2014-09-05 #103

显示全部楼层 · 发表于 2014-9-6 00:42:30

http://kuai.xunlei.com/d/XLDoFKxs-eQJVAQAac7 / http://rghost.net/private/578655 ... 61f356499d1280860b5

密码 infected

已将以下杀软漏报的文件上报至对应厂商:

Anvisoft
Avast
Avira
BitDefender
Comodo
Dr.Web
Emsisoft
ESET
F-Prot
F-Secure
Fortinet
Ikarus
Immunet
K7
Kaspersky
Kompas
Malwarebytes
McAfee
Microsoft
Nano
Nictatech
Outpost
Panda
PCMAV
Qihoo 360
Quick Heal
Sophos
Spybot
Symantec
TotalDefense
Trend Micro
Trojan Killer
Twister
Vipre
VirIT
Xvirus
Zillya

显示全部楼层 · 发表于 2014-9-6 01:03:11

本帖最后由 zmzcy 于 2014-9-6 01:06 编辑

红伞扫描杀70x

显示全部楼层 · 发表于 2014-9-6 01:34:05

好压KILL 92X

EAVKILL 100X （101威胁）

火绒扫描KILL 4X

显示全部楼层 · 发表于 2014-9-6 08:02:19

数字 KILL 88X

剩余

显示全部楼层 · 发表于 2014-9-6 08:53:33

C:\Users\朕\Desktop\2014-09-05_103\00360cd01528966219143421e003aa95
  [DETECTION] Is the TR/Scarsi.wox Trojan
C:\Users\朕\Desktop\2014-09-05_103\0468bc421c08c57dcf81d51cfb342e6a
  [DETECTION] Is the TR/Drop.Cutwail.58 Trojan
C:\Users\朕\Desktop\2014-09-05_103\04b990e1524b8f4a31a15ef216eb7d77
  [DETECTION] Is the TR/Dldr.Dalexis.A.39 Trojan
C:\Users\朕\Desktop\2014-09-05_103\07fbecdba9370f2dd882107a0311617c
  [DETECTION] Is the TR/Dropper.MSIL.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\09ca36aaafcef712210206aa437f3ead
  [DETECTION] Is the TR/Agent.CKFH Trojan
C:\Users\朕\Desktop\2014-09-05_103\0d5ad9759753cb4639cd405eddbe2a16
  [DETECTION] Is the TR/Agent.bfbi.2 Trojan
C:\Users\朕\Desktop\2014-09-05_103\0ed69f6721bf840229ae0b11eb0328d3
  [DETECTION] Is the TR/Ransom.243715 Trojan
C:\Users\朕\Desktop\2014-09-05_103\13d33a9ff6c77a3b7d08a4557d0a5e67
  [DETECTION] Is the TR/ZbotGameover.A.108 Trojan
C:\Users\朕\Desktop\2014-09-05_103\140fbf8b1361737cbdb034c480ca988f
  [DETECTION] Is the TR/Dropper.VB.18820 Trojan
C:\Users\朕\Desktop\2014-09-05_103\1c875e9e44231f36c61446a43cfccfba
  [DETECTION] Is the TR/ATRAPS.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\1d4cec30af7e08ac68adc802ca354ec8
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/DarkKomet.GR back-door program
C:\Users\朕\Desktop\2014-09-05_103\1e11ba672d94a4510ce55c6378c8cdb6
  [DETECTION] Is the TR/Crypt.ZPACK.96031 Trojan
C:\Users\朕\Desktop\2014-09-05_103\222203b249ffb774fb9928b7a005b3a8
  [DETECTION] Is the TR/ATRAPS.A.1750 Trojan
C:\Users\朕\Desktop\2014-09-05_103\2252dfb821ebde96f8cc9ed85435cee3
  [DETECTION] Is the TR/MSIL.Zapchast.dtkl Trojan
C:\Users\朕\Desktop\2014-09-05_103\239e65c327a8e8a2e8f0c92dfd8915bc
  [DETECTION] Is the TR/Dropper.VB.20131 Trojan
C:\Users\朕\Desktop\2014-09-05_103\25b5c130b65a18dfd24fb5e115673309
  [DETECTION] Is the TR/Agent.65536.709 Trojan
C:\Users\朕\Desktop\2014-09-05_103\2d4859d349c8813eae256d78a48a2838
  [DETECTION] Is the TR/Spy.Banker.1867 Trojan
C:\Users\朕\Desktop\2014-09-05_103\2f1e49abe8fbe294a68fc7fcef290e96
  [DETECTION] Is the TR/Ransom.243715 Trojan
C:\Users\朕\Desktop\2014-09-05_103\31a3abe2824e6e4cce48e207df6b3aa5
  [DETECTION] Is the TR/Rogue.225280.12 Trojan
C:\Users\朕\Desktop\2014-09-05_103\331042dc65a3c58a3323a858593ea02d
  [DETECTION] Is the TR/Agent.CKHC Trojan
C:\Users\朕\Desktop\2014-09-05_103\3b5a4878ea3490b8ed5837114cfd0c23
  [DETECTION] Is the TR/Spy.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\3c2ff7ca092e5f85a643718b4b8fd8d5
  [DETECTION] Is the TR/Dropper.MSIL.77811 Trojan
C:\Users\朕\Desktop\2014-09-05_103\3f125b54046ba17396564b31e80eda49
  [DETECTION] Is the TR/Orbus.A.8 Trojan
C:\Users\朕\Desktop\2014-09-05_103\45f22b6ffadd8645759ed40532da2ec4
  [DETECTION] Is the TR/Dofoil.A.161 Trojan
C:\Users\朕\Desktop\2014-09-05_103\475f7559af818493847f836cd15eaeee
  [DETECTION] Is the TR/Crypt.ZPACK.95671 Trojan
C:\Users\朕\Desktop\2014-09-05_103\48511e454e6c01c860bc07de48e83620
  [DETECTION] Is the TR/Agent.CKEY.1 Trojan
C:\Users\朕\Desktop\2014-09-05_103\4b31f7052ae07c7afa1f87ea761b9313
  [DETECTION] Is the TR/Dropper.MSIL.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\4f7f817d406702a8cb25b5148990ff92
  [DETECTION] Is the TR/Samca.2451950 Trojan
C:\Users\朕\Desktop\2014-09-05_103\523017c26bce0b6530c521178b60e98b
  [DETECTION] Is the TR/ATRAPS.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\532e7924f759aab014dedca651398ce6
  [DETECTION] Is the TR/Crypt.ZPACK.95583 Trojan
C:\Users\朕\Desktop\2014-09-05_103\53a07fcd121e32daef642e84c383f7bf
  [DETECTION] Is the TR/Dropper.VB.20139 Trojan
C:\Users\朕\Desktop\2014-09-05_103\54faf0f26546176482fe0e169246f9ae
  [DETECTION] Is the TR/Dropper.MSIL.77819 Trojan
C:\Users\朕\Desktop\2014-09-05_103\55971468d44de15c14dc7c70765f38a7
  [DETECTION] Is the TR/Waski.yat Trojan
C:\Users\朕\Desktop\2014-09-05_103\5cb19cb986afcac0354fee741a51a77e
  [DETECTION] Is the TR/Dldr.Carberp.AW Trojan
C:\Users\朕\Desktop\2014-09-05_103\617979206bd8c5f55dc02a1ecaae234b
  [DETECTION] Is the TR/Dropper.MSIL.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\65f004e2eb6bb5ebfb655c9ba721d9ac
  [DETECTION] Is the TR/Orbus.C.8 Trojan
C:\Users\朕\Desktop\2014-09-05_103\661c5b91f9c04b8b7786ba8879f5f022
  [DETECTION] Is the TR/PSW.Dyzap.D.6 Trojan
C:\Users\朕\Desktop\2014-09-05_103\66c2b248f89d1cb483fa1136ec1cc70a
  [DETECTION] Is the TR/Crypt.Xpack.88539 Trojan
C:\Users\朕\Desktop\2014-09-05_103\696e97180555de51d217be48f70aec2d
  [DETECTION] Is the TR/Dropper.VB.20132 Trojan
C:\Users\朕\Desktop\2014-09-05_103\6ca558a577e73859ab82721c95eb3b79
  [DETECTION] Is the TR/Dropper.MSIL.74914 Trojan
C:\Users\朕\Desktop\2014-09-05_103\7513a2bc0a206d10b25973a348e5acb8
  [DETECTION] Is the TR/Rogue.759999 Trojan
C:\Users\朕\Desktop\2014-09-05_103\796d66a0f17b663e6beeeff7abac6acb
  [DETECTION] Is the TR/Agent.24576.1158 Trojan
C:\Users\朕\Desktop\2014-09-05_103\7b11ba2bdd4952f93e34ee7bfa209bde
  [DETECTION] Is the TR/Dldr.Waski.F.1 Trojan
C:\Users\朕\Desktop\2014-09-05_103\7dc172e9c20833689d9cb306dc044f86
  [DETECTION] Contains recognition pattern of the EXP/CVE-2013-2729.ca exploit
C:\Users\朕\Desktop\2014-09-05_103\7de9787876d0ecb71648f25bd1e5fc51
  [DETECTION] Is the TR/Zusy.105038 Trojan
C:\Users\朕\Desktop\2014-09-05_103\7e18139b8f704d76be49863d2c317154
  [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\7f185cc603d8054c17f83a7079928a40
  [DETECTION] Is the TR/Rogue.159232.12 Trojan
C:\Users\朕\Desktop\2014-09-05_103\80fa4ff9b4ce3ab432e6b120ab5800d6
  [DETECTION] Is the TR/Ransom.243715 Trojan
C:\Users\朕\Desktop\2014-09-05_103\8267a10bba8f525d3b73c44a9e80197f
  [DETECTION] Is the TR/Dldr.Banload.K.282 Trojan
C:\Users\朕\Desktop\2014-09-05_103\82690a44bde92c0c17564e74658c0524
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/DarkKomet.dmly back-door program
C:\Users\朕\Desktop\2014-09-05_103\861178261ef3403f21a5723a370d3587
  [DETECTION] Is the TR/Dropper.VB.20126 Trojan
C:\Users\朕\Desktop\2014-09-05_103\8ad3fb8adef1ac15c01951c1fe2e88b1
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/MSIL.Bladabindi.AJ.3149 back-door program
C:\Users\朕\Desktop\2014-09-05_103\90799cb1edd12a30d33d5219d4cf4140
  [DETECTION] Is the TR/Yarwi.A.47 Trojan
C:\Users\朕\Desktop\2014-09-05_103\94fd4294c40306e1a4ef18dcc3434c1f
  [DETECTION] Is the TR/Crypt.Xpack.87727 Trojan
C:\Users\朕\Desktop\2014-09-05_103\95cef99dd8ed824a90e544deb4f0d56d
  [DETECTION] Is the TR/Samca.2451942 Trojan
C:\Users\朕\Desktop\2014-09-05_103\a014bc7ebf136ade8fa1ac17eec66fda
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
C:\Users\朕\Desktop\2014-09-05_103\a2c0c503a303c78519e0104cddb91f57
  [DETECTION] Is the TR/Kazy.443697 Trojan
C:\Users\朕\Desktop\2014-09-05_103\a6a409bafebb714bdfbc342bdf7bb3bf
  [DETECTION] Is the TR/Crypt.ZPACK.95659 Trojan
C:\Users\朕\Desktop\2014-09-05_103\ae54b8f1a720989a3aef9b23ec06ecac
  [DETECTION] Is the TR/Orbus.A.9 Trojan
C:\Users\朕\Desktop\2014-09-05_103\af27122aae0ae774b345cd7bc02e871a
  [DETECTION] Is the TR/Dropper.VB.20128 Trojan
C:\Users\朕\Desktop\2014-09-05_103\af8b5922a8dc5e7c0406049885c176eb
  [DETECTION] Is the TR/Dropper.MSIL.77840 Trojan
C:\Users\朕\Desktop\2014-09-05_103\b264d3cc648c90a869066a2b246700f3
  [DETECTION] Is the TR/Dldr.Banload.TZM.44 Trojan
C:\Users\朕\Desktop\2014-09-05_103\b575a8747e92a4c2daad7a9b4abbcf1b
  [DETECTION] Is the TR/ATRAPS.A.1749 Trojan
C:\Users\朕\Desktop\2014-09-05_103\b781969bf6ce84eb9a0b51c77f631382
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/NetWiredRC.B.474 back-door program
C:\Users\朕\Desktop\2014-09-05_103\b930ff5fc7ae4c4f6af9df7b36824358
  [DETECTION] Is the TR/Crypt.Xpack.88560 Trojan
C:\Users\朕\Desktop\2014-09-05_103\ba8b8b7764380b859aa4f8a4b5a44f4e
  [DETECTION] Is the TR/Dropper.VB.18637 Trojan
C:\Users\朕\Desktop\2014-09-05_103\bb67caa6ea44915c3cc51f757ad46036
  [DETECTION] Is the TR/Spy.Banker.1866 Trojan
C:\Users\朕\Desktop\2014-09-05_103\bf6d1366821a86a29d7bbe3c1f5f3407
  [DETECTION] Is the TR/Crypt.Xpack.87568 Trojan
C:\Users\朕\Desktop\2014-09-05_103\c0dbf7da39a106dd0bd52425ecc7c7fb
  [DETECTION] Is the TR/Kazy.445039.1 Trojan
C:\Users\朕\Desktop\2014-09-05_103\c238b0d3cdd6ca72003e01b29bf3ddf7
  [DETECTION] Is the TR/Dropper.MSIL.Gen8 Trojan
C:\Users\朕\Desktop\2014-09-05_103\cde25b545f0fc44d93cf83486e683b4f
  [DETECTION] Is the TR/Dropper.MSIL.77555 Trojan
C:\Users\朕\Desktop\2014-09-05_103\d05fe3b7a0fe2a6dccc9d212f7c744b3
  [DETECTION] Is the TR/Ransom.243715 Trojan
C:\Users\朕\Desktop\2014-09-05_103\d0d06b0c9cbeb67f026ceeba97c780a8
  [DETECTION] Is the TR/ATRAPS.A.1751 Trojan
C:\Users\朕\Desktop\2014-09-05_103\db1f31d68fa0bc5b28f7d6f411d533b2
  [DETECTION] Is the TR/Kazy.445190 Trojan
C:\Users\朕\Desktop\2014-09-05_103\dc88fb2070e74dc4bfc27fbda7d3e5eb
  [DETECTION] Is the TR/Kazy.443642 Trojan
C:\Users\朕\Desktop\2014-09-05_103\e0c3c103be7ed0a2781c82d379dc0780
  [DETECTION] Is the TR/PSW.Dyzap.D.7 Trojan
C:\Users\朕\Desktop\2014-09-05_103\e1ee0990ffd0da3df13c1206a6bb9a4b
  [DETECTION] Is the TR/Dldr.Dofoil.T.86 Trojan
C:\Users\朕\Desktop\2014-09-05_103\e28fa154df6d2bb29c4db88f932be2b7
  [DETECTION] Is the TR/Injector.EZR Trojan
C:\Users\朕\Desktop\2014-09-05_103\ebcb40b2ff747f65532b4edf0aec4411
  [DETECTION] Is the TR/Dldr.Delphi.261 Trojan
C:\Users\朕\Desktop\2014-09-05_103\ecfffac1d30e19d63d6b432a07f0a45d
  [DETECTION] Is the TR/Agent.90112.483 Trojan
C:\Users\朕\Desktop\2014-09-05_103\ed4377f94e14fe9051619cc2b15e505f
  [DETECTION] Is the TR/ATRAPS.A.1763 Trojan
C:\Users\朕\Desktop\2014-09-05_103\edaaaa6527a6f42c96f27ce2e427cd39
  [DETECTION] Is the TR/PSW.Dyzap.D.8 Trojan
C:\Users\朕\Desktop\2014-09-05_103\eecb70ff197df03a8f9c12aaf1686f10
  [DETECTION] Is the TR/Crypt.Xpack.87905 Trojan
C:\Users\朕\Desktop\2014-09-05_103\ef3b4513c500ac327a3198716bc12e12
  [DETECTION] Is the TR/Dropper.VB.18675 Trojan
C:\Users\朕\Desktop\2014-09-05_103\f08e81fa8c7b69d6f87274eb079d5ce7
  [DETECTION] Is the TR/Dropper.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\f3c129c679692a65bd8e391a3602bb5c
  [DETECTION] Is the TR/Spy.Gen Trojan
C:\Users\朕\Desktop\2014-09-05_103\f60b195ddc9eedff98c6d9d845843798
  [DETECTION] Is the TR/Dropper.VB.18770 Trojan
C:\Users\朕\Desktop\2014-09-05_103\fbb4afddbd6dcdcd5e3bb622ff8922d7
  [DETECTION] Is the TR/Visucius.110 Trojan
C:\Users\朕\Desktop\2014-09-05_103\fe7d0c5786b24efc2b7e6520a24ccf4c
  [DETECTION] Is the TR/Rogue.349465 Trojan

红伞英文版，开高启发，才找到89个

显示全部楼层 · 发表于 2014-9-6 09:22:47

猪头无双发表于 2014-9-6 08:53
C:\Users\朕\Desktop\2014-09-05_103\00360cd01528966219143421e003aa95
[DETECTION] Is the TR/Scarsi. ...

fsis呢？

显示全部楼层 · 发表于 2014-9-6 09:35:14

卡巴 kill 94

显示全部楼层 · 发表于 2014-9-6 09:41:16

本帖最后由 Renascence 于 2014-9-6 09:51 编辑

7z格式只要用winrar解压，诺顿文件智能分析照样自动检测，分析一通后剩下52个

剩下的52个被MBAM全部秒杀

显示全部楼层 · 发表于 2014-9-6 09:57:29

本帖最后由欧阳宣于 2014-9-6 10:00 编辑

剩9个。91A 3B

显示全部楼层 · 发表于 2014-9-6 10:01:25

本帖最后由流年在消逝于 2014-9-6 10:11 编辑

avast 解压kill90x，再扫kill 4x，剩9x
火绒再kill2x，剩7x
kis再kill5x
最终剩2x

[病毒样本] 2014-09-05 #103

本帖子中包含更多资源

评分

浏览过的版块