-
Файл fotka.jar получен 2009.10.09 21:57:59 (UTC)
Текущий статус: закончено
Результат: 10/41 (24.4%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.09 -
AhnLab-V3 5.0.0.2 2009.10.09 -
[B]AntiVir 7.9.1.35 2009.10.09 JAVA/SMS.J2ME.Age.D
Antiy-AVL 2.0.3.7 2009.10.09 Trojan/J2ME.Agent[/B]
Authentium 5.1.2.4 2009.10.09 -
Avast 4.8.1351.0 2009.10.09 -
AVG 8.5.0.420 2009.10.04 -
BitDefender 7.2 2009.10.09 -
CAT-QuickHeal 10.00 2009.10.09 -
ClamAV 0.94.1 2009.10.09 -
[B]Comodo 2552 2009.10.09 TrojWare.J2ME.SMS.Agent.d
DrWeb 5.0.0.12182 2009.10.09 Java.SMSSend.67[/B]
eSafe 7.0.17.0 2009.10.08 -
eTrust-Vet 35.1.7060 2009.10.09 -
F-Prot 4.5.1.85 2009.10.09 -
[B]F-Secure 8.0.14470.0 2009.10.09 Trojan-SMS.J2ME.Agent.d[/B]
Fortinet 3.120.0.0 2009.10.09 -
GData 19 2009.10.09 -
[B]Ikarus T3.1.1.72.0 2009.10.09 Trojan-SMS[/B]
Jiangmin 11.0.800 2009.10.08 -
K7AntiVirus 7.10.866 2009.10.09 -
[B]Kaspersky 7.0.0.125 2009.10.09 Trojan-SMS.J2ME.Agent.d[/B]
McAfee 5766 2009.10.09 -
McAfee+Artemis 5766 2009.10.09 -
[B]McAfee-GW-Edition 6.8.5 2009.10.09 Java.SMS.J2ME.Age.D[/B]
Microsoft 1.5101 2009.10.09 -
[B]NOD32 4494 2009.10.09 J2ME/TrojanSMS.Agent.D[/B]
Norman 6.01.09 2009.10.09 -
nProtect 2009.1.8.0 2009.10.09 -
Panda 10.0.2.2 2009.10.09 -
PCTools 4.4.2.0 2009.10.09 -
Prevx 3.0 2009.10.09 -
Rising 21.50.44.00 2009.10.09 -
Sophos 4.45.0 2009.10.09 -
Sunbelt 3.2.1858.2 2009.10.09 -
Symantec 1.4.4.12 2009.10.09 -
TheHacker 6.5.0.2.033 2009.10.07 -
[B]TrendMicro 8.950.0.1094 2009.10.09 TROJ_AGENT.AWQW[/B]
VBA32 3.12.10.11 2009.10.09 -
ViRobot 2009.10.9.1978 2009.10.09 -
VirusBuster 4.6.5.0 2009.10.09 -[/QUOTE]
Дополнительная информация
File size: 68433 bytes
MD5...: e554f42a409a271276a7d3979d1005ba
SHA1..: 85595d63cb0a8520f9ca94f4d1f2dec12cda002a
SHA256: 9e5d6eae0bdb601a2968426a6c8483d95aa2b00644fce24e0e94cb5a4533a6db
ssdeep: 1536:Abx4kPpu0pEU3/4+vat5OATBgM4bPxhRL+ngk5NS+uxo/4qNpaW5MBC:I4k
Ppu0aU3/47O7BbPnRLf+iy4qNX8C
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/9e5d6eae0bdb601a2968426a6c8483d95aa2b00644fce24e0e94cb5a4533a6db-1255125479[/url]
-
Файл foto19.scr получен 2009.10.11 16:16:35 (UTC)
Текущий статус: закончено
Результат: 7/41 (17.08%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.11 -
AhnLab-V3 5.0.0.2 2009.10.10 -
AntiVir 7.9.1.35 2009.10.09 -
Antiy-AVL 2.0.3.7 2009.10.10 -
Authentium 5.1.2.4 2009.10.10 -
Avast 4.8.1351.0 2009.10.11 -
AVG 8.5.0.420 2009.10.04 -
BitDefender 7.2 2009.10.11 -
CAT-QuickHeal 10.00 2009.10.10 -
ClamAV 0.94.1 2009.10.10 -
Comodo 2572 2009.10.11 -
[B]DrWeb 5.0.0.12182 2009.10.11 Win32.HLLW.Lime.based.18
eSafe 7.0.17.0 2009.10.08 Suspicious File[/B]
eTrust-Vet 35.1.7060 2009.10.09 -
F-Prot 4.5.1.85 2009.10.10 -
F-Secure 8.0.14470.0 2009.10.11 -
Fortinet 3.120.0.0 2009.10.11 -
GData 19 2009.10.11 -
Ikarus T3.1.1.72.0 2009.10.11 -
Jiangmin 11.0.800 2009.10.08 -
K7AntiVirus 7.10.867 2009.10.10 -
Kaspersky 7.0.0.125 2009.10.11 -
McAfee 5767 2009.10.10 -
[B]McAfee+Artemis 5768 2009.10.11 Artemis!A80A1C4D7E96
McAfee-GW-Edition 6.8.5 2009.10.11 Heuristic.LooksLike.Win32.Suspicious.B!89
Microsoft 1.5101 2009.10.11 VirTool:Win32/Obfuscator.FL[/B]
NOD32 4497 2009.10.11 -
Norman 6.01.09 2009.10.11 -
nProtect 2009.1.8.0 2009.10.11 -
Panda 10.0.2.2 2009.10.11 -
PCTools 4.4.2.0 2009.10.11 -
Prevx 3.0 2009.10.11 -
Rising 21.50.60.00 2009.10.11 -
Sophos 4.45.0 2009.10.11 -
[B]Sunbelt 3.2.1858.2 2009.10.10 Packer.Malicious.gen (v)
Symantec 1.4.4.12 2009.10.11 Packed.Generic.255[/B]
TheHacker 6.5.0.2.036 2009.10.10 -
TrendMicro 8.950.0.1094 2009.10.11 -
VBA32 3.12.10.11 2009.10.10 -
ViRobot 2009.10.9.1978 2009.10.09 -
VirusBuster 4.6.5.0 2009.10.11 -[/QUOTE]
Дополнительная информация
File size: 129024 bytes
MD5...: a80a1c4d7e963eba8be0dd26b957e82a
SHA1..: 7a69df7565f025dc67da0f96d23a9a5e057af014
SHA256: 409932c2ddaaae71291e7b217efe0e13737afda751caf772a3a233fff8bd2e13
ssdeep: 3072:XAMcJwSbbdCHrAplEhqOGdabf8/bLBz6OK:Q9JRbbdCHrAjEsjar8bZY
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/409932c2ddaaae71291e7b217efe0e13737afda751caf772a3a233fff8bd2e13-1255277795[/url]
-
File microsoft_09.exe received on 2009.10.12 05:04:35 (UTC)
Current status: finished
Result: 26/41 (63.42%)
[QUOTE][B]a-squared 4.5.0.41 2009.10.12 Trojan.Win32.VBKrypt!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.10 -
[B]AntiVir 7.9.1.35 2009.10.09 TR/Dropper.Gen[/B]
[B][B]Antiy-AVL 2.0.3.7 2009.10.10 Trojan/Win32.VBKrypt.gen[/B][/B]
[B]Authentium 5.1.2.4 2009.10.11 W32/Trojan2.ITIE[/B]
Avast 4.8.1351.0 2009.10.11 -
[B]AVG 8.5.0.420 2009.10.04 BackDoor.Generic11.AQWT[/B]
[B]BitDefender 7.2 2009.10.12 Trojan.Generic.2451422[/B]
[B]CAT-QuickHeal 10.00 2009.10.10 Trojan.VBKrypt.m[/B]
[B]ClamAV 0.94.1 2009.10.12 Trojan.VB-7820[/B]
[B]Comodo 2576 2009.10.11 Backdoor.Win32.Bifrose.~MJA[/B]
[B]DrWeb 5.0.0.12182 2009.10.12 BackDoor.Bifrost[/B]
eSafe 7.0.17.0 2009.10.08 -
eTrust-Vet 35.1.7060 2009.10.09 -
[B]F-Prot 4.5.1.85 2009.10.12 W32/Trojan2.ITIE[/B]
[B]F-Secure 8.0.14470.0 2009.10.12 Trojan.Win32.VBKrypt.m[/B]
[B]Fortinet 3.120.0.0 2009.10.12 W32/Bckdr.M!tr[/B]
[B]GData 19 2009.10.12 Trojan.Generic.2451422[/B]
[B]Ikarus T3.1.1.72.0 2009.10.12 Trojan.Win32.VBKrypt[/B]
[B]Jiangmin 11.0.800 2009.10.08 Trojan/VBKrypt.f[/B]
[B]K7AntiVirus 7.10.867 2009.10.10 Trojan.Win32.VBKrypt.m[/B]
[B]Kaspersky 7.0.0.125 2009.10.12 Trojan.Win32.VBKrypt.m[/B]
McAfee 5768 2009.10.11 -
[B]McAfee+Artemis 5768 2009.10.11 Artemis!267ED1355B82[/B]
[B]McAfee-GW-Edition 6.8.5 2009.10.12 Trojan.Dropper.Gen[/B]
Microsoft 1.5101 2009.10.11 -
[B]NOD32 4498 2009.10.11 Win32/Spy.Zbot.NJ[/B]
[B]Norman 6.01.09 2009.10.11 W32/VBTroj.BQED[/B]
nProtect 2009.1.8.0 2009.10.12 -
[B]Panda 10.0.2.2 2009.10.11 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.10.11 -
[B]Prevx 3.0 2009.10.12 High Risk System Back Door[/B]
Rising 21.51.00.00 2009.10.12 -
[B]Sophos 4.45.0 2009.10.12 Troj/Bckdr-QYZ[/B]
Sunbelt 3.2.1858.2 2009.10.11 -
Symantec 1.4.4.12 2009.10.12 -
TheHacker 6.5.0.2.038 2009.10.12 -
[B]TrendMicro 8.950.0.1094 2009.10.12 TROJ_BZUB.MCS[/B]
VBA32 3.12.10.11 2009.10.11 -
ViRobot 2009.10.12.1979 2009.10.12 -
VirusBuster 4.6.5.0 2009.10.11 -[/QUOTE]
Additional information
File size: 237568 bytes
MD5...: 267ed1355b82d9154116f552c89662bc
SHA1..: 75ed9a24f3e90c597b29190e7762efc333f87646
SHA256: bb92636a210c31b599386bf50caadf2e5dc1706926469dfe98d72eae213d0c76
ssdeep: 3072:nedwhZSPMlKICIwq2yNiNfgu+Sv4aDID015OZhln:edwhYMoX9EiNfV4aUK
5UV
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x13d4
timedatestamp.....: 0x4aaa784a (Fri Sep 11 16:18:18 2009)
machinetype.......: 0x14c (I386)
[url]http://www.virustotal.com/analisis/bb92636a210c31b599386bf50caadf2e5dc1706926469dfe98d72eae213d0c76-1255323875[/url]
[url]http://info.prevx.com/aboutprogramtext.asp?PX5=5741AFD700CCC5E5A09F03F6D1238F00A086C7B9[/url]
-
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.12 -
[B]AhnLab-V3 5.0.0.2 2009.10.12 PDF/Shellcode[/B]
AntiVir 7.9.1.35 2009.10.12 -
Antiy-AVL 2.0.3.7 2009.10.12 -
Authentium 5.1.2.4 2009.10.12 -
[B]Avast 4.8.1351.0 2009.10.11 JS:Pdfka-RV[/B]
AVG 8.5.0.420 2009.10.12 -
[B]BitDefender 7.2 2009.10.12 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.10.12 -
ClamAV 0.94.1 2009.10.12 -
Comodo 2586 2009.10.12 -
DrWeb 5.0.0.12182 2009.10.12 -
eSafe 7.0.17.0 2009.10.12 -
eTrust-Vet 35.1.7064 2009.10.12 -
F-Prot 4.5.1.85 2009.10.12 -
[B]F-Secure 8.0.14470.0 2009.10.12 Exploit.Win32.Pidief.cjn[/B]
Fortinet 3.120.0.0 2009.10.12 -
[B]GData 19 2009.10.12 Exploit.PDF-JS.Gen[/B]
Ikarus T3.1.1.72.0 2009.10.12 -
Jiangmin 11.0.800 2009.10.08 -
K7AntiVirus 7.10.868 2009.10.12 -
[B]Kaspersky 7.0.0.125 2009.10.12 Exploit.Win32.Pidief.cjn[/B]
McAfee 5769 2009.10.12 -
McAfee+Artemis 5769 2009.10.12 -
McAfee-GW-Edition 6.8.5 2009.10.12 -
Microsoft 1.5101 2009.10.12 -
NOD32 4501 2009.10.12 -
Norman 6.01.09 2009.10.12 -
nProtect 2009.1.8.0 2009.10.12 -
Panda 10.0.2.2 2009.10.12 -
PCTools 4.4.2.0 2009.10.12 -
Prevx 3.0 2009.10.12 -
Rising 21.51.04.00 2009.10.12 -
[B]Sophos 4.45.0 2009.10.12 Troj/PDFJs-DT
Sunbelt 3.2.1858.2 2009.10.11 Exploit.PDF-JS.Gen (v)[/B]
Symantec 1.4.4.12 2009.10.12 -
TheHacker 6.5.0.2.039 2009.10.12 -
TrendMicro 8.950.0.1094 2009.10.12 -
VBA32 3.12.10.11 2009.10.12 -
ViRobot 2009.10.12.1980 2009.10.12 -
VirusBuster 4.6.5.0 2009.10.12 -[/QUOTE]
Дополнительная информация
File size: 7808 bytes
MD5...: 1449c9e39a4346ea521b2a372212fc15
SHA1..: b3e55a18f036d99e4a19903a0a9cb99ad758b597
SHA256: 3be60a2279c93679ab3e1fa96a59079f9dc81838c95fd4d78f4da911f34e6527
ssdeep: 192:4eH18/e/nrJjNZkZL+OyqmVGrF/hDFwkxBZgRKzzgvLCYfTtt0mWtg:4eH18<BR>/e/nrJj7Cq9g/hDGcBGRAkLLtt/<BR>
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set<BR>-
pdfid.: PDF Header: %PDF-1.4<BR>obj 10<BR>endobj 10<BR>stream 2<BR>endstream 2<BR>xref 1<BR>trailer 1<BR>startxref 1<BR>/Page 1<BR>/Encrypt 0<BR>/ObjStm 0<BR>/JS 1<BR>/JavaScript 2<BR>/AA 0<BR>/OpenAction 0<BR>/JBIG2Decode 0<BR>
trid..: Adobe Portable Document Format (100.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.12 -
[B]AhnLab-V3 5.0.0.2 2009.10.12 PDF/Shellcode[/B]
AntiVir 7.9.1.35 2009.10.12 -
Antiy-AVL 2.0.3.7 2009.10.12 -
Authentium 5.1.2.4 2009.10.12 -
[B]Avast 4.8.1351.0 2009.10.11 JS:Pdfka-RV[/B]
AVG 8.5.0.420 2009.10.12 -
[B]BitDefender 7.2 2009.10.12 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.10.12 -
ClamAV 0.94.1 2009.10.12 -
Comodo 2586 2009.10.12 -
DrWeb 5.0.0.12182 2009.10.12 -
eSafe 7.0.17.0 2009.10.12 -
eTrust-Vet 35.1.7064 2009.10.12 -
F-Prot 4.5.1.85 2009.10.12 -
[B]F-Secure 8.0.14470.0 2009.10.12 Exploit.Win32.Pidief.cfu[/B]
Fortinet 3.120.0.0 2009.10.12 -
[B]GData 19 2009.10.12 Exploit.PDF-JS.Gen[/B]
Ikarus T3.1.1.72.0 2009.10.12 -
Jiangmin 11.0.800 2009.10.08 -
K7AntiVirus 7.10.868 2009.10.12 -
[B]Kaspersky 7.0.0.125 2009.10.12 Exploit.Win32.Pidief.cfu[/B]
McAfee 5769 2009.10.12 -
McAfee+Artemis 5769 2009.10.12 -
McAfee-GW-Edition 6.8.5 2009.10.12 -
Microsoft 1.5101 2009.10.12 -
NOD32 4501 2009.10.12 -
Norman 6.01.09 2009.10.12 -
nProtect 2009.1.8.0 2009.10.12 -
Panda 10.0.2.2 2009.10.12 -
PCTools 4.4.2.0 2009.10.12 -
Prevx 3.0 2009.10.12 -
Rising 21.51.04.00 2009.10.12 -
[B]Sophos 4.45.0 2009.10.12 Troj/PDFJs-DT
Sunbelt 3.2.1858.2 2009.10.11 Exploit.PDF-JS.Gen (v)[/B]
Symantec 1.4.4.12 2009.10.12 -
TheHacker 6.5.0.2.039 2009.10.12 -
TrendMicro 8.950.0.1094 2009.10.12 -
VBA32 3.12.10.11 2009.10.12 -
ViRobot 2009.10.12.1980 2009.10.12 -
VirusBuster 4.6.5.0 2009.10.12 -[/QUOTE]
Дополнительная информация
File size: 7810 bytes
MD5...: b8de004857943f72a0675a602f40dcc5
SHA1..: fa45ee5a597bdc5541b09345d1b938559db34ee2
SHA256: 46c7350ed790e88fa60f2127aedf8d980add00c5ce84b6f75f88b8666dbcb07e
ssdeep: 192:4eH18/e/nycXHq/tLy03rkYK3frHTkmzjSUfx5E/taRWtg:4eH18/e/nycXH<BR>q/x3QYOnfTx50taRWu<BR>
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set<BR>-
pdfid.: PDF Header: %PDF-1.4<BR>obj 10<BR>endobj 10<BR>stream 2<BR>endstream 2<BR>xref 1<BR>trailer 1<BR>startxref 1<BR>/Page 1<BR>/Encrypt 0<BR>/ObjStm 0<BR>/JS 1<BR>/JavaScript 2<BR>/AA 0<BR>/OpenAction 0<BR>/JBIG2Decode 0<BR>
trid..: Adobe Portable Document Format (100.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.12 -
[B]AhnLab-V3 5.0.0.2 2009.10.12 PDF/Shellcode[/B]
AntiVir 7.9.1.35 2009.10.12 -
Antiy-AVL 2.0.3.7 2009.10.12 -
Authentium 5.1.2.4 2009.10.12 -
[B]Avast 4.8.1351.0 2009.10.11 JS:Pdfka-RV[/B]
AVG 8.5.0.420 2009.10.12 -
[B]BitDefender 7.2 2009.10.12 Exploit.PDF-JS.Gen[/B]
CAT-QuickHeal 10.00 2009.10.12 -
ClamAV 0.94.1 2009.10.12 -
Comodo 2586 2009.10.12 -
DrWeb 5.0.0.12182 2009.10.12 -
eSafe 7.0.17.0 2009.10.12 -
eTrust-Vet 35.1.7064 2009.10.12 -
F-Prot 4.5.1.85 2009.10.12 -
[B]F-Secure 8.0.14470.0 2009.10.12 Exploit.Win32.Pidief.cjd[/B]
Fortinet 3.120.0.0 2009.10.12 -
[B]GData 19 2009.10.12 Exploit.PDF-JS.Gen[/B]
Ikarus T3.1.1.72.0 2009.10.12 -
Jiangmin 11.0.800 2009.10.08 -
K7AntiVirus 7.10.868 2009.10.12 -
[B]Kaspersky 7.0.0.125 2009.10.12 Exploit.Win32.Pidief.cjd[/B]
McAfee 5769 2009.10.12 -
McAfee+Artemis 5769 2009.10.12 -
McAfee-GW-Edition 6.8.5 2009.10.12 -
Microsoft 1.5101 2009.10.12 -
NOD32 4501 2009.10.12 -
Norman 6.01.09 2009.10.12 -
nProtect 2009.1.8.0 2009.10.12 -
Panda 10.0.2.2 2009.10.12 -
PCTools 4.4.2.0 2009.10.12 -
Prevx 3.0 2009.10.12 -
Rising 21.51.04.00 2009.10.12 -
[B]Sophos 4.45.0 2009.10.12 Troj/PDFJs-DT
Sunbelt 3.2.1858.2 2009.10.11 Exploit.PDF-JS.Gen (v)[/B]
Symantec 1.4.4.12 2009.10.12 -
TheHacker 6.5.0.2.039 2009.10.12 -
TrendMicro 8.950.0.1094 2009.10.12 -
VBA32 3.12.10.11 2009.10.12 -
ViRobot 2009.10.12.1980 2009.10.12 -
VirusBuster 4.6.5.0 2009.10.12 -[/QUOTE]
Дополнительная информация
File size: 7698 bytes
MD5...: c04e45516464e83bdd396aa0318e269d
SHA1..: feef09133a61df0a7b4bf9dc7d5f133b65da7e11
SHA256: 9b0f9abf7b341a7f6cd8fb5ebcd093989f5d9e0b65aa161e749e7d2c167624a5
ssdeep: 192:4eH18/e/nyIWHrjng8+hW6OEYqtNqB3M2sjcTtGVPzWtg:4eH18/e/ny7Hrj<BR>QW6HYqjqi2sjcTtGtf<BR>
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set<BR>-
pdfid.: PDF Header: %PDF-1.4<BR>obj 10<BR>endobj 10<BR>stream 2<BR>endstream 2<BR>xref 1<BR>trailer 1<BR>startxref 1<BR>/Page 1<BR>/Encrypt 0<BR>/ObjStm 0<BR>/JS 1<BR>/JavaScript 2<BR>/AA 0<BR>/OpenAction 0<BR>/JBIG2Decode 0<BR>
trid..: Adobe Portable Document Format (100.0%)
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
-
Файл ujfgxy.dat получен 2009.10.16 15:55:16 (UTC)
Текущий статус: закончено
Результат: 20/41 (48.79%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.10.16 Trojan.Delf!IK
AhnLab-V3 5.0.0.2 2009.10.16 Win-Trojan/Xema.18432.Z
AntiVir 7.9.1.35 2009.10.16 TR/Delf.pgk[/B]
Antiy-AVL 2.0.3.7 2009.10.16 -
Authentium 5.1.2.4 2009.10.16 -
Avast 4.8.1351.0 2009.10.14 -
[B]AVG 8.5.0.420 2009.10.16 Downloader.Generic_c.AUP
BitDefender 7.2 2009.10.16 Trojan.Generic.2528919
CAT-QuickHeal 10.00 2009.10.16 Trojan.Delf.prt[/B]
ClamAV 0.94.1 2009.10.16 -
Comodo 2622 2009.10.16 -
DrWeb 5.0.0.12182 2009.10.16 -
eSafe 7.0.17.0 2009.10.15 -
[B]eTrust-Vet 35.1.7071 2009.10.16 Win32/Daonol.L[/B]
F-Prot 4.5.1.85 2009.10.15 -
[B]F-Secure 8.0.14470.0 2009.10.16 Trojan.Win32.Delf.qhy
Fortinet 3.120.0.0 2009.10.16 W32/Delf.FDQ!tr
GData 19 2009.10.16 Trojan.Generic.2528919
Ikarus T3.1.1.72.0 2009.10.16 Trojan.Delf[/B]
Jiangmin 11.0.800 2009.10.16 -
K7AntiVirus 7.10.872 2009.10.16 -
[B]Kaspersky 7.0.0.125 2009.10.16 Trojan.Win32.Delf.qhy[/B]
McAfee 5772 2009.10.15 -
[B]McAfee+Artemis 5772 2009.10.15 Artemis!64C317CCB40E
McAfee-GW-Edition 6.8.5 2009.10.16 Trojan.Delf.pgk
Microsoft 1.5101 2009.10.16 Trojan:Win32/Daonol.G
NOD32 4515 2009.10.16 Win32/Daonol.G[/B]
Norman 6.03.02 2009.10.16 -
nProtect 2009.1.8.0 2009.10.15 -
Panda 10.0.2.2 2009.10.15 -
PCTools 4.4.2.0 2009.10.16 -
[B]Prevx 3.0 2009.10.16 High Risk Cloaked Malware
Rising 21.51.44.00 2009.10.16 Backdoor.Win32.Mnless.ddm
Sophos 4.46.0 2009.10.16 Troj/Delf-FDQ[/B]
Sunbelt 3.2.1858.2 2009.10.15 -
Symantec 1.4.4.12 2009.10.16 -
TheHacker 6.5.0.2.043 2009.10.15 -
TrendMicro 8.950.0.1094 2009.10.16 -
VBA32 3.12.10.11 2009.10.15 -
ViRobot 2009.10.16.1988 2009.10.16 Trojan.Win32.Delf.18432.AR
VirusBuster 4.6.5.0 2009.10.15 -[/QUOTE]
Дополнительная информация
File size: 18432 bytes
MD5...: 64c317ccb40edce19d22aceb6787e22e
SHA1..: 4217013409f28245fb72be9cb52a364577074d9f
SHA256: 5b5db9308907c67bf12d35481ed06eeb6530255d36acf9b7a692734198560648
ssdeep: 384:UAFO6S4tmNev1Jg5t29kJPelH3rPQclzUls6HaUSkihAS8jasv:UbH4tqeDs
JP43r9Ym6HUAjas
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/5b5db9308907c67bf12d35481ed06eeb6530255d36acf9b7a692734198560648-1255708516[/url]
-
Файл Webmoney.exe получен 2009.10.18 18:59:05 (UTC)
Текущий статус: закончено
Результат: 7/41 (17.08%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.18 -
AhnLab-V3 5.0.0.2 2009.10.17 -
[B]AntiVir 7.9.1.35 2009.10.16 HEUR/HTML.Malware[/B]
Antiy-AVL 2.0.3.7 2009.10.16 -
Authentium 5.1.2.4 2009.10.18 -
Avast 4.8.1351.0 2009.10.17 -
AVG 8.5.0.420 2009.10.18 -
[B]BitDefender 7.2 2009.10.18 Trojan.Script.3101[/B]
CAT-QuickHeal 10.00 2009.10.18 -
ClamAV 0.94.1 2009.10.17 -
Comodo 2647 2009.10.18 -
[B]DrWeb 5.0.0.12182 2009.10.18 VBS.Corruptor.7[/B]
eSafe 7.0.17.0 2009.10.18 -
eTrust-Vet 35.1.7072 2009.10.16 -
F-Prot 4.5.1.85 2009.10.18 -
[B]F-Secure 9.0.15300.0 2009.10.16 Trojan.Script.3101[/B]
Fortinet 3.120.0.0 2009.10.16 -
[B]GData 19 2009.10.18 Trojan.Script.3101[/B]
Ikarus T3.1.1.72.0 2009.10.18 -
Jiangmin 11.0.800 2009.10.18 -
K7AntiVirus 7.10.872 2009.10.16 -
Kaspersky 7.0.0.125 2009.10.18 -
McAfee 5775 2009.10.18 -
McAfee+Artemis 5775 2009.10.18 -
[B]McAfee-GW-Edition 6.8.5 2009.10.18 Heuristic.HTML.Malware[/B]
Microsoft 1.5101 2009.10.18 -
NOD32 4520 2009.10.18 -
Norman 6.03.02 2009.10.17 -
nProtect 2009.1.8.0 2009.10.18 -
Panda 10.0.2.2 2009.10.18 -
PCTools 4.4.2.0 2009.10.18 -
Prevx 3.0 2009.10.18 -
[B]Rising 21.51.62.00 2009.10.18 Unknown Script Virus[/B]
Sophos 4.46.0 2009.10.18 -
Sunbelt 3.2.1858.2 2009.10.18 -
Symantec 1.4.4.12 2009.10.18 -
TheHacker 6.5.0.2.045 2009.10.17 -
TrendMicro 8.950.0.1094 2009.10.18 -
VBA32 3.12.10.11 2009.10.16 -
ViRobot 2009.10.17.1990 2009.10.17 -
VirusBuster 4.6.5.0 2009.10.18 -[/QUOTE]
Дополнительная информация
File size: 1265614 bytes
MD5...: c28c63545000a22eee2a14d2826349b7
SHA1..: e5355bd3e8bdbd928957731ddaa65c5f601ec3bb
SHA256: 5044b2b41dfd69b0e6b01ace93172a24afac02614e8786776ae27f8c1d503f50
ssdeep: 24576:/8KK55ACAVysKDDHCuoSuei6sZdmEWOlao5oEd8bKNrmY0GW:/8MjAsKDD
H+SuR6sWZss3K1mY7W
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/5044b2b41dfd69b0e6b01ace93172a24afac02614e8786776ae27f8c1d503f50-1255892345[/url]
-
Не поверил своим глазам когда встретил :)
Файл IsUninst.exe получен 2009.10.20 12:09:29 (UTC)
Текущий статус: закончено
Результат: 17/40 (42.50%)
[QUOTE][B]a-squared 4.5.0.41 2009.10.20 Trojan.Win9x.FlashKiller!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.20 -
[B]AntiVir 7.9.1.35 2009.10.20 TR/FlashKiller.C[/B]
Antiy-AVL 2.0.3.7 2009.10.20 -
Authentium 5.1.2.4 2009.10.20 -
[B]Avast 4.8.1351.0 2009.10.19 Win32:CIH-C[/B]
AVG 8.5.0.420 2009.10.20 -
[B]BitDefender 7.2 2009.10.20 Trojan.Generic.IS.559512[/B]
CAT-QuickHeal 10.00 2009.10.20 -
ClamAV 0.94.1 2009.10.20 -
[B]Comodo 2665 2009.10.20 UnclassifiedMalware[/B]
DrWeb 5.0.0.12182 2009.10.20 -
[B]eSafe 7.0.17.0 2009.10.19 Win32.TRFlashKiller[/B]
eTrust-Vet 35.1.7075 2009.10.19 -
F-Prot 4.5.1.85 2009.10.20 -
[B]Fortinet 3.120.0.0 2009.10.20 W32/Dx.BB!tr[/B]
[B]GData 19 2009.10.20 Trojan.Generic.IS.559512[/B]
[B]Ikarus T3.1.1.72.0 2009.10.20 Trojan.Win9x.FlashKiller[/B]
Jiangmin 11.0.800 2009.10.20 -
[B]K7AntiVirus 7.10.874 2009.10.19 Trojan.Win32.Malware.1[/B]
Kaspersky 7.0.0.125 2009.10.20 -
[B]McAfee 5776 2009.10.19 Generic.dx!bb[/B]
[B]McAfee+Artemis 5776 2009.10.19 Generic.dx!bb[/B]
[B]McAfee-GW-Edition 6.8.5 2009.10.20 Win32.CIH[/B]
Microsoft 1.5101 2009.10.20 -
NOD32 4525 2009.10.20 -
Norman 6.03.02 2009.10.19 -
nProtect 2009.1.8.0 2009.10.20 -
[B]Panda 10.0.2.2 2009.10.20 Trj/CI.A[/B]
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.20 -
Rising 21.52.13.00 2009.10.20 -
[B]Sophos 4.46.0 2009.10.20 W95/CIH-10xx[/B]
Sunbelt 3.2.1858.2 2009.10.20 -
[B]Symantec 1.4.4.12 2009.10.20 W95.CIH.damaged[/B]
TheHacker 6.5.0.2.048 2009.10.20 -
[B]TrendMicro 8.950.0.1094 2009.10.20 TROJ_GEN.0Z0746[/B]
VBA32 3.12.10.11 2009.10.19 -
ViRobot 2009.10.20.1996 2009.10.20 -
VirusBuster 4.6.5.0 2009.10.19 -[/QUOTE]
Дополнительная информация
File size: 315904 bytes
MD5 : 65b2b4b83be0d4a0c29ec4815162be47
SHA1 : 89f7f8867fe1ba69df051fc736a425b3a8c6155a
SHA256: 3cf54a70a2f3be6c9a67cfeb2c14e823fa0e41ba7641f75372566462a6eb8f91
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1AF40
timedatestamp.....: 0x34030D18 (Tue Aug 26 19:06:32 1997)
machinetype.......: 0x14C (Intel I386)
-
File image.php received on 2009.10.21 10:44:16 (UTC)
Result: 1/41 (2.44%)
[QUOTE]a-squared 4.5.0.41 2009.10.21 -
AhnLab-V3 5.0.0.2 2009.10.20 -
AntiVir 7.9.1.42 2009.10.21 -
Antiy-AVL 2.0.3.7 2009.10.21 -
Authentium 5.1.2.4 2009.10.21 -
Avast 4.8.1351.0 2009.10.20 -
AVG 8.5.0.420 2009.10.20 -
BitDefender 7.2 2009.10.21 -
CAT-QuickHeal 10.00 2009.10.21 -
ClamAV 0.94.1 2009.10.21 -
Comodo 2677 2009.10.21 -
DrWeb 5.0.0.12182 2009.10.21 -
eSafe 7.0.17.0 2009.10.19 -
eTrust-Vet 35.1.7075 2009.10.19 -
F-Prot 4.5.1.85 2009.10.20 -
F-Secure 9.0.15300.0 2009.10.20 -
Fortinet 3.120.0.0 2009.10.21 -
GData 19 2009.10.21 -
Ikarus T3.1.1.72.0 2009.10.21 -
Jiangmin 11.0.800 2009.10.21 -
K7AntiVirus 7.10.875 2009.10.20 -
[B]Kaspersky 7.0.0.125 2009.10.21 Trojan-Downloader.JS.Gumblar.x[/B]
McAfee 5777 2009.10.20 -
McAfee+Artemis 5777 2009.10.20 -
McAfee-GW-Edition 6.8.5 2009.10.21 -
Microsoft 1.5101 2009.10.21 -
NOD32 4527 2009.10.20 -
Norman 6.03.02 2009.10.20 -
nProtect 2009.1.8.0 2009.10.21 -
Panda 10.0.2.2 2009.10.20 -
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.21 -
Rising 21.52.22.00 2009.10.21 -
Sophos 4.46.0 2009.10.21 -
Sunbelt 3.2.1858.2 2009.10.20 -
Symantec 1.4.4.12 2009.10.21 -
TheHacker 6.5.0.2.049 2009.10.20 -
TrendMicro 8.950.0.1094 2009.10.21 -
VBA32 3.12.10.11 2009.10.20 -
ViRobot 2009.10.21.1998 2009.10.21 -
VirusBuster 4.6.5.0 2009.10.20 -[/QUOTE]
[url]http://www.virustotal.com/analisis/e1b9d82e7c226299f0295733052429a06efac8ca53cd26572962d90b217ad3cb-1256121856[/url]
-
Файл JimmPremium.jar получен 2009.10.21 17:35:25 (UTC)
[CODE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.21 -
AhnLab-V3 5.0.0.2 2009.10.21 -
[B]AntiVir 7.9.1.42 2009.10.21 JAVA/SMS.J2ME.Kon.I[/B]
[B]Antiy-AVL 2.0.3.7 2009.10.21 Trojan/J2ME.Konov[/B]
Authentium 5.1.2.4 2009.10.21 -
[B]Avast 4.8.1351.0 2009.10.20 Other:Malware-gen[/B]
AVG 8.5.0.420 2009.10.20 -
BitDefender 7.2 2009.10.21 -
CAT-QuickHeal 10.00 2009.10.21 -
ClamAV 0.94.1 2009.10.21 -
[B]Comodo 2680 2009.10.21 TrojWare.J2ME.SMS.Konov.i
DrWeb 5.0.0.12182 2009.10.21 Java.SMSSend.51[/B]
eSafe 7.0.17.0 2009.10.21 -
[B]eTrust-Vet 35.1.7077 2009.10.21 Java/SMSTroj[/B]
F-Prot 4.5.1.85 2009.10.21 -
F-Secure 9.0.15300.0 2009.10.20 -
Fortinet 3.120.0.0 2009.10.21 -
[B]GData 19 2009.10.21 Other:Malware-gen
Ikarus T3.1.1.72.0 2009.10.21 Trojan-SMS[/B]
Jiangmin 11.0.800 2009.10.21 -
K7AntiVirus 7.10.876 2009.10.21 -
[B]Kaspersky 7.0.0.125 2009.10.21 Trojan-SMS.J2ME.Konov.i[/B]
McAfee 5778 2009.10.21 -
McAfee+Artemis 5778 2009.10.21 -
[B]McAfee-GW-Edition 6.8.5 2009.10.21 Java.SMS.J2ME.Kon.I[/B]
Microsoft 1.5101 2009.10.21 -
[B]NOD32 4530 2009.10.21 J2ME/TrojanSMS.Konov.I[/B]
Norman 6.03.02 2009.10.21 -
nProtect 2009.1.8.0 2009.10.21 -
Panda 10.0.2.2 2009.10.20 -
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.21 -
Rising 21.52.24.00 2009.10.21 -
Sophos 4.46.0 2009.10.21 -
Sunbelt 3.2.1858.2 2009.10.21 -
[B]Symantec 1.4.4.12 2009.10.21 Trojan Horse[/B]
TheHacker 6.5.0.2.049 2009.10.20 -
TrendMicro 8.950.0.1094 2009.10.21 -
[B]VBA32 3.12.10.11 2009.10.20 Java.SMSSend.51[/B]
ViRobot 2009.10.21.1999 2009.10.21 -
VirusBuster 4.6.5.0 2009.10.21 -
Дополнительная информация
File size: 165863 bytes
MD5...: dde3f1a5801a53782170e98d09de6d82
SHA1..: c60062b8e19d0d16da1d04fc2e50d06755835c71
SHA256: a2c659a1d2e18a47202de8ba21a7cfe6c089fe448de54925cddda038d40329cb
ssdeep: 3072:O6br4V4QrVYwF3wz/5OGER8EBBucamPMZPAn9lSEZnO4vpkNwdYWPoldFPh<BR>tioah:O6KbVwz/5OlW8gcamP8PAn6aO4vWNwdF<BR>
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set<BR>-
pdfid.: -
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>
trid..: Java Archive (78.3%)<BR>ZIP compressed archive (21.6%)[/CODE]
-
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.22 -
AhnLab-V3 5.0.0.2 2009.10.22 -
AntiVir 7.9.1.44 2009.10.22 -
Antiy-AVL 2.0.3.7 2009.10.22 -
[B]Authentium 5.1.2.4 2009.10.22 W32/FakeAlert.CO.gen!Eldorado [/B]
Avast 4.8.1351.0 2009.10.21 -
AVG 8.5.0.423 2009.10.22 -
BitDefender 7.2 2009.10.22 -
CAT-QuickHeal 10.00 2009.10.22 -
ClamAV 0.94.1 2009.10.22 -
Comodo 2692 2009.10.22 -
DrWeb 5.0.0.12182 2009.10.22 -
eSafe 7.0.17.0 2009.10.22 -
eTrust-Vet 35.1.7079 2009.10.22 -
[B]F-Prot 4.5.1.85 2009.10.22 W32/FakeAlert.CO.gen!Eldorado [/B]
F-Secure 9.0.15370.0 2009.10.22 -
[B]Fortinet 3.120.0.0 2009.10.22 W32/PackFrauLoad.B [/B]
GData 19 2009.10.22 -
Ikarus T3.1.1.72.0 2009.10.22 -
Jiangmin 11.0.800 2009.10.22 -
K7AntiVirus 7.10.877 2009.10.22 -
[B]Kaspersky 7.0.0.125 2009.10.22 Trojan.Win32.FraudPack.xfd [/B]
McAfee 5779 2009.10.22 -
McAfee+Artemis 5779 2009.10.22 -
McAfee-GW-Edition 6.8.5 2009.10.22 -
Microsoft 1.5202 2009.10.22 -
[B]NOD32 4534 2009.10.22 a variant of Win32/Kryptik.AXS[/B]
Norman 6.03.02 2009.10.22 -
nProtect 2009.1.8.0 2009.10.22 -
[B]Panda 10.0.2.2 2009.10.21 Suspicious file [/B]
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.22 -
Rising 21.52.34.00 2009.10.22 -
[B]Sophos 4.46.0 2009.10.22 Mal/Krap-A [/B]
Sunbelt 3.2.1858.2 2009.10.22 -
Symantec 1.4.4.12 2009.10.22 -
TheHacker 6.5.0.2.051 2009.10.22 -
TrendMicro 8.950.0.1094 2009.10.22 -
VBA32 3.12.10.11 2009.10.22 -
ViRobot 2009.10.22.2001 2009.10.22 -
VirusBuster 4.6.5.0 2009.10.22 - [/QUOTE]
Дополнительная информация
File size: 80896 bytes
MD5...: ed9c199c93477c3409bc59cf0406d990
SHA1..: 17fc4d4c9a417f85b0d56946d0b410482b5271ce
SHA256: b5eb7d5528efb6d097407018804f92cd391122189a8acfaf08b557309511a1d6
ssdeep: 768:ir7M+i+4s+rMZBXUeAqb5pk6wI/RDw4pVCugE1rUKZLQzr54+5DS/sIclVF1
/7EM:bwKe1g5e/sIcfH3iWejp2TDH
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x149e
timedatestamp.....: 0x45be331c (Mon Jan 29 17:47:08 2007)
machinetype.......: 0x14c (I386)
( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.437b 0x1000 0x70ff 0x7200 1.39 c8b8d16bd9a5ccb28bec86d8f5516528
.db14 0x9000 0x16d1 0x1800 3.63 552d02418a8d8983529f50fe782bc237
.d1644 0xb000 0x6306e 0xa200 6.55 941f194ab102607226676de5f057e672
.h8hh 0x6f000 0x54c 0x600 3.24 5aa50c373db967e833d4aa85000203f4
.rsrc 0x70000 0x51b 0x600 4.25 6fb0ec0e9b273a2ca256e0880749da5e
( 3 imports )
> kernel32.dll: FormatMessageA, WriteFile, CopyFileExA, GlobalFree, DeleteFileA, GetFileTime, CompareStringA, HeapAlloc, FindClose, FlushFileBuffers, GetFileType, lstrlenA, ExitProcess, GetStdHandle, GetCommandLineA, HeapFree, OpenFile, ReadFile, CopyFileA, GetLastError
> user32.dll: CopyRect, DrawTextW, GetDlgItem, IsWindow, CopyImage, DrawIcon
> advapi32.dll: RegCreateKeyA, RegFlushKey, RegOpenKeyExW, RegGetKeySecurity, RegEnumKeyExA, RegDeleteKeyW
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (35.2%)
Win32 Dynamic Link Library (generic) (31.3%)
Win16/32 Executable Delphi generic (8.5%)
Clipper DOS Executable (8.3%)
Generic Win/DOS Executable (8.2%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.22 -
AhnLab-V3 5.0.0.2 2009.10.22 -
AntiVir 7.9.1.44 2009.10.22 -
Antiy-AVL 2.0.3.7 2009.10.22 -
[B]Authentium 5.1.2.4 2009.10.22 HTML/IFrame.A [/B]
Avast 4.8.1351.0 2009.10.21 -
AVG 8.5.0.423 2009.10.22 -
BitDefender 7.2 2009.10.22 -
CAT-QuickHeal 10.00 2009.10.22 -
ClamAV 0.94.1 2009.10.22 -
Comodo 2692 2009.10.22 -
DrWeb 5.0.0.12182 2009.10.22 -
eSafe 7.0.17.0 2009.10.22 -
eTrust-Vet 35.1.7079 2009.10.22 -
[B]F-Prot 4.5.1.85 2009.10.22 HTML/IFrame.A [/B]
F-Secure 9.0.15370.0 2009.10.22 -
Fortinet 3.120.0.0 2009.10.22 -
GData 19 2009.10.22 -
Ikarus T3.1.1.72.0 2009.10.22 -
Jiangmin 11.0.800 2009.10.22 -
K7AntiVirus 7.10.877 2009.10.22 -
[B]Kaspersky 7.0.0.125 2009.10.22 Trojan-Downloader.JS.Agent.eqy[/B]
McAfee 5779 2009.10.22 -
McAfee+Artemis 5779 2009.10.22 -
McAfee-GW-Edition 6.8.5 2009.10.22 -
Microsoft 1.5202 2009.10.22 -
NOD32 4534 2009.10.22 -
Norman 6.03.02 2009.10.22 -
nProtect 2009.1.8.0 2009.10.22 -
Panda 10.0.2.2 2009.10.21 -
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.22 -
Rising 21.52.34.00 2009.10.22 -
Sophos 4.46.0 2009.10.22 -
Sunbelt 3.2.1858.2 2009.10.22 -
Symantec 1.4.4.12 2009.10.22 -
TheHacker 6.5.0.2.051 2009.10.22 -
TrendMicro 8.950.0.1094 2009.10.22 -
VBA32 3.12.10.11 2009.10.22 -
ViRobot 2009.10.22.2001 2009.10.22 -
VirusBuster 4.6.5.0 2009.10.22 - [/QUOTE]
Дополнительная информация
File size: 841 bytes
MD5...: 0f22408b0bfc1be21b2454f6904cb733
SHA1..: 609cccc6ace4e01a0bf42c47353c1c7a0a19a0df
SHA256: 043309a626d6837f4539274e57645fdb67d4520a85dce77502faf93580d32997
ssdeep: 24:7Vt4ecUqYvDQlRHWvDQRHut4ecUhyiQrHt/rHtVrHjlMa:7ceGYvMRHWvsRHb
enMHtDHtRH6a
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
-
Файл updater.exe получен 2009.10.24 11:16:12 (UTC)
Текущий статус: закончено
Результат: 17/41 (41.47%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.10.24 Trojan.Win32.Orsam!IK
AhnLab-V3 5.0.0.2 2009.10.23 Dropper/Agent.1257984
AntiVir 7.9.1.44 2009.10.23 HEUR/Malware[/B]
Antiy-AVL 2.0.3.7 2009.10.23 -
Authentium 5.1.2.4 2009.10.24 -
[B]Avast 4.8.1351.0 2009.10.24 Win32:Trojan-gen
AVG 8.5.0.423 2009.10.24 Dropper.Agent.OGY
BitDefender 7.2 2009.10.24 Trojan.Generic.2571298[/B]
CAT-QuickHeal 10.00 2009.10.24 -
ClamAV 0.94.1 2009.10.24 -
Comodo 2713 2009.10.24 -
DrWeb 5.0.0.12182 2009.10.24 -
eSafe 7.0.17.0 2009.10.22 -
eTrust-Vet 35.1.7082 2009.10.23 -
F-Prot 4.5.1.85 2009.10.23 -
[B]F-Secure 9.0.15370.0 2009.10.22 Trojan.Generic.2571298[/B]
Fortinet 3.120.0.0 2009.10.24 -
[B]GData 19 2009.10.24 Trojan.Generic.2571298
Ikarus T3.1.1.72.0 2009.10.24 Trojan.Win32.Orsam[/B]
Jiangmin 11.0.800 2009.10.24 -
K7AntiVirus 7.10.878 2009.10.23 -
Kaspersky 7.0.0.125 2009.10.24 -
[B]McAfee 5780 2009.10.23 Generic Qhost!a
McAfee+Artemis 5780 2009.10.23 Generic Qhost!a
McAfee-GW-Edition 6.8.5 2009.10.24 Heuristic.Malware
Microsoft 1.5202 2009.10.24 Trojan:Win32/Orsam!rts
NOD32 4537 2009.10.23 probably a variant of Win32/Qhost[/B]
Norman 6.03.02 2009.10.23 -
nProtect 2009.1.8.0 2009.10.24 -
[B]Panda 10.0.2.2 2009.10.23 Suspicious file[/B]
PCTools 4.4.2.0 2009.10.19 -
[B]Prevx 3.0 2009.10.24 Medium Risk Malware[/B]
Rising 21.52.52.00 2009.10.24 -
Sophos 4.46.0 2009.10.24 -
Sunbelt 3.2.1858.2 2009.10.24 -
Symantec 1.4.4.12 2009.10.24 -
TheHacker 6.5.0.2.051 2009.10.22 -
TrendMicro 8.950.0.1094 2009.10.24 -
[B]VBA32 3.12.10.11 2009.10.23 Trojan-Dropper.Win32.Agent.aywj[/B]
ViRobot 2009.10.23.2003 2009.10.23 -
VirusBuster 4.6.5.0 2009.10.23 -[/QUOTE]
Дополнительная информация
File size: 1259639 bytes
MD5...: 3ebff9fe6b06071e16696b69a0e27302
SHA1..: 195219725c7ca4a0e51d6dcfde30cac89f76f1fb
SHA256: cd5444b675372d63b5dc2cc184d6375b46e52e1969346e4dd201b95fe3998b3d
ssdeep: 24576:6DBNF57Y08KGW5cKISXj4ySTK0SFewDg1jm0zoV+rKU1mXWs:6DD7/crTK
RcOWs
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/cd5444b675372d63b5dc2cc184d6375b46e52e1969346e4dd201b95fe3998b3d-1256382972[/url]
-
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.25 -
AhnLab-V3 5.0.0.2 2009.10.23 -
AntiVir 7.9.1.44 2009.10.23 -
Antiy-AVL 2.0.3.7 2009.10.23 -
Authentium 5.1.2.4 2009.10.24 -
Avast 4.8.1351.0 2009.10.25 -
AVG 8.5.0.423 2009.10.24 -
BitDefender 7.2 2009.10.25 -
CAT-QuickHeal 10.00 2009.10.24 -
ClamAV 0.94.1 2009.10.25 -
Comodo 2722 2009.10.25 -
DrWeb 5.0.0.12182 2009.10.25 -
eSafe 7.0.17.0 2009.10.22 -
eTrust-Vet 35.1.7082 2009.10.23 -
F-Prot 4.5.1.85 2009.10.24 -
Fortinet 3.120.0.0 2009.10.25 -
GData 19 2009.10.25 -
Ikarus T3.1.1.72.0 2009.10.25 -
Jiangmin 11.0.800 2009.10.24 -
K7AntiVirus 7.10.879 2009.10.24 -
Kaspersky 7.0.0.125 2009.10.25 -
McAfee 5781 2009.10.24 -
McAfee+Artemis 5781 2009.10.24 -
McAfee-GW-Edition 6.8.5 2009.10.25 -
Microsoft 1.5202 2009.10.25 -
NOD32 4539 2009.10.24 -
Norman 6.03.02 2009.10.23 -
nProtect 2009.1.8.0 2009.10.25 -
[B]Panda 10.0.2.2 2009.10.25 Suspicious file[/B]
PCTools 4.4.2.0 2009.10.19 -
[B]Prevx 3.0 2009.10.25 Medium Risk Malware Dropper[/B]
Rising 21.52.60.00 2009.10.25 -
Sophos 4.46.0 2009.10.25 -
Sunbelt 3.2.1858.2 2009.10.24 -
Symantec 1.4.4.12 2009.10.25 -
TheHacker 6.5.0.2.053 2009.10.24 -
TrendMicro 8.950.0.1094 2009.10.25 -
VBA32 3.12.10.11 2009.10.23 -
ViRobot 2009.10.23.2003 2009.10.23 -
VirusBuster 4.6.5.0 2009.10.24 - [/QUOTE]
Дополнительная информация
File size: 178688 bytes
MD5...: 4e684c60f21cb796943d501a9cda67bd
SHA1..: e23140c807acfad66cf378131d9ee7f200e691c9
SHA256: 28085b0dccc3fbfa8fcb00180dc0be097333981e90cad8ff8000f066bd3bd85d
ssdeep: 3072:4d2kTgmIRRZgSoIEr5JngwCx9KF5Y5ufCwlWz2W:4d2ogmI+KErzgwCujY4
YiW
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x8066
timedatestamp.....: 0x4607087c (Sun Mar 25 23:40:44 2007)
machinetype.......: 0x14c (I386)
( 8 sections )
name viradd virsiz rawdsiz ntrpy md5
CODE 0x1000 0x80d2 0x8200 2.54 62faec7af3191b4ba7de8060cb301630
DATA 0xa000 0x1707 0x1800 0.02 16feccaa941b4e9d554092507650501b
.edata 0xc000 0x16cc 0x1800 4.23 84db58bfa5f869f4fda0b53f04807ad4
.data 0xe000 0x402fc2 0x1d000 7.30 f550e4c35c4f468a42eaf3060a8744bf
.idata 0x411000 0x158b 0x1600 4.71 6a80ab80f6eacee96f81541b04062734
.init 0x413000 0x99 0x200 0.00 bf619eac0cdf3f68d496ea9344137e8b
.rdata 0x414000 0xa18 0xc00 0.05 6b2cf1a0faa21ba31b10aaa25a895637
.rsrc 0x415000 0xe97 0x1000 5.74 253ea0c3c1fd10eb8267f0a5da9e62d3
( 0 imports )
( 0 exports )
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Win32 Executable Generic (35.2%)
Win32 Dynamic Link Library (generic) (31.3%)
Win16/32 Executable Delphi generic (8.5%)
Clipper DOS Executable (8.3%)
Generic Win/DOS Executable (8.2%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
ThreatExpert info: <a href='http://www.threatexpert.com/report.aspx?md5=4e684c60f21cb796943d501a9cda67bd' target='_blank'>http://www.threatexpert.com/report.aspx?md5=4e684c60f21cb796943d501a9cda67bd</a>
<a href='http://info.prevx.com/aboutprogramtext.asp?PX5=536B18B6009C2A51BA5802C5C2752500E407FA74' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=536B18B6009C2A51BA5802C5C2752500E407FA74</a>
-
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.27 -
AhnLab-V3 5.0.0.2 2009.10.27 -
AntiVir 7.9.1.44 2009.10.27 -
Antiy-AVL 2.0.3.7 2009.10.27 -
Authentium 5.1.2.4 2009.10.27 -
Avast 4.8.1351.0 2009.10.27 -
AVG 8.5.0.423 2009.10.27 -
BitDefender 7.2 2009.10.27 -
CAT-QuickHeal 10.00 2009.10.27 -
ClamAV 0.94.1 2009.10.27 -
Comodo 2748 2009.10.27 -
[B]DrWeb 5.0.0.12182 2009.10.27 Trojan.DownLoad.52785[/B]
[B]eSafe 7.0.17.0 2009.10.27 Suspicious File [/B]
eTrust-Vet 35.1.7086 2009.10.27 -
F-Prot 4.5.1.85 2009.10.27 -
F-Secure 9.0.15370.0 2009.10.27 -
Fortinet 3.120.0.0 2009.10.27 -
GData 19 2009.10.27 -
Ikarus T3.1.1.72.0 2009.10.27 -
Jiangmin 11.0.800 2009.10.26 -
K7AntiVirus 7.10.881 2009.10.27 -
Kaspersky 7.0.0.125 2009.10.27 -
McAfee 5784 2009.10.27 -
McAfee+Artemis 5784 2009.10.27 -
McAfee-GW-Edition 6.8.5 2009.10.27 -
Microsoft 1.5202 2009.10.27 -
NOD32 4549 2009.10.27 -
Norman 6.03.02 2009.10.27 -
nProtect 2009.1.8.0 2009.10.27 -
[B]Panda 10.0.2.2 2009.10.27 Suspicious file[/B]
PCTools 4.4.2.0 2009.10.19 -
[B]Prevx 3.0 2009.10.27 Medium Risk Malware[/B]
Rising 21.53.13.00 2009.10.27 -
Sophos 4.46.0 2009.10.27 -
Sunbelt 3.2.1858.2 2009.10.27 -
Symantec 1.4.4.12 2009.10.27 -
TheHacker 6.5.0.2.054 2009.10.26 -
TrendMicro 8.950.0.1094 2009.10.27 -
VBA32 3.12.10.11 2009.10.27 -
ViRobot 2009.10.27.2007 2009.10.27 -
VirusBuster 4.6.5.0 2009.10.26 - [/QUOTE]
Дополнительная информация
File size: 195584 bytes
MD5...: b4bef57c47b839983c1c693acfe056d3
SHA1..: cb65d96409d7e677e15897abb15100c941246694
SHA256: a5da97207835eb1d858fa1ed3cecef7ca187cf4c480cf5ec1896f0fec6725dfb
ssdeep: 3072:790QOcR+CBRz1nE5V4DLGjngEk7lX9jEkmx:79Ek+2U/4+Tghht
PEiD..: -
PEInfo: PE Structure information
-
Файл foto.jar получен 2009.10.28 15:39:04 (UTC)
Текущий статус: Загрузка ... в очереди ожидание проверка закончено НЕ НАЙДЕНО ОСТАНОВЛЕНО
Результат: [COLOR=red]13[/COLOR]/41 (31.71%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.412009.10.28-
AhnLab-V3 5.0.0.22009.10.27-
[B]AntiVir 7.9.1.442009.10.28JAVA/SMS.J2ME.Age.D
Antiy-AVL 2.0.3.72009.10.27Trojan/J2ME.Agent[/B]
Authentium 5.1.2.42009.10.28-
Avast 4.8.1351.02009.10.28-
AVG 8.5.0.4232009.10.28-
[B]BitDefender 7.22009.10.28Trojan.Generic.IS.610206[/B]
CAT-QuickHeal 10.002009.10.28-
ClamAV 0.94.12009.10.28-
[B]Comodo 27572009.10.28TrojWare.J2ME.SMS.Agent.d
DrWeb 5.0.0.121822009.10.28Java.SMSSend.67[/B]
eSafe 7.0.17.02009.10.28-
eTrust-Vet 35.1.70872009.10.28-
F-Prot 4.5.1.852009.10.27-
[B]F-Secure 9.0.15370.02009.10.27Trojan.Generic.IS.610206[/B]
Fortinet 3.120.0.02009.10.28-
[B]GData 192009.10.28Trojan.Generic.IS.610206
Ikarus T3.1.1.72.02009.10.28Trojan-SMS[/B]
Jiangmin 11.0.8002009.10.26-
K7AntiVirus 7.10.8812009.10.27-
[B]Kaspersky 7.0.0.1252009.10.28Trojan-SMS.J2ME.Agent.d[/B]
McAfee 57842009.10.27-
McAfee+Artemis 57842009.10.27-
[B]McAfee-GW-Edition 6.8.52009.10.28Java.SMS.J2ME.Age.D[/B]
Microsoft 1.52022009.10.28-
[B]NOD32 45522009.10.28J2ME/TrojanSMS.Agent.D[/B]
Norman 6.03.022009.10.27-
nProtect 2009.1.8.02009.10.28-
Panda 10.0.2.22009.10.27-
PCTools 4.4.2.02009.10.19-
Prevx 3.02009.10.28-
Rising 21.53.24.002009.10.28-
Sophos 4.46.02009.10.28-
Sunbelt 3.2.1858.22009.10.27-
[B]Symantec 1.4.4.122009.10.28Trojan Horse[/B]
TheHacker 6.5.0.2.0552009.10.27-
[B]TrendMicro 8.950.0.10942009.10.28TROJ_AGENT.AWQW[/B]
VBA32 3.12.10.112009.10.27-
ViRobot 2009.10.28.20092009.10.28-
VirusBuster 4.6.5.02009.10.28-[/QUOTE]
Дополнительная информация
File size: 68433 bytes
MD5...: 5c894045acb56ff7f0cd9c81141f799f
SHA1..: 116efd2f51a4194b1eb4a7f2809894fdbfe6dd31
SHA256: 3efcf88915a0581a71d53b976020839c007bb1a817e20c3c763c1d9cf3fd7324
ssdeep: 1536:Abx4kPpu0pEU3/4+vat5OATBgM4bPxhRL+ngk5NS+uxo/4qNpaW5M/:I4kP
pu0aU3/47O7BbPnRLf+iy4qNXs
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
[QUOTE]
[B]a-squared 4.5.0.41 2009.10.29 Riskware.Win32.VBInject!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.29 -
[B]AntiVir 7.9.1.50 2009.10.28 TR/Dropper.Gen[/B]
Antiy-AVL 2.0.3.7 2009.10.27 -
Authentium 5.1.2.4 2009.10.28 -
Avast 4.8.1351.0 2009.10.28 -
AVG 8.5.0.423 2009.10.28 -
BitDefender 7.2 2009.10.29 -
CAT-QuickHeal 10.00 2009.10.29 -
ClamAV 0.94.1 2009.10.29 -
Comodo 2764 2009.10.29 -
DrWeb 5.0.0.12182 2009.10.28 -
eSafe 7.0.17.0 2009.10.28 -
eTrust-Vet 35.1.7088 2009.10.28 -
F-Prot 4.5.1.85 2009.10.28 -
F-Secure 9.0.15370.0 2009.10.27 -
Fortinet 3.120.0.0 2009.10.28 -
GData 19 2009.10.29 -
[B]Ikarus T3.1.1.72.0 2009.10.29 VirTool.Win32.VBInject[/B]
Jiangmin 11.0.800 2009.10.26 -
K7AntiVirus 7.10.881 2009.10.27 -
[B]Kaspersky 7.0.0.125 2009.10.29 Net-Worm.Win32.Kolab.eol[/B]
McAfee 5785 2009.10.28 -
McAfee+Artemis 5785 2009.10.28 -
[B]McAfee-GW-Edition 6.8.5 2009.10.29 Trojan.Dropper.Gen[/B]
Microsoft 1.5202 2009.10.29 -
NOD32 4553 2009.10.28 -
Norman 6.03.02 2009.10.28 -
nProtect 2009.1.8.0 2009.10.28 -
Panda 10.0.2.2 2009.10.28 -
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.29 -
Rising 21.53.30.00 2009.10.29 -
Sophos 4.46.0 2009.10.29 -
Sunbelt 3.2.1858.2 2009.10.27 -
Symantec 1.4.4.12 2009.10.29 -
TheHacker 6.5.0.2.056 2009.10.28 -
TrendMicro 8.950.0.1094 2009.10.29 -
VBA32 3.12.10.11 2009.10.27 -
ViRobot 2009.10.29.2010 2009.10.29 -
VirusBuster 4.6.5.0 2009.10.28 -
[/QUOTE]
Дополнительная информация
File size: 102400 bytes
MD5...: 50be99f9d77c6188aaab8bd4b0a17c53
SHA1..: 667161e4e77bb9a5d3aeb113f3d06ac3ea5e6067
SHA256: 9a3fc358d9b0c686df879a3c592d11997ca938256a1e30e69c29cbdfc20c32fc
ssdeep: 3072:bw0cAoMKQmS2sOTrQzOWnpTt7Fd5fiWBk8:bwrQmSAMCWFnfiWB
PEiD..: -
PEInfo: PE Structure information
-
Это находится у учащихся института МИЭТ на ноутах, которые ходят на платные курсы по компьютерной грамотности, так что ль называется...
Файл 1111111.exe получен 2009.10.29 06:50:28 (UTC)
Текущий статус: закончено
Результат: 41/41 (100.00%)
[QUOTE][B]a-squared 4.5.0.41 2009.10.29 Trojan-Downloader.Win32.VB!IK
AhnLab-V3 5.0.0.2 2009.10.29 Win-Trojan/Xema.variant
AntiVir 7.9.1.50 2009.10.28 TR/Dldr.Au.15515591
Antiy-AVL 2.0.3.7 2009.10.27 Trojan/Win32.VB
Authentium 5.1.2.4 2009.10.28 W32/Autorun.BQ
Avast 4.8.1351.0 2009.10.28 Win32:Trojan-gen
AVG 8.5.0.423 2009.10.28 BackDoor.Ircbot.FIL
BitDefender 7.2 2009.10.29 Worm.Generic.80334
CAT-QuickHeal 10.00 2009.10.29 Worm.Regul.d
ClamAV 0.94.1 2009.10.29 Trojan.Downloader-56692
Comodo 2765 2009.10.29 UnclassifiedMalware
DrWeb 5.0.0.12182 2009.10.28 Win32.HLLW.Autoruner.2697
eSafe 7.0.17.0 2009.10.28 Win32.VB.hoa
eTrust-Vet 35.1.7088 2009.10.28 Win32/SillyAutorun.PW
F-Prot 4.5.1.85 2009.10.28 W32/Autorun.BQ
F-Secure 9.0.15370.0 2009.10.27 Worm.Generic.80334
Fortinet 3.120.0.0 2009.10.28 W32/VB.HOA!tr.dldr
GData 19 2009.10.29 Worm.Generic.80334
Ikarus T3.1.1.72.0 2009.10.29 Trojan-Downloader.Win32.VB
Jiangmin 11.0.800 2009.10.26 TrojanDownloader.VB.ade
K7AntiVirus 7.10.881 2009.10.27 Trojan-Downloader.Win32.VB
Kaspersky 7.0.0.125 2009.10.29 Trojan-Downloader.Win32.VB.hoa
McAfee 5785 2009.10.28 W32/Autorun.worm.dq.gen
McAfee+Artemis 5785 2009.10.28 W32/Autorun.worm.dq.gen
McAfee-GW-Edition 6.8.5 2009.10.29 Heuristic.LooksLike.Win32.Suspicious.I
Microsoft 1.5202 2009.10.29 TrojanDropper:Win32/Silly_P2P.B
NOD32 4553 2009.10.28 Win32/FlyStudio.NDK
Norman 6.03.02 2009.10.28 W32/Lineage.BLGD
nProtect 2009.1.8.0 2009.10.28 Trojan-Downloader/W32.Agent.1515591.B
Panda 10.0.2.2 2009.10.28 W32/Winko.AJ.worm
PCTools 4.4.2.0 2009.10.19 Trojan-Downloader.VB!sd6
Prevx 3.0 2009.10.29 High Risk Worm
Rising 21.53.30.00 2009.10.29 Worm.Win32.Agent.xn
Sophos 4.46.0 2009.10.29 W32/Autorun-QB
Sunbelt 3.2.1858.2 2009.10.27 Trojan.Win32.Generic!BT
Symantec 1.4.4.12 2009.10.29 Trojan Horse
TheHacker 6.5.0.2.056 2009.10.28 Trojan/Downloader.VB.hoa
TrendMicro 8.950.0.1094 2009.10.29 BKDR_IRCBOT.BEB
VBA32 3.12.10.11 2009.10.27 Trojan-Downloader.Win32.VB.idt
ViRobot 2009.10.29.2010 2009.10.29 Trojan.Win32.Downloader.1515591[/B]
[B]VirusBuster 4.6.5.0 2009.10.28 Trojan.DL.VB.EJKH[/B][/QUOTE]
Дополнительная информация
File size: 1515591 bytes
MD5 : 5c4785dad152da6e1dd6a8b5055ce894
SHA1 : 23a28acc2a8cb4953c5633ef249bb63347386021
SHA256: 1b9a0b2b500f7bcec27c43f31e33a0e4b34deaf9006396d49814a85a52e4688e
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x117A
timedatestamp.....: 0x59BFFA3 (Mon Dec 25 06:33:23 1972)
machinetype.......: 0x14C (Intel I386)
ThreatExpert: [url]http://www.threatexpert.com/report.aspx?md5=5c4785dad152da6e1dd6a8b5055ce894[/url]
ssdeep: 24576:cUas++rzskmM0YjWoddnVCY8mALt3E2jLyfx97iR3v+5knoL+KOKQ+x:6p+rIij3nIyWt3E1fb7iHns+zE
Prevx Info: [url]http://info.prevx.com/aboutprogramtext.asp?PX5=BF07F19347717CED205A17B7487C65001033E3A0[/url]
PEiD : -
CWSandbox: [url]http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=5c4785dad152da6e1dd6a8b5055ce894[/url]
RDS : NSRL Reference Data Set
-
-
[QUOTE]a-squared 4.5.0.41 2009.10.30 -
AhnLab-V3 5.0.0.2 2009.10.29 -
AntiVir 7.9.1.50 2009.10.29 -
Antiy-AVL 2.0.3.7 2009.10.27 -
Authentium 5.1.2.4 2009.10.29 -
Avast 4.8.1351.0 2009.10.29 -
AVG 8.5.0.423 2009.10.29 -
BitDefender 7.2 2009.10.30 -
CAT-QuickHeal 10.00 2009.10.30 -
ClamAV 0.94.1 2009.10.30 -
Comodo 2774 2009.10.30 -
DrWeb 5.0.0.12182 2009.10.29 -
eSafe 7.0.17.0 2009.10.29 -
eTrust-Vet 35.1.7093 2009.10.30 -
F-Prot 4.5.1.85 2009.10.29 -
F-Secure 9.0.15370.0 2009.10.27 -
Fortinet 3.120.0.0 2009.10.29 -
GData 19 2009.10.30 -
Ikarus T3.1.1.72.0 2009.10.30 -
Jiangmin 11.0.800 2009.10.30 -
K7AntiVirus 7.10.883 2009.10.29 -
[B]Kaspersky 7.0.0.125 2009.10.30 Trojan-SMS.J2ME.Agent.h[/B]
McAfee 5786 2009.10.29 -
McAfee+Artemis 5786 2009.10.29 -
McAfee-GW-Edition 6.8.5 2009.10.30 -
Microsoft 1.5202 2009.10.30 -
NOD32 4556 2009.10.29 -
Norman 6.03.02 2009.10.29 -
nProtect 2009.1.8.0 2009.10.29 -
Panda 10.0.2.2 2009.10.29 -
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.30 -
Rising 21.53.41.00 2009.10.30 -
Sophos 4.47.0 2009.10.30 -
Sunbelt 3.2.1858.2 2009.10.30 -
Symantec 1.4.4.12 2009.10.30 -
TheHacker 6.5.0.2.056 2009.10.28 -
TrendMicro 8.950.0.1094 2009.10.30 -
VBA32 3.12.10.11 2009.10.29 -
ViRobot 2009.10.30.2012 2009.10.30 -
VirusBuster 4.6.5.0 2009.10.29 -
[/QUOTE]
Дополнительная информация
File size: 171870 bytes
MD5...: 35c5a75dca3e76bbab6c9a9a2d131aa5
SHA1..: f3119d7f485da7cac8f3b51199fcf2345108dbcc
SHA256: d2c4f6cd8b45155761c89f6a7c597ee44163cc593fc802cd5272eb8bd7107244
ssdeep: 3072:rSgivNIP4eDlJLоf4IoXRGKMN4VsFQJApVicWg70fZtDz6ZKt0bOGW0:rSgs
sTJJkIMRKDWE0fZt6+EO8
-
Файл dhl_package_label_5dd96.exe получен 2009.10.30 11:49:37 (UTC)
Текущий статус: закончено
Результат: 31/41 (75.61%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.10.30 Trojan.Win32.Bredolab!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.30 -
[B]AntiVir 7.9.1.50 2009.10.30 TR/Agent.W.727
Antiy-AVL 2.0.3.7 2009.10.30 Packed/Win32.Krap.gen
Authentium 5.1.2.4 2009.10.30 W32/Bredolab!Generic
Avast 4.8.1351.0 2009.10.29 Win32:Bredolab-AP
AVG 8.5.0.423 2009.10.30 Packed.Revolt
BitDefender 7.2 2009.10.30 Trojan.Downloader.Bredolab.AZ[/B]
CAT-QuickHeal 10.00 2009.10.30 -
[B]ClamAV 0.94.1 2009.10.30 Trojan.Bredolab-421[/B]
Comodo 2779 2009.10.30 -
[B]DrWeb 5.0.0.12182 2009.10.29 Trojan.BhoSpy.97
eSafe 7.0.17.0 2009.10.29 Win32.Downloader.Bre
eTrust-Vet 35.1.7093 2009.10.30 Win32/Bredolab_B!generic
F-Prot 4.5.1.85 2009.10.29 W32/Bredolab!Generic
F-Secure 9.0.15370.0 2009.10.27 Trojan.Downloader.Bredolab.AZ[/B]
Fortinet 3.120.0.0 2009.10.30 -
[B]GData 19 2009.10.30 Trojan.Downloader.Bredolab.AZ
Ikarus T3.1.1.72.0 2009.10.30 Trojan.Win32.Bredolab[/B]
Jiangmin 11.0.800 2009.10.30 -
[B]K7AntiVirus 7.10.883 2009.10.29 Packed.Win32.Krap.w
Kaspersky 7.0.0.125 2009.10.30 Packed.Win32.Krap.w
McAfee 5786 2009.10.29 Bredolab.gen.a
McAfee+Artemis 5786 2009.10.29 Bredolab.gen.a
McAfee-GW-Edition 6.8.5 2009.10.30 Trojan.Agent.W.727
Microsoft 1.5202 2009.10.30 Trojan:Win32/Glecia.gen!A
NOD32 4557 2009.10.30 a variant of Win32/Kryptik.AYV
Norman 6.03.02 2009.10.29 W32/Obfuscated.D2!genr
nProtect 2009.1.8.0 2009.10.30 Trojan/W32.Krap.67584.BI
Panda 10.0.2.2 2009.10.30 Trj/Banker.LZH
PCTools 7.0.3.5 2009.10.30 Trojan.Bredolab[/B]
Prevx 3.0 2009.10.30 -
Rising 21.53.43.00 2009.10.30 -
[B]Sophos 4.47.0 2009.10.30 Mal/Bredo-A
Sunbelt 3.2.1858.2 2009.10.30 Trojan.Win32.Bredolab.Gen.1 (v)
Symantec 1.4.4.12 2009.10.30 Trojan.Bredolab!gen3[/B]
TheHacker 6.5.0.2.056 2009.10.28 -
[B]TrendMicro 8.950.0.1094 2009.10.30 TROJ_BREDLAB.SMF[/B]
VBA32 3.12.10.11 2009.10.29 -
ViRobot 2009.10.30.2013 2009.10.30 -
VirusBuster 4.6.5.0 2009.10.29 Trojan.Agent.PHLR[/QUOTE]
Дополнительная информация
File size: 67584 bytes
MD5...: 4f1e553b74b7cb2c76f1f0d5fb79c0d5
SHA1..: dbf52159373e0648e3a46c6ebc4691e6b9175a47
SHA256: 76b389021785dd97d15b7146f9cacf521ca5e183519032fed4933fdf0a644f97
ssdeep: 1536:nCotyPNBEmRjU12VYYL1t62f4fOPyG/O/9KAo+oSm8l6cDPK+VWq:nCagAm
Rj82VYYL1tf4fOP3y9Kp+Lm8lr
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/76b389021785dd97d15b7146f9cacf521ca5e183519032fed4933fdf0a644f97-1256903377[/url]
Файл dhl_package_label_99dce.exe получен 2009.10.30 11:49:41 (UTC)
Текущий статус: закончено
Результат: 31/41 (75.61%)
Антивирус Версия Обновление Результат
[QUOTE][B]a-squared 4.5.0.41 2009.10.30 Virus.Win32.Bredolab!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.30 -
[B]AntiVir 7.9.1.50 2009.10.30 TR/PCK.Krap.W.1693
Antiy-AVL 2.0.3.7 2009.10.30 Packed/Win32.Krap
Authentium 5.1.2.4 2009.10.30 W32/Bredolab!Generic
Avast 4.8.1351.0 2009.10.29 Win32:Bredolab-AP
AVG 8.5.0.423 2009.10.30 Packed.Revolt
BitDefender 7.2 2009.10.30 Trojan.Downloader.Bredolab.AZ
CAT-QuickHeal 10.00 2009.10.30 Win32.Packed.Krap.w.4[/B]
ClamAV 0.94.1 2009.10.30 -
Comodo 2779 2009.10.30 -
DrWeb 5.0.0.12182 2009.10.29 -
[B]eSafe 7.0.17.0 2009.10.29 Win32.DownloaderBred
eTrust-Vet 35.1.7093 2009.10.30 Win32/Bredolab_B!generic
F-Prot 4.5.1.85 2009.10.29 W32/Bredolab!Generic
F-Secure 9.0.15370.0 2009.10.27 Trojan-Downloader:W32/Bredolab.gen!C
Fortinet 3.120.0.0 2009.10.30 W32/Krap.AAF0!tr.dldr
GData 19 2009.10.30 Trojan.Downloader.Bredolab.AZ
Ikarus T3.1.1.72.0 2009.10.30 Virus.Win32.Bredolab
Jiangmin 11.0.800 2009.10.30 Packed.Krap.zyr
K7AntiVirus 7.10.883 2009.10.29 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.10.30 Packed.Win32.Krap.w
McAfee 5786 2009.10.29 Bredolab.gen.a
McAfee+Artemis 5786 2009.10.29 Bredolab.gen.a
McAfee-GW-Edition 6.8.5 2009.10.30 Heuristic.LooksLike.Win32.NewMalware.H
Microsoft 1.5202 2009.10.30 Trojan:Win32/Glecia.gen!A
NOD32 4557 2009.10.30 a variant of Win32/Kryptik.AVZ
Norman 6.03.02 2009.10.29 W32/Obfuscated.D2!genr[/B]
nProtect 2009.1.8.0 2009.10.30 -
[B]Panda 10.0.2.2 2009.10.30 Trj/Sinowal.WPG
PCTools 7.0.3.5 2009.10.30 Trojan.Bredolab[/B]
Prevx 3.0 2009.10.30 -
Rising 21.53.43.00 2009.10.30 -
[B]Sophos 4.47.0 2009.10.30 Mal/Bredo-A
Sunbelt 3.2.1858.2 2009.10.30 Trojan.Win32.Bredolab.Gen.1 (v)
Symantec 1.4.4.12 2009.10.30 Trojan.Bredolab[/B]
TheHacker 6.5.0.2.056 2009.10.28 -
[B]TrendMicro 8.950.0.1094 2009.10.30 TROJ_BREDLAB.SMF[/B]
VBA32 3.12.10.11 2009.10.29 -
ViRobot 2009.10.30.2013 2009.10.30 -
[B]VirusBuster 4.6.5.0 2009.10.29 Trojan.Bredolab.Gen!Pac[/B]
[/QUOTE]
Дополнительная информация
File size: 66560 bytes
MD5...: aac50f2825ebaeea02b496c47775a192
SHA1..: df56689ae2df8f52fbee860789c2f29366e978c7
SHA256: bbf62d9ed9374538f5c4b410f7982dfb3927578e11af7f1097985043d5e1e05e
ssdeep: 1536:VBr58f8Bk9hCuKMpGQ0jvOx0ij2c8v3rRjveQMAIVnRnb:VhBkIqGQ0jvOx
kc8v3NmH7
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/bbf62d9ed9374538f5c4b410f7982dfb3927578e11af7f1097985043d5e1e05e-1256903381[/url]
-
File foto20.scr received on 2009.10.30 22:06:43 (UTC)
Result: 6/41 (14.64%)
[QUOTE]a-squared 4.5.0.41 2009.10.30 -
AhnLab-V3 5.0.0.2 2009.10.30 -
AntiVir 7.9.1.53 2009.10.30 -
Antiy-AVL 2.0.3.7 2009.10.30 -
Authentium 5.1.2.4 2009.10.30 -
Avast 4.8.1351.0 2009.10.30 -
AVG 8.5.0.423 2009.10.30 -
BitDefender 7.2 2009.10.30 -
CAT-QuickHeal 10.00 2009.10.30 -
ClamAV 0.94.1 2009.10.30 -
Comodo 2780 2009.10.30 -
[B]DrWeb 5.0.0.12182 2009.10.30 Trojan.Packed.12454[/B]
eSafe 7.0.17.0 2009.10.29 -
eTrust-Vet 35.1.7094 2009.10.30 -
F-Prot 4.5.1.85 2009.10.30 -
F-Secure 9.0.15370.0 2009.10.30 -
Fortinet 3.120.0.0 2009.10.30 -
GData 19 2009.10.30 -
Ikarus T3.1.1.72.0 2009.10.30 -
Jiangmin 11.0.800 2009.10.30 -
K7AntiVirus 7.10.884 2009.10.30 -
[B]Kaspersky 7.0.0.125 2009.10.30 Trojan.Win32.Buzus.cksw[/B]
McAfee 5787 2009.10.30 -
[B]McAfee+Artemis 5787 2009.10.30 Artemis!70089C1FF755[/B]
[B]McAfee-GW-Edition 6.8.5 2009.10.30 Heuristic.LooksLike.Win32.Suspicious.B!92[/B]
[B]Microsoft 1.5202 2009.10.30 VirTool:Win32/Obfuscator.GZ[/B]
NOD32 4559 2009.10.30 -
Norman 6.03.02 2009.10.30 -
nProtect 2009.1.8.0 2009.10.30 -
Panda 10.0.2.2 2009.10.30 -
PCTools 7.0.3.5 2009.10.30 -
Prevx 3.0 2009.10.30 -
Rising 21.53.43.00 2009.10.30 -
[B]Sophos 4.47.0 2009.10.30 Mal/DelpDrp-C[/B]
Sunbelt 3.2.1858.2 2009.10.30 -
Symantec 1.4.4.12 2009.10.30 -
TheHacker 6.5.0.2.056 2009.10.28 -
TrendMicro 8.950.0.1094 2009.10.30 -
VBA32 3.12.10.11 2009.10.30 -
ViRobot 2009.10.30.2013 2009.10.30 -
VirusBuster 4.6.5.0 2009.10.30 -[/QUOTE]
[url]http://www.virustotal.com/analisis/cb463ae08131eb1c093665f8ff06db77cb8eebc754aaa0c783118ba391deb589-1256940403[/url]
-
Файл avz00002.dta получен 2009.10.31 00:07:25 (UTC)
Текущий статус: закончено
Результат: 5/41 (12.2%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.10.30 Trojan.Rootkit!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.30 -
AntiVir 7.9.1.53 2009.10.30 -
Antiy-AVL 2.0.3.7 2009.10.30 -
Authentium 5.1.2.4 2009.10.30 -
Avast 4.8.1351.0 2009.10.30 -
AVG 8.5.0.423 2009.10.30 -
BitDefender 7.2 2009.10.30 -
[B]CAT-QuickHeal 10.00 2009.10.30 Trojan.Agent.IRC[/B]
ClamAV 0.94.1 2009.10.30 -
Comodo 2780 2009.10.30 -
DrWeb 5.0.0.12182 2009.10.30 -
eSafe 7.0.17.0 2009.10.29 -
eTrust-Vet 35.1.7094 2009.10.30 -
F-Prot 4.5.1.85 2009.10.30 -
F-Secure 9.0.15370.0 2009.10.30 -
Fortinet 3.120.0.0 2009.10.30 -
GData 19 2009.10.30 -
[B]Ikarus T3.1.1.72.0 2009.10.30 Trojan.Rootkit
Jiangmin 11.0.800 2009.10.30 Rootkit.Agent.of[/B]
K7AntiVirus 7.10.884 2009.10.30 -
Kaspersky 7.0.0.125 2009.10.31 -
McAfee 5787 2009.10.30 -
[B]McAfee+Artemis 5787 2009.10.30 Artemis!4F207BE27704[/B]
McAfee-GW-Edition 6.8.5 2009.10.30 -
Microsoft 1.5202 2009.10.30 -
NOD32 4559 2009.10.30 -
Norman 6.03.02 2009.10.30 -
nProtect 2009.1.8.0 2009.10.30 -
Panda 10.0.2.2 2009.10.30 -
PCTools 7.0.3.5 2009.10.30 -
Prevx 3.0 2009.10.31 -
Rising 21.53.43.00 2009.10.30 -
Sophos 4.47.0 2009.10.30 -
Sunbelt 3.2.1858.2 2009.10.30 -
Symantec 1.4.4.12 2009.10.31 -
TheHacker 6.5.0.2.056 2009.10.28 -
TrendMicro 8.950.0.1094 2009.10.30 -
VBA32 3.12.10.11 2009.10.30 -
ViRobot 2009.10.30.2013 2009.10.30 -
VirusBuster 4.6.5.0 2009.10.30 -[/QUOTE]
Дополнительная информация
File size: 67712 bytes
MD5...: 4f207be27704d0ea8f77064156cc8f98
SHA1..: bfd1b10238e6aa522c803a455ee4ca2b71480722
SHA256: 8b3b66db92855f8d86073c39bfd2bd7798318d69a4342d8edc3645f0bf87cedc
ssdeep: 1536:ZipuJj4H2eVCP+9L1ZMcLTF1mE5GCvHciBo2+5Ze+:wQJAVCP+9BBTzLACP
ci+2Ge+
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/8b3b66db92855f8d86073c39bfd2bd7798318d69a4342d8edc3645f0bf87cedc-1256947645[/url]
Файл avz00001.dta получен 2009.10.31 00:07:04 (UTC)
Текущий статус: закончено
Результат: 5/41 (12.2%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.10.30 -
AhnLab-V3 5.0.0.2 2009.10.30 -
AntiVir 7.9.1.53 2009.10.30 -
Antiy-AVL 2.0.3.7 2009.10.30 -
Authentium 5.1.2.4 2009.10.30 -
Avast 4.8.1351.0 2009.10.30 -
[B]AVG 8.5.0.423 2009.10.30 SHeur2.BORC[/B]
BitDefender 7.2 2009.10.30 -
[B]CAT-QuickHeal 10.00 2009.10.30 (Suspicious) - DNAScan[/B]
ClamAV 0.94.1 2009.10.30 -
Comodo 2780 2009.10.30 -
[B]DrWeb 5.0.0.12182 2009.10.30 Trojan.Botnetlog.11[/B]
eSafe 7.0.17.0 2009.10.29 -
eTrust-Vet 35.1.7094 2009.10.30 -
F-Prot 4.5.1.85 2009.10.30 -
F-Secure 9.0.15370.0 2009.10.30 -
Fortinet 3.120.0.0 2009.10.30 -
GData 19 2009.10.30 -
Ikarus T3.1.1.72.0 2009.10.30 -
Jiangmin 11.0.800 2009.10.30 -
K7AntiVirus 7.10.884 2009.10.30 -
Kaspersky 7.0.0.125 2009.10.31 -
McAfee 5787 2009.10.30 -
McAfee+Artemis 5787 2009.10.30 -
McAfee-GW-Edition 6.8.5 2009.10.30 -
Microsoft 1.5202 2009.10.30 -
NOD32 4559 2009.10.30 -
Norman 6.03.02 2009.10.30 -
nProtect 2009.1.8.0 2009.10.30 -
[B]Panda 10.0.2.2 2009.10.30 Suspicious file[/B]
PCTools 7.0.3.5 2009.10.30 -
Prevx 3.0 2009.10.31 -
Rising 21.53.43.00 2009.10.30 -
Sophos 4.47.0 2009.10.30 -
Sunbelt 3.2.1858.2 2009.10.30 -
Symantec 1.4.4.12 2009.10.31 -
TheHacker 6.5.0.2.056 2009.10.28 -
[B]TrendMicro 8.950.0.1094 2009.10.30 WORM_PKOOBF.SM[/B]
VBA32 3.12.10.11 2009.10.30 -
ViRobot 2009.10.30.2013 2009.10.30 -
VirusBuster 4.6.5.0 2009.10.30 -[/QUOTE]
Дополнительная информация
File size: 32000 bytes
MD5...: 9f1525d158ceb6c548e961f34e2b2c02
SHA1..: a4193b05bbead4eab9a8740b5a8aad58cb9d9502
SHA256: 68012733ee9fa5c86587d64c0626332d8065bc50b6220662d97e9c37ddb2fc11
ssdeep: 768:qM7L35+UpamFwYCTrS6BGZl/kxFMbhJLq9tN4aN/bEfVSbH4:BJ+NmFwPXS6
BGDOChFq97jVb4
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/68012733ee9fa5c86587d64c0626332d8065bc50b6220662d97e9c37ddb2fc11-1256947624[/url]
Файл avz00003.dta получен 2009.10.31 00:08:46 (UTC)
Текущий статус: закончено
Результат: 13/41 (31.71%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.10.30 Generic.Trojan.UserStartup!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.30 -
AntiVir 7.9.1.53 2009.10.30 -
Antiy-AVL 2.0.3.7 2009.10.30 -
Authentium 5.1.2.4 2009.10.30 -
Avast 4.8.1351.0 2009.10.30 -
AVG 8.5.0.423 2009.10.30 -
[B]BitDefender 7.2 2009.10.30 BehavesLike:Trojan.UserStartup[/B]
CAT-QuickHeal 10.00 2009.10.30 -
ClamAV 0.94.1 2009.10.30 -
Comodo 2780 2009.10.30 -
[B]DrWeb 5.0.0.12182 2009.10.30 Trojan.Winlock.412
eSafe 7.0.17.0 2009.10.29 Win32.BehavesLikeUse[/B]
eTrust-Vet 35.1.7094 2009.10.30 -
F-Prot 4.5.1.85 2009.10.30 -
[B]F-Secure 9.0.15370.0 2009.10.30 BehavesLike:Trojan.UserStartup
Fortinet 3.120.0.0 2009.10.30 W32/Agent.DAPB!tr
GData 19 2009.10.30 BehavesLike:Trojan.UserStartup
Ikarus T3.1.1.72.0 2009.10.30 Generic.Trojan.UserStartup[/B]
Jiangmin 11.0.800 2009.10.30 -
K7AntiVirus 7.10.884 2009.10.30 -
[B]Kaspersky 7.0.0.125 2009.10.31 Trojan.Win32.Agent.dapb[/B]
McAfee 5787 2009.10.30 -
[B]McAfee+Artemis 5787 2009.10.30 Artemis!01DF831C4BA8
McAfee-GW-Edition 6.8.5 2009.10.30 Heuristic.BehavesLike.Win32.Suspicious.H[/B]
Microsoft 1.5202 2009.10.30 -
NOD32 4559 2009.10.30 -
[B]Norman 6.03.02 2009.10.30 W32/Malware.JQEZ[/B]
nProtect 2009.1.8.0 2009.10.30 -
[B]Panda 10.0.2.2 2009.10.30 Suspicious file[/B]
PCTools 7.0.3.5 2009.10.30 -
Prevx 3.0 2009.10.31 -
Rising 21.53.43.00 2009.10.30 -
Sophos 4.47.0 2009.10.30 -
Sunbelt 3.2.1858.2 2009.10.30 -
Symantec 1.4.4.12 2009.10.31 -
TheHacker 6.5.0.2.056 2009.10.28 -
TrendMicro 8.950.0.1094 2009.10.30 -
VBA32 3.12.10.11 2009.10.30 -
ViRobot 2009.10.30.2013 2009.10.30 -
VirusBuster 4.6.5.0 2009.10.30 -[/QUOTE]
Дополнительная информация
File size: 96256 bytes
MD5...: 01df831c4ba88770e5ddd70787de12d1
SHA1..: 346e65cbd22e2485ef19d69694db5aaf79f37c1c
SHA256: 161602e97601d5426f82a613fe590b8669fd314faaf6514f46a26a7e88ff6a94
ssdeep: 1536:02/DfwRA89E/+Ht0A3bLiXu+o87vYPawnmU+1uz9HQ2bxOCnbEkPJQH3gOt
0:02/DfwR19UUKuEaVnmHAHbvJQH3gOt0
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/161602e97601d5426f82a613fe590b8669fd314faaf6514f46a26a7e88ff6a94-1256947726[/url]
-
File Inst_156.exe received on 2009.10.31 21:23:49 (UTC)
Result: 4/41 (9.76%)
[QUOTE]a-squared 4.5.0.41 2009.10.31 -
AhnLab-V3 5.0.0.2 2009.10.30 -
AntiVir 7.9.1.53 2009.10.30 -
Antiy-AVL 2.0.3.7 2009.10.30 -
Authentium 5.1.2.4 2009.10.31 -
Avast 4.8.1351.0 2009.10.30 -
AVG 8.5.0.423 2009.10.31 -
BitDefender 7.2 2009.10.31 -
[B]CAT-QuickHeal 10.00 2009.10.31 Win32.Packed.Krap.ae.8[/B]
ClamAV 0.94.1 2009.10.31 -
Comodo 2796 2009.10.31 -
[B]DrWeb 5.0.0.12182 2009.10.31 Trojan.Fakealert.6348[/B]
eSafe 7.0.17.0 2009.10.29 -
eTrust-Vet 35.1.7094 2009.10.30 -
F-Prot 4.5.1.85 2009.10.31 -
F-Secure 9.0.15370.0 2009.10.30 -
Fortinet 3.120.0.0 2009.10.31 -
GData 19 2009.10.31 -
Ikarus T3.1.1.72.0 2009.10.31 -
Jiangmin 11.0.800 2009.10.31 -
K7AntiVirus 7.10.885 2009.10.31 -
[B]Kaspersky 7.0.0.125 2009.10.31 Trojan-Downloader.Win32.FraudLoad.fxn[/B]
McAfee 5788 2009.10.31 -
[B]McAfee+Artemis 5788 2009.10.31 Artemis!6E49D1557DFC[/B]
McAfee-GW-Edition 6.8.5 2009.10.31 -
Microsoft 1.5202 2009.10.31 -
NOD32 4561 2009.10.31 -
Norman 6.03.02 2009.10.31 -
nProtect 2009.1.8.0 2009.10.31 -
Panda 10.0.2.2 2009.10.31 -
PCTools 7.0.3.5 2009.10.30 -
Prevx 3.0 2009.10.31 -
Rising 21.53.52.00 2009.10.31 -
Sophos 4.47.0 2009.10.31 -
Sunbelt 3.2.1858.2 2009.10.31 -
Symantec 1.4.4.12 2009.10.31 -
TheHacker 6.5.0.2.058 2009.10.31 -
TrendMicro 8.950.0.1094 2009.10.31 -
VBA32 3.12.10.11 2009.10.30 -
ViRobot 2009.10.31.2015 2009.10.31 -
VirusBuster 4.6.5.0 2009.10.31 -[/QUOTE]
[url]http://www.virustotal.com/analisis/76badeff36d63a57190ece1464800d53567902d7790d3b057cb0532606be5ff6-1257024229[/url]
-
File install.exe received on 2009.11.01 18:28:19 (UTC)
Result: 15/41 (36.59%)
[QUOTE][B]a-squared 4.5.0.41 2009.11.01 Trojan.Win32.VkHost!IK[/B]
AhnLab-V3 5.0.0.2 2009.10.30 -
AntiVir 7.9.1.53 2009.10.30 -
[B]Antiy-AVL 2.0.3.7 2009.10.30 Trojan/Win32.Qhost.gen[/B]
[B]Authentium 5.1.2.4 2009.11.01 W32/Blocker-based!Maximus[/B]
Avast 4.8.1351.0 2009.11.01 -
AVG 8.5.0.423 2009.11.01 -
BitDefender 7.2 2009.11.01 -
[B]CAT-QuickHeal 10.00 2009.10.31 Trojan.Qhost.maq[/B]
ClamAV 0.94.1 2009.11.01 -
[B]Comodo 2806 2009.11.01 Heur.Packed.Unknown[/B]
DrWeb 5.0.0.12182 2009.11.01 -
eSafe 7.0.17.0 2009.11.01 -
eTrust-Vet 35.1.7094 2009.10.30 -
[B]F-Prot 4.5.1.85 2009.11.01 W32/Blocker-based!Maximus[/B]
F-Secure 9.0.15370.0 2009.10.30 -
Fortinet 3.120.0.0 2009.11.01 -
GData 19 2009.11.01 -
[B]Ikarus T3.1.1.72.0 2009.11.01 Trojan.Win32.VkHost[/B]
[B]Jiangmin 11.0.800 2009.11.01 Trojan/Qhost.ayq[/B]
K7AntiVirus 7.10.885 2009.10.31 -
Kaspersky 7.0.0.125 2009.11.01 -
McAfee 5789 2009.11.01 -
[B]McAfee+Artemis 5789 2009.11.01 Artemis!E38F877DDF9F[/B]
[B]McAfee-GW-Edition 6.8.5 2009.11.01 Heuristic.LooksLike.Win32.Agent.H[/B]
Microsoft 1.5202 2009.11.01 -
NOD32 4563 2009.11.01 -
Norman 6.03.02 2009.11.01 -
[B]nProtect 2009.1.8.0 2009.11.01 Trojan/W32.Qhost.90112.D[/B]
[B]Panda 10.0.2.2 2009.11.01 Trj/Downloader.MDW[/B]
PCTools 7.0.3.5 2009.10.30 -
Prevx 3.0 2009.11.01 -
[B]Rising 21.53.62.00 2009.11.01 Trojan.Win32.QHost.avg[/B]
Sophos 4.47.0 2009.11.01 -
[B]Sunbelt 3.2.1858.2 2009.11.01 BehavesLike.Win32.Malware (v)[/B]
Symantec 1.4.4.12 2009.11.01 -
TheHacker 6.5.0.2.058 2009.10.31 -
TrendMicro 8.950.0.1094 2009.11.01 -
[B]VBA32 3.12.10.11 2009.10.30 Trojan.Win32.Agent.sxjn[/B]
ViRobot 2009.10.31.2015 2009.10.31 -
VirusBuster 4.6.5.0 2009.10.31 -[/QUOTE]
[url]http://www.virustotal.com/analisis/b0ad8221464c0123f9f36c605d955bedda1cb1adc18e3713e25664f1b641c41b-1257100099[/url]
-
File vk.exe received on 2009.11.03 08:00:58 (UTC)
Current status: finished
Result: 8/41 (19.52%)
[QUOTE][B]a-squared 4.5.0.41 2009.11.03 Trojan.Win32.Sasfis!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.03 -
AntiVir 7.9.1.53 2009.11.02 -
Antiy-AVL 2.0.3.7 2009.11.03 -
Authentium 5.1.2.4 2009.11.03 -
Avast 4.8.1351.0 2009.11.02 -
AVG 8.5.0.423 2009.11.02 -
BitDefender 7.2 2009.11.03 -
CAT-QuickHeal 10.00 2009.11.03 -
ClamAV 0.94.1 2009.11.03 -
Comodo 2824 2009.11.03 -
DrWeb 5.0.0.12182 2009.11.03 -
[B]eSafe 7.0.17.0 2009.11.02 Suspicious File[/B]
eTrust-Vet 35.1.7099 2009.11.03 -
F-Prot 4.5.1.85 2009.11.02 -
F-Secure 9.0.15370.0 2009.10.30 -
Fortinet 3.120.0.0 2009.11.03 -
GData 19 2009.11.03 -
[B]Ikarus T3.1.1.72.0 2009.11.03 Trojan.Win32.Sasfis[/B]
Jiangmin 11.0.800 2009.11.03 -
K7AntiVirus 7.10.886 2009.11.02 -
[B]Kaspersky 7.0.0.125 2009.11.03 Trojan.Win32.Sasfis.tqi[/B]
McAfee 5790 2009.11.02 -
[B]McAfee+Artemis 5790 2009.11.02 Artemis!9AA436CD507B[/B]
McAfee-GW-Edition 6.8.5 2009.11.02 -
[B]Microsoft 1.5202 2009.11.03 Trojan:Win32/Oficla.E[/B]
NOD32 4567 2009.11.03 -
Norman 6.03.02 2009.11.02 -
nProtect 2009.1.8.0 2009.11.03 -
[B]Panda 10.0.2.2 2009.11.02 Suspicious file[/B]
PCTools 7.0.3.5 2009.11.03 -
[B]Prevx 3.0 2009.11.03 Medium Risk Malware[/B]
Rising 21.54.11.00 2009.11.03 -
Sophos 4.47.0 2009.11.03 -
Sunbelt 3.2.1858.2 2009.11.02 -
Symantec 1.4.4.12 2009.11.03 -
TheHacker 6.5.0.2.059 2009.11.03 -
TrendMicro 8.950.0.1094 2009.11.03 -
VBA32 3.12.10.11 2009.11.02 -
ViRobot 2009.11.3.2018 2009.11.03 -
VirusBuster 4.6.5.0 2009.11.02 -[/QUOTE]
Additional information
File size: 19456 bytes
MD5...: 9aa436cd507b043dd9ac90b710fabeb0
SHA1..: bf65a829b6ae3ee03b31fa4c9168b6a7dc4eb9eb
SHA256: dbe88069e0a4a42f05a04f3f8f200d25fd40b06b7e7049bfc06a9944822eacf2
ssdeep: 384:p3/odyIHGikuRMctgsSDJpUqh0U21Xi8/ONY15:p3gdyBikuRNtgRaq2UM/T
15
PEiD..: -
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x4aed92aa (Sun Nov 01 13:52:42 2009)
machinetype.......: 0x14c (I386)
[url]http://info.prevx.com/aboutprogramtext.asp?PX5=768153DB0099E0B84CC10057F82CEC0053653E38[/url]
-
Файл vkontakte_manager2010.exe получен 2009.11.03 13:48:55 (UTC)
Текущий статус: закончено
Результат: 22/41 (53.66%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.03 Trojan.Win32.VkHost!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.03 -
[B]AntiVir 7.9.1.53 2009.11.03 TR/VKHost.DB[/B]
Antiy-AVL 2.0.3.7 2009.11.03 -
[B]Authentium 5.1.2.4 2009.11.03 W32/Trojan2.JFCL
Avast 4.8.1351.0 2009.11.03 Win32:Malware-gen
AVG 8.5.0.423 2009.11.03 Generic14.CDJT
BitDefender 7.2 2009.11.03 Trojan.Generic.2547041
CAT-QuickHeal 10.00 2009.11.03 Trojan.VkHost.db[/B]
ClamAV 0.94.1 2009.11.03 -
Comodo 2827 2009.11.03 -
[B]DrWeb 5.0.0.12182 2009.11.03 Trojan.Hoster.306[/B]
eSafe 7.0.17.0 2009.11.03 -
eTrust-Vet 35.1.7099 2009.11.03 -
[B]F-Prot 4.5.1.85 2009.11.02 W32/Trojan2.JFCL
F-Secure 9.0.15370.0 2009.10.30 Trojan.Generic.2547041
Fortinet 3.120.0.0 2009.11.03 W32/VkHost.DB!tr
GData 19 2009.11.03 Trojan.Generic.2547041
Ikarus T3.1.1.72.0 2009.11.03 Trojan.Win32.VkHost
Jiangmin 11.0.800 2009.11.03 Trojan/VkHost.ad
K7AntiVirus 7.10.886 2009.11.02 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.11.03 Trojan.Win32.VkHost.db[/B]
McAfee 5790 2009.11.02 -
McAfee+Artemis 5790 2009.11.02 -
[B]McAfee-GW-Edition 6.8.5 2009.11.03 Heuristic.BehavesLike.Win32.Downloader.J[/B]
Microsoft 1.5202 2009.11.03 -
[B]NOD32 4568 2009.11.03 Win32/Qhost.NOM[/B]
Norman 6.03.02 2009.11.03 -
nProtect 2009.1.8.0 2009.11.03 -
[B]Panda 10.0.2.2 2009.11.02 Trj/CI.A[/B]
PCTools 7.0.3.5 2009.11.03 -
Prevx 3.0 2009.11.03 -
Rising 21.54.14.00 2009.11.03 -
[B]Sophos 4.47.0 2009.11.03 Mal/Generic-A[/B]
Sunbelt 3.2.1858.2 2009.11.02 -
Symantec 1.4.4.12 2009.11.03 -
TheHacker 6.5.0.2.059 2009.11.03 -
TrendMicro 8.950.0.1094 2009.11.03 -
[B]VBA32 3.12.10.11 2009.11.02 Trojan.Win32.VkHost.du[/B]
ViRobot 2009.11.3.2019 2009.11.03 -
[B]VirusBuster 4.6.5.0 2009.11.02 Trojan.VkHost.BD[/B][/QUOTE]
Дополнительная информация
File size: 530432 bytes
MD5...: 55c58aaf178500f8a527342970f0ae22
SHA1..: 84f6fa879f990c2899596dd7d2b9518dae6f9e4e
SHA256: 9b11b03b1deb8896b05891c6f95fcdac170210f49000f11eea26b4a6a733e80e
ssdeep: 12288:XpFRzKzd8mk85o+Ldlft4JV2IML1+ISlfnK0BNzql:XLxpPp+LhOTMBTKi
o0
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/9b11b03b1deb8896b05891c6f95fcdac170210f49000f11eea26b4a6a733e80e-1257256135[/url]
-
Файл mob17234-.jar получен 2009.11.05 10:14:52 (UTC)
Текущий статус: закончено
Результат: 8/40 (20%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.05 -
AhnLab-V3 5.0.0.2 2009.11.05 -
AntiVir 7.9.1.53 2009.11.05 -
[B]Antiy-AVL 2.0.3.7 2009.11.05 Trojan/J2ME.Small[/B]
Authentium 5.2.0.5 2009.11.05 -
Avast 4.8.1351.0 2009.11.04 -
AVG 8.5.0.423 2009.11.05 -
BitDefender 7.2 2009.11.05 -
CAT-QuickHeal 10.00 2009.11.05 -
ClamAV 0.94.1 2009.11.05 -
[B]Comodo 2846 2009.11.05 UnclassifiedMalware
DrWeb 5.0.0.12182 2009.11.05 Java.SMSSend.90[/B]
eTrust-Vet 35.1.7103 2009.11.04 -
F-Prot 4.5.1.85 2009.11.04 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.05 -
GData 19 2009.11.05 -
Ikarus T3.1.1.74.0 2009.11.05 Trojan-SMS
Jiangmin 11.0.800 2009.11.05 -
K7AntiVirus 7.10.888 2009.11.04 -
Kaspersky 7.0.0.125 2009.11.05 Trojan-SMS.J2ME.Small.e
McAfee 5792 2009.11.04 -
McAfee+Artemis 5792 2009.11.04 -
McAfee-GW-Edition 6.8.5 2009.11.05 -
Microsoft 1.5202 2009.11.05 -
[B]NOD32 4575 2009.11.05 J2ME/TrojanSMS.Small.E[/B]
Norman 6.03.02 2009.11.05 -
nProtect 2009.1.8.0 2009.11.05 -
Panda 10.0.2.2 2009.11.04 -
[B]PCTools 7.0.3.5 2009.11.05 Trojan.Generic[/B]
Prevx 3.0 2009.11.05 -
Rising 21.54.32.00 2009.11.05 -
Sophos 4.47.0 2009.11.05 -
Sunbelt 3.2.1858.2 2009.11.05 -
[B]Symantec 1.4.4.12 2009.11.05 Trojan Horse[/B]
TheHacker 6.5.0.2.061 2009.11.05 -
TrendMicro 9.0.0.1003 2009.11.05 -
VBA32 3.12.10.11 2009.11.04 -
ViRobot 2009.11.5.2023 2009.11.05 -
VirusBuster 4.6.5.0 2009.11.04 -[/QUOTE]
Дополнительная информация
File size: 62961 bytes
MD5...: 7c2d4071f468e32087865e36258e18e6
SHA1..: 5257e5d767109387d94986695932251f889a2124
SHA256: 7050e34f00cf5221de2cce9033c9c9c43624f54724c949c6f63729c6d6a87ace
ssdeep: 1536:/HUn/jroCXi/Wzo9QsY3rHVQ25Dx8ateXfTtse5Rx5En/:/HUn/jEpW0mrr
/l8at0fTts8E/
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/7050e34f00cf5221de2cce9033c9c9c43624f54724c949c6f63729c6d6a87ace-1257416092[/url]
-
Файл js.js получен 2009.11.06 19:33:14 (UTC)
Текущий статус: закончено
Результат: 2/39 (5.13%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
[B]Avast 4.8.1351.0 2009.11.06 JS:Downloader-FP[/B]
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2862 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7107 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 JS:Downloader-FP [/B]
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.062 2009.11.05 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 111998 bytes
MD5 : d6e69b215dab07e1abaa802d17f5ceb7
SHA1 : 8510482698fb69ecf71da9f4c19f167be67d9169
SHA256: 78b460592517c4848072e5543a928cfebea1c887c7243a93c73a7926ae345d90
TrID : File type identification
Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
ssdeep: 48:QTlNRguMhABbulVAk+7XqyTjywB9JWPalF6ZaTAW:QTHRguMhABbulVAk+L37rJWPUcW
PEiD : -
packers (F-Prot): Unicode
RDS : NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/78b460592517c4848072e5543a928cfebea1c887c7243a93c73a7926ae345d90-1257535994[/url]
***
Файл js1.js получен 2009.11.06 19:43:40 (UTC)
Текущий статус: закончено
Результат: 2/41 (4.88%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2862 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eSafe 7.0.17.0 2009.11.05 -
eTrust-Vet 35.1.7107 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.06 JS/FakeAV.H.gen[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
[B]Microsoft 1.5202 2009.11.06 Trojan:JS/FakeXPA[/B]
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.062 2009.11.05 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 10324 bytes
MD5...: cab54e26892be619844ae29fab641dad
SHA1..: 43e64dcf96b01463b37dd60cd6cf08b7327f81d8
SHA256: 2b6018e0f058f2aebfc16e0076f617b2912677d838648200d5f6876ffaaa3142
ssdeep: 192:pTroHDaekg7wAb+Vf1kI5v6t6mn7RRTOkXOz6cvo:qHmq+Vf1kIgaiKpo
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/2b6018e0f058f2aebfc16e0076f617b2912677d838648200d5f6876ffaaa3142-1257536620[/url]
***
Файл js2.js получен 2009.11.06 19:58:43 (UTC)
Текущий статус: закончено
Результат: 2/40 (5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
[B]Authentium 5.2.0.5 2009.11.06 HTML/IFrame.A[/B]
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2862 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7107 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.06 HTML/IFrame.A[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.062 2009.11.05 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 1528 bytes
MD5...: 1775dd417386e576ec3c0013acfa907b
SHA1..: 51855bd322f7b7b6abcfdf5b96a4b94f78365f4b
SHA256: 92027e9673aca92e6a60e8308bdd191a0687bea711375f87aea0a6e0af2f8997
ssdeep: 24:Q+6eNcNaxTjY+71+6BGb8e+6BS8eNaxThis+63de+6ce+6EeBe:GCcNaxQa1z
I9zw9Nax1isz3EzdzFBe
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
packers (Authentium): Unicode
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/92027e9673aca92e6a60e8308bdd191a0687bea711375f87aea0a6e0af2f8997-1257537523[/url]
***
Файл js3.js получен 2009.11.06 20:06:29 (UTC)
Текущий статус: закончено
Результат: 3/40 (7.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2862 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7107 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.06 JS/Crypted.Q.gen[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
[B]McAfee 5794 2009.11.06 JS/Wonka[/B]
[B]McAfee+Artemis 5794 2009.11.06 JS/Wonka[/B]
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.062 2009.11.05 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 3490 bytes
MD5...: ddb045102d847adf5ef8bce8595d9156
SHA1..: a5b19db29f546870b16eb3702e4680a93e7ca7fa
SHA256: 63a2295aabbdeaca2143e5547b08282dfbfb9efcb5f140cab4fd3d8399b2f104
ssdeep: 48:m++F/rGFgtWu3Z1LytWggtFu3gylXAiHTHdIlK5hG:Q/rGFgtWu3Z1LytTgtF
u3g2XbrdIlIG
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
packers (F-Prot): Unicode, doc_write
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
[url]http://www.virustotal.com/ru/analisis/63a2295aabbdeaca2143e5547b08282dfbfb9efcb5f140cab4fd3d8399b2f104-1257537989[/url]
***
Файл js4.js получен 2009.11.06 20:11:39 (UTC)
Текущий статус: закончено
Результат: 18/40 (45%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.06 Virus.JS.Redirector!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.06 JS/Redirector.A[/B]
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
[B]Avast 4.8.1351.0 2009.11.06 JS:Redirector-B[/B]
[B]AVG 8.5.0.423 2009.11.06 Exploit[/B]
[B]BitDefender 7.2 2009.11.06 Trojan.Exploit.Phpbb.J[/B]
CAT-QuickHeal 10.00 2009.11.06 -
[B]ClamAV 0.94.1 2009.11.06 Trojan.JS-1[/B]
Comodo 2862 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
[B]eTrust-Vet 35.1.7108 2009.11.06 JS/Redir.A[/B]
F-Prot 4.5.1.85 2009.11.06 -
[B]F-Secure 9.0.15370.0 2009.11.04 Trojan.Exploit.Phpbb.J[/B]
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 Trojan.Exploit.Phpbb.J[/B]
[B]Ikarus T3.1.1.74.0 2009.11.06 Virus.JS.Redirector[/B]
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Trojan.JS.Iframe.eu[/B]
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
[B]McAfee-GW-Edition 6.8.5 2009.11.06 Script.Redirector.A[/B]
[B]Microsoft 1.5202 2009.11.06 Trojan:JS/Adclicker[/B]
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
[B]Panda 10.0.2.2 2009.11.06 JS/Redirector.C[/B]
[B]PCTools 7.0.3.5 2009.11.06 Trojan.Malscript[/B]
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
[B]Sophos 4.47.0 2009.11.06 Troj/JSRedir-A[/B]
Sunbelt 3.2.1858.2 2009.11.06 -
[B]Symantec 1.4.4.12 2009.11.06 Trojan.Malscript!html[/B]
TheHacker 6.5.0.2.062 2009.11.05 -
[B]TrendMicro 9.0.0.1003 2009.11.06 JS_REDIRECT.G[/B]
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 2352 bytes
MD5...: 1b647e9da6c557574bcea6ca0a97c2e0
SHA1..: 66698b6ec22da69d37ac04c1617c820f8d5e766d
SHA256: 6b4d8b4a6a6c6d62919bf00295da2fcee0ac62d2d55dda271cdaed8faedf4e6d
ssdeep: 24:S1HSSvmDWFoPEQq9M/HOFzM/HOFVM/mFCHwJcdt41ftgdWmkWN+dbcI:SISvS
Si/HOq/HOI/mD+Q0S7YI
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
trid..: HyperText Markup Language (100.0%)
[url]http://www.virustotal.com/ru/analisis/6b4d8b4a6a6c6d62919bf00295da2fcee0ac62d2d55dda271cdaed8faedf4e6d-1257538299[/url]
***
Файл js5.js получен 2009.11.06 20:24:56 (UTC)
Текущий статус: закончено
Результат: 1/40 (2.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2862 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Trojan.JS.Agent.aqe[/B]
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 2772 bytes
MD5...: e4ed3193a9d923fca3962c9050dbaf36
SHA1..: c93df65b0dc5dc6148cf3a49ebf63029da7096e5
SHA256: c3978ea09ca81c971a40126587ee6db0020aef60e07cf9dd9968fff49a206b07
ssdeep: 48:RWeWocjJ7BiAMsroehSXB5Bv7VpKFk1O86gZnD0rDKeeWY9ylIt6knIIjS5yV
DSb:RWocN7Bib2oehSR5Xpou/6gZmDKHWY9A
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/c3978ea09ca81c971a40126587ee6db0020aef60e07cf9dd9968fff49a206b07-1257539096[/url]
-
Norton 2010 удалял все сонаром
Файл 1257414362.exe получен 2009.11.06 21:43:47 (UTC)
Текущий статус: закончено
Результат: 14/40 (35%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.06 Trojan.Win32.Cosmu!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.06 TR/Vundo.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
[B]Avast 4.8.1351.0 2009.11.06 Win32:Alureon-DT[/B]
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
[B]DrWeb 5.0.0.12182 2009.11.06 BackDoor.Tdss.based.2
eTrust-Vet 35.1.7108 2009.11.06 Win32/TDSS!packed[/B]
F-Prot 4.5.1.85 2009.11.06 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 Win32:Alureon-DT
Ikarus T3.1.1.74.0 2009.11.06 Trojan.Win32.Cosmu[/B]
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Trojan.Win32.Cosmu.cyf[/B]
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
[B]McAfee-GW-Edition 6.8.5 2009.11.06 Trojan.Vundo.Gen[/B]
Microsoft 1.5202 2009.11.06 -
[B]NOD32 4580 2009.11.06 a variant of Win32/Kryptik.BAW[/B]
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
[B]Prevx 3.0 2009.11.06 Medium Risk Malware[/B]
Rising 21.54.44.00 2009.11.06 -
[B]Sophos 4.47.0 2009.11.06 Mal/Generic-A
Sunbelt 3.2.1858.2 2009.11.06 Packed.Win32.Tdss.Gen (v)
Symantec 1.4.4.12 2009.11.06 Trojan Horse[/B]
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 83968 bytes
MD5...: 6509243793f2b130741c7f85e45e74a1
SHA1..: 0dccca47ec90e8a7ee9c30ac169590324d158b57
SHA256: b2de013c196e89d1e99be4b2c13836c20743cd19fcb3dd4db14ce307611874d9
ssdeep: 1536:utJCYdTq9suoqTds9Zy5QV9hT9aEAHtAgGHPur6yB++fKD6iRG3lU3:K07T
dBCV9+nAPSBBzJi
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/b2de013c196e89d1e99be4b2c13836c20743cd19fcb3dd4db14ce307611874d9-1257543827[/url]
Файл b0bah.exe получен 2009.11.06 21:44:34 (UTC)
Текущий статус: закончено
Результат: 13/41 (31.71%)
[QUOTE]Антивирус Версия Обновление Результат
[B]a-squared 4.5.0.41 2009.11.06 Trojan.Win32.Bredolab!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
[B]AVG 8.5.0.423 2009.11.06 Packed.Revolt
BitDefender 7.2 2009.11.06 Trojan.Packed.Hiloti.Gen.3
CAT-QuickHeal 10.00 2009.11.06 Win32.Packed.Krap.w.4[/B]
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eSafe 7.0.17.0 2009.11.05 -
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 Trojan.Packed.Hiloti.Gen.3
Ikarus T3.1.1.74.0 2009.11.06 Trojan.Win32.Bredolab[/B]
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Packed.Win32.Krap.w[/B]
McAfee 5794 2009.11.06 -
[B]McAfee+Artemis 5794 2009.11.06 Artemis!F544AF61354E[/B]
McAfee-GW-Edition 6.8.5 2009.11.06 -
[B]Microsoft 1.5202 2009.11.06 TrojanDownloader:Win32/Waledac.C
NOD32 4580 2009.11.06 a variant of Win32/Kryptik.BAV[/B]
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
[B]Panda 10.0.2.2 2009.11.06 Trj/CI.A[/B]
PCTools 7.0.3.5 2009.11.06 -
[B]Prevx 3.0 2009.11.06 Medium Risk Malware[/B]
Rising 21.54.44.00 2009.11.06 -
[B]Sophos 4.47.0 2009.11.06 Sus/Krap-C[/B]
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 21504 bytes
MD5...: f544af61354e9f8ac75231887209e4a5
SHA1..: 6e9f4b765e9d1abbda59b28eb77bb94cf15bd097
SHA256: 1ccd694cbb46fb54b4f2396dcc79a389ae6aeb1398ab9d22133ae15447af6984
ssdeep: 384:abVmL4EqtBghHytlRxWptW7mSHckOIvdGzKIAuz4oA:aRU4BeZOnx+tpSHcl
Ivdqxo
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/1ccd694cbb46fb54b4f2396dcc79a389ae6aeb1398ab9d22133ae15447af6984-1257543874[/url]
Файл IAInstall.exe получен 2009.11.06 21:46:53 (UTC)
Текущий статус: закончено
Результат: 7/41 (17.08%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
[B]Comodo 2864 2009.11.06 Heur.Packed.Unknown[/B]
DrWeb 5.0.0.12182 2009.11.06 -
[B]eSafe 7.0.17.0 2009.11.05 Suspicious File[/B]
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
[B]F-Secure 9.0.15370.0 2009.11.04 Suspicious:W32/Malware!Online[/B]
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Trojan.Win32.FraudPack.zpf[/B]
McAfee 5794 2009.11.06 -
[B]McAfee+Artemis 5794 2009.11.06 Artemis!0111B0A6E33F[/B]
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
[B]Panda 10.0.2.2 2009.11.06 Suspicious file[/B]
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
[B]Sophos 4.47.0 2009.11.06 Mal/FakeAV-BP[/B]
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 32768 bytes
MD5...: 0111b0a6e33ff8ab21a8830688caf279
SHA1..: c8f362074741f4025fa1c6c17b98a73a66e1500d
SHA256: bce69cbf9d9aedb71a511581ec836dd0fa8707390698c9fe34420a4c5b5ba388
ssdeep: 768:E9gFS5+RelDPiHFvidZlOPoi0GTtzfJ3PQK9Lno+kn:mgF4+RODPsFqdEo1e
zfpHLno+
PEiD..: -
PEInfo: PE Structure information
[url]http://www.virustotal.com/ru/analisis/bce69cbf9d9aedb71a511581ec836dd0fa8707390698c9fe34420a4c5b5ba388-1257544013[/url]
-
Файл js.js получен 2009.11.06 22:37:12 (UTC)
Текущий статус: закончено
Результат: 1/40 (2.50%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Trojan-Downloader.JS.Agent.esb[/B]
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.06 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 1398 bytes
MD5 : 4b1c3747aa5f0a53bdeaa47318252879
SHA1 : 0cef56c665c292110e7717744572669ec6034cb8
SHA256: 2b2ebb94c0520328c6be249875ebfb4b436c727dc0e6aee1e05a7ecb17d12d6c
TrID : File type identification
Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
ssdeep: 24:QEcvccLOPs8cycSP96cicSPZ6cicSPZ6cicSPZ6cicSPlTNFoXfLzaYLRnFpPtVW:gUcD3S9vnSZvnSZvnSZvnSlTgv6YLDxO
PEiD : -
packers (F-Prot): Unicode
RDS : NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/2b2ebb94c0520328c6be249875ebfb4b436c727dc0e6aee1e05a7ecb17d12d6c-1257547032[/url]
***
Файл js1.js получен 2009.11.06 23:10:42 (UTC)
Текущий статус: закончено
Результат: 1/40 (2.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7108 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.06 JS/Strcrypt.T.gen[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
GData 19 2009.11.06 -
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.07 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 12724 bytes
MD5...: dbfa54d0b8edf8b22b8b434638327075
SHA1..: 2207770f3736d1827b64c540780765b06804a247
SHA256: 94f8a6bea882a34cb0b9fec579fa7e2de33600f8f732773cd2d5f6ce4bec1c61
ssdeep: 384:1rwd1Xnlz1hKY9qFh7ptPMb+DThGNNblbru/CpwHP:qXnlz1hKY9qFtptPMb
+DoNNblbru/Cpo
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/94f8a6bea882a34cb0b9fec579fa7e2de33600f8f732773cd2d5f6ce4bec1c61-1257549042[/url]
***
Файл js2.js получен 2009.11.06 22:59:36 (UTC)
Текущий статус: закончено
Результат: 2/40 (5.00%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
[B]Avast 4.8.1351.0 2009.11.06 JS:Downloader-EG[/B]
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 JS:Downloader-EG [/B]
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.07 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 2332 bytes
MD5 : 20eafb355c3853563c02876222232175
SHA1 : f76cb88c3fa74b02c92be35990123885fd37d93a
SHA256: 46bbf58bf828d01f8ea8ed93c61ecaa94c6c9e1e1347434c788b4ec75dba9500
TrID : File type identification
Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
ssdeep: 48:m+HM070oa090em0vj5o7yGxHHjQuKFCgsxI/DyN:5M070P090em0vj5oPj9oCgsx4DyN
PEiD : -
packers (F-Prot): Unicode
RDS : NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/46bbf58bf828d01f8ea8ed93c61ecaa94c6c9e1e1347434c788b4ec75dba9500-1257548376[/url]
***
Файл js444.js получен 2009.11.06 23:04:19 (UTC)
Текущий статус: закончено
Результат: 6/40 (15%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.06 HTML/Crypted.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
[B]Avast 4.8.1351.0 2009.11.06 JS:Downloader-EL[/B]
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7108 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.06 JS/Obf.I.gen[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 JS:Downloader-EL [/B]
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
Kaspersky 7.0.0.125 2009.11.06 -
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
[B]McAfee-GW-Edition 6.8.5 2009.11.06 Heuristic.Script.Crypted[/B]
[B]Microsoft 1.5202 2009.11.06 Virus:JS/Xilos[/B]
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.07 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 30384 bytes
MD5...: a82ce59a4608fe261f67795dea92e84a
SHA1..: a6b824979a86e5534a5b3c6aa6d20ecd0ca234e5
SHA256: 4074714338634dfee095c1d4dac4f627e731b58a9a857c97c7620a7a3d50863a
ssdeep: 384:JQXzFoxpEuZiFdhAS8sacLyhh6a1OTa1O4+a1DRSDUEdeaNoEZOeuvNeafGc
+g6N:fpntbAtBZoHlO
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/4074714338634dfee095c1d4dac4f627e731b58a9a857c97c7620a7a3d50863a-1257548659[/url]
***
Файл js666.js получен 2009.11.06 23:29:41 (UTC)
Текущий статус: закончено
Результат: 5/40 (12.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.06 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.06 -
[B]Avast 4.8.1351.0 2009.11.06 JS:Obfuscated-CV[/B]
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2864 2009.11.06 -
DrWeb 5.0.0.12182 2009.11.06 -
eTrust-Vet 35.1.7108 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.06 JS/Obf.I.gen[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.06 -
[B]GData 19 2009.11.06 JS:Obfuscated-CV [/B]
Ikarus T3.1.1.74.0 2009.11.06 -
Jiangmin 11.0.800 2009.11.06 -
K7AntiVirus 7.10.890 2009.11.06 -
[B]Kaspersky 7.0.0.125 2009.11.06 Trojan-Downloader.JS.Major.c[/B]
McAfee 5794 2009.11.06 -
McAfee+Artemis 5794 2009.11.06 -
McAfee-GW-Edition 6.8.5 2009.11.06 -
[B]Microsoft 1.5202 2009.11.06 Virus:JS/Xilos[/B]
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.06 -
Panda 10.0.2.2 2009.11.06 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.07 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.06 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.06 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
Дополнительная информация
File size: 39216 bytes
MD5...: cfb7b8ec44af54215e8f78d5c1ea795c
SHA1..: 1c90cd1fcdea14ffa146d5c8cd634739f7afcfb8
SHA256: 1ab3b8c06aa48d81c07a04536780409f3c792b393baaf27ee6ed57bf43a89013
ssdeep: 384:ZTZUIK/OmOyOEO1OwOTosA4xd5X9JGTZUIK/loZLjHmopTFV:0JAcFVloZ3H
mopTFV
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
packers (F-Prot): Unicode
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
[url]http://www.virustotal.com/ru/analisis/1ab3b8c06aa48d81c07a04536780409f3c792b393baaf27ee6ed57bf43a89013-1257550181[/url]
-
File _______________.exe received on 2009.11.07 00:48:38 (UTC)
Result: 11/39 (28.21%)
[QUOTE][B]a-squared 4.5.0.41 2009.11.06 Trojan-PWS.Win32.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.06 TR/PSW.Agent.Obj.1[/B]
[B]Antiy-AVL 2.0.3.7 2009.11.05 Trojan/Win32.Agent[/B]
Authentium 5.2.0.5 2009.11.06 -
Avast 4.8.1351.0 2009.11.06 -
AVG 8.5.0.423 2009.11.06 -
BitDefender 7.2 2009.11.06 -
CAT-QuickHeal 10.00 2009.11.06 -
ClamAV 0.94.1 2009.11.06 -
Comodo 2866 2009.11.07 -
DrWeb 5.0.0.12182 2009.11.07 -
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.06 -
[B]Fortinet 3.120.0.0 2009.11.06 W32/Agent.OBJ!tr.pws[/B]
GData 19 2009.11.07 -
[B]Ikarus T3.1.1.74.0 2009.11.06 Trojan-PWS.Win32.Agent[/B]
Jiangmin 11.0.800 2009.11.06 -
[B]K7AntiVirus 7.10.890 2009.11.06 Trojan-PSW.Win32.Agent.obj[/B]
[B]Kaspersky 7.0.0.125 2009.11.07 Trojan-PSW.Win32.Agent.obj[/B]
McAfee 5794 2009.11.06 -
[B]McAfee+Artemis 5794 2009.11.06 Artemis!A2D5EB1D0D38[/B]
[B]McAfee-GW-Edition 6.8.5 2009.11.06 Trojan.PSW.Agent.Obj.1[/B]
Microsoft 1.5202 2009.11.06 -
NOD32 4580 2009.11.06 -
Norman 6.03.02 2009.11.06 -
[B]nProtect 2009.1.8.0 2009.11.06 Trojan-PWS/W32.Agent.417280.B[/B]
[B]Panda 10.0.2.2 2009.11.06 Suspicious file[/B]
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.07 -
Rising 21.54.44.00 2009.11.06 -
Sophos 4.47.0 2009.11.07 -
Sunbelt 3.2.1858.2 2009.11.06 -
Symantec 1.4.4.12 2009.11.07 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.06 -
VBA32 3.12.10.11 2009.11.06 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.06 -[/QUOTE]
[url]http://www.virustotal.com/analisis/51932d03a9c7305fe1e39d1b7f4fdf3b55858e6eb1588a3fb46b9163a342f6bc-1257554918[/url]
-
File Russificator_.exe received on 2009.11.08 11:54:35 (UTC)
Result: 6/40 (15%)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.5.0.41 2009.11.08 Riskware.Win32.Adload!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.06 ADSPY/AdSpy.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.08 -
Avast 4.8.1351.0 2009.11.08 -
AVG 8.5.0.423 2009.11.08 -
BitDefender 7.2 2009.11.08 -
CAT-QuickHeal 10.00 2009.11.07 -
[B]ClamAV 0.94.1 2009.11.08 PUA.Packed.ASPack212[/B]
Comodo 2882 2009.11.08 -
[B]DrWeb 5.0.0.12182 2009.11.08 Adware.FieryAds.22[/B]
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.07 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.08 -
GData 19 2009.11.08 -
[B]Ikarus T3.1.1.74.0 2009.11.08 not-a-virus:Win32.Adload[/B]
Jiangmin 11.0.800 2009.11.08 -
K7AntiVirus 7.10.891 2009.11.07 -
Kaspersky 7.0.0.125 2009.11.08 -
McAfee 5795 2009.11.07 -
McAfee+Artemis 5795 2009.11.07 -
[B]McAfee-GW-Edition 6.8.5 2009.11.08 Ad-Spyware.AdSpy.Gen[/B]
Microsoft 1.5202 2009.11.08 -
NOD32 4583 2009.11.08 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.08 -
Panda 10.0.2.2 2009.11.07 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.08 -
Rising 21.54.62.00 2009.11.08 -
Sophos 4.47.0 2009.11.08 -
Sunbelt 3.2.1858.2 2009.11.08 -
Symantec 1.4.4.12 2009.11.08 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.08 -
VBA32 3.12.10.11 2009.11.07 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.07 -[/CODE]
Additional information
File size: 2819603 bytes
MD5...: 1afa622601b36afca6d24a7c91e2e557
SHA1..: 4559d4786a6d23e857ebd3227091542d5e802b93
SHA256: 2a539bfd1a1e4016a30c8e10245aab227917b121b378b819db40e22fda668459
ssdeep: 49152:sIf7Tyw1RlwPMxasaf7/yN3zh/GfxYO635R8YCS07mZqL3ePCdHPqCIkgI
ysnMYW:sIf7Onea3jEdOu5Rlp6mZqDHHPfIxVs6
PEiD..: -
PEInfo: PE Structure information
File FieryAdsUninstall.exe received on 2009.11.08 13:24:03 (UTC)
Result: 10/40 (25%)
[CODE]Antivirus Version Last Update Result
[B]a-squared 4.5.0.41 2009.11.08 Riskware.AdWare.Win32.Agent!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
Antiy-AVL 2.0.3.7 2009.11.05 -
[B]Authentium 5.2.0.5 2009.11.08 W32/FierAds.A.gen!Eldorado[/B]
Avast 4.8.1351.0 2009.11.08 -
AVG 8.5.0.423 2009.11.08 -
[B]BitDefender 7.2 2009.11.08 Gen:Adware.Heur.KS0aQCcRTiFk
CAT-QuickHeal 10.00 2009.11.07 (Suspicious) - DNAScan
ClamAV 0.94.1 2009.11.08 PUA.Packed.ASPack212[/B]
Comodo 2884 2009.11.08 -
DrWeb 5.0.0.12182 2009.11.08 -
eTrust-Vet 35.1.7108 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.07 W32/FierAds.A.gen!Eldorado
F-Secure 9.0.15370.0 2009.11.04 Gen:Adware.Heur.KS0aQCcRTiFk[/B]
Fortinet 3.120.0.0 2009.11.08 -
[B]GData 19 2009.11.08 Gen:Adware.Heur.KS0aQCcRTiFk
Ikarus T3.1.1.74.0 2009.11.08 not-a-virus:AdWare.Win32.Agent
Jiangmin 11.0.800 2009.11.08 Backdoor/Huigezi.2007.awwq[/B]
K7AntiVirus 7.10.891 2009.11.07 -
Kaspersky 7.0.0.125 2009.11.08 -
McAfee 5795 2009.11.07 -
McAfee+Artemis 5795 2009.11.07 -
McAfee-GW-Edition 6.8.5 2009.11.08 -
Microsoft 1.5202 2009.11.08 -
NOD32 4583 2009.11.08 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.08 -
Panda 10.0.2.2 2009.11.08 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.08 -
Rising 21.54.62.00 2009.11.08 -
Sophos 4.47.0 2009.11.08 -
Sunbelt 3.2.1858.2 2009.11.08 -
Symantec 1.4.4.12 2009.11.08 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.08 -
VBA32 3.12.10.11 2009.11.07 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.07 -[/CODE]
Additional information
File size: 590848 bytes
MD5...: a03df13fee80401a48d7164a8e2000cc
SHA1..: 6e7be761b392009b7be2d1a27ad90f63caeebcb9
SHA256: 85702ccd66086caed49c2e35f486487e8d9e1fab9d7d8594113a76c4de0f276a
ssdeep: 12288:X/g+thQ+XIHjwdIu11Tgg9Zq6xGJOpqZ1WYrt:XzXBXjdp1T40GkpFYrt
PEiD..: -
PEInfo: PE Structure information
-
File setup.exe received on 2009.11.08 14:55:51 (UTC)
Result: 17/40 (42.5%)
[QUOTE][B]a-squared 4.5.0.41 2009.11.08 Trojan.Win32.VkHost!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.06 -
[B]Antiy-AVL 2.0.3.7 2009.11.05 Trojan/Win32.Qhost.gen[/B]
[B]Authentium 5.2.0.5 2009.11.08 W32/Blocker-based!Maximus[/B]
Avast 4.8.1351.0 2009.11.08 -
AVG 8.5.0.423 2009.11.08 -
BitDefender 7.2 2009.11.08 -
[B]CAT-QuickHeal 10.00 2009.11.07 Trojan.Qhost.maq[/B]
ClamAV 0.94.1 2009.11.08 -
[B]Comodo 2884 2009.11.08 Heur.Packed.Unknown[/B]
DrWeb 5.0.0.12182 2009.11.08 -
eTrust-Vet 35.1.7108 2009.11.06 -
[B]F-Prot 4.5.1.85 2009.11.07 W32/Blocker-based!Maximus[/B]
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.08 -
GData 19 2009.11.08 -
[B]Ikarus T3.1.1.74.0 2009.11.08 Trojan.Win32.VkHost[/B]
[B]Jiangmin 11.0.800 2009.11.08 Trojan/Qhost.ayq[/B]
K7AntiVirus 7.10.891 2009.11.07 -
Kaspersky 7.0.0.125 2009.11.08 -
McAfee 5795 2009.11.07 -
[B]McAfee+Artemis 5795 2009.11.07 Artemis!57B454D02FA9[/B]
[B]McAfee-GW-Edition 6.8.5 2009.11.08 Heuristic.LooksLike.Win32.Agent.H[/B]
Microsoft 1.5202 2009.11.08 -
NOD32 4584 2009.11.08 -
[B]Norman 6.03.02 2009.11.06 W32/Qhost.GXM[/B]
[B]nProtect 2009.1.8.0 2009.11.08 Trojan/W32.Qhost.90112.F[/B]
[B]Panda 10.0.2.2 2009.11.08 Trj/Downloader.MDW[/B]
PCTools 7.0.3.5 2009.11.06 -
[B]Prevx 3.0 2009.11.08 Medium Risk Malware[/B]
[B]Rising 21.54.62.00 2009.11.08 Trojan.Win32.QHost.avg[/B]
Sophos 4.47.0 2009.11.08 -
[B]Sunbelt 3.2.1858.2 2009.11.08 BehavesLike.Win32.Malware (v)[/B]
Symantec 1.4.4.12 2009.11.08 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.08 -
[B]VBA32 3.12.10.11 2009.11.07 Trojan.Win32.Agent.sxjn[/B]
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.07 -[/QUOTE]
-
[url]http://www.virustotal.com/ru/analisis/3208e8dadb20aeda832570bd0e135ceed3bcf35aee01527ce793bae56f8b4246-1257707934[/url]
[QUOTE]a-squared 4.5.0.41 2009.11.08 [B]Trojan-Spy.Win32.Vwealer!IK [/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.08 -
Antiy-AVL 2.0.3.7 2009.11.05 -
Authentium 5.2.0.5 2009.11.08 -
Avast 4.8.1351.0 2009.11.08 -
AVG 8.5.0.423 2009.11.08 [B]SHeur2.BQIX[/B]
BitDefender 7.2 2009.11.08 -
CAT-QuickHeal 10.00 2009.11.07 -
ClamAV 0.94.1 2009.11.08 -
Comodo 2886 2009.11.08 -
DrWeb 5.0.0.12182 2009.11.08 -
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.08 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.08 -
GData 19 2009.11.08 -
Ikarus T3.1.1.74.0 2009.11.08 [B]Trojan-Spy.Win32.Vwealer[/B]
Jiangmin 11.0.800 2009.11.08 -
K7AntiVirus 7.10.891 2009.11.07 -
Kaspersky 7.0.0.125 2009.11.08 [B]Trojan-Ransom.Win32.SMSer.rw[/B]
McAfee 5796 2009.11.08 -
McAfee+Artemis 5796 2009.11.08 -
McAfee-GW-Edition 6.8.5 2009.11.08 -
Microsoft 1.5202 2009.11.08 -
NOD32 4585 2009.11.08 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.08 -
Panda 10.0.2.2 2009.11.08 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.08 -
Rising 21.54.62.00 2009.11.08 -
Sophos 4.47.0 2009.11.08 -
Sunbelt 3.2.1858.2 2009.11.08 -
Symantec 1.4.4.12 2009.11.08 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.08 [B]PAK_Generic.001[/B]
VBA32 3.12.10.11 2009.11.07 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.08 - [/QUOTE]
-
Файл Opera.jar получен 2009.11.08 20:37:37 (UTC)
Текущий статус: закончено
Результат: 5/40 (12.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.08 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.08 -
[B]Antiy-AVL 2.0.3.7 2009.11.05 Trojan/J2ME.Small[/B]
Authentium 5.2.0.5 2009.11.08 -
Avast 4.8.1351.0 2009.11.08 -
AVG 8.5.0.423 2009.11.08 -
BitDefender 7.2 2009.11.08 -
CAT-QuickHeal 10.00 2009.11.07 -
ClamAV 0.94.1 2009.11.08 -
[B]Comodo 2888 2009.11.08 UnclassifiedMalware
DrWeb 5.0.0.12182 2009.11.08 Java.SMSSend.90[/B]
eTrust-Vet 35.1.7108 2009.11.06 -
F-Prot 4.5.1.85 2009.11.08 -
F-Secure 9.0.15370.0 2009.11.04 -
Fortinet 3.120.0.0 2009.11.08 -
GData 19 2009.11.08 -
[B]Ikarus T3.1.1.74.0 2009.11.08 Trojan-SMS[/B]
Jiangmin 11.0.800 2009.11.08 -
K7AntiVirus 7.10.891 2009.11.07 -
[B]Kaspersky 7.0.0.125 2009.11.08 Trojan-SMS.J2ME.Small.h[/B]
McAfee 5796 2009.11.08 -
McAfee+Artemis 5796 2009.11.08 -
McAfee-GW-Edition 6.8.5 2009.11.08 -
Microsoft 1.5202 2009.11.08 -
NOD32 4585 2009.11.08 -
Norman 6.03.02 2009.11.06 -
nProtect 2009.1.8.0 2009.11.08 -
Panda 10.0.2.2 2009.11.08 -
PCTools 7.0.3.5 2009.11.06 -
Prevx 3.0 2009.11.08 -
Rising 21.54.62.00 2009.11.08 -
Sophos 4.47.0 2009.11.08 -
Sunbelt 3.2.1858.2 2009.11.08 -
Symantec 1.4.4.12 2009.11.08 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.08 -
VBA32 3.12.10.11 2009.11.07 -
ViRobot 2009.11.6.2025 2009.11.06 -
VirusBuster 4.6.5.0 2009.11.08 -[/QUOTE]
Дополнительная информация
File size: 178617 bytes
MD5...: 94b145de58cacc2c79163479d6855d5e
SHA1..: 2935c1453e17448122863db495f2f53bd98b8e6e
SHA256: 1facb716b63338d57cdeb9d497bdc03431b2969c45e75645919a701fd44986b7
ssdeep: 3072:/HIrn/jEpW0mrr/l8at0fTts8Ern/jEpW0mrr/l8at0fTts8EKn/jEpW0mr
r/l8u:vuQIrvtop2LQIrvtop2WQIrvtop2/
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
[url]http://www.virustotal.com/ru/analisis/1facb716b63338d57cdeb9d497bdc03431b2969c45e75645919a701fd44986b7-1257712657[/url]
-
File install.exe received on 2009.10.27 23:27:50 (UTC)
[CODE]Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.10.27 -
AhnLab-V3 5.0.0.2 2009.10.27 -
AntiVir 7.9.1.44 2009.10.27 -
Antiy-AVL 2.0.3.7 2009.10.27 -
Authentium 5.1.2.4 2009.10.27 W32/Downldr3.GJ
Avast 4.8.1351.0 2009.10.27 -
AVG 8.5.0.423 2009.10.27 -
BitDefender 7.2 2009.10.28 -
CAT-QuickHeal 10.00 2009.10.27 -
ClamAV 0.94.1 2009.10.27 -
Comodo 2751 2009.10.27 -
DrWeb 5.0.0.12182 2009.10.27 Trojan.DownLoad.51375
eTrust-Vet 35.1.7086 2009.10.27 -
F-Prot 4.5.1.85 2009.10.27 W32/Downldr3.GJ
F-Secure 9.0.15370.0 2009.10.27 -
Fortinet 3.120.0.0 2009.10.27 -
GData 19 2009.10.28 -
Ikarus T3.1.1.72.0 2009.10.27 -
Jiangmin 11.0.800 2009.10.26 -
K7AntiVirus 7.10.881 2009.10.27 Trojan.Win32.Malware.4
Kaspersky 7.0.0.125 2009.10.28 -
McAfee 5784 2009.10.27 Generic Downloader.du
McAfee+Artemis 5784 2009.10.27 Generic Downloader.du
McAfee-GW-Edition 6.8.5 2009.10.27 Heuristic.LooksLike.Win32.NewMalware.J
Microsoft 1.5202 2009.10.27 -
NOD32 4549 2009.10.27 Win32/TrojanDownloader.Delf.PAN
Norman 6.03.02 2009.10.27 -
nProtect 2009.1.8.0 2009.10.27 -
Panda 10.0.2.2 2009.10.27 Trj/Downloader.WEX
PCTools 4.4.2.0 2009.10.19 -
Prevx 3.0 2009.10.28 Medium Risk Malware
Rising 21.53.13.00 2009.10.27 -
Sophos 4.46.0 2009.10.27 -
Sunbelt 3.2.1858.2 2009.10.27 -
Symantec 1.4.4.12 2009.10.27 -
TheHacker 6.5.0.2.055 2009.10.27 Trojan/Delf.pan
TrendMicro 8.950.0.1094 2009.10.27 -
VBA32 3.12.10.11 2009.10.27 -
ViRobot 2009.10.27.2007 2009.10.27 -
VirusBuster 4.6.5.0 2009.10.26 -[/CODE]
P.S. Файл скачался с одной из файлопомоек под видом установщика Штирлица 4. Интересно, что в ЛК он улетел ещё 4 ноября - всё не решаются.
-
[url]http://www.virustotal.com/ru/analisis/e14d4b4e4659c44bccfcecba3879679eafa4e8956c3dbd344625d6d101b5768e-1257795859[/url]
[QUOTE][B]a-squared 4.5.0.41 2009.11.09 Backdoor.Bredavi!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.09 -
Antiy-AVL 2.0.3.7 2009.11.09 -
Authentium 5.2.0.5 2009.11.09 -
Avast 4.8.1351.0 2009.11.09 -
AVG 8.5.0.423 2009.11.09 -
BitDefender 7.2 2009.11.09 -
CAT-QuickHeal 10.00 2009.11.09 -
ClamAV 0.94.1 2009.11.09 -
Comodo 2898 2009.11.09 -
DrWeb 5.0.0.12182 2009.11.09 -
eTrust-Vet 35.1.7111 2009.11.09 -
F-Prot 4.5.1.85 2009.11.09 -
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.09 -
GData 19 2009.11.09 -
[B]Ikarus T3.1.1.74.0 2009.11.09 Backdoor.Bredavi[/B]
Jiangmin 11.0.800 2009.11.09 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.09 -
McAfee 5797 2009.11.09 -
[B]McAfee+Artemis 5797 2009.11.09 Artemis!88AB014A832D [/B]
McAfee-GW-Edition 6.8.5 2009.11.09 -
[B]Microsoft 1.5202 2009.11.09 Trojan:Win32/Oficla.E [/B]
NOD32 4588 2009.11.09 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.09 -
[B]Panda 10.0.2.2 2009.11.09 Suspicious file[/B]
PCTools 7.0.3.5 2009.11.09 -
[B]Prevx 3.0 2009.11.09 Medium Risk Malware[/B]
Rising 22.21.00.08 2009.11.09 -
Sophos 4.47.0 2009.11.09 -
Sunbelt 3.2.1858.2 2009.11.08 -
Symantec 1.4.4.12 2009.11.09 -
TheHacker 6.5.0.2.063 2009.11.06 -
TrendMicro 9.0.0.1003 2009.11.09 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.9.2027 2009.11.09 -
VirusBuster 4.6.5.0 2009.11.09 - [/QUOTE]
-
t-59841
[CODE]File avz00003._ta received on 2009.11.10 13:55:46 (UTC)
Antivirus Version Last Update Result
a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
[B]DrWeb 5.0.0.12182 2009.11.10 Trojan.Winlock.341[/B]
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
GData 19 2009.11.10 -
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee+Artemis 5797 2009.11.09 -
McAfee-GW-Edition 6.8.5 2009.11.10 -
Microsoft 1.5202 2009.11.10 -
[B]NOD32 4591 2009.11.10 Win32/LockScreen.CZ[/B]
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.10 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 -[/CODE]
Additional information
File size: 114688 bytes
MD5...: c06063a7028d3b68df9b295fc56cdfc8
-
File ubiquity.html received on 2009.11.10 13:26:21 (UTC)
Result: 2/40 (5%)
[QUOTE]a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
[B]F-Prot 4.5.1.85 2009.11.10 JS/Obf.I.gen[/B]
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
GData 19 2009.11.10 -
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee+Artemis 5797 2009.11.09 -
[B]McAfee-GW-Edition 6.8.5 2009.11.10 Heuristic.LooksLike.JS.Suspicious.A[/B]
Microsoft 1.5202 2009.11.10 -
NOD32 4591 2009.11.10 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.10 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 - [/QUOTE]
[url]http://www.virustotal.com/analisis/0828ba62ca4096bca0f452f4ece1ed0b811ac7ff9ace4f7e3d1de0dfed4c8232-1257859581[/url]
-
Файл js1.js получен 2009.11.10 16:28:22 (UTC)
Текущий статус: закончено
Результат: 3/41 (7.32%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
[B]Avast 4.8.1351.0 2009.11.10 JS:Downloader-GA[/B]
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
[B]GData 19 2009.11.10 JS:Downloader-GA [/B]
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
[B]Kaspersky 7.0.0.125 2009.11.10 Trojan-Downloader.JS.Agent.erx[/B]
McAfee 5797 2009.11.09 -
McAfee+Artemis 5797 2009.11.09 -
McAfee-GW-Edition 6.8.5 2009.11.10 -
Microsoft 1.5202 2009.11.10 -
NOD32 4592 2009.11.10 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.10 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 -[/QUOTE]
Дополнительная информация
File size: 69660 bytes
MD5...: 20aed7a2762581ae62020ced22637084
SHA1..: c916636997009751cbc7144e50c61d6f39eac423
SHA256: e759be2694669b60de904976d57f05917cc85dba3d560a2f4853a7db02aada90
ssdeep: 1536:UKBFJHL4SCch1feKPWkAh6VKDTe3nwedUw8/XrHpVFjZ9ESl+Er/jFkZggC
p6Sye:UKBFJHL4SCch1feKPWkAh6VKDTe3nweG
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
packers (F-Prot): Unicode
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
[url]http://www.virustotal.com/ru/analisis/e759be2694669b60de904976d57f05917cc85dba3d560a2f4853a7db02aada90-1257870502[/url]
***
Файл js2.js получен 2009.11.10 16:23:12 (UTC)
Текущий статус: закончено
Результат: 11/40 (27.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.10 HTML/Rce.Gen[/B]
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
[B]Avast 4.8.1351.0 2009.11.10 VBS:SnapshotView-S[/B]
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
[B]F-Prot 4.5.1.85 2009.11.10 JS/Heaspr.C.gen[/B]
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
[B]GData 19 2009.11.10 VBS:SnapshotView-S [/B]
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
[B]McAfee-GW-Edition 6.8.5 2009.11.10 Heuristic.LooksLike.JS.Suspicious.E[/B]
[B]Microsoft 1.5202 2009.11.10 Exploit:JS/ShellCode.gen[/B]
NOD32 4592 2009.11.10 -
[B]Norman 6.03.02 2009.11.10 JS/ShellCode.B[/B]
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.10 -
[B]PCTools 7.0.3.5 2009.11.10 HTML.Psyme.Gen[/B]
Prevx 3.0 2009.11.10 -
[B]Rising 22.21.01.09 2009.11.10 Trojan.DL.VBS.Agent.coj[/B]
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
[B]TrendMicro 9.0.0.1003 2009.11.10 Expl_ShellCodeSM[/B]
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
[B]VirusBuster 4.6.5.0 2009.11.10 HTML.Psyme.Gen[/B][/QUOTE]
Дополнительная информация
File size: 17861 bytes
MD5...: 59e2a9bada969b178479b68393baaac7
SHA1..: 73fbf2ccbdf3d27cbf0ae5e47e9f153565cd6d3e
SHA256: 2bfa8ad5673496e37b59ff111bb8d96d1e1c843bdb9222f5faca959839a75c20
ssdeep: 384:qqbBA8DkXvzWpUVxSVGMZ9UBWFD33E1+6Jd7FyA7FT8KrqZQJltPApj7/6LL
2Fz:N+HXvzWpUzeGMMOD33VU8gltPAt/YL2J
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Unknown!
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
[url]http://www.virustotal.com/ru/analisis/2bfa8ad5673496e37b59ff111bb8d96d1e1c843bdb9222f5faca959839a75c20-1257870192[/url]
***
Файл js3.js получен 2009.11.10 16:32:24 (UTC)
Текущий статус: закончено
Результат: 2/34 (5.89%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
[B]Avast 4.8.1351.0 2009.11.10 JS:Downloader-GD[/B]
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
Fortinet 3.120.0.0 2009.11.10 -
[B]GData 19 2009.11.10 JS:Downloader-GD [/B]
Ikarus T3.1.1.74.0 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee-GW-Edition 6.8.5 2009.11.10 -
NOD32 4592 2009.11.10 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.10 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.10 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.10 -[/QUOTE]
Дополнительная информация
File size: 111894 bytes
MD5...: 4fa418e79613dc9c29165140e541ce32
SHA1..: e13fa6b6af792b75b40875e8539223e9fe3f00ec
SHA256: 28acf26fe14b6133135d9b8d879fe6b43c92313a2a6fe960b77634fe45f75424
ssdeep: 384:ZnFsxoRsBdBRsL9BRsB9BRsN9BRsN9BRsXynyvWyd0x7pcto/obhyhhJKzE6
L:X
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): Unicode, eval, unescape
pdfid.: -
[url]http://www.virustotal.com/ru/analisis/28acf26fe14b6133135d9b8d879fe6b43c92313a2a6fe960b77634fe45f75424-1257870744[/url]
***
Файл js4.js получен 2009.11.10 16:42:33 (UTC)
Текущий статус: закончено
Результат: 1/40 (2.5%)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.10 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.10 -
Authentium 5.2.0.5 2009.11.10 -
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
BitDefender 7.2 2009.11.10 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2905 2009.11.10 -
DrWeb 5.0.0.12182 2009.11.10 -
eSafe 7.0.17.0 2009.11.10 -
eTrust-Vet 35.1.7113 2009.11.10 -
[B]F-Prot 4.5.1.85 2009.11.10 JS/FakeAV.H.gen[/B]
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
GData 19 2009.11.10 -
Ikarus T3.1.1.74.0 2009.11.10 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
McAfee 5797 2009.11.09 -
McAfee-GW-Edition 6.8.5 2009.11.10 -
Microsoft 1.5202 2009.11.10 -
NOD32 4592 2009.11.10 -
Norman 6.03.02 2009.11.10 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.10 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.10 -
Rising 22.21.01.09 2009.11.10 -
Sophos 4.47.0 2009.11.10 -
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.10 -[/QUOTE]
Дополнительная информация
File size: 102270 bytes
MD5...: dd16df234e6c739c434a049b3b280b0b
SHA1..: 0d2c68608fa79ad99e4437d7e6f8f997802d2543
SHA256: ea21604c0f149f26d1dd9da5462efe3e3efcb43c696d35d16f92211cfbca6ec8
ssdeep: 3072:B8L2MNljLY2UWIvzrZcLmrefWFZxwTD8bv+xciIR/FtjaszT5RkD80JFHD6
gjc2u:f
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set
-
pdfid.: -
trid..: Text - UTF-16 (LE) encoded (64.4%)
MP3 audio (32.2%)
Lumena CEL bitmap (2.0%)
Corel Photo Paint (1.3%)
sigcheck:
publisher....: n/a
copyright....: n/a
product......: n/a
description..: n/a
original name: n/a
internal name: n/a
file version.: n/a
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned
packers (F-Prot): Unicode
[url]http://www.virustotal.com/ru/analisis/ea21604c0f149f26d1dd9da5462efe3e3efcb43c696d35d16f92211cfbca6ec8-1257871353[/url]
-
Достаточно свежий, прислали ссылку по почте
Файл document.scr получен 2009.11.11 05:32:31 (UTC)
[QUOTE]Антивирус Версия Обновление Результат
a-squared 4.5.0.41 2009.11.11 -
AhnLab-V3 5.0.0.2 2009.11.06 -
AntiVir 7.9.1.61 2009.11.10 -
Antiy-AVL 2.0.3.7 2009.11.11 -
[B]Authentium 5.2.0.5 2009.11.11 W32/Sasfis.I[/B]
[B]Avast 4.8.1351.0 2009.11.10 Win32:Malware-gen[/B]
AVG 8.5.0.423 2009.11.11 -
BitDefender 7.2 2009.11.11 -
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
Comodo 2913 2009.11.11 -
DrWeb 5.0.0.12182 2009.11.10 -
[B]eSafe 7.0.17.0 2009.11.10 Suspicious File[/B]
eTrust-Vet 35.1.7113 2009.11.10 -
F-Prot 4.5.1.85 2009.11.10 -
F-Secure 9.0.15370.0 2009.11.09 -
Fortinet 3.120.0.0 2009.11.10 -
[B]GData 19 2009.11.11 Win32:Malware-gen[/B]
Ikarus T3.1.1.74.0 2009.11.11 -
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.893 2009.11.10 -
[B]Kaspersky 7.0.0.125 2009.11.11 Trojan.Win32.Sasfis.ubl[/B]
McAfee 5798 2009.11.10 -
McAfee+Artemis 5798 2009.11.10 -
[B]McAfee-GW-Edition 6.8.5 2009.11.11 Heuristic.LooksLike.Trojan.Sasfis.B
Microsoft 1.5202 2009.11.10 Trojan:Win32/Oficla.E
NOD32 4594 2009.11.11 a variant of Win32/Oficla.BI[/B]
Norman 6.03.02 2009.11.10 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.10 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.11 -
Rising 22.21.02.01 2009.11.11 -
Sophos 4.47.0 2009.11.11 -
Sunbelt 3.2.1858.2 2009.11.11 -
Symantec 1.4.4.12 2009.11.11 -
TheHacker 6.5.0.2.065 2009.11.11 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.10 -
ViRobot 2009.11.11.2030 2009.11.11 -
VirusBuster 4.6.5.0 2009.11.10 -[/QUOTE]
Дополнительная информация
File size: 19456 bytes
MD5 : fab42f51084482c14c10dc62fb5c76c3
SHA1 : c2a6fb5a2e9296a6411a366849c0d349cbc9cb96
SHA256: b90aa150e25e38ff6d14f729e8f3257cd67a3825d073ace505108c6177a13e5f
PEInfo: PE Structure information<br> <br> ( base data )<br> entrypointaddress.: 0x10C0<br> timedatestamp.....: 0x4AF4AB3E (Sat Nov 7 00:03:26 2009)<br> machinetype.......: 0x14C (Intel I386)<br> <br> ( 4 sections )<br> name viradd virsiz rawdsiz ntrpy md5<br> .text 0x1000 0x2798 0x2800 7.54 853b412f90425225863ac0e3b9b742f8<br>.data 0x4000 0x1D00 0x1E00 7.87 ea10ea9408f3399ef3d6ad0925cce952<br>.bss 0x6000 0x40 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e<br>.idata 0x7000 0x14 0x200 0.00 bf619eac0cdf3f68d496ea9344137e8b<br> <br> ( 0 imports )<br> <br> <br> ( 0 exports )<br>
TrID : File type identification<br>Win16/32 Executable Delphi generic (33.9%)<br>Generic Win/DOS Executable (32.7%)<br>DOS Executable Generic (32.7%)<br>VXD Driver (0.5%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.1%)
ssdeep: 384:0PLXTfbnjvr3Rq2GyR++b3p8WTC9mLWzD5zc7BfN1EZMU:GDB+YqKC9mLmG/1
PEiD : -
RDS : NSRL Reference Data Set<br>-
-
После того, как ребенок скачал кейген для регистрации игр Alawar и запустил его, в WINDOWS 7 появился файл c:\Windows\System32\drivers\etc\ntfs...\csrss.exe
[CODE]File smona125796782882842122153 received on 2009.11.11 19:32:46 (UTC)
Antivirus Version Last Update Result
[B]a-squared 4.5.0.41 2009.11.10 Virus.Win32.Rbot!IK[/B]
AhnLab-V3 5.0.0.2 2009.11.06 -
[B]AntiVir 7.9.1.61 2009.11.10 PCK/Obsidium[/B]
Antiy-AVL 2.0.3.7 2009.11.10 -
[B]Authentium 5.2.0.5 2009.11.10 W32/Prorat.BY@bd[/B]
Avast 4.8.1351.0 2009.11.10 -
AVG 8.5.0.423 2009.11.10 -
[B]BitDefender 7.2 2009.11.10 Generic.Lineage.2A83EE54[/B]
CAT-QuickHeal 10.00 2009.11.10 -
ClamAV 0.94.1 2009.11.10 -
[B]Comodo 2905 2009.11.10 Heur.Pck.Obsidium[/B]
DrWeb 5.0.0.12182 2009.11.10 -
[B]eSafe 7.0.17.0 2009.11.10 Suspicious File[/B]
eTrust-Vet 35.1.7113 2009.11.10 -
[B]F-Prot 4.5.1.85 2009.11.10 W32/Prorat.BY@bd
F-Secure 9.0.15370.0 2009.11.09 Generic.Lineage.2A83EE54[/B]
Fortinet 3.120.0.0 2009.11.10 -
[B]GData 19 2009.11.10 Generic.Lineage.2A83EE54
Ikarus T3.1.1.74.0 2009.11.10 Virus.Win32.Rbot[/B]
Jiangmin 11.0.800 2009.11.10 -
K7AntiVirus 7.10.892 2009.11.09 -
Kaspersky 7.0.0.125 2009.11.10 -
[B]McAfee 5797 2009.11.09 Packed-01!920F4D23D04A
McAfee+Artemis 5797 2009.11.09 Packed-01!920F4D23D04A
McAfee-GW-Edition 6.8.5 2009.11.10 Packer.Obsidium[/B]
Microsoft 1.5202 2009.11.10 -
NOD32 4592 2009.11.10 -
Norman 6.03.02 2009.11.09 -
nProtect 2009.1.8.0 2009.11.10 -
Panda 10.0.2.2 2009.11.09 -
PCTools 7.0.3.5 2009.11.10 -
Prevx 3.0 2009.11.11 -
Rising 22.21.01.09 2009.11.10 -
[B]Sophos 4.47.0 2009.11.10 Sus/ComPack-C[/B]
Sunbelt 3.2.1858.2 2009.11.10 -
Symantec 1.4.4.12 2009.11.10 -
TheHacker 6.5.0.2.064 2009.11.09 -
TrendMicro 9.0.0.1003 2009.11.10 -
VBA32 3.12.10.11 2009.11.09 -
ViRobot 2009.11.10.2029 2009.11.10 -
VirusBuster 4.6.5.0 2009.11.09 -[/CODE]
Additional information
File size: 2168320 bytes
MD5 : 920f4d23d04a7cccac2fa662f5d7e378
SHA1 : f0bf57385000598f984e8b8b9760a28dd90da512
SHA256: efe1446525bc63e0d5d2b80810ddd4c81442ba98c74a24943da70d04b314f71c
PEInfo: PE Structure information<br> <br> ( base data )<br> entrypointaddress.: 0xB000<br> timedatestamp.....: 0x2A425E19 (Sat Jun 20 00:22:17 1992)<br> machinetype.......: 0x14C (Intel I386)<br> <br> ( 5 sections )<br> name viradd virsiz rawdsiz ntrpy md5<br> 0x1000 0x1000 0x200 1.13 394b9f49ebd3d1ccb29e1adfdcace756<br>.rsrc 0x2000 0x7000 0x2CC7 6.95 fea078288bf5dd5570242212045185e5<br> 0x9000 0x1000 0x200 0.00 bf619eac0cdf3f68d496ea9344137e8b<br> 0xA000 0x1000 0x18 1.44 74f6e97d38267683097a1a529152afbc<br> 0xB000 0xC000 0xC000 7.98 d0e0cd79d583da2f75ef73b2ae29587a<br> <br> ( 2 imports )<br> <br>> kernel32.dll: ExitProcess<br>> user32.dll: MessageBoxA<br> <br> ( 0 exports )<br>
TrID : File type identification<br>Win32 Executable Generic (58.3%)<br>Win16/32 Executable Delphi generic (14.1%)<br>Generic Win/DOS Executable (13.7%)<br>DOS Executable Generic (13.6%)<br>Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
ssdeep: 49152:7nPbAVsVYAuXcXPeqDsUImz0OkgfJOxe26uY42AWpL4m4rz:7nPbAmYA/Gc9Imzygsxh6uY42AWpLb4r
PEiD : -
packers (Kaspersky): Obsidium
RDS : NSRL Reference Data Set<br>-
Page generated in 0.00510 seconds with 10 queries