QUOTE(me333 @ Jul 30 2007, 12:14 AM)
possibly a virus
CAT-QuickHeal 9.00 2007.07.28 (Suspicious) - DNAScan
eSafe 7.0.15.0 2007.07.29 Suspicious Trojan/Worm
Ikarus T3.1.1.8 2007.07.29 Backdoor.Win32.Rbot.aqo
Panda 9.0.0.4 2007.07.29 Suspicious file
Sunbelt 2.2.907.0 2007.07.28 VIPRE.Suspicious
Webwasher-Gateway 6.0.1 2007.07.30 Win32.Malware.gen!90 (suspicious)
It's not a virus or trojan or malware.
Below are the results of a free online scan from
http://virusscan.jotti.org/File: UMDEXTRACT.exe
Status: OK
MD5: 84cf76d4553c6de1617d3a3e2f7573d2
Packers detected: YODAPROT
Bit9 reports: File not found
Scan taken on 30 Jul 2007 04:50:40 (GMT)
A-Squared
Found nothing
AntiVir
Found nothing
ArcaVir
Found nothing
Avast
Found nothing
AVG Antivirus
Found nothing
BitDefender
Found nothing
ClamAV
Found nothing
CPsecure
Found nothing
Dr.Web
Found nothing
F-Prot Antivirus
Found nothing
F-Secure Anti-Virus
Found nothing
Fortinet
Found nothing
Kaspersky Anti-Virus
Found nothing
NOD32
Found nothing
Norman Virus Control
Found nothing
Panda Antivirus
Found nothing
Rising Antivirus
Found nothing
Sophos Antivirus
Found nothing
VirusBuster
Found nothing
VBA32
Found nothing
I assure you I did not write a virus.
If you're suspicious of it, though, then don't download it.
I wrote it in c++ and packed it using several exe packing tools.
The scanners are suspicious of packed exes that don't look like normal exes.
Virus writers do pack their exes to hide their code/payloads, so it's understandable that my program looks suspicious.
I've been on this board for a long time. It would be foolish, uncharacteristic, and just plain stupid
for me to write and publish a virus here. I have no interest nor desire to write viri, malware, or trojans.
Virus writers tend to be sociopaths or script kiddies who have serious issues.
umdextract is only a umd extractor - nothing more.
Again, If you're suspicious of it, though, then don't download it.