几个木马

显示全部楼层 · 发表于 2009-1-3 12:45:28

http://txt.koo546.com/oo.txt

显示全部楼层 · 发表于 2009-1-3 12:48:50

[file]
open=y
url1=http://www.kooo546.com/new/new1.exe
url2=http://www.kooo546.com/new/new2.exe
url3=http://www.kooo546.com/new/new3.exe
url4=http://www.kooo546.com/new/new4.exe
url5=http://www.kooo546.com/new/new5.exe
url6=http://www.kooo546.com/new/new6.exe
url7=http://www.kooo546.com/new/new7.exe
url8=http://www.kooo546.com/new/new8.exe
url9=http://www.kooo546.com/new/new9.exe
url10=http://www.kooo546.com/new/new10.exe
url11=http://www.kooo546.com/new/new11.exe
url12=http://www.kooo546.com/new/new12.exe
url13=http://www.kooo546.com/new/new13.exe
url14=http://www.kooo546.com/new/new14.exe
url15=http://www.kooo546.com/new/new15.exe
url16=http://www.kooo546.com/new/new16.exe
url17=http://www.kooo546.com/new/new17.exe
url18=http://www.kooo546.com/new/new18.exe
url19=http://www.kooo546.com/new/new19.exe
url20=http://www.kooo546.com/new/new20.exe
url21=http://www.kooo546.com/new/new21.exe
url22=http://www.kooo546.com/new/new22.exe
url23=http://www.kooo546.com/new/new23.exe
url24=http://www.kooo546.com/new/new24.exe
count=24

[ 本帖最后由 Palkia 于 2009-1-3 12:53 编辑 ]

显示全部楼层 · 发表于 2009-1-3 13:06:07

kaspersky miss 1 tokl

显示全部楼层 · 发表于 2009-1-3 13:08:06

AVIRA kill all

Begin scan in 'D:\桌面.rar'
D:\桌面.rar
[0] Archive type: RAR
   --> new6.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
--> new7.exe
   [DETECTION] Is the TR/Thief.Magania.B Trojan
   --> new10.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new9.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new11.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new12.exe
      [DETECTION] Is the TR/Drop.Agent.Zlo.1 Trojan
   --> new13.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new14.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
--> new15.exe
   [DETECTION] Is the TR/Thief.Magania.B Trojan
   --> new17.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new18.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
--> new19.exe
   [DETECTION] Is the TR/Thief.Magania.B Trojan
   --> new20.exe
      [DETECTION] Is the TR/Dropper.Gen Trojan
--> new16.exe
   [DETECTION] Is the TR/Thief.Magania.B Trojan
   --> new21.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new22.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
--> new1.exe
   [DETECTION] Is the TR/Dropper.Gen Trojan
   --> new4.exe
      [DETECTION] Is the TR/Dldr.Agent.asqf Trojan
--> new5.exe
   [DETECTION] Is the TR/Thief.Magania.B Trojan
   --> new2.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
   --> new3.exe
      [DETECTION] Is the TR/Thief.Games.ubha Trojan
--> new24.exe
   [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
[NOTE]    A backup was created as '498d89f3.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!

显示全部楼层 · 发表于 2009-1-3 13:27:29

微点全杀。。。。。。。。。。。。。

显示全部楼层 · 发表于 2009-1-3 14:11:25

显示全部楼层 · 发表于 2009-1-3 14:15:53

卡巴KILL23,剩一个上报

显示全部楼层 · 发表于 2009-1-3 15:21:03

入库了~~~~~~~~~~~~~~~~~~~

显示全部楼层 · 发表于 2009-1-3 16:20:19

C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new6.exe - 可能是 Win32/PSW.OnLineGames.NST 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new7.exe - 可能是 Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new10.exe - 可能是 Win32/PSW.OnLineGames.NST 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new8.exe - Win32/TrojanDropper.Agent.NPO 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new9.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new11.exe - 可能是 Win32/PSW.OnLineGames.NST 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new12.exe - Win32/TrojanDownloader.Agent.OOB 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new13.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new14.exe - 可能是 Win32/PSW.OnLineGames.NST 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new15.exe - 可能是 Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new17.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new18.exe - 可能是 Win32/PSW.OnLineGames.NST 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new19.exe - 可能是 Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new20.exe - Win32/PSW.Legendmir.NGG 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new16.exe - 可能是 Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new21.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new22.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new23.exe - 可能是 Win32/PSW.Delf.NLZ 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new1.exe - Win32/PSW.WOW.DZI 特洛伊木马
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new4.exe - Win32/Agent.OKR 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new5.exe - 可能是 Win32/PSW.OnLineGames.NRF 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new2.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new3.exe - 可能是 Win32/PSW.OnLineGames.NST 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\桌面.rar > RAR > new24.exe - Win32/PSW.Delf.NMX 特洛伊木马的变种

24

显示全部楼层 · 发表于 2009-1-3 16:26:47

我怎么没见到他们的踪影阿

[病毒样本] 几个木马

某列表

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块