mm.exe 第365次更新 3月14日第2次更新

显示全部楼层 · 发表于 2009-2-19 23:51:46

Begin scan in 'D:\0219-2343mm.rar'
D:\0219-2343mm.rar
[0] Archive type: RAR
   --> x.gif2
      [1] Archive type: RAR
      --> ￕￕￆﾬ                                                                                                                .exe
      [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
--> 9.ex2e
   [DETECTION] Contains HEUR/Crypted suspicious code
--> mm.ex2e
   [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE]    A backup was created as '49ce801f.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!

Begin scan in 'D:\0219-2343mm-c.rar'
D:\0219-2343mm-c.rar
[0] Archive type: RAR
--> 0219-2343mm-c\lTj.pi2f
   [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
[NOTE]    A backup was created as '49ce8019.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!

显示全部楼层 · 发表于 2009-2-20 00:32:37

原帖由 935623508 于 2009-2-18 22:42 发表
里面有X牛

那个文件???

显示全部楼层 · 发表于 2009-2-20 01:21:57

0219三次  全k
C:\Documents and Settings\GUNDAM\桌面\0219-2343mm.rar » RAR » x.gif2 » RAR » 照片                                                                                                                .exe - probably a variant of Win32/AutoRun.Agent.IE worm
C:\Documents and Settings\GUNDAM\桌面\0219-2343mm.rar » RAR » 9.ex2e - a variant of Win32/HackTool.Xarp trojan
C:\Documents and Settings\GUNDAM\桌面\0219-2343mm.rar » RAR » mm.ex2e - probably a variant of Win32/AutoRun.Agent.IE worm
C:\Documents and Settings\GUNDAM\桌面\0219-2343mm-c.rar » RAR » 0219-2343mm-c\lTj.pi2f - a variant of Win32/AutoRun.Agent.IE worm

C:\Documents and Settings\GUNDAM\桌面\0219-1640mm.rar » RAR » 9.ex2e - a variant of Win32/HackTool.Xarp trojan
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm.rar » RAR » mm.ex2e - probably a variant of Win32/AutoRun.Agent.IE worm
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm.rar » RAR » x.gi2f » RAR » 照片                                                                                                                .exe - probably a variant of Win32/AutoRun.Agent.IE worm
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm.rar » RAR » 1.ex2e - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm-c.rar » RAR » 0219-1640mm-c\conime.ex2e - a variant of Win32/TrojanDropper.Small.NIY trojan
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm-c.rar » RAR » 0219-1640mm-c\dafln.dl2l - a variant of Win32/Delf.NNM trojan
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm-c.rar » RAR » 0219-1640mm-c\lvsj.pif2 - a variant of Win32/AutoRun.Agent.IE worm
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm-c.rar » RAR » 0219-1640mm-c\scvts.dll2 - probably a variant of Win32/AutoRun.Agent.IE worm
C:\Documents and Settings\GUNDAM\桌面\0219-1640mm-c.rar » RAR » 0219-1640mm-c\userinit.ex2e - probably unknown NewHeur_PE virus

C:\Documents and Settings\GUNDAM\桌面\0219-1125mm.rar » RAR » 1.exe2 - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\GUNDAM\桌面\0219-1125mm-c.rar » RAR » conime.exe2 - a variant of Win32/TrojanDropper.Small.NIY trojan

显示全部楼层 · 发表于 2009-2-20 17:20:50

(第307次更新

显示全部楼层 · 发表于 2009-2-20 18:06:14

2009-2-20 18:05:35 检测到威胁: Trojan.Win32.Agent2.dup C:\Documents and Settings\Administrator\桌面\0217-1227mm-c.rar/0217-1227mm-c\lvsj.pif2
2009-2-20 18:05:35 已删除: Trojan.Win32.Agent2.dup C:\Documents and Settings\Administrator\桌面\0217-1227mm-c.rar/0217-1227mm-c\lvsj.pif2

显示全部楼层 · 发表于 2009-2-20 18:09:50

MISS 4 to VB

显示全部楼层 · 发表于 2009-2-20 23:20:02

第308次更新

显示全部楼层 · 发表于 2009-2-20 23:42:00

to KL\VB

显示全部楼层 · 发表于 2009-2-21 13:27:33

第309次更新

显示全部楼层 · 发表于 2009-2-21 13:31:53

http://bbs.kafan.cn/thread-428567-1-1.html
390次更新和这个一样

来源http://b.wuc7.com/xx.exe

[病毒样本] mm.exe 第365次更新 3月14日第2次更新

回复 30楼 sam.to 的帖子

回复 34楼 sam.to 的帖子

回复 37楼 sam.to 的帖子

浏览过的版块