高质量感染病毒,几乎过所有主流杀软！

嘻嘻哈哈011

我是新手（菜鸟），测试要慎重

sam.to

Hello,


A4Z73NQ.exe - Trojan.Win32.VB.pth

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

StarCraft.exe

No malicious code was found in this file.

ximo

原帖由 sam.to 于 2009-5-24 11:20 发表
Hello,


A4Z73NQ.exe - Trojan.Win32.VB.pth

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

StarCraft.exe

No ...

这就是卡巴的工程师的分析结果？？
算了，不说了，只能无语。。。

sam.to

楼上2位什么意思

sam.to

StarCraft.exe
打开不到

laolaoliu

KAV9.0.0.451没反响

黑衣~魂

原帖由 sam.to 于 2009-5-24 11:47 发表
楼上2位什么意思

有不斷自我複製能力,疑似感染VIRUS
問題來了,我的測試下沒有感染任何.EXE的FILE

`jjjj
jjjj
jjjjj
jjjj
jjjj
jjjj
jjjj
jjjj

System
{8856F961-340A-11D0-A96B-00C04FD705A2}
VS_VERSION_INFO
StringFileInfo
080404b0
Comments
CompanyName
FileDescription
FileVersion
1, 0, 0, 1
InternalName
LegalCopyright
LegalTrademarks
OriginalFilename
PrivateBuild
ProductName
ProductVersion
1, 0, 0, 1
SpecialBuild
VarFileInfo
Translation
PCKNHOORY
System
{8856F961-340A-11D0-A96B-00C04FD705A2}
{8856F961-340A-11D0-A96B-00C04FD705A2}

.......
7c8106f5     CreateRemoteThread(h=ffffffff, start=77e56c7d)        
769df57e     GetCurrentProcessId()=2704        
769c5eda     GetCurrentProcessId()=2704        
769dc5d3     GetCurrentProcessId()=2704        
76ab0366     GetCurrentProcessId()=2704        
769be7e3     GetCurrentProcessId()=2704        
7c8106f5     CreateRemoteThread(h=ffffffff, start=769ae43b)        
769cfd54     GetCurrentProcessId()=2704        
7c8106f5     CreateRemoteThread(h=ffffffff, start=77c0a341)        
73d40a7e     WaitForSingleObject(5fc,ffffffff)        
73d40baa     WaitForSingleObject(5f8,ffffffff)        
......      

不知道他在幹麻....反覆執行自己....

有人可以提供被感染的FILE嗎?

Kaspersky

A4Z73NQ.exe - Trojan.Win32.VB.pth

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

StarCraft.exe 下載A4Z73NQ.exe
StarCraft.exe不是威脅??

[ 本帖最后由 黑衣~魂 于 2009-5-24 13:27 编辑 ]

黑衣~魂

Hello,

StarCraft.exe_ - Trojan-Downloader.Win32.Agent.caik

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

Please quote all when answering.
The answer is relevant to the latest bases from update sources.


Best regards, Sergey Prokudin
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

在我說明下還是報了
[:26:]

[ 本帖最后由 黑衣~魂 于 2009-5-25 19:21 编辑 ]

dgww

这个病毒是做什么的，运行之后，除了下载了几个文件，好像没什么感觉。只是任务管理器会关掉~

g_j_love

真够猛。。。是病毒么。。。