http://community.norton.com/t5/Norton-Internet-Security-Norton/MALWARE/m-p/206743
I dont seem to be able to post into the above thread (maybe there is a forum limitation).
The following report has now been obtained for the previously discovered msraudio3d.dll.
It seems some AV packages are now detecting this beast but not Symantec.
Complete scanning result of "msraudio3d.dll", processed in VirusTotal at 04/16/2010 03:24:52 (CET).
[ file data ]
* name..: msraudio3d.dll
* size..: 77824
* md5...: 4ca08a64fffda955c28e0163f9263f25
* sha1..: 4b004d16e5656b02f980c6310b44b964c3c54866
* peid..: -
[ scan result ]
a-squared 4.5.0.50/20100416 found [Trojan.Win32.Obfuscated!IK]
AhnLab-V3 5.0.0.2/20100415 found nothing
AntiVir 7.10.6.110/20100415 found [TR/Sefnit.A.119]
Antiy-AVL 2.0.3.7/20100415 found nothing
Authentium 5.2.0.5/20100416 found [W32/SuspPack.BV.gen!Eldorado]
Avast 4.8.1351.0/20100414 found [Win32:Malware-gen]
Avast5 5.0.332.0/20100414 found [Win32:Malware-gen]
AVG 9.0.0.787/20100416 found [Generic17.ARZW]
BitDefender 7.2/20100416 found nothing
CAT-QuickHeal 10.00/20100415 found nothing
ClamAV 0.96.0.3-git/20100415 found nothing
Comodo 4609/20100416 found [TrojWare.Win32.Agent.~N14]
DrWeb 5.0.2.03300/20100416 found nothing
eSafe 7.0.17.0/20100415 found nothing
eTrust-Vet 35.2.7428/20100415 found nothing
F-Prot 4.5.1.85/20100416 found [W32/SuspPack.BV.gen!Eldorado]
F-Secure 9.0.15370.0/20100416 found nothing
Fortinet 4.0.14.0/20100415 found nothing
GData 19/20100416 found [Win32:Malware-gen]
Ikarus T3.1.1.80.0/20100416 found [Trojan.Win32.Obfuscated]
Jiangmin 13.0.900/20100415 found nothing
Kaspersky 7.0.0.125/20100416 found nothing
McAfee 5.400.0.1158/20100416 found nothing
McAfee-GW-Edition 6.8.5/20100416 found [Trojan.Sefnit.A.119]
Microsoft 1.5605/20100415 found [Trojan:Win32/Sefnit.A]
NOD32 5032/20100415 found nothing
Norman 6.04.11/20100415 found nothing
nProtect 2010-04-15.02/20100415 found nothing
Panda 10.0.2.7/20100415 found [Suspicious file]
PCTools 7.0.3.5/20100416 found nothing
Prevx 3.0/20100416 found [High Risk Fraudulent Security Program]
Rising 22.43.03.04/20100415 found nothing
Sophos 4.52.0/20100416 found [Mal/Behav-365]
Sunbelt 6181/20100416 found [Trojan.Win32.Generic!BT]
Symantec 20091.2.0.41/20100416 found nothing
TheHacker 6.5.2.0.262/20100415 found nothing
TrendMicro 9.120.0.1004/20100415 found nothing
VBA32 3.12.12.4/20100415 found nothing
ViRobot 2010.4.15.2278/20100415 found nothing
VirusBuster 5.0.27.0/20100415 found nothing
[ notes ]
Symantec Reputation Network: Suspicious.Insight http://www.symantec.com/security_response/writeup.jsp?docid=2010-021223-0550-99