其实这种马才是更新最快的

wmcxdb

打包不要搞自解压，我无法解压。

梅西

我不会中~

Kitman

Begin scan in 'C:\Users\TOSHIBA\Downloads\kdxywg'
C:\Users\TOSHIBA\Downloads\kdxywg\495271CA.dll
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      A backup was created as '4926d5ea.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\kdxywg\kdxywg.exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      A backup was created as '4969d615.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\kdxywg\loadwg.exe
    [DETECTION] Is the TR/Agent.325257 Trojan
    [NOTE]      A backup was created as '4952d620.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
Begin scan in 'C:\Users\TOSHIBA\Downloads\zxwg (1)'
C:\Users\TOSHIBA\Downloads\zxwg (1)\8566F82E.dll
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      A backup was created as '4927d5e6.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\zxwg (1)\loadwg.exe
    [DETECTION] Is the TR/Agent.325257 Trojan
    [NOTE]      A backup was created as '4a906559.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\zxwg (1)\zxwg.exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      A backup was created as '4968d629.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!


End of the scan: 2008年10月12日  18:47
Used time: 00:05 Minute(s)

The scan has been done completely.

      2 Scanning directories
     12 Files were scanned
      6 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      6 files were deleted
      0 files were repaired
      6 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      6 Files not concerned
      0 Archives were scanned
      0 Warnings
      6 Notes

File ID	Filename	Size (Byte)	Result
25158057	c551839.sys	5.38 KB	UNDER ANALYSIS
127050	kdxywg.txt	1 Byte	KNOWN CLEAN
127050	zxwg.txt	1 Byte	KNOWN CLEAN

Please find a detailed report concerning each individual sample below:

Filename	Result
c551839.sys	UNDER ANALYSIS

The file 'c551839.sys' has been determined to be 'UNDER ANALYSIS'. 

Filename	Result
kdxywg.txt	KNOWN CLEAN

The file 'kdxywg.txt' has been determined to be 'KNOWN CLEAN'. In particular this means that we could not find any malicious content. Please note that the file is part of 'Microsoft (KB911993)'. 

Filename	Result
zxwg.txt	KNOWN CLEAN

The file 'zxwg.txt' has been determined to be 'KNOWN CLEAN'. In particular this means that we could not find any malicious content. Please note that the file is part of 'Microsoft (KB911993)'. 

[ 本帖最后由 Kitman 于 2008-10-12 18:49 编辑 ]

timmywxc

ESS报0 DRWEB报0 BitDefender报0 我晕！

BING126

McAfee  miss

sam.to

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.

Please quote all when answering. Do not forget to include you registration data.
-----------------
Regards, Gashkin Alexey
Virus Analyst, Kaspersky Lab.

Ph.: +7(095) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

pal-z

解压时被SEP干掉

hao8219

Access to the data has been denied!

Warning: A virus or unwanted program has been found in the HTTP Data.

Requested URL:        http://bbs.kafan.cn/attachment.p ... 97&t=1229039432
Information:        Is the TR/Drop.Agent.xuy Trojan
Generated by AntiVir WebGuard 8.0.15.0, AVE 8.2.0.45, VDF 7.1.0.224