vvasdg

You have a discerning archiver. Rar format? In the archive including the presence of the virus executable file, and added his entire working set of files. This is a separate file http://slil.ru/25070989

http://www.virustotal.com AntiVir 2007.11.05 TR/Dropper.Gen BitDefender 2007.11.06 - F-Secure 2007.11.06 Trojan.Win32.Inject.jn Ikarus 2007.11.06 Trojan.Win32.Inject.jn Kaspersky 2007.11.06 Trojan.Win32.Inject.jn Webwasher -Gateway 2007.11.05 Trojan.Dropper.Gen ???

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "gvthuar"="gvthuar.exe gvthuar" this is autorun key and this programm hooked some functions: NtQueryInformationFile NtQuerySystemInformation and other...