lanvin 2008-10-6 02:58
PCSL 可疑恶意网站每日分析 20081006
[code]http://megapliki.interia.pl/download/MEGAPLIKI/SpeedX-pl(pobrane_z_megapliki).exe[/code][quote][font=Trebuchet MS]
[b]Multi Command-Line Scanner Report[/b]
-------------------------------------------------------------------------
D:\Threat Centre\Multi-scan\SpeedX-pl(pobrane_z_megapliki).exe
MD5 Hash: BD28D8DFD4F22E573C554C4037A4AC11
Type: Win32 Executable MS Visual C++ / Extension: .EXE
[color=red]A-squared ----- Trojan-Dialer.HT!IK[/color]
[color=red]Avast ----- Win32:Adware-gen [Adw][/color]
[color=red]Antivir ----- ADSPY/BetterInternet.IH.1[/color]
[i]BitDefender ----- Nothing[/i]
[i]ClamWin ----- Nothing[/i]
[i]Dr.Web ----- Nothing[/i]
[i]NOD32 ----- Nothing[/i]
[i]F-prot ----- Nothing[/i]
[color=red]Ikarus ----- Trojan-Dialer.HT[/color]
[i]Jiangmin ----- Nothing[/i]
[color=red]Kaspersky ----- not-a-virus:AdWare.Win32.BetterInternet.ih[/color]
[i]Kingsoft ----- Nothing[/i]
[color=red]Mcafee ----- Generic PUP.x.[/color]
[i]Microsoft ----- Nothing[/i]
[i]Norman ----- Nothing[/i]
[i]Panda ----- Nothing[/i]
[color=red]Sophos ----- Mal/Packer[/color]
[color=red]Trend Micro ----- Cryp_Yodac[/color]
[color=red]Vba32 ----- AdWare.Win32.BetterInternet.ih[/color]
[color=red]VirusBuster ----- Packed/Yoda[/color]
*** 10/20 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
Task done @ 2008-10-06 星期一 2:49:32.65
[/font][/quote][code]http://dl.targetsaver.com/2k/tsinstall_4_0_4_0_b4.exe[/code][quote][font=Trebuchet MS]
[b]Multi Command-Line Scanner Report[/b]
-------------------------------------------------------------------------
D:\Threat Centre\Multi-scan\tsinstall_4_0_4_0_b4.exe
MD5 Hash: 237A21A936337EFBDB04695C8957DEEE
Type: Wise Installer executable / Extension: .EXE
[color=red]A-squared ----- Trojan-Downloader.Win32.TSUpdate.N!IK[/color]
[color=red]Avast ----- Win32:Adware-gen [Adw][/color]
[color=red]Antivir ----- TR/Dldr.TSUpdat.F.3[/color]
[color=red]BitDefender ----- Trojan.Downloader.Tsupdate.N[/color]
[color=red]ClamWin ----- Trojan.Downloader.TSUp-13[/color]
[color=red]Dr.Web ----- Trojan.DownLoader.5289[/color]
[color=red]NOD32 ----- Win32/TrojanDownloader.TSUpdate.N trojan[/color]
[color=red]F-prot ----- W32/Malware!c615 [/color]
[color=red]Ikarus ----- Trojan-Downloader.Win32.TSUpdate.N[/color]
[i]Jiangmin ----- Nothing[/i]
[color=red]Kaspersky ----- Trojan-Downloader.Win32.TSUpdate.n[/color]
[color=red]Kingsoft ----- Win32.TrojDownloader.TSUpdate.n.1509364[/color]
[color=red]Mcafee ----- Uploader-R.dr.[/color]
[color=red]Microsoft ----- Adware:Win32/TargetSaver[/color]
[color=red]Norman ----- Trojan DLoader.FDHO[/color]
[color=red]Panda ----- Adware/Sqwire[/color]
[color=red]Sophos ----- Mal/Emogen-G[/color]
[color=red]Trend Micro ----- Adware_.6B8AA91E[/color]
[color=red]Vba32 ----- Trojan-Downloader.Win32.TSUpdate.p[/color]
[i]VirusBuster ----- Nothing[/i]
*** 18/20 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
Task done @ 2008-10-06 星期一 2:46:20.71
[/font][/quote][code]http://randomnewnames.com/v/updates/getupd221.exe[/code][quote][font=Trebuchet MS]
[b]Multi Command-Line Scanner Report[/b]
-------------------------------------------------------------------------
D:\Threat Centre\Multi-scan\getupd221.exe
MD5 Hash: BCEF9EE0D0C8204D99C8C819AE958B9A
Type: Win32 Executable MS Visual C++ / Extension: .EXE
[i]A-squared ----- Nothing[/i]
[i]Avast ----- Nothing[/i]
[i]Antivir ----- Nothing[/i]
[i]BitDefender ----- Nothing[/i]
[i]ClamWin ----- Nothing[/i]
[i]Dr.Web ----- Nothing[/i]
[i]NOD32 ----- Nothing[/i]
[i]F-prot ----- Nothing[/i]
[i]Ikarus ----- Nothing[/i]
[i]Jiangmin ----- Nothing[/i]
[i]Kaspersky ----- Nothing[/i]
[i]Kingsoft ----- Nothing[/i]
[i]Mcafee ----- Nothing[/i]
[color=red]Microsoft ----- Adware:Win32/Arove.A[/color]
[i]Norman ----- Nothing[/i]
[i]Panda ----- Nothing[/i]
[i]Sophos ----- Nothing[/i]
[i]Trend Micro ----- Nothing[/i]
[i]Vba32 ----- Nothing[/i]
[i]VirusBuster ----- Nothing[/i]
*** 1/20 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
Task done @ 2008-10-06 星期一 2:52:08.76
[/font][/quote]
wopti 2008-10-6 12:32
[url=http://www.qiannao.com/space/show/onekm/上传分享/3.rar/.page]3.rar[/url]
virus