一个

kikyo9527

有毒没？

sam.to

放上來

Palkia

金山 -

Palkia

金山毒霸互联网可信认证   可疑的

kikyo9527

两个扫的

1--------------------------------------------------------------------------------
文件信息            

文件名称 :	1974cn.exe
文件大小 :	1577451 byte
文件类型 :	PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5 :	6a1f2883aaec088032323ad9611f21f0
SHA1 :	275286ee670d85ec473fde2b8d3e1b9b87d35e1a

                                  扫描结果            

扫描结果 :

44%的杀软(16/36)报告发现病毒

            

软件名称	引擎版本	病毒库版本	病毒库时间	扫描结果	时间
a-squared	3.5.0.22	2008.08.29	2008-08-29	-	2.511
AntiVir	7.8.1.23	7.0.6.93	2008-08-30	TR/PSW.QQpass.DU.30	2.253
Arcavir	1.0.5	200808301654	2008-08-30	Trojan.Psw.Qqpass	1.281
AVAST!	3.0.1	080830-0	2008-08-30	Win32:Trojan-gen {Other}	0.070
AVG	7.5.51.442	270.6.14/1643	2008-08-30	Generic2.NVW	1.566
BitDefender	7.60825.1686151	7.20748	2008-08-31	Trojan.Pws.Qqpass.DU	2.936
CA (VET)	9.0.0.143	31.6.6057	2008-08-29	-	5.019
ClamAV	0.93.3	8122	2008-08-31	-	0.322
Comodo	2.11	2.0.0.632	2008-08-30	-	0.442
CP Secure	1.1.0.715	2008.08.31	2008-08-31	Troj.Dropper.W32.Agent.amm	6.505
Dr.Web	4.44.0.9170	2008.08.30	2008-08-30	-	3.122
ewido	4.0.0.2	2008.08.30	2008-08-30	-	2.482
F-Prot	4.4.4.56	20080830	2008-08-30	W32/Trojan5.CGG (exact)	0.989
F-Secure	5.51.6100	2008.08.30.01	2008-08-30	-	3.275
Ikarus	T3.1.01.34	2008.08.31.71371	2008-08-31	Virus.Win32.QQPass.MJ	3.273
Microsoft	1.3807	2008.08.31	2008-08-31	-	4.257
mks_vir	2.01	2008.08.25	2008-08-25	Trojan.Pws.Qqpass.DU	2.552
Norman	5.93.01	5.93.00	2008-08-29	-	4.983
nProtect	2008-08-29.00	1993388	2008-08-29	Trojan-PWS/W32.QQPass.250459	3.571
Quick Heal	9.50	2008.08.29	2008-08-29	TrojanPSW.QQpass.du	1.671
Sophos	2.78.0	4.33	2008-08-31	-	1.746
Sunbelt	3.1.1592.1	2210	2008-08-29	-	0.523
The Hacker	6.3.0.6	v00068	2008-08-29	-	0.419
VBA32	3.12.8.4	20080830.0609	2008-08-30	-	1.266
ViRobot	20080829	2008.08.29	2008-08-29	-	0.396
VirusBuster	4.5.11.10	10.85.1/623263	2008-08-30	Trojan.Agent.DZUM	0.797
卡巴斯基	5.5.10	2008.08.31	2008-08-31	-	0.078
安博士V3	2008.08.30.00	2008.08.30	2008-08-30	Win-Trojan/Xema.variant	0.887
江民杀毒	11.0.706	2008.08.31	2008-08-31	-	1.199
熊猫卫士	9.05.01	2008.08.30	2008-08-30	Generic Trojan	2.100
瑞星	20.0	20.59.60.00	2008-08-31	-	1.007
赛门铁克	1.3.0.24	20080830.036	2008-08-30	Trojan Horse	0.121
趋势科技	8.700-1004	5.508.15	2008-08-30	TROJ_QQPASS.BCU	0.027
迈克菲	5.3.00	5373	2008-08-29	-	2.138
金山毒霸	2008.1.14.15	2008.8.31.15	2008-08-31	-	0.594
飞塔	2.81-3.11	9.495	2008-08-31	-	0.344

         










































































2-----------------------------------------------------------------------------------------


                File 1974cn.exe received on 08.31.2008 11:00:53 (CET)
                                Current status:                        finished
Result: 21/36 (58.33%)

Compact
Print results

Antivirus	Version	Last Update	Result
AhnLab-V3	2008.8.29.0	2008.08.29	Win-Trojan/Xema.variant
AntiVir	7.8.1.23	2008.08.30	TR/PSW.QQpass.DU.30
Authentium	5.1.0.4	2008.08.30	W32/Trojan5.CGG
Avast	4.8.1195.0	2008.08.30	Win32:Trojan-gen {Other}
AVG	8.0.0.161	2008.08.30	PSW.QQpass.DG
BitDefender	7.2	2008.08.31	Trojan.Pws.Qqpass.DU
CAT-QuickHeal	9.50	2008.08.29	TrojanPSW.QQpass.du
ClamAV	0.93.1	2008.08.31	-
DrWeb	4.44.0.09170	2008.08.31	-
eSafe	7.0.17.0	2008.08.28	Suspicious File
eTrust-Vet	31.6.6057	2008.08.29	-
Ewido	4.0	2008.08.31	-
F-Prot	4.4.4.56	2008.08.30	W32/Trojan5.CGG
F-Secure	7.60.13501.0	2008.08.31	-
Fortinet	3.14.0.0	2008.08.31	W32/QQPASS.BCU!tr
GData	19	2008.08.31	Win32:Trojan-gen
Ikarus	T3.1.1.34.0	2008.08.31	Virus.Win32.QQPass.MJ
K7AntiVirus	7.10.433	2008.08.30	Trojan-PSW.Win32.QQPass.du
Kaspersky	7.0.0.125	2008.08.31	-
McAfee	5373	2008.08.29	-
Microsoft	1.3807	2008.08.25	-
NOD32v2	3401	2008.08.30	probably a variant of Win32/Agent
Norman	5.80.02	2008.08.29	-
Panda	9.0.0.4	2008.08.30	Generic Trojan
PCTools	4.4.2.0	2008.08.30	Trojan.Agent.DZUM
Prevx1	V2	2008.08.31	-
Rising	20.59.61.00	2008.08.31	-
Sophos	4.33.0	2008.08.31	-
Sunbelt	3.1.1592.1	2008.08.30	-
Symantec	10	2008.08.31	Trojan Horse
TheHacker	6.3.0.6.068	2008.08.30	-
TrendMicro	8.700.0.1004	2008.08.29	TROJ_QQPASS.BCU
VBA32	3.12.8.4	2008.08.30	-
ViRobot	2008.8.30.1357	2008.08.30	Trojan.Win32.PSWQQPass.14511
VirusBuster	4.5.11.0	2008.08.30	Trojan.Agent.DZUM
Webwasher-Gateway	6.6.2	2008.08.30	Trojan.PSW.QQpass.DU.30

Additional information

File size: 1577451 bytes

MD5...: 6a1f2883aaec088032323ad9611f21f0

SHA1..: 275286ee670d85ec473fde2b8d3e1b9b87d35e1a

SHA256: 6872d5beeed79322d623a9dd861bdfe65fe66852a4c93539a8da4c495fd45c20

SHA512: 2989f3a5d9aaa3d3093d98b3372c1cff7a16441992ca219fae53b4f840f586da 363a8169032a04525195f5a2e4f3a93ee66637f733bc4765ea049f873721611d

PEiD..: Crypto-Lock v2.02 (Eng) -> Ryan Thian

TrID..: File type identification UPX compressed Win32 Executable (39.5%) Win32 EXE Yoda's Crypter (34.3%) Win32 Executable Generic (11.0%) Win32 Dynamic Link Library (generic) (9.8%) Generic Win/DOS Executable (2.5%)

PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x40b3d0 timedatestamp.....: 0x3cc56d92 (Tue Apr 23 14:20:02 2002) machinetype.......: 0x14c (I386) ( 3 sections ) name        viradd    virsiz   rawdsiz  ntrpy  md5 UPX0        0x1000    0x8000       0x0   0.00  d41d8cd98f00b204e9800998ecf8427e UPX1        0x9000    0x3000    0x2600   7.74  88390d7bfb9da2b736e7e8d0d164252f .rsrc       0xc000    0x1000     0xe00   3.15  74070a4d5bfa4cc17caaaac73058705a ( 6 imports )   > KERNEL32.DLL: LoadLibraryA, GetProcAddress, ExitProcess > COMCTL32.dll: - > comdlg32.dll: GetOpenFileNameA > GDI32.dll: LineTo > SHELL32.dll: ShellExecuteA > USER32.dll: EndPaint ( 0 exports )

packers (Kaspersky): UPX

packers (F-Prot): UPX

packers (Authentium): UPX

ATTENTION:VirusTotal is a free service offered by Hispasec Sistemas. There are noguarantees about the availability and continuity of this service.Although the detection rate afforded by the use of multiple antivirusengines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

挪威的冬天

gosh 看起来像误报

只是一个汉化补丁?

qigang

RS20.59.62未杀！

wangjay1980

恩

28654621

D:\download\1974cn.zip>>1974cn\1974cn.exe        Trojan.Pgkdhx.jrna.for        木马        还未处理