banker*16

显示全部楼层 · 发表于 2008-7-23 11:10:23

新鲜的。。～
PW：virus

地址：http://xianexs.mail.qq.com/cgi-bin/downloadfilepart/svrid212/banker1.rar?svrid=212&fid=395e72a48e91142669b411e02cd07214f41d0906ae51d82c&&txf_fid=9fbc242602d45039f43ab56396610b5f4bc106b4&&txf_sid=0d5db149439b949b62625eb86103b17ff7520174

(提取码 a0a9dfe6)

纳米：http://www.namipan.com/d/banker1.rar/9f26c1a441edae50bc4646ac871002d4865b233e7827e500

[ 本帖最后由电影结束了于 2008-7-23 11:18 编辑 ]

显示全部楼层 · 发表于 2008-7-23 11:13:48

UG KILL 11个··- -

[ 本帖最后由 spicalhook 于 2008-7-23 11:18 编辑 ]

显示全部楼层 · 发表于 2008-7-23 11:14:45

金山 0

[ 本帖最后由 tvuser2007 于 2008-7-23 11:23 编辑 ]

显示全部楼层 · 发表于 2008-7-23 11:22:07

Begin scan in 'C:\Documents and Settings\haha\桌面\virus'
C:\Documents and Settings\haha\桌面\virus\144670_imagem.jpg
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\haha\桌面\virus\5956772_imagem.jpg
[DETECTION] Is the TR/Crypt.CFI.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\haha\桌面\virus\banner2.jpg
[DETECTION] Contains HEUR/Crypted.E suspicious code
[NOTE]    The detection was classified as suspicious.
[NOTE]    The file was moved to '48f4a415.qua'!
C:\Documents and Settings\haha\桌面\virus\Explorer.txt
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Hupigon.Gen back-door program
[NOTE]    The file was deleted!
C:\Documents and Settings\haha\桌面\virus\imglog.txt
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Hupigon.Gen back-door program
[NOTE]    The file was deleted!
C:\Documents and Settings\haha\桌面\virus\lyly.mp3
[DETECTION] Is the TR/Spy.Banker.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\haha\桌面\virus\w.jpg
[DETECTION] Is the TR/Crypt.CFI.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\haha\桌面\virus\wab.jpg
[DETECTION] Is the TR/Crypt.TPM.Gen Trojan
[NOTE]    The file was deleted!

End of the scan: 2008年7月23日  11:21
Used time: 00:03 Minute(s)

The scan has been done completely.

   1 Scanning directories
   16 Files were scanned
   7 viruses and/or unwanted programs were found
   1 Files were classified as suspicious:
   7 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   8 Files not concerned
   0 Archives were scanned
   0 Warnings
   8 Notes

显示全部楼层 · 发表于 2008-7-23 11:39:13

Symantec
2

[ 本帖最后由 hum 于 2008-7-23 11:49 编辑 ]

显示全部楼层 · 发表于 2008-7-23 11:48:27

自己来扫扫...~
费尔  8个

AVK06  7个

avast  6个

[ 本帖最后由电影结束了于 2008-7-23 11:50 编辑 ]

显示全部楼层 · 发表于 2008-7-23 11:49:43

Scanning Report23 July 2008 11:53:02 - 11:53:07Computer name: BALLAKAY-PC
Scanning type: Scan target
Target: C:\Users\Administrator\Desktop\banker1.rar Result: 4 malware foundTrojan-Banker.Win32.Banker.qnf (virus)

C:\Users\Administrator\Desktop\banker1.rar\banker1\144670_imagem.jpg

Trojan.Win32.Agent.vmf (virus)

C:\Users\Administrator\Desktop\banker1.rar\banker1\5956772_imagem.jpg

Trojan-Downloader.Win32.Banload.keb (virus)

C:\Users\Administrator\Desktop\banker1.rar\banker1\Explorer.txt

Trojan-Spy.Win32.Banker.lcs (virus)

C:\Users\Administrator\Desktop\banker1.rar\banker1\imglog.txt

StatisticsScanned:

Files: 17
Not scanned: 0

Result:

Viruses: 4
Spyware: 0
Suspicious items: 0
Riskware: 0

Actions:

Disinfected: 0
Renamed: 0
Deleted: 0
Quarantined: 0
Failed: 0

Boot Sectors:

Scanned: 0
Infected: 0
Suspicious items: 0
Disinfected: 0

OptionsDefinitions version:

Viruses: 2008-07-22_11
Spyware: 2008-07-22_11

Scanning Engines:

F-Secure AVP: 7.00.171, 2008-07-21
F-Secure Libra: 2.04.05, 2008-07-16
F-Secure Orion: 1.02.41, 2008-07-23
F-Secure Draco: 1.01.00, 2008-07-08

Scanning options:

Scan all files
Scan inside archives

Actions:

Viruses: Quarantine and delete
Spyware: Quarantine and delete

[ 本帖最后由 ballakay 于 2008-7-23 11:53 编辑 ]

显示全部楼层 · 发表于 2008-7-23 11:53:48

原帖由 ballakay 于 2008-7-23 11:49 发表
FS 3个!难道那个MP3也有毒?!

改EXE就行...~

显示全部楼层 · 发表于 2008-7-23 12:02:54

Logfile of Spyware Terminator v2.2.3.444 (db:2.007.018.000)
Scan Time: 2008-7-23 12:01:34 length: 1 s
Platform: WXP (5.1.0.2600)
User: Admin
Boot Mode: Normal
Scan type: Fast_Spyware_Scan
Scanned Objects: 17 (Critical:0)
Filter: No System items, No Safe items, No Invalid items

ps. ms什么shell.txt那个是一张jpg图片

显示全部楼层 · 发表于 2008-7-23 12:17:51

6个好大 TO KL

[病毒样本] banker*16

本帖子中包含更多资源