No replies to this topic

[B-boy/StyLe/]

Most of them seems to be missed by MBAM ? (morphed versions ?)

Quote

Begin scan in 'C:\Users\B-boy\Desktop\Qoobox.zip'
C:\Users\B-boy\Desktop\Qoobox.zip
[0] Archive type: ZIP
[NOTE] A backup was created as '4ac442ad.qua' ( QUARANTINE )
[NOTE] The file was deleted!
--> Qoobox/Quarantine/C/WINDOWS/system32/advpacka.exe.vir
[DETECTION] Is the TR/Crypt.ZPACK.Gen Trojan
--> Qoobox/Quarantine/C/WINDOWS/system32/drivers/550379bf.sys.vir
[DETECTION] Is the TR/Rootkit.Gen Trojan
--> Qoobox/Quarantine/C/WINDOWS/system32/wuauclt.exe.wusetup.176015.bak.vir
[DETECTION] Is the TR/Drop.Softomat.AN Trojan
--> Qoobox/Quarantine/C/WINDOWS/system32/wuaueng.dll.wusetup.178187.bak.vir
[DETECTION] Is the TR/Trash.Gen Trojan
--> Qoobox/Quarantine/C/WINDOWS/system32/drivers/_550379bf_.sys.zip
[1] Archive type: ZIP
--> 550379bf.sys
[DETECTION] Is the TR/Rootkit.Gen Trojan
--> 550379bf.sys.1
[DETECTION] Is the TR/Rootkit.Gen Trojan

Quote

Begin scan in 'C:\Users\B-boy\Desktop\Qoobox 2.zip'
C:\Users\B-boy\Desktop\Qoobox 2.zip
[0] Archive type: ZIP
[NOTE] A backup was created as '4ac442d8.qua' ( QUARANTINE )
[NOTE] The file was deleted!
--> Qoobox 2/Quarantine/C/WINDOWS/system32/mxznqe.dll.vir
[DETECTION] Is the TR/Drop.Softomat.AN Trojan
--> Qoobox 2/Quarantine/C/WINDOWS/system32/_mxznqe_.dll.zip
[1] Archive type: ZIP
--> mxznqe.dll
[DETECTION] Is the TR/Crypt.ZPACK.Gen Trojan
--> mxznqe.dll.1
[DETECTION] Is the TR/Drop.Softomat.AN Trojan

http://rapidshare.de/files/47797870/Qoobox.zip.html

http://rapidshare.de/files/47797874/Qoobox_2.zip.html

I have more Conficker *.dlls but they are encrypted by trendmicro sysclean.com and can't be decrypted with VSEncode.exe and are unusable.

http://oit.ncsu.edu/...arantined-files

http://www.mykmblog.net/mblog/mblog/p/tren...ted%20Files.htm