Antivirus 2009 rogue antivirus application

November 5, 2008 | Malware, Rogues

Antivirus 2009 a rogue antivirus application. To remove that rogue application viruses and antispyware use Cesam Anti-Malware - http://cleanthe.net/how-to-remove-virus/

Antivirus 2009

File zcodec.1179.exe received on 11.05.2008 19:03:28 (CET)
Antivirus	Version	Last Update	Result
AhnLab-V3	2008.11.5.3	2008.11.05	-
AntiVir	7.9.0.26	2008.11.05	-
Authentium	5.1.0.4	2008.11.05	-
Avast	4.8.1248.0	2008.11.05	-
AVG	8.0.0.161	2008.11.05	-
BitDefender	7.2	2008.11.05	-
CAT-QuickHeal	9.50	2008.11.04	-
ClamAV	0.94.1	2008.11.05	-
DrWeb	4.44.0.09170	2008.11.05	-
eSafe	7.0.17.0	2008.11.05	Suspicious File
eTrust-Vet	31.6.6190	2008.11.05	-
Ewido	4.0	2008.11.05	-
F-Prot	4.4.4.56	2008.11.05	-
F-Secure	8.0.14332.0	2008.11.05	-
Fortinet	3.117.0.0	2008.11.05	-
GData	19	2008.11.05	-
Ikarus	T3.1.1.45.0	2008.11.05	Trojan-Downloader.Win32.Renos
K7AntiVirus	7.10.517	2008.11.05	-
Kaspersky	7.0.0.125	2008.11.05	-
McAfee	5424	2008.11.04	-
Microsoft	1.4005	2008.11.05	TrojanDownloader:Win32/Renos.BAH
NOD32	3587	2008.11.05	-
Norman	5.80.02	2008.11.05	-
Panda	9.0.0.4	2008.11.05	-
PCTools	4.4.2.0	2008.11.05	-
Prevx1	V2	2008.11.05	Fraudulent Security Program
Rising	21.02.22.00	2008.11.05	-
SecureWeb-Gateway	6.7.6	2008.11.05	Trojan.Dldr.LooksLike.Agent.anlg
Sophos	4.35.0	2008.11.05	-
Sunbelt	3.1.1783.2	2008.11.05	-
Symantec	10	2008.11.05	-
TheHacker	6.3.1.1.140	2008.11.05	-
TrendMicro	8.700.0.1004	2008.11.05	Possible_DLDER
VBA32	3.12.8.9	2008.11.05	-
ViRobot	2008.11.5.1453	2008.11.05	-
VirusBuster	4.5.11.0	2008.11.05	-

Additional information
File size: 69120 bytes
MD5…: 5285d1ac7c1ef893c515eef078891a47
SHA1..: f6a528195e49f3cffd9adb9cf6062943ce5bc07d
SHA256: 0d7b5a49ee44f92539424d34721ae741924f890d8f946387373500216783d3bc
SHA512: 82b33ba253349298bc60a54ffe32722c4cc83c876d876f60ff950e2d1d6ed7e2 8ce18b210464e3fa496d050ab15bb6d817cb46570e6b4194f27bf047ea106051
PEiD..: -
TrID..: File type identification Win32 Executable Generic (42.3%) Win32 Dynamic Link Library (generic) (37.6%) Generic Win/DOS Executable (9.9%) DOS Executable Generic (9.9%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information ( base data ) entrypointaddress.: 0×4025c0 timedatestamp…..: 0×49114fcf (Wed Nov 05 07:48:31 2008) machinetype…….: 0×14c (I386) ( 3 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0×1000 0×2655 0×2800 6.52 6d38b5001569200d2257b47e266d0ca7 .rdata 0×4000 0×9b2 0xa00 5.08 cbb079fe3e5c511fc08bdc91ee53709c .data 0×5000 0xde3c 0xd800 7.98 48af1b1d062a2cabf3d70b723b5fabe4 ( 6 imports ) > KERNEL32.dll: CreateFileA, CloseHandle, DeviceIoControl, GetSystemDirectoryA, GetVolumeInformationA, ExitProcess, TerminateProcess, SetProcessPriorityBoost, SetThreadPriority, GetCurrentThread, SetPriorityClass, GetCurrentProcess, GetEnvironmentVariableA, GetShortPathNameA, GetModuleFileNameA, IsBadWritePtr, GetComputerNameA, WriteFile, lstrlenA, lstrcatA, GetVersionExA, Sleep, GetTempPathA, CreateProcessA > USER32.dll: GetDlgItem, wsprintfA > SHELL32.dll: ShellExecuteExA, SHChangeNotify > MSVCRT.dll: sprintf, rand, __CxxFrameHandler, __2@YAPAXI@Z, strstr, srand, time, strncat, atoi, _except_handler3, strncpy, _strdup, __3@YAXPAX@Z, _itoa > MSVCP60.dll: __Tidy@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@AAEX_N@Z, _npos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@2IB, _assign@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z, _append@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z, __0_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@ABV01@@Z, __Xlen@std@@YAXXZ, __C@_1___Nullstr@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@CAPBDXZ@4DB, __Grow@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@AAE_NI_N@Z, __Eos@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@AAEXI@Z, __1_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@QAE@XZ, __Copy@_$basic_string@DU_$char_traits@D@std@@V_$allocator@D@2@@std@@AAEXI@Z > WININET.dll: HttpQueryInfoA, InternetOpenUrlA, InternetOpenA, InternetCloseHandle, InternetReadFile ( 0 exports )
Prevx info: http://info.prevx.com/aboutprogramtext.asp?PX5=3B56EC65005D9CA90E2F01F8696E9700B4E96D9E

Antivirus 2009

Host: newer-pon-hub2008.com
IP: 66.232.105.254
Whois:

OrgName:    NOC4Hosts Inc.
OrgID:      NOC4H
Address:    400 N Tampa St
Address:    #1025
City:       Tampa
StateProv: FL
PostalCode: 33602
Country:    US

Other sites:

1. Best-softportal.com
2. Best-softwareportal.com
3. Celebrity-on-video-2008.com
4. Domain5122.com
5. E-softpoertals2008.com
6. E-softportals.com
7. Funportalsoft.com
8. Funsoft-enjoyportal.com
9. I-av-scanner.com
10. I-softportal08.com
11. Main-downloadportal.com
12. Main-porn-hub.com
13. Main-softwaredownload.com
14. New-porn-hub.com
15. New-porn-tubeportal.com
16. Newest-porn-tube.com
17. Online-av-scann2008.com
18. Soft4enjoy2008.com
19. Soft4funportal.com
20. Soft4funportal2008.com

Host: live-antivirus-scan.com
IPs: 89.149.253.215 and 91.203.92.47 and 78.159.118.217

Whois:

inetnum:        89.149.253.0 - 89.149.255.255
netname:        NETDIRECT-NET
descr:          netdirekt e.K.
remarks:        INFRA-AW
country:        DE
admin-c:        WW200-RIPE
tech-c:         SR614-RIPE
status:         ASSIGNED PA
mnt-by:         NETDIRECT-MNT
mnt-lower:      NETDIRECT-MNT
mnt-routes:     NETDIRECT-MNT
source:         RIPE # Filtered

person:       Wiethold Wagner
address:      netdirekt e. K.
address:      Kleyer Strasse 79 / Tor 14
address:      60326 Frankfurt
address:      DE
phone:        +49 69 90556880
fax-no:       +49 69 905568822

Other sites:

1. Protectiononlineinfo.com

Host: secure.innovagest2000sl.com
IP: 207.226.175.126
Whois:

OrgName:    Beyond The Network America, Inc.
OrgID:      BNA-42
Address:    450 Springpark PL
Address:    Suite 100
City:       Herdon
StateProv: VA
PostalCode: 20170
Country:    US

Antivirus 2009 by Pandora software

Antivirus 2009

Tags: Antivirus 2009, Beyond The Network America, NETDIRECT-NET, NOC4Hosts, rogue antivirus
Posted in Malware, Rogues |

CleanThe.Net Recommends - Cesam Anti-Malware. Remove Virus Now!

Download Cesam Anti-Malware

We recommend:
CESAM Anti-Malware

Clean The Net

Your guide to Remove Virus

Antivirus 2009 rogue antivirus application

November 5, 2008 | Malware, Rogues

Related Posts :

CleanThe.Net Recommends - Cesam Anti-Malware. Remove Virus Now!

Post a Comment

We recommend:
CESAM Anti-Malware

Archives

Tag Cloud

Categories

Recent Posts

Recent Comments

Glossary

November 2008
M	T	W	T	F	S	S
« Oct				Dec »
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30

Clean The Net

Your guide to Remove Virus

Antivirus 2009 rogue antivirus application

November 5, 2008 | Malware, Rogues

Related Posts :

CleanThe.Net Recommends - Cesam Anti-Malware. Remove Virus Now!

Post a Comment

We recommend: CESAM Anti-Malware

Archives

Tag Cloud

Categories

Recent Posts

Recent Comments

Glossary

We recommend:
CESAM Anti-Malware