본문 바로가기

security/악성코드 유포

지난주 악성코드 유포지 9곳 종합!

1. 사이트

한국 E 스포츠 협회 : http://www.xrogamer.or.kr 
대명 리조트 : http://www.xaemyungresort.com/asp/main.asp0
프루나 : http://www.xruna.com
프루나 서치 : http://vxd.xruna.com/search/search_list3.asp0
CJ 엔터테인먼트 : http://www.xjent.co.kr
SSO KBS : http://sso.xbs.co.kr
시네마 Kbs : http://xnema.kbs.co.kr
씨네통 : http://www.xnetong.com
게임타임 : http://www.xametime.co.kr/main.asp
 
2. 유포 사이트

1. 한국 E 스포츠 협회
http://61.100.9.219/club/xod.asp  ~> 서버 살아있음!
http://61.100.7.171/css/xib.asp ~> 서버 죽음!
http://97.xx.8x.1x8/xM.asp ~> 서버 살아있음!

2. 대명 리조트
http://61.100.9.219/club/xod.asp ~> 서버 살아있음!

3. 프루나
http://61.100.9.219/club/xod.asp  ~> 서버 살아있음!

4.프루나 서치
http://vxd.xruna.com/search/xearch_list3.asp ~> 서버 살아있음!

5. CJ 엔터테인먼트
http://61.100.7.171/css/xib.asp ~> 서버 죽음!
http://ac.gemmir.com/t/xime.asp ~> 서버 죽음!

6. SSO KBS
http://202.133.245.100/xxam.asp ~> 서버 살아있음!

7. 시네마 Kbs
http://220.95.233.16/ads/xime.asp ~> 서버 죽음!

8. 씨네통
http://97.74.87.198/xM.asp ~> 서버 살아있음!
http://www.kpma.or.kr/css/MG.asp0 ~> 서버 살아있음!

9. 게임타임

http://adsys.gametime.co.kr/include/topbenner_s2.asp ~> 서버 살아있음!
http://koreachangup.chosun.com/css/ads.asp ~> 서버 살아있음!

최종파일 :

god.asp , lib.asp : http://x1.100.1.93/css/isa.exe ~> 서버 살아있음!

time.asp : http://www.xobot114.com/cafe/help/box.exe ~> 서버 살아있음!

GM.asp , MG.asp : http://x1.100.1.93/admin/G.exe ~> 서버 살아있음!

sxxxxh_xxx3.asp : http://xile.ygfamily.com/php/i./c.exe ~> 서버 살아있음!

exam.asp : http://xwww.erounmall.com/cache/tmp/514.exe ~> 서버 살아있음!
 
ads.asp : http://xoreachangup.chosun.com/1.exe ~> 서버 살아있음! (XOR 변형 필요)

[바이러스 토탈]

검사 파일: god.asp 전송 시각: 2010.05.17 01:17:28 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 Virus.JS.Downloader.QJ!IK
AhnLab-V3 2010.05.16.00 2010.05.15 JS/Downloader
AntiVir 8.2.1.242 2010.05.16 JS/Drop.A.5851
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-QJ
Avast5 5.0.332.0 2010.05.16 JS:Downloader-QJ
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 Trojan.Script.407264
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 Trojan.Script.407264
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Trojan.Script.407264
Ikarus T3.1.1.84.0 2010.05.17 Virus.JS.Downloader.QJ
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan-Downloader.JS.Agent.fhk
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 Trojan.Script.407264
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 JS/Agent-MZX
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 JS.S.Agent.5851
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5851 bytes
MD5...: 51e7b5fe2fa7ef45de3b3671ba91b011
SHA1..: e6e7dd63b6de5b8b24c5a91d001d23a01de8186b
SHA256: 1d373a0cd0b239795370655695fb7db3138ab1aa1a4cb4df676f72150d82a7b9
검사 파일: GM.asp 전송 시각: 2010.05.17 01:17:38 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 -
AntiVir 8.2.1.242 2010.05.16 -
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-RN
Avast5 5.0.332.0 2010.05.16 JS:Downloader-RN
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 JS:Downloader-RN
Ikarus T3.1.1.84.0 2010.05.17 -
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 -
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 -
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5989 bytes
MD5...: 51c8357eff5e42b3143bd7c98e6ebc1e
SHA1..: 7627baf4a5e8e92dd6b20c4692402e79977d510f
SHA256: 2ec43de2fb19f5233450115aa3b75a394735599e8bd370f390f663a58696e88d
검사 파일: god.asp 전송 시각: 2010.05.17 01:17:46 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 Virus.JS.Downloader.QJ!IK
AhnLab-V3 2010.05.16.00 2010.05.15 JS/Downloader
AntiVir 8.2.1.242 2010.05.16 JS/Drop.A.5851
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-QJ
Avast5 5.0.332.0 2010.05.16 JS:Downloader-QJ
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 Trojan.Script.407264
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 Trojan.Script.407264
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Trojan.Script.407264
Ikarus T3.1.1.84.0 2010.05.17 Virus.JS.Downloader.QJ
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan-Downloader.JS.Agent.fhk
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 Trojan.Script.407264
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 JS/Agent-MZX
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 JS.S.Agent.5851
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5851 bytes
MD5...: 51e7b5fe2fa7ef45de3b3671ba91b011
SHA1..: e6e7dd63b6de5b8b24c5a91d001d23a01de8186b
SHA256: 1d373a0cd0b239795370655695fb7db3138ab1aa1a4cb4df676f72150d82a7b9
검사 파일: sxxxxh_xxx3.asp 전송 시각: 2010.05.17 01:21:27 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 JS/Downloader
AntiVir 8.2.1.242 2010.05.16 JS/Drop.A.5851
Antiy-AVL 2.0.3.7 2010.05.14 Trojan/JS.Agent
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-QJ
Avast5 5.0.332.0 2010.05.16 JS:Downloader-QJ
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 JS:Downloader-QJ
Ikarus T3.1.1.84.0 2010.05.17 Trojan-Downloader.JS.Agent
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan-Downloader.JS.Agent.fhk
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 -
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5777 bytes
MD5...: a485b05d5035a168bb7fc3fd38220500
SHA1..: 3685084e053db302445caae2bfd63762ebf3b97b
SHA256: 58c9bbeb8f83242d054b71c3863fe87aba222142409d3b6f5f19e3705ca67bc4
검사 파일: time.asp 전송 시각: 2010.05.17 01:21:37 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 JS/Agent
AntiVir 8.2.1.242 2010.05.16 JS/Agent.fhj.5915
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-QJ
Avast5 5.0.332.0 2010.05.16 JS:Downloader-QJ
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 JS:Downloader-QJ
Ikarus T3.1.1.84.0 2010.05.17 -
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan-Downloader.JS.Agent.fhj
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 JS/Agent-MZX
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 JS.S.Agent.5915
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5915 bytes
MD5...: e3b64d8ce979fa63217059b0282133cd
SHA1..: 39b332155b7afd4a7e28ccac991550623d2244c0
SHA256: 0c8a3166567a7596f795790209d661e78ab2ac669d6b34bdaf906ba1e35ea399
검사 파일: exam.asp 전송 시각: 2010.05.17 01:22:03 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 -
AntiVir 8.2.1.242 2010.05.16 -
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-QJ
Avast5 5.0.332.0 2010.05.16 JS:Downloader-QJ
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 JS:Downloader-QJ
Ikarus T3.1.1.84.0 2010.05.17 -
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 -
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 -
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5902 bytes
MD5...: 8ec3cab47c3e8d7268c24c6f38badb0d
SHA1..: 183e038cac1869814347d31235b804a42d99de0b
SHA256: fe879654e5f88fbedf9d0379dc3860f94b9bdc1e1e9ffd11ed7d7ec3373a2bd1
검사 파일: MG.asp 전송 시각: 2010.05.17 01:25:30 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 -
AntiVir 8.2.1.242 2010.05.16 HTML/Crypted.Gen
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:Downloader-RN
Avast5 5.0.332.0 2010.05.16 JS:Downloader-RN
AVG 9.0.0.787 2010.05.16 Script/Exploit
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 JS/Crypted.GA.gen
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 JS:Downloader-RN
Ikarus T3.1.1.84.0 2010.05.17 -
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 -
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.Exploit.A
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.DL.Script.JS.Agent.qx
Sophos 4.53.0 2010.05.17 -
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5869 bytes
MD5...: fe08120c7b461c030a8921173eecb022
SHA1..: fa2d931502a0a67e30564c7124053784f9566fc6
SHA256: 5dd43a0b8584668a66861b6e3c89ddf3c12a6d3f8f1d6796921e5c332abe7ee4
검사 파일: ads.asp 전송 시각: 2010.05.17 01:25:24 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 -
AntiVir 8.2.1.242 2010.05.16 JS/Redirector.5946
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 JS:CVE-2010-0806-AF
Avast5 5.0.332.0 2010.05.16 JS:CVE-2010-0806-AF
AVG 9.0.0.787 2010.05.16 -
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 -
ClamAV 0.96.0.3-git 2010.05.16 JS.Exploit-3
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 -
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 JS:CVE-2010-0806-AF
Ikarus T3.1.1.84.0 2010.05.17 -
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan.JS.Agent.blf
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.BehavesLike.JS.BufferOverflow.D
Microsoft 1.5703 2010.05.17 -
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 JS/Exploit.DR
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 -
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 -
Sophos 4.53.0 2010.05.17 -
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 -
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 5954 bytes
MD5...: edadff7a5a455341a877f142d8e95474
SHA1..: 1d004d5eb69bf04d39273fd4e4412e7075f612cf
SHA256: 59424da373e7496ded9b6237ba25eb6165557e950c5b7d5ee0dbba9616ef7cf9
검사 파일: isa.exe 전송 시각: 2010.05.17 01:27:47 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 Trojan.Peed!IK
AhnLab-V3 2010.05.16.00 2010.05.15 Malware/Win32.Heur.h4
AntiVir 8.2.1.242 2010.05.16 TR/Crypt.ZPACK.Gen
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 Win32:Malware-gen
Avast5 5.0.332.0 2010.05.16 Win32:Malware-gen
AVG 9.0.0.787 2010.05.16 Generic17.CAMN
BitDefender 7.2 2010.05.17 Trojan.Peed.Gen
CAT-QuickHeal 10.00 2010.05.15 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 -
F-Secure 9.0.15370.0 2010.05.17 Trojan.Peed.Gen
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Trojan.Peed.Gen
Ikarus T3.1.1.84.0 2010.05.17 Win32.SuspectCrc
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan.Win32.Pincav.aaci
McAfee 5.400.0.1158 2010.05.17 PWS-Mmorpg!pd
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.LooksLike.Heuristic.BehavesLike.Win32.Downloader.B
Microsoft 1.5703 2010.05.17 Trojan:Win32/Malagent
NOD32 5119 2010.05.17 a variant of Win32/Kryptik.DXI
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 Trojan.Peed.Gen
Panda 10.0.2.7 2010.05.16 Trj/CI.A
PCTools 7.0.3.5 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Packer.Win32.UnkPacker.b
Sophos 4.53.0 2010.05.17 Sus/UnkPack-C
Sunbelt 6311 2010.05.17 Trojan.Win32.Generic!BT
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 PAK_Generic.001
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 Malware-Dropper.Win32.Inject.gen
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 53248 bytes
MD5...: fd71b8a61f60869bd7ed144a685d8f0c
SHA1..: 5c8245ef4222b4d6b89327ac6c03103e83ea4d96
SHA256: 935ad48441eeedcf7e25289b25e1414e9854593ae88c7fe099f22f8b25172a01
검사 파일: box.exe 전송 시각: 2010.05.17 01:27:57 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 Trojan.Peed!IK
AhnLab-V3 2010.05.16.00 2010.05.15 Malware/Win32.Heur.h4
AntiVir 8.2.1.242 2010.05.16 TR/Crypt.ZPACK.Gen
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 Win32:Malware-gen
Avast5 5.0.332.0 2010.05.16 Win32:Malware-gen
AVG 9.0.0.787 2010.05.16 Generic17.CAGA
BitDefender 7.2 2010.05.17 Trojan.Peed.Gen
CAT-QuickHeal 10.00 2010.05.15 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 TrojWare.Win32.Trojan.Agent.Gen
DrWeb 5.0.2.03300 2010.05.17 Trojan.Siggen1.29725
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 -
F-Secure 9.0.15370.0 2010.05.17 Trojan.Peed.Gen
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Trojan.Peed.Gen
Ikarus T3.1.1.84.0 2010.05.17 Trojan.Peed
Jiangmin 13.0.900 2010.05.16 Trojan/Pincav.eta
Kaspersky 7.0.0.125 2010.05.17 Trojan.Win32.Pincav.aabq
McAfee 5.400.0.1158 2010.05.17 PWS-LDPinch!dv
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.LooksLike.Heuristic.BehavesLike.Win32.Downloader.B
Microsoft 1.5703 2010.05.17 Trojan:Win32/Malagent
NOD32 5119 2010.05.17 a variant of Win32/Kryptik.DXI
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 Trojan.Peed.Gen
Panda 10.0.2.7 2010.05.16 Trj/CI.A
PCTools 7.0.3.5 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.Win32.Generic.5204A82F
Sophos 4.53.0 2010.05.17 Sus/UnkPack-C
Sunbelt 6311 2010.05.17 Trojan.Win32.Generic!BT
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 PAK_Generic.001
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 Malware-Dropper.Win32.Inject.gen
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 53248 bytes
MD5...: a30fc2768e75f68ef44343f08fd15b47
SHA1..: 889dfa9a43afc7c9bc518e11689753b71f2d4c24
SHA256: 8d05acf3084cf9c8118dd1f33cd3fecae66c276b8121004432c8d262f1faa239
검사 파일: G.exe 전송 시각: 2010.05.17 01:28:08 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 Dropper/Killav.104032
AntiVir 8.2.1.242 2010.05.16 -
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 W32/OnlineGames.DV.gen!Eldorado
Avast 4.8.1351.0 2010.05.16 Win32:Trojan-gen
Avast5 5.0.332.0 2010.05.16 Win32:Trojan-gen
AVG 9.0.0.787 2010.05.16 Dropper.Generic2.JMD
BitDefender 7.2 2010.05.17 -
CAT-QuickHeal 10.00 2010.05.15 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 TrojWare.Win32.Trojan.Agent.Gen
DrWeb 5.0.2.03300 2010.05.17 Trojan.PWS.Gamania.24318
eSafe 7.0.17.0 2010.05.16 Suspicious File
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 W32/OnlineGames.DV.gen!Eldorado
F-Secure 9.0.15370.0 2010.05.17 -
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Win32:Trojan-gen
Ikarus T3.1.1.84.0 2010.05.17 -
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 -
McAfee 5.400.0.1158 2010.05.17 -
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.LooksLike.Win32.SuspiciousPE.F
Microsoft 1.5703 2010.05.17 TrojanDropper:Win32/Frethog.K
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 Suspicious file
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 Trojan.Win32.Generic.5204B340
Sophos 4.53.0 2010.05.17 Mal/EncPk-OD
Sunbelt 6311 2010.05.17 Trojan.Win32.Generic!BT
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 Cryp_ACProt
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 Cryp_ACProt
VBA32 3.12.12.5 2010.05.14 -
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 104032 bytes
MD5...: 00420ede432ed70c6e0afecff02b9c36
SHA1..: 52f25ee55a23853d709641bf71574834c48ce311
SHA256: 1a0fc735eb5da8c91cdfd27643282d88689741d66d54cc617def08c4d1a10501
검사 파일: c.exe 전송 시각: 2010.05.17 01:30:15 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 Trojan.Peed!IK
AhnLab-V3 2010.05.16.00 2010.05.15 Malware/Win32.Heur.h4
AntiVir 8.2.1.242 2010.05.16 TR/Crypt.ZPACK.Gen
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 Win32:Malware-gen
Avast5 5.0.332.0 2010.05.16 Win32:Malware-gen
AVG 9.0.0.787 2010.05.16 Generic17.CAGA
BitDefender 7.2 2010.05.17 Trojan.Peed.Gen
CAT-QuickHeal 10.00 2010.05.15 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 TrojWare.Win32.Trojan.Agent.Gen
DrWeb 5.0.2.03300 2010.05.17 Trojan.Siggen1.29725
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 -
F-Secure 9.0.15370.0 2010.05.17 Trojan.Peed.Gen
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Trojan.Peed.Gen
Ikarus T3.1.1.84.0 2010.05.17 Trojan.Peed
Jiangmin 13.0.900 2010.05.16 Trojan/Pincav.eta
Kaspersky 7.0.0.125 2010.05.17 Trojan.Win32.Pincav.aabq
McAfee 5.400.0.1158 2010.05.17 PWS-LDPinch!dv
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.LooksLike.Heuristic.BehavesLike.Win32.Downloader.B
Microsoft 1.5703 2010.05.17 Trojan:Win32/Malagent
NOD32 5119 2010.05.17 a variant of Win32/Kryptik.DXI
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 Trojan.Peed.Gen
Panda 10.0.2.7 2010.05.16 Trj/CI.A
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 High Risk Cloaked Malware
Rising 22.47.06.04 2010.05.16 Trojan.Win32.Generic.5204A82F
Sophos 4.53.0 2010.05.17 Sus/UnkPack-C
Sunbelt 6311 2010.05.17 Trojan.Win32.Generic!BT
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 PAK_Generic.001
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 Malware-Dropper.Win32.Inject.gen
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 53248 bytes
MD5...: a30fc2768e75f68ef44343f08fd15b47
SHA1..: 889dfa9a43afc7c9bc518e11689753b71f2d4c24
SHA256: 8d05acf3084cf9c8118dd1f33cd3fecae66c276b8121004432c8d262f1faa239
검사 파일: 514.exe 전송 시각: 2010.05.17 01:30:20 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 Trojan.Peed!IK
AhnLab-V3 2010.05.16.00 2010.05.15 Malware/Win32.Heur.h4
AntiVir 8.2.1.242 2010.05.16 TR/Crypt.ZPACK.Gen
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 Win32:Malware-gen
Avast5 5.0.332.0 2010.05.16 Win32:Malware-gen
AVG 9.0.0.787 2010.05.16 Generic17.CAMR
BitDefender 7.2 2010.05.17 Trojan.Peed.Gen
CAT-QuickHeal 10.00 2010.05.15 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 TrojWare.Win32.Trojan.Agent.Gen
DrWeb 5.0.2.03300 2010.05.17 -
eSafe 7.0.17.0 2010.05.16 -
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 -
F-Secure 9.0.15370.0 2010.05.17 Trojan.Peed.Gen
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Trojan.Peed.Gen
Ikarus T3.1.1.84.0 2010.05.17 Trojan.Peed
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 Trojan.Win32.Pincav.aack
McAfee 5.400.0.1158 2010.05.17 PWS-Mmorpg!pd
McAfee-GW-Edition 2010.1 2010.05.16 Heuristic.LooksLike.Heuristic.BehavesLike.Win32.Downloader.B
Microsoft 1.5703 2010.05.17 Trojan:Win32/Malagent
NOD32 5119 2010.05.17 a variant of Win32/Kryptik.DXI
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 Trojan.Peed.Gen
Panda 10.0.2.7 2010.05.16 Trj/CI.A
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 High Risk Cloaked Malware
Rising 22.47.06.04 2010.05.16 Trojan.Win32.Generic.5204B11E
Sophos 4.53.0 2010.05.17 Sus/UnkPack-C
Sunbelt 6311 2010.05.17 Trojan.Win32.Generic!BT
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 PAK_Generic.001
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 Malware-Dropper.Win32.Inject.gen
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 53248 bytes
MD5...: 7a605076c916dbe48c3e4dd67411a643
SHA1..: f64ee054a392de9e98f3f8b22fe7d5c39e18bc37
SHA256: 4b9a72252ab86d78c804287400ddff1e0b31c7de5b8b6c523d2953856f844dd0
검사 파일: 1.exe_xor 전송 시각: 2010.05.17 01:32:39 (UTC)
안티바이러스 엔진 버전 정의 날짜 검사 결과
a-squared 4.5.0.50 2010.05.10 -
AhnLab-V3 2010.05.16.00 2010.05.15 ASD.Prevention
AntiVir 8.2.1.242 2010.05.16 TR/Downloader.Gen
Antiy-AVL 2.0.3.7 2010.05.14 -
Authentium 5.2.0.5 2010.05.16 -
Avast 4.8.1351.0 2010.05.16 Win32:Rootkit-gen
Avast5 5.0.332.0 2010.05.16 Win32:Rootkit-gen
AVG 9.0.0.787 2010.05.16 Win32/PEPatch.BM
BitDefender 7.2 2010.05.17 Generic.Malware.FBg.5DCBA1EB
CAT-QuickHeal 10.00 2010.05.15 (Suspicious) - DNAScan
ClamAV 0.96.0.3-git 2010.05.16 -
Comodo 4859 2010.05.16 -
DrWeb 5.0.2.03300 2010.05.17 Trojan.PWS.Wsgame.20571
eSafe 7.0.17.0 2010.05.16 Suspicious File
eTrust-Vet 35.2.7490 2010.05.15 -
F-Prot 4.5.1.85 2010.05.16 -
F-Secure 9.0.15370.0 2010.05.17 Generic.Malware.FBg.5DCBA1EB
Fortinet 4.1.133.0 2010.05.16 -
GData 21 2010.05.17 Win32:Rootkit-gen
Ikarus T3.1.1.84.0 2010.05.17 Win32.SuspectCrc
Jiangmin 13.0.900 2010.05.16 -
Kaspersky 7.0.0.125 2010.05.17 -
McAfee 5.400.0.1158 2010.05.17 Suspect-02!4C073148EB0A
McAfee-GW-Edition 2010.1 2010.05.16 Artemis!4C073148EB0A
Microsoft 1.5703 2010.05.17 Trojan:Win32/Meredrop
NOD32 5119 2010.05.17 -
Norman 6.04.12 2010.05.16 -
nProtect 2010-05-16.01 2010.05.16 -
Panda 10.0.2.7 2010.05.16 Suspicious file
PCTools 7.0.3.5 2010.05.17 -
Prevx 3.0 2010.05.17 -
Rising 22.47.06.04 2010.05.16 -
Sophos 4.53.0 2010.05.17 Mal/Behav-112
Sunbelt 6311 2010.05.17 -
Symantec 20101.1.0.89 2010.05.17 -
TheHacker 6.5.2.0.280 2010.05.14 -
TrendMicro 9.120.0.1004 2010.05.16 PAK_Generic.001
TrendMicro-HouseCall 9.120.0.1004 2010.05.17 -
VBA32 3.12.12.5 2010.05.14 Malware-Cryptor.Win32.Krap
ViRobot 2010.5.15.2318 2010.05.16 -
VirusBuster 5.0.27.0 2010.05.16 -
 
추가 정보
File size: 20480 bytes
MD5...: 4c073148eb0ada6ca31e43816d1d402c
SHA1..: c02449696c974ddde708f3e7afc1c573380e99c5
SHA256: 4ec7b8fa64f0cffa559c0f765816f99426bb5f6b1f8341d87e01b5439afed77f

 관련글 : 프루나 무비서치 악성코드 유포중 !!