春节巨献，2008年01月流行样本汇总 【样本数：1285】

llgiggs

分流地址：http://www.filefactory.com/file/d0f4f7/

冷冷

感谢哦1！终于可以分流啦

jimmyleo

bd 今晚更新的库
Total signatures: 978528

1285-340

因为bd一样可以删除nsis部分文件还有清除vbs所以侦测和剩余也有出入

964+62=1026 而 按剩下算 945....

jimmyleo

sophos倒没这个问题
今晚更新库
Includes detection for 321499 viruses, trojans and worms

1285-103

北方星空

我有没有看错，60多MB，不下的顶你

冷冷

结果：
----------- SCAN SUMMARY -----------
Known viruses: 201338
Engine version: 0.92 →5634
Scanned directories: 1
Scanned files: 1285
Infected files: 1002
Data scanned: 151.00 MB
Time: 110.406 sec (1 m 50 s)

1285-283

[ 本帖最后由 冷_冷 于 2008-2-1 21:28 编辑 ]

wangjay1980

Hello,

ad_1.vir, ad_10.vir, ad_11.vir, ad_2.vir, ad_21.vir, ad_3.vir, ad_4.vir, ad_7.vir, ad_8.vir, ad_9.vir, Bd_25.vir, Trj_1037.vir, Trj_1071.vir, Trj_1075.vir, Trj_1082.vir, Trj_111.vir, Trj_1129.vir, Trj_1158.vir, Trj_249.vir, Trj_748.vir, Trj_92.vir

No malicious code were found in these files.

ad_19.vir - Trojan-Downloader.Win32.Delf.eln,
Bd_11.vir, Bd_6.vir - Packed.Win32.Klone.af,
Bd_15.vir - Backdoor.Win32.Hupigon.enb,
Trj_1061.vir - Worm.Win32.AutoRun.cil,
Trj_1123.vir - Trojan-PSW.Win32.OnLineGames.msh,
Trj_15.vir - Trojan-PSW.Win32.OnLineGames.kry,
Trj_310.vir, Trj_370.vir, Trj_485.vir, Trj_703.vir, Trj_98.vir - Trojan.Win32.Vaklik.if,
Trj_348.vir - Trojan-PSW.Win32.OnLineGames.qhu,
Trj_349.vir - Trojan-PSW.Win32.QQPass.atp,
Trj_35.vir - Trojan-PSW.Win32.OnLineGames.mjg,
Trj_352.vir, Trj_928.vir - Trojan.Win32.Vaklik.ih,
Trj_355.vir - Trojan.Win32.Vaklik.ig,
Trj_405.vir - Trojan-PSW.Win32.OnLineGames.nbk,
Trj_424.vir - Trojan-Downloader.Win32.Hmir.yt,
Trj_439.vir - Trojan-Downloader.Win32.Agent.gwh,
Trj_465.vir, Trj_933.vir - Trojan-PSW.Win32.OnLineGames.mzs,
Trj_494.vir - Trojan-PSW.Win32.OnLineGames.nov,
Trj_504.vir, Trj_510.vir, Trj_523.vir - Trojan-PSW.Win32.OnLineGames.nnl,
Trj_571.vir - Trojan-PSW.Win32.OnLineGames.mlu,
Trj_576.vir - Trojan-PSW.Win32.OnLineGames.ltm,
Trj_584.vir - Trojan-PSW.Win32.OnLineGames.mux,
Trj_610.vir, Trj_934.vir - Trojan-PSW.Win32.OnLineGames.qhi,
Trj_709.vir - Trojan-PSW.Win32.OnLineGames.qhj,
Trj_88.vir - Trojan-Downloader.Win32.Agent.hql,
Trj_886.vir - Trojan-Downloader.JS.Agent.bdu,
Trj_919.vir - Trojan-Downloader.Win32.Agent.imr,
Trj_925.vir - Trojan-PSW.Win32.OnLineGames.mup,
Trj_931.vir - Trojan-PSW.Win32.OnLineGames.mzj

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Trj_1013.vir, Trj_1025.vir, Trj_1118.vir, Trj_218.vir, Trj_63.vir

These files are corrupted.

Trj_316.vir, Trj_719.vir, Trj_860.vir - Trojan-PSW.Win32.OnLineGames.qgw,
Trj_351.vir - Trojan-Dropper.Win32.Agent.ebc

These files are already detected. Please update your antivirus bases.

Please quote all when answering.

--
Best regards, Vyacheslav Zakorzhevsky
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.



> Attachment: 0801.zip

挪威的冬天

日志查看器中如下

信息        2008-02-01  20:45:48        金山毒霸主程序 退出                        
信息        2008-02-01  20:45:40        您此次查毒有1次操作失败                        
信息        2008-02-01  20:45:40        您此次查毒删除了1个文件                        
信息        2008-02-01  20:45:40        您此次查毒清除了1141个病毒                        
信息        2008-02-01  20:45:40        您此次查毒共查出1142个病毒以及危险代码                        
信息        2008-02-01  20:45:40        您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件2032个                        
信息        2008-02-01  20:45:40        金山毒霸主程序查毒过程结束，查毒方式：命令行查毒                        

解压文件夹中剩余 146 项目 重新扫描后又隔离一个 （前面删除失败）
1285-146+1=1140

P。S。 2008.2.1.17 的病毒库

[ 本帖最后由 挪威的冬天 于 2008-2-1 21:03 编辑 ]

wangjay1980

刨除26个卡巴认定无毒和损坏的文件

卡巴剩余8个未杀

IllusionWing

1128 中报告是漏杀了157个..但清除之后是156个...咱回事??