Originally Posted by
Truckchase!
Hey OS, I executed the HexCmp, and for some reason on first run it did a NETSH command. That's uh, scary. It was too fast for me to see what it did, but do you have any clue as to why it would do that?
EDIT: SON OF A BLKSFDLKJWE:LKRJWL:KJ. There is a VIRUS in that file! Dude, seriously, I'm an idiot for trusting anything posted up here, but seriously.... WTF? ?!!?
Just checked the directly linked HexCmp on http://virusscan.jotti.org/ (which uses a bunch of different scanners) and it turned up "clean" . That ofcause doesn't mean it can't be infected... maybe the scanners used there just don't know the virus yet (which on the other hand I find hard to believe if it's a "well known" massmailer).
[edit] Scan on http://www.virustotal.com brought different results :
Code:
Antivirus Version Last Update Result
Microsoft 1.3109 2007.12.29 VirTool:Win32/Obfuscator!Mal
Panda 9.0.0.4 2007.12.29 Suspicious file
Reply With Quote
Bookmarks