[病毒样本] 53x

显示全部楼层 · 发表于 2008-11-16 19:57:40

这玩意只对广告敏感的么...

显示全部楼层 · 发表于 2008-11-16 19:57:55

C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdTool.Win32.VB.a - Win32/VB.NSH 特洛伊木马
C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.Guanggao.a - Win32/Adware.Guanggao 应用程序
C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.MySearch.d - 可能是 Win32/Adware.MySearch 应用程序的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.WinAD.ab - Win32/Adware.WUpd 应用程序
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (1).exe - 可能是 Win32/PSW.Delf.NLZ 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (10).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (11).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (12).exe - Win32/PSW.OnLineGames.NSG 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (13).exe - Win32/PSW.OnLineGames.NSG 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (14).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (15).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (16).exe - Win32/PSW.OnLineGames.NSG 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (17).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (18).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (19).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (2).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (20).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (21).exe - Win32/PSW.OnLineGames.NSG 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (22).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (23).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (24).exe - 可能是 Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (25).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (26).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (27).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (28).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (29).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (3).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (30).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (31).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (32).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (33).exe > NSIS > 33.exe - Win32/Adware.Cinmus 应用程序的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (34).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (35).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (36).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (4).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (5).exe - Win32/TrojanDropper.Agent.NJN 特洛伊木马
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (6).exe - Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (7).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (8).exe - 可能是 Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (9).exe - Win32/PSW.OnLineGames.NXI 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Agent.cda - 可能是 Win32/Spy.Agent 特洛伊木马的变种
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Delf.pv - Win32/Spy.Delf.PV 特洛伊木马

[ 本帖最后由 luxiao200888 于 2008-11-16 19:59 编辑 ]

显示全部楼层 · 发表于 2008-11-16 20:00:32

Scan Started Sun Nov 16 20:02:34 2008
-------------------------------------------------------------------------------

C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.180Solutions.ay: Adware.180Solutions-16 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.Guanggao.a: Adware.Guanggao FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.SBSoft.g: Trojan.Clicker.Agent.N FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\not-a-virus_AdWare.Win32.WinAD.ab: Adware.Winad-9 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (10).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (11).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (14).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (17).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (18).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (2).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (22).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (23).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (25).exe: Trojan.Spy-55394 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (27).exe: Trojan.Spy-55772 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (28).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (29).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (31).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (32).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (35).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (36).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (4).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\ONLINEGAMETHIEF (6).exe: Trojan.Starter-12 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Agent.ccb_7: Trojan.Small-3632 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Agent.ccb_8: Trojan.Small-3632 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Agent.ccb_9: Trojan.Small-3632 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Agent.cda: Trojan.Spy-54606 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Delf.pv: Trojan.Delf-229 FOUND
C:\Documents and Settings\Owner\桌面\新建文件夹\Trojan-Spy.Win32.Goldun.su: Trojan.Spy-19246 FOUND
----------- SCAN SUMMARY -----------
Known viruses: 461375
Engine version: 0.93
Scanned directories: 1
Scanned files: 53
Infected files: 28

Data scanned: 9.93 MB
Time: 25.422 sec (0 m 25 s)
--------------------------------------
Completed
--------------------------------------

显示全部楼层 · 发表于 2008-11-16 20:00:52

虚拟机装上5分钟不到删除

费尔特征43

not-a-virus_AdWare.Win32.180Solutions.ay165.60/165.60KB 100.00% 在线扫描没有发现病毒，但这并不能说明此文件百分之百可信。2008-11-16 20:01:47 2008-11-16 20:01:52
not-a-virus_AdWare.Win32.Guanggao.a119.29/119.29KB 100.00% 在线扫描没有发现病毒，但这并不能说明此文件百分之百可信。2008-11-16 20:01:48 2008-11-16 20:01:55
not-a-virus_AdWare.Win32.MySearch.d29.80/29.80KB 100.00% 在线扫描没有发现病毒，但这并不能说明此文件百分之百可信。2008-11-16 20:01:48 2008-11-16 20:01:58
not-a-virus_AdWare.Win32.RK.c542.96/542.96KB 100.00% 在线扫描没有发现病毒，但这并不能说明此文件百分之百可信。2008-11-16 20:01:48 2008-11-16 20:02:02
not-a-virus_AdWare.Win32.SBSoft.g96.45/96.45KB 100.00% 在线扫描没有发现病毒，但这并不能说明此文件百分之百可信。2008-11-16 20:01:48 2008-11-16 20:02:05
not-a-virus_AdWare.Win32.WinAD.ab61.35/61.35KB 100.00% 在线扫描它是一个“间谍程序”2008-11-16 20:01:48 2008-11-16 20:02:07
Trojan-Spy.Win32.Agent.ccb_340.47/40.47KB 100.00% 在线扫描它是一个“木马” 2008-11-16 20:01:48 2008-11-16 20:02:09
Trojan-Spy.Win32.Agent.ccb_857.97/57.97KB 100.00% 在线扫描它是一个“木马” 2008-11-16 20:01:48 2008-11-16 20:02:14
Trojan-Spy.Win32.Agent.ccb_971.45/71.45KB 100.00% 在线扫描它是一个“木马” 2008-11-16 20:01:49 2008-11-16 20:02:17
Trojan-Spy.Win32.Goldun.su72.64/72.64KB 100.00% 在线扫描它是一个“间谍程序”2008-11-16 20:01:49 2008-11-16 20:02:19

微点特征MISS 21

kv 39

[ 本帖最后由 tvuser2007 于 2008-11-16 20:05 编辑 ]

显示全部楼层 · 发表于 2008-11-16 20:03:38

Scan Stats:
  Scan Time: 8 seconds
  Scan Options:
  Scan Targets: D:\Virus\01A.zip
  Counts:
Total items scanned: 54
- Files & Directories: 54
- Registry Entries: 0
- Processes & Start-up Items: 0
- Network & Browser Items: 0
- Other: 0
- Trusted Files: 0
- Skipped Files: 0

Total security risks detected: 47
Total items resolved: 47
Total items that require attention: 0

显示全部楼层 · 发表于 2008-11-16 20:06:45

又找到个..

显示全部楼层 · 发表于 2008-11-16 20:07:19

好冷的东西啊

显示全部楼层 · 发表于 2008-11-16 20:07:33

山寨 miss 16

显示全部楼层 · 发表于 2008-11-16 20:08:45

avast! miss 8

显示全部楼层 · 发表于 2008-11-16 20:10:29

53杀39 nod32

[病毒样本] 53x

本帖子中包含更多资源

本帖子中包含更多资源

回复 6楼 qianwenxiang 的帖子