-
t=11364 (проверялось вчера)
[CODE] File nso12k.sys received on 07.30.2007 09:46:16 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.28.0 2007.07.30 -
AntiVir 7.4.0.50 2007.07.30 -
Authentium 4.93.8 2007.07.27 -
Avast 4.7.997.0 2007.07.30 Win32:Agent-JKC
AVG 7.5.0.476 2007.07.30 -
BitDefender 7.2 2007.07.30 -
CAT-QuickHeal 9.00 2007.07.28 -
ClamAV 0.91 2007.07.30 -
DrWeb 4.33 2007.07.30 -
eSafe 7.0.15.0 2007.07.29 -
eTrust-Vet 31.1.5010 2007.07.28 -
Ewido 4.0 2007.07.29 -
FileAdvisor 1 2007.07.30 -
Fortinet 2.91.0.0 2007.07.30 -
F-Prot 4.3.2.48 2007.07.27 -
F-Secure 6.70.13030.0 2007.07.30 -
Ikarus T3.1.1.8 2007.07.30 Trojan.Win32.Agent.AMR
Kaspersky 4.0.2.24 2007.07.30 -
McAfee 5085 2007.07.27 New Malware.z
Microsoft 1.2704 2007.07.30 -
NOD32v2 2428 2007.07.30 -
Norman 5.80.02 2007.07.27 -
Panda 9.0.0.4 2007.07.29 Rootkit/Agent.GAC
Prevx1 V2 2007.07.30 -
Rising 19.34.01.00 2007.07.30 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.28 -
Symantec 10 2007.07.30 Hacktool.Rootkit
TheHacker 6.1.7.158 2007.07.30 -
VBA32 3.12.2.1 2007.07.30 -
VirusBuster 4.3.26:9 2007.07.29 -
Webwasher-Gateway 6.0.1 2007.07.30 -
Additional information
File size: 4064 bytes
MD5: f86bcf371145c026fdc403480f495c44
SHA1: 3ac546cd4ea0a5bce316f0cc28ac7f1b7ce1bf00[/CODE]
[CODE] File cssrss.exe received on 07.30.2007 09:46:30 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.7.28.0 2007.07.30 -
AntiVir 7.4.0.50 2007.07.30 HEUR/Crypted
Authentium 4.93.8 2007.07.27 -
Avast 4.7.997.0 2007.07.30 -
AVG 7.5.0.476 2007.07.30 -
BitDefender 7.2 2007.07.30 -
CAT-QuickHeal 9.00 2007.07.28 (Suspicious) - DNAScan
ClamAV 0.91 2007.07.30 -
DrWeb 4.33 2007.07.30 -
eSafe 7.0.15.0 2007.07.29 suspicious Trojan/Worm
eTrust-Vet 31.1.5010 2007.07.28 -
Ewido 4.0 2007.07.29 -
FileAdvisor 1 2007.07.30 -
Fortinet 2.91.0.0 2007.07.30 -
F-Prot 4.3.2.48 2007.07.27 -
F-Secure 6.70.13030.0 2007.07.30 -
Ikarus T3.1.1.8 2007.07.30 -
Kaspersky 4.0.2.24 2007.07.30 -
McAfee 5085 2007.07.27 -
Microsoft 1.2704 2007.07.30 -
NOD32v2 2428 2007.07.30 -
Norman 5.80.02 2007.07.27 -
Panda 9.0.0.4 2007.07.29 Trj/Agent.GAD
Rising 19.34.01.00 2007.07.30 -
Prevx1 V2 2007.07.30 -
Sophos 4.19.0 2007.07.26 -
Sunbelt 2.2.907.0 2007.07.28 VIPRE.Suspicious
Symantec 10 2007.07.30 -
TheHacker 6.1.7.158 2007.07.30 -
VBA32 3.12.2.1 2007.07.30 -
VirusBuster 4.3.26:9 2007.07.29 -
Webwasher-Gateway 6.0.1 2007.07.30 Heuristic.Crypted
Additional information
File size: 15752 bytes
MD5: 62f716218dbfac6dbafc0a94117af899
SHA1: c883ed07aae8df7109742b069ba7a3fe85e8ec22[/CODE]
Kaspersky Anti-Virus
Found Trojan-Downloader.Win32.Agent.bnz, Trojan.Win32.Agent.amr
Dr.Web
Found Trojan.NtRootKit.323, Trojan.NtRootKit.322
-
File navu32.exe received on 07.31.2007 08:27:56 (CET)
Current status: finished
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.7.31.1 2007.07.31 -
[B]AntiVir 7.4.0.54 2007.07.30 HEUR/Crypted[/B]
[B]Authentium 4.93.8 2007.07.30 Possibly a new variant of W32/Threat-SysVenFakU-based!Maximus
[/B]Avast 4.7.997.0 2007.07.30 -
AVG 7.5.0.476 2007.07.30 -
BitDefender 7.2 2007.07.31 -
[B]CAT-QuickHeal 9.00 2007.07.30 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.07.31 -
DrWeb 4.33 2007.07.31 -
[B]eSafe 7.0.15.0 2007.07.29 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5018 2007.07.31 -
Ewido 4.0 2007.07.30 -
FileAdvisor 1 2007.07.31 -
Fortinet 2.91.0.0 2007.07.31 -
[B]F-Prot 4.3.2.48 2007.07.30 W32/Threat-SysVenFakU-based!Maximus
[/B]F-Secure 6.70.13030.0 2007.07.31 -
[B]Ikarus T3.1.1.8 2007.07.31 Trojan-Downloader.Win32.Zlob.and
[/B]Kaspersky 4.0.2.24 2007.07.31 -
[B]McAfee 5086 2007.07.30 New Malware.aj[/B]
Microsoft 1.2704 2007.07.31 -
NOD32v2 2429 2007.07.30 -
[B]Norman 5.80.02 2007.07.30 W32/Suspicious_U.gen
[/B][I]Panda 9.0.0.4 2007.07.31 Suspicious file[/I]
Prevx1 V2 2007.07.31 -
Rising 19.34.11.00 2007.07.31 -
[B]Sophos 4.19.0 2007.07.26 Mal/Packer
[/B]Sunbelt 2.2.907.0 2007.07.31 -
Symantec 10 2007.07.31 -
TheHacker 6.1.7.159 2007.07.31 -
VBA32 3.12.2.2 2007.07.30 -
VirusBuster 4.3.26:9 2007.07.30 -
[B]Webwasher-Gateway 6.0.1 2007.07.31 Heuristic.Crypted[/B]
Additional information
File size: 62826 bytes
MD5: c558cf168f705122af62aa561f1e05f2
SHA1: ad14017668f81d6de0d515378590c010da383688
packers: UPACK
странно:
File Version Information :
Company Name : Microsoft Corporation
File Description : NetWork Monitor Control
File Version : 5.0.2134.1
Internal Name : navu32.exe
Legal Copyright : Copyright (C) Microsoft Corp. 1991-2001
Original Filename : navu32.exe
Product Name : Microsoft(R) Windows (R) 2000 Operating System
Product Version : 5.0.2195.3649
Comments :
Legal Trademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
Private Build :
Special Build :
Creation Date : 30/07/2007 17:50:14
Last Modif. Date : 10/01/2000 16:00:00
Last Access Date : 31/07/2007 00:00:00
FileSize : 62826 bytes ( 61.354 KB, 0.060 MB )
FileVersionInfoSize : 2396 bytes
File type : Application (0x1)
Target OS : Win32 API (Windows NT) (0x40004)
File/Product version : 5.0.2195.3649 / 5.0.2195.3649
Language : Английский (США) (0x409)
Character Set : (0x4B0)
-
из темы [url]http://virusinfo.info/showthread.php?t=11425[/url]
[B]C:\Windows\System32\Check.exe[/B]
[QUOTE]AhnLab-V3 2007.7.31.1 2007.08.01 -
AntiVir 7.4.0.54 2007.07.31 -
Authentium 4.93.8 2007.07.31 -
Avast 4.7.1029.0 2007.07.31 -
AVG 7.5.0.476 2007.07.31 -
BitDefender 7.2 2007.08.01 -
CAT-QuickHeal 9.00 2007.07.31 -
ClamAV 0.91 2007.08.01 -
DrWeb 4.33 2007.07.31 -
eSafe 7.0.15.0 2007.07.31 -
eTrust-Vet 31.1.5021 2007.08.01 -
Ewido 4.0 2007.07.31 -
FileAdvisor 1 2007.08.01 -
Fortinet 2.91.0.0 2007.08.01 -
F-Prot 4.3.2.48 2007.07.31 -
F-Secure 6.70.13030.0 2007.07.31 -
Ikarus T3.1.1.8 2007.07.31 -
Kaspersky 4.0.2.24 2007.08.01 -
McAfee 5087 2007.07.31 -
Microsoft 1.2704 2007.08.01 -
NOD32v2 2430 2007.07.31 -
Norman 5.80.02 2007.07.31 -
Panda 9.0.0.4 2007.08.01 -
Prevx1 V2 2007.08.01 -
Rising 19.34.21.00 2007.08.01 -
Sophos 4.19.0 2007.08.01 -
[COLOR="Blue"]Sunbelt 2.2.907.0 2007.07.31 VIPRE.Suspicious[/COLOR]
Symantec 10 2007.08.01 -
TheHacker 6.1.7.159 2007.07.31 -
VBA32 3.12.2.2 2007.07.31 -
VirusBuster 4.3.26:9 2007.07.31 -
[COLOR="Blue"]Webwasher-Gateway 6.0.1 2007.08.01 Win32.Malware.gen (suspicious)[/COLOR][/QUOTE]
и касперский будет опознавать как [B]Trojan-PSW.Win32.WOW.lq[/B],после обновления баз.
-
File sysdrv9.exe received on 08.01.2007 13:40:48 (CET)
Current status: finished
Result: 5/32 (15.63%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.2.0 2007.08.01 -
AntiVir 7.4.0.54 2007.08.01 -
Authentium 4.93.8 2007.07.31 could be a corrupted executable file
Avast 4.7.1029.0 2007.08.01 -
AVG 7.5.0.476 2007.07.31 -
BitDefender 7.2 2007.08.01 -
CAT-QuickHeal 9.00 2007.07.31 -
ClamAV 0.91 2007.08.01 -
DrWeb 4.33 2007.08.01 -
[B]eSafe 7.0.15.0 2007.07.31 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5022 2007.08.01 -
Ewido 4.0 2007.08.01 -
FileAdvisor 1 2007.08.01 -
Fortinet 2.91.0.0 2007.08.01 -
F-Prot 4.3.2.48 2007.07.31 -
[B]F-Secure 6.70.13030.0 2007.08.01 Trojan-Spy.Win32.Small.gv[/B]
Ikarus T3.1.1.8 2007.08.01 -
[B]Kaspersky 4.0.2.24 2007.08.01 Trojan-Spy.Win32.Small.gv[/B]
McAfee 5087 2007.07.31 -
Microsoft 1.2704 2007.08.01 -
NOD32v2 2430 2007.07.31 -
Norman 5.80.02 2007.07.31 -
Panda 9.0.0.4 2007.08.01 -
Prevx1 V2 2007.08.01 -
Rising 19.34.22.00 2007.08.01 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.07.31 -
Symantec 10 2007.08.01 -
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.07.31 -
VirusBuster 4.3.26:9 2007.07.31 -
[B]Webwasher-Gateway 6.0.1 2007.08.01 Win32.Malware.dam (suspicious)[/B]
Additional information
File size: 11895 bytes
MD5: a9aa11fe83fd5802a6064047dd7e940d
SHA1: d85f431154e43293a795a31912e53466322082d7
Complete scanning result of "googletoolbar1.dll", processed in VirusTotal at 08/02/2007 08:17:54 (CET).
[ file data ]
* name: googletoolbar1.dll
* size: 19968
* md5.: 76346c994571a4dab5b3904a61afd3d4
* sha1: dfc84eed7e817e1b29411a4a54c202bfe51f40c9
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
[B]AntiVir 7.4.0.54/20070801 found [TR/BHO.Agent.19968][/B]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070801 found nothing
eSafe 7.0.15.0/20070731 found nothing
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
[B]F-Secure 6.70.13030.0/20070802 found [Trojan.Win32.Agent.aun][/B]
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found nothing
[B]Kaspersky 4.0.2.24/20070802 found [Trojan.Win32.Agent.aun][/B]
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
[B]Norman 5.80.02/20070801 found [W32/Horst.gen25][/B]
[B]Panda 9.0.0.4/20070802 found [Suspicious file][/B]
Rising 19.34.30.00/20070802 found nothing
[B]Sophos 4.19.0/20070801 found [Mal/Behav-004[/B]]
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Trojan.BHO.Agent.19968]
[/B]
Complete scanning result of "sysdrv2.exe", processed in VirusTotal at 08/02/2007 08:11:20 (CET).
[ file data ]
* name: sysdrv2.exe
* size: 3616
* md5.: 8e2817e1b7fb2fbf2adb90ceab97f9c2
* sha1: f519a9b16d7265e6d385e1d24f9e7241eedc97ae
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found nothing
[B]Authentium 4.93.8/20070802 found [W32/Downldr2.AJMZ]
Avast 4.7.1029.0/20070801 found [Win32:Agent-ITC]
[/B]AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
[B]ClamAV 0.91/20070801 found [Trojan.Downloader-10584][/B]
DrWeb 4.33/20070801 found nothing
[B]eSafe 7.0.15.0/20070731 found [Suspicious Trojan/Worm][/B]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
[B]F-Prot 4.3.2.48/20070801 found [W32/Downldr2.AJMZ][/B]
[B]F-Secure 6.70.13030.0/20070802 found [Trojan-Downloader.Win32.Agent.bvl]
[/B]FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
[B]Ikarus T3.1.1.8/20070802 found [Trojan-Downloader.Win32.Agent.bvl]
Kaspersky 4.0.2.24/20070802 found [Trojan-Downloader.Win32.Agent.bvl]
[/B]McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Prevx1 V2/20070802 found nothing
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
[B]VBA32 3.12.2.2/20070801 found [Trojan-Downloader.Win32.Agent.bvl]
[/B]VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Win32.Malware.dam (suspicious)]
[/B]
Complete scanning result of "sysdrv4.exe", processed in VirusTotal at 08/02/2007 08:10:46 (CET).
[ file data ]
* name: sysdrv4.exe
* size: 3616
* md5.: 264c9fe6ea9caf2d1159a41d44d4eab2
* sha1: 444ea4a9b0fbbef9ce4a01542dc7dae30d0230d8
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found nothing
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
[B]CAT-QuickHeal 9.00/20070801 found [(Suspicious) - DNAScan][/B]
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070801 found nothing
[B]eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm][/B]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
[B]Ikarus T3.1.1.8/20070802 found [Trojan-Downloader.Win32.Small.ckj][/B]
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found [unpack error]
[B]Norman 5.80.02/20070801 found [Suspicious_F.gen][/B]
[B]Panda 9.0.0.4/20070802 found [Suspicious file][/B]
Prevx1 V2/20070802 found nothing
[B]Rising 19.34.30.00/20070802 found [Backdoor.Win32.Small.ls][/B]
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Win32.Malware.gen#FSG (suspicious)]
[/B]
Complete scanning result of "~.exe", processed in VirusTotal at 08/02/2007 08:09:17 (CET).
[ file data ]
* name: ~.exe
* size: 2228
* md5.: aff86add4004a101f914be6f0581769c
* sha1: 1fc74362f9df55ee54c0c9283fc6aae397aa7842
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found nothing
Authentium 4.93.8/20070802 found [could be a corrupted executable file]
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070801 found nothing
eSafe 7.0.15.0/20070731 found nothing
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found nothing
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Win32.Malware.dam (suspicious)][/B]
-
[code]
hnLab-V3 2007.8.2.0 2007.08.01 -
[B]AntiVir 7.4.0.54 2007.08.01 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.07.31 -
Avast 4.7.1029.0 2007.08.01 -
AVG 7.5.0.476 2007.07.31 -
BitDefender 7.2 2007.08.01 -
[B]CAT-QuickHeal 9.00 2007.07.31 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.08.01 -
DrWeb 4.33 2007.08.01 -
eSafe 7.0.15.0 2007.07.31 -
eTrust-Vet 31.1.5022 2007.08.01 -
Ewido 4.0 2007.08.01 -
FileAdvisor 1 2007.08.01 -
Fortinet 2.91.0.0 2007.08.01 -
F-Prot 4.3.2.48 2007.07.31 -
F-Secure 6.70.13030.0 2007.08.01 -
Ikarus T3.1.1.8 2007.08.01 -
Kaspersky 4.0.2.24 2007.08.01 -
McAfee 5087 2007.07.31 -
[B]Microsoft 1.2704 2007.08.01 PWS:Win32/Bankrypt.gen[/B]
NOD32v2 2430 2007.07.31 -
Norman 5.80.02 2007.07.31 -
[B]Panda 9.0.0.4 2007.08.01 Suspicious file[/B]
Prevx1 V2 2007.08.01 -
Rising 19.34.22.00 2007.08.01 -
Sophos 4.19.0 2007.08.01 -
[B]Sunbelt 2.2.907.0 2007.07.31 VIPRE.Suspicious[/B]
Symantec 10 2007.08.01 -
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.07.31 -
VirusBuster 4.3.26:9 2007.08.01 -
[B]Webwasher-Gateway 6.0.1 2007.08.01 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 478208 bytes
MD5: 58cb2f0941876bf115ebe49cfdbb8c78
SHA1: 33d8624006e512915ebaa5dbf50c12e47eb03b95
[/code]
-
просто жуть!
Complete scanning result of "603-a[1].exe", processed in VirusTotal at 08/02/2007 09:40:40 (CET).
[ file data ]
* name: 603-a[1].exe
* size: 31232
* md5.: 757dfe2127314a1473ed0392b06174e6
* sha1: 774ac812b505d57c7b958ee06cebb978ee86d1ba
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
[B]AntiVir 7.4.0.57/20070802 found [TR/Proxy.Small.DU.1300][/B]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
[B]AVG 7.5.0.476/20070801 found [SHeur.DZI][/B]
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found nothing
[B]eSafe 7.0.15.0/20070731 found [Suspicious Trojan/Worm]
[/B]eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
[B]F-Secure 6.70.13030.0/20070802 found [Trojan-Proxy.Win32.Small.du]
[/B]FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
[B]Ikarus T3.1.1.8/20070802 found [Trojan-Proxy.Win32.Small.DU][/B]
[B]Kaspersky 4.0.2.24/20070802 found [Trojan-Proxy.Win32.Small.du][/B]
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Prevx1 V2/20070802 found nothing
[B]Rising 19.34.30.00/20070802 found [Backdoor.Gpigeon.2006.ixo][/B]
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Win32.NewMalware.IM!31232!4]
[/B]
Complete scanning result of "d[1].exe", processed in VirusTotal at 08/02/2007 10:18:03 (CET).
[ file data ]
* name: d[1].exe
* size: 58880
* md5.: 1deb83fa1f3d96a0602e24d7e51bc773
* sha1: 923e878d9840ad23c42eb85a7dcb80c17349dc0b
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
[B]AntiVir 7.4.0.57/20070802 found [TR/Obfuscated.GP.34][/B]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
[B]AVG 7.5.0.476/20070801 found [Generic5.ZOC][/B]
BitDefender 7.2/20070802 found nothing
[B]CAT-QuickHeal 9.00/20070801 found [Trojan.Obfuscated.gp][/B]
ClamAV 0.91/20070801 found nothing
[B]DrWeb 4.33/20070802 found [Trojan.Swizzor][/B]
[B]eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm][/B]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
[B]F-Secure 6.70.13030.0/20070802 found [Trojan.Win32.Obfuscated.gp][/B]
FileAdvisor 1/20070802 found nothing
[B]Fortinet 2.91.0.0/20070802 found [W32/Obfuscated.GP!tr][/B]
[B]Ikarus T3.1.1.8/20070802 found [Trojan.Win32.Agent.alt]
Kaspersky 4.0.2.24/20070802 found [Trojan.Win32.Obfuscated.gp]
[/B]McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
[B]Panda 9.0.0.4/20070802 found [Trj/Downloader.PRL]
Prevx1 V2/20070802 found [Covert.Code]
[/B]Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
[B]Sunbelt 2.2.907.0/20070802 found [Trojan.Win32.Obfuscated.gp]
[/B]Symantec 10/20070802 found nothing
[B]TheHacker 6.1.7.160/20070801 found [Trojan/Obfuscated.gp]
VBA32 3.12.2.2/20070801 found [Trojan.Win32.Obfuscated.gp]
[/B]VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Trojan.Obfuscated.GP.34]
[/B]
[ notes ]
packers: UPX
packers: UPX
packers: UPX
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=9ABAC2AB006BA4BAE6CA00B59A2C0600176037C0[/url]
Complete scanning result of "n2_01_08_07_0[1].exe", processed in VirusTotal at 08/02/2007 09:56:49 (CET).
[ file data ]
* name: n2_01_08_07_0[1].exe
* size: 111104
* md5.: 1277ee6e1d1a7654ce2f64f2560f86b0
* sha1: 54ae7c104da54673352b780e9ba82e330de1d8cb
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
[B]AntiVir 7.4.0.57/20070802 found [TR/Crypt.FKM.Gen][/B]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found nothing
[B]eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm][/B]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
[B]Ikarus T3.1.1.8/20070802 found [Trojan.Win32.Agent.alt][/B]
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Trojan.Crypt.FKM.Gen][/B]
[ notes ]
packers: UPX
packers: UPX
packers: UPX
и его брат-близнец:
Complete scanning result of "n2_31_07_07_0[1].exe", processed in VirusTotal at 08/02/2007 10:12:40 (CET).
[ file data ]
* name: n2_31_07_07_0[1].exe
* size: 104448
* md5.: 8e16588e88ac956e5720293fce7cadca
* sha1: 9e374ff120fae7a1ff613d8bb6b4e5f12c64c4df
[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
[B]AntiVir 7.4.0.57/20070802 found [TR/Crypt.FKM.Gen][/B]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
[B]BitDefender 7.2/20070802 found [Trojan.Agent.ALT][/B]
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found nothing
[B]eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm][/B]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
[B]Ikarus T3.1.1.8/20070802 found [Trojan.Win32.Agent.alt][/B]
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
[B]Panda 9.0.0.4/20070802 found [Suspicious file][/B]
[B]Prevx1 V2/20070802 found [Trojan.Nudos][/B]
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
[B]Webwasher-Gateway 6.0.1/20070802 found [Trojan.Crypt.FKM.Gen][/B]
[ notes ]
packers: UPX
packers: UPX
packers: UPX
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=25CC31A700FF582D98230115CC791C004DCFD846[/url]
-
File KIS7-Crack.exe received on 08.02.2007 13:59:43 (CET)
Result: 10/31 (32.26%)
[i]Antivirus Version Last Update Result[/i]
AhnLab-V3 2007.8.3.0 2007.08.02 -
[b]AntiVir 7.4.0.57 2007.08.02 TR/PSW.LDPinch.TAW.166[/b]
Authentium 4.93.8 2007.08.02 -
Avast 4.7.1029.0 2007.08.02 -
[b]AVG 7.5.0.476 2007.08.01 Obfustat.EJN[/b]
[b]BitDefender 7.2 2007.08.02 Trojan.PWS.LDPinch.TAW[/b]
[b]CAT-QuickHeal 9.00 2007.08.01 (Suspicious) - DNAScan[/b]
ClamAV 0.91 2007.08.01 -
[b]DrWeb 4.33 2007.08.02 Trojan.MulDrop.5888[/b]
[b]eSafe 7.0.15.0 2007.07.31 Suspicious Trojan/Worm[/b]
eTrust-Vet 31.1.5026 2007.08.02 -
Ewido 4.0 2007.08.01 -
FileAdvisor 1 2007.08.02 -
Fortinet 2.91.0.0 2007.08.02 -
F-Prot 4.3.2.48 2007.08.01 -
F-Secure 6.70.13030.0 2007.08.02 -
[b]Ikarus T3.1.1.8 2007.08.02 Trojan-PWS.LDPinch.TAW[/b]
Kaspersky 4.0.2.24 2007.08.02 -
McAfee 5088 2007.08.01 -
Microsoft 1.2704 2007.08.02 -
NOD32v2 2432 2007.08.02 -
Norman 5.80.02 2007.08.02 -
Panda 9.0.0.4 2007.08.02 -
Rising 19.34.32.00 2007.08.02 -
Sophos 4.19.0 2007.08.01 -
[b]Sunbelt 2.2.907.0 2007.08.02 VIPRE.Suspicious[/b]
Symantec 10 2007.08.02 -
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.08.01 -
[b]VirusBuster 4.3.26:9 2007.08.02 Trojan.DR.Cimuz.Gen.1[/b]
[b]Webwasher-Gateway 6.0.1 2007.08.02 Trojan.PSW.LDPinch.TAW.166[/b]
Additional information
File size: 175012 bytes
MD5: 3b5f9cfe5fdbb0eea06d7b202d96fb1c
SHA1: 63bb9d9ea2f1e9fc1bc2a7773552a64a44039ad1
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
File php.exe received on 08.03.2007 05:07:25 (CET)
Current status: Loading ... finished
Result:
Loading server information...
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.3.0 2007.08.02 -
[B]AntiVir 7.4.0.57 2007.08.02 EXP/PhpBB.G
Authentium 4.93.8 2007.08.02 is a security risk or a \"backdoor\" program
Avast 4.7.1029.0 2007.08.02 Win32:PhpBB-C
AVG 7.5.0.476 2007.08.02 Potentially harmful program Exploit.XN[/B]
[B]BitDefender 7.2 2007.08.03 Trojan.Exploit.Phpbb.G[/B]
CAT-QuickHeal 9.00 2007.08.01 -
ClamAV 0.91 2007.08.02 -
DrWeb 4.33 2007.08.02 -
eSafe 7.0.15.0 2007.07.31 -
eTrust-Vet 31.1.5028 2007.08.03 -
[B]Ewido 4.0 2007.08.02 Not-A-Virus.Exploit.Win32.PhpBB.g[/B]
FileAdvisor 1 2007.08.03 -
[B]Fortinet 2.91.0.0 2007.08.03 W32/PhpBB.G!exploit
F-Prot 4.3.2.48 2007.08.02 W32/Malware!f5d8
F-Secure 6.70.13030.0 2007.08.03 Exploit.Win32.PhpBB.g[/B]
Ikarus T3.1.1.8 2007.08.02 -
[B]Kaspersky 4.0.2.24 2007.08.03 Exploit.Win32.PhpBB.g
McAfee 5089 2007.08.02 Generic.cd
Microsoft 1.2704 2007.08.03 Exploit:Win32/PhpBB.E
NOD32v2 2434 2007.08.02 Win32/Exploit.PhpBB.G
Norman 5.80.02 2007.08.02 W32/Exploit.gen
Panda 9.0.0.4 2007.08.02 Trj/PhpBB.D
Rising 19.34.40.00 2007.08.03 Hack.Exploit.PHPBB.b[/B]
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.03 -
[B]Symantec 10 2007.08.03 Hacktool[/B]
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.08.01 -
VirusBuster 4.3.26:9 2007.08.02 -
[B]Webwasher-Gateway 6.0.1 2007.08.03 Exploit.PhpBB.G[/B]
Additional information
File size: 124416 bytes
MD5: 9e0841453b1385587d1da672acccd332
SHA1: 721ec2fe353ad47b2ff0d1ac1a523ee845475e97
-
запостили сегодня на vozvrat.org:
Complete scanning result of "Dark.zip", processed in VirusTotal at 08/05/2007 16:06:47 (CET).
[ file data ]
* name: Dark.zip
* size: 1346581
* md5.: cdbcd32fc810066dab1f59ab8a5d7b3c
* sha1: 589c575681dce337cb3c5e6d27f88bebcd124d55
[ scan result ]
AhnLab-V3 2007.8.3.0/20070803 found nothing
[B]AntiVir 7.4.0.57/20070803 found [HEUR/Crypted][/B]
Authentium 4.93.8/20070803 found nothing
Avast 4.7.1029.0/20070805 found nothing
AVG 7.5.0.476/20070804 found nothing
BitDefender 7.2/20070805 found nothing
[B]CAT-QuickHeal 9.00/20070804 found [Backdoor.SdBot.gen][/B]
ClamAV 0.91/20070805 found nothing
DrWeb 4.33/20070805 found nothing
eSafe 7.0.15.0/20070731 found nothing
eTrust-Vet 31.1.5032/20070804 found nothing
Ewido 4.0/20070803 found nothing
F-Prot 4.3.2.48/20070803 found nothing
F-Secure 6.70.13030.0/20070803 found nothing
FileAdvisor 1/20070805 found nothing
Fortinet 2.91.0.0/20070805 found nothing
[B]Ikarus T3.1.1.8/20070805 found [Backdoor.VB.EV][/B]
Kaspersky 4.0.2.24/20070805 found nothing
McAfee 5090/20070803 found nothing
Microsoft 1.2704/20070805 found nothing
NOD32v2 2438/20070805 found nothing
Norman 5.80.02/20070803 found nothing
Panda 9.0.0.4/20070805 found nothing
Prevx1 V2/20070805 found nothing
Rising 19.34.40.00/20070803 found nothing
[B]Sophos 4.19.0/20070801 found [Mal/Basine-C][/B]
[B]Sunbelt 2.2.907.0/20070804 found [VIPRE.Suspicious][/B]
Symantec 10/20070805 found nothing
TheHacker 6.1.7.162/20070804 found nothing
VBA32 3.12.2.2/20070804 found nothing
VirusBuster 4.3.26:9/20070804 found nothing
[B]Webwasher-Gateway 6.0.1/20070803 found [Heuristic.Crypted][/B]
[ notes ]
packers: Themida
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
Сидел в корне диска
File settings.exe received on 08.09.2007 12:37:23 (CET)
Current status: finished
Result: 18/32 (56.25%)
Compact
Print results Antivirus Version Last Update Result
[B]AhnLab-V3 2007.8.9.2 2007.08.09 Win-Trojan/Polycrypt.35324
AntiVir 7.4.0.57 2007.08.09 TR/PCK.PolyCrypt.B.959[/B]
Authentium 4.93.8 2007.08.08 -
Avast 4.7.1029.0 2007.08.08 -
[B]AVG 7.5.0.476 2007.08.08 Generic5.LZE
BitDefender 7.2 2007.08.09 Trojan.PWS.LDPinch.TAW
CAT-QuickHeal 9.00 2007.08.08 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.08.09 -
DrWeb 4.33 2007.08.09 -
[B]eSafe 7.0.15.0 2007.07.31 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5045 2007.08.09 -
Ewido 4.0 2007.08.08 -
FileAdvisor 1 2007.08.09 -
[B]Fortinet 2.91.0.0 2007.08.09 Basine.C[/B]
F-Prot 4.3.2.48 2007.08.08 -
[B]F-Secure 6.70.13030.0 2007.08.09 Packed.Win32.PolyCrypt.b
Ikarus T3.1.1.12 2007.08.09 Trojan-Downloader.Win32.Small.cyn
Kaspersky 4.0.2.24 2007.08.09 Packed.Win32.PolyCrypt.b[/B]
McAfee 5093 2007.08.08 -
[B]Microsoft 1.2704 2007.08.09 TrojanDownloader:Win32/Small.CBA[/B]
NOD32v2 2446 2007.08.09 -
Norman 5.80.02 2007.08.08 -
[B]Panda 9.0.0.4 2007.08.09 Trj/Ldpinch.AJB
Prevx1 V2 2007.08.09 TROJAN.PWDSTEALER.GEN
Rising 19.35.32.00 2007.08.09 Packer.RyCrypt
Sophos 4.19.0 2007.08.01 Mal/Basine-C
Sunbelt 2.2.907.0 2007.08.09 Trojan.Win32/Anomaly.gen!A[/B]
Symantec 10 2007.08.09 -
TheHacker 6.1.7.166 2007.08.09 -
VBA32 3.12.2.2 2007.08.09 -
[B]VirusBuster 4.3.26:9 2007.08.08 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.08.09 Trojan.PCK.PolyCrypt.B.959[/B]
Additional information
File size: 35324 bytes
MD5: 84657f739281112b73a4723a5fe4f5ad
SHA1: e9963b910eb4e27bfa29e47763fc7dad8909b582
packers: RCrypt
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=2A186468FC14FCDB893100E1DB291200AFA27E6C[/url]
-
File program.exe received on 08.09.2007 17:41:46 (CET)
Current status: finished
Result: 8/32 (25%)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.9.2 2007.08.09 -
[B]AntiVir 7.4.0.57 2007.08.09 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.08.08 -
Avast 4.7.1029.0 2007.08.09 -
AVG 7.5.0.476 2007.08.08 -
BitDefender 7.2 2007.08.09 -
[B]CAT-QuickHeal 9.00 2007.08.09 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.08.09 -
DrWeb 4.33 2007.08.09 -
[B]eSafe 7.0.15.0 2007.07.31 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5045 2007.08.09 -
Ewido 4.0 2007.08.08 -
FileAdvisor 1 2007.08.09 -
Fortinet 2.91.0.0 2007.08.09 -
F-Prot 4.3.2.48 2007.08.08 -
[B]F-Secure 6.70.13030.0 2007.08.09 Trojan-Dropper.Win32.Agent.bog
Ikarus T3.1.1.12 2007.08.09 Backdoor.Win32.Rbot
Kaspersky 4.0.2.24 2007.08.09 Trojan-Dropper.Win32.Agent.bog[/B]
McAfee 5094 2007.08.09 -
Microsoft 1.2704 2007.08.09 -
NOD32v2 2446 2007.08.09 -
Norman 5.80.02 2007.08.08 -
[B]Panda 9.0.0.4 2007.08.09 Suspicious file[/B]
Prevx1 V2 2007.08.09 -
Rising 19.35.33.00 2007.08.09 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.09 -
Symantec 10 2007.08.09 -
TheHacker 6.1.7.166 2007.08.09 -
VBA32 3.12.2.2 2007.08.09 -
VirusBuster 4.3.26:9 2007.08.09 -
[B]Webwasher-Gateway 6.0.1 2007.08.09 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 181760 bytes
MD5: f6b1ddb2c5438f656f32feba729ec413
SHA1: bf271c984fd29d1561e4a6d575f9678068a3db48
packers: NTKrnl
-
File DVT.rar received on 08.10.2007 22:32:46 (CET)
Current status: finished
Result: 8/32 (25%)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.9.2 2007.08.10 -
AntiVir 7.4.0.60 2007.08.10 -
Authentium 4.93.8 2007.08.10 -
[B]Avast 4.7.1029.0 2007.08.10 Win32:Trojan-gen. {UPX!}[/B]
AVG 7.5.0.476 2007.08.10 -
[B]BitDefender 7.2 2007.08.10 Trojan.Bat.Agent.J[/B]
CAT-QuickHeal 9.00 2007.08.10 -
ClamAV 0.91 2007.08.10 -
DrWeb 4.33 2007.08.10 -
[B]eSafe 7.0.15.0 2007.08.10 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5048 2007.08.10 -
[B]Ewido 4.0 2007.08.10 Trojan.Agent.j[/B]
FileAdvisor 1 2007.08.10 -
Fortinet 2.91.0.0 2007.08.10 -
F-Prot 4.3.2.48 2007.08.10 -
F-Secure 6.70.13030.0 2007.08.10 -
[B]Ikarus T3.1.1.12 2007.08.10 Trojan.BAT.Agent.j[/B]
Kaspersky 4.0.2.24 2007.08.10 -
McAfee 5095 2007.08.10 -
[B]Microsoft 1.2704 2007.08.10 Trojan:Win32/Agent!6239[/B]
NOD32v2 2450 2007.08.10 -
Norman 5.80.02 2007.08.10 -
Panda 9.0.0.4 2007.08.10 -
[B]Prevx1 V2 2007.08.10 Generic.Malware[/B]
Rising 19.35.42.00 2007.08.10 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.10 -
Symantec 10 2007.08.10 -
TheHacker 6.1.7.166 2007.08.10 -
VBA32 3.12.2.2 2007.08.10 -
VirusBuster 4.3.26:9 2007.08.10 -
[B]Webwasher-Gateway 6.0.1 2007.08.10 Win32.ModifiedUPX.gen!90 (suspicious)[/B]
Additional information
File size: 28728 bytes
MD5: c249b18860f4ea4f0adf3acbfdda978f
SHA1: 55ed9ef10f6ef6a31d75507ace3449e280bbfdf3
packers: UPX
packers: UPX, BINARYRES, UPX
packers: UPX
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=D016FA5D4F566D8C1C7E00945047000045C163CB[/url]
-
File realfoto.exe received on 08.12.2007 04:07:33 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.9.2 2007.08.10 -
[B]AntiVir 7.4.0.60 2007.08.10 TR/Dldr.Small.dru.2[/B]
Authentium 4.93.8 2007.08.11 -
[B]Avast 4.7.1029.0 2007.08.11 Win32:Small-GYA[/B]
AVG 7.5.0.476 2007.08.11 -
[B]BitDefender 7.2 2007.08.12 Trojan.Downloader.Small.AAED[/B]
[B]CAT-QuickHeal 9.00 2007.08.11 (Suspicious) - DNAScan[/B]
[B]ClamAV 0.91 2007.08.12 Trojan.Downloader-11693[/B]
DrWeb 4.33 2007.08.11 -
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5050 2007.08.11 -
Ewido 4.0 2007.08.11 -
FileAdvisor 1 2007.08.12 -
[B]Fortinet 2.91.0.0 2007.08.12 W32/Small.EVT!tr.dldr[/B]
F-Prot 4.3.2.48 2007.08.10 -
F-Secure 6.70.13030.0 2007.08.11 -
Ikarus T3.1.1.12 2007.08.11 -
Kaspersky 4.0.2.24 2007.08.12 -
[B]McAfee 5095 2007.08.10 Generic Downloader[/B]
[B]Microsoft 1.2704 2007.08.11 TrojanDownloader:Win32/Agent.WX[/B]
[B]NOD32v2 2451 2007.08.11 probably a variant of Win32/TrojanDownloader.Small.DRU[/B]
Norman 5.80.02 2007.08.10 -
[B]Panda 9.0.0.4 2007.08.11 Suspicious file[/B]
Prevx1 V2 2007.08.12 -
Rising 19.35.52.00 2007.08.12 -
[B]Sophos 4.19.0 2007.08.01 Mal/Packer[/B]
[B]Sunbelt 2.2.907.0 2007.08.11 VIPRE.Suspicious[/B]
Symantec 10 2007.08.12 -
TheHacker 6.1.7.167 2007.08.12 -
VBA32 3.12.2.2 2007.08.11 -
VirusBuster 4.3.26:9 2007.08.11 -
[B]Webwasher-Gateway 6.0.1 2007.08.11 Trojan.Dldr.Small.dru.2[/B]
Additional information
File size: 2613 bytes
MD5: 91458b170ac5877978041ffdd0082423
SHA1: 00abb5889f319268423e033e4a91bd50a40f828e
packers: FSG
packers: FSG
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
Свежак. Вчера его, только Касперский видел, после моей отсылки.
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
[B]AntiVir 7.4.1.62 2007.08.14 TR/Agent.awu.3[/B]
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
[B]AVG 7.5.0.476 2007.08.14 Generic6.MJQ [/B]
BitDefender 7.2 2007.08.14 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
[B]DrWeb 4.33 2007.08.14 Win32.Tank [/B]
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.14 -
[B]Fortinet 2.91.0.0 2007.08.14 W32/Agent.AWU!tr [/B]
F-Prot 4.3.2.48 2007.08.14 -
[B]F-Secure 6.70.13030.0 2007.08.14 Trojan.Win32.Agent.awu [/B]
Ikarus T3.1.1.12 2007.08.14 -
[B]Kaspersky 4.0.2.24 2007.08.14 Trojan.Win32.Agent.awu [/B]
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.14 -
NOD32v2 2460 2007.08.14 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 -
Prevx1 V2 2007.08.14 -
Rising 19.36.12.00 2007.08.14 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.14 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.13 -
VirusBuster 4.3.26:9 2007.08.14 -
[B]Webwasher-Gateway 6.0.1 2007.08.14 Trojan.Agent.awu.3 [/B]
[size="1"][color="#666686"][B][I]Добавлено через 14 минут[/I][/B][/color][/size]
Этот же вирус в другом файле.
File flashget.rar received on 08.14.2007 21:22:06 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 -
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 -
BitDefender 7.2 2007.08.14 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
[B]DrWeb 4.33 2007.08.14 Win32.Tank [/B]
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.14 -
Fortinet 2.91.0.0 2007.08.14 -
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.14 -
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.14 -
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.14 -
NOD32v2 2460 2007.08.14 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 -
Prevx1 V2 2007.08.14 -
Rising 19.36.12.00 2007.08.14 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.14 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.13 -
VirusBuster 4.3.26:9 2007.08.14 -
Webwasher-Gateway 6.0.1 2007.08.14 -
[size="1"][color="#666686"][B][I]Добавлено через 1 минуту[/I][/B][/color][/size]
Файл, зараженный этим вирусом.
File regedit.exe received on 08.14.2007 21:23:02 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 -
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 -
BitDefender 7.2 2007.08.14 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
[B]DrWeb 4.33 2007.08.14 Win32.Tank [/B]
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.14 -
Fortinet 2.91.0.0 2007.08.14 -
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.14 -
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.14 -
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.14 -
NOD32v2 2460 2007.08.14 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 -
Prevx1 V2 2007.08.14 -
Rising 19.36.12.00 2007.08.14 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.14 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.13 -
VirusBuster 4.3.26:9 2007.08.14 -
Webwasher-Gateway 6.0.1 2007.08.14 -
-
File update.exe received on 08.15.2007 04:42:19 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 -
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 -
BitDefender 7.2 2007.08.15 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
DrWeb 4.33 2007.08.15 -
[B]eSafe 7.0.15.0 2007.08.10 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.15 -
Fortinet 2.91.0.0 2007.08.15 -
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.15 -
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.15 -
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.15 -
NOD32v2 2461 2007.08.15 -
Norman 5.80.02 2007.08.14 -
[B]Panda 9.0.0.4 2007.08.14 Suspicious file[/B]
Prevx1 V2 2007.08.15 -
Rising 19.36.20.00 2007.08.15 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.15 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.14 -
VirusBuster 4.3.26:9 2007.08.14 -
[B]Webwasher-Gateway 6.0.1 2007.08.14 Win32.ModifiedUPX.gen!84 (suspicious)[/B]
Additional information
File size: 145408 bytes
MD5: b6d3fb3fbfc19566b80d57cce7d8d4bb
SHA1: de7eccba772e5537d9f61302373678183124e2d3
packers: UPX_LZMA
-
t 11753
[CODE]File icf.exe received on 08.17.2007 12:15:20 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.17 -
AntiVir 7.4.1.62 2007.08.17 -
Authentium 4.93.8 2007.08.17 -
Avast 4.7.1029.0 2007.08.16 -
[B]AVG 7.5.0.476 2007.08.16 SHeur.GHC[/B]
BitDefender 7.2 2007.08.17 -
CAT-QuickHeal 9.00 2007.08.16 -
ClamAV 0.91 2007.08.16 -
DrWeb 4.33 2007.08.17 -
[B]eSafe 7.0.15.0 2007.08.16 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5067 2007.08.17 -
Ewido 4.0 2007.08.16 -
FileAdvisor 1 2007.08.17 -
Fortinet 2.91.0.0 2007.08.16 -
F-Prot 4.3.2.48 2007.08.16 -
F-Secure 6.70.13030.0 2007.08.17 -
[B]Ikarus T3.1.1.12 2007.08.17 Trojan.Win32.Agent.alt[/B]
Kaspersky 4.0.2.24 2007.08.17 -
McAfee 5099 2007.08.16 -
Microsoft 1.2803 2007.08.17 -
NOD32v2 2467 2007.08.16 -
Norman 5.80.02 2007.08.16 -
Panda 9.0.0.4 2007.08.17 -
[B]Prevx1 V2 2007.08.17 Covert.Code[/B]
Rising 19.36.42.00 2007.08.17 -
Sophos 4.20.0 2007.08.12 -
[B]Sunbelt 2.2.907.0 2007.08.17 Trojan.Win32.Agent.alt
Symantec 10 2007.08.17 Backdoor.Trojan[/B]
TheHacker 6.1.8.170 2007.08.17 -
VBA32 3.12.2.2 2007.08.16 -
VirusBuster 4.3.26:9 2007.08.16 -
[B]Webwasher-Gateway 6.0.1 2007.08.17 Trojan.Downloader.Win32.ModifiedUPX.gen (suspicious)[/B]
Additional information
File size: 51200 bytes
MD5: 7bdb28eaea32a09034c073b2b4aaae86
SHA1: 242fa38659de1773356b7c7804bf81b77af38184
packers: UPX[/CODE]
[CODE]File zzmfk32.dll received on 08.17.2007 12:15:29 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.17 -
[B]AntiVir 7.4.1.62 2007.08.17 TR/Crypt.ULPM.Gen[/B]
Authentium 4.93.8 2007.08.17 -
Avast 4.7.1029.0 2007.08.16 -
[B]AVG 7.5.0.476 2007.08.16 Proxy.SMX[/B]
BitDefender 7.2 2007.08.17 -
CAT-QuickHeal 9.00 2007.08.16 -
ClamAV 0.91 2007.08.16 -
DrWeb 4.33 2007.08.17 -
[B]eSafe 7.0.15.0 2007.08.16 Win32.Nibu[/B]
eTrust-Vet 31.1.5067 2007.08.17 -
Ewido 4.0 2007.08.16 -
FileAdvisor 1 2007.08.17 -
Fortinet 2.91.0.0 2007.08.16 -
F-Prot 4.3.2.48 2007.08.16 -
[B]F-Secure 6.70.13030.0 2007.08.17 W32/Horst.gen29
[/B]Ikarus T3.1.1.12 2007.08.17 -
Kaspersky 4.0.2.24 2007.08.17 -
McAfee 5099 2007.08.16 -
Microsoft 1.2803 2007.08.17 -
NOD32v2 2467 2007.08.16 -
[B]Norman 5.80.02 2007.08.16 W32/Horst.gen29
Panda 9.0.0.4 2007.08.17 Generic Malware
Prevx1 V2 2007.08.17 Generic.Malware[/B]
Rising 19.36.42.00 2007.08.17 -
Sophos 4.20.0 2007.08.12 Mal/Packer
[B]Sunbelt 2.2.907.0 2007.08.17 Backdoor.Nibu
Symantec 10 2007.08.17 Backdoor.Nibu[/B]
TheHacker 6.1.8.170 2007.08.17 -
[B]VBA32 3.12.2.2 2007.08.16 suspected of Embedded.Trojan.NtRootKit.331[/B]
VirusBuster 4.3.26:9 2007.08.16 -
[B]Webwasher-Gateway 6.0.1 2007.08.17 Trojan.Crypt.ULPM.Gen[/B]
Additional information
File size: 35605 bytes
MD5: 9e4295ea204dc617d79e81fc70a2e720
SHA1: 7b24eda6f71235fc1895416c297eb18bce2f8ec7[/CODE]
[CODE]File reveal32.sys received on 08.17.2007 12:55:44 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.17 -
AntiVir 7.4.1.62 2007.08.17 -
Authentium 4.93.8 2007.08.17 -
Avast 4.7.1029.0 2007.08.16 -
AVG 7.5.0.476 2007.08.16 -
BitDefender 7.2 2007.08.17 -
CAT-QuickHeal 9.00 2007.08.16 -
ClamAV 0.91 2007.08.16 -
[B]DrWeb 4.33 2007.08.17 Trojan.NtRootKit.331[/B]
eSafe 7.0.15.0 2007.08.16 -
eTrust-Vet 31.1.5067 2007.08.17 -
Ewido 4.0 2007.08.17 -
FileAdvisor 1 2007.08.17 -
Fortinet 2.91.0.0 2007.08.16 -
F-Prot 4.3.2.48 2007.08.16 -
F-Secure 6.70.13030.0 2007.08.17 -
Ikarus T3.1.1.12 2007.08.17 -
Kaspersky 4.0.2.24 2007.08.17 -
McAfee 5099 2007.08.16 -
Microsoft 1.2803 2007.08.17 -
NOD32v2 2467 2007.08.16 -
Norman 5.80.02 2007.08.16 -
Panda 9.0.0.4 2007.08.17 -
Rising 19.36.42.00 2007.08.17 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.17 -
Symantec 10 2007.08.17 -
TheHacker 6.1.8.170 2007.08.17 -
[B]VBA32 3.12.2.2 2007.08.16 Trojan.NtRootKit.331[/B]
VirusBuster 4.3.26:9 2007.08.16 -
Webwasher-Gateway 6.0.1 2007.08.17 -
Additional information
File size: 14848 bytes
MD5: e79b7e3aada4461c8a94812fc2036e88
SHA1: ad9230b49d376a9e5ac4dbf3c7a6065d480fd203[/CODE]
-
File msdnc0.exe received on 08.19.2007 06:22:18 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.18.0 2007.08.18 -
[B]AntiVir 7.4.1.62 2007.08.19 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.08.17 -
Avast 4.7.1029.0 2007.08.17 -
[B]AVG 7.5.0.484 2007.08.18 PSW.Ldpinch.NEK[/B]
[B]BitDefender 7.2 2007.08.19 Trojan.PWS.LDPinch.TAW[/B]
[B]CAT-QuickHeal 9.00 2007.08.18 TrojanPSW.LdPinch.bno[/B]
ClamAV 0.91 2007.08.19 -
[B]DrWeb 4.33 2007.08.18 Trojan.PWS.LDPinch.1781[/B]
[B]eSafe 7.0.15.0 2007.08.16 Win32.LdPinch.bno[/B]
[B]eTrust-Vet 31.1.5069 2007.08.18 Win32/LdPinch.CM[/B]
[B]Ewido 4.0 2007.08.18 Trojan.LdPinch.bno[/B]
FileAdvisor 1 2007.08.19 -
[B]Fortinet 2.91.0.0 2007.08.18 W32/Basine.BNO!tr.pws[/B]
F-Prot 4.3.2.48 2007.08.17 -
[B]F-Secure 6.70.13030.0 2007.08.17 Trojan-PSW.Win32.LdPinch.bno[/B]
[B]Ikarus T3.1.1.12 2007.08.18 Trojan-PWS.Win32.LdPinch.bno[/B]
[B]Kaspersky 4.0.2.24 2007.08.19 Trojan-PSW.Win32.LdPinch.bno[/B]
McAfee 5100 2007.08.17 -
[B]Microsoft 1.2803 2007.08.19 TrojanDownloader:Win32/Small.CBA[/B]
NOD32v2 2469 2007.08.18 -
[B]Norman 5.80.02 2007.08.17 LdPinch.JVR[/B]
[B]Panda 9.0.0.4 2007.08.18 Generic Trojan[/B]
[B]Prevx1 V2 2007.08.19 Generic.Malware[/B]
[B]Rising 19.36.60.00 2007.08.19 Packer.RyCrypt[/B]
[B]Sophos 4.20.0 2007.08.12 Mal/Basine-C[/B]
[B]Sunbelt 2.2.907.0 2007.08.18 Trojan-PSW.Win32.LdPinch.bno[/B]
[B]Symantec 10 2007.08.19 Infostealer.Ldpinch[/B]
[B]TheHacker 6.1.8.170 2007.08.17 Trojan/PSW.LdPinch.bno[/B]
VBA32 3.12.2.2 2007.08.17 -
[B]VirusBuster 4.3.26:9 2007.08.18 Trojan.DR.Cimuz.Gen.1[/B]
[B]Webwasher-Gateway 6.0.1 2007.08.19 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 58634 bytes
MD5: 58a71e7c9edefb1270c2292318a61ff6
SHA1: a3efc9514ea657dbcce516f06532af81b3b03091
packers: RCrypt
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=10085A090A190E3AE5FB00D1494F610014A92673[/url]
-
File D3DGear_v1.96_Keygen.exe received on 08.20.2007 22:18:12 (CET)
Current status: finished
Result: 22/32 (68.75%)
Antivirus Version Last Update Result
[B]AhnLab-V3 2007.8.21.0 2007.08.20 Win-Trojan/Ardamax.320830[/B]
AntiVir 7.4.1.62 2007.08.20 -
[B]Authentium 4.93.8 2007.08.20 W32/Trojan.ATHZ[/B]
[B]Avast 4.7.1029.0 2007.08.20 Win32:Ardamax-CJ[/B]
[B]AVG 7.5.0.484 2007.08.20 PSW.Generic4.TGX[/B]
[B]BitDefender 7.2 2007.08.20 Application.Ardamax.AK[/B]
[B]CAT-QuickHeal 9.00 2007.08.20 TrojanSpy.Ardamax.j[/B]
[B]ClamAV 0.91 2007.08.20 Trojan.Spy.Ardamax-25[/B]
DrWeb 4.33 2007.08.20 -
[B]eSafe 7.0.15.0 2007.08.20 Win32.Ardamax.j[/B]
eTrust-Vet 31.1.5069 2007.08.18 -
[B]Ewido 4.0 2007.08.20 Logger.Ardamax.i[/B]
FileAdvisor 1 2007.08.20 -
[B]Fortinet 2.91.0.0 2007.08.20 Spy/Ardamax[/B]
[B]F-Prot 4.3.2.48 2007.08.20 W32/Trojan.ATHZ[/B]
[B]F-Secure 6.70.13030.0 2007.08.20 Trojan-Spy.Win32.Ardamax.j[/B]
[B]Ikarus T3.1.1.12 2007.08.20 Trojan-Spy.Win32.Ardamax.j[/B]
Kaspersky 4.0.2.24 2007.08.20 -
[B]McAfee 5101 2007.08.20 Keylog-Ardamax.dr.gen[/B]
Microsoft 1.2803 2007.08.20 -
[B]NOD32v2 2471 2007.08.20 probably a variant of Win32/Keylogger.Ardamax[/B]
[B]Norman 5.80.02 2007.08.20 W32/Ardamax.CLC[/B]
Panda 9.0.0.4 2007.08.19 -
[B]Prevx1 V2 2007.08.20 Generic.Malware[/B]
[B]Rising 19.36.60.00 2007.08.19 Trojan.Spy.Win32.Ardamax.l[/B]
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.18 -
[B]Symantec 10 2007.08.20 Spyware.Ardakey[/B]
[B]TheHacker 6.1.8.171 2007.08.20 Trojan/Spy.Ardamax.j[/B]
[B]VBA32 3.12.2.2 2007.08.20 Trojan-Spy.Win32.Ardamax.j[/B]
VirusBuster 4.3.26:9 2007.08.20 -
[B]Webwasher-Gateway 6.0.1 2007.08.20 Riskware.Ardamax.K.Gen[/B]
Additional information
File size: 347562 bytes
MD5: 9a471ee529efe82d02760d2dcb4888a8
SHA1: 67504fd4656b7529c6c97058f3cd65ea5e5219f2
packers: ZLIB
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=D4199679AA54B8704D6D054816E44700A873A9B3[/url]
-
топик t=11836
файл [B]Dert69.sys[/B]
[QUOTE]
AhnLab-V3 2007.8.21.0 2007.08.20 -
[COLOR="Blue"]AntiVir 7.4.1.62 2007.08.20 RKit/Agent.EA.40[/COLOR]
Authentium 4.93.8 2007.08.20 -
[COLOR="Blue"]Avast 4.7.1029.0 2007.08.20 Win32:Agent-FTK
AVG 7.5.0.484 2007.08.20 BackDoor.Generic8.CJX[/COLOR]
BitDefender 7.2 2007.08.21 -
[COLOR="Blue"]CAT-QuickHeal 9.00 2007.08.20 Rootkit.Agent.ea[/COLOR]
ClamAV 0.91 2007.08.21 -
[COLOR="Blue"]DrWeb 4.33 2007.08.20 Trojan.Spambot.2400
eSafe 7.0.15.0 2007.08.20 Rootkit.Win32.Agent.[/COLOR]
eTrust-Vet 31.1.5069 2007.08.18 -
Ewido 4.0 2007.08.20 -
FileAdvisor 1 2007.08.21 -
Fortinet 2.91.0.0 2007.08.20 -
F-Prot 4.3.2.48 2007.08.20 -
[COLOR="Blue"]F-Secure 6.70.13030.0 2007.08.21 Rootkit.Win32.Agent.ea
Ikarus T3.1.1.12 2007.08.20 Rootkit.Win32.Agent.ea
Kaspersky 4.0.2.24 2007.08.21 Rootkit.Win32.Agent.ea[/COLOR]
McAfee 5101 2007.08.20 -
[COLOR="Blue"]Microsoft 1.2803 2007.08.21 Trojan:Win32/Srizbi.gen[/COLOR]
NOD32v2 2472 2007.08.21 -
Norman 5.80.02 2007.08.20 -
Panda 9.0.0.4 2007.08.19 -
Prevx1 V2 2007.08.21 -
[COLOR="Blue"]Rising 19.36.60.00 2007.08.19 Adware.Win32.Agent.q[/COLOR]
Sophos 4.20.0 2007.08.12 -
[COLOR="Blue"]Sunbelt 2.2.907.0 2007.08.21 Rootkit.Win32.Agent.ea[/COLOR]
Symantec 10 2007.08.21 -
TheHacker 6.1.8.171 2007.08.20 -
VBA32 3.12.2.2 2007.08.21 Rootkit.Win32.Agent.ea
VirusBuster 4.3.26:9 2007.08.20 -
[COLOR="Blue"]Webwasher-Gateway 6.0.1 2007.08.21 Rootkit.Agent.EA.40[/COLOR][/QUOTE]
-
File firewall.exe received on 08.21.2007 03:32:41 (CET)
Current status: finished
Result: 13/32 (40.63%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.21.0 2007.08.20 -
[B]AntiVir 7.4.1.62 2007.08.20 BDS/Agent.YRG.12[/B]
Authentium 4.93.8 2007.08.20 -
Avast 4.7.1029.0 2007.08.20 -
[B]AVG 7.5.0.484 2007.08.20 Worm/Agobot.FVW
BitDefender 7.2 2007.08.21 MemScan:Backdoor.Agent.YRG[/B]
[B]CAT-QuickHeal 9.00 2007.08.20 (Suspicious) - DNAScan[/B]
ClamAV 0.91 2007.08.21 -
DrWeb 4.33 2007.08.20 -
[B]eSafe 7.0.15.0 2007.08.20 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5069 2007.08.18 -
[B]Ewido 4.0 2007.08.20 Backdoor.PoeBot.o[/B]
FileAdvisor 1 2007.08.21 -
Fortinet 2.91.0.0 2007.08.20 -
F-Prot 4.3.2.48 2007.08.20 -
F-Secure 6.70.13030.0 2007.08.21 -
[B]Ikarus T3.1.1.12 2007.08.20 MemScanBackdoor.Agent.YRG[/B]
Kaspersky 4.0.2.24 2007.08.21 -
McAfee 5101 2007.08.20 -
[B]Microsoft 1.2803 2007.08.21 Exploit:Win32/MS06040.gen
NOD32v2 2472 2007.08.21 a variant of Win32/Poebot[/B]
Norman 5.80.02 2007.08.20 -
[B]Panda 9.0.0.4 2007.08.19 Suspicious file
Prevx1 V2 2007.08.21 Trojan.SystemPoser[/B]
Rising 19.36.60.00 2007.08.19 -
Sophos 4.20.0 2007.08.12 -
[B]Sunbelt 2.2.907.0 2007.08.21 VIPRE.Suspicious[/B]
Symantec 10 2007.08.21 -
TheHacker 6.1.8.171 2007.08.20 -
VBA32 3.12.2.2 2007.08.21 -
VirusBuster 4.3.26:9 2007.08.20 -
[B]Webwasher-Gateway 6.0.1 2007.08.21 Trojan.Agent.YRG.12[/B]
Additional information
File size: 50142 bytes
MD5: 0fcde95916fcc23ecbed1b47632cd74c
SHA1: c2dd58be2f5ddfbf89c8ababf07009034bdfbfdd
-
File file.exe received on 08.21.2007 10:15:10 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 18/31 (58.07%)
Antivirus Version Last Update Result
[B]AhnLab-V3 2007.8.21.2 2007.08.21 Win-Trojan/Downloader.10330[/B]
[B]AntiVir 7.4.1.62 2007.08.21 TR/Dldr.Small.ezc[/B]
[B]Authentium 4.93.8 2007.08.20 W32/Downloader.gen10[/B]
Avast 4.7.1029.0 2007.08.20 -
[B]AVG 7.5.0.484 2007.08.20 Downloader.Generic5.QZX[/B]
[B]BitDefender 7.2 2007.08.21 BehavesLike:Trojan.Downloader[/B]
CAT-QuickHeal 9.00 2007.08.20 -
ClamAV 0.91 2007.08.21 -
[B]DrWeb 4.33 2007.08.20 Trojan.DownLoader.29701[/B]
[B]eSafe 7.0.15.0 2007.08.20 Win32.Small.ezc[/B]
eTrust-Vet 31.1.5076 2007.08.21 -
Ewido 4.0 2007.08.20 -
FileAdvisor 1 2007.08.21 -
[B]Fortinet 2.91.0.0 2007.08.21 W32/Small.EZC!tr.dldr[/B]
[B]F-Prot 4.3.2.48 2007.08.20 W32/Downloader.gen10[/B]
[B]F-Secure 6.70.13030.0 2007.08.21 Trojan-Downloader.Win32.Small.ezc[/B]
[B]Ikarus T3.1.1.12 2007.08.21 Trojan-Downloader.Win32.Small.ezc[/B]
Kaspersky 4.0.2.24 2007.08.21 -
McAfee 5101 2007.08.20 -
[B]Microsoft 1.2803 2007.08.21 TrojanDownloader:Win32/Small.gen!O[/B]
[B]NOD32v2 2472 2007.08.21 probably unknown NewHeur_PE virus[/B]
[B]Norman 5.80.02 2007.08.20 W32/DLoader.DBTS[/B]
Panda 9.0.0.4 2007.08.21 -
Prevx1 V2 2007.08.21 -
Rising 19.37.12.00 2007.08.21 -
[B]Sophos 4.20.0 2007.08.21 Mal/TinyDL-L[/B]
[B]Sunbelt 2.2.907.0 2007.08.21 Trojan-Downloader.Win32.Small.gen!O[/B]
Symantec 10 2007.08.21 -
[B]TheHacker 6.1.8.171 2007.08.21 Trojan/Downloader.Small.ezc[/B]
[B]VBA32 3.12.2.2 2007.08.21 Trojan-Downloader.Win32.Small.ezc[/B]
VirusBuster 4.3.26:9 2007.08.20 -
Additional information
File size: 10332 bytes
MD5: 4f30c174ae755b88aad65eda62549800
SHA1: 5bd178a6a4fea918d77ad19391eb05548688a80d
-
[QUOTE]File applet.exe received on 08.21.2007 19:24:11 (CET)
Current status: finished
Result: 16/32 (50%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.22.0 2007.08.21 -
[B]AntiVir 7.4.1.62 2007.08.21 WORM/Zhelatin.Gen
Authentium 4.93.8 2007.08.20 Possibly a new variant of W32/Fathom.2-based!Maximus
Avast 4.7.1029.0 2007.08.21 Win32:Zhelatin-ANZ
AVG 7.5.0.484 2007.08.21 Downloader.Tibs.7.D
BitDefender 7.2 2007.08.21 DeepScan:[email protected]
CAT-QuickHeal 9.00 2007.08.21 (Suspicious) - DNAScan
ClamAV 0.91 2007.08.21 Fathom
DrWeb 4.33 2007.08.21 Trojan.Packed.142
eSafe 7.0.15.0 2007.08.20 Suspicious Trojan/Worm
eTrust-Vet 31.1.5076 2007.08.21 Win32/Sintun.AC[/B]
Ewido 4.0 2007.08.21 -
FileAdvisor 1 2007.08.21 -
Fortinet 2.91.0.0 2007.08.21 -
[B]F-Prot 4.3.2.48 2007.08.20 W32/Fathom.2-based!Maximus[/B]
F-Secure 6.70.13030.0 2007.08.21 -
Ikarus T3.1.1.12 2007.08.21 -
Kaspersky 4.0.2.24 2007.08.21 -
McAfee 5102 2007.08.21 -
Microsoft 1.2803 2007.08.21 -
NOD32v2 2473 2007.08.21 -
Norman 5.80.02 2007.08.21 -
Panda 9.0.0.4 2007.08.21 -
Prevx1 V2 2007.08.21 -
Rising 19.37.12.00 2007.08.21 -
[B]Sophos 4.20.0 2007.08.21 Mal/Dorf-E
Sunbelt 2.2.907.0 2007.08.21 VIPRE.Suspicious
Symantec 10 2007.08.21 Trojan.Packed.13[/B]
TheHacker 6.1.8.171 2007.08.21 -
[B]VBA32 3.12.2.2 2007.08.21 MalwareScope.Worm.Nuwar-Glowa.1[/B]
VirusBuster 4.3.26:9 2007.08.21 -
[B]Webwasher-Gateway 6.0.1 2007.08.21 Worm.Zhelatin.Gen[/B]
Additional information
File size: 114487 bytes
MD5: 76b73b86b9353ce30b39f852da5ca35f
SHA1: 69ed9cb4d9f9c32e3a19a53ee87808cc53cb0842
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/QUOTE]
Каспер с Нодом подкачали...или не успели еще :)
****
[QUOTE]File Dumped.sys received on 08.21.2007 19:33:40 (CET)
Current status: finished
Result: 4/32 (12.5%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.22.0 2007.08.21 -
AntiVir 7.4.1.62 2007.08.21 -
Authentium 4.93.8 2007.08.20 -
[B]Avast 4.7.1029.0 2007.08.21 Win32:Agent-FTK
AVG 7.5.0.484 2007.08.21 Obfustat.IZO[/B]
BitDefender 7.2 2007.08.21 -
CAT-QuickHeal 9.00 2007.08.21 -
ClamAV 0.91 2007.08.21 -
DrWeb 4.33 2007.08.21 -
eSafe 7.0.15.0 2007.08.20 -
eTrust-Vet 31.1.5076 2007.08.21 -
Ewido 4.0 2007.08.21 -
FileAdvisor 1 2007.08.21 -
Fortinet 2.91.0.0 2007.08.21 -
F-Prot 4.3.2.48 2007.08.20 -
F-Secure 6.70.13030.0 2007.08.21 -
[B]Ikarus T3.1.1.12 2007.08.21 Rootkit.Win32.Agent.ea[/B]
Kaspersky 4.0.2.24 2007.08.21 -
McAfee 5102 2007.08.21 -
Microsoft 1.2803 2007.08.21 -
NOD32v2 2473 2007.08.21 -
Norman 5.80.02 2007.08.21 -
Panda 9.0.0.4 2007.08.21 -
Prevx1 V2 2007.08.21 -
Rising 19.37.12.00 2007.08.21 -
Sophos 4.20.0 2007.08.21 -
Sunbelt 2.2.907.0 2007.08.21 -
Symantec 10 2007.08.21 -
TheHacker 6.1.8.171 2007.08.21 -
VBA32 3.12.2.2 2007.08.21 -
VirusBuster 4.3.26:9 2007.08.21 -
[B]Webwasher-Gateway 6.0.1 2007.08.21 Win32.Malware.gen!80 (suspicious)[/B]
Additional information
File size: 176128 bytes
MD5: 57b2356f3b70dd86a8ed66b48f589417
SHA1: d769a5ac768f22c29508e18cfdb9ed148d60f59d[/QUOTE]
А это детект дампа, снятого через RKU с одного зверька сегодня. Бился с ним более получаса, в итоге небезуспешно. Очень похож на Trojan.Srizbi, скрипт для убиения которого обсуждается в закрытом разделе форума.
-
[QUOTE='XL;128928']Очень похож на Trojan.Srizbi, скрипт для убиения которого обсуждается в закрытом разделе форума.[/QUOTE]
А это он и есть :) Srizbi детектируется Касперским именно как Rootkit.Win32.Agent.ea.Ну а вердикт Ikarus = Kaspersky
-
File 1.exe received on 08.24.2007 05:41:04 (CET)
Current status: finished
Result: 12/32 (37.5%)
Antivirus Version Last Update Result.
AhnLab-V3 2007.8.22.0 2007.08.24 -
[B]AntiVir 7.4.1.63 2007.08.23 DR/Delphi.Gen[/B]
Authentium 4.93.8 2007.08.23 -
[B]Avast 4.7.1029.0 2007.08.24 Win32:LdPinch-NO[/B]
AVG 7.5.0.484 2007.08.23 -
[B]BitDefender 7.2 2007.08.24 MemScan:Trojan.PWS.LdPinch.BSG[/B]
CAT-QuickHeal 9.00 2007.08.23 -
[B]ClamAV 0.91 2007.08.24 Trojan.Dropper.Delf-65
DrWeb 4.33 2007.08.23 Trojan.PWS.LDPinch.1467
eSafe 7.0.15.0 2007.08.23 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5083 2007.08.24 -
Ewido 4.0 2007.08.23 -
FileAdvisor 1 2007.08.24 -
Fortinet 2.91.0.0 2007.08.24 -
F-Prot 4.3.2.48 2007.08.23 -
F-Secure 6.70.13030.0 2007.08.24 -
Ikarus T3.1.1.12 2007.08.24 -
[B]Kaspersky 4.0.2.24 2007.08.24 Trojan-Dropper.Win32.Agent.bqb
McAfee 5104 2007.08.23 W32/Generic.Delphi.b[/B]
Microsoft 1.2803 2007.08.24 -
[B]NOD32v2 2481 2007.08.24 a variant of Win32/PSW.LdPinch.NCB[/B]
Norman 5.80.02 2007.08.23 -
[B]Panda 9.0.0.4 2007.08.24 Suspicious file[/B]
Prevx1 V2 2007.08.24 -
Rising 19.37.40.00 2007.08.24 -
Sophos 4.20.0 2007.08.24 -
Sunbelt 2.2.907.0 2007.08.24 -
Symantec 10 2007.08.24 -
TheHacker 6.1.8.172 2007.08.24 -
[B]VBA32 3.12.2.3 2007.08.23 MalwareScope.Trojan-PSW.Pinch.1[/B]
VirusBuster 4.3.26:9 2007.08.23 -
[B]Webwasher-Gateway 6.0.1 2007.08.24 Trojan.Delphi.Gen[/B]
Additional information
File size: 78160 bytes
MD5: df12100205b0d79efb9129c8a34a75cd
SHA1: 9022ae857bc001aa2b1a008b87bb2c52b9c33167
packers: PECompact
packers: BINARYRES, PECOMPACT
packers: PecBundle, PECompact
-
File sobchak.scr received on 08.27.2007 19:50:49 (CET)
Current status: finished
Result: 15/32 (46.88%)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.28.0 2007.08.27 -
[B]AntiVir 7.4.1.63 2007.08.27 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.08.26 -
Avast 4.7.1029.0 2007.08.27 -
[B]AVG 7.5.0.484 2007.08.27 Win32/PolyCrypt
BitDefender 7.2 2007.08.27 Trojan.PWS.LDPinch.TAW[/B]
CAT-QuickHeal 9.00 2007.08.25 -
ClamAV 0.91 2007.08.27 -
DrWeb 4.33 2007.08.27 -
[B]eSafe 7.0.15.0 2007.08.26 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5088 2007.08.27 -
Ewido 4.0 2007.08.27 -
FileAdvisor 1 2007.08.27 -
Fortinet 2.91.0.0 2007.08.27 -
F-Prot 4.3.2.48 2007.08.26 -
[B]F-Secure 6.70.13260.0 2007.08.27 Trojan-PSW.Win32.LdPinch.ckf
Ikarus T3.1.1.12 2007.08.27 Trojan-PWS.Win32.Lmir.AGP
Kaspersky 4.0.2.24 2007.08.27 Packed.Win32.PolyCrypt.d
McAfee 5106 2007.08.27 New Malware.ek
Microsoft 1.2803 2007.08.27 TrojanDownloader:Win32/Small.CBA[/B]
NOD32v2 2486 2007.08.27 -
[B]Norman 5.80.02 2007.08.27 Suspicious_P.gen[/B]
Panda 9.0.0.4 2007.08.27 -
Prevx1 V2 2007.08.27 -
[B]Rising 19.38.02.00 2007.08.27 Packer.RyCrypt
Sophos 4.21.0 2007.08.27 Mal/AvPak
Sunbelt 2.2.907.0 2007.08.25 VIPRE.Suspicious[/B]
Symantec 10 2007.08.27 -
TheHacker 6.1.9.173 2007.08.27 -
VBA32 3.12.2.3 2007.08.27 -
[B]VirusBuster 4.3.26:9 2007.08.27 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.08.27 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 66755 bytes
MD5: ef2e89c62eedfa555665d344d3cf8abe
SHA1: a051df1f7eeb005bb568be9c0948a90b76e4b53f
packers: RCrypt
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
t-11969
File avz00002.dta received on 08.28.2007 13:21:31 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.28.2 2007.08.28 -
[B]AntiVir 7.4.1.63 2007.08.28 TR/Agent.GBC[/B]
Authentium 4.93.8 2007.08.28 -
Avast 4.7.1029.0 2007.08.27 -
[B]AVG 7.5.0.484 2007.08.27 SHeur.DLP
BitDefender 7.2 2007.08.28 BehavesLike:Trojan.StartPage
CAT-QuickHeal 9.00 2007.08.25 (Suspicious) - DNAScan
[/B]ClamAV 0.91 2007.08.28 -
[B]DrWeb 4.33 2007.08.28 modification of Trojan.Packed.162
eSafe 7.0.15.0 2007.08.26 -1646264482
[/B]eTrust-Vet 31.1.5091 2007.08.28 -
Ewido 4.0 2007.08.27 -
FileAdvisor 1 2007.08.28 -
Fortinet 2.91.0.0 2007.08.28 -
F-Prot 4.3.2.48 2007.08.28 -
F-Secure 6.70.13030.0 2007.08.28 -
[B]Ikarus T3.1.1.12 2007.08.28 BehavesLikeTrojan.StartPage
[/B]Kaspersky 4.0.2.24 2007.08.28 -
McAfee 5106 2007.08.27 -
Microsoft 1.2803 2007.08.28 -
NOD32v2 2488 2007.08.28 -
Norman 5.80.02 2007.08.28 -
[B]Panda 9.0.0.4 2007.08.28 Trj/Agent.GBC
Prevx1 V2 2007.08.28 Trojan.SystemPoser
Rising 19.38.12.00 2007.08.28 Trojan.Win32.Agent.gbc
[/B]Sophos 4.21.0 2007.08.28 -
[B]Sunbelt 2.2.907.0 2007.08.25 VIPRE.Suspicious
[/B]Symantec 10 2007.08.28 -
TheHacker 6.1.9.175 2007.08.28 -
VBA32 3.12.2.3 2007.08.28 -
VirusBuster 4.3.26:9 2007.08.27 -
[B]Webwasher-Gateway 6.0.1 2007.08.28 Trojan.Agent.GBC
[/B]Additional information
File size: 45743 bytes
MD5: 7ed38b35477c4be7ea4aae15478b6ef7
SHA1: 30ac390cd908a4773f47205d621afe0d0a502f04
[size="1"][color="#666686"][B][I]Добавлено через 28 минут[/I][/B][/color][/size]
File http__www.****.com_youtube__w received on 08.28.2007 14:01:03 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.28.2 2007.08.28 -
[B]AntiVir 7.4.1.63 2007.08.28 HEUR/Malware[/B]
Authentium 4.93.8 2007.08.28 -
Avast 4.7.1029.0 2007.08.27 -
[B]AVG 7.5.0.484 2007.08.27 Generic6.ULJ
BitDefender 7.2 2007.08.28 Dropped:Generic.Malware.Yddld!!.ACDA918A[/B]
CAT-QuickHeal 9.00 2007.08.25 -
[B]ClamAV 0.91 2007.08.28 Trojan.Dropper-2269[/B]
DrWeb 4.33 2007.08.28 -
[B]eSafe 7.0.15.0 2007.08.26 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5091 2007.08.28 -
Ewido 4.0 2007.08.27 -
FileAdvisor 1 2007.08.28 -
[B]Fortinet 2.91.0.0 2007.08.28 W32/Agent.AVM!tr[/B]
F-Prot 4.3.2.48 2007.08.28 -
[B]F-Secure 6.70.13030.0 2007.08.28 Trojan.Win32.Agent.avm
Ikarus T3.1.1.12 2007.08.28 Win32.SuspectCrc
Kaspersky 4.0.2.24 2007.08.28 Trojan.Win32.Agent.avm[/B]
McAfee 5106 2007.08.27 -
Microsoft 1.2803 2007.08.28 -
NOD32v2 2488 2007.08.28 -
[B]Norman 5.80.02 2007.08.28 W32/Malware
Panda 9.0.0.4 2007.08.28 Trj/Downloader.MDW[/B]
Prevx1 V2 2007.08.28 -
Rising 19.38.12.00 2007.08.28 -
[B]Sophos 4.21.0 2007.08.28 Mal/Generic-A[/B]
Sunbelt 2.2.907.0 2007.08.25 -
Symantec 10 2007.08.28 -
[B]TheHacker 6.1.9.175 2007.08.28 Trojan/Agent.avm
VBA32 3.12.2.3 2007.08.28 Trojan.Win32.Agent.avm[/B]
VirusBuster 4.3.26:9 2007.08.27 -
[B]Webwasher-Gateway 6.0.1 2007.08.28 Heuristic.Malware[/B]
Additional information
File size: 113152 bytes
MD5: a2880ae984568cf6708500f7d719ddf5
SHA1: 9b0e5f41dc7ea8f74c209d99f5b4a83a5ada06c4
packers: UPX
packers: UPX, BINARYRES, UPX, BINARYRES
-
Похоже, у меня эпидемия :)
File ulsoxoi.exe received on 08.28.2007 13:51:20 (CET)
Antivirus Version Last Update Result
[b]AhnLab-V3 2007.8.28.2 2007.08.28 Win32/IRCBot.worm.504480[/b]
[b]AntiVir 7.4.1.63 2007.08.28 HEUR/Crypted[/b]
Authentium 4.93.8 2007.08.28 -
Avast 4.7.1029.0 2007.08.27 -
[b]AVG 7.5.0.484 2007.08.27 SHeur.JOR[/b]
[b]BitDefender 7.2 2007.08.28 DeepScan:Generic.Sdbot.F47A0C90[/b]
[b]CAT-QuickHeal 9.00 2007.08.25 Backdoor.SdBot.gen[/b]
ClamAV 0.91 2007.08.28 -
DrWeb 4.33 2007.08.28 -
eSafe 7.0.15.0 2007.08.26 -
eTrust-Vet 31.1.5091 2007.08.28 -
Ewido 4.0 2007.08.27 -
FileAdvisor 1 2007.08.28 -
Fortinet 2.91.0.0 2007.08.28 -
F-Prot 4.3.2.48 2007.08.28 -
F-Secure 6.70.13030.0 2007.08.28 -
[b]Ikarus T3.1.1.12 2007.08.28 Generic.Sdbot[/b]
Kaspersky 4.0.2.24 2007.08.28 -
[b]McAfee 5106 2007.08.27 New Malware.gp[/b]
Microsoft 1.2803 2007.08.28 -
NOD32v2 2488 2007.08.28 -
Norman 5.80.02 2007.08.28 -
Panda 9.0.0.4 2007.08.28 -
[b]Prevx1 V2 2007.08.28 Worm.Rbot[/b]
Rising 19.38.12.00 2007.08.28 -
Sophos 4.21.0 2007.08.28 -
[b]Sunbelt 2.2.907.0 2007.08.25 VIPRE.Suspicious[/b]
Symantec 10 2007.08.28 -
TheHacker 6.1.9.175 2007.08.28 -
VBA32 3.12.2.3 2007.08.28 -
VirusBuster 4.3.26:9 2007.08.27 -
[b]Webwasher-Gateway 6.0.1 2007.08.28 Heuristic.Crypted[/b]
Additional information
File size: 504480 bytes
MD5: e36c441a19c72d71eea9e27a3f86c292
SHA1: 679aabd092915d0e788b2b1b092e36b7a11424f5
packers: Themida
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=3695ABAFA09BD606B2F00774C10E5300F089BAE4[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
-
t=11980
File avz00001.dta received on 08.28.2007 20:47:31 (CET)Antivirus Version Last Update Result
AhnLab-V3 2007.8.29.0 2007.08.28 -
[B]AntiVir 7.4.1.63 2007.08.28 HEUR/Crypted[/B]
Authentium 4.93.8 2007.08.28 -
Avast 4.7.1029.0 2007.08.28 -
AVG 7.5.0.484 2007.08.28 -
BitDefender 7.2 2007.08.28 -
CAT-QuickHeal 9.00 2007.08.25 -
ClamAV 0.91.2 2007.08.28 -
DrWeb 4.33 2007.08.28 -
[B]eSafe 7.0.15.0 2007.08.28 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5091 2007.08.28 -
Ewido 4.0 2007.08.28 -
FileAdvisor 1 2007.08.28 -
Fortinet 2.91.0.0 2007.08.28 -
F-Prot 4.3.2.48 2007.08.28 -
F-Secure 6.70.13030.0 2007.08.28 -
Ikarus T3.1.1.12 2007.08.28 -
Kaspersky 4.0.2.24 2007.08.28 -
McAfee 5107 2007.08.28 -
[B]Microsoft 1.2803 2007.08.28 TrojanDownloader:Win32/Renos[/B]
NOD32v2 2489 2007.08.28 -
Norman 5.80.02 2007.08.28 -
Panda 9.0.0.4 2007.08.28 -
[B]Prevx1 V2 2007.08.28 Spyware.WinAntiVirus[/B]
Rising 19.38.12.00 2007.08.28 -
[B]Sophos 4.21.0 2007.08.28 Mal/EncPk-AV
Sunbelt 2.2.907.0 2007.08.25 VIPRE.Suspicious[/B]
Symantec 10 2007.08.28 -
TheHacker 6.1.9.175 2007.08.28 -
VBA32 3.12.2.3 2007.08.28 -
VirusBuster 4.3.26:9 2007.08.28 -
[B]Webwasher-Gateway 6.0.1 2007.08.28 Heuristic.Crypted[/B]
Additional information
File size: 16896 bytes
MD5: c4fd4f9445461a705798ee6a9b649caa
SHA1: 9fdcbec52d049ff502aba952cd6cf1b0ad79fde4
-
T=12012
[code] File avz00004.dta received on 08.30.2007 10:58:15 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.8.29.0 2007.08.30 -
AntiVir 7.4.1.66 2007.08.30 TR/Dldr.ConHook.Gen
Authentium 4.93.8 2007.08.29 -
Avast 4.7.1029.0 2007.08.29 -
AVG 7.5.0.484 2007.08.29 BHO.AMJ
BitDefender 7.2 2007.08.30 MemScan:Trojan.Juan.V
CAT-QuickHeal 9.00 2007.08.30 -
ClamAV 0.91.2 2007.08.29 -
DrWeb 4.33 2007.08.30 Trojan.Virtumod
eSafe 7.0.15.0 2007.08.29 suspicious Trojan/Worm
eTrust-Vet 31.1.5095 2007.08.30 -
Ewido 4.0 2007.08.29 -
FileAdvisor 1 2007.08.30 -
Fortinet 3.11.0.0 2007.08.30 -
F-Prot 4.3.2.48 2007.08.29 -
F-Secure 6.70.13030.0 2007.08.30 -
Ikarus T3.1.1.12 2007.08.30 MemScanTrojan.Juan.V
Kaspersky 4.0.2.24 2007.08.30 -
McAfee 5108 2007.08.29 -
Microsoft 1.2803 2007.08.30 -
NOD32v2 2491 2007.08.30 a variant of Win32/BHO.G
Norman 5.80.02 2007.08.29 Suspicious_R.gen
Panda 9.0.0.4 2007.08.29 Suspicious file
Prevx1 V2 2007.08.30 Generic.Malware
Rising 19.38.31.00 2007.08.30 -
Sophos 4.21.0 2007.08.30 -
Sunbelt 2.2.907.0 2007.08.25 Virtumonde
Symantec 10 2007.08.30 -
TheHacker 6.1.9.175 2007.08.30 -
VBA32 3.12.2.3 2007.08.28 Trojan.Virtumod
VirusBuster 4.3.26:9 2007.08.29 -
Webwasher-Gateway 6.0.1 2007.08.30 Trojan.Dldr.ConHook.Gen
Additional information
File size: 63598 bytes
MD5: 37ebe8949ae4f403aa037b184636d2c4
SHA1: d370ece1f3892d5b426e36cad93fd4b101f5dbc6
packers: RLPack
Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PX5=ECD659906E6212C0F82E00C91BAEAC00B5ED8FAC
Sunbelt info: Virtumonde is an adware program that displays pop-up advertisements on the desktop. Virtumonde also downloads other software from various remote servers.[/code]
-
File Trojan.DownLoader.Nurech.BV.rar received on 08.31.2007 12:06:45 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.08.31 -
AntiVir 7.4.1.66 2007.08.31 -
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.30 -
[b]AVG 7.5.0.484 2007.08.31 Downloader.Generic5.TWO[/b]
BitDefender 7.2 2007.08.31 -
CAT-QuickHeal 9.00 2007.08.30 -
[b]ClamAV 0.91.2 2007.08.31 Trojan.Downloader-12895[/b]
[b]DrWeb 4.33 2007.08.31 Trojan.DownLoader.30458[/b]
eSafe 7.0.15.0 2007.08.29 -
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.30 -
FileAdvisor 1 2007.08.31 -
Fortinet 3.11.0.0 2007.08.31 -
[b]F-Prot 4.3.2.48 2007.08.31 W32/Trojan.BVZH[/b]
F-Secure 6.70.13030.0 2007.08.31 -
[b]Ikarus T3.1.1.12 2007.08.31 Trojan-Downloader.Win32.Small.evh[/b]
Kaspersky 4.0.2.24 2007.08.31 -
[b]McAfee 5109 2007.08.30 Downloader-AAP.gen[/b]
[b]Microsoft 1.2803 2007.08.31 TrojanDownloader:Win32/Agent.ABZ[/b]
[b]NOD32v2 2493 2007.08.31 a variant of Win32/TrojanDownloader.Nurech.BV[/b]
Norman 5.80.02 2007.08.30 -
Panda 9.0.0.4 2007.08.31 -
Prevx1 V2 2007.08.31 -
Rising 19.38.42.00 2007.08.31 -
[b]Sophos 4.21.0 2007.08.31 Mal/Clagger-G[/b]
Sunbelt 2.2.907.0 2007.08.25 -
Symantec 10 2007.08.31 -
TheHacker 6.1.9.175 2007.08.31 -
[b]VBA32 3.12.2.3 2007.08.30 Trojan.Win32.Inject.dj[/b]
VirusBuster 4.3.26:9 2007.08.30 -
[b]Webwasher-Gateway 6.0.1 2007.08.31 Trojan.Dldr.LooksLike.Tiny!7782[/b]
Additional information
File size: 3730 bytes
MD5: a7e49a314b2cba8f8c5f073ff08bd29e
SHA1: 2371c27b28a5a76787ee47b5b842b55ea779f73c
-
AhnLab-V3 2007.9.1.0 2007.08.31 -
[B]AntiVir 7.4.1.66 2007.08.31 TR/Dldr.Small.ety.5[/B]
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.30 -
[B]AVG 7.5.0.484 2007.08.31 Obfustat.JDC[/B]
BitDefender 7.2 2007.08.31 -
[B]CAT-QuickHeal 9.00 2007.08.31 (Suspicious) - DNAScan[/B]
ClamAV 0.91.2 2007.08.31 -
[B]DrWeb 4.33 2007.08.31 Trojan.Packed.166
eSafe 7.0.15.0 2007.08.29 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.31 -
FileAdvisor 1 2007.08.31 -
[B]Fortinet 3.11.0.0 2007.08.31 W32/Small.ETY!tr.dldr[/B]
F-Prot 4.3.2.48 2007.08.31 -
[B]F-Secure 6.70.13030.0 2007.08.31 Trojan-Downloader.Win32.Small.ety
Ikarus T3.1.1.12 2007.08.31 Trojan-PWS.Win32.LdPinch.atw
Kaspersky 4.0.2.24 2007.08.31 Trojan-Downloader.Win32.Small.ety
McAfee 5109 2007.08.30 New Malware.bl[/B]
Microsoft 1.2803 2007.08.31 -
NOD32v2 2493 2007.08.31 -
[B]Norman 5.80.02 2007.08.31 W32/DLoader.DEUB
Panda 9.0.0.4 2007.08.31 Generic Malware[/B]
Prevx1 V2 2007.08.31 -
[B]Rising 19.38.42.00 2007.08.31 Packer.RyCrypt
Sophos 4.21.0 2007.08.31 Mal/EncPk-AW
Sunbelt 2.2.907.0 2007.08.25 VIPRE.Suspicious[/B]
Symantec 10 2007.08.31 -
[B]TheHacker 6.1.9.175 2007.08.31 Trojan/Downloader.Small.ety
VBA32 3.12.2.3 2007.08.30 Trojan-Downloader.Win32.Small.ety
VirusBuster 4.3.26:9 2007.08.30 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.08.31 Trojan.Dldr.Small.ety.5[/B]
Additional information
File size: 14790 bytes
MD5: d175dbe7caf6fda6bb6395462516d7fd
SHA1: 1622c193cd9e81528ced6bdb6e11fc32d32b5a83
packers: RCrypt
по ходу просто даунлоадер, буду смотреть, чего он там надаунлоадил :D
…мдя
[size="1"][color="#666686"][B][I]Добавлено через 1 час 2 минуты[/I][/B][/color][/size]
накачал-таки…
AhnLab-V3 2007.9.1.0 2007.08.31 -
[B]AntiVir 7.4.1.66 2007.08.31 TR/Crypt.U.Gen[/B]
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.30 -
AVG 7.5.0.484 2007.08.31 -
BitDefender 7.2 2007.08.31 -
CAT-QuickHeal 9.00 2007.08.31 -
ClamAV 0.91.2 2007.08.31 -
[B]DrWeb 4.33 2007.08.31 Trojan.PWS.LDPinch.1941
eSafe 7.0.15.0 2007.08.29 suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.31 -
FileAdvisor 1 2007.08.31 -
Fortinet 3.11.0.0 2007.08.31 -
F-Prot 4.3.2.48 2007.08.31 -
[B]F-Secure 6.70.13030.0 2007.08.31 Trojan-PSW.Win32.LdPinch.cgu[/B]
Ikarus T3.1.1.12 2007.08.31 -
[B]Kaspersky 4.0.2.24 2007.08.31 Trojan-PSW.Win32.LdPinch.cgu
McAfee 5109 2007.08.30 New Malware.bm[/B]
Microsoft 1.2803 2007.08.31 -
NOD32v2 2493 2007.08.31 -
Norman 5.80.02 2007.08.31 -
Panda 9.0.0.4 2007.08.31 -
Prevx1 V2 2007.08.31 -
Rising 19.38.42.00 2007.08.31 -
[B]Sophos 4.21.0 2007.08.31 Mal/Basine-C
Sunbelt 2.2.907.0 2007.08.25 VIPRE.Suspicious[/B]
Symantec 10 2007.08.31 -
TheHacker 6.1.9.175 2007.08.31 -
VBA32 3.12.2.3 2007.08.30 -
VirusBuster 4.3.26:9 2007.08.30 -
[B]Webwasher-Gateway 6.0.1 2007.08.31 Trojan.Crypt.U.Gen[/B]
Additional information
File size: 20480 bytes
MD5: 0a5c7f5e109b57f67ef2a68bd5235e7d
SHA1: e176d36fabdfca20620a83948118c60c9c5dfbe2
AhnLab-V3 2007.9.1.0 2007.08.31 -
AntiVir 7.4.1.66 2007.08.31 -
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.30 -
AVG 7.5.0.484 2007.08.31 -
BitDefender 7.2 2007.08.31 -
CAT-QuickHeal 9.00 2007.08.31 -
ClamAV 0.91.2 2007.08.31 -
DrWeb 4.33 2007.08.31 -
eSafe 7.0.15.0 2007.08.29 -
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.31 -
FileAdvisor 1 2007.08.31 -
Fortinet 3.11.0.0 2007.08.31 -
F-Prot 4.3.2.48 2007.08.31 -
F-Secure 6.70.13030.0 2007.08.31 -
[B]Ikarus T3.1.1.12 2007.08.31 Win32.SuspectCrc[/B]
Kaspersky 4.0.2.24 2007.08.31 -
McAfee 5109 2007.08.30 -
Microsoft 1.2803 2007.08.31 -
NOD32v2 2493 2007.08.31 -
[B]Norman 5.80.02 2007.08.31 W32/Xorpix.ED[/B]
Panda 9.0.0.4 2007.08.31 -
Prevx1 V2 2007.08.31 -
Rising 19.38.42.00 2007.08.31 -
Sophos 4.21.0 2007.08.31 -
[B]Sunbelt 2.2.907.0 2007.08.25 Trojan-Downloader.Win32.Small.nhl[/B]
Symantec 10 2007.08.31 -
TheHacker 6.1.9.175 2007.08.31 -
VBA32 3.12.2.3 2007.08.30 -
VirusBuster 4.3.26:9 2007.08.30 -
Webwasher-Gateway 6.0.1 2007.08.31 -
Additional information
File size: 2560 bytes
MD5: 58df7dc91763549d858991505ae65f3c
SHA1: 5a7f105b498b2e2cd29895c9915480b434fce16f
вот и думай, ложняки или нет
[B]AhnLab-V3 2007.9.1.0 2007.08.31 Win-Trojan/Downloader.12375
AntiVir 7.4.1.66 2007.08.31 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.30 -
[B]AVG 7.5.0.484 2007.08.31 Downloader.Generic6.AUO
BitDefender 7.2 2007.08.31 Trojan.AVKiller.AS
CAT-QuickHeal 9.00 2007.08.31 TrojanDownloader.Small.evl[/B]
ClamAV 0.91.2 2007.08.31 -
[B]DrWeb 4.33 2007.08.31 Trojan.MulDrop.8347
eSafe 7.0.15.0 2007.08.29 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.31 -
FileAdvisor 1 2007.08.31 -
Fortinet 3.11.0.0 2007.08.31 -
F-Prot 4.3.2.48 2007.08.31 -
[B]F-Secure 6.70.13030.0 2007.08.31 Trojan-Downloader.Win32.Small.evl
Ikarus T3.1.1.12 2007.08.31 Trojan-Downloader.Win32.Small.evl
Kaspersky 4.0.2.24 2007.08.31 Trojan-Downloader.Win32.Small.evl[/B]
McAfee 5109 2007.08.30 -
Microsoft 1.2803 2007.08.31 -
NOD32v2 2493 2007.08.31 -
Norman 5.80.02 2007.08.31 -
[B]Panda 9.0.0.4 2007.08.31 Suspicious file
Prevx1 V2 2007.08.31 Generic.Malware[/B]
Rising 19.38.42.00 2007.08.31 -
Sophos 4.21.0 2007.08.31 -
Sunbelt 2.2.907.0 2007.08.25 -
Symantec 10 2007.08.31 -
TheHacker 6.1.9.175 2007.08.31 -
VBA32 3.12.2.3 2007.08.30 -
[B]VirusBuster 4.3.26:9 2007.08.30 Trojan.DL.Small.VIY
Webwasher-Gateway 6.0.1 2007.08.31 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 12375 bytes
MD5: 57f3e4dcefb97222c500a655a451a62a
SHA1: 20f6835a99218eb0410dec50ccf8bd483a2e7ad3
Prevx info: [url]http://fileinfo.prevx.com/fileinfo.asp?PX5=1AAD6D9457246FA1309C00E97B3B8B00D916ABC2[/url]
-
[QUOTE]Norman 5.80.02 2007.08.31 W32/Xorpix.ED[/QUOTE]
Хотя бы Норман заставляет задуматься. :)
-
File index.html received on 08.31.2007 19:06:45 (CET)[QUOTE]AhnLab-V3 2007.9.1.0 2007.08.31 -
[B]AntiVir 7.4.1.66 2007.08.31 HTML/Crypted.Gen[/B]
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.30 -
AVG 7.5.0.484 2007.08.31 -
BitDefender 7.2 2007.08.31 -
CAT-QuickHeal 9.00 2007.08.31 -
ClamAV 0.91.2 2007.08.31 -
DrWeb 4.33 2007.08.31 -
eSafe 7.0.15.0 2007.08.29 -
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.31 -
FileAdvisor 1 2007.08.31 -
Fortinet 3.11.0.0 2007.08.31 -
F-Prot 4.3.2.48 2007.08.31 -
[B]F-Secure 6.70.13030.0 2007.08.31 Trojan-Downloader.JS.Agent.na[/B]
Ikarus T3.1.1.12 2007.08.31 -
[B]Kaspersky 4.0.2.24 2007.08.31 Trojan-Downloader.JS.Agent.na[/B]
McAfee 5110 2007.08.31 -
Microsoft 1.2803 2007.08.31 -
NOD32v2 2494 2007.08.31 -
Norman 5.80.02 2007.08.31 -
Panda 9.0.0.4 2007.08.31 -
Prevx1 V2 2007.08.31 -
Rising 19.38.42.00 2007.08.31 -
Sophos 4.21.0 2007.08.31 -
Sunbelt 2.2.907.0 2007.08.25 -
Symantec 10 2007.08.31 -
TheHacker 6.1.9.175 2007.08.31 -
VBA32 3.12.2.3 2007.08.30 -
VirusBuster 4.3.26:9 2007.08.31 -
[B]Webwasher-Gateway 6.0.1 2007.08.31 Script.Crypted.Gen[/B]
Additional information
File size: 19062 bytes
MD5: 2ca148893370116c1ecf9f97ba6a079f
SHA1: 358bd6e636458c7e17b7f7cd6cdf5a7002e469af[/QUOTE]
-
File _________________________________ received on 08.31.2007 20:37:43 (CET)
Current status: finished
Result: 9/32 (28.13%)
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.08.31 -
[B]AntiVir 7.4.1.66 2007.08.31 HEUR/Malware[/B]
Authentium 4.93.8 2007.08.31 -
Avast 4.7.1029.0 2007.08.31 -
[B]AVG 7.5.0.484 2007.08.31 Worm/Agobot.FWG[/B]
BitDefender 7.2 2007.08.31 -
CAT-QuickHeal 9.00 2007.08.31 -
ClamAV 0.91.2 2007.08.31 -
DrWeb 4.33 2007.08.31 -
eSafe 7.0.15.0 2007.08.29 -
eTrust-Vet 31.1.5099 2007.08.31 -
Ewido 4.0 2007.08.31 -
FileAdvisor 1 2007.08.31 -
Fortinet 3.11.0.0 2007.08.31 -
F-Prot 4.3.2.48 2007.08.31 -
[B]F-Secure 6.70.13030.0 2007.08.31 Trojan-Dropper.Win32.Agent.bro[/B]
Ikarus T3.1.1.12 2007.08.31 -
[B]Kaspersky 4.0.2.24 2007.08.31 Trojan-Dropper.Win32.Agent.bro
McAfee 5110 2007.08.31 New Malware.n[/B]
Microsoft 1.2803 2007.08.31 -
NOD32v2 2494 2007.08.31 -
Norman 5.80.02 2007.08.31 -
[B]Panda 9.0.0.4 2007.08.31 Suspicious file[/B]
Prevx1 V2 2007.08.31 -
Rising 19.38.42.00 2007.08.31 -
[B]Sophos 4.21.0 2007.08.31 Mal/Packer[/B]
Sunbelt 2.2.907.0 2007.08.25 -
Symantec 10 2007.08.31 -
TheHacker 6.1.9.175 2007.08.31 -
[B]VBA32 3.12.2.3 2007.08.30 Backdoor.Win32.Agobot.ajr[/B]
VirusBuster 4.3.26:9 2007.08.31 -
[B]Webwasher-Gateway 6.0.1 2007.08.31 Heuristic.Malware[/B]
Additional information
File size: 156686 bytes
MD5: 8fa1d7c14d11d2b45c72771a97677366
SHA1: 4b3ece5ddccc3bfa7a3ce3881f6e41e30cbba4ba
packers: UPACK
-
File INFO.txt_.scr received on 09.01.2007 15:21:02 (CET)
Current status: finished
Result: 14/32 (43.75%)
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.01 -
[B]AntiVir 7.4.1.66 2007.08.31 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2007.09.01 -
[B]Avast 4.7.1029.0 2007.09.01 Win32:Mytob-TC
AVG 7.5.0.484 2007.08.31 Generic7.CXR[/B]
BitDefender 7.2 2007.09.01 [B]GenPack:[email protected]
CAT-QuickHeal 9.00 2007.09.01 (Suspicious) - DNAScan[/B]
ClamAV 0.91.2 2007.09.01 -
DrWeb 4.33 2007.09.01 -
[B]eSafe 7.0.15.0 2007.08.29 Suspicious Trojan/Worm[/B]
eTrust-Vet 31.1.5100 2007.08.31 -
Ewido 4.0 2007.09.01 -
FileAdvisor 1 2007.09.01 -
Fortinet 3.11.0.0 2007.09.01 -
F-Prot 4.3.2.48 2007.08.31 -
[B]F-Secure 6.70.13030.0 2007.08.31 Net-Worm.Win32.Mytob.ft
Ikarus T3.1.1.12 2007.09.01 Backdoor.Win32.IRCBot.acd
Kaspersky 4.0.2.24 2007.09.01 Net-Worm.Win32.Mytob.ft[/B]
McAfee 5110 2007.08.31 -
Microsoft 1.2803 2007.09.01 -
[B]NOD32v2 2495 2007.09.01 Win32/Mytob.VW[/B]
Norman 5.80.02 2007.08.31 -
[B]Panda 9.0.0.4 2007.09.01 Suspicious file[/B]
Prevx1 V2 2007.09.01 -
[B]Rising 19.38.52.00 2007.09.01 Backdoor.Win32.IRCbot.bcr[/B]
Sophos 4.21.0 2007.09.01 -
Sunbelt 2.2.907.0 2007.08.31 -
[B]Symantec 10 2007.09.01 W32.IRCBot.Gen[/B]
TheHacker 6.1.9.175 2007.08.31 -
VBA32 3.12.2.3 2007.09.01 -
VirusBuster 4.3.26:9 2007.08.31 -
[B]Webwasher-Gateway 6.0.1 2007.08.31 Trojan.Crypt.XPACK.Gen[/B]
Additional information
File size: 144896 bytes
MD5: 016fb3fe28384a10a78cfafdc87c417d
SHA1: 151f2ac08bf39d775b83a8b6cb17bee458ac3d81
packers: NTKrnl
-
File sysuusi.exe received on 09.02.2007 17:51:34 (CET)
Result: 7/32 [B]21.88%[/B]
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.01 -
AntiVir 7.4.1.66 2007.09.01 -
Authentium 4.93.8 2007.09.02 -
Avast 4.7.1029.0 2007.09.01 -
AVG 7.5.0.484 2007.09.02 -
BitDefender 7.2 2007.09.02 -
CAT-QuickHeal 9.00 2007.09.01 -
ClamAV 0.91.2 2007.09.02 -
[B]DrWeb 4.33 2007.09.02 Trojan.MulDrop.8473 [/B]
[B]eSafe 7.0.15.0 2007.09.02 Win32.QQPass [/B]
eTrust-Vet 31.1.5100 2007.08.31 -
Ewido 4.0 2007.09.02 -
FileAdvisor 1 2007.09.02 -
Fortinet 3.11.0.0 2007.09.02 -
F-Prot 4.3.2.48 2007.09.02 -
[B]F-Secure 6.70.13030.0 2007.09.02 Trojan-Spy.Win32.Webmoner.do [/B]
[B]Ikarus T3.1.1.12 2007.09.02 Trojan-Dropper.Win32.Delf.MM [/B]
[B]Kaspersky 4.0.2.24 2007.09.02 Trojan-Spy.Win32.Webmoner.do [/B]
McAfee 5110 2007.08.31 -
Microsoft 1.2803 2007.09.02 -
NOD32v2 2497 2007.09.01 -
[B]Norman 5.80.02 2007.09.02 W32/Malware.AHSU [/B]
[B]Panda 9.0.0.4 2007.09.02 Suspicious file [/B]
Prevx1 V2 2007.09.02 -
Rising 19.38.62.00 2007.09.02 -
Sophos 4.21.0 2007.09.02 -
Sunbelt 2.2.907.0 2007.08.31 -
Symantec 10 2007.09.02 -
TheHacker 6.1.9.175 2007.09.02 -
VBA32 3.12.2.3 2007.09.01 -
VirusBuster 4.3.26:9 2007.09.02 -
Webwasher-Gateway 6.0.1 2007.09.01 -
Additional information
File size: 18432 bytes
MD5: 4a7a6d06b861b9da75434d7fc85f767a
SHA1: f6d36dcb0b8bf37995cb85ecc585015f663a7585
-
T=12139
[code]
AhnLab-V3 2007.9.1.0 2007.09.03 -
[B]AntiVir 7.4.1.66 2007.09.02 HEUR/Crypted[/B]
Authentium 4.93.8 2007.09.02 -
Avast 4.7.1029.0 2007.09.02 -
[B]AVG 7.5.0.484 2007.09.02 Obfustat.JZS[/B]
BitDefender 7.2 2007.09.03 -
[B]CAT-QuickHeal 9.00 2007.09.01 (Suspicious) - DNAScan[/B]
ClamAV 0.91.2 2007.09.03 -
DrWeb 4.33 2007.09.03 -
eSafe 7.0.15.0 2007.09.02 -
eTrust-Vet 31.1.5100 2007.08.31 -
Ewido 4.0 2007.09.02 -
FileAdvisor 1 2007.09.03 -
Fortinet 3.11.0.0 2007.09.03 -
F-Prot 4.3.2.48 2007.09.02 -
F-Secure 6.70.13030.0 2007.09.03 -
[B]Ikarus T3.1.1.12 2007.09.03 Email-Worm.Win32.Locksky.be[/B]
Kaspersky 4.0.2.24 2007.09.03 -
McAfee 5110 2007.08.31 -
Microsoft 1.2803 2007.09.03 -
NOD32v2 2498 2007.09.03 -
[B]Norman 5.80.02 2007.09.02 W32/Tibs.ASKH[/B]
[B]Panda 9.0.0.4 2007.09.02 Suspicious file
Prevx1 V2 2007.09.03 Trojan.VXGAME
Rising 19.39.01.00 2007.09.03 Trojan.Win32.Agent.vyl[/B]
Sophos 4.21.0 2007.09.03 -
Symantec 10 2007.09.03 -
TheHacker 6.1.9.175 2007.09.02 -
VBA32 3.12.2.3 2007.09.01 -
[B]VirusBuster 4.3.26:9 2007.09.02 Packed/FRBR
Webwasher-Gateway 6.0.1 2007.09.02 Heuristic.Crypted[/B]
Additional information
File size: 11264 bytes
MD5: 7c4ca0b78d51494df0aadd61dcee6f30
SHA1: 33c1257bd894ef72951e5233bf35ef0c756a7800
packers: BINARYRES
Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PX5=2985B6FE002E09362CBC004B1E87A000DDF2FF76
[/code]
-
ile default.php received on 09.03.2007 18:51:09 (CET)
Result: 4/32 (12.5%)
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.03 -
AntiVir 7.4.1.66 2007.09.03 [B]HTML/Crypted.Gen[/B]
Authentium 4.93.8 2007.09.02 -
Avast 4.7.1029.0 2007.09.03 -
AVG 7.5.0.485 2007.09.03 -
BitDefender 7.2 2007.09.03 -
CAT-QuickHeal 9.00 2007.09.03 -
ClamAV 0.91.2 2007.09.03 -
DrWeb 4.33 2007.09.03 -
eSafe 7.0.15.0 2007.09.02 -
eTrust-Vet 31.1.5105 2007.09.03 -
Ewido 4.0 2007.09.03 -
FileAdvisor 1 2007.09.03 -
Fortinet 3.11.0.0 2007.09.03 -
F-Prot 4.3.2.48 2007.09.02 -
F-Secure 6.70.13030.0 2007.09.03 [B]Trojan-Clicker.HTML.IFrame.ac[/B]
Ikarus T3.1.1.12 2007.09.03 -
Kaspersky 4.0.2.24 2007.09.03 [B]Trojan-Clicker.HTML.IFrame.ac[/B]
McAfee 5110 2007.08.31 -
Microsoft 1.2803 2007.09.03 -
NOD32v2 2499 2007.09.03 -
Norman 5.80.02 2007.09.03 -
Panda 9.0.0.4 2007.09.03 -
Prevx1 V2 2007.09.03 -
Rising 19.39.02.00 2007.09.03 -
Sophos 4.21.0 2007.09.03 -
Sunbelt 2.2.907.0 2007.08.31 -
Symantec 10 2007.09.03 -
TheHacker 6.1.9.175 2007.09.02 -
VBA32 3.12.2.3 2007.09.03 -
VirusBuster 4.3.26:9 2007.09.03 -
Webwasher-Gateway 6.0.1 2007.09.03 [B]Script.Crypted.Gen[/B]
-
Очередной штормовой zhelatin
[quote]File labor.exe received on 09.03.2007 21:23:32 (CET)
Current status: finished
Result: 15/32 (46.88%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.03 -
[B]AntiVir 7.4.1.66 2007.09.03 Worm/Storm.tch[/B]
Authentium 4.93.8 2007.09.02 -
Avast 4.7.1029.0 2007.09.03 -
[B]AVG 7.5.0.485 2007.09.03 Downloader.Tibs.7.AC
BitDefender 7.2 2007.09.03 Trojan.Peed.IHT
CAT-QuickHeal 9.00 2007.09.03 (Suspicious) - DNAScan[/B]
ClamAV 0.91.2 2007.09.03 -
[B]DrWeb 4.33 2007.09.03 Trojan.Packed.142
eSafe 7.0.15.0 2007.09.03 Suspicious Trojan/Worm
eTrust-Vet 31.1.5105 2007.09.03 Win32/Sintun.AF[/B]
Ewido 4.0 2007.09.03 -
FileAdvisor 1 2007.09.03 -
Fortinet 3.11.0.0 2007.09.03 -
F-Prot 4.3.2.48 2007.09.02 -
F-Secure 6.70.13030.0 2007.09.03 -
Ikarus T3.1.1.12 2007.09.03 -
[B]Kaspersky 4.0.2.24 2007.09.03 Email-Worm.Win32.Zhelatin.il[/B]
McAfee 5111 2007.09.03 -
[B]Microsoft 1.2803 2007.09.03 TrojanDropper:Win32/Nuwar.gen!avkill[/B]
NOD32v2 2500 2007.09.03 -
[B]Norman 5.80.02 2007.09.03 Tibs.gen134[/B]
Panda 9.0.0.4 2007.09.03 -
Prevx1 V2 2007.09.03 -
Rising 19.39.02.00 2007.09.03 -
[B]Sophos 4.21.0 2007.09.03 Mal/Dorf-A
Sunbelt 2.2.907.0 2007.08.31 VIPRE.Suspicious
Symantec 10 2007.09.03 Trojan.Packed.13[/B]
TheHacker 6.1.9.175 2007.09.02 -
VBA32 3.12.2.3 2007.09.03 -
[B]VirusBuster 4.3.26:9 2007.09.03 Trojan.Tibs.Gen!Pac.135
Webwasher-Gateway 6.0.1 2007.09.03 Worm.Storm.tch[/B]
Additional information
File size: 140021 bytes
MD5: 781e08a5dcc2c53646ed097e533d6659
SHA1: 34ed3582a1323b300673b7c79260d47d2205578b
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/quote]
-
t=12160
[code]File avz00001.dta received on 09.03.2007 22:26:26 (CET)
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.03 -
AntiVir 7.4.1.66 2007.09.03 -
Authentium 4.93.8 2007.09.02 -
Avast 4.7.1029.0 2007.09.03 -
[B]AVG 7.5.0.485 2007.09.03 PSW.Agent.NWI[/B]
BitDefender 7.2 2007.09.03 -
CAT-QuickHeal 9.00 2007.09.03 -
[B]ClamAV 0.91.2 2007.09.03 Trojan.Agent-7550
DrWeb 4.33 2007.09.03 Trojan.NtRootKit.361[/B]
eSafe 7.0.15.0 2007.09.03 -
eTrust-Vet 31.1.5105 2007.09.03 -
Ewido 4.0 2007.09.03 -
FileAdvisor 1 2007.09.03 -
Fortinet 3.11.0.0 2007.09.03 -
F-Prot 4.3.2.48 2007.09.02 -
F-Secure 6.70.13030.0 2007.09.03 -
Ikarus T3.1.1.12 2007.09.03 -
Kaspersky 4.0.2.24 2007.09.03 -
McAfee 5111 2007.09.03 -
Microsoft 1.2803 2007.09.03 -
[B]NOD32v2 2500 2007.09.03 Win32/SpamTool.Agent.NAJ[/B]
Norman 5.80.02 2007.09.03 -
Panda 9.0.0.4 2007.09.03 -
Prevx1 V2 2007.09.03 -
Rising 19.39.02.00 2007.09.03 -
Sophos 4.21.0 2007.09.03 -
Sunbelt 2.2.907.0 2007.08.31 -
Symantec 10 2007.09.03 -
TheHacker 6.1.9.175 2007.09.02 -
VBA32 3.12.2.3 2007.09.03 -
VirusBuster 4.3.26:9 2007.09.03 -
Webwasher-Gateway 6.0.1 2007.09.03 -
Additional information
File size: 18944 bytes
MD5: 13a366eef1bf920ffcf754716fda7ade
SHA1: a614eae1da5ee91f034958e23ebd8410ae981115[/code]
Совсем свежая гадость :Никто ещё толком не знает :
[code]
Antivirus Version Last Update Result
AhnLab-V3 2007.9.1.0 2007.09.03 -
[B]AntiVir 7.4.1.66 2007.09.03 HEUR/Crypted[/B]
Authentium 4.93.8 2007.09.02 -
Avast 4.7.1029.0 2007.09.03 -
[B]AVG 7.5.0.485 2007.09.03 Win32/PolyCrypt[/B]
BitDefender 7.2 2007.09.03 -
[B]CAT-QuickHeal 9.00 2007.09.03 (Suspicious) - DNAScan[/B]
ClamAV 0.91.2 2007.09.03 -
DrWeb 4.33 2007.09.03 -[B]
eSafe 7.0.15.0 2007.09.03 Suspicious Trojan/Worm
[/B]eTrust-Vet 31.1.5105 2007.09.03 -
Ewido 4.0 2007.09.03 -
FileAdvisor 1 2007.09.03 -
Fortinet 3.11.0.0 2007.09.03 -
F-Prot 4.3.2.48 2007.09.02 -
F-Secure 6.70.13030.0 2007.09.03 -
Ikarus T3.1.1.12 2007.09.03 -
Kaspersky 4.0.2.24 2007.09.03 -
McAfee 5111 2007.09.03 -
Microsoft 1.2803 2007.09.03 -
NOD32v2 2500 2007.09.03 -
Norman 5.80.02 2007.09.03 -
[B]Panda 9.0.0.4 2007.09.03 Suspicious file[/B]
Prevx1 V2 2007.09.03 -
Rising 19.39.02.00 2007.09.03 -
Sophos 4.21.0 2007.09.03 -
[B]Sunbelt 2.2.907.0 2007.08.31 VIPRE.Suspicious[/B]
Symantec 10 2007.09.03 -
TheHacker 6.1.9.175 2007.09.02 -
VBA32 3.12.2.3 2007.09.03 -
VirusBuster 4.3.26:9 2007.09.03 -
[B]Webwasher-Gateway 6.0.1 2007.09.03 Heuristic.Crypted[/B]
Additional information
File size: 39317 bytes
MD5: e11af9ecc9308640109cd11b121325b1
SHA1: fb1be9b5ebc55a942b2c9241fa32a37e2a05d792
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/code]
Page generated in 0.01397 seconds with 10 queries