收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一包下载者下载来的
12
返回列表 发新帖
楼主: zzh161
 收起左侧

[病毒样本] 一包下载者下载来的

[复制链接]
kkgh
发表于 2008-1-31 10:00:45 | 显示全部楼层
瑞星病毒查杀结果报告

清除病毒种类列表:
病毒: Trojan.Win32.Undef.bzj   
病毒: Trojan.PSW.Win32.GamesOnline.ma
病毒: Trojan.PSW.Win32.GameOL.ltx
病毒: Trojan.PSW.Win32.ZhengTu.ymy
病毒: Trojan.PSW.Win32.GameOL.lrr
病毒: Worm.Win32.PaBug.GEN     
病毒: Trojan.PSW.Win32.TLOnline.jln
病毒: Trojan.PSW.Win32.QQGame.bq

用户来源:互联网

软件版本:20.29.22
12个
回复

举报

398566384
头像被屏蔽
发表于 2008-1-31 10:03:49 | 显示全部楼层
金山10个
回复

举报

啊弥陀佛
发表于 2008-1-31 11:18:14 | 显示全部楼层
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\11\11\CQ.EXE
病毒程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\IQNAUHC.DLL
2) C:\WINDOWS\SYSTEM32\DRIVERS\MSACLUE.SYS
是否删除木马程序及其衍生物?

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

PC0amera
头像被屏蔽
发表于 2008-1-31 12:48:27 | 显示全部楼层
国产中真的只能支持费尔和微点了..
回复

举报

su-tt
发表于 2008-1-31 12:51:16 | 显示全部楼层
13个吗?
Begin scan in 'C:\Documents and Settings\Administrator\桌面\11.rar'
C:\Documents and Settings\Administrator\桌面\11.rar
  [0] Archive type: RAR
  --> 11\1.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.dyd
  --> 11\cq.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.1
  --> 11\cs.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.11828
  --> 11\dj.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pvk.1
  --> 11\hx.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.28
  --> 11\mh.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.7
  --> 11\my.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 11\pt.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pou.11
  --> 11\qq.exe
      [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.26
  --> 11\tl.exe
      [DETECTION] Is the Trojan horse TR/Agent.15072
  --> 11\wd.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.aob
  --> 11\wm.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.12219.1
  --> 11\xy.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [INFO]      The file was deleted!


End of the scan: 2008年1月31日  12:50
Used time: 00:08 min

The scan has been done completely.

      0 Scanning directories
     14 Files were scanned
     13 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      1 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

prooo
发表于 2008-1-31 13:03:49 | 显示全部楼层
本来应该有几个啊?13个还是14个?
回复

举报

prooo
发表于 2008-1-31 13:05:53 | 显示全部楼层
AntiVir PersonalEdition Classic
Report file date: 2008年1月31日  13:00
Scanning for 1085601 virus strains and unwanted programs.
Licensed to:      Avira AntiVir PersonalEdition Classic
Serial number:    0000149996-ADJIE-0001
Platform:         Windows XP
Windows version:  (Service Pack 2)  [5.1.2600]
Username:         Sean Yuan
Computer name:    ZJU-040863AF158
Version information:
BUILD.DAT    : 270           15603 Bytes   2007-9-19 13:32:00
AVSCAN.EXE   : 7.0.6.1      290856 Bytes   2007-8-23 06:16:29
AVSCAN.DLL   : 7.0.6.0       49192 Bytes   2007-8-16 05:23:51
LUKE.DLL     : 7.0.5.3      147496 Bytes   2007-8-14 08:32:47
LUKERES.DLL  : 7.0.6.1       10280 Bytes   2007-8-21 05:35:20
ANTIVIR0.VDF : 6.40.0.0    11030528 Bytes   2007-7-18 06:36:36
ANTIVIR1.VDF : 7.0.1.95    3367424 Bytes  2007-12-14 04:29:02
ANTIVIR2.VDF : 7.0.2.49    1339904 Bytes   2008-1-25 06:48:58
ANTIVIR3.VDF : 7.0.2.72     208896 Bytes   2008-1-30 04:01:37
AVEWIN32.DLL : 7.6.0.59    3232256 Bytes   2008-1-31 04:01:37
AVWINLL.DLL  : 1.0.0.7       14376 Bytes   2007-2-26 03:36:26
AVPREF.DLL   : 7.0.2.2       25640 Bytes   2007-7-18 00:39:17
AVREP.DLL    : 7.0.0.1      155688 Bytes   2008-1-29 07:23:10
AVPACK32.DLL : 7.6.0.3      360488 Bytes   2008-1-15 06:29:28
AVREG.DLL    : 7.0.1.6       30760 Bytes   2007-7-18 00:17:06
AVARKT.DLL   : 1.0.0.20     278568 Bytes   2007-8-28 05:26:33
AVEVTLOG.DLL : 7.0.0.20      86056 Bytes   2007-7-18 00:10:18
NETNT.DLL    : 7.0.0.0        7720 Bytes    2007-3-8 04:09:42
RCIMAGE.DLL  : 7.0.1.30    2342952 Bytes    2007-8-7 05:38:13
RCTEXT.DLL   : 7.0.62.0      86056 Bytes   2007-8-21 05:50:37
SQLITE3.DLL  : 3.3.17.1     339968 Bytes   2007-7-23 02:37:21
Configuration settings for the scan:
Jobname..........................: ShlExt
Configuration file...............: C:\DOCUME~1\SEANYU~1\LOCALS~1\Temp\0c9b0be6.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: off
Scan registry....................: off
Search for rootkits..............: off
Scan all files...................: Use file extension list
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Skipped files....................: E:\software\setong\SeTong_cr\{app},
Start of the scan: 2008年1月31日  13:00
Starting the file scan:
Begin scan in 'C:\Documents and Settings\Sean Yuan\桌面\11.rar'
C:\Documents and Settings\Sean Yuan\桌面\11.rar
  [0] Archive type: RAR
  --> 11\1.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.dyd
  --> 11\cq.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.1
  --> 11\cs.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.11828
  --> 11\dj.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pvk.1
  --> 11\hx.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.28
  --> 11\mh.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.7
  --> 11\my.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 11\pt.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pou.11
  --> 11\qq.exe
      [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.26
  --> 11\tl.exe
      [DETECTION] Is the Trojan horse TR/Agent.15072
  --> 11\wd.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.aob
  --> 11\wm.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.12219.1
  --> 11\xy.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING]   The file was ignored!

End of the scan: 2008年1月31日  13:00
Used time: 00:19 min
The scan has been done completely.
      0 Scanning directories
     14 Files were scanned
     13 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      1 Files not concerned
      1 Archives were scanned
      1 Warnings
      0 Notes
回复

举报

qigang
发表于 2008-1-31 15:47:41 | 显示全部楼层

30/12

瑞星病毒查杀结果报告

清除病毒种类列表:

病毒: Trojan.Win32.Undef.bzj   
病毒: Trojan.PSW.Win32.GamesOnline.ma
病毒: Trojan.PSW.Win32.GameOL.ltx
病毒: Trojan.PSW.Win32.ZhengTu.ymy
病毒: Trojan.PSW.Win32.GameOL.lrr
病毒: Worm.Win32.PaBug.GEN     
病毒: Trojan.PSW.Win32.TLOnline.jln
病毒: Trojan.PSW.Win32.QQGame.bq

MAC 地址:00:11:5B:F3:6D:69

用户来源:互联网

软件版本:20.29.30
回复

举报

12
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-26 02:18 , Processed in 0.080185 second(s), 16 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表