收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 第二包23个
123下一页
返回列表 发新帖
楼主: qianwenxiang
 收起左侧

[病毒样本] 第二包23个

[复制链接]
mofunzone
发表于 2008-1-26 16:02:29 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\Malware2'
C:\Documents and Settings\Administrator\My Documents\Malware2\
  0002.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.8704
      [INFO]      The file was deleted!
  01113.exe
    [0] Archive type: RSRC
    --> Object
    --> Object
  1015.exe
  183aa.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.gbj
      [INFO]      The file was deleted!
  77_nm1_29_11_07_0.exe
    [0] Archive type: Runtime Packed
    --> Object
        [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
        [WARNING]   Infected files in archives cannot be repaired!
      [INFO]      The file was deleted!
  af1.dll
      [DETECTION] Is the Trojan horse TR/Dldr.ConHook.Gen
      [INFO]      The file was deleted!
  cfg.bin
  file_1.exe
      [DETECTION] Contains detection pattern of the worm WORM/Ntech.AG
      [INFO]      The file was deleted!
  file_2.exe
      [DETECTION] Is the Trojan horse TR/PSW.Agent.JH.16
      [INFO]      The file was deleted!
  fm.exe
      [DETECTION] Contains detection pattern of the worm WORM/Ntech.AD
      [INFO]      The file was deleted!
  Installer_cna_upx.exe
    [0] Archive type: Runtime Packed
    --> Object
        [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.EZ
        [WARNING]   Infected files in archives cannot be repaired!
      [INFO]      The file was deleted!
  krea.exe
      [DETECTION] Is the Trojan horse TR/Agent.7680.95
      [INFO]      The file was deleted!
  kwpop_43.exe
    [0] Archive type: Runtime Packed
    --> Object
        [DETECTION] Is the Trojan horse TR/Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
      [INFO]      The file was deleted!
  ldig004.exe
    [0] Archive type: Runtime Packed
    --> Object
        [DETECTION] Is the Trojan horse TR/Dropper.Gen
        [WARNING]   Infected files in archives cannot be repaired!
      [INFO]      The file was deleted!
  ldr.exe
  loader.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.AAJL
      [INFO]      The file was deleted!
  ms03011.jar
    [0] Archive type: ZIP
    --> META-INF/MANIFEST.MF
    --> MagicApplet.class
        [DETECTION] Contains detection pattern of the exploits EXP/Java.Bytver.5.B
        [WARNING]   Infected files in archives cannot be repaired!
    --> OwnClassLoader.class
        [DETECTION] Contains detection pattern of the exploits EXP/ByteVerify
        [WARNING]   Infected files in archives cannot be repaired!
    --> ProxyClassLoader.class
        [DETECTION] Contains detection pattern of the exploits EXP/Java.Bytver.5.A
        [WARNING]   Infected files in archives cannot be repaired!
    --> Installer.class
        [DETECTION] Contains detection pattern of the exploits EXP/ByteVerify.S.1
        [WARNING]   Infected files in archives cannot be repaired!
      [INFO]      The file was deleted!
  pbho.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
            [DETECTION] Is the Trojan horse TR/BHO.afz
            [WARNING]   Infected files in archives cannot be repaired!
      [INFO]      The file was deleted!
  severa.exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.ow
      [INFO]      The file was deleted!
  shift.exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.ow
      [INFO]      The file was deleted!
  specialdialer.exe
      [DETECTION] Contains detection pattern of the dial-up program DIAL/Generic
      [INFO]      The file was deleted!
  u_f1_v33_64.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
      [INFO]      The file was deleted!
  zloi.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.dfm.2
      [INFO]      The file was deleted!


End of the scan: 2008年1月26日  00:01
Used time: 00:04 min

The scan has been done completely.

      1 Scanning directories
     28 Files were scanned
     22 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     19 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      6 Files not concerned
      3 Archives were scanned
      9 Warnings
      0 Notes
回复

举报

28654621
头像被屏蔽
发表于 2008-1-26 16:13:39 | 显示全部楼层
D:\download\Malware2.rar>>file_1.exe        TrojanDownloader.Agent.NUQ.xjrr        木马        还未处理
D:\download\Malware2.rar>>file_2.exe        Trojan.Meredrop.a.uhzd        木马        还未处理
D:\download\Malware2.rar>>loader.exe        TrojanDownloader.Small.hpo.okdn        木马        还未处理
D:\download\Malware2.rar>>0002.exe        TrojanDownloader.Small.aabv.heio        木马        还未处理
D:\download\Malware2.rar>>183aa.exe        TrojanDownloader.Agent.gbj.vzsw        木马        还未处理
D:\download\Malware2.rar>>pbho.exe        Trojan.BHO.afz.mixd        木马        还未处理
D:\download\Malware2.rar>>specialdialer.exe        PornDialer.GBDialer.j.bwxk        黑客工具        还未处理
D:\download\Malware2.rar>>01113.exe        TrojanProxy.Xorpix.ck.hkrm        木马        还未处理
D:\download\Malware2.rar>>77_nm1_29_11_07_0.exe        Trojan.Agent.dor.abfj        木马        还未处理
D:\download\Malware2.rar>>fm.exe        TrojanDropper.Agent.dfm.hjqa        木马        还未处理
D:\download\Malware2.rar>>Installer_cna_upx.exe        TrojanProxy.Wopla.as.elxs        木马        还未处理
D:\download\Malware2.rar>>krea.exe        TrojanDownloader.Small.cib.ufcr        木马        还未处理
D:\download\Malware2.rar>>ldig004.exe        TrojanDropper.Mudrop.fv.udcc        木马        还未处理
D:\download\Malware2.rar>>severa.exe        TrojanDownloader.Agent.bkw.yetv        木马        还未处理
D:\download\Malware2.rar>>zloi.exe        TrojanDropper.Agent.dfm.hjqa        木马        还未处理
D:\download\Malware2.rar>>af1.dll        Trojan.Adclicker.kwhb.dll        木马        还未处理
回复

举报

kkgh
发表于 2008-1-26 16:40:41 | 显示全部楼层
瑞星病毒查杀结果报告

清除病毒种类列表:
病毒: Trojan.Win32.Undef.bwv   
病毒: Trojan.Win32.Meredrop.a  
病毒: Trojan.DL.Win32.Small.hao
病毒: Trojan.Win32.Small.jbj   
病毒: Trojan.Win32.BHO.alq     
病毒: Trojan.Dialer.Win32.Agent.yfq
病毒: Trojan.Proxy.Win32.Xorpix.ck
病毒: Trojan.PSW.Win32.Agent.vqx
病毒: Trojan.DL.Win32.Small.frv
病毒: Trojan.DL.Win32.Mnless.ki
病毒: Trojan.DL.Java.Jadoler.a
病毒: Trojan.DL.Java.Agent.b   
病毒: Trojan.DL.Win32.Agent.bxw

用户来源:互联网

软件版本:20.28.50

回复

举报

qigang
发表于 2008-1-26 17:00:01 | 显示全部楼层

32/13

瑞星病毒查杀结果报告

清除病毒种类列表:

病毒: Trojan.Win32.Undef.bwv   
病毒: Trojan.Win32.Meredrop.a  
病毒: Trojan.DL.Win32.Small.hao
病毒: Trojan.Win32.Small.jbj   
病毒: Trojan.Win32.BHO.alq     
病毒: Trojan.Dialer.Win32.Agent.yfq
病毒: Trojan.Proxy.Win32.Xorpix.ck
病毒: Trojan.PSW.Win32.Agent.vqx
病毒: Trojan.DL.Win32.Small.frv
病毒: Trojan.DL.Win32.Mnless.ki
病毒: Trojan.DL.Java.Jadoler.a
病毒: Trojan.DL.Java.Agent.b   
病毒: Trojan.DL.Win32.Agent.bxw

MAC 地址:00:11:5B:F3:6D:69

用户来源:互联网

软件版本:20.28.51
回复

举报

carlwang
发表于 2008-1-26 17:05:25 | 显示全部楼层
dr.web 22个
回复

举报

leonfg
发表于 2008-1-26 18:16:11 | 显示全部楼层
ESET 19
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » file_1.exe - Win32/TrojanDownloader.Agent.NUQ trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » loader.exe - Win32/TrojanDownloader.Nurech.NCH trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » kwpop_43.exe - Win32/TrojanDownloader.Agent.GBI trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » specialdialer.exe - Win32/Dialer.NAD trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » 01113.exe - Win32/Agent.OH trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » fm.exe - Win32/TrojanDownloader.Agent.NUB trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » Installer_cna_upx.exe - Win32/TrojanProxy.Wopla.AS trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » krea.exe - Win32/KillAV.NBO trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » ldig004.exe - Win32/TrojanDownloader.Small.NTQ trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » severa.exe - Win32/TrojanDownloader.Agent.BKW trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » u_f1_v33_64.exe - a variant of Win32/TrojanProxy.Dlena trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » zloi.exe - Win32/TrojanDownloader.Agent.NUB trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » shift.exe - probably a variant of Win32/Nuwar.Gen worm
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » ms03011.jar » ZIP » MagicApplet.class - Java/TrojanDownloader.OpenConnection trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » ms03011.jar » ZIP » OwnClassLoader.class - Java/Exploit.Bytverify trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » ms03011.jar » ZIP » ProxyClassLoader.class - Java/Exploit.Bytverify trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » ms03011.jar » ZIP » Installer.class - Java/TrojanDownloader.Agent.A trojan
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » af1.dll - a variant of Win32/Adware.Virtumonde application
C:\Documents and Settings\GUNDAM\桌面\Malware2.rar » RAR » 1015.exe - probably a variant of Win32/Genetik trojan
回复

举报

Palkia
发表于 2008-1-26 19:46:59 | 显示全部楼层

卡巴21~费尔18

C:\Documents and Settings\Administrator\桌面\Malware2.rar>>0002.exe        TrojanDownloader.Small.aabv.heio        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>01113.exe        TrojanProxy.Xorpix.ck.hkrm        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>183aa.exe        TrojanDownloader.Agent.gbj.vzsw        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>77_nm1_29_11_07_0.exe        Trojan.Agent.dor.abfj        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>af1.dll        Trojan.Adclicker.kwhb.dll        木马        还未处理
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TWIEXB\ZLOI.EXE        TrojanDropper.Agent.dfm.hjqa        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>file_1.exe        TrojanDownloader.Agent.NUQ.xjrr        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>file_2.exe        Trojan.Meredrop.a.uhzd        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>fm.exe        TrojanDropper.Agent.dfm.hjqa        木马        还未处理
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TWIEXB\AF1.DLL        Trojan.Adclicker.kwhb.dll        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>Installer_cna_upx.exe        TrojanProxy.Wopla.as.elxs        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>krea.exe        TrojanDownloader.Small.cib.ufcr        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>ldig004.exe        TrojanDropper.Mudrop.fv.udcc        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>loader.exe        TrojanDownloader.Small.hpo.okdn        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>pbho.exe        Trojan.BHO.afz.mixd        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>severa.exe        TrojanDownloader.Agent.bkw.yetv        木马        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>specialdialer.exe        PornDialer.GBDialer.j.bwxk        黑客工具        还未处理
C:\Documents and Settings\Administrator\桌面\Malware2.rar>>zloi.exe        TrojanDropper.Agent.dfm.hjqa        木马        还未处理
回复

举报

sam.to
发表于 2008-1-26 20:08:45 | 显示全部楼层
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.hmc        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/file_1.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Small.cyn        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/file_2.exe//#
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Small.hpo        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/loader.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Small.hua        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/0002.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.gbj        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/183aa.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.gbi        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/kwpop_43.exe//PE_Patch.PECompact//PecBundle//PECompact
已刪除: 特洛伊木馬程式 Trojan.Win32.BHO.afz        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/pbho.exe//PE_Patch.PECompact//PecBundle//PECompact
已刪除: 色情程式 not-a-virus:Porn-Dialer.Win32.GBDialer.j        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/specialdialer.exe
已刪除: 特洛伊木馬程式 Trojan-Proxy.Win32.Xorpix.ck        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/01113.exe
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.dor        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/77_nm1_29_11_07_0.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Diehard.dd        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/fm.exe
已刪除: 特洛伊木馬程式 Trojan-Proxy.Win32.Wopla.as        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/Installer_cna_upx.exe//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Small.cib        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/krea.exe//PE_Patch.UPX
已刪除: 特洛伊木馬程式 Trojan-Dropper.Win32.Mudrop.fv        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/ldig004.exe//PE_Patch.PECompact//PecBundle//PECompact
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Tibs.ul        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/severa.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.LdPinch.eoq        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/u_f1_v33_64.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Diehard.dd        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/zloi.exe
已刪除: 病毒 Email-Worm.Win32.Zhelatin.uq        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/shift.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Java.OpenConnection.ao        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/ms03011.jar/MagicApplet.class
已刪除: 特洛伊木馬程式 Trojan-Downloader.Java.Agent.a        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/ms03011.jar/Installer.class
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Virtumonde.ecc        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/af1.dll
已刪除: 特洛伊木馬程式 Trojan.Win32.DNSChanger.aum        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/1015.exe
已刪除: 特洛伊木馬程式 Trojan-Dropper.Win32.FriJoiner.fl        檔案: C:\Documents and Settings\kato9096\桌面\Malware2.rar/ldr.exe

23,2个不报,上报
回复

举报

woai_jolin
发表于 2008-1-26 20:26:28 | 显示全部楼层
2008-1-26 20:26:19        Real-time file system protection        file        G:\v\Installer.class        Java/TrojanDownloader.Agent.A trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:26:17        Real-time file system protection        file        G:\v\ProxyClassLoader.class        Java/Exploit.Bytverify trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:26:16        Real-time file system protection        file        G:\v\OwnClassLoader.class        Java/Exploit.Bytverify trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:26:15        Real-time file system protection        file        G:\v\MagicApplet.class        Java/TrojanDownloader.OpenConnection trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:57        Real-time file system protection        file        G:\v\1015.exe        probably a variant of Win32/Genetik trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:55        Real-time file system protection        file        G:\v\af1.dll        a variant of Win32/Adware.Virtumonde application        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:53        Real-time file system protection        file        G:\v\shift.exe        probably a variant of Win32/Nuwar.Gen worm        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:51        Real-time file system protection        file        G:\v\zloi.exe        Win32/TrojanDownloader.Agent.NUB trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:50        Real-time file system protection        file        G:\v\u_f1_v33_64.exe        a variant of Win32/TrojanProxy.Dlena trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:49        Real-time file system protection        file        G:\v\severa.exe        Win32/TrojanDownloader.Agent.BKW trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:48        Real-time file system protection        file        G:\v\ldig004.exe        Win32/TrojanDownloader.Small.NTQ trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:46        Real-time file system protection        file        G:\v\krea.exe        Win32/KillAV.NBO trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:45        Real-time file system protection        file        G:\v\Installer_cna_upx.exe        Win32/TrojanProxy.Wopla.AS trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:44        Real-time file system protection        file        G:\v\fm.exe        Win32/TrojanDownloader.Agent.NUB trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:43        Real-time file system protection        file        G:\v\01113.exe        Win32/Agent.OH trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:41        Real-time file system protection        file        G:\v\specialdialer.exe        Win32/Dialer.NAD trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:40        Real-time file system protection        file        G:\v\kwpop_43.exe        Win32/TrojanDownloader.Agent.GBI trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:39        Real-time file system protection        file        G:\v\loader.exe        Win32/TrojanDownloader.Nurech.NCH trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
2008-1-26 20:25:37        Real-time file system protection        file        G:\v\file_1.exe        Win32/TrojanDownloader.Agent.NUQ trojan        cleaned by deleting - quarantined        NT AUTHORITY\SYSTEM        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.
回复

举报

冷冷
发表于 2008-1-26 20:30:51 | 显示全部楼层

I:\virus\test\0002.exe - Signature 'Trojan-Downloader.Win32.Small.hua' found
I:\virus\test\01113.exe - Signature 'Trojan.Generic' found
I:\virus\test\1015.exe - Signature 'Trojan.DNSChanger.BX' found
I:\virus\test\183aa.exe - Signature 'Trojan-Downloader.Win32.Agent.gbj' found
I:\virus\test\77_nm1_29_11_07_0.exe - Signature 'Trojan.Win32.Agent.dor' found
I:\virus\test\af1.dll - Signature 'Trojan.Vundo.DUC' found
I:\virus\test\cfg.bin
I:\virus\test\file_1.exe - Signature 'Trojan-Downloader.Win32.Agent.hmc' found
I:\virus\test\file_2.exe - Signature 'Virus.Win32.Small.GWP' found
I:\virus\test\fm.exe - Signature 'Trojan-Downloader.Win32.Diehard.dd' found
I:\virus\test\Installer.class - Signature 'Trojan-Downloader.Java.Agent.a' found
I:\virus\test\Installer_cna_upx.exe
I:\virus\test\krea.exe - Signature 'Trojan-Downloader.Win32.Small.cib' found
I:\virus\test\kwpop_43.exe - Signature 'Trojan-Downloader.Win32.Agent.gbi' found
I:\virus\test\ldig004.exe - Signature 'Trojan-Downloader.Win32.Diehard.dd' found
I:\virus\test\ldr.exe
I:\virus\test\loader.exe - Signature 'Trojan-Downloader.Win32.Small.hpo' found
I:\virus\test\MagicApplet.class - Signature 'Java.Trojan.Exploit.Bytverify' found
I:\virus\test\MANIFEST.MF
I:\virus\test\OwnClassLoader.class - Signature 'Trojan.Exploit.ByteVerify.V' found
I:\virus\test\pbho.exe - Suspect code-parts found (Level: 150)
I:\virus\test\ProxyClassLoader.class - Signature 'Java.Trojan.Exploit.Bytverify' found
I:\virus\test\severa.exe - Signature 'Trojan.Peed.ITU' found
I:\virus\test\shift.exe
I:\virus\test\specialdialer.exe - Signature 'not-a-virus:Porn-Dialer.Win32.GBDialer.j' found
I:\virus\test\u_f1_v33_64.exe - Signature 'Trojan-Spy.Win32.Agent.axg' found
I:\virus\test\zloi.exe - Signature 'Trojan-Downloader.Win32.Diehard.dd' found
27 Files scanned
   (0 Archives with 0 files)
21 Signatures found
1 Suspect code-part found
Used time: 0:00.734

-------------------------------------------------------------------------------

I:\virus\test/01113.exe: PUA.Packed.UPack FOUND
I:\virus\test/file_1.exe: Email.Ecard-38 FOUND
I:\virus\test/fm.exe: Trojan.Dropper-3413 FOUND
I:\virus\test/Installer_cna_upx.exe: Trojan.Proxy-1839 FOUND
I:\virus\test/krea.exe: Trojan.Downloader-18008 FOUND
I:\virus\test/kwpop_43.exe: Trojan.Downloader-19298 FOUND
I:\virus\test/severa.exe: Trojan.Dropper-3840 FOUND
I:\virus\test/shift.exe: Trojan.Dropper-3840 FOUND
I:\virus\test/specialdialer.exe: Dialer-950 FOUND
I:\virus\test/u_f1_v33_64.exe: Trojan.Spy-19634 FOUND
I:\virus\test/zloi.exe: Trojan.Dropper-3413 FOUND
----------- SCAN SUMMARY -----------
Known viruses: 197940
Engine version: 0.92
Scanned directories: 1
Scanned files: 27
Infected files: 11
Data scanned: 0.78 MB
Time: 6.578 sec (0 m 6 s)
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-25 16:12 , Processed in 0.099209 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表