[病毒样本] X28

显示全部楼层 · 发表于 2008-10-11 12:53:51

10.9号下的LIST~

BLINK几乎全报壳

显示全部楼层 · 发表于 2008-10-11 12:59:25

全灭了

显示全部楼层 · 发表于 2008-10-11 13:03:11

两个miss
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___59025.exe - a variant of Win32/Spy.Pophot.NAO trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___179428.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___234511.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___278166.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___283440.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___415584.exe - Win32/PSW.WOW.CDW trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___679150.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___829233.exe - a variant of Win32/Spy.Pophot trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___871497.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___1241874.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___1366715.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___1376150.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___1739189.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___1746993.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2038843.exe - a variant of Win32/PSW.Agent.NIA trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2079660.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2102869.exe - a variant of Win32/TrojanClicker.Agent.NEM trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2147877.exe - probably a variant of Win32/PSW.Legendmir.NGG trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2165429.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2530651.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2550670.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2599305.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2733525.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2754899.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2765116.exe - a variant of Win32/PSW.OnLineGames.NRF trojan
C:\Users\Administrator\Desktop\28.rar » RAR » 2008-10-9___2971696.exe - a variant of Win32/PSW.Agent.NIA trojan

显示全部楼层 · 发表于 2008-10-11 13:12:35

诺顿10.1杀

显示全部楼层 · 发表于 2008-10-11 13:13:46

信息 2008-10-11 13:13:39 您此次查毒共查出22个病毒以及危险代码

显示全部楼层 · 发表于 2008-10-11 13:22:49

红伞28

蜘蛛26

显示全部楼层 · 发表于 2008-10-11 15:46:36

2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\28.rar/2008-10-9___1241874.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afzm       G:\Temp\Virus\28.rar/2008-10-9___1366715.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.thxi       G:\Temp\Virus\28.rar/2008-10-9___1376150.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\28.rar/2008-10-9___1739189.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afzm       G:\Temp\Virus\28.rar/2008-10-9___1746993.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.thxi       G:\Temp\Virus\28.rar/2008-10-9___179428.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Heur.Trojan.Generic       G:\Temp\Virus\28.rar/2008-10-9___2038843.exe
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.tnmj       G:\Temp\Virus\28.rar/2008-10-9___2038843.exe//#
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afzm       G:\Temp\Virus\28.rar/2008-10-9___2079660.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-Dropper.Win32.Small.bym       G:\Temp\Virus\28.rar/2008-10-9___2102869.exe//UPX
2008/10/11 15:45:14       已隔离       木马程序 Heur.Trojan.Generic       G:\Temp\Virus\28.rar/2008-10-9___2147877.exe
2008/10/11 15:45:14       已隔离       木马程序 Heur.Trojan.Generic       G:\Temp\Virus\28.rar/2008-10-9___2147877.exe//NSPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afzm       G:\Temp\Virus\28.rar/2008-10-9___2165429.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\28.rar/2008-10-9___234511.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\28.rar/2008-10-9___2530651.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afgj       G:\Temp\Virus\28.rar/2008-10-9___2550670.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.thxi       G:\Temp\Virus\28.rar/2008-10-9___2599305.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\28.rar/2008-10-9___2733525.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.thxi       G:\Temp\Virus\28.rar/2008-10-9___2754899.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afzm       G:\Temp\Virus\28.rar/2008-10-9___2765116.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.afzm       G:\Temp\Virus\28.rar/2008-10-9___278166.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.Magania.gen       G:\Temp\Virus\28.rar/2008-10-9___283440.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan.Win32.VB.fqr       G:\Temp\Virus\28.rar/2008-10-9___2898690.exe
2008/10/11 15:45:14       已清除       木马程序 Heur.Trojan.Generic       G:\Temp\Virus\28.rar/2008-10-9___2971696.exe
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.tnmi       G:\Temp\Virus\28.rar/2008-10-9___2971696.exe//#
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.WOW.cdw       G:\Temp\Virus\28.rar/2008-10-9___415584.exe//PE_Patch.UPX//UPX
2008/10/11 15:45:14       已清除       木马程序 Trojan-Spy.Win32.Pophot.cvj       G:\Temp\Virus\28.rar/2008-10-9___59025.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.thxi       G:\Temp\Virus\28.rar/2008-10-9___679150.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-Spy.Win32.Pophot.cwy       G:\Temp\Virus\28.rar/2008-10-9___829233.exe//PE_Patch//UPack
2008/10/11 15:45:14       已清除       木马程序 Trojan-GameThief.Win32.OnLineGames.thxi       G:\Temp\Virus\28.rar/2008-10-9___871497.exe//PE_Patch//UPack

特征码漏4个，To KL

[ 本帖最后由尤金卡巴斯基于 2008-10-11 15:50 编辑 ]

显示全部楼层 · 发表于 2008-10-11 16:07:04

显示全部楼层 · 发表于 2008-10-11 16:48:38

在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___59025.exe 中发现 Trojan/Agent.axwx 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___179428.exe 中发现 TrojanSpy.OnLineGames.fao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___234511.exe 中发现 TrojanSpy.OnLineGames.euu 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___278166.exe 中发现 Trojan/PSW.OnLineGames.vip 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___283440.exe 中发现 TrojanSpy.OnLineGames.euu 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___415584.exe 中发现 TrojanSpy.OnLineGames.hbb 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___679150.exe 中发现 TrojanSpy.OnLineGames.fao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___871497.exe 中发现 TrojanSpy.OnLineGames.fao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___1241874.exe 中发现 TrojanSpy.OnLineGames.euu 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___1366715.exe 中发现 TrojanSpy.OnLineGames.fbd 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___1376150.exe 中发现 TrojanSpy.OnLineGames.fao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___1739189.exe 中发现 TrojanSpy.OnLineGames.euu 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___1746993.exe 中发现 TrojanSpy.OnLineGames.fbd 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2038843.exe 中发现 Trojan/PSW.OnLineGames.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2079660.exe 中发现 Trojan/PSW.OnLineGames.vip 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2102869.exe 中发现 TrojanDropper.Small.cib 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2147877.exe 中发现 TrojanDropper.Agent.pqd 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2165429.exe 中发现 TrojanSpy.OnLineGames.fbd 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2530651.exe 中发现 TrojanSpy.OnLineGames.euu 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2550670.exe 中发现 TrojanSpy.Magania.bzl 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2599305.exe 中发现 TrojanSpy.OnLineGames.fao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2733525.exe 中发现 TrojanSpy.OnLineGames.euu 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2754899.exe 中发现 TrojanSpy.OnLineGames.fao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2765116.exe 中发现 Trojan/PSW.OnLineGames.vip 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\28.rar->2008-10-9___2971696.exe 中发现 Trojan/PSW.OnLineGames.Gen 病毒, 已删除

显示全部楼层 · 发表于 2008-10-11 18:53:42

Virus check with G DATA AntiVirus
Version 18.7.8155.555
Virus signature dated 10/11/2008
Start time: 10/11/2008 18:50
Engine(s): Engine A (AVK 19.982), Engine B (AVB 19.60)
Heuristics: On
Archive: On
System areas: Off

Check the following directories and files:
S:\28\

Object: 2008-10-9___59025.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-Spy.Win32.Pophot.cvj (Engine A), Win32:Agent-SIM [Trj] (Engine B)
Object: 2008-10-9___179428.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.OnLineGames.thxi (Engine A)
Object: 2008-10-9___234511.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.gen (Engine A)
Object: 2008-10-9___278166.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afzm (Engine A)
Object: 2008-10-9___283440.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.gen (Engine A)
Object: 2008-10-9___415584.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.WOW.cdw (Engine A), Win32:Trojan-gen {Other} (Engine B)
Object: 2008-10-9___679150.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.OnLineGames.thxi (Engine A)
Object: 2008-10-9___829233.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-Spy.Win32.Pophot.cwy (Engine A), Win32:Pophot-AM [Trj] (Engine B)
Object: 2008-10-9___871497.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.OnLineGames.thxi (Engine A), Win32:Trojan-gen {Other} (Engine B)
Object: 2008-10-9___1241874.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.gen (Engine A)
Object: 2008-10-9___1366715.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afzm (Engine A)
Object: 2008-10-9___1376150.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.OnLineGames.thxi (Engine A)
Object: 2008-10-9___1662517.exe
Path: S:\28
Status: Virus detected
Virus: Win32:Trojan-gen {Other} (Engine B)
Object: 2008-10-9___1739189.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.gen (Engine A)
Object: 2008-10-9___1746993.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afzm (Engine A)
Object: 2008-10-9___2038843.exe
Path: S:\28
Status: Virus detected
Virus: Win32:Trojan-gen {Other} (Engine B)
Object: 2008-10-9___2079660.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afzm (Engine A)
Object: 2008-10-9___2102869.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-Dropper.Win32.Small.bym (Engine A), Win32:Small-KAZ [Trj] (Engine B)
Object: 2008-10-9___2165429.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afzm (Engine A)
Object: 2008-10-9___2530651.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.gen (Engine A), Win32:Spyware-gen [Trj] (Engine B)
Object: 2008-10-9___2550670.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afgj (Engine A)
Object: 2008-10-9___2599305.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.OnLineGames.thxi (Engine A)
Object: 2008-10-9___2733525.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.gen (Engine A), Win32:Spyware-gen [Trj] (Engine B)
Object: 2008-10-9___2754899.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.OnLineGames.thxi (Engine A)
Object: 2008-10-9___2765116.exe
Path: S:\28
Status: Virus detected
Virus: Trojan-GameThief.Win32.Magania.afzm (Engine A)
Object: 2008-10-9___2898690.exe
Path: S:\28
Status: Virus detected
Virus: Trojan.Win32.VB.fqr (Engine A)
Object: 2008-10-9___2971696.exe
Path: S:\28
Status: Virus detected
Virus: Win32:Trojan-gen {Other} (Engine B)

Analysis performed in full: 10/11/2008 18:50
28 files checked
27 infected files detected
0 suspicious files found

[病毒样本] X28

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源