今天去下外挂~~~~~~~~

显示全部楼层 · 发表于 2008-4-6 07:23:55

今天去希望外挂吧看了看，下了个加速器，我把它解压在桌面，运行后就消失了~~~~~~卡7和360反映也没有，之后用EQ看了一下，在C盘生成了NTDUBECT.exe，然后我运行NTDUBECT.exe，结果它自己删了自己然后再生成一个~~~~~~~

显示全部楼层 · 发表于 2008-4-6 07:25:27

其他的什么都没动~~~~~~这是病毒吗~~~~~~~~~

显示全部楼层 · 发表于 2008-4-6 07:26:44

a-squared 3.0.0.126 2008.04.05 2008-04-05
-
40.234
AntiVir 7.6.0.81 7.0.3.122 2008-04-05
-
2.544
Arcavir 1.0.4 200804051343 2008-04-05
-
1.575
AVAST 1.0.8 080405-1 2008-04-06
Win32:Gaobot-2437 [Trj]
4.552
AVG 7.5.51.442 269.21.8/1345 2008-03-26
-
2.502
BitDefender 7.60825.1128805 7.18340 2008-04-06
Trojan.PWS.OnLineGames.SSH
3.834
CA (VET) 9.0.0.143 31.3.5672 2008-04-05
-
40.238
ClamAV 0.92 6626 2008-04-06
-
0.060
Comodo 2.11 2.0.0.486 2008-04-05
-
40.235
CP Secure 1.1.0.715 2008.04.06 2008-04-06
-
6.749
Dr.WEB 4.44.0.9170 2008.04.05 2008-04-05
-
4.485
ewido 4.0.0.2 2008.04.05 2008-04-05
-
40.231
F-PROT 4.4.1.52 20080405 2008-04-05
-
1.767
F-SECURE 5.51.6100 2008.04.05.02 2008-04-05
-
0.069
IKARUS T3.1.01.20 2008.03.30.70525 2008-03-30
Virus.Win32.Agent.JRH
1.476
Microsoft 1.3408 2008.04.05 2008-04-05
-
40.239
MKS_VIR 2.01 2008.04.04 2008-04-04
-
7.815
NORMAN 5.91.10 5.90 2008-03-31
-
25.486
nProtect 2008-04-05.00 1363363 2008-04-05
-
40.542
Prevx V2 20080406 2008-04-06
-
40.246
QuickHeal 9.00 2008.04.05 2008-04-05
-
40.761
SOPHOS 2.72.0 4.28 2008-03-30
-
2.735
The Hacker 6.2.92 v00266 2008-04-05
-
40.240
VBA32 3.12.6.4 20080405.1930 2008-04-05
MalwareScope.Trojan-PSW.Game.13
1.854
ViRobot 20080404 2008.04.04 2008-04-04
-
40.235
VirusBuster 4.3.19:9 9.123.32/11.0 2008-04-06
-
1.614
卡巴斯基 5.5.10 2008.04.05 2008-04-05
-
7.036
安博士V3 2008.04.04.02 2008.04.04 2008-04-04
-
40.237
江民杀毒 10.00.650 2008.03.27 2008-03-27
-
40.233
熊猫卫士 9.04.03.0001 2008.04.04 2008-04-04
-
40.235
瑞星 20.0 20.38.60.00 2008-04-06
-
40.242
赛门铁克 1.3.0.24 20080405.003 2008-04-05
-
90.614
趋势 8.500-1001 5.202.19 2008-04-05
-
0.041
迈克菲 5.2.00 5267 2008-04-04
-
1.958
金山毒霸 2007.6.20.249 2008.4.5 2008-04-05
-
40.235
飞塔 2.81-3.11 8.931 2008-04-05
-
40.235

显示全部楼层 · 发表于 2008-4-6 07:43:07

Start of the scan: Sunday, 6 April, 2008  07:42

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Tim\桌面\樣本\NTDUBECT.rar'
Begin scan in 'C:\Documents and Settings\Tim\桌面\樣本\sealonline.rar'

End of the scan: Sunday, 6 April, 2008  07:42
Used time: 00:03 min

The scan has been done completely.

   0 Scanning directories
   6 Files were scanned
   0 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   6 Files not concerned
   2 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-4-6 10:31:06

驱逐舰不报

显示全部楼层 · 发表于 2008-4-6 10:49:07

http://www.threatexpert.com/report.aspx?md5=9bd86ca0995b3173f58768aa57ff373d

一只无聊的鸽子

上报江民

http://www.sealjb.com/ip.txt

连接的最终地址

[ 本帖最后由 syspacker 于 2008-4-6 10:57 编辑 ]

显示全部楼层 · 发表于 2008-4-6 11:14:03

看了一下费尔的打分

显示全部楼层 · 发表于 2008-4-6 11:23:02

......

显示全部楼层 · 发表于 2008-4-6 11:30:45

毒霸不报。

显示全部楼层 · 发表于 2008-4-6 21:15:48

rising20.38.60未杀！

[病毒样本] 今天去下外挂~~~~~~~~

本帖子中包含更多资源

紅傘

本帖子中包含更多资源

本帖子中包含更多资源

4/0