worm zhelatin 109

显示全部楼层 · 发表于 2008-2-14 21:59:55

hunters 团队合作效率高

显示全部楼层 · 发表于 2008-2-14 22:02:41

avast 080211-0, 2008-02-11只报了一个..

显示全部楼层 · 发表于 2008-2-14 22:03:32

IK

110 Files scanned
(1 Archiv with 109 files)
1 Signature found
0 Suspect code-parts found
Used time: 0:01.203

显示全部楼层 · 发表于 2008-2-14 22:05:35

开始扫描,时间 2008-2-14 22:04:36
事件发生:2008-2-14 22:04:36
发现病毒:C:\Test\0802\Data14\Collection\win32(1).exe
病毒名称: Common Trojan
未对该文件做出任何动作。
事件发生:2008-2-14 22:04:37
发现病毒:C:\Test\0802\Data14\Collection\win32(30).exe
病毒名称:TR.Dldr.4454
未对该文件做出任何动作。
事件发生:2008-2-14 22:04:37
发现病毒:C:\Test\0802\Data14\Collection\win32(46).exe
病毒名称:TR.Dldr.38D3
未对该文件做出任何动作。
事件发生:2008-2-14 22:04:38
发现病毒:C:\Test\0802\Data14\Collection\win32(82).exe
病毒名称:TR.Dldr.1C42F
未对该文件做出任何动作。
扫描已经结束,时间 2008-2-14 22:04:38

适当提高VELIM的误报率的结果

显示全部楼层 · 发表于 2008-2-14 22:05:42

KV2008全挂，卡巴1个。

显示全部楼层 · 发表于 2008-2-14 22:06:13

F:\virus\Collection1.rar » RAR » win32(1).exe - probably a variant of Win32/Statik application
F:\virus\Collection1.rar » RAR » win32(9).exe - probably a variant of Win32/TrojanDownloader.Small.AWA trojan
F:\virus\Collection1.rar » RAR » win32(50).exe - probably a variant of Win32/Statik application

好刺激

显示全部楼层 · 发表于 2008-2-14 22:06:22

Starting the file scan:

Begin scan in 'D:\Virus\Collection2.rar'
D:\Virus\Collection2.rar
  [0] Archive type: RAR
  --> win32(1).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(2).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(3).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(4).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(5).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(6).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(7).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(8).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(9).exe
   [DETECTION] Is the Trojan horse TR/Crypt.F.Gen
  --> win32(10).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(11).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(12).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(13).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(14).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(15).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(16).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(17).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(18).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(19).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(20).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(21).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(22).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(23).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(24).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(25).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(26).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(27).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(28).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(29).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(30).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(31).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(32).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(33).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(34).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(35).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(36).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(37).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(38).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(39).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(40).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(41).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(42).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(43).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(44).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(45).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(46).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(47).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(48).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(49).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(50).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(51).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(52).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(53).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(54).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(55).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(56).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(57).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(58).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(59).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(60).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(61).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(62).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(63).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(64).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(65).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(66).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(67).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(68).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(69).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(70).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(71).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(72).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(73).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(74).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(75).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(76).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(77).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(78).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(79).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(80).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(81).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(82).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(83).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(84).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(85).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(86).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(87).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(88).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(89).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(90).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(91).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(92).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(93).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(94).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(95).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(96).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(97).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(98).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(99).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(100).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(101).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(102).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(103).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(104).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(105).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(106).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(107).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32(108).exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> win32.exe
   [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
   [WARNING] The file was ignored!

End of the scan: 2008年2月14日  22:05
Used time: 00:14 min

The scan has been done completely.

   0 Scanning directories
110 Files were scanned
109 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine

   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   1 Archives were scanned
   1 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-2-14 22:06:55

Gen的强大威力

显示全部楼层 · 发表于 2008-2-14 22:07:31

avira的gen搞错一个TR/Crypt.F.Gen
壳啊壳...

显示全部楼层 · 发表于 2008-2-14 22:08:46

e
查杀率也提高不少
样本区很多都用这个

[病毒样本] worm zhelatin 109

本帖子中包含更多资源

antivir 109

回复 9楼 jimmyleo 的帖子