23X 高质量病毒据说大多数杀软查杀数量不会冲上20

显示全部楼层 · 发表于 2011-2-10 17:09:50

http://dl.dbank.com/c0ju9xv5by
上传至数据银行！
检测结果
AVAST——13个病毒被检测出
金山毒霸——17个病毒被检测出

显示全部楼层 · 发表于 2011-2-10 17:19:36

360杀毒扫描日志

病毒库版本：6727030
扫描时间：2011-02-10 17:15:29
扫描用时：00:00:30
扫描类型：右键扫描
扫描文件总数：32
威胁总数：17

扫描选项
----------------------
扫描所有文件：否
扫描压缩包：否
发现病毒处理方式：自动
扫描系统内存：是
扫描磁盘引导区：是
扫描 Rootkit：是
使用QVM启发式引擎：是

扫描内容
----------------------
C:\Documents and Settings\Administrator\桌面\WPD\WPD\

白名单设置
----------------------

扫描结果
======================
病毒扫描结果
----------------------
C:\Documents and Settings\Administrator\桌面\WPD\WPD\1.exe 木马(Win32/Trojan.36a) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\10.exe 木马释放器(Win32/Trojan.8db) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\11.exe 木马(Win32/Trojan.977) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\12.exe 行为和木马比较相似的程序已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\13.exe 行为和木马比较相似的程序已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\14.exe 脚本病毒(Win32/Trojan.Clicker.6c8) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\15.exe 木马(Win32/Trojan.de9) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\16.exe 木马(Win32/Trojan.Generic.f11) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\17.exe 木马(Win32/Trojan.114) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\19.exe 间谍程序(Win32/Trojan.Spy.9d8) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\20.exe 木马(Win32/Trojan.Spy.14e) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\23.exe 木马(Win32/Trojan.b7f) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\3.exe 下载者木马(Win32/Trojan.Downloader.332) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\4.exe 木马(Win32/Trojan.eff) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\6.exe 木马(Win32/Trojan.a1a) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\8.exe 后门木马(Win32/Backdoor.462) 已删除
C:\Documents and Settings\Administrator\桌面\WPD\WPD\9.exe 行为和木马比较相似的程序已删除

显示全部楼层 · 发表于 2011-2-10 17:21:44

bd=39.13%
bd+金山卫士=82.61%

显示全部楼层 · 发表于 2011-2-10 17:26:19

回复 3楼 z2009 的帖子

吓死人哦·
80···冲上80%了·

显示全部楼层 · 发表于 2011-2-10 17:37:33

有个病毒用了网易的数字签名？？？真的假的

显示全部楼层 · 发表于 2011-2-10 17:42:48

本帖最后由 eternity. 于 2011-2-10 17:42 编辑

To KL.

Hello,

This message is generated by automatic letter reception system. The report contains information on what the verdicts on the files (if any in the letter) makes antivirus with latest updates. Letter will be passed to the virus analyst.

1.exe,
11.exe,
12.exe,
14.exe,
2.exe,
5.exe
10.exe
15.exe
16.exe
17.exe
19.exe
3.exe
6.exe
7.exe
8.exe

These files are in process.

13.exe - Trojan-Downloader.Win32.Adload.yxs
4.exe - Backdoor.Win32.Agent.bffb

At the moment these files are detected with the latest antivirus bases.

18.EXE,
9.exe

No malicious code were found in these files.

Best Regards, Kaspersky Lab

显示全部楼层 · 发表于 2011-2-10 17:54:12

GDATA检出11个。。。

显示全部楼层 · 发表于 2011-2-10 17:55:07

卡巴+小红剩下5个...........

显示全部楼层 · 发表于 2011-2-10 18:17:05

avira

Begin scan in 'D:\DOWNLOAD\WPD'
D:\DOWNLOAD\WPD\1.exe
[DETECTION] Is the TR/Meredrop.A.7 Trojan
[NOTE]    The file was moved to quarantine directory and named '4eec1522.qua'!
D:\DOWNLOAD\WPD\11.exe
[0] Archive type: NSIS
  [DETECTION] Is the TR/Dropper.Gen2 Trojan
--> ProgramFilesDir/Blue.exe
  [DETECTION] Is the TR/StartPage.JD Trojan
[NOTE]    The file was moved to quarantine directory and named '56423a80.qua'!
D:\DOWNLOAD\WPD\15.exe
[DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
[NOTE]    The file was moved to quarantine directory and named '041d6055.qua'!
D:\DOWNLOAD\WPD\17.exe
[DETECTION] Is the TR/StartPage.MC.77 Trojan
[NOTE]    The file was moved to quarantine directory and named '622a2f95.qua'!
D:\DOWNLOAD\WPD\18.EXE
[DETECTION] Is the TR/Kryptik.ER Trojan
[NOTE]    The file was moved to quarantine directory and named '27ae02ac.qua'!
D:\DOWNLOAD\WPD\19.exe
[0] Archive type: RAR SFX (self extracting)
  [DETECTION] Is the TR/Dldr.Banload.bhet.11 Trojan
--> restart.exe
  [DETECTION] Is the TR/Agent.503296.3 Trojan
[NOTE]    The file was moved to quarantine directory and named '58b530cc.qua'!
D:\DOWNLOAD\WPD\20.exe
[0] Archive type: RAR SFX (self extracting)
  [DETECTION] Is the TR/Banker.psa Trojan
--> dis.exe
  [DETECTION] Is the TR/Banker.psa Trojan
[NOTE]    The file was moved to quarantine directory and named '140d1cbf.qua'!
D:\DOWNLOAD\WPD\23.exe
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was moved to quarantine directory and named '68155cec.qua'!
D:\DOWNLOAD\WPD\3.exe
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was moved to quarantine directory and named '457673a4.qua'!
D:\DOWNLOAD\WPD\4.exe
  [DETECTION] Contains HEUR/Malware suspicious code
--> Object
  [DETECTION] Contains HEUR/Malware suspicious code
[NOTE]    The file was moved to quarantine directory and named '5c1e483e.qua'!
D:\DOWNLOAD\WPD\5.exe
[0] Archive type: RSRC
  [DETECTION] Is the TR/Dropper.Gen Trojan
--> Object
  [DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was moved to quarantine directory and named '3042640e.qua'!
D:\DOWNLOAD\WPD\6.exe
[DETECTION] Is the TR/Dldr.Adload.xxd Trojan
[NOTE]    The file was moved to quarantine directory and named '41fb5d9a.qua'!
D:\DOWNLOAD\WPD\9.exe
[DETECTION] Contains recognition pattern of the SPR/Dldr.Fashionl.BN program
[NOTE]    The file was moved to quarantine directory and named '4fe16d5d.qua'!

显示全部楼层 · 发表于 2011-2-10 18:24:14

A217个

[病毒样本] 23X 高质量病毒 据说大多数杀软查杀数量不会冲上20

[病毒样本] 23X 高质量病毒据说大多数杀软查杀数量不会冲上20