查看: 3612|回复: 4
收起左侧

[病毒样本] 关于最新小浩病毒运行后产生的病毒

[复制链接]
saber123
发表于 2008-4-27 10:49:10 | 显示全部楼层 |阅读模式
刚刚在安全模式下又用卡巴扫描了下系统..新小浩产出的产品太丰富了

http://bbs.kafan.cn/viewthread.php?tid=242197&extra=page%3D1(病毒样本)

Scan : stopped
--------------
Scanned: 28329
Detected: 749
Untreated: 0
Start time: 2008-4-27 10:22:57
Duration: 00:12:06
Finish time: 2008-4-27 10:35:03

Detected
--------
Status Object
------ ------
deleted: virus Worm.Win32.AutoRun.dnb File: C:\Xiaohao.com
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temp\SafePage.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\0SP2MCAW3K3F1CAMW21P0CAR9P06OCAWQMPEPCA34R0GICA1C0OW0CAIZC1T6CAIW328TCAFUEZTJCAPBYKCDCA6TNZUXCA96SMSCCA109BHXCAOMI4OTCAYUYSZZCAAPQOPTCA0TXUQ8CA6QWN59.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\126mailnews[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\126mailnews[1].html
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\126one[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\126tab_share[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\126two[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\13090_126b[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\169AHCAWXNUZSCAG1PI2WCA2MMDVNCA8PIOZ3CAKYGHPQCA4A9SQICA507XNHCAB2ZZH4CAJ8LP0RCAY5TFSXCAV8TJPBCALSB7YFCA23FNTSCAH09NIUCAT5U7G6CA3RVH2RCAKUKDUECAZ19GLU.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\1[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\2168[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\21NKUCA67ESGWCA01ECNUCAWPTMRFCA15JJ6OCA8WUYN0CAENXJG2CAM0XF4MCAM8ATBPCAYE1YSUCAFDPDDFCAFKISSWCA0OPU6RCABFEGXXCA2DAKB7CAK5D3M6CA8K7O0ECAJKKO8XCA5I4VAG.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\2DF78CAH7R7VTCAHBB8PQCA9QY3VNCAV4BC24CAB3X21ICAJTBYC8CA9QAG2VCAEO80NKCAODYA4YCABNGR94CABXHT5SCACV21D1CAW5XIWBCAU6OJVSCA9LVJLPCA7M9HC0CA4JUM2KCAKH9G9G.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\2O89OCA2W3903CARKHBM0CACXW3L5CA64O4UDCAF146Z3CA8QYZT3CAQNFDBLCAUVPC66CAHQF0FVCA00LJ1RCA30GXQOCAL5P2CNCAXTQ753CAOQPLJBCABV32G2CAI6CA5QCAOL1EHQCA0AE79K.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\3QHWUCAM85F1CCABARSS6CAE0ARD8CACM0CYKCA3L5ME7CAQ10HFJCAE4KEQRCAO1RDOZCAS7Q1MNCAEUAI08CAEXEQM7CA1RFBDBCAAHKNQ9CA2ZF1A4CAP3Z04YCATPJFILCA5BE86LCA9MVZIN.htm
: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\news[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\NL500CAXQLW7JCAQA4HWSCA3O1WD7CALV7GYSCA0XE3R7CA7YCSI1CA4JHRI9CA9V8RI1CA2NELXICAJ1VNGCCALHKK22CA96Z80UCAMR3YUHCA802Y7JCA8K8DDRCA607K82CAW6X3F7CABY5VDG.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\paipai[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\playindex[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\post[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\post[2].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\post[3].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\post[4]deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\43465016[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\4558930[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\53QDECAVM6N48CATEABCHCA9HS2ZOCAHDO7AECAP94OQCCATSP4ENCALQH7L0CAETZWSGCA2ZWSSRCAC7LQRQCA4Y5873CA8YEG07CAVRN7WTCA890VA5CAF21MY7CACWJRS4CA1JSNG1CA81XH3R.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\56294[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\56934[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\5778711[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\6Q4LSCARCJY06CA1FDBABCAGQN6VFCA7CKBA8CA8NCTJPCAAADPKDCABIQ6CZCA0K9F4MCAPZO9KACAUX6DIECA52E06YCAVFWSVXCA0TPEJSCA8P8W5XCAY7X8RHCAUSQ77XCAS704LICAJBB9VN.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\0FUTD591\8WYUFCAFOTZ2YCANM1SEVCAPWS9UYCA6J0TNFCAB3E2O7CAZ0OWC8CA81Q0G9CAK1E53OCAEAR1MICAICFGLSCASD72IPCA11NHFWCAECWZE7CADZAQ1VCALZBG23CAOCFV0LCAI4R4XECAMD6821.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\go[5].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\go[6].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\go[7].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\go[8].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\go[9].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\GTHBTCASVJ0MQCAE7YZ6CCATMLM6DCAIH6D12CA8WM3A7CA9AYMN8CAJ1XMFCCAAV3S81CA07BF2LCAT54NPSCAZO7JXNCABEMTUCCAYR1LDTCA61S2WPCAS96LDCCA6H8D1PCA16DY32CAQ4DIY4.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\history[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\history[2].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\hotmovie[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\hot_5[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\HRE9LCABWW73GCAMDIARBCA45NM60CAI6DC99CAR07QTSCA33SPF7CAG7UXWYCAEBV053CA7UXAGZCAXOGXATCA9IO0G5CAEYRCOQCAEVEG1KCAY3XAXPCANDYO1ZCA92PVKECAPA71IRCAN5PSVV.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\htmltool_dm3[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\html[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\I7SHCCATX6TVCCAQ5UE1GCABPM264CAWQLUU1CAMZKA22CAWUCKP9CAAFWNG5CAPKAIXJCAORD93ECA5QXJAECAI82MT4CAR0XTSPCAAPE76YCA2ZB2PKCA03OOESCA1ZI5RECA5G0COFCAV0N6TF.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\Imported[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\index[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\index[2].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\index[3].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\index[4].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\index_mosa_vip_4295_uid__bid_[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\index_userLogon[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\ipquery[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k1[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k1_vancl[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k2_kugougame[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k7_kugoogame[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k8_kugoo[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\KCSBZCAM0ZSYRCA6R2LB1CAR07V0BCA8ZNW5ICAZ3ATDVCADVC6MDCA8MHMR1CAT27XKICABSSGOCCAUU9BIECA72S2VECACLPIZACAPERR8SCAN01FT9CAPAL4MKCANG33B4CA1KTASBCA04G0KG.htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k_4_kg[1].htm
deleted: Trojan program Trojan-Clicker.HTML.IFrame.pc File: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\A9BL5R1W\k_5[1].htm


Statistics
----------
Object Scanned Dangerous objects Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- ----------------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Custom
Action Prompt for action when the scan is complete
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives all
Scan embedded OLE objects all
Do not scan archives larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives Yes
Use iChecker technology Yes
Use iSwift technology Yes
Register information about dangerous objects in application statistics Yes
Rootkit scan Yes
Extended rootkit scan Yes
Use heuristic analyser Yes
Heuristic analyser level 10

[ 本帖最后由 saber123 于 2008-4-27 10:51 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
saber123
 楼主| 发表于 2008-4-27 10:49:49 | 显示全部楼层
由于日志太多了。.所以截取了部分
000011139
发表于 2008-4-27 15:02:21 | 显示全部楼层
LZ辛苦拉
qigang
发表于 2008-4-27 22:05:40 | 显示全部楼层
有人说这不是作者本人写的了。
saber123
 楼主| 发表于 2008-4-27 22:25:54 | 显示全部楼层
可能不是小浩写的..但借用小浩的名字来传播嘛..也是病毒呀...

但产生的东西好真多

比那个提供样本的朋友说的还多...我想就是从那个网站上下载的吧
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-15 14:05 , Processed in 0.136906 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表