很黄很暴力norman报

显示全部楼层 · 发表于 2008-6-10 23:17:26

http://a.ddddx.net/Html/ZR/953695.html
http://a.ddddx.net/Html/ZR/0707465.html
HTML/Iframe.D
VBS/Psyme.BF

很h很bl的网站还是少去为好

显示全部楼层 · 发表于 2008-6-10 23:46:08

下载地址：http://aaa.awercom.com/aaa.exe

Log is generated by FreShow.
[wide]http://a.ddddx.net/Html/ZR/953695.html
[script]http://a.ddddx.net/Html/ZR/../../js_top.js
[script]http://a.ddddx.net/Html/ZR/../../js_1.js
[script]http://a.ddddx.net/Html/ZR/../../js_2.js
[script]http://a.ddddx.net/Html/ZR/../../js_3.js
[frame]http://aaa.awercom.com/pp/index.htm
      [frame]http://aaa.awercomcn.cn/pp/14.htm
         [object]http://aaa.awercom.com/aaa.exe
      [frame]http://aaa.awercomcn.cn/fzl.htm
      [frame]http://aaa.awercomcn.cn/pp/real.htm
      [frame]http://aaa.awercom.com/pp/lz.htm
      [script]http://js.tongji.yahoo.com.cn/1/390/18/ystat.js

显示全部楼层 · 发表于 2008-6-10 23:47:08

Log is generated by FreShow.
[wide]http://a.ddddx.net/Html/ZR/0707465.html
[script]http://a.ddddx.net/Html/ZR/../../js_top.js
[script]http://a.ddddx.net/Html/ZR/../../js_1.js
[script]http://a.ddddx.net/Html/ZR/../../js_2.js
[script]http://a.ddddx.net/Html/ZR/../../js_3.js
[frame]http://aaa.awercom.com/pp/index.htm
      [frame]http://aaa.awercomcn.cn/pp/14.htm
         [object]http://aaa.awercom.com/aaa.exe
      [frame]http://aaa.awercomcn.cn/fzl.htm
      [frame]http://aaa.awercomcn.cn/pp/real.htm
      [frame]http://aaa.awercom.com/pp/lz.htm
      [script]http://js.tongji.yahoo.com.cn/1/390/18/ystat.js

显示全部楼层 · 发表于 2008-6-10 23:48:01

--->http://aaa.awercom.com/aaa.exe

显示全部楼层 · 发表于 2008-6-10 23:52:06

Dropped:Generic.Malware.P!BdldPk!g.7591D6B8 (BD 引擎)

显示全部楼层 · 发表于 2008-6-11 00:12:43

a-squared	3.5.0.18	2008.06.09	2008-06-09	-	4.483
AntiVir	7.8.0.55	7.0.4.172	2008-06-10	TR/Drop.Agent.25744	4.233
Arcavir	1.0.4	200806101147	2008-06-10	Heur.Win32.I	1.883
AVAST	1.0.8	080610-0	2008-06-10	-	2.840
AVG	7.5.51.442	270.2.0/1494	2008-06-10	Generic10.AKOI	3.843
BitDefender	7.60825.1257267	7.19447	2008-06-10	Dropped:Generic.Malware.P!BdldPk!g.7591D6B8	6.722
CA (VET)	9.0.0.143	31.6.5862	2008-06-10	-	12.050
ClamAV	0.93	7417	2008-06-10	PUA.Packed.UPack-2	0.037
Comodo	2.11	2.0.0.551	2008-06-10	-	1.283
CP Secure	1.1.0.715	2008.06.10	2008-06-10	-	9.477
Dr.WEB	4.44.0.9170	2008.06.10	2008-06-10	MULDROP.Trojan	6.022
ewido	4.0.0.2	2008.06.10	2008-06-10	-	3.527
F-PROT	4.4.1.52	20080610	2008-06-10	Possible W32/Agent.L.gen!Eldorado (damaged, not disinfectable)	8.195
F-SECURE	5.51.6100	2008.06.10.04	2008-06-10	Trojan-PSW.Win32.OnLineGames.aocg [AVP]	11.064
IKARUS	T3.1.01.26	2008.06.10.70896	2008-06-10	Win32.SuspectCrc	5.181
Microsoft	1.3604	2008.06.10	2008-06-10	TrojanDropper:Win32/Idicaf.A	9.608
MKS_VIR	2.01	2008.06.10	2008-06-10	Heur.Win32	7.466
NORMAN	5.92.08	5.92.00	2008-06-09	W32/Suspicious_U.gen	19.931
nProtect	2008-06-10.00	1538223	2008-06-10	Trojan/W32.Small.13012	19.333
Prevx	V2	20080611	2008-06-11	-	12.213
QuickHeal	9.00	2008.06.10	2008-06-10	-	0.648
SOPHOS	2.74.1	4.30	2008-06-10	Mal/Behav-112	4.002
The Hacker	6.2.92	v00341	2008-06-09	W32/Behav-Heuristic-060	2.272
VBA32	3.12.6.7	20080610.0747	2008-06-10	Win32 Shadow Service Install (suspicious)	6.549
ViRobot	20080610	2008.06.10	2008-06-10	-	0.664
VirusBuster	4.3.19:9	9.131.6/11.0	2008-06-10	Packed/Upack	4.478
卡巴斯基	5.5.10	2008.06.10	2008-06-10	Trojan-PSW.Win32.OnLineGames.aocg	19.506
安博士V3	2008.06.10.02	2008.06.10	2008-06-10	-	1.333
江民杀毒	11.0.706	2008.06.10	2008-06-10	Trojan/Agent.avdb	4.892
熊猫卫士	9.04.03.0001	2008.06.09	2008-06-09	-	6.383
瑞星	20.0	20.48.12.00	2008-06-10	-	3.491
赛门铁克	1.3.0.24	20080609.003	2008-06-09	-	0.043
趋势	8.700-1004	5.336.04	2008-06-10	-	1.652
迈克菲	5.2.00	5313	2008-06-09	New Malware.aj	13.630
金山毒霸	2008.1.14.15	2008.6.10.18	2008-06-10	-	2.740
飞塔	2.81-3.11	9.186	2008-06-10	Suspicious	2.778

还可以

[ 本帖最后由 tanlimo 于 2008-6-11 00:14 编辑 ]

显示全部楼层 · 发表于 2008-6-11 00:19:26

瑞星主动防御需要改进的地方果然还有很多...

显示全部楼层 · 发表于 2008-6-11 00:23:18

看了PE文件头，心血来潮，扔给多引擎
伟大的50次果然...

AhnLab-V3 2008.5.30.1 2008.06.09 -
AntiVir 7.8.0.55 2008.06.09 TR/Drop.Agent.25744
Authentium 5.1.0.4 2008.06.09 W32/Agent.L.gen!Eldorado
Avast 4.8.1195.0 2008.06.09 -
AVG 7.5.0.516 2008.06.09 Generic10.AKOI
BitDefender 7.2 2008.06.10 Dropped:Generic.Malware.P!BdldPk!g.7591D6B8
CAT-QuickHeal 9.50 2008.06.09 (Suspicious) - DNAScan
ClamAV 0.92.1 2008.06.09 PUA.Packed.UPack-2
DrWeb 4.44.0.09170 2008.06.09 MULDROP.Trojan
eSafe 7.0.15.0 2008.06.09 Suspicious File
eTrust-Vet 31.6.5858 2008.06.08 -
Ewido 4.0 2008.06.09 -
F-Prot 4.4.4.56 2008.06.09 W32/Agent.L.gen!Eldorado
F-Secure 6.70.13260.0 2008.06.10 W32/Suspicious_U.gen
Fortinet 3.14.0.0 2008.06.10 -
GData 2.0.7306.1023 2008.06.09 Trojan-PSW.Win32.OnLineGames.aocg
Ikarus T3.1.1.26.0 2008.06.10 -
Kaspersky 7.0.0.125 2008.06.10 Trojan-PSW.Win32.OnLineGames.aocg
McAfee 5313 2008.06.09 New Malware.aj
Microsoft 1.3604 2008.06.10 TrojanDropper:Win32/Idicaf.A
NOD32v2 3169 2008.06.09 -
Norman 5.80.02 2008.06.09 W32/Suspicious_U.gen
Panda 9.0.0.4 2008.06.09 Suspicious file
Prevx1 V2 2008.06.10 -
Rising 20.47.42.00 2008.06.06 -
Sophos 4.30.0 2008.06.09 Mal/Behav-112
Sunbelt 3.0.1145.1 2008.06.05 VIPRE.Suspicious
Symantec 10 2008.06.10 -
TheHacker 6.2.92.339 2008.06.07 W32/Behav-Heuristic-060
VBA32 3.12.6.7 2008.06.09 suspected of Win32 Shadow Service Install
VirusBuster 4.3.26:9 2008.06.09 Packed/Upack
Webwasher-Gateway 6.6.2 2008.06.09 Trojan.Drop.Agent.25744

显示全部楼层 · 发表于 2008-6-11 00:28:40

好专业啊

显示全部楼层 · 发表于 2008-6-11 00:45:07

。。。。50次

[已鉴定] 很黄很暴力norman报

一样的。