收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 1X.过全部主流
123下一页
返回列表 发新帖
楼主: 八神 庵
 收起左侧

[病毒样本] 1X.过全部主流

  [复制链接]
aqingge
头像被屏蔽
发表于 2010-7-6 19:13:18 | 显示全部楼层
还是微点强  啊  
回复

举报

依班娜
发表于 2010-7-6 20:58:44 | 显示全部楼层
to avira
回复

举报

尤金卡巴斯基
发表于 2010-7-6 23:58:29 | 显示全部楼层
播放器.exe - Trojan.Win32.Techel.t

以上文件包含恶意代码,下次更新后即可查杀。感谢您的上报。

回复

举报

FDXLMC
发表于 2010-7-7 00:38:37 | 显示全部楼层
哈哈,没骗过卡巴2011
回复

举报

忧郁的迷糊酱
发表于 2010-7-7 00:40:35 | 显示全部楼层
病毒        2010-07-07  00:40:16        e:\desktop\virus\播放器\播放器.exe        Win32.Troj.Undef        处理成功(操作:删除)       
回复

举报

XMonster
发表于 2010-7-7 12:05:36 | 显示全部楼层
  护士表示无压力
回复

举报

爱你二万年
发表于 2010-7-7 14:03:21 | 显示全部楼层
360已报毒
回复

举报

zj7080447
发表于 2010-7-7 14:04:09 | 显示全部楼层
avast miss
回复

举报

潜水队员
发表于 2010-7-7 19:05:02 | 显示全部楼层
本帖最后由 潜水队员 于 2010.7.7 19:08 编辑

回复 9楼 wliao  的帖子
不知道你的是怎么拦截的?实机XPsp2,试用版,预升级两个版本试过,都没有拦下,注册表保护全保护,桌面摆满图标,自行安装了酷狗、风行,C/D/E盘根目录下生成 在线A片.exe,根目录多了个C:\WINDOWS1文件夹,里面还有伪装的360文件,有图有微点的技术支持文件(微点技术支持文件过大,传不上来了)。







创建时间 文件名 创建者
2010-07-07 18:08:42 C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS.DO C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE
2010-07-07 17:58:49 D:\迅雷\THUNDER\COMDLLS\TDATONCE_NOW.DLL D:\迅雷\THUNDER\PROGRAM\THUNDER5.EXE
2010-07-07 17:58:49 D:\迅雷\THUNDER\COMDLLS\TDATONCE_OLD_0.DLL D:\迅雷\THUNDER\PROGRAM\THUNDER5.EXE
2010-07-07 17:58:48 D:\迅雷\THUNDER\COMDLLS\XUNLEIBHO_NOW.DLL D:\迅雷\THUNDER\PROGRAM\THUNDER5.EXE
2010-07-07 17:58:48 D:\迅雷\THUNDER\COMDLLS\XUNLEIBHO_OLD_0.DLL D:\迅雷\THUNDER\PROGRAM\THUNDER5.EXE
2010-07-07 17:58:45 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\本站A片高清播放器_446_JQYY.EXE D:\MAXTHON\MAXTHON.EXE
2010-07-07 17:58:35 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\AMVNSJOK\%E6%9C%AC%E7%AB%99A%E7%89%87%E9%AB%98%E6%B8%85%E6%92%AD%E6%94%BE%E5%99%A8_446_JQYY[1].EXE D:\MAXTHON\MAXTHON.EXE
2010-07-07 17:56:55 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\FUNSHION\UPDATE\FUNSHIONINSTALL2.2.0.17\FUNSHIONINSTALL2.2.0.17.EXE C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\FUNSHIONSERVICE.EXE
2010-07-07 17:56:42 C:\BOOTBAK.INI C:\WINDOWS1\C.EXE
2010-07-07 17:56:36 C:\PROGRAM FILES\COMMON FILES\PPLIVE.EXE C:\WINDOWS1\C.EXE
2010-07-07 17:56:29 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\V0AJ0DJ2\PPLIVE[1].JS C:\WINDOWS1\C.EXE
2010-07-07 17:56:22 C:\WINDOWS1\C.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:21 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\I10PWR2I\CLICK[1].EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:11 E:\黄色图片.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:11 D:\在线A片.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:11 C:\黄色电影.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:11 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\UY0CVYP3\DYDY[1].EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:07 C:\WINDOWS\360\360SAFE.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:07 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\I10PWR2I\360SAFE[1].EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:04 C:\WINDOWS1\360TRAY.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:56:04 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\UY0CVYP3\360TRAY[1].EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:55:40 C:\PROGRAM FILES\KUGOU\KUGOU2010\ISX.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:40 C:\PROGRAM FILES\KUGOU\KUGOU2010\DSPPLUGINS\DSP_DEE.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:40 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_CD.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:40 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\LAME.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_MPC.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_MP4.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_OGG.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_MMS.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_MIDI.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_FLAC.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_DMO.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_ASF.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\AUDIOPLUGINS\KG_APE.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\KGDAEMON.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\MSDMO.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\WMADMOD.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:39 C:\PROGRAM FILES\KUGOU\KUGOU2010\CRASHREPORTER.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:38 C:\WINDOWS\SYSTEM32\KUGOO3DOWNXCONTROL.OCX C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:38 C:\PROGRAM FILES\KUGOU\KUGOU2010\KUGOO3DOWNXCONTROL.OCX C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:38 C:\PROGRAM FILES\KUGOU\KUGOU2010\SONGSYN.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:38 C:\PROGRAM FILES\KUGOU\KUGOU2010\MAKERING.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:37 C:\PROGRAM FILES\KUGOU\KUGOU2010\ENCODE.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:37 C:\PROGRAM FILES\KUGOU\KUGOU2010\KGPLAYER.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:36 C:\PROGRAM FILES\KUGOU\KUGOU2010\KUGOO.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:35 C:\PROGRAM FILES\KUGOU\KUGOU2010\UNINS000.EXE C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:35 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-QLB9G.TMP\ISX.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:35 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-QLB9G.TMP\_ISETUP\_SHFOLDR.DLL C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\IS-SQLHS.TMP\KUGOU_1616.TMP
2010-07-07 17:55:33 C:\WINDOWS1\KUGOU_1616.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:55:31 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\AMVNSJOK\KUGOU_1616[1].EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:55:19 C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS.DO C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE
2010-07-07 17:55:15 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\FUNSHION_CLONE.EXE C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\FUNSHIONINSTALL.EXE
2010-07-07 17:55:15 C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE
2010-07-07 17:55:15 C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS.DO C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE
2010-07-07 17:55:15 C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS.ORIGINAL-FS C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE
2010-07-07 17:55:12 C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS.DO C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE
2010-07-07 17:55:09 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\GETMACADDRESS.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:08 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\NSISDL.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:08 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\MD5DLL.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:07 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\EXECDOS.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:07 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\XML2FSPDATA.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:06 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\UNINSTALL.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\WINDOWS\SYSTEM32\COREAAC.AX C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\DRVC.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\COOK.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\RMOC3260.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\PNDX5032.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\PNCRT.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\EVID4226-VC80-MT.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\INSTALLLANGAM.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\XPSP2PATCH\FUNSHIONINSTALL.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\UPNP.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\QUALITY.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\FUNSHIONPLUGIN2.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\DBGHELP.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\ROUTERSETTING.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\LANGRESENAMERICAN.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\GETMACADDRESS.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\FUNSHIONSERVICE.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\FUNSHION.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\ENCRYPT.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:04 C:\PROGRAM FILES\FUNSHION ONLINE\FUNSHION\CRASHREPORT.EXE C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:01 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\EXECCMD.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:01 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\KILLPROCDLL.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:01 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\FINDPROCDLL.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:55:01 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\NSZ3.TMP\SYSTEM.DLL C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE
2010-07-07 17:54:58 C:\WINDOWS1\FUNSHIONINSTALL_C60423.EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
2010-07-07 17:54:58 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\V0AJ0DJ2\FUNSHIONINSTALL_C60423[1].EXE C:\WINDOWS\SYSTEM32\WSCRIPT.EXE


时间 处理结果 木马名称 木马进程名 木马文件创建者
2010-07-07 17:56:40 处理成功 Trojan-Clicker.Win32.Agent.a C:\PROGRAM FILES\COMMON FILES\PPLIVE.EXE C:\WINDOWS1\C.EXE
2010-07-07 17:56:36 延时删除 Trojan-Clicker.Win32.Agent.a C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\V0AJ0DJ2\PPLIVE[1].JS C:\WINDOWS1\C.EXE



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

xuhaohan7894
发表于 2010-7-7 22:47:30 | 显示全部楼层
A2杀了|~~
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-11-24 21:42 , Processed in 0.097217 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表