收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 30x
返回列表 发新帖
查看: 2940|回复: 7
收起左侧

[病毒样本] 30x

[复制链接]
will
发表于 2008-11-18 21:40:30 | 显示全部楼层 |阅读模式
某贴挖的30x

注意那个下载者(Downloader.exe)的行为很有诱惑性(解包rar,然后拷贝自身为"绿化.bat",然后再打包打回去)
此病毒有可能广泛传播

不能杀的请及时上报

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

will
 楼主| 发表于 2008-11-18 21:41:31 | 显示全部楼层

  Total Command-Line Scanner Report
-------------------------------------------------------------------------
  Report for Jiangmin Command-Line Scanner :

  aa1.exe ----- TrojanSpy.OnLineGames.fbd  
  aa10.exe ----- Trojan/Inject.csm  
  aa14.exe ----- TrojanSpy.Magania.fdp  
  aa16.exe ----- TrojanSpy.OnLineGames.euu  
  aa18.exe ----- TrojanSpy.OnLineGames.euu  
  aa2.exe ----- TrojanSpy.Magania.fdp  
  aa21.exe ----- TrojanSpy.Magania.fdp  
  aa23.exe ----- TrojanSpy.OnLineGames.jfg  
  aa25.exe ----- TrojanSpy.OnLineGames.euu  
  aa26.exe ----- TrojanSpy.OnLineGames.jig  
  aa28.exe ----- Trojan/Inject.csm  
  aa29.exe ----- TrojanSpy.OnLineGames.euu  
  aa3.exe ----- TrojanSpy.Magania.fdp  
  aa30.exe ----- Trojan/PSW.OnLineGames.aoos  
  aa33.exe ----- TrojanDropper.Agent.qqx  
  aa5.exe ----- TrojanSpy.OnLineGames.euu  
  aa6.exe ----- TrojanSpy.OnLineGames.fbd  
  aa7.exe ----- TrojanSpy.Magania.fdp  
  Downloader.exe ----- TrojanDownloader.Agent.atrw  
  Jiangmin found 19 detections in 30 files.
-------------------------------------------------------------------------
  Task done @ 2008/11/18 二 21:37:57.89
回复

举报

sysfc6
发表于 2008-11-18 21:41:55 | 显示全部楼层
老病毒了吧  全灭 nod32
回复

举报

will
 楼主| 发表于 2008-11-18 22:09:10 | 显示全部楼层

Multi Command-Line Scanner Report
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa1.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: C436842D5957D119CAAC06EC67C842CC

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Spyware-gen [Trj]
Avg ----- PSW.OnlineGames.BGEE  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.fbd
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGames.fd.118837
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa10.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: B0A0E1DD98A97AEE67C5BB4440A59F69

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BHAN  
AntiVir ----- TR/Hijacker.Gen
BitDefender ----- Dropped:Generic.Malware.dldgPWS.6DD07095
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Gamania.16014
Eset ----- a variant of Win32/PSW.OnLineGames.NRW trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- Trojan/Inject.csm
Kaspersky ----- Trojan.Win32.Inject.jzn
Kingsoft ----- Win32.Troj.OnLineGames.ad.94208
Vba32 -----Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa11.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 45F700C305764BA3D3D3E8EAD7D2E69C

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHDW  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.Magania.aklz
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan-GameThief.Win32.Magania.akiw

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa12.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: E9D1272A1B10B1D689B94FEAC61C891C

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Generic12.NPE  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8677
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.Magania.akms
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tsty

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa14.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: F7B9970B6952188E684A530991A66625

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.Generic6.AQXN  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa15.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 5E3564DC1E090AC6923D9348711358E0

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg -----Nothing
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.23103
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin -----Nothing
Kaspersky ----- Heur.Trojan.Generic
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 -----Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa16.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 359828CC796ACABD7CFDB434AFA05DB7

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg -----Nothing
AntiVir ----- TR/Spy.Gen
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Heur.Trojan.Generic
Kingsoft -----Nothing
Vba32 -----Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa17.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 4978CFCAB326102F72F09D9B84653242

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHDB  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.23104
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.ttck
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan.Win32.Agent.anki

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa18.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: D727255B475E3CE88DAE5FC08A4B079E

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg -----Nothing
AntiVir ----- TR/Spy.Gen
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Heur.Trojan.Generic
Kingsoft -----Nothing
Vba32 -----Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa19.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 919498AF2059C0EF054D7932CF11557C

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHCZ  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8677
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.ttcq
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tsty

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa2.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 8E8CABD4442CDFBBDFF125E981AC07F3

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast -----Nothing
Avg ----- PSW.OnlineGames.BHCH  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa20.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: E8CB88434DFCEEA2A0DD8BA33664537C

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHDW  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.Magania.akmn
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan-GameThief.Win32.Magania.akiw

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa21.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: D7D96FD3EDE726E5CB393C2F83537317

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Agent.APAF  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa22.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 0D15CBBDBFC47D77A1034E1B355AFB95

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg -----Nothing
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.23103
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin -----Nothing
Kaspersky ----- Heur.Trojan.Generic
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 -----Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa23.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 60F79948A6E35BB34EB5F6E78F875945

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFZD  
AntiVir ----- TR/PSW.O.tqly.16765
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.PWS.Wsgame.8235
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.jfg
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqly
Kingsoft ----- Win32.PSWTroj.OnLineGames.114688
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqly

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa24.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 6F008124EEB5A6CCF2158D298199027D

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHCZ  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8677
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.ttcm
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tsty

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa25.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: A170B79971F9360023C65D6F1F94C521

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Rootkit-gen [Rtk]
Avg ----- Dropper.Agent.KQI  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.Dropper.OnlineGames.CK
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.zen
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.zen

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa26.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 98BD11C47B26B726269E281E0863215B

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast -----Nothing
Avg ----- PSW.OnlineGames.BHCH  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.jig
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa27.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 8BF0EB3D2A28FF7FA317D57C0CA02CCC

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHCZ  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Wsgame.8677
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin -----Nothing
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.ttco
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tsty

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa28.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: 583858B909279181B82E09C909D9B203

A-squared ----- Trojan.Win32.Inject!IK
Avast ----- Win32:Spyware-gen [Trj]
Avg ----- PSW.OnlineGames.BHAN  
AntiVir ----- TR/Spy.Gen
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Gamania.16014
Eset ----- a variant of Win32/PSW.OnLineGames.NRW trojan
Ikarus ----- Trojan.Win32.Inject
Jiangmin ----- Trojan/Inject.csm
Kaspersky ----- Trojan.Win32.Inject.jzn
Kingsoft ----- Win32.Troj.OnLineGames.ad.65536
Vba32 -----Nothing

*** 10/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa29.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: C0121162A66EDF58551E3CD109B3CF06

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg -----Nothing
AntiVir ----- TR/Spy.Gen
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Heur.Trojan.Generic
Kingsoft -----Nothing
Vba32 -----Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa3.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 69B1D347F2430DED8E7841F854857DE3

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast -----Nothing
Avg ----- PSW.OnlineGames.BHEU  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa30.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 4AC28ACB9695EF8B2B1EF64D60D95989

A-squared ----- Trojan.Flystudio.AI!IK
Avast ----- Win32:OnLineGames-FEC [Trj]
Avg ----- PSW.Ldpinch.11.BQ  
AntiVir ----- TR/Dropper.Gen
BitDefender ----- Trojan.Dropper.SPO
ClamWin ----- PUA.Packed.NPack-2
Dr.Web ----- Trojan.PWS.Gamania.15981
Eset ----- a variant of Win32/PSW.Legendmir.NGG trojan
Ikarus ----- Trojan.Flystudio.AI
Jiangmin ----- Trojan/PSW.OnLineGames.aoos
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tskf
Kingsoft ----- Win32.PSWTroj.OnLineGames.69632
Vba32 -----Nothing

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa33.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: 773AEA3C1AE256C7AFCE44BBA4E32EBE

A-squared ----- Trojan-Dropper.Delf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BHEB  
AntiVir ----- DR/Delphi.Gen
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web ----- Trojan.PWS.Gamania.origin
Eset -----Nothing
Ikarus ----- Trojan-Dropper.Delf
Jiangmin ----- TrojanDropper.Agent.qqx
Kaspersky -----Nothing
Kingsoft ----- Win32.Troj.PswWOW.oj.111684
Vba32 ----- MalwareScope.Trojan-PSW.Game.7

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa34.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 94C8DF59303A63FB03C4F1E82B3BB793

A-squared ----- Trojan.Win32.Cinmus!IK
Avast ----- Win32:Cinmus-L [Trj]
Avg -----Nothing
AntiVir ----- TR/Obfuscated.kah
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web -----Nothing
Eset ----- a variant of Win32/Adware.Cinmus application
Ikarus ----- Trojan.Win32.Cinmus
Jiangmin -----Nothing
Kaspersky -----Nothing
Kingsoft -----Nothing
Vba32 -----Nothing

*** 5/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa5.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 791710398672350F6E928A9A252D83D1

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg -----Nothing
AntiVir ----- TR/Spy.Gen
BitDefender -----Nothing
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Heur.Trojan.Generic
Kingsoft -----Nothing
Vba32 -----Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa6.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 3732C24B4330DFC9C80812502061E4FB

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BHED  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.fbd
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa7.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 576829C6C46D5F213FEF4E6127C00D9A

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BHCH  
AntiVir ----- TR/PSW.Magania.dx
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.MulDrop.23001
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Trojan-GameThief.Win32.Magania.gen

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\aa8.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 0511CF820544737F81F71E79556FBA46

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- PSW.OnlineGames.BHDB  
AntiVir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AACR
ClaimWin -----Nothing
Dr.Web ----- Trojan.MulDrop.23104
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin -----Nothing
Kaspersky ----- Heur.Trojan.Generic
Kingsoft ----- Win32.Troj.EncodeGameT.cn.106496
Vba32 ----- Trojan.Win32.Agent.anki

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\Downloader.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 95C25C1D364CE0A173916595D8025C05

A-squared ----- Trojan-Proxy.Win32.VB.t!IK
Avast ----- Win32:Rootkit-gen [Rtk]
Avg ----- Generic12.LPO  
AntiVir ----- TR/Crypt.XDR.Gen
BitDefender ----- Generic.Malware.P!dldPk!g.12046374
ClaimWin -----Nothing
Dr.Web ----- DLOADER.Trojan
Eset ----- probably a variant of Win32/Genetik trojan
Ikarus ----- Trojan-Proxy.Win32.VB.t
Jiangmin ----- TrojanDownloader.Agent.atrw
Kaspersky ----- Exploit.Win32.IMG-WMF.fx
Kingsoft ----- Win32.Troj.OnlineGames.wl.94208
Vba32 ----- Rootkit.Win32.Agent.edg

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------

Task done @ 2008/11/18 二 21:46:04.54
The results might be different from that of the GUI version.
回复

举报

feihongtian 该用户已被删除
发表于 2008-11-18 22:09:45 | 显示全部楼层
F-Secure

F-Secure AVP: 7.00.171, 2008-11-18
F-Secure Hydra: 2.08.8110, 2008-11-18

Scan Result   22/30
SandBox        5

[ 本帖最后由 feihongtian 于 2008-11-18 22:45 编辑 ]
回复

举报

fzz8848
头像被屏蔽
发表于 2008-11-18 22:15:31 | 显示全部楼层
红伞全灭
The scan has been done completely.

      1 Scanning directories
     30 Files were scanned
     45 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     30 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
    -15 Files not concerned
      0 Archives were scanned
      0 Warnings
     30 Notes
回复

举报

Palkia
发表于 2008-11-18 22:20:27 | 显示全部楼层
to kv
回复

举报

浪滔天
发表于 2008-11-18 22:37:54 | 显示全部楼层
卡巴 506  22个

2008-11-18 22:36:26        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa6.exe               
2008-11-18 22:36:26        已被删除        木马程序        Exploit.Win32.IMG-WMF.fx        高        确定        F:\病毒样本\MCLS\MCLS\Downloader.exe               
2008-11-18 22:36:26        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.ttgu        高        确定        F:\病毒样本\MCLS\MCLS\aa8.exe               
2008-11-18 22:36:26        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa7.exe               
2008-11-18 22:36:26        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa3.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.tskf        高        确定        F:\病毒样本\MCLS\MCLS\aa30.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan.Win32.Inject.jzn        高        确定        F:\病毒样本\MCLS\MCLS\aa28.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.ttco        高        确定        F:\病毒样本\MCLS\MCLS\aa27.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa26.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-Dropper.Win32.Agent.zen        高        确定        F:\病毒样本\MCLS\MCLS\aa25.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.ttcm        高        确定        F:\病毒样本\MCLS\MCLS\aa24.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.tqly        高        确定        F:\病毒样本\MCLS\MCLS\aa23.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.Magania.akmn        高        确定        F:\病毒样本\MCLS\MCLS\aa20.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa21.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa2.exe               
2008-11-18 22:36:25        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.ttcq        高        确定        F:\病毒样本\MCLS\MCLS\aa19.exe               
2008-11-18 22:36:24        已被删除        木马程序        Trojan-GameThief.Win32.OnLineGames.ttck        高        确定        F:\病毒样本\MCLS\MCLS\aa17.exe               
2008-11-18 22:36:24        已被删除        木马程序        Trojan-GameThief.Win32.Magania.akms        高        确定        F:\病毒样本\MCLS\MCLS\aa12.exe               
2008-11-18 22:36:24        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa14.exe               
2008-11-18 22:36:24        已被删除        木马程序        Trojan-GameThief.Win32.Magania.gen        高        确定        F:\病毒样本\MCLS\MCLS\aa1.exe               
2008-11-18 22:36:24        已被删除        木马程序        Trojan-GameThief.Win32.Magania.aklz        高        确定        F:\病毒样本\MCLS\MCLS\aa11.exe               
2008-11-18 22:36:24        已被删除        木马程序        Trojan.Win32.Inject.jzn        高        确定        F:\病毒样本\MCLS\MCLS\aa10.exe
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-16 00:50 , Processed in 0.171575 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表