病毒样本，内含10个可疑文件

显示全部楼层 · 发表于 2007-8-8 11:01:53

2007年8月7日发现的病毒样本，内含10个可疑文件，请帮助检测，谢谢！

显示全部楼层 · 发表于 2007-8-8 11:11:46

已检测到: 广告软件 not-a-virus:AdWare.Win32.BHO.ca 文件: G:\样本\病毒样本1[1]\ieset.dll//NSPack
已检测到: 广告软件 not-a-virus:AdWare.Win32.BHO.ca 文件: G:\样本\病毒样本1[1]\IETool.dll//NSPack

Starting the file scan:

Begin scan in 'G:\样本\病毒样本1[1]'
G:\样本\病毒样本1[1]\
  wdhjbean.dll
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  arnalfha.dll
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  brwddstu.dll.0DEL.VIR
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  fbrrquux.dll.0DEL.VIR
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  ffjflnqf.dll
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  hvckjowa.dll
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  ieset.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BHO.CA.3
   [INFO]    The file was deleted!
  IETool.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BHO.CA.17
   [INFO]    The file was deleted!
  oxnmhfrh.dll
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!
  uptool.dll.0DEL.VIR
   [DETECTION] Is the Trojan horse TR/Spy.Wanglian.A
   [INFO]    The file was deleted!

显示全部楼层 · 发表于 2007-8-8 11:39:37

C:\virus\病毒样本1[1].rar »RAR »病毒样本1[1]\ieset.dll - probably a variant of Win32/Adware.BHO application

显示全部楼层 · 发表于 2007-8-8 11:45:28

Wanglian？网恋？

显示全部楼层 · 发表于 2007-8-8 11:57:24

红伞继续全报？

显示全部楼层 · 发表于 2007-8-8 12:15:55

费尔围剿

显示全部楼层 · 发表于 2007-8-8 12:32:22

TR/Spy.Wanglian.A

显示全部楼层 · 发表于 2007-8-8 12:41:22

//-----------------------------------------------------------------
//
// Product: BitDefender 8 Standard
// Version: 8.0
//
// Created on: 08/08/2007 12:40:41
//
//-----------------------------------------------------------------

Statistics

Scan path : F:\v
Folders : 1
Files : 26
Archives : 0
Packed files : 9
Identified viruses : 1
Infected files : 1
Warnings : 0
Suspect files : 0
Disinfected files : 0
Deleted files : 0
Copied files : 0
Moved files : 0
Renamed files : 0
I/O errors : 0
Scan time : 00:00:09
Scan speed (files/sec) : 2

Virus definitions : 690131
Scan plugins : 14
Archive plugins : 38
Unpack plugins : 6
Mail plugins : 6
System plugins : 1

Scan options

Detection
[X] Scan boot sectors
[X] Scan archives
[X] Scan packed files
[X] Scan email

File mask
[ ] Programs
[X] All files
[ ] User defined extensions:
[ ] Exclude extensions: ;

Action

Infected objects
[ ] Ignore
[ ] Disinfect
[ ] Delete
[ ] Copy to quarantine
[ ] Move to quarantine
[ ] Rename
[X] Prompt user

Second action
[X] Ignore
[ ] Delete
[ ] Copy to quarantine
[ ] Move to quarantine
[ ] Rename
[ ] Prompt user

Scan options
[X] Enable warnings
[X] Enable heuristics
[X] Show all files in log
[X] Report file: vscan.log
[ ] Append to existing report

Summary:

F:\v\IETool.dll Infected Backdoor.Pcclient.GV

Scanned files

C:\=>Master Boot Record OK
C:\=>Primary partition 1 (Active) OK
C:\=>Logical partition 1 OK
C:\=>Logical partition 2 OK
C:\=>Logical partition 3 OK
C:\=>Logical partition 4 OK
C:\=>Logical partition 5 OK
F:\v\ OK
F:\v\arnalfha.dll OK
F:\v\arnalfha.dll=>:Zone.Identifier OK
F:\v\brwddstu.dll.0DEL.VIR OK
F:\v\brwddstu.dll.0DEL.VIR=>:Zone.Identifier OK
F:\v\fbrrquux.dll.0DEL.VIR OK
F:\v\fbrrquux.dll.0DEL.VIR=>:Zone.Identifier OK
F:\v\ffjflnqf.dll OK
F:\v\ffjflnqf.dll=>:Zone.Identifier OK
F:\v\hvckjowa.dll OK
F:\v\hvckjowa.dll=>:Zone.Identifier OK
F:\v\ieset.dll OK
F:\v\ieset.dll=>:Zone.Identifier OK
F:\v\IETool.dll Infected Backdoor.Pcclient.GV
F:\v\oxnmhfrh.dll OK
F:\v\oxnmhfrh.dll=>:Zone.Identifier OK
F:\v\uptool.dll.0DEL.VIR OK
F:\v\uptool.dll.0DEL.VIR=>:Zone.Identifier OK
F:\v\wdhjbean.dll OK
F:\v\wdhjbean.dll=>:Zone.Identifier OK

显示全部楼层 · 发表于 2007-8-8 12:42:03

显示全部楼层 · 发表于 2007-8-8 13:11:53

rising 一个都不认识 [:27:] [:27:]

[病毒样本] 病毒样本，内含10个可疑文件

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块