这个是病毒吗？

显示全部楼层 · 发表于 2008-6-15 08:10:15

这个是病毒吗？

显示全部楼层 · 发表于 2008-6-15 08:26:51

2008-6-15 8:26:26 未采取操作 Administrator C:\Documents and Settings\Administrator\桌面\du.rar\D721.EXE Adware-SearchNet(Adware)

显示全部楼层 · 发表于 2008-6-15 08:41:48

Start of the scan: 2008年6月15日  08:40

Starting the file scan:

Begin scan in 'C:\Documents and Settings\***.18F12FE200FB45E\桌面\Anti-Virus lab\Safe lab\du'
C:\Documents and Settings\***.18F12FE200FB45E\桌面\Anti-Virus lab\Safe lab\du\du\286.exe
   [DETECTION] Contains detection pattern of the dropper DR/BHO.dnl.2
   [NOTE]    The file was moved to '488a6542.qua'!
C:\Documents and Settings\***.18F12FE200FB45E\桌面\Anti-Virus lab\Safe lab\du\du\Autorun.exe
   [DETECTION] Contains detection pattern of a probably damaged sample CC/UKMalw.LB
   [NOTE]    The file was moved to '48c86581.qua'!
C:\Documents and Settings\***.18F12FE200FB45E\桌面\Anti-Virus lab\Safe lab\du\du\d721.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BDSearch.1.44
   [NOTE]    The file was moved to '48866544.qua'!
C:\Documents and Settings\***.18F12FE200FB45E\桌面\Anti-Virus lab\Safe lab\du\du\soni.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [NOTE]    The fund was classified as suspicious.
   [NOTE]    The file was moved to '48c26581.qua'!

显示全部楼层 · 发表于 2008-6-15 08:43:58

F:\du.rar>>du\286.exe Trojan.BHO.dnl.zftr.arc 木马
F:\du.rar>>du\Autorun.exe TrojanClicker.Agent.sl.fsl 木马

显示全部楼层 · 发表于 2008-6-15 08:46:02

Hello,

286.exe_ - Trojan.Win32.BHO.dnl,
a.exe_ - Trojan.Win32.BHO.dxy,
b.exe_ - Trojan.Win32.BHO.dxo

These files are already detected. Please update your antivirus bases.

arcldr.exe_, arcsetup.exe_

These files are corrupted.

Autorun.exe_

No malicious code was found in this file.

d721.exe_ - not-a-virus:AdWare.Win32.BHO.blw

This file is an Advertizing Tool, it is detected by
extended databases set. See more info about
extended databases here: http://www.kaspersky.com/extraavupdates

soni.exe_ - Trojan-Spy.Win32.Small.btx

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Vyacheslav Zakorzhevsky
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

[ 本帖最后由 spaceplane 于 2008-6-15 10:39 编辑 ]

显示全部楼层 · 发表于 2008-6-15 08:47:02

a.exe、b.exe是病毒
上报Avira
arcldr.exe、arcsetup.exe可能已损坏

显示全部楼层 · 发表于 2008-6-15 09:07:39

信息 2008-06-15  09:07:27 您此次查毒共查出1个病毒以及危险代码
信息 2008-06-15  09:07:27 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件9个
信息 2008-06-15  09:07:27 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒
风险程序 2008-06-15  09:07:27 C:\Documents and Settings\Administrator\桌面\du.rar\du\d721.exe Win32.Adware.BHO.53248 跳过，未处理

显示全部楼层 · 发表于 2008-6-15 09:26:01

13651 arcldr.exe 147 KB KNOWN CLEAN
13652 arcsetup.exe 160 KB KNOWN CLEAN

显示全部楼层 · 发表于 2008-6-15 09:44:21

kv2008 2

显示全部楼层 · 发表于 2008-6-15 09:52:55

KIS 2009

[病毒样本] 这个是病毒吗？

本帖子中包含更多资源

本帖子中包含更多资源