假av+Trojan(140楼有新)过所有主流!

显示全部楼层 · 发表于 2009-2-11 11:21:22

过红伞微点杀
程序：
C:\DOCUMENTS AND SETTINGS\\桌面\INSTALLAVG_80808080.EXE
是否阻止该进程继续运行?
程序：
C:\DOCUMENTS AND SETTINGS\\桌面\INSTALLAVG_80808080.EXE
是否删除木马程序及其衍生物?

显示全部楼层 · 发表于 2009-2-11 11:42:02

已上报诺顿

a-squared 4.0.0.93 2009.02.11 -
AhnLab-V3 5.0.0.2 2009.02.10 -
AntiVir 7.9.0.76 2009.02.10 -
Authentium 5.1.0.4 2009.02.11 -
Avast 4.8.1335.0 2009.02.10 -
AVG 8.0.0.229 2009.02.10 -
BitDefender 7.2 2009.02.11 -
CAT-QuickHeal 10.00 2009.02.10 -
ClamAV 0.94.1 2009.02.10 -
Comodo 973 2009.02.10 -
DrWeb 4.44.0.09170 2009.02.11 Trojan.Fakealert.3932
eSafe 7.0.17.0 2009.02.09 -
eTrust-Vet 31.6.6349 2009.02.11 -
F-Prot 4.4.4.56 2009.02.10 -
F-Secure 8.0.14470.0 2009.02.11 -
Fortinet 3.117.0.0 2009.02.11 -
GData 19 2009.02.11 -
Ikarus T3.1.1.45.0 2009.02.11 -
K7AntiVirus 7.10.626 2009.02.10 -
Kaspersky 7.0.0.125 2009.02.11 -
McAfee 5522 2009.02.10 -
McAfee+Artemis 5522 2009.02.10 -
Microsoft 1.4306 2009.02.10 -
NOD32 3844 2009.02.11 -
Norman 6.00.02 2009.02.09 -
nProtect 2009.1.8.0 2009.02.10 -
Panda 10.0.0.10 2009.02.10 -
PCTools 4.4.2.0 2009.02.10 -
Prevx1 V2 2009.02.11 Fraudulent Security Program
Rising 21.16.20.00 2009.02.11 -
SecureWeb-Gateway 6.7.6 2009.02.11 -
Sophos 4.38.0 2009.02.11 -
Sunbelt 3.2.1851.2 2009.02.10 -
Symantec 10 2009.02.11 -
TheHacker 6.3.1.5.252 2009.02.11 -
TrendMicro 8.700.0.1004 2009.02.10 -
VBA32 3.12.8.12 2009.02.11 -
ViRobot 2009.2.10.1599 2009.02.11 -
VirusBuster 4.5.11.0 2009.02.10 -

显示全部楼层 · 发表于 2009-2-11 12:03:21

TO avira

显示全部楼层 · 发表于 2009-2-11 14:10:50

AVERT Labs - Beaverton
Current Scan Engine Version:5300.2777
Current DAT Version:5522.0000
Thank you for your submission.

Analysis ID: 5128495

File Name          Findings                      Detection                   Type       Extra
--------------------|------------------------------|----------------------------|------------|-----
fileng.gif3       |new detection                |pws-goft                   |Trojan    |yes
installavg_80808080.|current detection          |fakealert-av2009.gen.a    |Trojan    |no

extra.dat 奉上

[ 本帖最后由 llydmissile 于 2009-2-11 14:14 编辑 ]

显示全部楼层 · 发表于 2009-2-11 14:20:44

AVERT Labs - Beaverton
Current Scan Engine Version:5300.2777
Current DAT Version:5522.0000
Thank you for your submission.

Analysis ID: 5128506

File Name          Findings                      Detection                   Type       Extra
--------------------|------------------------------|----------------------------|------------|-----
installavg_80808080_|current detection          |fakealert-av2009.gen.a    |Trojan    |no
installavg_80808080_|current detection          |fakealert-av2009.gen.a    |Trojan    |no
installavg_80808080_|current detection          |fakealert-av2009.gen.a    |Trojan    |no
installavg_80808080_|current detection          |fakealert-av2009.gen.a    |Trojan    |no
installavg_80808080_|current detection          |fakealert-av2009.gen.a    |Trojan    |no
installavg_80808080_|current detection          |fakealert-av2009.gen.a    |Trojan    |no
installavg_80808080_|inconclusive                |                         |          |no
installavg_80808080_|inconclusive                |                         |          |no

inconclusive [installavg_80808080_7.exe3 installavg_80808080_8.ex3e]

Gen加的略有欠缺啊

[ 本帖最后由 llydmissile 于 2009-2-11 14:22 编辑 ]

显示全部楼层 · 发表于 2009-2-11 14:38:41

TO ESET

显示全部楼层 · 发表于 2009-2-11 19:56:58

033a72029a84c1933198f9d0b70f364b InstallAVg_80808081.exe
to kl

显示全部楼层 · 发表于 2009-2-11 19:59:47

to VB

显示全部楼层 · 发表于 2009-2-11 20:00:56

过红伞微点杀
程序：
C:\DOCUMENTS AND SETTINGS\\桌面\INSTALLAVG_80808081.EXE
是否阻止该进程继续运行?
程序：
C:\DOCUMENTS AND SETTINGS\\桌面\INSTALLAVG_80808081.EXE
是否删除木马程序及其衍生物?

显示全部楼层 · 发表于 2009-2-11 20:04:18

Access to the data has been denied!
Warning: A virus or unwanted program has been found in the HTTP Data.

Requested URL: http://bbs.kafan.cn/attachment.p ... 78&t=1234353742
Information: Is the TR/Dropper.Gen Trojan

--------------------------------------------------------------------------------
Generated by AntiVir WebGuard 8.0.15.0, AVE 8.2.0.76, VDF 7.1.2.2

[病毒样本] 假av+Trojan(140楼有新)过所有主流!

回复 39楼 sam.to 的帖子

本帖子中包含更多资源

本帖子中包含更多资源

回复 47楼 sam.to 的帖子

回复 47楼 sam.to 的帖子

回复 31楼 sam.to 的帖子