GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Attention ALL GFY MEMBERS. We're being robbed

onlineriches · 03-17-2007, 06:58 PM

STATUS: FINISHEDComplete scanning result of "setup.exe", received at 03.18.2007, 02:49:26 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.3.17.0 03.16.2007 no virus found
AntiVir 7.3.1.43 03.17.2007 DR/Zlob.Gen
Authentium 4.93.8 03.17.2007 no virus found
Avast 4.7.936.0 03.16.2007 no virus found
AVG 7.5.0.447 03.17.2007 no virus found
BitDefender 7.2 03.18.2007 no virus found
CAT-QuickHeal 9.00 03.15.2007 no virus found
ClamAV 0.90.1 03.18.2007 no virus found
DrWeb 4.33 03.17.2007 no virus found
eSafe 7.0.14.0 03.16.2007 suspicious Trojan/Worm
eTrust-Vet 30.6.3486 03.16.2007 no virus found
Ewido 4.0 03.17.2007 no virus found
FileAdvisor 1 03.18.2007 no virus found
Fortinet 2.85.0.0 03.17.2007 suspicious
F-Prot 4.3.1.45 03.17.2007 no virus found
F-Secure 6.70.13030.0 03.17.2007 no virus found
Ikarus T3.1.1.3 03.17.2007 Trojan-Downloader.Win32.Zlob.bpg
Kaspersky 4.0.2.24 03.18.2007 no virus found
McAfee 4986 03.16.2007 no virus found
Microsoft 1.2306 03.18.2007 no virus found
NOD32v2 2124 03.17.2007 no virus found
Norman 5.80.02 03.16.2007 no virus found
Panda 9.0.0.4 03.17.2007 no virus found
Prevx1 V2 03.18.2007 no virus found
Sophos 4.15.0 03.13.2007 no virus found
Sunbelt 2.2.907.0 03.16.2007 no virus found
Symantec 10 03.18.2007 no virus found
TheHacker 6.1.6.076 03.15.2007 Trojan/Downloader.Zlob.bpl
UNA 1.83 03.16.2007 no virus found
VBA32 3.11.2 03.16.2007 no virus found
VirusBuster 4.3.7:9 03.17.2007 no virus found

Aditional Information
File size: 61327 bytes
MD5: 57d132c0bbf99f8436db56dc5ce0d53a
SHA1: ad4939ecddbc302c0b9558848d4c2b3388b40eec
packers: UPX
packers: UPX, BINARYRES, BINARYRES
packers: UPX

seems like they are constantly updating that file with a fresh copy to ensure it doesn't get detected. I've submitted the sample to all the antivirus companies so it should be wrecked in a few days.

03-17-2007, 06:58 PM
onlineriches Confirmed User Join Date: Apr 2006 Posts: 308	STATUS: FINISHEDComplete scanning result of "setup.exe", received at 03.18.2007, 02:49:26 (CET). Antivirus Version Update Result AhnLab-V3 2007.3.17.0 03.16.2007 no virus found AntiVir 7.3.1.43 03.17.2007 DR/Zlob.Gen Authentium 4.93.8 03.17.2007 no virus found Avast 4.7.936.0 03.16.2007 no virus found AVG 7.5.0.447 03.17.2007 no virus found BitDefender 7.2 03.18.2007 no virus found CAT-QuickHeal 9.00 03.15.2007 no virus found ClamAV 0.90.1 03.18.2007 no virus found DrWeb 4.33 03.17.2007 no virus found eSafe 7.0.14.0 03.16.2007 suspicious Trojan/Worm eTrust-Vet 30.6.3486 03.16.2007 no virus found Ewido 4.0 03.17.2007 no virus found FileAdvisor 1 03.18.2007 no virus found Fortinet 2.85.0.0 03.17.2007 suspicious F-Prot 4.3.1.45 03.17.2007 no virus found F-Secure 6.70.13030.0 03.17.2007 no virus found Ikarus T3.1.1.3 03.17.2007 Trojan-Downloader.Win32.Zlob.bpg Kaspersky 4.0.2.24 03.18.2007 no virus found McAfee 4986 03.16.2007 no virus found Microsoft 1.2306 03.18.2007 no virus found NOD32v2 2124 03.17.2007 no virus found Norman 5.80.02 03.16.2007 no virus found Panda 9.0.0.4 03.17.2007 no virus found Prevx1 V2 03.18.2007 no virus found Sophos 4.15.0 03.13.2007 no virus found Sunbelt 2.2.907.0 03.16.2007 no virus found Symantec 10 03.18.2007 no virus found TheHacker 6.1.6.076 03.15.2007 Trojan/Downloader.Zlob.bpl UNA 1.83 03.16.2007 no virus found VBA32 3.11.2 03.16.2007 no virus found VirusBuster 4.3.7:9 03.17.2007 no virus found Aditional Information File size: 61327 bytes MD5: 57d132c0bbf99f8436db56dc5ce0d53a SHA1: ad4939ecddbc302c0b9558848d4c2b3388b40eec packers: UPX packers: UPX, BINARYRES, BINARYRES packers: UPX seems like they are constantly updating that file with a fresh copy to ensure it doesn't get detected. I've submitted the sample to all the antivirus companies so it should be wrecked in a few days.