查看: 3194|回复: 11
收起左侧

[已鉴定] 毒网

 关闭 [复制链接]
浪滔天
发表于 2008-2-4 19:48:38 | 显示全部楼层 |阅读模式
http://www.xbt.com.cn/Article/200712/show273228c6p1.html
ALEXBLAIR
发表于 2008-2-4 19:49:42 | 显示全部楼层
detected: malware Exploit.HTML.CodeBaseExec        URL: http://www.xbt.com.cn/cookiepop.js
llgiggs
头像被屏蔽
发表于 2008-2-4 19:50:45 | 显示全部楼层
紅傘沒跳
1.PNG
woai_jolin
发表于 2008-2-4 19:52:13 | 显示全部楼层
2008-2-4 19:52:36 HTTP filter file http://www.xbt.com.cn/cookiepop.js HTML/Exploit.CodeBaseExec trojan connection terminated - quarantined 0AB2B4C883ED4CF\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
Graybird
发表于 2008-2-4 19:52:15 | 显示全部楼层
The file 'cookiepop.js' has been determined to be 'MALWARE'. Our analysts named the threat EXP.CodeBaseExec. Detection will be added to our virus definition file (VDF) with one of the next updates.

没入库~
冷冷
发表于 2008-2-4 20:00:25 | 显示全部楼层
I:\VS\VIRUS\drive\D\WINDOWS\Downloaded Program Files\nvwkanx1.dll - Signature 'Trojan-Downloader.Win32.Adload.oy' found
I:\VS\VIRUS\drive\D\WINDOWS\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\MPSTUB10.CAT - Suspect code-parts found (Level: 2)
I:\VS\VIRUS\drive\I\Temporary Internet Files\Content.IE5\X3R4EWD7\cookiepop[1].js - Signature 'Exploit.HTML.CodeBaseExec' found
290 Files scanned
   (4 Archives with 5 files)
3 Signatures found
1 Suspect code-part found
Used time: 0:01.719

这个也安装了

1.PNG

2.PNG

[ 本帖最后由 冷_冷 于 2008-2-4 20:01 编辑 ]

桌面.rar

84.14 KB, 下载次数: 82

3个

ALEXBLAIR
发表于 2008-2-4 20:01:40 | 显示全部楼层

回复 6楼 冷_冷 的帖子

deleted: Trojan program Trojan-Downloader.Win32.Adload.oy        File: F:\ZHANGQIUREN\DESKTOP\����.rar/nvwkanx1.dll
deleted: malware Exploit.HTML.CodeBaseExec        File: F:\ZHANGQIUREN\DESKTOP\����.rar/cookiepop[1].js
Graybird
发表于 2008-2-4 20:03:02 | 显示全部楼层

回复 6楼 冷_冷 的帖子

Starting the file scan:

Begin scan in 'E:\桌面.rar'
E:\桌面.rar
  [0] Archive type: RAR
  --> nvwkanx1.dll
      [DETECTION] Is the Trojan horse TR/Dldr.AlexaBar.J
      [WARNING]   The file was ignored!

The file 'MPSTUB10.CAT' has been determined to be 'KNOWN CLEAN'. In particular this means that we could not find any malicious content. Please note that the file is part of 'Microsoft Media Player 10'.
hj5abc
发表于 2008-2-4 20:05:01 | 显示全部楼层

回复 6楼 冷_冷 的帖子

Win32:Adloader-KT [Trj]
Guanguancan
发表于 2008-2-4 20:19:24 | 显示全部楼层
上D网用OPERA的确比较安全
2008-02-04_201842.png
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-14 15:00 , Processed in 0.147533 second(s), 20 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表