[病毒样本] 9x

显示全部楼层 · 发表于 2009-9-25 16:10:24

2009/9/25 16:08:22 已隔离病毒 HEUR:Trojan.Win32.Generic G:\Temp\Virus\Virus.rar/MPEG-2.exe
2009/9/25 16:08:27 已清除木马程序 Trojan-GameThief.Win32.Magania.bwsr G:\Temp\Virus\Virus.rar/zxTT.exe
2009/9/25 16:08:27 已清除木马程序 Trojan-GameThief.Win32.Magania.bwsr G:\Temp\Virus\Virus.rar/tlTT.exe
2009/9/25 16:08:27 已清除木马程序 Trojan-GameThief.Win32.Magania.bwsr G:\Temp\Virus\Virus.rar/muTT.exe
2009/9/25 16:08:27 已清除木马程序 Trojan-Dropper.Win32.Agent.bdmf G:\Temp\Virus\Virus.rar/server.exe
2009/9/25 16:08:27 已清除木马程序 Trojan-Downloader.Win32.Geral.hwq G:\Temp\Virus\Virus.rar/dd.exe

To KL

显示全部楼层 · 发表于 2009-9-25 16:12:27

E:\Virus.rar > RAR > erea.exe - 正常
E:\Virus.rar > RAR > MPEG-2.exe - Win32/Dialer.NEW 特洛伊木马的变种
E:\Virus.rar > RAR > muTT.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马
E:\Virus.rar > RAR > server.exe - Win32/KillAV.NFE 特洛伊木马
E:\Virus.rar > RAR > tlTT.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马的变种
E:\Virus.rar > RAR > zxTT.exe - Win32/PSW.OnLineGames.NRD 特洛伊木马
E:\Virus.rar > RAR > 909.exe - Win32/VB.OMP 特洛伊木马
E:\Virus.rar > RAR > abc.exe - 正常
E:\Virus.rar > RAR > dd.exe - 可能是 Win32/AutoRun.Agent.IE 蠕虫的变种

Begin scan in 'E:\Virus.rar'
E:\Virus.rar
  [0] Archive type: RAR
--> erea.exe
   [1] Archive type: RSRC
   [DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
--> MPEG-2.exe
   [1] Archive type: RSRC
   [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
--> muTT.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
--> server.exe
   [DETECTION] Is the TR/Drop.Agent.bdmf.5 Trojan
--> tlTT.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
--> zxTT.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
--> 909.exe
   [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
--> abc.exe
   [DETECTION] Is the TR/Downloader.Gen Trojan
--> dd.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan

[ 本帖最后由王子带着刀于 2009-9-25 16:16 编辑 ]

显示全部楼层 · 发表于 2009-9-25 16:21:19

4 to IObit

显示全部楼层 · 发表于 2009-9-25 16:22:10

Multi Command-Line Scanner 报告
-------------------------------------------------------------------------
D:\TDDownload\Virus\909.exe
MD5 Hash: 382F841054B80F59A09A5EA87AA40D35

A-squared ----- Gen.Trojan!IK
AntiVir V7 ----- TR/Crypt.FKM.Gen
BitDefender ----- Gen:Trojan.Heur.biedX4HD!2hb
ClamWin -----Nothing
Dr.Web V5 -----Nothing
F-Prot ----- W32/Heuristic-210!Eldorado
Mcafee -----Nothing
Panda -----Nothing
Sophos ----- Mal/TibsPk-A
VBA32 -----Nothing

*** 5/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\abc.exe
MD5 Hash: 4651B8D1BBA2B8E6E3686B987D0492CC

A-squared ----- Trojan-PWS.Win32.Agent!IK
AntiVir V7 -----Nothing
BitDefender -----Nothing
ClamWin ----- PUA.Packed.NPack-2
Dr.Web V5 -----Nothing
F-Prot ----- W32/Heuristic-210!Eldorado
Mcafee -----Nothing
Panda -----Nothing
Sophos -----Nothing
VBA32 -----Nothing

*** 3/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\dd.exe
MD5 Hash: 2F789D4C38102730560CFDF9ED98B889

A-squared ----- Trojan-Downloader.Win32.Geral!IK
AntiVir V7 ----- TR/Crypt.XDR.Gen
BitDefender ----- Generic.Malware.SP!Pk!Tkg.040AC783
ClamWin -----Nothing
Dr.Web V5 ----- Trojan.MulDrop.origin
F-Prot ----- W32/LdPinch.N.gen!Eldorado
Mcafee ----- Suspect-26!2F789D4C3810.
Panda -----Nothing
Sophos ----- Mal/Behav-156
VBA32 ----- Win32.Trojan.Downloader

*** 8/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\erea.exe
MD5 Hash: 71A28A74DD4B5656C051EF329EA37D4D

A-squared ----- Trojan-Dropper.Win32.Nemqe!IK
AntiVir V7 ----- TR/Crypt.ULPM.Gen
BitDefender -----Nothing
ClamWin -----Nothing
Dr.Web V5 -----Nothing
F-Prot ----- W32/Heuristic-MUX!Eldorado
Mcafee -----Nothing
Panda ----- Generic Trojan
Sophos ----- Mal/HckPk-E
VBA32 -----Nothing

*** 5/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\MPEG-2.exe
MD5 Hash: 99A8F9568F29D683CCD7FEA285FB33C4

A-squared ----- Virus.Win32.Dialer.1313!IK
AntiVir V7 ----- BDS/Backdoor.Gen
BitDefender -----Nothing
ClamWin ----- PUA.Packed.NPack-2
Dr.Web V5 ----- BackDoor.Pigeon.origin
F-Prot ----- W32/PcClient.A.gen!Eldorado
Mcafee ----- New Malware.aq
Panda ----- Suspicious file
Sophos ----- Troj/Farfli-Gen
VBA32 ----- BScope.Dropper.Gen.7

*** 9/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\muTT.exe
MD5 Hash: 28B62C8D906C45DE840EC1EFE04E5F4F

A-squared ----- Trojan-PWS.Win32.LdPinch!IK
AntiVir V7 ----- TR/Crypt.XDR.Gen
BitDefender ----- Generic.Onlinegames.14.E3557102
ClamWin ----- Trojan.Crypt-215
Dr.Web V5 ----- Trojan.PWS.Wsgame.13092
F-Prot ----- W32/OnlineGames.CA.gen!Eldorado
Mcafee ----- Generic Dropper.eb
Panda ----- Trj/Lineage.BZE
Sophos ----- Mal/Generic-A
VBA32 ----- Trojan-GameThief.Win32.Magania.bwsi

*** 10/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\server.exe
MD5 Hash: AA65456ADEBC2F170F92E65694CC8061

A-squared ----- Trojan-Dropper.Agent!IK
AntiVir V7 ----- TR/Drop.Agent.bdmf.5
BitDefender -----Nothing
ClamWin -----Nothing
Dr.Web V5 -----Nothing
F-Prot -----Nothing
Mcafee -----Nothing
Panda -----Nothing
Sophos ----- Mal/Generic-A
VBA32 ----- Win32.Trojan.Downloader

*** 4/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\tlTT.exe
MD5 Hash: 97D3993E92194C74598B84CA4DC96C66

A-squared ----- Trojan-PWS.Win32.LdPinch!IK
AntiVir V7 ----- TR/Crypt.XDR.Gen
BitDefender ----- Generic.Onlinegames.14.76EE12C2
ClamWin ----- Trojan.Crypt-215
Dr.Web V5 ----- Trojan.PWS.Wsgame.13092
F-Prot ----- W32/OnlineGames.CA.gen!Eldorado
Mcafee ----- Generic Dropper.eb
Panda ----- Trj/Lineage.BZE
Sophos ----- Mal/Emogen-R
VBA32 ----- Trojan-GameThief.Win32.Magania.bwsi

*** 10/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------
D:\TDDownload\Virus\zxTT.exe
MD5 Hash: 3342FC786D9D6223710F64F59AF712A6

A-squared ----- Trojan-PWS.Win32.LdPinch!IK
AntiVir V7 ----- TR/Crypt.XDR.Gen
BitDefender ----- Generic.Onlinegames.14.E537E8F1
ClamWin ----- Trojan.Crypt-215
Dr.Web V5 ----- Trojan.PWS.Wsgame.13092
F-Prot ----- W32/OnlineGames.CA.gen!Eldorado
Mcafee ----- Generic Dropper.eb
Panda ----- Trj/Lineage.BZE
Sophos ----- Troj/PSW-HE
VBA32 ----- Trojan-GameThief.Win32.Magania.bwsi

*** 10/10 杀毒引擎在文件中发现病毒 ***
-------------------------------------------------------------------------

任务完成 @ 2009-09-25 星期五 16:22:21.25
注意: 结果可能与GUI版本不同。

显示全部楼层 · 发表于 2009-9-25 17:04:25

remains to PA & Microsoft

显示全部楼层 · 发表于 2009-9-25 17:06:19

瑞星2010

显示全部楼层 · 发表于 2009-9-25 17:07:24

RIS 2010
Trojan.PSW.Win32.KeyPass.c
Trojan.PSW.Win32.GameOnline.dvt
Trojan.Win32.Generic.11ED9F1D
Trojan.PSW.Win32.GameOnline.dvt
Trojan.PSW.Win32.GameOnline.dxx
Trojan.DL.Win32.Nodef.ahr
Worm.Win32.Autorun.tbj

显示全部楼层 · 发表于 2009-9-25 18:06:39

红伞报毒 TR/Crypt.ULPM.Gen

显示全部楼层 · 发表于 2009-9-25 18:14:06

红伞kill all
[0] Archive type: RAR
--> erea.exe
   [1] Archive type: RSRC
   [DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
--> MPEG-2.exe
   [1] Archive type: RSRC
   [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
--> muTT.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
--> server.exe
   [DETECTION] Is the TR/Drop.Agent.bdmf.5 Trojan
--> tlTT.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
--> zxTT.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
--> 909.exe
   [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
--> abc.exe
   [DETECTION] Is the TR/Downloader.Gen Trojan
--> dd.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan

显示全部楼层 · 发表于 2009-9-25 18:35:38

賣咖啡都殺掉了

[病毒样本] 9x

本帖子中包含更多资源

本帖子中包含更多资源