一个伪装的很好的木马下载器

605550642

操作提示：进入软件界面后，将关机时间设为一分钟。
在“选择关机类型”中选择“仅提示Time Out”后在关注一下你的防火墙
然后找找个各个硬盘下的隐藏文件，下了的还望顶一下！！！

[ 本帖最后由 605550642 于 2009-3-29 21:14 编辑 ]

Sherry.ai

Vista无法运行

小难民

NOD32启发了，卡巴 miss了。。。

Palkia

又见baidu。。。

山山
病毒 2009-03-29  20:23:59 C:\Documents and Settings\Administrator\桌面\生成物\qooshutdown.exe Win32.Troj.Unknown.a.147483 (木马程序) 隔离成功

Sebastian

Starting the file scan:

Begin scan in 'D:\new\�����.rar'
D:\new\�����.rar
  [0] Archive type: RAR
    --> adtuosa.exe
      [DETECTION] Contains recognition pattern of the DR/BaiduBar dropper
      --> [ProgramFilesDir]/baidu/bar/BDBar_tmp/BaiduBar.dll
        [DETECTION] Contains recognition pattern of the ADSPY/BaiduBar.Z.2 adware or spyware
    [NOTE]      A backup was created as '49cd688e.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!
Begin scan in 'D:\new\qooshutdown.zip'
D:\new\qooshutdown.zip
  [0] Archive type: ZIP
    --> qooshutdown.exe
      [DETECTION] Contains HEUR/Malware suspicious code
    [NOTE]      A backup was created as '4a3e6900.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!


End of the scan: 2009年3月29日  20:24
Used time: 00:01 Minute(s)

The scan has been done completely.

      0 Scanned directories
      9 Files were scanned
      2 Viruses and/or unwanted programs were found
      1 Files were classified as suspicious
      2 files were deleted
      0 Viruses and unwanted programs were repaired
      2 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
      6 Files not concerned
      3 Archives were scanned
      0 Warnings
      2 Notes

尤金卡巴斯基

To KL

一下子丫

BING126

McAfee miss

ledled

Name: Adware.BaiduSobar.C
Type: Trojan

Description:


Files:
c:\users\administrator\desktop\adtuosa.exe

kingsheet

卡巴不报