【New or not】http://txt.erhaha2.cn/oo.txt【未打包】

显示全部楼层 · 发表于 2008-12-29 18:44:11

[file]
open=y
url1=http://111.kooo546.com/new/new1.exe
url2=http://111.kooo546.com/new/new2.exe
url3=http://111.kooo546.com/new/new3.exe
url4=http://111.kooo546.com/new/new4.exe
url5=http://111.kooo546.com/new/new5.exe
url6=http://111.kooo546.com/new/new6.exe
url7=http://111.kooo546.com/new/new7.exe
url8=http://111.kooo546.com/new/new8.exe
url9=http://111.kooo546.com/new/new9.exe
url10=http://111.kooo546.com/new/new10.exe
url11=http://222.kooo546.com/new/new11.exe
url12=http://222.kooo546.com/new/new12.exe
url13=http://222.kooo546.com/new/new13.exe
url14=http://222.kooo546.com/new/new14.exe
url15=http://222.kooo546.com/new/new15.exe
url16=http://222.kooo546.com/new/new16.exe
url17=http://222.kooo546.com/new/new17.exe
url18=http://222.kooo546.com/new/new18.exe
url19=http://222.kooo546.com/new/new19.exe
url20=http://222.kooo546.com/new/new20.exe
url21=http://333.kooo546.com/new/new21.exe
url22=http://333.kooo546.com/new/new22.exe
url23=http://333.kooo546.com/new/new23.exe
url24=http://333.kooo546.com/new/new24.exe
url25=http://333.kooo546.com/new/new25.exe
url26=http://333.kooo546.com/new/new26.exe
url27=http://333.kooo546.com/new/new27.exe
count=27

http://www.fengtianc.cn/ad.jpg

显示全部楼层 · 发表于 2008-12-29 18:44:49

肯定又是ko的下载列表

我来打包
卡巴全歼

[ 本帖最后由 Redevil 于 2008-12-29 18:47 编辑 ]

显示全部楼层 · 发表于 2008-12-29 19:00:56

F:\temp.rar » RAR » temp\ko(1).exe - a variant of Win32/PSW.WOW.NDZ trojan
F:\temp.rar » RAR » temp\ko.exe - a variant of Win32/PSW.WOW.NDZ trojan
F:\temp.rar » RAR » temp\new1.exe - probably a variant of Win32/Genetik trojan
F:\temp.rar » RAR » temp\new10.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new11.exe - probably a variant of Win32/PSW.OnLineGames.NST trojan
F:\temp.rar » RAR » temp\new12.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new13.exe - probably a variant of Win32/Genetik trojan
F:\temp.rar » RAR » temp\new14.exe - probably a variant of Win32/PSW.OnLineGames.NST trojan
F:\temp.rar » RAR » temp\new15.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new16.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new17.exe - probably a variant of Win32/Genetik trojan
F:\temp.rar » RAR » temp\new18.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new19.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new2.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new20.exe - a variant of Win32/TrojanDownloader.Agent.OOB trojan
F:\temp.rar » RAR » temp\new21.exe - probably a variant of Win32/PSW.OnLineGames.NST trojan
F:\temp.rar » RAR » temp\new23.exe - a variant of Win32/PSW.Legendmir.NGG trojan
F:\temp.rar » RAR » temp\new24.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
F:\temp.rar » RAR » temp\new25.exe - a variant of Win32/PSW.OnLineGames.NRD trojan
F:\temp.rar » RAR » temp\new26.exe - probably a variant of Win32/PSW.Delf.NLZ trojan
F:\temp.rar » RAR » temp\new27.exe - a variant of Win32/PSW.Delf.NMX trojan
F:\temp.rar » RAR » temp\new29.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new3.exe - probably a variant of Win32/PSW.OnLineGames.NST trojan
F:\temp.rar » RAR » temp\new30.exe - a variant of Win32/PSW.Legendmir.NGG trojan
F:\temp.rar » RAR » temp\new31.exe - probably a variant of Win32/PSW.Delf.NLZ trojan
F:\temp.rar » RAR » temp\new32.exe - a variant of Win32/PSW.Delf.NMX trojan
F:\temp.rar » RAR » temp\new34.exe - probably a variant of Win32/PSW.Delf.NLZ trojan
F:\temp.rar » RAR » temp\new4.exe - a variant of Win32/Agent.OKR trojan
F:\temp.rar » RAR » temp\new5.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new6.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new7.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new8.exe - probably a variant of Win32/PSW.OnLineGames.NRF trojan
F:\temp.rar » RAR » temp\new9.exe - probably a variant of Win32/Genetik trojan

显示全部楼层 · 发表于 2008-12-29 19:37:50

BitDefender AntiVirus 2009
24/34

C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new24.exe Dropped:Trojan.PWS.OnlineGames.ZWI Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new25.exe Dropped:Trojan.PWS.OnlineGames.ZWI Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new23.exe Dropped:Trojan.PWS.Onlinegames.AAHT Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new30.exe Dropped:Trojan.PWS.Onlinegames.AAHT Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new26.exe Generic.PWStealer.CBEE2F4F Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new31.exe Generic.PWStealer.CBEE2F4F Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new34.exe Generic.PWStealer.CBEE2F4F Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new20.exe MemScan:Exploit.MS08-067.D Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new27.exe Trojan.Agent.ALLO Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new4.exe Trojan.Downloader.JLEA Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\ko(1).exe Trojan.KillAV.PF Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\ko.exe Trojan.KillAV.PF Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new10.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new12.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new15.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new16.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new18.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new19.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new2.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new29.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new5.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new6.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new7.exe Trojan.PWS.Agent.SGC Deleted
C:\Documents and Settings\Justice\My Documents\virus\KAFAN\temp\new8.exe Trojan.PWS.Agent.SGC Deleted

显示全部楼层 · 发表于 2008-12-29 20:09:27

扫描系统区域...
扫描所选择的目录和文件...
对象: ko(1).exe
路径: F:\temp
Status: 已发现病毒
病毒: Exploit.Win32.IMG-WMF.in (KAV 引擎), Trojan.KillAV.PF (BD 引擎)
对象: ko.exe
路径: F:\temp
Status: 已发现病毒
病毒: Exploit.Win32.IMG-WMF.in (KAV 引擎), Trojan.KillAV.PF (BD 引擎)
对象: new1.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new10.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new11.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new12.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new13.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new14.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new15.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new16.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new17.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new18.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new19.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new2.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new20.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-Dropper.Win32.Agent.abxj (KAV 引擎), MemScan:Exploit.MS08-067.D (BD 引擎)
对象: new21.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new22.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubfq (KAV 引擎)
对象: new23.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.uaki (KAV 引擎), Dropped:Trojan.PWS.Onlinegames.AAHT (BD 引擎)
对象: new24.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.aodn (KAV 引擎), Dropped:Trojan.PWS.OnlineGames.ZWI (BD 引擎)
对象: new25.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan.Win32.Inject.lvt (KAV 引擎), Dropped:Trojan.PWS.OnlineGames.ZWI (BD 引擎)
对象: new26.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-Spy.Win32.Agent.glu (KAV 引擎), Generic.PWStealer.CBEE2F4F (BD 引擎)
对象: new27.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan.Win32.Agent.ahzz (KAV 引擎), Trojan.Agent.ALLO (BD 引擎)
对象: new29.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new3.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
对象: new30.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.uaki (KAV 引擎), Dropped:Trojan.PWS.Onlinegames.AAHT (BD 引擎)
对象: new31.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-Spy.Win32.Agent.glu (KAV 引擎), Generic.PWStealer.CBEE2F4F (BD 引擎)
对象: new32.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan.Win32.Agent.ahzz (KAV 引擎)
对象: new34.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-Spy.Win32.Agent.glu (KAV 引擎), Generic.PWStealer.CBEE2F4F (BD 引擎)
对象: new4.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-Downloader.Win32.Agent.axnb (KAV 引擎), Trojan.Downloader.JLEA (BD 引擎)
对象: new5.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new6.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new7.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new8.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎), Trojan.PWS.Agent.SGC (BD 引擎)
对象: new9.exe
路径: F:\temp
Status: 已发现病毒
病毒: Trojan-GameThief.Win32.OnLineGames.ubga (KAV 引擎)
扫描完成: 2008-12-29 20:09
已检查 34 个文件
已发现 34 个染毒文件

显示全部楼层 · 发表于 2008-12-30 17:58:39

Start of the scan: 2008年12月30日  17:56
Starting the file scan:

Begin scan in 'C:\Documents and Settings\***\桌面\样本'
C:\Documents and Settings\***\桌面\样本\temp\ko(1).exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
[NOTE]    A backup was created as '4981f0b8.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\ko.exe
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
[NOTE]    A backup was created as '4987f0b9.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new1.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '49d0f0af.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new10.exe
[DETECTION] Is the TR/Agent.BHQ Trojan
[NOTE]    A backup was created as '48b71d40.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new11.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '49d0f0b0.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new12.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.MultiFirst.AE Trojan
      --> Object
      [DETECTION] Is the TR/Agent.14336.27 Trojan
[NOTE]    A backup was created as '48b71d41.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new13.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '49d0f0b2.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new14.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '49d0f0b1.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new15.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.MultiFirst.AE Trojan
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '48b71d42.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new16.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.MultiFirst.AD Trojan
      --> Object
      [DETECTION] Contains a recognition pattern of the (harmful) BDS/Agent.vzr.22 back-door program
[NOTE]    A backup was created as '48b71d43.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new17.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '49d0f0b4.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new18.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.MultiFirst.AE Trojan
      --> Object
      [DETECTION] Is the TR/SmallGame.BF.1 Trojan
[NOTE]    A backup was created as '49d0f0b3.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new19.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.MultiFirst.AH Trojan
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '48b71d44.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new2.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.MultiFirst.AH Trojan
      --> Object
      [DETECTION] Is the TR/PSW.Wow.dxt.2 Trojan
[NOTE]    A backup was created as '48b71d45.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new20.exe
   [DETECTION] Is the TR/Drop.Agent.Zlo.1 Trojan
[NOTE]    A backup was created as '49d0f0b6.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new21.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '48b71d47.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new22.exe
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '49d0f0b5.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new23.exe
[DETECTION] Is the TR/PSW.OnlineGames.uaki Trojan
[NOTE]    A backup was created as '48b71d46.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new24.exe
[0] Archive type: OVL
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.Magania.aobb Trojan
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '49d0f0b7.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new25.exe
[0] Archive type: OVL
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.Magania.aobb Trojan
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '48b71d48.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new26.exe
[DETECTION] Is the TR/ATRAPS.Gen Trojan
[NOTE]    A backup was created as '49d0f0b8.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new27.exe
[DETECTION] Is the TR/Crypt.CFI.Gen Trojan
[NOTE]    A backup was created as '48b71d49.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new29.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.MultiFirst.AF Trojan
      --> Object
      [DETECTION] Is the TR/Agent.avwc.18 Trojan
[NOTE]    A backup was created as '49d0f0ba.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new3.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '49d0f0b9.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new30.exe
[DETECTION] Is the TR/PSW.OnlineGames.uaki Trojan
[NOTE]    A backup was created as '48b71d4a.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new31.exe
[DETECTION] Is the TR/ATRAPS.Gen Trojan
[NOTE]    A backup was created as '49d0f0bb.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new32.exe
[DETECTION] Is the TR/Crypt.CFI.Gen Trojan
[NOTE]    A backup was created as '48b71d4b.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new34.exe
[DETECTION] Is the TR/ATRAPS.Gen Trojan
[NOTE]    A backup was created as '49d0f0bc.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new4.exe
   [DETECTION] Is the TR/Dldr.Agent.asqf Trojan
[NOTE]    A backup was created as '48b71d4d.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new5.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.MultiFirst.AC Trojan
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '48b71d4c.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new6.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.MultiFirst.AD Trojan
      --> Object
      [DETECTION] Is the TR/Agent.17920.96 Trojan
[NOTE]    A backup was created as '49d0f0bd.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new7.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/PSW.MultiFirst.AH Trojan
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    A backup was created as '49d0f0be.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new8.exe
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.MultiFirst.AE Trojan
      --> Object
      [DETECTION] Is the TR/PSW.Magania.aoys.8 Trojan
[NOTE]    A backup was created as '48b71d4f.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
C:\Documents and Settings\***\桌面\样本\temp\new9.exe
   [DETECTION] Is the TR/Thief.Games.ubha Trojan
[NOTE]    A backup was created as '48b71d4e.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!

End of the scan: 2008年12月30日  17:56
Used time: 00:17 Minute(s)

The scan has been done completely.

   2 Scanning directories
   34 Files were scanned
   47 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   34 files were deleted
   0 files were repaired
   34 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
-13 Files not concerned
   0 Archives were scanned
   0 Warnings
   34 Notes
-------------------------------------------------------------
红伞S版库（V7.01.01.48）清空。

显示全部楼层 · 发表于 2008-12-30 18:02:59

这些个地址估计已经可以报销了吧...

信息 2008-12-30  18:02:02 您此次查毒共查出34个病毒以及危险代码
信息 2008-12-30  18:02:02 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件70个
信息 2008-12-30  18:02:02 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

金山毒霸可信认证查询结果如下:

报告生成于: 2008/12/30 18:1

new1.exe    --------    可疑的
new11.exe    --------    可疑的
new13.exe    --------    可疑的
new14.exe    --------    可疑的
new17.exe    --------    可疑的
new21.exe    --------    可疑的
new23.exe    --------    可疑的
new3.exe    --------    可疑的
new30.exe    --------    可疑的
new9.exe    --------    可疑的

ko(1).exe    --------    病毒
ko.exe    --------    病毒
new10.exe    --------    病毒
new12.exe    --------    病毒
new15.exe    --------    病毒
new16.exe    --------    病毒
new18.exe    --------    病毒
new19.exe    --------    病毒
new2.exe    --------    病毒
new20.exe    --------    病毒
new22.exe    --------    病毒
new24.exe    --------    病毒
new25.exe    --------    病毒
new26.exe    --------    病毒
new27.exe    --------    病毒
new29.exe    --------    病毒
new31.exe    --------    病毒
new32.exe    --------    病毒
new34.exe    --------    病毒
new4.exe    --------    病毒
new5.exe    --------    病毒
new6.exe    --------    病毒
new7.exe    --------    病毒
new8.exe    --------    病毒

理论文件总数: 34
实际文件总数: 34

其中:

可疑的: 10
病毒: 24

识别率为: 100%

显示全部楼层 · 发表于 2009-1-5 16:24:38

ce9e907f07b4f6dbe62320ab81cccbbd ad.jpg3

to kl

http://www.virustotal.com/analis ... 0bc9c5035f87387f2e2

ad.jpg_ - Trojan.Win32.Qhost.kyq,

[ 本帖最后由 sam.to 于 2009-1-6 00:36 编辑 ]

[病毒样本] 【New or not】http://txt.erhaha2.cn/oo.txt【未打包】

本帖子中包含更多资源

评分

33/34

本帖子中包含更多资源

浏览过的版块