冷冷这个大漏勺从今天list挖出的downlist

显示全部楼层 · 发表于 2008-8-1 18:46:09

http://tta.netfeei.cn/aoo1.exe
http://tta.netfeei.cn/aoo2.exe
http://tta.netfeei.cn/aoo3.exe
http://tta.netfeei.cn/aoo4.exe
http://tta.netfeei.cn/aoo5.exe
http://tta.netfeei.cn/aoo6.exe
http://ttb.netfeei.cn/aoo7.exe
http://ttb.netfeei.cn/aoo8.exe
http://ttb.netfeei.cn/aoo9.exe
http://ttb.netfeei.cn/aoo10.exe
http://ttb.netfeei.cn/aoo11.exe
http://ttb.netfeei.cn/aoo12.exe
http://ttc.netfeei.cn/aoo13.exe
http://ttc.netfeei.cn/aoo14.exe
http://ttc.netfeei.cn/aoo15.exe
http://ttc.netfeei.cn/aoo16.exe
http://ttc.netfeei.cn/aoo17.exe
http://ttc.netfeei.cn/aoo18.exe
http://ttd.netfeei.cn/aoo19.exe
http://ttd.netfeei.cn/aoo20.exe
http://ttd.netfeei.cn/aoo21.exe
http://ttd.netfeei.cn/aoo22.exe
http://ttd.netfeei.cn/aoo23.exe
http://ttd.netfeei.cn/aoo24.exe
http://ttd.netfeei.cn/aoo25.exe

显示全部楼层 · 发表于 2008-8-1 18:53:20

kv 24

[ 本帖最后由 tvuser2007 于 2008-8-1 19:05 编辑 ]

显示全部楼层 · 发表于 2008-8-1 18:56:23

我来打包

显示全部楼层 · 发表于 2008-8-1 18:56:58

估计那个是我发给他的一堆里的。。。
他没运行。。。~
MS我给了他159个EXE

[ 本帖最后由电影结束了于 2008-8-1 18:58 编辑 ]

显示全部楼层 · 发表于 2008-8-1 18:57:13

显示全部楼层 · 发表于 2008-8-1 18:57:52

2008-8-1 18:55:39 HTTP filter file http://ttc.netfeei.cn/aoo16.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:55:39 Real-time file system protection file C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\MM4X4QEC\AOO16[1].EXE probably a variant of Win32/Statik application cleaned by deleting - quarantined NT AUTHORITY\SYSTEM Event occurred during an attempt to access the file by the application: C:\Program Files\Micropoint\MPSVC2.exe.
2008-8-1 18:55:26 HTTP filter file http://ttb.netfeei.cn/aoo12.exe a variant of Win32/PSW.OnLineGames.NXI trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:55:25 HTTP filter file http://ttc.netfeei.cn/aoo13.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:55:17 HTTP filter file http://ttb.netfeei.cn/aoo11.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:55:09 HTTP filter file http://ttb.netfeei.cn/aoo10.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:55:01 HTTP filter file http://ttb.netfeei.cn/aoo9.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:55 HTTP filter file http://ttb.netfeei.cn/aoo8.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:50 HTTP filter file http://ttb.netfeei.cn/aoo7.exe a variant of Win32/PSW.OnLineGames.NXI trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:42 HTTP filter file http://tta.netfeei.cn/aoo6.exe a variant of Win32/PSW.OnLineGames.NXI trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:33 HTTP filter file http://tta.netfeei.cn/aoo5.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:26 HTTP filter file http://tta.netfeei.cn/aoo4.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:20 HTTP filter file http://tta.netfeei.cn/aoo3.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:12 HTTP filter file http://tta.netfeei.cn/aoo2.exe probably a variant of Win32/PSW.OnLineGames.NML trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.
2008-8-1 18:54:02 HTTP filter file http://tta.netfeei.cn/aoo1.exe a variant of Win32/PSW.Legendmir.NFX trojan connection terminated - quarantined 3A8AD2D60C484EE\Administrator Threat was detected upon access to web by the application: C:\Program Files\Internet Explorer\iexplore.exe.

显示全部楼层 · 发表于 2008-8-1 19:01:18

金山清空。。
信息 2008-08-01  19:00:30 您此次查毒清除了25个病毒
信息 2008-08-01  19:00:30 您此次查毒共查出25个病毒以及危险代码
信息 2008-08-01  19:00:30 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件49个
信息 2008-08-01  19:00:30 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

显示全部楼层 · 发表于 2008-8-1 19:19:42

UGuard 完成了在 C:\Documents and Settings\Administrator\桌面\新建文件夹.rar 上的扫描。
================
'SL.Trojan.26902' 在 '新建文件夹.rar//aoo1.exe' 中被检测到。
'SL.Trojan.20319' 在 '新建文件夹.rar//aoo10.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo11.exe' 中被检测到。
'SL.Trojan.2867' 在 '新建文件夹.rar//aoo12.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo13.exe' 中被检测到。
'SL.Trojan.26902' 在 '新建文件夹.rar//aoo14.exe' 中被检测到。
'SL.Trojan.21121' 在 '新建文件夹.rar//aoo15.exe' 中被检测到。
'SL.Trojan.20319' 在 '新建文件夹.rar//aoo16.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo17.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo18.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo19.exe' 中被检测到。
'SL.Trojan.26902' 在 '新建文件夹.rar//aoo2.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo20.exe' 中被检测到。
'SL.Trojan.25109' 在 '新建文件夹.rar//aoo21.exe' 中被检测到。
'SL.Trojan.Small.9910' 在 '新建文件夹.rar//aoo22.exe' 中被检测到。
'SL.Trojan.RootkitDropper' 在 '新建文件夹.rar//aoo23.exe' 中被检测到。
'SL.Trojan.26902' 在 '新建文件夹.rar//aoo24.exe' 中被检测到。
'SL.Trojan.RootkitDropper' 在 '新建文件夹.rar//aoo25.exe' 中被检测到。
'SL.Trojan.20319' 在 '新建文件夹.rar//aoo3.exe' 中被检测到。
'SL.Trojan.20319' 在 '新建文件夹.rar//aoo4.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo5.exe' 中被检测到。
'SL.Trojan.15574' 在 '新建文件夹.rar//aoo6.exe' 中被检测到。
'SL.Trojan.Win32.Agent.Download.9023' 在 '新建文件夹.rar//aoo7.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo8.exe' 中被检测到。
'SL.Trojan.25230' 在 '新建文件夹.rar//aoo9.exe' 中被检测到。
================
扫描文件数： 26
本次扫描发现了 25 个已知威胁，请及时处理。
实际文件数： 1
扫描时间： 0-00-00 00:00:01:0562
威胁比率： 2500%

显示全部楼层 · 发表于 2008-8-1 21:43:57

显示全部楼层 · 发表于 2008-8-1 21:51:02

费尔查到25个

[病毒样本] 冷冷这个大漏勺从今天list挖出的downlist

质量一般，mcafee全灭

kill all

浏览过的版块

[病毒样本] 冷冷这个大漏勺 从今天list挖出的downlist

质量一般，mcafee全灭

kill all

浏览过的版块

[病毒样本] 冷冷这个大漏勺从今天list挖出的downlist