06.18 100x

显示全部楼层 · 发表于 2008-6-20 08:45:08

1E1753EC          84.13/84.13KB    100.00% 在线扫描    它是一个“木马” 2008-6-20 8:42:55 2008-6-20 8:43:03
1EB1ACD          56.57/56.57KB    100.00% 在线扫描    它是一个“病毒” 2008-6-20 8:42:59 2008-6-20 8:43:10
6A0A125          54.95/54.95KB    100.00% 在线扫描    没有发现病毒，但这并不能说明此文件百分之百可信。2008-6-20 8:43:02 2008-6-20 8:43:17
6BD696CF          59.26/59.26KB    100.00% 在线扫描    它是一个“间谍程序”2008-6-20 8:43:05 2008-6-20 8:43:24
65A4A890          2.81/2.81KB       100.00% 在线扫描    它是一个“木马” 2008-6-20 8:43:11 2008-6-20 8:43:30
88DDB8             4.72/4.72KB       100.00% 在线扫描    没有发现病毒，但这并不能说明此文件百分之百可信。2008-6-20 8:43:14 2008-6-20 8:43:36
96BE7A25          84.81/84.81KB    100.00% 在线扫描    没有发现病毒，但这并不能说明此文件百分之百可信。2008-6-20 8:43:17 2008-6-20 8:43:44
1865D181          130.88/130.88KB    100.00% 在线扫描    它是一个“广告程序”2008-6-20 8:43:20 2008-6-20 8:43:53
A322B83          35.61/35.61KB    100.00% 在线扫描    它是一个“间谍程序”2008-6-20 8:43:23 2008-6-20 8:44:00
A95604FC          53.17/53.17KB    100.00% 在线扫描    它是一个“病毒” 2008-6-20 8:43:26 2008-6-20 8:44:07
C3FEBE95          64.02/64.02KB    100.00% 在线扫描    没有发现病毒，但这并不能说明此文件百分之百可信。2008-6-20 8:43:29 2008-6-20 8:44:14
D7D5EA88          8.87/8.87KB       100.00% 在线扫描    它是一个“间谍程序”2008-6-20 8:43:32 2008-6-20 8:44:20
E3B0A1D9          68.00/68.00KB    100.00% 在线扫描    它是一个“病毒” 2008-6-20 8:43:35 2008-6-20 8:44:28
E8A9022E          3.21/3.21KB       100.00% 在线扫描    没有发现病毒，但这并不能说明此文件百分之百可信。2008-6-20 8:43:39 2008-6-20 8:44:36
F972DCD8          80.80/80.80KB    100.00% 在线扫描    它是一个“广告程序”2008-6-20 8:43:42 2008-6-20 8:44:43
FB28119C          15.14/15.14KB    100.00% 在线扫描    它是一个“木马” 2008-6-20 8:43:45 2008-6-20 8:44:49

显示全部楼层 · 发表于 2008-6-20 12:34:50

360安全卫士木马查杀历史报告

木马名称：Trojan/Win32.IEprot.sbw
路径：E:\0616up[1]\F7EFBA01
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.IEprot.jbu
路径：E:\0616up[1]\F714214A
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvk
路径：E:\0616up[1]\F25A0469
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvo
路径：E:\0616up[1]\ED95B546
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.SuperKiller.jbl
路径：E:\0616up[1]\ED4EFFD5
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbq
路径：E:\0616up[1]\E6E5FB6E
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvm
路径：E:\0616up[1]\E1C80240
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbt
路径：E:\0616up[1]\DF94A743
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.obq
路径：E:\0616up[1]\D7D5EA88
查杀时间：2008-06-20 12:31
木马名称：Trojan-PSW/Win32.OnLineGames.aofs
路径：E:\0616up[1]\D5EB00BB
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\D3254BD9
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbs
路径：E:\0616up[1]\D04850B8
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbw
路径：E:\0616up[1]\C3F77D7E
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbw
路径：E:\0616up[1]\C1DC9D56
查杀时间：2008-06-20 12:31
木马名称：Infostealer/Win32.Gampass
路径：E:\0616up[1]\C0FEBC29
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbs
路径：E:\0616up[1]\B9C6A035
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbv
路径：E:\0616up[1]\B9B39F53
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbr
路径：E:\0616up[1]\B8AFEEEC
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\B0654DAD
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\A7218D6C
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbw
路径：E:\0616up[1]\9D5795B1
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvm
路径：E:\0616up[1]\95545DB3
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbt
路径：E:\0616up[1]\90F8DDC2
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.obq
路径：E:\0616up[1]\8FAD363A
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.SuperKiller.jbl
路径：E:\0616up[1]\8988479C
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbs
路径：E:\0616up[1]\8102412C
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\7F60C40E
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.SuperKiller.jbl
路径：E:\0616up[1]\7EB23B31
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbq
路径：E:\0616up[1]\7E7465CF
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbn
路径：E:\0616up[1]\7A01C916
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbw
路径：E:\0616up[1]\7637614E
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.IEprot.jbu
路径：E:\0616up[1]\6C4B2980
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvo
路径：E:\0616up[1]\6BAFE3BB
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbv
路径：E:\0616up[1]\673AB8DA
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.IEprot.jbt
路径：E:\0616up[1]\63B701F
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.IEprot.jbw
路径：E:\0616up[1]\53CC734A
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbq
路径：E:\0616up[1]\524400C9
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Monder.gen
路径：E:\0616up[1]\4BBDFEB2
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.IEprot.jbu
路径：E:\0616up[1]\4B378E43
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lva
路径：E:\0616up[1]\4A6B764B
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbs
路径：E:\0616up[1]\45204555
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbp
路径：E:\0616up[1]\3F94D85C
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbw
路径：E:\0616up[1]\3F3E3D2B
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvk
路径：E:\0616up[1]\368DF5A2
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbs
路径：E:\0616up[1]\35F9A568
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Dialer.bqm
路径：E:\0616up[1]\33BDDB5B
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\31F08916
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbs
路径：E:\0616up[1]\2E8BD990
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\2C8DE5A1
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvm
路径：E:\0616up[1]\2B734BDE
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.AutoRV.lvm
路径：E:\0616up[1]\26BB8554
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.IEprot.jbv
路径：E:\0616up[1]\2567F115
查杀时间：2008-06-20 12:31
木马名称：Trojan/Win32.Rodog.lbu
路径：E:\0616up[1]\1674C11F
查杀时间：2008-06-20 12:31

显示全部楼层 · 发表于 2008-6-20 13:08:25

无法识别的..已上传~~红伞~~!!卡巴分析

[ 本帖最后由尽在不言中于 2008-7-4 00:31 编辑 ]

显示全部楼层 · 发表于 2008-6-20 13:35:28

显示全部楼层 · 发表于 2008-6-20 16:06:13

25045131    108463EE    108 KB    DAMAGED FILE (MALWARE)
25052211    1865D181    145.26 KB    DAMAGED FILE (UNKNOWN)
25052212    1E1753EC    90 KB    MALWARE
25052213    650A6120    11.01 KB    DAMAGED FILE (MALWARE)
25052214    65A4A890    7.76 KB    DAMAGED FILE (UNKNOWN)
25052215    88DDB8    20 KB    MALWARE
25052216    96BE7A25    90.8 KB    CLEAN
25052217    B259C0E1    18.37 KB    MALWARE
25045142    D5FCA79B    2.72 KB    DAMAGED FILE (UNKNOWN)
25052218    D7552ED5    2.55 KB    DAMAGED FILE (UNKNOWN)
25052219    E8A9022E    19.83 KB    CLEAN
25052220    F7EFBA01    84.5 KB    DAMAGED FILE (MALWARE)
25052221    F972DCD8    95.5 KB    MALWARE
25052222    FB28119C    50.97 KB    MALWARE

Please find a detailed report concerning each individual sample below:
Filename Result
108463EE    DAMAGED FILE (MALWARE)

The file '108463EE' has been determined to be 'DAMAGED FILE (MALWARE)'. In particular this means that this file is damaged and not working properly. Nevertheless we were able to determine that it contains malicious code fragments.

Filename Result
1865D181    DAMAGED FILE (UNKNOWN)

The file '1865D181' has been determined to be 'DAMAGED FILE (UNKNOWN)'. In particular this means that this file is damaged and not working properly. We could not find any malicious content. However the heuristic detection module may still detect this particular file even though it is damaged. In that case we will not adjust and remove detection for this damaged file.

Filename Result
1E1753EC    MALWARE

The file '1E1753EC' has been determined to be 'MALWARE'. Our analysts named the threat TR/Monder.92160.4. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.00.04.226.

Filename Result
650A6120    DAMAGED FILE (MALWARE)

The file '650A6120' has been determined to be 'DAMAGED FILE (MALWARE)'. In particular this means that this file is damaged and not working properly. Nevertheless we were able to determine that it contains malicious code fragments. Our analysts discovered that the file is a Trojan. In general this kind of programs contains harmful functionality called payload. Detection will be added to our virus definition file (VDF) with one of the next updates. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Malware.

Filename Result
65A4A890    DAMAGED FILE (UNKNOWN)

The file '65A4A890' has been determined to be 'DAMAGED FILE (UNKNOWN)'. In particular this means that this file is damaged and not working properly. We could not find any malicious content. However the heuristic detection module may still detect this particular file even though it is damaged. In that case we will not adjust and remove detection for this damaged file.

Filename Result
88DDB8    MALWARE

The file '88DDB8' has been determined to be 'MALWARE'. Our analysts discovered that the file is a Trojan. In general this kind of programs contains harmful functionality called payload. Detection will be added to our virus definition file (VDF) with one of the next updates.

Filename Result
96BE7A25    CLEAN

The file '96BE7A25' has been determined to be 'CLEAN'. Our analysts did not discovered any malicious content.

Filename Result
B259C0E1    MALWARE

The file 'B259C0E1' has been determined to be 'MALWARE'. Our analysts named the threat TR/PSW.OnlineGames.aoem.2. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.00.04.226. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Malware.

Filename Result
D5FCA79B    DAMAGED FILE (UNKNOWN)

The file 'D5FCA79B' has been determined to be 'DAMAGED FILE (UNKNOWN)'. In particular this means that this file is damaged and not working properly. We could not find any malicious content. However the heuristic detection module may still detect this particular file even though it is damaged. In that case we will not adjust and remove detection for this damaged file.

Filename Result
D7552ED5    DAMAGED FILE (UNKNOWN)

The file 'D7552ED5' has been determined to be 'DAMAGED FILE (UNKNOWN)'. In particular this means that this file is damaged and not working properly. We could not find any malicious content. However the heuristic detection module may still detect this particular file even though it is damaged. In that case we will not adjust and remove detection for this damaged file.

Filename Result
E8A9022E    CLEAN

The file 'E8A9022E' has been determined to be 'CLEAN'. Our analysts did not discovered any malicious content.

Filename Result
F7EFBA01    DAMAGED FILE (MALWARE)

The file 'F7EFBA01' has been determined to be 'DAMAGED FILE (MALWARE)'. In particular this means that this file is damaged and not working properly. Nevertheless we were able to determine that it contains malicious code fragments.

Filename Result
F972DCD8    MALWARE

The file 'F972DCD8' has been determined to be 'MALWARE'. Our analysts named the threat ADSPY/BetterInternet.AY.4. The term "ADSPY/" denotes adware or spyware. This type of malware is able to change browser settings for example by manipulating registry settings or by using of NTFS-streams. Very often IEexploits are used to manipulate the browserhelp.dll.Detection is added to our virus definition file (VDF) starting with version 7.00.04.226. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/Crypted.

Filename Result
FB28119C    MALWARE

The file 'FB28119C' has been determined to be 'MALWARE'. Our analysts named the threat TR/Dldr.Hmir.DNA.3. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.00.04.226.

[病毒样本] 06.18 100x

80

本帖子中包含更多资源

360+安天引擎 53个..

回复 1楼 qianwenxiang 的帖子

本帖子中包含更多资源