收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 1*host=33X
12下一页
返回列表 发新帖
查看: 2737|回复: 14
收起左侧

[病毒样本] 1*host=33X

[复制链接]
Sherry.ai
发表于 2009-5-16 16:46:55 | 显示全部楼层 |阅读模式
http://baidujkljasda.cn:1086/ciji/aa01.exe
http://baidujkljasda.cn:1086/ciji/aa02b.exe
http://baidujkljasda.cn:1086/ciji/aa03b.exe
http://baidujkljasda.cn:1086/ciji/aa04a.exe
http://baidujkljasda.cn:1086/ciji/aa21e.exe
http://baidujkljasda.cn:1086/ciji/aa05b.exe
http://baidujkljasda.cn:1086/ciji/aa06b.exe
http://baidujkljasda.cn:1086/ciji/aa31b.exe
http://baidujkljasda.cn:1086/ciji/aa07b.exe
http://baidujkljasda.cn:1086/ciji/aa08c.exe
http://baidujkljasda.cn:1086/ciji/aa09a.exe
http://baidujkljasda.cn:1086/ciji/aa10d.exe
http://baidujkljasda.cn:1086/ciji/aa11a.exe
http://baidujkljasda.cn:1086/ciji/aa12.exe
http://baidujkljasda.cn:1086/ciji/aa13c.exe
http://baidujkljasda.cn:1086/ciji/aasg.exe
http://baidujkljasda.cn:1086/ciji/aa32e.exe
http://baidujkljasda.cn:1086/ciji/aa14.exe
http://baidujkljasda.cn:1086/ciji/aa27a.exe
http://baidujkljasda.cn:1086/ciji/aa15d.exe
http://baidujkljasda.cn:1086/ciji/aa16.exe
http://baidujkljasda.cn:1086/ciji/aa17.exe
http://baidujkljasda.cn:1086/ciji/aa18a.exe
http://baidujkljasda.cn:1086/ciji/aa19c.exe
http://baidujkljasda.cn:1086/ciji/aa20a.exe
http://baidujkljasda.cn:1086/ciji/aa29a.exe
http://baidujkljasda.cn:1086/ciji/aa22.exe
http://baidujkljasda.cn:1086/ciji/aa23a.exe
http://baidujkljasda.cn:1086/ciji/aa24.exe
http://baidujkljasda.cn:1086/ciji/aa25.exe
http://baidujkljasda.cn:1086/ciji/aa26d.exe
http://baidujkljasda.cn:1086/ciji/aa28.exe
http://baidujkljasda.cn:1086/ciji/aa30.exe
新鲜域名

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x

评分

参与人数 1人气 +1 收起 理由
luxiao200888 + 1

查看全部评分

回复

举报

328397663
发表于 2009-5-16 16:50:18 | 显示全部楼层
原帖由 935623508 于 2009-5-16 16:46 发表
http://baidujkljasda.cn:1086/ciji/aa01.exe
http://baidujkljasda.cn:1086/ciji/aa02b.exe
http://baidujkljasda.cn:1086/ciji/aa03b.exe
http://baidujkljasda.cn:1086/ciji/aa04a.exe
http://baidujkljasda. ...

Scanned file:   33X.rar - Infected
33X.rar/33X/aa01.exe - OK
33X.rar/33X/aa01.exe - OK
33X.rar/33X/aa01.exe - OK
33X.rar/33X/aa02b.exe - infected by Trojan-PSW.Win32.LdPinch.aftw
33X.rar/33X/aa03b.exe - infected by Trojan-PSW.Win32.LdPinch.afsd
33X.rar/33X/aa04a.exe - infected by Trojan-GameThief.Win32.XiaJian.cv
33X.rar/33X/aa05b.exe - infected by Trojan-GameThief.Win32.Magania.bbtm
33X.rar/33X/aa06b.exe - OK
33X.rar/33X/aa06b.exe - OK
33X.rar/33X/aa07b.exe - infected by Trojan-GameThief.Win32.WOW.nld
33X.rar/33X/aa08c.exe - infected by Trojan-GameThief.Win32.WOW.nhs
33X.rar/33X/aa09a.exe - infected by Trojan-PSW.Win32.LdPinch.afvj
33X.rar/33X/aa10d.exe - infected by Trojan-GameThief.Win32.XiaJian.eb
33X.rar/33X/aa11a.exe - infected by Trojan-PSW.Win32.LdPinch.aftt
33X.rar/33X/aa12.exe - OK
33X.rar/33X/aa12.exe - OK
33X.rar/33X/aa12.exe - OK
33X.rar/33X/aa13c.exe - infected by Trojan-PSW.Win32.LdPinch.afua
33X.rar/33X/aa14.exe - infected by Trojan-PSW.Win32.LdPinch.affb
33X.rar/33X/aa15d.exe - infected by Trojan-PSW.Win32.LdPinch.aftw
33X.rar/33X/aa16.exe - infected by Trojan-PSW.Win32.LdPinch.afvj
33X.rar/33X/aa17.exe - infected by Trojan-PSW.Win32.LdPinch.afsd
33X.rar/33X/aa18a.exe - infected by Trojan-PSW.Win32.LdPinch.afvj
33X.rar/33X/aa19c.exe - OK
33X.rar/33X/aa19c.exe - OK
33X.rar/33X/aa19c.exe - OK
33X.rar/33X/aa20a.exe - OK
33X.rar/33X/aa20a.exe - OK
33X.rar/33X/aa20a.exe - OK
33X.rar/33X/aa21e.exe - infected by Trojan-GameThief.Win32.WOW.nvi
33X.rar/33X/aa22.exe - infected by Trojan-GameThief.Win32.Magania.batl
33X.rar/33X/aa23a.exe - infected by Trojan-GameThief.Win32.OnLineGames.uzkg
33X.rar/33X/aa24.exe - infected by Trojan-GameThief.Win32.Magania.batl
33X.rar/33X/aa25.exe - infected by Trojan-PSW.Win32.QQPass.ghy
33X.rar/33X/aa26d.exe - infected by Trojan.Win32.Agent.cgrf
33X.rar/33X/aa27a.exe - infected by Trojan-GameThief.Win32.WOW.mbi
33X.rar/33X/aa28.exe/data0001 - OK
33X.rar/33X/aa28.exe/data0002 - OK
33X.rar/33X/aa28.exe/data0003 - OK
33X.rar/33X/aa28.exe - OK
33X.rar/33X/aa29a.exe - infected by Trojan-Dropper.Win32.Agent.apce
33X.rar/33X/aa30.exe - infected by Trojan-Downloader.Win32.Small.jow
33X.rar/33X/aa31b(1).exe - infected by Trojan-GameThief.Win32.WOW.nlc
33X.rar/33X/aa32e.exe - infected by Trojan-PSW.Win32.LdPinch.afvj
33X.rar/33X/aasg.exe - infected by Trojan-PSW.Win32.LdPinch.aftt

Statistics:
Known viruses:2185120Updated:16-05-2009
File size (Kb):735Virus bodies:27
Files:45Warnings:0
Archives:2Suspicious:0



上报6

[ 本帖最后由 328397663 于 2009-5-16 16:55 编辑 ]
回复

举报

花间酒
发表于 2009-5-16 16:55:49 | 显示全部楼层
avira all kill
回复

举报

feihongtian 该用户已被删除
发表于 2009-5-16 17:18:32 | 显示全部楼层
Result: 30 malware found
Trojan.Generic.1329931 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa01.exe
Generic.Onlinegames.14.3B4492F2 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa02b.exe
Generic.Onlinegames.14.DB2E0736 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa03b.exe
Trojan.Generic.1757854 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa04a.exe
Generic.Onlinegames.14.DEB9D110 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa05b.exe
MemScan:Trojan.Dropper.OnlineGames.DW (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa06b.exe
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa08c.exe
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa23a.exe
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa27a.exe
Gen:Trojan.Heur.GM.0100030802 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa07b.exe
Generic.Onlinegames.14.768377B4 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa09a.exe
Generic.Onlinegames.14.B132D421 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa11a.exe
Generic.Onlinegames.14.C6D8433B (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa12.exe
Generic.Onlinegames.14.DC13C5C0 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa13c.exe
Generic.Onlinegames.14.1988EE11 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa14.exe
Generic.Onlinegames.14.A648BED4 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa15d.exe
Generic.Onlinegames.14.1DD87A88 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa16.exe
Generic.Onlinegames.14.9C67C594 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa17.exe
Generic.Onlinegames.14.D945512C (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa18a.exe
Generic.Onlinegames.14.0C9ECA9D (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa19c.exe
Generic.Onlinegames.14.4DAD3B9A (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa20a.exe
Generic.Onlinegames.14.1C50902B (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa22.exe
Generic.Onlinegames.14.ED486FC7 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa24.exe
Trojan.PWS.QQPas.E (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa25.exe
Gen:Trojan.Heur.3065153434 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa26d.exe
Trojan.Obfuscated.KU (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa28.exe
Trojan.Downloader.Agent.AAMS (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa30.exe
BehavesLike:Trojan.AppInitDLL (Suspected infection)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa31b(1).exe
Generic.Onlinegames.14.B2EF4C45 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aa32e.exe
Generic.Onlinegames.14.A7A36C13 (virus)
  • C:\Documents and Settings\sk\桌面\virus\16\33X.rar\33X\aasg.exe

Scanning Engines:
  • F-Secure Aquarius: 11.00.00, 2009-05-14
  • F-Secure Hydra: 3.08.9080, 2009-05-15
回复

举报

真中淳平
发表于 2009-5-16 17:54:40 | 显示全部楼层
Kingsoft netbook edition
30 killed
missed: aa01.exe;aa28.exe;aa30.exe
回复

举报

SUZAKU
发表于 2009-5-16 17:58:51 | 显示全部楼层
G DATA 杀31个
回复

举报

llzy3575
发表于 2009-5-16 18:07:14 | 显示全部楼层
Avira all kill.
Filseclab all kill
回复

举报

sam.to
发表于 2009-5-16 18:09:35 | 显示全部楼层

回复 2楼 328397663 的帖子

今天是星期六,幸好URL还上班....
回复

举报

shi007
发表于 2009-5-16 18:20:09 | 显示全部楼层
Check system areas...
Check selected directories and files...
Object: aa01.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan.Generic.1329931 (Avast or BD Engine)
Object: aa02b.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.aftw (KAV Engine)
Object: aa03b.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afsd (KAV Engine)
Object: aa04a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.XiaJian.cv (KAV Engine)
Object: aa05b.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.Magania.bbtm (KAV Engine)
Object: aa06b.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: MemScan:Trojan.Dropper.OnlineGames.DW (Avast or BD Engine)
Object: aa07b.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.WOW.nld (KAV Engine)
Object: aa08c.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.WOW.nhs (KAV Engine)
Object: aa09a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afvj (KAV Engine)
Object: aa10d.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.XiaJian.eb (KAV Engine)
Object: aa11a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.aftt (KAV Engine)
Object: aa12.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Generic.Onlinegames.14.C6D8433B (Avast or BD Engine)
Object: aa13c.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afua (KAV Engine)
Object: aa14.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.affb (KAV Engine)
Object: aa15d.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.aftw (KAV Engine)
Object: aa16.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afvj (KAV Engine)
Object: aa17.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afsd (KAV Engine)
Object: aa18a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afvj (KAV Engine)
Object: aa19c.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Generic.Onlinegames.14.0C9ECA9D (Avast or BD Engine)
Object: aa20a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Generic.Onlinegames.14.4DAD3B9A (Avast or BD Engine)
Object: aa21e.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.WOW.nvi (KAV Engine)
Object: aa22.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.Magania.batl (KAV Engine)
Object: aa23a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.OnLineGames.uzkg (KAV Engine)
Object: aa24.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.Magania.batl (KAV Engine)
Object: aa25.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.QQPass.ghy (KAV Engine)
Object: aa26d.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan.Win32.Agent.cgrf (KAV Engine)
Object: aa27a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.WOW.mbi (KAV Engine)
Object: aa28.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan.Obfuscated.KU (Avast or BD Engine)
Object: aa29a.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-Dropper.Win32.Agent.apce (KAV Engine)
Object: aa30.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-Downloader.Win32.Small.jow (KAV Engine)
Object: aa31b(1).exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-GameThief.Win32.WOW.nlc (KAV Engine)
Object: aa32e.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.afvj (KAV Engine)
Object: aasg.exe
        Path: C:\33X\33X
        Status: Virus detected
        Virus: Trojan-PSW.Win32.LdPinch.aftt (KAV Engine)
Analysis complete: 5/16/2009 18:18
    33 files checked
    33 infected files detected
    0 suspected files detected
回复

举报

黑衣~魂
发表于 2009-5-16 18:48:29 | 显示全部楼层
DR.WEB
aa02b.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11589;Deleted.;
aa03b.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11558;Deleted.;
aa04a.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11413;Deleted.;
aa05b.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.origin;Deleted.;
aa07b.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wow.1322;Deleted.;
aa09a.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.origin;Deleted.;
aa10d.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11554;Deleted.;
aa11a.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11586;Deleted.;
aa12.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11706;Deleted.;
aa13c.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11700;Deleted.;
aa14.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11335;Deleted.;
aa15d.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11589;Deleted.;
aa16.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.origin;Deleted.;
aa17.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11558;Deleted.;
aa18a.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.origin;Deleted.;
aa19c.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11706;Deleted.;
aa20a.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.origin;Deleted.;
aa22.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11557;Deleted.;
aa23a.exe\data001;D:\Documents and Settings\Administrator\桌面\33X\aa23a.exe;Trojan.PWS.Gamania.18742;;
aa23a.exe;D:\Documents and Settings\Administrator\桌面\33X;Container contains infected objects;Deleted.;
aa24.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11557;Deleted.;
aa25.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Gamania.17749;Deleted.;
aa26d.exe;D:\Documents and Settings\Administrator\桌面\33X;Probably BACKDOOR.Trojan;Deleted.;
aa27a.exe\data001;D:\Documents and Settings\Administrator\桌面\33X\aa27a.exe;Trojan.PWS.Gamania.18530;;
aa27a.exe;D:\Documents and Settings\Administrator\桌面\33X;Container contains infected objects;Deleted.;
aa31b(1).exe\data001;D:\Documents and Settings\Administrator\桌面\33X\aa31b(1).exe;Trojan.PWS.Gamania.origin;;
aa31b(1).exe;D:\Documents and Settings\Administrator\桌面\33X;Container contains infected objects;Deleted.;
aa32e.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.origin;Deleted.;
aasg.exe;D:\Documents and Settings\Administrator\桌面\33X;Trojan.PWS.Wsgame.11586;Deleted.;
TO DW
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-12 20:05 , Processed in 0.137174 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表