2008年11月11日晚上收集的25个可疑样本

zjsxsycj

2008年11月11日晚上收集的25个可疑样本
如果您的安全软件无法查杀,
请及时上报. 谢谢

点击下载2008年11月11日晚上收集的25个可疑样本

无尽藏海

Begin scan in 'D:\Virus\25_virus'
D:\Virus\25_virus\b08.css
      [DETECTION] Is the TR/Dldr.Agent.albp Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\data.exe
    [0] Archive type: NSIS
    --> ProgramFilesDir/BaiduBar.dll
      [DETECTION] Contains recognition pattern of the ADSPY/AdSpy.Gen adware or spyware
    [NOTE]      The file was deleted!
D:\Virus\25_virus\downer.exe
    [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\Explore.css
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\Explore.exe
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\inetinfo.exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\scardsvr.exe
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/Agent.bnt.20480 Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\test317.exe
    [DETECTION] Is the TR/Dldr.Agent.11 Trojan
    [NOTE]      The file was deleted!
D:\Virus\25_virus\wl.css
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!


End of the scan: 2008年11月11日  23:09
Used time: 00:07 Minute(s)

The scan has been done completely.

      1 Scanning directories
     34 Files were scanned
      9 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      9 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     25 Files not concerned
      2 Archives were scanned
      0 Warnings
      9 Notes



好多网页

尤金卡巴斯基

2008/11/11 23:42:03        已隔离        木马程序 Heur.Trojan.Generic        G:\Temp\Virus\25_virus.rar/inetinfo.exe               
2008/11/11 23:42:01        已删除        木马程序 Trojan-Dropper.Win32.Agent.zhc        G:\Temp\Virus\25_virus.rar/Explore.css//PE_Patch//UPack               
2008/11/11 23:42:01        已删除        木马程序 Trojan-Downloader.Win32.Delf.ogy        G:\Temp\Virus\25_virus.rar/downer.exe               
2008/11/11 23:42:00        已删除        木马程序 Trojan-Dropper.Win32.Agent.yjl        G:\Temp\Virus\25_virus.rar/b08.css//PE_Patch//UPack               
2008/11/11 23:42:00        已删除        木马程序 Trojan-Dropper.Win32.Agent.zhc        G:\Temp\Virus\25_virus.rar/Explore.exe//PE_Patch//UPack               
2008/11/11 23:42:00        已删除        木马程序 Trojan-Downloader.Win32.Agent.wps        G:\Temp\Virus\25_virus.rar/wl.css//PE_Patch//UPack               
2008/11/11 23:42:00        已隔离        木马程序 Heur.Downloader        G:\Temp\Virus\25_virus.rar/test317.exe               
特征码漏杀的 To KL

Sandbox     3
Clean          1

网页太多了

Scanning Engines:

F-Secure AVP: 7.00.171, 2008-11-11
F-Secure Hydra: 2.08.8110, 2008-11-11

Result: 5 malware found
Trojan-Dropper.Win32.Agent.yjl (virus)
C:\Documents and Settings\sk\桌面\virusrun\081111\25_virus\b08.css Action: deleted
Trojan-Downloader.Win32.Delf.ogy (virus)
C:\Documents and Settings\sk\桌面\virusrun\081111\25_virus\downer.exe Action: deleted
Trojan-Dropper.Win32.Agent.zhc (virus)
C:\Documents and Settings\sk\桌面\virusrun\081111\25_virus\Explore.css Action: deleted
C:\Documents and Settings\sk\桌面\virusrun\081111\25_virus\Explore.exe Action: deleted
Trojan-Downloader.Win32.Agent.wps (virus)
C:\Documents and Settings\sk\桌面\virusrun\081111\25_virus\wl.css Action: deleted

[ 本帖最后由 feihongtian 于 2008-11-12 02:32 编辑 ]

kingmuro

诺顿10.1

hzyw