收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 继续发裸奔的成果!
12
返回列表 发新帖
楼主: 欠妳緈諨
 收起左侧

[病毒样本] 继续发裸奔的成果!

[复制链接]
Kitman
发表于 2008-6-2 15:27:08 | 显示全部楼层
25034391          hfrdzx.dll          210 KB          UNDER ANALYSIS
25034392          jfrwdh.dll          217 KB          UNDER ANALYSIS
25034393          smmnos.exe          16 KB          UNDER ANALYSIS
25034394          sgrefg.dll          213.5 KB          UNDER ANALYSIS
回复

举报

水星
发表于 2008-6-2 17:37:32 | 显示全部楼层
21

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

solcroft
发表于 2008-6-2 17:42:27 | 显示全部楼层
漏了两个

* avast! Report
* This file is generated automatically
*
* Task 'Simple user interface' used
* Started on Monday, June 02
* VPS: 080601-0, 06/01/2008
*

C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll\[Embedded#07e00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll\[Embedded#0fc00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll\[Embedded#17a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll\[Embedded#1f800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll\[Embedded#27600] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll\[Embedded#2f400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\cedafb.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll\[Embedded#07800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll\[Embedded#0f000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll\[Embedded#16800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll\[Embedded#1e000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll\[Embedded#25800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll\[Embedded#2d000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hfrdzx.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll\[Embedded#08200] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll\[Embedded#10400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll\[Embedded#18600] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll\[Embedded#20800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll\[Embedded#28a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll\[Embedded#30c00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\hhrdxd.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\icqv4.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll\[Embedded#07800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll\[Embedded#0f000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll\[Embedded#16800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll\[Embedded#1e000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll\[Embedded#25800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll\[Embedded#2d000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jdsaex.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll\[Embedded#07c00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll\[Embedded#0f800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll\[Embedded#17400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll\[Embedded#1f000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll\[Embedded#26c00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll\[Embedded#2e800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jfrwdh.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll\[Embedded#07a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll\[Embedded#0f400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll\[Embedded#16e00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll\[Embedded#1e800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll\[Embedded#26200] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll\[Embedded#2dc00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\jhrcar.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\olih13.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:WOW-FXY [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll\[Embedded#07e00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll\[Embedded#0fc00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll\[Embedded#17a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll\[Embedded#1f800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll\[Embedded#27600] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll\[Embedded#2f400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\pedadt.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\prss13.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:WOW-FXY [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\ryop6.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll\[Embedded#07a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll\[Embedded#0f400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll\[Embedded#16e00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll\[Embedded#1e800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll\[Embedded#26200] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll\[Embedded#2dc00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\sgrefg.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\SysDaJHv.dll\[Upack] [L] Win32:WOW-FXY [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\SysWmWacz.dll\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\SysWoWCt.dll\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\SysZxacC.dll\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\uswp6.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\vodb8.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wkbq4.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll\[Embedded#07e00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll\[Embedded#0fc00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll\[Embedded#17a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll\[Embedded#1f800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll\[Embedded#27600] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll\[Embedded#2f400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\wrqszl.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\xtje8.exe\[Upack]\[Embedded#50c0]\[Upack] [L] Win32:OnLineGames-CYO [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll\[Embedded#07a00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll\[Embedded#0f400] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll\[Embedded#16e00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll\[Embedded#1e800] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll\[Embedded#26200] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll\[Embedded#2dc00] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zdesfx.dll [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll\[Embedded#08000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll\[Embedded#10000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll\[Embedded#18000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll\[Embedded#20000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll\[Embedded#28000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll\[Embedded#30000] [L] Win32:OnLineGames-DQP [Trj] (0)
C:\Documents and Settings\Limited User\Desktop\virus\zgfdet.dll [L] Win32:OnLineGames-DQP [Trj] (0)
Infected files: 89
Total files: 127
Total folders: 1
Total size: 5.9 MB

*
* Task stopped: Monday, June 02
* Run-time was 3 second(s)
回复

举报

Palkia
发表于 2008-6-2 17:53:01 | 显示全部楼层

23

C:\Documents and Settings\Administrator\桌面\virus\jdsaex.dll        TrojanPSW.GameOL.ntq.fjmm.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\jhrcar.dll        Trojan.Agent.qss.fcnz.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\pedadt.dll        TrojanPSW.GameOL.nqa.rjvl.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\wrqszl.dll        Trojan.Gampass.vsih.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\jfrwdh.dll        TrojanPSW.JHOnline.fet.ikwp.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\SysDaJHv.dll        TrojanPSW.OnLineGames.akcs.kwjs.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\olih13.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\sgrefg.dll        TrojanPSW.GameOL.nuj.aybm.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\zdesfx.dll        Trojan.Gampass.fkav.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\xtje8.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\zgfdet.dll        TrojanPSW.GamesOnline.adc.oera.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\uswp6.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\wkbq4.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\SysWoWCt.dll        PWSteal.OnlineGames.p.ujun.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\prss13.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\vodb8.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\SysZxacC.dll        TrojanPSW.GamesOnline.wc.uqxh.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\SysWmWacz.dll        TrojanPSW.Agent.amb.sdrr.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\ryop6.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\icqv4.exe        Heuri.Suspicious.ERNM        启发式扫描        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\hfrdzx.dll        TrojanPSW.GameOL.nuj.sjnu.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\hhrdxd.dll        TrojanPSW.GameOL.ntq.adbj.arc.dll        木马        已删除/隔离
C:\Documents and Settings\Administrator\桌面\virus\cedafb.dll        TrojanPSW.GameOL.nqa.npmg.arc.dll        木马        已删除/隔离
回复

举报

BING126
头像被屏蔽
发表于 2008-6-2 20:15:44 | 显示全部楼层
5个。。。

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

挪威的冬天
发表于 2008-6-2 20:16:58 | 显示全部楼层
信息        2008-06-02  20:16:46        您此次查毒清除了15个病毒                       
信息        2008-06-02  20:16:46        您此次查毒共查出15个病毒以及危险代码                       
信息        2008-06-02  20:16:46        您此次查毒共查了内存模块0个,磁盘引导扇区0个,文件90个                       
信息        2008-06-02  20:16:46        金山毒霸主程序查毒过程结束,查毒方式:命令行查毒                       
病毒        2008-06-02  20:16:46        D:\Desktop\virus.rar\cedafb.dll        Win32.PSWTroj.GameOL.225792        清除成功       
病毒        2008-06-02  20:16:45        D:\Desktop\virus.rar\icqv4.exe        Win32.Troj.OnlineGameT.ss.106496        清除成功       
病毒        2008-06-02  20:16:45        D:\Desktop\virus.rar\ryop6.exe        Win32.Troj.OnlineGamesT.xe.106496        清除成功       
病毒        2008-06-02  20:16:45        D:\Desktop\virus.rar\SysWmWacz.dll        Win32.PSWTroj.Agent.110592        清除成功       
病毒        2008-06-02  20:16:45        D:\Desktop\virus.rar\SysZxacC.dll        Win32.PSWTroj.OnLineGames.110592        清除成功       
病毒        2008-06-02  20:16:44        D:\Desktop\virus.rar\vodb8.exe        Win32.Troj.OnlineGamesT.xe.106496        清除成功       
病毒        2008-06-02  20:16:44        D:\Desktop\virus.rar\prss13.exe        Win32.PSWTroj.OnLineGames.106496        清除成功       
病毒        2008-06-02  20:16:44        D:\Desktop\virus.rar\SysWoWCt.dll        Win32.PSWTroj.OnLineGames.118784        清除成功       
病毒        2008-06-02  20:16:44        D:\Desktop\virus.rar\wkbq4.exe        Win32.Troj.OnlineGameT.ss.106496        清除成功       
病毒        2008-06-02  20:16:43        D:\Desktop\virus.rar\uswp6.exe        Win32.Troj.OnlineGamesT.xe.106496        清除成功       
病毒        2008-06-02  20:16:43        D:\Desktop\virus.rar\zgfdet.dll        Win32.Troj.OnlineGameT.fa.131072        清除成功       
病毒        2008-06-02  20:16:43        D:\Desktop\virus.rar\xtje8.exe        Win32.Troj.OnlineGamesT.xe.106496        清除成功       
病毒        2008-06-02  20:16:43        D:\Desktop\virus.rar\olih13.exe        Win32.PSWTroj.OnLineGames.106496        清除成功       
病毒        2008-06-02  20:16:43        D:\Desktop\virus.rar\SysDaJHv.dll        Win32.Troj.Daojian.a.110592        清除成功       
病毒        2008-06-02  20:16:42        D:\Desktop\virus.rar\pedadt.dll        Win32.PSWTroj.GameOL.225792        清除成功
回复

举报

qigang
发表于 2008-6-2 21:00:28 | 显示全部楼层

62/31

瑞星病毒查杀结果报告

清除病毒种类列表:

病毒: Trojan.PSW.Win32.GameOL.ntq
病毒: Trojan.PSW.Win32.GameOL.nuj
病毒: Trojan.PSW.Win32.JHOnline.fet
病毒: Trojan.PSW.Win32.GamesOnline.wb
病毒: RootKit.Win32.RESSDT.al  
病毒: Trojan.PSW.Win32.GamesOnline.wc
病毒: RootKit.Win32.RESSDT.au  
病毒: Trojan.PSW.Win32.SunOnline.oq
病毒: RootKit.Win32.RESSDT.av  
病毒: Trojan.PSW.Win32.SunOnline.op

MAC 地址:00:11:5B:F3:6D:69

用户来源:互联网

软件版本:20.47.02
回复

举报

12
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-15 18:04 , Processed in 0.079824 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表