Virus error from NOD32 - Win32/Kryptik.JX Trojaner False Positive by NOD32 update from today

Was not a Javascript by browsing the web.



I did search for old eMule mods such as Gamers edition.



Nod32 cleaned possible more than 18 files:

C:\WINXP\system32\mqsvc.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\nddeapir.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\ping.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\progman.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\stimon.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\Com\comrereg.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\actmovie.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\dllhost.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\dmremote.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\mqsvc.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\msdtc.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\nddeapir.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\ping.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\progman.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\system32\dllcache\stimon.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\VistaMizer\old\msdtc.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\VistaMizer\old\progman.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert
C:\WINXP\VistaMizer\old\stimon.exe - Variante von Win32/Kryptik.JX Trojaner - Gesäubert durch Löschen - in Quarantäne kopiert

My defence system:
Windows Defender with Defination 1.53.92.0 (05. March 2009) - shows nothing (was run in background)
Sysinternals Process Explorer to see hidden prozesses or things that can or do stick on running files in background.
TCP-Z to see under Detail what's connected (in/outgoing) to the computer
some firewall to see on log if realy a trojan is on system which makes connections or fals positive
NOD32 v4 with latest updates


Things I do now running:
http://devbuilds.kaspersky-labs.com/devbuilds/AVPTool/
Kaspersky Virus Removal Tool

can take days 1% in 12 hours scanned
http://onecare.live.com/site/en-us/scanner/install.htm?scanner=default
onecare.live.com live scanner

Windows original CD is in drive and have replaced the files to original versions back (possible outdated) - running online update.

I googled for this kind of virus to search but it looks very new, not many solutions to find.
What it does see above, it pack (crypt) up to all windows system exe files also in dllcatch and all backup folders even backup files from vistapack (vistamizer) get infected within seconds.

Read last entry just now found more info (an hour later details to found...)

Nod should better let access to possible infected file to the file properties info to see if signatures/cetrificates are broken and the other file information before erase that user can check the files twice. It haved covert over the system files wrong info in files properties the files did shown as packed (scambled files) lost signature from microsoft, checksum changed, version and file info -> Nod32 was shown like the files are crypted without file infos anymore, all fields by file properties shown empty blank, no one can come on the idea that system files can be false positive infected if they suddenly shown up like crypted files.

correction I found here its error from NOD update:
http://translate.google.com/translate?u=http%3A//easemystress.blogspot.com/2009/03/what-is-kryptikjx-trojan-remove.html&hl=en&langpair=en|ru&tbb=1&ie=UTF-8

Nod32 is not bad. Errors can be happen...

TCP-Z v2.6.0.64 Beta by deepxw

The New Version of TCP-Z supports now Mulilanguages.
Many new features,...


Changelog:

2009.02.05, V2.5.1.50
* GUI program, identify whether tcpip.sys is the original file without modification.
* GUI program, supports Windows XP x64 SP1 early version.
* GUI program & Drivers, supports Windows Vista SP2 RC v.275, x64, 6.0.6002.16659.

2009.03.07, V2.6.0.64 Beta
+ Support more language. German by Mods.sub.cc; Italian by FSoft; Polish by PrEzi; Romanian by StelistCristi; Bulgarian by ExaFlop; Swedish by Marshall Mathers; Thai by Pruthisith. Thank them.
+ Statistics of incoming and outgoging attempts...
+ Statistics of connections by each program.
+ Mini bar;
+ function of change the alignment of peak label.
+ Save setting at exit.


Check it out: Download Beta Version
Homepage: http://deepxw.blogspot.com
join TCP-Z translation How to translate the Program

Best TCP Half-Open Limit Patcher with Network Monitor!


File checksumes by this version are:

File: TCPZ.exe
Size: 699 KB (716.136 bytes)
CRC-32: e43c2196
MD4: b5e565030a83cec6fca5c208ffa7ce76
MD5: 6bd77d1c993e452dc95534a31b1aeecb
SHA-1: cadfa203064b5b034493a43c3715aaf943873606

File: TCPZ64.exe
Size: 975 KB (998.760 bytes)
CRC-32: b17a19b9
MD4: bd9a50a4c0a16624a7ae01bc4a4387f2
MD5: 018b70cef86ed5d07a6c1ab6691efa42
SHA-1: 3d87818c52367897f62660709fa0a41efab6a933

Please visit Authors Homepage for up-to-date versions and info: http://deepxw.blogspot.com

other tools:
RemoveWatermark_20090314.zip

eMule 0.49c ZZULtra V1.0 (ex Apace² beta)

ZZULtra V1.0 (ex Apace² beta)

ed2k://|file|eMule.0.49c.ZZULtra.V1.0.rar|2609331|0B99BAC08081A201B1F89FA7D7591823|h=JLCXMOYWS7BENBG25VF2KHPKJG3UBTEK|/

http://www.emule-coding-board.de/orion/portal.php

Changelog:
==========

ZZULtra V1.0
============

07.03.2009
==========


+ New Modname! Now Apace² is ZZULtra
(because Mod is based on ZZUL and not at Apace)

+ Ban Bad Modstring Scheme (switchable)
+ Spamming Server column in Searchlist
+ Icon for client share visibility

- Removed ClientAnalyzer (I dont like it :-)
- Removed CA-Log



Apace² V1.0 Beta 2
==================

01.03.2009
==========


+ DropSystem
+ RelaxOnStartUp
+ BetterClientAttaching
+ LoopImprovement
+ AutoDropImmunity
+ SearchCatch
+ CacheUDPSearchResults
+ AICHSecurity
+ ReconnectToKadAfterConnection
+ AutoKadFirewallRecheck
+ Automatic shared files updater
+ Commboost
+ Friendbost
+ UpPrio in Downloadlist
+ Permission in Downloadlist
+ Fixed minor bug in queuelist
+ Forgotten Modversion Column added
+ Some codecleanings and cleaner optionspages
+ Some small fixes and optimations
- Removed IP2Country from KAD to save recources


<b> Apace² V1.0 Beta 1</b>
==================

Based on eMule 0.49c ZZUL 20090222-2320

27.02.2009
==========

+ ClientAnalyzer
+ CA-Log
+ Custom Modstring
+ Random Modstring
+ Slotcontrol
+ Upload only to eMule Clients
+ Emulate others
+ Enhanced Client Recognization
+ Faster KAD reasktime
+ No Ratio
+ Download in red
+ PS files in uploadlist red
+ Changed statusbar
+ Kick/Ban
+ Reask
+ Changed some icons
+ Shutdown after download
+ Copy ClipStat
+ Save/Load Sources
+ Hash Progress
+ Changed Queuesize
+ Longer timelimits for larger buffer
+ Unlimited Slot
+ Force uploadslot
+ Community
+ Clientcredits AntiShape
+ KnownClientBonus
+ Max Chunks
+ Modversion in Clientdetails
+ Select all in menus
+ Copy Link [/URL]
+ File Feedback
+ Kickall
+ More defaults in message/commentfilter
+ Client IP in Clientdetails
+ OwnCredits in Clientdetails
+ 'copy-able' client details values
+ CatDialogWindow new designed
+ Variable Compression
+ Unlimited Friendslots
+ Remember Friendslots
+ Auto Unban when Friend to add is a banned
+ Friendhandling in all lists
+ Automatic Friendslot
+ Log Friend activities
+ Remove all Friendslots
+ Don't delete static Servers
+ MinQR
+ Friendnote
+ Powershare and Community from Queuesize excluded
+ Custom UploadPrio
+ Variable bantime
+ SeeOnQueue
+ Community Icon
+ AntiMod
+ AntiComm
+ Active Permissions
+ BetterPassiveSourceFinding
+ IPFilter Update
+ Show Blockratio
+ IP2Country
+ SearchColors

- Help
- IRC
- MobileMule
- VersionsCheck
- Wizzard
- AboutBox
- TextToSpeech
- Splashscreen

One of the Best eMule Mods with all Features what an advanced eMule user wish to have in a mod!

eMule.0.49c.ZZULtra.V1.0 fileshare link

eMule.0.49c.ZZULtra.V1.0.rar
Mirror

Thank you!

Game Archive UnPacker 0.6.0.2 PRO - can unpack Clickteam Install Creator

0.6.0.2 PRO (13/02/2009)
Legend:
(+) - Feature added
(!) - Feature changed/corrected
(*) - Bug fixed

Added unpack support for the following games:

+ "Beach Head 2002" (*.R24 and *.T24 files);
+ "Moorhuhn-Im-Anflug" (*.NPK files);
+ "ExMachina: Meridian 113" (*.GDP files);
+ "Fable: The Lost Chapters" (*.LUT files);
+ "Space Rangers" (*.DAT and *.PKG files);
+ "GTA2" (*.RAW/*.STD files);
+ "Need for Speed ProStreet" (*.BIN and *.BUN files);
+ "Test Drive Unlimited" (*.BNK and *.2DB files).

* "F.E.A.R." (*.ARCH00 files) bugfix: doesn't replace files in subfolders of archive.

! "Crimsonland" (*.JAZ files) new feature: added mask image in TGA format.

0.6.0.1 PRO (22/01/2009)
Legend:
(+) - Feature added
(!) - Feature changed/corrected
(*) - Bug fixed

Added unpack support for the following games:

+ "Tom Clancy's Ghost Recon" (*.RSB files);
+ "Fable: The Lost Chapters" (*.LUG, *.BIG, *.STB and WAD files);
+ "Call of Duty 4: Modern Warfare" (*.IFI and *.FF files);
+ "Championsheep Rally" (*.DBC files);
+ "Crysis" (*.RAW files and heightmapdataw.editor_data/heightmaplayeridbitmap.editor_data);
+ "Neverwinter Nights 2" (*.HAK and *.MOD files);
+ "Pro Evolution Soccer 6" (*.AFS, *.BIN and *.TEX files);
+ "Neverwinter Nights" (*.ERF and *.MOD files);
+ "Armed Assault" (*.PBO files);
+ "Fresco Wizard" (*.SDF and *.DAT files);
+ "Mafia: The City Of Lost Heaven" (*.DX1, *.DX2 and *.DX3 files);
+ "Civilization IV" (*.FPK files);
+ "The Elder Scrolls 4: Oblivion" (*.BSA files);
+ "Sacred" (*.PAK files);
+ "Kayak Extreme" (*.IMG files);
+ "Moorhuhn Piraten" (*.DAT files);
+ "Moorhuhn - Heart of Tibet" (*.DAT files);
+ "Moorhuhn Wanted" (*.DAT files):
+ "FlatOut Ultimate Carnage" (*.BFS files).

0.6.0.0 PRO (03/02/2008)
Legend:
(+) - Feature added
(!) - Feature changed/corrected
(*) - Bug fixed

Added unpack support for the following games:
+ "Gunbound" (*.XFS files);
+ "EPOC Operation System" (*.SIS files);
+ "Jagged Alliance 2 [Unfinished Business]" (*.SLF files);
+ "Command & Conquer: Tiberian Dawn" (*.MIX files);
+ "Master of Orion 2" (*.LBX files);
+ "Heroes of Might and Magic II" (*.AGG files);
+ "The Bard's Tale" (*.LMP and *.XWB files);
+ "Perimeter" (*.VMP files);
+ "Airborne Troops" (*.PAK files).

Added pack support for the following games:

+ "Need For Speed Underground" (*.BUN files)(Replaces existing files only);
+ "Need For Speed Underground 2" (*.BUN files)(Replaces existing files only);
+ "Need For Speed Most Wanted" (*.BUN files)(Replaces existing files only);
+ "Need For Speed Carbon" (*.BUN files)(Replaces existing files only).

+ Added decompression of "Fallout" (*.DAT files).

Better structure support for the following games:

! "Tzar" (*.WDT files).
! "Warhammer 40000: Dawn of War" (*.SGA files).
! "Doom 1", "Doom 2", "Heretic" and "Hexen" (*.WAD files).
! "Duke Nukem 3D" (*.RTS files).
! "DemonStar" (*.GLB files).

* Some small bug's fixed.

0.5.0.8 PRO (07/11/2007)
Added unpack support for the following games:
- "ElastoMania" (ELMA.RES file).

Some bugs were fixed.

0.5.0.7 PRO (23/10/2007)
Added unpack support for the following games:
- "Ragnarok" (*.EBM files);
- "Metal Gear Solid 2: Substance" (*.QAR and *.XTI files).

Added unpack support for the following installers:
- "Inno Setup Installer" (*.EXE files)(Versions 2.0.18/v3.0.1/v3.0.5);
- "Clickteam Install Creator" (*.EXE files). (00de.de µTorrent Extreme Leecher Edition v2.50 Public Version after de compress upx -d)

Full support of the "Need For Speed Most Wanted" and "Need For Speed Carbon" .BIN files.

Added unpack support for the "3D Mark 2003" (*.DAT files).

0.5.0.6 PRO (04/10/2007)
Added unpack support for the following games:
- "Counter-Strike" (*.GCF files);
- "Half-Life" (*.GCF files);
- "Silent Hill 4" (*.SH4 files).

0.5.0.5 PRO (29/09/2007)
Added unpack support:
- "Need For Speed Carbon" .BIN and .BUN files.

Better support of "NFS Most Wanted" and "NFS Underground" .BIN and .BUN files.

0.5.0.4 PRO (23/09/2007)
Added unpack support:
- "The Elder Scrolls 3 (Morrowind)" .BSA files;
- "Silent Hill 4" .BIN files (Detecting on exention);
- "AxySnake" .MUS files (Detecting on exention only; Ñonvert to WAV);
- "AxySnake" bmppack.bin (Detecting on filename only);
- "Age Of Empires 3" .DDT files (Convert to DDS);
- "Need for Speed" .FSH and .QFS files (Convert to BMP/TGA/DDS).

0.5.0.3 PRO (11/08/2007)
Added unpack support:
- "Pocket Tanks" .BBK, .EMI and .WEP files;
- "Earth 2140" .DAT/.PAL files (Detecting on exention);
- "Krush, Kill 'n' Destroy [Xtreme]" .SLV files.

0.5.0.2 PRO (15/04/2007)
Added unpack support:
- "C&C: Tiberium Wars" .BIG files;
- "Ascendancy" .COB files (not tested);
- "Battlespire" .BSA files (not tested);
- "Air Strike 3D" .APK files.

0.5.0.1 PRO (28/03/2007)
Added decompression of "War Craft II" of .CUD, .INS, .SUD and .WAR files.

Added unpack support:
- "MotoGP 3" .ARK files;
- "Ballistics; *.*_ files;
- "Tzar" .WDT files (not tested);
- "Moorhuhn X - XXL" .DAT file;
- "Moorhuhn" MOORHUHN.DAT file.

0.5.0.0 PRO (25/03/2007)
Added unpack support:
- "The Suffering" .TDU files;
- "Age Of Empires 3" .BAR files.
Added pack support:
- "Duke Nukem II" .CMP files;
- "F.E.A.R." .ARCH00 files (Replace existing files only).

0.4.9.4 PRO (20/03/2007)
- Fixed several great bugs
Added unpack support:
- "Mario Forever" Info MF.exe & Mario Forever.exe files;
- "Z" .PAC files (thanks 2 Siberian GRemlin);
- "Z Expansion" .EXP files (thx 2 Siberian GRemlin);
- "Death Rally" .BPA files (thx 2 deus-ex).

0.4.9.3 PRO (17/01/2007)
Added unpack support:
- "Wings Over Vietnam" .CAT files;
- "Dungeon Lords" .AL4 and .AL8 files;
- "Journey To The Center Of The Earth" .0000 files;
- "F.E.A.R." .ARCH00 files.

0.4.9.2 PRO (17/12/2006)
Added unpack support:
- "Patrician III" .CPR and .SKS files;
- "Spells of Gold" .JDR, .JSR and .JTR files;
- "Hitman Blood Money" .WAV/.WHD files.

0.4.9.1 PRO (05/11/2006)
Added unpack support:
- "Medal of Honor: Pacific Assault" .REZ files (partial support);
- "Kult - Heretic Kingdoms" .DAT/.IDX files;
- "Age of Wonders II" .A2C, .ACM and AHM files;
- "Star Wars: Republic Commando" .CTM, .CTS, .U, .UAX, .UKX, .UPX, .USX and UTX files;
- "Destruction Derby 2 Demo" DIRINFO. and BANK1.SBK files.

0.4.9.0 PRO (02/11/2006)
Added unpack support:
- "Rome - Total War" .PAK files;
- "Rome - Total War" .DAT/.IDX files;
- "Fallout" .DAT files (Not decompress);
- "Fallout 2" .DAT files.
Added decompression of Commandos Strike Force .PAK files (thanks to Anatoly Prokofiev).

Added full directory support of Sudden Strike .SUE files.

0.4.8.0 (25/10/2006)
Added supporting:
- "Settlers 2" .DAT/.IDX files;
- "Age Of Empires 3" .AGE3SCN files;
- "Black and White 2" .LUD files;
- "Sudden Strike" .SUE files.

0.4.7.0 beta (29/09/2006)
Added supporting:
- "BattleRealms" .H2O files;
- "Dragonshard" .H2O files;
- "BloodRayne" .POD files;
- "BloodRayne 2" .POD files.

0.4.6.0 beta (27/09/2006)
Added supporting:
- "RAW" .XPK files;
- "Grand Prix II" .CAT files;
- "Giza" .MJZ files;
- "SWAT 4" .PKG, .S4M, .U, .UKX, .USX and .UTX files.
Added dialog "About...".

0.4.5.0 beta (08/08/2006)
Added supporting:
- "Commandos 2: Men of Courage" .GRL files;
- "Lord Of The Rings: War Of Ring" .H2O files;
- "Silent Hill 3" .TEX files (inside ARC) (TEX -> TGA 8/32bpp);
- "Commandos Strike Force" .PAK files (Not decompress);
- "Counter-Strike [Condition Zero]" .MDL files.
Full support of "Grand Theft Auto: Vice City [Deluxe]" .TXD (TXD -> DDS 32bpp/BMP 8bpp) files.

0.4.4.0 beta (19/07/2006)
Added supporting:
- "Counter-Strike: Condition Zero" .BSP and .SPR (SPR -> TGA 8bpp) files;
- "Color Eggs" .STG files;
- "Nancy Drew: Secret Of the Scarlet Hand" .HIS (HIS -> WAV/OGG) files;
- "Sherlock Holmes: The Mystery of the Mummy" .PAK files.
Converting .GFX files from "Bricks of Egypt" to BMP 16bpp format.

0.4.3.0 beta (18/03/2006)
Added supporting:
- "GTR Demo" .GTR files;
- "The Punisher" .CEG files;
- "Star Heritage 1" .BPK files;
- "Red Faction" .VPP files;
- "ElastoMania" .LGR files (version 1.11h).

0.4.2.0 beta (26/01/2006)
Added supporting:
- "Aura: Fate Of The Ages" .PSP and .PVD files;
- "Dyna" .IMG (IMG -> IFF 8bpp) files;
- "Counter Strike Source" .VTF files (VTF to DDS 24/32bpp convertion);
- "Star Wars: Empire at War DEMO" .MEG files;
- "Need for Speed Most Wanted" .BIN, .BUN and .LZC files.

Support of "Need for Speed Undegroung" .BIN files is improved: convertion to DDS format.

0.4.1.0 beta (17/01/2006)
Added supporting:
- "Destruction Derby" .000, .001 files and files without extension;
- "Commandos 2" .PCK files;
- "Earth 2150" .TEX files;
- "Warlords Battlecry III" .XCR files;
- "Heroes of Might and Magic III" .PCX files;
- "Mor.Utopia" .VFS files;
- "Mafia: The City Of Lost Heaven" .DTA files.

0.4.0.0 beta (06/01/2006)
Added supporting:
- "Mafia" .555 and .565 files:
555 to TGA 16bpp converting;
565 to BMP 16bpp converting;
- "C&C: Renegade" .DAT; .DBS; .MIX and .THU files;
- "Silent Hill 4: The Room" .PAC files;
- "The Sum Of All Fears" .RSB files (RSB to BMP 16bpp converting).

for total commander: http://www.totalcmd.net/plugring/gaup.html
Authr Homepage: hhttp://forrox.narod.ru/

News

Dear reader

I got a error in my blog template. View Next page dont list full size articles, it show only header news lines. The template I created have lot of customize, its not a ready template downloaded. If someone can help me how to fix the error or improve it I will appriciate.

please comment here for suggestion on how I can make the blog site better

Thank you

LimeWire Pro 5.1.2 Pro | LimeWire 5.1.1 Pro | LimeWire 5.1.0 Pro Beta

LimeWire The Fastest File Sharing Program on Earth
http://sales.limewire.com/090..../..lettersalotwithnumbers.../beta/download/LimeWireWin.exe

Latest:

RETAIL Multilanguage
Final PRO:

LimeWire 5.1.2 Pro

For Windows: LimeWireWin.exe 18.70 MB
For Linux: LimeWireLinux.deb 22.95 MB
For OSX: LimeWireOSX.dmg
For Other OS: LimeWireOther.zip


===============================================
older versions
LimeWire 5.1.1 Pro

For Windows: LimeWireWin.exe 18.68 MB
For Linux: LimeWireLinux.deb 22.92 MB
For Mac OSX: LimeWireOSX.dmg 8.28 MB
Other OS: LimeWireOther.zip 23.09 MB


Beta:
digital signature date: Dienstag, 3. März 2009 06:53:37
windows LimeWire PRO 5.1.0 exe version 5.1.0.1

Checksums:
File: LimeWireWin.exe
CRC-32: 95f16bc0
MD4: f410d28c275b70af92f3f7cc60f62204
MD5: 7ee0516ff4490667f6acce533260ac45
SHA-1: 70b83aa05154d617bee00f9ef37e522bcf945bd8

Version 5.1.0 PRO retail
Mirror :
For Windows: LimeWireWin.exe 18.68 MB
For Mac OSX: LimeWireOSX.dmg 8.28 MB
For Linux: LimeWireLinux.deb 22.92 MB
Other OS: LimeWireOther.zip 23.09 MB

lic. open source
Source code: http://www.google.com/search?q=limewire+sourceforge

The Pro edition don't have the search result filter.