to:qiwenxiang （已经更新下载地址）X 179

显示全部楼层 · 发表于 2008-8-3 00:29:00

卡巴:
149个,上报23

显示全部楼层 · 发表于 2008-8-3 02:42:43

排除后剩下40个

不是有效的 PE 文件（10）
22ACD0F799E4D704B131294F462A7FB4  75.vir
99483666BE796C02447AE0D4F8F95E6A  7.vir
E16B0DA38CC0BADB528826AD5683F6F2  6.vir
F6AB74FA085FA8FD1EAB0F6EA50CD652  5.vir
5CCA9BA4913E47AB68F72B644368C601  33.vir

3825FC7A255ACF7317B60DC880BC59A8  32.vir
2E47A8DF27C98A7BDE35941E072409FD  31.vir
91D213F0735A7B32488E658B3F86CD41  3.vir
246AF4B090E1F677E8B028900A573A9F  27.vir
70F15C7A2D0E1825897B6FCC52D1F30D  10.vir
------------------------------------------------------------------------
dll（12）
344C39137C5900D1C4A36E3AADDBA593  8.vir
CF5F7CB629109F81B6A83F6089351775  72.vir
95E1CE3F6EC3F098697F3996E5419878  25.vir
D9B1CBC7467CB8AB190EF41BB0896C1E  24.vir
13FBA8BB5CAA59564B975E073D94D6ED  23.vir

C319AA1BA68A7B3147F9EE35BE15B315  22.vir
30AFA2712D1B75BE9D5DF00725FDA8D1  21.vir
824D2CB23405E5EE67EDEF2D07F77B69  19.vir
354873629D2BC94C9C487485B223CF95  18.vir
1EB5CDE74E62615C9A061CDA30706D62  1.vir

380E545D52508FD12F2CFF3EDE7FD3E9  0.vir
F4701619451A1F155300B4FABA07FBA5  NetmanEx.dll3
------------------------------------------------------------------------
以下在SBie环境下测试
B29F5CF262010A7B1D300DEB81E33A05  4.exe -->1kb的东东
693293B75671BBCD0B921A0128A198C0  12.exe -->Q宠猪猪伴侣，貌似正常
C970157EA03041A669332812B94BC779  13.exe -->RAR安装程序，貌似正常
CD1919011E4D06F93FBE9609E207396E  15.exe -->给dwwin.exe挂起了
59E4BEB0A698CDB7923BD536BE7BFB27  74.exe-->给dwwin.exe挂起了

865AB0589791DA145592A3CE377ED342  29.exe
-->威胁。感染htm文件，
插入<iframe src="http://hi.baidu.com/MJ0011"></iframe> 这段代码，
打开感染htm均指向http://hi.baidu.com/MJ0011

6292FE0945C34B10FFE67335F41C6974  34.exe-->威胁
52BC8800545C70BA208A953421DD8E0B  67.exe-->威胁
9958415C70BC7C831FE4180230918F42  68.exe-->威胁
8CD684E4CD802D616968174FA0D6EB89  103.exe-->威胁
F4A8A03F3D72FE149E5075538D18AC14  122.exe-->威胁
F24B943C29E31FE9CEA1C0DD075BA423  Y6BN5JJR1KH.exe-->威胁

[ 本帖最后由冷冷于 2008-8-3 03:19 编辑 ]

显示全部楼层 · 发表于 2008-8-3 04:16:34

2 Scanning directories
210 Files were scanned
149 viruses and/or unwanted programs were found
   3 Files were classified as suspicious:
149 files were deleted
   0 files were repaired
   3 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   58 Files not concerned
   0 Archives were scanned
   0 Warnings
152 Notes

File ID	Filename	Size (Byte)	Result
540429	0.vir	15.5 KB	CLEAN
25103141	10.vir	2.39 KB	UNDER ANALYSIS
25103029	113.vir	3.5 KB	UNDER ANALYSIS
25037824	12.vir	546.35 KB	FALSE POSITIVE
25103013	13.vir	1.08 MB	UNDER ANALYSIS
25102922	15.vir	51 KB	UNDER ANALYSIS
25102923	23.vir	288.5 KB	UNDER ANALYSIS
25103142	27.vir	868 Byte	UNDER ANALYSIS
3817987	3.vir	475 Byte	CLEAN
25103143	30.vir	56 KB	UNDER ANALYSIS
25103144	31.vir	3.26 KB	UNDER ANALYSIS
25103145	32.vir	89 Byte	UNDER ANALYSIS
25103146	33.vir	10 Byte	UNDER ANALYSIS
25102935	34.vir	670 KB	UNDER ANALYSIS
3817990	4.vir	1 KB	CLEAN
25103147	5.vir	318 Byte	UNDER ANALYSIS
25039450	6.vir	81 Byte	CLEAN
25103148	7.vir	4 Byte	UNDER ANALYSIS
25103009	74.vir	69.5 KB	UNDER ANALYSIS
25102932	75.vir	135 Byte	UNDER ANALYSIS

[ 本帖最后由 nosferatu 于 2008-8-3 04:19 编辑 ]

显示全部楼层 · 发表于 2008-8-3 10:33:45

貌似有几个很早前的毒..偶这个库08.04.30的也出来5个..

显示全部楼层 · 发表于 2008-8-3 10:44:29

显示全部楼层 · 发表于 2008-8-3 11:23:41

该文件已达到200次的下载限制，您已不能下载该文件。
又不能下了。

显示全部楼层 · 发表于 2008-8-3 11:34:12

怎么下。。。~

刚刚发现。。。
还有一个网盘。。~

显示全部楼层 · 发表于 2008-8-3 11:41:59

KAV+BD
miss 14

显示全部楼层 · 发表于 2008-8-3 12:36:36

149个。

显示全部楼层 · 发表于 2008-8-3 18:30:08

Hello.
New malicious software was found in the attached file.
It's detection will be included in the next update. Thank you for your help.

Please quote all when answering. Do not forget to include you registration data.
-----------------
Regards, Tatarinov Ivan
Virus Analyst, Kaspersky Lab.

Ph.: +7(095) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com http://www.viruslist.com

[病毒样本] to:qiwenxiang （已经更新下载地址）X 179

152

本帖子中包含更多资源

140

本帖子中包含更多资源

本帖子中包含更多资源

Norton Internet Security 2009