收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 转申博的30个
12下一页
返回列表 发新帖
查看: 3236|回复: 11
收起左侧

[病毒样本] 转申博的30个

[复制链接]
傻猪猪米走鸡
发表于 2009-1-17 22:59:56 | 显示全部楼层 |阅读模式
估计有部分会是尸体,但肯定还有病毒木马在里面。

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

尤金卡巴斯基
发表于 2009-1-17 23:01:47 | 显示全部楼层
金山

病毒        2009-01-17  23:02:03        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\932D7C0B12D1CEA17FF0EF05F983ABD9        Win32.Troj.JunkUnknown2.ak.36864        清除成功       
病毒        2009-01-17  23:02:03        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\709DE63FAD7816CB72A15930CFC923D63C545401        Win32.Hack.Bifrose.29053        清除成功       
病毒        2009-01-17  23:02:03        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\593F8DDBC5AE7D9594F03DB7E9FDF3AA8171ECA1        Win32.Hack.Rbot.fj.50464        清除成功       
病毒        2009-01-17  23:02:02        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\401A84785067F7E70A9EFDC887DEDB3CE1C6C194        Win32.Troj.Delf.un.5232        清除成功       
病毒        2009-01-17  23:02:02        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\351B692B2F3EB013696EDFD7066A8A4C19F951F3        Win32.Troj.Dropper.ij.32768        清除成功       
病毒        2009-01-17  23:02:02        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\35133CBB7B00A94CF9FD16E6194A793C31EA9E59        Win32.Troj.Delf.ge.22272        清除成功       
病毒        2009-01-17  23:02:02        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\312C8A8E64185AF640705479F045F4E6FF8A0E12        Win32.Troj.InjectDll.fj.49164        清除成功       
病毒        2009-01-17  23:02:02        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\1604ED9AB8735383E40B20C46FE8201E2F60DE86        Win32.Troj.Agent.2781184        清除成功       
病毒        2009-01-17  23:02:02        C:\Documents and Settings\Administrator\桌面\C_.rar\C#\15299B914306CA5FCFCBF527FC0B9EF871A29EEE        Win32.Troj.Dropper.jf.43520        清除成功
回复

举报

Palkia
发表于 2009-1-17 23:29:36 | 显示全部楼层

24

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\C#\C#'
C:\Documents and Settings\Administrator\桌面\C#\C#\121A54E4D2A93506E1D37D578C405AEDBB623E07
    [DETECTION] Is the TR/Spy.Agent.34816.A Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\15299B914306CA5FCFCBF527FC0B9EF871A29EEE
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\1604ED9AB8735383E40B20C46FE8201E2F60DE86
    [DETECTION] Is the TR/Proxy.Agent.atf.1 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\2469AFE2A0A1A343CC66001AA272C22AFAB65681
      [DETECTION] Is the TR/Downloader.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\312C8A8E64185AF640705479F045F4E6FF8A0E12
      [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\343BF818D30B749DCE37A6B2AD98405A0AF73F19
    [DETECTION] Is the TR/Hijacker.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\35133CBB7B00A94CF9FD16E6194A793C31EA9E59
    [DETECTION] Contains a recognition pattern of the (harmful) BDS/Pcclient.2227 back-door program
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\351B692B2F3EB013696EDFD7066A8A4C19F951F3
    [DETECTION] Is the TR/Dldr.Agent.any.1 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\401A84785067F7E70A9EFDC887DEDB3CE1C6C194
    [DETECTION] Is the TR/Crypt.FSPM.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\425EDE27AD07235283E215281FFFAADC1040DA7F
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\47211CABC3DE7DB2495C3709FF821F3AA59A7E1D
    [DETECTION] Is the TR/Crypt.DY.28 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\545F7B8E5273D6BBC1B3FAAC300DAD87517E7C6A
    [DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\593F8DDBC5AE7D9594F03DB7E9FDF3AA8171ECA1
    [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\6700A083E106151DFDBA2B82E28437E691D5429E
    [DETECTION] Is the TR/Dldr.Exchanger.Gen.2.45 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\709DE63FAD7816CB72A15930CFC923D63C545401
    [DETECTION] Contains a recognition pattern of the (harmful) BDS/Bifrose.GFD back-door program
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\75D9BCEBC4C65881394A3A8A5B2A02854B9250EC
    [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\773E4F856633015FBFCBE044C1DDE89093EF62F6
    [DETECTION] Is the TR/Hijacker.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\827E9C551DB01916BCAE1CA39C8229EBF219D878
    [DETECTION] Is the TR/Drop.VB.AQE.10 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\872F682F20F3598AF8FADB8893735701FC66A24B
    [DETECTION] Is the TR/Agent.4652 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\877E2E713A590CBDA4D16E5DF0164BD72CE09FCD
    [DETECTION] Is the TR/Agent.36352.26 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\87C28F367520DF1972C6EDAB5C0CA1CB3F4FE439
    [DETECTION] Is the TR/Rootkit.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\932D7C0B12D1CEA17FF0EF05F983ABD9
    [DETECTION] Is the TR/Dldr.BHOSta Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\988F994FC2B80EDE2749E676ACE10B572C17900D
    [DETECTION] Is the TR/Rootkit.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\C#\C#\98C0040230A76F94466607DF281B749A22EC770C
    [DETECTION] Is the TR/Agent.26172 Trojan
    [NOTE]      The file was deleted!
回复

举报

Palkia
发表于 2009-1-17 23:31:43 | 显示全部楼层
25223891  86FEB4CC9E40CB8ED8C9...78  38 KB  CLEAN
25197079  129E118C7E094D902104...54  16.5 KB  FALSE POSITIVE
25224119  550C2A15B5B23641553E...B2  31 KB  MALWARE
25224164  0843AF63758DF7C3729F...AD  25 KB  MALWARE
25174269  1036EF3FC22FE45322C4...12  52 KB  FALSE POSITIVE
25194685  7497D149F8FE09E83353...FC  16.19 KB  CLEAN
回复

举报

The EQs
发表于 2009-1-17 23:33:05 | 显示全部楼层
和精睿的样本一个样子,很多尸体

[ 本帖最后由 EQ2 于 2009-1-17 23:44 编辑 ]
回复

举报

magicyujun
发表于 2009-1-17 23:37:16 | 显示全部楼层
2009/1/15 23:11:47        Task started                       
2009/1/15 23:11:47        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun1.exe/UPack               
2009/1/15 23:11:48        Untreated: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun1.exe/UPack        Postponed       
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun2.exe/UPack               
2009/1/15 23:11:48        Untreated: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun2.exe/UPack        Postponed       
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun3.exe/UPack               
2009/1/15 23:11:48        Untreated: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun3.exe/UPack        Postponed       
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun4.exe/UPack               
2009/1/15 23:11:48        Untreated: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun4.exe/UPack        Postponed       
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejp        C:\Users\hp\Desktop\tane0187.rar/mj1.exe               
2009/1/15 23:11:48        Untreated: Trojan-GameThief.Win32.WOW.ejp        C:\Users\hp\Desktop\tane0187.rar/mj1.exe        Postponed       
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejq        C:\Users\hp\Desktop\tane0187.rar/mj1dll.exe               
2009/1/15 23:11:48        Untreated: Trojan-GameThief.Win32.WOW.ejq        C:\Users\hp\Desktop\tane0187.rar/mj1dll.exe        Postponed       
2009/1/15 23:11:48        Detected: Backdoor.Win32.PcClient.aauv        C:\Users\hp\Desktop\tane0187.rar/pcclient1.exe               
2009/1/15 23:11:48        Untreated: Backdoor.Win32.PcClient.aauv        C:\Users\hp\Desktop\tane0187.rar/pcclient1.exe        Postponed       
2009/1/15 23:11:48        Detected: Backdoor.Win32.PcClient.aauw        C:\Users\hp\Desktop\tane0187.rar/pcclient2.exe               
2009/1/15 23:11:48        Untreated: Backdoor.Win32.PcClient.aauw        C:\Users\hp\Desktop\tane0187.rar/pcclient2.exe        Postponed       
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.eju        C:\Users\hp\Desktop\tane0187.rar/pol1.exe               
2009/1/15 23:11:48        Untreated: Trojan-GameThief.Win32.WOW.eju        C:\Users\hp\Desktop\tane0187.rar/pol1.exe        Postponed       
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejt        C:\Users\hp\Desktop\tane0187.rar/pol1dll.exe               
2009/1/15 23:11:48        Untreated: Trojan-GameThief.Win32.WOW.ejt        C:\Users\hp\Desktop\tane0187.rar/pol1dll.exe        Postponed       
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejr        C:\Users\hp\Desktop\tane0187.rar/wow1.exe               
2009/1/15 23:11:48        Untreated: Trojan-GameThief.Win32.WOW.ejr        C:\Users\hp\Desktop\tane0187.rar/wow1.exe        Postponed       
2009/1/15 23:11:48        Detected: Trojan.Win32.Agent.bial        C:\Users\hp\Desktop\tane0187.rar/wow1dll.exe               
2009/1/15 23:11:48        Untreated: Trojan.Win32.Agent.bial        C:\Users\hp\Desktop\tane0187.rar/wow1dll.exe        Postponed       
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun1.exe/UPack               
2009/1/15 23:11:48        Deleted: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun1.exe               
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun2.exe/UPack               
2009/1/15 23:11:48        Deleted: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun2.exe               
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun3.exe/UPack               
2009/1/15 23:11:48        Deleted: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun3.exe               
2009/1/15 23:11:48        Detected: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun4.exe/UPack               
2009/1/15 23:11:48        Deleted: Worm.Win32.AutoRun.xqd        C:\Users\hp\Desktop\tane0187.rar/autorun4.exe               
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejp        C:\Users\hp\Desktop\tane0187.rar/mj1.exe               
2009/1/15 23:11:48        Deleted: Trojan-GameThief.Win32.WOW.ejp        C:\Users\hp\Desktop\tane0187.rar/mj1.exe               
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejq        C:\Users\hp\Desktop\tane0187.rar/mj1dll.exe               
2009/1/15 23:11:48        Deleted: Trojan-GameThief.Win32.WOW.ejq        C:\Users\hp\Desktop\tane0187.rar/mj1dll.exe               
2009/1/15 23:11:48        Detected: Backdoor.Win32.PcClient.aauv        C:\Users\hp\Desktop\tane0187.rar/pcclient1.exe               
2009/1/15 23:11:48        Deleted: Backdoor.Win32.PcClient.aauv        C:\Users\hp\Desktop\tane0187.rar/pcclient1.exe               
2009/1/15 23:11:48        Detected: Backdoor.Win32.PcClient.aauw        C:\Users\hp\Desktop\tane0187.rar/pcclient2.exe               
2009/1/15 23:11:48        Deleted: Backdoor.Win32.PcClient.aauw        C:\Users\hp\Desktop\tane0187.rar/pcclient2.exe               
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.eju        C:\Users\hp\Desktop\tane0187.rar/pol1.exe               
2009/1/15 23:11:48        Deleted: Trojan-GameThief.Win32.WOW.eju        C:\Users\hp\Desktop\tane0187.rar/pol1.exe               
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejt        C:\Users\hp\Desktop\tane0187.rar/pol1dll.exe               
2009/1/15 23:11:48        Deleted: Trojan-GameThief.Win32.WOW.ejt        C:\Users\hp\Desktop\tane0187.rar/pol1dll.exe               
2009/1/15 23:11:48        Detected: Trojan-GameThief.Win32.WOW.ejr        C:\Users\hp\Desktop\tane0187.rar/wow1.exe               
2009/1/15 23:11:48        Deleted: Trojan-GameThief.Win32.WOW.ejr        C:\Users\hp\Desktop\tane0187.rar/wow1.exe               
2009/1/15 23:11:48        Detected: Trojan.Win32.Agent.bial        C:\Users\hp\Desktop\tane0187.rar/wow1dll.exe               
2009/1/15 23:11:48        Deleted: Trojan.Win32.Agent.bial        C:\Users\hp\Desktop\tane0187.rar/wow1dll.exe               
2009/1/15 23:11:48        Task completed
回复

举报

KOI9009
发表于 2009-1-18 00:50:09 | 显示全部楼层
COMODO  12个 其中启发11个
回复

举报

傻猪猪米走鸡
 楼主| 发表于 2009-1-18 22:23:15 | 显示全部楼层
申博的样本量一向比较大,不过clean的比例也高。算是密集式炸弹。
回复

举报

冲动的小白
发表于 2009-1-18 23:04:13 | 显示全部楼层
红伞杀了28个
回复

举报

残缺的唯美
发表于 2009-1-18 23:07:59 | 显示全部楼层
"C:\Users\ekincheng\Desktop\C_.rar";"Virus identified I-Worm/Nuwar.V";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\15299B914306CA5FCFCBF527FC0B9EF871A29EEE";"Trojan horse Dropper.Generic.ZOX";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\312C8A8E64185AF640705479F045F4E6FF8A0E12";"Trojan horse Downloader.Scagent.S";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\351B692B2F3EB013696EDFD7066A8A4C19F951F3";"Trojan horse Generic8.TEC.dropper";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\425EDE27AD07235283E215281FFFAADC1040DA7F";"Trojan horse Generic12.AVUE";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\47211CABC3DE7DB2495C3709FF821F3AA59A7E1D";"Trojan horse BackDoor.Generic10.HGU";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\550C2A15B5B23641553E66124646055D51A901B2";"Trojan horse Generic12.APJS";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\593F8DDBC5AE7D9594F03DB7E9FDF3AA8171ECA1";"Trojan horse SHeur.BUAN";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\6700A083E106151DFDBA2B82E28437E691D5429E";"Virus identified I-Worm/Nuwar.V";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\709DE63FAD7816CB72A15930CFC923D63C545401";"Trojan horse BackDoor.Small.53.BK";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\75D9BCEBC4C65881394A3A8A5B2A02854B9250EC";"Virus found BackDoor.Hupigon";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\827E9C551DB01916BCAE1CA39C8229EBF219D878";"Trojan horse BackDoor.VB.ESL";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\932D7C0B12D1CEA17FF0EF05F983ABD9";"Trojan horse BackDoor.Generic10.AEIU";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\988F994FC2B80EDE2749E676ACE10B572C17900D";"Trojan horse Agent.ANAX";"Infected"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\98C0040230A76F94466607DF281B749A22EC770C";"Virus found Dropper.Xbinder";"Infected"

"Spyware"
"File";"Infection";"Result"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\401A84785067F7E70A9EFDC887DEDB3CE1C6C194";"Adware Generic3.ADII";"Potentially dangerous object"

"Information"
"File";"Infection";"Result"
"C:\Users\ekincheng\Desktop\C_.rar:\C##\7497D149F8FE09E83353EAC2DFB5DDE3F1113BFC";"Runtime packed upack";""
"C:\Users\ekincheng\Desktop\C_.rar:\C##\872F682F20F3598AF8FADB8893735701FC66A24B";"Runtime packed upack";""
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-20 18:40 , Processed in 0.120585 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表