24x

Palkia

卡巴miss 9
RS20090821110001593538
2009-8-21 10:59:52        已删除        木马程序 Trojan-GameThief.Win32.Magania.bunv        F:\DL\668032311dde69b9340671db7e72aa97               
2009-8-21 10:59:52        已删除        木马程序 Trojan-GameThief.Win32.Magania.bunv        F:\DL\668032311dde69b9340671db7e72aa97//PE_Patch.UPX//UPX               
2009-8-21 10:59:51        已删除        木马程序 Trojan-PSW.Win32.QQPass.loz        F:\DL\150e919309cee77f4f86fdd738ffad32               
2009-8-21 10:59:51        已删除        木马程序 Trojan-GameThief.Win32.Magania.buur        F:\DL\04fdb124a79475bfe2c0e416e13215cd               
2009-8-21 10:59:51        已删除        木马程序 Trojan.Win32.Agent.cufl        F:\DL\18b925a486a13fe1cfcbf8ec56ec1dfc               
2009-8-21 10:59:51        已删除        木马程序 Trojan.Win32.Agent.cufl        F:\DL\18b925a486a13fe1cfcbf8ec56ec1dfc//PE_Patch.PECompact//PecBundle//PECompact               
2009-8-21 10:59:52        已删除        木马程序 Trojan.Win32.Agent2.chpx        F:\DL\92b506262d65a5acc79b6551bbb89225               
2009-8-21 10:59:52        已删除        木马程序 Trojan-Dropper.Win32.Agent.axyr        F:\DL\4325628be927238886b70351621a28be               
2009-8-21 10:59:52        已删除        木马程序 Backdoor.Win32.Prosti.s        F:\DL\3e52a5ac888bed6411c4f6f48c7ea2e4               
2009-8-21 10:59:55        已删除        木马程序 Backdoor.Win32.Prorat.19.i        F:\DL\c94feebfa42dfba3658454e5889d51d6               
2009-8-21 10:59:52        已删除        木马程序 Trojan-Downloader.Win32.Geral.bqw        F:\DL\7185a27841fffea7e732ae17598c9ef0               
2009-8-21 10:59:52        已删除        木马程序 Trojan-Downloader.Win32.Geral.bqw        F:\DL\7185a27841fffea7e732ae17598c9ef0//PE_Patch//UPack               
2009-8-21 10:59:51        已删除        木马程序 Trojan-Downloader.Win32.Geral.bqp        F:\DL\1dfe55b4a7be4cfc98ddfa1ed327f9d2               
2009-8-21 10:59:51        已删除        木马程序 Trojan-Downloader.Win32.small.ambj        F:\DL\31d714c0537c79aeca222e12f5efe6e3               
2009-8-21 10:59:52        已删除        木马程序 Trojan-Downloader.Win32.Geral.blu        F:\DL\9bf69685a427ff6d658ea83253fec71f               
2009-8-21 10:59:52        已删除        木马程序 Trojan-Downloader.Win32.Agent.cmah        F:\DL\7e5fbb2d3c032905366b2e6d5c349d4f               
2009-8-21 10:59:55        已删除        病毒 Rootkit.Win32.Tiny.gl        F:\DL\c3233590ceae7b16929e60d5e4af3936               
2009-8-21 10:59:55        已删除        病毒 Rootkit.Win32.Agent.fia        F:\DL\f8b8a22f61d1923650f0cebfc24051d6

[ 本帖最后由 Palkia 于 2009-8-21 11:31 编辑 ]

HC303

MISS THREE
Begin scan in 'G:\Virus\DL'
G:\Virus\DL\04fdb124a79475bfe2c0e416e13215cd
    [DETECTION] Is the TR/Spy.Gen Trojan
G:\Virus\DL\150e919309cee77f4f86fdd738ffad32
    [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
G:\Virus\DL\18b925a486a13fe1cfcbf8ec56ec1dfc
    [DETECTION] Is the TR/ATRAPS.Gen Trojan
G:\Virus\DL\1dfe55b4a7be4cfc98ddfa1ed327f9d2
    [DETECTION] Is the TR/Rootkit.Gen Trojan
G:\Virus\DL\31d714c0537c79aeca222e12f5efe6e3
    [DETECTION] Is the TR/Hijacker.Gen Trojan
G:\Virus\DL\3e52a5ac888bed6411c4f6f48c7ea2e4
  [0] Archive type: RSRC
    --> Object
      [DETECTION] Contains a recognition pattern of the (harmful) BDS/Prosti.BM back-door program
G:\Virus\DL\3f1f9bb69e0ab24cd5173ff536eae1f4
    [DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
G:\Virus\DL\4325628be927238886b70351621a28be
  [0] Archive type: RSRC
    --> Object
      [DETECTION] Is the TR/VB.udi Trojan
G:\Virus\DL\4e3b3b6b9fed6b6900c2993c88fb2a6b
  [0] Archive type: NSIS
    --> ProgramFilesDir/01.sys
      [DETECTION] Is the TR/Rootkit.Gen Trojan
G:\Virus\DL\668032311dde69b9340671db7e72aa97
    [DETECTION] Is the TR/Spy.Gen Trojan
G:\Virus\DL\7185a27841fffea7e732ae17598c9ef0
    [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
G:\Virus\DL\7e5fbb2d3c032905366b2e6d5c349d4f
    [DETECTION] Is the TR/Dldr.Agent.cmah Trojan
G:\Virus\DL\8f3192a026450a8c14171e473699b357
    [DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
G:\Virus\DL\92b506262d65a5acc79b6551bbb89225
    [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
G:\Virus\DL\9bf69685a427ff6d658ea83253fec71f
    [DETECTION] Is the TR/Downloader.Gen Trojan
G:\Virus\DL\a222bc67eea768d7470b52d5a5a47b2d
    [DETECTION] Is the TR/ATRAPS.Gen2 Trojan
G:\Virus\DL\c3233590ceae7b16929e60d5e4af3936
    [DETECTION] Contains recognition pattern of the RKIT/Tiny.GL root kit
G:\Virus\DL\c94feebfa42dfba3658454e5889d51d6
    [DETECTION] Contains a recognition pattern of the (harmful) BDS/Prorat.19.I back-door program
G:\Virus\DL\daa4b6e392478d7ea3a4b6c82d79a77d
    [DETECTION] Is the TR/Rootkit.Gen Trojan
G:\Virus\DL\f0d87aae69e95ad547f213f905768bec
    [DETECTION] Is the TR/Spy.Gen Trojan
G:\Virus\DL\f8b8a22f61d1923650f0cebfc24051d6
    [DETECTION] Is the TR/Rootkit.Gen Trojan

z2665

mse miss 9x,to

sam.to

to kl,ll

62590423

MP 特征 MISS 15 TO

悠柚

IObit miss 15，to

HC303

Please find a detailed report concerning each individual sample below:

Filename Result  2dfcc4940fba4bc26f28...33  MALWARE

The file '2dfcc4940fba4bc26f282669675d5f33' has been determined to be 'MALWARE'. Our analysts named the threat TR/FraudPack.qvm. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.01.05.144.
Filename Result  7ef96fa8a1bf83115c8d...19  CLEAN

The file '7ef96fa8a1bf83115c8d0119ee623319' has been determined to be 'CLEAN'. Our analysts did not discover any malicious content.
Filename Result  b8df4b999e091a051ce6...4b  MALWARE

The file 'b8df4b999e091a051ce6a0a7b7a4c14b' has been determined to be 'MALWARE'. Our analysts named the threat TR/FakeAlert.GV.10. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection will be added to our virus definition file (VDF) with one of the next updates.

kingmuro

2009-8-21 20:58:45        GXF        2172        Sign of "Win32:Prosti-E [Trj]" has been found in "D:\My Documents\桌面\test\DL\3e52a5ac888bed6411c4f6f48c7ea2e4\[Embedded_R#MYDLL]" file.  
2009-8-21 20:58:49        GXF        2172        Sign of "Win32:Rootkit-CN [Trj]" has been found in "D:\My Documents\桌面\test\DL\4e3b3b6b9fed6b6900c2993c88fb2a6b\$[32]\01.sys" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Rootkit-CN [Trj]" has been found in "D:\My Documents\桌面\test\DL\daa4b6e392478d7ea3a4b6c82d79a77d" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Prorat-IR [Trj]" has been found in "D:\My Documents\桌面\test\DL\c94feebfa42dfba3658454e5889d51d6" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Crypt-EWZ [Drp]" has been found in "D:\My Documents\桌面\test\DL\7185a27841fffea7e732ae17598c9ef0\[Upack]\[Embedded_Ia#070d0]\[Embedded_Ia#60d0]" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Crypt-EWZ [Drp]" has been found in "D:\My Documents\桌面\test\DL\1dfe55b4a7be4cfc98ddfa1ed327f9d2" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Small-MTB [Trj]" has been found in "D:\My Documents\桌面\test\DL\31d714c0537c79aeca222e12f5efe6e3" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Agent-AEVX [Trj]" has been found in "D:\My Documents\桌面\test\DL\9bf69685a427ff6d658ea83253fec71f" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Dogrobot-C [Rtk]" has been found in "D:\My Documents\桌面\test\DL\f8b8a22f61d1923650f0cebfc24051d6" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Trojan-gen {Other}" has been found in "D:\My Documents\桌面\test\DL\7e5fbb2d3c032905366b2e6d5c349d4f" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:JunkPoly [Cryp]" has been found in "D:\My Documents\桌面\test\DL\8f3192a026450a8c14171e473699b357" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Agent-ACMH [Drp]" has been found in "D:\My Documents\桌面\test\DL\668032311dde69b9340671db7e72aa97\[UPX]" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:JunkPoly [Cryp]" has been found in "D:\My Documents\桌面\test\DL\150e919309cee77f4f86fdd738ffad32" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Agent-ACMH [Drp]" has been found in "D:\My Documents\桌面\test\DL\04fdb124a79475bfe2c0e416e13215cd\[UPX]" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Trojan-gen {Other}" has been found in "D:\My Documents\桌面\test\DL\18b925a486a13fe1cfcbf8ec56ec1dfc" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Dogrobot [Drp]" has been found in "D:\My Documents\桌面\test\DL\92b506262d65a5acc79b6551bbb89225" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Rootkit-CN [Trj]" has been found in "D:\My Documents\桌面\test\DL\f0d87aae69e95ad547f213f905768bec" file.  
2009-8-21 20:58:50        GXF        2172        Sign of "Win32:Trojan-gen {Other}" has been found in "D:\My Documents\桌面\test\DL\4325628be927238886b70351621a28be" file.

悠柚

FSCS miss 8

yunhan123

病毒        2009-08-21  21:28:51        病毒在文件C:\Documents and Settings\Administrator\桌面\f0d87aae69e95ad547f213f905768bec中        Heur.Win32.Generic.c        处理成功（操作：删除）       
病毒        2009-08-21  21:28:51        病毒在文件C:\Documents and Settings\Administrator\桌面\3f1f9bb69e0ab24cd5173ff536eae1f4中        Win32.Troj.Junkcode.110592(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:51        病毒在文件C:\Documents and Settings\Administrator\桌面\92b506262d65a5acc79b6551bbb89225中        Win32.Troj.Agent.na.38400(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:50        病毒在文件C:\Documents and Settings\Administrator\桌面\18b925a486a13fe1cfcbf8ec56ec1dfc中        Win32.Troj.Agent.77824(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:50        病毒在文件C:\Documents and Settings\Administrator\桌面\04fdb124a79475bfe2c0e416e13215cd中        Win32.Troj.OnlineGamesT.oc.53400(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:50        病毒在文件C:\Documents and Settings\Administrator\桌面\150e919309cee77f4f86fdd738ffad32中        Win32.Troj.StartPage.19747(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:49        病毒在文件C:\Documents and Settings\Administrator\桌面\668032311dde69b9340671db7e72aa97中        Win32.Troj.OnlineGamesT.oc.53400(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:49        病毒在文件C:\Documents and Settings\Administrator\桌面\8f3192a026450a8c14171e473699b357中        Win32.PSWTroj.GameOLx.gv.17517(盗号木马)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:49        病毒在文件C:\Documents and Settings\Administrator\桌面\7e5fbb2d3c032905366b2e6d5c349d4f中        Win32.Troj.JunkDll.15912(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:48        病毒在文件C:\Documents and Settings\Administrator\桌面\a222bc67eea768d7470b52d5a5a47b2d中        Win32.Troj.KillAV.12800(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:47        病毒在文件C:\Documents and Settings\Administrator\桌面\f8b8a22f61d1923650f0cebfc24051d6中        Win32.TrojDownloader.Mnless.16384(对抗型下载器)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:47        病毒在文件C:\Documents and Settings\Administrator\桌面\9bf69685a427ff6d658ea83253fec71f中        Win32.Troj.Agent.av.11776(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:47        病毒在文件C:\Documents and Settings\Administrator\桌面\31d714c0537c79aeca222e12f5efe6e3中        Win32.TrojDownloader.small.6656(木马下载器)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:47        病毒在文件C:\Documents and Settings\Administrator\桌面\c3233590ceae7b16929e60d5e4af3936中        Win32.Hack.Rootkit.gk.2304(后门程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:46        病毒在文件C:\Documents and Settings\Administrator\桌面\7185a27841fffea7e732ae17598c9ef0中        Win32.Troj.DownBMW.113160(木马程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:41        病毒在文件C:\Documents and Settings\Administrator\桌面\c94feebfa42dfba3658454e5889d51d6中        Win32.Hack.Prorat.19.356517(后门程序)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:41        病毒在文件C:\Documents and Settings\Administrator\桌面\daa4b6e392478d7ea3a4b6c82d79a77d中        Win32.Troj.SysJunkT.hh(NS窥视器)        处理成功（操作：删除）       
病毒        2009-08-21  21:28:38        病毒在文件C:\Documents and Settings\Administrator\桌面\3e52a5ac888bed6411c4f6f48c7ea2e4中        Win32.Hack.Rejoice.b.129536(后门程序)        处理成功（操作：删除）       
信息        2009-08-21  18:24:11        金山毒霸 18个