Tech Support Forum - View Single Post - Blue "Spyware detected on your computer!" desktop

ddelaiarro · 08-20-2008, 06:13 AM

=============
VIRUSTOOL SCAN
=============

File DscSrvMsg.dll received on 08.20.2008 14:12:12 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 2/36 (5.56%)
Loading server information...
Your file is queued in position: 1.
Estimated start time is between 38 and 55 seconds.
Do not close the window until scan is complete.
The scanner that was processing your file is stopped at this moment, we are going to wait a few seconds to try to recover your result.
If you are waiting for more than five minutes you have to resend your file.
Your file is being scanned by VirusTotal in this moment,
results will be shown as they're generated.
Compact Compact
Print results Print results
Your file has expired or does not exists.
Service is stopped in this moments, your file is waiting to be scanned (position: ) for an undefined time.

You can wait for web response (automatic reload) or type your email in the form below and click "request" so the system sends you a notification when the scan is finished.
Email:

Antivirus Version Last Update Result
AhnLab-V3 2008.8.19.0 2008.08.20 -
AntiVir 7.8.1.23 2008.08.20 -
Authentium 5.1.0.4 2008.08.20 -
Avast 4.8.1195.0 2008.08.19 -
AVG 8.0.0.161 2008.08.20 Win32/Heur
BitDefender 7.2 2008.08.20 -
CAT-QuickHeal 9.50 2008.08.19 -
ClamAV 0.93.1 2008.08.19 -
DrWeb 4.44.0.09170 2008.08.20 -
eSafe 7.0.17.0 2008.08.19 -
eTrust-Vet 31.6.6036 2008.08.19 -
Ewido 4.0 2008.08.20 -
F-Prot 4.4.4.56 2008.08.19 -
F-Secure 7.60.13501.0 2008.08.20 -
Fortinet 3.14.0.0 2008.08.20 -
GData 2.0.7306.1023 2008.08.20 -
Ikarus T3.1.1.34.0 2008.08.20 -
K7AntiVirus 7.10.421 2008.08.19 -
Kaspersky 7.0.0.125 2008.08.20 -
McAfee 5364 2008.08.19 -
Microsoft 1.3807 2008.08.20 -
NOD32v2 3370 2008.08.20 -
Norman 5.80.02 2008.08.20 -
Panda 9.0.0.4 2008.08.19 -
PCTools 4.4.2.0 2008.08.19 -
Prevx1 V2 2008.08.20 -
Rising 20.58.22.00 2008.08.20 -
Sophos 4.32.0 2008.08.20 Mal/EncPk-DG
Sunbelt 3.1.1564.1 2008.08.20 -
Symantec 10 2008.08.20 -
TheHacker 6.3.0.5.054 2008.08.19 -
TrendMicro 8.700.0.1004 2008.08.20 -
VBA32 3.12.8.3 2008.08.20 -
ViRobot 2008.8.20.1342 2008.08.20 -
VirusBuster 4.5.11.0 2008.08.19 -
Webwasher-Gateway 6.6.2 2008.08.20 -
Additional information
File size: 126976 bytes
MD5...: b52dbfda2ccfe035307592b3da6d8c2a
SHA1..: df1a3c6b0be71db9860d850246e641f6a01b7e2d
SHA256: 2aaf8fc12db45940b26c47dd1763002314973ada402f993a11f410bb99802d3c
SHA512: 520013676e85707f9bd83808b5b7fdee9f2ceb6792f39c3caa53520f947cf22b
d34f01f8a7055da2055fc67065c8f61caebc5660fd2fbf9d71112892deea9450
PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x10001369
timedatestamp.....: 0x48a0c4f4 (Mon Aug 11 23:02:12 2008)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.stui 0x1000 0x198ca 0x1a000 6.88 96ae84b60b352cd28ee9dc111cfe73f8
.iywgbw 0x1b000 0x761 0x1000 3.04 839289d9a4d956f78eb3e5df357f9e33
.aycck 0x1c000 0x1fc4 0x1000 0.49 b39c6a1e8465dd519a7ff8b0d7b03a3f
.reloc 0x1e000 0x1974 0x2000 6.00 4dbe5cb2eea15df7bd22e671a7b55a41

( 4 imports )
> KERNEL32.dll: lstrlenW, GetModuleHandleW, InterlockedIncrement, Sleep, GetCurrentThreadId, GetCurrentThread, ReadProcessMemory, SetLastError, GetFileAttributesW, LoadLibraryA, FreeResource, WriteFile, SetEndOfFile, GetTickCount, GetLastError, SetFilePointer, SetThreadPriority, GetProcAddress, FileTimeToSystemTime, GetCurrentProcess, FindFirstFileW, FreeLibrary, GetPrivateProfileStringW, GetCurrentProcessId, FindResourceExW
> USER32.dll: SetCapture, GetWindowThreadProcessId, GetWindowDC, IsWindow, wsprintfW, SetLayeredWindowAttributes, EnableWindow, SetForegroundWindow, EndDialog, DestroyMenu, RegisterHotKey, LoadImageW, MessageBoxW, SetWindowPos, SystemParametersInfoW, CreateWindowExW, PostThreadMessageW, PostMessageW
> GDI32.dll: MoveToEx, BitBlt, DeleteDC, CreateCompatibleBitmap, CreateBitmap, SelectObject, CreateICW, GetMapMode, CreateFontIndirectW, Rectangle, CreateCompatibleDC, CreateRoundRectRgn
> ADVAPI32.dll: RegCloseKey, RegDeleteValueW, RegQueryValueExW, RegNotifyChangeKeyValue, RegOpenKeyExW

( 4 exports )
DllCanUnloadNow, DllGetClassObject, DllRegisterServer, DllUnregisterServer

ATENTION ATTENTION: VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

08-20-2008, 06:13 AM	#8 (permalink)
ddelaiarro Registered User Join Date: Aug 2008 Posts: 11 OS: XP	Re: Blue "Spyware detected on your computer!" desktop ============= VIRUSTOOL SCAN ============= File DscSrvMsg.dll received on 08.20.2008 14:12:12 (CET) Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED Result: 2/36 (5.56%) Loading server information... Your file is queued in position: 1. Estimated start time is between 38 and 55 seconds. Do not close the window until scan is complete. The scanner that was processing your file is stopped at this moment, we are going to wait a few seconds to try to recover your result. If you are waiting for more than five minutes you have to resend your file. Your file is being scanned by VirusTotal in this moment, results will be shown as they're generated. Compact Compact Print results Print results Your file has expired or does not exists. Service is stopped in this moments, your file is waiting to be scanned (position: ) for an undefined time. You can wait for web response (automatic reload) or type your email in the form below and click "request" so the system sends you a notification when the scan is finished. Email: Antivirus Version Last Update Result AhnLab-V3 2008.8.19.0 2008.08.20 - AntiVir 7.8.1.23 2008.08.20 - Authentium 5.1.0.4 2008.08.20 - Avast 4.8.1195.0 2008.08.19 - AVG 8.0.0.161 2008.08.20 Win32/Heur BitDefender 7.2 2008.08.20 - CAT-QuickHeal 9.50 2008.08.19 - ClamAV 0.93.1 2008.08.19 - DrWeb 4.44.0.09170 2008.08.20 - eSafe 7.0.17.0 2008.08.19 - eTrust-Vet 31.6.6036 2008.08.19 - Ewido 4.0 2008.08.20 - F-Prot 4.4.4.56 2008.08.19 - F-Secure 7.60.13501.0 2008.08.20 - Fortinet 3.14.0.0 2008.08.20 - GData 2.0.7306.1023 2008.08.20 - Ikarus T3.1.1.34.0 2008.08.20 - K7AntiVirus 7.10.421 2008.08.19 - Kaspersky 7.0.0.125 2008.08.20 - McAfee 5364 2008.08.19 - Microsoft 1.3807 2008.08.20 - NOD32v2 3370 2008.08.20 - Norman 5.80.02 2008.08.20 - Panda 9.0.0.4 2008.08.19 - PCTools 4.4.2.0 2008.08.19 - Prevx1 V2 2008.08.20 - Rising 20.58.22.00 2008.08.20 - Sophos 4.32.0 2008.08.20 Mal/EncPk-DG Sunbelt 3.1.1564.1 2008.08.20 - Symantec 10 2008.08.20 - TheHacker 6.3.0.5.054 2008.08.19 - TrendMicro 8.700.0.1004 2008.08.20 - VBA32 3.12.8.3 2008.08.20 - ViRobot 2008.8.20.1342 2008.08.20 - VirusBuster 4.5.11.0 2008.08.19 - Webwasher-Gateway 6.6.2 2008.08.20 - Additional information File size: 126976 bytes MD5...: b52dbfda2ccfe035307592b3da6d8c2a SHA1..: df1a3c6b0be71db9860d850246e641f6a01b7e2d SHA256: 2aaf8fc12db45940b26c47dd1763002314973ada402f993a11f410bb99802d3c SHA512: 520013676e85707f9bd83808b5b7fdee9f2ceb6792f39c3caa53520f947cf22b d34f01f8a7055da2055fc67065c8f61caebc5660fd2fbf9d71112892deea9450 PEiD..: - PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x10001369 timedatestamp.....: 0x48a0c4f4 (Mon Aug 11 23:02:12 2008) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .stui 0x1000 0x198ca 0x1a000 6.88 96ae84b60b352cd28ee9dc111cfe73f8 .iywgbw 0x1b000 0x761 0x1000 3.04 839289d9a4d956f78eb3e5df357f9e33 .aycck 0x1c000 0x1fc4 0x1000 0.49 b39c6a1e8465dd519a7ff8b0d7b03a3f .reloc 0x1e000 0x1974 0x2000 6.00 4dbe5cb2eea15df7bd22e671a7b55a41 ( 4 imports ) > KERNEL32.dll: lstrlenW, GetModuleHandleW, InterlockedIncrement, Sleep, GetCurrentThreadId, GetCurrentThread, ReadProcessMemory, SetLastError, GetFileAttributesW, LoadLibraryA, FreeResource, WriteFile, SetEndOfFile, GetTickCount, GetLastError, SetFilePointer, SetThreadPriority, GetProcAddress, FileTimeToSystemTime, GetCurrentProcess, FindFirstFileW, FreeLibrary, GetPrivateProfileStringW, GetCurrentProcessId, FindResourceExW > USER32.dll: SetCapture, GetWindowThreadProcessId, GetWindowDC, IsWindow, wsprintfW, SetLayeredWindowAttributes, EnableWindow, SetForegroundWindow, EndDialog, DestroyMenu, RegisterHotKey, LoadImageW, MessageBoxW, SetWindowPos, SystemParametersInfoW, CreateWindowExW, PostThreadMessageW, PostMessageW > GDI32.dll: MoveToEx, BitBlt, DeleteDC, CreateCompatibleBitmap, CreateBitmap, SelectObject, CreateICW, GetMapMode, CreateFontIndirectW, Rectangle, CreateCompatibleDC, CreateRoundRectRgn > ADVAPI32.dll: RegCloseKey, RegDeleteValueW, RegQueryValueExW, RegNotifyChangeKeyValue, RegOpenKeyExW ( 4 exports ) DllCanUnloadNow, DllGetClassObject, DllRegisterServer, DllUnregisterServer ATENTION ATTENTION: VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.