valkyrie report:
http://valkyrie.comodo.com/Result.aspx?sha1=19b7a719bf92c9a5f1e1cd32b7d5199c74ef595c&&query=1&&filename=temp.exe
the result is normal
CIMA report:
http://camas.comodo.com/cgi-bin/submit?file=d1301b90c1012bf9b917731a792bd5f2612fb3ca0b1977a5370484f54763763c
the result is undetected
I double click on the malware. >:-D
defense+ event:
2011-08-24 09:17:51 C:\Documents and Settings\Roger\ζ‘ι’\virus\temp\temp.exe Sandboxed As Partially Limited2011-08-24 09:17:54 C:\Recycle.Bin\B6232F3AAE2.exe Sandboxed As Partially Limited
2011-08-24 09:17:54 C:\Documents and Settings\Roger\ζ‘ι’\virus\temp\temp.exe Access Memory C:\WINDOWS\explorer.exe
2011-08-24 09:17:54 C:\Recycle.Bin\B6232F3AAE2.exe Access Memory C:\WINDOWS\explorer.exe
2011-08-24 09:17:54 C:\DOCUME~1\Roger\LOCALS~1\Temp\3OKEF.exe Sandboxed As Partially Limited
2011-08-24 09:18:04 C:\Recycle.Bin\B6232F3AAE2.exe Modify Key HKLM\SYSTEM\ControlSet001\Control\Session Manager\PendingFileRenameOperations
2011-08-24 09:18:04 C:\Documents and Settings\Roger\Local Settings\Temp\3OKEF.exe Modify Key HKUS\S-1-5-21-1935655697-436374069-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Run\4Y3Y0C3AUF7W1HYESOIU
2011-08-24 09:18:04 C:\Documents and Settings\Roger\Local Settings\Temp\3OKEF.exe Access Memory C:\WINDOWS\system32\winlogon.exe
2011-08-24 09:18:04 C:\Documents and Settings\Roger\Local Settings\Temp\3OKEF.exe Modify Key HKUS\S-1-5-21-1935655697-436374069-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyHttp1.1
2011-08-24 09:18:18 C:\Documents and Settings\Roger\Local Settings\Temp\3OKEF.exe Modify Key HKUS\S-1-5-21-1935655697-436374069-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyEnable