很陈很冠希Pass很多

显示全部楼层 · 发表于 2008-2-21 03:19:15

很黄

显示全部楼层 · 发表于 2008-2-21 03:35:41

昨天我很勤奋，今天轮到你啦。加油！
卡巴飘过。
放到沙盘里也没见反映哦？

[ 本帖最后由 hlx98007 于 2008-2-21 03:38 编辑 ]

显示全部楼层 · 发表于 2008-2-21 03:41:58

原帖由 hlx98007 于 2008-2-21 03:35 发表
昨天我很勤奋，今天轮到你啦。加油！
卡巴飘过。
放到沙盘里也没见反映哦？

晕呵呵 ..

我今天很郁闷一点都不兴奋就找些无聊的事情玩..

直接Copy 来的自己没运行不知道 ..

显示全部楼层 · 发表于 2008-2-21 03:55:32

自己的沙盘发现释放了个NetGuy_BHO.dll文件到system32，网络沙盘没跑起来，不知道有什么问题

显示全部楼层 · 发表于 2008-2-21 03:58:46

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\exe.rar'
C:\Documents and Settings\Administrator\My Documents\
  exe.rar
[0] Archive type: RAR
--> exe.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
      [WARNING] Infected files in archives cannot be repaired!
   [INFO]    The file was deleted!

显示全部楼层 · 发表于 2008-2-21 07:17:12

Is the Trojan horse TR/Crypt.ULPM.Gen

显示全部楼层 · 发表于 2008-2-21 08:54:03

to kl shou

Hello,

2008020113TestHttp.exek

No malicious code was found in this file.

3.exek - Trojan-Downloader.Win32.Small.imt,
5.exek - Backdoor.Win32.Agent.eqc,
52vip_yoyo1012.exek - Backdoor.Win32.Rbot.htn,
an006.exek - Trojan-Downloader.Win32.Agent.jhx,
exe.exek - Trojan-Downloader.Win32.Agent.jhy, [:1:]
mrofinu565.exek - Trojan-Downloader.Win32.Agent.jhv,
niu.ex4e - Worm.Win32.AutoRun.cpy,
qq.exek - Trojan.Win32.Pakes.cew,
www.hmhk.cn.exek - Backdoor.Win32.Hupigon.axet

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

73e1.exek - not-a-virus:AdWare.Win32.BHO.abi

This file is an Advertizing Tool, it is detected by
extended databases set. See more info about
extended databases here: http://www.kaspersky.com/extraavupdates

Please quote all when answering.

--
Best regards, Vladimir Krylov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.
[:1:]

[ 本帖最后由 wangjay1980 于 2008-2-21 11:43 编辑 ]

显示全部楼层 · 发表于 2008-2-21 10:55:36

好一句很陈很冠希……
E:\virus\exe.rar » RAR » exe.exe - is OK

显示全部楼层 · 发表于 2008-2-21 11:02:33

AhnLab-V3 2008.2.20.0 2008.02.20 -
AntiVir 7.6.0.67 2008.02.20 TR/Crypt.ULPM.Gen
Authentium 4.93.8 2008.02.21 -
Avast 4.7.1098.0 2008.02.20 -
AVG 7.5.0.516 2008.02.21 -
BitDefender 7.2 2008.02.21 -
CAT-QuickHeal 9.50 2008.02.20 -
ClamAV 0.92.1 2008.02.21 -
DrWeb 4.44.0.09170 2008.02.20 -
eSafe 7.0.15.0 2008.02.20 suspicious Trojan/Worm
eTrust-Vet 31.3.5551 2008.02.21 -
Ewido 4.0 2008.02.20 -
FileAdvisor 1 2008.02.21 -
Fortinet 3.14.0.0 2008.02.19 -
F-Prot 4.4.2.54 2008.02.20 W32/Heuristic-114!Eldorado
F-Secure 6.70.13260.0 2008.02.20 -
Ikarus T3.1.1.20 2008.02.21 Win32.SuspectCrc
Kaspersky 7.0.0.125 2008.02.21 -
McAfee 5234 2008.02.20 New Malware.bx
Microsoft 1.3204 2008.02.20 -
NOD32v2 2891 2008.02.21 -
Norman 5.80.02 2008.02.20 -
Panda 9.0.0.4 2008.02.20 Suspicious file
Prevx1 V2 2008.02.21 -
Rising 20.32.22.00 2008.02.20 -
Sophos 4.26.0 2008.02.20 Mal/Emogen-N
Sunbelt 3.0.884.0 2008.02.19 -
Symantec 10 2008.02.21 -
TheHacker 6.2.9.225 2008.02.21 -
VBA32 3.12.6.1 2008.02.17 -
VirusBuster 4.3.26:9 2008.02.20 -
Webwasher-Gateway 6.6.2 2008.02.20 Trojan.Crypt.ULPM.Gen

附加信息
File size: 32951 bytes
MD5: edb06c20fa3484e2e18f91c9e53aa298
SHA1: 4864fc86af2ecdb27664d8d723ca9fa7e61155d4
PEiD: -
packers: UPX_LZMA
packers: PE_Patch.Poly

显示全部楼层 · 发表于 2008-2-21 11:06:50

微点砍掉

[病毒样本] 很陈很冠希Pass很多

本帖子中包含更多资源

Avira AntiVir

本帖子中包含更多资源

浏览过的版块