Complete scanning result of "pedencias.com", received in VirusTotal at 08.10.2006, 13:57:17 (CET).
Antivirus Version Update Result
AntiVir 6.35.1.0 08.10.2006 DR/KWin.1
Authentium 4.93.8 08.09.2006 no virus found
Avast 4.7.844.0 08.09.2006 no virus found
AVG 386 08.09.2006 no virus found
BitDefender 7.2 08.10.2006 Trojan.Downloader.Banload.AIA
CAT-QuickHeal 8.00 08.09.2006 (Suspicious) - DNAScan
ClamAV devel-20060426 08.10.2006 no virus found
DrWeb 4.33 08.10.2006 DLOADER.Trojan
eTrust-InoculateIT 23.72.92 08.10.2006 no virus found
eTrust-Vet 30.3.3008 08.10.2006 no virus found
Ewido 4.0 08.10.2006 no virus found
Fortinet 2.77.0.0 08.10.2006 suspicious
F-Prot 3.16f 08.09.2006 no virus found
F-Prot4 4.2.1.29 08.09.2006 no virus found
Ikarus 0.2.65.0 08.09.2006 Backdoor.Win32.PcClient.GV
Kaspersky 4.0.2.24 08.10.2006 no virus found
McAfee 4825 08.09.2006 New Malware.u
Microsoft 1.1508 08.04.2006 no virus found
NOD32v2 1.1700 08.10.2006 probably unknown NewHeur_PE virus
Norman 5.90.23 08.10.2006 W32/Downloader
Panda 9.0.0.4 08.09.2006 no virus found
Sophos 4.08.0 08.10.2006 no virus found
Symantec 8.0 08.10.2006 no virus found
TheHacker 5.9.8.189 08.09.2006 no virus found
UNA 1.83 08.09.2006 no virus found
VBA32 3.11.0 08.09.2006 suspected of Win32.Trojan.Downloader (http://{removed}/kdaske/arquitex.jpg)
VirusBuster 4.3.7:9 08.09.2006 no virus found
Aditional Information
File size: 13988 bytes
MD5: 2169daaf6efc65e68f9101208f4a5895
SHA1: 3c1a1dbde894e87f1479a0a25659143aca77e563
packers: NSPack, PE_Patch
Norman SandBox:
[ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* File length: 13988 bytes.
[ Changes to filesystem ]
* Creates file C:WINDOWSSYSTEM32imgrt.exe.
* Creates file C:WINDOWSSYSTEM32.
[ Network services ]
* Downloads file from http://ork01.ubbihp.com.br/kdaske/arquitex.jpg as C:WINDOWSSYSTEM32imgrt.exe.
* Downloads file from as C:WINDOWSSYSTEM32.
[ Security issues ]
* Starting downloaded file - potential security problem.
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.