过主流2 (天天更新) (此帖完,1024楼有新帖子地址)

显示全部楼层 · 发表于 2010-11-11 10:11:34

回复 432楼 sam.to 的帖子

to eset

http://samples.eset.com.cn/index ... 7867d8a6611506c23b3

显示全部楼层 · 发表于 2010-11-11 10:17:29

babylon.8.1.0.crack.40063.exe - infected with Trojan.DownLoader1.35832
babylon.8.1.0.keygen.40063.exe - infected with Trojan.DownLoader1.35832
hidownload.platinum.7.93.crack.40063.exe - infected with Trojan.DownLoader1.35832
hidownload.platinum.7.93.keygen.40063.exe - infected with Trojan.DownLoader1.35832
home.network.soft.router.commander.1.1.30.crack.40063.exe - infected with Trojan.DownLoader1.35832
home.network.soft.router.commander.1.1.30.keygen.40063.exe - infected with Trojan.DownLoader1.35832
infradrive.digital.diary.4.6.0.0.crack.40063.exe - infected with Trojan.DownLoader1.35832
infradrive.digital.diary.4.6.0.0.keygen.40063.exe - infected with Trojan.DownLoader1.35832
myspace.friendblasterpro.11.1.2.crack.40063.exe - infected with Trojan.DownLoader1.35832
myspace.friendblasterpro.11.1.2.keygen.40063.exe - infected with Trojan.DownLoader1.35832
spectrals.live.boot.usb.2.0.1.crack.40063.exe - infected with Trojan.DownLoader1.35832
spectrals.live.boot.usb.2.0.1.keygen.40063.exe - infected with Trojan.DownLoader1.35832

大蜘蛛kill all！貌似是同一種病毒啊！

显示全部楼层 · 发表于 2010-11-12 00:32:03

432解压GD kill

显示全部楼层 · 发表于 2010-11-12 20:16:02

432L
avast!5.0全部清空，360网盾则没反应。

显示全部楼层 · 发表于 2010-11-13 13:28:39

本帖最后由 sam.to 于 2010-11-15 16:43 编辑

c7248480d58409bef48ddd08d68295ea  3herosoft.DVD.to.WMV.Converter.3.5.3.0914.Crack.40063.exe_
6a09583740c6467c991712d64e970d7c  3herosoft.DVD.to.WMV.Converter.3.5.3.0914.Keygen.40063.exe_
5ad4b46b8fae511fe39a2cace39fe944  Giant.Matrix.Memory.Washer.6.1.1.19.Crack.40063.exe_
2d01307f3e727a17463ffa41e4ab7e1c  Giant.Matrix.Memory.Washer.6.1.1.19.Keygen.40063.exe_
2b5611eb48282322e5772a33af507c6a  Hitman.Pro.3.5.6.115.Crack.40063.exe_
ec23505103766731353bd0feb5557508  Hitman.Pro.3.5.6.115.Keygen.40063.exe_
229c7b28a1dd67bb6a01cce366aae5bc  KeyScrambler.Premium.2.6.0.1.Crack.40063.exe_
3f82d1bc7430b1c2c581c3835586f199  KeyScrambler.Premium.2.6.0.1.Keygen.40063.exe_
1da0cac2365e20d8baf56b2bc52e409c  QuickTime.Pro.version.7.1.5.120.Crack.40063.exe_
bf9f02f0e17fc4350ca0d123e39dbb74  QuickTime.Pro.version.7.1.5.120.Keygen.40063.exe_
12aa53a28048a99bc87d3dc7fd3a07ca  Splash.PRO.1.2.2.Crack.40063.exe_
c7861662756606828084f4007598c57b  Splash.PRO.1.2.2.Keygen.40063.exe_
8d50d1ab6ca3b2aec6b092562505fd45  Total.Video.Converter.3.5.9.725.Crack.40063.exe_
57e3111c70cdad39030467ee02a348f6  Total.Video.Converter.3.5.9.725.Keygen.40063.exe_

to kl,ll,mcafee,comodo,avira

File ID	Filename	Size (Byte)	Result
25950487	765735-437.rar	85.52 KB	OK

A listing of files contained inside archives alongside their results can be found below:

File ID	Filename	Size (Byte)	Result
25950488	3herosoft.DVD.to...63.exe_	140 KB	UNDER ANALYSIS
25950489	3herosoft.DVD.to...63.exe_	140 KB	UNDER ANALYSIS
25950490	Giant.Matrix.Mem...63.exe_	140 KB	UNDER ANALYSIS
25950491	Giant.Matrix.Mem...63.exe_	140 KB	UNDER ANALYSIS
25950492	Hitman.Pro.3.5.6...63.exe_	140 KB	UNDER ANALYSIS
25950493	Hitman.Pro.3.5.6...63.exe_	140 KB	UNDER ANALYSIS
25950494	KeyScrambler.Pre...63.exe_	140 KB	UNDER ANALYSIS
25950495	KeyScrambler.Pre...63.exe_	140 KB	UNDER ANALYSIS
25950496	QuickTime.Pro.ve...63.exe_	140 KB	UNDER ANALYSIS
25950497	QuickTime.Pro.ve...63.exe_	140 KB	UNDER ANALYSIS
25950498	Splash.PRO.1.2.2...63.exe_	140 KB	UNDER ANALYSIS
25950499	Splash.PRO.1.2.2...63.exe_	140 KB	UNDER ANALYSIS
25950500	Total.Video.Conv...63.exe_	140 KB	UNDER ANALYSIS
25950501	Total.Video.Conv...63.exe_	140 KB	UNDER ANALYSIS

Please find a detailed report concerning each individual sample below:

Filename

Result

3herosoft.DVD.to...63.exe_

MALWARE

The file '3herosoft.DVD.to.WMV.Converter.3.5.3.0914.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

3herosoft.DVD.to...63.exe_

MALWARE

The file '3herosoft.DVD.to.WMV.Converter.3.5.3.0914.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Giant.Matrix.Mem...63.exe_

MALWARE

The file 'Giant.Matrix.Memory.Washer.6.1.1.19.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Giant.Matrix.Mem...63.exe_

MALWARE

The file 'Giant.Matrix.Memory.Washer.6.1.1.19.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Hitman.Pro.3.5.6...63.exe_

MALWARE

The file 'Hitman.Pro.3.5.6.115.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Hitman.Pro.3.5.6...63.exe_

MALWARE

The file 'Hitman.Pro.3.5.6.115.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

KeyScrambler.Pre...63.exe_

MALWARE

The file 'KeyScrambler.Premium.2.6.0.1.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

KeyScrambler.Pre...63.exe_

MALWARE

The file 'KeyScrambler.Premium.2.6.0.1.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

QuickTime.Pro.ve...63.exe_

MALWARE

The file 'QuickTime.Pro.version.7.1.5.120.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

QuickTime.Pro.ve...63.exe_

MALWARE

The file 'QuickTime.Pro.version.7.1.5.120.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Splash.PRO.1.2.2...63.exe_

MALWARE

The file 'Splash.PRO.1.2.2.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Splash.PRO.1.2.2...63.exe_

MALWARE

The file 'Splash.PRO.1.2.2.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Total.Video.Conv...63.exe_

MALWARE

The file 'Total.Video.Converter.3.5.9.725.Crack.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

Filename

Result

Total.Video.Conv...63.exe_

MALWARE

The file 'Total.Video.Converter.3.5.9.725.Keygen.40063.exe_' has been determined to be 'MALWARE'.
Our analysts named the threat TR/Kazy.3226.The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.10.13.238.

显示全部楼层 · 发表于 2010-11-13 13:34:37

360杀毒扫描日志

病毒库版本：6232386
扫描时间：2010-11-13 13:31:49
扫描用时：00:00:14
扫描类型：右键扫描
扫描文件总数：28
威胁总数：14

扫描选项
----------------------
扫描所有文件：是
扫描压缩包：是
发现病毒处理方式：通知用户
扫描系统内存：是
扫描磁盘引导区：是
扫描 Rootkit：否
使用QVM启发式引擎：是

扫描内容
----------------------
C:\Documents and Settings\Administrator\桌面\765735-437\

白名单设置
----------------------

扫描结果
======================
病毒扫描结果
----------------------
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\3herosoft.DVD.to.WMV.Converter.3.5.3.0914.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\3herosoft.DVD.to.WMV.Converter.3.5.3.0914.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Giant.Matrix.Memory.Washer.6.1.1.19.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Giant.Matrix.Memory.Washer.6.1.1.19.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Hitman.Pro.3.5.6.115.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Hitman.Pro.3.5.6.115.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\KeyScrambler.Premium.2.6.0.1.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\KeyScrambler.Premium.2.6.0.1.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\QuickTime.Pro.version.7.1.5.120.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\QuickTime.Pro.version.7.1.5.120.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Splash.PRO.1.2.2.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Splash.PRO.1.2.2.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Total.Video.Converter.3.5.9.725.Crack.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除
C:\Documents and Settings\Administrator\桌面\765735-437\2010-Nov-13-1323\Total.Video.Converter.3.5.9.725.Keygen.40063.exe_ 恶意程序(Gen:Variant.Kazy.3226) 已删除

可疑文件上传结果
----------------------
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\3herosoft.dvd.to.wmv.converter.3.5.3.0914.crack.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\3herosoft.dvd.to.wmv.converter.3.5.3.0914.keygen.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\giant.matrix.memory.washer.6.1.1.19.crack.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\giant.matrix.memory.washer.6.1.1.19.keygen.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\hitman.pro.3.5.6.115.crack.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\hitman.pro.3.5.6.115.keygen.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\keyscrambler.premium.2.6.0.1.crack.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\keyscrambler.premium.2.6.0.1.keygen.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\quicktime.pro.version.7.1.5.120.crack.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\quicktime.pro.version.7.1.5.120.keygen.40063.exe_ 上传成功
c:\documents and settings\administrator\桌面\765735-437\2010-nov-13-1323\splash.pro.1.2.2.crack.40063.exe_ 上传成功

显示全部楼层 · 发表于 2010-11-13 13:55:51

本帖最后由 wshi5195 于 2010-11-13 14:13 编辑

360qvm也过了？伤心啊

显示全部楼层 · 发表于 2010-11-13 13:59:23

437L
BDAV2011
全报 Gen:Variant.Kazy.3226

显示全部楼层 · 发表于 2010-11-13 14:03:58

432L
BDAV2011
Found: Trojan.Generic.KDV.63143

Avira AntiVir
Found: TR/Crypt.EPACK.Gen2 Trojan

显示全部楼层 · 发表于 2010-11-13 14:09:52

437过MSE A2

432解压

437

扫描结果 :

14%的杀软(5/36)报告发现病毒

http://www.virscan.org/report/c552ce78058d23513d2d7b162f5961ab.html

[病毒样本] 过主流2 (天天更新) (此帖完,1024楼有新帖子地址)

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源