加急快报：今天碰上的最新最强的病毒之王 TXPlatf0rmm

显示全部楼层 · 发表于 2009-5-12 17:26:07

DR.WEB KILL

KILL ALL
cp9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11387;;
cqsj9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
cqwd9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Legmir.2545;;
dh29m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11371;;
dh39m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
dhwd9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
dj9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
hx29m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11575;;
jr9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
jxsj9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11554;;
mhxu9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
msx9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wow.1322;;
mu9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11558;;
qq3g9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11575;;
qqhx9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11575;;
qqma.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.MulDrop.31219;;
qqmo.exe;D:\Documents and Settings\Administrator\桌面\ttr;Win32.HLLP.Whboy.origin;;
rxcq9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
tl9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
tx29m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
wd9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11413;;
wl9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
wmgj9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
xc9m.exe\data001;D:\Documents and Settings\Administrator\桌面\ttr\xc9m.exe;Trojan.PWS.Gamania.18636;;
xc9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Container contains infected objects;;
zt9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
zu9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
zx9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Trojan.PWS.Wsgame.11557;;
zzh9m.exe\data001;D:\Documents and Settings\Administrator\桌面\ttr\zzh9m.exe;Trojan.PWS.Gamania.18643;;
zzh9m.exe;D:\Documents and Settings\Administrator\桌面\ttr;Container contains infected objects;;
TO 1

显示全部楼层 · 发表于 2009-5-12 18:36:22

A2 kill

显示全部楼层 · 发表于 2009-5-12 18:42:35

文件 TXPlatf0rmm.rar 接收于 2009.05.12 12:36:37 (CET)
当前状态: 完成
结果: 27/40 (67.5%)
格式化文本
打印结果反病毒引擎版本最后更新扫描结果
a-squared 4.0.0.101 2009.05.12 Packed.Win32.Klone!IK
AhnLab-V3 5.0.0.2 2009.05.12 Win-Trojan/Agent.81468
AntiVir 7.9.0.166 2009.05.12 TR/Crypt.NSPM.Gen
Antiy-AVL 2.0.3.1 2009.05.12 Trojan/Win32.Agent
Authentium 5.1.2.4 2009.05.12 W32/Downloader.AT.gen!Eldorado
Avast 4.8.1335.0 2009.05.11 Win32:Trojan-gen {Other}
AVG 8.5.0.327 2009.05.12 PSW.Banker5.KEZ
BitDefender 7.2 2009.05.12 -
CAT-QuickHeal 10.00 2009.05.12 -
ClamAV 0.94.1 2009.05.12 -
Comodo 1157 2009.05.08 -
DrWeb 5.0.0.12182 2009.05.12 Win32.HLLP.Whboy.origin
eSafe 7.0.17.0 2009.05.10 Suspicious File
eTrust-Vet 31.6.6500 2009.05.11 -
F-Prot 4.4.4.56 2009.05.12 W32/Downloader.AT.gen!Eldorado
F-Secure 8.0.14470.0 2009.05.12 Trojan-Downloader.Win32.Agent.bwqb
Fortinet 3.117.0.0 2009.05.12 W32/Agent.BWQB!tr.dldr
GData 19 2009.05.12 Win32:Trojan-gen {Other}
Ikarus T3.1.1.49.0 2009.05.12 Packed.Win32.Klone
K7AntiVirus 7.10.732 2009.05.11 Trojan-Downloader.Win32.Agent.bwqb
Kaspersky 7.0.0.125 2009.05.12 Trojan-Downloader.Win32.Agent.bwqb
McAfee 5612 2009.05.11 -
McAfee+Artemis 5612 2009.05.11 Artemis!91D4BC0EE968
McAfee-GW-Edition 6.7.6 2009.05.12 Trojan.Crypt.NSPM.Gen
Microsoft 1.4602 2009.05.12 -
NOD32 4067 2009.05.12 -
Norman 6.01.05 2009.05.11 Banker.EIWW
nProtect 2009.1.8.0 2009.05.12 -
Panda 10.0.0.14 2009.05.11 -
PCTools 4.4.2.0 2009.05.07 Packed/NSPack
Prevx 3.0 2009.05.12 Medium Risk Malware
Rising 21.29.12.00 2009.05.12 Win32.BMW.ax
Sophos 4.41.0 2009.05.12 Mal/Packer
Sunbelt 3.2.1858.2 2009.05.12 Trojan.Win32.Packer.NsPackv3.1 (v)
Symantec 1.4.4.12 2009.05.12 Suspicious.MH690.A
TheHacker 6.3.4.1.324 2009.05.09 -
TrendMicro 8.950.0.1092 2009.05.12 PAK_Generic.001
VBA32 3.12.10.4 2009.05.12 -
ViRobot 2009.5.12.1731 2009.05.12 -
VirusBuster 4.6.5.0 2009.05.11 Packed/NSPack

[ 本帖最后由 chabosh 于 2009-5-12 18:47 编辑 ]

显示全部楼层 · 发表于 2009-5-12 19:00:13

Kaspersky Lab
拒绝访问
无法返回请求的网页

试图访问的网页：

http://bbs.kafan.cn/attachment.php?aid=
532615&k=1fc7f70a209a69571293fd4fa1591d0
0&t=1242125962

发生下列错误：

请求的对象被感染，发现下列病毒 Trojan-Downloader.Win32.Agent.bwqb

如有疑问，请联系您的技术支持
创建日期：
Tue May 12 18:59:31 2009
Kaspersky Lab

KIS8.0.0.506不然我下。。。

显示全部楼层 · 发表于 2009-5-12 19:05:16

"F:\TXPlatf0rmm.rar";"Trojan horse PSW.Banker5.KEZ";"Infected"

显示全部楼层 · 发表于 2009-5-12 23:29:47

原帖由 jhtl 于 2009-5-12 07:54 发表

病毒也有备份？大号？什么大号？难道你分得出大号和小号？

开始蓝屏进不了系统，修复之后能进系统了就备份了下系统，后来又中毒了，所以这个母病毒包含在这个备份的系统里面

显示全部楼层 · 发表于 2009-5-12 23:41:44

没有权限不能下载啊

显示全部楼层 · 发表于 2009-5-12 23:46:25

mcafee都杀了

显示全部楼层 · 发表于 2009-5-13 00:11:50

原帖由 Anycall-D908 于 2009-5-12 00:25 发表

这个是我昨晚上报了微点才报的......

你上报的真早啊！
我11号下午一点左右才上报了微点。。。。。。多余了。。

[ 本帖最后由 norman6810 于 2009-5-13 00:16 编辑 ]

显示全部楼层 · 发表于 2009-5-13 11:00:59

该病毒同时具有蠕虫病毒的特征，我网络里有台没有装防火墙的已经中招了。
看了下启动时的进程，病毒好像用cmd启动的

[病毒样本] 加急快报：今天碰上的最新最强的病毒之王 TXPlatf0rmm

回复 20楼 328397663 的帖子

avg