yo!! Drey what anti virus that scans like this? and that can cleanse an infected file so that in the near future i can atach some helpful files here without infections!!
but i think this is an online malware scan am i right?

File: ROPatch.zip

Status: INFECTED/MALWARE (Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database)
MD5 beba6fe9f2685d959957701b270a4d47

Packers detected: ASPACK

Scanner results
AntiVir Found nothing
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found Dropped:Trojan.Spy.Sckeylog.J
ClamAV Found nothing
Dr.Web Found Trojan.MulDrop.323
F-Prot Antivirus Found nothing
Fortinet Found Spy/Multidr
Kaspersky Anti-Virus Found Trojan-Spy.Win32.SCKeyLog.k
NOD32 Found probably unknown CRYPT.WIN32 (probable variant)
Norman Virus Control Found nothing
UNA Found nothing
VBA32 Found MalwareScope.Trojan-Spy.SCKeyLog.1



I went to this site that you've posted http://virusscan.jotti.org but there's a lot of anti-virus to choose from!!what anti-virus do you use? was it nod32? when i try downloading Nod32 it needs a username and password i think it needs to be purchased before i can download it!! can you help me? or should i instead download the trial version of nod32? and by the way thanks for the spy bot and the spyblaster!! it works perfectly ^_^

jotti uses all those anti-virus vendors listed to scan files; this is explained on the jotti website.

NOD32 is a paid-for anti-virus hence u needing a password/username for activation/verification to install. kaspersky works the same way; unless u get the trail versions.

there are several good legally free anti-virus products out there; AVG Free, AVAST Home and Antivir (google them).

thanks but can you tell me!! what anti-virus that is aproved by this site? because
in the near future maybe i could attach some somehow helpful files in this site without infections!! thanks!!

OMG.... it uses all the antivirus listed there.. once you choose the file you wanna scan it uses all automaticaly.

OMG.... it uses all the antivirus listed there.. once you choose the file you wanna scan it uses all automaticaly.

i already got your point scruie already told me!!

jotti uses all those anti-virus vendors listed to scan files; this is explained on the jotti website.

NOD32 is a paid-for anti-virus hence u needing a password/username for activation/verification to install. kaspersky works the same way; unless u get the trail versions.

there are several good legally free anti-virus products out there; AVG Free, AVAST Home and Antivir (google them).

what i mean is what anti-virus should i use to cleansed an infected file!! i already scanned it with jotti viruscan here's the result :



File: FU_Rootkit.zip
Status: POSSIBLY INFECTED/MALWARE (Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database) (Note: this file was only classified as malware by scanners known to generate more false positives than the average scanner. Do not consider these results definately accurate. Also, because of this, results of this scan will not be recorded in the database.)
MD5 f8e13e24d7a68b5764979aefc5a4311f

Packers detected: -

Scanner results

AntiVir Found TR/Spy.Agent.dg.2.B
ArcaVir Found nothing
Avast Found Win32:Rootkit2K
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
Fortinet Found W32/NtRootKit.D-tr
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found nothing
UNA Found nothing
VBA32 Found nothing

can you help me how can i cleanse this infected file!! may norton viruscan say's it's okey!! but jotti virus scan say's it not okey!! waaaah! help!!

can you help me how can i cleanse this infected file!! may norton viruscan say's it's okey!! but jotti virus scan say's it not okey!! waaaah! help!!

the whole file is the malware, you can't "clean" it . . . scanners are made to detect malwares like sniffer, rootkits etc . . .

and remember that some virus are overwriting, meaning they destroy a part of the host file to attach their payload . . . usually they modify the start of the code of the host to make it a jump to a location that contains the infection code, when you remove the infection code, you can't revert to the original content of the file . . .

this FU_rootkit is made to be a rootkit, it is not infected after it was made, so you can't clean it, very much like the first file you posted, that's why i warned you . . .

for me NOD32 is good enough, it's not a resource hog . . . but you have to buy it . . . a username and password expires as soon as one logs in with it, so basically they eliminated (to a certain extent) piracy of usernames and passwords . . .


. . .

whats the best?

the whole file is the malware, you can't "clean" it . . . scanners are made to detect malwares like sniffer, rootkits etc . . .

and remember that some virus are overwriting, meaning they destroy a part of the host file to attach their payload . . . usually they modify the start of the code of the host to make it a jump to a location that contains the infection code, when you remove the infection code, you can't revert to the original content of the file . . .

this FU_rootkit is made to be a rootkit, it is not infected after it was made, so you can't clean it, very much like the first file you posted, that's why i warned you . . .

for me NOD32 is good enough, it's not a resource hog . . . but you have to buy it . . . a username and password expires as soon as one logs in with it, so basically they eliminated (to a certain extent) piracy of usernames and passwords . . .


. . .

thanks!! drey!! now i understand and thanks for helping me out about that Jav generator Stuff!! but i realize that i couldn't get actual information in that site! because it's full of jokes!! but it made laugh!! wakokok!!