Complete scanning result of "abrecartao.scr", received in VirusTotal at 06.12.2006, 16:20:03 (CET). Antivirus Version Update Result AntiVir 6.35.0.10 06.12.2006 Heuristic/Trojan.Downloader Authentium 4.93.8 06.09.2006 no virus found Avast 4.7.844.0 06.11.2006 Win32:Banload-HX AVG 386 06.11.2006 no virus found BitDefender 7.2 06.12.2006 BehavesLike:Trojan.Downloader CAT-QuickHeal 8.00 06.12.2006 no virus found ClamAV devel-20060426 06.12.2006 no virus found DrWeb 4.33 06.12.2006 no virus found eTrust-InoculateIT 23.72.34 06.11.2006 no virus found eTrust-Vet 12.6.2252 06.12.2006 no virus found Ewido 3.5 06.12.2006 no virus found Fortinet 2.77.0.0 06.12.2006 no virus found F-Prot 3.16f 06.12.2006 no virus found Ikarus 0.2.65.0 06.12.2006 no virus found Kaspersky 4.0.2.24 06.12.2006 Trojan-Downloader.Win32.Banload.att McAfee 4781 06.09.2006 no virus found Microsoft 1.1441 06.12.2006 no virus found NOD32v2 1.1594 06.12.2006 probably unknown NewHeur_PE virus Norman 5.90.21 06.12.2006 W32/Downloader Panda 9.0.0.4 06.12.2006 Suspicious file Sophos 4.06.0 06.12.2006 no virus found Symantec 8.0 06.12.2006 no virus found TheHacker 5.9.8.158 06.12.2006 no virus found UNA 1.83 06.09.2006 no virus found VBA32 3.11.0 06.11.2006 no virus found Aditional Information File size: 79360 bytes MD5: 9863f22ae8a44985a0d683a7a17cf50d SHA1: 344212c7af7f7e5df55b7de5ffee01b45d856055 Norman SandBox: [ General information ] * **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**. * File length: 79360 bytes. [ Changes to filesystem ] * Creates file C:windowssystemiexplore.exe. [ Network services ] * Downloads file from http://www.fjordbergen.com//modules/coppermine/include/iexplore.exe as c:windowssystemiexplore.exe. [ Security issues ] * Starting downloaded file - potential security problem. VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.