 2008.01.28 Suspicious File[/B]
eTrust-Vet 31.3.5518 2008.02.07 -
Ewido 4.0 2008.02.06 -
FileAdvisor 1 2008.02.07 -
Fortinet 3.14.0.0 2008.02.06 -
F-Prot 4.4.2.54 2008.02.06 -
F-Secure 6.70.13260.0 2008.02.07 -
Ikarus T3.1.1.20 2008.02.07 -
Kaspersky 7.0.0.125 2008.02.07 -
McAfee 5224 2008.02.06 -
Microsoft 1.3204 2008.02.07 -
NOD32v2 2855 2008.02.07 -
Norman 5.80.02 2008.02.06 -
Panda 9.0.0.4 2008.02.07 -
Rising 20.29.22.00 2008.01.30 -
Sophos 4.26.0 2008.02.07 -
Sunbelt 2.2.907.0 2008.02.07 -
Symantec 10 2008.02.07 -
TheHacker 6.2.9.211 2008.02.06 -
VBA32 3.12.6.0 2008.02.07 -
VirusBuster 4.3.26:9 2008.02.06 -
[B]Webwasher-Gateway 6.6.2 2008.02.07 Heuristic.Crypted[/B]
Дополнительная информация
File size: 16384 bytes
MD5: c5cfaaf9390bd8f7afdcfeff829ed7e5
SHA1: 013c2f14176db49505e93a84243027bfa597fd70
PEiD: -[/CODE]
-
Склеен к игрушке троянчик
Файл IQ-Test.exe получен 2008.02.07 14:54:57 (CET)
[code]AhnLab-V3 2008.2.6.10 2008.02.05 -
[B]AntiVir 7.6.0.62 2008.02.07 TR/Crypt.XDR.Gen[/B]
Authentium 4.93.8 2008.02.06 -
[B]Avast 4.7.1098.0 2008.02.06 Win32:IRCBot-CNV
AVG 7.5.0.516 2008.02.06 Dropper.FreeJoiner.D[/B]
[B]BitDefender 7.2 2008.02.07 DeepScan:Generic.Malware.Fdld!!.C033CF9B[/B]
CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.07 -
DrWeb 4.44.0.09170 2008.02.07 -
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5518 2008.02.07 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.07 -
Fortinet 3.14.0.0 2008.02.07 -
F-Prot 4.4.2.54 2008.02.06 -
[B]F-Secure 6.70.13260.0 2008.02.07 W32/Smalltroj.CQSR[/B]
Ikarus T3.1.1.20 2008.02.07 -
[B]Kaspersky 7.0.0.125 2008.02.07 Heur.Trojan.Generic[/B]
McAfee 5224 2008.02.06 -
Microsoft 1.3204 2008.02.07 -
NOD32v2 2855 2008.02.07 -
[B]Norman 5.80.02 2008.02.06 W32/Smalltroj.CQSR
Panda 9.0.0.4 2008.02.07 Suspicious file[/B]
Prevx1 V2 2008.02.07 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.07 Sus/Behav-1018[/B]
Sunbelt 2.2.907.0 2008.02.07 -
Symantec 10 2008.02.07 -
TheHacker 6.2.9.211 2008.02.06 -
VBA32 3.12.6.0 2008.02.07 -
VirusBuster 4.3.26:9 2008.02.07 -
[B]Webwasher-Gateway 6.6.2 2008.02.07 Trojan.Crypt.XDR.Gen[/B][/code]
File size: 1883754 bytes
MD5: f19c795419075e9a6f2100d795db5af2
SHA1: ea37994d7a08ea4b6b7362f7acff0e17ed660ce4
PEiD: -
packers: embedded
-
Файл exp_1_.htm получен 2008.02.08 04:09:24 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.6.10 2008.02.05 -
AntiVir 7.6.0.62 2008.02.07 -
Authentium 4.93.8 2008.02.08 -
Avast 4.7.1098.0 2008.02.07 -
[B]AVG 7.5.0.516 2008.02.07 JS/Downloader.Agent
BitDefender 7.2 2008.02.08 Exploit.AdodbStream.J
[/B]CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.08 -
[B]DrWeb 4.44.0.09170 2008.02.07 VBS.PackFor[/B]
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5520 2008.02.07 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.08 -
[B]Fortinet 3.14.0.0 2008.02.07 JS/WebAttacker!exploit[/B]
F-Prot 4.4.2.54 2008.02.07 -
[B]F-Secure 6.70.13260.0 2008.02.08 JS/Laume.gen2
Ikarus T3.1.1.20 2008.02.08 Trojan-Downloader.JS.Psyme.hu
Kaspersky 7.0.0.125 2008.02.08 Trojan-Downloader.JS.Iframe.as
McAfee 5225 2008.02.07 JS/Downloader-AUD
Microsoft 1.3204 2008.02.07 TrojanDownloader:JS/Psyme.gen
[/B]NOD32v2 2857 2008.02.07 -
[B]Norman 5.80.02 2008.02.07 JS/Laume.gen2[/B]
Panda 9.0.0.4 2008.02.07 -
Prevx1 V2 2008.02.08 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.07 Mal/ObfJS-A[/B]
Sunbelt 2.2.907.0 2008.02.08 -
[B]Symantec 10 2008.02.08 Downloader
TheHacker 6.2.9.212 2008.02.07 Trojan/Downloader.vbs
[/B]VBA32 3.12.6.0 2008.02.07 -
[B]VirusBuster 4.3.26:9 2008.02.07 JS.Agent.B
Webwasher-Gateway 6.6.2 2008.02.07 JS.WebAttacker.gen (suspicious)
[/B]
Дополнительная информация
File size: 20097 bytes
MD5: 83bae86b7cae28d9f7b5c7be4817540d
SHA1: 99cb925ec8a31de1f95ed7128a57fe0e162e54d0
PEiD: -
packers: Crypt.DCScript
[size="1"][color="#666686"][B][I]Добавлено через 19 минут[/I][/B][/color][/size]
Файл index_25_.htm получен 2008.02.08 04:28:36 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.6.10 2008.02.05 -
AntiVir 7.6.0.62 2008.02.07 -
[B]Authentium 4.93.8 2008.02.08 IRC/IESlice.B[/B]
Avast 4.7.1098.0 2008.02.07 -
[B]AVG 7.5.0.516 2008.02.07 JS/Psyme
BitDefender 7.2 2008.02.08 Trojan.Js.Downloader.BDS
[/B]CAT-QuickHeal 9.00 2008.02.04 -
[B]ClamAV 0.92 2008.02.08 JS.XorCrypt
DrWeb 4.44.0.09170 2008.02.07 VBS.Psyme.434
eSafe 7.0.15.0 2008.01.28 JS.MS06-006[/B]
eTrust-Vet 31.3.5520 2008.02.07 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.08 -
Fortinet 3.14.0.0 2008.02.07 -
F-Prot 4.4.2.54 2008.02.07 -
[B]F-Secure 6.70.13260.0 2008.02.08 Trojan-Downloader.JS.Agent.xp
Ikarus T3.1.1.20 2008.02.08 Trojan-Downloader.JS.Agent.kd
Kaspersky 7.0.0.125 2008.02.08 Trojan-Downloader.JS.Agent.xp
McAfee 5225 2008.02.07 JS/Downloader-BCZ
[/B]Microsoft 1.3204 2008.02.07 -
NOD32v2 2857 2008.02.07 -
Norman 5.80.02 2008.02.07 -
Panda 9.0.0.4 2008.02.07 -
Prevx1 V2 2008.02.08 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.07 Troj/JSXor-Gen[/B]
Sunbelt 2.2.907.0 2008.02.08 -
[B]Symantec 10 2008.02.08 Downloader[/B]
TheHacker 6.2.9.212 2008.02.07 -
VBA32 3.12.6.0 2008.02.07 -
VirusBuster 4.3.26:9 2008.02.07 -
[B]Webwasher-Gateway 6.6.2 2008.02.07 JavaScript.CodeUnfolding.gen!High (suspicious)
[/B]
Дополнительная информация
File size: 28724 bytes
MD5: 34c529faa4b4d134712ccb5275678287
SHA1: fbb8ddad32173ced31c7aad4f2f3f81cbf90acb5
PEiD: -
Файл index_12_.htm получен 2008.02.08 04:28:12 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.6.10 2008.02.05 -
[B]AntiVir 7.6.0.62 2008.02.07 HEUR/Exploit.HTML[/B]
Authentium 4.93.8 2008.02.08 -
Avast 4.7.1098.0 2008.02.07 -
[B]AVG 7.5.0.516 2008.02.07 JS/Downloader.Agent
BitDefender 7.2 2008.02.08 Exploit.AdodbStream.J
[/B]CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.08 -
[B]DrWeb 4.44.0.09170 2008.02.07 VBS.PackFor[/B]
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5520 2008.02.07 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.08 -
[B]Fortinet 3.14.0.0 2008.02.07 JS/WebAttacker!exploit[/B]
F-Prot 4.4.2.54 2008.02.07 -
[B]F-Secure 6.70.13260.0 2008.02.08 JS/Laume.gen2
Ikarus T3.1.1.20 2008.02.08 Trojan-Downloader.JS.Psyme.hu
Kaspersky 7.0.0.125 2008.02.08 Trojan-Downloader.JS.Psyme.wm
McAfee 5225 2008.02.07 JS/Downloader-AUD
Microsoft 1.3204 2008.02.07 TrojanDownloader:JS/Psyme.gen
[/B]NOD32v2 2857 2008.02.07 -
[B]Norman 5.80.02 2008.02.07 JS/Laume.gen2[/B]
Panda 9.0.0.4 2008.02.07 -
Prevx1 V2 2008.02.08 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.07 Mal/ObfJS-A[/B]
Sunbelt 2.2.907.0 2008.02.08 -
[B]Symantec 10 2008.02.08 Downloader
TheHacker 6.2.9.212 2008.02.07 Trojan/Downloader.vbs
[/B]VBA32 3.12.6.0 2008.02.07 -
[B]VirusBuster 4.3.26:9 2008.02.07 JS.Agent.B
Webwasher-Gateway 6.6.2 2008.02.07 Heuristic.Exploit.HTML
[/B]
Дополнительная информация
File size: 3203 bytes
MD5: f97aff745b816bcf995b274ee55bc94c
SHA1: 42460eeb33e41c47ad0df4280bd369640009cee8
PEiD: -
packers: Crypt.DCScript
Файл stroimdom_1_.htm получен 2008.02.08 04:28:48 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.6.10 2008.02.05 -
AntiVir 7.6.0.62 2008.02.07 -
Authentium 4.93.8 2008.02.08 -
Avast 4.7.1098.0 2008.02.07 -
[B]AVG 7.5.0.516 2008.02.07 Downloader.Agent[/B]
BitDefender 7.2 2008.02.08 -
CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.08 -
[B]DrWeb 4.44.0.09170 2008.02.07 Worm.Sifiliz[/B]
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5520 2008.02.07 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.08 -
Fortinet 3.14.0.0 2008.02.07 -
F-Prot 4.4.2.54 2008.02.07 -
[COLOR="Red"][B]F-Secure 6.70.13260.0 2008.02.08 Trojan-Downloader.JS.Remora.w
[/COLOR][/B]Ikarus T3.1.1.20 2008.02.08 -
[COLOR="Red"][B]Kaspersky 7.0.0.125 2008.02.08 Trojan-Downloader.JS.Remora.w[/B]
[/COLOR]McAfee 5225 2008.02.07 -
Microsoft 1.3204 2008.02.07 -
NOD32v2 2857 2008.02.07 -
Norman 5.80.02 2008.02.07 -
Panda 9.0.0.4 2008.02.07 -
Prevx1 V2 2008.02.08 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.07 Mal/ObfJS-R[/B]
Sunbelt 2.2.907.0 2008.02.08 -
TheHacker 6.2.9.212 2008.02.07 -
VBA32 3.12.6.0 2008.02.07 -
VirusBuster 4.3.26:9 2008.02.07 -
Webwasher-Gateway 6.6.2 2008.02.07 -
Дополнительная информация
File size: 18746 bytes
MD5: 460a06f4ebe4145585139e9feadf64db
SHA1: 3d5e6b32fa1cc343ea0e554222821e15dbff844c
PEiD: -
Скидывал похожий [url]http://virusinfo.info/showpost.php?p=180969&postcount=181[/url] но изменился у Каспера? :O
-
File NOD32.patch.rar received on 02.08.2008 09:44:37 (CET)
AhnLab-V3 2008.2.6.10 2008.02.05 -
AntiVir 7.6.0.62 2008.02.08 -
Authentium 4.93.8 2008.02.08 -
Avast 4.7.1098.0 2008.02.07 -
AVG 7.5.0.516 2008.02.07 -
BitDefender 7.2 2008.02.08 -
CAT-QuickHeal 9.00 2008.02.04 -
ClamAV 0.92 2008.02.08 -
DrWeb 4.44.0.09170 2008.02.08 -
eSafe 7.0.15.0 2008.01.28 -
eTrust-Vet 31.3.5521 2008.02.08 -
Ewido 4.0 2008.02.07 -
FileAdvisor 1 2008.02.08 -
Fortinet 3.14.0.0 2008.02.08 -
F-Prot 4.4.2.54 2008.02.07 -
[B]F-Secure 6.70.13260.0 2008.02.08 Trojan.Win32.Delf.aym[/B]
Ikarus T3.1.1.20 2008.02.08 -
[B]Kaspersky 7.0.0.125 2008.02.08 Trojan.Win32.Delf.aym[/B]
McAfee 5225 2008.02.07 -
Microsoft 1.3204 2008.02.07 -
NOD32v2 2857 2008.02.07 -
Norman 5.80.02 2008.02.07 -
[B]Panda 9.0.0.4 2008.02.07 Suspicious file
[B]Prevx1 V2 2008.02.08 Heuristic: Suspicious File With Mass Email [/B]Capabilities[/B]
Rising 20.29.22.00 2008.01.30 -
Sophos 4.26.0 2008.02.08 -
Sunbelt 2.2.907.0 2008.02.08 -
Symantec 10 2008.02.08 -
TheHacker 6.2.9.212 2008.02.07 -
VBA32 3.12.6.0 2008.02.07 -
VirusBuster 4.3.26:9 2008.02.07 -
Webwasher-Gateway 6.6.2 2008.02.08 -
Additional information
File size: 275308 bytes
MD5: 4d50ed5c1d0d9dd684e53d07e8e37f93
SHA1: e4ece7e90cb5b0eb472ad4dcc5809e290bde05ef
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=EF52695B008EBD2940960AB67DCC3B0006AAD80D[/url]
-
File keygen.exe received on 02.08.2008 20:05:21 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2008.2.6.10 2008.02.05 -
[B]AntiVir 7.6.0.62 2008.02.08 HEUR/Crypted[/B]
Authentium 4.93.8 2008.02.08 -
Avast 4.7.1098.0 2008.02.07 -
AVG 7.5.0.516 2008.02.08 -
[B]BitDefender 7.2 2008.02.08 DeepScan:Generic.PWStealer.A6978279[/B]
[B]CAT-QuickHeal None 2008.02.08 (Suspicious) - DNAScan[/B]
ClamAV 0.92 2008.02.08 -
DrWeb 4.44.0.09170 2008.02.08 -
[B]eSafe 7.0.15.0 2008.01.28 suspicious Trojan/Worm[/B]
eTrust-Vet 31.3.5521 2008.02.08 -
Ewido 4.0 2008.02.08 -
FileAdvisor 1 2008.02.08 -
Fortinet 3.14.0.0 2008.02.08 -
[B]F-Prot 4.4.2.54 2008.02.08 W32/Heuristic-259!Eldorado[/B]
[B]F-Secure 6.70.13260.0 2008.02.08 Suspicious:W32/Malware!Gemini[/B]
[B]Ikarus T3.1.1.20 2008.02.08 Trojan-PWS.Win32.LdPinch.bna[/B]
Kaspersky 7.0.0.125 2008.02.08 -
McAfee 5226 2008.02.08 -
Microsoft 1.3204 2008.02.08 -
[B]NOD32v2 2860 2008.02.08 Win32/PSW.LdPinch.BFP[/B]
Norman 5.80.02 2008.02.08 -
[B]Panda 9.0.0.4 2008.02.08 Suspicious file[/B]
Prevx1 V2 2008.02.08 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.08 Mal/Basine-C[/B]
[B]Sunbelt 2.2.907.0 2008.02.08 Trojan-PWS.Pinch.gen (v)[/B]
[B]Symantec 10 2008.02.08 Bloodhound.W32.EP[/B]
TheHacker 6.2.9.212 2008.02.07 -
[B]VBA32 3.12.6.0 2008.02.07 MalwareScope.Trojan-PSW.Pinch.1[/B]
VirusBuster 4.3.26:9 2008.02.08 -
[B]Webwasher-Gateway 6.6.2 2008.02.08 Heuristic.Crypted[/B]
Additional information
File size: 39412 bytes
MD5: 7c4e30ad66723bdd1a4668e6e456d6c0
SHA1: bfc60d80dd6667110124833660fe3ffb6b5b7fd6
PEiD: UnoPiX 1.03-1.10 -> BaGiE
packers: PE-Crypt.Unopix
packers: PE-Crypt.Unopix
-
Файл about.htm получен 2008.02.12 02:22:44 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.12.10 2008.02.11 -
AntiVir 7.6.0.62 2008.02.11 -
Authentium 4.93.8 2008.02.11 -
Avast 4.7.1098.0 2008.02.11 -
AVG 7.5.0.516 2008.02.11 -
BitDefender 7.2 2008.02.12 -
CAT-QuickHeal None 2008.02.11 -
ClamAV 0.92 2008.02.11 -
[B]DrWeb 4.44.0.09170 2008.02.11 VBS.PackFor[/B]
eSafe 7.0.15.0 2008.02.11 -
eTrust-Vet 31.3.5529 2008.02.11 -
Ewido 4.0 2008.02.11 -
FileAdvisor 1 2008.02.12 -
Fortinet 3.14.0.0 2008.02.11 -
F-Prot 4.4.2.54 2008.02.11 -
[B]F-Secure 6.70.13260.0 2008.02.11 DoS.JS.Dframe.n[/B]
Ikarus T3.1.1.20 2008.02.12 -
[B]Kaspersky 7.0.0.125 2008.02.12 DoS.JS.Dframe.n
McAfee 5227 2008.02.11 Exploit-IFrame[/B]
Microsoft 1.3204 2008.02.11 -
NOD32v2 2866 2008.02.11 -
Norman 5.80.02 2008.02.11 -
[B]Panda 9.0.0.4 2008.02.11 W32/Dowlod.A[/B]
Prevx1 V2 2008.02.12 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.12 Troj/Pintadd-A[/B]
Sunbelt 2.2.907.0 2008.02.09 -
Symantec 10 2008.02.12 -
TheHacker 6.2.9.217 2008.02.11 -
VBA32 3.12.6.0 2008.02.11 -
VirusBuster 4.3.26:9 2008.02.11 -
Webwasher-Gateway 6.6.2 2008.02.11 -
Дополнительная информация
File size: 27253 bytes
MD5: 1ebf12da5d67600b2dc441e8d9e96957
SHA1: da3092880c2752112399a5c5d0adbed9ac3f3793
PEiD: -
[size="1"][color="#666686"][B][I]Добавлено через 23 минуты[/I][/B][/color][/size]
Файл svc32_2.exe получен 2008.02.12 02:54:49 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.12.10 2008.02.11 -
[B]AntiVir 7.6.0.62 2008.02.11 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.02.11 -
Avast 4.7.1098.0 2008.02.11 -
[B]AVG 7.5.0.516 2008.02.11 Generic9.ATZP[/B]
BitDefender 7.2 2008.02.12 -
[B]CAT-QuickHeal None 2008.02.11 TrojanDownloader.Agent.hvo
ClamAV 0.92 2008.02.11 Trojan.Downloader-21900
DrWeb 4.44.0.09170 2008.02.11 Trojan.Packed.147
[/B]eSafe 7.0.15.0 2008.02.11 -
eTrust-Vet 31.3.5529 2008.02.11 -
[B]Ewido 4.0 2008.02.11 Downloader.Agent.hvo[/B]
FileAdvisor 1 2008.02.12 -
Fortinet 3.14.0.0 2008.02.11 -
F-Prot 4.4.2.54 2008.02.11 -
[B]F-Secure 6.70.13260.0 2008.02.11 W32/Agent.EBCK[/B]
Ikarus T3.1.1.20 2008.02.12 -
[B]Kaspersky 7.0.0.125 2008.02.12 Trojan-Downloader.Win32.Agent.ivn
[/B]McAfee 5227 2008.02.11 -
[B]Microsoft 1.3204 2008.02.11 TrojanDownloader:Win32/Chepvil.C
NOD32v2 2866 2008.02.11 Win32/TrojanDownloader.Tiny.NDC
Norman 5.80.02 2008.02.11 W32/Agent.EBCK
[/B]Panda 9.0.0.4 2008.02.11 -
Prevx1 V2 2008.02.12 -
Rising 20.29.22.00 2008.01.30 -
Sophos 4.26.0 2008.02.12 -
Sunbelt 2.2.907.0 2008.02.12 -
Symantec 10 2008.02.12 -
TheHacker 6.2.9.217 2008.02.11 -
[B]VBA32 3.12.6.0 2008.02.11 Trojan-Downloader.Win32.Agent.hvo
VirusBuster 4.3.26:9 2008.02.11 Trojan.DL.Agent.CWOL
Webwasher-Gateway 6.6.2 2008.02.11 Trojan.Crypt.XPACK.Gen
[/B]
Дополнительная информация
File size: 14297 bytes
MD5: 6711f411acb9a3e510a250295bc21a4e
SHA1: 77fae6ffc6448626d729f28ba7f0fb70fa53d354
PEiD: -
[size="1"][color="#666686"][B][I]Добавлено через 13 минут[/I][/B][/color][/size]
Файл x86emul.sys получен 2008.02.12 02:48:36 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.12.10 2008.02.11 -
[B]AntiVir 7.6.0.62 2008.02.11 TR/Rootkit.Gen
Authentium 4.93.8 2008.02.11 W32/Goldun.gen3
Avast 4.7.1098.0 2008.02.11 Win32:Agent-RUC
AVG 7.5.0.516 2008.02.11 PSW.Generic5.AIAX[/B]
BitDefender 7.2 2008.02.12 -
[B]CAT-QuickHeal None 2008.02.11 Rootkit.Agent.xq[/B]
ClamAV 0.92 2008.02.11 -
[B]DrWeb 4.44.0.09170 2008.02.11 Trojan.NtRootKit.765[/B]
eSafe 7.0.15.0 2008.02.11 -
[B]eTrust-Vet 31.3.5529 2008.02.11 Win32/ProcHide!generic[/B]
Ewido 4.0 2008.02.11 -
FileAdvisor 1 2008.02.12 -
[B]Fortinet 3.14.0.0 2008.02.11 W32/Haxdor.XQ!tr.rkit
F-Prot 4.4.2.54 2008.02.11 W32/Goldun.gen3
F-Secure 6.70.13260.0 2008.02.11 W32/Rootkit.CYJ
Ikarus T3.1.1.20 2008.02.12 Rootkit.Win32.Agent.xq
Kaspersky 7.0.0.125 2008.02.12 Rootkit.Win32.Agent.xq
McAfee 5227 2008.02.11 Generic.dx
Microsoft 1.3204 2008.02.11 VirTool:WinNT/HideDrv.gen!A
NOD32v2 2866 2008.02.11 Win32/Spy.Goldun.NCL
Norman 5.80.02 2008.02.11 W32/Rootkit.CYJ
Panda 9.0.0.4 2008.02.11 Rootkit/Goldun.RP[/B]
Prevx1 V2 2008.02.12 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.12 Troj/Haxdor-Gen[/B]
Sunbelt 2.2.907.0 2008.02.12 -
Symantec 10 2008.02.12 -
TheHacker 6.2.9.217 2008.02.11 -
[B]VBA32 3.12.6.0 2008.02.11 Trojan.NtRootKit.765[/B]
VirusBuster 4.3.26:9 2008.02.11 -
[B]Webwasher-Gateway 6.6.2 2008.02.11 Trojan.Rootkit.Gen[/B]
Дополнительная информация
File size: 8512 bytes
MD5: 796ee2b24ea2621e25a61d4be3f20de7
SHA1: a68f203ada4b8e8ceabad88bb372aedf51983d79
PEiD: -
Файл admin.exe получен 2008.02.12 03:05:10 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.12.10 2008.02.11 -
[B]AntiVir 7.6.0.62 2008.02.11 TR/Dldr.Tiny.ZZ[/B]
Authentium 4.93.8 2008.02.11 -
Avast 4.7.1098.0 2008.02.11 -
[B]AVG 7.5.0.516 2008.02.11 Downloader.Small.BPL[/B]
BitDefender 7.2 2008.02.12 -
[B]CAT-QuickHeal None 2008.02.11 TrojanDownloader.Tiny.agv[/B]
ClamAV 0.92 2008.02.11 -
[B]DrWeb 4.44.0.09170 2008.02.11 Trojan.DownLoader.46195[/B]
eSafe 7.0.15.0 2008.02.11 -
eTrust-Vet 31.3.5529 2008.02.11 -
[B]Ewido 4.0 2008.02.11 Downloader.Tiny.agv[/B]
FileAdvisor 1 2008.02.12 -
Fortinet 3.14.0.0 2008.02.11 -
F-Prot 4.4.2.54 2008.02.11 -
[B]F-Secure 6.70.13260.0 2008.02.11 W32/Tiny.COK
Ikarus T3.1.1.20 2008.02.12 Trojan-Spy.Win32.Zbot.aft
Kaspersky 7.0.0.125 2008.02.12 Trojan-Downloader.Win32.Tiny.agv
[/B]McAfee 5227 2008.02.11 -
Microsoft 1.3204 2008.02.11 -
[B]NOD32v2 2866 2008.02.11 Win32/TrojanDownloader.Tiny.NDD
Norman 5.80.02 2008.02.11 W32/Tiny.COK
Panda 9.0.0.4 2008.02.11 Trj/Downloader.SHV
Prevx1 V2 2008.02.12 Heuristic: Suspicious File With Bad Child Associations
[/B]Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.12 Mal/Generic-A
Sunbelt 2.2.907.0 2008.02.12 Trojan-Downloader.Tiny.ZZ
Symantec 10 2008.02.12 Downloader
[/B]TheHacker 6.2.9.217 2008.02.11 -
[B]VBA32 3.12.6.0 2008.02.11 Trojan-Downloader.Win32.Tiny.agv
VirusBuster 4.3.26:9 2008.02.11 Trojan.DL.Tiny.UB
Webwasher-Gateway 6.6.2 2008.02.11 Trojan.Dldr.Tiny.ZZ
[/B]
Дополнительная информация
File size: 6656 bytes
MD5: 3d44f3381da2e000ae7caa2a2ada4d07
SHA1: 8db54305d2f30bcda07e4f49f010b76e906b36f0
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=00B30855006898BF1A7C008AFB04AE002109C37D[/url]
-
Файл avz00002.dta получен 2008.02.13 05:18:19 (CET)
Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.13.11 2008.02.13 -
[B]AntiVir 7.6.0.65 2008.02.12 TR/Crypt.NSPM.Gen[/B]
Authentium 4.93.8 2008.02.13 -
Avast 4.7.1098.0 2008.02.12 -
AVG 7.5.0.516 2008.02.12 -
[B]BitDefender 7.2 2008.02.13 Packer.Malware.NSAnti.K [/B]
CAT-QuickHeal None 2008.02.12 -
ClamAV 0.92 2008.02.12 -
[B]DrWeb 4.44.0.09170 2008.02.12 modification of Win32.Besso
eSafe 7.0.15.0 2008.02.11 suspicious Trojan/Worm [/B]
eTrust-Vet 31.3.5532 2008.02.12 -
Ewido 4.0 2008.02.12 -
FileAdvisor 1 2008.02.13 -
Fortinet 3.14.0.0 2008.02.13 -
F-Prot 4.4.2.54 2008.02.12 -
F-Secure 6.70.13260.0 2008.02.13 -
[B]Ikarus T3.1.1.20 2008.02.13 Packer.Malware.NSAnti.K[/B]
Kaspersky 7.0.0.125 2008.02.13 -
McAfee 5228 2008.02.12 -
[B]Microsoft 1.3204 2008.02.12 VirTool:Win32/Obfuscator.T
NOD32v2 2870 2008.02.12 Win32/Pacex.Gen
Norman 5.80.02 2008.02.12 W32/NSAnti.GGV
Panda 9.0.0.4 2008.02.13 Suspicious file
Prevx1 V2 2008.02.13 Heuristic: Suspicious Self Modifying EXE [/B]
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.26.0 2008.02.13 Mal/EncPk-CE [/B]
Sunbelt 2.2.907.0 2008.02.13 -
Symantec 10 2008.02.13 -
TheHacker 6.2.9.218 2008.02.12 -
VBA32 3.12.6.0 2008.02.11 -
VirusBuster 4.3.26:9 2008.02.12 -
[B]Webwasher-Gateway 6.6.2 2008.02.12 Trojan.Crypt.NSPM.Gen [/B]
Дополнительная информация
File size: 40960 bytes
MD5: 194d05919c679b92511c74ab20dfa491
SHA1: e9db2cd817fdd98b68cc404ce2998a3e96df8118
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=7B9854A100D739D1A021008CDCCAB0004AED2E0A[/url]
-
t-17985
[CODE]File avz00001.dta received on 02.13.2008 15:22:24 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2008.2.13.11 2008.02.13 -
[B]AntiVir 7.6.0.65 2008.02.13 TR/Vundo.gc[/B]
Authentium 4.93.8 2008.02.13 -
Avast 4.7.1098.0 2008.02.13 -
[B]AVG 7.5.0.516 2008.02.13 Generic9.BAKO
BitDefender 7.2 2008.02.13 Trojan.Vundo.Gen.2[/B]
CAT-QuickHeal None 2008.02.13 -
ClamAV 0.92 2008.02.13 -
DrWeb 4.44.0.09170 2008.02.13 -
eSafe 7.0.15.0 2008.02.11 -
eTrust-Vet 31.3.5533 2008.02.13 -
Ewido 4.0 2008.02.13 -
FileAdvisor 1 2008.02.13 -
Fortinet 3.14.0.0 2008.02.13 -
[B]F-Prot 4.4.2.54 2008.02.12 W32/Virtumonde.G.gen!Eldorado
F-Secure 6.70.13260.0 2008.02.13 Vundo.gen55
Ikarus T3.1.1.20 2008.02.13 Trojan.Vundo.Gen.2[/B]
Kaspersky 7.0.0.125 2008.02.13 -
McAfee 5228 2008.02.12 -
Microsoft 1.3204 2008.02.13 -
NOD32v2 2871 2008.02.13 -
[B]Norman 5.80.02 2008.02.12 Vundo.gen55[/B]
Panda 9.0.0.4 2008.02.13 -
[B]Prevx1 V2 2008.02.13 Trojan.Vundo[/B]
Rising 20.31.10.00 2008.02.13 -
[B]Sophos 4.26.0 2008.02.13 Troj/Virtum-Gen[/B]
Sunbelt 2.2.907.0 2008.02.13 -
Symantec 10 2008.02.13 -
TheHacker 6.2.9.218 2008.02.12 -
VBA32 3.12.6.0 2008.02.11 -
VirusBuster 4.3.26:9 2008.02.12 -
[B]Webwasher-Gateway 6.6.2 2008.02.13 Trojan.Vundo.gc[/B]
Additional information
File size: 334336 bytes[/CODE]
-
Файл winAIdtEM.exe получен 2008.02.14 08:44:43 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.14.11 2008.02.14 -
AntiVir 7.6.0.65 2008.02.14 -
Authentium 4.93.8 2008.02.14 -
Avast 4.7.1098.0 2008.02.13 -
AVG 7.5.0.516 2008.02.13 -
BitDefender 7.2 2008.02.14 -
CAT-QuickHeal None 2008.02.13 -
ClamAV 0.92 2008.02.14 -
DrWeb 4.44.0.09170 2008.02.13 -
eSafe 7.0.15.0 2008.02.13 -
eTrust-Vet 31.3.5536 2008.02.14 -
Ewido 4.0 2008.02.13 -
FileAdvisor 1 2008.02.14 -
Fortinet 3.14.0.0 2008.02.14 -
F-Prot 4.4.2.54 2008.02.13 -
[B]F-Secure 6.70.13260.0 2008.02.14 Suspicious:W32/Malware!Gemini
[/B]Ikarus T3.1.1.20 2008.02.14 -
Kaspersky 7.0.0.125 2008.02.14 -
McAfee 5229 2008.02.13 -
[B]Microsoft 1.3204 2008.02.14 Trojan:Win32/Chksyn.gen!A[/B]
NOD32v2 2873 2008.02.13 -
Norman 5.80.02 2008.02.13 -
Panda 9.0.0.4 2008.02.14 -
Prevx1 V2 2008.02.14 -
Rising 20.31.10.00 2008.02.13 -
Sophos 4.26.0 2008.02.14 -
Sunbelt 2.2.907.0 2008.02.14 -
Symantec 10 2008.02.14 -
TheHacker 6.2.9.219 2008.02.13 -
VBA32 3.12.6.1 2008.02.14 -
VirusBuster 4.3.26:9 2008.02.13 -
[B]Webwasher-Gateway 6.6.2 2008.02.14 Win32.Malware.gen (suspicious)
[/B]
Дополнительная информация
File size: 7661 bytes
MD5: ad7865025a2723267e197d1ca237828f
SHA1: 496ea693d32877f24205569119ad9aea1ae91d2f
PEiD: -
packers: PE_Patch
Файл svc32_3.exe получен 2008.02.14 08:39:51 (CET)Антивирус Версия Обновление Результат
[B]AhnLab-V3 2008.2.14.11 2008.02.14 Win-Trojan/Agent.506952
AntiVir 7.6.0.65 2008.02.14 TR/Dldr.Logsnif.1
[/B]Authentium 4.93.8 2008.02.14 -
[B]Avast 4.7.1098.0 2008.02.13 Win32:BZub-KY[/B]
AVG 7.5.0.516 2008.02.13 -
BitDefender 7.2 2008.02.14 -
[B]CAT-QuickHeal None 2008.02.13 TrojanProxy.Small.it
ClamAV 0.92 2008.02.14 PUA.Packed.UPack-2
[/B]DrWeb 4.44.0.09170 2008.02.13 -
eSafe 7.0.15.0 2008.02.13 Suspicious File
eTrust-Vet 31.3.5536 2008.02.14 -
Ewido 4.0 2008.02.13 -
FileAdvisor 1 2008.02.14 -
Fortinet 3.14.0.0 2008.02.14 -
[B]F-Prot 4.4.2.54 2008.02.13 W32/Heuristic-162!Eldorado
F-Secure 6.70.13260.0 2008.02.14 Suspicious:W32/Malware!Gemini
Ikarus T3.1.1.20 2008.02.14 MalwareScope.Trojan-Spy.BZub.2
[/B]Kaspersky 7.0.0.125 2008.02.14 -
[B]McAfee 5229 2008.02.13 Proxy-Agent.ai
Microsoft 1.3204 2008.02.14 Trojan:Win32/Dopip.A
[/B]NOD32v2 2873 2008.02.13 -
[B]Norman 5.80.02 2008.02.13 W32/Suspicious_U.gen[/B]
Panda 9.0.0.4 2008.02.14 -
Prevx1 V2 2008.02.14 -
Rising 20.31.10.00 2008.02.13 -
Sophos 4.26.0 2008.02.14 Mal/Packer
[B]Sunbelt 2.2.907.0 2008.02.14 VIPRE.Suspicious[/B]
Symantec 10 2008.02.14 -
[B]TheHacker 6.2.9.219 2008.02.13 W32/Behav-Heuristic-060
VBA32 3.12.6.1 2008.02.14 MalwareScope.Trojan-Spy.BZub.2
VirusBuster 4.3.26:9 2008.02.13 Packed/Upack
Webwasher-Gateway 6.6.2 2008.02.14 Trojan.Dldr.Logsnif.1
[/B]
Дополнительная информация
File size: 509500 bytes
MD5: 52310f521d47e08b2515df83d9a95446
SHA1: 5e760a864bfa3bc9f6ed50fbe6b68c97611dddeb
PEiD: -
packers: UPack
packers: PE_Patch, UPack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
Файл 12.exe получен 2008.02.14 08:28:44 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.14.11 2008.02.14 -
[B]AntiVir 7.6.0.65 2008.02.14 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.02.14 -
Avast 4.7.1098.0 2008.02.13 -
[B]AVG 7.5.0.516 2008.02.13 Dropper.Agent.9.Q[/B]
BitDefender 7.2 2008.02.14 -
[B]CAT-QuickHeal None 2008.02.13 (Suspicious) - DNAScan[/B]
ClamAV 0.92 2008.02.14 -
DrWeb 4.44.0.09170 2008.02.13 -
[B]eSafe 7.0.15.0 2008.02.13 Suspicious File[/B]
eTrust-Vet 31.3.5536 2008.02.14 -
Ewido 4.0 2008.02.13 -
FileAdvisor 1 2008.02.14 -
Fortinet 3.14.0.0 2008.02.14 -
F-Prot 4.4.2.54 2008.02.13 -
F-Secure 6.70.13260.0 2008.02.14 -
Ikarus T3.1.1.20 2008.02.14 -
Kaspersky 7.0.0.125 2008.02.14 -
McAfee 5229 2008.02.13 -
Microsoft 1.3204 2008.02.14 -
NOD32v2 2873 2008.02.13 -
Norman 5.80.02 2008.02.13 -
Panda 9.0.0.4 2008.02.14 -
Prevx1 V2 2008.02.14 -
Rising 20.31.10.00 2008.02.13 -
[B]Sophos 4.26.0 2008.02.14 Sus/UnkPacker
Sunbelt 2.2.907.0 2008.02.14 Trojan.Crypt.XPACK.Gen
[/B]Symantec 10 2008.02.14 -
TheHacker 6.2.9.219 2008.02.13 -
VBA32 3.12.6.1 2008.02.14 -
VirusBuster 4.3.26:9 2008.02.13 -
[B]Webwasher-Gateway 6.6.2 2008.02.14 Trojan.Crypt.XPACK.Gen[/B]
Дополнительная информация
File size: 159744 bytes
MD5: 7ab8773907e5f0ef5d9ceb338dc2b2f8
SHA1: 0ac46a74574f56f188543d16eac8be08b74bcbbd
PEiD: -
Файл 1.exe получен 2008.02.14 08:25:39 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.14.11 2008.02.14 -
[B]AntiVir 7.6.0.65 2008.02.14 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.02.14 -
Avast 4.7.1098.0 2008.02.13 -
AVG 7.5.0.516 2008.02.13 -
[B]BitDefender 7.2 2008.02.14 Trojan.PWS.LdPinch.TGB
CAT-QuickHeal None 2008.02.13 (Suspicious) - DNAScan
[/B]ClamAV 0.92 2008.02.14 -
DrWeb 4.44.0.09170 2008.02.13 -
eSafe 7.0.15.0 2008.02.13 -
eTrust-Vet 31.3.5536 2008.02.14 -
Ewido 4.0 2008.02.13 -
FileAdvisor 1 2008.02.14 -
Fortinet 3.14.0.0 2008.02.14 -
F-Prot 4.4.2.54 2008.02.13 -
[B]F-Secure 6.70.13260.0 2008.02.14 Suspicious:W32/Malware!Gemini
Ikarus T3.1.1.20 2008.02.14 Trojan-PWS.LDPinch.TGB
[/B]Kaspersky 7.0.0.125 2008.02.14 -
McAfee 5229 2008.02.13 -
[B]Microsoft 1.3204 2008.02.14 PWS:Win32/Ldpinch[/B]
NOD32v2 2873 2008.02.13 -
Norman 5.80.02 2008.02.13 -
Panda 9.0.0.4 2008.02.14 -
[B]Prevx1 V2 2008.02.14 Heuristic: Suspicious File With Outbound Communications
[/B]Rising 20.31.10.00 2008.02.13 -
[B]Sophos 4.26.0 2008.02.14 Mal/TibsPak
Sunbelt 2.2.907.0 2008.02.14 Trojan-PWS.LdPinch.TGB
[/B]Symantec 10 2008.02.14 -
TheHacker 6.2.9.219 2008.02.13 -
VBA32 3.12.6.1 2008.02.14 -
VirusBuster 4.3.26:9 2008.02.13 -
[B]Webwasher-Gateway 6.6.2 2008.02.14 Trojan.Crypt.XPACK.Gen[/B]
Дополнительная информация
File size: 45056 bytes
MD5: 1ca8a8b2002437786c84c0688e3daf3d
SHA1: fc4eb32b7ddb15847dfeb6f041a8284532112811
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=9BBD9AA100F9CF2DB0BD003B3C2E0700FDC72907[/url]
Файл avz00001.dta получен 2008.02.14 08:15:40 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.14.11 2008.02.14 -
[B]AntiVir 7.6.0.65 2008.02.13 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.02.14 -
[B]Avast 4.7.1098.0 2008.02.13 Win32:Trojan-gen {Other}
AVG 7.5.0.516 2008.02.13 Generic7.HNF
BitDefender 7.2 2008.02.14 Trojan.Spy.Agent.NEB
CAT-QuickHeal None 2008.02.13 Trojan.PolyCrypt.d
[/B]ClamAV 0.92 2008.02.14 -
[B]DrWeb 4.44.0.09170 2008.02.13 Trojan.Packed.170[/B]
eSafe 7.0.15.0 2008.02.13 -
eTrust-Vet 31.3.5536 2008.02.14 -
Ewido 4.0 2008.02.13 -
FileAdvisor 1 2008.02.14 -
Fortinet 3.14.0.0 2008.02.14 -
[B]F-Prot 4.4.2.54 2008.02.13 W32/Trojan2.PT
F-Secure 6.70.13260.0 2008.02.14 Packed.Win32.PolyCrypt.d
Ikarus T3.1.1.20 2008.02.14 Trojan-Downloader.Win32.Small.cyn
Kaspersky 7.0.0.125 2008.02.14 Packed.Win32.PolyCrypt.d
McAfee 5229 2008.02.13 PolyCrypt-Packed
Microsoft 1.3204 2008.02.14 VirTool:Win32/Obfuscator.O
NOD32v2 2873 2008.02.13 probably a variant of Win32/Obfuscated
[/B]Norman 5.80.02 2008.02.13 -
Panda 9.0.0.4 2008.02.14 -
Prevx1 V2 2008.02.14 -
[B]Rising 20.31.10.00 2008.02.13 Trojan.Win32.PolyCrypt.d
Sophos 4.26.0 2008.02.14 Mal/Zbot-A
Sunbelt 2.2.907.0 2008.02.14 VIPRE.Suspicious
Symantec 10 2008.02.14 Infostealer.Notos!gen
TheHacker 6.2.9.219 2008.02.13 Trojan/PolyCrypt.d
VBA32 3.12.6.1 2008.02.14 Trojan.Packed.170
[/B]VirusBuster 4.3.26:9 2008.02.13 -
[B]Webwasher-Gateway 6.6.2 2008.02.13 Trojan.Crypt.XPACK.Gen[/B]
Дополнительная информация
File size: 294127 bytes
MD5: e417ab28f4824d656c8b7f75e097bbf4
SHA1: f34f6eae137e82025492b3345e6ba6165377a1fc
PEiD: -
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
Файл avz00002.dta получен 2008.02.15 13:06:30 (CET)
Текущий статус: закончено
Результат: 23/32 (71.88%)
[CODE][B]AhnLab-V3 2008.2.15.11 2008.02.15 Win-Trojan/Agent.506952
AntiVir 7.6.0.65 2008.02.15 TR/Dldr.Logsnif.1[/B]
Authentium 4.93.8 2008.02.15 -
[B]Avast 4.7.1098.0 2008.02.14 Win32:BZub-KY
AVG 7.5.0.516 2008.02.15 Downloader.Generic_c.KP
BitDefender 7.2 2008.02.15 Trojan.Agent.AGRM
CAT-QuickHeal None 2008.02.14 TrojanProxy.Small.it
ClamAV 0.92.1 2008.02.15 PUA.Packed.UPack-2
DrWeb 4.44.0.09170 2008.02.15 Trojan.Roro
eSafe 7.0.15.0 2008.02.14 Suspicious File
eTrust-Vet 31.3.5539 2008.02.15 Win32/EtelPWS.A[/B]
Ewido 4.0 2008.02.15 -
FileAdvisor 1 2008.02.15 -
Fortinet 3.14.0.0 2008.02.15 -
[B]F-Prot 4.4.2.54 2008.02.14 W32/Heuristic-162!Eldorado
F-Secure 6.70.13260.0 2008.02.15 W32/Agent.EDKM
Ikarus T3.1.1.20 2008.02.15 MalwareScope.Trojan-Spy.BZub.2[/B]
Kaspersky 7.0.0.125 2008.02.15 -
[B]McAfee 5230 2008.02.14 Proxy-Agent.ai
Microsoft 1.3204 2008.02.14 Trojan:Win32/Dopip.A
NOD32v2 2878 2008.02.15 Win32/Agent.NIV
Norman 5.80.02 2008.02.14 W32/Agent.EDKM[/B]
Panda 9.0.0.4 2008.02.15 -
Prevx1 V2 2008.02.15 -
Rising 20.31.30.00 2008.02.14 -
[B]Sophos 4.26.0 2008.02.15 Mal/Packer
Sunbelt 2.2.907.0 2008.02.14 VIPRE.Suspicious[/B]
Symantec 10 2008.02.15 -
[B]TheHacker 6.2.9.220 2008.02.14 W32/Behav-Heuristic-060
VBA32 3.12.6.1 2008.02.14 MalwareScope.Trojan-Spy.BZub.2
VirusBuster 4.3.26:9 2008.02.14 Packed/Upack
Webwasher-Gateway 6.6.2 2008.02.15 Trojan.Dldr.Logsnif.1[/B][/CODE]
File size: 507000 bytes
MD5: a8fa6757b2136fbc730af466101ca952
SHA1: 60af3ae683be74765cc3aaf0fd5c58c63e18dea9
PEiD: -
packers: UPack
packers: PE_Patch, UPack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
Файл avz00003.dta получен 2008.02.15 13:06:14 (CET)
Текущий статус: закончено
Результат: 9/32 (28.13%)
[CODE]AhnLab-V3 2008.2.15.11 2008.02.15 -
[B]AntiVir 7.6.0.65 2008.02.15 TR/Drop.Age.A.32768[/B]
Authentium 4.93.8 2008.02.15 -
Avast 4.7.1098.0 2008.02.14 -
[B]AVG 7.5.0.516 2008.02.15 SHeur.AKAG[/B]
BitDefender 7.2 2008.02.15 -
CAT-QuickHeal None 2008.02.14 -
ClamAV 0.92.1 2008.02.15 -
[B]DrWeb 4.44.0.09170 2008.02.15 Trojan.Packed.147[/B]
eSafe 7.0.15.0 2008.02.14 -
eTrust-Vet 31.3.5539 2008.02.15 -
Ewido 4.0 2008.02.15 -
FileAdvisor 1 2008.02.15 -
Fortinet 3.14.0.0 2008.02.15 -
F-Prot 4.4.2.54 2008.02.14 -
[B]F-Secure 6.70.13260.0 2008.02.15 Suspicious:W32/Malware!Gemini
Ikarus T3.1.1.20 2008.02.15 Trojan-Dropper.Age.A.32768[/B]
Kaspersky 7.0.0.125 2008.02.15 -
McAfee 5230 2008.02.14 -
Microsoft 1.3204 2008.02.14 -
[B]NOD32v2 2878 2008.02.15 probably unknown NewHeur_PE virus[/B]
Norman 5.80.02 2008.02.14 -
Panda 9.0.0.4 2008.02.15 -
[B]Prevx1 V2 2008.02.15 SystemPoser:Trojan-All Variants[/B]
Rising 20.31.30.00 2008.02.14 -
Sophos 4.26.0 2008.02.15 -
[B]Sunbelt 2.2.907.0 2008.02.14 Trojan-Dropper.Age.A.3[/B]
Symantec 10 2008.02.15 -
TheHacker 6.2.9.220 2008.02.14 -
VBA32 3.12.6.1 2008.02.14 -
VirusBuster 4.3.26:9 2008.02.14 -
[B]Webwasher-Gateway 6.6.2 2008.02.15 Trojan.Drop.Age.A.32768[/B][/CODE]
File size: 32768 bytes
MD5: eedd12ecb28bfc652c39dc6c587e2f2a
SHA1: b15bec428350afcdf4e5f3d5e8fc94c687d56cca
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=60D22A5C0000A715804C00B1EF0C290077399D8A[/url]
-
Файл SoftDll.dll получен 2008.02.16 19:08:58 (CET)
[CODE]AhnLab-V3 2008.2.16.10 2008.02.15 -
[B]AntiVir 7.6.0.67 2008.02.15 TR/Delphi.Downloader.Gen[/B]
Authentium 4.93.8 2008.02.15 -
Avast 4.7.1098.0 2008.02.15 -
AVG 7.5.0.516 2008.02.16 -
[B]BitDefender 7.2 2008.02.16 Win32.Worm.Autoruner.BQ[/B]
CAT-QuickHeal None 2008.02.16 -
ClamAV 0.92.1 2008.02.16 -
[B]DrWeb 4.44.0.09170 2008.02.16 Win32.HLLW.Autoruner.279[/B]
eSafe 7.0.15.0 2008.02.14 -
[B]eTrust-Vet 31.3.5541 2008.02.15 Win32/VMalum.JZV[/B]
Ewido 4.0 2008.02.16 -
FileAdvisor 1 2008.02.16 -
[B]Fortinet 3.14.0.0 2008.02.16 Heuri.E[/B]
F-Prot 4.4.2.54 2008.02.15 -
F-Secure 6.70.13260.0 2008.02.15 -
[B]Ikarus T3.1.1.20 2008.02.16 MalwareScope.Worm.Viking.4[/B]
Kaspersky 7.0.0.125 2008.02.16 -
[B]McAfee 5231 2008.02.15 PWS-OnlineGames.h[/B]
Microsoft 1.3204 2008.02.16 -
NOD32v2 2880 2008.02.15 -
Norman 5.80.02 2008.02.15 -
[B]Panda 9.0.0.4 2008.02.16 Trj/QQPass.QV
Prevx1 V2 2008.02.16 Heuristic: Suspicious File With Bad Parent Associations
Rising 20.31.50.00 2008.02.16 Trojan.Win32.Agent.pox
Sophos 4.26.0 2008.02.16 Mal/Heuri-E
Sunbelt 2.2.907.0 2008.02.16 Worm.Win32.Autoruner.BQ
Symantec 10 2008.02.16 W32.SillyFDC[/B]
TheHacker 6.2.9.222 2008.02.16 -
[B]VBA32 3.12.6.1 2008.02.14 Win32.HLLW.Autoruner.279[/B]
VirusBuster 4.3.26:9 2008.02.15 -
[B]Webwasher-Gateway 6.6.2 2008.02.15 Trojan.Delphi.Downloader.Gen[/B][/CODE]
File size: 29184 bytes
MD5: 9c1e6e500daac57c58fa103db572cb61
SHA1: 2b57f8c569ecf177aafe6662b8cc757c89da93df
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=9C31A99E008AD2D67277001732CC55001A54505A[/url]
[size="1"][color="#666686"][B][I]Добавлено через 42 минуты[/I][/B][/color][/size]
c:\windows\system32\bim\svchost.exe
Файл avz00005.dta получен 2008.02.16 19:49:30 (CET)
[CODE]AhnLab-V3 2008.2.16.10 2008.02.15 -
[B]AntiVir 7.6.0.67 2008.02.15 TR/Delphi.Downloader.Gen
Authentium 4.93.8 2008.02.15 Possibly a new variant of W32/new-malware!Maximus
Avast 4.7.1098.0 2008.02.16 Win32:Delf-EQM[/B]
AVG 7.5.0.516 2008.02.16 -
[B]BitDefender 7.2 2008.02.16 Dropped:Trojan.Proxy.Fackemo.A
CAT-QuickHeal None 2008.02.16 (Suspicious) - DNAScan[/B]
ClamAV 0.92.1 2008.02.16 -
[B]DrWeb 4.44.0.09170 2008.02.16 DLOADER.Trojan
eSafe 7.0.15.0 2008.02.14 suspicious Trojan/Worm[/B]
eTrust-Vet 31.3.5541 2008.02.15 -
Ewido 4.0 2008.02.16 -
FileAdvisor 1 2008.02.16 -
Fortinet 3.14.0.0 2008.02.16 -
[B]F-Prot 4.4.2.54 2008.02.15 W32/Downloader.F.gen!Eldorado
F-Secure 6.70.13260.0 2008.02.15 Suspicious_F.gen.dropper[/B]
Ikarus T3.1.1.20 2008.02.16 -
[B]Kaspersky 7.0.0.125 2008.02.16 Heur.Trojan.Generic[/B]
McAfee 5231 2008.02.15 -
Microsoft 1.3204 2008.02.16 -
NOD32v2 2880 2008.02.15 -
[B]Norman 5.80.02 2008.02.15 Suspicious_F.gen
Panda 9.0.0.4 2008.02.16 Suspicious file[/B]
Prevx1 V2 2008.02.16 -
Rising 20.31.50.00 2008.02.16 -
[B]Sophos 4.26.0 2008.02.16 Mal/Packer
Sunbelt 2.2.907.0 2008.02.16 VIPRE.Suspicious[/B]
Symantec 10 2008.02.16 -
TheHacker 6.2.9.222 2008.02.16 -
VBA32 3.12.6.1 2008.02.14 -
[B]VirusBuster 4.3.26:9 2008.02.15 Packed/FSG
Webwasher-Gateway 6.6.2 2008.02.15 Trojan.Delphi.Downloader.Gen[/B][/CODE]
File size: 17257 bytes
MD5: 0e6741e9dafd2c3c1f96e64af0a9743e
SHA1: 95f71cf9f9e9f961381a6b6f6bd0e18450712fa8
PEiD: FSG v2.0 -> bart/xt
packers: FSG
packers: FSG
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
C:\WINDOWS\system32\sysfldr.dll
Файл avz00003.dta получен 2008.02.16 19:49:41 (CET)
[CODE]AhnLab-V3 2008.2.16.10 2008.02.15 -
[B]AntiVir 7.6.0.67 2008.02.15 BDS/Backdoor.Gen[/B]
Authentium 4.93.8 2008.02.15 -
Avast 4.7.1098.0 2008.02.16 -
AVG 7.5.0.516 2008.02.16 -
[B]BitDefender 7.2 2008.02.16 Backdoor.SDBot.DFCV[/B]
CAT-QuickHeal None 2008.02.16 -
ClamAV 0.92.1 2008.02.16 -
DrWeb 4.44.0.09170 2008.02.16 -
[B]eSafe 7.0.15.0 2008.02.14 suspicious Trojan/Worm[/B]
eTrust-Vet 31.3.5541 2008.02.15 -
Ewido 4.0 2008.02.16 -
FileAdvisor 1 2008.02.16 -
Fortinet 3.14.0.0 2008.02.16 -
F-Prot 4.4.2.54 2008.02.15 -
F-Secure 6.70.13260.0 2008.02.15 -
[B]Ikarus T3.1.1.20 2008.02.16 Trojan-Proxy.Win32.Webber.U[/B]
Kaspersky 7.0.0.125 2008.02.16 -
McAfee 5231 2008.02.15 -
Microsoft 1.3204 2008.02.16 -
NOD32v2 2880 2008.02.15 -
Norman 5.80.02 2008.02.15 -
[B]Panda 9.0.0.4 2008.02.16 Suspicious file[/B]
[B]Prevx1 V2 2008.02.16 Lop.BG[/B]
Rising 20.31.50.00 2008.02.16 -
[B]Sophos 4.26.0 2008.02.16 Mal/Emogen-G[/B]
Sunbelt 2.2.907.0 2008.02.16 -
Symantec 10 2008.02.16 -
TheHacker 6.2.9.222 2008.02.16 -
VBA32 3.12.6.1 2008.02.14 -
VirusBuster 4.3.26:9 2008.02.15 -
[B]Webwasher-Gateway 6.6.2 2008.02.15 Trojan.Backdoor.Backdoor.Gen[/B][/CODE]
File size: 14336 bytes
MD5: e284bd5036c382d0d4241c10aaedfed4
SHA1: 7f9faa655a73874fd2325588f5be9ea09d4547c9
PEiD: -
packers: UPX
packers: UPX
packers: PE_Patch.UPX, UPX
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=47FBB9530057DF2B381A00445B362500B40A2B8E[/url]
-
Файл BACKINF.TAB получен 2008.02.17 22:59:27 (CET)
AhnLab-V3 2008.2.16.10 2008.02.15 -
AntiVir 7.6.0.67 2008.02.15 -
Authentium 4.93.8 2008.02.17 -
Avast 4.7.1098.0 2008.02.17 -
AVG 7.5.0.516 2008.02.17 -
[B]BitDefender 7.2 2008.02.17 Win32.Worm.VB.TB[/B]
CAT-QuickHeal None 2008.02.16 -
ClamAV 0.92.1 2008.02.17 -
[B]DrWeb 4.44.0.09170 2008.02.17 Win32.HLLW.Autoruner[/B]
eSafe 7.0.15.0 2008.02.17 -
[B]eTrust-Vet 31.3.5541 2008.02.15 INF/Cacfu[/B]
Ewido 4.0 2008.02.17 -
FileAdvisor 1 2008.02.17 -
Fortinet 3.14.0.0 2008.02.17 -
F-Prot 4.4.2.54 2008.02.17 -
[B]F-Secure 6.70.13260.0 2008.02.17 BAT/Autorun.O[/B]
[B]Ikarus T3.1.1.20 2008.02.17 Worm.Win32.AutoRun.sb[/B]
[B]Kaspersky 7.0.0.125 2008.02.17 Worm.Win32.AutoRun.sb[/B]
McAfee 5231 2008.02.15 -
Microsoft 1.3204 2008.02.17 -
[B]NOD32v2 2881 2008.02.17 INF/Autorun[/B]
[B]Norman 5.80.02 2008.02.15 BAT/Autorun.O[/B]
[B]Panda 9.0.0.4 2008.02.17 Trj/Autorun.KZ[/B]
Prevx1 V2 2008.02.17 -
Rising 20.31.50.00 2008.02.16 -
[B]Sophos 4.26.0 2008.02.17 Mal/AutoInf-A[/B]
Sunbelt 2.2.907.0 2008.02.16 -
Symantec 10 2008.02.17 -
[B]TheHacker 6.2.9.222 2008.02.16 Trojan/Small.autorun[/B]
VBA32 3.12.6.1 2008.02.17 -
VirusBuster 4.3.26:9 2008.02.17 -
Webwasher-Gateway 6.6.2 2008.02.15 -
Дополнительная информация
File size: 99 bytes
MD5: 9a69f8ac723c11800bb3ad8186f2ace2
SHA1: 75f67392687644486c4550faf4e000ddbbb6738e
PEiD: -
-
Файл avz00004.dta получен 2008.02.18 16:56:20 (CET)
[CODE]AhnLab-V3 2008.2.18.0 2008.02.18 -
AntiVir 7.6.0.67 2008.02.18 -
Authentium 4.93.8 2008.02.17 -
Avast 4.7.1098.0 2008.02.18 -
[B]AVG 7.5.0.516 2008.02.18 Spam
BitDefender 7.2 2008.02.18 Generic.Malware.dld!!.B10C0968[/B]
CAT-QuickHeal 9.50 2008.02.16 -
ClamAV 0.92.1 2008.02.18 -
DrWeb 4.44.0.09170 2008.02.18 -
eTrust-Vet 31.3.5546 2008.02.18 -
Ewido 4.0 2008.02.18 -
FileAdvisor 1 2008.02.18 -
Fortinet 3.14.0.0 2008.02.18 -
F-Prot 4.4.2.54 2008.02.17 -
F-Secure 6.70.13260.0 2008.02.18 -
Ikarus T3.1.1.20 2008.02.18 -
Kaspersky 7.0.0.125 2008.02.18 -
McAfee 5231 2008.02.15 -
Microsoft 1.3204 2008.02.18 -
NOD32v2 2883 2008.02.18 -
Norman 5.80.02 2008.02.15 -
[B]Panda 9.0.0.4 2008.02.17 Suspicious file[/B]
Rising 20.32.02.00 2008.02.18 -
Sophos 4.26.0 2008.02.18 -
Sunbelt 3.0.884.0 2008.02.18 -
Symantec 10 2008.02.18 -
TheHacker 6.2.9.222 2008.02.16 -
VBA32 3.12.6.1 2008.02.17 -
[B]VirusBuster 4.3.26:9 2008.02.18 Trojan.DL.Wigon.Gen.6[/B]
Webwasher-Gateway 6.6.2 2008.02.18 -[/CODE]
File size: 7168 bytes
MD5: 04ddf6bc6c4d382a3a17fc946569634a
SHA1: 81411883f0b8b81f7d80eb26130a125d34cb05ca
PEiD: -
Файл avz00001.dta получен 2008.02.18 16:57:38 (CET)
[CODE][B]AhnLab-V3 2008.2.18.0 2008.02.18 Win-Trojan/Agent.506952
AntiVir 7.6.0.67 2008.02.18 TR/Dldr.Logsnif.1[/B]
Authentium 4.93.8 2008.02.17 -
[B]Avast 4.7.1098.0 2008.02.18 Win32:BZub-KY
AVG 7.5.0.516 2008.02.18 Downloader.Generic_c.MQ[/B]
BitDefender 7.2 2008.02.18 -
[B]CAT-QuickHeal 9.50 2008.02.16 TrojanProxy.Small.it
ClamAV 0.92.1 2008.02.18 PUA.Packed.UPack-2
DrWeb 4.44.0.09170 2008.02.18 Trojan.Roro
eSafe 7.0.15.0 2008.02.17 Suspicious File[/B]
eTrust-Vet 31.3.5546 2008.02.18 -
Ewido 4.0 2008.02.18 -
FileAdvisor 1 2008.02.18 -
Fortinet 3.14.0.0 2008.02.18 -
[B]F-Prot 4.4.2.54 2008.02.17 W32/Heuristic-162!Eldorado
F-Secure 6.70.13260.0 2008.02.18 Suspicious:W32/Malware!Gemini
Ikarus T3.1.1.20 2008.02.18 MalwareScope.Trojan-Spy.BZub.2[/B]
Kaspersky 7.0.0.125 2008.02.18 -
[B]McAfee 5231 2008.02.15 Proxy-Agent.ai
Microsoft 1.3204 2008.02.18 Trojan:Win32/Dopip.A[/B]
NOD32v2 2883 2008.02.18 -
[B]Norman 5.80.02 2008.02.15 W32/Suspicious_U.gen[/B]
Panda 9.0.0.4 2008.02.17 -
Prevx1 V2 2008.02.18 -
Rising 20.32.02.00 2008.02.18 -
[B]Sophos 4.26.0 2008.02.18 Mal/Packer
Sunbelt 3.0.884.0 2008.02.18 VIPRE.Suspicious[/B]
Symantec 10 2008.02.18 -
[B]TheHacker 6.2.9.222 2008.02.16 W32/Behav-Heuristic-060
VBA32 3.12.6.1 2008.02.17 MalwareScope.Trojan-Spy.BZub.2
VirusBuster 4.3.26:9 2008.02.18 Packed/Upack
Webwasher-Gateway 6.6.2 2008.02.18 Trojan.Dldr.Logsnif.1[/B][/CODE]
File size: 509512 bytes
MD5: 02a5bc893cbeee7561a9e778b812baa4
SHA1: cac73b45639bcb64f8973e06f77aa6c432251e8b
PEiD: -
packers: UPack
packers: PE_Patch, UPack
-
Файл ***.exe получен 2008.02.18 20:33:18 (CET)
[CODE]AhnLab-V3 2008.2.18.0 2008.02.18 -
[B]AntiVir 7.6.0.67 2008.02.18 HEUR/Crypted[/B]
Authentium 4.93.8 2008.02.17 -
Avast 4.7.1098.0 2008.02.18 -
[B]AVG 7.5.0.516 2008.02.18 PSW.Ldpinch.11.AS[/B]
BitDefender 7.2 2008.02.18 -
[B]CAT-QuickHeal 9.50 2008.02.16 (Suspicious) - DNAScan[/B]
ClamAV 0.92.1 2008.02.18 -
[B]DrWeb 4.44.0.09170 2008.02.18 Trojan.PWS.LDPinch.1941[/B]
eSafe 7.0.15.0 2008.02.17 -
eTrust-Vet 31.3.5546 2008.02.18 -
Ewido 4.0 2008.02.18 -
FileAdvisor 1 2008.02.18 -
[B]Fortinet 3.14.0.0 2008.02.18 W32/Basine.C!tr.pws[/B]
F-Prot 4.4.2.54 2008.02.17 -
[B]F-Secure 6.70.13260.0 2008.02.18 LdPinch.gen1[/B]
[COLOR="Red"]Ikarus T3.1.1.20 2008.02.18 -[/COLOR]
[B]Kaspersky 7.0.0.125 2008.02.18 Trojan-PSW.Win32.LdPinch.fvf[/B]
McAfee 5232 2008.02.18 -
Microsoft 1.3204 2008.02.18 -
[COLOR="Red"]NOD32v2 2883 2008.02.18 -[/COLOR]
[B]Norman 5.80.02 2008.02.15 LdPinch.gen1[/B]
Panda 9.0.0.4 2008.02.17 -
[B]Prevx1 V2 2008.02.18 Heuristic: Suspicious Self Modifying File[/B]
Rising 20.32.02.00 2008.02.18 -
[B]Sophos 4.26.0 2008.02.18 Mal/Basine-C[/B]
[B]Sunbelt 3.0.884.0 2008.02.18 VIPRE.Suspicious[/B]
Symantec 10 2008.02.18 -
TheHacker 6.2.9.223 2008.02.18 -
VBA32 3.12.6.1 2008.02.17 -
VirusBuster 4.3.26:9 2008.02.18 -
[B]Webwasher-Gateway 6.6.2 2008.02.18 Heuristic.Crypted[/B][/CODE]
-
Файл daemon.tools.pro.patch.rar получен 2008.02.19 00:25:22 (CET)
Текущий статус: закончено
Результат: 8/32 (25%)
Форматированные
Печать результатов Антивирус Версия Обновление Результат
AhnLab-V3 2008.2.18.0 2008.02.18 -
[B]AntiVir 7.6.0.67 2008.02.18 HEUR/Crypted[/B]
Authentium 4.93.8 2008.02.17 -
[B]Avast 4.7.1098.0 2008.02.18 Win32:Horse-BK[/B]
AVG 7.5.0.516 2008.02.18 -
BitDefender 7.2 2008.02.18 -
CAT-QuickHeal 9.50 2008.02.18 -
ClamAV 0.92.1 2008.02.19 -
DrWeb 4.44.0.09170 2008.02.18 -
eSafe 7.0.15.0 2008.02.17 -
eTrust-Vet 31.3.5546 2008.02.18 -
Ewido 4.0 2008.02.18 -
FileAdvisor 1 2008.02.19 -
Fortinet 3.14.0.0 2008.02.18 -
F-Prot 4.4.2.54 2008.02.18 -
[B]F-Secure 6.70.13260.0 2008.02.18 W32/Malware.AVTN
Ikarus T3.1.1.20 2008.02.18 Backdoor.Pigeon.6620[/B]
Kaspersky 7.0.0.125 2008.02.19 -
McAfee 5232 2008.02.18 -
Microsoft 1.3204 2008.02.18 -
NOD32v2 2884 2008.02.18 -
Norman 5.80.02 2008.02.18 -
Panda 9.0.0.4 2008.02.18 -
[B]Prevx1 V2 2008.02.19 Heuristic: Suspicious Self Modifying EXE[/B]
Rising 20.32.02.00 2008.02.18 -
Sophos 4.26.0 2008.02.18 -
Sunbelt 3.0.884.0 2008.02.18 -
[B]Symantec 10 2008.02.18 Trojan Horse[/B]
TheHacker 6.2.9.223 2008.02.18 -
[B]VBA32 3.12.6.1 2008.02.17 Backdoor.Win32.Rbot.gnm[/B]
VirusBuster 4.3.26:9 2008.02.18 -
[B]Webwasher-Gateway 6.6.2 2008.02.18 Heuristic.Crypted[/B]
Дополнительная информация
File size: 609821 bytes
MD5: 38da4121a0daa01e09f2c500e58f6eda
SHA1: 115865d5e9b8cc89ae3099a6d047ceb0515e5444
PEiD: -
packers: PecBundle, PECompact
packers: PE_Patch.PECompact, PecBundle, PECompact
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=F442139000BBD9587864094BF049080042E22203[/url]
Page generated in 0.00781 seconds with 10 queries