收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 P2P-Worm.Win32.SpyBot.a*
返回列表 发新帖
查看: 2202|回复: 4
收起左侧

[病毒样本] P2P-Worm.Win32.SpyBot.a*

[复制链接]
qianwenxiang
发表于 2008-9-4 18:38:09 | 显示全部楼层 |阅读模式
样本历史不明 质量也不大好
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.aa: Trojan.SpyBot1.2B FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ab: Trojan.Spybot.gen-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ac: Trojan.Spybot.gen-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ad: Trojan.Spybot.gen-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ae: Trojan.Spybot.gen-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ah: Trojan.Spybot.gen-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.aj: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.al: Trojan.Spy.Goldun.CI-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.am: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.an: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ao: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ap: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.aq: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ar: Worm.Mytob.BP FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.as: Trojan.Spybot.gen-2 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.at: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.au: Worm.SpyBot.MV FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.av: Trojan.Spybot.gen-3 FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.ax: Worm.P2P.Tanked.B FOUND
C:\Test\0809\04\spybot\P2P-Worm.Win32.SpyBot.az: Trojan.Spybot.gen-3 FOUND
回复

举报

Palkia
发表于 2008-9-4 18:41:38 | 显示全部楼层

清空

瑞星病毒查杀结果报告

清除病毒种类列表:
病毒: Worm.P2p.SpyBot.GEN      
病毒: Worm.P2p.SpyBot.ad      
病毒: Worm.P2p.SpyBot.ak      
病毒: Worm.P2p.SpyBot.an      
病毒: Worm.P2p.SpyBot.ar      
病毒: Worm.P2p.SpyBot.as      
病毒: Worm.P2p.SpyBot.au      
病毒: Worm.P2p.SpyBot.av      
病毒: Worm.P2p.SpyBot.ax      
病毒: Worm.P2p.SpyBot.az      
病毒: Worm.P2p.SpyBot.a        

MAC 地址:00:17:31:40:A3:57

用户来源:局域网

软件版本:20.60.32
回复

举报

wangjay1980
发表于 2008-9-4 20:00:04 | 显示全部楼层
K
回复

举报

BING126
头像被屏蔽
发表于 2008-9-4 20:16:17 | 显示全部楼层
McAfee 全灭。。

p2p-worm.win32.spybo     w32/spybot.worm.gen.a        
p2p-worm.win32.spybo    w32/spybot.worm.gen.a     
p2p-worm.win32.spybo     w32/spybot.worm.gen.d        
p2p-worm.win32.spybon   w32/spybot.worm.gen.c         
p2p-worm.win32.spybo    w32/spybot.worm.gen.d      
p2p-worm.win32.spybo     w32/spybot.worm.gen.a      
p2p-worm.win32.spybo     w32/cult.worm.gen         
p2p-worm.win32.spybo     w32/spybot.worm.gen.d         
p2p-worm.win32.spybo     w32/spybot.worm.gen.e         
p2p-worm.win32.spybo     w32/spybot.worm.gen.d         
p2p-worm.win32.spybo     w32/spybot.worm.dll         
p2p-worm.win32.spybo     w32/spybot.worm.gen.a        
p2p-worm.win32.spybo     w32/spybot.worm.gen.g          
p2p-worm.win32.spybo    w32/spybot.worm.gen.a      
p2p-worm.win32.spybo     w32/spybot.worm.gen.g        
p2p-worm.win32.spybo     w32/spybot.worm.gen.d         
p2p-worm.win32.spybo     w32/spybot.worm.gen.g        
p2p-worm.win32.spybo    w32/spybot.worm.gen.e      
p2p-worm.win32.spybo    w32/spybot.worm.gen.a        
p2p-worm.win32.spybo     generic pws.y                
p2p-worm.win32.spybo     w32/spybot.worm.lk         
p2p-worm.win32.spybo     w32/spybot.worm.gen.a         
p2p-worm.win32.spybo     w32/spybot.worm.gen.h      
p2p-worm.win32.spybo     w32/spybot.worm.gen.e      
p2p-worm.win32.spybo     w32/spybot.worm.gen.a
回复

举报

Kitman
发表于 2008-9-4 20:45:30 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Users\TOSHIBA\Downloads\spybot'
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.aa
    [DETECTION] Is the TR/Drop.Agent.CR Trojan
    [NOTE]      A backup was created as '490fd87c.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ab
    [DETECTION] Contains recognition pattern of the WORM/Spybot.21504A worm
    [NOTE]      A backup was created as '4ba4ea25.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ac
    [DETECTION] Contains recognition pattern of the WORM/Spybot.23456 worm
    [NOTE]      A backup was created as '490fd87e.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ad
      [DETECTION] Contains recognition pattern of the WORM/Spyboter.44064 worm
    [NOTE]      A backup was created as '4bb31cfd.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ae
    [DETECTION] Contains recognition pattern of the WORM/Spybot.20048 worm
    [NOTE]      A backup was created as '4bb31cff.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.af
    [DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
    [NOTE]      A backup was created as '490fd980.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ag
    [DETECTION] Contains recognition pattern of the WORM/Spybot.AG worm
    [NOTE]      A backup was created as '4bb31d01.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ah
    [DETECTION] Contains recognition pattern of the WORM/Spybot.36944 worm
    [NOTE]      A backup was created as '490fd982.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ai
    [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
    [NOTE]      A backup was created as '4bb31d03.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.aj
      [DETECTION] Contains recognition pattern of the WORM/Spybot.#3 worm
    [NOTE]      A backup was created as '490fd984.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ak
    [DETECTION] Contains recognition pattern of the WORM/Spybot.78848 worm
    [NOTE]      A backup was created as '4bb31d05.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.al
    [DETECTION] Contains recognition pattern of the WORM/Spybot.258080 worm
    [NOTE]      A backup was created as '490fd986.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.am
    [DETECTION] Contains recognition pattern of the WORM/Spyb.23584.1.A worm
    [NOTE]      A backup was created as '4bb31d07.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.an
    [DETECTION] Is the TR/Drop.Agent.CR Trojan
    [NOTE]      A backup was created as '490fd988.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ao
    [DETECTION] Contains recognition pattern of the WORM/Spyb.23584.2.B worm
    [NOTE]      A backup was created as '490fd87d.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ap
      [DETECTION] Contains recognition pattern of the WORM/Spybot.#3 worm
    [NOTE]      A backup was created as '4bb31cfe.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.aq
    [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
    [NOTE]      A backup was created as '4bb31dae.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ar
      [DETECTION] Is the TR/Drop.Agent.CR Trojan
    [NOTE]      A backup was created as '490fd87f.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.as
    [DETECTION] Is the TR/Crypt.FKM.Gen Trojan
    [NOTE]      A backup was created as '4bb31d50.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.at
    [DETECTION] Contains recognition pattern of the WORM/Spybot.#3 worm
    [NOTE]      A backup was created as '490fd881.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.au
    [DETECTION] Contains recognition pattern of the WORM/Spybot.AU worm
    [NOTE]      A backup was created as '4bb31d52.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.av
    [DETECTION] Is the TR/Drop.Agent.CR Trojan
    [NOTE]      A backup was created as '490fd883.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ax
    [DETECTION] Contains recognition pattern of the WORM/SpyBotAX.99328 worm
    [NOTE]      A backup was created as '4bb31d54.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.ay
    [DETECTION] Contains recognition pattern of the WORM/Spybot.26624.2 worm
    [NOTE]      A backup was created as '490fd885.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
C:\Users\TOSHIBA\Downloads\spybot\P2P-Worm.Win32.SpyBot.az
      [DETECTION] Contains recognition pattern of the WORM/Spybot.#3 worm
    [NOTE]      A backup was created as '4bb31d56.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!


End of the scan: 2008年9月4日  20:44
Used time: 00:03 Minute(s)

The scan has been done completely.

      1 Scanning directories
     25 Files were scanned
     25 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     25 files were deleted
      0 files were repaired
     25 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      0 Files not concerned
      0 Archives were scanned
      0 Warnings
     25 Notes
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-18 05:14 , Processed in 0.132042 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表