X4(t5t1.html;ptbup.html;Adobe.cpl;remoto.exe)

显示全部楼层 · 发表于 2014-5-15 00:39:32

本帖最后由 heishen2010 于 2014-5-15 11:15 编辑

t5t1.html
433B6DA6535EDF66D8E4B43DFF219B0E

ptbup.html
664503D28A0B08C5BC6B7CE85D422758

Adobe.cpl
26487790CD1A6152B3EA61996715284B

remoto.exe
B730E7B8F3EEBD51DC21D7997313B890

Main_Application.swf
0FD46131DF8E3E90D007A7C2E8D59FC6

显示全部楼层 · 发表于 2014-5-15 12:29:57

bav云杀2个
费尔64位杀1个

显示全部楼层 · 发表于 2014-5-15 12:52:02

本帖最后由 Dust-;羅錠于 2014-5-17 14:44 编辑

Dr.Web

remoto.exe.vir - is riskware program Program.Ammyy.1
adobe.cpl.vir - infected with Trojan.DownLoader9.39270

To Dr.Web

[drweb.com #4728990]

Your submission has been analyzed. This file presents no threat to your system.

[drweb.com #4728991]

Your request has been closed by Automatic System because Dr.Web anti-virus already detects the threat you encountered.

Threat: Trojan.PWS.Banker1.12110

Thank you for the cooperation.

[drweb.com #4729042]

Your submission has been processed by Automatic System. A corresponding record has been added to the Dr.Web virus database and will be available with the next update.

Threat: Trojan.Siggen6.17088

Thank you for the cooperation.

显示全部楼层 · 发表于 2014-5-15 13:32:51

本帖最后由 cn86li 于 2014-5-17 14:46 编辑

BD kill 3 Gen:Win32.ExplorerHijack.VmOfa0MrZTp Gen:Win32.ExplorerHijack.9y4@a0Irtud Gen:Variant.Delf.142

[Ticket ID:201405151000181]

Infected sample was signed as Application.Agent.EM
File main_application_swf declared INFECTED
File remoto_exe declared CLEAN

显示全部楼层 · 发表于 2014-5-15 15:49:57

没有必要把地址上报吧！

显示全部楼层 · 发表于 2014-5-15 19:04:38

Q管，，火绒

[病毒样本] X4(t5t1.html;ptbup.html;Adobe.cpl;remoto.exe)

本帖子中包含更多资源

本帖子中包含更多资源