收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 无聊人的无聊样本
12
返回列表 发新帖
楼主: The EQs
 收起左侧

[病毒样本] 无聊人的无聊样本

[复制链接]
马力
发表于 2007-4-12 07:52:56 | 显示全部楼层
驱逐舰报杀一个

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

yitp
发表于 2007-4-12 10:55:31 | 显示全部楼层
都启发
回复

举报

bridgewr
发表于 2007-4-12 11:23:35 | 显示全部楼层
楼主确定是木马么?我运行后,啥也不作然后3分钟左右就自动退出了
回复

举报

KAV-Longhorn
发表于 2007-4-12 11:55:38 | 显示全部楼层
红伞全作掉了

Starting the file scan:

Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\-123.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\-123.rar
  [0] Archive type: RAR
  --> £­123\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '464fadbf.qua'!
Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\23-235.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\23-235.rar
  [0] Archive type: RAR
  --> 23-235\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '464aadc1.qua'!
Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\230.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\230.rar
  [0] Archive type: RAR
  --> 230\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '464dadc2.qua'!
Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\234.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\234.rar
  [0] Archive type: RAR
  --> 234\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '4651adc2.qua'!
Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\01324.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\01324.rar
  [0] Archive type: RAR
  --> 01324\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '4650adc0.qua'!
Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\9234.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\9234.rar
  [0] Archive type: RAR
  --> 9234\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '4650adc2.qua'!
Begin scan in 'C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\90230412.rar'
C:\Documents and Settings\FEAR\My Documents\Downloads\Compressed\90230412.rar
  [0] Archive type: RAR
  --> 90230412\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '464fadc0.qua'!


End of the scan: 2007年4月12日  15:54
Used time: 00:04 min

The scan has been done completely.

      0 Scanning directories
     14 Files were scanned
      7 viruses and/or unwanted programs were found
      0 files were deleted
      0 files were repaired
      7 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      7 Files not concerned
      7 Archives were scanned
      0 Warnings
      0 Notes[:14:] [:14:] [:14:]
回复

举报

chenzheyun
发表于 2007-4-12 15:30:48 | 显示全部楼层
传说中的壳王出现啦
回复

举报

taihuxian
发表于 2007-4-12 16:13:16 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\user\桌面\230.rar'
C:\Documents and Settings\user\桌面\230.rar
  [0] Archive type: RAR
  --> 230\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '464dea37.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!


End of the scan: 2007年4月12日  16:12
Used time: 00:01 min

The scan has been done completely.

      0 Scanning directories
      3 Files were scanned
      1 viruses and/or unwanted programs were found
      1 files were deleted
      0 files were repaired
      1 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      2 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

taihuxian
发表于 2007-4-12 16:16:02 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\user\桌面\230.rar'
C:\Documents and Settings\user\桌面\230.rar
  [0] Archive type: RAR
  --> 230\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '464deb15.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
Begin scan in 'C:\Documents and Settings\user\桌面\90230412.rar'
C:\Documents and Settings\user\桌面\90230412.rar
  [0] Archive type: RAR
  --> 90230412\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '464feb13.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
Begin scan in 'C:\Documents and Settings\user\桌面\-123.rar'
C:\Documents and Settings\user\桌面\-123.rar
  [0] Archive type: RAR
  --> £­123\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '464feb14.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
Begin scan in 'C:\Documents and Settings\user\桌面\23-235.rar'
C:\Documents and Settings\user\桌面\23-235.rar
  [0] Archive type: RAR
  --> 23-235\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '464aeb16.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
Begin scan in 'C:\Documents and Settings\user\桌面\234.rar'
C:\Documents and Settings\user\桌面\234.rar
  [0] Archive type: RAR
  --> 234\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '4651eb16.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
Begin scan in 'C:\Documents and Settings\user\桌面\01324.rar'
C:\Documents and Settings\user\桌面\01324.rar
  [0] Archive type: RAR
  --> 01324\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '4650eb15.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
Begin scan in 'C:\Documents and Settings\user\桌面\9234.rar'
C:\Documents and Settings\user\桌面\9234.rar
  [0] Archive type: RAR
  --> 9234\s3.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      A backup was created as '4650eb16.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!


End of the scan: 2007年4月12日  16:16
Used time: 00:06 min

The scan has been done completely.

      0 Scanning directories
     21 Files were scanned
      7 viruses and/or unwanted programs were found
      7 files were deleted
      0 files were repaired
      7 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     14 Files not concerned
      7 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

solcroft
发表于 2007-4-12 16:20:25 | 显示全部楼层
统统都误报,搞什么鬼,就是我昨晚发的那只死马,竟然来给红伞鞭尸
回复

举报

Giggs
发表于 2007-4-12 16:37:57 | 显示全部楼层
确实够无聊的.....
回复

举报

caocao
发表于 2007-4-12 18:04:02 | 显示全部楼层
已删除: 木马程序 Trojan-PSW.Win32.WOW.mm        文件: D:\Downloads\230.rar/230\s3.exe
已删除: 木马程序 Trojan-PSW.Win32.Nilage.bjg        文件: D:\Downloads\01324.rar/01324\s3.exe//PE_Patch//PE_Patch//PE_Patch.EPProt//UPX
已删除: 木马程序 Backdoor.Win32.Hupigon.efk        文件: D:\Downloads\234.rar/234\s3.exe
已删除: 木马程序 Trojan-PSW.Win32.Nilage.bjg        文件: D:\Downloads\23-235.rar/23-235\s3.exe//PE_Patch//PE_Patch.AvSpoof//UPX
已删除: 病毒 Virus.Win32.Delf.an        文件: D:\Downloads\90230412.rar/90230412\s3.exe
回复

举报

12
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-1-11 11:05 , Processed in 0.089122 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表