Panda 發現新威脅~~

蔚藍領域

Panda  S.O.S  Virus  病毒分析實驗室已證實此檔案 TEST.rar 內含惡意程式,病毒類型屬於: Adware/BaiduBar

詳細資訊: http://www.pandasecurity.com/homeusers/security-info/about-malware/encyclopedia/overview.aspx?IdVirus=72044

sam.to

卡巴不报．．．．上报．．．

冷冷

I:\virus\test\TEST.exe:\anzhuang.bat
I:\virus\test\TEST.exe:\uninstall.cmd
I:\virus\test\TEST.exe:\vsdrv.exe - Signature 'Trojan-PWS.Win32.Agent.bn' found
I:\virus\test\TEST.exe:\00.ico
I:\virus\test\TEST.exe:\08.ico
I:\virus\test\TEST.exe:\16.ico
I:\virus\test\TEST.exe:\25.ico
I:\virus\test\TEST.exe:\33.ico
I:\virus\test\TEST.exe:\41.ico
I:\virus\test\TEST.exe:\50.ico
I:\virus\test\TEST.exe:\58.ico
I:\virus\test\TEST.exe:\67.ico
I:\virus\test\TEST.exe:\75.ico
I:\virus\test\TEST.exe:\83.ico
I:\virus\test\TEST.exe:\92.ico
I:\virus\test\TEST.exe:\99.ico
I:\virus\test\TEST.exe:\s08.ico
I:\virus\test\TEST.exe:\s16.ico
I:\virus\test\TEST.exe:\s25.ico
I:\virus\test\TEST.exe:\s33.ico
I:\virus\test\TEST.exe:\s41.ico
I:\virus\test\TEST.exe:\s50.ico
I:\virus\test\TEST.exe:\s58.ico
I:\virus\test\TEST.exe:\s67.ico
I:\virus\test\TEST.exe:\s75.ico
I:\virus\test\TEST.exe:\s83.ico
I:\virus\test\TEST.exe:\s92.ico
I:\virus\test\TEST.exe:\s99.ico
I:\virus\test\TEST.exe
29 Files scanned
   (1 Archiv with 28 files)
1 Signature found
0 Suspect code-parts found
Used time: 0:00.844

ballakay

百度搜霸?!

醉一生爱妍

只會瘋狂下網頁？？

qigang

一个软件，rising20.28.52未杀。

wangjay1980

百度估计卡巴不会入库

sam.to

Hello.
No malicious software was found in the attached file.

Please quote all when answering. Do not forget to include you registration data.
-----------------
Regards, Maslennikov Denis
Virus Analyst, Kaspersky Lab.

Ph.: +7(495) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

傻猪猪米走鸡

Threat level:        Low

jehovah_king

凭以往上报经验，似乎会

Hello.
not-a-virus:AdWare.Win32.Ejik.l
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.
-----------------
Regards, Yury Nesmachny
Virus Analyst, Kaspersky Lab.

Ph.: +7(495) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com


> Attachment: compress-icon.png
> Attachment: print-icon.png
> Attachment: avp.zip

>  File 1026.exe received on 12.03.2007 15:26:15 (CET)
>  Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
>
>  Result: 7/32 (21.88%)
>  Loading server information...
>  Your file is queued in position: ___.
>  Estimated start time is between ___ and ___ .
>  Do not close the window until scan is complete.
>  The scanner that was processing your file is stopped at this moment, we are going to wait a few seconds to try to recover your result.
>  If you are waiting for more than five minutes you have to resend your file.
>  Your file is being scanned by VirusTotal in this moment,
>  results will be shown as they're generated.
>  [] Compact<http://www.virustotal.com/result ... 3b34c7a4156efb8512#>
>  Print results<javascript:window.print()> []
>  Your file has expired or does not exists.
>  Service is stopped in this moments, your file is waiting to be scanned (position: ) for an undefined time.
>
>  You can wait for web response (automatic reload) or type your email in the form below and click "request" so the system sends you a notification when the scan is finished.
>
>  Email:
>
>  Antivirus       Version Last Update     Result
>  AhnLab-V3       2007.12.3.0     2007.12.03      -
>  AntiVir 7.6.0.34        2007.12.03      HEUR/Malware
>  Authentium      4.93.8  2007.12.02      -
>  Avast   4.7.1074.0      2007.12.03      Win32:Baidubar-B
>  AVG     7.5.0.503       2007.12.03      -
>  BitDefender     7.2     2007.12.03      -
>  CAT-QuickHeal   9.00    2007.12.01      (Suspicious) - DNAScan
>  ClamAV  0.91.2  2007.12.03      -
>  DrWeb   4.44.0.09170    2007.12.03      -
>  eSafe   7.0.15.0        2007.11.29      Suspicious File
>  eTrust-Vet      31.3.5340       2007.11.30      -
>  Ewido   4.0     2007.12.03      -
>  FileAdvisor     1       2007.12.03      -
>  Fortinet        3.14.0.0        2007.12.03      -
>  F-Prot  4.4.2.54        2007.12.02      -
>  F-Secure        6.70.13030.0    2007.12.03      -
>  Ikarus  T3.1.1.12       2007.12.03      Virus.Win32.Baidubar.B
>  Kaspersky       7.0.0.125       2007.12.03      -
>  McAfee  5175    2007.11.30      -
>  Microsoft       1.3007  2007.12.03      -
>  NOD32v2 2698    2007.12.03      -
>  Norman  5.80.02 2007.12.03      -
>  Panda   9.0.0.4 2007.12.02      -
>  Prevx1  V2      2007.12.03      -
>  Rising  20.21.02.00     2007.12.03      -
>  Sophos  4.23.0  2007.12.03      -
>  Sunbelt 2.2.907.0       2007.12.01      VIPRE.Suspicious
>  Symantec        10      2007.12.03      -
>  TheHacker       6.2.9.147       2007.12.01      -
>  VBA32   3.12.2.5        2007.12.03      -
>  VirusBuster     4.3.26:9        2007.12.03      -
>  Webwasher-Gateway       6.6.2   2007.12.03      Heuristic.Malware
>  Additional information
>  File size: 415236 bytes
>  MD5: d30cf3938fda7c938c0bd2c07dc1f0ba
>  SHA1: d94514bb436bcee74f4ca7202dff1c35859e6188
>  PEiD: PECompact 2.xx --> BitSum Technologies
>  packers: PECompact
>  packers: PecBundle, PECompact
>  packers: PE_Patch.PECompact, PecBundle, PECompact
>  Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
>    C   ┘   x 8