Исследование антивирусов 5

Complete scanning result of "cracker.exe", received in VirusTotal at 05.20.2007, 19:49:45 (CET).


Antivirus Version Update Result

[B]AhnLab-V3 2007.5.16.1 05.18.2007 Dropper/Xema.23052
AntiVir 7.4.0.23 05.20.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 05.18.2007 no virus found
[B]Avast 4.7.997.0 05.18.2007 Win32:Small-DQX
AVG 7.5.0.467 05.20.2007 Downloader.Generic4.CXL
BitDefender 7.2 05.20.2007 Trojan.MulDrop.JA[/B]
CAT-QuickHeal 9.00 05.18.2007 no virus found
[B]ClamAV devel-20070416 05.20.2007 Trojan.Spy-2857
DrWeb 4.33 05.20.2007 Trojan.MulDrop.6199[/B]
eSafe 7.0.15.0 05.20.2007 no virus found
eTrust-Vet 30.7.3644 05.19.2007 no virus found
Ewido 4.0 05.20.2007 no virus found
FileAdvisor 1 05.20.2007 no virus found
[B]Fortinet 2.85.0.0 05.20.2007 suspicious[/B]
F-Prot 4.3.2.48 05.18.2007 no virus found
[B]F-Secure 6.70.13030.0 05.18.2007 Trojan-Dropper.Win32.Agent.bif
Ikarus T3.1.1.7 05.20.2007 Trojan.CC-Joiner.1_5_2
Kaspersky 4.0.2.24 05.20.2007 Trojan-Dropper.Win32.Agent.bif[/B]
McAfee 5034 05.18.2007 no virus found
Microsoft 1.2503 05.20.2007 no virus found
NOD32v2 2278 05.20.2007 no virus found
[B]Norman 5.80.02 05.18.2007 W32/Bifrose.GLE
Panda 9.0.0.4 05.20.2007 Suspicious file[/B]
Prevx1 V2 05.20.2007 no virus found
[B]Sophos 4.17.0 05.20.2007 Mal/Basine-C[/B]
Sunbelt 2.2.907.0 05.17.2007 no virus found
Symantec 10 05.20.2007 no virus found
TheHacker 6.1.6.118 05.18.2007 no virus found
[B]VBA32 3.12.0 05.20.2007 Trojan.CC-Joiner.1_5_2
VirusBuster 4.3.7:9 05.20.2007 Trojan.DR.Webmoner.Gen.2
Webwasher-Gateway 6.0.1 05.20.2007 Trojan.Crypt.XPACK.Gen[/B]

Aditional Information
File size: 81558 bytes
MD5: b56c5395ec5234fb516c2c3a4f81719a
SHA1: 8435b86aee7d609d65442638ee1fed3643cd6ce4

Из темы [url]http://virusinfo.info/showthread.php?t=9842[/url]

Complete scanning result of "avz00001.dta", received in VirusTotal at 05.22.2007, 10:02:01 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.5.21.1 05.21.2007 no virus found
[B]AntiVir 7.4.0.23 05.22.2007 TR/Agent.29961
Authentium 4.93.8 05.21.2007 Possibly a new variant of W32/new-malware!Maximus
Avast 4.7.997.0 05.21.2007 Win32: Ldpinch-GH[/B]
AVG 7.5.0.467 05.21.2007 no virus found
[B]BitDefender 7.2 05.22.2007 DeepScan:Generic.Malware.SFYdldldg.D0CB6F96
CAT-QuickHeal 9.00 05.21.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 05.22.2007 no virus found
DrWeb 4.33 05.21.2007 no virus found
[B]eSafe 7.0.15.0 05.21.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.7.3651 05.21.2007 no virus found
Ewido 4.0 05.21.2007 no virus found
FileAdvisor 1 05.22.2007 no virus found
[B]Fortinet 2.85.0.0 05.22.2007 suspicious[/B]
[B]F-Prot 4.3.2.48 05.21.2007 W32/new-malware!Maximus
F-Secure 6.70.13030.0 05.22.2007 LdPinch.JVR
Ikarus T3.1.1.7 05.22.2007 Trojan-Spy.Win32.Agent.DI[/B]
Kaspersky 4.0.2.24 05.22.2007 no virus found
McAfee 5035 05.21.2007 no virus found
Microsoft 1.2503 05.22.2007 no virus found
NOD32v2 2283 05.21.2007 no virus found
[B]Norman 5.80.02 05.21.2007 LdPinch.JVR
Panda 9.0.0.4 05.21.2007 Trj/Ldpinch.AEQ[/B]
Prevx1 V2 05.22.2007 no virus found
[B]Sophos 4.17.0 05.21.2007 Mal/Basine-C
Sunbelt 2.2.907.0 05.17.2007 VIPRE.Suspicious[/B]
Symantec 10 05.22.2007 no virus found
TheHacker 6.1.6.120 05.21.2007 no virus found
[B]VBA32 3.12.0 05.21.2007 MalwareScope.Trojan-PSW.Pinch.42[/B]
VirusBuster 4.3.23:9 05.21.2007
[B]Webwasher-Gateway 6.0.1 05.22.2007 Trojan.Agent.29961[/B]

Aditional Information
File size: 29961 bytes
MD5: d54368b0d7867ff2de9001c6877fb48e
SHA1: 261af0a5649191c57350a647588e6ebc0fd395e4
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

t-9928
Complete scanning result of "system32:lzx32.sys", received in VirusTotal at 05.22.2007, 09:58:56 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.5.21.1 05.21.2007 no virus found
[B]AntiVir 7.4.0.23 05.22.2007 TR/Rootkit.Gen[/B]
Authentium 4.93.8 05.21.2007 no virus found
Avast 4.7.997.0 05.21.2007 no virus found
AVG 7.5.0.467 05.21.2007 no virus found
BitDefender 7.2 05.22.2007 no virus found
CAT-QuickHeal 9.00 05.21.2007 no virus found
ClamAV devel-20070416 05.22.2007 no virus found
DrWeb 4.33 05.21.2007 no virus found
eSafe 7.0.15.0 05.21.2007 no virus found
eTrust-Vet 30.7.3651 05.21.2007 no virus found
Ewido 4.0 05.21.2007 no virus found
FileAdvisor 1 05.22.2007 no virus found
[B]Fortinet 2.85.0.0 05.22.2007 suspicious[/B]
F-Prot 4.3.2.48 05.21.2007 no virus found
F-Secure 6.70.13030.0 05.22.2007 no virus found
Ikarus T3.1.1.7 05.22.2007 no virus found
Kaspersky 4.0.2.24 05.22.2007 no virus found
McAfee 5035 05.21.2007 no virus found
Microsoft 1.2503 05.22.2007 no virus found
NOD32v2 2283 05.21.2007 no virus found
Norman 5.80.02 05.21.2007 no virus found
[B]Panda 9.0.0.4 05.21.2007 Rootkit/Agent.FJB
Prevx1 V2 05.22.2007 Rootkit.Rustock.gen[/B]
Sophos 4.17.0 05.21.2007 no virus found
Sunbelt 2.2.907.0 05.17.2007 no virus found
[B]Symantec 10 05.22.2007 Backdoor.Rustock.B[/B]
TheHacker 6.1.6.120 05.21.2007 no virus found
VBA32 3.12.0 05.21.2007 no virus found
VirusBuster 4.3.23:9 05.21.2007 no virus found
[B]Webwasher-Gateway 6.0.1 05.22.2007 Trojan.Rootkit.Gen
[/B]
Aditional Information
File size: 79094 bytes
MD5: 634a0a3104c4ea9b5ca575bc9938197b
SHA1: db1cb26582bd3dfbaf6c388ccf82dde7c4987098

новой страничке -новые промежуточные:

t-9973

Complete scanning result of "windrvNT.sys", received in VirusTotal at 05.24.2007, 07:20:52 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.5.24.0 05.23.2007 no virus found
AntiVir 7.4.0.27 05.23.2007 no virus found
Authentium 4.93.8 05.23.2007 no virus found
Avast 4.7.997.0 05.22.2007 no virus found
AVG 7.5.0.467 05.23.2007 no virus found
BitDefender 7.2 05.24.2007 no virus found
CAT-QuickHeal 9.00 05.23.2007 no virus found
ClamAV devel-20070416 05.24.2007 no virus found
DrWeb 4.33 05.23.2007 no virus found
eSafe 7.0.15.0 05.21.2007 no virus found
eTrust-Vet 30.7.3658 05.24.2007 no virus found
Ewido 4.0 05.23.2007 no virus found
FileAdvisor 1 05.23.2007 No threat detected
Fortinet 2.85.0.0 05.24.2007 no virus found
F-Prot 4.3.2.48 05.23.2007 no virus found
F-Secure 6.70.13030.0 05.24.2007 no virus found
Ikarus T3.1.1.8 05.24.2007 no virus found
Kaspersky 4.0.2.24 05.24.2007 no virus found
McAfee 5037 05.23.2007 no virus found
Microsoft 1.2503 05.22.2007 no virus found
NOD32v2 2287 05.23.2007 no virus found
Norman 5.80.02 05.23.2007 no virus found
Panda 9.0.0.4 05.23.2007 no virus found
Prevx1 V2 05.23.2007 no virus found
Sophos 4.17.0 05.23.2007 no virus found
Sunbelt 2.2.907.0 05.24.2007 no virus found
Symantec 10 05.24.2007 no virus found
[B]TheHacker 6.1.6.121 05.23.2007 Trojan/Rootkit
VBA32 3.12.0 05.23.2007 Trojan.NtRootKit.131[/B]
VirusBuster 4.3.23:9 05.23.2007 no virus found
Webwasher-Gateway 6.0.1 05.23.2007 no virus found

Aditional Information
File size: 35363 bytes
MD5: ce291805cb4cd561a5a569df4e28e41f
SHA1: 68d75fe1a8f84dbdee9331b5029e752b65f18954

Complete scanning result of "4234.exe.vir", received in VirusTotal at 05.25.2007, 08:38:42 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.5.24.0 05.25.2007 no virus found
[B]<b>AntiVir 7.4.0.27 05.25.2007 TR/Hijack.Age.41984/B][/B]
Authentium 4.93.8 05.23.2007 no virus found
Avast 4.7.997.0 05.24.2007 no virus found
AVG 7.5.0.467 05.24.2007 no virus found
[B]BitDefender 7.2 05.25.2007 Trojan.Grum.F[/B]
[B]CAT-QuickHeal 9.00 05.24.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 05.25.2007 no virus found
DrWeb 4.33 05.25.2007 no virus found
eSafe 7.0.15.0 05.24.2007 no virus found
eTrust-Vet 30.7.3662 05.25.2007 no virus found
Ewido 4.0 05.24.2007 no virus found
FileAdvisor 1 05.25.2007 no virus found
[B]Fortinet 2.85.0.0 05.25.2007 suspicious[/B]
[B]F-Prot 4.3.2.48 05.24.2007 W32/NewMalware-LSR-based!Maximus[/B]
[B]F-Secure 6.70.13030.0 05.25.2007 Trojan-Proxy.Win32.Small.du[/B]
[B]Ikarus T3.1.1.8 05.25.2007 Trojan.Grum.F[/B]
[B]Kaspersky 4.0.2.24 05.25.2007 Trojan-Proxy.Win32.Small.du[/B]
McAfee 5038 05.24.2007 no virus found
Microsoft 1.2503 05.24.2007 no virus found
NOD32v2 2290 05.24.2007 no virus found
Norman 5.80.02 05.24.2007 no virus found
Panda 9.0.0.4 05.24.2007 no virus found
Prevx1 V2 05.25.2007 no virus found
Sophos 4.17.0 05.23.2007 no virus found
Sunbelt 2.2.907.0 05.24.2007 no virus found
Symantec 10 05.25.2007 no virus found
[B]TheHacker 6.1.6.122 05.25.2007 Trojan/Proxy.Small.du[/B]
VBA32 3.12.0 05.25.2007 no virus found
VirusBuster 4.3.23:9 05.24.2007 no virus found
[B]Webwasher-Gateway 6.0.1 05.25.2007 Trojan.Hijack.Age.41984[/B]

Aditional Information
File size: 44544 bytes
MD5: e5132a228eaec30e23ae74e0d3edfae7
SHA1: d0d0e532bb0d7c9215f53aa70c143b9395fe4ac5

[ file data ]
* name: test11.exe
* size: 121856
* md5.: 0e8723531d2b2f1585faf9088dc49320
* sha1: ec8e0442531703acae6de7c40f2479a1dc6fbf80

[ scan result ]
AhnLab-V3 2007.5.10.0/20070511 found nothing
AntiVir 7.4.0.15/20070512 found nothing
Authentium 4.93.8/20070512 found nothing
Avast 4.7.997.0/20070511 found nothing
AVG 7.5.0.467/20070513 found nothing
BitDefender 7.2/20070513 found nothing
CAT-QuickHeal 9.00/20070512 found nothing
ClamAV devel-20070416/20070513 found nothing
DrWeb 4.33/20070513 found nothing
eSafe 7.0.15.0/20070513 found nothing
eTrust-Vet 30.7.3628/20070511 found nothing
Ewido 4.0/20070513 found nothing
F-Prot 4.3.2.48/20070512 found nothing
F-Secure 6.70.13030.0/20070511 found nothing
FileAdvisor 1/20070513 found nothing
Fortinet 2.85.0.0/20070513 found nothing
Ikarus T3.1.1.7/20070513 found nothing
Kaspersky 4.0.2.24/20070513 found nothing
McAfee 5029/20070511 found nothing
Microsoft 1.2503/20070513 found nothing
NOD32v2 2262/20070512 found nothing
Norman 5.80.02/20070511 found nothing
Panda 9.0.0.4/20070513 found nothing
Prevx1 V2/20070513 found nothing
Sophos 4.17.0/20070511 found nothing
Sunbelt 2.2.907.0/20070512 found nothing
Symantec 10/20070513 found nothing
TheHacker 6.1.6.114/20070512 found nothing
[B]VBA32 3.12.0/20070513 found [suspected of Malware.Delf.49 (paranoid heuristics)][/B]
VirusBuster 4.3.7:9/20070513 found nothing
Webwasher-Gateway 6.0.1/20070513 found nothing

[ file data ]
* name: test_p.exe
* size: 6133
* md5.: 81d1f69e7c3bf093695e5b942e78d90e
* sha1: cb97955b4ae4de6c224ab62a1ae5b2582f447801

[ scan result ]
AhnLab-V3 2007.5.21.1/20070522 found nothing
[B]AntiVir 7.4.0.27/20070522 found [HEUR/Crypted][/B]
Authentium 4.93.8/20070521 found nothing
Avast 4.7.997.0/20070522 found nothing
AVG 7.5.0.467/20070522 found nothing
BitDefender 7.2/20070522 found nothing
CAT-QuickHeal 9.00/20070522 found nothing
ClamAV devel-20070416/20070522 found nothing
DrWeb 4.33/20070522 found nothing
eSafe 7.0.15.0/20070521 found nothing
eTrust-Vet 30.7.3652/20070522 found nothing
Ewido 4.0/20070522 found nothing
F-Prot 4.3.2.48/20070522 found nothing
[B]F-Secure 6.70.13030.0/20070522 found [Packed.Win32.PolyCrypt.b][/B]
FileAdvisor 1/20070522 found nothing
[B]Fortinet 2.85.0.0/20070522 found [suspicious][/B]
Ikarus T3.1.1.8/20070522 found nothing
[B]Kaspersky 4.0.2.24/20070522 found [Packed.Win32.PolyCrypt.b][/B]
[B]McAfee 5036/20070522 found [New Malware.bl][/B]
Microsoft 1.2503/20070522 found nothing
NOD32v2 2285/20070522 found nothing
Norman 5.80.02/20070522 found nothing
[B]Panda 9.0.0.4/20070522 found [Suspicious file][/B]
Prevx1 V2/20070522 found nothing
Sophos 4.17.0/20070521 found nothing
[B]Sunbelt 2.2.907.0/20070517 found [VIPRE.Suspicious][/B]
Symantec 10/20070522 found nothing
TheHacker 6.1.6.120/20070521 found nothing
[B]VBA32 3.12.0/20070522 found [Trojan-Dropper.Win32.Small.ab][/B]
VirusBuster 4.3.23:9/20070522 found nothing
[B]Webwasher-Gateway 6.0.1/20070522 found [Heuristic.Crypted][/B]

[ notes ]
packers: PECRYPT
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "19E72AAFd01", received in VirusTotal at 05.27.2007, 23:04:30 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.5.24.0 05.25.2007 no virus found
AntiVir 7.4.0.27 05.27.2007 no virus found
Authentium 4.93.8 05.23.2007 no virus found
Avast 4.7.997.0 05.27.2007 no virus found
AVG 7.5.0.467 05.27.2007 no virus found
[B]BitDefender 7.2 05.27.2007 MemScan:Trojan.PWS.LdPinch.BSG[/B]
CAT-QuickHeal 9.00 05.26.2007 (Suspicious) - DNAScan
ClamAV devel-20070416 05.27.2007 no virus found
[B]DrWeb 4.33 05.27.2007 Trojan.MulDrop.6397[/B]
eSafe 7.0.15.0 05.27.2007 no virus found
eTrust-Vet 30.7.3665 05.26.2007 no virus found
Ewido 4.0 05.27.2007 no virus found
FileAdvisor 1 05.27.2007 no virus found
Fortinet 2.85.0.0 05.27.2007 suspicious
F-Prot 4.3.2.48 05.25.2007 no virus found
F-Secure 6.70.13030.0 05.27.2007 no virus found
Ikarus T3.1.1.8 05.27.2007 no virus found
Kaspersky 4.0.2.24 05.27.2007 no virus found
McAfee 5039 05.25.2007 no virus found
Microsoft 1.2503 05.27.2007 no virus found
[B]NOD32v2 2293 05.27.2007 a variant of Win32/PSW.LdPinch.BBY[/B]
Norman 5.80.02 05.25.2007 no virus found
Panda 9.0.0.4 05.27.2007 Suspicious file
Prevx1 V2 05.27.2007 no virus found
Sophos 4.18.0 05.25.2007 no virus found
Sunbelt 2.2.907.0 05.26.2007 no virus found
Symantec 10 05.27.2007 no virus found
TheHacker 6.1.6.123 05.25.2007 no virus found
[B]VBA32 3.12.0 05.26.2007 suspected of Backdoor.IRCBot.2[/B]
VirusBuster 4.3.23:9 05.27.2007 no virus found
[B]Webwasher-Gateway 6.0.1 05.27.2007 Win32.Malware.gen!88 (suspicious)
[/B]
Aditional Information
File size: 137212 bytes
MD5: 04c5420a01fe69d86328a2d9267cf6d1
SHA1: 09d0a9e3a8540d419d6971c447604c9ed30ae8bd

Complete scanning result of "sms.exe", processed in VirusTotal at 05/29/2007 07:30:54 (CET).

[ file data ]
* name: sms.exe
* size: 22016
* md5.: 250a8563c48a18e81f1fc755487a923c
* sha1: 75c8568bc7ebaf8f657422e7eeb4bc08dfea0624

[ scan result ]
AhnLab-V3 2007.5.29.0/20070528 found nothing
[B]AntiVir 7.4.0.27/20070528 found [TR/Dldr.Agent.bnz.11][/B]
Authentium 4.93.8/20070523 found nothing
Avast 4.7.997.0/20070528 found nothing
AVG 7.5.0.467/20070528 found nothing
BitDefender 7.2/20070529 found nothing
CAT-QuickHeal 9.00/20070528 found nothing
ClamAV devel-20070416/20070529 found nothing
[B]DrWeb 4.33/20070528 found [Trojan.DownLoader.22895][/B]
[B]eSafe 7.0.15.0/20070528 found [Win32.Agent.bnz][/B]
eTrust-Vet 30.7.3670/20070528 found nothing
Ewido 4.0/20070528 found nothing
F-Prot 4.3.2.48/20070525 found nothing
[B]F-Secure 6.70.13030.0/20070529 found [Trojan-Downloader.Win32.Agent.bnz][/B]
FileAdvisor 1/20070529 found nothing
[B]Fortinet 2.85.0.0/20070529 found [W32/Agent.BNZ!tr.dldr][/B]
Ikarus T3.1.1.8/20070529 found nothing
[B]Kaspersky 4.0.2.24/20070529 found [Trojan-Downloader.Win32.Agent.bnz][/B]
McAfee 5040/20070528 found nothing
Microsoft 1.2503/20070529 found nothing
NOD32v2 2294/20070528 found nothing
Norman 5.80.02/20070528 found nothing
Panda 9.0.0.4/20070528 found nothing
Prevx1 V2/20070529 found nothing
Sophos 4.18.0/20070528 found nothing
Sunbelt 2.2.907.0/20070526 found nothing
Symantec 10/20070529 found nothing
TheHacker 6.1.6.124/20070528 found nothing
VBA32 3.12.0/20070528 found nothing
VirusBuster 4.3.23:9/20070528 found nothing
[B]Webwasher-Gateway 6.0.1/20070529 found [Trojan.Dldr.Agent.bnz.11][/B]

Complete scanning result of "Word.exe", received in VirusTotal at 05.30.2007, 04:18:30 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.5.30.0 05.29.2007 no virus found
[B]AntiVir 7.4.0.27 05.29.2007 TR/Dldr.Banload.anu.1[/B]
Authentium 4.93.8 05.23.2007 no virus found
[B]Avast 4.7.997.0 05.29.2007 Win32:Banload-AZX[/B]
[B]AVG 7.5.0.467 05.29.2007 Downloader.Generic3.JWT[/B]
BitDefender 7.2 05.30.2007 no virus found
[B]CAT-QuickHeal 9.00 05.29.2007 TrojanDownloader.Banload.anu[/B]
ClamAV devel-20070416 05.30.2007 no virus found
[B]DrWeb 4.33 05.29.2007 Trojan.Kidfun[/B]
[B]eSafe 7.0.15.0 05.29.2007 Suspicious Trojan/Worm[/B]
[B]eTrust-Vet 30.7.3672 05.29.2007 Win32/Meytux.A[/B]
Ewido 4.0 05.29.2007 no virus found
FileAdvisor 1 05.30.2007 no virus found
Fortinet 2.85.0.0 05.30.2007 no virus found
F-Prot 4.3.2.48 05.30.2007 no virus found
[B]F-Secure 6.70.13030.0 05.30.2007 Trojan-Downloader.Win32.Banload.anu[/B]
[B]Ikarus T3.1.1.8 05.29.2007 Trojan.Win32.VB.auq[/B]
[B]Kaspersky 4.0.2.24 05.30.2007 Trojan-Downloader.Win32.Banload.anu[/B]
[B]McAfee 5041 05.29.2007 PWS-Banker.gen.h[/B]
Microsoft 1.2503 05.29.2007 no virus found
NOD32v2 2296 05.29.2007 no virus found
[B]Norman 5.80.02 05.29.2007 W32/Banload.JRX[/B]
[B]Panda 9.0.0.4 05.30.2007 Trj/Agent.EFB[/B]
Prevx1 V2 05.30.2007 no virus found
Sophos 4.18.0 05.28.2007 no virus found
[B]Sunbelt 2.2.907.0 05.26.2007 VIPRE.Suspicious[/B]
[B]Symantec 10 05.30.2007 Downloader[/B]
TheHacker 6.1.6.124 05.28.2007 no virus found
VBA32 3.12.0 05.28.2007 no virus found
[B]VirusBuster 4.3.23:9 05.29.2007 Trojan.DL.Banload.BXV[/B]
[B]Webwasher-Gateway 6.0.1 05.30.2007 Trojan.Dldr.Banload.anu.1[/B]

Aditional Information
File size: 182272 bytes
MD5: cd1647a0ae3e6a98af061682a2d50649
SHA1: 70cd0f497a5a44f783b4f31c2305c5316f47542d
packers: PECompact
packers: PECOMPACT
packers: PecBundle, PECompact
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "Result.exe", received in VirusTotal at 06.01.2007, 21:54:17 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.5.31.2 06.01.2007 no virus found
AntiVir 7.4.0.29 06.01.2007 no virus found
Authentium 4.93.8 05.23.2007 no virus found
Avast 4.7.997.0 06.01.2007 no virus found
AVG 7.5.0.467 06.01.2007 no virus found
BitDefender 7.2 06.01.2007 no virus found
[B]CAT-QuickHeal 9.00 06.01.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.01.2007 no virus found
[B]DrWeb 4.33 06.01.2007 Trojan.MulDrop.6397[/B]
eSafe 7.0.15.0 05.31.2007 no virus found
eTrust-Vet 30.7.3682 06.01.2007 no virus found
Ewido 4.0 06.01.2007 no virus found
FileAdvisor 1 06.01.2007 no virus found
[B]Fortinet 2.85.0.0 06.01.2007 suspicious[/B]
F-Prot 4.3.2.48 06.01.2007 no virus found
F-Secure 6.70.13030.0 06.01.2007 no virus found
Ikarus T3.1.1.8 06.01.2007 no virus found
Kaspersky 4.0.2.24 06.01.2007 no virus found
McAfee 5044 06.01.2007 no virus found
Microsoft 1.2503 06.01.2007 no virus found
NOD32v2 2305 06.01.2007 no virus found
Norman 5.80.02 06.01.2007 no virus found
[B]Panda 9.0.0.4 06.01.2007 Suspicious file[/B]
Prevx1 V2 06.01.2007 no virus found
Sophos 4.18.0 06.01.2007 no virus found
Sunbelt 2.2.907.0 05.30.2007 no virus found
Symantec 10 06.01.2007 no virus found
TheHacker 6.1.6.128 05.31.2007 no virus found
[B]VBA32 3.12.0 06.01.2007 Trojan.MulDrop.6397[/B]
VirusBuster 4.3.23:9 06.01.2007 no virus found
[B]Webwasher-Gateway 6.0.1 06.01.2007 Win32.Malware.gen!88 (suspicious)[/B]

Aditional Information
File size: 4339 bytes
MD5: 94ab364a4108be53c5f317728ff5b72f
SHA1: 08b374063af1e4185b55a3782b5fc71ffc27aa59

Словил очень старый порех , результаты вирустотал удивили в некоторых местах.
И каспер почему-то не лечит его , очень странно..

Complete scanning result of "Project2.exe", received in VirusTotal at 06.10.2007, 17:22:50 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.9.0 06.08.2007 no virus found
[B]AntiVir 7.4.0.32 06.09.2007 W32/Porex.A
Authentium 4.93.8 05.23.2007 Possibly a new variant of W32/NewMalware-Rootkit-I-based!Maximus
Avast 4.7.997.0 06.09.2007 Win32:Porex
AVG 7.5.0.467 06.09.2007 Win32/Porex.A
BitDefender 7.2 06.10.2007 Generic.PWStealer.B072534D
CAT-QuickHeal 9.00 06.09.2007 W32.Porex.B@pws
ClamAV devel-20070416 06.10.2007 W32.Porex.B
DrWeb 4.33 06.10.2007 Win32.HLLP.PissOff.36864[/B]
eSafe 7.0.15.0 06.06.2007 no virus found
[B]eTrust-Vet 30.7.3707 06.09.2007 Win32/Porex
Ewido 4.0 06.10.2007 Heuristic.Win32.AVKiller[/B]
FileAdvisor 1 06.10.2007 no virus found
[B]Fortinet 2.85.0.0 06.10.2007 W32/Porex.A
F-Prot 4.3.2.48 06.08.2007 W32/NewMalware-Rootkit-I-based!Maximus
F-Secure 6.70.13030.0 06.08.2007 Virus.Win32.Porex.a
Ikarus T3.1.1.8 06.10.2007 Virus.Win32.Porex.a
Kaspersky 4.0.2.24 06.10.2007 Virus.Win32.Porex.a
McAfee 5049 06.08.2007 W32/Porex.a
Microsoft 1.2503 06.10.2007 Worm:Win32/Porex.A@mm
NOD32v2 2321 06.10.2007 Win32/Porex[/B]
Norman 5.80.02 06.08.2007 no virus found
[B]Panda 9.0.0.4 06.10.2007 W32/Porex.A[/B]
Prevx1 V2 06.10.2007 no virus found
[B]Sophos 4.18.0 06.01.2007 W32/Porex-A[/B]
Sunbelt 2.2.907.0 06.09.2007 no virus found
[B]Symantec 10 06.10.2007 W32.Porex[/B]
TheHacker 6.1.6.131 06.08.2007 no virus found
VBA32 3.12.0 06.10.2007 no virus found
[B]VirusBuster 4.3.23:9 06.09.2007 Win32.Porex
Webwasher-Gateway 6.0.1 06.10.2007 Win32.Porex.A[/B]

Aditional Information
File size: 36864 bytes
MD5: a024dd97fd3a5be9eb5b95f4cee643f8
SHA1: d97c8e943bc3b5408cfb969e4cd30c4a78bf32ec

C:\WINDOWS\System32\lanmandrv.sys Довольно свежий образец.
До посылки Олегу мало кто его определял.

AhnLab-V3 2007.6.12.2 06.14.2007 no virus found
[B]AntiVir 7.4.0.32 06.14.2007 RKit/Agent.EC [/B]
Authentium 4.93.8 06.14.2007 no virus found
[B]Avast 4.7.997.0 06.13.2007 Win32:Agent-GZM [/B]
[B]AVG 7.5.0.467 06.13.2007 Hider.E [/B]
BitDefender 7.2 06.14.2007 no virus found
CAT-QuickHeal 9.00 06.13.2007 no virus found
ClamAV devel-20070416 06.14.2007 no virus found
DrWeb 4.33 06.14.2007 no virus found
eSafe 7.0.15.0 06.13.2007 no virus found
eTrust-Vet 30.7.3718 06.14.2007 no virus found
[B]Ewido 4.0 06.13.2007 Rootkit.Agent.ec [/B]
FileAdvisor 1 06.14.2007 no virus found
[B]Fortinet 2.85.0.0 06.14.2007 W32/Agent.EC!tr.rkit [/B]
F-Prot 4.3.2.48 06.13.2007 no virus found
[B]F-Secure 6.70.13030.0 06.14.2007 Rootkit.Win32.Agent.ec
Ikarus T3.1.1.8 06.14.2007 Rootkit.Win32.Agent.ec
Kaspersky 4.0.2.24 06.14.2007 Rootkit.Win32.Agent.ec
McAfee 5052 06.13.2007 New Malware.z [/B]
Microsoft 1.2503 06.14.2007 no virus found
NOD32v2 2329 06.14.2007 no virus found
[B]Norman 5.80.02 06.13.2007 W32/Rootkit.AFW
Panda 9.0.0.4 06.14.2007 Malware Generic
Prevx1 V2 06.14.2007 Covert.Code [/B]
Sophos 4.18.0 06.12.2007 no virus found
Sunbelt 2.2.907.0 06.14.2007 no virus found
Symantec 10 06.14.2007 no virus found
[B]TheHacker 6.1.6.133 06.14.2007 Trojan/Agent.ec
VBA32 3.12.0.1 06.13.2007 Rootkit.Win32.Agent.ec
VirusBuster 4.3.23:9 06.13.2007 Rootkit.Agent.IAS
Webwasher-Gateway 6.0.1 06.14.2007 Rootkit.Agent.EC [/B]

Aditional Information
File size: 6912 bytes
MD5: c0e54ebe4be0586aab9b2df4d5ab7775
SHA1: 0d07c2b765b728e9e2d919d085f239ab18cf2c2f
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PXC=8c85100966037[/url]

Complete scanning result of "ICQ.exe", received in VirusTotal at 06.14.2007, 14:42:56 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.12.2 06.14.2007 no virus found
[B]AntiVir 7.4.0.32 06.14.2007 TR/PSW.LdPinch.ccd[/B]
Authentium 4.93.8 06.14.2007 no virus found
Avast 4.7.997.0 06.13.2007 no virus found
AVG 7.5.0.467 06.13.2007 no virus found
BitDefender 7.2 06.14.2007 no virus found
[B]CAT-QuickHeal 9.00 06.14.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.14.2007 no virus found
[B]DrWeb 4.33 06.14.2007 Trojan.PWS.LDPinch.1911
eSafe 7.0.15.0 06.13.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.7.3718 06.14.2007 no virus found
Ewido 4.0 06.14.2007 no virus found
FileAdvisor 1 06.14.2007 no virus found
[B]Fortinet 2.85.0.0 06.14.2007 suspicious[/B]
F-Prot 4.3.2.48 06.13.2007 no virus found
[B]F-Secure 6.70.13030.0 06.14.2007 Trojan-PSW.Win32.LdPinch.ccd
Ikarus T3.1.1.8 06.14.2007 Trojan-PWS.Win32.Small.br
Kaspersky 4.0.2.24 06.14.2007 Trojan-PSW.Win32.LdPinch.ccd
McAfee 5052 06.13.2007 New Malware.n
Microsoft 1.2503 06.14.2007 VirTool:Win32/Obfuscator.C[/B]
NOD32v2 2329 06.14.2007 no virus found
[B]Norman 5.80.02 06.14.2007 W32/Suspicious_U.gen[/B]
[B]Panda 9.0.0.4 06.14.2007 Suspicious file[/B]
Prevx1 V2 06.14.2007 no virus found
[B]Sophos 4.18.0 06.12.2007 Mal/Packer[/B]
[B]Sunbelt 2.2.907.0 06.14.2007 VIPRE.Suspicious[/B]
Symantec 10 06.14.2007 no virus found
TheHacker 6.1.6.133 06.14.2007 no virus found
VBA32 3.12.0.1 06.13.2007 no virus found
VirusBuster 4.3.23:9 06.13.2007
[B]Webwasher-Gateway 6.0.1 06.14.2007 Trojan.PSW.LdPinch.ccd[/B]

Aditional Information
File size: 47303 bytes
MD5: 4ef9f7d61e4d1ed8092dc30b30e371d9
SHA1: f55e6f10bff9ad1e8f1a812f2d6841c796b250db
packers: UPACK
packers: UPack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

[url]http://www.virustotal.com/vt/en/resultadof?8235ca88e85c9364b0208c72a8548519[/url]

Complete scanning result of "ICQ.exe", received in VirusTotal at 06.14.2007, 18:10:36 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.12.2 06.14.2007 no virus found
[B]AntiVir 7.4.0.32 06.14.2007 TR/PSW.LdPinch.ccd[/B]
Authentium 4.93.8 06.14.2007 no virus found
Avast 4.7.997.0 06.13.2007 no virus found
AVG 7.5.0.467 06.14.2007 no virus found
[B]BitDefender 7.2 06.14.2007 Trojan.Dropper.RGV[/B]
CAT-QuickHeal 9.00 06.14.2007 no virus found
ClamAV devel-20070416 06.14.2007 no virus found
[B]DrWeb 4.33 06.14.2007 Trojan.MulDrop.6267[/B]
eSafe 7.0.15.0 06.13.2007 no virus found
eTrust-Vet 30.7.3718 06.14.2007 no virus found
Ewido 4.0 06.14.2007 no virus found
FileAdvisor 1 06.14.2007 no virus found
Fortinet 2.85.0.0 06.14.2007 no virus found
F-Prot 4.3.2.48 06.14.2007 no virus found
[B]F-Secure 6.70.13030.0 06.14.2007 Trojan-PSW.Win32.LdPinch.ccd
Ikarus T3.1.1.8 06.14.2007 Backdoor.IRC.Evil
Kaspersky 4.0.2.24 06.14.2007 Trojan-PSW.Win32.LdPinch.ccd
McAfee 5053 06.14.2007 New Malware.n [/B]
Microsoft 1.2503 06.14.2007 no virus found
NOD32v2 2329 06.14.2007 no virus found
Norman 5.80.02 06.14.2007 no virus found
Panda 9.0.0.4 06.14.2007 no virus found
Prevx1 V2 06.14.2007 no virus found
[B]Sophos 4.18.0 06.12.2007 Mal/Packer[/B]
Sunbelt 2.2.907.0 06.14.2007 no virus found
Symantec 10 06.14.2007 no virus found
TheHacker 6.1.6.133 06.14.2007 no virus found
[B]VBA32 3.12.0.1 06.13.2007 BackDoor.IRC.Evil[/B]
VirusBuster 4.3.23:9 06.14.2007 no virus found
[B]Webwasher-Gateway 6.0.1 06.14.2007 Trojan.PSW.LdPinch.ccd [/B]


Aditional Information
File size: 121344 bytes
MD5: 50ea4c8828440a6cfa7087b032304108
SHA1: 400ddc2d8fa568b6765db8c8a0d096a133071e1b

[url]http://www.virustotal.com/vt/en/resultadof?d299e2ce961082c784eaa40f1894125d[/url]

Сегодня получил открыточку на ящик. Вот результат:
Complete scanning result of "postcard.com", received in VirusTotal at 06.17.2007, 19:07:04 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.6.9.0 06.08.2007 no virus found
[B]AntiVir 7.4.0.32 06.16.2007 HEUR/Crypted[/B]
Authentium 4.93.8 06.16.2007 no virus found
Avast 4.7.997.0 06.16.2007 no virus found
AVG 7.5.0.467 06.17.2007 no virus found
[B]BitDefender 7.2 06.17.2007 Trojan.Small.NCW[/B]
[B]CAT-QuickHeal 9.00 06.16.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.17.2007 no virus found
[B]DrWeb 4.33 06.17.2007 Trojan.MulDrop.6924[/B]
eSafe 7.0.15.0 06.17.2007 no virus found
eTrust-Vet 30.7.3721 06.15.2007 no virus found
Ewido 4.0 06.17.2007 no virus found
FileAdvisor 1 06.17.2007 no virus found
[B]Fortinet 2.85.0.0 06.17.2007 W32/Small.NT!tr[/B]
F-Prot 4.3.2.48 06.08.2007 no virus found
F-Secure 6.70.13030.0 06.08.2007 no virus found
[B]Ikarus T3.1.1.8 06.17.2007 Trojan.Win32.Small.nt
Kaspersky 4.0.2.24 06.17.2007 Trojan.Win32.Small.nt[/B]
McAfee 5054 06.15.2007 no virus found
Microsoft 1.2607 06.17.2007 no virus found
NOD32v2 2334 06.15.2007 no virus found
Norman 5.80.02 06.15.2007 no virus found
[B]Panda 9.0.0.4 06.17.2007 Suspicious file[/B]
Prevx1 V2 06.17.2007 no virus found
Sophos 4.18.0 06.12.2007 no virus found
Sunbelt 2.2.907.0 06.09.2007 no virus found
Symantec 10 06.17.2007 no virus found
TheHacker 6.1.6.133 06.15.2007 no virus found
VBA32 3.12.0.2 06.15.2007 no virus found
VirusBuster 4.3.23:9 06.16.2007 no virus found
[B]Webwasher-Gateway 6.0.1 06.16.2007 Heuristic.Crypted[/B]

Aditional Information
File size: 9216 bytes
MD5: b0e55401e9c1d9e32d137e00d680430e
SHA1: fc142e53a1d905ee07710bcd752c67a440ea9c55
packers: embedded
__________________

Complete scanning result of "ICQmd5pc.exe", received in VirusTotal at 06.18.2007, 17:03:45 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.16.0 06.18.2007 no virus found
[B]AntiVir 7.4.0.32 06.18.2007 HEUR/Crypted [/B]
Authentium 4.93.8 06.16.2007 no virus found
[B]Avast 4.7.997.0 06.18.2007 Win32:Trojan-gen. {Other}[/B]
[B]AVG 7.5.0.467 06.17.2007 Generic3.FSU
BitDefender 7.2 06.18.2007 Backdoor.Pcclient.GV
CAT-QuickHeal 9.00 06.18.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.18.2007 no virus found
[B]DrWeb 4.33 06.18.2007 Trojan.PWS.LDPinch.1536[/B]
[B]eSafe 7.0.15.0 06.17.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.7.3726 06.18.2007 no virus found
Ewido 4.0 06.18.2007 no virus found
[B]FileAdvisor 1 06.18.2007 High threat detected[/B]
[B]Fortinet 2.85.0.0 06.18.2007 PossibleThreat[/B]
F-Prot 4.3.2.48 06.15.2007 no virus found
F-Secure 6.70.13030.0 06.18.2007 no virus found
[B]Ikarus T3.1.1.8 06.18.2007 Backdoor.Win32.PcClient.GV[/B]
Kaspersky 4.0.2.24 06.18.2007 no virus found
[B]McAfee 5054 06.15.2007 New Malware.u[/B]
Microsoft 1.2607 06.18.2007 no virus found
[B]NOD32v2 2336 06.18.2007 a variant of Win32/PSW.LdPinch.BOB[/B]
Norman 5.80.02 06.18.2007 no virus found
Panda 9.0.0.4 06.17.2007 no virus found
Prevx1 V2 06.18.2007 no virus found
[B]Sophos 4.18.0 06.12.2007 Mal/Packer[/B]
[B]Sunbelt 2.2.907.0 06.16.2007 VIPRE.Suspicious[/B]
Symantec 10 06.18.2007 no virus found
TheHacker 6.1.6.134 06.18.2007 no virus found
VBA32 3.12.0.2 06.15.2007 suspected of [B]Embedded.MalwareScope.Trojan-PSW.Pinch.42[/B]
VirusBuster 4.3.23:9 06.18.2007
[B]Webwasher-Gateway 6.0.1 06.18.2007 Heuristic.Crypted [/B]


Aditional Information
File size: 236293 bytes
MD5: 8acc3214e944a0b7c3fb874b392916f7
SHA1: a7c0955db9b2b5ad670c166da5b964bd881efc88
packers: NsPack
packers: NSPACK, BINARYRES, MEW
Bit9 info: [url]http://fileadvisor.bit9.com/services/extinfo.aspx?md5=8acc3214e944a0b7c3fb874b392916f7[/url]
packers: NSPack, PE_Patch
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "system32.exe", received in VirusTotal at 06.18.2007, 23:44:00 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.16.0 06.18.2007 no virus found
[B]AntiVir 7.4.0.32 06.18.2007 HEUR/Malware[/B]
Authentium 4.93.8 06.18.2007 no virus found
Avast 4.7.997.0 06.18.2007 no virus found
AVG 7.5.0.467 06.18.2007 no virus found
[B]BitDefender 7.2 06.18.2007 BehavesLike:Win32.SMTP-Mailer
CAT-QuickHeal 9.00 06.18.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.18.2007 no virus found
DrWeb 4.33 06.18.2007 no virus found
eSafe 7.0.15.0 06.17.2007 no virus found
eTrust-Vet 30.7.3726 06.18.2007 no virus found
Ewido 4.0 06.18.2007 no virus found
FileAdvisor 1 06.18.2007 no virus found
Fortinet 2.85.0.0 06.18.2007 no virus found
F-Prot 4.3.2.48 06.18.2007 no virus found
F-Secure 6.70.13030.0 06.18.2007 no virus found
Ikarus T3.1.1.8 06.18.2007 no virus found
Kaspersky 4.0.2.24 06.18.2007 no virus found
[B]McAfee 5055 06.18.2007 PWS-LDPinch[/B]
Microsoft 1.2607 06.18.2007 no virus found
NOD32v2 2337 06.18.2007 no virus found
Norman 5.80.02 06.18.2007 no virus found
[B]Panda 9.0.0.4 06.18.2007 Suspicious file[/B]
Prevx1 V2 06.18.2007 no virus found
Sophos 4.18.0 06.12.2007 no virus found
[B]Sunbelt 2.2.907.0 06.16.2007 VIPRE.Suspicious[/B]
Symantec 10 06.18.2007 no virus found
TheHacker 6.1.6.134 06.18.2007 no virus found
[B]VBA32 3.12.0.2 06.15.2007 MalwareScope.Trojan-PSW.Pinch.1
VirusBuster 4.3.23:9 06.18.2007 Trojan.LdPinch.Gen.2
Webwasher-Gateway 6.0.1 06.18.2007 Heuristic.Malware
[/B]
Aditional Information
File size: 5632 bytes
MD5: 425b2f2a4792c6dd65f01cf5928f122a
SHA1: d0e2dd4656e73a0db2c070d1d32b298ff9c704dd
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

STATUS: FINISHEDComplete scanning result of "totour.exe", received in VirusTotal at 06.20.2007, 05:08:47 (CET).

Antivirus Version Update Result
[B]
AhnLab-V3 2007.6.16.0 06.19.2007 Win-Trojan/Xema.variant
AntiVir 7.4.0.34 06.19.2007 TR/Agent.8798.A
[/B]
Authentium 4.93.8 06.19.2007 no virus found
[B]
Avast 4.7.997.0 06.19.2007 Win32:Agent-HKL
AVG 7.5.0.467 06.19.2007 Generic4.TB
BitDefender 7.2 06.20.2007 Trojan.Agent.AAEZ
CAT-QuickHeal 9.00 06.19.2007 Trojan.Agent.afg
ClamAV devel-20070416 06.20.2007 Trojan.Agent-4509
DrWeb 4.33 06.19.2007 Trojan.Vqten
eSafe 7.0.15.0 06.19.2007 Win32.Agent.afg
eTrust-Vet 30.7.3727 06.19.2007 Win32/Netvq!generic
Ewido 4.0 06.19.2007 Trojan.Agent.afg
FileAdvisor 1 06.20.2007 High threat detected
Fortinet 2.91.0.0 06.19.2007 W32/Agent.AFG!tr
[/B]
F-Prot 4.3.2.48 06.19.2007 no virus found
[B]
F-Secure 6.70.13030.0 06.19.2007 Trojan.Win32.Agent.afg
Ikarus T3.1.1.8 06.19.2007 Trojan.Win32.Agent.afg
Kaspersky 4.0.2.24 06.19.2007 Trojan.Win32.Agent.afg
McAfee 5056 06.19.2007 Generic.dx
Microsoft 1.2607 06.19.2007 Trojan:Win32/Agent!5712
[/B]
NOD32v2 2339 06.19.2007 no virus found
[B]
Norman 5.80.02 06.19.2007 W32/Agent.BOFF
Panda 9.0.0.4 06.20.2007 Trj/Spabot.AN
Prevx1 V2 06.20.2007 TROJAN.AGENT.GEN
Sophos 4.18.0 06.12.2007 Troj/NetVQ-A
Sunbelt 2.2.907.0 06.16.2007 Trojan.Win32/Agent!5712
Symantec 10 06.20.2007 Trojan.Spabot
[/B]
TheHacker 6.1.6.134 06.18.2007 no virus found
[B]
VBA32 3.12.0.2 06.19.2007 Trojan.Win32.Agent.afg
VirusBuster 4.3.23:9 06.19.2007 Trojan.Agent.IBT
Webwasher-Gateway 6.0.1 06.19.2007 Trojan.Agent.8798.A
[/B]

Aditional Information
File size: 43520 bytes
MD5: 2e3cfb0ac604e1ff090268ff00289938
SHA1: 65d955b992401744db5fc83fdf42560bb60234a0
packers: UPX
packers: UPX
Bit9 info: [url]http://fileadvisor.bit9.com/services/extinfo.aspx?md5=2e3cfb0ac604e1ff090268ff00289938[/url]
packers: UPX
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=5CDC42B10058ABECAAFB0036BE09D6003C82DDCA[/url]

omplete scanning result of "macctl.exe", received in VirusTotal at 06.20.2007, 12:53:05 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 no virus found
[B]AntiVir 7.4.0.34 06.20.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.19.2007 no virus found
[B]BitDefender 7.2 06.20.2007 Trojan.Peed.Gen[/B]
[I][B]CAT-QuickHeal 9.00 06.19.2007 (Suspicious) - DNAScan[/B][/I]
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 no virus found
[B]eSafe 7.0.15.0 06.19.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.7.3727 06.19.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
F-Secure 6.70.13030.0 06.20.2007 no virus found
Ikarus T3.1.1.8 06.20.2007 no virus found
Kaspersky 4.0.2.24 06.20.2007 no virus found
McAfee 5056 06.19.2007 no virus found
Microsoft 1.2607 06.19.2007 no virus found
[B]NOD32v2 2341 06.20.2007 a variant of Win32/PSW.LdPinch.NCB[/B]
Norman 5.80.02 06.19.2007 no virus found
[I][B]Panda 9.0.0.4 06.20.2007 Suspicious file[/B][/I]
Prevx1 V2 06.20.2007 no virus found
[B]Sophos 4.18.0 06.12.2007 Mal/Basine-C[/B]
[I][B]Sunbelt 2.2.907.0 06.09.2007 VIPRE.Suspicious[/B][/I]
Symantec 10 06.20.2007 no virus found
TheHacker 6.1.6.136 06.20.2007 no virus found
[B]VBA32 3.12.0.2 06.20.2007 Trojan-PSW.Win32.LdPinch.byl[/B]
VirusBuster 4.3.23:9 06.19.2007 no virus found
[B]Webwasher-Gateway 6.0.1 06.20.2007 Trojan.Crypt.XPACK.Gen
[/B]
Aditional Information
File size: 36352 bytes
MD5: c10701a8491cf83da8938fabc51aa97b
SHA1: 71e6a7538e2619e3601170d64f5fa83c515c69b5
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "svchost.exe", received in VirusTotal at 06.20.2007, 14:02:50 (CET).

Antivirus Version Update Result
[B]AhnLab-V3 2007.6.20.1 06.20.2007 Win-Trojan/Webmoner.28672.B
AntiVir 7.4.0.34 06.20.2007 TR/PSW.WebMoner.M
Authentium 4.93.8 06.19.2007 could be infected with an unknown virus[/B]
Avast 4.7.997.0 06.20.2007 no virus found
[B]AVG 7.5.0.467 06.19.2007 PSW.Generic3.LFD[/B]
BitDefender 7.2 06.20.2007 no virus found
[I][B]CAT-QuickHeal 9.00 06.19.2007 (Suspicious) - DNAScan[/B][/I]
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 no virus found
[I][B]eSafe 7.0.15.0 06.19.2007 suspicious Trojan/Worm[/B][/I]
eTrust-Vet 30.7.3727 06.19.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
[B]F-Secure 6.70.13030.0 06.20.2007 Trojan-PSW.Win32.WebMoner.m
Ikarus T3.1.1.8 06.20.2007 Trojan-PWS.Win32.WebMoner.m
Kaspersky 4.0.2.24 06.20.2007 Trojan-PSW.Win32.WebMoner.m[/B]
McAfee 5056 06.19.2007 no virus found
Microsoft 1.2607 06.20.2007 no virus found
NOD32v2 2341 06.20.2007 no virus found
Norman 5.80.02 06.19.2007 no virus found
Panda 9.0.0.4 06.20.2007 no virus found
Prevx1 V2 06.20.2007 no virus found
Sophos 4.18.0 06.12.2007 no virus found
[I][B]Sunbelt 2.2.907.0 06.16.2007 VIPRE.Suspicious[/B][/I]
[B]Symantec 10 06.20.2007 Trojan Horse[/B]
TheHacker 6.1.6.136 06.20.2007 no virus found
VBA32 3.12.0.2 06.20.2007 no virus found
[B]VirusBuster 4.3.23:9 06.19.2007 Trojan.PWS.WebMoner.BD[/B]
[B]Webwasher-Gateway 6.0.1 06.20.2007 Trojan.PSW.WebMoner.M[/B]

Aditional Information
File size: 28672 bytes
MD5: 2f937d4bb5fbf75dc5d0f757da9fc00a
SHA1: a774698d4cead17049b4c6045125298f54b4dd77
packers: UPX
packers: UPX
packers: UPX
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "QIP8030.exe", received in VirusTotal at 06.20.2007, 14:21:44 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 no virus found
AntiVir 7.4.0.34 06.20.2007 no virus found
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.19.2007 no virus found
BitDefender 7.2 06.20.2007 no virus found
CAT-QuickHeal 9.00 06.19.2007 no virus found
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 no virus found
eSafe 7.0.15.0 06.19.2007 no virus found
eTrust-Vet 30.7.3727 06.19.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
[B]F-Secure 6.70.13030.0 06.20.2007 Backdoor.Win32.Agent.apo[/B]
Ikarus T3.1.1.8 06.20.2007 no virus found
[B]Kaspersky 4.0.2.24 06.20.2007 Trojan.Win32.Patched.y[/B]
McAfee 5056 06.19.2007 no virus found
Microsoft 1.2607 06.20.2007 no virus found
NOD32v2 2341 06.20.2007 no virus found
Norman 5.80.02 06.19.2007 no virus found
Panda 9.0.0.4 06.20.2007 no virus found
Sophos 4.18.0 06.12.2007 no virus found
Sunbelt 2.2.907.0 06.16.2007 no virus found
Symantec 10 06.20.2007 no virus found
TheHacker 6.1.6.136 06.20.2007 no virus found
[B]VBA32 3.12.0.2 06.20.2007 Trojan.Win32.Patched.y[/B]
VirusBuster 4.3.23:9 06.19.2007 no virus found
Webwasher-Gateway 6.0.1 06.20.2007 no virus found

Aditional Information
File size: 2281814 bytes
MD5: 4678c419f5cac5cc67d188326e4e7973
SHA1: 73a17b9d5b48cf3b4681fd7c7f0980af70722443
packers: BINARYRES, BINARYRES

[code]
Complete scanning result of "avz00001.dta", received in VirusTotal at 06.20.2007, 15:41:22 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.20.1 06.20.2007 no virus found
AntiVir 7.4.0.34 06.20.2007 no virus found
Authentium 4.93.8 06.19.2007 no virus found
Avast 4.7.997.0 06.20.2007 no virus found
AVG 7.5.0.467 06.19.2007 no virus found
BitDefender 7.2 06.20.2007 no virus found
CAT-QuickHeal 9.00 06.20.2007 no virus found
ClamAV devel-20070416 06.20.2007 no virus found
DrWeb 4.33 06.20.2007 no virus found
[B]eSafe 7.0.15.0 06.19.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3730 06.20.2007 no virus found
Ewido 4.0 06.20.2007 no virus found
FileAdvisor 1 06.20.2007 no virus found
Fortinet 2.91.0.0 06.20.2007 no virus found
F-Prot 4.3.2.48 06.19.2007 no virus found
F-Secure 6.70.13030.0 06.20.2007 no virus found
Ikarus T3.1.1.8 06.20.2007 no virus found
[COLOR="red"]Kaspersky 4.0.2.24 06.20.2007 no virus found[/COLOR]
McAfee 5056 06.19.2007 no virus found
Microsoft 1.2607 06.20.2007 no virus found
NOD32v2 2341 06.20.2007 no virus found
Norman 5.80.02 06.20.2007 no virus found
Panda 9.0.0.4 06.20.2007 no virus found
[B]Prevx1 V2 06.20.2007 Rootkit.DialCall[/B]
Sophos 4.18.0 06.12.2007 no virus found
[B]Sunbelt 2.2.907.0 06.16.2007 VIPRE.Suspicious[/B]
[B]Symantec 10 06.20.2007 Trojan.Packed.9[/B]
TheHacker 6.1.6.136 06.20.2007 no virus found
VBA32 3.12.0.2 06.20.2007 no virus found
VirusBuster 4.3.23:9 06.19.2007 no virus found
Webwasher-Gateway 6.0.1 06.20.2007 no virus found

Aditional Information
File size: 21504 bytes
MD5: bb02c1d2ea978477a72e166071083aae
SHA1: 02b1d2672b33d4fbeb1c5188fbfb3371ea354934
Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PX5=2DC5B24A00FED526543900A3DB0A7900BDEFD394
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
[/code]

Очень жаль, что не меняют антивирус на сервере вирустотала на последнюю версию с максимальными настройками. Например у меня касперский сразу заметил модификацию гадости, хотя в базах пока нет .

[CODE]Antivirus Version Update Result
[B]AhnLab-V3 2007.6.21.1 06.21.2007 Win32/Zhelatin.worm.188416
AntiVir 7.4.0.34 06.20.2007 TR/Spy.Bzub.B
Authentium 4.93.8 06.21.2007 W32/EmailWorm.KPV
Avast 4.7.997.0 06.20.2007 Win32:Zhelatin-UQ
AVG 7.5.0.467 06.20.2007 Generic3.RSK
BitDefender 7.2 06.21.2007 Trojan.Peed.HUA[/B]
[B]CAT-QuickHeal 9.00 06.21.2007 no virus found
ClamAV devel-20070416 06.21.2007 no virus found[/B]
[B]DrWeb 4.33 06.20.2007 Trojan.Spambot[/B]
eSafe 7.0.15.0 06.20.2007 no virus found
[B]eTrust-Vet 30.8.3730 06.20.2007 Win32/Difisim!generic[/B]
[B]Ewido 4.0 06.20.2007 Trojan.Spambot[/B]
FileAdvisor 1 06.21.2007 no virus found
[B]Fortinet 2.91.0.0 06.21.2007 suspicious
F-Prot 4.3.2.48 06.21.2007 W32/EmailWorm.KPV
Ikarus T3.1.1.8 06.21.2007 Email-Worm.Win32.Zhelatin.ch
Kaspersky 4.0.2.24 06.21.2007 Email-Worm.Win32.Zhelatin.ch
McAfee 5057 06.20.2007 Spam-Mespam
Microsoft 1.2607 06.21.2007 Trojan:Win32/Mespam.A
NOD32v2 2342 06.21.2007 Win32/TrojanProxy.Jaber.NAD
Norman 5.80.02 06.20.2007 W32/Tibs.AJOW
Panda 9.0.0.4 06.20.2007 W32/Nuwar.CV.worm[/B]
Prevx1 V2 06.21.2007 no virus found
Sophos 4.18.0 06.12.2007 no virus found
Sunbelt 2.2.907.0 06.16.2007 no virus found
Symantec 10 06.21.2007 no virus found
TheHacker 6.1.6.136 06.20.2007 no virus found
[B]VBA32 3.12.0.2 06.20.2007 Trojan.Spambot[/B]
VirusBuster 4.3.23:9 06.20.2007 no virus found
[B]Webwasher-Gateway 6.0.1 06.20.2007 Trojan.Spy.Bzub.B[/B]
TrendMicro Office Scan 8.320/4.549 тоже не находит.

Helgin,выделяй пожалуйста наооборот детекты и подозрения .

Complete scanning result of "A32.tmp", received in VirusTotal at 06.29.2007, 09:36:52 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.6.29.0 06.29.2007 no virus found
[B]AntiVir 7.4.0.37 06.29.2007 HEUR/Crypted[/B]
Authentium 4.93.8 06.28.2007 no virus found
Avast 4.7.997.0 06.27.2007 no virus found
AVG 7.5.0.476 06.28.2007 no virus found
BitDefender 7.2 06.29.2007 no virus found
[B]CAT-QuickHeal 9.00 06.27.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.29.2007 no virus found
DrWeb 4.33 06.29.2007 no virus found
[B]eSafe 7.0.15.0 06.27.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3751 06.29.2007 no virus found
Ewido 4.0 06.27.2007 no virus found
FileAdvisor 1 06.29.2007 no virus found
Fortinet 2.91.0.0 06.29.2007 no virus found
F-Prot 4.3.2.48 06.28.2007 no virus found
F-Secure 6.70.13030.0 06.29.2007 no virus found
Ikarus T3.1.1.8 06.29.2007 no virus found
Kaspersky 4.0.2.24 06.29.2007 no virus found
McAfee 5063 06.28.2007 no virus found
Microsoft 1.2701 06.29.2007 no virus found
[I]NOD32v2 2363 06.29.2007 unpack error[/I]
Norman 5.80.02 06.27.2007 no virus found
[B]Panda 9.0.0.4 06.29.2007 Suspicious file
Sophos 4.19.0 06.24.2007 Mal/Basine-C[/B]
Sunbelt 2.2.907.0 06.28.2007 no virus found
Symantec 10 06.29.2007 no virus found
TheHacker 6.1.6.140 06.28.2007 no virus found
VBA32 3.12.0.2 06.28.2007 no virus found
VirusBuster 4.3.23:9 06.27.2007
[B]Webwasher-Gateway 6.0.1 06.29.2007 Heuristic.Crypted[/B]

Aditional Information
File size: 20425 bytes
MD5: 37ffe78228e91817c7b999863f8c03b0
SHA1: 173c0c200a1783efc963d900374deb49563a0a2e
packers: FSG

Complete scanning result of "aaw.exe", received in VirusTotal at 06.30.2007, 15:56:19 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.30.0 06.29.2007 no virus found
AntiVir 7.4.0.37 06.29.2007 no virus found
Authentium 4.93.8 06.29.2007 no virus found
Avast 4.7.997.0 06.29.2007 no virus found
AVG 7.5.0.476 06.29.2007 no virus found
BitDefender 7.2 06.30.2007 no virus found
CAT-QuickHeal 9.00 06.30.2007 no virus found
ClamAV devel-20070416 06.30.2007 no virus found
DrWeb 4.33 06.30.2007 no virus found
eSafe 7.0.15.0 06.30.2007 no virus found
eTrust-Vet 30.8.3752 06.29.2007 no virus found
Ewido 4.0 06.30.2007 no virus found
FileAdvisor 1 06.30.2007 no virus found
Fortinet 2.91.0.0 06.30.2007 no virus found
F-Prot 4.3.2.48 06.29.2007 no virus found
[B]F-Secure 6.70.13030.0 06.29.2007 W32/Malware[/B]
[B]Ikarus T3.1.1.8 06.30.2007 Virus.Win32.Delf.m[/B]
Kaspersky 4.0.2.24 06.30.2007 no virus found
McAfee 5064 06.29.2007 no virus found
[B]Microsoft 1.2701 06.30.2007 Backdoor:Win32/Poison.G[/B]
NOD32v2 2365 06.30.2007 no virus found
[B]Norman 5.80.02 06.29.2007 W32/Malware[/B]
[B]Panda 9.0.0.4 06.30.2007 Suspicious file[/B]
Sophos 4.19.0 06.24.2007 no virus found
Sunbelt 2.2.907.0 06.29.2007 no virus found
Symantec 10 06.30.2007 no virus found
TheHacker 6.1.6.140 06.28.2007 no virus found
[B]VBA32 3.12.0.2 06.29.2007 suspected of Backdoor.Hupigon.29 [/B](paranoid heuristics)
VirusBuster 4.3.23:9 06.29.2007 no virus found
Webwasher-Gateway 6.0.1 06.29.2007 no virus found

Aditional Information
File size: 64000 bytes
MD5: 3f3bbea16c4f600dca9be73176d03eb3
SHA1: 74b5d96c0a431c10e0720b536fb2f11d10d47289

Из [url]http://virusinfo.info/showthread.php?t=10729[/url]

AhnLab-V3 2007.6.30.0 06.29.2007 no ha encontrado virus
[B]AntiVir 7.4.0.37 06.29.2007 TR/Agent.7680.31[/B]
Authentium 4.93.8 06.29.2007 no ha encontrado virus
Avast 4.7.997.0 06.29.2007 no ha encontrado virus
AVG 7.5.0.476 06.29.2007 no ha encontrado virus
[B]BitDefender 7.2 06.30.2007 Trojan.Agent.AQI[/B]
CAT-QuickHeal 9.00 06.30.2007 no ha encontrado virus
ClamAV devel-20070416 06.30.2007 no ha encontrado virus
DrWeb 4.33 06.30.2007 no ha encontrado virus
[B]eSafe 7.0.15.0 06.30.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3752 06.29.2007 no ha encontrado virus
[B]Ewido 4.0 06.30.2007 Trojan.Agent[/B]
FileAdvisor 1 06.30.2007 no ha encontrado virus
Fortinet 2.91.0.0 06.30.2007 no ha encontrado virus
F-Prot 4.3.2.48 06.29.2007 no ha encontrado virus
F-Secure 6.70.13030.0 06.29.2007 no ha encontrado virus
[B]Ikarus T3.1.1.8 06.30.2007 Trojan.Agent.AQI[/B]
Kaspersky 4.0.2.24 06.30.2007 no ha encontrado virus
McAfee 5064 06.29.2007 no ha encontrado virus
Microsoft 1.2701 06.30.2007 no ha encontrado virus
NOD32v2 2365 06.30.2007 no ha encontrado virus
Norman 5.80.02 06.29.2007 no ha encontrado virus
[B]Panda 9.0.0.4 06.30.2007 Malware Generic[/B]
Sophos 4.19.0 06.28.2007 no ha encontrado virus
[B]Sunbelt 2.2.907.0 06.29.2007 Trojan-Downloader[/B]
Symantec 10 06.30.2007 no ha encontrado virus
TheHacker 6.1.6.140 06.28.2007 no ha encontrado virus
VBA32 3.12.0.2 06.29.2007 no ha encontrado virus
VirusBuster 4.3.23:9 06.29.2007 no ha encontrado virus
[B]Webwasher-Gateway 6.0.1 06.29.2007 Trojan.Agent.7680.31[/B]

Aditional Information
Tamaсo archivo: 7680 bytes
MD5: 822e9d9570c81c5ecdbd468ad989449a
SHA1: da3a7a74b161680ccd0b39c57f1381c19e1aca1c
packers: UPX
packers: UPX
packers: UPX



AhnLab-V3 2007.6.30.0 06.29.2007 no virus found
AntiVir 7.4.0.37 06.29.2007 no virus found
Authentium 4.93.8 06.29.2007 no virus found
Avast 4.7.997.0 06.29.2007 no virus found
AVG 7.5.0.476 06.29.2007 no virus found
[B]BitDefender 7.2 06.30.2007 Trojan.Peed.Gen[/B]
[B]CAT-QuickHeal 9.00 06.30.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 06.30.2007 no virus found
DrWeb 4.33 06.30.2007 no virus found
[B]eSafe 7.0.15.0 06.30.2007 Suspicious Trojan/Worm[/B]
[B]eTrust-Vet 30.8.3752 06.29.2007 Win32/MicroJoiner!generic[/B]
Ewido 4.0 06.30.2007 no virus found
FileAdvisor 1 06.30.2007 no virus found
Fortinet 2.91.0.0 06.30.2007 no virus found
F-Prot 4.3.2.48 06.29.2007 no virus found
F-Secure 6.70.13030.0 06.29.2007 no virus found
Ikarus T3.1.1.8 06.30.2007 no virus found
[B]Kaspersky 4.0.2.24 06.30.2007 Packed.Win32.PolyCrypt.b[/B]
[B]McAfee 5064 06.29.2007 New Win32.g5[/B]
[B]Microsoft 1.2701 06.30.2007 Trojan:Win32/Anomaly.gen!A[/B]
NOD32v2 2365 06.30.2007 no virus found
Norman 5.80.02 06.29.2007 no virus found
Panda 9.0.0.4 06.30.2007 no virus found
Sophos 4.19.0 06.24.2007 no virus found
[B]Sunbelt 2.2.907.0 06.29.2007 VIPRE.Suspicious[/B]
Symantec 10 06.30.2007 no virus found
TheHacker 6.1.6.140 06.28.2007 no virus found
[B]VBA32 3.12.0.2 06.29.2007 suspected of Malware.Microjoin.1 (paranoid heuristics)
VirusBuster 4.3.23:9 06.29.2007 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 06.29.2007 Win32.Malware.gen!88 (suspicious)[/B]

Aditional Information
File size: 57304 bytes
MD5: d92f9ee6d7aa42893abc682fdad229ff
SHA1: 2dd9f196b2d7332e3027f052365daa20cda04243

Complete scanning result of "AvpM.exe", received in VirusTotal at 07.01.2007, 11:43:01 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.30.0 06.29.2007 no virus found
AntiVir 7.4.0.37 06.29.2007 no virus found
Authentium 4.93.8 06.29.2007 no virus found
Avast 4.7.997.0 07.01.2007 no virus found
AVG 7.5.0.476 06.30.2007 no virus found
BitDefender 7.2 07.01.2007 no virus found
CAT-QuickHeal 9.00 06.30.2007 no virus found
ClamAV devel-20070416 07.01.2007 no virus found
DrWeb 4.33 07.01.2007 no virus found
eSafe 7.0.15.0 06.30.2007 no virus found
eTrust-Vet 30.8.3752 06.29.2007 no virus found
Ewido 4.0 07.01.2007 no virus found
FileAdvisor 1 07.01.2007 no virus found
Fortinet 2.91.0.0 07.01.2007 no virus found
F-Prot 4.3.2.48 06.29.2007 no virus found
F-Secure 6.70.13030.0 06.29.2007 no virus found
Ikarus T3.1.1.8 07.01.2007 no virus found
[B]Kaspersky 4.0.2.24 07.01.2007 Trojan.Win32.Delf.adc[/B]
McAfee 5064 06.29.2007 no virus found
Microsoft 1.2701 07.01.2007 no virus found
NOD32v2 2366 07.01.2007 no virus found
Norman 5.80.02 06.29.2007 no virus found
Panda 9.0.0.4 06.30.2007 no virus found
Sophos 4.19.0 06.28.2007 no virus found
Sunbelt 2.2.907.0 06.29.2007 no virus found
Symantec 10 07.01.2007 no virus found
TheHacker 6.1.6.140 06.28.2007 no virus found
VBA32 3.12.0.2 06.30.2007 no virus found
VirusBuster 4.3.23:9 06.30.2007 no virus found
Webwasher-Gateway 6.0.1 06.29.2007 no virus found

Aditional Information
File size: 468992 bytes
MD5: 4fe21adb692b9e744a7887f52c2ca319
SHA1: 687727555f2131feadbf04e412f5566940b5e8b3

:D

[size="1"][color="#666686"][B]Добавлено через 6 часов 14 минут[/B][/color][/size]
Complete scanning result of "net-codec1237.exe", received in VirusTotal at 07.01.2007, 17:57:40 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.30.0 06.29.2007 no virus found
AntiVir 7.4.0.37 06.29.2007 no virus found
[B]Authentium 4.93.8 06.29.2007 is a security risk or a "backdoor" program [/B]
Avast 4.7.997.0 07.01.2007 no virus found
[B]AVG 7.5.0.476 07.01.2007 Downloader.Zlob.LDU
BitDefender 7.2 07.01.2007 Trojan.DNSChanger.OZ[/B]
CAT-QuickHeal 9.00 06.30.2007 no virus found
ClamAV devel-20070416 07.01.2007 no virus found
DrWeb 4.33 07.01.2007 no virus found
eSafe 7.0.15.0 06.30.2007 no virus found
eTrust-Vet 30.8.3752 06.29.2007 no virus found
Ewido 4.0 07.01.2007 no virus found
FileAdvisor 1 07.01.2007 no virus found
[B]Fortinet 2.91.0.0 07.01.2007 Zlobar!tr
F-Prot 4.3.2.48 06.29.2007 W32/Zlob.AFJ
F-Secure 6.70.13030.0 07.01.2007 DNSChanger.gen9 [/B]
Ikarus T3.1.1.8 07.01.2007 no virus found
Kaspersky 4.0.2.24 07.01.2007 no virus found
McAfee 5064 06.29.2007 no virus found
Microsoft 1.2701 07.01.2007 no virus found
NOD32v2 2367 07.01.2007 no virus found
[B]Norman 5.80.02 06.29.2007 DNSChanger.gen9 [/B]
Panda 9.0.0.4 07.01.2007 no virus found
[B]Sophos 4.19.0 06.24.2007 Troj/Zlobar-Fam [/B]
Sunbelt 2.2.907.0 06.29.2007 no virus found
[B]Symantec 10 07.01.2007 Trojan.Zlob [/B]
[B]TheHacker 6.1.6.140 06.28.2007 Trojan/DNSChanger.ik [/B]
VBA32 3.12.0.2 06.30.2007 no virus found
VirusBuster 4.3.23:9 07.01.2007 no virus found
Webwasher-Gateway 6.0.1 06.29.2007 no virus found


Aditional Information
File size: 72855 bytes
MD5: 7c8b241d090464f0f65f2f141e70c259
SHA1: 7ef7aa21592cedc8aac61a548e782558fe196220
packers: BINARYRES, BINARYRES

файл появился у меня примерно месяц назад, решил сегодня проверить:
Complete scanning result of "update.exe", received in VirusTotal at 07.02.2007, 09:49:04 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.7.2.0 07.02.2007 no virus found
[B]AntiVir 7.4.0.37 07.02.2007 TR/Dldr.SVloader[/B]
[I]Authentium 4.93.8 06.29.2007 could be a corrupted executable [/I]file
Avast 4.7.997.0 07.02.2007 no virus found
AVG 7.5.0.476 07.01.2007 no virus found
BitDefender 7.2 07.02.2007 no virus found
[B]CAT-QuickHeal 9.00 06.30.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 07.02.2007 no virus found
DrWeb 4.33 07.02.2007 no virus found
[B]eSafe 7.0.15.0 06.30.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3752 06.29.2007 no virus found
Ewido 4.0 07.01.2007 no virus found
FileAdvisor 1 07.02.2007 no virus found
[B]Fortinet 2.91.0.0 07.01.2007 W32/Nurech.AZ!tr.dldr[/B]
F-Prot 4.3.2.48 06.29.2007 no virus found
F-Secure 6.70.13030.0 07.02.2007 no virus found
Ikarus T3.1.1.8 07.02.2007 no virus found
Kaspersky 4.0.2.24 07.02.2007 no virus found
McAfee 5064 06.29.2007 no virus found
Microsoft 1.2701 07.02.2007 no virus found
NOD32v2 2368 07.01.2007 no virus found
[B]Norman 5.80.02 06.29.2007 W32/Suspicious_U.gen[/B]
[B]Panda 9.0.0.4 07.02.2007 Suspicious file[/B]
[B]Sophos 4.19.0 06.24.2007 Mal/Packer[/B]
Sunbelt 2.2.907.0 06.29.2007 no virus found
Symantec 10 07.02.2007 no virus found
TheHacker 6.1.6.140 06.28.2007 no virus found
VBA32 3.12.0.2 07.02.2007 no virus found
VirusBuster 4.3.23:9 07.01.2007
[B]Webwasher-Gateway 6.0.1 07.02.2007 Trojan.Dldr.SVloader[/B]

Aditional Information
File size: 2390 bytes
MD5: 77aad22bb98b0b0b3c72f5d59d5a5fbc
SHA1: b3578f95b4be838affc28ce3392c08c05f2780b1
packers: UPACK

t=10787
Калькулятор металлурга.exe
Complete scanning result of "___1050", received in VirusTotal at 07.03.2007, 09:05:08 (CET).

Antivirus Version Update Result
[b]AhnLab-V3 2007.7.2.0 07.03.2007 Win-Trojan/StartPage.880640.C[/b]
[b]AntiVir 7.4.0.37 07.03.2007 TR/StartPage.ahu[/b]
Authentium 4.93.8 07.03.2007 no virus found
Avast 4.7.997.0 07.02.2007 no virus found
[b]AVG 7.5.0.476 07.02.2007 Startpage.BHW[/b]
[b]BitDefender 7.2 07.03.2007 Trojan.Startpage.AHU[/b]
CAT-QuickHeal 9.00 07.02.2007 no virus found
ClamAV devel-20070416 07.03.2007 no virus found
DrWeb 4.33 07.02.2007 no virus found
[b]eSafe 7.0.15.0 07.03.2007 Win32.StartPage.ahu[/b]
eTrust-Vet 30.8.3759 07.02.2007 no virus found
[b]Ewido 4.0 07.02.2007 Hijacker.StartPage.ahu[/b]
FileAdvisor 1 07.03.2007 no virus found
[b]Fortinet 2.91.0.0 07.03.2007 PossibleThreat[/b]
F-Prot 4.3.2.48 07.02.2007 no virus found
[b]F-Secure 6.70.13030.0 07.03.2007 Trojan.Win32.StartPage.ahu[/b]
[b]Ikarus T3.1.1.8 07.03.2007 Trojan.Win32.StartPage.ahu[/b]
[b]Kaspersky 4.0.2.24 07.03.2007 Trojan.Win32.StartPage.ahu[/b]
[b]McAfee 5065 07.02.2007 Generic StartPage[/b]
Microsoft 1.2701 07.02.2007 no virus found
[b]NOD32v2 2372 07.03.2007 probably unknown NewHeur_PE virus[/b]
[b]Norman 5.80.02 07.02.2007 W32/Startpage.ESL[/b]
[b]Panda 9.0.0.4 07.02.2007 Adware/Startpage.CTK[/b]
Sophos 4.19.0 06.28.2007 no virus found
Sunbelt 2.2.907.0 07.02.2007 no virus found
Symantec 10 07.03.2007 no virus found
TheHacker 6.1.6.141 07.02.2007 no virus found
[b]VBA32 3.12.0.2 07.02.2007 Trojan.Win32.StartPage.ahu[/b]
VirusBuster 4.3.23:9 07.02.2007 no virus found
[b]Webwasher-Gateway 6.0.1 07.03.2007 Trojan.StartPage.ahu[/b]

Aditional Information
File size: 880640 bytes
MD5: 4ec9bb738ddc16249301e37b2c262f05
SHA1: 504550d353ebc9049bd7ed160db71848adc50e54

Complete scanning result of "blnq.exe", received in VirusTotal at 07.03.2007, 09:02:12 (CET).


Antivirus Version Update Result
AhnLab-V3 2007.7.2.0 07.03.2007 no virus found
AntiVir 7.4.0.37 07.03.2007 no virus found
[B]Authentium 4.93.8 07.03.2007 W32/Trojan.AVBH[/B]
Avast 4.7.997.0 07.02.2007 no virus found
[B]AVG 7.5.0.476 07.02.2007 PSW.Ldpinch.JHI[/B]
[B]BitDefender 7.2 07.03.2007 Trojan.PWS.LDPinch.TAG
CAT-QuickHeal 9.00 07.02.2007 (Suspicious) - DNAScan
ClamAV devel-20070416 07.03.2007 Trojan.Spy-9717[/B]
DrWeb 4.33 07.02.2007 no virus found
[B]eSafe 7.0.15.0 07.03.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3759 07.02.2007 no virus found
[B]Ewido 4.0 07.02.2007 Worm.Zhelatin.ch[/B]
FileAdvisor 1 07.03.2007 no virus found
Fortinet 2.91.0.0 07.03.2007 no virus found
F-Prot 4.3.2.48 07.02.2007 no virus found
[B]F-Secure 6.70.13030.0 07.03.2007 Email-Worm.Win32.Zhelatin.ch[/B]
[B]Ikarus T3.1.1.8 07.03.2007 Email-Worm.Win32.Zhelatin.ch [/B]
[B]Kaspersky 4.0.2.24 07.03.2007 Email-Worm.Win32.Zhelatin.ch [/B]
McAfee 5065 07.02.2007 no virus found
Microsoft 1.2701 07.02.2007 no virus found
NOD32v2 2372 07.03.2007 no virus found
Norman 5.80.02 07.02.2007 no virus found
Panda 9.0.0.4 07.02.2007 no virus found
Sophos 4.19.0 06.28.2007 no virus found
Sunbelt 2.2.907.0 07.02.2007 no virus found
Symantec 10 07.03.2007 no virus found
TheHacker 6.1.6.141 07.02.2007 no virus found
[B] VBA32 3.12.0.2 07.02.2007 Email-Worm.Win32.Zhelatin.ch [/B]
VirusBuster 4.3.23:9 07.02.2007 no virus found
Webwasher-Gateway 6.0.1 07.03.2007 no virus found


Aditional Information
File size: 65536 bytes
MD5: 5928c3f7b2a803723d19a08b1c6ab4dd
SHA1: c0fccb060ffd3425c6aab817e2ebc36f0ff5a73f

[size="1"][color="#666686"][B]Добавлено через 2 часа 57 минут[/B][/color][/size]
STATUS: FINISHEDComplete scanning result of "update.exe", received in VirusTotal at 07.03.2007, 12:09:38 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.7.2.0 07.03.2007 no virus found
[B]AntiVir 7.4.0.37 07.03.2007 TR/Dldr.DNSChanger.Gen [/B]
Authentium 4.93.8 07.03.2007 no virus found
Avast 4.7.997.0 07.02.2007 no virus found
AVG 7.5.0.476 07.02.2007 no virus found
BitDefender 7.2 07.03.2007 no virus found
CAT-QuickHeal 9.00 07.02.2007 no virus found
ClamAV devel-20070416 07.03.2007 no virus found
DrWeb 4.33 07.03.2007 no virus found
eSafe 7.0.15.0 07.03.2007 no virus found
eTrust-Vet 30.8.3760 07.03.2007 no virus found
Ewido 4.0 07.03.2007 no virus found
FileAdvisor 1 07.03.2007 no virus found
Fortinet 2.91.0.0 07.03.2007 no virus found
F-Prot 4.3.2.48 07.02.2007 no virus found
[B]F-Secure 6.70.13030.0 07.03.2007 Basine.gen1 [/B]
[B]Ikarus T3.1.1.8 07.03.2007 Trojan-Downloader.Win32.Small.cyn [/B]
Kaspersky 4.0.2.24 07.03.2007 no virus found
[B]McAfee 5065 07.02.2007 New Malware.eq [/B]
Microsoft 1.2701 07.02.2007 no virus found
NOD32v2 2373 07.03.2007 no virus found
[B]Norman 5.80.02 07.03.2007 Basine.gen1 [/B]
Panda 9.0.0.4 07.02.2007 no virus found
[B]Sophos 4.19.0 06.24.2007 Mal/AvPak [/B]
[B]Sunbelt 2.2.907.0 07.02.2007 VIPRE.Suspicious [/B]
Symantec 10 07.03.2007 no virus found
TheHacker 6.1.6.141 07.02.2007 no virus found
VBA32 3.12.0.2 07.02.2007 no virus found
[B] VirusBuster 4.3.23:9 07.02.2007 Trojan.DR.Cimuz.Gen.1 [/B]
[B]Webwasher-Gateway 6.0.1 07.03.2007 Trojan.Dldr.DNSChanger.Gen [/B]


Aditional Information
File size: 7429 bytes
MD5: 0c40b57e8372b40b1f80c111e0cffd1d
SHA1: 4bd54a4d1533e98bfcabfd654c615c7168f454de
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

Complete scanning result of "syshavv.exe", received in VirusTotal at 07.04.2007, 13:45:28 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.7.4.0 07.04.2007 no virus found
[B]AntiVir 7.4.0.37 07.04.2007 TR/Dldr.Small.AAAK [/B]
[B]Authentium 4.93.8 07.03.2007 W32/Downloader2.AKBC [/B]
Avast 4.7.997.0 07.03.2007 no virus found
AVG 7.5.0.476 07.03.2007 no virus found
BitDefender 7.2 07.04.2007 no virus found
CAT-QuickHeal 9.00 07.03.2007 no virus found
ClamAV devel-20070416 07.04.2007 no virus found
[B]DrWeb 4.33 07.04.2007 Trojan.DownLoader.25708 [/B]
[B]eSafe 7.0.15.0 07.03.2007 Win32.Small.evp [/B]
[B]eTrust-Vet 30.8.3762 07.04.2007 Win32/Chepvil!generic [/B]
Ewido 4.0 07.04.2007 no virus found
FileAdvisor 1 07.04.2007 no virus found
[B]Fortinet 2.91.0.0 07.03.2007 W32/Clagger.EVP!tr.dldr
F-Prot 4.3.2.48 07.03.2007 W32/Downloader2.AKBC
F-Secure 6.70.13030.0 07.04.2007 Trojan-Downloader.Win32.Small.evp
Ikarus T3.1.1.8 07.04.2007 Trojan-Downloader.Win32.Small.evp
Kaspersky 4.0.2.24 07.04.2007 Trojan-Downloader.Win32.Small.evp [/B]
McAfee 5066 07.03.2007 no virus found
Microsoft 1.2701 07.04.2007 no virus found
NOD32v2 2378 07.04.2007 no virus found
Norman 5.80.02 07.04.2007 no virus found
[B]Panda 9.0.0.4 07.04.2007 Trj/LdPinch.AJV [/B]
Sophos 4.19.0 06.24.2007 no virus found
Sunbelt 2.2.907.0 07.04.2007 no virus found
[B]Symantec 10 07.04.2007 Downloader [/B]
[B]TheHacker 6.1.6.142 07.04.2007 Trojan/Downloader.Small.evp [/B]
[B]VBA32 3.12.0.2 07.03.2007 Trojan-Downloader.Win32.Small.evp [/B]
VirusBuster 4.3.23:9 07.03.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.04.2007 Trojan.Dldr.Small.AAAK [/B]


Aditional Information
File size: 7283 bytes
MD5: f375392a727db59b79404f8379d4087d
SHA1: 3ec7f8d34efc83f675de8a18b9cb1a064b22098d

Дочь получила на свой комп 11 довольно свежих файлов с вирусами, я их прогнал через вирустотал ещё до того, как зарегистрировался на этом форуме - поэтому, сорри, отчет оформлен не так, как здесь принято... Если нужно - подробный отчет в прикрепленном файле, там же имеется ссылка на архив с этими вирусами.
[B]

[COLOR="Sienna"]Низзя ;) Если хотите прислать, есть специальная форма [url]http://virusinfo.info/upload_virus.php?tid=7403[/url] вирусы запаковать только в zip архив и обязательно с паролем: virus [/COLOR][/B]

Честно говоря, не понял, что именно нельзя, прямые ссылки на вирусы что ли? В правилах форума на эту тему ничего.
Исправил: в прикрепленном файле с текстом была гиперссылка на вирусы - её убрал, теперь только отчет (текстовый файл doc), запаковал в zip без пароля.

Complete scanning result of "PICT0580.exe", received in VirusTotal at 07.04.2007, 23:26:00 (CET).

Antivirus Version Update Result
[B]AhnLab-V3 2007.7.5.0 07.04.2007 Dropper/Frijoiner.26350[/B]
AntiVir 7.4.0.37 07.04.2007 no virus found
Authentium 4.93.8 07.04.2007 no virus found
[B]Avast 4.7.997.0 07.04.2007 Win32:LdPinch-NO[/B]
AVG 7.5.0.476 07.04.2007 no virus found
[B]BitDefender 7.2 07.04.2007 Trojan.PWS.LdPinch.TAI[/B]
CAT-QuickHeal 9.00 07.04.2007 no virus found
[B]ClamAV devel-20070416 07.04.2007 Trojan.Dropper-1164[/B]
DrWeb 4.33 07.04.2007 no virus found
eSafe 7.0.15.0 07.04.2007 no virus found
eTrust-Vet 30.8.3762 07.04.2007 no virus found
Ewido 4.0 07.04.2007 no virus found
FileAdvisor 1 07.04.2007 no virus found
Fortinet 2.91.0.0 07.03.2007 no virus found
F-Prot 4.3.2.48 07.04.2007 no virus found
[B]F-Secure 6.70.13030.0 07.04.2007 Trojan-Dropper.Win32.Agent.bgn
Ikarus T3.1.1.8 07.04.2007 Trojan-Dropper.Win32.Agent.bgn
Kaspersky 4.0.2.24 07.04.2007 Trojan-Dropper.Win32.Agent.bgn[/B]
McAfee 5067 07.04.2007 no virus found
Microsoft 1.2701 07.04.2007 no virus found
[B]NOD32v2 2378 07.04.2007 Win32/TrojanDropper.FriJoiner.NAA
Norman 5.80.02 07.04.2007 W32/Suspicious_U.gen.dropper
Panda 9.0.0.4 07.04.2007 Suspicious file[/B]
Sophos 4.19.0 06.28.2007 no virus found
Sunbelt 2.2.907.0 07.04.2007 no virus found
Symantec 10 07.04.2007 no virus found
TheHacker 6.1.6.142 07.04.2007 no virus found
[B]VBA32 3.12.0.2 07.03.2007 Trojan-Dropper.Win32.Agent.bgn
VirusBuster 4.3.23:9 07.04.2007 Trojan.DR.Webmoner.Gen.2[/B]
Webwasher-Gateway 6.0.1 07.04.2007 no virus found

Aditional Information
File size: 110738 bytes
MD5: 7be2daece8534f7a2759f335764d4dd3
SHA1: 81dbf4be5a412faa83c6bd572d456e0ec7ef89af
________________________

Complete scanning result of "Client_SBRF.exe", received in VirusTotal at 07.04.2007, 23:50:42 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.7.5.0 07.04.2007 no virus found
AntiVir 7.4.0.37 07.04.2007 no virus found
[B]Authentium 4.93.8 07.04.2007 W32/Dropper.EUM[/B]
Avast 4.7.997.0 07.04.2007 no virus found
[B]AVG 7.5.0.476 07.04.2007 Dropper.Generic.MXP[/B]
BitDefender 7.2 07.04.2007 no virus found
CAT-QuickHeal 9.00 07.04.2007 no virus found
ClamAV devel-20070416 07.04.2007 no virus found
DrWeb 4.33 07.04.2007 no virus found
eSafe 7.0.15.0 07.04.2007 no virus found
eTrust-Vet 30.8.3762 07.04.2007 no virus found
[B]Ewido 4.0 07.04.2007 Dropper.Delf.aeu[/B]
FileAdvisor 1 07.04.2007 no virus found
Fortinet 2.91.0.0 07.03.2007 no virus found
[B]F-Prot 4.3.2.48 07.04.2007 W32/Dropper.EUM
F-Secure 6.70.13030.0 07.04.2007 Trojan-Dropper.Win32.Delf.aeu
Ikarus T3.1.1.8 07.04.2007 Trojan-Dropper.Win32.Delf.aeu
Kaspersky 4.0.2.24 07.04.2007 Trojan-Dropper.Win32.Delf.aeu[/B]
McAfee 5067 07.04.2007 no virus found
Microsoft 1.2701 07.04.2007 no virus found
NOD32v2 2379 07.04.2007 no virus found
Norman 5.80.02 07.04.2007 no virus found
Panda 9.0.0.4 07.04.2007 no virus found
Sophos 4.19.0 06.28.2007 no virus found
Sunbelt 2.2.907.0 07.04.2007 no virus found
Symantec 10 07.04.2007 no virus found
TheHacker 6.1.6.142 07.04.2007 no virus found
[B]VBA32 3.12.0.2 07.03.2007 Trojan-Dropper.Win32.Delf.aeu[/B]
VirusBuster 4.3.23:9 07.04.2007 no virus found
Webwasher-Gateway 6.0.1 07.04.2007 no virus found

Aditional Information
File size: 39434 bytes
MD5: b5554f04fa1c51cc0697d0510a8dc9ba
SHA1: 9772e05e96cc3905ad62d6804c7e70a6c073a04b

помните 187 пост? AntiVir и Norman почему-то перестали его ловить...
Complete scanning result of "A32.tmp", received in VirusTotal at 07.05.2007, 15:46:13 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.7.5.0 07.05.2007 no virus found
[COLOR="Red"]AntiVir 7.4.0.37 07.05.2007 no virus found[/COLOR]
Authentium 4.93.8 07.04.2007 no virus found
Avast 4.7.997.0 07.04.2007 no virus found
[B]AVG 7.5.0.476 07.04.2007 PSW.Ldpinch.JSL[/B]
BitDefender 7.2 07.05.2007 no virus found
[B]CAT-QuickHeal 9.00 07.04.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 07.05.2007 no virus found
DrWeb 4.33 07.05.2007 no virus found
[B]eSafe 7.0.15.0 07.05.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3765 07.05.2007 no virus found
Ewido 4.0 07.05.2007 no virus found
FileAdvisor 1 07.05.2007 no virus found
[B]Fortinet 2.91.0.0 07.05.2007 W32/Basine.C!tr[/B]
F-Prot 4.3.2.48 07.04.2007 no virus found
F-Secure 6.70.13260.0 07.05.2007 no virus found
Ikarus T3.1.1.8 07.05.2007 no virus found
Kaspersky 4.0.2.24 07.05.2007 no virus found
McAfee 5067 07.04.2007 no virus found
Microsoft 1.2701 07.05.2007 no virus found
[I]NOD32v2 2379 07.04.2007 unpack error[/I]
[COLOR="Red"]Norman 5.80.02 07.04.2007 no virus found[/COLOR]
[B]Panda 9.0.0.4 07.05.2007 Suspicious file[/B]
[B]Sophos 4.19.0 06.28.2007 Mal/Basine-C[/B]
Sunbelt 2.2.907.0 07.04.2007 no virus found
Symantec 10 07.05.2007 no virus found
TheHacker 6.1.6.142 07.04.2007 no virus found
VBA32 3.12.0.2 07.05.2007 no virus found
VirusBuster 4.3.23:9 07.04.2007
[B]Webwasher-Gateway 6.0.1 07.05.2007 Win32.Malware.gen#FSG (suspicious)
[/B]
Aditional Information
File size: 20425 bytes
MD5: 37ffe78228e91817c7b999863f8c03b0
SHA1: 173c0c200a1783efc963d900374deb49563a0a2e
packers: FSG

Вот такая удачная охота была сегодня.
Обращаем внимание кто не ловит.

[QUOTE]winzdn32.dll тема 9444

[b]AhnLab-V3 2007.7.5.0 07.06.2007 Win-Trojan/Agent.22528.AO[/b]
AntiVir 7.4.0.39 07.06.2007 no virus found
[b]Authentium 4.93.8 07.06.2007 W32/Trojan.YOR[/b]
Avast 4.7.997.0 07.06.2007 no virus found
[b]AVG 7.5.0.476 07.06.2007 Generic3.GEH[/b]
[b]BitDefender 7.2 07.06.2007 Trojan.Agent.QT[/b]
[b]CAT-QuickHeal 9.00 07.06.2007 Trojan.Agent.qt[/b]
[b]ClamAV devel-20070416 07.06.2007 Trojan.Agent-2270[/b]
DrWeb 4.33 07.06.2007 no virus found
[b]eSafe 7.0.15.0 07.05.2007 Suspicious Trojan/Worm[/b]
[b]eTrust-Vet 30.8.3767 07.06.2007 Win32/Nebuler.BA[/b]
Ewido 4.0 07.06.2007 no virus found
FileAdvisor 1 07.06.2007 no virus found
Fortinet 2.91.0.0 07.06.2007 no virus found
[b]F-Prot 4.3.2.48 07.06.2007 W32/Trojan.YOR[/b]
[b]F-Secure 6.70.13260.0 07.06.2007 W32/Agent.BDLF[/b]
[b]Ikarus T3.1.1.8 07.06.2007 Trojan.Win32.Agent.qt[/b]
[b]Kaspersky 4.0.2.24 07.06.2007 Trojan.Win32.Agent.vg[/b]
[b]McAfee 5068 07.05.2007 BackDoor-CVT[/b]
[b]Microsoft 1.2704 07.06.2007 Trojan:Win32/Agent.PA[/b]
[b]NOD32v2 2382 07.06.2007 probably a variant of Win32/Agent.QT[/b]
[b]Norman 5.80.02 07.06.2007 W32/Agent.BDLF[/b]
[b]Panda 9.0.0.4 07.06.2007 Adware/SuperSpider[/b]
Sophos 4.19.0 07.06.2007 no virus found
[b]Sunbelt 2.2.907.0 07.06.2007 VIPRE.Suspicious[/b]
Symantec 10 07.06.2007 no virus found
TheHacker 6.1.6.143 07.05.2007 no virus found
VBA32 3.12.0.2 07.06.2007 no virus found
[b]VirusBuster 4.3.23:9 07.05.2007 Trojan.Agent.UPK[/b]
[b]Webwasher-Gateway 6.0.1 07.06.2007 Win32.Malware.gen (suspicious)[/b]
[/QUOTE]

Результат сканирования альфа-версии AVZ 4.26[QUOTE]AhnLab-V3 2007.7.7.0 07.06.2007 no virus found
AntiVir 7.4.0.39 07.06.2007 no virus found
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.06.2007 no virus found
AVG 7.5.0.476 07.06.2007 no virus found
BitDefender 7.2 07.07.2007 no virus found
CAT-QuickHeal 9.00 07.06.2007 no virus found
ClamAV devel-20070416 07.06.2007 no virus found
DrWeb 4.33 07.06.2007 no virus found
[B]eSafe 7.0.15.0 07.06.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3769 07.07.2007 no virus found
Ewido 4.0 07.06.2007 no virus found
FileAdvisor 1 07.07.2007 no virus found
Fortinet 2.91.0.0 07.07.2007 no virus found
F-Prot 4.3.2.48 07.06.2007 no virus found
F-Secure 6.70.13260.0 07.06.2007 no virus found
Ikarus T3.1.1.8 07.07.2007 no virus found
Kaspersky 4.0.2.24 07.07.2007 no virus found
McAfee 5069 07.06.2007 no virus found
Microsoft 1.2704 07.07.2007 no virus found
NOD32v2 2383 07.06.2007 no virus found
Norman 5.80.02 07.06.2007 no virus found
Panda 9.0.0.4 07.07.2007 no virus found
Sophos 4.19.0 07.06.2007 no virus found
Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.07.2007 no virus found
TheHacker 6.1.6.143 07.05.2007 no virus found
VBA32 3.12.0.2 07.07.2007 no virus found
VirusBuster 4.3.23:9 07.06.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.07.2007 Worm.Win32.ModifiedUPX.gen!90 (suspicious)[/B][/QUOTE]

File: reset5.dll
MD5: 4bbb069330b8124085eb38eb4391dcd9
Scan taken on 07 Jul 2007 16:46:16 (GMT)
A-Squared Found nothing
AntiVir Found nothing
[B]ArcaVir Found Trojan.Vb.Mn [/B]
Avast Found nothing
[B]AVG Antivirus Found Downloader.Tibs.5.AK [/B]
BitDefender Found nothing
ClamAV Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
F-Secure Anti-Virus Found nothing
Fortinet Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found nothing
Panda Antivirus Found nothing
[B]Rising Antivirus Found Trojan.DL.Win32.Agent.di[/B]
Sophos Antivirus Found nothing
VirusBuster Found nothing
VBA32 Found nothing