收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 不常见的Win32,合集
12下一页
返回列表 发新帖
查看: 4735|回复: 17
收起左侧

[病毒样本] 不常见的Win32,合集

[复制链接]
Sherry.ai
发表于 2008-10-24 13:05:28 | 显示全部楼层 |阅读模式
收集N种Win32。大家杀杀看

[ 本帖最后由 935623508 于 2008-10-24 13:08 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Sherry.ai
 楼主| 发表于 2008-10-24 13:06:18 | 显示全部楼层
正在上传,坐个沙发
回复

举报

Sherry.ai
 楼主| 发表于 2008-10-24 13:09:45 | 显示全部楼层
杂没人回帖呢
回复

举报

xi889
头像被屏蔽
发表于 2008-10-24 13:13:59 | 显示全部楼层
2008/10/24 13:21:54 Deleted: Worm.Win32.AutoRun.li F:\Win32\Win32\10\ntldr.exe  
2008/10/24 13:21:54 Deleted: Trojan-Downloader.Win32.Agent.xtq F:\Win32\Win32\11\2b63ad6c  
2008/10/24 13:21:54 Deleted: Virus.Win32.VB.lc F:\Win32\Win32\11\FC speed.exe  
2008/10/24 13:21:54 Disinfected: Virus.Win32.InvictusDLL.d F:\Win32\Win32\11\S.exe  
2008/10/24 13:21:54 Disinfected: Virus.Win32.Virut.n F:\Win32\Win32\13\45E2B2.exe  
2008/10/24 13:21:54 Deleted: Trojan-PSW.Win32.OnLineGames.ahz F:\Win32\Win32\13\45E2B2.exe  
2008/10/24 13:21:54 Deleted: Worm.Win32.Downloader.au F:\Win32\Win32\13\userinit.exe  
2008/10/24 13:21:54 Disinfected: Virus.Win32.Xorer.et F:\Win32\Win32\15\rundll.exe/PE_Patch.UPX/UPX  
2008/10/24 13:21:54 Disinfected: Virus.Win32.Xorer.et F:\Win32\Win32\1\rundll.exe/PE_Patch.UPX/UPX  
2008/10/24 13:21:54 Disinfected: Trojan.Win32.Patched.ap F:\Win32\Win32\1\sxulolg.exe  
2008/10/24 13:21:54 Deleted: Trojan-Downloader.Win32.Todon.u F:\Win32\Win32\1\sxulolg.exe  
2008/10/24 13:21:55 Disinfected: Virus.Win32.Xorer.et F:\Win32\Win32\1\uninst.exe/PE_Patch.UPX/UPX  
2008/10/24 13:21:55 Deleted: Trojan-PSW.Win32.Delf.vb F:\Win32\Win32\1\重要资料2.exe  
2008/10/24 13:21:55 Detected: Multi.Packed F:\Win32\Win32\1\热带鱼屏保.scr/UPX  
2008/10/24 13:21:55 Disinfected: Virus.Win32.Xorer.et F:\Win32\Win32\2\ppstreamsetup_ggskycn2.exe/PE_Patch.UPX/UPX  
2008/10/24 13:21:56 Disinfected: Virus.Win32.Downloader.q F:\Win32\Win32\2\start.exe  
2008/10/24 13:21:56 Disinfected: Trojan.Win32.Patched.ap F:\Win32\Win32\2\sxulolg.exe  
2008/10/24 13:21:56 Deleted: Trojan-Downloader.Win32.Todon.u F:\Win32\Win32\2\sxulolg.exe  
2008/10/24 13:21:56 Disinfected: Virus.Win32.Downloader.m F:\Win32\Win32\4\ah.exe  
2008/10/24 13:21:56 Deleted: Worm.Win32.Downloader.au F:\Win32\Win32\5\userinit.exe  
2008/10/24 13:21:56 Deleted: Worm.Win32.AutoRun.li F:\Win32\Win32\6\ntldr.exe  
2008/10/24 13:21:56 Disinfected: Virus.Win32.Xorer.et F:\Win32\Win32\6\Wg.exe/PE_Patch.UPX/UPX  
2008/10/24 13:21:56 Deleted: Trojan-Downloader.Win32.Agent.vjh F:\Win32\Win32\7\woyb.exe  
2008/10/24 13:21:56 Deleted: Trojan-Downloader.Win32.Agent.vjh F:\Win32\Win32\7\yhow.exe  
2008/10/24 13:21:56 Deleted: Worm.Win32.AutoRun.abi F:\Win32\Win32\8\51A502_avp[1].exe  
2008/10/24 13:21:56 Deleted: Trojan-Dropper.Win32.Agent.bsv F:\Win32\Win32\9\HashCalc.exe  
2008/10/24 13:21:56 Disinfected: Virus.Win32.InvictusDLL.d F:\Win32\Win32\benladeng\binladen.exe  
2008/10/24 13:21:56 Deleted: Virus.Win32.VB.lc F:\Win32\Win32\comic\CCTV.exe  
2008/10/24 13:21:56 Deleted: Virus.Win32.VB.lc F:\Win32\Win32\comic\cf.exe  
2008/10/24 13:21:57 Disinfected: Virus.Win32.Downloader.as F:\Win32\Win32\new2\editor.exe  
2008/10/24 13:21:57 Deleted: Trojan-Downloader.Win32.Agent.dmu F:\Win32\Win32\new2\svchost.exe  
2008/10/24 13:21:57 Deleted: Trojan-Downloader.Win32.Delf.fjk F:\Win32\Win32\new2\win.exe  
2008/10/24 13:21:57 Deleted: Worm.Win32.AutoRun.bup F:\Win32\Win32\new\13[1].exe  
2008/10/24 13:21:57 Disinfected: Virus.Win32.Virut.n F:\Win32\Win32\new\24915b67dfe5c4ccc2de1ad0c7fb8a34.bin(Virus.Win32.Virut.n).KAS  
2008/10/24 13:21:57 Disinfected: Virus.Win32.Virut.n F:\Win32\Win32\new\74fc065c30008609abc21a26be69c1b7.bin(Virus.Win32.Virut.n).KAS  
2008/10/24 13:21:57 Deleted: Worm.Win32.AutoRun.doj F:\Win32\Win32\new\90.exe  
2008/10/24 13:21:57 Deleted: Trojan-Downloader.Win32.Delf.gzs F:\Win32\Win32\new\are.exe  
2008/10/24 13:21:57 Deleted: Trojan-Downloader.Win32.Agent.slt F:\Win32\Win32\new\bimf.exe  
2008/10/24 13:21:57 Disinfected: Virus.Win9x.CIH F:\Win32\Win32\new\Cmplifie.exe  
2008/10/24 13:22:02 Deleted: Trojan-Downloader.Win32.Agent.slt F:\Win32\Win32\new\dvvm.exe  
2008/10/24 13:22:02 Disinfected: Virus.Win32.Virut.n F:\Win32\Win32\new\fd83b004e56552729dfef36ba55ccd25.bin(Virus.Win32.Virut.n).KAS  
2008/10/24 13:22:02 Deleted: Virus.Win32.Xorer.ey F:\Win32\Win32\new\keygen.exe  
2008/10/24 13:22:02 Deleted: Virus.Win32.Gpcode.ak F:\Win32\Win32\new\malware.exe  
2008/10/24 13:22:02 Deleted: Trojan-Downloader.Win32.Agent.wdv F:\Win32\Win32\new\uqup.exe  
2008/10/24 13:22:02 Disinfected: Worm.Win32.Anilogo.b F:\Win32\Win32\new\VMwareService.exe  
2008/10/24 13:22:02 Deleted: Worm.Win32.AutoRun.bup F:\Win32\Win32\new\wdfmgr.exe  
2008/10/24 13:22:02 Deleted: Trojan-Downloader.Win32.Agent.wbq F:\Win32\Win32\new\zvui.exe

[ 本帖最后由 xi889 于 2008-10-24 13:24 编辑 ]
回复

举报

中国崛起
发表于 2008-10-24 13:17:12 | 显示全部楼层
真多啊
回复

举报

Sherry.ai
 楼主| 发表于 2008-10-24 13:18:31 | 显示全部楼层
晚上有时间再发个蠕虫大包...400多兆杂发啊
回复

举报

中国崛起
发表于 2008-10-24 13:19:01 | 显示全部楼层

回复 7楼 935623508 的帖子

搞个纳米盘吧
回复

举报

中国崛起
发表于 2008-10-24 13:19:41 | 显示全部楼层
好像看他们大的包都是上传到一个地方,然后给个提取码
回复

举报

mofunzone
发表于 2008-10-24 13:20:36 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Users\morgan\Desktop\Win32'
C:\Users\morgan\Desktop\Win32\Win32\
  Desktop.ini
C:\Users\morgan\Desktop\Win32\Win32\1\
  Desktop.ini
  rundll.exe
    [DETECTION] Is the TR/Drop.Xorer.C Trojan
    [NOTE]      The file was deleted!
  sxulolg.exe
    [DETECTION] Contains recognition pattern of the W32/Noia.B Windows virus
    [NOTE]      The file was deleted!
  uninst.exe
    [DETECTION] Is the TR/Drop.Xorer.C Trojan
    [NOTE]      The file was deleted!
  热带鱼屏保.scr
    [0] Archive type: Runtime Packed
    --> Object
  重要资料2.exe
    [DETECTION] Is the TR/Crypt.NSAnti.Gen Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\10\
  Desktop.ini
  ntldr.exe
    [0] Archive type: Runtime Packed
    --> Object
      [DETECTION] Contains recognition pattern of the WORM/Cekar.A worm
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\11\
  2B63AD6C
    [DETECTION] Is the TR/Crypt.DJ.32 Trojan
    [NOTE]      The file was deleted!
  Desktop.ini
  FC speed.exe
    [DETECTION] Is the TR/VB.dek.1 Trojan
    [NOTE]      The file was deleted!
  S.exe
    [DETECTION] Contains recognition pattern of the W32/Toal.A1 Windows virus
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\12\
  Desktop.ini
C:\Users\morgan\Desktop\Win32\Win32\13\
  45E2B2.exe
    [DETECTION] Is the TR/PSW.OnLineGa.ahc Trojan
    [NOTE]      The file was deleted!
  Desktop.ini
  userinit.exe
    [DETECTION] Contains recognition pattern of the WORM/Downloader.AU.3 worm
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\14\
  Desktop.ini
C:\Users\morgan\Desktop\Win32\Win32\15\
  Desktop.ini
  rundll.exe
    [DETECTION] Is the TR/Drop.Xorer.C Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\2\
  Desktop.ini
  ppstreamsetup_ggskycn2.exe
    [DETECTION] Is the TR/Drop.Xorer.C Trojan
    [NOTE]      The file was deleted!
  realoneplayer.exe
  start.exe
    [DETECTION] Contains recognition pattern of the W32/Noia.A Windows virus
    [NOTE]      The file was deleted!
  sxulolg.exe
    [DETECTION] Contains recognition pattern of the W32/Noia.B Windows virus
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\3\
  Desktop.ini
  OSO.exe
    [DETECTION] Is the TR/Crypt.NSAnti.Gen Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\4\
  ah.exe
    [DETECTION] Is the TR/Patched.AQ.22 Trojan
    [NOTE]      The file was deleted!
  Desktop.ini
C:\Users\morgan\Desktop\Win32\Win32\5\
  Desktop.ini
  OSO.exe
    [DETECTION] Is the TR/Crypt.NSAnti.Gen Trojan
    [NOTE]      The file was deleted!
  userinit.exe
    [DETECTION] Is the TR/Drop.Agent.23552 Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\6\
  Desktop.ini
  ntldr.exe
    [0] Archive type: Runtime Packed
    --> Object
      [DETECTION] Contains recognition pattern of the WORM/Cekar.A worm
    [NOTE]      The file was deleted!
  Wg.exe
    [DETECTION] Is the TR/Drop.Xorer.C Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\7\
  Desktop.ini
  woyb.exe
    [DETECTION] Is the TR/Dldr.Agent.vjl.1 Trojan
    [NOTE]      The file was deleted!
  yhow.exe
    [DETECTION] Is the TR/Dldr.Agent.vjl.1 Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\8\
  51A502_avp[1].exe
    [DETECTION] Contains code of the W32/Virut.R Windows virus
    [NOTE]      The file was deleted!
  Desktop.ini
C:\Users\morgan\Desktop\Win32\Win32\9\
  Desktop.ini
  HashCalc.exe
    [DETECTION] Is the TR/Dldr.Small.GOC.1 Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\benladeng\
  binladen.exe
    [DETECTION] Contains recognition pattern of the W32/Toal.A1 Windows virus
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\comic\
  CCTV.exe
    [DETECTION] Is the TR/VB.dek.1 Trojan
    [NOTE]      The file was deleted!
  cf.exe
    [DETECTION] Is the TR/VB.dek.1 Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\new\
  13[1].exe
    [0] Archive type: Runtime Packed
    --> Object
      [DETECTION] Contains recognition pattern of the WORM/Cekar.A worm
    [NOTE]      The file was deleted!
  24915b67dfe5c4ccc2de1ad0c7fb8a34.bin(Virus.Win32.Virut.n).KAS
    [DETECTION] Contains code of the W32/Virut.H Windows virus
    [NOTE]      The file was deleted!
  74fc065c30008609abc21a26be69c1b7.bin(Virus.Win32.Virut.n).KAS
    [DETECTION] Contains code of the W32/Virut.Gen Windows virus
    [NOTE]      The file was deleted!
  90.exe
    [0] Archive type: Runtime Packed
    --> Object
      [DETECTION] Contains recognition pattern of the WORM/Cekar.A worm
    [NOTE]      The file was deleted!
  are.exe
    [DETECTION] Contains recognition pattern of the WORM/Otwycal.I worm
    [NOTE]      The file was deleted!
  bimf.exe
    [0] Archive type: Runtime Packed
    --> Object
    [NOTE]      The file was deleted!
  Cmplifie.exe
    [0] Archive type: ZIP SFX (self extracting)
    --> MPlifier.bat
    --> CMPlifier052.exe
    --> MPLIFIER.PIF
    --> MPlifier.txt
    [DETECTION] Contains code of the W95/CIH.A Windows virus
    [NOTE]      The file was deleted!
  dvvm.exe
    [0] Archive type: Runtime Packed
    --> Object
    [NOTE]      The file was deleted!
  fd83b004e56552729dfef36ba55ccd25.bin(Virus.Win32.Virut.n).KAS
    [DETECTION] Contains code of the W32/Virut.Gen Windows virus
    [NOTE]      The file was deleted!
  keygen.exe
    [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
    [NOTE]      The file was deleted!
  malware.exe
    [DETECTION] Is the TR/Gpcode.I Trojan
    [NOTE]      The file was deleted!
  uqup.exe
    [DETECTION] Is the TR/Small.7768.A Trojan
    [NOTE]      The file was deleted!
  VMwareService.exe
    [DETECTION] Contains recognition pattern of the W32/Autorun.BK Windows virus
    [NOTE]      The file was deleted!
  wdfmgr.exe
    [0] Archive type: Runtime Packed
    --> Object
      [DETECTION] Contains recognition pattern of the WORM/Cekar.A worm
    [NOTE]      The file was deleted!
  ZVUI.EXE
    [DETECTION] Is the TR/Dldr.Agent.vjl.1 Trojan
    [NOTE]      The file was deleted!
C:\Users\morgan\Desktop\Win32\Win32\new2\
  editor.exe
    [DETECTION] Is the TR/Dldr.Patched.C.26 Trojan
    [NOTE]      The file was deleted!
  svchost.exe
    [DETECTION] Is the TR/Dldr.Agent.dmu Trojan
    [NOTE]      The file was deleted!
  win.exe
    [DETECTION] Is the TR/Dldr.Delphi.Gen Trojan
    [NOTE]      The file was deleted!


End of the scan: 2008年10月23日  22:19
Used time: 00:06 Minute(s)

The scan has been done completely.

     21 Scanning directories
     67 Files were scanned
     45 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     45 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     22 Files not concerned
      1 Archives were scanned
      0 Warnings
     45 Notes
回复

举报

hzyw
头像被屏蔽
发表于 2008-10-24 14:17:32 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2026-1-1 21:25 , Processed in 0.077264 second(s), 2 queries , Redis On.

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表