收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一个【MD5:a7f0c0】
123下一页
返回列表 发新帖
楼主: wangjay1980
 收起左侧

[病毒样本] 一个【MD5:a7f0c0】

[复制链接]
The EQs
发表于 2007-7-13 20:02:11 | 显示全部楼层

这种东西还需要运行??

Scan performed at: 2007-7-13 20:01:46
Scanning Log
NOD32 version 2396 (20070712) NT
Command line: C:\Documents and Settings\EQ2\桌面\123\123
Operating memory - is OK

Date: 13.7.2007  Time: 20:01:53
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\123\123\
C:\Documents and Settings\EQ2\桌面\123\123\avp.exe - BAT/Agent.Y trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\123\123\ie.exe - a variant of Win32/TrojanDownloader.Delf.AXB trojan
Number of scanned files: 2
Number of threats found: 2
Number of files cleaned: 2
Time of completion: 20:01:53 Total scanning time: 0 sec (00:00:00)
回复

举报

hj5abc
发表于 2007-7-13 20:10:51 | 显示全部楼层

回复 #11 EQ2 的帖子

晕..惯性.
不过日常自解压一般是直接运行吧..[:26:]
回复

举报

woai_jolin
发表于 2007-7-13 20:13:23 | 显示全部楼层
norman pass
===================================================================================================
NVCOD On Demand Scanner 5.80.02

NSE revision 5.90.37
nvcbin.def revision 5.90.00 of 2007/05/24 17:29:41 (794383 variants)
nvcmacro.def revision 5.90.00 of 2007/05/24 17:15:53 (20339 variants)
Total number of variants: 814722
Command line: "@C:\Users\Jason\AppData\Local\Temp\~OD97A5.tmp"
===================================================================================================

       Time  Filename                                                     Virus name
---------------------------------------------------------------------------------------------------
- Scanning files matching: D:\virus\123.rar
        0 ms D:\virus\123.rar                                            
        0 ms D:\virus\123.rar:Zone.Identifier                           

===================================================================================================

The scanning started: 2007/07/13 20:08:14
               ended: 2007/07/13 20:08:14
Logged on as        : Jason
on hostname         : JASON-PC

Scanning results:
   Total number of files found..............................:       2
   Number of files scanned..................................:       2
   Number of files/directories skipped due to exclude list..:       0
   Number of files that could not be opened.................:       0
   Number of archive files unpacked.........................:       0
   Number of archive files not unpacked.....................:       0
   Number of infections.....................................:       0

Copyright (c) 1993-2005 Norman ASA.
回复

举报

moonsilver
发表于 2007-7-13 20:21:46 | 显示全部楼层
瑞星病毒查杀结果报告

清除病毒种类列表:
病毒: Trojan.BAT.Agent.v      
病毒: Trojan.DL.Win32.Getou.b  

用户来源:互联网

软件版本:19.31.42
回复

举报

傻猪猪米走鸡
发表于 2007-7-13 20:52:51 | 显示全部楼层
今天终于看到nod运行报了,上一次看到是3天前……
回复

举报

hj5abc
发表于 2007-7-13 20:59:53 | 显示全部楼层

回复 #15 傻猪猪米走鸡 的帖子

这个是压缩包..里面的才是病毒,所以运行报了.
回复

举报

tracydk
发表于 2007-7-13 21:04:27 | 显示全部楼层
Dear Sir or Madam,

Thank you for your email to Avira's virus lab.
Tracking number: INC00060085.



We received the following archive files:

File ID Filename Size (Byte)Result
1103000 123.rar49.63 KBOK

A listing of files contained inside archives alongside their results can be found below:
File ID Filename Size (Byte)Result
1103001 123.exe 79 KB MALWARE


Please find a detailed report concerning each individual sample below:
FilenameResult 123.exe MALWARE

The file '123.exe' has been determined to be 'MALWARE'.
Our analysts discovered that the file is a Trojan. In general this kind of programs contains harmful functionality called payload. Detection will be added to our virus definition file (VDF) with one of the next updates.
回复

举报

liyukun97065
发表于 2007-7-13 22:07:23 | 显示全部楼层
小红伞挂了,
回复

举报

rest1min
发表于 2007-7-13 22:15:59 | 显示全部楼层
KV2007杀掉一个。驱逐舰全杀。
回复

举报

蓝色牛仔裤
发表于 2007-7-13 22:18:46 | 显示全部楼层
[Scan path] C:\Documents and Settings\Administrator\桌面\123.rar
>>C:\Documents and Settings\Administrator\桌面\123.rar\123.exe\avp.exe infected with Trojan.MulDrop.6952
>>>C:\Documents and Settings\Administrator\桌面\123.rar\123.exe\ie.exe infected with BackDoor.WebDor
>C:\Documents and Settings\Administrator\桌面\123.rar\123.exe - archive contains infected objects
C:\Documents and Settings\Administrator\桌面\123.rar - archive contains infected objects

-----------------------------------------------------------------------------
Scan statistics
-----------------------------------------------------------------------------
Objects scanned: 4
Infected objects found: 2
Objects with modifications found: 0
Suspicious objects found: 0
Adware programs found: 0
Dialer programs found: 0
Joke programs found: 0
Riskware programs found: 0
Hacktool programs found: 0
Objects cured: 0
Objects deleted: 0
Objects renamed: 0
Objects moved: 0
Objects ignored: 0
Scan speed: 28 Kb/s
Scan time: 00:00:00
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-11 07:26 , Processed in 0.084350 second(s), 16 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表