小东西

显示全部楼层 · 发表于 2009-1-11 19:55:51

VirSCAN.org Scanned Report :
Scanned time : 2009/01/11 18:47:17 (CST)
Scanner results: 50%的杀软(19/38)报告发现病毒
File Name    : g112201.rar
File Size    : 45870 byte
File Type    : RAR archive data, v1d, os
MD5          : cb9f1cf761dd802b31e884d72335f418
SHA1          : eef5f012bd4adea6d59486a99639c2b032834194
Online report  : http://virscan.org/report/d384d6b6b72d4edad93edb4c49bdc33d.html
Scanner       Engine Ver    Sig Ver          Sig Date Time Scan result
a-squared    4.0.0.29       20090111183159 2009-01-11  2.34 Trojan-PWS.Win32.QQPass!IK
安博士V3    2009.01.11.01 2009.01.11       2009-01-11  1.67 Packed/Upack
AntiVir       7.9.0.54       7.1.1.96       2009-01-10  1.84 TR/ATRAPS.Gen
安天          2.0.18       20090105.1950502  2009-01-05  0.02 -
Authentium    5.1.1          200901101808    2009-01-10  2.96 W32/Heuristic-210!Eldorado (Heuristic)
AVAST!       3.0.1          090110-0       2009-01-10  0.04 -
AVG          7.5.52.442    270.10.5/1886    2009-01-10  1.90 -
BitDefender 7.81008.2433890 7.23088          2009-01-11  2.28 -
CA (VET)    9.0.0.143    31.6.6301       2009-01-10  4.19 Win32/QQPass.AAJ trojan.
ClamAV       0.94.2       8850             2009-01-11  0.13 -
Comodo       3.0          915             2009-01-11  0.92 -
CP Secure    1.1.0.715    2009.01.11       2009-01-11  6.58 -
Dr.Web       4.44.0.9170    2009.01.11       2009-01-11  3.97 -
ewido       4.0.0.2       2008.12.31       2008-12-31  3.67 -
F-Prot       4.4.4.56       20090110       2009-01-10  2.77 Possible W32/Heuristic-210!Eldorado (damaged, not disinfectable)
F-Secure    5.51.6100    2009.01.11.01    2009-01-11  4.31 -
飞塔          2.81-3.117    9.916          2009-01-10  0.43 Suspicious
GData       19.2375/19.179  20090111       2009-01-11  2.99 -
ViRobot       20090110       2009.01.10       2009-01-10  0.41 -
Ikarus       T3.1.01.45    2009.01.11.72133  2009-01-11  3.60 Trojan-PWS.Win32.QQPass
江民杀毒    11.0.706       2009.01.10       2009-01-10  1.61 -
卡巴斯基    5.5.10       2009.01.11       2009-01-11  0.13 -
金山毒霸    2008.9.8.18    2009.1.11.15    2009-01-11  0.62 Win32.Troj.PswQQ.cc.516096
迈克菲       5.3.00       5491             2009-01-10  4.55 New Malware.aj
Microsoft    1.4205       2009.01.11       2009-01-11  4.17 PWS:Win32/QQpass.AA
mks_vir       2.01          2009.01.10       2009-01-10  2.72 Heur.Win32
Norman       5.93.01       5.93.00          2009-01-05  6.06 W32/Packed_Upack.A
熊猫卫士    9.05.01       2009.01.10       2009-01-10  2.98 Suspicious file
趋势科技    8.700-1004    5.760.44       2009-01-10  0.86 -
Quick Heal    10.00          2009.01.09       2009-01-09  0.88 Suspicious - DNAScan
瑞星          20.0          21.11.62.00    2009-01-11  0.99 -
Sophos       2.82.1       4.37             2009-01-11  2.34 -
Sunbelt       4756          4756             2009-01-08  1.38 VIPRE.Suspicious
赛门铁克    1.3.0.24       20090110.003    2009-01-10  0.15 -
nProtect    20090109.01    2853873          2009-01-09  3.52 Backdoor/W32.Hupigon.376580
The Hacker    6.3.1.2       v00217          2009-01-10  0.48 W32/Behav-Heuristic-060
VBA32       3.12.8.10    20090110.1127    2009-01-10  1.76 Trojan-PSW.Win32.QQPass.etn
VirusBuster 4.5.11.10    10.100.21/762382  2009-01-10  1.14 -

显示全部楼层 · 发表于 2009-1-11 20:03:29

微点

显示全部楼层 · 发表于 2009-1-11 20:08:40

To KL

显示全部楼层 · 发表于 2009-1-11 20:09:52

原帖由 尤金卡巴斯基 于 2009-1-11 20:08 发表
To KL

怎么多引擎上过了卡巴涅

显示全部楼层 · 发表于 2009-1-11 20:23:11

到了

显示全部楼层 · 发表于 2009-1-11 20:33:02

我晕，刚又扫的，卡巴还是过了，咋回事涅

VirSCAN.org Scanned Report :
Scanned time : 2009/01/11 20:29:40 (CST)
Scanner results: 50%的杀软(19/38)报告发现病毒
File Name    : g112201.rar
File Size    : 45870 byte
File Type    : RAR archive data, v1d, os
MD5          : cb9f1cf761dd802b31e884d72335f418
SHA1          : eef5f012bd4adea6d59486a99639c2b032834194
Online report  : http://virscan.org/report/d384d6b6b72d4edad93edb4c49bdc33d.html
Scanner       Engine Ver    Sig Ver          Sig Date Time Scan result
a-squared    4.0.0.29       20090111183159 2009-01-11  2.32 Trojan-PWS.Win32.QQPass!IK
安博士V3    2009.01.11.01 2009.01.11       2009-01-11  1.35 Packed/Upack
AntiVir       7.9.0.54       7.1.1.96       2009-01-10  1.84 TR/ATRAPS.Gen
安天          2.0.18       20090105.1950502  2009-01-05  0.02 -
Authentium    5.1.1          200901101808    2009-01-10  2.94 W32/Heuristic-210!Eldorado (Heuristic)
AVAST!       3.0.1          090111-0       2009-01-11  0.81 -
AVG          7.5.52.442    270.10.5/1886    2009-01-10  1.87 -
BitDefender 7.81008.2434090 7.23089          2009-01-11  2.28 -
CA (VET)    9.0.0.143    31.6.6301       2009-01-10  5.24 Win32/QQPass.AAJ trojan.
ClamAV       0.94.2       8850             2009-01-11  0.13 -
Comodo       3.0          915             2009-01-11  0.86 -
CP Secure    1.1.0.715    2009.01.11       2009-01-11  6.59 -
Dr.Web       4.44.0.9170    2009.01.11       2009-01-11  3.93 -
ewido       4.0.0.2       2008.12.31       2008-12-31  3.76 -
F-Prot       4.4.4.56       20090110       2009-01-10  2.71 Possible W32/Heuristic-210!Eldorado (damaged, not disinfectable)
F-Secure    5.51.6100    2009.01.11.01    2009-01-11  4.30 -
飞塔          2.81-3.117    9.917          2009-01-10  0.45 Suspicious
GData       19.2377/19.180  20090111       2009-01-11  3.27 -
ViRobot       20090110       2009.01.10       2009-01-10  0.41 -
Ikarus       T3.1.01.45    2009.01.11.72133  2009-01-11  3.58 Trojan-PWS.Win32.QQPass
江民杀毒    11.0.706       2009.01.10       2009-01-10  1.48 -
卡巴斯基    5.5.10       2009.01.11       2009-01-11  0.13 -
金山毒霸    2008.9.8.18    2009.1.11.20    2009-01-11  0.65 Win32.Troj.PswQQ.cc.516096
迈克菲       5.3.00       5491             2009-01-10  4.51 New Malware.aj
Microsoft    1.4205       2009.01.11       2009-01-11  4.22 PWS:Win32/QQpass.AA
mks_vir       2.01          2009.01.10       2009-01-10  2.64 Heur.Win32
Norman       5.93.01       5.93.00          2009-01-05  6.18 W32/Packed_Upack.A
熊猫卫士    9.05.01       2009.01.10       2009-01-10  2.47 Suspicious file
趋势科技    8.700-1004    5.760.46       2009-01-11  0.87 -
Quick Heal    10.00          2009.01.09       2009-01-09  0.88 Suspicious - DNAScan
瑞星          20.0          21.11.62.00    2009-01-11  1.00 -
Sophos       2.82.1       4.37             2009-01-11  2.37 -
Sunbelt       4756          4756             2009-01-08  1.48 VIPRE.Suspicious
赛门铁克    1.3.0.24       20090110.003    2009-01-10  0.15 -
nProtect    20090109.01    2853873          2009-01-09  3.31 Backdoor/W32.Hupigon.376580
The Hacker    6.3.1.2       v00217          2009-01-10  0.48 W32/Behav-Heuristic-060
VBA32       3.12.8.10    20090110.1127    2009-01-10  1.85 Trojan-PSW.Win32.QQPass.etn
VirusBuster 4.5.11.10    10.100.21/762382  2009-01-10  1.13 -

显示全部楼层 · 发表于 2009-1-11 20:33:56

Hello,

g112201.exe_ - Trojan-PSW.Win32.QQPass.fdo

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

Please quote all when answering.
The answer is relevant to the latest bases from update sources.

Best regards, Ilya Tolstikhin
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

显示全部楼层 · 发表于 2009-1-11 20:35:36

没过主防吧，多引擎只是特征码或是启发吧

显示全部楼层 · 发表于 2009-1-11 21:37:55

C:\Documents and Settings\Administrator\桌面\g112201.rar > RAR > g112201.exe - Win32/PSW.Delf.NMX 特洛伊木马的变种

显示全部楼层 · 发表于 2009-1-11 21:45:06

盜qq

[病毒样本] 小东西

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

回复 7楼尤金卡巴斯基的帖子

[病毒样本] 小东西

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

回复 7楼 尤金卡巴斯基 的帖子

回复 7楼尤金卡巴斯基的帖子