收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 7ge
返回列表 发新帖
查看: 2652|回复: 8
收起左侧

[病毒样本] 7ge

[复制链接]
Palkia
发表于 2009-7-19 10:01:36 | 显示全部楼层 |阅读模式
DL.rar              1072.59/1072.59KB   100.00%    在线扫描      它是一个“木马”    2009-7-19 9:59:48    2009-7-19 10:00:11   


费尔 0

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

nosferatu
头像被屏蔽
发表于 2009-7-19 10:22:02 | 显示全部楼层
C:\Documents and Settings\Administrator\桌面\DL\b23361eec97e2ad271960b6ec9a12836 - 可能是 Win32/Adware.WSearch 应用程序 的变种


Starting the file scan:
Begin scan in 'C:\Documents and Settings\Administrator\桌面\DL'
C:\Documents and Settings\Administrator\桌面\DL\0ff246cb3362c17f093bf5a0af850630
    [DETECTION] Is the TR/Agent.49152 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\DL\b23361eec97e2ad271960b6ec9a12836
    [DETECTION] Is the TR/Agent.49152 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\DL\b905000e94053bded92cb4058cde2724
    [DETECTION] Is the TR/ATRAPS.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\DL\d8582cd04620ebbacfdc107d71bd2df5
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\DL\e6f72a9464cbbca9a66e735972cff406
    [DETECTION] Contains HEUR/Malware suspicious code
    [NOTE]      The detection was classified as suspicious.
    [NOTE]      The file was moved to '4ac884c5.qua'!
C:\Documents and Settings\Administrator\桌面\DL\fcce3a7799df1b92a51ebdfee28f1887
    [DETECTION] Is the TR/Crypt.ZPACK.Gen Trojan
    [NOTE]      The file was deleted!

End of the scan: 星期日 2009年7月19日  10:27
Used time: 00:06 Minute(s)
The scan has been done completely.
      1 Scanned directories
      7 Files were scanned
      5 Viruses and/or unwanted programs were found
      1 Files were classified as suspicious
      5 files were deleted
      0 Viruses and unwanted programs were repaired
      1 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
      1 Files not concerned
      0 Archives were scanned
      0 Warnings
      6 Notes

[ 本帖最后由 nosferatu 于 2009-7-19 10:27 编辑 ]
回复

举报

HC303
发表于 2009-7-19 10:27:08 | 显示全部楼层
启发一个,不报一个,上报。
Begin scan in 'G:\virus\DL'
G:\virus\DL\0ff246cb3362c17f093bf5a0af850630
    [DETECTION] Is the TR/Agent.49152 Trojan
G:\virus\DL\b23361eec97e2ad271960b6ec9a12836
    [DETECTION] Is the TR/Agent.49152 Trojan
G:\virus\DL\b905000e94053bded92cb4058cde2724
    [DETECTION] Is the TR/ATRAPS.Gen Trojan
G:\virus\DL\d8582cd04620ebbacfdc107d71bd2df5
    [DETECTION] Is the TR/Dropper.Gen Trojan
G:\virus\DL\e6f72a9464cbbca9a66e735972cff406
  [0] Archive type: RSRC
    [DETECTION] Contains HEUR/Malware suspicious code
G:\virus\DL\fcce3a7799df1b92a51ebdfee28f1887
    [DETECTION] Is the TR/Crypt.ZPACK.Gen Trojan
回复

举报

kingmuro
头像被屏蔽
发表于 2009-7-19 12:08:29 | 显示全部楼层

卡巴KAV6.0报毒

已检测:木马程序 Trojan-Downloader.Win32.Doldow.dz        文件:D:\My Documents\桌面\test\DL\d8582cd04620ebbacfdc107d71bd2df5//Puxador.exe
已检测:木马程序 Trojan-Spy.Win32.Blaxblax.s        文件:D:\My Documents\桌面\test\DL\e6f72a9464cbbca9a66e735972cff406
已检测:木马程序 Trojan-Downloader.Win32.Adik.p        文件:D:\My Documents\桌面\test\DL\b23361eec97e2ad271960b6ec9a12836
已检测:新威胁 not-a-virus:FraudTool.Win32.AntivirusPlus.kv        文件:D:\My Documents\桌面\test\DL\b905000e94053bded92cb4058cde2724
回复

举报

无尽藏海
发表于 2009-7-19 12:21:42 | 显示全部楼层
结果: 找到 4 恶意软件
Adware.BDSearch.1 (广告软件)
D:\virus\DL\b23361eec97e2ad271960b6ec9a12836
Gen:Adware.Heur.326E919393 (病毒)
D:\virus\DL\0ff246cb3362c17f093bf5a0af850630 操作: 删除
Gen:Trojan.Heur.8202FDA8D9 (病毒)
D:\virus\DL\b905000e94053bded92cb4058cde2724 操作: 删除
Dropped:Trojan.Agent.Delf.OJ (病毒)
D:\virus\DL\e6f72a9464cbbca9a66e735972cff406 操作: 删除


定义版本:
病毒: 2009-07-18_02
间谍软件: 2009-07-18_02
扫描引擎:
F-Secure Aquarius: 11.00.00, 2009-07-18
F-Secure Hydra: 4.00.9271, 2009-07-18
扫描选项:
回复

举报

失落的手链
发表于 2009-7-19 13:15:59 | 显示全部楼层
瑞星2010
Packer.Win32.Agent.r
可疑:Dropper.Win32.Mnless.GEN
回复

举报

悠柚
发表于 2009-7-19 13:17:30 | 显示全部楼层
BD miss 3
回复

举报

尤金卡巴斯基
发表于 2009-7-19 20:46:35 | 显示全部楼层
2009/7/19 20:43:43        已清除        广告软件 not-a-virus:AdWare.Win32.Agent.ovi        G:\Temp\Virus\DL.rar/DL\0ff246cb3362c17f093bf5a0af850630               
2009/7/19 20:43:43        已清除        木马程序 Trojan-Spy.Win32.Blaxblax.s        G:\Temp\Virus\DL.rar/DL\e6f72a9464cbbca9a66e735972cff406               
2009/7/19 20:43:43        已清除        木马程序 Trojan-Downloader.Win32.Doldow.dz        G:\Temp\Virus\DL.rar/DL\d8582cd04620ebbacfdc107d71bd2df5//Puxador.exe               
2009/7/19 20:43:43        已清除        木马程序 Trojan-Downloader.Win32.Adik.p        G:\Temp\Virus\DL.rar/DL\b23361eec97e2ad271960b6ec9a12836               
2009/7/19 20:43:43        已清除        病毒 not-a-virus:FraudTool.Win32.AntivirusPlus.kv        G:\Temp\Virus\DL.rar/DL\b905000e94053bded92cb4058cde2724               

Miss 1,To KL
回复

举报

残缺的唯美
发表于 2009-7-19 20:48:31 | 显示全部楼层
2009/7/19        20:47:43        No Action Taken         ekincheng        ODS        C:\Users\ekincheng\Desktop\virus\b905000e94053bded92cb4058cde2724        Artemis!B905000E9405 (Trojan)
2009/7/19        20:47:46        No Action Taken         ekincheng        ODS        C:\Users\ekincheng\Desktop\virus\fcce3a7799df1b92a51ebdfee28f1887        Artemis!FCCE3A7799DF (Trojan)
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-11-17 18:34 , Processed in 0.127973 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表