新威胁1只,快点上报吧...

显示全部楼层 · 发表于 2008-6-14 09:23:09

Lately threaten 1, quickly report...

新は1匹脅迫して、早く上に報告しましょう。..

显示全部楼层 · 发表于 2008-6-14 09:27:00

C:\Documents and Settings\Administrator\桌面\ONLPG.rar>>ONLPG.cmd>>32.exe Trojan.Transformer.b 木马还未处理

病毒 2008-06-14 09:26:54 C:\Documents and Settings\Administrator\桌面\ONLPG.rar\ONLPG.cmd\BindFile\32.exe Win32.Hack.NSAnti.ge 跳过，未处理

显示全部楼层 · 发表于 2008-6-14 09:30:23

红伞不报。
We received the following archive files:

File ID	Filename	Size (Byte)	Result
25045630	ONLPG.rar	220.79 KB	OK

A listing of files contained inside archives alongside their results can be found below:

File ID	Filename	Size (Byte)	Result
25045631	ONLPG.cmd	274.42 KB	UNDER ANALYSIS

[ 本帖最后由 yk1234 于 2008-6-14 09:33 编辑 ]

显示全部楼层 · 发表于 2008-6-14 09:30:36

25045631 ONLPG.cmd 274.42 KB UNDER ANALYSIS

显示全部楼层 · 发表于 2008-6-14 09:41:36

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Packer.Win32.Mian007.a

用户来源：互联网

软件版本：20.48.42

显示全部楼层 · 发表于 2008-6-14 09:45:52

AhnLab-V3 2008.6.13.1 2008.06.13 -
AntiVir 7.8.0.55 2008.06.13 -
Authentium 5.1.0.4 2008.06.14 W32/Onlinegames.gen
Avast 4.8.1195.0 2008.06.14 -
AVG 7.5.0.516 2008.06.13 PSW.OnlineGames.BR
BitDefender 7.2 2008.06.14 -
CAT-QuickHeal 9.50 2008.06.13 -
ClamAV 0.92.1 2008.06.14 -
DrWeb 4.44.0.09170 2008.06.13 -
eSafe 7.0.15.0 2008.06.12 -
eTrust-Vet 31.6.5873 2008.06.14 -
Ewido 4.0 2008.06.13 -
F-Prot 4.4.4.56 2008.06.12 W32/OnlineGames.AE.gen!Eldorado
F-Secure 6.70.13260.0 2008.06.13 -
Fortinet 3.14.0.0 2008.06.13 W32/OnLineGames.fam!tr.pws
GData 2.0.7306.1023 2008.06.14 -
Ikarus T3.1.1.26.0 2008.06.13 Trojan.Win32.Helpud.A
Kaspersky 7.0.0.125 2008.06.14 -
McAfee 5317 2008.06.13 -
Microsoft None 2008.06.13 -
NOD32v2 3186 2008.06.13 -
Norman 5.80.02 2008.06.13 -
Panda 9.0.0.4 2008.06.13 Suspicious file
Prevx1 V2 2008.06.14 -
Rising 20.48.42.00 2008.06.13 Packer.Win32.Mian007.a
Sophos 4.30.0 2008.06.14 Mal/EncPk-CE
Sunbelt 3.0.1145.1 2008.06.05 -
Symantec 10 2008.06.14 -
TheHacker 6.2.92.349 2008.06.13 -
VBA32 3.12.6.7 2008.06.14 -
VirusBuster 4.3.26:9 2008.06.12 -
Webwasher-Gateway 6.6.2 2008.06.13 Win32.Malware.gen (suspicious)

显示全部楼层 · 发表于 2008-6-14 09:47:14

又来CMD。。。

The new window was created, as shown below:

NOTICE: The content shown in the above window is captured automatically and is not controlled or endorsed by ThreatExpert.
Please contact us on this link should any material be offensive or inappropriate and we will ensure any such content is blocked from future viewers of the report.

File System Modifications

The following file was created in the system:

#	Filename(s)	File Size	File MD5
1	[file and pathname of the sample #1]	281,004 bytes	0x75F4114D63974AAF2604C7AB589202C3

Other details

Analysis of the file resources indicate the following possible countries of origin:

Taiwan

China

[ 本帖最后由电影结束了于 2008-6-14 09:58 编辑 ]

显示全部楼层 · 发表于 2008-6-14 09:50:21

解密！～

显示全部楼层 · 发表于 2008-6-14 09:52:37

准确来说是SFX自解压....

显示全部楼层 · 发表于 2008-6-14 10:14:16

为什么在我这里能够顺利运行。。

[病毒样本] 新威胁1只,快点上报吧...

本帖子中包含更多资源

回复 7楼电影结束了的帖子

[病毒样本] 新威胁1只,快点上报吧...

本帖子中包含更多资源

回复 7楼 电影结束了 的帖子

回复 7楼电影结束了的帖子