Исследование антивирусов 5

**Shu_b** · 31.07.2007, 10:00

t=11364 (проверялось вчера)

Код:

 File nso12k.sys received on 07.30.2007 09:46:16 (CET)
Antivirus 	Version 	Last Update 	Result
AhnLab-V3	2007.7.28.0	2007.07.30	-
AntiVir	7.4.0.50	2007.07.30	-
Authentium	4.93.8	2007.07.27	-
Avast	4.7.997.0	2007.07.30	Win32:Agent-JKC
AVG	7.5.0.476	2007.07.30	-
BitDefender	7.2	2007.07.30	-
CAT-QuickHeal	9.00	2007.07.28	-
ClamAV	0.91	2007.07.30	-
DrWeb	4.33	2007.07.30	-
eSafe	7.0.15.0	2007.07.29	-
eTrust-Vet	31.1.5010	2007.07.28	-
Ewido	4.0	2007.07.29	-
FileAdvisor	1	2007.07.30	-
Fortinet	2.91.0.0	2007.07.30	-
F-Prot	4.3.2.48	2007.07.27	-
F-Secure	6.70.13030.0	2007.07.30	-
Ikarus	T3.1.1.8	2007.07.30	Trojan.Win32.Agent.AMR
Kaspersky	4.0.2.24	2007.07.30	-
McAfee	5085	2007.07.27	New Malware.z
Microsoft	1.2704	2007.07.30	-
NOD32v2	2428	2007.07.30	-
Norman	5.80.02	2007.07.27	-
Panda	9.0.0.4	2007.07.29	Rootkit/Agent.GAC
Prevx1	V2	2007.07.30	-
Rising	19.34.01.00	2007.07.30	-
Sophos	4.19.0	2007.07.26	-
Sunbelt	2.2.907.0	2007.07.28	-
Symantec	10	2007.07.30	Hacktool.Rootkit
TheHacker	6.1.7.158	2007.07.30	-
VBA32	3.12.2.1	2007.07.30	-
VirusBuster	4.3.26:9	2007.07.29	-
Webwasher-Gateway	6.0.1	2007.07.30	-
Additional information
File size: 4064 bytes
MD5: f86bcf371145c026fdc403480f495c44
SHA1: 3ac546cd4ea0a5bce316f0cc28ac7f1b7ce1bf00

Код:

 File cssrss.exe received on 07.30.2007 09:46:30 (CET)
Antivirus 	Version 	Last Update 	Result
AhnLab-V3	2007.7.28.0	2007.07.30	-
AntiVir	7.4.0.50	2007.07.30	HEUR/Crypted
Authentium	4.93.8	2007.07.27	-
Avast	4.7.997.0	2007.07.30	-
AVG	7.5.0.476	2007.07.30	-
BitDefender	7.2	2007.07.30	-
CAT-QuickHeal	9.00	2007.07.28	(Suspicious) - DNAScan
ClamAV	0.91	2007.07.30	-
DrWeb	4.33	2007.07.30	-
eSafe	7.0.15.0	2007.07.29	suspicious Trojan/Worm
eTrust-Vet	31.1.5010	2007.07.28	-
Ewido	4.0	2007.07.29	-
FileAdvisor	1	2007.07.30	-
Fortinet	2.91.0.0	2007.07.30	-
F-Prot	4.3.2.48	2007.07.27	-
F-Secure	6.70.13030.0	2007.07.30	-
Ikarus	T3.1.1.8	2007.07.30	-
Kaspersky	4.0.2.24	2007.07.30	-
McAfee	5085	2007.07.27	-
Microsoft	1.2704	2007.07.30	-
NOD32v2	2428	2007.07.30	-
Norman	5.80.02	2007.07.27	-
Panda	9.0.0.4	2007.07.29	Trj/Agent.GAD
Rising	19.34.01.00	2007.07.30	-
Prevx1	V2	2007.07.30	-
Sophos	4.19.0	2007.07.26	-
Sunbelt	2.2.907.0	2007.07.28	VIPRE.Suspicious
Symantec	10	2007.07.30	-
TheHacker	6.1.7.158	2007.07.30	-
VBA32	3.12.2.1	2007.07.30	-
VirusBuster	4.3.26:9	2007.07.29	-
Webwasher-Gateway	6.0.1	2007.07.30	Heuristic.Crypted
Additional information
File size: 15752 bytes
MD5: 62f716218dbfac6dbafc0a94117af899
SHA1: c883ed07aae8df7109742b069ba7a3fe85e8ec22

Kaspersky Anti-Virus
Found Trojan-Downloader.Win32.Agent.bnz, Trojan.Win32.Agent.amr
Dr.Web
Found Trojan.NtRootKit.323, Trojan.NtRootKit.322

Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:

**yu_mor** · 31.07.2007, 12:11

File navu32.exe received on 07.31.2007 08:27:56 (CET)
Current status: finished

Print results Antivirus Version Last Update Result
AhnLab-V3 2007.7.31.1 2007.07.31 -
AntiVir 7.4.0.54 2007.07.30 HEUR/Crypted
Authentium 4.93.8 2007.07.30 Possibly a new variant of W32/Threat-SysVenFakU-based!Maximus
Avast 4.7.997.0 2007.07.30 -
AVG 7.5.0.476 2007.07.30 -
BitDefender 7.2 2007.07.31 -
CAT-QuickHeal 9.00 2007.07.30 (Suspicious) - DNAScan
ClamAV 0.91 2007.07.31 -
DrWeb 4.33 2007.07.31 -
eSafe 7.0.15.0 2007.07.29 Suspicious Trojan/Worm
eTrust-Vet 31.1.5018 2007.07.31 -
Ewido 4.0 2007.07.30 -
FileAdvisor 1 2007.07.31 -
Fortinet 2.91.0.0 2007.07.31 -
F-Prot 4.3.2.48 2007.07.30 W32/Threat-SysVenFakU-based!Maximus
F-Secure 6.70.13030.0 2007.07.31 -
Ikarus T3.1.1.8 2007.07.31 Trojan-Downloader.Win32.Zlob.and
Kaspersky 4.0.2.24 2007.07.31 -
McAfee 5086 2007.07.30 New Malware.aj
Microsoft 1.2704 2007.07.31 -
NOD32v2 2429 2007.07.30 -
Norman 5.80.02 2007.07.30 W32/Suspicious_U.gen
Panda 9.0.0.4 2007.07.31 Suspicious file
Prevx1 V2 2007.07.31 -
Rising 19.34.11.00 2007.07.31 -
Sophos 4.19.0 2007.07.26 Mal/Packer
Sunbelt 2.2.907.0 2007.07.31 -
Symantec 10 2007.07.31 -
TheHacker 6.1.7.159 2007.07.31 -
VBA32 3.12.2.2 2007.07.30 -
VirusBuster 4.3.26:9 2007.07.30 -
Webwasher-Gateway 6.0.1 2007.07.31 Heuristic.Crypted
Additional information
File size: 62826 bytes
MD5: c558cf168f705122af62aa561f1e05f2
SHA1: ad14017668f81d6de0d515378590c010da383688
packers: UPACK

странно:
File Version Information :
Company Name : Microsoft Corporation
File Description : NetWork Monitor Control
File Version : 5.0.2134.1
Internal Name : navu32.exe
Legal Copyright : Copyright (C) Microsoft Corp. 1991-2001
Original Filename : navu32.exe
Product Name : Microsoft(R) Windows (R) 2000 Operating System
Product Version : 5.0.2195.3649
Comments :
Legal Trademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
Private Build :
Special Build :

Creation Date : 30/07/2007 17:50:14
Last Modif. Date : 10/01/2000 16:00:00
Last Access Date : 31/07/2007 00:00:00
FileSize : 62826 bytes ( 61.354 KB, 0.060 MB )
FileVersionInfoSize : 2396 bytes
File type : Application (0x1)
Target OS : Win32 API (Windows NT) (0x40004)
File/Product version : 5.0.2195.3649 / 5.0.2195.3649
Language : Английский (США) (0x409)
Character Set : (0x4B0)

**Muzzle** · 01.08.2007, 08:00

из темы http://virusinfo.info/showthread.php?t=11425
C:\Windows\System32\Check.exe

AhnLab-V3 2007.7.31.1 2007.08.01 -
AntiVir 7.4.0.54 2007.07.31 -
Authentium 4.93.8 2007.07.31 -
Avast 4.7.1029.0 2007.07.31 -
AVG 7.5.0.476 2007.07.31 -
BitDefender 7.2 2007.08.01 -
CAT-QuickHeal 9.00 2007.07.31 -
ClamAV 0.91 2007.08.01 -
DrWeb 4.33 2007.07.31 -
eSafe 7.0.15.0 2007.07.31 -
eTrust-Vet 31.1.5021 2007.08.01 -
Ewido 4.0 2007.07.31 -
FileAdvisor 1 2007.08.01 -
Fortinet 2.91.0.0 2007.08.01 -
F-Prot 4.3.2.48 2007.07.31 -
F-Secure 6.70.13030.0 2007.07.31 -
Ikarus T3.1.1.8 2007.07.31 -
Kaspersky 4.0.2.24 2007.08.01 -
McAfee 5087 2007.07.31 -
Microsoft 1.2704 2007.08.01 -
NOD32v2 2430 2007.07.31 -
Norman 5.80.02 2007.07.31 -
Panda 9.0.0.4 2007.08.01 -
Prevx1 V2 2007.08.01 -
Rising 19.34.21.00 2007.08.01 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.07.31 VIPRE.Suspicious
Symantec 10 2007.08.01 -
TheHacker 6.1.7.159 2007.07.31 -
VBA32 3.12.2.2 2007.07.31 -
VirusBuster 4.3.26:9 2007.07.31 -
Webwasher-Gateway 6.0.1 2007.08.01 Win32.Malware.gen (suspicious)

и касперский будет опознавать как Trojan-PSW.Win32.WOW.lq,после обновления баз.

**yu_mor** · 01.08.2007, 15:39

File sysdrv9.exe received on 08.01.2007 13:40:48 (CET)
Current status: finished
Result: 5/32 (15.63%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.2.0 2007.08.01 -
AntiVir 7.4.0.54 2007.08.01 -
Authentium 4.93.8 2007.07.31 could be a corrupted executable file
Avast 4.7.1029.0 2007.08.01 -
AVG 7.5.0.476 2007.07.31 -
BitDefender 7.2 2007.08.01 -
CAT-QuickHeal 9.00 2007.07.31 -
ClamAV 0.91 2007.08.01 -
DrWeb 4.33 2007.08.01 -
eSafe 7.0.15.0 2007.07.31 suspicious Trojan/Worm
eTrust-Vet 31.1.5022 2007.08.01 -
Ewido 4.0 2007.08.01 -
FileAdvisor 1 2007.08.01 -
Fortinet 2.91.0.0 2007.08.01 -
F-Prot 4.3.2.48 2007.07.31 -
F-Secure 6.70.13030.0 2007.08.01 Trojan-Spy.Win32.Small.gv
Ikarus T3.1.1.8 2007.08.01 -
Kaspersky 4.0.2.24 2007.08.01 Trojan-Spy.Win32.Small.gv
McAfee 5087 2007.07.31 -
Microsoft 1.2704 2007.08.01 -
NOD32v2 2430 2007.07.31 -
Norman 5.80.02 2007.07.31 -
Panda 9.0.0.4 2007.08.01 -
Prevx1 V2 2007.08.01 -
Rising 19.34.22.00 2007.08.01 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.07.31 -
Symantec 10 2007.08.01 -
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.07.31 -
VirusBuster 4.3.26:9 2007.07.31 -
Webwasher-Gateway 6.0.1 2007.08.01 Win32.Malware.dam (suspicious)
Additional information
File size: 11895 bytes
MD5: a9aa11fe83fd5802a6064047dd7e940d
SHA1: d85f431154e43293a795a31912e53466322082d7

Complete scanning result of "googletoolbar1.dll", processed in VirusTotal at 08/02/2007 08:17:54 (CET).

[ file data ]
* name: googletoolbar1.dll
* size: 19968
* md5.: 76346c994571a4dab5b3904a61afd3d4
* sha1: dfc84eed7e817e1b29411a4a54c202bfe51f40c9

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found [TR/BHO.Agent.19968]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070801 found nothing
eSafe 7.0.15.0/20070731 found nothing
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found [Trojan.Win32.Agent.aun]
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found nothing
Kaspersky 4.0.2.24/20070802 found [Trojan.Win32.Agent.aun]
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found [W32/Horst.gen25]
Panda 9.0.0.4/20070802 found [Suspicious file]
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found [Mal/Behav-004]
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Trojan.BHO.Agent.19968]

Complete scanning result of "sysdrv2.exe", processed in VirusTotal at 08/02/2007 08:11:20 (CET).

[ file data ]
* name: sysdrv2.exe
* size: 3616
* md5.: 8e2817e1b7fb2fbf2adb90ceab97f9c2
* sha1: f519a9b16d7265e6d385e1d24f9e7241eedc97ae

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found nothing
Authentium 4.93.8/20070802 found [W32/Downldr2.AJMZ]
Avast 4.7.1029.0/20070801 found [Win32:Agent-ITC]
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found [Trojan.Downloader-10584]
DrWeb 4.33/20070801 found nothing
eSafe 7.0.15.0/20070731 found [Suspicious Trojan/Worm]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found [W32/Downldr2.AJMZ]
F-Secure 6.70.13030.0/20070802 found [Trojan-Downloader.Win32.Agent.bvl]
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found [Trojan-Downloader.Win32.Agent.bvl]
Kaspersky 4.0.2.24/20070802 found [Trojan-Downloader.Win32.Agent.bvl]
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Prevx1 V2/20070802 found nothing
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found [Trojan-Downloader.Win32.Agent.bvl]
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Win32.Malware.dam (suspicious)]

Complete scanning result of "sysdrv4.exe", processed in VirusTotal at 08/02/2007 08:10:46 (CET).

[ file data ]
* name: sysdrv4.exe
* size: 3616
* md5.: 264c9fe6ea9caf2d1159a41d44d4eab2
* sha1: 444ea4a9b0fbbef9ce4a01542dc7dae30d0230d8

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found nothing
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found [(Suspicious) - DNAScan]
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070801 found nothing
eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found [Trojan-Downloader.Win32.Small.ckj]
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found [unpack error]
Norman 5.80.02/20070801 found [Suspicious_F.gen]
Panda 9.0.0.4/20070802 found [Suspicious file]
Prevx1 V2/20070802 found nothing
Rising 19.34.30.00/20070802 found [Backdoor.Win32.Small.ls]
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Win32.Malware.gen#FSG (suspicious)]

Complete scanning result of "~.exe", processed in VirusTotal at 08/02/2007 08:09:17 (CET).

[ file data ]
* name: ~.exe
* size: 2228
* md5.: aff86add4004a101f914be6f0581769c
* sha1: 1fc74362f9df55ee54c0c9283fc6aae397aa7842

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.54/20070801 found nothing
Authentium 4.93.8/20070802 found [could be a corrupted executable file]
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070801 found nothing
eSafe 7.0.15.0/20070731 found nothing
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found nothing
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Win32.Malware.dam (suspicious)]

**V_Bond** · 01.08.2007, 17:02

Код:

hnLab-V3	2007.8.2.0	2007.08.01	-
AntiVir	7.4.0.54	2007.08.01	TR/Crypt.XPACK.Gen
Authentium	4.93.8	2007.07.31	-
Avast	4.7.1029.0	2007.08.01	-
AVG	7.5.0.476	2007.07.31	-
BitDefender	7.2	2007.08.01	-
CAT-QuickHeal	9.00	2007.07.31	(Suspicious) - DNAScan
ClamAV	0.91	2007.08.01	-
DrWeb	4.33	2007.08.01	-
eSafe	7.0.15.0	2007.07.31	-
eTrust-Vet	31.1.5022	2007.08.01	-
Ewido	4.0	2007.08.01	-
FileAdvisor	1	2007.08.01	-
Fortinet	2.91.0.0	2007.08.01	-
F-Prot	4.3.2.48	2007.07.31	-
F-Secure	6.70.13030.0	2007.08.01	-
Ikarus	T3.1.1.8	2007.08.01	-
Kaspersky	4.0.2.24	2007.08.01	-
McAfee	5087	2007.07.31	-
Microsoft	1.2704	2007.08.01	PWS:Win32/Bankrypt.gen
NOD32v2	2430	2007.07.31	-
Norman	5.80.02	2007.07.31	-
Panda	9.0.0.4	2007.08.01	Suspicious file
Prevx1	V2	2007.08.01	-
Rising	19.34.22.00	2007.08.01	-
Sophos	4.19.0	2007.08.01	-
Sunbelt	2.2.907.0	2007.07.31	VIPRE.Suspicious
Symantec	10	2007.08.01	-
TheHacker	6.1.7.160	2007.08.01	-
VBA32	3.12.2.2	2007.07.31	-
VirusBuster	4.3.26:9	2007.08.01	-
Webwasher-Gateway	6.0.1	2007.08.01	Trojan.Crypt.XPACK.Gen
Additional information
File size: 478208 bytes
MD5: 58cb2f0941876bf115ebe49cfdbb8c78
SHA1: 33d8624006e512915ebaa5dbf50c12e47eb03b95

**yu_mor** · 02.08.2007, 13:38

просто жуть!
Complete scanning result of "603-a[1].exe", processed in VirusTotal at 08/02/2007 09:40:40 (CET).

[ file data ]
* name: 603-a[1].exe
* size: 31232
* md5.: 757dfe2127314a1473ed0392b06174e6
* sha1: 774ac812b505d57c7b958ee06cebb978ee86d1ba

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.57/20070802 found [TR/Proxy.Small.DU.1300]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found [SHeur.DZI]
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found nothing
eSafe 7.0.15.0/20070731 found [Suspicious Trojan/Worm]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found [Trojan-Proxy.Win32.Small.du]
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found [Trojan-Proxy.Win32.Small.DU]
Kaspersky 4.0.2.24/20070802 found [Trojan-Proxy.Win32.Small.du]
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Prevx1 V2/20070802 found nothing
Rising 19.34.30.00/20070802 found [Backdoor.Gpigeon.2006.ixo]
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Win32.NewMalware.IM!31232!4]

Complete scanning result of "d[1].exe", processed in VirusTotal at 08/02/2007 10:18:03 (CET).

[ file data ]
* name: d[1].exe
* size: 58880
* md5.: 1deb83fa1f3d96a0602e24d7e51bc773
* sha1: 923e878d9840ad23c42eb85a7dcb80c17349dc0b

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.57/20070802 found [TR/Obfuscated.GP.34]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found [Generic5.ZOC]
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found [Trojan.Obfuscated.gp]
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found [Trojan.Swizzor]
eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found [Trojan.Win32.Obfuscated.gp]
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found [W32/Obfuscated.GP!tr]
Ikarus T3.1.1.8/20070802 found [Trojan.Win32.Agent.alt]
Kaspersky 4.0.2.24/20070802 found [Trojan.Win32.Obfuscated.gp]
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found [Trj/Downloader.PRL]
Prevx1 V2/20070802 found [Covert.Code]
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found [Trojan.Win32.Obfuscated.gp]
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found [Trojan/Obfuscated.gp]
VBA32 3.12.2.2/20070801 found [Trojan.Win32.Obfuscated.gp]
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Trojan.Obfuscated.GP.34]

[ notes ]
packers: UPX
packers: UPX
packers: UPX
Prevx info: http://fileinfo.prevx.com/fileinfo.a...2C0600176037C0

Complete scanning result of "n2_01_08_07_0[1].exe", processed in VirusTotal at 08/02/2007 09:56:49 (CET).

[ file data ]
* name: n2_01_08_07_0[1].exe
* size: 111104
* md5.: 1277ee6e1d1a7654ce2f64f2560f86b0
* sha1: 54ae7c104da54673352b780e9ba82e330de1d8cb

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.57/20070802 found [TR/Crypt.FKM.Gen]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found nothing
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found nothing
eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found [Trojan.Win32.Agent.alt]
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found nothing
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Trojan.Crypt.FKM.Gen]

[ notes ]
packers: UPX
packers: UPX
packers: UPX

и его брат-близнец:
Complete scanning result of "n2_31_07_07_0[1].exe", processed in VirusTotal at 08/02/2007 10:12:40 (CET).

[ file data ]
* name: n2_31_07_07_0[1].exe
* size: 104448
* md5.: 8e16588e88ac956e5720293fce7cadca
* sha1: 9e374ff120fae7a1ff613d8bb6b4e5f12c64c4df

[ scan result ]
AhnLab-V3 2007.8.2.0/20070802 found nothing
AntiVir 7.4.0.57/20070802 found [TR/Crypt.FKM.Gen]
Authentium 4.93.8/20070802 found nothing
Avast 4.7.1029.0/20070801 found nothing
AVG 7.5.0.476/20070801 found nothing
BitDefender 7.2/20070802 found [Trojan.Agent.ALT]
CAT-QuickHeal 9.00/20070801 found nothing
ClamAV 0.91/20070801 found nothing
DrWeb 4.33/20070802 found nothing
eSafe 7.0.15.0/20070731 found [suspicious Trojan/Worm]
eTrust-Vet 31.1.5024/20070801 found nothing
Ewido 4.0/20070801 found nothing
F-Prot 4.3.2.48/20070801 found nothing
F-Secure 6.70.13030.0/20070802 found nothing
FileAdvisor 1/20070802 found nothing
Fortinet 2.91.0.0/20070802 found nothing
Ikarus T3.1.1.8/20070802 found [Trojan.Win32.Agent.alt]
Kaspersky 4.0.2.24/20070802 found nothing
McAfee 5088/20070801 found nothing
Microsoft 1.2704/20070802 found nothing
NOD32v2 2431/20070801 found nothing
Norman 5.80.02/20070801 found nothing
Panda 9.0.0.4/20070802 found [Suspicious file]
Prevx1 V2/20070802 found [Trojan.Nudos]
Rising 19.34.30.00/20070802 found nothing
Sophos 4.19.0/20070801 found nothing
Sunbelt 2.2.907.0/20070802 found nothing
Symantec 10/20070802 found nothing
TheHacker 6.1.7.160/20070801 found nothing
VBA32 3.12.2.2/20070801 found nothing
VirusBuster 4.3.26:9/20070801 found nothing
Webwasher-Gateway 6.0.1/20070802 found [Trojan.Crypt.FKM.Gen]

[ notes ]
packers: UPX
packers: UPX
packers: UPX
Prevx info: http://fileinfo.prevx.com/fileinfo.a...791C004DCFD846

**DoSTR** · 02.08.2007, 16:10

File KIS7-Crack.exe received on 08.02.2007 13:59:43 (CET)
Result: 10/31 (32.26%)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.3.0 2007.08.02 -
AntiVir 7.4.0.57 2007.08.02 TR/PSW.LDPinch.TAW.166
Authentium 4.93.8 2007.08.02 -
Avast 4.7.1029.0 2007.08.02 -
AVG 7.5.0.476 2007.08.01 Obfustat.EJN
BitDefender 7.2 2007.08.02 Trojan.PWS.LDPinch.TAW
CAT-QuickHeal 9.00 2007.08.01 (Suspicious) - DNAScan
ClamAV 0.91 2007.08.01 -
DrWeb 4.33 2007.08.02 Trojan.MulDrop.5888
eSafe 7.0.15.0 2007.07.31 Suspicious Trojan/Worm
eTrust-Vet 31.1.5026 2007.08.02 -
Ewido 4.0 2007.08.01 -
FileAdvisor 1 2007.08.02 -
Fortinet 2.91.0.0 2007.08.02 -
F-Prot 4.3.2.48 2007.08.01 -
F-Secure 6.70.13030.0 2007.08.02 -
Ikarus T3.1.1.8 2007.08.02 Trojan-PWS.LDPinch.TAW
Kaspersky 4.0.2.24 2007.08.02 -
McAfee 5088 2007.08.01 -
Microsoft 1.2704 2007.08.02 -
NOD32v2 2432 2007.08.02 -
Norman 5.80.02 2007.08.02 -
Panda 9.0.0.4 2007.08.02 -
Rising 19.34.32.00 2007.08.02 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.02 VIPRE.Suspicious
Symantec 10 2007.08.02 -
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.08.01 -
VirusBuster 4.3.26:9 2007.08.02 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.08.02 Trojan.PSW.LDPinch.TAW.166
Additional information
File size: 175012 bytes
MD5: 3b5f9cfe5fdbb0eea06d7b202d96fb1c
SHA1: 63bb9d9ea2f1e9fc1bc2a7773552a64a44039ad1
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

**ISO** · 03.08.2007, 07:21

File php.exe received on 08.03.2007 05:07:25 (CET)
Current status: Loading ... finished
Result:
Loading server information...
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.3.0 2007.08.02 -
AntiVir 7.4.0.57 2007.08.02 EXP/PhpBB.G
Authentium 4.93.8 2007.08.02 is a security risk or a \"backdoor\" program
Avast 4.7.1029.0 2007.08.02 Win32hpBB-C
AVG 7.5.0.476 2007.08.02 Potentially harmful program Exploit.XN
BitDefender 7.2 2007.08.03 Trojan.Exploit.Phpbb.G
CAT-QuickHeal 9.00 2007.08.01 -
ClamAV 0.91 2007.08.02 -
DrWeb 4.33 2007.08.02 -
eSafe 7.0.15.0 2007.07.31 -
eTrust-Vet 31.1.5028 2007.08.03 -
Ewido 4.0 2007.08.02 Not-A-Virus.Exploit.Win32.PhpBB.g
FileAdvisor 1 2007.08.03 -
Fortinet 2.91.0.0 2007.08.03 W32/PhpBB.G!exploit
F-Prot 4.3.2.48 2007.08.02 W32/Malware!f5d8
F-Secure 6.70.13030.0 2007.08.03 Exploit.Win32.PhpBB.g
Ikarus T3.1.1.8 2007.08.02 -
Kaspersky 4.0.2.24 2007.08.03 Exploit.Win32.PhpBB.g
McAfee 5089 2007.08.02 Generic.cd
Microsoft 1.2704 2007.08.03 Exploit:Win32/PhpBB.E
NOD32v2 2434 2007.08.02 Win32/Exploit.PhpBB.G
Norman 5.80.02 2007.08.02 W32/Exploit.gen
Panda 9.0.0.4 2007.08.02 Trj/PhpBB.D
Rising 19.34.40.00 2007.08.03 Hack.Exploit.PHPBB.b
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.03 -
Symantec 10 2007.08.03 Hacktool
TheHacker 6.1.7.160 2007.08.01 -
VBA32 3.12.2.2 2007.08.01 -
VirusBuster 4.3.26:9 2007.08.02 -
Webwasher-Gateway 6.0.1 2007.08.03 Exploit.PhpBB.G
Additional information
File size: 124416 bytes
MD5: 9e0841453b1385587d1da672acccd332
SHA1: 721ec2fe353ad47b2ff0d1ac1a523ee845475e97

**zorro84** · 05.08.2007, 18:38

запостили сегодня на vozvrat.org:

Complete scanning result of "Dark.zip", processed in VirusTotal at 08/05/2007 16:06:47 (CET).

[ file data ]
* name: Dark.zip
* size: 1346581
* md5.: cdbcd32fc810066dab1f59ab8a5d7b3c
* sha1: 589c575681dce337cb3c5e6d27f88bebcd124d55

[ scan result ]
AhnLab-V3 2007.8.3.0/20070803 found nothing
AntiVir 7.4.0.57/20070803 found [HEUR/Crypted]
Authentium 4.93.8/20070803 found nothing
Avast 4.7.1029.0/20070805 found nothing
AVG 7.5.0.476/20070804 found nothing
BitDefender 7.2/20070805 found nothing
CAT-QuickHeal 9.00/20070804 found [Backdoor.SdBot.gen]
ClamAV 0.91/20070805 found nothing
DrWeb 4.33/20070805 found nothing
eSafe 7.0.15.0/20070731 found nothing
eTrust-Vet 31.1.5032/20070804 found nothing
Ewido 4.0/20070803 found nothing
F-Prot 4.3.2.48/20070803 found nothing
F-Secure 6.70.13030.0/20070803 found nothing
FileAdvisor 1/20070805 found nothing
Fortinet 2.91.0.0/20070805 found nothing
Ikarus T3.1.1.8/20070805 found [Backdoor.VB.EV]
Kaspersky 4.0.2.24/20070805 found nothing
McAfee 5090/20070803 found nothing
Microsoft 1.2704/20070805 found nothing
NOD32v2 2438/20070805 found nothing
Norman 5.80.02/20070803 found nothing
Panda 9.0.0.4/20070805 found nothing
Prevx1 V2/20070805 found nothing
Rising 19.34.40.00/20070803 found nothing
Sophos 4.19.0/20070801 found [Mal/Basine-C]
Sunbelt 2.2.907.0/20070804 found [VIPRE.Suspicious]
Symantec 10/20070805 found nothing
TheHacker 6.1.7.162/20070804 found nothing
VBA32 3.12.2.2/20070804 found nothing
VirusBuster 4.3.26:9/20070804 found nothing
Webwasher-Gateway 6.0.1/20070803 found [Heuristic.Crypted]

[ notes ]
packers: Themida
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

**ISO** · 09.08.2007, 14:34

Сидел в корне диска
File settings.exe received on 08.09.2007 12:37:23 (CET)
Current status: finished
Result: 18/32 (56.25%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.9.2 2007.08.09 Win-Trojan/Polycrypt.35324
AntiVir 7.4.0.57 2007.08.09 TR/PCK.PolyCrypt.B.959
Authentium 4.93.8 2007.08.08 -
Avast 4.7.1029.0 2007.08.08 -
AVG 7.5.0.476 2007.08.08 Generic5.LZE
BitDefender 7.2 2007.08.09 Trojan.PWS.LDPinch.TAW
CAT-QuickHeal 9.00 2007.08.08 (Suspicious) - DNAScan
ClamAV 0.91 2007.08.09 -
DrWeb 4.33 2007.08.09 -
eSafe 7.0.15.0 2007.07.31 Suspicious Trojan/Worm
eTrust-Vet 31.1.5045 2007.08.09 -
Ewido 4.0 2007.08.08 -
FileAdvisor 1 2007.08.09 -
Fortinet 2.91.0.0 2007.08.09 Basine.C
F-Prot 4.3.2.48 2007.08.08 -
F-Secure 6.70.13030.0 2007.08.09 Packed.Win32.PolyCrypt.b
Ikarus T3.1.1.12 2007.08.09 Trojan-Downloader.Win32.Small.cyn
Kaspersky 4.0.2.24 2007.08.09 Packed.Win32.PolyCrypt.b
McAfee 5093 2007.08.08 -
Microsoft 1.2704 2007.08.09 TrojanDownloader:Win32/Small.CBA
NOD32v2 2446 2007.08.09 -
Norman 5.80.02 2007.08.08 -
Panda 9.0.0.4 2007.08.09 Trj/Ldpinch.AJB
Prevx1 V2 2007.08.09 TROJAN.PWDSTEALER.GEN
Rising 19.35.32.00 2007.08.09 Packer.RyCrypt
Sophos 4.19.0 2007.08.01 Mal/Basine-C
Sunbelt 2.2.907.0 2007.08.09 Trojan.Win32/Anomaly.gen!A
Symantec 10 2007.08.09 -
TheHacker 6.1.7.166 2007.08.09 -
VBA32 3.12.2.2 2007.08.09 -
VirusBuster 4.3.26:9 2007.08.08 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.08.09 Trojan.PCK.PolyCrypt.B.959
Additional information
File size: 35324 bytes
MD5: 84657f739281112b73a4723a5fe4f5ad
SHA1: e9963b910eb4e27bfa29e47763fc7dad8909b582
packers: RCrypt
Prevx info: http://fileinfo.prevx.com/fileinfo.a...291200AFA27E6C

**Winsent** · 09.08.2007, 19:47

File program.exe received on 08.09.2007 17:41:46 (CET)
Current status: finished
Result: 8/32 (25&#37

Antivirus Version Last Update Result

AhnLab-V3 2007.8.9.2 2007.08.09 -
AntiVir 7.4.0.57 2007.08.09 TR/Crypt.XPACK.Gen
Authentium 4.93.8 2007.08.08 -
Avast 4.7.1029.0 2007.08.09 -
AVG 7.5.0.476 2007.08.08 -
BitDefender 7.2 2007.08.09 -
CAT-QuickHeal 9.00 2007.08.09 (Suspicious) - DNAScan
ClamAV 0.91 2007.08.09 -
DrWeb 4.33 2007.08.09 -
eSafe 7.0.15.0 2007.07.31 Suspicious Trojan/Worm
eTrust-Vet 31.1.5045 2007.08.09 -
Ewido 4.0 2007.08.08 -
FileAdvisor 1 2007.08.09 -
Fortinet 2.91.0.0 2007.08.09 -
F-Prot 4.3.2.48 2007.08.08 -
F-Secure 6.70.13030.0 2007.08.09 Trojan-Dropper.Win32.Agent.bog
Ikarus T3.1.1.12 2007.08.09 Backdoor.Win32.Rbot
Kaspersky 4.0.2.24 2007.08.09 Trojan-Dropper.Win32.Agent.bog
McAfee 5094 2007.08.09 -
Microsoft 1.2704 2007.08.09 -
NOD32v2 2446 2007.08.09 -
Norman 5.80.02 2007.08.08 -
Panda 9.0.0.4 2007.08.09 Suspicious file
Prevx1 V2 2007.08.09 -
Rising 19.35.33.00 2007.08.09 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.09 -
Symantec 10 2007.08.09 -
TheHacker 6.1.7.166 2007.08.09 -
VBA32 3.12.2.2 2007.08.09 -
VirusBuster 4.3.26:9 2007.08.09 -
Webwasher-Gateway 6.0.1 2007.08.09 Trojan.Crypt.XPACK.Gen
Additional information
File size: 181760 bytes
MD5: f6b1ddb2c5438f656f32feba729ec413
SHA1: bf271c984fd29d1561e4a6d575f9678068a3db48
packers: NTKrnl

**urbanangel** · 11.08.2007, 00:29

File DVT.rar received on 08.10.2007 22:32:46 (CET)
Current status: finished
Result: 8/32 (25&#37

Antivirus Version Last Update Result

AhnLab-V3 2007.8.9.2 2007.08.10 -
AntiVir 7.4.0.60 2007.08.10 -
Authentium 4.93.8 2007.08.10 -
Avast 4.7.1029.0 2007.08.10 Win32:Trojan-gen. {UPX!}
AVG 7.5.0.476 2007.08.10 -
BitDefender 7.2 2007.08.10 Trojan.Bat.Agent.J
CAT-QuickHeal 9.00 2007.08.10 -
ClamAV 0.91 2007.08.10 -
DrWeb 4.33 2007.08.10 -
eSafe 7.0.15.0 2007.08.10 suspicious Trojan/Worm
eTrust-Vet 31.1.5048 2007.08.10 -
Ewido 4.0 2007.08.10 Trojan.Agent.j
FileAdvisor 1 2007.08.10 -
Fortinet 2.91.0.0 2007.08.10 -
F-Prot 4.3.2.48 2007.08.10 -
F-Secure 6.70.13030.0 2007.08.10 -
Ikarus T3.1.1.12 2007.08.10 Trojan.BAT.Agent.j
Kaspersky 4.0.2.24 2007.08.10 -
McAfee 5095 2007.08.10 -
Microsoft 1.2704 2007.08.10 Trojan:Win32/Agent!6239
NOD32v2 2450 2007.08.10 -
Norman 5.80.02 2007.08.10 -
Panda 9.0.0.4 2007.08.10 -
Prevx1 V2 2007.08.10 Generic.Malware
Rising 19.35.42.00 2007.08.10 -
Sophos 4.19.0 2007.08.01 -
Sunbelt 2.2.907.0 2007.08.10 -
Symantec 10 2007.08.10 -
TheHacker 6.1.7.166 2007.08.10 -
VBA32 3.12.2.2 2007.08.10 -
VirusBuster 4.3.26:9 2007.08.10 -
Webwasher-Gateway 6.0.1 2007.08.10 Win32.ModifiedUPX.gen!90 (suspicious)
Additional information
File size: 28728 bytes
MD5: c249b18860f4ea4f0adf3acbfdda978f
SHA1: 55ed9ef10f6ef6a31d75507ace3449e280bbfdf3
packers: UPX
packers: UPX, BINARYRES, UPX
packers: UPX
Prevx info: http://fileinfo.prevx.com/fileinfo.a...47000045C163CB

**Синауридзе Александр** · 12.08.2007, 06:07

File realfoto.exe received on 08.12.2007 04:07:33 (CET)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.9.2 2007.08.10 -
AntiVir 7.4.0.60 2007.08.10 TR/Dldr.Small.dru.2
Authentium 4.93.8 2007.08.11 -
Avast 4.7.1029.0 2007.08.11 Win32:Small-GYA
AVG 7.5.0.476 2007.08.11 -
BitDefender 7.2 2007.08.12 Trojan.Downloader.Small.AAED
CAT-QuickHeal 9.00 2007.08.11 (Suspicious) - DNAScan
ClamAV 0.91 2007.08.12 Trojan.Downloader-11693
DrWeb 4.33 2007.08.11 -
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5050 2007.08.11 -
Ewido 4.0 2007.08.11 -
FileAdvisor 1 2007.08.12 -
Fortinet 2.91.0.0 2007.08.12 W32/Small.EVT!tr.dldr
F-Prot 4.3.2.48 2007.08.10 -
F-Secure 6.70.13030.0 2007.08.11 -
Ikarus T3.1.1.12 2007.08.11 -
Kaspersky 4.0.2.24 2007.08.12 -
McAfee 5095 2007.08.10 Generic Downloader
Microsoft 1.2704 2007.08.11 TrojanDownloader:Win32/Agent.WX
NOD32v2 2451 2007.08.11 probably a variant of Win32/TrojanDownloader.Small.DRU
Norman 5.80.02 2007.08.10 -
Panda 9.0.0.4 2007.08.11 Suspicious file
Prevx1 V2 2007.08.12 -
Rising 19.35.52.00 2007.08.12 -
Sophos 4.19.0 2007.08.01 Mal/Packer
Sunbelt 2.2.907.0 2007.08.11 VIPRE.Suspicious
Symantec 10 2007.08.12 -
TheHacker 6.1.7.167 2007.08.12 -
VBA32 3.12.2.2 2007.08.11 -
VirusBuster 4.3.26:9 2007.08.11 -
Webwasher-Gateway 6.0.1 2007.08.11 Trojan.Dldr.Small.dru.2

Additional information
File size: 2613 bytes
MD5: 91458b170ac5877978041ffdd0082423
SHA1: 00abb5889f319268423e033e4a91bd50a40f828e
packers: FSG
packers: FSG
packers: FSG
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

**sergio342** · 14.08.2007, 23:23

Свежак. Вчера его, только Касперский видел, после моей отсылки.

Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 TR/Agent.awu.3
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 Generic6.MJQ
BitDefender 7.2 2007.08.14 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
DrWeb 4.33 2007.08.14 Win32.Tank
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.14 -
Fortinet 2.91.0.0 2007.08.14 W32/Agent.AWU!tr
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.14 Trojan.Win32.Agent.awu
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.14 Trojan.Win32.Agent.awu
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.14 -
NOD32v2 2460 2007.08.14 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 -
Prevx1 V2 2007.08.14 -
Rising 19.36.12.00 2007.08.14 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.14 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.13 -
VirusBuster 4.3.26:9 2007.08.14 -
Webwasher-Gateway 6.0.1 2007.08.14 Trojan.Agent.awu.3

Добавлено через 14 минут

Этот же вирус в другом файле.
File flashget.rar received on 08.14.2007 21:22:06 (CET)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 -
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 -
BitDefender 7.2 2007.08.14 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
DrWeb 4.33 2007.08.14 Win32.Tank
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.14 -
Fortinet 2.91.0.0 2007.08.14 -
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.14 -
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.14 -
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.14 -
NOD32v2 2460 2007.08.14 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 -
Prevx1 V2 2007.08.14 -
Rising 19.36.12.00 2007.08.14 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.14 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.13 -
VirusBuster 4.3.26:9 2007.08.14 -
Webwasher-Gateway 6.0.1 2007.08.14 -

Добавлено через 1 минуту

Файл, зараженный этим вирусом.
File regedit.exe received on 08.14.2007 21:23:02 (CET)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 -
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 -
BitDefender 7.2 2007.08.14 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
DrWeb 4.33 2007.08.14 Win32.Tank
eSafe 7.0.15.0 2007.08.10 -
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.14 -
Fortinet 2.91.0.0 2007.08.14 -
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.14 -
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.14 -
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.14 -
NOD32v2 2460 2007.08.14 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 -
Prevx1 V2 2007.08.14 -
Rising 19.36.12.00 2007.08.14 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.14 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.13 -
VirusBuster 4.3.26:9 2007.08.14 -
Webwasher-Gateway 6.0.1 2007.08.14 -

**Синауридзе Александр** · 15.08.2007, 06:39

File update.exe received on 08.15.2007 04:42:19 (CET)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.15.0 2007.08.14 -
AntiVir 7.4.1.62 2007.08.14 -
Authentium 4.93.8 2007.08.14 -
Avast 4.7.1029.0 2007.08.13 -
AVG 7.5.0.476 2007.08.14 -
BitDefender 7.2 2007.08.15 -
CAT-QuickHeal 9.00 2007.08.14 -
ClamAV 0.91 2007.08.14 -
DrWeb 4.33 2007.08.15 -
eSafe 7.0.15.0 2007.08.10 suspicious Trojan/Worm
eTrust-Vet 31.1.5058 2007.08.14 -
Ewido 4.0 2007.08.14 -
FileAdvisor 1 2007.08.15 -
Fortinet 2.91.0.0 2007.08.15 -
F-Prot 4.3.2.48 2007.08.14 -
F-Secure 6.70.13030.0 2007.08.15 -
Ikarus T3.1.1.12 2007.08.14 -
Kaspersky 4.0.2.24 2007.08.15 -
McAfee 5097 2007.08.14 -
Microsoft 1.2704 2007.08.15 -
NOD32v2 2461 2007.08.15 -
Norman 5.80.02 2007.08.14 -
Panda 9.0.0.4 2007.08.14 Suspicious file
Prevx1 V2 2007.08.15 -
Rising 19.36.20.00 2007.08.15 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.14 -
Symantec 10 2007.08.15 -
TheHacker 6.1.8.168 2007.08.14 -
VBA32 3.12.2.2 2007.08.14 -
VirusBuster 4.3.26:9 2007.08.14 -
Webwasher-Gateway 6.0.1 2007.08.14 Win32.ModifiedUPX.gen!84 (suspicious)

Additional information
File size: 145408 bytes
MD5: b6d3fb3fbfc19566b80d57cce7d8d4bb
SHA1: de7eccba772e5537d9f61302373678183124e2d3
packers: UPX_LZMA

**Shu_b** · 17.08.2007, 14:11

t 11753

Код:

File icf.exe received on 08.17.2007 12:15:20 (CET)
Antivirus	Version	Last Update	Result
AhnLab-V3	2007.8.15.0	2007.08.17	-
AntiVir	7.4.1.62	2007.08.17	-
Authentium	4.93.8	2007.08.17	-
Avast	4.7.1029.0	2007.08.16	-
AVG	7.5.0.476	2007.08.16	SHeur.GHC
BitDefender	7.2	2007.08.17	-
CAT-QuickHeal	9.00	2007.08.16	-
ClamAV	0.91	2007.08.16	-
DrWeb	4.33	2007.08.17	-
eSafe	7.0.15.0	2007.08.16	suspicious Trojan/Worm
eTrust-Vet	31.1.5067	2007.08.17	-
Ewido	4.0	2007.08.16	-
FileAdvisor	1	2007.08.17	-
Fortinet	2.91.0.0	2007.08.16	-
F-Prot	4.3.2.48	2007.08.16	-
F-Secure	6.70.13030.0	2007.08.17	-
Ikarus	T3.1.1.12	2007.08.17	Trojan.Win32.Agent.alt
Kaspersky	4.0.2.24	2007.08.17	-
McAfee	5099	2007.08.16	-
Microsoft	1.2803	2007.08.17	-
NOD32v2	2467	2007.08.16	-
Norman	5.80.02	2007.08.16	-
Panda	9.0.0.4	2007.08.17	-
Prevx1	V2	2007.08.17	Covert.Code
Rising	19.36.42.00	2007.08.17	-
Sophos	4.20.0	2007.08.12	-
Sunbelt	2.2.907.0	2007.08.17	Trojan.Win32.Agent.alt
Symantec	10	2007.08.17	Backdoor.Trojan
TheHacker	6.1.8.170	2007.08.17	-
VBA32	3.12.2.2	2007.08.16	-
VirusBuster	4.3.26:9	2007.08.16	-
Webwasher-Gateway	6.0.1	2007.08.17	Trojan.Downloader.Win32.ModifiedUPX.gen (suspicious)
Additional information
File size: 51200 bytes
MD5: 7bdb28eaea32a09034c073b2b4aaae86
SHA1: 242fa38659de1773356b7c7804bf81b77af38184
packers: UPX

Код:

File zzmfk32.dll received on 08.17.2007 12:15:29 (CET)
Antivirus	Version	Last Update	Result
AhnLab-V3	2007.8.15.0	2007.08.17	-
AntiVir	7.4.1.62	2007.08.17	TR/Crypt.ULPM.Gen
Authentium	4.93.8	2007.08.17	-
Avast	4.7.1029.0	2007.08.16	-
AVG	7.5.0.476	2007.08.16	Proxy.SMX
BitDefender	7.2	2007.08.17	-
CAT-QuickHeal	9.00	2007.08.16	-
ClamAV	0.91	2007.08.16	-
DrWeb	4.33	2007.08.17	-
eSafe	7.0.15.0	2007.08.16	Win32.Nibu
eTrust-Vet	31.1.5067	2007.08.17	-
Ewido	4.0	2007.08.16	-
FileAdvisor	1	2007.08.17	-
Fortinet	2.91.0.0	2007.08.16	-
F-Prot	4.3.2.48	2007.08.16	-
F-Secure	6.70.13030.0	2007.08.17	W32/Horst.gen29
Ikarus	T3.1.1.12	2007.08.17	-
Kaspersky	4.0.2.24	2007.08.17	-
McAfee	5099	2007.08.16	-
Microsoft	1.2803	2007.08.17	-
NOD32v2	2467	2007.08.16	-
Norman	5.80.02	2007.08.16	W32/Horst.gen29
Panda	9.0.0.4	2007.08.17	Generic Malware
Prevx1	V2	2007.08.17	Generic.Malware
Rising	19.36.42.00	2007.08.17	-
Sophos	4.20.0	2007.08.12	Mal/Packer
Sunbelt	2.2.907.0	2007.08.17	Backdoor.Nibu
Symantec	10	2007.08.17	Backdoor.Nibu
TheHacker	6.1.8.170	2007.08.17	-
VBA32	3.12.2.2	2007.08.16	suspected of Embedded.Trojan.NtRootKit.331
VirusBuster	4.3.26:9	2007.08.16	-
Webwasher-Gateway	6.0.1	2007.08.17	Trojan.Crypt.ULPM.Gen
Additional information
File size: 35605 bytes
MD5: 9e4295ea204dc617d79e81fc70a2e720
SHA1: 7b24eda6f71235fc1895416c297eb18bce2f8ec7

Код:

File reveal32.sys received on 08.17.2007 12:55:44 (CET)
Antivirus	Version	Last Update	Result
AhnLab-V3	2007.8.15.0	2007.08.17	-
AntiVir	7.4.1.62	2007.08.17	-
Authentium	4.93.8	2007.08.17	-
Avast	4.7.1029.0	2007.08.16	-
AVG	7.5.0.476	2007.08.16	-
BitDefender	7.2	2007.08.17	-
CAT-QuickHeal	9.00	2007.08.16	-
ClamAV	0.91	2007.08.16	-
DrWeb	4.33	2007.08.17	Trojan.NtRootKit.331
eSafe	7.0.15.0	2007.08.16	-
eTrust-Vet	31.1.5067	2007.08.17	-
Ewido	4.0	2007.08.17	-
FileAdvisor	1	2007.08.17	-
Fortinet	2.91.0.0	2007.08.16	-
F-Prot	4.3.2.48	2007.08.16	-
F-Secure	6.70.13030.0	2007.08.17	-
Ikarus	T3.1.1.12	2007.08.17	-
Kaspersky	4.0.2.24	2007.08.17	-
McAfee	5099	2007.08.16	-
Microsoft	1.2803	2007.08.17	-
NOD32v2	2467	2007.08.16	-
Norman	5.80.02	2007.08.16	-
Panda	9.0.0.4	2007.08.17	-
Rising	19.36.42.00	2007.08.17	-
Sophos	4.20.0	2007.08.12	-
Sunbelt	2.2.907.0	2007.08.17	-
Symantec	10	2007.08.17	-
TheHacker	6.1.8.170	2007.08.17	-
VBA32	3.12.2.2	2007.08.16	Trojan.NtRootKit.331
VirusBuster	4.3.26:9	2007.08.16	-
Webwasher-Gateway	6.0.1	2007.08.17	-
Additional information
File size: 14848 bytes
MD5: e79b7e3aada4461c8a94812fc2036e88
SHA1: ad9230b49d376a9e5ac4dbf3c7a6065d480fd203

**Синауридзе Александр** · 19.08.2007, 08:18

File msdnc0.exe received on 08.19.2007 06:22:18 (CET)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.18.0 2007.08.18 -
AntiVir 7.4.1.62 2007.08.19 TR/Crypt.XPACK.Gen
Authentium 4.93.8 2007.08.17 -
Avast 4.7.1029.0 2007.08.17 -
AVG 7.5.0.484 2007.08.18 PSW.Ldpinch.NEK
BitDefender 7.2 2007.08.19 Trojan.PWS.LDPinch.TAW
CAT-QuickHeal 9.00 2007.08.18 TrojanPSW.LdPinch.bno
ClamAV 0.91 2007.08.19 -
DrWeb 4.33 2007.08.18 Trojan.PWS.LDPinch.1781
eSafe 7.0.15.0 2007.08.16 Win32.LdPinch.bno
eTrust-Vet 31.1.5069 2007.08.18 Win32/LdPinch.CM
Ewido 4.0 2007.08.18 Trojan.LdPinch.bno
FileAdvisor 1 2007.08.19 -
Fortinet 2.91.0.0 2007.08.18 W32/Basine.BNO!tr.pws
F-Prot 4.3.2.48 2007.08.17 -
F-Secure 6.70.13030.0 2007.08.17 Trojan-PSW.Win32.LdPinch.bno
Ikarus T3.1.1.12 2007.08.18 Trojan-PWS.Win32.LdPinch.bno
Kaspersky 4.0.2.24 2007.08.19 Trojan-PSW.Win32.LdPinch.bno
McAfee 5100 2007.08.17 -
Microsoft 1.2803 2007.08.19 TrojanDownloader:Win32/Small.CBA
NOD32v2 2469 2007.08.18 -
Norman 5.80.02 2007.08.17 LdPinch.JVR
Panda 9.0.0.4 2007.08.18 Generic Trojan
Prevx1 V2 2007.08.19 Generic.Malware
Rising 19.36.60.00 2007.08.19 Packer.RyCrypt
Sophos 4.20.0 2007.08.12 Mal/Basine-C
Sunbelt 2.2.907.0 2007.08.18 Trojan-PSW.Win32.LdPinch.bno
Symantec 10 2007.08.19 Infostealer.Ldpinch
TheHacker 6.1.8.170 2007.08.17 Trojan/PSW.LdPinch.bno
VBA32 3.12.2.2 2007.08.17 -
VirusBuster 4.3.26:9 2007.08.18 Trojan.DR.Cimuz.Gen.1
Webwasher-Gateway 6.0.1 2007.08.19 Trojan.Crypt.XPACK.Gen

Additional information
File size: 58634 bytes
MD5: 58a71e7c9edefb1270c2292318a61ff6
SHA1: a3efc9514ea657dbcce516f06532af81b3b03091
packers: RCrypt
Prevx info: http://fileinfo.prevx.com/fileinfo.a...4F610014A92673

**urbanangel** · 21.08.2007, 00:19

File D3DGear_v1.96_Keygen.exe received on 08.20.2007 22:18:12 (CET)
Current status: finished
Result: 22/32 (68.75%)

Antivirus Version Last Update Result
AhnLab-V3 2007.8.21.0 2007.08.20 Win-Trojan/Ardamax.320830
AntiVir 7.4.1.62 2007.08.20 -
Authentium 4.93.8 2007.08.20 W32/Trojan.ATHZ
Avast 4.7.1029.0 2007.08.20 Win32:Ardamax-CJ
AVG 7.5.0.484 2007.08.20 PSW.Generic4.TGX
BitDefender 7.2 2007.08.20 Application.Ardamax.AK
CAT-QuickHeal 9.00 2007.08.20 TrojanSpy.Ardamax.j
ClamAV 0.91 2007.08.20 Trojan.Spy.Ardamax-25
DrWeb 4.33 2007.08.20 -
eSafe 7.0.15.0 2007.08.20 Win32.Ardamax.j
eTrust-Vet 31.1.5069 2007.08.18 -
Ewido 4.0 2007.08.20 Logger.Ardamax.i
FileAdvisor 1 2007.08.20 -
Fortinet 2.91.0.0 2007.08.20 Spy/Ardamax
F-Prot 4.3.2.48 2007.08.20 W32/Trojan.ATHZ
F-Secure 6.70.13030.0 2007.08.20 Trojan-Spy.Win32.Ardamax.j
Ikarus T3.1.1.12 2007.08.20 Trojan-Spy.Win32.Ardamax.j
Kaspersky 4.0.2.24 2007.08.20 -
McAfee 5101 2007.08.20 Keylog-Ardamax.dr.gen
Microsoft 1.2803 2007.08.20 -
NOD32v2 2471 2007.08.20 probably a variant of Win32/Keylogger.Ardamax
Norman 5.80.02 2007.08.20 W32/Ardamax.CLC
Panda 9.0.0.4 2007.08.19 -
Prevx1 V2 2007.08.20 Generic.Malware
Rising 19.36.60.00 2007.08.19 Trojan.Spy.Win32.Ardamax.l
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.18 -
Symantec 10 2007.08.20 Spyware.Ardakey
TheHacker 6.1.8.171 2007.08.20 Trojan/Spy.Ardamax.j
VBA32 3.12.2.2 2007.08.20 Trojan-Spy.Win32.Ardamax.j
VirusBuster 4.3.26:9 2007.08.20 -
Webwasher-Gateway 6.0.1 2007.08.20 Riskware.Ardamax.K.Gen
Additional information
File size: 347562 bytes
MD5: 9a471ee529efe82d02760d2dcb4888a8
SHA1: 67504fd4656b7529c6c97058f3cd65ea5e5219f2
packers: ZLIB
Prevx info: http://fileinfo.prevx.com/fileinfo.a...E44700A873A9B3

**Muzzle** · 21.08.2007, 04:52

топик t=11836
файл Dert69.sys

AhnLab-V3 2007.8.21.0 2007.08.20 -
AntiVir 7.4.1.62 2007.08.20 RKit/Agent.EA.40
Authentium 4.93.8 2007.08.20 -
Avast 4.7.1029.0 2007.08.20 Win32:Agent-FTK
AVG 7.5.0.484 2007.08.20 BackDoor.Generic8.CJX
BitDefender 7.2 2007.08.21 -
CAT-QuickHeal 9.00 2007.08.20 Rootkit.Agent.ea
ClamAV 0.91 2007.08.21 -
DrWeb 4.33 2007.08.20 Trojan.Spambot.2400
eSafe 7.0.15.0 2007.08.20 Rootkit.Win32.Agent.
eTrust-Vet 31.1.5069 2007.08.18 -
Ewido 4.0 2007.08.20 -
FileAdvisor 1 2007.08.21 -
Fortinet 2.91.0.0 2007.08.20 -
F-Prot 4.3.2.48 2007.08.20 -
F-Secure 6.70.13030.0 2007.08.21 Rootkit.Win32.Agent.ea
Ikarus T3.1.1.12 2007.08.20 Rootkit.Win32.Agent.ea
Kaspersky 4.0.2.24 2007.08.21 Rootkit.Win32.Agent.ea
McAfee 5101 2007.08.20 -
Microsoft 1.2803 2007.08.21 Trojan:Win32/Srizbi.gen
NOD32v2 2472 2007.08.21 -
Norman 5.80.02 2007.08.20 -
Panda 9.0.0.4 2007.08.19 -
Prevx1 V2 2007.08.21 -
Rising 19.36.60.00 2007.08.19 Adware.Win32.Agent.q
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.21 Rootkit.Win32.Agent.ea
Symantec 10 2007.08.21 -
TheHacker 6.1.8.171 2007.08.20 -
VBA32 3.12.2.2 2007.08.21 Rootkit.Win32.Agent.ea
VirusBuster 4.3.26:9 2007.08.20 -
Webwasher-Gateway 6.0.1 2007.08.21 Rootkit.Agent.EA.40

**Jolly Rojer** · 21.08.2007, 05:23

File firewall.exe received on 08.21.2007 03:32:41 (CET)
Current status: finished
Result: 13/32 (40.63%)
Compact
Print results Antivirus Version Last Update Result
AhnLab-V3 2007.8.21.0 2007.08.20 -
AntiVir 7.4.1.62 2007.08.20 BDS/Agent.YRG.12
Authentium 4.93.8 2007.08.20 -
Avast 4.7.1029.0 2007.08.20 -
AVG 7.5.0.484 2007.08.20 Worm/Agobot.FVW
BitDefender 7.2 2007.08.21 MemScan:Backdoor.Agent.YRG
CAT-QuickHeal 9.00 2007.08.20 (Suspicious) - DNAScan
ClamAV 0.91 2007.08.21 -
DrWeb 4.33 2007.08.20 -
eSafe 7.0.15.0 2007.08.20 suspicious Trojan/Worm
eTrust-Vet 31.1.5069 2007.08.18 -
Ewido 4.0 2007.08.20 Backdoor.PoeBot.o
FileAdvisor 1 2007.08.21 -
Fortinet 2.91.0.0 2007.08.20 -
F-Prot 4.3.2.48 2007.08.20 -
F-Secure 6.70.13030.0 2007.08.21 -
Ikarus T3.1.1.12 2007.08.20 MemScanBackdoor.Agent.YRG
Kaspersky 4.0.2.24 2007.08.21 -
McAfee 5101 2007.08.20 -
Microsoft 1.2803 2007.08.21 Exploit:Win32/MS06040.gen
NOD32v2 2472 2007.08.21 a variant of Win32/Poebot
Norman 5.80.02 2007.08.20 -
Panda 9.0.0.4 2007.08.19 Suspicious file
Prevx1 V2 2007.08.21 Trojan.SystemPoser
Rising 19.36.60.00 2007.08.19 -
Sophos 4.20.0 2007.08.12 -
Sunbelt 2.2.907.0 2007.08.21 VIPRE.Suspicious
Symantec 10 2007.08.21 -
TheHacker 6.1.8.171 2007.08.20 -
VBA32 3.12.2.2 2007.08.21 -
VirusBuster 4.3.26:9 2007.08.20 -
Webwasher-Gateway 6.0.1 2007.08.21 Trojan.Agent.YRG.12
Additional information
File size: 50142 bytes
MD5: 0fcde95916fcc23ecbed1b47632cd74c
SHA1: c2dd58be2f5ddfbf89c8ababf07009034bdfbfdd

Исследование антивирусов 5

Опции темы

Похожие темы

Исследование антивирусов 7

Исследование антивирусов 6

Исследование антивирусов 4

Исследование антивирусов 3

Исследование антивирусов 2

Ваши права в разделе