Исследование антивирусов 6

Printable View

Показывать 40 сообщений этой темы на одной странице

16.01.2008, 21:41
Гость форума

Антивирус;Версия;Обновление;Результат
AhnLab-V3;2008.1.16.11;2008.01.16;Win32/Dellboy.Gen
AntiVir;7.6.0.48;2008.01.16;TR/Proxy.Delf.CA
Authentium;4.93.8;2008.01.16;W32/Fujack.A - Packed
Avast;4.7.1098.0;2008.01.16;Win32:Delf-CKB
AVG;7.5.0.516;2008.01.16;Worm/Generic.AGX
BitDefender;7.2;2008.01.16;Win32.Worm.Fujacks.K
CAT-QuickHeal;9.00;2008.01.16;W32.Fujack.h
ClamAV;0.91.2;2008.01.16;Worm.Fujack-2
DrWeb;4.44.0.09170;2008.01.16;Win32.HLLW.Whboy
eSafe;7.0.15.0;2008.01.16;suspicious Trojan/Worm
eTrust-Vet;31.3.5462;2008.01.16;Win32/Emerleox.BM
Ewido;4.0;2008.01.16;Worm.Fujack.h
FileAdvisor;1;2008.01.16;-
Fortinet;3.14.0.0;2008.01.16;W32/Viking.AA
F-Prot;4.4.2.54;2008.01.15;W32/Fujack.A
F-Secure;6.70.13260.0;2008.01.16;W32/Fujack.P
Ikarus;T3.1.1.20;2008.01.16;Worm.Win32.Fujack.aa
Kaspersky;7.0.0.125;2008.01.16;Worm.Win32.Fujack.l
McAfee;5209;2008.01.16;W32/Fujacks.s
Microsoft;1.3109;2008.01.16;Virus:Win32/Fujacks.I
NOD32v2;2799;2008.01.16;Win32/Fujacks.T
Norman;5.80.02;2008.01.16;W32/Fujack.P
Panda;9.0.0.4;2008.01.15;W32/Radoppan.S
Prevx1;V2;2008.01.16;-
Rising;20.27.22.00;2008.01.16;Worm.Win32.Nimaya.e
Sophos;4.24.0;2008.01.16;W32/Fujacks-J
Sunbelt;2.2.907.0;2008.01.15;VIPRE.Suspicious
TheHacker;6.2.9.188;2008.01.16;W32/Fujacks.aa
VBA32;3.12.2.5;2008.01.15;Worm.Win32.Fujack.h
VirusBuster;4.3.26:9;2008.01.16;Win32.HLLP.WHBoy.AE
Webwasher-Gateway;6.6.2;2008.01.16;Trojan.Proxy.Delf.CA

Дополнительная информация
File size: 68570 bytes
MD5: 000ac09f027e139b64b2cd0823c874fc
SHA1: 214c5a228ddedd9ee7405eb7b01766883d3dcf3a
PEiD: FSG v2.0 -> bart/xt
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
17.01.2008, 08:59
ZhIV

Файл index_1___1_.htm получен 2008.01.17 06:43:17 (CET)Антивирус Версия Обновление Результат
[B]AhnLab-V3 2008.1.17.10 2008.01.16 HTML/Psyme
AntiVir 7.6.0.48 2008.01.16 HTML/Dldr.Agen.N.15
Authentium 4.93.8 2008.01.16 JS/Psyme.DV
[/B]Avast 4.7.1098.0 2008.01.16 -
[B]AVG 7.5.0.516 2008.01.16 Exploit
BitDefender 7.2 2008.01.17 Trojan.Downloader.JS.FT[/B]
CAT-QuickHeal 9.00 2008.01.16 -
[B]ClamAV 0.91.2 2008.01.17 JS.Psyme-16
DrWeb 4.44.0.09170 2008.01.16 Exploit.Bundle
eSafe 7.0.15.0 2008.01.16 JS.Psyme.ld[/B]
eTrust-Vet 31.3.5464 2008.01.17 -
[B]Ewido 4.0 2008.01.16 Downloader.Psyme.mt[/B]
FileAdvisor 1 2008.01.17 -
Fortinet 3.14.0.0 2008.01.17 -
[B]F-Prot 4.4.2.54 2008.01.16 JS/Psyme.DV
F-Secure 6.70.13260.0 2008.01.17 JS/Psyme.DV
Ikarus T3.1.1.20 2008.01.17 Exploit.JS.Agent.au
Kaspersky 7.0.0.125 2008.01.17 Trojan-Downloader.JS.Psyme.kd
[/B]McAfee 5209 2008.01.16 -
[B]Microsoft 1.3109 2008.01.17 Exploit:JS/MS06014.I
NOD32v2 2800 2008.01.17 HTML/Exploit.IESlice.NAC
[/B]Norman 5.80.02 2008.01.16 -
Panda 9.0.0.4 2008.01.17 -
[B]Prevx1 V2 2008.01.17 TROJAN.DOWNLOADER.GEN
[/B]Rising 20.27.22.00 2008.01.16 -
[B]Sophos 4.24.0 2008.01.17 Troj/Mulex-B
Sunbelt 2.2.907.0 2008.01.17 Trojan-Downloader.JS.FT
Symantec 10 2008.01.17 Downloader
[/B]TheHacker 6.2.9.189 2008.01.17 -
VBA32 3.12.2.5 2008.01.15 -
VirusBuster 4.3.26:9 2008.01.16 -
[B]Webwasher-Gateway 6.6.2 2008.01.16 Script.Dldr.Agen.N.15[/B]

Дополнительная информация
File size: 31743 bytes
MD5: 377a34067f2bf26159b4864dfff0156a
SHA1: f174a63950e113141924597b8a7ed6ea3734a50d
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=377A3406FF7F2BF27B610059B4864D00FFF0156A[/url]
18.01.2008, 00:40
strawser

File ADSTechnologyInstall.exe received on 01.17.2008 22:29:45 (CET)
AhnLab-V3 2008.1.18.10 2008.01.17 -
[B]AntiVir 7.6.0.48 2008.01.17 DR/Agent.UJ[/B]
Authentium 4.93.8 2008.01.17 -
Avast 4.7.1098.0 2008.01.17 -
AVG 7.5.0.516 2008.01.17 -
[B]BitDefender 7.2 2008.01.17 Adware.BHO.WQB[/B]
CAT-QuickHeal 9.00 2008.01.17 -
ClamAV 0.91.2 2008.01.17 -
[B]DrWeb 4.44.0.09170 2008.01.17 Adware.AdsTech[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5465 2008.01.17 -
Ewido 4.0 2008.01.17 -
FileAdvisor 1 2008.01.17 -
[B]Fortinet 3.14.0.0 2008.01.17 Adware/Agent[/B]
F-Prot 4.4.2.54 2008.01.17 -
F-Secure 6.70.13260.0 2008.01.17 -
Ikarus T3.1.1.20 2008.01.17 -
[B]Kaspersky 7.0.0.125 2008.01.17 not-a-virus:AdWare.Win32.Agent.uj[/B]
McAfee 5210 2008.01.17 -
Microsoft 1.3109 2008.01.17 -
NOD32v2 2802 2008.01.17 -
Norman 5.80.02 2008.01.17 -
Panda 9.0.0.4 2008.01.17 -
[B]Prevx1 V2 2008.01.17 ADWARE.BHO.WQB[/B]
Rising 20.27.31.00 2008.01.17 -
Sophos 4.24.0 2008.01.17 -
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.17 -
TheHacker 6.2.9.189 2008.01.17 -
[B]VBA32 3.12.2.5 2008.01.15 AdWare.Win32.Agent.uj[/B]
VirusBuster 4.3.26:9 2008.01.17 -
[B]Webwasher-Gateway 6.6.2 2008.01.17 Trojan.Dropper.Agent.UJ[/B]
Additional information
File size: 306285 bytes
MD5: 42271b63a8fec2ce41d8755a91560bbc
SHA1: 280e789fb0248a223aa2de16c923f568eb6b189a
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=3CDFB9AB6DB83CAEAC4E04F6EC5FAC007B978F0C[/url]

File setup.exe received on 01.19.2008 00:34:39 (CET)
AhnLab-V3 2008.1.19.10 2008.01.18 -
[B]AntiVir 7.6.0.48 2008.01.18 DR/FraudTool.SmartAntiSpyware.B[/B]
Authentium 4.93.8 2008.01.17 -
[B]Avast 4.7.1098.0 2008.01.18 Win32:SmartAntiSpy[/B]
AVG 7.5.0.516 2008.01.18 -
BitDefender 7.2 2008.01.19 -
CAT-QuickHeal 9.00 2008.01.18 -
[B]ClamAV 0.91.2 2008.01.18 Adware.Fakealert-25
DrWeb 4.44.0.09170 2008.01.18 Trojan.Fakealert.368[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5470 2008.01.18 -
Ewido 4.0 2008.01.18 -
FileAdvisor 1 2008.01.19 -
[B]Fortinet 3.14.0.0 2008.01.18 Misc/SmartAntiSpyware[/B]
F-Prot 4.4.2.54 2008.01.19 -
F-Secure 6.70.13260.0 2008.01.18 -
[B]Ikarus T3.1.1.20 2008.01.18 not-a-virus:.FraudTool.Win32.SmartAntiSpyware.b
Kaspersky 7.0.0.125 2008.01.19 not-a-virus:FraudTool.Win32.SmartAntiSpyware.b[/B]
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.18 -
[B]NOD32v2 2806 2008.01.18 Win32/FraudTool.SmartAntiSpyware.B[/B]
Norman 5.80.02 2008.01.18 -
[B]Panda 9.0.0.4 2008.01.18 Application/SmartAntiSpyware[/B]
Prevx1 V2 2008.01.19 -
Rising 20.27.42.00 2008.01.18 -
Sophos 4.24.0 2008.01.18 -
[B]Sunbelt 2.2.907.0 2008.01.17 Trojan-Dropper.FraudTool.SmartAntiSpyware.B[/B]
Symantec 10 2008.01.19 -
TheHacker 6.2.9.191 2008.01.18 -
VBA32 3.12.2.5 2008.01.15 -
VirusBuster 4.3.26:9 2008.01.18 -
[B]Webwasher-Gateway 6.6.2 2008.01.18 Trojan.Dropper.FraudTool.SmartAntiSpyware.B[/B]
Additional information
File size: 391187 bytes
MD5: 6c126e36a73970b4fd841ff7dc45f372
SHA1: 66dc9501d808aeaa1c1ef7052c55c164afb77005
PEiD: -
packers: RAR, Unicode
20.01.2008, 11:54
Гость форума

=)

AhnLab-V3 2008.1.19.10 2008.01.18 -
AntiVir 7.6.0.48 2008.01.20 -
Authentium 4.93.8 2008.01.20 -
Avast 4.7.1098.0 2008.01.20 -
AVG 7.5.0.516 2008.01.19 -
BitDefender 7.2 2008.01.20 -
CAT-QuickHeal 9.00 2008.01.19 -
ClamAV 0.91.2 2008.01.20 -
[b]DrWeb 4.44.0.09170 2008.01.19 Trojan.DownLoader.43001[/b]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5470 2008.01.18 -
Ewido 4.0 2008.01.19 -
FileAdvisor 1 2008.01.20 -
Fortinet 3.14.0.0 2008.01.20 -
F-Prot 4.4.2.54 2008.01.19 -
F-Secure 6.70.13260.0 2008.01.19 -
Ikarus T3.1.1.20 2008.01.20 -
Kaspersky 7.0.0.125 2008.01.20 -
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.20 -
NOD32v2 2807 2008.01.19 -
Norman 5.80.02 2008.01.18 -
Panda 9.0.0.4 2008.01.19 -
Prevx1 V2 2008.01.20 -
Rising 20.27.61.00 2008.01.20 -
Sophos 4.24.0 2008.01.20 -
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.20 -
TheHacker 6.2.9.191 2008.01.19 -
VBA32 3.12.2.5 2008.01.19 -
VirusBuster 4.3.26:9 2008.01.20 -
Webwasher-Gateway 6.6.2 2008.01.20 -
21.01.2008, 10:48
rubin

msindeo.dll

Файл avz00002.dta получен 2008.01.21 08:37:50 (CET)
[code][b]AntiVir 7.6.0.48 2008.01.21 TR/Crypt.ULPM.Gen
Authentium 4.93.8 2008.01.21 Possibly a new variant of W32/new-malware!Maximus
Avast 4.7.1098.0 2008.01.20 Win32:Neptunia-DP
AVG 7.5.0.516 2008.01.20 PSW.Generic5.AHAD[/b]
BitDefender 7.2 2008.01.21 -
CAT-QuickHeal 9.00 2008.01.19 -
ClamAV 0.91.2 2008.01.21 -
[b]DrWeb 4.44.0.09170 2008.01.20 Trojan.PWS.GoldSpy
eSafe 7.0.15.0 2008.01.16 suspicious Trojan/Worm[/b]
eTrust-Vet 31.3.5475 2008.01.21 -
Ewido 4.0 2008.01.20 -
FileAdvisor 1 2008.01.21 -
Fortinet 3.14.0.0 2008.01.21 -
[b]F-Prot 4.4.2.54 2008.01.21 W32/Goldun.A.gen!Eldorado[/b]
F-Secure 6.70.13260.0 2008.01.21 -
[b]Ikarus T3.1.1.20 2008.01.21 Trojan-Spy.Win32.Agent.rb[/b]
Kaspersky 7.0.0.125 2008.01.21 -
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.21 -
NOD32v2 2809 2008.01.21 -
Norman 5.80.02 2008.01.20 -
[b]Panda 9.0.0.4 2008.01.20 Suspicious file
Prevx1 V2 2008.01.21 Heuristic: Suspicious Browser Help Object[/b]
Rising 20.28.00.00 2008.01.21 -
[b]Sophos 4.24.0 2008.01.21 Troj/Dowdec-Gen
Sunbelt 2.2.907.0 2008.01.17 VIPRE.Suspicious[/b]
Symantec 10 2008.01.21 -
TheHacker 6.2.9.191 2008.01.19 -
[b]VBA32 3.12.2.5 2008.01.21 suspected of Downloader.Small.33[/b]
VirusBuster 4.3.26:9 2008.01.20 -
[b]Webwasher-Gateway 6.6.2 2008.01.21 Trojan.Crypt.ULPM.Gen[/b][/code]
File size: 12800 bytes
MD5: 28a6b93a4460134e2b037b3a866ccef3
SHA1: 8beb0a608d8f287bbc5ac0582f99cec80c2d5b52
PEiD: -
packers: UPX
packers: UPX
packers: UPX
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=6D77A07500FC88F9329A003BCD7BFD00FEE53E2C[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
21.01.2008, 18:57
drongo

T-16724

[code]Файл avz00008.dta получен 2008.01.21 16:48:26 (CET)
Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.22.10 2008.01.21 -
[B]AntiVir 7.6.0.48 2008.01.21 DR/Delphi.Gen[/B]
Authentium 4.93.8 2008.01.21 -
Avast 4.7.1098.0 2008.01.20 -
[B]AVG 7.5.0.516 2008.01.21 Delf.DID[/B]
BitDefender 7.2 2008.01.21 -
[B]CAT-QuickHeal 9.00 2008.01.21 Trojan.Buzus.s[/B]
ClamAV 0.91.2 2008.01.21 -
DrWeb 4.44.0.09170 2008.01.21 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5475 2008.01.21 -
Ewido 4.0 2008.01.21 -
FileAdvisor 1 2008.01.21 -
Fortinet 3.14.0.0 2008.01.21 -
[B]F-Prot 4.4.2.54 2008.01.21 W32/Trojan2.TAD
F-Secure 6.70.13260.0 2008.01.21 Zbot.Y
Ikarus T3.1.1.20 2008.01.21 Trojan-Dropper.Win32.FriJoiner.cr
Kaspersky 7.0.0.125 2008.01.21 Heur.Trojan.Generic
McAfee 5211 2008.01.18 Spy-Agent.cj.gen.h
Microsoft 1.3109 2008.01.21 VirTool:Win32/DelfInject.gen!AC[/B]
NOD32v2 2811 2008.01.21 -
[B]Norman 5.80.02 2008.01.21 Zbot.Y[/B]
Panda 9.0.0.4 2008.01.20 -
Prevx1 V2 2008.01.21 -
[B]Rising 20.28.02.00 2008.01.21 Trojan.DL.Win32.Agent.bxw[/B]
Sophos 4.24.0 2008.01.21 -
Sunbelt 2.2.907.0 2008.01.17 -
[B]Symantec 10 2008.01.21 Backdoor.Bifrose
TheHacker 6.2.9.191 2008.01.19 Trojan/Dropper.FriJoiner.cw
VBA32 3.12.2.5 2008.01.21 Trojan-Dropper.Win32.FriJoiner.cr[/B]
VirusBuster 4.3.26:9 2008.01.21 -
[B]Webwasher-Gateway 6.6.2 2008.01.21 Trojan.Dropper.Delphi.Gen[/B]
Дополнительная информация
File size: 524288 bytes
MD5: 9f21f6ec4a7b395727fb704c2bdcc358
SHA1: f092943379c88e5c7d6eb9b43d644c7780cbaee7
PEiD: BobSoft Mini Delphi -> BoB / BobSoft[/code]
22.01.2008, 05:06
ZhIV

Файл __.htm получен 2008.01.22 02:48:50 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.22.10 2008.01.21 -
AntiVir 7.6.0.48 2008.01.21 -
Authentium 4.93.8 2008.01.21 -
Avast 4.7.1098.0 2008.01.21 -
AVG 7.5.0.516 2008.01.21 -
BitDefender 7.2 2008.01.22 -
CAT-QuickHeal 9.00 2008.01.21 -
[B]ClamAV 0.91.2 2008.01.22 JS.Small[/B]
[B]DrWeb 4.44.0.09170 2008.01.21 VBS.Psyme.377[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5475 2008.01.21 -
Ewido 4.0 2008.01.21 -
FileAdvisor 1 2008.01.22 -
Fortinet 3.14.0.0 2008.01.21 -
F-Prot 4.4.2.54 2008.01.21 -
F-Secure 6.70.13260.0 2008.01.22 -
[B]Ikarus T3.1.1.20 2008.01.22 Trojan-Downloader.JS.Inor.A[/B]
Kaspersky 7.0.0.125 2008.01.22 -
McAfee 5212 2008.01.21 -
[B]Microsoft 1.3109 2008.01.22 Exploit:HTML/IframeRef.gen[/B]
NOD32v2 2812 2008.01.21 -
Norman 5.80.02 2008.01.21 -
Panda 9.0.0.4 2008.01.21 -
Prevx1 V2 2008.01.22 -
Rising 20.28.02.00 2008.01.21 -
[B]Sophos 4.24.0 2008.01.22 Mal/FunDF-A[/B]
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.22 -
TheHacker 6.2.9.193 2008.01.22 -
[B]VBA32 3.12.2.5 2008.01.21 Trojan-Downloader.JS.Psyme.cv
VirusBuster 4.3.26:9 2008.01.21 JS.Psyme.AX
[/B]Webwasher-Gateway 6.6.2 2008.01.21 -

Дополнительная информация
File size: 34951 bytes
MD5: c7072576f08e439a0ec84a0d8b3cd2cf
SHA1: b9954d4455b8f1671dfba1567185885ea22ef6ca
PEiD: -
22.01.2008, 20:53
asterrX

File onlinepatch.exe received on 01.22.2008 18:17:20 (CET)

Antivirus Version Last Update Result
AhnLab-V3 2008.1.23.10 2008.01.22 -
[B]AntiVir 7.6.0.48 2008.01.22 HEUR/Malware[/B]
Authentium 4.93.8 2008.01.22 -
Avast 4.7.1098.0 2008.01.22 -
AVG 7.5.0.516 2008.01.22 -
BitDefender 7.2 2008.01.22 -
CAT-QuickHeal 9.00 2008.01.22 -
ClamAV 0.91.2 2008.01.22 -
DrWeb 4.44.0.09170 2008.01.22 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5477 2008.01.22 -
Ewido 4.0 2008.01.22 -
FileAdvisor 1 2008.01.22 -
Fortinet 3.14.0.0 2008.01.22 -
F-Prot 4.4.2.54 2008.01.21 -
F-Secure 6.70.13260.0 2008.01.22 -
Ikarus T3.1.1.20 2008.01.22 -
Kaspersky 7.0.0.125 2008.01.22 -
McAfee 5212 2008.01.21 -
Microsoft 1.3109 2008.01.22 -
NOD32v2 2815 2008.01.22 -
Norman 5.80.02 2008.01.22 -
Panda 9.0.0.4 2008.01.21 -
Prevx1 V2 2008.01.22 -
Rising 20.28.12.00 2008.01.22 -
[B]Sophos 4.24.0 2008.01.22 Mal/Basine-C[/B]
[B]Sunbelt 2.2.907.0 2008.01.17 VIPRE.Suspicious[/B]
Symantec 10 2008.01.22 -
TheHacker 6.2.9.194 2008.01.22 -
[B]VBA32 3.12.2.5 2008.01.21 suspected of Trojan-PSW.Pinch.3 (paranoid heuristics)[/B]
VirusBuster 4.3.26:9 2008.01.22 -
[B]Webwasher-Gateway 6.6.2 2008.01.22 Heuristic.Malware[/B]

Additional information
File size: 133043 bytes
MD5: b962a4245c9267c0f9b7856722980952
SHA1: b1d2b6652b7c93b4ea0278ea2c992ec1647d63e0
PEiD: -
packers: Orien
22.01.2008, 21:00
Groft

AhnLab-V3 2008.1.23.10 2008.01.22 -
[B]AntiVir 7.6.0.48 2008.01.22 Worm/Ntech.AI[/B]
Authentium 4.93.8 2008.01.22 -
Avast 4.7.1098.0 2008.01.22 -
[B]AVG 7.5.0.516 2008.01.22 SHeur.AOIK[/B]
BitDefender 7.2 2008.01.22 -
CAT-QuickHeal 9.00 2008.01.22 -
ClamAV 0.91.2 2008.01.22 -
DrWeb 4.44.0.09170 2008.01.22 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5477 2008.01.22 -
Ewido 4.0 2008.01.22 -
FileAdvisor 1 2008.01.22 -
Fortinet 3.14.0.0 2008.01.22 -
F-Prot 4.4.2.54 2008.01.21 -
F-Secure 6.70.13260.0 2008.01.22 -
Ikarus T3.1.1.20 2008.01.22 -
Kaspersky 7.0.0.125 2008.01.22 -
McAfee 5212 2008.01.21 -
[B]Microsoft 1.3109 2008.01.22 VirTool:WinNT/Cutwail.gen!B[/B]
NOD32v2 2815 2008.01.22 -
Norman 5.80.02 2008.01.22 -
Panda 9.0.0.4 2008.01.21 -
Prevx1 V2 2008.01.22 -
Rising 20.28.12.00 2008.01.22 -
[B]Sophos 4.24.0 2008.01.22 Troj/Pushdo-Gen[/B]
Sunbelt 2.2.907.0 2008.01.17 -
[B]Symantec 10 2008.01.22 Downloader[/B]
TheHacker 6.2.9.194 2008.01.22 -
VBA32 3.12.2.5 2008.01.21 -
[B]VirusBuster 4.3.26:9 2008.01.22 Trojan.DR.Pandex.Gen.4
Webwasher-Gateway 6.6.2 2008.01.22 Worm.Ntech.AI[/B]
Дополнительная информация
File size: 29184 bytes
MD5: 1ea4a43afdfdeb61c7386295d3c6f8e3
SHA1: 695e58b5aadb85a3467627d2515acc0b669b0372
PEiD: -
23.01.2008, 02:18
strawser

File SmilesQip_ICQ.exe received on 01.23.2008 00:11:33 (CET)

AhnLab-V3 2008.1.23.10 2008.01.22 -
[B]AntiVir 7.6.0.48 2008.01.22 HEUR/Crypted[/B]
Authentium 4.93.8 2008.01.22 -
Avast 4.7.1098.0 2008.01.22 -
AVG 7.5.0.516 2008.01.22 -
BitDefender 7.2 2008.01.22 -
[B]CAT-QuickHeal 9.00 2008.01.22 TrojanPSW.LdPinch.fer[/B]
ClamAV 0.91.2 2008.01.22 -
DrWeb 4.44.0.09170 2008.01.22 -
[B]eSafe 7.0.15.0 2008.01.16 Suspicious File[/B]
eTrust-Vet 31.3.5477 2008.01.22 -
Ewido 4.0 2008.01.22 -
FileAdvisor 1 2008.01.23 -
Fortinet 3.14.0.0 2008.01.22 -
F-Prot 4.4.2.54 2008.01.22 -
[B]F-Secure 6.70.13260.0 2008.01.22 Trojan-PSW.Win32.LdPinch.fer[/B]
Ikarus T3.1.1.20 2008.01.22 -
[B]Kaspersky 7.0.0.125 2008.01.23 Trojan-PSW.Win32.LdPinch.fer[/B]
McAfee 5213 2008.01.22 -
Microsoft 1.3109 2008.01.22 -
NOD32v2 2815 2008.01.22 -
Norman 5.80.02 2008.01.22 -
Panda 9.0.0.4 2008.01.22 -
Prevx1 V2 2008.01.23 -
Rising 20.28.12.00 2008.01.22 -
Sophos 4.24.0 2008.01.22 -
Sunbelt 2.2.907.0 2008.01.17 -
Symantec 10 2008.01.22 -
[B]TheHacker 6.2.9.194 2008.01.22 Trojan/PSW.LdPinch.fer[/B]
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.22 -
[B]Webwasher-Gateway 6.6.2 2008.01.22 Heuristic.Crypted[/B]
Additional information
File size: 78336 bytes
MD5: 524df7401bc599e6437b3b73fd7ce436
SHA1: 684b8133b66a98066181c05f18ce276982088118
PEiD: -
23.01.2008, 08:12
asterrX

Файл finreal.-exe получен 2008.01.15 19:05:06 (CET)

[B]AhnLab-V3 2008.1.16.10 2008.01.15 Win-AppCare/Webmoner.618496[/B]
AntiVir 7.6.0.48 2008.01.15 -
Authentium 4.93.8 2008.01.13 -
[B]Avast 4.7.1098.0 2008.01.14 Win32:Trojan-gen {Other}[/B]
[B]AVG 7.5.0.516 2008.01.14 Generic7.PAQ[/B]
BitDefender 7.2 2008.01.15 -
[B]CAT-QuickHeal 9.00 2008.01.15 Hoax.WebMoner.bd (Not a Virus)[/B]
ClamAV 0.91.2 2008.01.14 -
[B]DrWeb 4.44.0.09170 2008.01.15 Joke.Finreal[/B]
eSafe 7.0.15.0 2008.01.14 -
eTrust-Vet 31.3.5459 2008.01.15 -
[B]Ewido 4.0 2008.01.15 Not-A-Virus.Hoax.Win32.WebMoner.bd[/B]
[B]FileAdvisor 1 2008.01.15 High threat detected[/B]
[B]Fortinet 3.14.0.0 2008.01.15 Misc/WebMoner[/B]
F-Prot 4.4.2.54 2008.01.14 -
[B]F-Secure 6.70.13030.0 2008.01.15 not-virus:Hoax.Win32.WebMoner.bd[/B]
[B]Ikarus T3.1.1.20 2008.01.15 not-a-virus:Hoax.Win32.WebMoner.bd[/B]
[B]Kaspersky 7.0.0.125 2008.01.15 not-virus:Hoax.Win32.WebMoner.bd[/B]
McAfee 5208 2008.01.15 -
Microsoft 1.3109 2008.01.15 -
NOD32v2 2793 2008.01.15 -
[B]Norman 5.80.02 2008.01.15 W32/Webmoner.MI[/B]
[B]Panda 9.0.0.4 2008.01.14 Trj/Webmoner.O[/B]
[B]Prevx1 V2 2008.01.15 Generic.Malware[/B]
[B]Rising 20.27.12.00 2008.01.15 AdWare.Win32.WebMoner.bd[/B]
Sophos 4.24.0 2008.01.15 -
[B]Sunbelt 2.2.907.0 2008.01.15 Hoax.Win32.WebMoner.bd[/B]
Symantec 10 2008.01.15 -
[B]TheHacker 6.2.9.187 2008.01.13 Aplicacion/WebMoner.bd[/B]
VBA32 3.12.2.5 2008.01.13 -
VirusBuster 4.3.26:9 2008.01.15 -
[B]Webwasher-Gateway 6.6.2 2008.01.15 Riskware.Hoax.Webmoner.BD[/B]

Дополнительная информация
File size: 618496 bytes
MD5: 758acb4a461722d3f3bbf62f3a25844b
SHA1: 50e53b51faf3b2e4b9050b83c87b23a03bf8dc92
25.01.2008, 15:55
rubin

ntos.exe
Файл avz00001.dta получен 2008.01.25 10:28:32 (CET)
[code]AhnLab-V3 2008.1.25.11 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 TR/Crypt.XPACK.Gen[/B]
Authentium 4.93.8 2008.01.25 -
Avast 4.7.1098.0 2008.01.25 -
[B]AVG 7.5.0.516 2008.01.24 Pakes_c.KD
BitDefender 7.2 2008.01.25 Trojan.Spy.Agent.NNK[/B]
CAT-QuickHeal 9.00 2008.01.24 -
ClamAV 0.91.2 2008.01.25 -
DrWeb 4.44.0.09170 2008.01.25 -
[B]eSafe 7.0.15.0 2008.01.16 Suspicious File[/B]
eTrust-Vet 31.3.5484 2008.01.25 -
Ewido 4.0 2008.01.24 -
FileAdvisor 1 2008.01.25 -
Fortinet 3.14.0.0 2008.01.25 -
F-Prot 4.4.2.54 2008.01.24 -
[B]F-Secure 6.70.13260.0 2008.01.24 Suspicious:W32/Malware!Gemini[/B]
Ikarus T3.1.1.20 2008.01.25 -
Kaspersky 7.0.0.125 2008.01.25 -
McAfee 5215 2008.01.24 -
Microsoft 1.3109 2008.01.25 -
NOD32v2 2821 2008.01.25 -
Norman 5.80.02 2008.01.24 -
[B]Panda 9.0.0.4 2008.01.24 Suspicious file[/B]
Prevx1 V2 2008.01.25 -
Rising 20.28.41.00 2008.01.25 -
[B]Sophos 4.25.0 2008.01.25 Mal/Behav-066[/B]
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.25 -
TheHacker 6.2.9.196 2008.01.23 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.24 -
[B]Webwasher-Gateway 6.6.2 2008.01.25 Trojan.Crypt.XPACK.Gen[/B][/code]

File size: 78848 bytes
MD5: 1bad09e84b67336ae4a13cfcc3bb3029
SHA1: e0abccd2c21948423521ee28048330fc8ed09f46
PEiD: -

[size="1"][color="#666686"][B][I]Добавлено через 3 часа 15 минут[/I][/B][/color][/size]

С того же пациента
Windows\TEMP\winlogon.exe

Файл avz00001.dta получен 2008.01.25 13:49:01 (CET)

[code]AhnLab-V3 2008.1.25.11 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 DR/Delphi.Gen[/B]
Authentium 4.93.8 2008.01.25 -
Avast 4.7.1098.0 2008.01.25 -
AVG 7.5.0.516 2008.01.24 -
[B]BitDefender 7.2 2008.01.25 Trojan.PSW.LdPinch.AKX[/B]
CAT-QuickHeal 9.00 2008.01.24 -
ClamAV 0.91.2 2008.01.25 -
[B]DrWeb 4.44.0.09170 2008.01.25 Trojan.Packed.147[/B]
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5484 2008.01.25 -
Ewido 4.0 2008.01.24 -
FileAdvisor 1 2008.01.25 -
Fortinet 3.14.0.0 2008.01.25 -
F-Prot 4.4.2.54 2008.01.24 -
[B]F-Secure 6.70.13260.0 2008.01.25 LdPinch.STT
Ikarus T3.1.1.20 2008.01.25 Virus.Win32.Zapchast.DA[/B]
Kaspersky 7.0.0.125 2008.01.25 -
McAfee 5215 2008.01.24 -
[B]Microsoft 1.3109 2008.01.25 VirTool:Win32/DelfInject.gen!AA
NOD32v2 2822 2008.01.25 a variant of Win32/Injector.J
Norman 5.80.02 2008.01.24 LdPinch.STT[/B]
Panda 9.0.0.4 2008.01.24 -
Prevx1 V2 2008.01.25 -
[B]Rising 20.28.41.00 2008.01.25 Trojan.DL.Win32.Agent.bxw
Sophos 4.25.0 2008.01.25 Mal/Dropper-T[/B]
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.25 -
TheHacker 6.2.9.196 2008.01.23 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.24 -
[B]Webwasher-Gateway 6.6.2 2008.01.25 Trojan.Dropper.Delphi.Gen[/B][/code]

File size: 42496 bytes
MD5: 9209632936a12b31a8fc5db199aa3eb3
SHA1: a59a0cea1faf2e0ece0ebdfcc1cab3d5a86ca273
PEiD: -
25.01.2008, 23:46
strawser

File regger_icq__c__Isis.exe received on 01.25.2008 21:35:55 (CET)
[B]AhnLab-V3 2008.1.26.10 2008.01.25 Win-Trojan/LdPinch.46081
AntiVir 7.6.0.53 2008.01.25 DIAL/46081.A
Authentium 4.93.8 2008.01.25 is a security risk or a \"backdoor\" program
Avast 4.7.1098.0 2008.01.25 Win32:LdPinch-VQ
AVG 7.5.0.516 2008.01.25 PSW.Ldpinch.DNO
BitDefender 7.2 2008.01.25 Trojan.Pws.Ldpinch.BGZ[/B]
CAT-QuickHeal 9.00 2008.01.24 -
[B]ClamAV 0.91.2 2008.01.25 Trojan.Spy-1724
DrWeb 4.44.0.09170 2008.01.25 Trojan.MulDrop.4895
eSafe 7.0.15.0 2008.01.16 Win32.LdPinch.bgz[/B]
eTrust-Vet 31.3.5484 2008.01.25 -
[B]Ewido 4.0 2008.01.25 Trojan.LdPinch.bgz[/B]
FileAdvisor 1 2008.01.25 -
[B]Fortinet 3.14.0.0 2008.01.25 W32/LdPinch.BGZ!tr.pws
F-Prot 4.4.2.54 2008.01.25 W32/PWS!82c1
F-Secure 6.70.13260.0 2008.01.25 W32/Dialer.BBGX
Ikarus T3.1.1.20 2008.01.25 Trojan-PWS.Win32.LdPinch.bgz
Kaspersky 7.0.0.125 2008.01.25 Trojan-PSW.Win32.LdPinch.bgz[/B]
[COLOR="Red"]McAfee 5215 2008.01.24 -[/COLOR]
[B]Microsoft 1.3109 2008.01.25 TrojanDownloader:Win32/Agent.XE
NOD32v2 2823 2008.01.25 Win32/PSW.LdPinch.BHR
Norman 5.80.02 2008.01.24 W32/Dialer.BBGX
Panda 9.0.0.4 2008.01.25 Trj/Ldpinch.WE
Prevx1 V2 2008.01.25 Generic.Malware
Rising 20.28.41.00 2008.01.25 Trojan.PSW.Win32.LdPinch.bgz
Sophos 4.25.0 2008.01.25 Mal/Generic-A
Sunbelt 2.2.907.0 2008.01.25 Trojan-PWS.Win32.Ldpinch.gen
Symantec 10 2008.01.25 Infostealer
TheHacker 6.2.9.197 2008.01.25 Trojan/PSW.LdPinch.bgz
VBA32 3.12.2.5 2008.01.21 Trojan.MulDrop.4895[/B]
VirusBuster 4.3.26:9 2008.01.25 -
[B]Webwasher-Gateway 6.6.2 2008.01.25 Dialer.46081.A[/B]
Additional information
File size: 47105 bytes
MD5: 9f7756fa8b591ed7abca2f5553082d82
SHA1: 19a64786b3935af2a183b7249ddea8ce376e959d
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=844C72F301343BCAB8CF002EFD659A008ED34480[/url]

File IcqFucker.zip received on 01.25.2008 22:19:50 (CET)
AhnLab-V3 2008.1.26.10 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 TR/Drop.Tiny.M.22[/B]
[B]Authentium 4.93.8 2008.01.25 is a dropper for W32/Dropper.DHK
Avast 4.7.1098.0 2008.01.25 Win32:JunkPoly
AVG 7.5.0.516 2008.01.25 Dropper.Generic.IWX
BitDefender 7.2 2008.01.25 Packer.Pohernah.A[/B]
CAT-QuickHeal 9.00 2008.01.25 -
[B]ClamAV 0.91.2 2008.01.25 Trojan.Dropper-173
DrWeb 4.44.0.09170 2008.01.25 Trojan.MulDrop.5419
eSafe 7.0.15.0 2008.01.16 Win32.Tiny.m[/B]
eTrust-Vet 31.3.5484 2008.01.25 -
[B]Ewido 4.0 2008.01.25 Dropper.Tiny.m[/B]
FileAdvisor 1 2008.01.25 -
[B]Fortinet 3.14.0.0 2008.01.25 W32/Tiny.M!tr
F-Prot 4.4.2.54 2008.01.25 W32/Dropper.DHK
F-Secure 6.70.13260.0 2008.01.25 Trojan-Dropper.Win32.Tiny.m
Ikarus T3.1.1.20 2008.01.25 Trojan-Dropper.Win32.Tiny.m
Kaspersky 7.0.0.125 2008.01.25 Trojan-Dropper.Win32.Tiny.m[/B]
[B][COLOR="Red"]McAfee 5215 2008.01.24 -[/COLOR]
Microsoft 1.3109 2008.01.25 TrojanDropper:Win32/Small[/B]
[COLOR="#ff0000"]NOD32v2 2823 2008.01.25 -[/COLOR]
[B]Norman 5.80.02 2008.01.24 PolyCrypt.F.dropper
Panda 9.0.0.4 2008.01.25 Generic Malware
Prevx1 V2 2008.01.25 Generic.Malware[/B]
Rising 20.28.41.00 2008.01.25 -
[B]Sophos 4.25.0 2008.01.25 Mal/Basine-C
Sunbelt 2.2.907.0 2008.01.25 Trojan-Dropper.Win32.Tiny.m[/B]
[COLOR="#ff0000"]Symantec 10 2008.01.25 -[/COLOR]
[B]TheHacker 6.2.9.197 2008.01.25 Trojan/Dropper.Tiny.m
VBA32 3.12.2.5 2008.01.21 Trojan.MulDrop.5038
VirusBuster 4.3.26:9 2008.01.25 Trojan.DR.Webmoner.Gen.2
Webwasher-Gateway 6.6.2 2008.01.25 Trojan.Drop.Tiny.M.22[/B]
Additional information
File size: 385052 bytes
MD5: 9e87f7de3578576ff0e6f5c5d8499b36
SHA1: e22cca5909b78e0fb3e1bb56ea3e056f4cd69289
PEiD: -
packers: PE_Patch

File AntiICQ.exe received on 01.26.2008 22:04:18 (CET)
AhnLab-V3 2008.1.26.10 2008.01.25 -
AntiVir 7.6.0.53 2008.01.25 -
Authentium 4.93.8 2008.01.26 -
Avast 4.7.1098.0 2008.01.26 -
AVG 7.5.0.516 2008.01.26 -
BitDefender 7.2 2008.01.26 -
[B]CAT-QuickHeal 9.00 2008.01.25 TrojanPSW.Agent.xf[/B]
ClamAV 0.91.2 2008.01.26 -
DrWeb 4.44.0.09170 2008.01.26 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5486 2008.01.26 -
Ewido 4.0 2008.01.26 -
FileAdvisor 1 2008.01.26 -
Fortinet 3.14.0.0 2008.01.26 -
F-Prot 4.4.2.54 2008.01.26 -
[B]F-Secure 6.70.13260.0 2008.01.26 Suspicious:W32/Malware!Gemini
Ikarus T3.1.1.20 2008.01.26 Trojan-Proxy.Win32.Delf.av
Kaspersky 7.0.0.125 2008.01.26 Trojan-PSW.Win32.Agent.xh[/B]
McAfee 5216 2008.01.26 -
Microsoft 1.3109 2008.01.26 -
NOD32v2 2824 2008.01.26 -
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.26 -
[B]Prevx1 V2 2008.01.26 Heuristic: Suspicious File With Mass Email Capabilities[/B]
Rising 20.28.52.00 2008.01.26 -
Sophos 4.25.0 2008.01.26 -
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.26 -
TheHacker 6.2.9.199 2008.01.26 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.26 -
Webwasher-Gateway 6.6.2 2008.01.26 -
Additional information
File size: 1026560 bytes
MD5: ba20c555d0ec2e6e75edbcbd59ddab1e
SHA1: 7512ef3606faa50285f93788c1d743bb3614a0db
PEiD: -
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=62D9396400A9BCE3AAC90F3599D65500E4B1B162[/url]
27.01.2008, 00:45
akok

ehevcwfq.dll
[quote]Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.26.10 2008.01.25 -
AntiVir 7.6.0.53 2008.01.25 TR/Dldr.ConHook.Gen
Authentium 4.93.8 2008.01.26 -
Avast 4.7.1098.0 2008.01.26 Win32:TratBHO
AVG 7.5.0.516 2008.01.26 Lop
BitDefender 7.2 2008.01.26 -
CAT-QuickHeal 9.00 2008.01.25 -
ClamAV 0.91.2 2008.01.26 -
DrWeb 4.44.0.09170 2008.01.26 -
eSafe 7.0.15.0 2008.01.16 Suspicious File
eTrust-Vet 31.3.5486 2008.01.26 -
Ewido 4.0 2008.01.26 -
FileAdvisor 1 2008.01.26 -
Fortinet 3.14.0.0 2008.01.26 -
F-Prot 4.4.2.54 2008.01.26 W32/Virtumonde.G.gen!Eldorado
F-Secure 6.70.13260.0 2008.01.26 -
Ikarus T3.1.1.20 2008.01.26 -
Kaspersky 7.0.0.125 2008.01.26 -
McAfee 5216 2008.01.26 -
Microsoft 1.3109 2008.01.26 Trojan:Win32/Vundo.gen!A
NOD32v2 2824 2008.01.26 -
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.26 Suspicious file
Prevx1 V2 2008.01.26 Trojan.Vundo
Rising 20.28.52.00 2008.01.26 -
Sophos 4.25.0 2008.01.26 Troj/Virtum-Gen
Sunbelt 2.2.907.0 2008.01.25 -
Symantec 10 2008.01.26 -
TheHacker 6.2.9.199 2008.01.26 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.26 Adware.Vundo.V.Gen
Webwasher-Gateway 6.6.2 2008.01.26 Trojan.Dldr.ConHook.Gen[/quote]

Дополнительная информация
File size: 78709 bytes
MD5: f379658bab738c81ddfd787493151848
SHA1: 2398a70e6bef0455ee5ce1b221334670896a321e
PEiD: -
27.01.2008, 14:58
asterrX

Файл ***.rar получен 2008.01.27 12:43:53 (CET)
Текущий статус: закончено
Результат: 8/32 (25.00%)

[QUOTE]Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.26.10 2008.01.25 -
[B]AntiVir 7.6.0.53 2008.01.25 HEUR/Crypted[/B]
Authentium 4.93.8 2008.01.26 -
Avast 4.7.1098.0 2008.01.27 -
AVG 7.5.0.516 2008.01.26 -
[B]BitDefender 7.2 2008.01.27 DeepScan:Generic.LdPinch1.9FBE2AFE[/B]
CAT-QuickHeal 9.00 2008.01.25 -
ClamAV 0.91.2 2008.01.27 -
DrWeb 4.44.0.09170 2008.01.27 -
eSafe 7.0.15.0 2008.01.16 -
eTrust-Vet 31.3.5486 2008.01.26 -
Ewido 4.0 2008.01.27 -
FileAdvisor 1 2008.01.27 -
Fortinet 3.14.0.0 2008.01.27 -
[B]F-Prot 4.4.2.54 2008.01.26 W32/LdPinch.I.gen!Eldorado[/B]
F-Secure 6.70.13260.0 2008.01.26 -
[B]Ikarus T3.1.1.20 2008.01.27 MalwareScope.Trojan-PWS.Pinch.1[/B]
[COLOR="Red"]Kaspersky 7.0.0.125 2008.01.27 -[/COLOR]
McAfee 5216 2008.01.26 -
Microsoft 1.3109 2008.01.27 PWS:Win32/Ldpinch.gen
[COLOR="Red"]NOD32v2 2825 2008.01.27 -[/COLOR]
Norman 5.80.02 2008.01.24 -
Panda 9.0.0.4 2008.01.26 -
Prevx1 V2 2008.01.27 -
Rising 20.28.62.00 2008.01.27 -
[B]Sophos 4.25.0 2008.01.27 Mal/Basine-C[/B]
[B]Sunbelt 2.2.907.0 2008.01.25 VIPRE.Suspicious[/B]
Symantec 10 2008.01.27 -
TheHacker 6.2.9.199 2008.01.26 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.26 -
[B]Webwasher-Gateway 6.6.2 2008.01.27 Heuristic.Crypted[/B]
Дополнительная информация
File size: 540945 bytes
MD5: 996d1a46ec5dcddf79cd8df808bd6e48
SHA1: 872c012259afd684fd13641e7fb2d9ca3731d2ea
PEiD: -
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.[/QUOTE]
29.01.2008, 04:10
ZhIV

Файл index.htm получен 2008.01.29 01:53:46 (CET)Антивирус Версия Обновление Результат
AhnLab-V3 2008.1.29.10 2008.01.28 -
[B]AntiVir 7.6.0.56 2008.01.28 HTML/Crypted.Gen
Authentium 4.93.8 2008.01.26 JS/IFrame.AC
[/B]Avast 4.7.1098.0 2008.01.28 -
AVG 7.5.0.516 2008.01.28 -
BitDefender 7.2 2008.01.29 -
CAT-QuickHeal 9.00 2008.01.28 -
ClamAV 0.91.2 2008.01.28 -
[B]DrWeb 4.44.0.09170 2008.01.28 Trojan.DownLoader.42681
eSafe 7.0.15.0 2008.01.28 JS.Agent.ag[/B]
eTrust-Vet 31.3.5493 2008.01.28 -
[B]Ewido 4.0 2008.01.29 Downloader.Iframe.u
[/B]FileAdvisor 1 2008.01.29 -
Fortinet 3.14.0.0 2008.01.29 -
[B]F-Prot 4.4.2.54 2008.01.28 JS/IFrame.AC
F-Secure 6.70.13260.0 2008.01.29 JS/IFrame.AC
[/B]Ikarus T3.1.1.20 2008.01.29 -
[B]Kaspersky 7.0.0.125 2008.01.29 Trojan-Clicker.HTML.IFrame.fh
[/B]McAfee 5217 2008.01.28 -
[B]Microsoft 1.3109 2008.01.28 Virus:JS/Decdec.A[/B]
NOD32v2 2829 2008.01.28 -
Norman 5.80.02 2008.01.28 -
Panda 9.0.0.4 2008.01.28 -
Prevx1 V2 2008.01.29 -
Rising 20.29.01.00 2008.01.28 -
[B]Sophos 4.25.0 2008.01.29 Troj/Decdec-A[/B]
Sunbelt 2.2.907.0 2008.01.29 -
Symantec 10 2008.01.29 -
TheHacker 6.2.9.201 2008.01.28 -
VBA32 3.12.2.5 2008.01.21 -
VirusBuster 4.3.26:9 2008.01.28 -
[B]Webwasher-Gateway 6.6.2 2008.01.28 Script.Crypted.Gen[/B]

Дополнительная информация
File size: 24064 bytes
MD5: 5038d53ba18ea691b491a0b6bdb69350
SHA1: 822b787ac841e54afa32762e5c4329123be86b5f
PEiD: -
29.01.2008, 16:13
yu_mor

AhnLab-V3 2008.1.19.10 2008.01.18 -
[B]AntiVir 7.6.0.48 2008.01.18 TR/Agent.58677 [/B]
Authentium 4.93.8 2008.01.19 -
[B]Avast 4.7.1098.0 2008.01.18 Win32:Trojan-gen {Other} [/B]
AVG 7.5.0.516 2008.01.18 -
[B]BitDefender 7.2 2008.01.19 Trojan.Agent.BGX
CAT-QuickHeal 9.00 2008.01.19 (Suspicious) - DNAScan
[/B]ClamAV 0.91.2 2008.01.18 -
DrWeb 4.44.0.09170 2008.01.18 -
[B]eSafe 7.0.15.0 2008.01.16 suspicious Trojan/Worm [/B]
eTrust-Vet 31.3.5470 2008.01.18 -
Ewido 4.0 2008.01.18 -
[B]FileAdvisor 1 2008.01.19 High threat detected
Fortinet 3.14.0.0 2008.01.19 W32/Basine.C!tr
[/B]F-Prot 4.4.2.54 2008.01.19 -
[B]F-Secure 6.70.13260.0 2008.01.18 W32/LdPinch.RGL
Ikarus T3.1.1.20 2008.01.19 Trojan-PWS.Win32.LdPinch.boy
[/B]Kaspersky 7.0.0.125 2008.01.19 -
McAfee 5211 2008.01.18 -
Microsoft 1.3109 2008.01.18 -
NOD32v2 2807 2008.01.19 -
[B]Norman 5.80.02 2008.01.18 W32/LdPinch.RGL
Panda 9.0.0.4 2008.01.18 Generic Malware
Prevx1 V2 2008.01.19 Generic.Malware
[/B]Rising 20.27.42.00 2008.01.18 -
[B]Sophos 4.24.0 2008.01.19 Mal/Basine-C
Sunbelt 2.2.907.0 2008.01.17 VIPRE.Suspicious
Symantec 10 2008.01.19 Bloodhound.W32.EP
TheHacker 6.2.9.191 2008.01.18 W32/Behav-Heuristic-061
[/B]VBA32 3.12.2.5 2008.01.15 -
[B]VirusBuster 4.3.26:9 2008.01.18 Trojan.Agent.VEO
Webwasher-Gateway 6.6.2 2008.01.18 Trojan.Agent.58677[/B]
30.01.2008, 12:09
rubin

error404.dll

Файл e404d.dll_ получен 2008.01.30 09:59:04 (CET)

[code]AhnLab-V3 2008.1.30.11 2008.01.30 -
AntiVir 7.6.0.57 2008.01.30 -
Authentium 4.93.8 2008.01.30 -
[B]Avast 4.7.1098.0 2008.01.30 Win32:Agent-PSR
AVG 7.5.0.516 2008.01.30 Agent.MOM[/B]
BitDefender 7.2 2008.01.30 -
CAT-QuickHeal 9.00 2008.01.29 -
ClamAV 0.91.2 2008.01.30 -
DrWeb 4.44.0.09170 2008.01.30 -
[B]eSafe 7.0.15.0 2008.01.28 Suspicious File[/B]
eTrust-Vet 31.3.5497 2008.01.30 -
Ewido 4.0 2008.01.29 -
FileAdvisor 1 2008.01.30 -
Fortinet 3.14.0.0 2008.01.30 -
F-Prot 4.4.2.54 2008.01.29 -
F-Secure 6.70.13260.0 2008.01.30 -
[B]Ikarus T3.1.1.20 2008.01.29 Trojan-Clicker.Win32.Small.BG[/B]
Kaspersky 7.0.0.125 2008.01.30 -
McAfee 5218 2008.01.29 -
Microsoft 1.3109 2008.01.28 -
[B]NOD32v2 2834 2008.01.30 a variant of Win32/Agent.NNU[/B]
Norman 5.80.02 2008.01.29 -
Panda 9.0.0.4 2008.01.29 -
[B]Prevx1 V2 2008.01.30 E404Bho:Adware-b[/B]
Rising 20.29.21.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.30 Mal/Heuri-E
Sunbelt 2.2.907.0 2008.01.30 VIPRE.Suspicious
Symantec 10 2008.01.30 Adware.Adpopup[/B]
TheHacker 6.2.9.201 2008.01.28 -
VBA32 3.12.2.6 2008.01.29 -
[B]VirusBuster 4.3.26:9 2008.01.29 Adware.Agent.WYF[/B]
Webwasher-Gateway 6.6.2 2008.01.30 -[/code]

File size: 51712 bytes
MD5: 950f2c1c3839150587009e03948c50c2
SHA1: 6938e99b67d9945df8e79cc7213a40e9533a40d3
PEiD: PECompact 2.xx --> BitSum Technologies
packers: PECompact, PECompact
packers: PecBundle, PECompact
packers: PE_Patch.PECompact, PecBundle, PECompact
Prevx info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=23754C3C003929C6CAC8007B2BBE4D00730D69FF[/url]
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
30.01.2008, 19:02
sergio342

Файл system32.rar получен 2008.01.30 15:50:59 (CET)

AhnLab-V3 2008.1.31.10 2008.01.30 -
[B]AntiVir 7.6.0.57 2008.01.30 TR/Crypt.XPACK.Gen [/B]
Authentium 4.93.8 2008.01.30 -
[B]Avast 4.7.1098.0 2008.01.30 Win32:JunkPoly
AVG 7.5.0.516 2008.01.30 Win32/PolyCrypt
BitDefender 7.2 2008.01.30 DeepScan:Generic.LdPinch1.705481DA [/B]
CAT-QuickHeal 9.00 2008.01.29 -
ClamAV 0.91.2 2008.01.30 -
[B]DrWeb 4.44.0.09170 2008.01.30 Trojan.Packed.153
eSafe 7.0.15.0 2008.01.28 Suspicious File [/B]
eTrust-Vet 31.3.5497 2008.01.30 -
Ewido 4.0 2008.01.30 -
FileAdvisor 1 2008.01.30 -
Fortinet 3.14.0.0 2008.01.30 -
F-Prot 4.4.2.54 2008.01.29 -
F-Secure 6.70.13260.0 2008.01.30 -
Ikarus T3.1.1.20 2008.01.30 -
[B]Kaspersky 7.0.0.125 2008.01.30 Heur.Trojan.Generic
McAfee 5218 2008.01.29 New Malware.bl [/B]
Microsoft 1.3109 2008.01.28 -
NOD32v2 2836 2008.01.30 -
Norman 5.80.02 2008.01.29 -
[B]Panda 9.0.0.4 2008.01.29 Suspicious file
Prevx1 V2 2008.01.30 Heuristic: Suspicious Code [/B]
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.30 Mal/Basine-C
Sunbelt 2.2.907.0 2008.01.30 VIPRE.Suspicious
Symantec 10 2008.01.30 Bloodhound.Packed.31 [/B]
TheHacker 6.2.9.201 2008.01.28 -
VBA32 3.12.2.6 2008.01.29 -
VirusBuster 4.3.26:9 2008.01.29 -
[B]Webwasher-Gateway 6.6.2 2008.01.30 Trojan.Crypt.XPACK.Gen [/B]
30.01.2008, 19:48
rubin

sanitardiska

Файл avz00003.dta получен 2008.01.30 17:42:08 (CET)

[code]AhnLab-V3 2008.1.31.10 2008.01.30 -
AntiVir 7.6.0.59 2008.01.30 -
Authentium 4.93.8 2008.01.30 -
[B]Avast 4.7.1098.0 2008.01.30 Win32:Adware-gen[/B]
AVG 7.5.0.516 2008.01.30 -
BitDefender 7.2 2008.01.30 -
CAT-QuickHeal 9.00 2008.01.29 -
ClamAV 0.91.2 2008.01.30 -
DrWeb 4.44.0.09170 2008.01.30 -
[B]eSafe 7.0.15.0 2008.01.28 suspicious Trojan/Worm[/B]
eTrust-Vet 31.3.5497 2008.01.30 -
Ewido 4.0 2008.01.30 -
[B]FileAdvisor 1 2008.01.30 High threat detected[/B]
Fortinet 3.14.0.0 2008.01.30 -
F-Prot 4.4.2.54 2008.01.29 -
F-Secure 6.70.13260.0 2008.01.30 -
[B]Ikarus T3.1.1.20 2008.01.30 Trojan-Downloader.Win32.QQHelper.vn[/B]
Kaspersky 7.0.0.125 2008.01.30 -
McAfee 5218 2008.01.29 -
Microsoft 1.3109 2008.01.28 -
NOD32v2 2836 2008.01.30 -
Norman 5.80.02 2008.01.29 -
[B]Panda 9.0.0.4 2008.01.29 Application/PCDriveTool[/B]
Prevx1 V2 2008.01.30 -
Rising 20.29.22.00 2008.01.30 -
[B]Sophos 4.25.0 2008.01.30 WinFixer[/B]
Sunbelt 2.2.907.0 2008.01.30 -
TheHacker 6.2.9.202 2008.01.30 -
VBA32 3.12.2.6 2008.01.29 -
VirusBuster 4.3.26:9 2008.01.30 -
[B]Webwasher-Gateway 6.6.2 2008.01.30 Riskware.PCDriveTool[/B][/code]

File size: 197632 bytes
MD5: dd8e0b4ad94243120439c49bc9813ef2
SHA1: 06c58004af8d75cd52114b13a086a75664a8f6eb
PEiD: -
Bit9 info: [url]http://fileadvisor.bit9.com/services/extinfo.aspx?md5=dd8e0b4ad94243120439c49bc9813ef2[/url]
packers: UPX
packers: PE_Patch.UPX, UPX

Показывать 40 сообщений этой темы на одной странице