40× ...

显示全部楼层 · 发表于 2008-11-8 22:58:39

40X。。貌似有些古老了

Multi Command-Line Scanner Report
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\a43.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: 5FF957B3CB77F04A78CEFD241B3BCBA3

A-squared ----- not-a-Virus.Hacktool.Keygen!IK
Avast ----- Win32:KillWin-BW [Rtk]
Avg ----- Downloader.Agent.AOOE
Antivir ----- TR/Crypt.XDR.Gen
BitDefender ----- Rootkit.Agent.AIWN
ClamWin ----- Nothing
Dr.Web ----- DLOADER.Trojan
Eset ----- probably a variant of Win32/Genetik trojan
Ikarus ----- not-a-Virus.Hacktool.Keygen
Jiangmin ----- Trojan/Agent.bopk
Kaspersky ----- Trojan.Win32.Runner.bu
Kingsoft ----- Win32.Troj.DownloadT.bm.102400
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\a43_unpacked.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: 416DA59003DBF9B127949D0DD6A56A25

A-squared ----- not-a-Virus.Hacktool.Keygen!IK
Avast ----- Win32:KillWin-BW [Rtk]
Avg ----- Downloader.Agent.AOOE
Antivir ----- TR/Spy.Gen
BitDefender ----- Rootkit.Agent.AIWN
ClamWin ----- Nothing
Dr.Web ----- DLOADER.Trojan
Eset ----- probably a variant of Win32/Genetik trojan
Ikarus ----- not-a-Virus.Hacktool.Keygen
Jiangmin ----- Trojan/Agent.bopk
Kaspersky ----- Trojan.Win32.Runner.bu
Kingsoft ----- Win32.Troj.DownloadT.bm.102400
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\atuhax.dll
Type: Win32 Executable MS Visual C++ / Extension: .EXE
MD5 Hash: 5CB73892E04542E5A3987A7447C88F7C

A-squared ----- Nothing
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Nothing
Antivir ----- TR/Hijacker.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 2/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\jiocs.dll
Type: Win32 Executable MS Visual C++ / Extension: .EXE
MD5 Hash: 7C710D31A101E310B6CBF012A09AFD07

A-squared ----- Nothing
Avast ----- Win32:KillWin-BW [Rtk]
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Trojan.Inject.SJ
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Trojan/Agent.bopv
Kaspersky ----- Trojan.Win32.Agent.alyq
Kingsoft ----- Win32.Troj.Jiocs.dl.48128
Vba32 ----- Nothing

*** 5/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\lsxple.dll
Type: Win32 Executable MS Visual C++ / Extension: .EXE
MD5 Hash: 6B4447C03963FB1F4AC8A816F2C07A3A

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Nothing
Antivir ----- Nothing
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Nothing
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 0/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new1.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 42EFA4D2326CC5D002A6E4EF659E375C

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Spyware-gen [Trj]
Avg ----- PSW.OnlineGames.BFZJ
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.fbd
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGames.fd.118837
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new10.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: F77F862514C46F364F4216BBE961B9F5

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Agent.AOSD
Antivir ----- TR/Dldr.Agent.anxa.3
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new11.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: B21636853758932ED4F3AE15FE82BF0D

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new12.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: D9A19233FE87B3F8A8B02A23A318944F

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new13.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: F97C89533C9F98806F122DA096A0279C

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Nothing
Avg ----- Crypt.AKS
Antivir ----- TR/Spy.Gen
BitDefender ----- Generic.PWS.Games.1.0A336FF8
ClamWin ----- Nothing
Dr.Web ----- Trojan.MulDrop.origin
Eset ----- probably a variant of Win32/TrojanDropper.Agent.NMA trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- Nothing
Kaspersky ----- Trojan.Win32.Inject.juh
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new15.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: A024F8A568F788FEBBA4949225A24D28

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Crypt.AIX
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new16.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 8D74C07A4CE6E8FBBBD584D7EE844984

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new17.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 7ECC65F8D7096EE45ACE6B242534EC70

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.Generic6.APES
Antivir ----- TR/PSW.MultiFirst.T
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new18.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 9C7C7D98390023302D280DF350E752CF

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:OnLineGames-FDQ [Trj]
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new19.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 9FBA6F520E1FB04E9BDB2C5A456D6F5F

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new2.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 50E8FC931EDFCDC5019D5202582371F2

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.Generic6.APCF
Antivir ----- TR/PSW.MultiFirst.T
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.jig
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Hack.Huigezi.ec.123093
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new20.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 0B044DB6D7635DF3974A46943BB655AE

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFWE
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.29
Eset ----- Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqza
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqza

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new21.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: CF02E66269FA74A4AD2F4C982F82CF28

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Nothing
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.29
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new22.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: D7AB0C7EA2245C63351AE10C1B0E4C8E

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFJK
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.29
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqza
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqza

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new23.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 67FF52925D74D57B4C81C5E878CC7AD1

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Crypt.AIX
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new24.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 30C18894FD98D695E8BCA60C60ADB82D

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Crypt.AIX
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new25.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: DE05CB2C9ECF15E9A59D1E51D7691534

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KOQ
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new26.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 2F6DA5901C2DD81B6C4DB564C58680DC

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new27.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 8B7F8D654A575759D5594CE367A5AFB3

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new28.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 0BE63F3D4545D75420853B5425D9412B

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Crypt.AIX
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new29.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 2C5FEF849C5148845DCC1368F1BDA259

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new3.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: BB64B11EF51BAC82DEF0D725FD3C24CD

A-squared ----- PWS.Win32.Wowsteal.AC!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BGGF
Antivir ----- DR/Delphi.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Gamania.origin
Eset ----- Win32/PSW.WOW.NFE trojan
Ikarus ----- PWS.Win32.Wowsteal.AC
Jiangmin ----- Nothing
Kaspersky ----- Trojan-GameThief.Win32.WOW.clq
Kingsoft ----- Win32.Troj.Delf.91204
Vba32 ----- MalwareScope.Trojan-PSW.Game.7

*** 10/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new30.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 4BDFCC455D6A9DB3EA9FB417C7CBB00E

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Dropper.Agent.KQI
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new31.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 7EBF8004B2C11CE563B7C8FFAF41C575

A-squared ----- Trojan.Flystudio.AI!IK
Avast ----- Nothing
Avg ----- PSW.Ldpinch.11.BQ
Antivir ----- TR/Dropper.Gen
BitDefender ----- Trojan.Dropper.SPO
ClamWin ----- PUA.Packed.NPack-2
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.Legendmir.NGG trojan
Ikarus ----- Trojan.Flystudio.AI
Jiangmin ----- Nothing
Kaspersky ----- Heur.Trojan.Generic
Kingsoft ----- Nothing
Vba32 ----- Nothing

*** 8/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new32.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: 166377EE20C3D2019D7A09D7577332E9

A-squared ----- Trojan.Copiet.B.1!IK
Avast ----- Win32:Delf-FZG [Trj]
Avg ----- PSW.Delf.CED
Antivir ----- TR/Spy.Agent.31854
BitDefender ----- Generic.PWStealer.0FC57F84
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Lineage.origin
Eset ----- probably a variant of Win32/PSW.Delf.NLZ trojan
Ikarus ----- Trojan.Copiet.B.1
Jiangmin ----- TrojanSpy.Delf.dej
Kaspersky ----- Trojan-Spy.Win32.Delf.ere
Kingsoft ----- Win32.Troj.QQPswT.bs.116858
Vba32 ----- Trojan-Spy.Win32.Delf.erb

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new33.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: CBF68A7AE5AD55A57C6635BFAC3F15B9

A-squared ----- Trojan-Dropper.Agent!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Agent.AIAI
Antivir ----- TR/Agent.38400
BitDefender ----- Trojan.Downloader.JLEA
ClamWin ----- Nothing
Dr.Web ----- MULDROP.Trojan
Eset ----- Win32/Agent.OJG trojan
Ikarus ----- Trojan-Dropper.Agent
Jiangmin ----- Trojan/PSW.OnLineGames.jxt
Kaspersky ----- Trojan-Downloader.Win32.Agent.amom
Kingsoft ----- Win32.Troj.DropRootKit.a.73728
Vba32 ----- Trojan-Downloader.Win32.Agent.amom

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new34.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: B48E49C81802FDDDC9C8772E41D1F671

A-squared ----- Trojan-Dropper.Agent!IK
Avast ----- Win32:SdBot-gen44 [Trj]
Avg ----- Worm/Spybot.AHE
Antivir ----- DR/Agent.AFXU
BitDefender ----- Trojan.Dropper.SQK
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- Win32/NetTool.TCPScan.B application
Ikarus ----- Trojan-Dropper.Agent
Jiangmin ----- Nothing
Kaspersky ----- Trojan-Downloader.Win32.Agent.aocz
Kingsoft ----- Worm.SaodangBo.a.94208
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new35.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 5328A0FB6C7F456E4A2D9B8996C6FC2D

A-squared ----- Backdoor.Win32.Hupigon!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Agent.AITY
Antivir ----- TR/Crypt.CFI.Gen
BitDefender ----- Trojan.Agent.AKWX
ClamWin ----- PUA.Packed.NPack-3
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.Delf.NMX trojan
Ikarus ----- Backdoor.Win32.Hupigon
Jiangmin ----- Trojan/PSW.OnLineGames.jxu
Kaspersky ----- Trojan.Win32.Agent.ahzz
Kingsoft ----- Win32.Troj.Agent.495616
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new4.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: B29A9E55D46E9E468AAE946CDD915D84

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BFGT
Antivir ----- TR/PSW.O.tqly.16765
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Trojan.PWS.Wsgame.8235
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.jfg
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqly
Kingsoft ----- Win32.Troj.OnlineGames.fd.114688
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqly

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new5.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 480236B9C77BD677544E435CF880163E

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.OnlineGames.BGII
Antivir ----- TR/Agent.17408.1
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.fbd
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new6.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: D8A45CA6C4AEB92C01B219F47CBF3600

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.Generic6.APAW
Antivir ----- TR/Agent.16896.10
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.OnLineGames.fbd
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new7.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 6A1DE800F403B2FC3F1AE1E8C04A9443

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- PSW.Generic6.AOOS
Antivir ----- TR/PSW.MultiFirst.T
BitDefender ----- Trojan.PWS.Agent.SGC
ClamWin ----- Trojan.Starter-12
Dr.Web ----- Nothing
Eset ----- a variant of Win32/PSW.OnLineGames.NRF trojan
Ikarus ----- Trojan-PWS.Win32.Agent.hf
Jiangmin ----- TrojanSpy.Magania.fdp
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen
Kingsoft ----- Win32.Troj.OnlineGamesT.fd.119081
Vba32 ----- Nothing

*** 11/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new8.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 8F59795DB4DD847B830FEC6A2D4A7B9C

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Agent-ACMH [Drp]
Avg ----- Crypt.AIX
Antivir ----- TR/Spy.Gen
BitDefender ----- Nothing
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Nothing

*** 9/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\new9.exe
Type: DOS Executable Generic / Extension: .EXE
MD5 Hash: 4944224BA12FFB9F136000AF49F5A30B

A-squared ----- Win32.SuspectCrc!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Crypt.AIX
Antivir ----- TR/Spy.Gen
BitDefender ----- Trojan.PWS.OnlineGames.AADA
ClamWin ----- Nothing
Dr.Web ----- Trojan.PWS.Siggen.27
Eset ----- a variant of Win32/PSW.OnLineGames.NRD trojan
Ikarus ----- Win32.SuspectCrc
Jiangmin ----- TrojanSpy.OnLineGames.euu
Kaspersky ----- Trojan-Dropper.Win32.Agent.yux
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588
Vba32 ----- Trojan-Dropper.Win32.Agent.yux

*** 12/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\winsawids.sys
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: F80AE44361DB9E214B0BE937D4B076AE

A-squared ----- Nothing
Avast ----- Nothing
Avg ----- Downloader.Agent.AOOF
Antivir ----- Rkit/Agent.AIWN.1
BitDefender ----- Rootkit.Agent.AIWN
ClamWin ----- Nothing
Dr.Web ----- Nothing
Eset ----- a variant of Win32/Rootkit.Agent.NFF trojan
Ikarus ----- Nothing
Jiangmin ----- Nothing
Kaspersky ----- Nothing
Kingsoft ----- Win32.Troj.WInsawid.sy.11520
Vba32 ----- Nothing

*** 5/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------

Task done @ 2008/11/08 六 22:56:09.25

显示全部楼层 · 发表于 2008-11-8 23:01:21

咦？读书间隙上网发帖？

显示全部楼层 · 发表于 2008-11-8 23:02:08

呵呵是啊這幾天學校運動會休息休息

显示全部楼层 · 发表于 2008-11-8 23:10:31

病毒名称处理结果发现日期查杀方式路径文件病毒来源
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new9.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new8.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnLineGames.aaaa 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new7.exe>>upack0.39>>66 本地服务器
Trojan.PSW.Win32.GameOL.qxr 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new5.exe>>upack0.39>>66 本地服务器
Trojan.PSW.Win32.GameOL.rlv 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new4.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.QQHX.tyg 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new4.exe>>upack0.39>>66 本地服务器
Trojan.Win32.Undef.rtk 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new35.exe>>nspack 本地服务器
Worm.Win32.PaBug.iy 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new32.exe>>upx_c>>FILE 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new30.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new29.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new28.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new27.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new26.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new25.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new24.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new23.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new22.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new21.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new20.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.XYOnline.ahs 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new2.exe>>upack0.39>>66 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new19.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.GameOL.rmk 删除染毒文件成功 2008-11-8 23:08 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new18.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnLineGames.aaaa 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new17.exe>>upack0.39>>66 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new16.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new15.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.OnlineGames.nj 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new12.exe>>upack0.39>>65 本地服务器
RootKit.Win32.Mnless.ahz 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new11.exe>>upack0.39>>65 本地服务器
Trojan.PSW.Win32.GameOL.rnw 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new10.exe>>upack0.39>>66 本地服务器
Trojan.PSW.Win32.XYOnline.aiy 删除染毒文件成功 2008-11-8 23:07 手动查杀 C:\Documents and Settings\Administrator\桌面\40.zip>>40 new1.exe>>upack0.39>>66 本地服务器

显示全部楼层 · 发表于 2008-11-8 23:11:37

这个是ko的下载列表吗？

显示全部楼层 · 发表于 2008-11-9 00:09:48

2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new9.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new7.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new6.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new5.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.tqly       G:\Temp\Virus\40.zip/40/new4.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan.Win32.Agent.ahzz       G:\Temp\Virus\40.zip/40/new35.exe//NSPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Downloader.Win32.Agent.aocz       G:\Temp\Virus\40.zip/40/new34.exe//FSG
2008/11/9 0:05:04       已清除       木马程序 Trojan-Downloader.Win32.Agent.amom       G:\Temp\Virus\40.zip/40/new33.exe//FSG
2008/11/9 0:05:04       已清除       木马程序 Trojan-Spy.Win32.Delf.erf       G:\Temp\Virus\40.zip/40/new32.exe
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new30.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.WOW.clq       G:\Temp\Virus\40.zip/40/new3.exe//PE_Patch.UPX//UPX
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new29.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new27.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new26.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new25.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.tqza       G:\Temp\Virus\40.zip/40/new22.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.tqza       G:\Temp\Virus\40.zip/40/new20.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new2.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new19.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new18.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new17.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new16.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan.Win32.Inject.juh       G:\Temp\Virus\40.zip/40/new13.exe//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip/40/new12.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new10.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\40.zip/40/new1.exe//PE_Patch//UPack
2008/11/9 0:05:04       已清除       木马程序 Trojan.Win32.Agent.alyq       G:\Temp\Virus\40.zip/40/jiocs.dll
2008/11/9 0:05:04       已清除       木马程序 Trojan.Win32.Runner.bu       G:\Temp\Virus\40.zip/40/a43_unpacked.exe
2008/11/9 0:05:04       已清除       木马程序 Trojan.Win32.Runner.bu       G:\Temp\Virus\40.zip/40/a43.exe//UPX
2008/11/9 0:05:04       已清除       木马程序 Trojan-Dropper.Win32.Agent.yux       G:\Temp\Virus\40.zip
2008/11/9 0:05:03       已隔离       木马程序 Heur.Trojan.Generic       G:\Temp\Virus\40.zip/40/new31.exe//NSPack
2008/11/9 0:05:03       已隔离       木马程序 Heur.Trojan.Generic       G:\Temp\Virus\40.zip/40/new31.exe

特征码漏杀 To KL

显示全部楼层 · 发表于 2008-11-9 00:44:54

FSIS2009
扫描剩余12
沙盘
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW8.EXE Action: quarantined
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW11.EXE Action: quarantined
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW15.EXE Action: quarantined
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW21.EXE Action: quarantined
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW23.EXE Action: quarantined
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW24.EXE Action: quarantined
W32/Packed_Upack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW28.EXE Action: quarantined
W32/Packed_Nspack.A (virus)
C:\DOCUMENTS AND SETTINGS\SK\桌面\VIRUSRUN\081108\40\NEW31.EXE Action: quarantined

除去dll、sys,就剩下一个

显示全部楼层 · 发表于 2008-11-9 11:20:15

ESET miss 3
to lab

显示全部楼层 · 发表于 2008-11-9 11:26:06

嗯是的

显示全部楼层 · 发表于 2008-11-9 13:51:45

Hello,

atuhax.dll, lsxple.dll

These files are corrupted.

new11.exe_, new15.exe_, new23.exe_, new24.exe_, new28.exe_, new8.exe_ - Trojan-Dropper.Win32.Agent.zen,
new21.exe_ - Trojan-Dropper.Win32.Agent.zep

These files are already detected. Please update your antivirus bases.

new31.exe_ - Trojan-GameThief.Win32.OnLineGames.truw,
winsawids.sys - Rootkit.Win32.Agent.etd

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Ilya Tolstikhin
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

[病毒样本] 40× ...

本帖子中包含更多资源

回复 2楼 qigang 的帖子

29

回复 5楼 qigang 的帖子

浏览过的版块