来一小包

will

Multi Command-Line Scanner Report
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\a4.exe   
MD5 Hash: 03165F45A08F69A1790BBD80BBE27113   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Nothing   
Avast ----- Win32:KillAV-JD [Trj]   
Antivir ----- TR/Spy.Gen   
BitDefender ----- DeepScan:Generic.Malware.SPdldPkTkg.82A88CDD   
ClamWin ----- Nothing   
Dr.Web ----- DLOADER.Trojan   
NOD32 ----- Nothing   
F-prot ----- W32/OnlineGames.AJ.gen!Eldorado    
Ikarus ----- Nothing   
Jiangmin ----- Nothing   
Kaspersky ----- Trojan.Win32.KillAV.aqi   
Kingsoft ----- Win32.Troj.OnlineGameT.bd.65697   
Mcafee ----- New Malware.ab   
Microsoft ----- TrojanDownloader:Win32/Dogrobot.A   
Norman ----- Trojan W32/Packed/FSG_2.A   
Panda ----- Nothing   
Sophos ----- Mal/Packer   
Trend Micro ----- Cryp_Bits   
Vba32 ----- Nothing   
VirusBuster ----- Packed/FSG   

*** 13/20 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\down.sys   
MD5 Hash: D55F9EA4381BBC25BB2F3827EDCC2D54   
Type: Generic INI configuration / Extension: .INI   

A-squared ----- Nothing   
Avast ----- Nothing   
Antivir ----- Nothing   
BitDefender ----- Nothing   
ClamWin ----- Nothing   
Dr.Web ----- Nothing   
NOD32 ----- Nothing   
F-prot ----- Nothing   
Ikarus ----- Nothing   
Jiangmin ----- Nothing   
Kaspersky ----- Nothing   
Kingsoft ----- Nothing   
Mcafee ----- Nothing   
Microsoft ----- Nothing   
Norman ----- Nothing   
Panda ----- Nothing   
Sophos ----- Nothing   
Trend Micro ----- Nothing   
Vba32 ----- Nothing   
VirusBuster ----- Nothing   

*** 0/20 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\fats.exe   
MD5 Hash: 1570FA9FF1BCB106DD2E27486F494ADD   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Downloader.Win32.Zlob.and!IK   
Avast ----- Win32:Trojan-gen {Other}   
Antivir ----- TR/PSW.QQpass.dcg.1   
BitDefender ----- Trojan.Generic.667307   
ClamWin ----- Nothing   
Dr.Web ----- DLOADER.Trojan   
NOD32 ----- Win32/TrojanDownloader.Agent.OCS trojan   
F-prot ----- W32/OnlineGames.H.gen!Eldorado    
Ikarus ----- Trojan-Downloader.Win32.Zlob.and   
Jiangmin ----- TrojanDownloader.Agent.aimk   
Kaspersky ----- Trojan-PSW.Win32.QQPass.dcg   
Kingsoft ----- Win32.TrojDownloader.Mnless.65536   
Mcafee ----- Generic PWS.y   
Microsoft ----- TrojanDownloader:Win32/Dogrobot.gen!J   
Norman ----- Trojan W32/Packed_Upack.A   
Panda ----- Nothing   
Sophos ----- Mal/Emogen-N   
Trend Micro ----- TROJ_SMALL.CGJ   
Vba32 ----- Trojan-PSW.Win32.QQPass.dcg   
VirusBuster ----- Packed/Upack   

*** 18/20 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\ko.exe   
MD5 Hash: 2B3A471A8F6BDFB9E782C796BEC048C1   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Trojan.Win32.Agent.acve!IK   
Avast ----- Win32:Trojan-gen {Other}   
Antivir ----- TR/Agent.50176   
BitDefender ----- Trojan.Dropper.Replacer.A   
ClamWin ----- Trojan.Agent-49427   
Dr.Web ----- Trojan.MulDrop.18849   
NOD32 ----- Win32/Qhost.NEY trojan   
F-prot ----- Nothing   
Ikarus ----- Trojan.Win32.Agent.acve   
Jiangmin ----- Trojan/Agent.bjwq   
Kaspersky ----- Trojan.Win32.Agent.acve   
Kingsoft ----- Win32.Troj.Agent.86016   
Mcafee ----- Generic.dx   
Microsoft ----- TrojanDownloader:Win32/Dogrobot.A   
Norman ----- Trojan W32/Packed/FSG_2.A   
Panda ----- Trj/Downloader.MDW   
Sophos ----- Mal/Packer   
Trend Micro ----- Cryp_Bits   
Vba32 ----- Trojan.Win32.Agent.acve   
VirusBuster ----- Packed/FSG   

*** 19/20 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\kodown.exe   
MD5 Hash: F32FCA09B31C434C202701D2819203C1   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Backdoor.Win32.Agent.ahj!IK   
Avast ----- Win32:QQPass-SU [Trj]   
Antivir ----- TR/Drop.Small.bth   
BitDefender ----- Trojan.PWS.OnlineGames.ZUP   
ClamWin ----- Nothing   
Dr.Web ----- Trojan.MulDrop.18390   
NOD32 ----- Win32/TrojanDownloader.Agent.OCS trojan   
F-prot ----- W32/Heuristic-210!Eldorado    
Ikarus ----- Backdoor.Win32.Agent.ahj   
Jiangmin ----- Trojan/PSW.QQPass.ubb   
Kaspersky ----- Trojan-PSW.Win32.QQPass.dcg   
Kingsoft ----- Win32.Troj.Down.a.139264   
Mcafee ----- Generic PWS.y   
Microsoft ----- Trojan:Win32/Dogrobot.gen!H   
Norman ----- Trojan W32/Packed_Upack.A   
Panda ----- Trj/QQPass.BOC   
Sophos ----- Mal/Emogen-N   
Trend Micro ----- TROJ_DROPPER.BZM   
Vba32 ----- Trojan-PSW.Win32.QQPass.dcg   
VirusBuster ----- Packed/Upack   

*** 19/20 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\s1s.exe   
MD5 Hash: E81649BC3088E4B5B4F16831CCBFFBA0   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Virus.Win32.KillAV.JD!IK   
Avast ----- Win32:KillAV-JD [Trj]   
Antivir ----- TR/Spy.Gen   
BitDefender ----- DeepScan:Generic.Malware.SPdldPkTkg.82A88CDD   
ClamWin ----- Nothing   
Dr.Web ----- DLOADER.Trojan   
NOD32 ----- Nothing   
F-prot ----- W32/OnlineGames.AJ.gen!Eldorado    
Ikarus ----- Virus.Win32.KillAV.JD   
Jiangmin ----- Nothing   
Kaspersky ----- Trojan.Win32.KillAV.aqi   
Kingsoft ----- Win32.Troj.OnlineGameT.bd.65697   
Mcafee ----- New Malware.ab   
Microsoft ----- TrojanDownloader:Win32/Dogrobot.A   
Norman ----- Trojan W32/Packed/FSG_2.A   
Panda ----- Nothing   
Sophos ----- Mal/Packer   
Trend Micro ----- Cryp_Bits   
Vba32 ----- Nothing   
VirusBuster ----- Packed/FSG   

*** 15/20 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   

Task done @ 2008/09/28 日 19:20:36.33   

解压密码  virus

[ 本帖最后由 will 于 2008-9-28 19:28 编辑 ]

我爱舒畅

扫描统计:
扫描时间: 1秒
扫描选项:
扫描目标: C:\Downloads\MCLS\MCLS.rar
计数:
  扫描的项目总数: 7
  - 文件和目录: 7
  - 注册表条目: 0
  - 进程和启动项目: 0
  - 网络和浏览器项目: 0
  - 其他: 0
  - 受信任文件: 0
  - 跳过的文件: 0

  检测到的安全风险总数: 5
  已解决的项目总数: 5
  需要注意的项目总数: 0


已解决的威胁数:
压缩文件“mcls.rar”中存在风险
类型: 已压缩
风险: 高 (高 隐蔽性，高 清除，高 性能，高 隐私)
类别: 病毒
状态: 完全解决
-----------
5 文件
c:\downloads\mcls\mcls.rar - 已删除




未解决的威胁数:

1688388728

蜘蛛5个

kingmuro

驱逐舰杀

尤金卡巴斯基

2008/9/28 20:41:21        已清除        木马程序 Trojan.Win32.KillAV.aqi        G:\Temp\Virus\MCLS.zip/MCLS/a4.exe//FSG               
2008/9/28 20:41:21        已清除        木马程序 Trojan-PSW.Win32.QQPass.dcg        G:\Temp\Virus\MCLS.zip/MCLS/fats.exe//PE_Patch//UPack               
2008/9/28 20:41:21        已清除        木马程序 Trojan.Win32.Agent.acve        G:\Temp\Virus\MCLS.zip/MCLS/ko.exe//FSG               
2008/9/28 20:41:21        已清除        木马程序 Trojan-PSW.Win32.QQPass.dcg        G:\Temp\Virus\MCLS.zip/MCLS/kodown.exe//PE_Patch//UPack               
2008/9/28 20:41:21        已清除        木马程序 Trojan.Win32.KillAV.aqi        G:\Temp\Virus\MCLS.zip/MCLS/s1s.exe//FSG

尤金卡巴斯基

Hello,

down.sys

No malicious code was found in this file.

Please quote all when answering.

--
Best regards, Andrey Ladikov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.



> Attachment: MCLS.rar

simple

NOD还没下就给隔离了

328397663

原帖由 尤金卡巴斯基 于 2008-9-28 23:22 发表
Hello,

down.sys

No malicious code was found in this file.

Please quote all when answering.

--
Best regards, Andrey Ladikov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
...

其余的卡巴全杀..