再一包

显示全部楼层 · 发表于 2008-2-26 22:51:51

最近很流行的那个网址里带iii的那个下载者，看列表是2月25的

list.txt

[MAIN]
VERSION=2008-2-25

[URL]
1=hxxp://iii.chsip.net/wm/1.exe
2=hxxp://iii.chsip.net/wm/2.exe
3=hxxp://iii.chsip.net/wm/3.exe
4=hxxp://iii.chsip.net/wm/4.exe
5=hxxp://iii.chsip.net/wm/5.exe
6=hxxp://iii.chsip.net/wm/6.exe
7=hxxp://iii.chsip.net/wm/7.exe
8=hxxp://iii.chsip.net/wm/8.exe
9=hxxp://iii.chsip.net/wm/9.exe
10=hxxp://iii.chsip.net/wm/10.exe
11=hxxp://iii.chsip.net/wm/11.exe
12=hxxp://iii.chsip.net/wm/12.exe
13=hxxp://iii.chsip.net/wm/13.exe
14=hxxp://iii.chsip.net/wm/14.exe
15=hxxp://iii.chsip.net/wm/15.exe
16=hxxp://iii.chsip.net/wm/16.exe
17=hxxp://iii.chsip.net/wm/17.exe
18=hxxp://iii.chsip.net/wm/18.exe
19=hxxp://iii.chsip.net/wm/19.exe
20=hxxp://iii.chsip.net/wm/20.exe
21=hxxp://iii.chsip.net/wm/21.exe
22=hxxp://iii.chsip.net/wm/22.exe
23=hxxp://iii.chsip.net/wm/23.exe
24=hxxp://iii.chsip.net/wm/24.exe
25=hxxp://iii.chsip.net/wm/25.exe
26=hxxp://iii.chsip.net/wm/26.exe

样本：

不过好像样本没怎么更新吧。费尔报了一个启发，其他全杀

显示全部楼层 · 发表于 2008-2-26 22:53:18

IK
I:\virus\February\26\iii.rar:\iii\1.exe - Signature 'Trojan-Downloader.Win32.Zlob' found
I:\virus\February\26\iii.rar:\iii\10.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\11.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\12.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\13.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\14.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\15.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\26\iii.rar:\iii\16.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\17.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\26\iii.rar:\iii\18.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\19.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\2.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\26\iii.rar:\iii\20.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\26\iii.rar:\iii\21.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\22.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\23.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\26\iii.rar:\iii\24.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\25.exe - Signature 'Trojan-Proxy.Win32.Delf.AN' found
I:\virus\February\26\iii.rar:\iii\26.exe - Signature 'Backdoor.Win32.Agent.ahj' found
I:\virus\February\26\iii.rar:\iii\3.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\4.exe - Signature 'Trojan-Spy.Win32.Agent.hz' found
I:\virus\February\26\iii.rar:\iii\5.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\6.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\7.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\8.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar:\iii\9.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\February\26\iii.rar

27 Files scanned
(1 Archiv with 26 files)
26 Signatures found
0 Suspect code-parts found
Used time: 0:00.359
差一个

显示全部楼层 · 发表于 2008-2-26 22:54:20

貌似就应该是27个，压缩包也算一个

显示全部楼层 · 发表于 2008-2-26 22:54:40

Begin scan in 'E:\VIRUS\iii.rar'
E:\VIRUS\iii.rar
  [0] Archive type: RAR
  --> iii\10.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\11.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.rjh.5
  --> iii\12.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\13.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\14.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.rjh.2
  --> iii\15.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> iii\16.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\17.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> iii\18.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\19.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\2.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> iii\20.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.375
  --> iii\21.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\22.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\23.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> iii\24.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.rjh.9
  --> iii\25.exe
   [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.30
  --> iii\26.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> iii\3.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\4.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> iii\5.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\6.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\7.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\8.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> iii\9.exe
   [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
   [WARNING] The file was ignored!

End of the scan: 2008年2月26日  22:54
Used time: 00:06 min

The scan has been done completely.

   0 Scanning directories
   27 Files were scanned
   25 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   2 Files not concerned
   1 Archives were scanned
   1 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-2-26 22:55:34

F-PROT Antivirus for Windows

Antivirus Scanning Engine version number: 4.4.2
Virus signature file from: 2008-2-26, 4:15

Scan name: Virus tester
Path to scan: C:\Test\|

Normal scan
Also scan: Inside subfolders, Compressed files, Streams

Scan started: 2008-2-26, 22:54:19
---------------------------------------------------------------------

[Error] <Scanning error> F:
[Error] <Scanning error> E:
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\Test\iii.rar->iii\1.exe->(embedded)->(UPack)

---------------------------------------------------------------------
Scan ended: 2008-2-26, 22:54:22
Duration: 0:00:02

Scan result:

Scanned files:    6
Infected objects:    1
Disinfected objects:    0
Quarantined files:    0

显示全部楼层 · 发表于 2008-2-26 22:55:52

已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\10.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rhu 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\11.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\13.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rhu 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\14.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\16.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\18.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\19.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rmj 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\2.exe//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Vaklik.ku 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\20.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\21.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\22.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Vaklik.na 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\23.exe//UPack//PE_Patch
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rhu 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\24.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.QQPass.avs 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\25.exe//UPX
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rwl 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\3.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rhu 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\5.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rhu 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\7.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rhu 檔案: C:\Documents and Settings\kato9096\桌面\iii.rar/iii\9.exe//PE_Patch//UPack

18，上报不报

显示全部楼层 · 发表于 2008-2-26 22:56:08

[Scanning : C:\Test]

C:\Test\iii.rar<RAR>:1.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:10.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:11.exe <- Trojan.Psw.Onlinegames.Rhu : No action
C:\Test\iii.rar<RAR>:12.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:13.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:14.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:16.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:18.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:19.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:2.exe <- Trojan.Psw.Onlinegames.Rmj : No action
C:\Test\iii.rar<RAR>:20.exe <- Trojan.Vaklik.Ku : No action
C:\Test\iii.rar<RAR>:21.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:22.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:24.exe <- Trojan.Psw.Onlinegames.Rhu : No action
C:\Test\iii.rar<RAR>:25.exe <- Trojan.Psw.Qqpass.Avs : No action
C:\Test\iii.rar<RAR>:3.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:4.exe<UPack>:4.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Rtu : No action
C:\Test\iii.rar<RAR>:5.exe <- Trojan.Psw.Onlinegames.Rhu : No action
C:\Test\iii.rar<RAR>:6.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:7.exe <- Trojan.Psw.Onlinegames.Rhu : No action
C:\Test\iii.rar<RAR>:8.exe <- Heur.Win32.I : No action
C:\Test\iii.rar<RAR>:9.exe <- Heur.Win32.I : No action

Scanned objects : 42

Infected objects : 22

显示全部楼层 · 发表于 2008-2-26 22:56:11

Scan Log
Version of virus signature database: 2902 (20080226)
Date: 2008-2-26 Time: 22:55:34
Scanned disks, folders and files: E:\VIRUS\iii.rar
E:\VIRUS\iii.rar » RAR » iii\1.exe - probably a variant of Win32/Genetik trojan
E:\VIRUS\iii.rar » RAR » iii\10.exe - Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\11.exe - Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\12.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\13.exe - Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\14.exe - Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\15.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
E:\VIRUS\iii.rar » RAR » iii\16.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\17.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\VIRUS\iii.rar » RAR » iii\18.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\19.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\2.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
E:\VIRUS\iii.rar » RAR » iii\20.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\VIRUS\iii.rar » RAR » iii\21.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\22.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\23.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\VIRUS\iii.rar » RAR » iii\24.exe - Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\25.exe - probably a variant of Win32/AutoRun.Q worm
E:\VIRUS\iii.rar » RAR » iii\26.exe - a variant of Win32/Agent.NOS trojan
E:\VIRUS\iii.rar » RAR » iii\3.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\4.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
E:\VIRUS\iii.rar » RAR » iii\5.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\6.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\7.exe - Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\8.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
E:\VIRUS\iii.rar » RAR » iii\9.exe - Win32/PSW.OnLineGames.MUG trojan
Number of scanned objects: 26
Number of threats found: 26
Time of completion: 22:55:43 Total scanning time: 9 sec (00:00:09)

显示全部楼层 · 发表于 2008-2-26 22:58:29

25

detected: Trojan program Rootkit.Win32.Agent.abq File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\1.exe//PE_Patch//UPack//#
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\10.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rhu File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\11.exe//PE_Patch//UPack
detected: virus Heur.Trojan.Generic (modification) File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\12.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\13.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rhu File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\14.exe//PE_Patch//UPack
detected: virus Heur.Trojan.Generic (modification) File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\15.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\16.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rts File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\17.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\18.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\19.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rmj File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\2.exe//UPack
detected: Trojan program Trojan.Win32.Vaklik.ku File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\20.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\21.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\22.exe//PE_Patch//UPack
detected: Trojan program Trojan.Win32.Vaklik.na File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\23.exe//UPack//PE_Patch
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rhu File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\24.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.QQPass.avs File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\25.exe//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rwl File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\3.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rtr File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\4.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rhu File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\5.exe//PE_Patch//UPack
detected: virus Heur.Invader (modification) File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\6.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rhu File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\7.exe//PE_Patch//UPack
detected: virus Heur.Invader (modification) File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\8.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.rhu File: C:\Documents and Settings\Owner\×ÀÃæ\iii.rar/iii\9.exe//PE_Patch//UPack

显示全部楼层 · 发表于 2008-2-26 23:00:16

信息 2008-02-26  23:00:12 您此次查毒共查出23个病毒以及危险代码
信息 2008-02-26  23:00:12 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件54个
信息 2008-02-26  23:00:12 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\9.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\8.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\7.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\6.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\5.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\4.exe Win32.Troj.OnlineGamesT.ty.98304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\3.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\24.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\23.exe Win32.Troj.OnlineGamesT.ky.151552 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\22.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\21.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\20.exe Win32.Troj.OnlineGamesT.e.94315 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\2.exe Win32.Troj.OnlineGamesT.e.94315 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\19.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\18.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\17.exe Win32.Troj.OnlineGamesT.ty.98304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\16.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\15.exe Win32.Troj.OnlineGamesT.ty.98304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\14.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\13.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\12.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\11.exe Win32.Troj.GamesHackT.gu.94304 跳过，未处理
病毒 2008-02-26  23:00:12 C:\Documents and Settings\Administrator\桌面\iii.rar\iii\10.exe Win32.Troj.OnlineGameT.am.107664 跳过，未处理
信息 2008-02-26  23:00:01 金山毒霸主程序启动查毒过程，查毒方式：命令行查毒
信息 2008-02-26  22:59:59 金山毒霸主程序启动
信息 2008-02-26  22:58:52 金山毒霸主程序退出

[病毒样本] 再一包

本帖子中包含更多资源

回复 2楼冷_冷的帖子

浏览过的版块

[病毒样本] 再一包

本帖子中包含更多资源

回复 2楼 冷_冷 的帖子

浏览过的版块

回复 2楼冷_冷的帖子