zhelatin*4

显示全部楼层 · 发表于 2008-7-9 23:29:57

这家伙更新的也太慢了点...

显示全部楼层 · 发表于 2008-7-9 23:34:24

第一个好像还坏的...~~~~~
谁运行下...

显示全部楼层 · 发表于 2008-7-9 23:44:10

Begin scan in 'C:\Documents and Settings\Administrator\桌面\zhelatin'
C:\Documents and Settings\Administrator\桌面\zhelatin\ztool2.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [NOTE]    A backup was created as '48e3dd39.qua'  ( QUARANTINE )
   [NOTE]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\zhelatin\ztool3.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    A backup was created as '49650882.qua'  ( QUARANTINE )
   [NOTE]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\zhelatin\ztool4.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [NOTE]    A backup was created as '48e3dd3a.qua'  ( QUARANTINE )
   [NOTE]    The file was deleted!

End of the scan: 2008年7月9日  23:44
Used time: 00:02 min

The scan has been done completely.

   1 Scanning directories
   4 Files were scanned
   3 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   3 files were deleted
   0 files were repaired
   3 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   0 Archives were scanned
   0 Warnings
   3 Notes

显示全部楼层 · 发表于 2008-7-9 23:46:22

第1個 The file 'ztool1.exe' has been determined to be 'UNDER ANALYSIS'.

[ 本帖最后由 Kitman 于 2008-7-9 23:47 编辑 ]

显示全部楼层 · 发表于 2008-7-10 00:59:20

D:\病毒测试\临时解压\zhelatin.zip:\ztool1.exe
D:\病毒测试\临时解压\zhelatin.zip:\ztool2.exe - 特征码 'Trojan.Peed.JOM' 被发现
D:\病毒测试\临时解压\zhelatin.zip:\ztool3.exe - 特征码 'Trojan.Peed.JNB' 被发现
D:\病毒测试\临时解压\zhelatin.zip:\ztool4.exe - 特征码 'Trojan.Peed.JOM' 被发现
D:\病毒测试\临时解压\zhelatin.zip

5 文件被扫描
(1 压缩档 4 文件)
3 特征码被侦测
0 可疑代码段被发现
耗时: 0:00.661

显示全部楼层 · 发表于 2008-7-10 01:06:47

太矬了，该退出历史舞台了，新生代猪萝卜的天下。

显示全部楼层 · 发表于 2008-7-10 08:15:14

红伞杀！！！

显示全部楼层 · 发表于 2008-7-10 09:37:12

费尔3个

显示全部楼层 · 发表于 2008-7-10 10:26:21

卡巴杀3漏1

已删除：木马程序 Packed.Win32.Tibs.jl 文件　: D:\软件\其它\v\k\new\zhelatin.zip/ztool2.exe
已删除：木马程序 Packed.Win32.Tibs.jl 文件　: D:\软件\其它\v\k\new\zhelatin.zip/ztool3.exe
已删除：木马程序 Packed.Win32.Tibs.jl 文件　: D:\软件\其它\v\k\new\zhelatin.zip/ztool4.exe

TO KL

[病毒样本] zhelatin*4

本帖子中包含更多资源

本帖子中包含更多资源

试了一个，nod32 statik了。