6个杂碎[MD5: 8F8F5B 577BC5 A23198 AD9F57 AAE7E6 7C3157]

tracydk

Starting the file scan:

Begin scan in 'F:\病毒样本\ABC.rar'
F:\病毒样本\ABC.rar
  [0] Archive type: RAR
  --> in124.dll
      [DETECTION] Is the Trojan horse TR/MulDrop.Baid.A.1
  --> in125.dll
      [DETECTION] Is the Trojan horse TR/Dldr.3321.A
  --> in126.dll
      [DETECTION] Contains signature of the dropper DR/Hengbang.A.1
  --> setup.exe
      [DETECTION] Is the Trojan horse TR/VB.YR
      [INFO]      The file was deleted!

woai_jolin

norman 3个
========================================================
Norman Message [2007/07/14 06:59:25]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/Agent.RKC'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/setup.exe
Virus repaired:
Virus name: 'W32/Agent.RKC'

========================================================
Norman Message [2007/07/14 06:59:27]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/Dudu.B'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/ly2_02.exe
Virus repaired:
Virus name: 'W32/Dudu.B'

========================================================
Norman Message [2007/07/14 06:59:29]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/Hmt.A'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/53.exe
Virus repaired:
Virus name: 'W32/Hmt.A'

wangjay1980

果然不杀

Hello,

in124.dll,
in125.dll

No malicious code were found in these files.

Please quote all when answering.

--
Best regards, Dmitry Shvetsov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.



> Attachment: ABC.rar

微点卫士

金山4个,哦耶

andylaw0818

蜘蛛【5个】
ABC.rar\in124.dll;D:\病毒测试区\ABC.rar;Trojan.MulDrop.2139;;
ABC.rar\in125.dll;D:\病毒测试区\ABC.rar;Trojan.DownLoader.3321;;
ABC.rar\in126.dll;D:\病毒测试区\ABC.rar;Trojan.MulDrop.2132;;
ABC.rar\ly2_02.exe;D:\病毒测试区\ABC.rar;Trojan.MulDrop.2137;;
ABC.rar\53.exe;D:\病毒测试区\ABC.rar;Adware.Hmtoolbar;;
ABC.rar;D:\病毒测试区;档案文件已被病毒感染;;
NOD32［３个］
D:\病毒测试区\ABC.rar ?RAR ?ly2_02.exe - Win32/TrojanDropper.Agent.XZ 木马
D:\病毒测试区\ABC.rar ?RAR ?setup.exe - Win32/VB.YR 木马
D:\病毒测试区\ABC.rar ?RAR ?53.exe - Win32/Adware.HMToolbar 应用程序
咖啡【２个】
2007-7-14        11:21:59        引擎版本=5100.0194
2007-7-14        11:21:59        防病毒 DAT 版本=5074.0000
2007-7-14        11:21:59        EXTRA.DAT 中的检测项特征码数=无
2007-7-14        11:21:59        EXTRA.DAT 中的检测项特征码名称=无
2007-7-14        11:21:56        扫描已启动        YinOS\Administrator        按需扫描
2007-7-14        11:22:00        未采取操作         Administrator        D:\病毒测试区\ABC.rar\LY2_02.EXE\00004448.EXE\0000a000.EXE\0000a000.EXE        QLowZones-4(特洛伊)
2007-7-14        11:22:02        未采取操作         Administrator        D:\病毒测试区\ABC.rar\SETUP.EXE        Generic.cd(特洛伊)
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        扫描摘要
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已扫描的进程: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已检测的进程: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已清除病毒的进程: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已扫描的引导区: 1
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已检测的引导区: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已清除病毒的引导区: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已扫描的文件: 1
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        含有检测项的文件: 1
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        文件检测项: 2
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已清除病毒的文件： 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        已删除的文件: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        未扫描的文件: 0
2007-7-14        11:22:02        扫描摘要        YinOS\Administrator        运行时间: 0:00:06
2007-7-14        11:22:02        扫描结束        YinOS\Administrator        按需扫描

tracydk

3个....

小飞侠.net

费尔爆6只～～

hj5abc

漏了一个dll..

Scanned disks, folders and files: F:\ABC.rar
F:\ABC.rar ?RAR ?ly2_02.exe - Win32/TrojanDropper.Agent.XZ trojan - was a part of the deleted object
F:\ABC.rar ?RAR ?setup.exe - Win32/VB.YR trojan - was a part of the deleted object
F:\ABC.rar ?RAR ?53.exe - Win32/Adware.HMToolbar application - was a part of the deleted object

[ 本帖最后由 hj5abc 于 2007-7-14 22:04 编辑 ]