Hi again:
here is the report from Virus total:
File icon.exe received on 11.14.2008 05:22:52 (CET)
Current status: finished
Result: 0/36 (0.00%)
Compact Compact
Print results Print results
Antivirus Version Last Update Result
AhnLab-V3 2008.11.14.0 2008.11.14 -
AntiVir 7.9.0.31 2008.11.13 -
Authentium 5.1.0.4 2008.11.14 -
Avast 4.8.1281.0 2008.11.14 -
AVG 8.0.0.199 2008.11.14 -
BitDefender 7.2 2008.11.14 -
CAT-QuickHeal 10.00 2008.11.13 -
ClamAV 0.94.1 2008.11.13 -
DrWeb 4.44.0.09170 2008.11.14 -
eSafe 7.0.17.0 2008.11.13 -
eTrust-Vet 31.6.6208 2008.11.13 -
Ewido 4.0 2008.11.13 -
F-Prot 4.4.4.56 2008.11.13 -
F-Secure 8.0.14332.0 2008.11.14 -
Fortinet 3.117.0.0 2008.11.13 -
GData 19 2008.11.14 -
Ikarus T3.1.1.45.0 2008.11.14 -
K7AntiVirus 7.10.524 2008.11.13 -
Kaspersky 7.0.0.125 2008.11.14 -
McAfee 5433 2008.11.13 -
Microsoft 1.4104 2008.11.14 -
NOD32 3612 2008.11.13 -
Norman 5.80.02 2008.11.13 -
Panda 9.0.0.4 2008.11.14 -
PCTools 4.4.2.0 2008.11.13 -
Prevx1 V2 2008.11.14 -
Rising 21.03.31.00 2008.11.13 -
SecureWeb-Gateway 6.7.6 2008.11.14 -
Sophos 4.35.0 2008.11.14 -
Sunbelt 3.1.1785.2 2008.11.11 -
Symantec 10 2008.11.14 -
TheHacker 6.3.1.1.152 2008.11.13 -
TrendMicro 8.700.0.1004 2008.11.13 -
VBA32 3.12.8.9 2008.11.13 -
ViRobot 2008.11.13.1466 2008.11.13 -
VirusBuster 4.5.11.0 2008.11.13 -
Additional information
File size: 32768 bytes
MD5...: c82dcdcab8aff3d50bfc1d0aa5b82157
SHA1..: fc20b297edd27a66d68e399b8acbaef4a1c11d37
SHA256: 1b9e755356bbe2e2a14595aaf827a3f339619a898ad6232492297b0083fec625
SHA512: 2760e91ba5005e80db7132b75e7ca50e6f0e63efc362debe5852922caeed82ca
62e0e0d59d135a3fba4d6a046bb7b993e86ba1861c921fbd11bb90dc740c5120
PEiD..: Armadillo v1.71
TrID..: File type identification
Win32 Executable MS Visual C++ (generic) (65.2%)
Win32 Executable Generic (14.7%)
Win32 Dynamic Link Library (generic) (13.1%)
Generic Win/DOS Executable (3.4%)
DOS Executable Generic (3.4%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x401010
timedatestamp.....: 0x3b8c2646 (Tue Aug 28 23:16:22 2001)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x288e 0x3000 5.91 5c750246800ed8cf9f2a2a31395672ec
.rdata 0x4000 0x736 0x1000 3.01 0081f7ef1a173dc3908c7477e1f91b23
.data 0x5000 0x9bc 0x1000 0.87 5dd0366f742b8f20fd3b8ef03763cab4
.rsrc 0x6000 0x13e8 0x2000 2.06 a874f34c3aeb816236bac9d9b242410c
( 1 imports )
> KERNEL32.dll: VirtualFree, GetStartupInfoA, GetCommandLineA, GetVersion, ExitProcess, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, GetModuleFileNameA, FreeEnvironmentStringsA, FreeEnvironmentStringsW, WideCharToMultiByte, GetEnvironmentStrings, GetEnvironmentStringsW, SetHandleCount, GetStdHandle, GetFileType, HeapDestroy, HeapCreate, GetModuleHandleA, HeapFree, RtlUnwind, WriteFile, GetCPInfo, GetACP, GetOEMCP, HeapAlloc, VirtualAlloc, HeapReAlloc, GetProcAddress, LoadLibraryA, MultiByteToWideChar, LCMapStringA, LCMapStringW, GetStringTypeA, GetStringTypeW
( 0 exports )
ThreatExpert info:
http://www.threatexpert.com/report.a...fc1d0aa5b82157
My computer seems working fine right now, but I still have McAfee and TeaTimer disabled, so I don't know if those programs will signal the presence of any malaware once enabled...but I guess you are able to tell me if my computer is still infected.
Thanks again for your time,
and I will wait for your next reply