[病毒样本] 1

显示全部楼层 · 发表于 2009-6-3 17:02:16

	2009-06-02 Found nothing		2009-06-03 Found nothing
	2009-06-03 Found nothing		2009-06-03 Found nothing
	2009-06-02 Win32:Agent-ADVJ		2009-06-03 Trojan-PSW.Win32.QQPass.jca
	Scanning, please wait...		2009-06-03 Found nothing
	2009-06-03 TR/Dropper.Gen		2009-06-02 Found nothing
	2009-06-03 Gen:Trojan.Heur.PT.1032CDCDCD		2009-06-02 Scanner unavailable
	2009-06-03 Found nothing		2009-06-03 Found nothing
	2009-06-03 Troj.Downloader.W32.CodecPack.epq		2009-06-03 Mal/EncPk-BW
	2009-06-03 Found nothing		2009-06-02 Found nothing
	2009-06-02 W32/Heuristic-210!Eldorado		2009-06-02 Packed/Upack

反病毒引擎	版本	最后更新	扫描结果
a-squared	4.0.0.101	2009.06.03	-
AhnLab-V3	5.0.0.2	2009.06.03	Packed/Upack
AntiVir	7.9.0.180	2009.06.03	TR/Dropper.Gen
Antiy-AVL	2.0.3.1	2009.06.03	-
Authentium	5.1.2.4	2009.06.03	W32/Heuristic-210!Eldorado
Avast	4.8.1335.0	2009.06.02	Win32:Agent-ADVJ
AVG	8.5.0.339	2009.06.03	Suspicion: unknown virus
BitDefender	7.2	2009.06.03	Gen:Trojan.Heur.PT.1032CDCDCD
CAT-QuickHeal	10.00	2009.06.03	(Suspicious) - DNAScan
ClamAV	0.94.1	2009.06.03	-
Comodo	1241	2009.06.03	-
DrWeb	5.0.0.12182	2009.06.03	-
eSafe	7.0.17.0	2009.06.02	Win32.Looked.gen
eTrust-Vet	31.6.6536	2009.06.02	-
F-Prot	4.4.4.56	2009.06.03	W32/Heuristic-210!Eldorado
F-Secure	8.0.14470.0	2009.06.03	W32/Packed_Upack.H
Fortinet	3.117.0.0	2009.06.03	-
GData	19	2009.06.03	Gen:Trojan.Heur.PT.1032CDCDCD
Ikarus	T3.1.1.57.0	2009.06.03	-
K7AntiVirus	7.10.752	2009.06.02	Generic.Packed.Upack
Kaspersky	7.0.0.125	2009.06.03	Trojan-PSW.Win32.QQPass.jca
McAfee	5634	2009.06.02	-
McAfee+Artemis	5634	2009.06.02	-
McAfee-GW-Edition	6.7.6	2009.05.29	Trojan.Dropper.Gen
Microsoft	1.4701	2009.06.03	VirTool:Win32/Obfuscator.C
NOD32	4125	2009.06.03	-
Norman	6.01.05	2009.06.02	W32/Packed_Upack.H
nProtect	2009.1.8.0	2009.06.03	-
Panda	10.0.0.14	2009.06.02	-
PCTools	4.4.2.0	2009.06.02	Packed/Upack
Prevx	3.0	2009.06.03	-
Rising	21.32.22.00	2009.06.03	Trojan.PSW.Win32.QQPass.ejn
Sophos	4.42.0	2009.06.03	Mal/EncPk-BW
Sunbelt	3.2.1858.2	2009.06.03	-
Symantec	1.4.4.12	2009.06.03	-
TheHacker	6.3.4.3.338	2009.06.03	-
TrendMicro	8.950.0.1092	2009.06.03	PAK_Generic.001
VBA32	3.12.10.6	2009.06.02	-
ViRobot	2009.6.3.1766	2009.06.03	-
VirusBuster	4.6.5.0	2009.06.02	Packed/Upack

软件名称	引擎版本	病毒库版本	病毒库时间	扫描结果	时间
a-squared	4.0.0.32	20090603130142	2009-06-03	-	2.531
AntiVir	8.2.0.180	7.1.4.49	2009-06-03	TR/Dropper.Gen	0.304
Arcavir	2009	200906021926	2009-06-02	-	0.066
Authentium	5.1.1	200906022309	2009-06-02	W32/Heuristic-210!Eldorado (Heuristic)	1.775
AVAST!	4.7.4	090602-0	2009-06-02	Win32:Agent-ADVJ [Rtk]	0.012
AVG	8.5.286	270.12.51/2151	2009-06-03	-	5.581
BitDefender	7.81008.3290693	7.25789	2009-06-03	Gen:Trojan.Heur.PT.1032CDCDCD	3.011
CA (VET)	9.0.0.143	31.6.6535	2009-06-03	-	6.918
ClamAV	0.95.1	9415	2009-06-03	-	0.060
Comodo	3.9	1241	2009-06-03	Heur.Packed.Unknown	0.725
CP Secure	1.1.0.715	2009.06.03	2009-06-03	Troj.Downloader.W32.CodecPack.epq	10.015
Dr.Web	4.44.0.9170	2009.06.03	2009-06-03	-	5.104
F-Prot	4.4.4.56	20090602	2009-06-02	Possible W32/Heuristic-210!Eldorado (damaged, not disinfectable)	1.732
F-Secure	5.51.6100	2009.06.03.02	2009-06-03	-	0.125
GData	19.5566/19.351	20090603	2009-06-03	Trojan-PSW.Win32.QQPass.jca [Engine:A]	5.241
Ikarus	T3.1.01.57	2009.06.03.72814	2009-06-03	-	3.874
Microsoft	1.4701	2009.06.03	2009-06-03	VirTool:Win32/Obfuscator.C(Suspicious)	5.758
mks_vir	2.01	2009.06.03	2009-06-03	-	3.213
Norman	6.01.05	6.01.00	2009-06-02	W32/Packed_Upack.H	4.006
nProtect	20090603.01	4123854	2009-06-03	-	5.789
Quick Heal	10.00	2009.06.03	2009-06-03	Suspicious - DNAScan	2.715
Sophos	2.87.1	4.42	2009-06-03	Mal/EncPk-BW	2.358
Sunbelt	5166	5166	2009-06-02	-	1.358
The Hacker	6.3.4.3	v00338	2009-06-02	-	1.228
VBA32	3.12.10.6	20090602.1118	2009-06-02	-	2.195
ViRobot	20090602	2009.06.02	2009-06-02	-	0.440
VirusBuster	4.5.11.10	10.106.8/1463907	2009-06-02	Packed/Upack	2.069
卡巴斯基	5.5.10	2009.06.03	2009-06-03	Trojan-PSW.Win32.QQPass.jca	0.083
安博士V3	2009.06.03.01	2009.06.03	2009-06-03	Packed/Upack	0.777
安天	2.0.18	20090603.2496882	2009-06-03	-	0.122
江民杀毒	11.0.706	2009.06.03	2009-06-03	Trojan/PSW.QQPass.wjl	2.033
熊猫卫士	9.05.01	2009.06.02	2009-06-02	-	4.981
瑞星	20.0	21.32.21.00	2009-06-03	Trojan.PSW.Win32.QQPass.ejn	1.432
赛门铁克	1.3.0.24	20090602.007	2009-06-02	-	0.282
趋势科技	8.700-1004	6.164.02	2009-06-02	-	0.370
迈克菲	5.3.00	5634	2009-06-02	-	3.966
金山毒霸	2009.2.5.15	2009.6.3.14	2009-06-03	-	0.988
飞塔	2.81-3.117	10.460	2009-06-02	-	0.303

[ 本帖最后由 killloop 于 2009-6-3 17:05 编辑 ]

显示全部楼层 · 发表于 2009-6-3 17:07:38

FSCS没发现

显示全部楼层 · 发表于 2009-6-3 17:07:52

费尔 TrojanPSW.QQPass.wjl.bzto

显示全部楼层 · 发表于 2009-6-3 17:26:54

卡巴
检测到：木马程序 Trojan-PSW.Win32.QQPass.jca URL: http://bbs.kafan.cn/attachment.p ... 78//1/12.com//UPack

显示全部楼层 · 发表于 2009-6-3 17:28:23

Last infection: bbs.kafan.cn
Infected with: Gen:Trojan.Heur.PT.1032CDCDCD

显示全部楼层 · 发表于 2009-6-3 20:47:07

to McAfee

显示全部楼层 · 发表于 2009-6-3 20:51:17

显示全部楼层 · 发表于 2009-6-3 20:54:38

to js

显示全部楼层 · 发表于 2009-6-3 22:03:12

虚拟机中测试

看图

EQ普通模式直接废掉

显示全部楼层 · 发表于 2009-6-4 00:55:37

Win32/Rootkit.Agent.NMD trojan
RAR > 1\12.com Win32/Rootkit.Agent.NMD trojan
nod32

[病毒样本] 1

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块