Исследование антивирусов 7

Printable View

Показывать 40 сообщений этой темы на одной странице

24.04.2009, 00:55
senyak

Файл s03_07s_2_1_.pdf получен 2009.04.23 22:50:44 (CET)
Текущий статус: закончено
Результат: 12/40 (30%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.23 Exploit.Pidief!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.23 -
AntiVir 7.9.0.148 2009.04.23 -
Antiy-AVL 2.0.3.1 2009.04.23 -
Authentium 5.1.2.4 2009.04.22 -
[B]Avast 4.8.1335.0 2009.04.22 JS:Pdfka-DW[/B]
AVG 8.5.0.287 2009.04.22 -
[B]BitDefender 7.2 2009.04.23 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.04.23 -
[B]ClamAV 0.94.1 2009.04.23 Exploit.PDF-51[/B]
Comodo 1127 2009.04.22 -
DrWeb 4.44.0.09170 2009.04.23 -
eSafe 7.0.17.0 2009.04.21 -
[B]eTrust-Vet 31.6.6440 2009.04.20 PDF/Pidief.EI[/B]
F-Prot 4.4.4.56 2009.04.22 -
F-Secure 8.0.14470.0 2009.04.23 -
Fortinet 3.117.0.0 2009.04.22 -
[B]GData 19 2009.04.23 Exploit.PDF-JS.Gen
Ikarus T3.1.1.49.0 2009.04.23 Exploit.Pidief[/B]
K7AntiVirus 7.10.710 2009.04.21 -
Kaspersky 7.0.0.125 2009.04.23 -
McAfee 5593 2009.04.23 -
McAfee+Artemis 5592 2009.04.22 -
[B]McAfee-GW-Edition 6.7.6 2009.04.23 Exploit.PDF.Recursedecrypt.gen (suspicious)[/B]
Microsoft 1.4602 2009.04.23 -
NOD32 4029 2009.04.22 -
Norman 6.00.06 2009.04.22 -
[B]nProtect 2009.1.8.0 2009.04.23 Exploit.PDF-JS.Gen.C03[/B]
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.23 -
Prevx1 3.0 2009.04.23 -
Rising 21.26.31.00 2009.04.23 -
[B]Sophos 4.40.0 2009.04.23 Mal/PdfEx-C
Sunbelt 3.2.1858.2 2009.04.22 Exploit.PDF-JS.Gen (v)
Symantec 1.4.4.12 2009.04.23 Bloodhound.PDF.9[/B]
TheHacker 6.3.4.0.312 2009.04.23 -
TrendMicro 8.700.0.1004 2009.04.22 -
VBA32 3.12.10.2 2009.04.23 -
ViRobot 2009.4.23.1705 2009.04.23 -
VirusBuster 4.6.5.0 2009.04.22 -[/QUOTE]
Дополнительная информация
File size: 10806 bytes
MD5...: 8f0ac81b308dc52ecba8e299589498b2
SHA1..: 9bf02acb8e20cecc855ac3df53e924afbc97d425
SHA256: edc2305841f21376708eff0bf01d6a62ced10404b3500c747b21daabccc70da9
SHA512: 05c672a06123fef205c51772313bc7b6c1bb859bf237de1e9b1a5121cd67ed5f
814439dc3c90d2eddd0a714ac26cafa23280b685b5d48b0de8b8b0e6e82436cb
ssdeep: 192:XLFMlMOLp6WL5M39LCVGKWH/SFW/z/xR1sZuYCcNDAHHzxJk8eDmRRdP3k4F
ATY:XL6lMOLp6WL5s9LCcKWH/SFW/z/xR1+g
PEiD..: -
TrID..: File type identification
Adobe Portable Document Format (100.0%)
PEInfo: -
24.04.2009, 16:11
senyak

Файл video_codec.exe получен 2009.04.24 13:08:58 (CET)
Текущий статус: закончено
Результат: 10/40 (25.00%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.24 -
AhnLab-V3 5.0.0.2 2009.04.24 -
AntiVir 7.9.0.155 2009.04.24 -
Antiy-AVL 2.0.3.1 2009.04.24 -
Authentium 5.1.2.4 2009.04.23 -
Avast 4.8.1335.0 2009.04.23 -
AVG 8.5.0.287 2009.04.24 -
BitDefender 7.2 2009.04.24 -
[B]CAT-QuickHeal 10.00 2009.04.23 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.24 -
Comodo 1130 2009.04.23 -
DrWeb 4.44.0.09170 2009.04.24 -
[B]eSafe 7.0.17.0 2009.04.23 Suspicious File[/B]
eTrust-Vet 31.6.6474 2009.04.24 -
F-Prot 4.4.4.56 2009.04.23 -
F-Secure 8.0.14470.0 2009.04.24 -
Fortinet 3.117.0.0 2009.04.24 -
GData 19 2009.04.24 -
Ikarus T3.1.1.49.0 2009.04.24 -
K7AntiVirus 7.10.714 2009.04.23 -
[B]Kaspersky 7.0.0.125 2009.04.24 Trojan-Downloader.Win32.FraudLoad.egp
McAfee 5594 2009.04.23 Downloader-BOI
McAfee+Artemis 5594 2009.04.23 Downloader-BOI
McAfee-GW-Edition 6.7.6 2009.04.24 Trojan.Dldr.LooksLike.FraudLoad[/B]
Microsoft 1.4602 2009.04.24 -
NOD32 4033 2009.04.24 -
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.24 -
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.23 -
[B]Prevx1 3.0 2009.04.24 High Risk Worm[/B]
Rising 21.26.43.00 2009.04.24 -
[B]Sophos 4.41.0 2009.04.24 Mal/EncPk-HH
Sunbelt 3.2.1858.2 2009.04.24 Packer.Lighty.Gen (v)
Symantec 1.4.4.12 2009.04.24 Downloader.MisleadApp[/B]
TheHacker 6.3.4.0.313 2009.04.24 -
TrendMicro 8.700.0.1004 2009.04.23 -
VBA32 3.12.10.3 2009.04.24 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.23 -[/QUOTE]
Дополнительная информация
File size: 107523 bytes
MD5...: 39d20241b9bc148475d70f62f66ecfd7
SHA1..: bf6d44b3bf03b6b3ed84246a0e6f5b0566354a16
SHA256: 0b1295c62587f275f4edf4de82dbd71c932afe0960d8794a0cea6145003598b1
SHA512: 7f4ed2337776e9a273fd82f46e647b58ee9473e70fdbd1109f2bfda92a16b860
2d94ff41d12155e9215189269b868a6a9e42287b51157b48c53121c6e347a6a7
ssdeep: 1536:AEDwfiBbmC1CcrUu12cbMCDXPacgsacCzRkvj/bDIgcXTVcdTX3kua:i6Bb
hpzBacWzRiQgcXTi9X3kua
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
24.04.2009, 17:13
ISO

File vzlomicq.jar received on 04.24.2009 15:10:39 (CET)

[CODE]Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.04.24 -
AhnLab-V3 5.0.0.2 2009.04.24 -
AntiVir 7.9.0.155 2009.04.24 -
Antiy-AVL 2.0.3.1 2009.04.24 -
Authentium 5.1.2.4 2009.04.23 -
Avast 4.8.1335.0 2009.04.23 -
AVG 8.5.0.287 2009.04.24 -
BitDefender 7.2 2009.04.24 -
CAT-QuickHeal 10.00 2009.04.23 -
ClamAV 0.94.1 2009.04.24 -
Comodo 1130 2009.04.23 -
DrWeb 4.44.0.09170 2009.04.24 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6474 2009.04.24 -
F-Prot 4.4.4.56 2009.04.23 -
[B]F-Secure 8.0.14470.0 2009.04.24 Trojan-SMS.J2ME.Boxer.j[/B]
Fortinet 3.117.0.0 2009.04.24 -
GData 19 2009.04.24 -
Ikarus T3.1.1.49.0 2009.04.24 -
K7AntiVirus 7.10.714 2009.04.23 -
[B]Kaspersky 7.0.0.125 2009.04.24 Trojan-SMS.J2ME.Boxer.j[/B]
McAfee 5594 2009.04.23 -
McAfee+Artemis 5594 2009.04.23 -
McAfee-GW-Edition 6.7.6 2009.04.24 -
Microsoft 1.4602 2009.04.24 -
NOD32 4033 2009.04.24 -
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.24 -
Panda 10.0.0.14 2009.04.23 -
PCTools 4.4.2.0 2009.04.24 -
Prevx1 3.0 2009.04.24 -
Rising 21.26.44.00 2009.04.24 -
Sophos 4.41.0 2009.04.24 -
Sunbelt 3.2.1858.2 2009.04.24 -
Symantec 1.4.4.12 2009.04.24 -
TheHacker 6.3.4.0.313 2009.04.24 -
TrendMicro 8.700.0.1004 2009.04.24 -
VBA32 3.12.10.3 2009.04.24 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.23 -[/CODE]
Additional information
File size: 41008 bytes
MD5...: 2b57b6e284232f5a7cad1a30b40853d8
SHA1..: e2578e15fe799dc1369a66f5568b7a0e94556e42
SHA256: 987c3f26446192385d1c9fae1dd75e0643df461b1c0f9950ab0c27e563c9d308
SHA512: 2a08ba32fa4edd43963f40aedde4c14a4721769a6ab170e023869686cce43056
d7428c4679516ff95d97e758b77b258fc827e14b08f054450e9d1e43fc255c93
ssdeep: 768:VFR/YDi/fSK1+15Opu07rGR/fSK1+q0ucL71u/MfKJ+:PyDC3VpuYr23UuQu
USJ+
PEiD..: -
TrID..: File type identification
Java Archive (78.3%)
ZIP compressed archive (21.6%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
26.04.2009, 01:57
senyak

Файл Jimm2009.jar получен 2009.04.25 23:52:10 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.25 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.24 -
AntiVir 7.9.0.156 2009.04.25 -
Antiy-AVL 2.0.3.1 2009.04.24 -
Authentium 5.1.2.4 2009.04.25 -
[B]Avast 4.8.1335.0 2009.04.25 Other:Malware-gen[/B]
AVG 8.5.0.287 2009.04.25 -
BitDefender 7.2 2009.04.25 -
CAT-QuickHeal 10.00 2009.04.25 -
ClamAV 0.94.1 2009.04.25 -
Comodo 1135 2009.04.25 -
[B]DrWeb 4.44.0.09170 2009.04.25 Java.SMSSend.7[/B]
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6475 2009.04.24 -
F-Prot 4.4.4.56 2009.04.25 -
[B]F-Secure 8.0.14470.0 2009.04.25 Trojan-SMS.J2ME.Swapi.n
Fortinet 3.117.0.0 2009.04.25 Java/Swapi.N!tr
GData 19 2009.04.25 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.04.25 Trojan-SMS[/B]
K7AntiVirus 7.10.716 2009.04.25 -
[B]Kaspersky 7.0.0.125 2009.04.25 Trojan-SMS.J2ME.Swapi.n[/B]
McAfee 5596 2009.04.25 -
McAfee+Artemis 5596 2009.04.25 -
McAfee-GW-Edition 6.7.6 2009.04.25 -
Microsoft 1.4602 2009.04.25 -
NOD32 4035 2009.04.25 -
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.25 -
Panda 10.0.0.14 2009.04.25 -
PCTools 4.4.2.0 2009.04.25 -
Prevx1 3.0 2009.04.25 -
Rising 21.26.52.00 2009.04.25 -
Sophos 4.41.0 2009.04.25 -
Sunbelt 3.2.1858.2 2009.04.24 -
Symantec 1.4.4.12 2009.04.25 -
TheHacker 6.3.4.1.314 2009.04.25 -
TrendMicro 8.700.0.1004 2009.04.25 -
VBA32 3.12.10.3 2009.04.25 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.25 -[/QUOTE]
Дополнительная информация
File size: 135729 bytes
MD5...: 474815affb2614459241a04bab355400
SHA1..: a1c56600e9259931f5bf42b40bb78f9693c051b0
SHA256: e0abc06bbb2d05f43d9d20edd7c28aa75b8e0920c13ded05a741bf408db9c8d1
SHA512: 22339b7d8075f34bf6eda253337bb1f6d8d89c4908a0df19f862860696e3618a
5d73750898324e601f37238a21e6a08de7f8763600907cf62ac76848dfcfd950
ssdeep: 3072:EYzNg2B5XHj04ANArHJ+ga5h90VX0KgblXQcjkVtr4wk7gr9:RzNRB5lAir
p+garRKOdljkVd4wkM9
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
27.04.2009, 01:42
senyak

Файл 155.exe получен 2009.04.26 16:09:05 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.26 Trojan-Downloader.Win32.FakeRean!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.26 -
[B]AntiVir 7.9.0.156 2009.04.25 TR/Dldr.FakeRean.8[/B]
Antiy-AVL 2.0.3.1 2009.04.24 -
Authentium 5.1.2.4 2009.04.25 -
Avast 4.8.1335.0 2009.04.25 -
[B]AVG 8.5.0.287 2009.04.26 SHeur2.ACOF[/B]
BitDefender 7.2 2009.04.26 -
[B]CAT-QuickHeal 10.00 2009.04.25 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.26 -
Comodo 1135 2009.04.25 -
DrWeb 4.44.0.09170 2009.04.26 -
[B]eSafe 7.0.17.0 2009.04.23 Suspicious File[/B]
eTrust-Vet 31.6.6475 2009.04.24 -
F-Prot 4.4.4.56 2009.04.25 -
F-Secure 8.0.14470.0 2009.04.25 -
[B]Fortinet 3.117.0.0 2009.04.26 W32/Agent.SR!tr.dldr[/B]
GData 19 2009.04.26 -
[B]Ikarus T3.1.1.49.0 2009.04.26 Trojan-Downloader.Win32.FakeRean[/B]
K7AntiVirus 7.10.716 2009.04.25 -
[B]Kaspersky 7.0.0.125 2009.04.26 Trojan-Dropper.Win32.Agent.anna[/B]
McAfee 5596 2009.04.25 -
[B]McAfee+Artemis 5596 2009.04.25 Generic!Artemis
McAfee-GW-Edition 6.7.6 2009.04.26 Trojan.Dldr.FakeRean.8
Microsoft 1.4602 2009.04.26 TrojanDownloader:Win32/FakeRean[/B]
NOD32 4035 2009.04.25 -
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.26 -
[B]Panda 10.0.0.14 2009.04.26 Suspicious file[/B]
PCTools 4.4.2.0 2009.04.26 -
[B]Prevx1 3.0 2009.04.26 High Risk Worm[/B]
Rising 21.26.62.00 2009.04.26 -
[B]Sophos 4.41.0 2009.04.26 Mal/EncPk-HH
Sunbelt 3.2.1858.2 2009.04.24 Packer.Lighty.Gen (v)[/B]
Symantec 1.4.4.12 2009.04.26 -
TheHacker 6.3.4.1.314 2009.04.26 -
TrendMicro 8.700.0.1004 2009.04.25 -
VBA32 3.12.10.3 2009.04.25 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.26 -[/QUOTE]
Дополнительная информация
File size: 106499 bytes
MD5...: 90bc10c2e27279f1171426be4968beaa
SHA1..: f8cd86872ddcc6ee4ee946405579f2ccc612e559
SHA256: b80760fc7c37e00cce5a5990fa2423cc29b6004bfba7b559728e1e35fb897632
SHA512: 085ebeaa1051a3ff2c196990809895e2080134a1ffc73026b155aebda3042d1f
505df6ea04fa6300a7b665936578f0af2bddef7d50e8cab747eaf5b8c7604180
ssdeep: 3072:3KgVYEOBwBg9v9gPWFrYacEY2F3MsWi9X3kua:hgwBg96PWtYb2JMst8
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

[size="1"][color="#666686"][B][I]Добавлено через 2 часа 24 минуты[/I][/B][/color][/size]

Файл pcdefender.exe получен 2009.04.26 18:36:50 (CET)
Текущий статус: закончено
Результат: 13/40 (32.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.26 Trojan.Win32.FakeRean!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.26 -
[B]AntiVir 7.9.0.156 2009.04.25 TR/FakeRean.A.17[/B]
Antiy-AVL 2.0.3.1 2009.04.24 -
Authentium 5.1.2.4 2009.04.25 -
Avast 4.8.1335.0 2009.04.25 -
AVG 8.5.0.287 2009.04.26 -
BitDefender 7.2 2009.04.26 -
[B]CAT-QuickHeal 10.00 2009.04.25 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.26 -
Comodo 1135 2009.04.25 -
DrWeb 4.44.0.09170 2009.04.26 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6475 2009.04.24 -
F-Prot 4.4.4.56 2009.04.25 -
F-Secure 8.0.14470.0 2009.04.25 -
[B]Fortinet 3.117.0.0 2009.04.26 W32/BOI!tr.dldr[/B]
GData 19 2009.04.26 -
[B]Ikarus T3.1.1.49.0 2009.04.26 Trojan.Win32.FakeRean[/B]
K7AntiVirus 7.10.716 2009.04.25 -
[B]Kaspersky 7.0.0.125 2009.04.26 not-a-virus:FraudTool.Win32.WinDefender.x
McAfee 5597 2009.04.26 Downloader-BOI
McAfee+Artemis 5597 2009.04.26 Downloader-BOI
McAfee-GW-Edition 6.7.6 2009.04.26 Trojan.FakeRean.A.17
Microsoft 1.4602 2009.04.26 Trojan:Win32/FakeRean[/B]
NOD32 4035 2009.04.25 -
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.26 -
Panda 10.0.0.14 2009.04.26 -
PCTools 4.4.2.0 2009.04.26 -
Prevx1 3.0 2009.04.26 -
Rising 21.26.62.00 2009.04.26 -
[B]Sophos 4.41.0 2009.04.26 Mal/EncPk-HH
Sunbelt 3.2.1858.2 2009.04.24 MSAntispyware 2009 (v)
Symantec 1.4.4.12 2009.04.26 Suspicious.Lop[/B]
TheHacker 6.3.4.1.314 2009.04.26 -
TrendMicro 8.700.0.1004 2009.04.25 -
VBA32 3.12.10.3 2009.04.25 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.26 -[/QUOTE]
Дополнительная информация
File size: 1020928 bytes
MD5...: 08280b54a22b124ef52965cf732180d0
SHA1..: c31a08633bf6a02a24b012a7ce83cc45c1dc356d
SHA256: 30dc2847f20c75bbc3919a919d9f00f31dad3d3b3de9ace1021968e1f238c714
SHA512: 27bfc73dda102d17770266e1d72c960023852283c9d563b0ce866a0d45332e4d
a89f161f8ce99848affc993621fa9d299b959e1195625833a46dda42b99c653a
ssdeep: 24576:CYEKBEDsECxgLV0cjdqcp96jiImn5uuSDvyRAvNgGn90Jsqp:rEKBEDBC8
0cjdq7mYuW2ONgA9vM
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information

Файл ieocx.dll получен 2009.04.26 18:36:09 (CET)
Текущий статус: закончено
Результат: 20/40 (50%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.26 Trojan.Win32.Agent2!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.26 -
[B]AntiVir 7.9.0.156 2009.04.25 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.24 -
Authentium 5.1.2.4 2009.04.25 -
Avast 4.8.1335.0 2009.04.25 -
[B]AVG 8.5.0.287 2009.04.26 Agent2.EZY
BitDefender 7.2 2009.04.26 Trojan.Fakeav.KQ
CAT-QuickHeal 10.00 2009.04.25 Trojan.Agent2.iaq[/B]
ClamAV 0.94.1 2009.04.26 -
Comodo 1135 2009.04.25 -
[B]DrWeb 4.44.0.09170 2009.04.26 Trojan.Fakealert.4216
eSafe 7.0.17.0 2009.04.23 Suspicious File[/B]
eTrust-Vet 31.6.6475 2009.04.24 -
F-Prot 4.4.4.56 2009.04.25 -
[B]F-Secure 8.0.14470.0 2009.04.25 Trojan.Win32.Agent2.iaq
Fortinet 3.117.0.0 2009.04.26 W32/FakeAV.IAQ!tr
GData 19 2009.04.26 Trojan.Fakeav.KQ
Ikarus T3.1.1.49.0 2009.04.26 Trojan.Win32.Agent2[/B]
K7AntiVirus 7.10.716 2009.04.25 -
[B]Kaspersky 7.0.0.125 2009.04.26 Trojan.Win32.Agent2.iaq
McAfee 5597 2009.04.26 FakeAlert-CC
McAfee+Artemis 5597 2009.04.26 FakeAlert-CC
McAfee-GW-Edition 6.7.6 2009.04.26 Trojan.Crypt.XPACK.Gen
Microsoft 1.4602 2009.04.26 Trojan:Win32/Tibs.JB
NOD32 4035 2009.04.25 Win32/Adware.WinPCDefender[/B]
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.26 -
Panda 10.0.0.14 2009.04.26 -
PCTools 4.4.2.0 2009.04.26 -
[B]Prevx1 3.0 2009.04.26 High Risk Fraudulent Security Program
Rising 21.26.62.00 2009.04.26 AdWare.Win32.FakeAV.af
Sophos 4.41.0 2009.04.26 Troj/FakeAV-PG[/B]
Sunbelt 3.2.1858.2 2009.04.24 -
Symantec 1.4.4.12 2009.04.26 -
TheHacker 6.3.4.1.314 2009.04.26 -
TrendMicro 8.700.0.1004 2009.04.25 -
VBA32 3.12.10.3 2009.04.25 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.26 -[/QUOTE]
Дополнительная информация
File size: 28160 bytes
MD5...: bb59857d621940181937b736e98bbcd0
SHA1..: 80dd23cc95ae35b09bba0d7be3715ea6a5edcc3b
SHA256: f710f2d4f4fb558a9521e2a90fc3c703d03cc224736061802eb9f1c002b71e4a
SHA512: ad4a722ff8a1639021ebdde57a748fa2389ef1ed8c29ae926c9e628d74fd615c
3f5d59e2089925099405eaa4071aee065cd2a1e4be40be681e74b8fe15d03f65
ssdeep: 384:lImQDP/17oTxjRW/2jjQXk69cKxPYSiTniYvwZcwx9l9+Wu3XXANHiWNbbvv
4Q:l5QDPdWHQ+QXfxPtUIRv+WunqBx
PEiD..: -
TrID..: File type identification
DirectShow filter (58.0%)
Windows OCX File (35.5%)
Win32 Executable Generic (2.4%)
Win32 Dynamic Link Library (generic) (2.1%)
Clipper DOS Executable (0.5%)
PEInfo: PE Structure information

[size="1"][color="#666686"][B][I]Добавлено через 4 часа 58 минут[/I][/B][/color][/size]

Файл download получен 2009.04.26 23:28:54 (CET)
Текущий статус: закончено
Результат: 10/40 (25%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.26 Trojan.Fakeav!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.26 -
[B]AntiVir 7.9.0.156 2009.04.26 TR/Kryptik.MR[/B]
Antiy-AVL 2.0.3.1 2009.04.24 -
[B]Authentium 5.1.2.4 2009.04.26 W32/FakeAlert.4!Generic
Avast 4.8.1335.0 2009.04.26 Win32:FakeAlert-BD[/B]
AVG 8.5.0.287 2009.04.26 -
BitDefender 7.2 2009.04.26 -
CAT-QuickHeal 10.00 2009.04.25 -
ClamAV 0.94.1 2009.04.26 -
Comodo 1135 2009.04.25 -
DrWeb 4.44.0.09170 2009.04.26 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6475 2009.04.24 -
[B]F-Prot 4.4.4.56 2009.04.26 W32/FakeAlert.4!Generic[/B]
F-Secure 8.0.14470.0 2009.04.25 -
Fortinet 3.117.0.0 2009.04.26 -
[B]GData 19 2009.04.26 Win32:FakeAlert-BD
Ikarus T3.1.1.49.0 2009.04.26 Trojan.Fakeav[/B]
K7AntiVirus 7.10.716 2009.04.25 -
Kaspersky 7.0.0.125 2009.04.26 -
McAfee 5597 2009.04.26 -
McAfee+Artemis 5597 2009.04.26 -
[B]McAfee-GW-Edition 6.7.6 2009.04.26 Trojan.Kryptik.MR[/B]
Microsoft 1.4602 2009.04.26 -
[B]NOD32 4035 2009.04.25 a variant of Win32/TrojanDownloader.FakeAlert.FP[/B]
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.26 -
Panda 10.0.0.14 2009.04.26 -
PCTools 4.4.2.0 2009.04.26 -
Prevx1 3.0 2009.04.26 -
Rising 21.26.62.00 2009.04.26 -
[B]Sophos 4.41.0 2009.04.26 Mal/FakeAV-AK[/B]
Sunbelt 3.2.1858.2 2009.04.24 -
Symantec 1.4.4.12 2009.04.26 -
TheHacker 6.3.4.1.314 2009.04.26 -
TrendMicro 8.700.0.1004 2009.04.25 -
VBA32 3.12.10.3 2009.04.25 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.26 -[/QUOTE]
Дополнительная информация
File size: 89638 bytes
MD5...: d68ab489f124a2fe836f5ea642c93c99
SHA1..: 0e720277af1226f0e4941e92dd1fb39b2dd83b93
SHA256: 66c6695af158848574c6e3f3836ba22649b5355c5c71c68fc9f0bf3f4affbb0c
SHA512: 8791f62f69dd57067d6489136ab25adeef90bbf853b47243c66cc9dfcd3ac788
36be60fedca5e46fcce498f8a79f739370bfd538d7c9234d03ccc9d892ad187a
ssdeep: 1536:TgNJH7D4isFjNItCWNCRK4xnSdWGGxcTKKwYFzHZuCyohmJUJLEY5qXX0:T
GsZiIWBSRGGxZYHL2UJLLIXX0
PEiD..: -
TrID..: File type identification
Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл vir получен 2009.04.26 23:29:04 (CET)
Текущий статус: закончено
Результат: 13/40 (32.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.26 Trojan-Downloader.HTML.Agent!IK
AhnLab-V3 5.0.0.2 2009.04.26 HTML/Agent
AntiVir 7.9.0.156 2009.04.26 HTML/Agent.OV
Antiy-AVL 2.0.3.1 2009.04.24 Trojan/HTML.Agent
Authentium 5.1.2.4 2009.04.26 -[/B]
Avast 4.8.1335.0 2009.04.26 -
AVG 8.5.0.287 2009.04.26 -
BitDefender 7.2 2009.04.26 -
CAT-QuickHeal 10.00 2009.04.25 -
ClamAV 0.94.1 2009.04.26 -
[B]Comodo 1135 2009.04.25 TrojWare.Win32.TrojanDownloader.Agent.~CWG[/B]
DrWeb 4.44.0.09170 2009.04.26 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6475 2009.04.24 -
F-Prot 4.4.4.56 2009.04.26 -
[B]F-Secure 8.0.14470.0 2009.04.25 Trojan-Downloader.HTML.Agent.ov[/B]
Fortinet 3.117.0.0 2009.04.26 -
GData 19 2009.04.26 -
[B]Ikarus T3.1.1.49.0 2009.04.26 Trojan-Downloader.HTML.Agent[/B]
K7AntiVirus 7.10.716 2009.04.25 -
[B]Kaspersky 7.0.0.125 2009.04.26 Trojan-Downloader.HTML.Agent.ov[/B]
McAfee 5597 2009.04.26 -
McAfee+Artemis 5597 2009.04.26 -
[B]McAfee-GW-Edition 6.7.6 2009.04.26 Script.Agent.OV
Microsoft 1.4602 2009.04.26 TrojanDownloader:JS/Renos
NOD32 4035 2009.04.25 HTML/TrojanDownloader.Agent.OV[/B]
Norman 6.00.06 2009.04.24 -
nProtect 2009.1.8.0 2009.04.26 -
Panda 10.0.0.14 2009.04.26 -
PCTools 4.4.2.0 2009.04.26 -
Prevx1 3.0 2009.04.26 -
Rising 21.26.62.00 2009.04.26 -
Sophos 4.41.0 2009.04.26 -
Sunbelt 3.2.1858.2 2009.04.24 -
[B]Symantec 1.4.4.12 2009.04.26 Trojan.Fakeavalert[/B]
TheHacker 6.3.4.1.314 2009.04.26 -
[B]TrendMicro 8.700.0.1004 2009.04.25 HTML_FAKEAV.AXW[/B]
VBA32 3.12.10.3 2009.04.25 -
ViRobot 2009.4.24.1708 2009.04.24 -
VirusBuster 4.6.5.0 2009.04.26 -[/QUOTE]
Дополнительная информация
File size: 15562 bytes
MD5...: 8a94c3da97fd8b73e284969028f4be0d
SHA1..: d441321c49a47af1a8fa77b2f6955641019cf117
SHA256: 7031a4a537dd304499014ed34c6f97c513c88815a24508d1f0a4ff28f2e2b0bb
SHA512: cbd5892f304617cbf71fda0b98c859c156b0ccd862915e82ee53f54c8509fa56
70bc62fd5d9e3440120481371d16c268f787edc240b13d3d94e54987fb60a711
ssdeep: 192:eXhkmYLqkAt0+XjRUfXJPjJCdZg3UXRGEUdM87h/j8ybiBN+eMOb:EfY21KK
jRUfXJ7JCvg3dX64/j8yYMA
PEiD..: -
TrID..: File type identification
HyperText Markup Language with DOCTYPE (80.6%)
HyperText Markup Language (19.3%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
27.04.2009, 14:26
Black_N

Файл autorun.rar получен 2009.04.27 12:09:54 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[code]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.04.27 -
AhnLab-V3 5.0.0.2 2009.04.27 -
AntiVir 7.9.0.156 2009.04.27 -
Antiy-AVL 2.0.3.1 2009.04.27 -
Authentium 5.1.2.4 2009.04.26 -
Avast 4.8.1335.0 2009.04.26 -
[B]AVG 8.5.0.287 2009.04.27 Worm/AutoRun.FC
BitDefender 7.2 2009.04.27 Worm.AutoRun.VCS[/B]
CAT-QuickHeal 10.00 2009.04.27 -
ClamAV 0.94.1 2009.04.27 -
Comodo 1137 2009.04.27 -
DrWeb 4.44.0.09170 2009.04.27 -
eSafe 7.0.17.0 2009.04.23 -
eTrust-Vet 31.6.6478 2009.04.27 -
F-Prot 4.4.4.56 2009.04.26 -
[B]F-Secure 8.0.14470.0 2009.04.27 Worm.Win32.AutoRun.dpz[/B]
Fortinet 3.117.0.0 2009.04.27 -
[B]GData 19 2009.04.27 Worm.AutoRun.VCS[/B]
Ikarus T3.1.1.49.0 2009.04.27 -
K7AntiVirus 7.10.716 2009.04.25 -
[B]Kaspersky 7.0.0.125 2009.04.27 Worm.Win32.AutoRun.dpz[/B]
McAfee 5597 2009.04.26 -
McAfee+Artemis 5597 2009.04.26 -
McAfee-GW-Edition 6.7.6 2009.04.27 -
Microsoft 1.4602 2009.04.27 -
NOD32 4036 2009.04.27 -
[B]Norman 6.00.06 2009.04.24 BAT/Autorun.BJ[/B]
nProtect 2009.1.8.0 2009.04.27 -
Panda 10.0.0.14 2009.04.26 -
PCTools 4.4.2.0 2009.04.26 -
Prevx1 3.0 2009.04.27 -
Rising 21.27.02.00 2009.04.27 -
[B]Sophos 4.41.0 2009.04.27 Sus/AutoInf-A[/B]
Sunbelt 3.2.1858.2 2009.04.24 -
Symantec 1.4.4.12 2009.04.27 -
TheHacker 6.3.4.1.315 2009.04.27 -
[B]TrendMicro 8.700.0.1004 2009.04.27 Mal_Otorun1[/B]
VBA32 3.12.10.3 2009.04.27 -
ViRobot 2009.4.27.1710 2009.04.27 -
VirusBuster 4.6.5.0 2009.04.26 -[/code]
Дополнительная информация
File size: 729 bytes
MD5...: 4be3bda460cfb5172fca6498f8da69ad
SHA1..: de6b2180e1bab3c60a4a1281d925ebca74da6de1
SHA256: 60711b85644eb86e6494d6b0bf28d94678be121245ad58cd644d19abd8a9e9ec
SHA512: 6aea7f3eb91bc9cf3175075bab987da72c729d505d7cafc9c6fa60f5e7d0965e
a5ae70d93fc6ba8fc06059a8777f546756007746a8bb786fc3336bae7181792d
ssdeep: 6:uFtrIlSP743+RsRc4AsBejbTOt0AaCWtrIlSP743+RsRc4AsBejbapG:grIlSY
Euc7XTOSAaCyrIlSYEuc7XapG
PEiD..: -
TrID..: File type identification
RAR Archive (83.3%)
REALbasic Project (16.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
27.04.2009, 17:58
senyak

Файл movie1.wmv.exe получен 2009.04.27 15:32:11 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.27 Trojan.Win32.Stuh!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.27 -
AntiVir 7.9.0.156 2009.04.27 -
Antiy-AVL 2.0.3.1 2009.04.27 -
Authentium 5.1.2.4 2009.04.26 -
Avast 4.8.1335.0 2009.04.26 -
AVG 8.5.0.287 2009.04.27 -
[B]BitDefender 7.2 2009.04.27 Gen:Trojan.Heur.4024DB8989
CAT-QuickHeal 10.00 2009.04.27 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.27 -
Comodo 1137 2009.04.27 -
DrWeb 4.44.0.09170 2009.04.27 -
[B]eSafe 7.0.17.0 2009.04.27 Suspicious File[/B]
eTrust-Vet 31.6.6478 2009.04.27 -
F-Prot 4.4.4.56 2009.04.27 -
F-Secure 8.0.14470.0 2009.04.27 -
Fortinet 3.117.0.0 2009.04.27 -
[B]GData 19 2009.04.27 Gen:Trojan.Heur.4024DB8989
Ikarus T3.1.1.49.0 2009.04.27 Trojan.Win32.Stuh[/B]
K7AntiVirus 7.10.717 2009.04.27 -
Kaspersky 7.0.0.125 2009.04.27 -
McAfee 5597 2009.04.26 -
McAfee+Artemis 5597 2009.04.26 -
McAfee-GW-Edition 6.7.6 2009.04.27 -
[B]Microsoft 1.4602 2009.04.27 Trojan:Win32/Vundo.gen!AK[/B]
NOD32 4036 2009.04.27 -
Norman 6.00.06 2009.04.27 -
nProtect 2009.1.8.0 2009.04.27 -
Panda 10.0.0.14 2009.04.27 -
PCTools 4.4.2.0 2009.04.27 -
Prevx1 3.0 2009.04.27 -
Rising 21.27.02.00 2009.04.27 -
Sophos 4.41.0 2009.04.27 -
[B]Sunbelt 3.2.1858.2 2009.04.24 Virtumonde[/B]
Symantec 1.4.4.12 2009.04.27 -
TheHacker 6.3.4.1.315 2009.04.27 -
TrendMicro 8.700.0.1004 2009.04.27 -
VBA32 3.12.10.3 2009.04.27 -
ViRobot 2009.4.27.1710 2009.04.27 -
VirusBuster 4.6.5.0 2009.04.26 -[/QUOTE]
Дополнительная информация
File size: 67072 bytes
MD5...: bc891c196583e49c6029dea9859b883d
SHA1..: 0d3da7e89144a4970149a9a2bb0179ad2894266c
SHA256: 7780c3f34e3b4357af9f8d82ed5d4a8a4e423d05c29a228cd7c1a127b48d9f54
SHA512: fa49b991a3dd96b451b7a5912a708088c31a173834441a76d57930de2b0ba721
a4ae142e41de87984b30cd1f236ae703760a6bafb67f5ec1e18692e83342316a
ssdeep: 1536:/18Jj2Zo0qAI6bszZkZBwG5Ivs8GxNR93bkB:/6qFqAqZOBIvs8GxNYB
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (58.5%)
Clipper DOS Executable (13.8%)
Generic Win/DOS Executable (13.7%)
DOS Executable Generic (13.7%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
29.04.2009, 15:30
DefesT

Файл _.exe получен 2009.04.29 13:16:17 (CET)
Текущий статус: закончено
Результат: 30/40 (75%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.29 Backdoor.Win32.Momibot.B!IK
AhnLab-V3 5.0.0.2 2009.04.29 Win32/IRCBot.worm.variant
AntiVir 7.9.0.156 2009.04.29 TR/Crypt.XPACK.Gen
Antiy-AVL 2.0.3.1 2009.04.29 Backdoor/Win32.IRCBot
Authentium 5.1.2.4 2009.04.27 W32/Backdoor2.BVDC
Avast 4.8.1335.0 2009.04.28 Win32:Trojan-gen {Other}
AVG 8.5.0.287 2009.04.29 Win32/Heur
BitDefender 7.2 2009.04.29 Backdoor.Bot.36556
CAT-QuickHeal 10.00 2009.04.29 Win32.Backdoor.Momibot.gen!B.4
ClamAV 0.94.1 2009.04.29 Trojan.IRCBot-2620
Comodo 1141 2009.04.29 Backdoor.Win32.IRCBot.ioq
DrWeb 4.44.0.09170 2009.04.29 BackDoor.IRC.Bot.51
eSafe 7.0.17.0 2009.04.27 Win32.TRCrypt.XPACK[/B]
eTrust-Vet 31.6.6482 2009.04.29 -
[B]F-Prot 4.4.4.56 2009.04.27 W32/Backdoor2.BVDC
F-Secure 8.0.14470.0 2009.04.29 Backdoor.Win32.IRCBot.ioq
Fortinet 3.117.0.0 2009.04.29 PossibleThreat
GData 19 2009.04.29 Backdoor.Bot.36556
Ikarus T3.1.1.49.0 2009.04.29 Backdoor.Win32.Momibot.B
K7AntiVirus 7.10.719 2009.04.29 Backdoor.Win32.IRCBot.dhc
Kaspersky 7.0.0.125 2009.04.29 Backdoor.Win32.IRCBot.ioq [/B]
McAfee 5599 2009.04.28 -
[B]McAfee+Artemis 5599 2009.04.28 Artemis!D3D7C438F2DE
McAfee-GW-Edition 6.7.6 2009.04.29 Trojan.Crypt.XPACK.Gen
Microsoft 1.4602 2009.04.29 Backdoor:Win32/Momibot.gen!B[/B]
NOD32 4042 2009.04.29 -
[B]Norman 6.00.06 2009.04.28 W32/Ircbot.AEFU[/B]
nProtect 2009.1.8.0 2009.04.29 -
Panda 10.0.0.14 2009.04.28 -
PCTools 4.4.2.0 2009.04.28 -
[B]Prevx1 3.0 2009.04.29 Medium Risk Malware
Rising 21.27.22.00 2009.04.29 Packer.Win32.UnkPacker.a [Suspicious]
Sophos 4.41.0 2009.04.29 Mal/EncPk-HE [/B]
Sunbelt 3.2.1858.2 2009.04.28 -
Symantec 1.4.4.12 2009.04.29 -
TheHacker 6.3.4.1.317 2009.04.29 -
TrendMicro 8.950.0.1092 2009.04.29 -
[B]VBA32 3.12.10.3 2009.04.29 Backdoor.Win32.IRCBot.dhc
ViRobot 2009.4.29.1715 2009.04.29 Backdoor.Win32.IRCBot.41984.F
VirusBuster 4.6.5.0 2009.04.28 Backdoor.IRCBot.YFZ [/B]
[/QUOTE]
[SIZE="2"]File size: 41931 bytes
MD5...: d3d7c438f2de554e75bf22d295e55d9e
SHA1..: 9b107ac67b0d6c80af9cedf2a9200ddf8a0663a8
SHA256: 56a0d491a97e276901ff8c9566b47df6bcac046ba34565738db499146d7f6eb6
SHA512: 7cbdf22ea2ab87fa101001c1bfa80c19fc8dd62cd29703d86526f24005fe1482
16b17a4a68f45203de9c9bb6ebad09f464f5bf2c807eb7207a0c441d7157a699
ssdeep: 768:YNBAbBES44peWayMRB0Sw6ghEPt37tlvOUkz:YNK+QxatRBkhh4t37tYt

PEiD..: -
TrID..: File type identification
Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information[/SIZE]
30.04.2009, 20:58
senyak

Файл Jimm2009.jar получен 2009.04.30 18:34:12 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.04.30 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.04.30 -
AntiVir 7.9.0.160 2009.04.30 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.04.30 -
[B]Avast 4.8.1335.0 2009.04.29 Other:Malware-gen[/B]
AVG 8.5.0.327 2009.04.30 -
BitDefender 7.2 2009.04.30 -
CAT-QuickHeal 10.00 2009.04.30 -
ClamAV 0.94.1 2009.04.30 -
Comodo 1141 2009.04.29 -
[B]DrWeb 4.44.0.09170 2009.04.30 Java.SMSSend.7[/B]
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6484 2009.04.30 -
F-Prot 4.4.4.56 2009.04.29 -
[B]F-Secure 8.0.14470.0 2009.04.30 Trojan-SMS.J2ME.Swapi.n
Fortinet 3.117.0.0 2009.04.30 Java/Swapi.N!tr
GData 19 2009.04.30 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.04.30 Trojan-SMS[/B]
K7AntiVirus 7.10.720 2009.04.30 -
[B]Kaspersky 7.0.0.125 2009.04.30 Trojan-SMS.J2ME.Swapi.n[/B]
McAfee 5601 2009.04.30 -
McAfee+Artemis 5601 2009.04.30 -
McAfee-GW-Edition 6.7.6 2009.04.30 -
Microsoft 1.4602 2009.04.30 -
NOD32 4046 2009.04.30 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.04.29 -
Panda 10.0.0.14 2009.04.30 -
PCTools 4.4.2.0 2009.04.30 -
Prevx1 3.0 2009.04.30 -
Rising 21.27.31.00 2009.04.30 -
Sophos 4.41.0 2009.04.30 -
Sunbelt 3.2.1858.2 2009.04.29 -
Symantec 1.4.4.12 2009.04.30 -
TheHacker 6.3.4.1.317 2009.04.29 -
TrendMicro 8.950.0.1092 2009.04.30 -
VBA32 3.12.10.4 2009.04.30 -
ViRobot 2009.4.30.1716 2009.04.30 -
VirusBuster 4.6.5.0 2009.04.30 -
Дополнительная информация[/QUOTE]
Дополнительная информация
File size: 7874 bytes
MD5...: 8dada49451035846fd31fa9ec67c5038
SHA1..: 5d2f866754854a6904df7c72d0dc3e5100febd70
SHA256: 64a4aeb3d435a8da69ac249e88d91334a9f00337b31168cec6835c52a33ea8fc
SHA512: 4e70a49e1a6069dcd026d065995449dd547ed03dca9c6e3fee7e140f44abbb66
c4cb0ccb15e65159d066f49dbf7028b326c989f96ccbd0fbfcba2f92fc7da04e
ssdeep: 96:h+1K/qPUumSkE3E1Z/I09Da01l+gmkyTt6Hk8nTCxerY/6K0YnK2u98NOrtky
0Cb:h2Uu3kSwS0tKg9E05T/8cw2kOrR0ezCM
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
01.05.2009, 01:59
VV2006

tmp365.exe

Файл [B]tmp365.exe [/B]получен 2009.04.30 23:13:12 (CET)
Текущий статус: закончено
Результат: 4/40 (10%)

[QUOTE][B][U]Антивирус Версия Обновление Результат[/U][/B]
a-squared 4.0.0.101 2009.04.30 -
AhnLab-V3 5.0.0.2 2009.04.30 -
AntiVir 7.9.0.160 2009.04.30 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.04.30 -
Avast 4.8.1335.0 2009.04.30 -
AVG 8.5.0.327 2009.04.30 -
BitDefender 7.2 2009.04.30 -
[B]CAT-QuickHeal 10.00 2009.04.30 Trojan.Agent.ATV[/B]
ClamAV 0.94.1 2009.04.30 -
Comodo 1141 2009.04.29 -
DrWeb 4.44.0.09170 2009.04.30 -
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6484 2009.04.30 -
F-Prot 4.4.4.56 2009.04.29 -
[B]F-Secure 8.0.14470.0 2009.04.30 Trojan-Ransom.Win32.SMSer.as[/B]
Fortinet 3.117.0.0 2009.04.30 -
GData 19 2009.04.30 -
Ikarus T3.1.1.49.0 2009.04.30 -
K7AntiVirus 7.10.720 2009.04.30 -
[B]Kaspersky 7.0.0.125 2009.04.30 Trojan-Ransom.Win32.SMSer.as[/B]
McAfee 5601 2009.04.30 -
McAfee+Artemis 5601 2009.04.30 -
McAfee-GW-Edition 6.7.6 2009.04.30 -
Microsoft 1.4602 2009.04.30 -
[B]NOD32 4047 2009.04.30 Win32/Delf.OHJ[/B]
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.04.29 -
Panda 10.0.0.14 2009.04.30 -
PCTools 4.4.2.0 2009.04.30 -
Prevx1 3.0 2009.04.30 -
Rising 21.27.31.00 2009.04.30 -
Sophos 4.41.0 2009.04.30 -
Sunbelt 3.2.1858.2 2009.04.30 -
Symantec 1.4.4.12 2009.04.30 -
TheHacker 6.3.4.1.317 2009.04.30 -
TrendMicro 8.950.0.1092 2009.04.30 -
VBA32 3.12.10.4 2009.04.30 -
ViRobot 2009.4.30.1716 2009.04.30 -
VirusBuster 4.6.5.0 2009.04.30 -
[/QUOTE]

Дополнительная информация
File size: 2048 bytes
MD5...: c9c24b342801c98feaed015dfddc16a8
SHA1..: a3a3cfd82c9f1e60a10cec6900e684c0b8b99ab1
SHA256: ff8a6894eb43ec6ffede240f4fabcedf3adce42a8657294f06bfd1c792f9e00b
SHA512: a7173020aa75d1e72ea529f9ce10b81855a9faaeedbefec2db5e78002248e11d
92949186787333aa450745e3297550b82fc664800deca27fc40bead5345bf379
ssdeep: 24:QuiUO0FrK076kA6hzco105tK2GtubRxpoAMoBG/oRidJnrlIA:QW/FrKkrhzc
c0TK2cIgAMoBzidtl
PEiD..: -
TrID..: File type identification
DOS Executable Generic (97.9%)
VXD Driver (1.5%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.3%)
MS Flight Simulator Aircraft Performance Info (0.1%)
PEInfo: PE Structure information

[size="1"][color="#666686"][B][I]Добавлено через 26 минут[/I][/B][/color][/size]

Файл [B]lsaass.exe[/B] получен 2009.04.30 23:51:12 (CET)
Текущий статус: закончено
Результат: 6/40 (15%)

[QUOTE]
[B][U]Печать результатов Антивирус Версия Обновление Результат[/U][/B]
a-squared 4.0.0.101 2009.04.30 -
AhnLab-V3 5.0.0.2 2009.04.30 -
[B]AntiVir 7.9.0.160 2009.04.30 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.04.30 -
Avast 4.8.1335.0 2009.04.30 -
[B]AVG 8.5.0.327 2009.04.30 Win32/Heur[/B]
BitDefender 7.2 2009.04.30 -
[B]CAT-QuickHeal 10.00 2009.04.30 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.04.30 -
Comodo 1141 2009.04.29 -
DrWeb 4.44.0.09170 2009.04.30 -
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6484 2009.04.30 -
F-Prot 4.4.4.56 2009.04.30 -
F-Secure 8.0.14470.0 2009.04.30 -
Fortinet 3.117.0.0 2009.04.30 -
GData 19 2009.04.30 -
Ikarus T3.1.1.49.0 2009.04.30 -
K7AntiVirus 7.10.720 2009.04.30 -
Kaspersky 7.0.0.125 2009.04.30 -
McAfee 5601 2009.04.30 -
McAfee+Artemis 5601 2009.04.30 -
[B]McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Crypt.XPACK.Gen[/B]
Microsoft 1.4602 2009.04.30 -
NOD32 4047 2009.04.30 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.04.29 -
Panda 10.0.0.14 2009.04.30 -
PCTools 4.4.2.0 2009.04.30 -
Prevx1 3.0 2009.04.30 -
[B]Rising 21.27.31.00 2009.04.30 Packer.Win32.UnkPacker.a [/B][Suspicious]
Sophos 4.41.0 2009.04.30 -
Sunbelt 3.2.1858.2 2009.04.30 -
[B]Symantec 1.4.4.12 2009.04.30 Suspicious.MH690.A[/B]
TheHacker 6.3.4.1.317 2009.04.30 -
TrendMicro 8.950.0.1092 2009.04.30 -
VBA32 3.12.10.4 2009.04.30 -
ViRobot 2009.4.30.1716 2009.04.30 -
VirusBuster 4.6.5.0 2009.04.30 -
[/QUOTE]

Дополнительная информация
File size: 101376 bytes
MD5...: c11a76b7d9707f4220d148be109d6d2b
SHA1..: 3f389ac110fbcd000fedc3b14922fecb8a9dd6f3
SHA256: ae2f9b8a9735fcff48d5221f9596880ef0fa77eb4926506fe5eee6b368841eba
SHA512: 8fc1ed8c3a6ebd578594dc4d204c949ea160baf21424ea0af98bb8cc67d77dd5
27d631fe4283271134944104d49897edd0f895f52c32c18b94d2013e0ff58ad5
ssdeep: 1536:5A8Zo2MM8JerRoED6AAHeq7iX+4n78EnvF/beFShXT4Hd6:5A8Zo66eNocK
eq7q+24ExBV4H0
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
01.05.2009, 02:21
HATTIFNATTOR

Файл crypts.dll получен 2009.04.30 23:59:26 (CET)
Результат: 35/40 (87.5%)

[quote]
Антивирус Версия Обновление Результат
[b]a-squared 4.0.0.101 2009.04.30 Trojan-Spy.Finanz.J!IK[/b]
[b]AhnLab-V3 5.0.0.2 2009.04.30 Win-Trojan/Agent.33280.MG[/b]
[b]AntiVir 7.9.0.160 2009.04.30 TR/Dldr.Agent.brlc.3[/b]
[b]Antiy-AVL 2.0.3.1 2009.04.30 Trojan/Win32.Agent[/b]
Authentium 5.1.2.4 2009.04.30 -
[b]Avast 4.8.1335.0 2009.04.30 Win32:Trojan-gen {Other}[/b]
[b]AVG 8.5.0.327 2009.04.30 Agent_r.MV[/b]
[b]BitDefender 7.2 2009.04.30 Trojan.Downloader.Slupim.C[/b]
[b]CAT-QuickHeal 10.00 2009.04.30 TrojanDownloader.Slupim.b[/b]
ClamAV 0.94.1 2009.04.30 -
Comodo 1141 2009.04.29 -
[b]DrWeb 4.44.0.09170 2009.04.30 Trojan.DownLoad.33838[/b]
[b]eSafe 7.0.17.0 2009.04.30 Suspicious File[/b]
[b]eTrust-Vet 31.6.6484 2009.04.30 Win32/Donloz.GM[/b]
F-Prot 4.4.4.56 2009.04.30 -
[b]F-Secure 8.0.14470.0 2009.04.30 Trojan-Downloader.Win32.Agent.brlc[/b]
[b]Fortinet 3.117.0.0 2009.04.30 W32/Agent.BRLC!tr.dldr[/b]
[b]GData 19 2009.04.30 Trojan.Downloader.Slupim.C[/b]
[b]Ikarus T3.1.1.49.0 2009.04.30 Trojan-Spy.Finanz.J[/b]
[b]K7AntiVirus 7.10.720 2009.04.30 Trojan-Downloader.Win32.Agent.brlc[/b]
[b]Kaspersky 7.0.0.125 2009.04.30 Trojan-Downloader.Win32.Agent.brlc[/b]
[b]bMcAfee 5601 2009.04.30 Downloader-BAR[/b]
[b]McAfee+Artemis 5601 2009.04.30 Artemis!EA8C70AC2FF2[/b]
McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Dldr.Agent.brlc.3[/b]
[b]Microsoft 1.4602 2009.04.30 TrojanDownloader:Win32/Slupim.B[/b]
[b]NOD32 4047 2009.04.30 Win32/TrojanDownloader.Agent.ORH[/b]
[b]Norman 6.01.05 2009.04.30 W32/Agent.MIOO[/b]
[b]nProtect 2009.1.8.0 2009.04.29 Trojan/W32.Agent.33280.CO[/b]
[b]Panda 10.0.0.14 2009.04.30 Trj/Downloader.MDW[/b]
[b]PCTools 4.4.2.0 2009.04.30 Trojan-Downloader.Agent!sd6[/b]
[b]Prevx1 3.0 2009.05.01 Medium Risk Malware[/b]
[b]Rising 21.27.31.00 2009.04.30 Trojan.DL.Win32.Nodef.lm[/b]
[b]Sophos 4.41.0 2009.04.30 Mal/Generic-A[/b]
[b]Sunbelt 3.2.1858.2 2009.04.30 Trojan-Downloader.Win32.Slupim.b[/b]
[b]Symantec 1.4.4.12 2009.04.30 Downloade[/b]r
[b]TheHacker 6.3.4.1.317 2009.04.30 Trojan/Downloader.Agent.brlc[/b]
[b]TrendMicro 8.950.0.1092 2009.04.30 TROJ_DLOADR.ALD[/b]
[b]VBA32 3.12.10.4 2009.04.30 Trojan-Downloader.Win32.Agent.brlc[/b]
ViRobot 2009.4.30.1716 2009.04.30 -
[b]VirusBuster 4.6.5.0 2009.04.30 Trojan.DL.Agent.JILA[/b]

[/quote]
Дополнительная информация
File size: 33280 bytes
MD5...: ea8c70ac2ff23713c5455141ca750f28
SHA1..: 62224a78264846ed4ea117e323ff5bb5dcf77a55
SHA256: 3eb79950586e71f6e7ac8c8c8da2a68d4ae26b82f7d6b7aad72c3c8d0d125616
SHA512: 827e248f9d746f128f719e933d0abdc82600bb13bab164a66a0531259591780c
95eed32086f8a961a7832b542cd6a8a5c8d8ca4b4892e8832e8816cecde5e756
ssdeep: 768:Z/SHks/SxqI62F79KLS5hacmBT/UHpAQmj:Zk/gFX7CSXeBT/UJ
PEiD..: -
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)

[size="1"][color="#666686"][B][I]Добавлено через 3 минуты[/I][/B][/color][/size]

Файл U.exe получен 2009.05.01 00:00:03 (CET)
Результат: 26/40 (65%)

[quote]
Антивирус Версия Обновление Результат
[b]a-squared 4.0.0.101 2009.04.30 Win32.SuspectCrc!IK[/b]
[b]AhnLab-V3 5.0.0.2 2009.04.30 Win-Trojan/Xema.variant[/b]
[b]AntiVir 7.9.0.160 2009.04.30 TR/Downloader.Gen[/b]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.04.30 -
[b]Avast 4.8.1335.0 2009.04.30 Win32:Trojan-gen {Other}[/b]
AVG 8.5.0.327 2009.04.30 -
[b]BitDefender 7.2 2009.04.30 Generic.Malware.dld!!.698C481F[/b]
[b]CAT-QuickHeal 10.00 2009.04.30 Trojan.Agent.SDB[/b]
ClamAV 0.94.1 2009.04.30 -
[b]Comodo 1141 2009.04.29 TrojWare.Win32.Trojan.Agent.Gen[/b]
DrWeb 4.44.0.09170 2009.04.30 -
[b]eSafe 7.0.17.0 2009.04.30 Win32.TRDownloader[/b]
[b]eTrust-Vet 31.6.6484 2009.04.30 Win32/VMalum.FBPR[/b]
F-Prot 4.4.4.56 2009.04.30 -
F-Secure 8.0.14470.0 2009.04.30 -
[b]Fortinet 3.117.0.0 2009.04.30 PossibleThreat[/b]
[b]GData 19 2009.04.30 Generic.Malware.dld!!.698C481F[/b]
[b]Ikarus T3.1.1.49.0 2009.04.30 Win32.SuspectCrc[/b]
[b]K7AntiVirus 7.10.720 2009.04.30 Trojan.Win32.Malware.1[/b]
Kaspersky 7.0.0.125 2009.04.30 -
[b]McAfee 5601 2009.04.30 Generic.dx[/b]
[b]McAfee+Artemis 5601 2009.04.30 Generic.dx[/b]
[b]McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Downloader.Gen[/b]
Microsoft 1.4602 2009.04.30 -
[b]NOD32 4047 2009.04.30 probably a variant of Win32/TrojanDownloader.Agent[/b]
[b]Norman 6.01.05 2009.04.30 W32/Atraps.GHA[/b]
[b]nProtect 2009.1.8.0 2009.04.29 Trojan/W32.Agent.4608.AU[/b]
[b]Panda 10.0.0.14 2009.04.30 Generic Trojan[/b]
PCTools 4.4.2.0 2009.04.30 -
[b]Prevx1 3.0 2009.05.01 Medium Risk Malware Downloader[/b]
Rising 21.27.31.00 2009.04.30 -
[b]Sophos 4.41.0 2009.04.30 Mal/Behav-116[/b]
[b]Sunbelt 3.2.1858.2 2009.04.30 Trojan-Downloader.Gen[/b]
[b]Symantec 1.4.4.12 2009.04.30 Downloader[/b]
TheHacker 6.3.4.1.317 2009.04.30 -
[b]TrendMicro 8.950.0.1092 2009.04.30 TROJ_ATRAPS.AL[/b]
[b]VBA32 3.12.10.4 2009.04.30 suspected of Win32.Trojan-Downloader[/b]
ViRobot 2009.4.30.1716 2009.04.30 -
VirusBuster 4.6.5.0 2009.04.30 -

[/quote]
Дополнительная информация
File size: 4608 bytes
MD5...: f96af7d7090bfb45a4aba8099cfe1985
SHA1..: e5a66f39a4c7795d414e906db7929701e7ef6fe2
SHA256: 153cd0ceb92e87c05e44d02785f070c022862106c2f6fda03e07f875f3f966e0
SHA512: 98e468256f0e815ab8529f1bfcdf49e9662081a507e45abf6135676e996d56eb
17a295c886ae42a8cdc61c3463305a0f5ab9732af8b9f1256da4a546733b9700
ssdeep: 48:itRpTSBQPamMmVXgmcolPhAra4A+gQ7T9cSeJY8JTauylFoB:eRkBkampVXvV
r4RgO8yly
PEiD..: -
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)

[size="1"][color="#666686"][B][I]Добавлено через 2 минуты[/I][/B][/color][/size]

Файл digiwet.dll получен 2009.04.30 23:59:44 (CET)
Результат: 12/40 (30%)

[quote]
Антивирус Версия Обновление Результат
[b]a-squared 4.0.0.101 2009.04.30 Trojan-Dropper!IK[/b]
AhnLab-V3 5.0.0.2 2009.04.30 -
[b]AntiVir 7.9.0.160 2009.04.30 TR/Dropper.Gen[/b]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.04.30 -
Avast 4.8.1335.0 2009.04.30 -
AVG 8.5.0.327 2009.04.30 -
BitDefender 7.2 2009.04.30 -
CAT-QuickHeal 10.00 2009.04.30 -
ClamAV 0.94.1 2009.04.30 -
Comodo 1141 2009.04.29 -
[b]DrWeb 4.44.0.09170 2009.04.30 Trojan.Botnetlog.3[/b]
[b]eSafe 7.0.17.0 2009.04.30 Win32.TRDropper[/b]
eTrust-Vet 31.6.6484 2009.04.30 -
F-Prot 4.4.4.56 2009.04.30 -
F-Secure 8.0.14470.0 2009.04.30 -
Fortinet 3.117.0.0 2009.04.30 -
GData 19 2009.04.30 -
[b]Ikarus T3.1.1.49.0 2009.04.30 Trojan-Dropper[/b]
K7AntiVirus 7.10.720 2009.04.30 -
Kaspersky 7.0.0.125 2009.04.30 -
McAfee 5601 2009.04.30 -
[b]McAfee+Artemis 5601 2009.04.30 Artemis!382108200EBD[/b]
[b]McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Dropper.Gen[/b]
[b]Microsoft 1.4602 2009.04.30 Trojan:Win32/Gearclop.gen!A[/b]
[b]NOD32 4047 2009.04.30 Win32/TrojanDownloader.Bredolab.AA[/b]
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.04.29 -
[b]Panda 10.0.0.14 2009.04.30 Suspicious file[/b]
PCTools 4.4.2.0 2009.04.30 -
[b]Prevx1 3.0 2009.05.01 Medium Risk Malware[/b]
Rising 21.27.31.00 2009.04.30 -
[b]Sophos 4.41.0 2009.04.30 Mal/UnkPack-Fam[/b]
Sunbelt 3.2.1858.2 2009.04.30 -
Symantec 1.4.4.12 2009.04.30 -
TheHacker 6.3.4.1.317 2009.04.30 -
TrendMicro 8.950.0.1092 2009.04.30 -
VBA32 3.12.10.4 2009.04.30 -
ViRobot 2009.4.30.1716 2009.04.30 -
VirusBuster 4.6.5.0 2009.04.30 -

[/quote]
Дополнительная информация
File size: 18432 bytes
MD5...: 382108200ebd027335d4c73bba8c63f7
SHA1..: f858b0ae761c594ac7fe7a31a9cb499392a788ae
SHA256: 93a7a0613953e3dbc9f6ef4176a6483af68a5e7fbc406e112c31967069c13615
SHA512: feb28eb121dcea4a7a812f270eceb7301670c7199d10f9ae5be342c41e609165
d961166e56d4a70638d4d16f29a762b3ad40175a7add43b38b783673c1220d9f
ssdeep: 384:9hI2mlCRh59pLxwqnr5nzNL1qfD/yhcd2AOnUd:yQR9pLWqpmjI62AOUd
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
02.05.2009, 00:54
senyak

Файл SMS_Hide.jar получен 2009.05.01 12:36:35 (CET)
Текущий статус: закончено
Результат: 11/40 (27.50%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.01 -
[B]AntiVir 7.9.0.160 2009.04.30 JAVA/SMS.Konov.e
Antiy-AVL 2.0.3.1 2009.04.30 Trojan/J2ME.Konov[/B]
Authentium 5.1.2.4 2009.04.30 -
[B]Avast 4.8.1335.0 2009.04.30 Other:Malware-gen[/B]
AVG 8.5.0.327 2009.05.01 -
BitDefender 7.2 2009.05.01 -
CAT-QuickHeal 10.00 2009.04.30 -
ClamAV 0.94.1 2009.05.01 -
Comodo 1141 2009.04.29 -
[B]DrWeb 4.44.0.09170 2009.05.01 Java.SMSSend.18[/B]
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6484 2009.04.30 -
F-Prot 4.4.4.56 2009.04.30 -
[B]F-Secure 8.0.14470.0 2009.05.01 Trojan-SMS.J2ME.Konov.e[/B]
Fortinet 3.117.0.0 2009.05.01 -
[B]GData 19 2009.05.01 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.05.01 Trojan-SMS[/B]
K7AntiVirus 7.10.720 2009.04.30 -
[B]Kaspersky 7.0.0.125 2009.05.01 Trojan-SMS.J2ME.Konov.e[/B]
McAfee 5601 2009.04.30 -
McAfee+Artemis 5601 2009.04.30 -
[B]McAfee-GW-Edition 6.7.6 2009.04.30 Java.SMS.Konov.e[/B]
Microsoft 1.4602 2009.05.01 -
NOD32 4048 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.01 -
Panda 10.0.0.14 2009.05.01 -
PCTools 4.4.2.0 2009.04.30 -
Prevx1 3.0 2009.05.01 -
Rising 21.27.41.00 2009.05.01 -
Sophos 4.41.0 2009.05.01 -
Sunbelt 3.2.1858.2 2009.05.01 -
[B]Symantec 1.4.4.12 2009.05.01 Trojan Horse[/B]
TheHacker 6.3.4.1.317 2009.04.30 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.01 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.04.30 -[/QUOTE]
Дополнительная информация
File size: 122291 bytes
MD5...: 2933ade77c653c3ca7e64a675708219b
SHA1..: f4fa3646cb436a03c2073d7898679d5f9417704b
SHA256: 6d5f47f62268ec4b909d112935a626167d16cce1ad80fc5a5b84bb74370b52a5
SHA512: 68b819441bf58ac4824f02e81c032f090d414f7272dd8d8a5e24e1b7edfb8e05
6614f59fac8e2f5c2a595ab6396a48744b783f5758971d97d30ec6b5cd91fbce
ssdeep: 3072:WXb2OSN/AAdIHggYmoahfEY8EwO9CDVJeDLHSOQ4u31lifHY:Wr2NN/VIAr
xUFZcJUL3Glig
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-

[size="1"][color="#666686"][B][I]Добавлено через 10 часов 12 минут[/I][/B][/color][/size]

Файл bin.exe получен 2009.05.01 22:45:59 (CET)
Текущий статус: закончено
Результат: 27/40 (67.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Trojan-Spy.Win32.Zbot!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.01 -
[B]AntiVir 7.9.0.160 2009.04.30 TR/Crypt.ZPACK.Gen
Antiy-AVL 2.0.3.1 2009.04.30 Trojan/Win32.Zbot[/B]
Authentium 5.1.2.4 2009.05.01 -
Avast 4.8.1335.0 2009.05.01 -
[B]AVG 8.5.0.327 2009.05.01 Pakes.AP
BitDefender 7.2 2009.05.01 Trojan.Spy.Zbot.SO[/B]
[B]CAT-QuickHeal 10.00 2009.04.30 Win32.Trojan-Spy.Zbot.gen.3[/B]
ClamAV 0.94.1 2009.05.01 -
[B]Comodo 1146 2009.05.01 TrojWare.Win32.TrojanSpy.Zbot.Gen
DrWeb 4.44.0.09170 2009.05.01 Trojan.PWS.Panda.114
eSafe 7.0.17.0 2009.04.30 Win32.TRCrypt.ZPACK[/B]
eTrust-Vet 31.6.6486 2009.05.01 -
F-Prot 4.4.4.56 2009.05.01 -
[B]F-Secure 8.0.14470.0 2009.05.01 Trojan-Spy.Win32.Zbot.gen
Fortinet 3.117.0.0 2009.05.01 W32/Zbot!tr[/B]
[B]GData 19 2009.05.01 Trojan.Spy.Zbot.SO
Ikarus T3.1.1.49.0 2009.05.01 Trojan-Spy.Win32.Zbot
K7AntiVirus 7.10.721 2009.05.01 Trojan-Spy.Win32.Zbot.gen
Kaspersky 7.0.0.125 2009.05.01 Trojan-Spy.Win32.Zbot.gen
McAfee 5602 2009.05.01 Generic PWS.y!hv.i
McAfee+Artemis 5602 2009.05.01 Artemis!4B19E74A48B7
McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Crypt.ZPACK.Gen
Microsoft 1.4602 2009.05.01 PWS:Win32/Zbot.PG[/B]
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
[B]nProtect 2009.1.8.0 2009.05.01 Trojan-Spy/W32.ZBot.67072.P
Panda 10.0.0.14 2009.05.01 Trj/Sinowal.WEW[/B]
PCTools 4.4.2.0 2009.05.01 -
[B]Prevx1 3.0 2009.05.01 High Risk Worm[/B]
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.01 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.05.01 -
[B]Symantec 1.4.4.12 2009.05.01 Infostealer.Banker.C
TheHacker 6.3.4.1.317 2009.05.01 Trojan/Spy.Zbot.gen[/B]
TrendMicro 8.950.0.1092 2009.05.01 -
[B]VBA32 3.12.10.4 2009.05.01 Trojan-Spy.Win32.Zbot.gen[/B]
ViRobot 2009.5.1.1717 2009.05.01 -
[B]VirusBuster 4.6.5.0 2009.05.01 TrojanSpy.Zbot.GKS[/B][/QUOTE]
Дополнительная информация
File size: 67072 bytes
MD5...: 4b19e74a48b73345abf32f17fbd12a2e
SHA1..: 7db29871775cc28a77e7951b1fcb02a24bef8d7b
SHA256: 2b95839131dcb499c467dddf25fb354cec575e9bd09300eca80064b1cb3f59d7
SHA512: ab774c5b4a39b0adae28184e5cfd3fabc1f263c562766a22624a3bede558548f
0776e6b88d75e2ee2512eb35a433003c544f0e2ae260b2c106a2f3b0aeb0c5a0
ssdeep: 1536:M9Dq4iB7FgjCExMakuaAwWKl10UqQkbiSmm7:MDqJB7CjQ7uot9AiSmm
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл nfcleaner.exe получен 2009.05.01 22:46:44 (CET)
Текущий статус: закончено
Результат: 17/37 (45.95%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Trojan.ATRAPS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.01 -
[B]AntiVir 7.9.0.160 2009.04.30 TR/ATRAPS.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
[B]Authentium 5.1.2.4 2009.05.01 W32/Threat-HLLSI-based!Maximus[/B]
Avast 4.8.1335.0 2009.05.01 -
[B]AVG 8.5.0.327 2009.05.01 Generic13.AHEM
BitDefender 7.2 2009.05.01 Trojan.Generic.1581605[/B]
CAT-QuickHeal 10.00 2009.04.30 -
ClamAV 0.94.1 2009.05.01 -
[B]Comodo 1146 2009.05.01 TrojWare.Win32.Agent.~CVY[/B]
DrWeb 4.44.0.09170 2009.05.01 -
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6486 2009.05.01 -
[B]F-Prot 4.4.4.56 2009.05.01 W32/Threat-HLLSI-based!Maximus[/B]
Fortinet 3.117.0.0 2009.05.01 -
[B]GData 19 2009.05.01 Trojan.Generic.1581605
Ikarus T3.1.1.49.0 2009.05.01 Trojan.ATRAPS
K7AntiVirus 7.10.721 2009.05.01 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.05.01 -
[B]McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.ATRAPS.Gen[/B]
Microsoft 1.4602 2009.05.01 -
[B]NOD32 4049 2009.05.01 Win32/DNSChanger.NAO
Norman 6.01.05 2009.04.30 W32/Malware.FTEN[/B]
nProtect 2009.1.8.0 2009.05.01 -
[B]Panda 10.0.0.14 2009.05.01 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.01 -
Prevx1 3.0 2009.05.01 -
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.01 Troj/Notify-B
Sunbelt 3.2.1858.2 2009.05.01 Trojan.ATRAPS.Gen
Symantec 1.4.4.12 2009.05.01 Trojan Horse[/B]
TheHacker 6.3.4.1.317 2009.05.01 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.01 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.01 -[/QUOTE]
Дополнительная информация
File size: 2560 bytes
MD5...: 3013b4de92989282c43a59ad0e36f882
SHA1..: d1166ebe039429003bbedbb6af704a8b0f8468d6
SHA256: d5491c2e9879add6c8b403d15f31489d3680ec08cc069fea1bb41d58a618fb0c
SHA512: e599a01503954d8f3c7e0e9024cd5666d6917c751a0e9a93191b48de8942833f
e89b95d048046f27800b8fe6dd480a3c3d6920363f9344e4fad20f86b85af0d3
ssdeep: 24:etGSlJuMY1xOdz0stvKF+CYHcm+zK5gusZbS/g2s0V9giK3iJj:6zuPstSF+7
8nmsZbaVESJ
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл bot.exe получен 2009.05.01 22:48:44 (CET)
Текущий статус: закончено
Результат: 17/40 (42.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Trojan-Spy.Win32.Zbot!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.01 -
[B]AntiVir 7.9.0.160 2009.04.30 TR/Crypt.ZPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.01 -
Avast 4.8.1335.0 2009.05.01 -
AVG 8.5.0.327 2009.05.01 -
[B]BitDefender 7.2 2009.05.01 Trojan.Spy.Zbot.SO
CAT-QuickHeal 10.00 2009.04.30 Win32.Trojan-Spy.Zbot.gen.3[/B]
ClamAV 0.94.1 2009.05.01 -
Comodo 1146 2009.05.01 -
[B]DrWeb 4.44.0.09170 2009.05.01 Trojan.PWS.Panda.114[/B]
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6486 2009.05.01 -
F-Prot 4.4.4.56 2009.05.01 -
[B]F-Secure 8.0.14470.0 2009.05.01 Trojan-Spy.Win32.Zbot.gen
Fortinet 3.117.0.0 2009.05.01 W32/Zbot!tr
GData 19 2009.05.01 Trojan.Spy.Zbot.SO
Ikarus T3.1.1.49.0 2009.05.01 Trojan-Spy.Win32.Zbot[/B]
K7AntiVirus 7.10.721 2009.05.01 -
[B]Kaspersky 7.0.0.125 2009.05.01 Trojan-Spy.Win32.Zbot.gen
McAfee 5602 2009.05.01 Generic PWS.y!hv.i
McAfee+Artemis 5602 2009.05.01 Artemis!A62F8EF298FF
McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Crypt.ZPACK.Gen
Microsoft 1.4602 2009.05.01 PWS:Win32/Zbot.PG[/B]
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.01 -
[B]Panda 10.0.0.14 2009.05.01 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.01 -
[B]Prevx1 3.0 2009.05.01 Medium Risk Malware[/B]
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.01 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.05.01 -
Symantec 1.4.4.12 2009.05.01 -
TheHacker 6.3.4.1.317 2009.05.01 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.01 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.01 -[/QUOTE]
Дополнительная информация
File size: 62976 bytes
MD5...: a62f8ef298ff7b3e59334851d91a9920
SHA1..: bf7ece79a10a4bfc1c13d9319410ec8f6978d86b
SHA256: 2fb37c1f4b40d72477f806ecb635cfa9071180625d4e89ed3921c4cbf14608d3
SHA512: 80263c1e72edfdddf07b44ecb825fefd58103d346ddb87d13b4e0f1500304fe9
762319f67041ec777de53f1d04b5ba50154b9b6f6551ff79e68affcb69255548
ssdeep: 1536:jw/Kf+6HyEq5vhiKH7eGpbe29YmUi1AV0/uE+Zv:jwz6Sv5HqCl6Piqwy
PEiD..: -
TrID..: File type identification
Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл kkk.exe получен 2009.05.01 22:55:20 (CET)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Trojan-Spy.Win32.Zbot!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.01 -
AntiVir 7.9.0.160 2009.04.30 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.01 -
Avast 4.8.1335.0 2009.05.01 -
[B]AVG 8.5.0.327 2009.05.01 Win32/Sality[/B]
BitDefender 7.2 2009.05.01 -
[B]CAT-QuickHeal 10.00 2009.04.30 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.01 -
Comodo 1146 2009.05.01 -
[B]DrWeb 4.44.0.09170 2009.05.01 Trojan.PWS.Panda.4
eSafe 7.0.17.0 2009.04.30 Suspicious File[/B]
eTrust-Vet 31.6.6486 2009.05.01 -
F-Prot 4.4.4.56 2009.05.01 -
[B]F-Secure 8.0.14470.0 2009.05.01 Trojan-Spy.Win32.Zbot.svh
Fortinet 3.117.0.0 2009.05.01 PossibleThreat[/B]
GData 19 2009.05.01 -
[B]Ikarus T3.1.1.49.0 2009.05.01 Trojan-Spy.Win32.Zbot[/B]
K7AntiVirus 7.10.721 2009.05.01 -
[B]Kaspersky 7.0.0.125 2009.05.01 Trojan-Spy.Win32.Zbot.svh[/B]
McAfee 5602 2009.05.01 -
[B]McAfee+Artemis 5602 2009.05.01 Artemis!E38AD6E71E8E
McAfee-GW-Edition 6.7.6 2009.04.30 -
Microsoft 1.4602 2009.05.01 Virus:Win32/Sality.R
NOD32 4049 2009.05.01 Win32/Spy.Zbot.JF[/B]
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.01 -
[B]Panda 10.0.0.14 2009.05.01 Suspicious file[/B]
PCTools 4.4.2.0 2009.05.01 -
Prevx1 3.0 2009.05.01 -
Rising 21.27.41.00 2009.05.01 -
Sophos 4.41.0 2009.05.01 -
Sunbelt 3.2.1858.2 2009.05.01 -
Symantec 1.4.4.12 2009.05.01 -
TheHacker 6.3.4.1.317 2009.05.01 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.01 -
[B]ViRobot 2009.5.1.1717 2009.05.01 Spyware.Zbot.76288.B[/B]
VirusBuster 4.6.5.0 2009.05.01 -[/QUOTE]
Дополнительная информация
File size: 76288 bytes
MD5...: e38ad6e71e8e7ce7afe9e0e6ac8d0c14
SHA1..: 82e5aa6f675d9077f55544e511fac56601d6702f
SHA256: 99daac0e5483e59606e8f8a81c167e74db203b1e3698b24c7cd26350ce4b6263
SHA512: 948a34dd40ffe235bd5759467bb39c66bf30f21c25ec615b0d566e9d8f158497
0e98c8c05cf978047334784913e337ffd7cf6f759a153f113b1ac2ff1fada0f9
ssdeep: 1536:qjy3BWXifxGe4qm5QnOkm8B6yav6mBVjzxu+fXo:qjoKJe4qxOoGbnjznf
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (58.2%)
Win16/32 Executable Delphi generic (14.1%)
Generic Win/DOS Executable (13.6%)
DOS Executable Generic (13.6%)
VXD Driver (0.2%)
PEInfo: PE Structure information

Файл setup.exe получен 2009.05.01 22:56:31 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Virus.Win32.Virtumonde!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.01 -
[B]AntiVir 7.9.0.160 2009.04.30 TR/Vundo.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
[B]Authentium 5.1.2.4 2009.05.01 W32/Virtumonde.BA2.gen!Eldorado
Avast 4.8.1335.0 2009.05.01 Win32:Vuku[/B]
AVG 8.5.0.327 2009.05.01 -
[B]BitDefender 7.2 2009.05.01 Trojan.Vundo.GMM
CAT-QuickHeal 10.00 2009.04.30 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.01 -
Comodo 1146 2009.05.01 -
DrWeb 4.44.0.09170 2009.05.01 -
[B]eSafe 7.0.17.0 2009.04.30 Suspicious File
eTrust-Vet 31.6.6486 2009.05.01 Win32/Vundo.CSE
F-Prot 4.4.4.56 2009.05.01 W32/Virtumonde.BA2.gen!Eldorado[/B]
F-Secure 8.0.14470.0 2009.05.01 -
Fortinet 3.117.0.0 2009.05.01 -
[B]GData 19 2009.05.01 Trojan.Vundo.GMM
Ikarus T3.1.1.49.0 2009.05.01 Virus.Win32.Virtumonde[/B]
K7AntiVirus 7.10.721 2009.05.01 -
Kaspersky 7.0.0.125 2009.05.01 -
McAfee 5602 2009.05.01 -
McAfee+Artemis 5602 2009.05.01 -
[B]McAfee-GW-Edition 6.7.6 2009.04.30 Trojan.Vundo.Gen[/B]
Microsoft 1.4602 2009.05.01 -
[B]NOD32 4049 2009.05.01 a variant of Win32/Kryptik.OG[/B]
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.01 -
[B]Panda 10.0.0.14 2009.05.01 Suspicious file[/B]
PCTools 4.4.2.0 2009.05.01 -
Prevx1 3.0 2009.05.01 -
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.01 Troj/Virtum-Gen[/B]
Sunbelt 3.2.1858.2 2009.05.01 -
Symantec 1.4.4.12 2009.05.01 -
TheHacker 6.3.4.1.317 2009.05.01 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.01 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.01 -[/QUOTE]
Дополнительная информация
File size: 49152 bytes
MD5...: e9ae5322f4efe4d983033e781ea0f2bd
SHA1..: 4721ef5e7292c1eb1d4bf01c267a151162373d6c
SHA256: f650c8b4ed071f2cec87c54456c94f1cd010c1a7ef4bd557f0438402a6071919
SHA512: e9a2d20ab8e3d6dc149bc6884c72c513b993ef83355d1fc9c4ada94b6f6f9db5
b8173dac0929a9ca38e8680ddb5440adbcca326ac878350d06318b0263914395
ssdeep: 768:h2dLc6tBh3ik9b5p6PEVZFIliYcdx7gJ+gOt8pNbWxS9nJ/5AmnDTkKj887c
:IdAG3L9b5ksZFIJcfgJ+gOtSF9nJhNn8
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.5%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
PEInfo: PE Structure information

Файл InstallerWF.exe получен 2009.05.01 23:02:25 (CET)
Текущий статус: закончено
Результат: 17/40 (42.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.01 Riskware.FraudTool.Win32.Agent!IK
AhnLab-V3 5.0.0.2 2009.05.01 Win-Trojan/Fakeav.476672
AntiVir 7.9.0.160 2009.04.30 HEUR/Malware[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.01 -
Avast 4.8.1335.0 2009.05.01 -
[B]AVG 8.5.0.327 2009.05.01 Fake_AntiSpyware.CAY[/B]
BitDefender 7.2 2009.05.01 -
CAT-QuickHeal 10.00 2009.04.30 -
ClamAV 0.94.1 2009.05.01 -
Comodo 1146 2009.05.01 -
DrWeb 4.44.0.09170 2009.05.01 -
[B]eSafe 7.0.17.0 2009.04.30 Win32.HEURMalware[/B]
eTrust-Vet 31.6.6486 2009.05.01 -
F-Prot 4.4.4.56 2009.05.01 -
[B]F-Secure 8.0.14470.0 2009.05.01 FraudTool.Win32.Agent.mr
Fortinet 3.117.0.0 2009.05.01 Misc/Agent[/B]
GData 19 2009.05.01 -
[B]Ikarus T3.1.1.49.0 2009.05.01 not-a-virus:FraudTool.Win32.Agent[/B]
K7AntiVirus 7.10.721 2009.05.01 -
[B]Kaspersky 7.0.0.125 2009.05.01 not-a-virus:FraudTool.Win32.Agent.mr
McAfee 5602 2009.05.01 New Malware.ix[/B]
[B]McAfee+Artemis 5602 2009.05.01 Artemis!4D74EB4466C5
McAfee-GW-Edition 6.7.6 2009.04.30 Heuristic.Malware[/B]
Microsoft 1.4602 2009.05.01 -
[B]NOD32 4049 2009.05.01 Win32/Adware.CoreguardAntivirus[/B]
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.01 -
[B]Panda 10.0.0.14 2009.05.01 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.01 -
Prevx1 3.0 2009.05.01 -
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.01 Mal/Inet-Fam
Sunbelt 3.2.1858.2 2009.05.01 Antivirus 2009[/B]
Symantec 1.4.4.12 2009.05.01 -
TheHacker 6.3.4.1.317 2009.05.01 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.01 -
[B]ViRobot 2009.5.1.1717 2009.05.01 Adware.Agent.R.476672[/B]
VirusBuster 4.6.5.0 2009.05.01 -[/QUOTE]
Дополнительная информация
File size: 476672 bytes
MD5...: 4d74eb4466c51e55f7b49135bc36e64d
SHA1..: 98c848067f747cae57ce3d9808a72960111149df
SHA256: 8cd24775d77640c55d4f18f39c180cede801c955195793398cde3f05b6b9b74d
SHA512: 574e05d35512a1a6fc4756756187f5f6a7c565f1df1edd1bce5de2d21d6ad95a
8ac695f754dd9033269441eeb5c90f1bddb94db8a4f548bdbdf740dbfcf420d4
ssdeep: 6144:PxUBUx496pw/w7WhrAw260xJO9EXCMY+pI+ZCPIJ7bLHvX1Td5VfI6ANYf7
eY:PxmZ9GwoaAwimW1kIl1dnaNE
PEiD..: Armadillo v1.71
TrID..: File type identification
DirectShow filter (66.6%)
InstallShield setup (14.2%)
Win32 Executable MS Visual C++ (generic) (12.4%)
Win32 Executable Generic (2.8%)
Win32 Dynamic Link Library (generic) (2.5%)
PEInfo: PE Structure information
03.05.2009, 18:13
Danilka

File VKPHOTO.zip received on 05.03.2009 14:44:25 (CET)
Current status: finished

Result: 1/40 (2.50%)
[QUOTE]Antivirus Version Last Update Result
a-squared 4.0.0.101 2009.05.03 -
AhnLab-V3 5.0.0.2 2009.05.01 -
AntiVir 7.9.0.160 2009.05.02 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.02 -
Avast 4.8.1335.0 2009.05.02 -
AVG 8.5.0.327 2009.05.02 -
BitDefender 7.2 2009.05.03 -
CAT-QuickHeal 10.00 2009.05.02 -
ClamAV 0.94.1 2009.05.03 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.03 -
eSafe 7.0.17.0 2009.04.30 -
eTrust-Vet 31.6.6487 2009.05.02 -
F-Prot 4.4.4.56 2009.05.02 -
F-Secure 8.0.14470.0 2009.05.02 -
Fortinet 3.117.0.0 2009.05.03 -
GData 19 2009.05.03 -
Ikarus T3.1.1.49.0 2009.05.03 -
K7AntiVirus 7.10.722 2009.05.02 -
Kaspersky 7.0.0.125 2009.05.03 [B]Trojan-Dropper.Win32.Agent.aofl [/B]
McAfee 5603 2009.05.02 -
McAfee+Artemis 5603 2009.05.02 -
McAfee-GW-Edition 6.7.6 2009.05.02 -
Microsoft 1.4602 2009.05.03 -
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.03 -
Panda 10.0.0.14 2009.05.03 -
PCTools 4.4.2.0 2009.05.02 -
Prevx1 3.0 2009.05.03 -
Rising 21.27.41.00 2009.05.01 -
Sophos 4.41.0 2009.05.03 -
Sunbelt 3.2.1858.2 2009.05.02 -
Symantec 1.4.4.12 2009.05.03 -
TheHacker 6.3.4.1.317 2009.05.02 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.02 [/QUOTE]-
Additional information
File size: 26326 bytes
MD5...: a4009234c0576c7f9b84478293cf7a25
SHA1..: 1c8dadac3cde0d028248884b2ea26c91b01286d7
SHA256: a90144a84cc07119ae75b6ab73640ecd1b8a8851bfa4d738682ab0d6a5693c7c
SHA512: bc687a401f132e9998c06677b26063fed38d6699a9f723f18c5e22f04c634183
84998afbf5707a19d3dfa667a8292358f5148049230c5cf11a8242696719fe3f
ssdeep: 384:a1YrcTdD91NSYHoDDPSbSj6p7LRYRnxUt8Mczv7YUsHa6deCbQ1xWdg6zBkE
vkZ4:f0NCiFe+83oa6RbldgShX9Ju6je37qBZ

PEiD..: -
TrID..: File type identification
ZIP compressed archive (100.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Самый свежий зловред. Блокирует доступ к сайту ВКонтакте- требует денег :)
03.05.2009, 21:49
senyak

Файл install.exe получен 2009.05.03 19:26:02 (CET)
Текущий статус: закончено
Результат: 7/41 (17.08%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.03 -
AhnLab-V3 5.0.0.2 2009.05.03 -
[B]AntiVir 7.9.0.160 2009.05.03 TR/Crypt.ZPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.02 -
Avast 4.8.1335.0 2009.05.02 -
AVG 8.5.0.327 2009.05.02 -
BitDefender 7.2 2009.05.03 -
CAT-QuickHeal 10.00 2009.05.02 -
ClamAV 0.94.1 2009.05.03 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.03 -
[B]eSafe 7.0.17.0 2009.05.03 Suspicious File[/B]
eTrust-Vet 31.6.6487 2009.05.02 -
F-Prot 4.4.4.56 2009.05.02 -
F-Secure 8.0.14470.0 2009.05.03 -
Fortinet 3.117.0.0 2009.05.03 -
GData 19 2009.05.03 -
Ikarus T3.1.1.49.0 2009.05.03 -
K7AntiVirus 7.10.722 2009.05.02 -
[B]Kaspersky 7.0.0.125 2009.05.03 Trojan.Win32.Tdss.abyx[/B]
McAfee 5604 2009.05.03 -
[B]McAfee+Artemis 5604 2009.05.03 Artemis!4C1B4EBDC465
McAfee-GW-Edition 6.7.6 2009.05.03 Trojan.Crypt.ZPACK.Gen
Microsoft 1.4602 2009.05.03 Trojan:Win32/InternetAntivirus[/B]
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.03 -
Panda 10.0.0.14 2009.05.03 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 V2 2009.05.03 -
Prevx1 3.0 2009.05.03 -
Rising 21.27.41.00 2009.05.01 -
Sophos 4.41.0 2009.05.03 -
[B]Sunbelt 3.2.1858.2 2009.05.02 Trojan.Win32.Tdss.qxr (v)[/B]
Symantec 1.4.4.12 2009.05.03 -
TheHacker 6.3.4.1.318 2009.05.03 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.03 -[/QUOTE]
Дополнительная информация
File size: 40448 bytes
MD5...: 4c1b4ebdc4656f10b0e56292b80282ef
SHA1..: 3922912862ddc19926d94207ac23c79bad392663
SHA256: 53cd33f23068a33f52a67d157c1399fa401d93cb0dc945805a93f9c8c75a222c
SHA512: e6a5fe9e83fdc69ff3054e69d60822392f79c2b37b5612cc80cb56c1d9be9778
eef34aafd561a6cf600af1e94657355a38e8bc00143b66317334d95a84241ef5
ssdeep: 768:KyO6VkQxbvjahvSMtoBO/iUGdgycbZ5JplPLMq2zQ+Ec+o+tG84YuH:KXAv2
VSMWkpGdabZ5ZLMhOfG8DuH
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
PEInfo: PE Structure information

Файл Setup.exe получен 2009.05.03 19:25:58 (CET)
Текущий статус: закончено
Результат: 20/41 (48.79%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.03 Trojan-Downloader!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.03 -
[B]AntiVir 7.9.0.160 2009.05.03 TR/Downloader.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.02 -
Avast 4.8.1335.0 2009.05.02 -
[B]AVG 8.5.0.327 2009.05.02 Generic13.AHLG[/B]
BitDefender 7.2 2009.05.03 -
[B]CAT-QuickHeal 10.00 2009.05.02 Win32.Backdoor.Phdet.gen!A.3
ClamAV 0.94.1 2009.05.03 Worm.Koobface-20[/B]
Comodo 1149 2009.05.03 -
[B]DrWeb 4.44.0.09170 2009.05.03 Win32.HLLW.Facebook.60
eSafe 7.0.17.0 2009.05.03 Win32.TRDownloader[/B]
eTrust-Vet 31.6.6487 2009.05.02 -
F-Prot 4.4.4.56 2009.05.02 -
[B]F-Secure 8.0.14470.0 2009.05.03 Net-Worm.Win32.Koobface.hx
Fortinet 3.117.0.0 2009.05.03 W32/Koobfa[/B]
GData 19 2009.05.03 -
[B]Ikarus T3.1.1.49.0 2009.05.03 Trojan-Downloader[/B]
K7AntiVirus 7.10.722 2009.05.02 -
[B]Kaspersky 7.0.0.125 2009.05.03 Net-Worm.Win32.Koobface.hx[/B]
McAfee 5604 2009.05.03 -
[B]McAfee+Artemis 5604 2009.05.03 Artemis!A2198612E7AB
McAfee-GW-Edition 6.7.6 2009.05.03 Trojan.Downloader.Gen
Microsoft 1.4602 2009.05.03 Worm:Win32/Koobface.gen!D
NOD32 4049 2009.05.01 probably a variant of Win32/Genetik
Norman 6.01.05 2009.04.30 W32/Koobface.BC[/B]
nProtect 2009.1.8.0 2009.05.03 -
Panda 10.0.0.14 2009.05.03 -
PCTools 4.4.2.0 2009.05.03 -
[B]Prevx1 V2 2009.05.03 High Risk Cloaked Malware
Prevx1 3.0 2009.05.03 High Risk Cloaked Malware[/B]
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.03 W32/Koobfa-Gen[/B]
Sunbelt 3.2.1858.2 2009.05.02 -
Symantec 1.4.4.12 2009.05.03 -
TheHacker 6.3.4.1.318 2009.05.03 -
[B]TrendMicro 8.950.0.1092 2009.05.01 PAK_Generic.001[/B]
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.03 -[/QUOTE]
Дополнительная информация
File size: 14336 bytes
MD5...: a2198612e7ab988105c71b02d547b1a7
SHA1..: aad1754e1d4aca982bffeeb104e64e83231d525b
SHA256: 1f6cfea38649d7abb8328851051be6240bc182b9c6d697c4e821a90daaab4ddf
SHA512: 9b17d355c4196e89992de7c3755a0f4af42b6648912778f1ff38ac9691b32612
539bd311d80b6991a919078b01e0159e8248aa50872e7b6f529c9b0cc0d619f0
ssdeep: 192:VkVjNJpbjilCYCEG+FnBzq5u6jyVyrgityJ2Tjo+a/Z9oC/wl/T70najEwmP
khYh:VgJpalCJ+F9oGs6UvaR9oCopTgarZ
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
PEInfo: PE Structure information

Файл system.exe получен 2009.05.03 19:26:59 (CET)
Текущий статус: закончено
Результат: 7/41 (17.08%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.03 -
AhnLab-V3 5.0.0.2 2009.05.03 -
AntiVir 7.9.0.160 2009.05.03 -
Antiy-AVL 2.0.3.1 2009.04.30 -
[B]Authentium 5.1.2.4 2009.05.02 W32/Damaged_File.gen!Eldorado[/B]
Avast 4.8.1335.0 2009.05.02 -
[B]AVG 8.5.0.327 2009.05.02 Pakes.AP[/B]
BitDefender 7.2 2009.05.03 -
CAT-QuickHeal 10.00 2009.05.02 -
ClamAV 0.94.1 2009.05.03 -
Comodo 1149 2009.05.03 -
[B]DrWeb 4.44.0.09170 2009.05.03 Trojan.PWS.Panda.100
eSafe 7.0.17.0 2009.05.03 Suspicious File[/B]
eTrust-Vet 31.6.6487 2009.05.02 -
[B]F-Prot 4.4.4.56 2009.05.02 W32/Damaged_File.gen!Eldorado[/B]
F-Secure 8.0.14470.0 2009.05.03 -
Fortinet 3.117.0.0 2009.05.03 -
GData 19 2009.05.03 -
Ikarus T3.1.1.49.0 2009.05.03 -
K7AntiVirus 7.10.722 2009.05.02 -
Kaspersky 7.0.0.125 2009.05.03 -
McAfee 5604 2009.05.03 -
McAfee+Artemis 5604 2009.05.03 -
[B]McAfee-GW-Edition 6.7.6 2009.05.03 Win32.Malware.dam (suspicious)[/B]
Microsoft 1.4602 2009.05.03 -
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.03 -
Panda 10.0.0.14 2009.05.03 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 V2 2009.05.03 -
Prevx1 3.0 2009.05.03 -
[B]Rising 21.27.41.00 2009.05.01 Trojan.Win32.Ntos.rc[/B]
Sophos 4.41.0 2009.05.03 -
Sunbelt 3.2.1858.2 2009.05.02 -
Symantec 1.4.4.12 2009.05.03 -
TheHacker 6.3.4.1.318 2009.05.03 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.03 -[/QUOTE]
Дополнительная информация
File size: 49848 bytes
MD5...: 16d59f2a78e738034ff9a7bf296359ea
SHA1..: 8b74d1d1b7466b8d536e6d9db1ba2b941b977319
SHA256: 0383bf4983a094c1ac10dc86e24cf6dcbd35191832bd074137574ddea6ec8d07
SHA512: 021b8c992d345b2c38612945299078f8d17f472b3ddf2c9917597920ccbc90c0
4f135193a499d20b5a7a7786cdc99304065332d2ca1e0acf13a4618d3f0d88e7
ssdeep: 1536:zl/5eY1Yl/Zgm81O+O06rf/gkSVWQoQeQ:zl/UsVwU6rnhqTYQ
PEiD..: -
TrID..: File type identification
Generic Win/DOS Executable (49.9%)
DOS Executable Generic (49.8%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
PEInfo: PE Structure information

Файл ldr.exe получен 2009.05.03 19:28:37 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.03 Virus.Win32.CeeInject!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.03 -
[B]AntiVir 7.9.0.160 2009.05.03 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.02 -
[B]Avast 4.8.1335.0 2009.05.02 Win32:Trojan-gen {Other}[/B]
AVG 8.5.0.327 2009.05.02 -
BitDefender 7.2 2009.05.03 -
CAT-QuickHeal 10.00 2009.05.02 -
ClamAV 0.94.1 2009.05.03 -
Comodo 1149 2009.05.03 -
[B]DrWeb 4.44.0.09170 2009.05.03 Trojan.Spambot.4433
eSafe 7.0.17.0 2009.05.03 Win32.TRDropper[/B]
eTrust-Vet 31.6.6487 2009.05.02 -
F-Prot 4.4.4.56 2009.05.02 -
F-Secure 8.0.14470.0 2009.05.03 -
Fortinet 3.117.0.0 2009.05.03 -
[B]GData 19 2009.05.03 Win32:Trojan-gen {Other}
Ikarus T3.1.1.49.0 2009.05.03 Virus.Win32.CeeInject
K7AntiVirus 7.10.722 2009.05.02 Trojan.Win32.Malware.4[/B]
Kaspersky 7.0.0.125 2009.05.03 -
McAfee 5604 2009.05.03 -
[B]McAfee+Artemis 5604 2009.05.03 Artemis!457E8131C147
McAfee-GW-Edition 6.7.6 2009.05.03 Trojan.Dropper.Gen
Microsoft 1.4602 2009.05.03 VirTool:Win32/DelfInject.gen!J[/B]
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.03 -
[B]Panda 10.0.0.14 2009.05.03 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.03 -
[B]Prevx1 3.0 2009.05.03 Medium Risk Malware[/B]
Rising 21.27.41.00 2009.05.01 -
[B]Sophos 4.41.0 2009.05.03 Mal/Behav-243[/B]
Sunbelt 3.2.1858.2 2009.05.02 -
Symantec 1.4.4.12 2009.05.03 -
[B]TheHacker 6.3.4.1.318 2009.05.03 Trojan/Buzus.awdl[/B]
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.03 -
[/QUOTE]
Дополнительная информация
File size: 86918 bytes
MD5...: 457e8131c1477aa8924370f538613750
SHA1..: b5b23b6001d1a9b26fca7f410647b785cadeb455
SHA256: 4d45e62dd6a5d3ddbe8c7530f4763fa0c7c6709f1616562a9fcd19e1d7e6b67a
SHA512: ecdcdbb61fa6f328098078ec92aee57cabc301f9fd44cf0ccb18edda7f568373
77068c5300caa89e514665932d79be7af3a7974534819cb2e6f677e214c2fb60
ssdeep: 1536:kTMd1RxoXIy7GArumt2XNndrC+c+XvITrcbT77GLwAt+TEMirsaSiw:kgbx
Cv7Zt29ndmxavI/So+TEMiAmw
PEiD..: Armadillo v1.71
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information

Файл codec2.exe получен 2009.05.03 19:37:05 (CET)
Текущий статус: закончено
Результат: 6/40 (15%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.03 -
AhnLab-V3 5.0.0.2 2009.05.03 -
[B]AntiVir 7.9.0.160 2009.05.03 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.02 -
Avast 4.8.1335.0 2009.05.02 -
[B]AVG 8.5.0.327 2009.05.02 FakeAlert.KH[/B]
BitDefender 7.2 2009.05.03 -
[B]CAT-QuickHeal 10.00 2009.05.02 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.03 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.03 -
[B]eSafe 7.0.17.0 2009.05.03 Suspicious File[/B]
eTrust-Vet 31.6.6487 2009.05.02 -
F-Prot 4.4.4.56 2009.05.02 -
F-Secure 8.0.14470.0 2009.05.03 -
Fortinet 3.117.0.0 2009.05.03 -
GData 19 2009.05.03 -
Ikarus T3.1.1.49.0 2009.05.03 -
K7AntiVirus 7.10.722 2009.05.02 -
Kaspersky 7.0.0.125 2009.05.03 -
McAfee 5604 2009.05.03 -
McAfee+Artemis 5604 2009.05.03 -
[B]McAfee-GW-Edition 6.7.6 2009.05.03 Trojan.Crypt.XPACK.Gen
Microsoft 1.4602 2009.05.03 TrojanDownloader:Win32/FakeRean[/B]
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.03 -
Panda 10.0.0.14 2009.05.03 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.03 -
Rising 21.27.41.00 2009.05.01 -
Sophos 4.41.0 2009.05.03 -
Sunbelt 3.2.1858.2 2009.05.02 -
Symantec 1.4.4.12 2009.05.03 -
TheHacker 6.3.4.1.318 2009.05.03 -
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.03 -[/QUOTE]
Дополнительная информация
File size: 104963 bytes
MD5...: a1fcc7c54c16f6297eb02c45ae8086ce
SHA1..: 690759435a0b5c29051b09a677b529c1dd83c19f
SHA256: 4a5b293336c250c956866fffe4106d88a3a36e739e0fe53832d92b68f3ad1ff7
SHA512: 1c3b87e1a71517b68ed68659a359efe2f4971a160b1ef357b9429724cfc4e5fd
83531c9569600459155b42654fb7a4fc2c8769312b14a8cf8b5be43ea824e2e0
ssdeep: 3072:830EyeLSq9888OP487vRZ3Wwrl6qXxVFi9X3kux:8EEyeLSq9kYhvhrcqhg
P
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл flash_player_plugin.exe получен 2009.05.03 19:45:53 (CET)
Текущий статус: закончено
Результат: 8/41 (19.52%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.03 -
AhnLab-V3 5.0.0.2 2009.05.03 -
AntiVir 7.9.0.160 2009.05.03 -
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.02 -
Avast 4.8.1335.0 2009.05.02 -
AVG 8.5.0.327 2009.05.02 -
BitDefender 7.2 2009.05.03 -
CAT-QuickHeal 10.00 2009.05.02 -
ClamAV 0.94.1 2009.05.03 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.03 -
[B]eSafe 7.0.17.0 2009.05.03 Win32.ProgramPrivacy[/B]
eTrust-Vet 31.6.6487 2009.05.02 -
F-Prot 4.4.4.56 2009.05.02 -
[B]F-Secure 8.0.14470.0 2009.05.03 FraudTool.Win32.PrivacyCenter.k[/B]
Fortinet 3.117.0.0 2009.05.03 -
GData 19 2009.05.03 -
Ikarus T3.1.1.49.0 2009.05.03 -
K7AntiVirus 7.10.722 2009.05.02 -
[B]Kaspersky 7.0.0.125 2009.05.03 not-a-virus:FraudTool.Win32.PrivacyCenter.k[/B]
McAfee 5604 2009.05.03 -
[B]McAfee+Artemis 5604 2009.05.03 Artemis!B46836E16EEA[/B]
McAfee-GW-Edition 6.7.6 2009.05.03 -
[B]Microsoft 1.4602 2009.05.03 Program:Win32/PrivacyCenter[/B]
NOD32 4049 2009.05.01 -
Norman 6.01.05 2009.04.30 -
nProtect 2009.1.8.0 2009.05.03 -
Panda 10.0.0.14 2009.05.03 -
PCTools 4.4.2.0 2009.05.03 -
[B]Prevx1 V2 2009.05.03 Medium Risk Malware[/B]
Prevx1 3.0 2009.05.03 -
Rising 21.27.41.00 2009.05.01 -
Sophos 4.41.0 2009.05.03 -
[B]Sunbelt 3.2.1858.2 2009.05.03 Privacy components[/B]
Symantec 1.4.4.12 2009.05.03 -
[B]TheHacker 6.3.4.1.318 2009.05.03 Adware/Agent.gen[/B]
TrendMicro 8.950.0.1092 2009.05.01 -
VBA32 3.12.10.4 2009.05.03 -
ViRobot 2009.5.1.1717 2009.05.01 -
VirusBuster 4.6.5.0 2009.05.03 -[/QUOTE]
Дополнительная информация
File size: 2611530 bytes
MD5...: b46836e16eea554751749d72353874f2
SHA1..: 282d2c1814716094908693e9386755ecd563ba7d
SHA256: 4bbe425b8cbe522fa51938e3fb99cd1677b8c26840aa5eb215b4c62779ac182e
SHA512: fce49971ca3063d762572e05cd64de21c879cfaf49c46aa44da36075c9a1c13b
01b8b50b11519f8922d94dc3733cf24dfe9fbf2bb60da61544cdd1cb880ce964
ssdeep: 49152:rg9nlxbXw9yv2jLPzBP8gsLZSDDYRIEHy97+1JFCGLvEcTIMMdY17L:0nl
acqLZlslSfYRriCUQvx/yY1X
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
05.05.2009, 00:53
senyak

Файл pin.exe получен 2009.05.04 22:43:33 (CET)
Текущий статус: закончено
Результат: 11/40 (27.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.04 Riskware.Win32.Injector!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.04 -
[B]AntiVir 7.9.0.160 2009.05.04 TR/Crypt.ZPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.04 -
[B]CAT-QuickHeal 10.00 2009.05.04 Trojan.Buzus.avnv[/B]
ClamAV 0.94.1 2009.05.04 -
Comodo 1149 2009.05.03 -
DrWeb 4.44.0.09170 2009.05.04 -
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6488 2009.05.04 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.04 -
Fortinet 3.117.0.0 2009.05.04 -
GData 19 2009.05.04 -
[B]Ikarus T3.1.1.49.0 2009.05.04 VirTool.Win32.Injector[/B]
K7AntiVirus 7.10.723 2009.05.04 -
[B]Kaspersky 7.0.0.125 2009.05.04 Trojan.Win32.Buzus.axtr[/B]
McAfee 5605 2009.05.04 -
[B]McAfee+Artemis 5605 2009.05.04 Artemis!10C4520D4709
McAfee-GW-Edition 6.7.6 2009.05.04 Trojan.Crypt.ZPACK.Gen
Microsoft 1.4602 2009.05.04 VirTool:Win32/Injector.gen!F[/B]
NOD32 4052 2009.05.04 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
[B]Panda 10.0.0.14 2009.05.04 Suspicious file[/B]
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.04 -
Rising 21.28.04.00 2009.05.04 -
[B]Sophos 4.41.0 2009.05.04 Mal/ProcInj-Fam[/B]
Sunbelt 3.2.1858.2 2009.05.04 -
[B]Symantec 1.4.4.12 2009.05.04 Suspicious.MH690.A[/B]
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.04 -
VBA32 3.12.10.4 2009.05.04 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -[/QUOTE]
Дополнительная информация
File size: 23040 bytes
MD5...: 10c4520d4709ce361e1588af4f84b34e
SHA1..: 96f35bb961472f8339b1d7284c6b50d08c93d2a5
SHA256: 2dc356bec30f721e95884a729ccdc05be0eacdef3f02f7ffee81f9913fcf76e7
SHA512: f04bd7ff25789af76ac95c9425c80df104039e48477b5e538314983eef82a16d
55e9565ca34516fe93d96f2fc61dbe4cc22e270bc5ada7c6f68aeb9dd228d74c
ssdeep: 384:kGFMiucajR9d6ksK6i6FhRr1G0XvWELkGL+bK3WbnjHihzxzrtF:n/ajXd6p
i6Fh91GemhuYibzr
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл ftp1.exe получен 2009.05.04 18:24:37 (CET)
Текущий статус: закончено
Результат: 14/40 (35.00%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared - - -
AhnLab-V3 - - -
[B]AntiVir - - TR/Crypt.XPACK.Gen[/B]
Antiy-AVL - - -
Authentium - - -
Avast - - -
[B]AVG - - PSW.OnlineGames.2.AE[/B]
BitDefender - - -
[B]CAT-QuickHeal - - Win32.Trojan.Obfuscated.ev[/B]
ClamAV - - -
Comodo - - -
DrWeb - - -
[B]eSafe - - Suspicious File[/B]
eTrust-Vet - - -
F-Prot - - -
F-Secure - - -
Fortinet - - -
GData - - -
Ikarus - - -
K7AntiVirus - - -
[B]Kaspersky - - Heur.Invader[/B]
McAfee - - -
[B]McAfee+Artemis - - Artemis!E8EB17836FC7
McAfee-GW-Edition - - Trojan.Crypt.XPACK.Gen
Microsoft - - TrojanDownloader:Win32/Bredolab.G
NOD32 - - a variant of Win32/TrojanDownloader.Bredolab.AA[/B]
Norman - - -
nProtect - - -
[B]Panda - - Suspicious file[/B]
PCTools - - -
[B]Prevx1 - - High Risk Cloaked Malware[/B]
Rising - - -
[B]Sophos - - Mal/Generic-A[/B]
Sunbelt - - -
Symantec - - -
TheHacker - - -
[B]TrendMicro - - PAK_Generic.001
VBA32 - - suspected of Unknown.Win32Virus[/B]
ViRobot - - -
VirusBuster - - -
[/QUOTE]
Дополнительная информация
MD5: e8eb17836fc7fc0493089b0d7ad0f193
SHA1: 6d21999322c81432b2f6cc977773cb440f5177fc
SHA256: 7bf00804acd6ef97914c92d1571e9b5f4139b950f106e97f54ee5c3d1906c7b3
SHA512: 734ae937e1b1599b88e38061cc1b0dc7f211848f6278895355ddc6bee5777535c2ade6dfc86c64297fe47413cf6bc9d11af2403bdc12ffca8e8df9090482ee48

Файл softwarefortubeview.40009.exe получен 2009.05.04 22:45:46 (CET)
Текущий статус: закончено
Результат: 11/40 (27.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.04 -
AhnLab-V3 5.0.0.2 2009.05.04 -
[B]AntiVir 7.9.0.160 2009.05.04 TR/Dldr.Small.jqz[/B]
Antiy-AVL 2.0.3.1 2009.04.30 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.04 -
[B]CAT-QuickHeal 10.00 2009.05.04 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.04 -
Comodo 1149 2009.05.03 -
[B]DrWeb 4.44.0.09170 2009.05.04 Trojan.Packed.314[/B]
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6488 2009.05.04 -
F-Prot 4.4.4.56 2009.05.04 -
[B]F-Secure 8.0.14470.0 2009.05.04 Trojan-Downloader.Win32.Small.jqz
Fortinet 3.117.0.0 2009.05.04 PossibleThreat[/B]
GData 19 2009.05.04 -
Ikarus T3.1.1.49.0 2009.05.04 -
K7AntiVirus 7.10.723 2009.05.04 -
[B]Kaspersky 7.0.0.125 2009.05.04 Trojan-Downloader.Win32.Small.jqz[/B]
McAfee 5605 2009.05.04 -
[B]McAfee+Artemis 5605 2009.05.04 Artemis!B179B7959A87
McAfee-GW-Edition 6.7.6 2009.05.04 Trojan.Dldr.Small.jqz[/B]
Microsoft 1.4602 2009.05.04 -
NOD32 4052 2009.05.04 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
[B]Prevx1 3.0 2009.05.04 High Risk Worm[/B]
Rising 21.28.04.00 2009.05.04 -
Sophos 4.41.0 2009.05.04 -
[B]Sunbelt 3.2.1858.2 2009.05.04 Trojan.Crypt.FKM.Gen (v)[/B]
Symantec 1.4.4.12 2009.05.04 -
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.04 -
[B]VBA32 3.12.10.4 2009.05.04 suspected of Malware-Cryptor.Win32.General.3[/B]
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -[/QUOTE]
Дополнительная информация
File size: 65536 bytes
MD5...: b179b7959a87bd316d7f7f11a993e037
SHA1..: 3a7b15756dcf89d01cb4d820fce737f227cbd96e
SHA256: 47440e21022224e0f69c552ece431be950dfd18b025a89cccfc96716f947a426
SHA512: dcd6241ccd34f24cf7e857bc85992ad8d5266b2ffa298303b2bf9b88589de048
0ae3dcca40841585f7d1e28c7a144da4fc7f800762dd560658a852ef15fd4d43
ssdeep: 1536:1yv7lgZtUNgVEfNc38+TqdcfNYJSRX1l:YWtHTqdcfawXP
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ 5.0 (81.5%)
Win32 Dynamic Link Library (generic) (10.1%)
Win16/32 Executable Delphi generic (2.7%)
Generic Win/DOS Executable (2.6%)
DOS Executable Generic (2.6%)
PEInfo: PE Structure information
05.05.2009, 14:07
HATTIFNATTOR

Файл wpv571240197317.exe получен 2009.05.05 11:00:41 (CET)

Результат: 20/40 (50%)

[code]
[b]a-squared 4.0.0.101 2009.05.05 Trojan.Crypt!IK [/b]
AhnLab-V3 5.0.0.2 2009.05.05 -
[b]AntiVir 7.9.0.160 2009.05.05 TR/Crypt.XPACK.Gen [/b]
[b]Antiy-AVL 2.0.3.1 2009.05.05 Backdoor/Win32.Agent [/b]
Authentium 5.1.2.4 2009.05.04 -
[b]Avast 4.8.1335.0 2009.05.04 Win32:Trojan-gen {Other} [/b]
[b]AVG 8.5.0.327 2009.05.04 Downloader.Zlob_r.FF [/b]
BitDefender 7.2 2009.05.05 -
CAT-QuickHeal 10.00 2009.05.05 -
ClamAV 0.94.1 2009.05.05 -
Comodo 1149 2009.05.03 -
[b]DrWeb 4.44.0.09170 2009.05.05 Trojan.MulDrop.31446 [/b]
[b]eSafe 7.0.17.0 2009.05.03 Win32.TRCrypt.XPACK [/b]
eTrust-Vet 31.6.6489 2009.05.05 -
F-Prot 4.4.4.56 2009.05.04 -
[b]F-Secure 8.0.14470.0 2009.05.05 Backdoor.Win32.Agent.agaf [/b]
[b]Fortinet 3.117.0.0 2009.05.05 W32/Agent.AGAF!tr.bdr [/b]
[b]GData 19 2009.05.05 Win32:Trojan-gen {Other} [/b]
[b]Ikarus T3.1.1.49.0 2009.05.05 Trojan.Crypt [/b]
[b]K7AntiVirus 7.10.723 2009.05.04 Trojan.Win32.Malware.1 [/b]
[b]Kaspersky 7.0.0.125 2009.05.05 Backdoor.Win32.Agent.agaf [/b]
McAfee 5605 2009.05.04 -
[b]McAfee+Artemis 5605 2009.05.04 Artemis!F453AB4773F3 [/b]
[b]McAfee-GW-Edition 6.7.6 2009.05.05 Trojan.Crypt.XPACK.Gen [/b]
Microsoft 1.4602 2009.05.05 -
[b]NOD32 4052 2009.05.04 Win32/Rootkit.Agent.NIA [/b]
Norman 6.01.05 2009.05.04 -
[b]nProtect 2009.1.8.0 2009.05.04 Trojan/W32.Agent.105984.X [/b]
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.05 -
Rising 21.28.11.00 2009.05.05 -
Sophos 4.41.0 2009.05.05 -
Sunbelt 3.2.1858.2 2009.05.05 -
[b]Symantec 1.4.4.12 2009.05.05 Downloader [/b]
[b]TheHacker 6.3.4.1.318 2009.05.04 Backdoor/Agent.agaf [/b]
TrendMicro 8.950.0.1092 2009.05.05 -
[b]VBA32 3.12.10.4 2009.05.04 Win32.Rootkit.Agent.NIA [/b]
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -
[/code]
Дополнительная информация
File size: 105984 bytes
MD5...: f453ab4773f3b7aac719318f2e05c38c
SHA1..: f538b7db9d0b13ea4574c7ee70c34ff5b7e23dbc
SHA256: 423c5974da2efa4f90a9349a2c0f0d7da1726597f03997da37ab96591ab3dbf2
SHA512: d2e6a89ec85613d958d56ff8c60ff78f6d5b0992bc0a71018519d60e191e2a9a
1307b28d9435688e48f9de5a8e38f6f6e6e7194861a1ff9ad42e0f66f83df907
ssdeep: 3072:ow4IlAxR+t9id/snk6UpsBNM59S/1YHYlemgcTf:l4FcKd/sk6UpsBNM9SK
HYleGb

PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

[size="1"][color="#666686"][B][I]Добавлено через 47 минут[/I][/B][/color][/size]

Файл IEHistory.exe получен 2009.05.05 11:41:19 (CET)
[code]

Антивирус Версия Обновление Результат
[b]a-squared 4.0.0.101 2009.05.05 Riskware.AdWare.Win32.AdBar!IK [/b]
AhnLab-V3 5.0.0.2 2009.05.05 -
[b]AntiVir 7.9.0.160 2009.05.05 ADSPY/AdBar.V [/b]
[b]Antiy-AVL 2.0.3.1 2009.05.05 AdWare/Win32.AdBar [/b]
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
AVG 8.5.0.327 2009.05.04 -
BitDefender 7.2 2009.05.05 -
[b]CAT-QuickHeal 10.00 2009.05.05 Backdoor.Hupigon.gavq [/b]
ClamAV 0.94.1 2009.05.05 -
[b]Comodo 1149 2009.05.03 ApplicUnwnt.Win32.Adware.AdBar.v [/b]
DrWeb 5.0.0.12182 2009.05.05 -
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6489 2009.05.05 -
F-Prot 4.4.4.56 2009.05.04 -
[b]F-Secure 8.0.14470.0 2009.05.05 AdWare.Win32.AdBar.v [/b]
Fortinet 3.117.0.0 2009.05.05 -
GData 19 2009.05.05 -
[b]Ikarus T3.1.1.49.0 2009.05.05 not-a-virus:AdWare.Win32.AdBar [/b]
K7AntiVirus 7.10.723 2009.05.04 Non-Virus:
[b]Kaspersky 7.0.0.125 2009.05.05 not-a-virus:AdWare.Win32.AdBar.v [/b]
McAfee 5605 2009.05.04 -
McAfee+Artemis 5605 2009.05.04 -
[b]McAfee-GW-Edition 6.7.6 2009.05.05 Ad-Spyware.AdBar.V[/b]
Microsoft 1.4602 2009.05.05 -
NOD32 4053 2009.05.05 -
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
[b]Panda 10.0.0.14 2009.05.04 Suspicious file [/b]
[b]PCTools 4.4.2.0 2009.05.03 Adware.Adbar!ct [/b]
[b]Prevx1 3.0 2009.05.05 Medium Risk Malware[/b]
Rising 21.28.11.00 2009.05.05 -
Sophos 4.41.0 2009.05.05 -
[b]Sunbelt 3.2.1858.2 2009.05.05 AdWare.Win32.AdBar.v [/b]
Symantec 1.4.4.12 2009.05.05 -
[b]TheHacker 6.3.4.1.318 2009.05.04 Adware/AdBar.v [/b]
TrendMicro 8.950.0.1092 2009.05.05 -
[b]VBA32 3.12.10.4 2009.05.05 AdWare.Win32.AdBar.v [/b]
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.04 -
[/code]
Дополнительная информация
File size: 402944 bytes
MD5...: a23cf014b14407addcbd9ca3dde44dc2
SHA1..: ae924f52da1fcec8f37acda14f4c2d3756c2e70f
SHA256: 6954c89828f6a0e7d4718776fe2eeaea105fb24064c21bb401c08b1b8b618d3e
SHA512: 3891e2dbde73929ac85026fd505aa842218cbd77c956fbfc1a6e161d87bfe2c8
cac8e6a82afb76d66ebbe31e4257682bb659987e8864fe3953b5e5fab2ccef5a
ssdeep: 6144:a5phFy2Re/UNfbRuUOcO67ZX7VAnE5e6UJ44FQM6W2dkbcK17Qk+RjR:gyP
0tuU7/N7VAnb6q4CQMO2bcuc

PEiD..: ASPack v2.12
TrID..: File type identification
ASPack compressed Win32 Executable (generic) (90.1%)
Win32 Executable Generic (5.7%)
Win16/32 Executable Delphi generic (1.3%)
Generic Win/DOS Executable (1.3%)
DOS Executable Generic (1.3%)

[size="1"][color="#666686"][B][I]Добавлено через 7 минут[/I][/B][/color][/size]

Файл index_2_.htm получен 2009.05.05 12:03:20 (CET)
[code]
[b]a-squared 4.0.0.101 2009.05.05 Exploit.JS.Agent!IK [/b]
AhnLab-V3 5.0.0.2 2009.05.05 -
AntiVir 7.9.0.160 2009.05.05 -
Antiy-AVL 2.0.3.1 2009.05.05 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.04 -
[b]AVG 8.5.0.327 2009.05.04 JS/Obfuscated [/b]
[b]BitDefender 7.2 2009.05.05 Trojan.JS.PYZ [/b]
CAT-QuickHeal 10.00 2009.05.05 -
ClamAV 0.94.1 2009.05.05 -
Comodo 1149 2009.05.03 -
[b]DrWeb 5.0.0.12182 2009.05.05 Trojan.DownLoad.35036 [/b]
eSafe 7.0.17.0 2009.05.03 -
eTrust-Vet 31.6.6489 2009.05.05 -
F-Prot 4.4.4.56 2009.05.04 -
[b]F-Secure 8.0.14470.0 2009.05.05 Exploit.JS.Agent.agc [/b]
Fortinet 3.117.0.0 2009.05.05 -
[b]GData 19 2009.05.05 Trojan.JS.PYZ [/b]
[b]Ikarus T3.1.1.49.0 2009.05.05 Exploit.JS.Agent [/b]
K7AntiVirus 7.10.723 2009.05.04 -
[b]Kaspersky 7.0.0.125 2009.05.05 Exploit.JS.Agent.agc[/b]
[b]McAfee 5605 2009.05.04 JS/Exploit-Iframe [/b]
[b]McAfee+Artemis 5605 2009.05.04 JS/Exploit-Iframe [/b]
McAfee-GW-Edition 6.7.6 2009.05.05 -
Microsoft 1.4602 2009.05.05 -
[b]NOD32 4053 2009.05.05 JS/Exploit.Agent.AGC [/b]
Norman 6.01.05 2009.05.04 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.04 -
PCTools 4.4.2.0 2009.05.03 -
Prevx1 3.0 2009.05.05 -
Rising 21.28.12.00 2009.05.05 -
[b]Sophos 4.41.0 2009.05.05 Troj/JSRedir-P [/b]
Sunbelt 3.2.1858.2 2009.05.05 -
Symantec 1.4.4.12 2009.05.05 -
TheHacker 6.3.4.1.318 2009.05.04 -
TrendMicro 8.950.0.1092 2009.05.05 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.4.1719 2009.05.04 -
[b]VirusBuster 4.6.5.0 2009.05.04 JS.Shellcode.AD [/b]
[/code]
Дополнительная информация
File size: 5004 bytes
MD5...: 913adb46aefc5d2c5d66819a1ae9bbae
SHA1..: 59ad636b3c6042194f72f5c7699711b58e7df13b
SHA256: 15b61a4a5dda5186f3de7fd25ce22a3ad89d8b84f421e7e7e0954d36af9b9a49
SHA512: dc00f1d7a41440e3b047acb3df59e68805856520702eed5256a90bdfc889a5b6
fe192b2e606409e2a77d39a0beab49138171776ff8d104420431927d06429b3e
ssdeep: 96:9Wxz1ClDlJDk9zRxAQdxKDHdDzd+a77EFnDoSA01IQEjcDzi1jDzmr+A01i9z
9dx:PPYrxHqZsa/+z1+c2K+IWNhqdMoX8aLx

PEiD..: -
TrID..: File type identification
HyperText Markup Language (100.0%)
05.05.2009, 22:15
Vagon

[CODE][b]File [color=red]avz00009.dta[/color] received on 05.05.2009 19:41:24 (CET)[/b]
[b]Результат: [color=red]2[/color]/39 (5.13%)[/b]
[b]Antivirus Version Last Update Result[/b]
a-squared 4.0.0.101 2009.05.05 -
AhnLab-V3 5.0.0.2 2009.05.05 -
[b]AntiVir 7.9.0.160 2009.05.05 [color=red]SPR/HookDLL.208896[/color][/b]
Antiy-AVL 2.0.3.1 2009.05.05 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.05 -
AVG 8.5.0.327 2009.05.05 -
BitDefender 7.2 2009.05.05 -
CAT-QuickHeal 10.00 2009.05.05 -
ClamAV 0.94.1 2009.05.05 -
Comodo 1151 2009.05.05 -
DrWeb 5.0.0.12182 2009.05.05 -
eSafe 7.0.17.0 2009.05.05 -
eTrust-Vet 31.6.6490 2009.05.05 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.05 -
Fortinet 3.117.0.0 2009.05.05 -
GData 19 2009.05.05 -
Ikarus T3.1.1.49.0 2009.05.05 -
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.05 -
McAfee 5606 2009.05.05 -
[b]McAfee-GW-Edition 6.7.6 2009.05.05 [color=red]Riskware.HookDLL.208896[/color][/b]
Microsoft 1.4602 2009.05.05 -
NOD32 4054 2009.05.05 -
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.05 -
PCTools 4.4.2.0 2009.05.05 -
Prevx1 3.0 2009.05.05 -
Rising 21.28.12.00 2009.05.05 -
Sophos 4.41.0 2009.05.05 -
Sunbelt 3.2.1858.2 2009.05.05 -
Symantec 1.4.4.12 2009.05.05 -
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.05 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.05 -
[/CODE]
[b]Additional information[/b]
[b]File size:[/b] 208896 bytes
[b]MD5...: f3b78092035bcdce3c921a7f23b448a0[/b]
[CODE]
[b]File [color=red]avz00010.dta[/color][/b] received on [b]05.05.2009 19:57:20 (CET)[/b]
[b]Результат: [color=red]2[/color]/41 (4.88%)[/b]
[b]Antivirus Version Last Update Result[/b]
a-squared 4.0.0.101 2009.05.05 -
AhnLab-V3 5.0.0.2 2009.05.05 -
[b]AntiVir 7.9.0.160 2009.05.05 [color=red]SPR/HookDLL.126976[/color][/b]
Antiy-AVL 2.0.3.1 2009.05.05 -
Authentium 5.1.2.4 2009.05.04 -
Avast 4.8.1335.0 2009.05.05 -
AVG 8.5.0.327 2009.05.05 -
BitDefender 7.2 2009.05.05 -
CAT-QuickHeal 10.00 2009.05.05 -
ClamAV 0.94.1 2009.05.05 -
Comodo 1151 2009.05.05 -
DrWeb 5.0.0.12182 2009.05.05 -
eSafe 7.0.17.0 2009.05.05 -
eTrust-Vet 31.6.6490 2009.05.05 -
F-Prot 4.4.4.56 2009.05.04 -
F-Secure 8.0.14470.0 2009.05.05 -
Fortinet 3.117.0.0 2009.05.05 -
GData 19 2009.05.05 -
Ikarus T3.1.1.49.0 2009.05.05 -
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.05 -
McAfee 5606 2009.05.05 -
McAfee+Artemis 5606 2009.05.05 -
[b]McAfee-GW-Edition 6.7.6 2009.05.05 [color=red]Riskware.HookDLL.126976[/color][/b]
Microsoft 1.4602 2009.05.05 -
NOD32 4054 2009.05.05 -
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.04 -
Panda 10.0.0.14 2009.05.05 -
PCTools 4.4.2.0 2009.05.05 -
Prevx1 3.0 2009.05.05 -
Prevx1 V2 2009.05.05 -
Rising 21.28.12.00 2009.05.05 -
Sophos 4.41.0 2009.05.05 -
Sunbelt 3.2.1858.2 2009.05.05 -
Symantec 1.4.4.12 2009.05.05 -
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.05 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.4.1719 2009.05.04 -
VirusBuster 4.6.5.0 2009.05.05 -
[/CODE]
[b]Additional information[/b]
[b]File size:[/b] 126976 bytes
[b]MD5...: 70d70dd835987e81608c5c00fd2bde0e[/b]
06.05.2009, 16:34
senyak

Файл pdf.pdf получен 2009.05.06 14:12:05 (CET)
Текущий статус: закончено
Результат: 13/40 (32.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.06 Exploit.Pidief!IK
AhnLab-V3 5.0.0.2 2009.05.06 Win-Trojan/Exploit-PDF
AntiVir 7.9.0.160 2009.05.06 EXP/Pidief.JQ.1[/B]
Antiy-AVL 2.0.3.1 2009.05.06 -
Authentium 5.1.2.4 2009.05.06 -
[B]Avast 4.8.1335.0 2009.05.05 JS:Pdfka-EO[/B]
AVG 8.5.0.327 2009.05.06 -
[B]BitDefender 7.2 2009.05.06 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.05.06 -
ClamAV 0.94.1 2009.05.06 -
Comodo 1153 2009.05.06 -
[B]DrWeb 5.0.0.12182 2009.05.06 Exploit.PDF.2[/B]
eSafe 7.0.17.0 2009.05.05 -
eTrust-Vet 31.6.6492 2009.05.06 -
F-Prot 4.4.4.56 2009.05.06 -
F-Secure 8.0.14470.0 2009.05.06 -
Fortinet 3.117.0.0 2009.05.06 -
[B]GData 19 2009.05.06 Exploit.PDF-JS.Gen
Ikarus T3.1.1.49.0 2009.05.06 Exploit.Pidief[/B]
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.06 -
McAfee 5606 2009.05.05 -
McAfee+Artemis 5606 2009.05.05 -
[B]McAfee-GW-Edition 6.7.6 2009.05.06 Exploit.Pidief.JQ.1[/B]
Microsoft 1.4602 2009.05.06 -
NOD32 4055 2009.05.06 -
Norman 6.01.05 2009.05.05 -
[B]nProtect 2009.1.8.0 2009.05.06 Exploit.PDF-JS.Gen.C03[/B]
Panda 10.0.0.14 2009.05.05 -
PCTools 4.4.2.0 2009.05.06 -
Prevx 3.0 2009.05.06 -
Rising 21.28.22.00 2009.05.06 -
[B]Sophos 4.41.0 2009.05.06 Troj/PdfEx-AP
Sunbelt 3.2.1858.2 2009.05.06 Exploit.PDF-JS.Gen (v)
Symantec 1.4.4.12 2009.05.06 Bloodhound.Exploit.213
TheHacker 6.3.4.1.319 2009.05.05 -[/B]
TrendMicro 8.950.0.1092 2009.05.06 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.6.1721 2009.05.06 -
VirusBuster 4.6.5.0 2009.05.05 -[/QUOTE]
Дополнительная информация
File size: 3545 bytes
MD5...: 97ee138c7dfcef3ded79cad5d8ab7a19
SHA1..: 53cd4251f4f2eb40fe64bae2d5dc5dd465b97c1a
SHA256: 8c793875755a5f1049f4ed771665904942af93edd5e539746d98601d90ac3685
SHA512: 41bca5ebd70199ed725d0609b68bf38b481615266e16a046b6ebed0df38680f2
b05b71b4104f2b93cef812b90c040e0e2a6a628f901bdd1db45fe81d2effae6a
ssdeep: 48:C1CfEwyx0UJlNm5FZpbJ35AZ6tHqDPsmXmzfXYukplRBVXQIrrpyLSB0xjhnC
las:C1C8wbH9eZ6o2zTkLVXQIHo2BAhyoI
PEiD..: -
TrID..: File type identification
Adobe Portable Document Format (100.0%)
PEInfo: -

Файл load.exe получен 2009.05.06 14:12:13 (CET)
Текущий статус: закончено
Результат: 5/40 (12.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.06 -
AhnLab-V3 5.0.0.2 2009.05.06 -
AntiVir 7.9.0.160 2009.05.06 -
Antiy-AVL 2.0.3.1 2009.05.06 -
Authentium 5.1.2.4 2009.05.06 -
Avast 4.8.1335.0 2009.05.05 -
AVG 8.5.0.327 2009.05.06 -
BitDefender 7.2 2009.05.06 -
[B]CAT-QuickHeal 10.00 2009.05.06 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.06 -
Comodo 1153 2009.05.06 -
DrWeb 5.0.0.12182 2009.05.06 -
eSafe 7.0.17.0 2009.05.05 -
eTrust-Vet 31.6.6492 2009.05.06 -
F-Prot 4.4.4.56 2009.05.06 -
F-Secure 8.0.14470.0 2009.05.06 -
Fortinet 3.117.0.0 2009.05.06 -
GData 19 2009.05.06 -
Ikarus T3.1.1.49.0 2009.05.06 -
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.06 -
McAfee 5606 2009.05.05 -
[B]McAfee+Artemis 5606 2009.05.05 Artemis!31574861D817
McAfee-GW-Edition 6.7.6 2009.05.06 Worm.LooksLike.Joleee
Microsoft 1.4602 2009.05.06 VirTool:Win32/Obfuscator.FH[/B]
NOD32 4055 2009.05.06 -
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.06 -
Panda 10.0.0.14 2009.05.05 -
PCTools 4.4.2.0 2009.05.06 -
[B]Prevx1 3.0 2009.05.06 Medium Risk Malware[/B]
Rising 21.28.22.00 2009.05.06 -
Sophos 4.41.0 2009.05.06 -
Sunbelt 3.2.1858.2 2009.05.06 -
Symantec 1.4.4.12 2009.05.06 -
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.06 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.6.1721 2009.05.06 -
VirusBuster 4.6.5.0 2009.05.05 -[/QUOTE]
Дополнительная информация
File size: 26772 bytes
MD5...: 31574861d817c70bf5ceb69b200767d0
SHA1..: 694cf7ad38ed5100a9b14b502053a9874597ff67
SHA256: f7c5d0e3f4b08b011baa8490292784f265ea8efe1fface4b4c515a6be28e9243
SHA512: 755b4ee59838ca271194ed45626284f54bb140e43ce218e542cd19c4398586c7
f97411672920b88c745b2e46fb9b60254628070f3c98fec4c2e99e68dd72a753
ssdeep: 768:nHGgh1uLmWN60X/fySKQE4VfAME0bYISI:H51QXEQvftAI
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
PEInfo: PE Structure information

Файл file.exe получен 2009.05.06 14:12:17 (CET)
Текущий статус: закончено
Результат: 19/40 (47.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.06 Trojan.Win32.Sudiet!IK
AhnLab-V3 5.0.0.2 2009.05.06 Win-Trojan/Xema.variant
AntiVir 7.9.0.160 2009.05.06 TR/Crypt.ZPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.06 -
Authentium 5.1.2.4 2009.05.06 -
Avast 4.8.1335.0 2009.05.05 -
[B]AVG 8.5.0.327 2009.05.06 Win32/Cryptor[/B]
BitDefender 7.2 2009.05.06 -
[B]CAT-QuickHeal 10.00 2009.05.06 Win32.Packed.Tdss.f.5[/B]
ClamAV 0.94.1 2009.05.06 -
Comodo 1153 2009.05.06 -
[B]DrWeb 5.0.0.12182 2009.05.06 Trojan.Fakealert.2151
eSafe 7.0.17.0 2009.05.05 Win32.TRCrypt.ZPACK[/B]
eTrust-Vet 31.6.6492 2009.05.06 -
F-Prot 4.4.4.56 2009.05.06 -
[B]F-Secure 8.0.14470.0 2009.05.06 Trojan.Win32.TDSS.abzw
Fortinet 3.117.0.0 2009.05.06 W32/TDSS.ABZW!tr[/B]
GData 19 2009.05.06 -
[B]Ikarus T3.1.1.49.0 2009.05.06 Trojan.Win32.Sudiet[/B]
K7AntiVirus 7.10.723 2009.05.05 -
[B]Kaspersky 7.0.0.125 2009.05.06 Trojan.Win32.TDSS.abzw[/B]
McAfee 5606 2009.05.05 -
[B]McAfee+Artemis 5606 2009.05.05 Artemis!C58A98B33E9F
McAfee-GW-Edition 6.7.6 2009.05.06 Trojan.Crypt.ZPACK.Gen
Microsoft 1.4602 2009.05.06 TrojanSpy:Win32/Chadem.A
NOD32 4055 2009.05.06 Win32/Agent.WPI[/B]
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.06 -
[B]Panda 10.0.0.14 2009.05.05 Suspicious file[/B]
PCTools 4.4.2.0 2009.05.06 -
[B]Prevx1 3.0 2009.05.06 High Risk Worm[/B]
Rising 21.28.22.00 2009.05.06 -
[B]Sophos 4.41.0 2009.05.06 Mal/UnkPack-Fam
Sunbelt 3.2.1858.2 2009.05.06 Trojan.Win32.Tdss.qxr (v)[/B]
Symantec 1.4.4.12 2009.05.06 -
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.06 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.6.1721 2009.05.06 -
VirusBuster 4.6.5.0 2009.05.05 -[/QUOTE]
Дополнительная информация
File size: 28672 bytes
MD5...: c58a98b33e9f37b34b3ef470d66f0a24
SHA1..: 455e1da8a1ec060cb4a08ef1e06c11f2befbea95
SHA256: 20854ee0394727dddae0ba602e093b265ca606db9ddba3afd149cb703241e2e9
SHA512: 223358026762e5adada5592cd1349f036fddb7c5d858c490bcbcb2521d1465d4
913d91c94fc8863c35cf2b8d64314dc1701bd49e6748b2f36a6a206a9a5fb662
ssdeep: 384:I4/yyuK3wbd+azS95IaHKdep2Gw6IRQaZqxAIERGjACU8aRNHXRgTw67fPei
GhnS:I4/3IaHKdep2GnaQjROGjA28GPPeiGh
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
PEInfo: PE Structure information

Файл index1.gif получен 2009.05.06 14:13:13 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.06 Downloader.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.06 -
AntiVir 7.9.0.160 2009.05.06 -
Antiy-AVL 2.0.3.1 2009.05.06 -
Authentium 5.1.2.4 2009.05.06 -
Avast 4.8.1335.0 2009.05.05 -
AVG 8.5.0.327 2009.05.06 -
BitDefender 7.2 2009.05.06 -
CAT-QuickHeal 10.00 2009.05.06 -
ClamAV 0.94.1 2009.05.06 -
Comodo 1153 2009.05.06 -
[B]DrWeb 5.0.0.12182 2009.05.06 Trojan.MulDrop.31031[/B]
eSafe 7.0.17.0 2009.05.05 -
eTrust-Vet 31.6.6492 2009.05.06 -
F-Prot 4.4.4.56 2009.05.06 -
F-Secure 8.0.14470.0 2009.05.06 -
Fortinet 3.117.0.0 2009.05.06 -
GData 19 2009.05.06 -
[B]Ikarus T3.1.1.49.0 2009.05.06 Downloader.Agent[/B]
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.06 -
McAfee 5606 2009.05.05 -
[B]McAfee+Artemis 5606 2009.05.05 Artemis!4B3B344B8A79[/B]
McAfee-GW-Edition 6.7.6 2009.05.06 -
[B]Microsoft 1.4602 2009.05.06 Trojan:Win32/Meredrop
NOD32 4055 2009.05.06 a variant of Win32/TrojanDropper.VB.NHK[/B]
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.06 -
Panda 10.0.0.14 2009.05.05 -
PCTools 4.4.2.0 2009.05.06 -
[B]Prevx1 3.0 2009.05.06 High Risk Worm[/B]
Rising 21.28.22.00 2009.05.06 -
[B]Sophos 4.41.0 2009.05.06 Troj/FakeAle-NE[/B]
Sunbelt 3.2.1858.2 2009.05.06 -
Symantec 1.4.4.12 2009.05.06 -
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.06 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.6.1721 2009.05.06 -
VirusBuster 4.6.5.0 2009.05.05 -[/QUOTE]
Дополнительная информация
File size: 49152 bytes
MD5...: 4b3b344b8a793e2eb6420ae4b68a0c54
SHA1..: b0e7005adfd8d2892d833e5b971e8dd49700040f
SHA256: c28485f328e04d89e066c667c28eb907e7412f19f8af304d993bfff3d10d9c12
SHA512: 7638fcc47bcabb67a76ae487dd9303d873ca366a7a1add61e42fee58466af510
76d05f76f6355caf0c39f8d8457b01ce880da1b718d5458cca3c91da83698d82
ssdeep: 768:AEwLyHho9S6r+YJhEkqB7ajoCuzdXO+HLeyvg0DT8yYh1cM:AFLyBUUpam4+
rN4IbM
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл install_flash_player.exe получен 2009.05.06 14:21:46 (CET)
Текущий статус: закончено
Результат: 12/41 (29.27%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.06 Trojan.Crypt!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.06 -
[B]AntiVir 7.9.0.160 2009.05.06 TR/Crypt.CFI.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.06 -
Authentium 5.1.2.4 2009.05.06 -
Avast 4.8.1335.0 2009.05.05 -
[B]AVG 8.5.0.327 2009.05.06 Dropper.Generic.AMVV[/B]
BitDefender 7.2 2009.05.06 -
CAT-QuickHeal 10.00 2009.05.06 -
ClamAV 0.94.1 2009.05.06 -
Comodo 1153 2009.05.06 -
[B]DrWeb 5.0.0.12182 2009.05.06 Trojan.DownLoad.34700[/B]
eSafe 7.0.17.0 2009.05.05 -
eTrust-Vet 31.6.6492 2009.05.06 -
F-Prot 4.4.4.56 2009.05.06 -
F-Secure 8.0.14470.0 2009.05.06 -
Fortinet 3.117.0.0 2009.05.06 -
GData 19 2009.05.06 -
[B]Ikarus T3.1.1.49.0 2009.05.06 Trojan.Crypt[/B]
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.06 -
McAfee 5606 2009.05.05 -
[B]McAfee+Artemis 5606 2009.05.05 Artemis!0D90722C01CB
McAfee-GW-Edition 6.7.6 2009.05.06 Trojan.Crypt.CFI.Gen[/B]
Microsoft 1.4602 2009.05.06 -
[B]NOD32 4055 2009.05.06 probably a variant of [/B]Win32/TrojanDropper.VB.NHK
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.06 -
Panda 10.0.0.14 2009.05.05 -
PCTools 4.4.2.0 2009.05.06 -
[B]Prevx1 3.0 2009.05.06 High Risk Worm
Prevx1 V2 2009.05.06 High Risk Worm[/B]
Rising 21.28.22.00 2009.05.06 -
[B]Sophos 4.41.0 2009.05.06 Troj/Agent-JTO[/B]
Sunbelt 3.2.1858.2 2009.05.06 -
[B]Symantec 1.4.4.12 2009.05.06 Trojan Horse[/B]
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.06 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.6.1721 2009.05.06 -
VirusBuster 4.6.5.0 2009.05.05 -[/QUOTE]
Дополнительная информация
File size: 57344 bytes
MD5...: 0d90722c01cbc3429cf1db5cd58763de
SHA1..: 80acadce4fd15dd8d5ce3119d8891b4a2a655382
SHA256: 972354c6262b20a566358c2dda9d41df2654c7cc371a1ae166e17c73f24e6950
SHA512: 110c0e8a9138a9aa15d63270a6e9fe4097b23d33621e748e3f9b334c99ae1336
68771383b088e042dd1c525b93b2877b7439b68d6655f246ce2c82fcfd0ffe84
ssdeep: 768:lpHJOMpTNpsPAjhIw7LCSUA/Wx5GjEOOOOOO4JNby:lpHJOMpTncq+9Shen7
eDy
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (68.0%)
Generic Win/DOS Executable (15.9%)
DOS Executable Generic (15.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information

Файл InternetAntivirusPro.exe получен 2009.05.06 14:23:23 (CET)
Текущий статус: закончено
Результат: 17/40 (42.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.06 Riskware.FraudTool.Win32.InternetAntivirusPro!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.06 -
[B]AntiVir 7.9.0.160 2009.05.06 TR/InternetAntivirus.A.40
Antiy-AVL 2.0.3.1 2009.05.06 FraudTool/Win32.InternetAntivirusPro[/B]
Authentium 5.1.2.4 2009.05.06 -
Avast 4.8.1335.0 2009.05.05 -
AVG 8.5.0.327 2009.05.06 -
BitDefender 7.2 2009.05.06 -
CAT-QuickHeal 10.00 2009.05.06 -
ClamAV 0.94.1 2009.05.06 -
[B]Comodo 1153 2009.05.06 Unclassified Malware[/B]
DrWeb 5.0.0.12182 2009.05.06 -
[B]eSafe 7.0.17.0 2009.05.05 Win32.FraudTool.Inte
eTrust-Vet 31.6.6492 2009.05.06 Win32/FakeAV.AKL[/B]
F-Prot 4.4.4.56 2009.05.06 -
[B]F-Secure 8.0.14470.0 2009.05.06 FraudTool.Win32.InternetAntivirusPro.l
Fortinet 3.117.0.0 2009.05.06 Misc/InternetAntivirusPro[/B]
GData 19 2009.05.06 -
[B]Ikarus T3.1.1.49.0 2009.05.06 not-a-virus:FraudTool.Win32.InternetAntivirusPro[/B]
K7AntiVirus 7.10.723 2009.05.05 -
Kaspersky 7.0.0.125 2009.05.06 not-a-[B]virus:FraudTool.Win32.InternetAntivirusPro.l[/B]
McAfee 5606 2009.05.05 -
[B]McAfee+Artemis 5606 2009.05.05 potentially unwanted program Artemis!529FC533BA22[/B]
[B]McAfee-GW-Edition 6.7.6 2009.05.06 Trojan.InternetAntivirus.A.40
Microsoft 1.4602 2009.05.06 Trojan:Win32/InternetAntivirus
NOD32 4055 2009.05.06 Win32/Adware.InternetAntivirus[/B]
Norman 6.01.05 2009.05.05 -
nProtect 2009.1.8.0 2009.05.06 -
[B]Panda 10.0.0.14 2009.05.05 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.06 -
[B]Prevx 3.0 2009.05.06 Medium Risk Malware[/B]
Rising 21.28.22.00 2009.05.06 -
[B]Sophos 4.41.0 2009.05.06 Mal/FakeAV-M[/B]
Sunbelt 3.2.1858.2 2009.05.06 -
Symantec 1.4.4.12 2009.05.06 -
TheHacker 6.3.4.1.319 2009.05.05 -
TrendMicro 8.950.0.1092 2009.05.06 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.6.1721 2009.05.06 -
VirusBuster 4.6.5.0 2009.05.05 -[/QUOTE]
Дополнительная информация
File size: 2214033 bytes
MD5...: d0529fc533ba22a63f97a14d28de5bb5
SHA1..: 2e376a5225d309804420dedecbc86c72dc2a2f10
SHA256: c2d430a4158f6949c5a6238a31921252c32817699e119d33531cdbe2b028a218
SHA512: d3636f10207eb788dc8f38098d6ae6b7443f64b3b089df5f90ed32f28bf45d9e
d854d4d91d9fa76821c00e831b5ebefa0d448da4de5bb3631226bc16c9e3f34b
ssdeep: 49152:v2Bin+Y/UmIXLEfhGboZPk/5xq8BgFu25eYMuLB6kL0tE9:uBIJUgfoo12
0TFu2eYMuL30G9
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (58.3%)
Win16/32 Executable Delphi generic (14.1%)
Generic Win/DOS Executable (13.7%)
DOS Executable Generic (13.6%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
07.05.2009, 23:13
senyak

Файл zastavka.jar получен 2009.05.07 21:03:37 (CET)
Текущий статус: закончено
Результат: 7/39 (17.95%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.07 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.07 -
[B]AntiVir 7.9.0.160 2009.05.07 JAVA/Boxer.1
Antiy-AVL 2.0.3.1 2009.05.07 Trojan/J2ME.Boxer[/B]
Authentium 5.1.2.4 2009.05.07 -
Avast 4.8.1335.0 2009.05.06 -
AVG 8.5.0.327 2009.05.07 -
BitDefender 7.2 2009.05.07 -
CAT-QuickHeal 10.00 2009.05.06 -
ClamAV 0.94.1 2009.05.07 -
Comodo 1154 2009.05.06 -
DrWeb 5.0.0.12182 2009.05.07 -
eSafe 7.0.17.0 2009.05.07 -
eTrust-Vet 31.6.6494 2009.05.07 -
F-Prot 4.4.4.56 2009.05.07 -
[B]F-Secure 8.0.14470.0 2009.05.07 Trojan-SMS.J2ME.Boxer.i[/B]
Fortinet 3.117.0.0 2009.05.07 -
GData 19 2009.05.07 -
[B]Ikarus T3.1.1.49.0 2009.05.07 Trojan-SMS[/B]
K7AntiVirus 7.10.728 2009.05.07 -
[B]Kaspersky 7.0.0.125 2009.05.07 Trojan-SMS.J2ME.Boxer.i[/B]
McAfee 5608 2009.05.07 -
McAfee+Artemis 5608 2009.05.07 -
[B]McAfee-GW-Edition 6.7.6 2009.05.07 Java.Boxer.1[/B]
Microsoft 1.4602 2009.05.07 -
NOD32 4060 2009.05.07 -
Norman 6.01.05 2009.05.07 -
nProtect 2009.1.8.0 2009.05.07 -
Panda 10.0.0.14 2009.05.07 -
PCTools 4.4.2.0 2009.05.07 -
Rising 21.28.32.00 2009.05.07 -
Sophos 4.41.0 2009.05.07 -
Sunbelt 3.2.1858.2 2009.05.07 -
Symantec 1.4.4.12 2009.05.07 -
TheHacker 6.3.4.1.321 2009.05.07 -
TrendMicro 8.950.0.1092 2009.05.07 -
VBA32 3.12.10.4 2009.05.05 -
ViRobot 2009.5.7.1723 2009.05.07 -
VirusBuster 4.6.5.0 2009.05.07 -[/QUOTE]
Дополнительная информация
File size: 17397 bytes
MD5...: 57017cb484cb0d1902ebe8206d3a48ae
SHA1..: 7a45e7fb067451ccf44ebe1c2252ef6eed84d883
SHA256: 0a20d9ac653f484a4e2c57e5a0461c1caaad63f921fbb66adfc464e45491fb0a
SHA512: 3bd42600f76662ca76f8c5778b638d7ec87436ffe46702c1f8b5f286f93f47ed
b3216f666b7e6f177320800d33e4cde3fedea882a5a8d23e7e50af213df30194
ssdeep: 384:8s0IersSps4lz7I9Xg5nwiYxRtOM9XzSkC/SZtPB66/:8BY94lz7IlgFoOrk
tp66/
PEiD..: -
TrID..: File type identification
Java Archive (78.3%)
ZIP compressed archive (21.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
08.05.2009, 12:22
senyak

Файл install.exe получен 2009.05.08 10:15:55 (CET)
Текущий статус: закончено
Результат: 20/40 (50%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.08 [B]Riskware.FraudTool.Win32.SystemSecurity!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.08 -
[B]AntiVir 7.9.0.160 2009.05.08 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.08 -
[B]Authentium 5.1.2.4 2009.05.07 W32/FakeAlert.4!Generic
Avast 4.8.1335.0 2009.05.07 Win32:FakeAlert-BD
AVG 8.5.0.327 2009.05.07 FakeAlert.KH
BitDefender 7.2 2009.05.08 Gen:Trojan.Heur.B1827D2859
CAT-QuickHeal 10.00 2009.05.08 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.08 -
Comodo 1154 2009.05.06 -
DrWeb 5.0.0.12182 2009.05.08 -
eSafe 7.0.17.0 2009.05.07 -
[B]eTrust-Vet 31.6.6495 2009.05.08 Win32/FakeAlert!generic
F-Prot 4.4.4.56 2009.05.07 W32/FakeAlert.4!Generic
F-Secure 8.0.14470.0 2009.05.08 FraudTool.Win32.SystemSecurity.ic
Fortinet 3.117.0.0 2009.05.08 PossibleThreat
GData 19 2009.05.08 Gen:Trojan.Heur.B1827D2859
Ikarus T3.1.1.49.0 2009.05.08 not-a-virus:FraudTool.Win32.SystemSecurity[/B]
K7AntiVirus 7.10.728 2009.05.07 -
[B]Kaspersky 7.0.0.125 2009.05.08 not-a-virus:FraudTool.Win32.SystemSecurity.ic[/B]
McAfee 5608 2009.05.07 -
McAfee+Artemis 5608 2009.05.07 -
[B]McAfee-GW-Edition 6.7.6 2009.05.08 Trojan.Dropper.Gen
Microsoft 1.4602 2009.05.08 Trojan:Win32/Winwebsec
NOD32 4061 2009.05.07 Win32/Adware.SystemSecurity[/B]
Norman 6.01.05 2009.05.07 -
nProtect 2009.1.8.0 2009.05.08 -
Panda 10.0.0.14 2009.05.07 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.08 -
Rising 21.28.41.00 2009.05.08 -
[B]Sophos 4.41.0 2009.05.08 Mal/EncPk-IF
Sunbelt 3.2.1858.2 2009.05.08 SystemSecurity[/B]
Symantec 1.4.4.12 2009.05.08 -
TheHacker 6.3.4.1.321 2009.05.07 -
[B]TrendMicro 8.950.0.1092 2009.05.08 Cryp_FakeAV-12[/B]
VBA32 3.12.10.4 2009.05.07 -
ViRobot 2009.5.8.1724 2009.05.08 -
VirusBuster 4.6.5.0 2009.05.07 -[/QUOTE]
Дополнительная информация
File size: 458548 bytes
MD5...: a02678f7c3a6777e6ab5231b36eb46da
SHA1..: 11c44290044ea33f8aa69acb405fcb7b8991f8bd
SHA256: 1ec758c3e86b63bd19ac2dbb2fc7ebc77a02b6986b78521645424f770b471d7a
SHA512: bded3c662f5c41bfd50d51279184777d8c703834d004fa697b28e236bef2c906
691aef775c74440363fe16867b36653d981a7adf24c283de7bf64128c11cfb6e
ssdeep: 6144:KyOLAaUkLm7kyNHwvkT4XQGAuvlEROQE0aDGV8cJidAlxflwy1jlEe2xlB7
xJiNN:KDAeMXcFNXvloZpodATTvO7xguj5Xy
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
08.05.2009, 13:32
Torvic99

Файл pdf.pdf получен 2009.05.08 10:57:00 (CET)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.08 Exploit.Pidief!IK
AhnLab-V3 5.0.0.2 2009.05.08 Win-Trojan/Exploit-PDF
AntiVir 7.9.0.160 2009.05.08 EXP/Pidief.JQ.1[/B]
Antiy-AVL 2.0.3.1 2009.05.08 -
Authentium 5.1.2.4 2009.05.07 -
[B]Avast 4.8.1335.0 2009.05.07 JS:Pdfka-EO[/B]
AVG 8.5.0.327 2009.05.07 -
[B]BitDefender 7.2 2009.05.08 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.05.08 -
ClamAV 0.94.1 2009.05.08 -
[B]Comodo 1156 2009.05.08 Unclassified Malware
DrWeb 5.0.0.12182 2009.05.08 Exploit.PDF.2[/B]
eSafe 7.0.17.0 2009.05.07 -
eTrust-Vet 31.6.6495 2009.05.08 -
F-Prot 4.4.4.56 2009.05.07 -
[B]F-Secure 8.0.14470.0 2009.05.08 Exploit.Win32.Pidief.ato[/B]
Fortinet 3.117.0.0 2009.05.08 -
[B]GData 19 2009.05.08 Exploit.PDF-JS.Gen
Ikarus T3.1.1.49.0 2009.05.08 Exploit.Pidief[/B]
K7AntiVirus 7.10.728 2009.05.07 -
[B]Kaspersky 7.0.0.125 2009.05.08 Exploit.Win32.Pidief.ato[/B]
McAfee 5608 2009.05.07 -
McAfee+Artemis 5608 2009.05.07 -
[B]McAfee-GW-Edition 6.7.6 2009.05.08 Exploit.Pidief.JQ.1[/B]
Microsoft 1.4602 2009.05.08 -
[B]NOD32 4061 2009.05.07 PDF/Exploit.Pidief.OLO[/B]
Norman 6.01.05 2009.05.07 -
[B]nProtect 2009.1.8.0 2009.05.08 Exploit.PDF-JS.Gen.C03
Panda 10.0.0.14 2009.05.07 Exploit/Pidief[/B]
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.08 -
Rising 21.28.41.00 2009.05.08 -
[B]Sophos 4.41.0 2009.05.08 Troj/PdfEx-AP
Sunbelt 3.2.1858.2 2009.05.08 Exploit.PDF-JS.Gen (v)
Symantec 1.4.4.12 2009.05.08 Bloodhound.Exploit.213[/B]
TheHacker 6.3.4.1.321 2009.05.07 -
[B]TrendMicro 8.950.0.1092 2009.05.08 TROJ_PDFEX.P[/B]
VBA32 3.12.10.4 2009.05.07 -
ViRobot 2009.5.8.1724 2009.05.08 -
VirusBuster 4.6.5.0 2009.05.07 -
[/QUOTE]

Дополнительная информация
File size: 3545 bytes
MD5...: 97ee138c7dfcef3ded79cad5d8ab7a19
SHA1..: 53cd4251f4f2eb40fe64bae2d5dc5dd465b97c1a
SHA256: 8c793875755a5f1049f4ed771665904942af93edd5e539746d98601d90ac3685
SHA512: 41bca5ebd70199ed725d0609b68bf38b481615266e16a046b6ebed0df38680f2 b05b71b4104f2b93cef812b90c040e0e2a6a628f901bdd1db45fe81d2effae6a
ssdeep: 48:C1CfEwyx0UJlNm5FZpbJ35AZ6tHqDPsmXmzfXYukplRBVXQIrrpyLSB0xjhnC las:C1C8wbH9eZ6o2zTkLVXQIHo2BAhyoI 
PEiD..: -
TrID..: File type identification Adobe Portable Document Format (100.0%)
PEInfo: -
PDFiD.: PDF Header: %PDF-1.4 obj 15 endobj 15 stream 2 endstream 2 xref 1 trailer 1 startxref 1 /Page 1 /Encrypt 0 /ObjStm 0 /JS 1 /JavaScript 2 /AA 0 /OpenAction 0 /JBIG2Decode 0 
RDS...: NSRL Reference Data Set -
11.05.2009, 15:29
senyak

Файл tj.htm получен 2009.05.11 11:14:13 (CET)
Текущий статус: закончено
Результат: 4/40 (10%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.11 -
AhnLab-V3 5.0.0.2 2009.05.11 -
[B]AntiVir 7.9.0.166 2009.05.11 HTML/Infected.WebPage.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.11 -
Authentium 5.1.2.4 2009.05.10 -
Avast 4.8.1335.0 2009.05.10 -
AVG 8.5.0.327 2009.05.11 -
BitDefender 7.2 2009.05.11 -
CAT-QuickHeal 10.00 2009.05.09 -
[B]ClamAV 0.94.1 2009.05.11 Exploit.Iframe-1[/B]
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.11 -
eSafe 7.0.17.0 2009.05.10 -
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
F-Secure 8.0.14470.0 2009.05.11 -
Fortinet 3.117.0.0 2009.05.11 -
GData 19 2009.05.11 -
Ikarus T3.1.1.49.0 2009.05.11 -
K7AntiVirus 7.10.729 2009.05.08 -
Kaspersky 7.0.0.125 2009.05.11 -
McAfee 5611 2009.05.10 -
McAfee+Artemis 5611 2009.05.10 -
[B]McAfee-GW-Edition 6.7.6 2009.05.11 Heuristic.Script.Infected.WebPage[/B]
Microsoft 1.4602 2009.05.11 -
NOD32 4064 2009.05.11 -
Norman 6.01.05 2009.05.08 -
nProtect 2009.1.8.0 2009.05.11 -
Panda 10.0.0.14 2009.05.10 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
Rising 21.29.02.00 2009.05.11 -
Sophos 4.41.0 2009.05.11 -
Sunbelt 3.2.1858.2 2009.05.09 -
Symantec 1.4.4.12 2009.05.11 -
TheHacker 6.3.4.1.324 2009.05.09 -
[B]TrendMicro 8.950.0.1092 2009.05.11 Mal_Hifrm[/B]
VBA32 3.12.10.4 2009.05.11 -
ViRobot 2009.5.11.1728 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 245 bytes
MD5...: b9fdde6b1e1ba6eb225a0e65d7b40215
SHA1..: 92c8a1835abc0c37c1b7d9f832836529e1f5345b
SHA256: 644fa5e148b0a9f51a6f42fdadbe6025dc3738c6579d872fd180f0948e090779
SHA512: fb36042c084f104f201279f1184699cdf76970e0c7bc4d401ba1a6087aa7c833
d1abb3734afe797d513d5a45268eb58a99cdad27a62ac4e80c7e5e14e375ed16
ssdeep: 6:SW/CIQlQoRJM179Ur6pMI74+AUKIqnzRw74AsVAqnzRy:SWgQZJpMIXS1nzacD
nzA
PEiD..: -
TrID..: File type identification
file seems to be plain text/ASCII (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл klr-id.txt получен 2009.05.11 11:16:42 (CET)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.11 Trojan.PHPInfo.A!IK
AhnLab-V3 5.0.0.2 2009.05.11 PHP/HackTool
AntiVir 7.9.0.166 2009.05.11 SPR/PHP.ID[/B]
Antiy-AVL 2.0.3.1 2009.05.11 -
Authentium 5.1.2.4 2009.05.10 -
[B]Avast 4.8.1335.0 2009.05.10 PHP:PHPInfo-A
AVG 8.5.0.327 2009.05.11 PHP/BackDoor.H[/B]
BitDefender 7.2 2009.05.11 -
CAT-QuickHeal 10.00 2009.05.09 -
[B]ClamAV 0.94.1 2009.05.11 PHP.Id-14
Comodo 1157 2009.05.08 Unclassified Malware[/B]
DrWeb 5.0.0.12182 2009.05.11 -
eSafe 7.0.17.0 2009.05.10 -
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
[B]F-Secure 8.0.14470.0 2009.05.11 Trojan.PHP.PHPInfo.g
Fortinet 3.117.0.0 2009.05.11 PHP/Zapchast.YR!tr
GData 19 2009.05.11 PHP:PHPInfo-A[/B]
[B]Ikarus T3.1.1.49.0 2009.05.11 Trojan.PHPInfo.A[/B]
K7AntiVirus 7.10.729 2009.05.08 -
[B]Kaspersky 7.0.0.125 2009.05.11 Trojan.PHP.PHPInfo.g[/B]
McAfee 5611 2009.05.10 -
McAfee+Artemis 5611 2009.05.10 -
[B]McAfee-GW-Edition 6.7.6 2009.05.11 Riskware.PHP.ID[/B]
Microsoft 1.4602 2009.05.11 -
NOD32 4064 2009.05.11 -
Norman 6.01.05 2009.05.08 -
nProtect 2009.1.8.0 2009.05.11 -
Panda 10.0.0.14 2009.05.10 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
Rising 21.29.02.00 2009.05.11 -
[B]Sophos 4.41.0 2009.05.11 Mal/PHPInfo-A[/B]
Sunbelt 3.2.1858.2 2009.05.09 -
Symantec 1.4.4.12 2009.05.11 -
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
VBA32 3.12.10.4 2009.05.11 -
ViRobot 2009.5.11.1728 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 1356 bytes
MD5...: 3a07e6a32c3ec7f811959c3c6207fb57
SHA1..: 6923355be4717ad01b3d2e181ae6076d05ab3d32
SHA256: cff9ddc62aff0eaa03d91c028995258f2df378329e67b06964be0b8544421bdb
SHA512: 065449c094ed04208beeed61f60fa9708acafc7f2e24c63451f0b6ceafc79cd4
8903043e8b92278becddadf5bf68342e83dc8a157757c4de86da81996105ef33
ssdeep: 24:2sUftFfvsFh4/vZXOHvSpQvxVu6f2ik6Hev96itzmWN7A3BrSwu5d/dDMuOT:
2sgFnsFeZwSpQvxw6+56ixmc7A3BrLuM
PEiD..: -
TrID..: File type identification
Unknown!
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл 1.pdf получен 2009.05.11 11:18:47 (CET)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.11 -
AhnLab-V3 5.0.0.2 2009.05.11 -
[B]AntiVir 7.9.0.166 2009.05.11 HTML/Shellcode.Gen
Antiy-AVL 2.0.3.1 2009.05.11 Exploit/Win32.Pidief[/B]
Authentium 5.1.2.4 2009.05.10 -
[B]Avast 4.8.1335.0 2009.05.10 JS:Pdfka-FS[/B]
AVG 8.5.0.327 2009.05.11 -
[B]BitDefender 7.2 2009.05.11 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.05.09 -
ClamAV 0.94.1 2009.05.11 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.11 -
eSafe 7.0.17.0 2009.05.10 -
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
[B]F-Secure 8.0.14470.0 2009.05.11 Exploit.Win32.Pidief.atj[/B]
Fortinet 3.117.0.0 2009.05.11 -
[B]GData 19 2009.05.11 Exploit.PDF-JS.Gen[/B]
Ikarus T3.1.1.49.0 2009.05.11 -
K7AntiVirus 7.10.729 2009.05.08 -
[B]Kaspersky 7.0.0.125 2009.05.11 Exploit.Win32.Pidief.atj
McAfee 5611 2009.05.10 Exploit-PDF.n.gen[/B]
McAfee+Artemis 5611 2009.05.10 -
[B]McAfee-GW-Edition 6.7.6 2009.05.11 Script.Shellcode.Gen
Microsoft 1.4602 2009.05.11 TrojanDownloader:Win32/Small.gen!X[/B]
NOD32 4064 2009.05.11 -
Norman 6.01.05 2009.05.08 -
[B]nProtect 2009.1.8.0 2009.05.11 Trojan-Exploit/W32.Pidief.2913.AH[/B]
Panda 10.0.0.14 2009.05.10 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
Rising 21.29.02.00 2009.05.11 -
[B]Sophos 4.41.0 2009.05.11 Mal/JSShell-B
Sunbelt 3.2.1858.2 2009.05.09 Exploit.AdobeReader.gen (v)
Symantec 1.4.4.12 2009.05.11 Bloodhound.Exploit.196[/B]
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
VBA32 None 2009.05.11 -
ViRobot 2009.5.11.1728 2009.05.11 -
[B]VirusBuster 4.6.5.0 2009.05.10 JS.BOFExploit.Gen[/B][/QUOTE]
Дополнительная информация
File size: 2913 bytes
MD5...: 8ec93dd5f15b4f2db875e391c98becd0
SHA1..: 15dc9947202cbf2937d5f390a4d60b510dee31e1
SHA256: 6878de79605b08a39a2d6f2bec2c81a0817e878cf1b46d284a859e1c49466889
SHA512: 6998a745047f3190b750769a99261adfc6408d385280aa061f2dde0cc6f48ed5
e343f6ba54a6ed454c8ab927a06f9842a73755662c073eb67d4e8b6a33872b86
ssdeep: 48:PxWHhydEWXe4F/Gd5A+1T6PFLVsY0kn0+HAPPJ1GFvuHupPJHIg9M9/6cnGub
Z:Z+QdEs25RcFLVsYLwJ1TOLHNe9/6c5bZ
PEiD..: -
TrID..: File type identification
Adobe Portable Document Format (100.0%)
PEInfo: -

Файл windoss.css получен 2009.05.11 11:19:04 (CET)
Текущий статус: закончено
Результат: 27/40 (67.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.11 Trojan.Win32.AntiAV!IK
AhnLab-V3 5.0.0.2 2009.05.11 Win-Trojan/Geral.37888
AntiVir 7.9.0.166 2009.05.11 TR/Killav.PN[/B]
Antiy-AVL 2.0.3.1 2009.05.11 -
Authentium 5.1.2.4 2009.05.10 -
[B]Avast 4.8.1335.0 2009.05.10 Win32:Rootkit-gen
AVG 8.5.0.327 2009.05.11 Agent_r.NO
BitDefender 7.2 2009.05.11 Gen:Trojan.Heur.2015746F6F
CAT-QuickHeal 10.00 2009.05.09 Worm.AutoRun.afvk[/B]
ClamAV 0.94.1 2009.05.11 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.11 -
[B]eSafe 7.0.17.0 2009.05.10 Win32.TRKillav.Pn[/B]
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
[B]F-Secure 8.0.14470.0 2009.05.11 Trojan-Downloader.Win32.Geral.kq
Fortinet 3.117.0.0 2009.05.11 W32/Mdrop.N!tr
GData 19 2009.05.11 Gen:Trojan.Heur.2015746F6F
Ikarus T3.1.1.49.0 2009.05.11 Trojan.Win32.AntiAV[/B]
K7AntiVirus 7.10.729 2009.05.08 -
[B]Kaspersky 7.0.0.125 2009.05.11 Trojan-Downloader.Win32.Geral.kq
McAfee 5611 2009.05.10 Generic Dropper.fi
McAfee+Artemis 5611 2009.05.10 Artemis!AACAF09A426D
McAfee-GW-Edition 6.7.6 2009.05.11 Trojan.Killav.PN
Microsoft 1.4602 2009.05.11 Trojan:Win32/Dogrobot.I
NOD32 4064 2009.05.11 probably a variant of Win32/AntiAV.AZQ[/B]
Norman 6.01.05 2009.05.08 -
[B]nProtect 2009.1.8.0 2009.05.11 Trojan-Downloader/W32.Geral.40456
Panda 10.0.0.14 2009.05.10 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
[B]Rising 21.29.02.00 2009.05.11 Trojan.DL.Win32.Mnless.dhl
Sophos 4.41.0 2009.05.11 Mal/Mdrop-N
Sunbelt 3.2.1858.2 2009.05.09 BehavesLike.Win32.Malware (v)
Symantec 1.4.4.12 2009.05.11 Trojan.KillAV[/B]
TheHacker 6.3.4.1.324 2009.05.09 -
[B]TrendMicro 8.950.0.1092 2009.05.11 PAK_Generic.001
VBA32 3.12.10.4 2009.05.11 Trojan-Downloader.Win32.Geral.kq
ViRobot 2009.5.11.1728 2009.05.11 Trojan.Win32.Downloader.37888.BD[/B]
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 40456 bytes
MD5...: aacaf09a426ded3436f69575ef1c1c63
SHA1..: b4e9f63ecbdc369fcd198f162e87208ac35aa586
SHA256: 06fd36fe4e3479d3093225762c98f360989652f96b1d3ff55155da2044ae4de8
SHA512: 87872b6ab4c4d7d0b6b9faee8234c9832347f09eb77ea749a10b2a4386e13b3a
bbd8e98cf57f181d9a46924b7422d9a172a6711e7c534991035aad6cd699198c
ssdeep: 768:s5IBDzRjGThvSP72rfN1UrPGuGo+A7GYLnQD/QkyYzUg9xtR+ys8p3gINHBs
0w0M:s2BDzSSPENWKnQ71QnPUg9TVlg0q
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
PEInfo: PE Structure information

Файл ci28.swf получен 2009.05.11 11:16:45 (CET)
Текущий статус: закончено
Результат: 13/40 (32.50%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.11 -
[B]AhnLab-V3 5.0.0.2 2009.05.11 Win-Trojan/Exploit-SWF.Gen
AntiVir 7.9.0.166 2009.05.11 EXP/Flash.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.11 -
[B]Authentium 5.1.2.4 2009.05.10 SWF/Downloader.F!Camelot
Avast 4.8.1335.0 2009.05.10 SWF:CVE-2007-0071[/B]
AVG 8.5.0.327 2009.05.11 -
[B]BitDefender 7.2 2009.05.11 Exploit.SWF.Gen[/B]
CAT-QuickHeal 10.00 2009.05.09 -
ClamAV 0.94.1 2009.05.11 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.11 -
eSafe 7.0.17.0 2009.05.10 -
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
F-Secure 8.0.14470.0 2009.05.11 -
Fortinet 3.117.0.0 2009.05.11 -
[B]GData 19 2009.05.11 Exploit.SWF.Gen[/B]
Ikarus T3.1.1.49.0 2009.05.11 -
K7AntiVirus 7.10.729 2009.05.08 -
[B]Kaspersky 7.0.0.125 2009.05.11 Exploit.SWF.Downloader.nj[/B]
McAfee 5611 2009.05.10 -
McAfee+Artemis 5611 2009.05.10 -
[B]McAfee-GW-Edition 6.7.6 2009.05.11 Exploit.Flash.Gen
Microsoft 1.4602 2009.05.11 Exploit:Win32/APSB08-11.gen!A[/B]
NOD32 4064 2009.05.11 -
Norman 6.01.05 2009.05.08 -
[B]nProtect 2009.1.8.0 2009.05.11 Exploit.SWF.Gen[/B]
Panda 10.0.0.14 2009.05.10 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
[B]Rising 21.29.02.00 2009.05.11 Hack.Exploit.Swf.a
Sophos 4.41.0 2009.05.11 Mal/SWFDlr-A[/B]
Sunbelt 3.2.1858.2 2009.05.09 -
[B]Symantec 1.4.4.12 2009.05.11 Bloodhound.Exploit.193[/B]
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
VBA32 3.12.10.4 2009.05.11 -
ViRobot 2009.5.11.1728 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 1528 bytes
MD5...: 72a92a87da2bae3d8805a8915f8547d4
SHA1..: dc62f7f3002b9a7000a0f362f4b61717cd201c4b
SHA256: 5501e0a5ced50b5a9f36f6041e8896a7e8b2e241855cc079b57b4ae8a44212c4
SHA512: 069668a92912e2b8a585c64768c52de7432ac2d37ddbc23ddd91745c3ed1f4f3
22715366d97ac280dbc9727eb3545f80a33d031761c8949ca15454a4ce7ab6d6
ssdeep: 24:hu1vLU3PL7JyRMxnPFUqc4QZt7N+UtWT/fgPHvTWgBBnJFhzOnfCSH/P/t9tm
Lah:l7I6Cqut7NxtWLfIL7lhzO6SnV9ELW
PEiD..: -
TrID..: File type identification
Macromedia Flash Player Compressed Movie (100.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
packers (Kaspersky): Swf2Swc

Файл install.exe получен 2009.05.11 11:26:35 (CET)
Текущий статус: закончено
Результат: 10/40 (25%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.11 -
AhnLab-V3 5.0.0.2 2009.05.11 -
AntiVir 7.9.0.166 2009.05.11 -
Antiy-AVL 2.0.3.1 2009.05.11 -
Authentium 5.1.2.4 2009.05.10 -
[B]Avast 4.8.1335.0 2009.05.10 Win32:FakeAlert-BD[/B]
AVG 8.5.0.327 2009.05.11 -
[B]BitDefender 7.2 2009.05.11 Gen:Trojan.Heur.C1827D2859
CAT-QuickHeal 10.00 2009.05.09 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.11 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.11 -
[B]eSafe 7.0.17.0 2009.05.10 Suspicious File
eTrust-Vet 31.6.6497 2009.05.08 Win32/FakeAlert!generic[/B]
F-Prot 4.4.4.56 2009.05.10 -
F-Secure 8.0.14470.0 2009.05.11 -
Fortinet 3.117.0.0 2009.05.11 -
[B]GData 19 2009.05.11 Gen:Trojan.Heur.C1827D2859[/B]
Ikarus T3.1.1.49.0 2009.05.11 -
K7AntiVirus 7.10.729 2009.05.08 -
Kaspersky 7.0.0.125 2009.05.11 -
McAfee 5611 2009.05.10 -
McAfee+Artemis 5611 2009.05.10 -
McAfee-GW-Edition 6.7.6 2009.05.11 -
[B]Microsoft 1.4602 2009.05.11 Trojan:Win32/Winwebsec[/B]
NOD32 4064 2009.05.11 -
Norman 6.01.05 2009.05.08 -
nProtect 2009.1.8.0 2009.05.11 -
Panda 10.0.0.14 2009.05.10 -
PCTools 4.4.2.0 2009.05.07 -
[B]Prevx 3.0 2009.05.11 Medium Risk Malware
Rising 21.29.02.00 2009.05.11 Dropper.Win32.Mnless.GEN [Suspicious][/B]
Sophos 4.41.0 2009.05.11 -
[B]Sunbelt 3.2.1858.2 2009.05.09 Packer.Lighty.Gen (v)[/B]
Symantec 1.4.4.12 2009.05.11 -
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
VBA32 None 2009.05.11 -
ViRobot 2009.5.11.1728 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
ополнительная информация
File size: 469817 bytes
MD5...: 91ea20c532d87000481492d80a2787b7
SHA1..: df9af4173acdf82d25b34625d1f2a7f494c2fc5b
SHA256: 93ae7b72564181511965ccc2b58ad9c918d4a8e34aeacb004b1d23b23b5e2dda
SHA512: 020e64ad58c98d5613665eb3bafa5b231f2dd483cb3a25b54197641c01f41770
a638955d0fd5bd1c87c1e7fc281f167ca7d50d0e7d342f9506236f1200338db1
ssdeep: 12288:PNdNrF8lC/8A4Dsdj+qAXBEitfpo3ODf7Jdouj5Xv:/NrL/h4DszAR5Yef
7fHj5v
PEiD..: -
TrID..: File type identification
Windows Screen Saver (39.4%)
Win32 Executable Generic (25.6%)
Win32 Dynamic Link Library (generic) (22.8%)
Generic Win/DOS Executable (6.0%)
DOS Executable Generic (6.0%)
PEInfo: PE Structure information

Файл setupxv.exe получен 2009.05.11 11:27:22 (CET)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.11 -
AhnLab-V3 5.0.0.2 2009.05.11 -
[B]AntiVir 7.9.0.166 2009.05.11 DR/FraudTool.AntiSpywareBot.CB[/B]
Antiy-AVL 2.0.3.1 2009.05.11 -
Authentium 5.1.2.4 2009.05.10 -
Avast 4.8.1335.0 2009.05.10 -
AVG 8.5.0.327 2009.05.11 -
[B]BitDefender 7.2 2009.05.11 Spyware.1636[/B]
CAT-QuickHeal 10.00 2009.05.09 -
ClamAV 0.94.1 2009.05.11 -
[B]Comodo 1157 2009.05.08 Unclassified Malware[/B]
DrWeb 5.0.0.12182 2009.05.11 -
[B]eSafe 7.0.17.0 2009.05.10 Suspicious File[/B]
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
F-Secure 8.0.14470.0 2009.05.11 -
[B]Fortinet 3.117.0.0 2009.05.11 Misc/PUP[/B]
GData 19 2009.05.11 Spyware.1636
Ikarus T3.1.1.49.0 2009.05.11 -
[B]K7AntiVirus 7.10.729 2009.05.08 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.05.11 -
[B]McAfee 5611 2009.05.10 potentially unwanted program ErrorKiller
McAfee+Artemis 5611 2009.05.10 potentially unwanted program ErrorKiller[/B]
[B]McAfee-GW-Edition 6.7.6 2009.05.11 Trojan.Dropper.FraudTool.AntiSpywareBot.CB[/B]
Microsoft 1.4602 2009.05.11 -
[B]NOD32 4064 2009.05.11 Win32/FraudTool.AntiSpywareBot.BZ[/B]
Norman 6.01.05 2009.05.08 -
nProtect 2009.1.8.0 2009.05.11 -
[B]Panda 10.0.0.14 2009.05.10 Application/AntiSpyware
PCTools 4.4.2.0 2009.05.07 RogueAntiSpyware.Antispyware!ct[/B]
Prevx 3.0 2009.05.11 -
Rising 21.29.02.00 2009.05.11 -
Sophos 4.41.0 2009.05.11 -
Sunbelt 3.2.1858.2 2009.05.09 -
Symantec 1.4.4.12 2009.05.11 -
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
[B]VBA32 3.12.10.4 2009.05.11 Signed-FraudTool.Win32.AntiSpyware.c[/B]
ViRobot 2009.5.11.1728 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 1593248 bytes
MD5...: 3cf301b5305e136a35a5ebd00da5ac34
SHA1..: 563ac6a3b686214f694923c3a1d575c55fb19357
SHA256: 9028e78d09567870788282a8ba7b58f85cc6b0151ef42194cf4880af9a297d84
SHA512: 9499b254ec68a7189f428c480ccbeb04fd625bdc42557f7c4715e828bad65d3a
e0fb903b2e2d44a45109a4bd12c8bd3a84905307fc45da8934a7c3215aeca5ca
ssdeep: 24576:a74CEUtxKyMKVr1Xep8rAguYtPgEzadNPE4zk6bvsy//s4/UzeMq9pWRaD
XBr3T2:a7n1CuO2r7uEO3E+f/s4/AWdBWqo
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
TrID..: File type identification
UPX compressed Win32 Executable (43.8%)
Win32 EXE Yoda's Crypter (38.1%)
Win32 Executable Generic (12.2%)
Generic Win/DOS Executable (2.8%)
DOS Executable Generic (2.8%)
PEInfo: PE Structure information

[size="1"][color="#666686"][B][I]Добавлено через 1 час 57 минут[/I][/B][/color][/size]

Файл ss.exe получен 2009.05.11 13:06:10 (CET)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.11 Backdoor.Win32.Inject!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.11 -
[B]AntiVir 7.9.0.166 2009.05.11 TR/Dropper.Gen
Antiy-AVL 2.0.3.1 2009.05.11 Trojan/Win32.Magania[/B]
Authentium 5.1.2.4 2009.05.10 -
Avast 4.8.1335.0 2009.05.10 -
AVG 8.5.0.327 2009.05.11 -
BitDefender 7.2 2009.05.11 -
[B]CAT-QuickHeal 10.00 2009.05.09 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.11 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.11 -
[B]eSafe 7.0.17.0 2009.05.10 Suspicious File[/B]
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
[B]F-Secure 8.0.14470.0 2009.05.11 Trojan-GameThief.Win32.Magania.bavl[/B]
Fortinet 3.117.0.0 2009.05.11 -
GData 19 2009.05.11 -
[B]Ikarus T3.1.1.49.0 2009.05.11 Backdoor.Win32.Inject[/B]
K7AntiVirus 7.10.729 2009.05.08 -
[B]Kaspersky 7.0.0.125 2009.05.11 Trojan-GameThief.Win32.Magania.bavl[/B]
McAfee 5611 2009.05.10 -
[B]McAfee+Artemis 5611 2009.05.10 Artemis!544A56B30C34
McAfee-GW-Edition 6.7.6 2009.05.11 Trojan.Dropper.Gen[/B]
Microsoft 1.4602 2009.05.11 -
[B]NOD32 4064 2009.05.11 probably a variant of Win32/Dialer.NHB[/B]
Norman 6.01.05 2009.05.08 -
nProtect 2009.1.8.0 2009.05.11 -
[B]Panda 10.0.0.14 2009.05.10 Suspicious file[/B]
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
Rising 21.29.03.00 2009.05.11 -
[B]Sophos 4.41.0 2009.05.11 Mal/EncPk-CK[/B]
Sunbelt 3.2.1858.2 2009.05.09 -
Symantec 1.4.4.12 2009.05.11 -
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
[B]VBA32 3.12.10.4 2009.05.11 BScope.Trojan-PSW.Looby[/B]
ViRobot 2009.5.11.1729 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 190283 bytes
MD5...: 544a56b30c34bab1d72c71e82405233f
SHA1..: 8f5385b24f53786c84509fde8952b266d27f6149
SHA256: bc6159defa4116e20ebec047df62c3cc1b43102377e17ac31799bb20237849d3
SHA512: 0da38bd9902bbd435337ad81539e1312b4d75e2146349faf501511da6e4966a6
4b5b57cf7e58e6a821edf9c4a5e5e711ecd36ae2fcb97734d7c38464b8f73b82
ssdeep: 3072:mNgmY3/c+HfJgmgZXCSon9xaT9xCBw0I6rsi9HtrG5JfQyMuLs8KIKmnlYA
jAx6P:Y2/VfYSS3psw0I67tKnlMuLs8e0j5Hmg
PEiD..: -
TrID..: File type identification
Win64 Executable Generic (80.9%)
Win32 Executable Generic (8.0%)
Win32 Dynamic Link Library (generic) (7.1%)
Generic Win/DOS Executable (1.8%)
DOS Executable Generic (1.8%)
PEInfo: PE Structure information

Файл name.jar получен 2009.05.11 13:25:02 (CET)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.11 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.11 -
[B]AntiVir 7.9.0.166 2009.05.11 JAVA/SMS.Boxer.C
Antiy-AVL 2.0.3.1 2009.05.11 Trojan/J2ME.Boxer[/B]
Authentium 5.1.2.4 2009.05.10 -
Avast 4.8.1335.0 2009.05.10 -
AVG 8.5.0.327 2009.05.11 -
BitDefender 7.2 2009.05.11 -
CAT-QuickHeal 10.00 2009.05.09 -
ClamAV 0.94.1 2009.05.11 -
Comodo 1157 2009.05.08 -
[B]DrWeb 5.0.0.12182 2009.05.11 Java.SMSSend.24[/B]
eSafe 7.0.17.0 2009.05.10 -
eTrust-Vet 31.6.6497 2009.05.08 -
F-Prot 4.4.4.56 2009.05.10 -
[B]F-Secure 8.0.14470.0 2009.05.11 Trojan-SMS.J2ME.Boxer.c[/B]
Fortinet 3.117.0.0 2009.05.11 -
GData 19 2009.05.11 -
[B]Ikarus T3.1.1.49.0 2009.05.11 Trojan-SMS[/B]
K7AntiVirus 7.10.729 2009.05.08 -
[B]Kaspersky 7.0.0.125 2009.05.11 Trojan-SMS.J2ME.Boxer.j[/B]
McAfee 5611 2009.05.10 -
McAfee+Artemis 5611 2009.05.10 -
[B]McAfee-GW-Edition 6.7.6 2009.05.11 Java.SMS.Boxer.C[/B]
Microsoft 1.4602 2009.05.11 -
NOD32 4064 2009.05.11 -
Norman 6.01.05 2009.05.08 -
nProtect 2009.1.8.0 2009.05.11 -
Panda 10.0.0.14 2009.05.10 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.11 -
Rising 21.29.03.00 2009.05.11 -
Sophos 4.41.0 2009.05.11 -
Sunbelt 3.2.1858.2 2009.05.09 -
Symantec 1.4.4.12 2009.05.11 -
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.11 -
VBA32 3.12.10.4 2009.05.11 -
ViRobot 2009.5.11.1729 2009.05.11 -
VirusBuster 4.6.5.0 2009.05.10 -[/QUOTE]
Дополнительная информация
File size: 210640 bytes
MD5...: cbc8ca6c9d097f41a2970412f46fd805
SHA1..: 0022d1c71d9f7fee4291985d366c23eb729cc369
SHA256: 342ae7f129614c6324ed98fc66e94ad6756a99c5fc98194eaad3af88afff99ac
SHA512: 0d132e20994fc71afcae3b18ca5e31200a640fbf037c06fa09a9dd8772e0739d
41e5afee5123abba3997f3923083d20b1fade9775c42dc7f839316be86a8e06f
ssdeep: 3072:gCh9ERJudsMFlYUhTKOmeAkCeHeHXxdB/vTXNyw1z4xwMpjyUgXiEgo5hj2
uPdrd:gCsnutOOm5l/wOzwgB5B2ulop1ouPS
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
13.05.2009, 00:43
Black_N

Файл foto12.rar получен 2009.05.12 22:38:53 (CET)
Текущий статус: закончено
[B]Результат: 19/40 (47.5%)[/B]
Форматированные
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.12 -
AhnLab-V3 5.0.0.2 2009.05.12 -
[B]AntiVir 7.9.0.166 2009.05.12 TR/Crypt.XPACK.Gen[/B]
[B]Antiy-AVL 2.0.3.1 2009.05.12 Trojan/Win32.Buzus[/B]
Authentium 5.1.2.4 2009.05.12 -
[B]Avast 4.8.1335.0 2009.05.12 Win32:Trojan-gen {Other}[/B]
AVG 8.5.0.327 2009.05.12 -
BitDefender 7.2 2009.05.12 -
[B]CAT-QuickHeal 10.00 2009.05.12 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.12 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.12 -
[B]eSafe 7.0.17.0 2009.05.12 Win32.TRCrypt.XPACK[/B]
eTrust-Vet 31.6.6501 2009.05.12 -
F-Prot 4.4.4.56 2009.05.12 -
[B]F-Secure 8.0.14470.0 2009.05.12 Trojan.Win32.Buzus.aygd[/B]
[B]Fortinet 3.117.0.0 2009.05.12 W32/Buzus.AYGD!tr
GData 19 2009.05.12 Win32:Trojan-gen {Other}[/B]
Ikarus T3.1.1.49.0 2009.05.12 -
[B]K7AntiVirus 7.10.732 2009.05.11 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.05.12 Trojan.Win32.Buzus.aygd
McAfee 5613 2009.05.12 New Malware.jj
McAfee+Artemis 5613 2009.05.12 Artemis!947FE009E4CD
McAfee-GW-Edition 6.7.6 2009.05.12 Trojan.Crypt.XPACK.Gen
Microsoft 1.4602 2009.05.12 VirTool:Win32/Injector.gen!F[/B]
NOD32 4068 2009.05.12 -
Norman 6.01.05 2009.05.12 -
nProtect 2009.1.8.0 2009.05.12 -
[B]Panda 10.0.0.14 2009.05.12 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.07 -
[B]Prevx 3.0 2009.05.12 Medium Risk Malware[/B]
Rising 21.29.14.00 2009.05.12 -
[B]Sophos 4.41.0 2009.05.12 Mal/ProcInj-Fam[/B]
Sunbelt 3.2.1858.2 2009.05.12 -
[B]Symantec 1.4.4.12 2009.05.12 Suspicious.MH690.A[/B]
TheHacker 6.3.4.1.325 2009.05.12 -
TrendMicro 8.950.0.1092 2009.05.12 -
[B]VBA32 3.12.10.4 2009.05.12 Trojan.Win32.Buzus.axtr[/B]
ViRobot 2009.5.12.1731 2009.05.12 -
VirusBuster 4.6.5.0 2009.05.12 -[/QUOTE]
Дополнительная информация
File size: 32222 bytes
MD5...: eca4fa57358116b1c1d142c7bf96ea1a
SHA1..: 01f2e5cb2a46eeaa72a1d3d3aeb34ab1dcd1d12c
SHA256: 405798eebfacd89950ea9f9d3d5fb02c89f22376126550fd33694dc0fc617433
SHA512: 9b419979879cd719d26830f2d94fdbc0744170780e7bb86b0c266d1643f9c4fc
dcb76a7bdfa1481e94deb85e867ee3f3ec5903c9c580015af8cf75aea11ffff8
ssdeep: 768:/qHX1Ldi3P+V6t7l3PvhLWnHElXCuuB2inyrcOZA9eAj:iHlLePPt7BPJLWn
ruhiG29eAj
PEiD..: -
TrID..: File type identification
RAR Archive (83.3%)
REALbasic Project (16.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
<a href='http://info.prevx.com/aboutprogramtext.asp?PX5=439FD42900B406FCB64A00D647A405008E4D6CAD' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=439FD42900B406FCB64A00D647A405008E4D6CAD</a>
13.05.2009, 11:13
Surfer

Файл cino.exe получен 2009.05.13 07:27:17 (CET)
Результат: 4/39 (10.26%)

[QUOTE][B]a-squared 4.0.0.101 2009.05.13 BehavesLike!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.13 -
AntiVir 7.9.0.166 2009.05.12 -
Antiy-AVL 2.0.3.1 2009.05.12 -
Authentium 5.1.2.4 2009.05.13 -
Avast 4.8.1335.0 2009.05.12 -
AVG 8.5.0.327 2009.05.12 -
[B]BitDefender 7.2 2009.05.13 BehavesLike:Win32.Backdoor[/B]
CAT-QuickHeal 10.00 2009.05.13 -
ClamAV 0.94.1 2009.05.13 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.13 -
eSafe 7.0.17.0 2009.05.12 -
eTrust-Vet 31.6.6502 2009.05.12 -
F-Prot 4.4.4.56 2009.05.13 -
F-Secure 8.0.14470.0 2009.05.13 -
Fortinet 3.117.0.0 2009.05.13 -
GData 19 2009.05.13 -
[B]Ikarus T3.1.1.49.0 2009.05.13 BehavesLike[/B]
K7AntiVirus 7.10.732 2009.05.11 -
[B]Kaspersky 7.0.0.125 2009.05.13 Backdoor.Win32.Delf.oxu[/B]
McAfee 5613 2009.05.12 -
McAfee+Artemis 5613 2009.05.12 -
McAfee-GW-Edition 6.7.6 2009.05.12 -
Microsoft 1.4602 2009.05.12 -
NOD32 4069 2009.05.13 -
Norman 6.01.05 2009.05.12 -
nProtect 2009.1.8.0 2009.05.13 -
Panda 10.0.0.14 2009.05.12 -
PCTools 4.4.2.0 2009.05.07 -
Prevx 3.0 2009.05.13 -
Rising 21.29.20.00 2009.05.13 -
Sophos 4.41.0 2009.05.13 -
Sunbelt 3.2.1858.2 2009.05.12 -
Symantec 1.4.4.12 2009.05.13 -
TheHacker 6.3.4.1.325 2009.05.12 -
TrendMicro 8.950.0.1092 2009.05.13 -
VBA32 3.12.10.5 2009.05.13 -
ViRobot 2009.5.12.1731 2009.05.12 -[/QUOTE]

[hr]
Файл KJBy.exe получен 2009.05.13 07:27:15 (CET)
Результат: 6/40 (15.00%)

[QUOTE]a-squared 4.0.0.101 2009.05.13 -
AhnLab-V3 5.0.0.2 2009.05.13 -
[B]AntiVir 7.9.0.166 2009.05.12 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.12 -
Authentium 5.1.2.4 2009.05.13 -
Avast 4.8.1335.0 2009.05.12 -
AVG 8.5.0.327 2009.05.12 -
BitDefender 7.2 2009.05.13 -
[B]CAT-QuickHeal 10.00 2009.05.13 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.05.13 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.13 -
eSafe 7.0.17.0 2009.05.12 -
eTrust-Vet 31.6.6502 2009.05.12 -
F-Prot 4.4.4.56 2009.05.13 -
F-Secure 8.0.14470.0 2009.05.13 -
Fortinet 3.117.0.0 2009.05.13 -
GData 19 2009.05.13 -
Ikarus T3.1.1.49.0 2009.05.13 -
K7AntiVirus 7.10.732 2009.05.11 -
Kaspersky 7.0.0.125 2009.05.13 -
McAfee 5613 2009.05.12 -
McAfee+Artemis 5613 2009.05.12 -
[B]McAfee-GW-Edition 6.7.6 2009.05.12 Trojan.Crypt.XPACK.Gen
Microsoft 1.4602 2009.05.12 VirTool:Win32/Obfuscator.FH[/B]
NOD32 4069 2009.05.13 -
Norman 6.01.05 2009.05.12 -
nProtect 2009.1.8.0 2009.05.13 -
Panda 10.0.0.14 2009.05.12 -
PCTools 4.4.2.0 2009.05.07 -
[B]Prevx 3.0 2009.05.13 High Risk Cloaked Malware[/B]
Rising 21.29.20.00 2009.05.13 -
Sophos 4.41.0 2009.05.13 -
Sunbelt 3.2.1858.2 2009.05.12 -
Symantec 1.4.4.12 2009.05.13 -
TheHacker 6.3.4.1.325 2009.05.12 -
TrendMicro 8.950.0.1092 2009.05.13 -
[B]VBA32 3.12.10.5 2009.05.13 suspected of Malware-Cryptor.Win32.General.3[/B]
ViRobot 2009.5.12.1731 2009.05.12 -
VirusBuster 4.6.5.0 2009.05.12 -[/QUOTE]
20.05.2009, 16:32
senyak

Файл Jimm2009.jar получен 2009.05.20 14:20:05 (CET)
Текущий статус: закончено
Результат: 10/40 (25%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.20 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.20 -
AntiVir 7.9.0.168 2009.05.20 -
[B]Antiy-AVL 2.0.3.1 2009.05.20 Trojan/J2ME.Swapi[/B]
Authentium 5.1.2.4 2009.05.19 -
[B]Avast 4.8.1335.0 2009.05.19 Other:Malware-gen
AVG 8.5.0.336 2009.05.20 Java/Swapi[/B]
BitDefender 7.2 2009.05.20 -
CAT-QuickHeal 10.00 2009.05.20 -
ClamAV 0.94.1 2009.05.20 -
Comodo 1157 2009.05.08 -
[B]DrWeb 5.0.0.12182 2009.05.20 Java.SmsFlood[/B]
eSafe 7.0.17.0 2009.05.19 -
eTrust-Vet 31.6.6513 2009.05.20 -
F-Prot 4.4.4.56 2009.05.19 -
[B]F-Secure 8.0.14470.0 2009.05.20 Trojan-SMS.J2ME.Swapi.n
Fortinet 3.117.0.0 2009.05.20 Java/Swapi.N!tr
GData 19 2009.05.20 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.05.20 Trojan-SMS[/B]
K7AntiVirus 7.10.739 2009.05.19 -
[B]Kaspersky 7.0.0.125 2009.05.20 Trojan-SMS.J2ME.Swapi.n[/B]
McAfee 5620 2009.05.19 -
McAfee+Artemis 5620 2009.05.19 -
McAfee-GW-Edition 6.7.6 2009.05.20 -
Microsoft 1.4602 2009.05.20 -
NOD32 4090 2009.05.20 -
Norman 6.01.05 2009.05.19 -
nProtect 2009.1.8.0 2009.05.20 -
Panda 10.0.0.14 2009.05.19 -
PCTools 4.4.2.0 2009.05.20 -
Prevx 3.0 2009.05.20 -
Rising 21.30.20.00 2009.05.20 -
Sophos 4.41.0 2009.05.20 -
Sunbelt 3.2.1858.2 2009.05.19 -
Symantec 1.4.4.12 2009.05.20 -
TheHacker 6.3.4.1.328 2009.05.20 -
TrendMicro 8.950.0.1092 2009.05.20 -
VBA32 3.12.10.5 2009.05.20 -
ViRobot 2009.5.20.1743 2009.05.20 -
VirusBuster 4.6.5.0 2009.05.19 -[/QUOTE]
Дополнительная информация
File size: 135727 bytes
MD5...: 847b555a716a79e9d13ffbee11886fda
SHA1..: 68093505115ee5e546f94ccf533753058d9ba106
SHA256: a1b8af6c3580886ae0aaedfcc417aaa99a95736f9e613519bbb9f0bdd90fef98
SHA512: 4668e4dde6a2ad57ba9cf177a7094175fc5641de5f356a81c3261acfec4b0fd0
65e5190f385b5327c3b8331c3253e249d7df816eeb15180aa6dbde74caf8b362
ssdeep: 3072:EYzNg2B5XHj04ANArHJ+ga5h90VX0KgblXQcjkVtr4wk7fjrA:RzNRB5lAi
rp+garRKOdljkVd4wkDPA
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл Anon_SMS.jar получен 2009.05.20 14:20:12 (CET)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.20 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.20 -
[B]AntiVir 7.9.0.168 2009.05.20 JAVA/SMS.Konov.e
Antiy-AVL 2.0.3.1 2009.05.20 Trojan/J2ME.Konov[/B]
Authentium 5.1.2.4 2009.05.19 -
[B]Avast 4.8.1335.0 2009.05.19 Other:Malware-gen
AVG 8.5.0.336 2009.05.20 Java/SMS.A[/B]
BitDefender 7.2 2009.05.20 -
CAT-QuickHeal 10.00 2009.05.20 -
[B]ClamAV 0.94.1 2009.05.20 Trojan.J2ME[/B]
Comodo 1157 2009.05.08 -
[B]DrWeb 5.0.0.12182 2009.05.20 Java.SMSSend.18[/B]
eSafe 7.0.17.0 2009.05.19 -
eTrust-Vet 31.6.6513 2009.05.20 -
F-Prot 4.4.4.56 2009.05.19 -
[B]F-Secure 8.0.14470.0 2009.05.20 Trojan-SMS.J2ME.Konov.e[/B]
Fortinet 3.117.0.0 2009.05.20 -
[B]GData 19 2009.05.20 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.05.20 Trojan-SMS[/B]
K7AntiVirus 7.10.739 2009.05.19 -
[B]Kaspersky 7.0.0.125 2009.05.20 Trojan-SMS.J2ME.Konov.e[/B]
McAfee 5620 2009.05.19 -
McAfee+Artemis 5620 2009.05.19 -
[B]McAfee-GW-Edition 6.7.6 2009.05.20 Java.SMS.Konov.e[/B]
Microsoft 1.4602 2009.05.20 -
[B]NOD32 4090 2009.05.20 J2ME/TrojanSMS.Konov.E[/B]
Norman 6.01.05 2009.05.19 -
nProtect 2009.1.8.0 2009.05.20 -
Panda 10.0.0.14 2009.05.19 -
PCTools 4.4.2.0 2009.05.20 -
Prevx 3.0 2009.05.20 -
Rising 21.30.20.00 2009.05.20 -
Sophos 4.41.0 2009.05.20 -
Sunbelt 3.2.1858.2 2009.05.19 -
[B]Symantec 1.4.4.12 2009.05.20 Trojan Horse[/B]
TheHacker 6.3.4.1.328 2009.05.20 -
TrendMicro 8.950.0.1092 2009.05.20 -
VBA32 3.12.10.5 2009.05.20 -
ViRobot 2009.5.20.1743 2009.05.20 -
VirusBuster 4.6.5.0 2009.05.19 -[/QUOTE]
Дополнительная информация
File size: 2370 bytes
MD5...: 7b72a43b3c46b0070b9e3c2e210c02e6
SHA1..: 727cb63b4586e31430ba79081bb1d8ad389f61eb
SHA256: b0c224c1dbbf29ddbc3be13a40acad567105e4652f9885ab8ad596c9ba851e17
SHA512: 98b4d5e244e333c02f76b37bb3063887fc87eb880c39b56c58e34eb219c30659
1454833155e4e249919e27dc1d85563e40936cf5cdc404bf930593c1680d6b4c
ssdeep: 48:51FTQo0tOURs9y3VeiTEzrTnHOCmmJwLnDf0eZGz:XFTiOURs9qVeiT6THmX3
9ZGz
PEiD..: -
TrID..: File type identification
Java Archive (78.2%)
ZIP compressed archive (21.5%)
Sybase iAnywhere database files (0.1%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
21.05.2009, 16:54
Black_N

Файл Tinstall.rar получен 2009.05.21 14:50:31 (CET)
Текущий статус: закончено
[B]Результат: 3/40 (7.5%) [/B]

[QUOTE]Печать результатов Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.21 -
AhnLab-V3 5.0.0.2 2009.05.21 -
AntiVir 7.9.0.168 2009.05.21 -
Antiy-AVL 2.0.3.1 2009.05.21 -
Authentium 5.1.2.4 2009.05.20 -
Avast 4.8.1335.0 2009.05.20 -
AVG 8.5.0.339 2009.05.21 -
BitDefender 7.2 2009.05.21 -
CAT-QuickHeal 10.00 2009.05.21 -
ClamAV 0.94.1 2009.05.21 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.21 -
[B]eSafe 7.0.17.0 2009.05.19 Suspicious File[/B]
eTrust-Vet 31.6.6516 2009.05.21 -
F-Prot 4.4.4.56 2009.05.20 -
F-Secure 8.0.14470.0 2009.05.21 -
Fortinet 3.117.0.0 2009.05.21 -
GData 19 2009.05.21 -
Ikarus T3.1.1.49.0 2009.05.21 -
K7AntiVirus 7.10.739 2009.05.19 -
Kaspersky 7.0.0.125 2009.05.21 -
McAfee 5621 2009.05.20 -
McAfee+Artemis 5621 2009.05.20 -
McAfee-GW-Edition 6.7.6 2009.05.21 -
Microsoft 1.4701 2009.05.21 -
NOD32 4093 2009.05.21 -
Norman 6.01.05 2009.05.20 -
nProtect 2009.1.8.0 2009.05.21 -
Panda 10.0.0.14 2009.05.21 -
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.21 Medium Risk Malware[/B]
Rising 21.30.32.00 2009.05.21 -
Sophos 4.42.0 2009.05.21 -
Sunbelt 3.2.1858.2 2009.05.20 -
[B]Symantec 1.4.4.12 2009.05.21 Suspicious.MH690.A[/B]
TheHacker 6.3.4.1.328 2009.05.20 -
TrendMicro 8.950.0.1092 2009.05.21 -
VBA32 3.12.10.5 2009.05.21 -
ViRobot 2009.5.21.1745 2009.05.21 -
VirusBuster 4.6.5.0 2009.05.20 -[/QUOTE]
Дополнительная информация
File size: 13774 bytes
MD5...: 64551334cbef11183bb98a7c00ebda27
SHA1..: f2da6532b2657e8e1563d1e9157f1bdada9ff335
SHA256: 77bfb014a11656ffd832122a19d5d15593f0e57d37fbc12db80f48ee874457ee
SHA512: 9040f381731cb41a68890dd80790dc3fe2193f478096f95c18fb1af9799e6a8d
48773eaca21f924d7e2b7e39a90e7a34a45f1e9cc6c659f0e3bd898df233ded9
ssdeep: 384:Gb7aS4IgtruycAU+YPb/s2MnSCnXDG4/AwgLiyG+2v:eeSsVrcAU+YP2nvTZ
gLC
PEiD..: -
TrID..: File type identification
RAR Archive (83.3%)
REALbasic Project (16.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=9A9737B700EADB61443C00DB987BBD00AE99F0F7' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=9A9737B700EADB61443C00DB987BBD00AE99F0F7</a>
packers (Kaspersky): ASPack
packers (F-Prot): Aspack
23.05.2009, 19:53
senyak

Файл clips01505.zip получен 2009.05.23 15:43:56 (UTC)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.23 Trojan-Dropper.Win32.Wlord!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.23 -
[B]AntiVir 7.9.0.168 2009.05.23 DR/Delphi.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.22 -
Authentium 5.1.2.4 2009.05.22 -
Avast 4.8.1335.0 2009.05.23 -
AVG 8.5.0.339 2009.05.23 -
[B]BitDefender 7.2 2009.05.23 Gen:Trojan.Heur.41C13E0B4A[/B]
CAT-QuickHeal 10.00 2009.05.23 -
ClamAV 0.94.1 2009.05.22 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.23 -
eSafe 7.0.17.0 2009.05.21 -
eTrust-Vet 31.6.6519 2009.05.23 -
F-Prot 4.4.4.56 2009.05.22 -
F-Secure 8.0.14470.0 2009.05.23 -
Fortinet 3.117.0.0 2009.05.23 -
[B]GData 19 2009.05.23 Gen:Trojan.Heur.41C13E0B4A
Ikarus T3.1.1.49.0 2009.05.23 Trojan-Dropper.Win32.Wlord[/B]
K7AntiVirus 7.10.741 2009.05.21 -
Kaspersky 7.0.0.125 2009.05.23 -
McAfee 5624 2009.05.23 -
[B]McAfee+Artemis 5624 2009.05.23 Artemis!73272D10220F
McAfee-GW-Edition 6.7.6 2009.05.23 Trojan.Dropper.Delphi.Gen[/B]
Microsoft 1.4701 2009.05.23 -
NOD32 4098 2009.05.22 -
Norman 6.01.05 2009.05.22 -
nProtect 2009.1.8.0 2009.05.23 -
Panda 10.0.0.14 2009.05.23 -
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.23 High Risk Cloaked Malware[/B]
Rising 21.30.52.00 2009.05.23 -
Sophos 4.42.0 2009.05.23 -
Sunbelt 3.2.1858.2 2009.05.23 -
Symantec 1.4.4.12 2009.05.23 -
TheHacker 6.3.4.3.331 2009.05.22 -
TrendMicro 8.950.0.1092 2009.05.23 -
VBA32 3.12.10.5 2009.05.23 -
ViRobot 2009.5.23.1749 2009.05.23 -
VirusBuster 4.6.5.0 2009.05.23 -[/QUOTE]
Дополнительная информация
File size: 196280 bytes
MD5...: e094072a35288f8757aef805ae97a322
SHA1..: 6fe9a394211a44f604a34b0025796cf7e0ebd716
SHA256: f45ed9dd261d720aeada27bd2befec9e3c489106d5de20a384f846332d20f775
SHA512: 319527d80c8b34a65b3757524d131fafcb40fc7c1bf419e9575204e49c41acd6
bf344e98116976978ae3724ae0345d5db0c9a5fed74d88f8a327b3c204daa05c
ssdeep: 3072:EX7Tu5mqLPx+VC49WdvJOjiBTnh6DciK/2A4AYVwhYq8xV39Iucx51SRYm9
u:MTuxLPx+MuqJOjiBbEDBK+A48hp8xbE3
PEiD..: -
TrID..: File type identification
ZIP compressed archive (100.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
25.05.2009, 15:41
senyak

Файл nazvanie.jar получен 2009.05.25 09:36:12 (UTC)
Текущий статус: закончено
Результат: 11/39 (28.21%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.25 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.25 -
[B]AntiVir 7.9.0.168 2009.05.25 JAVA/Boxer.1
Antiy-AVL 2.0.3.1 2009.05.25 Trojan/J2ME.Boxer[/B]
Authentium 5.1.2.4 2009.05.24 -
[B]Avast 4.8.1335.0 2009.05.24 Other:Malware-gen[/B]
AVG 8.5.0.339 2009.05.24 -
BitDefender 7.2 2009.05.25 -
CAT-QuickHeal 10.00 2009.05.23 -
ClamAV 0.94.1 2009.05.25 -
[B]Comodo 1198 2009.05.25 Unclassified Malware[/B]
DrWeb 5.0.0.12182 2009.05.25 -
eSafe 7.0.17.0 2009.05.24 -
eTrust-Vet 31.6.6519 2009.05.23 -
F-Prot 4.4.4.56 2009.05.24 -
[B]F-Secure 8.0.14470.0 2009.05.25 Trojan-SMS.J2ME.Boxer.i[/B]
Fortinet 3.117.0.0 2009.05.25 -
[B]GData 19 2009.05.25 Other:Malware-gen
Ikarus T3.1.1.49.0 2009.05.25 Trojan-SMS[/B]
K7AntiVirus 7.10.741 2009.05.21 -
[B]Kaspersky 7.0.0.125 2009.05.25 Trojan-SMS.J2ME.Boxer.i[/B]
McAfee 5625 2009.05.24 -
McAfee+Artemis 5625 2009.05.24 -
[B]McAfee-GW-Edition 6.7.6 2009.05.25 Java.Boxer.1[/B]
Microsoft 1.4701 2009.05.25 -
NOD32 4100 2009.05.25 -
Norman 6.01.05 2009.05.22 -
nProtect 2009.1.8.0 2009.05.25 -
Panda 10.0.0.14 2009.05.24 -
Prevx 3.0 2009.05.25 -
Rising 21.31.02.00 2009.05.25 -
Sophos 4.42.0 2009.05.25 -
Sunbelt 3.2.1858.2 2009.05.24 -
Symantec 1.4.4.12 2009.05.25 -
TheHacker 6.3.4.3.331 2009.05.25 -
[B]TrendMicro 8.950.0.1092 2009.05.25 TROJ_BOXER.B[/B]
VBA32 3.12.10.5 2009.05.25 -
ViRobot 2009.5.25.1750 2009.05.25 -
VirusBuster 4.6.5.0 2009.05.24 -[/QUOTE]
Дополнительная информация
File size: 17383 bytes
MD5...: dc617d7a363fb020e7eeb102a9362b9a
SHA1..: ce5f7557876c5dd89a556dc670340cb4aad54df6
SHA256: 2b8cc58e9228189f91e40fba7d25f80ada0887247b62ea22a23c1ef4a9c3fcd6
SHA512: 9f8ecbe803ccaf53ad504139de2a22c1773aae9f5979fb9988b9784e98a10803
b735342cfc6ec994e457f2113256abd9fb8efd86e03406a6790ec5956b2a6b21
ssdeep: 384:kj0werUSps4uz+Y9Xg5nwiYxRtOM9XzSkC/SZtPBJB5tFOk5b:kAA94uz+Yl
gFoOrktpX5POk5b
PEiD..: -
TrID..: File type identification
Java Archive (78.3%)
ZIP compressed archive (21.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

[size="1"][color="#666686"][B][I]Добавлено через 1 час 59 минут[/I][/B][/color][/size]

Файл JimmBest.jar получен 2009.05.25 11:37:03 (UTC)
Текущий статус: закончено
Результат: 4/40 (10%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.25 Trojan-SMS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.25 -
AntiVir 7.9.0.168 2009.05.25 -
Antiy-AVL 2.0.3.1 2009.05.25 -
Authentium 5.1.2.4 2009.05.25 -
Avast 4.8.1335.0 2009.05.24 -
AVG 8.5.0.339 2009.05.25 -
BitDefender 7.2 2009.05.25 -
CAT-QuickHeal 10.00 2009.05.25 -
ClamAV 0.94.1 2009.05.25 -
Comodo 1199 2009.05.25 -
DrWeb 5.0.0.12182 2009.05.25 -
eSafe 7.0.17.0 2009.05.24 -
eTrust-Vet 31.6.6519 2009.05.23 -
F-Prot 4.4.4.56 2009.05.25 -
[B]F-Secure 8.0.14470.0 2009.05.25 Trojan-SMS.J2ME.Konov.j[/B]
Fortinet 3.117.0.0 2009.05.25 -
GData 19 2009.05.25 -
[B]Ikarus T3.1.1.49.0 2009.05.25 Trojan-SMS[/B]
K7AntiVirus 7.10.741 2009.05.21 -
[B]Kaspersky 7.0.0.125 2009.05.25 Trojan-SMS.J2ME.Konov.j[/B]
McAfee 5625 2009.05.24 -
McAfee+Artemis 5625 2009.05.24 -
McAfee-GW-Edition 6.7.6 2009.05.25 -
Microsoft 1.4701 2009.05.25 -
NOD32 4100 2009.05.25 -
Norman 6.01.05 2009.05.22 -
nProtect 2009.1.8.0 2009.05.25 -
Panda 10.0.0.14 2009.05.24 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.25 -
Rising 21.31.03.00 2009.05.25 -
Sophos 4.42.0 2009.05.25 -
Sunbelt 3.2.1858.2 2009.05.24 -
Symantec 1.4.4.12 2009.05.25 -
TheHacker 6.3.4.3.331 2009.05.25 -
TrendMicro 8.950.0.1092 2009.05.25 -
VBA32 3.12.10.5 2009.05.25 -
ViRobot 2009.5.25.1751 2009.05.25 -
VirusBuster 4.6.5.0 2009.05.24 -[/QUOTE]
Дополнительная информация
File size: 4577 bytes
MD5...: 81cf852bd04aa272b359a013d369063b
SHA1..: ccc5533f188b892c28b9668f58e4bc60619ae660
SHA256: 7efff33d0745bd4e62339c40b75838aa6bb38b4cc245051761078bbe23bd4306
ssdeep: 96:sFTiOURs9qVeiTofJd1xfOrEepznEWN7OdErQKL/2gde:sZ5UdeiTofFtsfGW
SgtC
PEiD..: -
TrID..: File type identification
Java Archive (78.3%)
ZIP compressed archive (21.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
28.05.2009, 01:00
senyak

Понеслась :)

Файл 0.pdf получен 2009.05.27 19:54:20 (UTC)
Текущий статус: закончено
Результат: 13/40 (32.5%)

[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Exploit.PDF-JS!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 HEUR/HTML.Malware[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
[B]Authentium 5.1.2.4 2009.05.27 PDF/Obfusc.B!Camelot
Avast 4.8.1335.0 2009.05.27 JS:Packed-BC
AVG 8.5.0.339 2009.05.27 Exploit.PDF
BitDefender 7.2 2009.05.27 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 Exploit:JS/Pidief.ET[/B]
Fortinet 3.117.0.0 2009.05.27 -
[B]GData 19 2009.05.27 Exploit.PDF-JS.Gen[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 Exploit.JS.Pdfka.kj[/B]
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
[B]McAfee-GW-Edition 6.7.6 2009.05.27 Heuristic.HTML.Malware[/B]
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 Mal/PdfEx-C
Sunbelt 3.2.1858.2 2009.05.27 Exploit.PDF-JS.Gen (v)
Symantec 1.4.4.12 2009.05.27 Downloader[/B]
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 42693 bytes
MD5...: 7b49bb03b7bd72047edde2c06fe4e341
SHA1..: 9fa29089fb206b1362e5740b6399f076cb7cfb4e
SHA256: 400022caa022ab94ee215079411973157421444ccf05c117d3d2593e320265c0
SHA512: 7d9c6d8152f205351ba5638928598a61361924efa37f3d3777b1fc10b4238891
4c183d1dd641ab6782961e3c988ab10ae0a82e04805bce253c154053f9119bfa
ssdeep: 768:6l43YiOEH1ZTAu3fxZLdzyN/egXVuhYmQRQ+2AWJ/gvQht:sDkG4yN/eIyYd
RO
PEiD..: -
TrID..: File type identification
Adobe Portable Document Format (50.0%)
MATLAB program (50.0%)
PEInfo: -

Файл 0.swf получен 2009.05.27 19:54:34 (UTC)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Exploit.SWF!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
AntiVir 7.9.0.168 2009.05.27 -
Antiy-AVL 2.0.3.1 2009.05.27 -
[B]Authentium 5.1.2.4 2009.05.27 SWF/Obfusc.A!Camelot[/B]
Avast 4.8.1335.0 2009.05.27 -
AVG 8.5.0.339 2009.05.27 -
[B]BitDefender 7.2 2009.05.27 Exploit.SWF.Gen[/B]
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 Trojan-Downloader:W32/Swif.F[/B]
Fortinet 3.117.0.0 2009.05.27 -
[B]GData 19 2009.05.27 Exploit.SWF.Gen[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 Exploit.SWF.Agent.ar[/B]
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
McAfee-GW-Edition 6.7.6 2009.05.27 -
[B]Microsoft 1.4701 2009.05.27 TrojanDownloader:Win32/Swif.gen!A[/B]
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 Troj/SWFDlr-K[/B]
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 16621 bytes
MD5...: cfc5c0c52972344850dac981c56305a5
SHA1..: b109d84c82231823b9c7e76f790cd4a93894c204
SHA256: 67ec13a5cd1c66e369782ee160435953ddade9b65de972d254f387b32f72f7a3
SHA512: 026f33d8a5b9bade43529261df84902acb4270ed750d26a54e3965b9cc7003b1
935da1b9efa4dacc8e97b32b38a7eaeb202d26ed2a69fcb1a6d7d4922857eb57
ssdeep: 384:4MUXmD/Cokm1coEe8OYildFcZNlzh6dWh7lQacxpRRgD/9MKQb5:4r0Cmyo3
8OYiljOlwdW/QN7w1Mn
PEiD..: -
TrID..: File type identification
Macromedia Flash Player Compressed Movie (100.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set
-
packers (Kaspersky): Swf2Swc

Файл 23.exe получен 2009.05.27 20:01:18 (UTC)
Текущий статус: закончено
Результат: 17/40 (42.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Trojan.Win32.Alureon!IK
AhnLab-V3 5.0.0.2 2009.05.27 Dropper/Rootkit.98816
AntiVir 7.9.0.168 2009.05.27 TR/Drop.Alureon.qxh[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
[B]Avast 4.8.1335.0 2009.05.27 Win32:Rootkit-gen
AVG 8.5.0.339 2009.05.27 Agent_r.NU[/B]
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
[B]Comodo 1207 2009.05.27 TrojWare.Win32.Trojan.Agent.Gen[/B]
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
[B]eTrust-Vet 31.6.6524 2009.05.27 Win32/Alureon.ABO[/B]
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 Backdoor.Win32.Agent.agyf[/B]
Fortinet 3.117.0.0 2009.05.27 -
[B]GData 19 2009.05.27 Win32:Rootkit-gen[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 Backdoor.Win32.Agent.agyf[/B]
McAfee 5628 2009.05.27 -
[B]McAfee+Artemis 5628 2009.05.27 Artemis!8CF2CD55C2FE
McAfee-GW-Edition 6.7.6 2009.05.27 Trojan.Drop.Alureon.qxh[/B]
Microsoft 1.4701 2009.05.27 -
[B]NOD32 4109 2009.05.27 Win32/Rootkit.Agent.NIA[/B]
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
[B]Panda 10.0.0.14 2009.05.27 Suspicious file[/B]
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 Medium Risk Malware[/B]
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 Mal/Alureon-D[/B]
Sunbelt 3.2.1858.2 2009.05.27 -
[B]Symantec 1.4.4.12 2009.05.27 Hacktool.Rootkit[/B]
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 98816 bytes
MD5...: 8cf2cd55c2fe1b0d2550262b1fc0366f
SHA1..: 8671aa2c7dd2cf6ab6e0f5191a386565521310f9
SHA256: 2880181b8c04890b0d5fd23a95f8fac7cc72a933b55bab43358db88d03b0b929
ssdeep: 3072:IRJVhV7P5fjmAaHws/VfvCaINQ9DaGSXNiA2g7u:GJVhV7eHwcCaIe9D7St
v7u
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

Файл 52hxw.exe получен 2009.05.27 20:04:04 (UTC)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.27 -
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 ADSPY/Baidu.2[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
[B]AVG 8.5.0.339 2009.05.27 Generic3.BKW[/B]
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
[B]ClamAV 0.94.1 2009.05.27 Adware.Baidu-2
Comodo 1207 2009.05.27 Unclassified Malware
DrWeb 5.0.0.12182 2009.05.27 DLOADER.Trojan[/B]
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
F-Secure 8.0.14470.0 2009.05.27 -
[B]Fortinet 3.117.0.0 2009.05.27 Misc/PUP[/B]
GData 19 2009.05.27 -
Ikarus T3.1.1.57.0 2009.05.27 -
[B]K7AntiVirus 7.10.746 2009.05.27 Trojan.Win32.Malware.3[/B]
Kaspersky 7.0.0.125 2009.05.27 -
[B]McAfee 5628 2009.05.27 potentially unwanted program Generic PUP
McAfee+Artemis 5628 2009.05.27 potentially unwanted program Generic PUP
McAfee-GW-Edition 6.7.6 2009.05.27 Ad-Spyware.Baidu.2[/B]
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
[B]Panda 10.0.0.14 2009.05.27 Adware/BaiduBar[/B]
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 Medium Risk Malware[/B]
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 Baidu Bar
Sunbelt 3.2.1858.2 2009.05.27 Adware.Bdsearch[/B]
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
[B]VirusBuster 4.6.5.0 2009.05.27 Adware.BaiduSobar.E[/B][/QUOTE]
Дополнительная информация
File size: 2708296 bytes
MD5...: 86cab3dc8b9189339f43ab6a2b590d74
SHA1..: 91db4e00aa6068b7042e8bd8dae5ff748f6c642d
SHA256: 17f5ee18c777c489a1ebf1c9a94a7a9aeea21f891667bf3e6acfacfce4c5a20b
ssdeep: 49152:A3GAVjO+oXyg7fBZ5NVG8OtqcxnrAZldIvmDdih5XUXjJLdpRszF74UDgD
jYczd0:IGZ/XpfBZ5TwFAZL1Jg5EzJLNszwhddO
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)

Файл aa1.exe получен 2009.05.27 20:05:26 (UTC)
Текущий статус: закончено
Результат: 27/39 (69.24%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Trojan-PWS.Win32.LdPinch!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 TR/Crypt.XDR.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
[B]Authentium 5.1.2.4 2009.05.27 W32/OnlineGames.CA.gen!Eldorado
Avast 4.8.1335.0 2009.05.27 Win32:Agent-ACMH
AVG 8.5.0.339 2009.05.27 PSW.OnlineGames3.EXT
BitDefender 7.2 2009.05.27 Generic.Onlinegames.14.1C082D5E
CAT-QuickHeal 10.00 2009.05.27 Win32.Backdoor.PcClient.ZA.3[/B]
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
[B]DrWeb 5.0.0.12182 2009.05.27 Trojan.PWS.Wsgame.origin
eSafe 7.0.17.0 2009.05.27 Win32.TRCrypt.Xdr
eTrust-Vet 31.6.6524 2009.05.27 Win32/Gamepass!generic
F-Prot 4.4.4.56 2009.05.27 W32/OnlineGames.CA.gen!Eldorado
Fortinet 3.117.0.0 2009.05.27 W32/OnLineGames.NRD!tr
GData 19 2009.05.27 Generic.Onlinegames.14.1C082D5E[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 Trojan-GameThief.Win32.Magania.beaa
McAfee 5628 2009.05.27 Generic Dropper.eb
McAfee+Artemis 5628 2009.05.27 Generic Dropper.eb
McAfee-GW-Edition 6.7.6 2009.05.27 Trojan.Crypt.XDR.Gen
Microsoft 1.4701 2009.05.27 PWS:Win32/Ldpinch.BY
NOD32 4109 2009.05.27 probably a variant of [/B]Win32/PSW.OnLineGames.NRD
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
[B]Panda 10.0.0.14 2009.05.27 Trj/Lineage.BZE[/B]
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 High Risk Cloaked Malware
Rising 21.31.21.00 2009.05.27 Trojan.PSW.Win32.XYOnline.alv
Sophos 4.42.0 2009.05.27 Mal/Emogen-R
Sunbelt 3.2.1858.2 2009.05.27 Trojan.Win32.Magania.gen (v)
Symantec 1.4.4.12 2009.05.27 Infostealer.Gampass[/B]
TheHacker 6.3.4.3.332 2009.05.26 -
[B]TrendMicro 8.950.0.1092 2009.05.27 Possible_Movly-1[/B]
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
[B]VirusBuster 4.6.5.0 2009.05.27 Trojan.DR.OnlineGames.Gen.118[/B][/QUOTE]
Дополнительная информация
File size: 28267 bytes
MD5...: 4e4cbc72bca5ac242dc88cec079f4d59
SHA1..: 74c22fa962ffcc80eb61666292a8281a0e1265af
SHA256: 9958022e05c985c24a7487e2efb1eb8d121ea439d1f60c5518f22d80394a4953
SHA512: 4124b859bf5f3f1107a1e1aa11ef4761c6b25a6890fb06da3f374d06897b88b8
39015f17207b757515bc2344bff950e0b369b43fdab2bcff0be2637575118f52
ssdeep: 768:b4TnwnQ6v4vsoCm6F15wk9vyQ3FZ3Vq1X:MTnSULCVd99awVqh
PEiD..: UPX 2.90 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)

Файл abb.txt получен 2009.05.27 20:16:10 (UTC)
Текущий статус: закончено
Результат: 7/39 (17.95%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Win32.SuspectCrc!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
AntiVir 7.9.0.168 2009.05.27 -
Antiy-AVL 2.0.3.1 2009.05.27 -
[B]Authentium 5.1.2.4 2009.05.27 W32/FakeAlert.AY.gen!Eldorado[/B]
Avast 4.8.1335.0 2009.05.27 -
[B]AVG 8.5.0.339 2009.05.27 SHeur2.AIAO[/B]
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
[B]F-Prot 4.4.4.56 2009.05.27 W32/FakeAlert.AY.gen!Eldorado[/B]
F-Secure 8.0.14470.0 2009.05.27 -
Fortinet 3.117.0.0 2009.05.27 -
GData 19 2009.05.27 -
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 Backdoor.Win32.Small.ibb[/B]
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
McAfee-GW-Edition 6.7.6 2009.05.27 -
Microsoft 1.4701 2009.05.27 -
[B]NOD32 4109 2009.05.27 a variant of Win32/Kryptik.PQ[/B]
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 High Risk Cloaked Malware[/B]
Rising 21.31.21.00 2009.05.27 -
Sophos 4.42.0 2009.05.27 -
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 40449 bytes
MD5...: 294d022a2c97342c24dbcc98527adc27
SHA1..: 32aa72f46a3b3a4ae0709eabed8f6d1994632c79
SHA256: 452e31c95952af674501a0519e63741568a1a3ba6267abc559b461812d761b70
ssdeep: 384:AGvBwrzjKh7lMPmtaUcyOBWR7+1HIwivSBJ2GB+hnGSAIEfUmWpHlDYjNsju
gPNF:Arrw7lQmthftuHIfvCJ2K0TKPili41
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

Файл Freemasons_featuring_Amanda_Wilso получен 2009.05.27 20:30:51 (UTC)
Текущий статус: закончено
Результат: 4/39 (10.26%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.27 -
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 HEUR/HTML.Malware[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
[B]Avast 4.8.1335.0 2009.05.27 JS:Agent-CK[/B]
AVG 8.5.0.339 2009.05.27 -
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
F-Secure 8.0.14470.0 2009.05.27 -
Fortinet 3.117.0.0 2009.05.27 -
[B]GData 19 2009.05.27 JS:Agent-CK[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
Kaspersky 7.0.0.125 2009.05.27 -
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
[B]McAfee-GW-Edition 6.7.6 2009.05.27 Heuristic.HTML.Malware[/B]
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
Sophos 4.42.0 2009.05.27 -
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 40841 bytes
MD5...: abb461d7af45c80afe27842cfdf809c5
SHA1..: be34553f4e622e180ac546940c6a243befc1bf65
SHA256: 671aaf1b94e5a01a08a9b67c616d139c10a697cb8b4223b08a63305cd6b9b007
ssdeep: 384:qv+yBJ7zLFzufO1tC3OSCEZdSdm6ZvjLdjtEE8O:szuo
PEiD..: -
TrID..: File type identification
Unknown!
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл foto332.rar получен 2009.05.27 20:30:41 (UTC)
Текущий статус: закончено
Результат: 2/39 (5.13%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.27 -
AhnLab-V3 5.0.0.2 2009.05.27 -
AntiVir 7.9.0.168 2009.05.27 -
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
AVG 8.5.0.339 2009.05.27 -
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
F-Secure 8.0.14470.0 2009.05.27 -
[B]Fortinet 3.117.0.0 2009.05.27 W32/SMSer.AL!tr[/B]
GData 19 2009.05.27 -
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
Kaspersky 7.0.0.125 2009.05.27 -
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
McAfee-GW-Edition 6.7.6 2009.05.27 -
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
Sophos 4.42.0 2009.05.27 -
[B]Sunbelt 3.2.1858.2 2009.05.27 Trojan-Dropper.Win32.Smser.al[/B]
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 114919 bytes
MD5...: 2dd6802e5b8cf81010cd02c59df36cc4
SHA1..: 3753eeb7b4517312b132176317aaf386ee91dd25
SHA256: cc2af806d41fd66670cf9365db6adb0789739ae16b82e553f6ed3ab5a1d5ece1
ssdeep: 3072:a3eRwHJ2TuqsO8XwEpaHJJakhbSi8GXtiHge9D69VvdomcjNYW:4+vKqIwA
aHJEE8Ge29szjWW
PEiD..: -
TrID..: File type identification
RAR Archive (83.3%)
REALbasic Project (16.6%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл fx29id2.txt получен 2009.05.27 20:35:19 (UTC)
Текущий статус: закончено
Результат: 4/40 (10%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 PHP.Backdoor.AR!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 PHP/BackDoor.AR[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
AVG 8.5.0.339 2009.05.27 -
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
[B]ClamAV 0.94.1 2009.05.27 PHP.Shell-8[/B]
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
F-Secure 8.0.14470.0 2009.05.27 -
Fortinet 3.117.0.0 2009.05.27 -
GData 19 2009.05.27 -
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
Kaspersky 7.0.0.125 2009.05.27 -
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
[B]McAfee-GW-Edition 6.7.6 2009.05.27 Script.BackDoor.AR[/B]
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
Sophos 4.42.0 2009.05.27 -
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 2162 bytes
MD5...: 8dcad47f3e32e7dc1aee59167e67c601
SHA1..: 90cc34ac169204c4243028f4725565328b4c37e9
SHA256: dc66f84ed821c8a9c4afda5c5af6d137b54f33a0f95b668beca49b039b62c4d7
ssdeep: 48:jVpwFwKyUsmlcAXixgTil+aykydBrMJYjBBNpBf0UVK6fbOLhpPR7:jVpVedi
Fs7el7
PEiD..: -
TrID..: File type identification
Unknown!
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл id.txt получен 2009.05.27 20:37:58 (UTC)
Текущий статус: закончено
Результат: 15/40 (37.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Win32.SuspectCrc!IK
AhnLab-V3 5.0.0.2 2009.05.27 HTML/Phpinfo
AntiVir 7.9.0.168 2009.05.27 SPR/PHP.ID[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
[B]Avast 4.8.1335.0 2009.05.27 PHP:PHPInfo-A
AVG 8.5.0.339 2009.05.27 PHP/BackDoor.H
BitDefender 7.2 2009.05.27 Trojan.Script.55118[/B]
CAT-QuickHeal 10.00 2009.05.27 -
[B]ClamAV 0.94.1 2009.05.27 PHP.Id-14[/B]
[B]Comodo 1207 2009.05.27 TrojWare.PHP.PHPInfo.g[/B]
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 Trojan.PHP.PHPInfo.g[/B]
[B]Fortinet 3.117.0.0 2009.05.27 PHP/Zapchast.YR!tr[/B]
[B]GData 19 2009.05.27 Trojan.Script.55118[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 Trojan.PHP.PHPInfo.g[/B]
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
[B]McAfee-GW-Edition 6.7.6 2009.05.27 Riskware.PHP.ID[/B]
Microsoft 1.4701 2009.05.27 -
[B]NOD32 4109 2009.05.27 PHP/Zapchast.NAI[/B]
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 Mal/PHPInfo-A[/B]
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 1356 bytes
MD5...: 5713ce15eed4cef6c86465a44de708ae
SHA1..: c21003aca5348cc07f37e3d200a4872da4bf8f42
SHA256: ed7c645b31ca5f074f615410d2a7a8f01674e715c0774cd6b3d2aa5e52387a32
ssdeep: 24:2sUftFfvsFh4/vZXOHvSpQvyVu6f2ik6Hev96it//omWN7A3BrSwu5d/dDMuO
H:2sgFnsFeZwSpQvyw6+56immc7A3BrLuw
PEiD..: -
TrID..: File type identification
Unknown!
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл install.exe получен 2009.05.27 20:45:48 (UTC)
Текущий статус: закончено
Результат: 5/40 (12.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.05.27 -
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
AVG 8.5.0.339 2009.05.27 -
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
F-Secure 8.0.14470.0 2009.05.27 -
[B]Fortinet 3.117.0.0 2009.05.27 Misc/SystemSecurity[/B]
GData 19 2009.05.27 -
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
Kaspersky 7.0.0.125 2009.05.27 -
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
[B]McAfee-GW-Edition 6.7.6 2009.05.27 Trojan.Dropper.Gen[/B]
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 Medium Risk Malware[/B]
Rising 21.31.21.00 2009.05.27 -
Sophos 4.42.0 2009.05.27 -
[B]Sunbelt 3.2.1858.2 2009.05.27 SystemSecurity[/B]
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 490804 bytes
MD5...: 2b8d61bd8871cc3f86b213d9fecd9fa5
SHA1..: b5fbe334f5f3f8e292f130cde2cfbd2ce42af580
SHA256: 33941eac3e46f32731f6567a27a91b53e5c51c23376430e74f725bd042402c87
ssdeep: 12288:fkxfm4UQZlEH7CbDDU7funegP/au6m77iy:4+H7CbDDU7megnau6m773
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)

Файл porn-tube.avi.exe получен 2009.05.27 20:46:39 (UTC)
Текущий статус: закончено
Результат: 26/40 (65%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Riskware.FraudTool.Win32.PrivacyCenter!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 DR/FakeAlert.RZ
Antiy-AVL 2.0.3.1 2009.05.27 FraudTool/Win32.PrivacyCenter[/B]
Authentium 5.1.2.4 2009.05.27 -
[B]Avast 4.8.1335.0 2009.05.27 Win32:Adware-gen
AVG 8.5.0.339 2009.05.27 Generic4.EFU
BitDefender 7.2 2009.05.27 Trojan.FakeAlert.BDR[/B]
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
[B]eSafe 7.0.17.0 2009.05.27 Win32.FakeAlert.Db[/B]
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 FraudTool.Win32.PrivacyCenter.co
Fortinet 3.117.0.0 2009.05.27 W32/FakeAlert.DB!tr
GData 19 2009.05.27 Trojan.FakeAlert.BDR[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
[B]Kaspersky 7.0.0.125 2009.05.27 not-a-virus:FraudTool.Win32.PrivacyCenter.co
McAfee 5628 2009.05.27 FakeAlert-DB
McAfee+Artemis 5628 2009.05.27 FakeAlert-DB
McAfee-GW-Edition 6.7.6 2009.05.27 Trojan.Dropper.FakeAlert.RZ
Microsoft 1.4701 2009.05.27 Trojan:Win32/PrivacyCenter
NOD32 4109 2009.05.27 a variant of Win32/Adware.PrivacyComponents[/B]
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
[B]Panda 10.0.0.14 2009.05.27 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 High Risk Cloaked Malware
Rising 21.31.21.00 2009.05.27 Trojan.Win32.FakeVir.is
Sophos 4.42.0 2009.05.27 Mal/FakeAV-AV
Sunbelt 3.2.1858.2 2009.05.27 Privacy components
Symantec 1.4.4.12 2009.05.27 Trojan Horse
TheHacker 6.3.4.3.332 2009.05.26 Adware/Agent.gen
TrendMicro 8.950.0.1092 2009.05.27 Cryp_FakeAV-12
VBA32 3.12.10.6 2009.05.27 Win32.Adware.PrivacyComponents
ViRobot 2009.5.27.1757 2009.05.27 Adware.PrivacyCenter.R.1984945.C[/B]
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 1984945 bytes
MD5...: 99d8fdcb581c11b5b5439b99caf423d6
SHA1..: 85372148766cda6c2aa3192a7fac018c536442b8
SHA256: f96e16540f3dbc815b5894076f80a894b4012dcd23743c4e35559bb9798f6d13
ssdeep: 49152:SfLtxlzvBV2Ag/96v7fD+dHANE8i1JFCGLvEcTIMMdY17V:4xLV2Ag/Uv7
fDPNERUQvx/yY1J
PEiD..: -
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)

Файл update__.exe получен 2009.05.27 20:52:10 (UTC)
Текущий статус: закончено
Результат: 20/40 (50%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 P2P-Worm.Win32.Palevo!IK
AhnLab-V3 5.0.0.2 2009.05.27 Win32/Palevo.worm.184360
AntiVir 7.9.0.168 2009.05.27 Worm/Palevo.eiw[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
AVG 8.5.0.339 2009.05.27 -
[B]BitDefender 7.2 2009.05.27 Gen:Trojan.Heur.B0857A2F5E[/B]
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
[B]Comodo 1207 2009.05.27 UnclassifiedMalware[/B]
DrWeb 5.0.0.12182 2009.05.27 -
[B]eSafe 7.0.17.0 2009.05.27 Win32.TrojanHorse[/B]
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 P2P-Worm.Win32.Palevo.eiw
Fortinet 3.117.0.0 2009.05.27 W32/VB.EDJ!worm.p2p
GData 19 2009.05.27 Gen:Trojan.Heur.B0857A2F5E[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
[B]K7AntiVirus 7.10.746 2009.05.27 P2P-Worm.Win32.Palevo.eiw
Kaspersky 7.0.0.125 2009.05.27 P2P-Worm.Win32.Palevo.eiw[/B]
McAfee 5628 2009.05.27 -
[B]McAfee+Artemis 5628 2009.05.27 Artemis!752C997A56B0
McAfee-GW-Edition 6.7.6 2009.05.27 Worm.Palevo.eiw
Microsoft 1.4701 2009.05.27 Trojan:Win32/VB.QG
NOD32 4109 2009.05.27 a variant of Win32/Injector.OV[/B]
Norman 6.01.05 2009.05.27 -
[B]nProtect 2009.1.8.0 2009.05.27 Worm/W32.Palevo.184360[/B]
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
[B]Prevx 3.0 2009.05.27 Medium Risk Malware[/B]
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 W32/VB-EDJ[/B]
Sunbelt 3.2.1858.2 2009.05.27 -
[B]Symantec 1.4.4.12 2009.05.27 Trojan Horse[/B]
TheHacker 6.3.4.3.332 2009.05.26 -
[B]TrendMicro 8.950.0.1092 2009.05.27 WORM_VB.IQQ[/B]
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 184360 bytes
MD5...: 752c997a56b0b126de6eac328d5f4c29
SHA1..: 55ae0761338115f8f2bbfff681efd3cd7956e1e9
SHA256: eb6312bd3a633c4dc29bd3c6a8ed818034da1f9b619ef71e0beb549c4560dea8
ssdeep: 3072:7ptVr6si1kEZ2dcaIxHhVVmKMCqUGgOKn52eGM:77VmEk2yX5so52eB
PEiD..: -
TrID..: File type identification
Win32 Executable Microsoft Visual Basic 6 (90.9%)
Win32 Executable Generic (6.1%)
Generic Win/DOS Executable (1.4%)
DOS Executable Generic (1.4%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

Файл test.txt получен 2009.05.27 20:52:02 (UTC)
Текущий статус: закончено
Результат: 16/40 (40%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Backdoor.PHP.Small.o!IK
AhnLab-V3 5.0.0.2 2009.05.27 HTML/Xema
AntiVir 7.9.0.168 2009.05.27 BDS/PHP.ali.1[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
[B]AVG 8.5.0.339 2009.05.27 BackDoor.Generic_c.BTI
BitDefender 7.2 2009.05.27 Backdoor.PHP.ALI[/B]
CAT-QuickHeal 10.00 2009.05.27 -
[B]ClamAV 0.94.1 2009.05.27 PHP.Shell-23
Comodo 1207 2009.05.27 Unclassified Malware[/B]
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 Exploit:PHP/Preamble.A[/B]
Fortinet 3.117.0.0 2009.05.27 -
[B]GData 19 2009.05.27 Backdoor.PHP.ALI[/B]
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
Kaspersky 7.0.0.125 2009.05.27 -
McAfee 5628 2009.05.27 -
McAfee+Artemis 5628 2009.05.27 -
[B]McAfee-GW-Edition 6.7.6 2009.05.27 Trojan.Backdoor.PHP.ali.1[/B]
Microsoft 1.4701 2009.05.27 -
[B]NOD32 4109 2009.05.27 PHP/Small.NAC[/B]
Norman 6.01.05 2009.05.27 -
[B]nProtect 2009.1.8.0 2009.05.27 Backdoor.PHP.ALI[/B]
Panda 10.0.0.14 2009.05.27 -
[B]PCTools 4.4.2.0 2009.05.21 PHP.ShellBot.M[/B]
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
[B]Sophos 4.42.0 2009.05.27 Troj/PHPBdoor-A[/B]
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
[B]VBA32 3.12.10.6 2009.05.27 Backdoor.PHP.Small.o[/B]
ViRobot 2009.5.27.1757 2009.05.27 -
[B]VirusBuster 4.6.5.0 2009.05.27 PHP.ShellBot.M[/B][/QUOTE]
Дополнительная информация
File size: 1165 bytes
MD5...: f1a9b4e4b207cd38641061e1b72d4775
SHA1..: 33c02179e53c19e00897fb0c63501acc0a2233e8
SHA256: 0b3eef46d7111939962db133d2e75530fbb7946d92a33195ca6b7f2e1affe43a
ssdeep: 24:kwauoGPmXvuH6dcFTGPmXvuH6dc4H6dcZ1Mpn6+YvKsLKPXVwuHENNTh:bBoC
gMQsCgMQfQu1M5XW0SNl
PEiD..: -
TrID..: File type identification
HyperText Markup Language (100.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set

Файл registrycleanerdoktor.exe получен 2009.05.27 20:53:04 (UTC)
Текущий статус: закончено
Результат: 5/40 (12.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.05.27 Downloader.FraudLoad!IK[/B]
AhnLab-V3 5.0.0.2 2009.05.27 -
[B]AntiVir 7.9.0.168 2009.05.27 DR/FraudLoad.umy[/B]
Antiy-AVL 2.0.3.1 2009.05.27 -
Authentium 5.1.2.4 2009.05.27 -
Avast 4.8.1335.0 2009.05.27 -
AVG 8.5.0.339 2009.05.27 -
BitDefender 7.2 2009.05.27 -
CAT-QuickHeal 10.00 2009.05.27 -
ClamAV 0.94.1 2009.05.27 -
Comodo 1207 2009.05.27 -
DrWeb 5.0.0.12182 2009.05.27 -
eSafe 7.0.17.0 2009.05.27 -
eTrust-Vet 31.6.6524 2009.05.27 -
F-Prot 4.4.4.56 2009.05.27 -
[B]F-Secure 8.0.14470.0 2009.05.27 Rogue:W32/FakeAlert.FK[/B]
Fortinet 3.117.0.0 2009.05.27 -
GData 19 2009.05.27 -
Ikarus T3.1.1.57.0 2009.05.27 -
K7AntiVirus 7.10.746 2009.05.27 -
Kaspersky 7.0.0.125 2009.05.27 -
McAfee 5628 2009.05.27 -
[B]McAfee+Artemis 5628 2009.05.27 Artemis!1D8CF463C1CF
McAfee-GW-Edition 6.7.6 2009.05.27 Trojan.Dropper.FraudLoad.umy[/B]
Microsoft 1.4701 2009.05.27 -
NOD32 4109 2009.05.27 -
Norman 6.01.05 2009.05.27 -
nProtect 2009.1.8.0 2009.05.27 -
Panda 10.0.0.14 2009.05.27 -
PCTools 4.4.2.0 2009.05.21 -
Prevx 3.0 2009.05.27 -
Rising 21.31.21.00 2009.05.27 -
Sophos 4.42.0 2009.05.27 -
Sunbelt 3.2.1858.2 2009.05.27 -
Symantec 1.4.4.12 2009.05.27 -
TheHacker 6.3.4.3.332 2009.05.26 -
TrendMicro 8.950.0.1092 2009.05.27 -
VBA32 3.12.10.6 2009.05.27 -
ViRobot 2009.5.27.1757 2009.05.27 -
VirusBuster 4.6.5.0 2009.05.27 -[/QUOTE]
Дополнительная информация
File size: 2690520 bytes
MD5...: 1d8cf463c1cfddc8692cf7d163af0cf8
SHA1..: 47fa03934acb51a0dfb50771926f94dfb80e4cf4
SHA256: 82b5ec3f2d01ea50a421d1b8c479fc710138377dd1317a3023f331f6d07f9bc6
ssdeep: 49152:h2LKzU5cqDuf6j1eyqmPKpFMOHh61Qn1NFuVmgsH0cKalGM9q2h66M8MMr
:kWzUTu7yhPo1oiFu4gM0ElGM9l76Y
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)

Фух, все
01.06.2009, 16:48
Shu_b

Вложений: 1

Апрель - Май. Что присылали, то и видим ;)
02.06.2009, 11:10
ALEX(XX)

Сегодня с утра выловил на одной рабочей станции. Зараза практически полностью нульсовая, о чём красноречиво говорит вирустотал. Это [B]Лжеантивирус[/B]

Файл pcdefender.exe получен 2009.06.02 06:59:34 (UTC)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.06.02 -
AhnLab-V3 5.0.0.2 2009.06.02 -
AntiVir 7.9.0.180 2009.06.01 -
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
Avast 4.8.1335.0 2009.06.01 -
AVG 8.5.0.339 2009.06.01 -
BitDefender 7.2 2009.06.02 -
[B]CAT-QuickHeal 10.00 2009.06.01 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.06.02 -
Comodo 1232 2009.06.02 -
DrWeb 5.0.0.12182 2009.05.29 -
[B]eSafe 7.0.17.0 2009.06.01 Suspicious File[/B]
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
GData 19 2009.06.02 -
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.749 2009.05.29 -
Kaspersky 7.0.0.125 2009.06.02 -
[B]McAfee 5633 2009.06.01 FakeAlert-CM
McAfee+Artemis 5633 2009.06.01 FakeAlert-CM
McAfee-GW-Edition 6.7.6 2009.05.29 Trojan.LooksLike.Dropper
Microsoft 1.4701 2009.06.02 Trojan:Win32/FakeRean[/B]
NOD32 4121 2009.06.02 -
Norman 6.01.05 2009.06.01 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.01 -
PCTools 4.4.2.0 2009.06.01 -
[B]Prevx 3.0 2009.06.02 Medium Risk Malware[/B]
Rising 21.32.11.00 2009.06.02 -
Sophos 4.42.0 2009.06.02 -
[B]Sunbelt 3.2.1858.2 2009.06.02 FraudTool.Win32.RogueSecurity (v)[/B]
Symantec 1.4.4.12 2009.06.02 -
TheHacker 6.3.4.3.335 2009.06.01 -
TrendMicro 8.950.0.1092 2009.06.02 -
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.2.1764 2009.06.02 -
VirusBuster 4.6.5.0 2009.06.01 -
[/CODE]
Дополнительная информация
File size: 1022976 bytes
MD5...: a1d662f2d031c7d717c94a9b214c35a6
SHA1..: 2e66d58955b2e79a9deef54bff91f4ca10d2fc02
SHA256: d275db28bb974a9efaf6a75245a0e0b7a911e75171029be540fa877b2d9f0a7d
ssdeep: - 
PEiD..: -
TrID..: File type identification Win32 Executable Generic (42.3%) Win32 Dynamic Link Library (generic) (37.6%) Generic Win/DOS Executable (9.9%) DOS Executable Generic (9.9%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x131c timedatestamp.....: 0x44cbedc2 (Sat Jul 29 23:22:42 2006) machinetype.......: 0x14c (I386) ( 5 sections ) name viradd virsiz rawdsiz ntrpy md5 0x1000 0x31275 0x31400 7.98 d29cdbeea790849b73f9f8d28e41db28 .data 0x33000 0xf2309 0xc3400 7.98 75a68078a30499fcd58983d45fc334ef .idata 0x126000 0x160 0x400 1.57 f279fb28c54087e0d2fb2cad16272365 .rsrc 0x127000 0x45bc 0x4800 6.08 df394f8265ba158a267016f61360aff3 .reloc 0x12c000 0x2cd000 0x400 0.19 9c710e752669be110de5ca6a1bfa8588 ( 1 imports ) > kernel32.dll: SetStdHandle, GetModuleHandleA, HeapAlloc, GetCommandLineW, Sleep, GetACP, VirtualProtect, ExitProcess, GetOEMCP, SetConsoleCP, GetStartupInfoA ( 0 exports ) 
PDFiD.: -
RDS...: NSRL Reference Data Set -
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=7FAA6687002AE18F9C080FCDAEAE2D008F8F81FA' target='_blank'>[url]http://info.prevx.com/aboutprogramtext.asp?PX5=7FAA6687002AE18F9C080FCDAEAE2D008F8F81FA</a>[/url]
02.06.2009, 11:12
Shu_b

Файл sysdate.exe получен 2009.06.02 07:06:47 (UTC)

[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.06.02 Trojan.Win32.DNSChanger!IK[/B]
AhnLab-V3 5.0.0.2 2009.06.02 -
[B]AntiVir 7.9.0.180 2009.06.01 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
[B]Avast 4.8.1335.0 2009.06.01 Win32:Trojan-gen {Other}
AVG 8.5.0.339 2009.06.01 Win32/Heur[/B]
BitDefender 7.2 2009.06.02 -
[B]CAT-QuickHeal 10.00 2009.06.01 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.06.02 -
Comodo 1232 2009.06.02 -
DrWeb 5.0.0.12182 2009.05.29 -
[B]eSafe 7.0.17.0 2009.06.01 Win32.TRCrypt.XPACK[/B]
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
[B]GData 19 2009.06.02 Win32:Trojan-gen {Other}[/B]
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.749 2009.05.29 -
Kaspersky 7.0.0.125 2009.06.02 -
McAfee 5633 2009.06.01 -
McAfee+Artemis 5633 2009.06.01 -
[B]McAfee-GW-Edition 6.7.6 2009.05.29 Trojan.Crypt.XPACK.Gen[/B]
Microsoft 1.4701 2009.06.02 -
[B]NOD32 4121 2009.06.02 a variant of Win32/Kryptik.QB[/B]
Norman 6.01.05 2009.06.01 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.01 -
PCTools 4.4.2.0 2009.06.01 -
[B]Prevx 3.0 2009.06.02 High Risk Cloaked Malware
Rising 21.32.11.00 2009.06.02 Packer.Win32.UnkPacker.a [Suspicious][/B]
Sophos 4.42.0 2009.06.02 -
Sunbelt 3.2.1858.2 2009.06.02 -
[B]Symantec 1.4.4.12 2009.06.02 Trojan Horse[/B]
TheHacker 6.3.4.3.335 2009.06.01 -
[B]TrendMicro 8.950.0.1092 2009.06.02 PAK_Generic.001[/B]
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.2.1764 2009.06.02 -
VirusBuster 4.6.5.0 2009.06.01 -[/CODE]
Дополнительная информация
File size: 139264 bytes
MD5...: 98d3d45974892a4a1b13c1e6767f868a

Файл tempo-4778671.tmp получен 2009.06.02 07:15:34 (UTC)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.06.02 -
AhnLab-V3 5.0.0.2 2009.06.02 -
AntiVir 7.9.0.180 2009.06.01 -
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
Avast 4.8.1335.0 2009.06.01 -
AVG 8.5.0.339 2009.06.01 -
BitDefender 7.2 2009.06.02 -
CAT-QuickHeal 10.00 2009.06.01 -
ClamAV 0.94.1 2009.06.02 -
Comodo 1232 2009.06.02 -
DrWeb 5.0.0.12182 2009.05.29 -
eSafe 7.0.17.0 2009.06.01 -
eTrust-Vet 31.6.6534 2009.06.02 -
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
GData 19 2009.06.02 -
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.749 2009.05.29 -
Kaspersky 7.0.0.125 2009.06.02 -
[b]McAfee 5633 2009.06.01 Generic Dropper.cx
McAfee+Artemis 5633 2009.06.01 Generic Dropper.cx
McAfee-GW-Edition 6.7.6 2009.05.29 Trojan.Dldr.LooksLike.CodecPack[/b]
Microsoft 1.4701 2009.06.02 -
NOD32 4121 2009.06.02 -
Norman 6.01.05 2009.06.01 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.01 -
PCTools 4.4.2.0 2009.06.01 -
[b]Prevx 3.0 2009.06.02 Medium Risk Malware[/b]
Rising 21.32.11.00 2009.06.02 -
[B]Sophos 4.42.0 2009.06.02 Mal/EncPk-HW[/B]
Sunbelt 3.2.1858.2 2009.06.02 -
Symantec 1.4.4.12 2009.06.02 -
TheHacker 6.3.4.3.335 2009.06.01 -
TrendMicro 8.950.0.1092 2009.06.02 -
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.2.1764 2009.06.02 -[/CODE]
Дополнительная информация
File size: 114692 bytes
MD5...: 3c79a3c1be05e1691440dba10adea21d
02.06.2009, 14:11
ALEX(XX)

Файл avz00009.dta получен 2009.06.02 10:01:34 (UTC)
[CODE]Антивирус Версия Обновление Результат
[B]a-squared 4.0.0.101 2009.06.02 Trojan-Dropper.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.06.02 -
AntiVir 7.9.0.180 2009.06.02 -
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
[B]Avast 4.8.1335.0 2009.06.01 Win32:Rootkit-gen[/B]
AVG 8.5.0.339 2009.06.01 -
BitDefender 7.2 2009.06.02 -
CAT-QuickHeal 10.00 2009.06.02 -
ClamAV 0.94.1 2009.06.02 -
Comodo 1232 2009.06.02 -
DrWeb 5.0.0.12182 2009.06.02 -
eSafe 7.0.17.0 2009.06.01 -
eTrust-Vet 31.6.6535 2009.06.02 -
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
[B]GData 19 2009.06.02 Win32:Rootkit-gen[/B]
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.749 2009.05.29 -
Kaspersky 7.0.0.125 2009.06.02 -
McAfee 5633 2009.06.01 -
[B]McAfee+Artemis 5633 2009.06.01 Artemis!7D1F4957340B[/B]
McAfee-GW-Edition 6.7.6 2009.05.29 -
Microsoft 1.4701 2009.06.02 -
[B]NOD32 4122 2009.06.02 Win32/Delf.OIJ[/B]
Norman 6.01.05 2009.06.01 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.01 -
PCTools 4.4.2.0 2009.06.01 -
[B]Prevx 3.0 2009.06.02 Medium Risk Malware[/B]
Rising 21.32.12.00 2009.06.02 -
Sophos 4.42.0 2009.06.02 -
Sunbelt 3.2.1858.2 2009.06.02 -
Symantec 1.4.4.12 2009.06.02 -
TheHacker 6.3.4.3.335 2009.06.01 -
TrendMicro 8.950.0.1092 2009.06.02 -
[B]VBA32 3.12.10.6 2009.06.02 Win32.Delf.OIJ[/B]
ViRobot 2009.6.2.1764 2009.06.02 -
VirusBuster 4.6.5.0 2009.06.01 -
[/CODE]

урожайный день...
02.06.2009, 16:30
Shu_b

File kb78415.dll received on 2009.06.02 12:25:06 (UTC)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.0.0.101 2009.06.02 Trojan.Win32.FakeXPA!IK[/B]
AhnLab-V3 5.0.0.2 2009.06.02 -
[B]AntiVir 7.9.0.180 2009.06.02 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
Avast 4.8.1335.0 2009.06.01 -
AVG 8.5.0.339 2009.06.02 -
BitDefender 7.2 2009.06.02 -
CAT-QuickHeal 10.00 2009.06.02 -
ClamAV 0.94.1 2009.06.02 -
Comodo 1233 2009.06.02 -
DrWeb 5.0.0.12182 2009.06.02 -
eSafe 7.0.17.0 2009.06.01 -
eTrust-Vet 31.6.6535 2009.06.02 -
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
GData 19 2009.06.02 -
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.749 2009.05.29 -
Kaspersky 7.0.0.125 2009.06.02 -
McAfee 5633 2009.06.01 -
McAfee+Artemis 5633 2009.06.01 -
[B]McAfee-GW-Edition 6.7.6 2009.05.29 Trojan.Crypt.XPACK.Gen[/B]
Microsoft 1.4701 2009.06.02 -
NOD32 4122 2009.06.02 -
Norman 6.01.05 2009.06.01 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.01 -
PCTools 4.4.2.0 2009.06.02 -
Prevx 3.0 2009.06.02 -
[B]Rising 21.32.13.00 2009.06.02 Packer.Win32.Mian007.a[/B]
Sophos 4.42.0 2009.06.02 -
Sunbelt 3.2.1858.2 2009.06.02 -
Symantec 1.4.4.12 2009.06.02 -
TheHacker 6.3.4.3.335 2009.06.01 -
TrendMicro 8.950.0.1092 2009.06.02 -
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.2.1765 2009.06.02 -
VirusBuster 4.6.5.0 2009.06.01 -[/CODE]
Additional information
File size: 22528 bytes
MD5...: bd73b5d9578bea5e4a2a863538e508e6

File kb78415.exe received on 2009.06.02 12:25:10 (UTC)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.0.0.101 2009.06.02 Trojan-Spy.Win32.Banbra!IK[/B]
AhnLab-V3 5.0.0.2 2009.06.02 -
[B]AntiVir 7.9.0.180 2009.06.02 TR/Crypt.XPACK.Gen[/B]
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
Avast 4.8.1335.0 2009.06.01 -
AVG 8.5.0.339 2009.06.02 -
BitDefender 7.2 2009.06.02 -
CAT-QuickHeal 10.00 2009.06.02 -
ClamAV 0.94.1 2009.06.02 -
Comodo 1233 2009.06.02 -
DrWeb 5.0.0.12182 2009.06.02 -
eSafe 7.0.17.0 2009.06.01 -
eTrust-Vet 31.6.6535 2009.06.02 -
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
GData 19 2009.06.02 -
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.749 2009.05.29 -
Kaspersky 7.0.0.125 2009.06.02 -
McAfee 5633 2009.06.01 -
[B]McAfee+Artemis 5633 2009.06.01 Artemis!25B799D2FFF3
McAfee-GW-Edition 6.7.6 2009.05.29 Trojan.Crypt.XPACK.Gen[/B]
Microsoft 1.4701 2009.06.02 -
NOD32 4122 2009.06.02 -
Norman 6.01.05 2009.06.01 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.01 -
PCTools 4.4.2.0 2009.06.02 -
[B]Prevx 3.0 2009.06.02 High Risk Worm
Rising 21.32.13.00 2009.06.02 Packer.Win32.Mian007.a
Sophos 4.42.0 2009.06.02 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.06.02 -
Symantec 1.4.4.12 2009.06.02 -
TheHacker 6.3.4.3.335 2009.06.01 -
TrendMicro 8.950.0.1092 2009.06.02 -
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.2.1765 2009.06.02 -
VirusBuster 4.6.5.0 2009.06.01 -[/CODE]
Additional information
File size: 59904 bytes
MD5...: 25b799d2fff302caf44e81fb1527a39b
03.06.2009, 00:31
senyak

Файл foto25.gif получен 2009.06.02 20:25:32 (UTC)
Текущий статус: закончено
Результат: 7/40 (17.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.06.02 -
AhnLab-V3 5.0.0.2 2009.06.02 -
[B]AntiVir 7.9.0.180 2009.06.02 HEUR/Crypted.E[/B]
Antiy-AVL 2.0.3.1 2009.06.02 -
Authentium 5.1.2.4 2009.06.02 -
Avast 4.8.1335.0 2009.06.01 -
[B]AVG 8.5.0.339 2009.06.02 Win32/Heur[/B]
BitDefender 7.2 2009.06.02 -
CAT-QuickHeal 10.00 2009.06.02 -
ClamAV 0.94.1 2009.06.02 -
Comodo 1239 2009.06.02 -
DrWeb 5.0.0.12182 2009.06.02 -
eSafe 7.0.17.0 2009.06.02 -
eTrust-Vet 31.6.6535 2009.06.02 -
F-Prot 4.4.4.56 2009.06.02 -
F-Secure 8.0.14470.0 2009.06.02 -
Fortinet 3.117.0.0 2009.06.02 -
GData 19 2009.06.02 -
Ikarus T3.1.1.57.0 2009.06.02 -
K7AntiVirus 7.10.752 2009.06.02 -
[B]Kaspersky 7.0.0.125 2009.06.02 Trojan-Dropper.Win32.Smser.be[/B]
McAfee 5634 2009.06.02 -
[B]McAfee+Artemis 5634 2009.06.02 Artemis!B7A14B281AA2
McAfee-GW-Edition 6.7.6 2009.05.29 Win32.Malware.gen!82 (suspicious)
Microsoft 1.4701 2009.06.02 VirTool:Win32/Obfuscator.FL[/B]
NOD32 4124 2009.06.02 -
Norman 6.01.05 2009.06.02 -
nProtect 2009.1.8.0 2009.06.02 -
Panda 10.0.0.14 2009.06.02 -
PCTools 4.4.2.0 2009.06.02 -
Prevx 3.0 2009.06.02 -
[B]Rising 21.32.14.00 2009.06.02 Packer.Win32.UnkPacker.a [Suspicious][/B]
Sophos 4.42.0 2009.06.02 -
Sunbelt 3.2.1858.2 2009.06.02 -
Symantec 1.4.4.12 2009.06.02 -
TheHacker 6.3.4.3.337 2009.06.02 -
TrendMicro 8.950.0.1092 2009.06.02 -
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.2.1765 2009.06.02 -
VirusBuster 4.6.5.0 2009.06.02 -[/QUOTE]
Дополнительная информация
File size: 242688 bytes
MD5...: b7a14b281aa2317a43f5913c0298839e
SHA1..: 5c8a8caed91c640860bca54cb71e10f89bd3411b
SHA256: 46b7ce26146f8a4eff7694b527dc8a30290b5105863ce6e28f96f6a343b5c5a2
ssdeep: -
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.3%)
Win32 Dynamic Link Library (generic) (34.1%)
Win16/32 Executable Delphi generic (9.3%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)
03.06.2009, 22:41
mseryoga

Файл imerto.exe получен 2009.06.03 17:37:31 (UTC)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.06.03 -
[B]AhnLab-V3 5.0.0.2 2009.06.03 Dropper/Xema.22016.AH[/B]
AntiVir 7.9.0.180 2009.06.03 -
Antiy-AVL 2.0.3.1 2009.06.03 -
Authentium 5.1.2.4 2009.06.03 -
Avast 4.8.1335.0 2009.06.02 -
AVG 8.5.0.339 2009.06.03 -
[B]BitDefender 7.2 2009.06.03 MemScan:Trojan.Generic.1857123[/B]
CAT-QuickHeal 10.00 2009.06.03 -
ClamAV 0.94.1 2009.06.03 -
Comodo 1248 2009.06.03 -
DrWeb 5.0.0.12182 2009.06.03 -
[B]eSafe 7.0.17.0 2009.06.03 Suspicious File[/B]
eTrust-Vet 31.6.6537 2009.06.03 -
F-Prot 4.4.4.56 2009.06.03 -
F-Secure 8.0.14470.0 2009.06.03 -
Fortinet 3.117.0.0 2009.06.03 -
[B]GData 19 2009.06.03 MemScan:Trojan.Generic.1857123[/B]
Ikarus T3.1.1.59.0 2009.06.03 -
K7AntiVirus 7.10.752 2009.06.02 -
Kaspersky 7.0.0.125 2009.06.03 -
McAfee 5635 2009.06.03 -
McAfee+Artemis 5635 2009.06.03 -
McAfee-GW-Edition 6.7.6 2009.06.03 -
Microsoft 1.4701 2009.06.03 -
NOD32 4128 2009.06.03 -
Norman 6.01.09 2009.06.03 -
nProtect 2009.1.8.0 2009.06.03 -
Panda 10.0.0.14 2009.06.03 -
PCTools 4.4.2.0 2009.06.02 -
Prevx 3.0 2009.06.03 -
Rising 21.32.24.00 2009.06.03 -
Sophos 4.42.0 2009.06.03 -
Sunbelt 3.2.1858.2 2009.06.03 -
Symantec 1.4.4.12 2009.06.03 -
TheHacker 6.3.4.3.338 2009.06.03 -
[B]TrendMicro 8.950.0.1092 2009.06.03 PAK_Generic.001[/B]
VBA32 3.12.10.6 2009.06.02 -
ViRobot 2009.6.3.1767 2009.06.03 -[/QUOTE]Дополнительная информация
File size: 24576 bytes
MD5...: 0ef0a1b5a4c2cb6fea48483cad3f0edd
SHA1..: ab56b3797530e36eb67fda5189572575bd5fa42b
SHA256: b1bf3dab51354160ddc559c6112bdf9728c33e1bd250cbf38eb8de78d221a5ce
ssdeep: -
PEiD..: UPX 2.93 [LZMA] -> Markus Oberhumer, Laszlo Molnar & John Reiser
TrID..: File type identification
UPX compressed Win32 Executable (39.5%)
Win32 EXE Yoda's Crypter (34.3%)
Win32 Executable Generic (11.0%)
Win32 Dynamic Link Library (generic) (9.8%)
Generic Win/DOS Executable (2.5%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0xe070
timedatestamp.....: 0x498d2b24 (Sat Feb 07 06:33:08 2009)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
UPX0 0x1000 0x9000 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
UPX1 0xa000 0x5000 0x4e00 7.84 65b70b6ce4e628e9ffd2a6fd4e11a932
.rsrc 0xf000 0x1000 0x1000 4.03 0b9a77dac0dd72b3f540ad5b92609895

( 7 imports )
> KERNEL32.DLL: LoadLibraryA, GetProcAddress, VirtualProtect, VirtualAlloc, VirtualFree, ExitProcess
> COMCTL32.dll: InitCommonControls
> GDI32.dll: SetBkColor
> MSVCRT.dll: memset
> OLE32.dll: CoInitialize
> SHELL32.dll: ShellExecuteExA
> USER32.dll: IsChild

( 0 exports )
PDFiD.: -
RDS...: NSRL Reference Data Set
-
packers (Kaspersky): UPX
packers (F-Prot): UPX_LZMA
04.06.2009, 11:26
ZhIV

Файл comres.dll получен 2009.06.04 07:20:12 (UTC)[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.06.04 Generic.Onlinegames!IK
AhnLab-V3 5.0.0.2 2009.06.04 -
AntiVir 7.9.0.180 2009.06.04 TR/Hijacker.Gen
Antiy-AVL 2.0.3.1 2009.06.03 -
Authentium 5.1.2.4 2009.06.03 W32/OnlineGames.CA.gen!Eldorado
Avast 4.8.1335.0 2009.06.03 Win32:Agent-ACMH
AVG 8.5.0.339 2009.06.03 PSW.Generic7.KYC
BitDefender 7.2 2009.06.04 Generic.Onlinegames.14.07458B75
CAT-QuickHeal 10.00 2009.06.03 -
ClamAV 0.94.1 2009.06.04 -
Comodo 1253 2009.06.04 -
DrWeb 5.0.0.12182 2009.06.04 -
eSafe 7.0.17.0 2009.06.03 Suspicious File
eTrust-Vet 31.6.6538 2009.06.04 -
F-Prot 4.4.4.56 2009.06.03 W32/OnlineGames.CA.gen!Eldorado
F-Secure 8.0.14470.0 2009.06.04 Trojan-GameThief.Win32.Magania.bfdp
Fortinet 3.117.0.0 2009.06.04 W32/OnLineGames.HTE!tr.pws
GData 19 2009.06.04 Generic.Onlinegames.14.07458B75
Ikarus T3.1.1.59.0 2009.06.04 -
K7AntiVirus 7.10.752 2009.06.02 -
Kaspersky 7.0.0.125 2009.06.04 Trojan-GameThief.Win32.Magania.bfdp
McAfee 5635 2009.06.03 PWS-OnlineGames.ek
McAfee+Artemis 5635 2009.06.03 PWS-OnlineGames.ek
McAfee-GW-Edition 6.7.6 2009.06.04 Trojan.Hijacker.Gen
Microsoft 1.4701 2009.06.04 PWS:Win32/OnLineGames.DH
NOD32 4129 2009.06.04 a variant of Win32/PSW.OnLineGames.NRD
Norman 6.01.09 2009.06.03 -
nProtect 2009.1.8.0 2009.06.04 Trojan/W32.Agent.226916
Panda 10.0.0.14 2009.06.03 -
PCTools 4.4.2.0 2009.06.02 -
Prevx 3.0 2009.06.04 High Risk Fraudulent Security Program
Rising 21.32.31.00 2009.06.04 Trojan.PSW.Win32.GameOnline.djj
Sophos 4.42.0 2009.06.04 Mal/Emogen-R
Sunbelt 3.2.1858.2 2009.06.03 Trojan.Win32.Magania.gen (v)
Symantec 1.4.4.12 2009.06.04 Infostealer.Gampass
TheHacker 6.3.4.3.339 2009.06.03 -
TrendMicro 8.950.0.1092 2009.06.04 Mal_OLGM-23
VBA32 3.12.10.6 2009.06.03 -
ViRobot 2009.6.4.1768 2009.06.04 -
VirusBuster 4.6.5.0 2009.06.03 Trojan.OnlineGames.Gen.119[/QUOTE]

Дополнительная информация
File size: 226916 bytes
MD5...: c8d58868be435f7a807c3521de699586
SHA1..: b5d06fce40afcf5c5518083fa9e1be4b12229227
SHA256: 830ed03990bf4689b8c66d23de82b9d9bf1d9047092d56d6e1b649c1034217a1
ssdeep: - 
PEiD..: -
06.06.2009, 20:47
vlad179

Свежая зараза, с утра толком никто не знал, сейчас есть подтверждение от Касперского Trojan.JS.Agent.ahl

all.js 2009.06.06 06:11:51 (UTC)

[QUOTE]a-squared 4.0.0.101 2009.06.04 -
AhnLab-V3 5.0.0.2 2009.06.05 -
AntiVir 7.9.0.180 2009.06.05 [B]HTML/Crypted.Gen[/B]
Antiy-AVL 2.0.3.1 2009.06.05 -
Authentium 5.1.2.4 2009.06.05 -
Avast 4.8.1335.0 2009.06.05 -
AVG 8.5.0.339 2009.06.05 -
BitDefender 7.2 2009.06.06 -
CAT-QuickHeal 10.00 2009.06.05 -
ClamAV 0.94.1 2009.06.06 -
Comodo 1270 2009.06.06 -
DrWeb 5.0.0.12182 2009.06.06 -
eSafe 7.0.17.0 2009.06.04 -
eTrust-Vet 31.6.6542 2009.06.05 -
F-Prot 4.4.4.56 2009.06.05 -
F-Secure 8.0.14470.0 2009.06.05 -
Fortinet 3.117.0.0 2009.06.06 -
GData 19 2009.06.06 -
Ikarus T3.1.1.59.0 2009.06.06 -
K7AntiVirus 7.10.754 2009.06.04 -
Kaspersky 7.0.0.125 2009.06.06 -
McAfee 5637 2009.06.05 -
McAfee+Artemis 5637 2009.06.05 -
McAfee-GW-Edition 6.7.6 2009.06.05 [B]Heuristic.Script.Crypted[/B]
Microsoft 1.4701 2009.06.06 -
NOD32 4134 2009.06.05 -
Norman 6.01.09 2009.06.05 -
nProtect 2009.1.8.0 2009.06.06 -
Panda 10.0.0.14 2009.06.05 -
PCTools 4.4.2.0 2009.06.05 -
Prevx 3.0 2009.06.06 -
Rising 21.32.50.00 2009.06.06 -
Sophos 4.42.0 2009.06.06 -
Sunbelt 3.2.1858.2 2009.06.06 -
Symantec 1.4.4.12 2009.06.06 -
TheHacker 6.3.4.3.340 2009.06.05 -
TrendMicro 8.950.0.1092 2009.06.05 -
VBA32 3.12.10.6 2009.06.06 -
ViRobot 2009.6.5.1771 2009.06.05 -
VirusBuster 4.6.5.0 2009.06.05 -[/QUOTE]

File size: 5402 bytes
MD5...: 03702f59c147f4f05889837693ea6734
SHA1..: e7ebe562cef9d0ad8a2a6d8293e6521cdcbe3515
SHA256: 8d2243f889bf9a457928e431fc9a03f7544d941ff63c914d026fae26fbf1574b
ssdeep: - 
PEiD..: -
TrID..: File type identification file seems to be plain text/ASCII (0.0%)
PEInfo: -
PDFiD.: -
RDS...: NSRL Reference Data Set -
07.06.2009, 18:41
Black Angel

Файл lsasss.exe получен 2009.06.07 14:23:42 (UTC)
Результат: 4/38 (10.53%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.0.0.101 2009.06.04 -
AhnLab-V3 5.0.0.2 2009.06.07 -
AntiVir 7.9.0.180 2009.06.06 -
Antiy-AVL 2.0.3.1 2009.06.05 -
Authentium 5.1.2.4 2009.06.06 -
Avast 4.8.1335.0 2009.06.06 -
AVG 8.5.0.339 2009.06.07 -
BitDefender 7.2 2009.06.07 -
CAT-QuickHeal 10.00 2009.06.06 -
ClamAV 0.94.1 2009.06.07 -
Comodo 1279 2009.06.07 -
[B]DrWeb 5.0.0.12182 2009.06.07 Trojan.Fakealert.4305[/B]
eSafe 7.0.17.0 2009.06.07 -
eTrust-Vet 31.6.6542 2009.06.05 -
F-Prot 4.4.4.56 2009.06.06 -
F-Secure 8.0.14470.0 2009.06.05 -
Fortinet 3.117.0.0 2009.06.07 -
GData 19 2009.06.07 -
Ikarus T3.1.1.59.0 2009.06.07 -
K7AntiVirus 7.10.754 2009.06.04 -
Kaspersky 7.0.0.125 2009.06.07 -
McAfee 5638 2009.06.06 -
McAfee+Artemis 5638 2009.06.06 -
[B]McAfee-GW-Edition 6.7.6 2009.06.07 Trojan.LooksLike.BurnInHell[/B]
[B]Microsoft 1.4701 2009.06.07 Trojan:Win32/FakeXPA[/B]
NOD32 4136 2009.06.07 -
Norman 6.01.09 2009.06.05 -
nProtect 2009.1.8.0 2009.06.07 -
Panda 10.0.0.14 2009.06.07 -
PCTools 4.4.2.0 2009.06.06 -
[B]Prevx 3.0 2009.06.07 Medium Risk Malware[/B]
Rising 21.32.62.00 2009.06.07 -
Sophos 4.42.0 2009.06.07 -
Sunbelt 3.2.1858.2 2009.06.06 -
Symantec 1.4.4.12 2009.06.07 -
TrendMicro 8.950.0.1092 2009.06.06 -
VBA32 3.12.10.6 2009.06.06 -
ViRobot 2009.6.5.1771 2009.06.05 -

Дополнительная информация
File size: 147456 bytes
MD5   : 7d96921eebcc78ba717cfeb4e1dbdf3b
SHA1  : 990d50214c6e3dc660830dce4f2720ae8cd7122e
SHA256: 6a4547ca8aa3634633a23ec4578ab4aa982f54deea263b672378b7b5896ba5b9
[/QUOTE]
09.06.2009, 08:49
senyak

Файл codec.exe получен 2009.06.09 04:32:51 (UTC)
Текущий статус: закончено
Результат: 12/39 (30.77%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.18 2009.06.09 -
AhnLab-V3 5.0.0.2 2009.06.08 -
AntiVir 7.9.0.180 2009.06.08 -
Antiy-AVL 2.0.3.1 2009.06.08 -
Authentium 5.1.2.4 2009.06.08 -
Avast 4.8.1335.0 2009.06.08 -
[B]AVG 8.5.0.339 2009.06.08 SHeur2.AKFZ
BitDefender 7.2 2009.06.09 Gen:Trojan.Heur.6025DA8FFE
CAT-QuickHeal 10.00 2009.06.09 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.06.08 -
Comodo 1289 2009.06.09 -
DrWeb 5.0.0.12182 2009.06.09 -
[B]eSafe 7.0.17.0 2009.06.07 Suspicious File[/B]
eTrust-Vet 31.6.6548 2009.06.08 -
F-Prot 4.4.4.56 2009.06.08 -
F-Secure 8.0.14470.0 2009.06.08 -
Fortinet 3.117.0.0 2009.06.08 -
[B]GData 19 2009.06.09 Gen:Trojan.Heur.6025DA8FFE[/B]
Ikarus T3.1.1.59.0 2009.06.09 -
K7AntiVirus 7.10.757 2009.06.08 -
[B]Kaspersky 7.0.0.125 2009.06.09 Trojan-Downloader.Win32.CodecPack.hze
McAfee 5640 2009.06.08 FakeAlert-CM[/B]
[B]McAfee+Artemis 5640 2009.06.08 FakeAlert-CM[/B]
McAfee-GW-Edition 6.7.6 2009.06.09 -
Microsoft 1.4701 2009.06.08 -
[B]NOD32 4139 2009.06.08 a variant of Win32/Kryptik.SM[/B]
Norman 6.01.09 2009.06.08 -
nProtect 2009.1.8.0 2009.06.09 -
Panda 10.0.0.14 2009.06.08 -
PCTools 4.4.2.0 2009.06.06 -
[B]Prevx 3.0 2009.06.09 Medium Risk Malware Downloade[/B]r
Rising 21.33.10.00 2009.06.09 -
[B]Sophos 4.42.0 2009.06.09 Mal/EncPk-HH
Sunbelt 3.2.1858.2 2009.06.09 VIPRE.Suspicious[/B]
Symantec 1.4.4.12 2009.06.09 -
TheHacker 6.3.4.3.342 2009.06.08 -
TrendMicro 8.950.0.1092 2009.06.09 -
VBA32 3.12.10.6 2009.06.08 -
ViRobot 2009.6.9.1774 2009.06.09 -[/QUOTE]
Дополнительная информация
File size: 109571 bytes
MD5...: 6f518582e2159c94d9eb755878191c5a
SHA1..: 900488b5473f84df5885e201bf2445e7dfc9a926
SHA256: 3cbadaf4d3ab86349460a35eaab5c3a096494aef06d56c54270c546fa430c462
ssdeep: -
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

Файл install.48108.exe получен 2009.06.09 04:33:46 (UTC)
Текущий статус: закончено
Результат: 17/40 (42.5%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.18 2009.06.09 Trojan-Downloader.Win32.CodecPack!IK[/B]
AhnLab-V3 5.0.0.2 2009.06.08 -
[B]AntiVir 7.9.0.180 2009.06.08 TR/Dldr.CodecPack.hza.15
Antiy-AVL 2.0.3.1 2009.06.08 Trojan/Win32.CodecPack[/B]
Authentium 5.1.2.4 2009.06.08 -
Avast 4.8.1335.0 2009.06.08 -
[B]AVG 8.5.0.339 2009.06.08 Downloader.Zlob.ANDE[/B]
BitDefender 7.2 2009.06.09 -
CAT-QuickHeal 10.00 2009.06.09 -
ClamAV 0.94.1 2009.06.08 -
Comodo 1289 2009.06.09 -
[B]DrWeb 5.0.0.12182 2009.06.09 Trojan.DownLoad.38156[/B]
eSafe 7.0.17.0 2009.06.07 -
eTrust-Vet 31.6.6548 2009.06.08 -
F-Prot 4.4.4.56 2009.06.08 -
[B]F-Secure 8.0.14470.0 2009.06.08 Trojan-Downloader.Win32.CodecPack.hza
Fortinet 3.117.0.0 2009.06.08 W32/BQI.HZA!tr.dldr[/B]
GData 19 2009.06.09 -
Ikarus T3.1.1.59.0 2009.06.09 -
K7AntiVirus 7.10.757 2009.06.08 -
[B]Kaspersky 7.0.0.125 2009.06.09 Trojan-Downloader.Win32.CodecPack.hza
McAfee 5640 2009.06.08 Downloader-BQI
McAfee+Artemis 5640 2009.06.08 Downloader-BQI
McAfee-GW-Edition 6.7.6 2009.06.09 Trojan.Dldr.CodecPack.hza.15
Microsoft 1.4701 2009.06.08 TrojanDownloader:Win32/Renos.IP
NOD32 4139 2009.06.08 Win32/TrojanDownloader.FakeAlert.ACE
Norman 6.01.09 2009.06.08 W32/DLoader.OWME[/B]
nProtect 2009.1.8.0 2009.06.09 -
Panda 10.0.0.14 2009.06.08 -
PCTools 4.4.2.0 2009.06.06 -
[B]Prevx 3.0 2009.06.09 Medium Risk Malware[/B]
Rising 21.33.10.00 2009.06.09 -
Sophos 4.42.0 2009.06.09 -
Sunbelt 3.2.1858.2 2009.06.09 -
[B]Symantec 1.4.4.12 2009.06.09 Downloader.MisleadApp[/B]
TheHacker 6.3.4.3.342 2009.06.08 -
[B]TrendMicro 8.950.0.1092 2009.06.09 TROJ_CODECPAC.AM[/B]
VBA32 3.12.10.6 2009.06.08 -
ViRobot 2009.6.9.1774 2009.06.09 -
VirusBuster 4.6.5.0 2009.06.08 -
[/QUOTE]
Дополнительная информация
File size: 96253 bytes
MD5...: 53d1428bfcd60491aa9421cdb0b8b5cd
SHA1..: 8e33282c77a6f1ce5882335b7298958140c5a79c
SHA256: 30cad740bb15d3834eca7b65acc5d39611480d698aa50c8dfbe296ad578ea80e
ssdeep: -
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)

Файл softwarefortubeview.45013.exe получен 2009.06.09 04:39:17 (UTC)
Текущий статус: закончено
Результат: 7/40 (17.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.18 2009.06.09 -
AhnLab-V3 5.0.0.2 2009.06.08 -
AntiVir 7.9.0.180 2009.06.08 -
Antiy-AVL 2.0.3.1 2009.06.08 -
Authentium 5.1.2.4 2009.06.08 -
Avast 4.8.1335.0 2009.06.08 -
[B]AVG 8.5.0.339 2009.06.08 Generic13.BECY[/B]
BitDefender 7.2 2009.06.09 -
CAT-QuickHeal 10.00 2009.06.09 -
ClamAV 0.94.1 2009.06.08 -
Comodo 1289 2009.06.09 -
DrWeb 5.0.0.12182 2009.06.09 -
eSafe 7.0.17.0 2009.06.07 -
eTrust-Vet 31.6.6548 2009.06.08 -
F-Prot 4.4.4.56 2009.06.08 -
F-Secure 8.0.14470.0 2009.06.08 -
Fortinet 3.117.0.0 2009.06.08 -
GData 19 2009.06.09 -
Ikarus T3.1.1.59.0 2009.06.09 -
K7AntiVirus 7.10.757 2009.06.08 -
[B]Kaspersky 7.0.0.125 2009.06.09 Trojan-Downloader.Win32.FraudLoad.epc
McAfee 5640 2009.06.08 Downloader-BQI
McAfee+Artemis 5640 2009.06.08 Downloader-BQI[/B]
McAfee-GW-Edition 6.7.6 2009.06.09 -
Microsoft 1.4701 2009.06.08 -
NOD32 4139 2009.06.08 -
Norman 6.01.09 2009.06.08 -
nProtect 2009.1.8.0 2009.06.09 -
Panda 10.0.0.14 2009.06.08 -
PCTools 4.4.2.0 2009.06.06 -
[B]Prevx 3.0 2009.06.09 High Risk Cloaked Malware[/B]
Rising 21.33.10.00 2009.06.09 -
[B]Sophos 4.42.0 2009.06.09 Mal/FakeAV-AY[/B]
Sunbelt 3.2.1858.2 2009.06.09 -
[B]Symantec 1.4.4.12 2009.06.09 Trojan.Zlob[/B]
TheHacker 6.3.4.3.342 2009.06.08 -
TrendMicro 8.950.0.1092 2009.06.09 -
VBA32 3.12.10.6 2009.06.08 -
ViRobot 2009.6.9.1774 2009.06.09 -
VirusBuster 4.6.5.0 2009.06.08 -[/QUOTE]
Дополнительная информация
File size: 80073 bytes
MD5...: 465502cf982f73cc36fcb489fe842db8
SHA1..: 6de7c78be853ef4962e4df29e7eaf799c866cd97
SHA256: e8f4d8bd8ee4f75c36d99c8a2ae12d5130ea5c2e1a1531e984cefcc874c8b6af
ssdeep: -
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (38.4%)
Win32 Dynamic Link Library (generic) (34.2%)
Clipper DOS Executable (9.1%)
Generic Win/DOS Executable (9.0%)
DOS Executable Generic (9.0%)

Файл tmp62.exe получен 2009.06.09 04:39:25 (UTC)
Текущий статус: закончено
Результат: 12/40 (30%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.18 2009.06.09 Trojan.Win32.Tdss!IK
AhnLab-V3 5.0.0.2 2009.06.08 -
[B]AntiVir 7.9.0.180 2009.06.08 SPR/Tool.Obfuscator.ET.5[/B]
Antiy-AVL 2.0.3.1 2009.06.08 -
Authentium 5.1.2.4 2009.06.08 -
Avast 4.8.1335.0 2009.06.08 -
[B]AVG 8.5.0.339 2009.06.08 Injector.EH[/B]
BitDefender 7.2 2009.06.09 -
CAT-QuickHeal 10.00 2009.06.09 -
ClamAV 0.94.1 2009.06.08 -
Comodo 1289 2009.06.09 -
[B]DrWeb 5.0.0.12182 2009.06.09 BackDoor.Tdss.235
eSafe 7.0.17.0 2009.06.07 Suspicious File[/B]
eTrust-Vet 31.6.6548 2009.06.08 -
F-Prot 4.4.4.56 2009.06.08 -
[B]F-Secure 8.0.14470.0 2009.06.08 Trojan.Win32.TDSS.agmf[/B]
Fortinet 3.117.0.0 2009.06.08 -
GData 19 2009.06.09 -
Ikarus T3.1.1.59.0 2009.06.09 -
K7AntiVirus 7.10.757 2009.06.08 -
[B]Kaspersky 7.0.0.125 2009.06.09 Trojan.Win32.TDSS.agmf[/B]
McAfee 5640 2009.06.08 -
[B]McAfee+Artemis 5640 2009.06.08 Artemis!8210F79EBBB7
McAfee-GW-Edition 6.7.6 2009.06.09 Riskware.Tool.Obfuscator.ET.5
Microsoft 1.4701 2009.06.08 VirTool:Win32/Obfuscator.ET
NOD32 4139 2009.06.08 a variant of Win32/Kryptik.RQ[/B]
Norman 6.01.09 2009.06.08 -
nProtect 2009.1.8.0 2009.06.09 -
Panda 10.0.0.14 2009.06.08 -
PCTools 4.4.2.0 2009.06.06 -
[B]Prevx 3.0 2009.06.09 Medium Risk Malware[/B]
Rising 21.33.10.00 2009.06.09 -
Sophos 4.42.0 2009.06.09 -
Sunbelt 3.2.1858.2 2009.06.09 -
Symantec 1.4.4.12 2009.06.09 -
TheHacker 6.3.4.3.342 2009.06.08 -
TrendMicro 8.950.0.1092 2009.06.09 -
VBA32 3.12.10.6 2009.06.08 -
ViRobot 2009.6.9.1774 2009.06.09 -
VirusBuster 4.6.5.0 2009.06.08 -[/QUOTE]
Дополнительная информация
File size: 91648 bytes
MD5...: 8210f79ebbb7fb95ca735b8a25b164f1
SHA1..: b4b3bd927efe143f117b2afbb084d4958932b4de
SHA256: a958cac8bb97344b1153582cfbb6b54746b6f0ce7762a710632c3d1708201fe9
ssdeep: -
PEiD..: -
TrID..: File type identification
Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

Файл pcdef.exe получен 2009.06.09 04:41:40 (UTC)
Текущий статус: закончено
Результат: 11/40 (27.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.18 2009.06.09 -
AhnLab-V3 5.0.0.2 2009.06.08 -
AntiVir 7.9.0.180 2009.06.08 -
Antiy-AVL 2.0.3.1 2009.06.08 -
Authentium 5.1.2.4 2009.06.08 -
Avast 4.8.1335.0 2009.06.08 -
AVG 8.5.0.339 2009.06.08 -
BitDefender 7.2 2009.06.09 -
[B]CAT-QuickHeal 10.00 2009.06.09 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.06.09 -
Comodo 1289 2009.06.09 -
[B]DrWeb 5.0.0.12182 2009.06.09 Trojan.Fakealert.4128
eSafe 7.0.17.0 2009.06.07 Suspicious File[/B]
eTrust-Vet 31.6.6548 2009.06.08 -
F-Prot 4.4.4.56 2009.06.08 -
F-Secure 8.0.14470.0 2009.06.08 -
[B]Fortinet 3.117.0.0 2009.06.08 Misc/FakeAlert[/B]
GData 19 2009.06.09 -
Ikarus T3.1.1.59.0 2009.06.09 -
K7AntiVirus 7.10.757 2009.06.08 -
Kaspersky 7.0.0.125 2009.06.09 -
[B]McAfee 5640 2009.06.08 FakeAlert-CM
McAfee+Artemis 5640 2009.06.08 FakeAlert-CM
McAfee-GW-Edition 6.7.6 2009.06.09 Trojan.LooksLike.Dropper[/B]
Microsoft 1.4701 2009.06.08 -
[B]NOD32 4139 2009.06.08 Win32/Adware.WinPCDefender[/B]
Norman 6.01.09 2009.06.08 -
nProtect 2009.1.8.0 2009.06.09 -
Panda 10.0.0.14 2009.06.08 -
PCTools 4.4.2.0 2009.06.06 -
[B]Prevx 3.0 2009.06.09 Medium Risk Malware[/B]
Rising 21.33.10.00 2009.06.09 -
[B]Sophos 4.42.0 2009.06.09 Mal/Generic-A
Sunbelt 3.2.1858.2 2009.06.09 FraudTool.Win32.RogueSecurity (v)[/B]
Symantec 1.4.4.12 2009.06.09 -
TheHacker 6.3.4.3.342 2009.06.08 -
TrendMicro 8.950.0.1092 2009.06.09 -
VBA32 3.12.10.6 2009.06.08 -
ViRobot 2009.6.9.1774 2009.06.09 -
VirusBuster 4.6.5.0 2009.06.08 -[/QUOTE]
Дополнительная информация
File size: 1022976 bytes
MD5...: 30a043aacec88b00e78686c239961661
SHA1..: 1ed15d677d19ab9c7a4244f767bf9b0b973b7ce7
SHA256: b9be93c3c37292cc26207a155f413118be21ccecfd3a51772762056196d2dced
ssdeep: -
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)

Показывать 40 сообщений этой темы на одной странице