后门一个,卡巴不报

worker321

小红伞
C:\Documents and Settings\Administrator\桌面\upxdnd.rar
  [0] Archive type: RAR
  --> upxdnd.exe
      [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
      [WARNING]   The file was ignored!

nick1025

原帖由 solcroft 於 2007-2-21 03:50 發表
誰說卡巴不報？樓主試試執行看
Cyberhawk阻攔風險行動，AVG殺生成物

卡巴真的右鍵不報啊. . .

gggh

卡巴真的右鍵不報啊. . .

solcroft

执行时报了，杀生成物
反正这个exe也只是空壳，主要目的是为了注入dll木马。那个dll我没捉到，但应该很多杀软都会报已知

jick117

用tiny的TM执行了下,建立了三个文件,注册表里run键了一个值

magicwanyu

查杀结果: AntiVir	Found TR/Crypt.NSPM.Gen
ArcaVir	Found nothing
Avast	Found nothing
AVG Antivirus	Found nothing
BitDefender	Found nothing
ClamAV	Found nothing
Dr.Web	Found nothing
F-Prot Antivirus	Found Possibly a new variant of W32/PWStealer.gen1
F-Secure Anti-Virus	Found nothing
Fortinet	Found nothing
Kaspersky Anti-Virus	Found Trojan-PSW.Win32.OnLineGames.iy
NOD32	Found nothing
Norman Virus Control	Found nothing
VirusBuster	Found nothing
VBA32	Found MalwareScope.Backdoor.Hupigon.2

[ 本帖最后由 magicwanyu 于 2007-2-21 20:43 编辑 ]

magicwanyu

查杀结果2:
Scanner Scanner Version Result Scan Time
ArcaVir 1.0.4 Clean 2.61902 secs
avast! 3.0.0 Clean 0.0190172 secs
AVG Anti Virus 7.1.30 Clean 2.09228 secs
BitDefender 7.1 GenPack:Trojan.PWS.OnlineGames.CK 4.19268 secs
CAT QuickHeal 9.00 Clean 4.85022 secs
ClamAV 0.88.4/2617 Clean 0.0163898 secs
Dr. Web 4.33.0 Clean 7.40315 secs
F-PROT 4.6.7 Unknown 0.723557 secs
H+BEDV AntiVir 2.1.9-35 TR/Crypt.NSPM.Gen 5.13096 secs
Ikarus PSCAN 2.32 Clean 30.8396 secs
McAfee Virusscan 5.10.0 Clean 1.49458 secs
NOD32 2.51.1 Clean 3.21027 secs
Norman Virus Control 5.70.01 Clean 6.07124 secs
Panda 9.00.00 Clean 1.3704 secs
Sophos Sweep 4.14.0 Clean 4.00618 secs
Trend Micro 8.310-1002 Clean 0.032886 secs
VBA32 3.11.2 MalwareScope.Backdoor.Hupigon.2 3.35802 secs
VirusBuster 2005 NULL Clean 2.0922 secs

jlennon

avk2006

yitp

红伞

663219623

谁说的啊,驱逐舰启发报未知,垃圾