[病毒样本] X30

显示全部楼层 · 发表于 2008-7-3 11:19:53

OSS28个

11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real29.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real28.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real27.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real26.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real25.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real24.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real23.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real22.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real21.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real20.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real19.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real18.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real17.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real16.exe
11:18:54 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real15.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real14.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real13.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real12.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real11.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real10.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real9.exe
11:18:53 Detected malware "Packed/NSPack" (Sequence) in c:\tddownload.rar|real8.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real7.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real6.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real5.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real4.exe
11:18:53 Detected malware "Packed/Upack" (Sequence) in c:\tddownload.rar|real3.exe
11:18:53 Detected malware "Trojan.OnlineGames.Gen.44" (Mutant) in c:\tddownload.rar|real2.exe

显示全部楼层 · 发表于 2008-7-3 11:45:30

显示全部楼层 · 发表于 2008-7-3 16:11:13

[Found Trojan] <W32/Trojan2.ASYS (exact, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real30.exe
[Found Trojan] <W32/Trojan2.ASYR (exact, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real1.exe
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real2.exe
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real3.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real4.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real5.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real6.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real7.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real9.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real10.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real11.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real12.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real13.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real14.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real15.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real16.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real17.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real18.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real19.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real20.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real21.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real22.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real23.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real24.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real25.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real26.exe->(UPack)
[Found security risk] <W32/Nilage.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real27.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real28.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\TDDOWNLOAD.rar->real29.exe->(UPack)

---------------------------------------------------------------------
Scan ended: 2008-7-3, 16:10:40
Duration: 0:00:25

Scan result:

Scanned files:    6
Infected objects:    29
Disinfected objects:    0
Quarantined files:    0
---------------------------------------------------------------------

显示全部楼层 · 发表于 2008-7-3 16:13:00

用G DATA AntiVirus检测病毒
版本 18.5.8071.731
病毒特征库日期 2008/7/3
开始时间： 2008/7/3 16:12
引擎：引擎A (AVK 18.4361), 引擎B (AVKB 18.332)
启发式：开启
档案文件：开启
系统区域：开启

检测系统区域...
检测以下目录和文件：
C:\Documents and Settings\祝俊杰\桌面\新建文件夹\

对象： real1.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan.Win32.Agent.nbj (引擎A)
对象： real10.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.rzgy (引擎A)
对象： real11.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.saep (引擎A)
对象： real12.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real13.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real14.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.sajy (引擎A)
对象： real15.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.saep (引擎A)
对象： real16.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real17.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.saep (引擎A)
对象： real18.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real19.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.rzsa (引擎A)
对象： real20.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real21.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real22.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real23.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real24.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real25.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real26.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real27.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.rzsa (引擎A)
对象： real28.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real29.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real3.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.saep (引擎A)
对象： real30.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan.Win32.Agent.nbj (引擎A)
对象： real4.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.rzsa (引擎A)
对象： real5.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real6.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-GameThief.Win32.OnLineGames.rzsa (引擎A)
对象： real7.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)
对象： real8.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Trojan-Downloader.Win32.Agent.udh (引擎A)
对象： real9.exe
路径: C:\Documents and Settings\祝俊杰\桌面\新建文件夹
状态：移动文件到隔离区
病毒： Win32:OnLineGames-EEP [Trj] (引擎B)

检测执行时间： 2008/7/3 16:12
30个文件已检测
29个受感染文件

显示全部楼层 · 发表于 2008-7-3 17:27:07

红伞杀！！！

显示全部楼层 · 发表于 2008-7-3 19:20:54

小a直接拦截了

显示全部楼层 · 发表于 2008-7-3 19:21:40

红伞杀！！！

显示全部楼层 · 发表于 2008-7-3 20:52:55

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.Win32.Undef.gzb
病毒： RootKit.Win32.Undef.jc
病毒： Trojan.PSW.Win32.GameOL.onq
病毒： Trojan.PSW.Win32.GameOL.ong
病毒： Trojan.PSW.Win32.GameOL.olw
病毒： Trojan.Win32.KillAV.abc
病毒： Trojan.DL.Win32.Mnless.ala
病毒： Trojan.Win32.KillAV.abc
病毒： Trojan.PSW.Win32.GameOL.oms
病毒： Trojan.PSW.Win32.GameOL.olx

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.51.32

[病毒样本] X30

剩一个

本帖子中包含更多资源

F-Prot 4.4.4

本帖子中包含更多资源

67/31

浏览过的版块