查看: 4039|回复: 21
收起左侧

[已鉴定] 毒网?

 关闭 [复制链接]
asdff
发表于 2008-5-16 13:41:24 | 显示全部楼层 |阅读模式
22680506
发表于 2008-5-16 13:43:07 | 显示全部楼层
SEP11没报
真.菲戈
发表于 2008-5-16 13:45:26 | 显示全部楼层
红伞+firefox没报
Exia 该用户已被删除
发表于 2008-5-16 13:47:25 | 显示全部楼层
Starting the file scan:

Begin scan in 'E:\AV\n.htm'
E:\AV\n.htm
      [DETECTION] Contains suspicious code HEUR/HTML.Malware
      [NOTE]      The fund was classified as suspicious.
      [NOTE]      The file was moved to '489520a1.qua'!
Begin scan in 'E:\AV\new17.htm'


End of the scan: 2008年5月16日  13:49
Used time: 00:20 min

The scan has been done completely.

      0 Scanning directories
      2 Files were scanned
      0 viruses and/or unwanted programs were found
      1 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      1 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      2 Files not concerned
      0 Archives were scanned
      0 Warnings
      1 Notes

The file 'new17.htm' has been determined to be 'MALWARE'.
Our analysts named the threat HTML/Iframe.175. The term "HTML/" denotes a script-virus that is able to infect the system using a HTML script.Detection will be added to our virus definition file (VDF) with one of the next updates.

The file 'n.htm' has been determined to be 'MALWARE'.
Our analysts named the threat EXP/RealPlayer.Dload. The term "EXP/" denotes malware that is able to detect and use certain security vulnerabilities whereby the attacker can get control of the system.Detection will be added to our virus definition file (VDF) with one of the next updates. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/HTML.Malware.

[ 本帖最后由 Exia 于 2008-5-16 21:06 编辑 ]
aribeth199
发表于 2008-5-16 13:52:06 | 显示全部楼层
卡巴没发现。
冷冷
发表于 2008-5-16 14:16:54 | 显示全部楼层

  1. http://js.users.51.la/1872314.js
  2. http://cc.tom999.com/wangma/n.htm
  3. http://cc.tom999.com/wangma/014.js
  4. http://dd.baoma999.com/xiazai/014.exe
复制代码
秋叶濛濛
发表于 2008-5-16 14:17:53 | 显示全部楼层
Log is generated by FreShow.
[wide]http://www.joinmap.com/
    [frame]http://cc.tom999.com/rx/ing01/new17.htm
        [frame]http://cc.tom999.com/wangma/n.htm
            [object]http://dd.baoma999.com/xiazai/abd.cab
            [object]http://dd.baoma999.com/xiazai/bf.exe
            [object]http://dd.baoma999.com/xiazai/rl.exe
            [object]http://dd.baoma999.com/xiazai/014.exe
sam.to
发表于 2008-5-16 14:19:35 | 显示全部楼层

回复 7楼 秋叶濛濛 的帖子

卡巴:

Scanned file:   4.rar  - Infected
4.rar/bf.exe2 - infected by Trojan-Downloader.Win32.Small.ixw
4.rar/rl.exe2 - infected by Trojan-Downloader.Win32.Small.ixw
4.rar/014.exe2 - infected by Trojan-Downloader.Win32.Small.ixw
4.rar/abd.exe3 - infected by Trojan-Downloader.Win32.Small.ixw

[ 本帖最后由 kato9096 于 2008-5-16 14:25 编辑 ]

4.rar

7.62 KB, 下载次数: 52

秋叶濛濛
发表于 2008-5-16 14:19:38 | 显示全部楼层
Avk
扫描系统区域...
扫描所选择的目录和文件...
对象: bf.exe
  在压缩档案里: C:\Documents and Settings\Administrator\桌面\桌面.rar
状态: 已发现病毒
  病毒: Trojan-Downloader.Win32.Small.ixw (AVP引擎)
对象: 014.exe
  在压缩档案里: C:\Documents and Settings\Administrator\桌面\桌面.rar
状态: 已发现病毒
  病毒: Trojan-Downloader.Win32.Small.ixw (AVP引擎)
对象: rl.exe
  在压缩档案里: C:\Documents and Settings\Administrator\桌面\桌面.rar
状态: 已发现病毒
  病毒: Trojan-Downloader.Win32.Small.ixw (AVP引擎)
对象: abd.cab abd.exe
  在压缩档案里: C:\Documents and Settings\Administrator\桌面\桌面.rar
状态: 已发现病毒
  病毒: Trojan-Downloader.Win32.Small.ixw (AVP引擎)
对象: 桌面.rar
路径: C:\Documents and Settings\Administrator\桌面
状态: 已发现病毒
  病毒: Trojan-Downloader.Win32.Small.ixw (4x) (AVP引擎)
分析完成: 2008-5-16 14:22
    已扫描 1 个文件
    已发现 1 个感染文件
    发现 0 个可疑文件

Dr.Web
2.jpg
Avira

Begin scan in 'C:\Documents and Settings\Administrator\桌面\桌面.rar'
C:\Documents and Settings\Administrator\桌面\桌面.rar
  [0] Archive type: RAR
    --> bf.exe
          [DETECTION] Is the Trojan horse TR/Downloader.Gen
    --> 014.exe
          [DETECTION] Is the Trojan horse TR/Downloader.Gen
    --> rl.exe
          [DETECTION] Is the Trojan horse TR/Downloader.Gen
    --> abd.cab
      [1] Archive type: CAB (Microsoft)
      --> abd.exe
            [DETECTION] Is the Trojan horse TR/Downloader.Gen
      [WARNING]   The file was ignored!

[ 本帖最后由 秋叶濛濛 于 2008-5-16 14:21 编辑 ]

桌面.rar

7.66 KB, 下载次数: 44

冷冷
发表于 2008-5-16 14:21:08 | 显示全部楼层

回复 7楼 秋叶濛濛 的帖子

ACEFB4A25907A7168083EF0A6278D162  abd.exe
ACEFB4A25907A7168083EF0A6278D162  bf.exe
ACEFB4A25907A7168083EF0A6278D162  rl.exe
ACEFB4A25907A7168083EF0A6278D162  014.exe
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-16 23:43 , Processed in 0.139779 second(s), 20 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表