收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一个机器狗下载木马的地址
12下一页
返回列表 发新帖
查看: 3611|回复: 14
收起左侧

[病毒样本] 一个机器狗下载木马的地址

[复制链接]
wqxcx
发表于 2008-2-4 17:40:31 | 显示全部楼层 |阅读模式
一个机器狗下载木马的地址


看看你的报几个

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

woai_jolin
发表于 2008-2-4 17:45:08 | 显示全部楼层
全杀


2008-2-4 17:44:51 HTTP filter file http://11.buyaoni.com/new/30.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:46 HTTP filter file http://11.buyaoni.com/new/27.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:41 HTTP filter file http://11.buyaoni.com/new/26.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:37 HTTP filter file http://11.buyaoni.com/new/25.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:33 HTTP filter file http://71.buyaoni.com/new/24.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:29 HTTP filter file http://71.buyaoni.com/new/21.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:25 HTTP filter file http://71.buyaoni.com/new/20.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:21 HTTP filter file http://71.buyaoni.com/new/19.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:14 HTTP filter file http://31.buyaoni.com/new/18.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:10 HTTP filter file http://31.buyaoni.com/new/17.exe Win32/PSW.OnLineGames.NFL trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:44:05 HTTP filter file http://31.buyaoni.com/new/16.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:43:55 HTTP filter file http://67.198.192.26/new/15.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:43:35 HTTP filter file http://67.198.192.26/new/14.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:43:24 HTTP filter file http://67.198.192.26/new/11.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:43:10 HTTP filter file http://67.198.192.26/new/10.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:43:03 HTTP filter file http://67.198.192.26/new/8.exe a variant of Win32/PSW.WOW.WU trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:42:49 HTTP filter file http://67.198.192.26/new/7.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:42:36 HTTP filter file http://67.198.194.26/new/6.exe Win32/PSW.OnLineGames.GJV trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:42:17 HTTP filter file http://67.198.194.26/new/5.exe a variant of Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:41:58 HTTP filter file http://67.198.194.26/new/4.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:41:52 HTTP filter file http://67.198.194.26/new/3.exe Win32/PSW.OnLineGames.MUG trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:41:43 HTTP filter file http://15.buyaoni.com/new/2.exe Win32/PSW.OnLineGames.NMF trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-2-4 17:41:28 HTTP filter file http://15.buyaoni.com/new/1.exe Win32/PSW.Agent.NGZ trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
回复

举报

spaceplane
发表于 2008-2-4 17:45:41 | 显示全部楼层
先打包,一共23


avast 16
伞8全杀

[ 本帖最后由 spaceplane 于 2008-2-4 17:47 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

ALEXBLAIR
发表于 2008-2-4 17:46:21 | 显示全部楼层
4111111111111

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

wangjay1980
发表于 2008-2-4 17:46:51 | 显示全部楼层
23

真够老的

detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl File: E:\ÏÂÔØ»ùµØ\23.zip/27.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvm File: E:\ÏÂÔØ»ùµØ\23.zip/30.exe//PE_Patch//UPack
detected: Trojan program Trojan-Dropper.Win32.Agent.dxz File: E:\ÏÂÔØ»ùµØ\23.zip/1.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pcn File: E:\ÏÂÔØ»ùµØ\23.zip/2.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvn File: E:\ÏÂÔØ»ùµØ\23.zip/3.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvm File: E:\ÏÂÔØ»ùµØ\23.zip/4.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl File: E:\ÏÂÔØ»ùµØ\23.zip/5.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Nilage.bya File: E:\ÏÂÔØ»ùµØ\23.zip/6.exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv File: E:\ÏÂÔØ»ùµØ\23.zip/7.exe//PE_Patch//UPack
detected: Trojan program Trojan-Downloader.Win32.Delf.axx File: E:\ÏÂÔØ»ùµØ\23.zip/8.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pud File: E:\ÏÂÔØ»ùµØ\23.zip/10.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl File: E:\ÏÂÔØ»ùµØ\23.zip/11.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvm File: E:\ÏÂÔØ»ùµØ\23.zip/14.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\ÏÂÔØ»ùµØ\23.zip/15.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl File: E:\ÏÂÔØ»ùµØ\23.zip/16.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: E:\ÏÂÔØ»ùµØ\23.zip/17.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl File: E:\ÏÂÔØ»ùµØ\23.zip/18.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv File: E:\ÏÂÔØ»ùµØ\23.zip/19.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv File: E:\ÏÂÔØ»ùµØ\23.zip/20.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl File: E:\ÏÂÔØ»ùµØ\23.zip/21.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv File: E:\ÏÂÔØ»ùµØ\23.zip/24.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\ÏÂÔØ»ùµØ\23.zip/25.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\ÏÂÔØ»ùµØ\23.zip/26.exe//PE_Patch//UPack

[ 本帖最后由 wangjay1980 于 2008-2-4 17:48 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

ALEXBLAIR
发表于 2008-2-4 17:47:16 | 显示全部楼层

卡巴全杀

deleted: Trojan program Trojan-Dropper.Win32.Agent.dxz        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/1.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pud        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/10.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pzl        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/11.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pvm        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/14.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pbp        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/15.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pzl        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/16.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.isb        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/17.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pzl        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/18.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qiv        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/19.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pcn        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/2.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qiv        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/20.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pzl        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/21.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qiv        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/24.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pbp        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/25.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pbp        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/26.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pzl        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/27.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pvn        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/3.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pvm        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/30.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pvm        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/4.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.pzl        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/5.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.Nilage.bya        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/6.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qiv        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/7.exe//PE_Patch//UPack
deleted: Trojan program Trojan-Downloader.Win32.Delf.axx        File: F:\ZHANGQIUREN\DESKTOP\777.zip/777/8.exe//UPack
回复

举报

ALEXBLAIR
发表于 2008-2-4 17:47:59 | 显示全部楼层

回复 5楼 wangjay1980 的帖子

被抢先了
不过,怎么报的都是onlinegame和download
回复

举报

spaceplane
发表于 2008-2-4 17:48:33 | 显示全部楼层
蜘蛛 19
回复

举报

Graybird
发表于 2008-2-4 17:51:17 | 显示全部楼层
Starting the file scan:

Begin scan in 'E:\du.rar'
E:\du.rar
  [0] Archive type: RAR
  --> du\2.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.oyd
  --> du\1.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.x
  --> du\3.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.27
  --> du\10.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.29
  --> du\4.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.4
  --> du\5.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.1
  --> du\6.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> du\7.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.4
  --> du\15.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.30
  --> du\18.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\16.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\17.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.258
  --> du\14.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.14
  --> du\19.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.5
  --> du\8.exe
      [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> du\20.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\11.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\21.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\24.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\25.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\30.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\27.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> du\26.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.25
      [INFO]      The file was deleted!


End of the scan: 2008年2月4日  17:52
Used time: 00:16 min

The scan has been done completely.

      0 Scanning directories
     24 Files were scanned
     23 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      1 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

woai_jolin
发表于 2008-2-4 17:53:52 | 显示全部楼层
原帖由 ALEXBLAIR 于 2008-2-4 17:47 发表
被抢先了
不过,怎么报的都是onlinegame和download

MS都不是机器狗
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2026-2-3 22:42 , Processed in 0.082576 second(s), 2 queries , Redis On.

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表