收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 15
返回列表 发新帖
查看: 2069|回复: 9
收起左侧

[病毒样本] 15

[复制链接]
sam.to
发表于 2008-8-22 19:14:33 | 显示全部楼层 |阅读模式
部分文件下載地址:(文件常更新)
http://weiai999.3322.org/wm.exe
http://down.hs7yue.cn/new/a2.css

1621d51d038602f10a438041671cce47  a2.css
36b901e6bbb67e184935948caf8212c5  a2.exe3
a3d2dd1c186979edde87f82da0488664  bukocs.exe1
d1acd4badafeceea4681bd1dc1c61798  FlashFxp.exe2
8d3cafa36f6b71fd3812ba642ec0c008  human.exe2
570149e1bc5be85897eeb8a0ae790dd9  lssas.exe2
449b918ebe79ecfdbd59177a416716e7  QQ空间相册密码破解.exe2
4fed18babb33159277c60ae8476c0c87  rqq2v.bat3
89a9b8f65eca45b1dcf1ee29226a1949  SVH0ST.exe2
5a37a17d2453108e481a491bed31b5fd  symconfig.exe3
d640f7f17fd1ce5ba4c238ad7c32fcfa  wingcreg.exe2
60705f40bdae33131ae43f1c2a743dec  wm.exe2
24bbe9f86e3cbb50e96ba00897bd953b  wm.exe3
a5ba04efb5580c1ffbb4b276331b22ca  wscntft.exe2
b3e49a7dc8975c9f1d562b2da34b2b02  znmq_bd.exe2


已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.solj        檔案: C:\Documents and Settings\kato9096\桌面\hehe\a2.exe3//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan-Clicker.Win32.VB.btd        檔案: C:\Documents and Settings\kato9096\桌面\hehe\FlashFxp.exe2
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Small.zfn        檔案: C:\Documents and Settings\kato9096\桌面\hehe\human.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.sqov        檔案: C:\Documents and Settings\kato9096\桌面\hehe\rqq2v.bat3
已刪除: 特洛伊木馬程式 Backdoor.Win32.VB.fiv        檔案: C:\Documents and Settings\kato9096\桌面\hehe\SVH0ST.exe2
卡巴只报5个,不报的已上报到卡巴~~~~~~
回复

举报

浪滔天
发表于 2008-8-22 19:16:27 | 显示全部楼层
卡巴 高启发 9 个
2008-08-22 19:15:22        扫描        已检测到: Backdoor.Win32.VB.fiv        f:\病毒样本\15.rar/hehe\SVH0ST.exe2               
2008-08-22 19:15:24        扫描        已检测到: Heur.AntiAV        f:\病毒样本\15.rar/hehe\wm.exe3               
2008-08-22 19:15:23        扫描        已检测到: Heur.AntiAV        f:\病毒样本\15.rar/hehe\wm.exe2               
2008-08-22 19:15:20        扫描        已检测到: Heur.Downloader        f:\病毒样本\15.rar/hehe\a2.css               
2008-08-22 19:15:29        扫描        已检测到: Trojan-Clicker.Win32.VB.btd        f:\病毒样本\15.rar/hehe\FlashFxp.exe2               
2008-08-22 19:15:20        扫描        已检测到: Trojan-Downloader.Win32.Small.zfn        f:\病毒样本\15.rar/hehe\human.exe2/PE_Patch/UPack               
2008-08-22 19:15:20        扫描        已检测到: Trojan-GameThief.Win32.OnLineGames.solj        f:\病毒样本\15.rar/hehe\a2.exe3/PE_Patch.UPX/UPX               
2008-08-22 19:15:22        扫描        已检测到: Trojan-GameThief.Win32.OnLineGames.sqov        f:\病毒样本\15.rar/hehe\rqq2v.bat3               
2008-08-22 19:15:20        扫描        已检测到: Trojan.BAT.Agent.gc        f:\病毒样本\15.rar/hehe\a2.css/#
回复

举报

fzz8848
头像被屏蔽
发表于 2008-8-22 19:16:47 | 显示全部楼层
Begin scan in 'E:\Download\15.rar'
E:\Download\15.rar
E:\Download\15.rar
    [0] Archive type: RAR
    --> hehe\human.exe2
      [DETECTION] Is the TR/Dldr.Small.zfn Trojan
    --> hehe\QQᆰᅤレVᆲᅴ?ᄆK?ᆵ}ᄌ￑.exe2
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> hehe\rqq2v.bat3
      [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    --> hehe\SVH0ST.exe2
      [DETECTION] Contains HEUR/Malware suspicious code
    --> hehe\symconfig.exe3
      [DETECTION] Contains recognition pattern of the WORM/Rbot.58368.1 worm
    --> hehe\wm.exe2
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> hehe\wm.exe3
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> hehe\wscntft.exe2
      [DETECTION] Is the TR/Agent.VB.O Trojan
    --> hehe\znmq_bd.exe2
      [DETECTION] Is the TR/Spy.Agent.7 Trojan
    [NOTE]      The file was deleted!
回复

举报

Nerazzurri
发表于 2008-8-22 19:17:03 | 显示全部楼层
Begin scan in 'C:\Documents and Settings\Nerazzurri\桌面\15.rar'
C:\Documents and Settings\Nerazzurri\桌面\15.rar
C:\Documents and Settings\Nerazzurri\桌面\15.rar
    [0] Archive type: RAR
    --> hehe\human.exe2
      [DETECTION] Is the TR/Dldr.Small.zfn Trojan
    --> hehe\QQᆰᅤレVᆲᅴ?ᄆK?ᆵ}ᄌ￑.exe2
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> hehe\rqq2v.bat3
      [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    --> hehe\SVH0ST.exe2
      [DETECTION] Contains HEUR/Malware suspicious code
    --> hehe\symconfig.exe3
      [DETECTION] Contains recognition pattern of the WORM/Rbot.58368.1 worm
    --> hehe\wm.exe2
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> hehe\wm.exe3
      [DETECTION] Is the TR/Dropper.Gen Trojan
    --> hehe\wscntft.exe2
      [DETECTION] Is the TR/Agent.VB.O Trojan
    --> hehe\znmq_bd.exe2
      [DETECTION] Is the TR/Spy.Agent.7 Trojan
    [WARNING]   The file was ignored!
回复

举报

yunhan123
发表于 2008-8-22 19:17:20 | 显示全部楼层
风险程序        2008-08-22  19:16:37        \桌面\15.rar\hehe\znmq_bd.exe2        Win32.RiskWare.IEToolBar.bd.243760        跳过,未处理       
风险程序        2008-08-22  19:16:37        \桌面\15.rar\hehe\FlashFxp.exe2        Win32.Adware.VB.16384        跳过,未处理       
病毒        2008-08-22  19:16:34        \桌面\15.rar\hehe\wscntft.exe2        Win32.Hack.Unknown.24576        清除成功       
病毒        2008-08-22  19:16:34        \桌面\15.rar\hehe\wm.exe2        Win32.Troj.PopHot.c.176128        清除成功       
病毒        2008-08-22  19:16:33        桌面\15.rar\hehe\SVH0ST.exe2        Win32.Hack.Unknown.376832        清除成功       
病毒        2008-08-22  19:16:33        \桌面\15.rar\hehe\human.exe2        Win32.TrojDownloader.Small.77824        清除成功       
病毒        2008-08-22  19:16:32        \桌面\15.rar\hehe\a2.exe3        Win32.Troj.OnLineGamesT.bv.94404        清除成功
回复

举报

luxiao200888
发表于 2008-8-22 19:17:46 | 显示全部楼层
红伞漏四个~

上报~
回复

举报

Nerazzurri
发表于 2008-8-22 19:18:22 | 显示全部楼层

avast!剩五个

2008-8-22        19:17:41        1219403861        Nerazzurri        328        Sign of "Win32:Delf-BCS [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\a2.css\[UPX]\[Embedded#DLLFILE]" file.  
2008-8-22        19:17:44        1219403864        Nerazzurri        328        Sign of "Win32:Delf-BCS [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\a2.exe3\[UPX]\[Embedded#DLLFILE]" file.  
2008-8-22        19:17:45        1219403865        Nerazzurri        328        Sign of "Win32:Trojan-gen {Other}" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\FlashFxp.exe2" file.  
2008-8-22        19:17:45        1219403865        Nerazzurri        328        Sign of "Win32:Trojan-gen {Other}" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\human.exe2" file.  
2008-8-22        19:17:45        1219403865        Nerazzurri        328        Sign of "Win32:Crypt-BXT [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\QQ?歏??盞?瘆秆.exe2\[Embedded#0a42e1]" file.  
2008-8-22        19:17:45        1219403865        Nerazzurri        328        Sign of "Win32:Trojan-gen {Other}" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\QQ?歏??盞?瘆秆.exe2\[Embedded#0d6b05]\[Embedded#3140d]" file.  
2008-8-22        19:17:45        1219403865        Nerazzurri        328        Sign of "Win32:Crypt-BXT [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\QQ?歏??盞?瘆秆.exe2" file.  
2008-8-22        19:17:45        1219403865        Nerazzurri        328        Sign of "Win32:Spyware-gen [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\rqq2v.bat3" file.  
2008-8-22        19:17:46        1219403866        Nerazzurri        328        Sign of "Win32:Pophot-F [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\wm.exe2\[Upack]\[Embedded#DEDLL]" file.  
2008-8-22        19:17:46        1219403866        Nerazzurri        328        Sign of "Win32:Pophot-F [Trj]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\wm.exe3\[Upack]\[Embedded#DEDLL]" file.  
2008-8-22        19:17:46        1219403866        Nerazzurri        328        Sign of "Win32:Trojan-gen {Other}" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\wscntft.exe2" file.  
2008-8-22        19:17:46        1219403866        Nerazzurri        328        Sign of "Win32:Adware-gen [Adw]" has been found in "C:\Documents and Settings\Nerazzurri\桌面\15.rar\hehe\znmq_bd.exe2\$INSTDIR\BaiduBar.dll" file.
回复

举报

BING126
头像被屏蔽
发表于 2008-8-22 19:37:16 | 显示全部楼层
McAfee  6个。。
回复

举报

luxiao200888
发表于 2008-8-22 20:10:41 | 显示全部楼层
红伞回复~



回复

举报

傻猪猪米走鸡
发表于 2008-8-22 20:12:08 | 显示全部楼层
ess剩7个
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-18 23:00 , Processed in 0.127982 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表