来三个

显示全部楼层 · 发表于 2008-1-24 19:22:37

来个

[ 本帖最后由流清泉于 2008-1-24 20:15 编辑 ]

显示全部楼层 · 发表于 2008-1-24 19:33:39

大蜘蛛第1个报，第2个miss

2008.rar\2008最新版.exe;C:\Documents and Settings\77\My Documents\2008.rar;BackDoor.Huai.origin;;
2008.rar;C:\Documents and Settings\77\My Documents;发现档案文件中有受感染的对象;;

显示全部楼层 · 发表于 2008-1-24 19:38:15

楼主应该向2楼学习把样本贴出来
===========================

-------------------------------------------------------------------------------
I:\virus\test/2008最新版.exe: Trojan.Delf-911 FOUND
I:\virus\test/QQ空间人气精灵.exe: Worm.Mytob.Crypt.Gen FOUND
----------- SCAN SUMMARY -----------
Known viruses: 195707
Engine version: 0.92
Scanned directories: 1
Scanned files: 5
Infected files: 2
Data scanned: 0.93 MB
Time: 7.125 sec (0 m 7 s)

============================================

I:\virus\test/QQ.exe: PUA.Packed.UPack FOUND →→→→→→→→→→→→→→→→→→→这个好象发过

----------- SCAN SUMMARY -----------
Known viruses: 195707
Engine version: 0.92
Scanned directories: 1
Scanned files: 1
Infected files: 1
Data scanned: 0.04 MB
Time: 6.640 sec (0 m 6 s)

[ 本帖最后由冷_冷于 2008-1-24 20:31 编辑 ]

显示全部楼层 · 发表于 2008-1-24 19:40:35

我传个东西很慢

显示全部楼层 · 发表于 2008-1-24 19:44:39

2/1

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Backdoor.Win32.Agent.ytz

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.28.32

显示全部楼层 · 发表于 2008-1-24 20:15:46

发现很多时候，BD比卡巴厉害：

显示全部楼层 · 发表于 2008-1-24 20:24:43

第3个 QQ.exe;C:\Documents and Settings\77\My Documents;Trojan.DownLoader.origin;;

显示全部楼层 · 发表于 2008-1-24 20:43:42

detected: Trojan program Trojan-PSW.Win32.QQPass.aro File: E:\ÏÂÔØ»ùµØ\QQ.exe//UPack//PE_Patch.MaskPE
detected: Trojan program Backdoor.Win32.Hupigon.aqlo File: E:\ÏÂÔØ»ùµØ\2008.rar/2008×îÐÂ°æ.exe

显示全部楼层 · 发表于 2008-1-24 20:44:24

kill ..

显示全部楼层 · 发表于 2008-1-25 00:12:08

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\qzone.rar'
C:\Documents and Settings\Administrator\My Documents\
  qzone.rar
[0] Archive type: RAR
发表帖子[完成后可按    --> QQ﾿ￕﾼ￤￈ￋￆ?ﾾﾫ￁￩.exe
      [1] Archive type: Runtime Packed
      --> Object
         [DETECTION] Contains suspicious code HEUR/Crypted
         [WARNING] Infected files in archives cannot be repaired!
Ctrl+Ente --> ﾰ￦ﾱﾾￋﾵￃ?.txt
r 发布]  预览 --> ￃ￢ￔ?￉￹ￃ?.txt
--> ￉�ﾼﾶﾷﾽﾷﾨ.txt
   [INFO]    The file was deleted!
Begin scan in 'C:\Documents and Settings\Administrator\My Documents\QQ.rar'
C:\Documents and Settings\Administrator\My Documents\
  QQ.rar
[0] Archive type: RAR
   --> QQ.exe
      [1] Archive type: Runtime Packed
      --> Object
      [2] Archive type: RSRC
      --> Object
            [DETECTION] Is the Trojan horse TR/Crypt.NSPI.Gen
            [WARNING] Infected files in archives cannot be repaired!
   [INFO]    The file was deleted!
Begin scan in 'C:\Documents and Settings\Administrator\My Documents\2008.rar'
C:\Documents and Settings\Administrator\My Documents\
  2008.rar
[0] Archive type: RAR
   --> 2008ￗ￮￐ￂﾰ￦.exe
      [1] Archive type: RSRC
      --> Object
         [DETECTION] Contains suspicious code HEUR/Malware
         [WARNING] Infected files in archives cannot be repaired!
   [INFO]    The file was deleted!

End of the scan: 2008年1月24日  08:12
Used time: 00:08 min

The scan has been done completely.

   0 Scanning directories
   9 Files were scanned
   1 viruses and/or unwanted programs were found
   2 Files were classified as suspicious:
   3 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   8 Files not concerned
   5 Archives were scanned
   3 Warnings
   0 Notes

[已鉴定] 来三个

回复 1楼流清泉的帖子

第一包

[已鉴定] 来三个

回复 1楼 流清泉 的帖子

第一包

回复 1楼流清泉的帖子