不能下载费尔6包全死的样本来这边看看

显示全部楼层 · 发表于 2007-10-4 18:03:31

我换空间了
如果不型再说ㄧ声
http://mihd.net/43a0h1

http://www.badongo.com/file/4586953

http://file.mofile.com 文件提取码 4375418915517211

解压密码:virus

[ 本帖最后由 jordanpchome 于 2007-10-4 18:05 编辑 ]

显示全部楼层 · 发表于 2007-10-4 18:06:26

mofile的似乎比较快那我就不上传到卡饭了

显示全部楼层 · 发表于 2007-10-4 18:07:20

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0097.pif]
                  …………发现Spy！报告:[2]
文件信息:  大小:40960  MD5:133435cbf6d67112955aee9820caf7f0

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0241.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:340480  MD5:2774c3e038cfc8b786bff57507488b33

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0268.exe]
                  …………发现Spy！报告:[2] [8] HOOK者
文件信息:  大小:43520  MD5:044ab744f4f49f5640766416bc10c8b7

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0357.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:85344  MD5:2312b02cf8c50bc32cdb0686a9c3ac96

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0400.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:660480  MD5:ab60f3c51064a28fe80f144583631dfe

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0425.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:237928  MD5:b531574e07dfb3def2558c0c439c7b9e

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0442.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:83703  MD5:32697f29ad23ff07f99dcad3d5b7ea64

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0444.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:785335  MD5:1551b2406c58c31aa621daf7d58664e3

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0559.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:10240  MD5:4728505f026648f2e2368763f04defc8

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0569.doc]
                  …………发现Spy！报告:[2]
文件信息:  大小:24064  MD5:ed63916d90a32f30db642fcd2916e01e

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0577.sys]
                  …………发现Spy！报告:[2]
文件信息:  大小:187392  MD5:b06090ee2881c1bac0d275b17d140d3b

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0582.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:1173  MD5:c6078d7e9a47fcb3debdb261355e14ce

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0609.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:49110  MD5:20772b723bd94b0cddad40eab5eae092

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0633.htm]
                  …………发现Spy！报告:[2]
文件信息:  大小:242778  MD5:96a8a08c4309ef5c89c006973120a80b

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0650.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:15488  MD5:ec37fcbd88e11fa1323f38c494f2829a

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0658.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:166912  MD5:31727051d9d8f48f2298785e93350738

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0674.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:71582  MD5:3a1d8d8d491a3c04015a50da29373683

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0677.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:73292  MD5:e920dbbe5d2bae9a778f040218a2b49b

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0714.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:54895  MD5:af955f0c4072d05d20d855d97a710780

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0724.log]
                  …………发现Spy！报告:[2]
文件信息:  大小:31182  MD5:afd6bf1227e074ad35d571b5350001d3

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0750.mht]
                  …………发现Spy！报告:[2]
文件信息:  大小:114779  MD5:7d445a4365781cf7c83168eb2513c53b

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0794.nfo]
                  …………发现Spy！报告:[2]
文件信息:  大小:7692  MD5:455dfd9706ae986fbf7b37f84e6eb6b6

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0804.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:10240  MD5:c8aba589c4ad9de3bdc0b7e62f0a28d9

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0805.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:446464  MD5:67993a6317d6940ad10b3438fd32e507

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0810.db]
                  …………发现Spy！报告:[2]
文件信息:  大小:6144  MD5:340b8371fb1ca41106f592d93f8339ff

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0819.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:178296  MD5:af7f944abd80589f5e10ce66a6035529

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0824.DLL]
                  …………发现Spy！报告:[2]
文件信息:  大小:119568  MD5:c845380c64f8db0538eb4af4689ec2f7

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0840.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:2518  MD5:cee2173b646f39737678b91404a0642e

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0841.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:3898  MD5:fa828352c7117b55b92e36b3ea6ba1ae

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0956.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:129333  MD5:1a9a5aa35eb8d3b3b0f6ac8d69884764

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0962.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:90112  MD5:a1ec2d8ee6658551afc14cb14b76d008

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0975.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:458752  MD5:e460a1cf77dd883edae859b0f936de2e

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0978.asp]
                  …………发现Spy！报告:[2]
文件信息:  大小:44635  MD5:3bceaf3b4c5050058f653e56e1e3dcfe

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0986.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:467968  MD5:2c50d7acf8098fc945f5cd65e9ea9907

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0987.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:610304  MD5:d10281e0c576fe746ee049d28d28f3ba

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\0988.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:352256  MD5:ff0c98e175ef150b20ee405debb6f068

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\1014.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:294536  MD5:ae0757d8476ae7b7e80e62bb0180b220

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\1024.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:258560  MD5:95e441aef4c0a4fff55cec6e2633a1de

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\1042.pif]
                  …………发现Spy！报告:[2]
文件信息:  大小:40960  MD5:133435cbf6d67112955aee9820caf7f0

[C:\Documents and Settings\Administrator\桌面\Virus\test\test\1065.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:455600  MD5:fbab280d0cac5e21c72f0a1a7b5b9608

文件数:147 病毒数:40  比重:0.2721088435374
OK  扫描完毕！
  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

[ 本帖最后由 FBAV 于 2007-10-4 18:12 编辑 ]

显示全部楼层 · 发表于 2007-10-4 18:09:43

果然全挂，除了报壳就是报壳

显示全部楼层 · 发表于 2007-10-4 18:13:20

郁闷

显示全部楼层 · 发表于 2007-10-4 18:13:46

nod32比较惨，只杀了12个
Scan performed at: 2007-10-4 18:13:02
Scanning Log
NOD32 version 2571 (20071004) NT
Command line: C:\Documents and Settings\Don johnson\桌面\test
Operating memory - is OK

Date: 4.10.2007 Time: 18:13:06
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\Don johnson\桌面\test\
C:\Documents and Settings\Don johnson\桌面\test\test\0042.exe ?RAR ?1.exe - Win32/Pacex virus - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\test\test\0106.exe ?ZIP ?ebnmj.exe - Win32/Pacex virus - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\test\test\0241.exe - probably a variant of Win32/Agent trojan
C:\Documents and Settings\Don johnson\桌面\test\test\0357.exe - Win32/Adware.CDN application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\test\test\0569.doc - a variant of Win32/Exploit.MSWord.Smtag trojan
C:\Documents and Settings\Don johnson\桌面\test\test\0650.exe ?FSG v1.33 - unpack error
C:\Documents and Settings\Don johnson\桌面\test\test\0655.smi - probably a variant of HTML/Exploit.Agent trojan
C:\Documents and Settings\Don johnson\桌面\test\test\0677.exe - a variant of Win32/PSW.Lineage.ACN trojan
C:\Documents and Settings\Don johnson\桌面\test\test\0818.bat - BAT/TrojanDownloader.Ftp.DA trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\test\test\0835.htm - probably a variant of JS/TrojanDownloader.Psyme trojan
C:\Documents and Settings\Don johnson\桌面\test\test\0988.exe - probably a variant of Win32/VB trojan
C:\Documents and Settings\Don johnson\桌面\test\test\1022 - a variant of SymbOS/Unlock.A application
C:\Documents and Settings\Don johnson\桌面\test\test\1106.com ?RAR ?setup.exe - a variant of Win32/PSW.Maran trojan - was a part of the deleted object
Number of scanned files: 154
Number of threats found: 12
Number of files cleaned: 12
Time of completion: 18:13:25 Total scanning time: 19 sec (00:00:19)

显示全部楼层 · 发表于 2007-10-4 19:20:13

有16个重复文件。删除后。。。。

卡巴 7.0.0.125
20个

已隔离: 病毒 Packed.Win32.CryptExe (变种) 文件: F:\病毒样本\test\test\0819.exe
已隔离: 病毒 Packed.Win32.Morphine.a (变种) 文件: F:\病毒样本\test\test\1024.exe
已隔离: 病毒 Packed.Win32.PePatch.dk (变种) 文件: F:\病毒样本\test\test\0582.exe//PE_Patch//PE_Patch
已隔离: 木马程序 Trojan-Downloader.JS.gen (变种) 文件: F:\病毒样本\test\test\0978.asp
已删除: 病毒 Packed.Win32.NSAnti.r 文件: F:\病毒样本\test\test\0042.exe//data.rar/1.exe
已删除: 病毒 Packed.Win32.NSAnti.r 文件: F:\病毒样本\test\test\0106.exe/ebnmj.exe
已删除: 病毒 Virus.BAT.Clicker.a 文件: F:\病毒样本\test\test\0039.bat
已删除: 恶意程序 Exploit.HTML.Smil.j 文件: F:\病毒样本\test\test\0655.smi
已删除: 恶意程序 Exploit.MSWord.Agent.c 文件: F:\病毒样本\test\test\0569.doc//1Table
已删除: 风险软件 not-a-virus:RemoteAdmin.Win32.WinVNC-based.j 文件: F:\病毒样本\test\test\0400.exe//Obsidium
已删除: 风险软件 not-a-virus:RiskTool.SymbOS.Unlock.a 文件: F:\病毒样本\test\test\1022
已删除: 木马程序 Backdoor.Win32.VB.ala 文件: F:\病毒样本\test\test\0988.exe
已删除: 木马程序 Trojan-Downloader.BAT.Ftp.da 文件: F:\病毒样本\test\test\0818.bat
已删除: 木马程序 Trojan-Downloader.JS.Psyme.ko 文件: F:\病毒样本\test\test\0835.htm
已删除: 木马程序 Trojan-Downloader.VBS.Agent.ei 文件: F:\病毒样本\test\test\0036.js
已删除: 木马程序 Trojan-PSW.Win32.Banker.f 文件: F:\病毒样本\test\test\1106.com//data.rar/setup.exe
已删除: 木马程序 Trojan-Spy.Win32.Delf.uc 文件: F:\病毒样本\test\test\0677.exe//PE_Patch//UPack
已删除: 木马程序 Trojan.BAT.KillFire.d 文件: F:\病毒样本\test\test\0095.bat
已删除: 木马程序 Trojan.VBS.Runner.v 文件: F:\病毒样本\test\test\0710.vbs
已删除: 木马程序 Trojan.Win32.Pakes 文件: F:\病毒样本\test\test\0241.exe

显示全部楼层 · 发表于 2007-10-4 21:24:47

已删除：木马程序 Trojan-Downloader.VBS.Agent.ei 文件　: G:\Temp\test.rar/test\0036.js
已删除：病毒 Virus.BAT.Clicker.a 文件　: G:\Temp\test.rar/test\0039.bat
已删除：病毒 Packed.Win32.NSAnti.r 文件　: G:\Temp\test.rar/test\0042.exe//data.rar/1.exe
已删除：木马程序 Trojan.BAT.KillFire.d 文件　: G:\Temp\test.rar/test\0095.bat
已删除：病毒 Packed.Win32.NSAnti.r 文件　: G:\Temp\test.rar/test\0106.exe/ebnmj.exe
已删除：木马程序 Trojan.Win32.Pakes 文件　: G:\Temp\test.rar/test\0241.exe
已删除：风险软件 not-a-virus:RemoteAdmin.Win32.WinVNC-based.j 文件　: G:\Temp\test.rar/test\0400.exe//Obsidium
已删除：恶意程序 Exploit.MSWord.Agent.c 文件　: G:\Temp\test.rar/test\0569.doc//1Table
已隔离：病毒 Packed.Win32.PePatch.dk (修改) 文件　: G:\Temp\test.rar/test\0582.exe//PE_Patch//PE_Patch
已删除：恶意程序 Exploit.HTML.Smil.j 文件　: G:\Temp\test.rar/test\0655.smi
已删除：木马程序 Trojan-Spy.Win32.Delf.uc 文件　: G:\Temp\test.rar/test\0677.exe//PE_Patch//UPack
已删除：木马程序 Trojan.VBS.Runner.v 文件　: G:\Temp\test.rar/test\0710.vbs
已删除：木马程序 Trojan-Downloader.BAT.Ftp.da 文件　: G:\Temp\test.rar/test\0818.bat
已隔离：病毒 Packed.Win32.CryptExe (修改) 文件　: G:\Temp\test.rar/test\0819.exe
已删除：木马程序 Trojan-Downloader.JS.Psyme.ko 文件　: G:\Temp\test.rar/test\0835.htm
已隔离：木马程序 Trojan-Downloader.JS.gen (修改) 文件　: G:\Temp\test.rar/test\0978.asp
已删除：木马程序 Backdoor.Win32.VB.ala 文件　: G:\Temp\test.rar/test\0988.exe
已删除：风险软件 not-a-virus:RiskTool.SymbOS.Unlock.a 文件　: G:\Temp\test.rar/test\1022
已隔离：病毒 Packed.Win32.Morphine.a (修改) 文件　: G:\Temp\test.rar/test\1024.exe
已删除：木马程序 Trojan-PSW.Win32.Banker.f 文件　: G:\Temp\test.rar/test\1106.com//data.rar/setup.exe

显示全部楼层 · 发表于 2007-10-4 22:20:59

Start of the scan: 2007年10月4日  22:16

Starting the file scan:

Begin scan in 'D:\病毒测试\临时解压\test'
D:\病毒测试\临时解压\test\0036.js
   [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Piftie.3
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0039.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/Iframe.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0042.exe
   [DETECTION] Contains detection pattern of the dropper DR/PCK.NSAnti.R.63
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0042.exe
  [0] Archive type: RAR SFX (self extracting)
  --> 1.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0095.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/Agent.R
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0106.exe
  [0] Archive type: ZIP SFX (self extracting)
  --> ebnmj.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0241.exe
   [DETECTION] Is the Trojan horse TR/Pakes.A.295
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0400.exe
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/Obsidium). Please verify the origin of the file
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0442.exe
   [DETECTION] Is the Trojan horse TR/HackTool.B
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0444.exe
   [DETECTION] Contains detection pattern of the SPR/Tool.Chin.AB program
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0559.exe
   [DETECTION] Is the Trojan horse TR/Tiny.10240.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0569.doc
   [DETECTION] Contains detection pattern of the exploits EXP/Office.D
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0582.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0583.htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Infected.WebPage.Gen
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0650.exe
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/FSG). Please verify the origin of the file
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0655.smi
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.BM.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0661.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0674.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.71582
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0677.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.UC.636
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0710.vbs
   [DETECTION] Is the Trojan horse TR/Runner.V
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0735.sys
   [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.GZ
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0764.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/ConHook.Z
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0786.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/Install.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0804.exe
   [DETECTION] Is the Trojan horse TR/Tiny.10240.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0817.exe
   [DETECTION] Is the Trojan horse TR/Click.A.844488.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0818.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/Ftp.DA
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0819.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0822.exe
   [DETECTION] Is the Trojan horse TR/PSW.Poker.D
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0835.htm
   [DETECTION] Is the Trojan horse TR/Dldr.Psyme.KO
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0956.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0962.dll
   [DETECTION] Contains detection pattern of the SPR/YFlood.A.2 program
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0975.exe
   [DETECTION] Contains detection pattern of the SPR/Evil.A program
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0978.asp
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/ASP.BloodSword Backdoor server programs
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0988.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/VB.ala.2 Backdoor server programs
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\0999.exe
   [DETECTION] Contains detection pattern of the SPR/Hacktool.Getwebshell program
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\1016.asp
   [DETECTION] Is the Trojan horse TR/ASP.QQPass.A
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\1022
   [DETECTION] Contains the SymbianOS virus SYMBOS/PhUnlock
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\1106.com
   [DETECTION] Is the Trojan horse TR/Drop.Errsup
   [WARNING] The file was ignored!
D:\病毒测试\临时解压\test\1106.com
  [0] Archive type: RAR SFX (self extracting)
  --> setup.exe
   [DETECTION] Is the Trojan horse TR/PSW.Maran.143922
   [WARNING] The file was ignored!

End of the scan: 2007年10月4日  22:17
Used time: 01:17 min

The scan has been done completely.

   1 Scanning directories
175 Files were scanned
   35 viruses and/or unwanted programs were found
   4 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
140 Files not concerned
   25 Archives were scanned
   37 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-10-4 22:27:06

使用 AntiVirusKit 进行病毒扫描
版本
病毒签名 10/4/2007
开始时间: 10/4/2007 22:21
引擎: KAV 引擎 (AVK 17.8514), AVAST 引擎 (AVKB 17.395)
高启发: 开启
文件: 开启
系统区域: 开启

扫描系统区域...
扫描选中目录和文件...
项目: 0036.js
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Trojan-Downloader.VBS.Agent.ei (KAV 引擎)
项目: 0039.bat
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Virus.BAT.Clicker.a (KAV 引擎)
项目: data.rar 1.exe
检查档案: D:\病毒测试\临时解压\test\0042.exe
状态: 发现病毒
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 0042.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 0095.bat
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Trojan.BAT.KillFire.d (KAV 引擎)
项目: 0097.pif
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Agent-KLL [Rtk] (AVAST 引擎)
项目: ebnmj.exe
检查档案: D:\病毒测试\临时解压\test\0106.exe
状态: 发现病毒
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 0106.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 0126.pif
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0141.scr
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0151.scr
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0155.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0235.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Cryptic-OU [Trj] (AVAST 引擎)
项目: 0241.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Trojan.Win32.Pakes (KAV 引擎)
项目: 0243.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0265.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0270.scr
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0271.scr
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0307.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0308.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0309.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0310.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0311.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0312.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0319.scr
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0357.exe
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Adware-gen. [Adw] (AVAST 引擎)
项目: 0369.scr
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0400.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: not-a-virus:RemoteAdmin.Win32.WinVNC-based.j (KAV 引擎)
项目: 0425.exe
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Ldpinch-IG [Trj] (AVAST 引擎)
项目: 0442.exe
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Agent-KNG [Trj] (AVAST 引擎)
项目: 0443.scr
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: [MEW]
检查档案: D:\病毒测试\临时解压\test\0444.exe
状态: 发现病毒
病毒: Win32:Agent-JWU [Trj] (AVAST 引擎)
项目: 0444.exe
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Agent-JWU [Trj] (AVAST 引擎)
项目: 0446.scr
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0449.scr
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: [UPX]
检查档案: D:\病毒测试\临时解压\test\0559.exe
状态: 发现病毒
病毒: Win32:Tiny-KG [Trj] (AVAST 引擎)
项目: 0559.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Tiny-KG [Trj] (AVAST 引擎)
项目: 1Table
检查档案: D:\病毒测试\临时解压\test\0569.doc
状态: 发现病毒
病毒: Exploit.MSWord.Agent.c (KAV 引擎)
项目: 0569.doc
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Exploit.MSWord.Agent.c (KAV 引擎)
项目: 0577.sys
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Adware-gen. [Adw] (AVAST 引擎)
项目: 0582.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Packed.Win32.PePatch.dk (KAV 引擎)
项目: 0655.smi
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Exploit.HTML.Smil.j (KAV 引擎)
项目: 0674.exe
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Agent-LQN [Trj] (AVAST 引擎)
项目: 0677.exe
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Trojan-Spy.Win32.Delf.uc (KAV 引擎)
项目: 0710.vbs
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Trojan.VBS.Runner.v (KAV 引擎)
项目: 0761.EXE
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 0762.exe
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: [UPX]
检查档案: D:\病毒测试\临时解压\test\0804.exe
状态: 发现病毒
病毒: Win32:Tiny-KG [Trj] (AVAST 引擎)
项目: 0804.exe
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Tiny-KG [Trj] (AVAST 引擎)
项目: 0817.exe
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Killreg-F [Trj] (AVAST 引擎)
项目: 0818.bat
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Trojan-Downloader.BAT.Ftp.da (KAV 引擎)
项目: 0819.exe
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Crypt-SS [Trj] (AVAST 引擎)
项目: 0835.htm
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Trojan-Downloader.JS.Psyme.ko (KAV 引擎)
项目: 0840.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Small-EKS [Trj] (AVAST 引擎)
项目: 0841.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Win32:Small-EKS [Trj] (AVAST 引擎)
项目: 0978.asp
路径: D:\病毒测试\临时解压\test
状态: 疑为病毒
病毒: Trojan-Downloader.JS.gen (KAV 引擎)
项目: 0987.exe
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Win32:Hupigon-BQO [Trj] (AVAST 引擎)
项目: 0988.exe
路径: D:\病毒测试\临时解压\test
状态: 未知
病毒: Backdoor.Win32.VB.ala (KAV 引擎)
项目: 1022
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: not-a-virus:RiskTool.SymbOS.Unlock.a (KAV 引擎)
项目: 1024.exe
路径: D:\病毒测试\临时解压\test
状态: 疑为病毒
病毒: Packed.Win32.Morphine.a (KAV 引擎)
项目: 1042.pif
路径: D:\病毒测试\临时解压\test
状态: 发现病毒
病毒: Win32:Agent-KLL [Rtk] (AVAST 引擎)
项目: data.rar setup.exe
检查档案: D:\病毒测试\临时解压\test\1106.com
状态: 发现病毒
病毒: Trojan-PSW.Win32.Banker.f (KAV 引擎)
项目: 1106.com
路径: D:\病毒测试\临时解压\test
状态: 病毒,文件删除
病毒: Trojan-PSW.Win32.Banker.f (KAV 引擎)
病毒分析完成: 10/4/2007 22:23
147 文件被检查
54 感染文件发现
2 发现可疑文件

[病毒样本] 不能下载费尔6包全死的样本来这边看看

本帖子中包含更多资源

浏览过的版块