收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 剑盟论坛里面的,病毒很厉害小心
1234下一页
返回列表 发新帖
查看: 8145|回复: 34
收起左侧

[病毒样本] 剑盟论坛里面的,病毒很厉害小心

[复制链接]
a87750530
发表于 2008-4-28 17:54:24 | 显示全部楼层 |阅读模式
有人在这页面(http://bbs.janmeng.com/thread-743584-1-1.html)发了病毒网址,病毒地址为:hXXp://lm.kbunion.com/image/logo.gif
我打开http://lm.kbunion.com/的时候,微点狂弹我还没有打包上传,请高手搞定
请不要打开http://lm.kbunion.com/这个网页有毒啊,是里面的东东多着呢,好像还有机器狗呢!
里面好像有带ARP欺骗的。

[ 本帖最后由 a87750530 于 2008-4-28 17:57 编辑 ]
回复

举报

shery0000
发表于 2008-4-28 17:57:41 | 显示全部楼层
强大

------
貌似一打毒图,没完

[ 本帖最后由 shery0000 于 2008-4-28 18:16 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Exia 该用户已被删除
发表于 2008-4-28 17:58:17 | 显示全部楼层
Starting the file scan:

Begin scan in 'E:\AV\新建文件夹\logo.gif'
E:\AV\新建文件夹\logo.gif
      [DETECTION] Contains detection pattern of the worm WORM/Cekar.A
      [NOTE]      The file was deleted!
回复

举报

冷冷
发表于 2008-4-28 18:20:17 | 显示全部楼层
logo.gif.exe
37AEE640B663B861E2389B1B534613CB  
Upack V0.37 -> Dwing <===> 支持脱该壳

是下载者

  2. http://e.987255.com/soundma.exe
  3. http://c.987255.com/game.exe
  4. http://e.987255.com//host.exe
  5. http://e.987255.com//lmmh.exe
  6. http://a.987255.com/00001.exe
  7. http://a.987255.com/00002.exe
  8. http://a.987255.com/00003.exe
  9. http://a.987255.com//00004.exe
  10. http://a.987255.com/00005.exe
  11. http://c.987255.com/00017.exe
  12. http://a.987255.com/00015.exe
  13. http://a.987255.com/00006.exe
  14. http://b.987255.com/00016.exe
  15. http://b.987255.com//00014.exe
  16. http://a.987255.com/00007.exe
  17. http://b.987255.com/00008.exe
  18. http://b.987255.com/00012.exe
  19. http://b.987255.com/00013.exe
  20. http://c.987255.com/00040.exe
  21. http://c.987255.com/00030.exe
  22. http://b.987255.com/00035.exe
  23. http://c.987255.com/00031.exe
  24. http://b.987255.com/00036.exe
  25. http://c.987255.com/00019.exe
  26. http://c.987255.com/00020.exe
  27. http://c.987255.com/00021.exe
  28. http://b.987255.com/00010.exe
  29. http://b.987255.com/00011.exe
  30. http://b.987255.com/qq.exe
  31. http://a.8d8.us:666/arp111.exe
  32. http://c.987255.com/gx.exe -->不能下载
复制代码

这些好像以前发过

[ 本帖最后由 冷冷 于 2008-4-28 18:35 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Exia 该用户已被删除
发表于 2008-4-28 18:23:58 | 显示全部楼层

回复 4楼 冷冷 的帖子

全灭
Starting the file scan:

Begin scan in 'E:\AV\新建文件夹\新建文件夹'
E:\AV\新建文件夹\新建文件夹\00002.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.abxk
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aji
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00003.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00004.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.12134
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00005.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.53
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00006.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ZFE.3
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00007.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00008.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00010.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00011.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ablo
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00012.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00013.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00014.exe
  [0] Archive type: OVL
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.ajv
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00015.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.zfe
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00016.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00017.exe
      [DETECTION] Is the Trojan horse TR/Onlinegames.NVI
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00019.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00020.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.ahy
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00021.exe
  [0] Archive type: OVL
  --> Object
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00030.exe
      [DETECTION] Is the Trojan horse TR/PSW.16785
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00031.exe
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00035.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aju
      [DETECTION] Contains suspicious code HEUR/Malware
      [NOTE]      The fund was classified as suspicious.
      [NOTE]      The file was moved to '4845a643.qua'!
E:\AV\新建文件夹\新建文件夹\00036.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.yip.19
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00040.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ydw
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.ajp
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\arp111.exe
  [0] Archive type: RSRC
    --> Object
          [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.2
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\game.exe
      [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\host.exe
      [DETECTION] Is the Trojan horse TR/Qhost.aef
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\lmmh.exe
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\qq.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.41
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\soundma.exe
      [DETECTION] Is the Trojan horse TR/Drop.Age.51042.B
      [NOTE]      The file was deleted!
E:\AV\新建文件夹\新建文件夹\00001.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.aceg
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aju
      [NOTE]      The file was deleted!


End of the scan: 2008年4月28日  18:25
Used time: 00:43 min

The scan has been done completely.

      1 Scanning directories
     30 Files were scanned
     35 viruses and/or unwanted programs were found
      1 Files were classified as suspicious:
     29 files were deleted
      0 files were repaired
      1 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     -5 Files not concerned
      0 Archives were scanned
      0 Warnings
     30 Notes
回复

举报

残缺的唯美
发表于 2008-4-28 18:30:58 | 显示全部楼层
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00040.gif - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00017.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00020.gif - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\logo.gif - probably unknown NewHeur_PE virus
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00031.gif - probably unknown NewHeur_PE virus
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00036.gif - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00030.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00035.gif - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00010.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00011.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00012.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00013.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00014.gif - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00015.gif - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00016.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00019.gif - Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00021.gif - a variant of Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00007.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00008.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00001.gif - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00002.gif - a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00003.gif - Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00004.gif - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00005.gif - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\00006.gif - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\soundma.gif - Win32/PSW.Delf.NKU trojan
D:\Documents and Settings\EKINCHENG\桌面\毒图.rar » RAR » 毒图\lmmh.gif - Win32/Spy.Delf.NGN trojan
回复

举报

残缺的唯美
发表于 2008-4-28 18:31:25 | 显示全部楼层
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00002.exe - a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00003.exe - Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00004.exe - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00005.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00006.exe - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00007.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00008.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00010.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00011.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00012.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00013.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00014.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00015.exe - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00016.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00017.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00019.exe - Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00020.exe - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00021.exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00030.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00031.exe - probably unknown NewHeur_PE virus
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00035.exe - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00036.exe - Win32/PSW.OnLineGames.PBQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00040.exe - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » arp111.exe - Win32/TrojanDropper.Agent.NJN trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » host.exe - Win32/Qhost.AEF trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » lmmh.exe - Win32/Spy.Delf.NGN trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » qq.exe - a variant of Win32/PSW.QQPass.NCZ trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » soundma.exe - Win32/PSW.Delf.NKU trojan
D:\Documents and Settings\EKINCHENG\桌面\30.rar » RAR » 00001.exe - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
回复

举报

红心王子
发表于 2008-4-28 18:33:31 | 显示全部楼层
时间        处理结果        木马名称        木马进程名        木马文件创建者
2008-04-28 18:33:05        处理成功        Trojan-PSW.Win32.Delf.ghe        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\SOUNDMA.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:05        处理成功        Trojan.Win32.Small.acr        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\LMMH.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:05        处理成功        Trojan.Win32.Qhost.iz        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\HOST.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:05        处理成功        Backdoor.Win32.Agent.gkp        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\ARP111.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.OL-Game.hwq        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00040.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.OL-Game.fuz        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00036.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.Agent.fjj        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00031.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.OL-Game.kkj        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00030.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.OL-Game.jfq        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00021.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.OL-Game.fxo        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00020.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:04        处理成功        Trojan-PSW.Win32.OL-Game.jhb        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00019.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.khi        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00016.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.can        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00015.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.khh        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00013.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.jfs        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00011.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.kim        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00010.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.dwu        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00007.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.fut        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00006.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.ftz        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00004.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-04-28 18:33:03        处理成功        Trojan-PSW.Win32.OL-Game.gzm        C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\新建文件夹\00003.EXE        C:\PROGRAM FILES\WINRAR\WINRAR.EXE
回复

举报

xxl
发表于 2008-4-28 18:41:34 | 显示全部楼层
大蜘蛛砍掉八个。
回复

举报

冷冷
发表于 2008-4-28 18:43:28 | 显示全部楼层
IKARUS
I:\virus\list\30.rar:\00002.exe - Signature 'Trojan-Spy.Win32.Vagon.A' found
I:\virus\list\30.rar:\00003.exe - Signature 'Trojan-PWS.Win32.OnLineGames.abag' found
I:\virus\list\30.rar:\00004.exe - Signature 'Trojan-PWS.Win32.OnLineGames.yip' found
I:\virus\list\30.rar:\00005.exe - Signature 'Generic.PWS.Games.4' found
I:\virus\list\30.rar:\00006.exe - Signature 'Trojan-PWS.Win32.OnLineGames.zfe' found
I:\virus\list\30.rar:\00007.exe - Signature 'Trojan-Dropper.Win32.Small.YY' found
I:\virus\list\30.rar:\00008.exe - Signature 'Generic.PWS.Games.4' found
I:\virus\list\30.rar:\00010.exe - Signature 'Generic.PWS.Games.4' found
I:\virus\list\30.rar:\00011.exe - Signature 'Generic.PWS.Games.4' found
I:\virus\list\30.rar:\00012.exe - Signature 'Generic.PWS.Games.4' found
I:\virus\list\30.rar:\00013.exe - Signature 'Generic.PWS.Games.4' found
I:\virus\list\30.rar:\00014.exe - Suspect code-parts found (Level: 95)
I:\virus\list\30.rar:\00015.exe - Signature 'Trojan-PWS.Win32.OnLineGames.zfe' found
I:\virus\list\30.rar:\00016.exe - Signature 'Trojan.Win32.Small.md' found
I:\virus\list\30.rar:\00017.exe - Signature 'Trojan-PWS.Win32.OnLineGames.abtl' found
I:\virus\list\30.rar:\00019.exe - Signature 'Trojan-PWS.Win32.OnLineGames.abcr' found
I:\virus\list\30.rar:\00020.exe - Signature 'Trojan-Downloader.Win32.Zlob.and' found
I:\virus\list\30.rar:\00021.exe - Signature 'Trojan-PWS.Win32.OnLineGames.abcl' found
I:\virus\list\30.rar:\00030.exe - Signature 'Trojan.Win32.Agent.aqj' found
I:\virus\list\30.rar:\00031.exe - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\list\30.rar:\00035.exe - Signature 'Trojan-PWS.Win32.OnLineGames.acax' found
I:\virus\list\30.rar:\00036.exe - Signature 'Trojan-PWS.Win32.OnLineGames.yip' found
I:\virus\list\30.rar:\00040.exe - Suspect code-parts found (Level: 180)
I:\virus\list\30.rar:\arp111.exe - Signature 'Backdoor.Win32.Agent.fjs' found
I:\virus\list\30.rar:\game.exe - Signature 'Trojan-Downloader.Win32.Zlob.and' found
I:\virus\list\30.rar:\host.exe - Signature 'Trojan-Dropper.Win32.Agent.ane' found
I:\virus\list\30.rar:\lmmh.exe - Signature 'Trojan-Dropper.Win32.Agent.ane' found
I:\virus\list\30.rar:\qq.exe - Signature 'Trojan-Proxy.Win32.Delf.AN' found
I:\virus\list\30.rar:\soundma.exe - Signature 'Trojan-Dropper.Win32.Agent.ane' found
I:\virus\list\30.rar:\00001.exe - Signature 'Virus.Win32.OnLineGames.CYJ' found
I:\virus\list\30.rar
31 Files scanned
   (1 Archiv with 30 files)
28 Signatures found
2 Suspect code-parts found
Used time: 0:00.735
回复

举报

下一页 »
1234下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-18 11:36 , Processed in 0.141543 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表