收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一共71个
12345678下一页
返回列表 发新帖
楼主: caocao
 收起左侧

[病毒样本] 一共71个

[复制链接]
蓝色牛仔裤
发表于 2007-7-6 00:36:25 | 显示全部楼层

回复 #57 scottxzt 的帖子

呃? 不能单个删?没解压么?
我现在都是解压后再扫描,不管有多少个。。
检测到病毒就删,剩下的再上报蜘蛛。
而且蜘蛛有个bug ,压缩包里面的文件还不一定可以扫到的。。。
回复

举报

欠妳緈諨
发表于 2007-7-6 00:38:10 | 显示全部楼层

回复 #60 EQ2 的帖子

彼此彼此,那个游戏拼音输入法我上报N次,ALWIL依然认为是木马
回复

举报

The EQs
发表于 2007-7-6 00:39:10 | 显示全部楼层
最令人奇怪的是为什么别人上报误报就会处理。。。。。偶的就不会???
回复

举报

scottxzt
发表于 2007-7-6 00:39:30 | 显示全部楼层

回复 #61 蓝色牛仔裤 的帖子

我没有解压,的确发现过不解压扫不出的问题,谢谢.
回复

举报

dyw1021
头像被屏蔽
发表于 2007-7-6 05:01:51 | 显示全部楼层
Starting the file scan:

Begin scan in 'D:\我的文档\勿动病毒\71.rar'
D:\我的文档\勿动病毒\71.rar
  [0] Archive type: RAR
  --> dll\1.DLL
      [DETECTION] Is the Trojan horse TR/Ca-ching
  --> dll\2.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AD
  --> dll\3.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Bor.X.19.C.2
  --> dll\6.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.40960
  --> dll\services.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.bhg.22
  --> ExE\#17CCCC2.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> ExE\#18R2DG2.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\#18R6DG2.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> ExE\#18RF9G2.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> ExE\#19RFDG2.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.AF.2
  --> ExE\51.exe
      [DETECTION] Is the Trojan horse TR/Vundo.AJ.56
  --> ExE\A0074009.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\ad_1485.exe
      [DETECTION] Contains signature of the dropper DR/Boran.AE.14
  --> ExE\avg.exe
      [DETECTION] Is the Trojan horse TR/Drop.OnLineGames
  --> ExE\bar.exe
      [DETECTION] Is the Trojan horse TR/Drop.SuperUtilBa
  --> ExE\bd2.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.1
  --> ExE\bg_sc.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Baigoo.G
  --> ExE\bind(1).exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\bind.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\css1.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\cx.exe
      [DETECTION] Contains signature of the dropper DR/Boran.AE.21
  --> ExE\dg1.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\dvdsvideos1186.exe
      [DETECTION] Contains signature of the dropper DR/DNSChanger.IS.21
    --> ExE\gz.exe
      [1] Archive type: RAR SFX (self extracting)
      --> up.vbs
          [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.enx Backdoor server programs
      --> update.bat
          [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.enx.2 Backdoor server programs
  --> ExE\mppds.exe
      [DETECTION] Is the Trojan horse TR/PSW.13312.2
  --> ExE\qzone.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\regionx.dll
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> ExE\scanner.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> ExE\Server.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\setup.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.1
  --> ExE\setup_8372.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.QZT
  --> ExE\sInit117.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\skydown.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Explor.1360
  --> ExE\ss.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\svch0st.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\SwzSer.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.UC.133
  --> ExE\system.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\s_hh2.exe
      [DETECTION] Contains signature of the dropper DR/Zapchast.CT.5
  --> ExE\Thunder.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\TQUERY~1.EXE
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Pcclient.GV.168 Backdoor server programs
  --> ExE\updater.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> ExE\upxdnd.exe
      [DETECTION] Is the Trojan horse TR/PSW.11264.27
  --> ExE\webpntc.exe
      [DETECTION] Is the Trojan horse TR/VB.azc.1
  --> ExE\winform.exe
      [DETECTION] Is the Trojan horse TR/PSW.11264.45
  --> ExE\winform1.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.ES.1496
  --> ExE\x.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> ExE\xiaochuang.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQPass.VN.1
  --> ExE\XPE.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\zt.exe
      [DETECTION] Is the Trojan horse TR/PSW.Nilage.afk.11
      [INFO]      The file was moved to '46bb5c35.qua'!


End of the scan: 2007年7月6日  05:00
Used time: 00:20 min

The scan has been done completely.

      0 Scanning directories
     75 Files were scanned
     50 viruses and/or unwanted programs were found
     16 classified as suspicious:
      0 files were deleted
      0 files were repaired
      1 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      9 Files not concerned
      3 Archives were scanned
      0 Warnings
      0 Notes
      0 Hidden objects were found
回复

举报

rasis
发表于 2007-7-6 07:38:26 | 显示全部楼层
070705%E5%85%A8%E8%BF%87%E7%91%9E%E6%98%9F.rar
  [0] Archive type: RAR
  --> dll\1.DLL
      [DETECTION] Is the Trojan horse TR/Ca-ching
  --> dll\2.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AD
  --> dll\3.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Bor.X.19.C.2
  --> dll\6.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.40960
  --> dll\services.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.bhg.22
  --> ExE\#17CCCC2.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> ExE\#18R2DG2.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\#18R6DG2.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> ExE\#18RF9G2.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> ExE\#19RFDG2.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.AF.2
  --> ExE\5(1).exe
      [DETECTION] Contains signature of the SPR/Tool.Reboot.E program
  --> ExE\51.exe
      [DETECTION] Is the Trojan horse TR/Vundo.AJ.56
  --> ExE\A0074009.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\ad_1485.exe
      [DETECTION] Contains signature of the dropper DR/Boran.AE.14
  --> ExE\avg.exe
      [DETECTION] Is the Trojan horse TR/Drop.OnLineGames
  --> ExE\bar.exe
      [DETECTION] Is the Trojan horse TR/Drop.SuperUtilBa
  --> ExE\bd2.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.1
  --> ExE\bg_sc.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Baigoo.G
  --> ExE\bind(1).exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\bind.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\css1.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\cx.exe
      [DETECTION] Contains signature of the dropper DR/Boran.AE.21
  --> ExE\dg1.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\dvdsvideos1186.exe
      [DETECTION] Contains signature of the dropper DR/DNSChanger.IS.21
    --> ExE\gz.exe
      [1] Archive type: RAR SFX (self extracting)
      --> up.vbs
          [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.enx Backdoor server programs
      --> update.bat
          [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.enx.2 Backdoor server programs
  --> ExE\mppds.exe
      [DETECTION] Is the Trojan horse TR/PSW.13312.2
  --> ExE\qzone.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\regionx.dll
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> ExE\scanner.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> ExE\Server.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\setup.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.1
  --> ExE\setup_8372.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.QZT
  --> ExE\sInit117.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\skydown.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Explor.1360
  --> ExE\ss.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\svch0st.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\SwzSer.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.UC.133
  --> ExE\system.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\s_hh2.exe
      [DETECTION] Contains signature of the dropper DR/Zapchast.CT.5
  --> ExE\Thunder.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\TQUERY~1.EXE
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Pcclient.GV.168 Backdoor server programs
  --> ExE\updater.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> ExE\upxdnd.exe
      [DETECTION] Is the Trojan horse TR/PSW.11264.27
  --> ExE\webpntc.exe
      [DETECTION] Is the Trojan horse TR/VB.azc.1
  --> ExE\winform.exe
      [DETECTION] Is the Trojan horse TR/PSW.11264.45
  --> ExE\winform1.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.ES.1496
  --> ExE\x.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> ExE\xiaochuang.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQPass.VN.1
  --> ExE\XPE.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> ExE\zt.exe
      [DETECTION] Is the Trojan horse TR/PSW.Nilage.afk.11
      [WARNING]   The file was ignored!


End of the scan: 2007年7月6日  07:37
Used time: 00:15 min

The scan has been done completely.

      0 Scanning directories
     75 Files were scanned
     51 viruses and/or unwanted programs were found
     16 classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      8 Files not concerned
      3 Archives were scanned
      1 Warnings
      0 Notes
      0 Hidden objects were found
回复

举报

hahacomcn
发表于 2007-7-6 10:15:19 | 显示全部楼层
End of the scan: 2007年7月6日  10:14
Used time: 00:06 min

The scan has been done completely.

      0 Scanning directories
     76 Files were scanned
     51 viruses and/or unwanted programs were found
     16 classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      9 Files not concerned
      3 Archives were scanned
      0 Warnings
      0 Notes
      0 Hidden objects were found
回复

举报

20070101
发表于 2007-7-6 10:54:51 | 显示全部楼层
kis7.0.0119才48个啊
回复

举报

风雪
发表于 2007-7-6 11:09:03 | 显示全部楼层
费尔51个启发加上报的。
回复

举报

Shisoft
发表于 2007-7-6 11:22:14 | 显示全部楼层
Windows Defender 报了,少见
回复

举报

下一页 »
12345678下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-18 07:42 , Processed in 0.109098 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表