收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 x
12下一页
返回列表 发新帖
查看: 2569|回复: 11
收起左侧

[病毒样本] x

[复制链接]
自由
发表于 2008-11-27 13:31:07 | 显示全部楼层 |阅读模式
刚刚在电脑找出来,都是类磁碟机。最早的是10月份的。再早就找不到了。
声明:运行请做好保护!

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

aerbeisi
发表于 2008-11-27 13:32:46 | 显示全部楼层
检测到:木马程序 Trojan-Clicker.Win32.Agent.eew        文件: F:\桌面.rar/JPGd.EXE//PE_Patch.UPX//UPX
检测到:木马程序 Trojan-Dropper.Win32.Agent.yhz        文件: F:\桌面.rar/winrun.exe
检测到:木马程序 Trojan-Clicker.Win32.Agent.edn        文件: F:\桌面.rar/Jpg.exe//PE_Patch.UPX//UPX
检测到:木马程序 Trojan-Clicker.Win32.Agent.efo        文件: F:\桌面.rar/JPGr.EXE//PE_Patch.UPX//UPX
检测到:木马程序 Trojan-Clicker.Win32.Agent.eew        文件: F:\桌面.rar/NET1r.EXE//PE_Patch.UPX//UPX
检测到:木马程序 Trojan-Clicker.Win32.Agent.efd        文件: F:\桌面.rar/WINRUNr.EXE//PE_Patch.UPX//UPX
检测到:木马程序 Trojan-Clicker.Win32.Agent.ebn        文件: F:\桌面.rar/alpha.exe//PE_Patch.UPX//UPX
检测到:木马程序 Trojan-Clicker.Win32.Agent.edn        文件: F:\桌面.rar/net1.exe//PE_Patch.UPX//UPX
回复

举报

西风萧雨
发表于 2008-11-27 13:39:54 | 显示全部楼层

微点解压报9个都是已知

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

自由
 楼主| 发表于 2008-11-27 13:41:55 | 显示全部楼层

回复 3楼 西风萧雨 的帖子

我都是扔给微点
让微点工程师去运行

[ 本帖最后由 自由 于 2008-11-27 13:43 编辑 ]
回复

举报

依班娜
发表于 2008-11-27 14:33:09 | 显示全部楼层
卡巴清空
回复

举报

hzyw
头像被屏蔽
发表于 2008-11-27 14:41:16 | 显示全部楼层
扫描类型: 扫描指定目标
目标: C:\桌面.rar


--------------------------------------------------------------------------------

结果: 发现 8 个恶意软件
回复

举报

yufengflying
发表于 2008-11-27 15:10:02 | 显示全部楼层
建議檢查下微軟10月24日發布的安全更新MS08-067(KB958644)是否安裝,我們公司好多中這個病毒的,最后查明原因是沒打這個安全更新,HACKER通過這個漏洞植入的木馬。
回复

举报

will
发表于 2008-11-27 15:33:28 | 显示全部楼层

Multi Command-Line Scanner Report
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\alpha.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: 2A425B71B5275BDCBB0833BF65FA9115

A-squared ----- Trojan-Dropper!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Worm/Generic_r.AZ  
AntiVir ----- Worm/Autorun.qxu
BitDefender ----- Trojan.Generic.827893
ClaimWin -----Nothing
Dr.Web -----Nothing
Eset ----- a variant of Win32/TrojanDownloader.Agent.OJO trojan
F-prot ----- W32/Heuristic-KPP!Eldorado  
Ikarus ----- Trojan-Dropper
Jiangmin ----- Adware/Clicker.jcy
Kaspersky ----- Trojan-Clicker.Win32.Agent.ebn
Kingsoft -----Nothing
Vba32 ----- Trojan-Clicker.Win32.Agent.ebn

*** 11/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\bak1.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: 10F126AA26D312E652A4545488029F50

A-squared ----- Virus.Win32.Trojan!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Worm/Generic_r.AF  
AntiVir ----- HEUR/Malware
BitDefender ----- Trojan.Generic.869379
ClaimWin -----Nothing
Dr.Web -----Nothing
Eset -----Nothing
F-prot -----Nothing
Ikarus ----- Virus.Win32.Trojan
Jiangmin -----Nothing
Kaspersky ----- Heur.Downloader
Kingsoft -----Nothing
Vba32 -----Nothing

*** 7/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\Jpg.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: B5D6332156D64180A3C220C981BB3957

A-squared -----Nothing
Avast ----- Win32:Agent-ACRJ [Trj]
Avg ----- Downloader.Generic7.BCRS  
AntiVir ----- TR/Click.Agent.edn.1
BitDefender ----- Trojan.Clicker.MRP
ClaimWin -----Nothing
Dr.Web ----- Trojan.Popuper.8379
Eset ----- a variant of Win32/Sirung trojan
F-prot ----- W32/Blocker-based!Maximus
Ikarus -----Nothing
Jiangmin ----- Adware/Clicker.jcn
Kaspersky ----- Trojan-Clicker.Win32.Agent.edn
Kingsoft ----- Win32.Troj.Agent.hv.167936
Vba32 ----- Trojan-Clicker.Win32.Agent.edn

*** 11/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\JPGd.EXE
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: C2FEBB3C4BBC178E0C5C4FD6AF9B5EF3

A-squared ----- Trojan.Click.Agent.eew.1!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.BDLO  
AntiVir ----- TR/Click.Agent.eew.1
BitDefender ----- Trojan.Clicker.MRP
ClaimWin -----Nothing
Dr.Web ----- Trojan.Popuper.8379
Eset ----- a variant of Win32/Sirung trojan
F-prot ----- W32/Blocker-based!Maximus
Ikarus ----- Trojan.Click.Agent.eew.1
Jiangmin ----- TrojanClicker.Agent.aeu
Kaspersky ----- Trojan-Clicker.Win32.Agent.eew
Kingsoft ----- Win32.Troj.Agent.fk.167936
Vba32 ----- Trojan-Clicker.Win32.Agent.eew

*** 13/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\JPGr.EXE
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: C0A5942FDC340AE1113AEA036B46DABB

A-squared ----- Trojan.Click.Agent.efo.1!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.BDSF  
AntiVir ----- TR/Click.Agent.efo.1
BitDefender ----- Trojan.Clicker.MRP
ClaimWin -----Nothing
Dr.Web ----- Trojan.Popuper.8379
Eset ----- a variant of Win32/Sirung trojan
F-prot ----- W32/Blocker-based!Maximus
Ikarus ----- Trojan.Click.Agent.efo.1
Jiangmin ----- Adware/Clicker.jdi
Kaspersky ----- Trojan-Clicker.Win32.Agent.efo
Kingsoft ----- Win32.Troj.Agent.hv.167936
Vba32 ----- Trojan-Clicker.Win32.Agent.efo

*** 13/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\net1.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: E30D2F7AEB95879387D17B2B053FE98E

A-squared ----- Trojan.Click.Agent.edn!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.BCRS  
AntiVir ----- TR/Click.Agent.edn
BitDefender ----- Trojan.Generic.834026
ClaimWin -----Nothing
Dr.Web ----- Trojan.Popuper.8379
Eset ----- a variant of Win32/Sirung trojan
F-prot ----- W32/Blocker-based!Maximus
Ikarus ----- Trojan.Click.Agent.edn
Jiangmin ----- Adware/Clicker.jcn
Kaspersky ----- Trojan-Clicker.Win32.Agent.edn
Kingsoft ----- Win32.Troj.ClickerT.hj.159744
Vba32 ----- Trojan-Clicker.Win32.Agent.edn

*** 13/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\NET1r.EXE
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: AEFBEABEC1E0101F9214B9288724B655

A-squared ----- Trojan-Dropper.Agent!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Downloader.Generic7.BDLO  
AntiVir ----- TR/Click.Agent.eew
BitDefender ----- Trojan.Clicker.MRP
ClaimWin -----Nothing
Dr.Web ----- Trojan.Popuper.8379
Eset ----- Win32/TrojanDownloader.Agent.OIY trojan
F-prot ----- W32/Blocker-based!Maximus
Ikarus ----- Trojan-Dropper.Agent
Jiangmin ----- TrojanClicker.Agent.aeu
Kaspersky ----- Trojan-Clicker.Win32.Agent.eew
Kingsoft ----- Win32.Troj.ClickerT.hj.159744
Vba32 ----- Trojan-Clicker.Win32.Agent.eew

*** 13/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\winrun.exe
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: B6266605B1A29960A73BA17242076FDC

A-squared ----- Trojan-Dropper.Agent!IK
Avast ----- Win32:Trojan-gen {Other}
Avg ----- SHeur.CPYG  
AntiVir ----- Worm/Autorun.raj
BitDefender ----- Trojan.Generic.834084
ClaimWin -----Nothing
Dr.Web -----Nothing
Eset ----- a variant of Win32/TrojanDownloader.Agent.OJO trojan
F-prot ----- W32/Heuristic-KPP!Eldorado  
Ikarus ----- Trojan-Dropper.Agent
Jiangmin ----- TrojanDropper.Agent.pzk
Kaspersky ----- Trojan-Dropper.Win32.Agent.yhz
Kingsoft ----- Win32.Troj.Agent.uh.155648
Vba32 ----- Trojan-Dropper.Win32.Agent.yjh

*** 12/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\WINRUNr.EXE
Type: UPX compressed Win32 Executable / Extension: .EXE
MD5 Hash: AC823AA5341B4D55D86F3851050128C1

A-squared -----Nothing
Avast ----- Win32:Trojan-gen {Other}
Avg ----- Worm/Generic_r.AZ  
AntiVir ----- Worm/Autorun.rew
BitDefender ----- Trojan.Generic.852549
ClaimWin -----Nothing
Dr.Web -----Nothing
Eset ----- a variant of Win32/TrojanDownloader.Agent.OJO trojan
F-prot ----- W32/Heuristic-KPP!Eldorado  
Ikarus -----Nothing
Jiangmin ----- Adware/Clicker.jdd
Kaspersky ----- Trojan-Clicker.Win32.Agent.efd
Kingsoft ----- Win32.TrojDownloader.KillAV.fd.159744
Vba32 ----- Trojan-Clicker.Win32.Agent.efd

*** 10/14 antivirus engines found virus in this file ***
-------------------------------------------------------------------------

Task done @ 2008/11/27 四 15:32:57.70
Note: The results might be different from that of the GUI version.
回复

举报

挪威的冬天
发表于 2008-11-27 15:43:56 | 显示全部楼层

回复 8楼 will 的帖子

kingsoft 的命令行扫描不包括风险程序的哦? <我看到最后一排字了>

风险程序        2008-11-27  15:42:30        D:\Desktop\desktop\alpha.exe        Win32.Adware.Agent.155648        隔离成功
回复

举报

lingbo110120
发表于 2008-11-27 15:53:37 | 显示全部楼层
NOD MISS ONE
TO NOD
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-20 01:12 , Processed in 0.142641 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表