收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 http://www.oiuyt.net/ko.txt
12下一页
返回列表 发新帖
查看: 4491|回复: 10
收起左侧

[病毒样本] http://www.oiuyt.net/ko.txt

[复制链接]
醉一生爱妍
发表于 2008-10-26 12:15:07 | 显示全部楼层 |阅读模式
[file]       
open=y
url1=http://61.164.118.208/new/new1.exe
url2=http://61.164.118.208/new/new2.exe
url3=http://61.164.118.208/new/new3.exe
url4=http://61.164.118.208/new/new4.exe
url5=http://61.164.118.208/new/new5.exe
url6=http://61.164.118.208/new/new6.exe
url7=http://61.164.118.208/new/new7.exe
url8=http://61.164.118.209/new/new8.exe
url9=http://61.164.118.209/new/new9.exe
url10=http://61.164.118.209/new/new10.exe
url11=http://61.164.118.209/new/new11.exe
url12=http://61.164.118.209/new/new12.exe
url13=
url14=http://61.164.118.209/new/new14.exe
url15=http://61.164.118.209/new/new15.exe
url16=http://59.34.216.225/new/new16.exe
url17=http://59.34.216.225/new/new17.exe
url18=http://59.34.216.225/new/new18.exe
url19=http://59.34.216.225/new/new19.exe
url20=http://59.34.216.225/new/new20.exe
url21=http://59.34.216.225/new/new21.exe
url22=http://59.34.216.225/new/new22.exe
url23=http://59.34.216.225/new/new23.exe
url24=http://59.34.216.225/new/new24.exe
url25=http://59.34.216.225/new/new25.exe
url26=http://59.34.216.143/new/new26.exe
url27=http://59.34.216.143/new/new27.exe
url28=http://59.34.216.143/new/new28.exe
url29=http://59.34.216.143/new/new29.exe
url30=http://59.34.216.143/new/new30.exe
url31=http://59.34.216.143/new/new31.exe
url32=http://59.34.216.143/new/new32.exe
url33=http://59.34.216.143/new/new33.exe
url34=http://59.34.216.143/new/new34.exe

count=34
回复

举报

sanhu35
发表于 2008-10-26 12:17:58 | 显示全部楼层
....

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

醉一生爱妍
 楼主| 发表于 2008-10-26 12:21:07 | 显示全部楼层

回复 2楼 sanhu35 的帖子

....

你为什么不打包
回复

举报

solcroft
发表于 2008-10-26 12:27:09 | 显示全部楼层
Infections found: 32
Infected objects removed or healed: 32
Total object scanned: 33

Infections
File; Infection; Result
C:\Documents and Settings\Limited User\Desktop\new1.exe; Trojan horse PSW.OnlineGames.BEHH; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new10.exe; Trojan horse PSW.OnlineGames.BELL; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new11.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new12.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new14.exe; Trojan horse PSW.OnlineGames.BEMN; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new15.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new16.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new17.exe; Trojan horse PSW.OnlineGames.BELL; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new18.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new19.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new2.exe; Trojan horse PSW.OnlineGames.BELC; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new20.exe; Trojan horse PSW.OnlineGames.BDLU; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new21.exe; Trojan horse PSW.OnlineGames.BELL; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new22.exe; Trojan horse PSW.OnlineGames.BELL; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new23.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new24.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new25.exe; Trojan horse PSW.OnlineGames.BETA; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new26.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new27.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new28.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new29.exe; Trojan horse PSW.OnlineGames.BESZ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new3.exe; Trojan horse PSW.OnlineGames.BELC; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new30.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new31.exe; Trojan horse PSW.Ldpinch.11.BQ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new33.exe; Trojan horse Agent.AHGF; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new34.exe; Trojan horse Agent.AHFC; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new4.exe; Trojan horse PSW.OnlineGames.BELC; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new5.exe; Trojan horse PSW.OnlineGames.BELC; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new6.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new7.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new8.exe; Trojan horse PSW.OnlineGames.BELL; Moved to Virus Vault
C:\Documents and Settings\Limited User\Desktop\new9.exe; Trojan horse PSW.OnlineGames.BELJ; Moved to Virus Vault

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x

评分

参与人数 1经验 +10 收起 理由
lanvin + 10 感谢支持,欢迎常来: )

查看全部评分

回复

举报

欠妳緈諨
发表于 2008-10-26 12:33:45 | 显示全部楼层
用G DATA AntiVirus检测病毒
版本 18.5.8071.731
病毒特征库日期 10/26/2008
开始时间: 10/26/2008 12:33
引擎: 引擎A (AVK 19.1210), 引擎B (BD 19.688)
启发式: 开启
档案文件: 开启
系统区域: 关闭

检测以下目录和文件:
  S:\ok\

对象: new1.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.afzm (引擎A), Trojan.PWS.Agent.SGC (引擎B)
对象: new10.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.aiok (引擎A)
对象: new11.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new12.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new14.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.toyp (引擎A), Trojan.PWS.OnlineGames.AABK (引擎B)
对象: new15.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new16.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new17.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.aiok (引擎A)
对象: new18.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new19.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new2.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tpnr (引擎A), Trojan.PWS.Agent.SGC (引擎B)
对象: new20.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.agwb (引擎A), Trojan.PWS.OnlineGames.ZWL (引擎B)
对象: new21.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tptk (引擎A), Trojan.PWS.OnlineGames.AABO (引擎B)
对象: new22.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.aiok (引擎A)
对象: new23.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new24.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new25.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tptl (引擎A), Trojan.PWS.OnlineGames.AABO (引擎B)
对象: new26.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new27.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new28.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new29.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.gen (引擎A), Trojan.PWS.OnlineGames.ZWL (引擎B)
对象: new3.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tpnr (引擎A), Trojan.PWS.Agent.SGC (引擎B)
对象: new30.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new31.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Dropped:Generic.Malware.SFdldg.C6CD1E8B (引擎B)
对象: new32.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-Spy.Win32.Delf.epu (引擎A), Generic.PWStealer.0BFF131C (引擎B)
对象: new33.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.aidw (引擎A), Trojan.Generic.830198 (引擎B)
对象: new34.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.ahzz (引擎A)
对象: new4.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tpnr (引擎A), Trojan.PWS.Agent.SGD (引擎B)
对象: new5.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tpnr (引擎A), Trojan.PWS.Agent.SGC (引擎B)
对象: new6.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new7.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)
对象: new8.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan-GameThief.Win32.Magania.aiok (引擎A)
对象: new9.exe
        路径: S:\ok
        状态: 检测到病毒
        病毒: Trojan.Win32.Agent.airl (引擎A)

检测执行时间: 10/26/2008 12:33
    33个文件已检测
    33个受感染文件
    0个可疑文件被发现
回复

举报

fzz8848
头像被屏蔽
发表于 2008-10-26 12:36:06 | 显示全部楼层

回复 4楼 solcroft 的帖子

Begin scan in 'E:\Download\Virus\ok.zip'
E:\Download\Virus\ok.zip
    [0] Archive type: ZIP
    --> new1.exe
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> new14.exe
      [DETECTION] Is the TR/Dropper.Gen Trojan
      --> new2.exe
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/Thief.MultiFirst.P Trojan
      --> new20.exe
        [1] Archive type: OVL
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/PSW.OnlineGames.ZWI.2 Trojan
      --> new21.exe
        [1] Archive type: OVL
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/PSW.Magania.ahzn Trojan
      --> new25.exe
        [1] Archive type: OVL
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/PSW.Magania.ahzn Trojan
      --> new29.exe
        [1] Archive type: OVL
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/Thief.OnLineGames.tnuy Trojan
      --> new3.exe
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/Thief.MultiFirst.P Trojan
      --> new31.exe
          [DETECTION] Is the TR/Dropper.Gen Trojan
      --> new33.exe
          [DETECTION] Is the TR/Dropper.Gen Trojan
    --> new34.exe
      [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
      --> new4.exe
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/Thief.MultiFirst.P Trojan
          --> Object
            [DETECTION] Is the TR/Agent.14336.50 Trojan
      --> new5.exe
        --> Object
          [2] Archive type: RSRC
          --> Object
            [DETECTION] Is the TR/Thief.MultiFirst.P Trojan
    [NOTE]      The file was deleted!
回复

举报

will
发表于 2008-10-26 13:27:33 | 显示全部楼层

Multi Command-Line Scanner Report
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new1.exe   
MD5 Hash: 750CBDDF7743D30E00E6007DC269872D   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BEHH     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.MulDrop.20110    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.fbd    
Kaspersky ----- Trojan-GameThief.Win32.Magania.afzm    
Kingsoft ----- Win32.Troj.OnlineGamesT.ty.110709    
Vba32 ----- Win32.PSW.OnLineGames.NRF    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new10.exe   
MD5 Hash: 12F94AEFD4F04FB86E1815C804558D63   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Nothing   
Avg ----- PSW.OnlineGames.BELL     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8116    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.iso    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiok    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new11.exe   
MD5 Hash: F0F6C134D61E4440D85D98FC4EB2FE31   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new12.exe   
MD5 Hash: 7746426425CCF179A5063B209F2414F5   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new14.exe   
MD5 Hash: 391B668E28968934F4B3C6BB4914508D   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BEMN     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AABK    
ClamWin ----- Nothing   
Dr.Web ----- Trojan.MulDrop.20368    
NOD32 ----- a variant of Win32/TrojanDropper.Agent.NMA trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.inr    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.toyp    
Kingsoft ----- Nothing   
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.toyp    

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new15.exe   
MD5 Hash: 9574897AA4CD62BEFCEFC61BAD39A9B0   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Nothing   
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new16.exe   
MD5 Hash: 9848E78FCEE95EA32C4AD3BC3ACA5503   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new17.exe   
MD5 Hash: 4C0A265CD617442A5DA1AA8A3EDE2E95   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Nothing   
Avg ----- PSW.OnlineGames.BELL     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8116    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.iso    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiok    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new18.exe   
MD5 Hash: 71042CEFF44A69887344EB32F9CCADE7   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new19.exe   
MD5 Hash: F02E9C02DA10DAC924A099E13F026214   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new2.exe   
MD5 Hash: F75F69F907E6EE504FB80778A8F58A7A   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BELC     
Antivir ----- TR/Thief.MultiFirst.P    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.MulDrop.20685    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.fbd    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpnr    
Kingsoft ----- Nothing   
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpnr    

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new20.exe   
MD5 Hash: EABC774D359CA126518737D2D7BE01C4   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Rootkit-gen [Rtk]    
Avg ----- PSW.OnlineGames.BDLU     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.ZWL    
ClamWin ----- Nothing   
Dr.Web ----- Trojan.PWS.Wsgame.7700    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.Magania.agwb    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Trojan-GameThief.Win32.Magania.agvl    

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new21.exe   
MD5 Hash: DEFF11DE443D042A05926DFF645F2AF9   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Rootkit-gen [Rtk]    
Avg ----- PSW.OnlineGames.BELL     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AABO    
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8116    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.iso    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tptk    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new22.exe   
MD5 Hash: C794AC9D723BF047C8AE588C223DCA61   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Nothing   
Avg ----- PSW.OnlineGames.BELL     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.iso    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiok    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new23.exe   
MD5 Hash: B5C66985C87297FB1273C2ECA2248C2F   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new24.exe   
MD5 Hash: 638BE7930EC56A3A132385A8D87A9904   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new25.exe   
MD5 Hash: 2B4A554587A090C50312B417F14C5C37   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Rootkit-gen [Rtk]    
Avg ----- PSW.OnlineGames.BETA     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AABO    
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.NtRootKit.1600    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tptl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new26.exe   
MD5 Hash: 316CD22C004B749174976C2A41350195   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new27.exe   
MD5 Hash: A694C0B7F90F1FADFE4EAB01FE3BCFAC   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new28.exe   
MD5 Hash: 5EC3FE98DD9DAE10E5392912C999D4D7   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new29.exe   
MD5 Hash: C330A4E05247AE1A1789E37FF1EF9A5B   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Rootkit-gen [Rtk]    
Avg ----- PSW.OnlineGames.BESZ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.ZWL    
ClamWin ----- Nothing   
Dr.Web ----- Trojan.PWS.Wsgame.7647    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen    
Kingsoft ----- Win32.Troj.Agent.gk.73728    
Vba32 ----- Trojan-GameThief.Win32.Magania.gen    

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new3.exe   
MD5 Hash: 69E7B61B00C8455DAF852A069C7B4D6E   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BELC     
Antivir ----- TR/Thief.MultiFirst.P    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.MulDrop.20685    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.inq    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpnr    
Kingsoft ----- Win32.Troj.OnlineGames.fd.114688    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpnr    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new30.exe   
MD5 Hash: 8155C3E1240C173021238340FD1ADF62   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new31.exe   
MD5 Hash: 24852BA8F2D0DDCCFA1EE6AA0F6D0E1F   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Trojan.Flystudio.AI!IK    
Avast ----- Nothing   
Avg ----- PSW.Ldpinch.11.BQ     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Dropped:Generic.Malware.SFdldg.C6CD1E8B    
ClamWin ----- PUA.Packed.NPack-2    
Dr.Web ----- Nothing   
NOD32 ----- a variant of Win32/PSW.Legendmir.NGG trojan    
Ikarus ----- Trojan.Flystudio.AI    
Jiangmin ----- Nothing   
Kaspersky ----- Heur.Trojan.Generic    
Kingsoft ----- Nothing   
Vba32 ----- Nothing   

*** 8/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new32.exe   
MD5 Hash: C80F87289C1D6FE588B25C3A6245EA5B   
Type: UPX compressed Win32 Executable / Extension: .EXE   

A-squared ----- Trojan.Copiet.B.1!IK    
Avast ----- Win32:Delf-FZG [Trj]    
Avg ----- Nothing   
Antivir ----- TR/ATRAPS.Gen    
BitDefender ----- Generic.PWStealer.0BFF131C    
ClamWin ----- Nothing   
Dr.Web ----- Trojan.PWS.Lineage.origin    
NOD32 ----- probably a variant of Win32/PSW.Delf.NLZ trojan    
Ikarus ----- Trojan.Copiet.B.1    
Jiangmin ----- Nothing   
Kaspersky ----- Trojan-Spy.Win32.Delf.epu    
Kingsoft ----- Win32.Troj.QQPswT.bs.116858    
Vba32 ----- Nothing   

*** 9/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new33.exe   
MD5 Hash: 5870AE1E00CBA3286F3E9FB6783D6DD2   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Virus.Win32.Goldun.X!IK    
Avast ----- Win32:Goldun-X [Trj]    
Avg ----- Agent.AHGF     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.Generic.830198    
ClamWin ----- Trojan.OnlineGames-1517    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- Win32/Agent.AIDW trojan    
Ikarus ----- Virus.Win32.Goldun.X    
Jiangmin ----- TrojanDropper.Agent.adw    
Kaspersky ----- Trojan.Win32.Agent.aidw    
Kingsoft ----- Win32.PSWTroj.Unknown.65536    
Vba32 ----- Win32.Trojan.Downloader    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new34.exe   
MD5 Hash: D3F244A1AA1D1F086F5CF331B6ADD319   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Virus.Exploit.Win32.Pidief.C!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- Agent.AHFC     
Antivir ----- TR/Crypt.CFI.Gen    
BitDefender ----- Nothing   
ClamWin ----- PUA.Packed.NPack-3    
Dr.Web ----- Nothing   
NOD32 ----- probably a variant of Win32/Genetik trojan    
Ikarus ----- Virus.Exploit.Win32.Pidief.C    
Jiangmin ----- Trojan/Agent.bnnu    
Kaspersky ----- Trojan.Win32.Agent.ahzz    
Kingsoft ----- Win32.Troj.Agent.495616    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new4.exe   
MD5 Hash: A80857761204DDD7F02A198C863554B8   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BELC     
Antivir ----- TR/Agent.14336.50    
BitDefender ----- Trojan.PWS.Agent.SGD    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.MulDrop.20685    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.inq    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpnr    
Kingsoft ----- Win32.Troj.OnlineGames.fd.114688    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpnr    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new5.exe   
MD5 Hash: D1D3CACED7DBD85A1EA967638B81FF84   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BELC     
Antivir ----- TR/Thief.MultiFirst.P    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.MulDrop.20685    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.inq    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tpnr    
Kingsoft ----- Win32.Troj.OnlineGames.fd.126976    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tpnr    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new6.exe   
MD5 Hash: 6E049947658425F5FB9A6A1D781A51DA   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new7.exe   
MD5 Hash: 9F40CCCF7CEBE26F29BCB2D5A69DA76F   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new8.exe   
MD5 Hash: ED61EE3E835A565400734D8DC84DFA8C   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BELL     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8116    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.iso    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiok    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\new9.exe   
MD5 Hash: C3BCE6368C155430EA317D4681368598   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-Ransom.Win32.Hexzone.cv!IK    
Avast ----- Nothing   
Avg ----- PSW.OnlineGames.BELJ     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Nothing   
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Wsgame.8118    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Trojan-Ransom.Win32.Hexzone.cv    
Jiangmin ----- TrojanSpy.OnLineGames.isj    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   

Task done @ 2008/10/26 日 13:26:23.55   
回复

举报

tanlimo
发表于 2008-10-26 13:31:52 | 显示全部楼层
nod32全灭,两个启发

正在扫描日志
病毒库版本: 3555 (20081025)
日期: 2008-10-26  时间: 13:29:27
已扫描的磁盘、文件夹和文件: G:\ok.zip
G:\ok.zip > ZIP > new1.exe - Win32/PSW.OnLineGames.NRF 特洛伊木马 的变种
G:\ok.zip > ZIP > new10.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new11.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new12.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new14.exe - Win32/TrojanDropper.Agent.NMA 特洛伊木马 的变种
G:\ok.zip > ZIP > new15.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new16.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new17.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new18.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new19.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new2.exe - Win32/PSW.OnLineGames.NRF 特洛伊木马 的变种
G:\ok.zip > ZIP > new20.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new21.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new22.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new23.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new24.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new25.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new26.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new27.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new28.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new29.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new3.exe - Win32/PSW.OnLineGames.NRF 特洛伊木马 的变种
G:\ok.zip > ZIP > new30.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new31.exe - Win32/PSW.Legendmir.NGG 特洛伊木马 的变种
G:\ok.zip > ZIP > new32.exe - 可能是 Win32/PSW.Delf.NLZ 特洛伊木马 的变种
G:\ok.zip > ZIP > new33.exe - Win32/Agent.AIDW 特洛伊木马
G:\ok.zip > ZIP > new34.exe - 可能是 Win32/Genetik 特洛伊木马 的变种
G:\ok.zip > ZIP > new4.exe - Win32/PSW.OnLineGames.NRF 特洛伊木马 的变种
G:\ok.zip > ZIP > new5.exe - Win32/PSW.OnLineGames.NRF 特洛伊木马 的变种
G:\ok.zip > ZIP > new6.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new7.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new8.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
G:\ok.zip > ZIP > new9.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
已扫描的对象数: 33
发现的威胁数: 33
已清除对象数:0
完成时间: 13:29:44  总扫描时间: 17 秒 (00:00:17)
回复

举报

无尽藏海
发表于 2008-10-26 13:32:47 | 显示全部楼层
Scan Stats:
  Scan Time: 7 seconds
  Scan Options:
  Scan Targets: D:\Virus\ok.zip
  Counts:
   Total items scanned: 35
   - Files & Directories: 35
   - Registry Entries: 0
   - Processes & Start-up Items: 0
   - Network & Browser Items: 0
   - Other: 0
   - Trusted Files: 0
   - Skipped Files: 0

   Total security risks detected: 32
   Total items resolved: 32
   Total items that require attention: 0
回复

举报

小邪邪
发表于 2008-10-26 13:34:05 | 显示全部楼层
清空

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-18 11:12 , Processed in 0.130780 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表