[病毒样本] 1

显示全部楼层 · 发表于 2008-2-17 01:48:33

我之前已经发过了，给你找下链接哈
http://bbs.kafan.cn/viewthread.php?tid=204141

显示全部楼层 · 发表于 2008-2-17 01:52:58

浪费我感情啊~~~
不过，貌似有更新了
卡巴一个漏
一个启发
已经上报

显示全部楼层 · 发表于 2008-2-17 01:56:13

IK
I:\virus\February\17\777.rar:\777\1.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\17\777.rar:\777\10.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\11.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\12.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\13.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\14.exe - Signature 'Trojan-PWS.Win32.OnLineGames.rdx' found
I:\virus\February\17\777.rar:\777\15.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\17\777.rar:\777\16.exe - Suspect code-parts found (Level: 5)
I:\virus\February\17\777.rar:\777\17.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\18.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\19.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\2.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\17\777.rar:\777\20.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\21.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\22.exe - Signature 'Generic.PWS.Games.1' found
I:\virus\February\17\777.rar:\777\23.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\24.exe - Suspect code-parts found (Level: 5)
I:\virus\February\17\777.rar:\777\25.exe - Signature 'Trojan-Proxy.Win32.Delf.AN' found
I:\virus\February\17\777.rar:\777\26.exe - Signature 'Backdoor.Win32.Agent.ahj' found
I:\virus\February\17\777.rar:\777\3.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\4.exe - Suspect code-parts found (Level: 5)
I:\virus\February\17\777.rar:\777\5.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\6.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\7.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar:\777\8.exe - Signature 'Win32.SuspectCrc' found
I:\virus\February\17\777.rar:\777\9.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\17\777.rar

27 Files scanned
(1 Archiv with 26 files)
23 Signatures found
3 Suspect code-parts found
Used time: 0:00.719

显示全部楼层 · 发表于 2008-2-17 01:56:14

A版，你的头像太邪恶了，快赶上阿米了

显示全部楼层 · 发表于 2008-2-17 01:57:38

阿米的头像是我给的~~

显示全部楼层 · 发表于 2008-2-17 02:01:52

让人以为阿米是人妖

，A版你太XE了，十分，非常的XE

显示全部楼层 · 发表于 2008-2-17 02:06:23

我没有这个意思哦~~
BTW
貌似头像不代表自己性别的哦~~

看来你被头像吸引了~~
相若菲菲了~~

显示全部楼层 · 发表于 2008-2-17 03:33:13

卡巴斯基互联网安全套装 7.0
The requested URL http://bbs.kafan.cn/attachment.php?aid=202081 is infected with Heur.Downloader virus

显示全部楼层 · 发表于 2008-2-17 04:55:44

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\777.rar'
C:\Documents and Settings\Administrator\My Documents\
  777.rar
  777.rar:Zone.Identifier
[0] Archive type: RAR
--> 777\1.exe
      [DETECTION] Is the Trojan horse TR/PSW.Online.aav.1
      [WARNING] Infected files in archives cannot be repaired!
--> 777\10.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.4
      [WARNING] Infected files in archives cannot be repaired!
--> 777\11.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qnq.3
      [WARNING] Infected files in archives cannot be repaired!
--> 777\12.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\13.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qoz.7
      [WARNING] Infected files in archives cannot be repaired!
--> 777\14.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.11987
      [WARNING] Infected files in archives cannot be repaired!
--> 777\15.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\16.exe
      [DETECTION] Is the Trojan horse TR/Hook.Shell.519
      [WARNING] Infected files in archives cannot be repaired!
--> 777\17.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qiv
      [WARNING] Infected files in archives cannot be repaired!
--> 777\18.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.6
      [WARNING] Infected files in archives cannot be repaired!
--> 777\19.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\2.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\20.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QYF.4
      [WARNING] Infected files in archives cannot be repaired!
--> 777\21.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\22.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.rer
      [WARNING] Infected files in archives cannot be repaired!
--> 777\23.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\24.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
      [WARNING] Infected files in archives cannot be repaired!
--> 777\25.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [WARNING] Infected files in archives cannot be repaired!
--> 777\26.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 777\3.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qze
      [WARNING] Infected files in archives cannot be repaired!
--> 777\4.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
      [WARNING] Infected files in archives cannot be repaired!
--> 777\5.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QYF.3
      [WARNING] Infected files in archives cannot be repaired!
--> 777\6.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.5
      [WARNING] Infected files in archives cannot be repaired!
--> 777\7.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.3
      [WARNING] Infected files in archives cannot be repaired!
--> 777\8.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.11941
      [WARNING] Infected files in archives cannot be repaired!
--> 777\9.exe
      [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
      [WARNING] Infected files in archives cannot be repaired!
      [INFO]    The file was deleted!

End of the scan: 2008年2月16日  12:55
Used time: 00:05 min

The scan has been done completely.

   0 Scanning directories
   28 Files were scanned
   23 viruses and/or unwanted programs were found
   3 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   5 Files not concerned
   1 Archives were scanned
   26 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-2-17 21:10:37

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.DL.Delf.ynr

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.31.50

[病毒样本] 1

回复 9楼 ALEXBLAIR 的帖子

回复 11楼 zzh161 的帖子

回复 9楼 ALEXBLAIR 的帖子

回复 12楼 ALEXBLAIR 的帖子

回复 14楼 zzh161 的帖子

回复 15楼 ALEXBLAIR 的帖子

回复 16楼 zzh161 的帖子

2/1