经常更新的木马(第36次更新)[已开新帖]

显示全部楼层 · 发表于 2008-9-21 10:26:23

20.62.52版的瑞星对下面2个没有查出来：（2008.9.21-10：24 ）
install_player_2xxx3912941.exe
install_player_2xxx3912941.exe

显示全部楼层 · 发表于 2008-9-21 10:27:22

Scan Log
Version of virus signature database: 3457 (20080919)
Date: 2008-9-21 Time: 10:27:25
Scanned disks, folders and files: G:\v\0921-0026.rar
G:\v\0921-0026.rar » RAR » install_player_2xxx3912941.exe3 - probably a variant of Win32/Adware.IeDefender.NGU application - was a part of the deleted object
Number of scanned objects: 1
Number of threats found: 1
Number of cleaned objects: 1
Time of completion: 10:27:25 Total scanning time: 0 sec (00:00:00)

显示全部楼层 · 发表于 2008-9-21 14:22:03

(第20次更新)
这次更新的生成:

TO KL
Hello,

1.exe3 - Trojan-Spy.Win32.Delf.efn,
2.exe3 - Trojan.Win32.Pakes.knl,
5.exe3 - Trojan-Dropper.Win32.Agent.wzm,
cc.exe3 - Trojan-Dropper.Win32.Agent.wzn,
ff.ex3e - Trojan-Dropper.Win32.Agent.wzl,
mm.exe3 - Trojan-Downloader.Win32.Agent.ahev,
tt.exe3 - Trojan.Win32.Pakes.knm,
x.gif3 - Worm.Win32.AutoRun.ofz

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Kirill Erakhtin
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

[ 本帖最后由 kato9096 于 2008-9-21 18:25 编辑 ]

显示全部楼层 · 发表于 2008-9-22 15:40:14

第21次更新
这次更新的生成:

TO KL

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.

Please quote all when answering. Do not forget to include you registration data.
-----------------
Regards, Temnikov Sergey
Virus Analyst, Kaspersky Lab.

Ph.: +7(495) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com http://www.viruslist.com

[ 本帖最后由 kato9096 于 2008-9-22 18:46 编辑 ]

显示全部楼层 · 发表于 2008-9-22 15:52:38

9月22红伞扫杀......

显示全部楼层 · 发表于 2008-9-22 18:29:32

谢谢LZ，

显示全部楼层 · 发表于 2008-9-22 23:04:59

第22次更新

这次更新的生成:

TO KL

[ 本帖最后由 kato9096 于 2008-9-22 23:07 编辑 ]

显示全部楼层 · 发表于 2008-9-22 23:09:29

File ID    Filename    Size (Byte) Result
25140615    0922-2CRE.rar 19.23 KB OK
A listing of files contained inside archives alongside their results can be found below:

File ID    Filename    Size (Byte) Result
25140616    pha.dll    64 KB    UNDER ANALYSIS

显示全部楼层 · 发表于 2008-9-23 15:46:36

第23次更新

这次生成:

TO KL

Hello,

fgi.dll - Trojan-Downloader.Win32.Agent.ahki

This file is already detected. Please update your antivirus bases.

2.ex3e - Trojan.Win32.Pakes.kpb,
cc.ex3e - Trojan-Downloader.Win32.Agent.ahlh,
ff.exe1 - Trojan.Win32.Pakes.kpd,
tt.ex3e - Trojan.Win32.Pakes.kpc

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

install_player_2xxx3912941.ex3e - not-a-virus:AdWare.Win32.BHO.dbi

This file is an Advertizing Tool, It's detection will be included in the next
update of extended databases set. See more info about
extended databases here: http://www.kaspersky.com/extraavupdates

Please quote all when answering.

--
Best regards, Kirill Erakhtin
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

[ 本帖最后由 kato9096 于 2008-9-23 22:38 编辑 ]

显示全部楼层 · 发表于 2008-9-23 17:28:26

第二十三次：紅傘TR/Crypt.XPACK.Gen

[病毒样本] 经常更新的木马(第36次更新)[已开新帖]

eset 19号的库

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

回复 87楼 kato9096 的帖子

本帖子中包含更多资源