上报46个未查出的盗银行帐号木马!

显示全部楼层 · 发表于 2009-1-2 17:13:30

上报46个未查出的盗银行帐号木马!
病毒包过大上传到纳米盘
如果您的杀毒软件未查出请上报
http://www.namipan.com/d/689c4a9737b71987e79095fa513f940e2ce00664e3116800

显示全部楼层 · 发表于 2009-1-2 17:14:22

26miss +10 heur TO KL

[ 本帖最后由 luxiao200888 于 2009-1-2 17:20 编辑 ]

显示全部楼层 · 发表于 2009-1-2 17:17:43

2009-1-2 17:20:36       启动任务
2009-1-2 17:20:53       检测到威胁: Worm.Win32.AutoTDSS.dx       C:\Documents and Settings\Owner\桌面\新建文件夹\3006.exe/data0001
2009-1-2 17:20:55       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\SWMOT.msi
2009-1-2 17:20:57       检测到威胁: Worm.Win32.AutoRun.wiv       C:\Documents and Settings\Owner\桌面\新建文件夹\ccdd.pif/照片                                                                                                                .exe/NSPack
2009-1-2 17:20:57       已删除: Worm.Win32.AutoRun.wiv       C:\Documents and Settings\Owner\桌面\新建文件夹\ccdd.pif/照片                                                                                                                .exe
2009-1-2 17:20:57       处理错误: Worm.Win32.AutoRun.wiv       C:\Documents and Settings\Owner\桌面\新建文件夹\ccdd.pif
2009-1-2 17:20:57       未处理: Worm.Win32.AutoRun.wiv       C:\Documents and Settings\Owner\桌面\新建文件夹\ccdd.pif       写入错误
2009-1-2 17:20:57       未处理: Worm.Win32.AutoRun.wiv       C:\Documents and Settings\Owner\桌面\新建文件夹\ccdd.pif       写入错误
2009-1-2 17:20:59       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\SWMOT.msi
2009-1-2 17:20:59       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\SWMOT.msi
2009-1-2 17:21:00       检测到威胁: not-a-virus:AdWare.Win32.BHO.exb       C:\Documents and Settings\Owner\桌面\新建文件夹\cpush.dll
2009-1-2 17:21:00       已删除: not-a-virus:AdWare.Win32.BHO.exb       C:\Documents and Settings\Owner\桌面\新建文件夹\cpush.dll
2009-1-2 17:21:00       检测到威胁: not-a-virus:AdWare.Win32.BHO.exb       C:\Documents and Settings\Owner\桌面\新建文件夹\cpush.exe
2009-1-2 17:21:00       已删除: not-a-virus:AdWare.Win32.BHO.exb       C:\Documents and Settings\Owner\桌面\新建文件夹\cpush.exe
2009-1-2 17:21:00       已删除: Worm.Win32.AutoTDSS.dx       C:\Documents and Settings\Owner\桌面\新建文件夹\3006.exe
2009-1-2 17:21:01       检测到威胁: Trojan-GameThief.Win32.WOW.ead       C:\Documents and Settings\Owner\桌面\新建文件夹\HBWOW.dll
2009-1-2 17:21:02       已删除: Trojan-GameThief.Win32.WOW.ead       C:\Documents and Settings\Owner\桌面\新建文件夹\HBWOW.dll
2009-1-2 17:21:02       检测到威胁: not-a-virus:RiskTool.Win32.HideExec.h       C:\Documents and Settings\Owner\桌面\新建文件夹\HC.EXE/UPX
2009-1-2 17:21:02       已删除: not-a-virus:RiskTool.Win32.HideExec.h       C:\Documents and Settings\Owner\桌面\新建文件夹\HC.EXE
2009-1-2 17:21:02       检测到威胁: Trojan.Win32.Agent.baio       C:\Documents and Settings\Owner\桌面\新建文件夹\InputArschive.exe/#
2009-1-2 17:21:02       检测到威胁: Trojan.Win32.Agent.baio       C:\Documents and Settings\Owner\桌面\新建文件夹\InputArchive.exe/#
2009-1-2 17:21:03       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\InputArschive.exe
2009-1-2 17:21:03       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\InputArschive.exe
2009-1-2 17:21:03       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\InputArchive.exe
2009-1-2 17:21:03       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\InputArchive.exe
2009-1-2 17:21:03       检测到威胁: Trojan.Win32.Agent.baio       C:\Documents and Settings\Owner\桌面\新建文件夹\J75LAGGaX.exe/#
2009-1-2 17:21:06       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\J75LAGGaX.exe
2009-1-2 17:21:06       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\J75LAGGaX.exe
2009-1-2 17:21:06       检测到威胁: Trojan.Win32.Agent.baio       C:\Documents and Settings\Owner\桌面\新建文件夹\J75LAGGX.exe/#
2009-1-2 17:21:06       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\J75LAGGX.exe
2009-1-2 17:21:06       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\J75LAGGX.exe
2009-1-2 17:21:07       检测到威胁: Trojan-GameThief.Win32.Magania.gen       C:\Documents and Settings\Owner\桌面\新建文件夹\pp4.exe/PE_Patch/UPack
2009-1-2 17:21:07       已删除: Trojan-GameThief.Win32.Magania.gen       C:\Documents and Settings\Owner\桌面\新建文件夹\pp4.exe
2009-1-2 17:21:07       检测到威胁: Trojan-Downloader.Win32.Small.izn       C:\Documents and Settings\Owner\桌面\新建文件夹\rising.exe
2009-1-2 17:21:08       已删除: Trojan-Downloader.Win32.Small.izn       C:\Documents and Settings\Owner\桌面\新建文件夹\rising.exe
2009-1-2 17:21:08       检测到威胁: Trojan.Win32.Bepiv.ax       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup2.exe
2009-1-2 17:21:10       已删除: Trojan.Win32.Bepiv.ax       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup2.exe
2009-1-2 17:21:12       检测到威胁: Trojan.Win32.Pakes.miu       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup1.exe/#
2009-1-2 17:21:13       检测到威胁: Trojan.Win32.Pakes.miu       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup3.exe/#
2009-1-2 17:21:14       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup1.exe
2009-1-2 17:21:14       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup1.exe
2009-1-2 17:21:14       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup3.exe
2009-1-2 17:21:14       检测到威胁: Trojan.Win32.Pakes.miu       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup4.exe/#
2009-1-2 17:21:14       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup3.exe
2009-1-2 17:21:14       检测到威胁: Trojan.Win32.Agent.baio       C:\Documents and Settings\Owner\桌面\新建文件夹\stormSrav.exe/#
2009-1-2 17:21:14       检测到威胁: Trojan.Win32.Agent.baio       C:\Documents and Settings\Owner\桌面\新建文件夹\stormSrv.exe/#
2009-1-2 17:21:14       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\stormSrav.exe
2009-1-2 17:21:15       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup4.exe
2009-1-2 17:21:15       检测到威胁: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\stormSrv.exe
2009-1-2 17:21:15       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\stormSrav.exe
2009-1-2 17:21:15       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\Setup4.exe
2009-1-2 17:21:15       检测到威胁: Trojan-GameThief.Win32.MultiFirst.ah       C:\Documents and Settings\Owner\桌面\新建文件夹\System.exe
2009-1-2 17:21:15       已删除: HEUR:Trojan.Win32.Generic       C:\Documents and Settings\Owner\桌面\新建文件夹\stormSrv.exe
2009-1-2 17:21:15       已删除: Trojan-GameThief.Win32.MultiFirst.ah       C:\Documents and Settings\Owner\桌面\新建文件夹\System.exe
2009-1-2 17:21:15       检测到威胁: Worm.Win32.AutoRun.srm       C:\Documents and Settings\Owner\桌面\新建文件夹\wsext.exe
2009-1-2 17:21:15       检测到威胁: not-a-virus:AdWare.Win32.BHO.exb       C:\Documents and Settings\Owner\桌面\新建文件夹\复件 ad10535.exe/stream/data0001
2009-1-2 17:21:15       已删除: Worm.Win32.AutoRun.srm       C:\Documents and Settings\Owner\桌面\新建文件夹\wsext.exe
2009-1-2 17:21:15       已删除: not-a-virus:AdWare.Win32.BHO.exb       C:\Documents and Settings\Owner\桌面\新建文件夹\复件 ad10535.exe
2009-1-2 17:21:16       完成任务

[ 本帖最后由 luxiao200888 于 2009-1-2 17:19 编辑 ]

显示全部楼层 · 发表于 2009-1-2 17:21:20

C:\Documents and Settings\Administrator\桌面\92.rar>>1DS1N.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>1DS1Nc.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>82DWN.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>82DWNww.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>ArchiveDaccte.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>ArchiveDate.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>cpush.dll Trojan.Cap8123021.mdak.dll 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>cpush.exe Trojan.Cap8123021.mdak.dll 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>Empty_09.exe TrojanDropper.Agen.293430.kqla 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>Empty_16.exe TrojanDropper.Agen.293430.kqla 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>Empty_25.exe TrojanDropper.Agen.293430.kqla 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>HBWOW.dll TrojanGameThief.WOW.ead.pqev.dll 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>InputArchive.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>InputArschive.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>J75LAGGaX.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>J75LAGGX.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>money attractor v2.exe W32.SillyP2P 病毒还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>pp4.exe TrojanGameThief.Magania.gen.bmbt 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>rising.exe TrojanDownloader.Agent.axau.hwbg 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>Setup1.exe TrojanDropper.Agent.rtc.vnae 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>Setup2.exe TrojanSpy.Agent.hol.xboh 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>Setup3.exe TrojanDropper.RKit.CM.zkyu 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>stormSrav.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>stormSrv.exe Trojan.Kamin 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>SWMOT.msi Trojan.Obfuscated.Gen.b.iqal 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>System.exe TrojanGameThief.MultiFirst.ah.hpkw 木马还未处理
C:\Documents and Settings\Administrator\桌面\92.rar>>wsext.exe Worm.AutoRun.srm.cocy 病毒还未处理

显示全部楼层 · 发表于 2009-1-2 17:28:17

C:\Users\ekincheng\Desktop\92.rar\EMPTY_09.EXE Generic!Artemis (特洛伊)
2009/1/2 17:27:13 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\EMPTY_16.EXE Generic!Artemis (特洛伊)
2009/1/2 17:27:15 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\HBWOW.DLL PWS-OnlineGames.co (特洛伊)
2009/1/2 17:27:16 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\MONEY ATTRACTOR V2.EXE Generic!Artemis (特洛伊)
2009/1/2 17:27:18 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\PP4.EXE\PP4.EXE\00009adc.EXE PWS-OnlineGames.co (特洛伊)
2009/1/2 17:27:19 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\RISING.EXE Generic!Artemis (特洛伊)
2009/1/2 17:27:21 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\SYSTEM.EXE Generic PWS.y (特洛伊)
2009/1/2 17:27:21 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\WSEXT.EXE Generic.dx (特洛伊)
2009/1/2 17:27:21 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\CPUSH.DLL AdClicker-BJ (特洛伊)
2009/1/2 17:27:21 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\CPUSH.EXE AdClicker-BJ (特洛伊)
2009/1/2 17:27:22 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\HC.EXE Generic PUP.x (可能有害的程序)
2009/1/2 17:27:23 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\ARCHIVEDACCTE.EXE Generic!Artemis (特洛伊)
2009/1/2 17:27:23 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\SWMOT.MSI Swizzor.gen.c (特洛伊)
2009/1/2 17:27:24 未采取操作 ekincheng ODS C:\Users\ekincheng\Desktop\92.rar\1DS1NC.EXE Generic!Artemis (特洛伊)

显示全部楼层 · 发表于 2009-1-2 17:33:24

TO KL Heur Manager

显示全部楼层 · 发表于 2009-1-2 17:43:32

居然下不到~

显示全部楼层 · 发表于 2009-1-2 17:46:09

上报费尔

显示全部楼层 · 发表于 2009-1-2 17:50:38

网址红帽报了

显示全部楼层 · 发表于 2009-1-2 17:53:17

红帽……

[病毒样本] 上报46个未查出的盗银行帐号木马!

评分

特征11 启发10

回复 9楼 liu9098 的帖子