ecsro bot

02/13/2009 00:32 botekkk#1
ecsro Boot
#removed links
02/13/2009 01:32 EliteGabo#2
Whats does this thing got new?
02/13/2009 01:54 lynxz#3
2mb bot from a new member with 3 post. HMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMM MMMMMMMMMMMMMMMMM

Lets just download and take a looksie :D.. brb with virustotal results

edit*** LOL if you're gonna feed a malicious program to a forum full of programmers at LEAST make it less evident, nub. This is the WORST attempt I've ever seen to keylogging someone. This program is more dirty then jenna jameson after a yellow shower.. seriously.

Code:
Antivirus;Version;Last Update;Result: [B][COLOR="Red"]27[/COLOR][/B]/39 ([B][COLOR="Red"]69.24%[/COLOR][/B])

a-squared;4.0.0.93;2009.02.12;[B][COLOR="Red"]Trojan-Downloader.Win32.Hatchet.10.B!IK[/COLOR][/B]
AhnLab-V3;5.0.0.2;2009.02.12;[B][COLOR="Red"]Win-Trojan/Ardamax.14848.G[/COLOR][/B]
AntiVir;7.9.0.76;2009.02.12;[B][COLOR="Red"]ADSPY/Dropper.Ardamax.Gen[/COLOR][/B]
Authentium;5.1.0.4;2009.02.13;[B][COLOR="Red"]W32/Infostealer.A!Maximus[/COLOR][/B]
Avast;4.8.1335.0;2009.02.12;[B][COLOR="Red"]Win32:Ardamax-KA[/COLOR][/B]
AVG;8.0.0.237;2009.02.12;[B][COLOR="Red"]PSW.Generic6.ANYD[/COLOR][/B]
BitDefender;7.2;2009.02.13;[B][COLOR="Red"]Application.Keylog.Ardamax.DLT[/COLOR][/B]
CAT-QuickHeal;10.00;2009.02.11;-
ClamAV;0.94.1;2009.02.12;[B][COLOR="Red"]Trojan.Ardamax-305[/COLOR][/B]
Comodo;975;2009.02.12;[B][COLOR="Red"]TrojWare.Win32.TrojanSpy.Ardamax.~Z[/COLOR][/B]
DrWeb;4.44.0.09170;2009.02.13;[B][COLOR="Red"]Trojan.MulDrop.20008[/COLOR][/B]
eSafe;7.0.17.0;2009.02.12;-
eTrust-Vet;31.6.6353;2009.02.12;-
F-Prot;4.4.4.56;2009.02.13;[B][COLOR="Red"]W32/Infostealer.A!Maximus[/COLOR][/B]
F-Secure;8.0.14470.0;2009.02.13;[B][COLOR="Red"]Trojan-Spy.Win32.Ardamax.t[/COLOR][/B]
Fortinet;3.117.0.0;2009.02.12;-
GData;19;2009.02.13;[B][COLOR="Red"]Application.Keylog.Ardamax.DLT[/COLOR][/B]
Ikarus;T3.1.1.45.0;2009.02.12;[B][COLOR="Red"]Trojan-Downloader.Win32.Hatchet.10.B[/COLOR][/B]
K7AntiVirus;7.10.628;2009.02.12;[B][COLOR="Red"]Trojan-Spy.Win32.Ardamax.t[/COLOR][/B]
Kaspersky;7.0.0.125;2009.02.13;[B][COLOR="Red"]Trojan-Spy.Win32.Ardamax.t[/COLOR][/B]
McAfee;5524;2009.02.12;[B][COLOR="Red"]Spy-Agent.cv[/COLOR][/B]
McAfee+Artemis;5524;2009.02.12;[B][COLOR="Red"]Generic!Artemis[/COLOR][/B]
Microsoft;1.4306;2009.02.13;[B][COLOR="Red"]TrojanSpy:Win32/Ardamax.D[/COLOR][/B]
NOD32;3849;2009.02.12;-
Norman;6.00.02;2009.02.12;[B][COLOR="Red"]W32/Ardamax.GKS[/COLOR][/B]
nProtect;2009.1.8.0;2009.02.12;-
Panda;10.0.0.10;2009.02.12;[B][COLOR="Red"]Suspicious file[/COLOR][/B]
PCTools;4.4.2.0;2009.02.12;-
Prevx1;V2;2009.02.13;[B][COLOR="Red"]Malicious Software[/COLOR][/B]
Rising;21.16.32.00;2009.02.12;-
SecureWeb-Gateway;6.7.6;2009.02.12;[B][COLOR="Red"]Ad-Spyware.Dropper.Ardamax.Gen[/COLOR][/B]
Sophos;4.38.0;2009.02.12;[B][COLOR="Red"]Ardamax Installer[/COLOR][/B]
Sunbelt;3.2.1851.2;2009.02.12;-
Symantec;10;2009.02.13;[B][COLOR="Red"]Suspicious.MH690.A[/COLOR][/B]
TheHacker;6.3.1.9.254;2009.02.12;-
TrendMicro;8.700.0.1004;2009.02.12;[B][COLOR="Red"]TSPY_ARDAMAX.HR[/COLOR][/B]
VBA32;3.12.8.12;2009.02.11;[B][COLOR="Red"]Trojan-Dropper.Win32.Small.csr[/COLOR][/B]
ViRobot;2009.2.12.1603;2009.02.12;-
VirusBuster;4.5.11.0;2009.02.12;-

Additional information
File size: 2148073 bytes
MD5...: 5242f08264f2db91881c36b7ee64ce6a
[Only registered and activated users can see links. Click Here To Register...]

This is HEAVILY infected. If you downloaded this I recommend you reformat IMMEDIATELY.