| View previous topic :: View next topic |
| Author |
Message |
AAtrader
Trooper
Joined: Nov 17, 2005
Posts: 30
Location: USA
|
 Posted: Sun Dec 16, 2007 4:36 pm Post subject: Downloader for rogue antivirus |
|
|
pw= password
|
|
| Back to top |
|
 |
AAtrader
Trooper
Joined: Nov 17, 2005
Posts: 30
Location: USA
|
| Posted: Sun Dec 16, 2007 4:48 pm Post subject: |
|
|
VirSCAN.org Scanned Report :
Scanner results: 3% Scanner(1/36) found malware!
File Name : install_enp.exe
File Size : 192304 byte
File Type : MS-DOS executable (EXE), OS/2 or MS Windows
MD5 : 102479f535d521f836888d4e08a1e645
SHA1 : f63cc20bb1d8bd512d4344cbf96d2c7aff94d6cd
Online report : http://virscan.org/report/58cb6437ca65c13c2355c5034ef23baa.html
Scanner Engine Ver Sig Ver Sig Date Time Scan result
A-Squared 3.0.0.126 2007.12.15 2007-12-15 3.19 -
AhnLab V3 2007.12.15.00 2007.12.15 2007-12-15 1.42 -
AntiVir 7.6.0.45 7.0.1.100 2007-12-16 2.86 -
Arcavir 1.0.4 200712151014 2007-12-15 2.62 -
Avast 1.0.8 071216-0 2007-12-16 4.73 -
AVG 7.5.49.442 269.17.1/1183 2007-12-13 3.53 -
BitDefender 7.60825.960339 7.16325 2007-12-16 7.85 -
CA (VET) 9.0.0.143 31.3.5377 2007-12-15 8.48 -
ClamAV 0.91.2 5145 2007-12-16 0.20 -
Comodo 2.11 2.0.0.375 2007-12-16 1.16 -
CP Secure 1.1.0.655 2007.12.16 2007-12-16 12.25 -
Dr.Web 4.44.0.9170 2007.12.16 2007-12-16 8.45 -
Ewido 4.0.0.2 2007.12.16 2007-12-16 2.60 -
F-Prot 4.4.1.52 20071215 2007-12-15 4.37 -
F-Secure 5.51.6100 2007.12.14.07 2007-12-14 9.49 -
Fortinet 2.81-3.11 8.449 2007-12-03 0.71 -
ViRobot 20071214 2007.12.14 2007-12-14 0.90 -
Ikarus T3.1.01.15 2007.12.16.70000 2007-12-16 2.98 -
JiangMin 10.00.650 2007.12.15 2007-12-15 1.52 -
Kaspersky 5.5.10 2007.12.16 2007-12-16 13.20 -
KingSoft 2007.6.20.249 2007.12.16 2007-12-16 1.36 -
McAfee 5.2.00 5186 2007-12-14 2.76 -
mks_vir 2.01 2007.12.16 2007-12-16 8.01 -
NOD32 2.70.10 2725 2007-12-16 0.04 -
Norman 5.91.08 5.90 2007-12-13 18.84 -
Panda 9.04.03.0001 2007.12.15 2007-12-15 3.10 -
Trend Micro 8.500-1001 4.890.34 2007-12-16 0.07 -
Prevx V2 20071216 2007-12-16 3.70 TROJAN.DOWNLOADER.GEN
Quick Heal 9.00 2007.12.15 2007-12-15 3.12 -
Rising 19.0 20.22.41.00 2007-12-14 1.86 -
Sophos 2.49.1 4.21 2007-12-15 19.31 -
Symantec 1.3.0.24 20071215.002 2007-12-15 0.25 -
nProtect 2007-12-15.00 1090777 2007-12-15 10.45 -
The Hacker 6.2.9 v00160 2007-12-14 1.41 -
VBA32 3.12.2.5 20071214.1956 2007-12-14 3.68 -
VirusBuster 4.3.19:9 9.117.4/11.0 2007-12-16 3.07 -
|
|
| Back to top |
|
|
tetak
MIRT Team Lead
Premium Member
Joined: Jan 19, 2007
Posts: 5879
|
| Posted: Mon Dec 17, 2007 2:37 am Post subject: |
|
|
Thanks for uploading the file. I've sent the file to Kaspersky, if they confirm it's malware I'll add it to the malware listserv.
_________________
Got Windows XP? Help protect your PC from malware with Microsofts anti-spyware program Windows Defender.
Download it for free from http://www.microsoft.com/athome/security/spyware/software/default.mspx
|
|
| Back to top |
|
|
sjpritch25
1st Responder
Premium Member
Joined: Mar 31, 2005
Posts: 5163
Location: West Coast of Florida, USA
|
|
| Back to top |
|
|
AAtrader
Trooper
Joined: Nov 17, 2005
Posts: 30
Location: USA
|
| Posted: Mon Dec 17, 2007 2:16 pm Post subject: |
|
|
I usually don't run malware on the few pc's I have but I did this one in a sandbox and the supposed Antivirus app. is named Alfa Antivirus. My Av. flagged it for Turbo-kukac, which when I checked, seemed to be really old virus from early 90's (before my time on the internet). My Av. also flagged it for Eldorado. Through another search this morning I have noticed another antispyware product called spywaredetector which claims to remove this fake but it is also being flagged by the prevx/microsoft on virustotal.
|
|
| Back to top |
|
|
sjpritch25
1st Responder
Premium Member
Joined: Mar 31, 2005
Posts: 5163
Location: West Coast of Florida, USA
|
|
| Back to top |
|
|
|
|
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
