費爾全掛樣本 139隻

显示全部楼层 · 发表于 2007-10-4 23:01:36

http://pickup.mofile.com/9016490402195496

解壓縮密碼:virus

显示全部楼层 · 发表于 2007-10-5 00:21:54

使用 AntiVirusKit 进行病毒扫描
版本
病毒签名 10/4/2007
开始时间: 10/5/2007 00:15
引擎: KAV 引擎 (AVK 17.8514), AVAST 引擎 (AVKB 17.395)
高启发: 开启
文件: 开启
系统区域: 关闭

扫描选中目录和文件...
项目: 106.html
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Virus.Win32.Agent.i (KAV 引擎)
项目: 11.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Packed.Win32.Tibs.an (KAV 引擎)
项目: 112.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Win32:Crypt-SD [Trj] (AVAST 引擎)
项目: [PECompact]
检查档案: D:\病毒测试\临时解压\test2\114.exe
状态: 发现病毒
病毒: Win32:Piensa [Trj] (AVAST 引擎)
项目: 114.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Win32:Piensa [Trj] (AVAST 引擎)
项目: 115.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: not-a-virus:RemoteAdmin.Win32.WinVNC-based.j (KAV 引擎)
项目: 120.exe
路径: D:\病毒测试\临时解压\test2
状态: 未知
病毒: Win32:Adware-gen. [Adw] (AVAST 引擎)
项目: 122.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Win32:Trojan-gen. {Other} (AVAST 引擎)
项目: 123.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Win32:Ldpinch-IG [Trj] (AVAST 引擎)
项目: 125.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: not-a-virus:RiskTool.Win32.WFPDisabler.a (KAV 引擎)
项目: 126.gif
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Exploit.JS.Phel.av (KAV 引擎)
项目: 128.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Win32:Agent-KNG [Trj] (AVAST 引擎)
项目: [MEW]
检查档案: D:\病毒测试\临时解压\test2\129.exe
状态: 发现病毒
病毒: Win32:Agent-JWU [Trj] (AVAST 引擎)
项目: 129.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Win32:Agent-JWU [Trj] (AVAST 引擎)
项目: 13.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Win32:Delf-FER [Trj] (AVAST 引擎)
项目: data.rar/55.sfx.exe/data.rar 55.exe
检查档案: D:\病毒测试\临时解压\test2\133.com
状态: 发现病毒
病毒: Trojan-PSW.Win32.Magania.kb (KAV 引擎)
项目: 133.com
路径: D:\病毒测试\临时解压\test2
状态: 未知
病毒: Trojan-PSW.Win32.Magania.kb (KAV 引擎)
项目: 137.vbs
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Virus.VBS.Agent.f (KAV 引擎)
项目: 138.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Worm.Win32.Viking.jf (KAV 引擎)
项目: 15.sys
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Win32:Agent-KHP [Trj] (AVAST 引擎)
项目: 19.htm
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Trojan-Downloader.HTML.Agent.dt (KAV 引擎)
项目: 20.htm
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Exploit.HTML.Agent.h (KAV 引擎)
项目: 24.htm
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Trojan-Downloader.JS.Psyme.jh (KAV 引擎)
项目: 25.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Trojan.Win32.Delf.zc (KAV 引擎)
项目: 33.sys
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Win32:Agent-KHP [Trj] (AVAST 引擎)
项目: 40.bat
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Trojan.BAT.Zapchast (KAV 引擎)
项目: 47.exe
路径: D:\病毒测试\临时解压\test2
状态: 未知
病毒: Win32:Cryptic-OU [Trj] (AVAST 引擎)
项目: 49.exe
路径: D:\病毒测试\临时解压\test2
状态: 未知
病毒: Trojan.Win32.Pakes (KAV 引擎)
项目: ebnmj.exe
检查档案: D:\病毒测试\临时解压\test2\5.exe
状态: 发现病毒
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 5.exe
路径: D:\病毒测试\临时解压\test2
状态: 未知
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 52.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Trojan-PSW.Win32.Banker.f (KAV 引擎)
项目: 57.exe
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Win32:Crypt-VT [Trj] (AVAST 引擎)
项目: 67.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Win32:Adware-gen. [Adw] (AVAST 引擎)
项目: 68.htm
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: VBS:Malware [Html] (AVAST 引擎)
项目: data.rar/1.sfx.exe/data.rar 1.exe
检查档案: D:\病毒测试\临时解压\test2\72.com
状态: 发现病毒
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 72.com
路径: D:\病毒测试\临时解压\test2
状态: 病毒,文件删除
病毒: Packed.Win32.NSAnti.r (KAV 引擎)
项目: 87.exe
路径: D:\病毒测试\临时解压\test2
状态: 发现病毒
病毒: Win32:Adware-gen. [Adw] (AVAST 引擎)
病毒分析完成: 10/5/2007 00:18
139 文件被检查
32 感染文件发现
0 发现可疑文件

显示全部楼层 · 发表于 2007-10-5 01:18:34

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\test2'
C:\Documents and Settings\Administrator\桌面\test2\test2\100.dll
   [DETECTION] Is the Trojan horse TR/Spy.Agent.32768
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\106.html
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Bumei
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\110.bat
   [DETECTION] Contains suspicious code HEUR/Crypted.E
   [INFO]    The file was moved to '47352053.qua'!
C:\Documents and Settings\Administrator\桌面\test2\test2\112.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\114.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Piensa.A
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\115.exe
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/Obsidium). Please verify the origin of the file
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\122.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.BV.393 Backdoor server programs
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\125.exe
   [DETECTION] Contains detection pattern of the SPR/WFPDis.A program
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\126.gif
   [DETECTION] Is the Trojan horse TR/Exploit.Obscuredhtml.B
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\128.exe
   [DETECTION] Is the Trojan horse TR/HackTool.B
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\129.exe
   [DETECTION] Contains detection pattern of the SPR/Tool.Chin.AB program
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\133.com
   [DETECTION] Contains detection pattern of the dropper DR/PSW.Magania.KB.11
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\137.vbs
   [DETECTION] Contains detection pattern of the VBS script virus VBS/Dldr.Agent.F
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\138.exe
   [DETECTION] Is the Trojan horse TR/Drop.NSAnti.N
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\15.sys
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BDSearch.CT
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\18.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Agent.H.2
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\19.htm
   [DETECTION] Is the Trojan horse TR/Dldr.HTML.Agent.DT
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\20.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Agent.H
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\21.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Agent.H.1
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\23.asp
   [DETECTION] Is the Trojan horse TR/ASP.QQPass.A
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\24.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Ascii.4
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\25.exe
   [DETECTION] Is the Trojan horse TR/Dldr.sofky.1
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\33.sys
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BDSearch.CT
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\40.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/KillAV
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\49.exe
   [DETECTION] Is the Trojan horse TR/Pakes.A.295
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\5.exe
  [0] Archive type: ZIP SFX (self extracting)
  --> ebnmj.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\50.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Wdoor.R Backdoor server programs
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\51.exe
   [DETECTION] Contains detection pattern of the SPR/Hacktool.Getwebshell program
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\57.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\68.htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/IFRAME
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\72.com
   [DETECTION] Contains detection pattern of the dropper DR/PCK.NSAnti.R.62
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\87.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BDSearch.CBT
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\桌面\test2\test2\95.asp
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/ASP.WebShell.2 Backdoor server programs
   [INFO]    The file was deleted!

End of the scan: 星期五 2007年10月5日  01:17
Used time: 00:48 min

The scan has been done completely.

   2 Scanning directories
176 Files were scanned
   32 viruses and/or unwanted programs were found
   1 Files were classified as suspicious:
   32 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
144 Files not concerned
   5 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-10-5 08:56:14

蜘蛛全挂

显示全部楼层 · 发表于 2007-10-5 09:12:08

----------
[凝逸反毒] (http://hi.baidu.com/503165656)

[凝逸.扫描病毒引擎-日志] 2007.10.5 9:11:50

文件:F:\070926\test2\test2\103.exe | 感染:virus [1003>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\11.exe | 感染:Trojan.Packed.142 [6037>20070726_dw0001.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\110.bat | 感染:Trojan.PWS.Wsgame [1094>20070729_ny0001.axx]3(4.5)
操作:删除文件
文件:F:\070926\test2\test2\112.exe | 感染:virus [1001>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\115.exe | 感染:virus [1195>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\120.exe | 感染:Trojan.PSW.GamePass [245>20070801_ny0002.axx]2(1.1)
操作:删除文件
文件:F:\070926\test2\test2\123.exe | 感染:virus [998>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\125.exe | 感染:virus [8444>20070726_dw0001.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\127.exe | 感染:virus [1198>20070816_ny0006.axx]3(4.5)
操作:删除文件
文件:F:\070926\test2\test2\128.exe | 感染:virus [996>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\129.exe | 感染:virus [993>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\130.exe | 感染:virus [994>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\133.com | 感染:virus [1086>20070816_ny0006.axx]3(10.30)
操作:删除文件
文件:F:\070926\test2\test2\138.exe | 感染:Win32.HLLW.Gavir.54 [4865>20070726_dw0001.axx]3(3.4)
操作:删除文件
文件:F:\070926\test2\test2\25.exe | 感染:virus [11124>20070726_dw0001.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\28.dll | 感染:Trojan.PWS.Wsgame [1027>20070729_ny0001.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\29.css | 感染:virus [532>20070819_ny0008.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\35.exe | 感染:virus [209>20070802_ny0003.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\39.exe | 感染:virus [140>20070824_ny0011.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\49.exe | 感染:virus [1147>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\5.exe | 感染:virus [1098>20070816_ny0006.axx]3(28.28)
操作:删除文件
文件:F:\070926\test2\test2\50.exe | 感染:virus [1006>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\51.exe | 感染:virus [528>20070924_ny0023.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\52.exe | 感染:virus [820>20070816_ny0006.axx]3(3.8)
操作:清除病毒
文件:F:\070926\test2\test2\57.exe | 感染:virus [1148>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\61.exe | 感染:virus [913>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\62.scr | 感染:virus [1199>20070816_ny0006.axx]3(14.14)
操作:删除文件
文件:F:\070926\test2\test2\67.exe | 感染:Trojan.PSW.GamePass [245>20070801_ny0002.axx]2(1.1)
操作:删除文件
文件:F:\070926\test2\test2\71.exe | 感染:virus [1198>20070816_ny0006.axx]3(4.5)
操作:删除文件
文件:F:\070926\test2\test2\72.com | 感染:virus [1092>20070816_ny0006.axx]3(5.6)
操作:删除文件
文件:F:\070926\test2\test2\83.tmp | 感染:Trojan.PWS.Wsgame [1095>20070729_ny0001.axx]3(5.5)
操作:删除文件
文件:F:\070926\test2\test2\84.exe | 感染:virus [1005>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\87.exe | 感染:virus [526>20070819_ny0008.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\9.dll | 感染:virus [296>20070924_ny0023.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\92.exe | 感染:Trojan.PWS.Wsgame [1075>20070729_ny0001.axx]3(1.1)
操作:删除文件
文件:F:\070926\test2\test2\99.exe | 感染:virus [1004>20070816_ny0006.axx]3(1.1)
操作:删除文件

扫描完成|病毒:36 文件:139|耗时:27039
----------

显示全部楼层 · 发表于 2007-10-5 09:29:17

卡巴不行了 18个

显示全部楼层 · 发表于 2007-10-5 09:44:35

n%都不是毒

显示全部楼层 · 发表于 2007-10-5 10:54:56

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\10.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:39936  MD5:3d5dda110fb168950037b8d2bf566a7f

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\103.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:12800  MD5:1232b01057f06ec6b8f8c08f057b3a63

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\105.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:139776  MD5:4857f188d68cad52dda15d748599c5e9

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\106.html]
                  …………发现Spy！报告:[2]
文件信息:  大小:43747  MD5:075ecf9c9aa25fbd295ee89163464b42

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\108.txt]
                  …………发现Spy！报告:[2]
文件信息:  大小:18340  MD5:3cbefe3885d918c8d00a6f8d7ff1013c

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\11.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:133955  MD5:4b3bff81b68f204a6e490147d14663b0

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\110.bat]
                  …………发现Spy！报告:[2]
文件信息:  大小:17142  MD5:f754290e645c1942491a8fbb971cc67c

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\112.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:66665  MD5:5cd6d3f751f9f981d73c34143d0da470

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\114.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:555008  MD5:7fe08d91690bfada54f207204592fe3b

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\115.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:660480  MD5:ab60f3c51064a28fe80f144583631dfe

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\12.OCX]
                  …………发现Spy！报告:[2]
文件信息:  大小:100864  MD5:53cefdb13da228aad16a7aa60e2bd2d5

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\122.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:40118  MD5:9a599e74c3ca53d62c69678256150e03

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\123.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:237928  MD5:b531574e07dfb3def2558c0c439c7b9e

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\124.chm]
                  …………发现Spy！报告:[2]
文件信息:  大小:46369  MD5:7bd8523d282d2af92a009b9c686ea7e1

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\126.gif]
                  …………发现Spy！报告:[2]
文件信息:  大小:11836  MD5:03eca28a15e2654167c4690102f48d1f

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\128.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:83703  MD5:32697f29ad23ff07f99dcad3d5b7ea64

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\129.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:785335  MD5:1551b2406c58c31aa621daf7d58664e3

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\130.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:20796  MD5:bdf8b5f70db778c5372e5e35a0028125

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\135.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:69131  MD5:c2fa43e0d30d5dbb9b7e85c698206255

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\137.vbs]
                  …………发现Spy！报告:[2]
文件信息:  大小:6347  MD5:cafdaf40268dc6fc71944ca823430e62

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\138.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:79754  MD5:13f4da121c44d44173fd06c5676ca0e6

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\139.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:102400  MD5:6cf000c43180c3e433ca02af9d862b97

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\14.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:112152  MD5:213822072085b5bbad9af30ab577d817

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\16.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:102400  MD5:6cf000c43180c3e433ca02af9d862b97

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\25.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:330240  MD5:d04a160d9df29a071c7d7dfbe1b1ad03

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\28.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:61440  MD5:12aa2da30d1d2889511b4c1d14fb99b9

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\35.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:32768  MD5:52d3e6b2f4d5bf7f35c900999beca799

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\39.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:32256  MD5:0de5586a553ed5ee21e6938231a48b1e

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\41.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:16754  MD5:be0681d2836093d36fbb178ad10830f8

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\43.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:14135  MD5:22f4fc14e2393e89cb95c5120e2f3f52

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\49.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:340480  MD5:2774c3e038cfc8b786bff57507488b33

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\50.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:288256  MD5:4e4a49710209e46f55905891636cb3d5

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\52.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:112751  MD5:d4cae9c69056e8d589cb88ef4c8ab8b2

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\56.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:45056  MD5:2f615d1007b5a1e1fff6e5cb5041dfbf

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\6.JPG]
                  …………发现Spy！报告:[2]
文件信息:  大小:199285  MD5:d5c8b34e33e8c4ceb683e9c72ca42860

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\60.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:99328  MD5:ede60ce68508b2b574de96da77ae2e33

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\61.exe]
                  …………发现Spy！报告:[2] [8] HOOK者
文件信息:  大小:43520  MD5:044ab744f4f49f5640766416bc10c8b7

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\65.txt]
                  …………发现Spy！报告:[2] [6] 注入者[7] 映像劫持者
文件信息:  大小:10967  MD5:13d33aa46d021c2ce31437a3dfaffe80

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\66.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:43833  MD5:d4f711e5673a05fb771e82dc11ee00f6

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\68.htm]
                  …………发现Spy！报告:[2]
文件信息:  大小:6970  MD5:cea13459965a679edf560ea18ab84cc1

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\69.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:36864  MD5:d60fdf70a7b30ac11582ca60d7e7134f

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\70.VXD]
                  …………发现Spy！报告:[2]
文件信息:  大小:12426  MD5:fe83e46806541c7bc68dd9150afff3b0

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\73.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:11661  MD5:2c7e7ab1903e64ed1d71fb2dae6952df

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\75.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:11784  MD5:5de09e9053dd38ea27b5269e2049b6e3

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\76.txt]
                  …………发现Spy！报告:[2]
文件信息:  大小:5800  MD5:3a7971a74a419e028f79de81268f5c45

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\8.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:147456  MD5:e2a711c99a1d09ac472c787c429e5268

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\80.db]
                  …………发现Spy！报告:[2]
文件信息:  大小:22016  MD5:4c6810e8bf9af41b35abf063cdca0ac2

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\83.tmp]
                  …………发现Spy！报告:[2]
文件信息:  大小:15662  MD5:45307a7aa2eb643486f2934057a08e4c

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\84.exe]
                  …………发现Spy！报告:[2] [1]
文件信息:  大小:2823815  MD5:5da7cedcfaef044a9b7f90375c623096

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\87.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:85344  MD5:2312b02cf8c50bc32cdb0686a9c3ac96

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\88.htm]
                  …………发现Spy！报告:[2]
文件信息:  大小:5507  MD5:d122408c88ea147d35137fa775d78d32

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\89.txt]
                  …………发现Spy！报告:[2]
文件信息:  大小:4342  MD5:f45b55bbcc73d77fdc9296c5be41df25

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\90.txt]
                  …………发现Spy！报告:[2]
文件信息:  大小:4342  MD5:f45b55bbcc73d77fdc9296c5be41df25

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\91.htm]
                  …………发现Spy！报告:[2]
文件信息:  大小:5507  MD5:d122408c88ea147d35137fa775d78d32

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\92.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:42496  MD5:06280768304cf080b6bd2f2a793f6b8c

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\93.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:90624  MD5:dabf0bdd96ae2ea337f78ff86a179a3b

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\94.jpg]
                  …………发现Spy！报告:[2]
文件信息:  大小:69519  MD5:068e7eb615e22fe8fad385f7b1944063

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\95.asp]
                  …………发现Spy！报告:[2]
文件信息:  大小:12288  MD5:9308bc46da72463dafa93be6719f29ed

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\97.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:6144  MD5:79fc5ecbfd3be139cc809ff6eb08597c

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\98.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:6144  MD5:83e192dd9a24fe1d87346094c10525da

[C:\Documents and Settings\Administrator\桌面\Virus\test2\test2\99.exe]
                  …………发现Spy！报告:[5] 下载者
文件信息:  大小:28672  MD5:178d1686ae446296f5752efa7ed42197

文件数:139 病毒数:61  比重:0.4388489208633
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

显示全部楼层 · 发表于 2007-10-5 12:22:39

不定期冒泡中

汗..受不了我自己这个了..居然把我的notepad.exe也删了..
启发跟不启发..差距好大..看来不启发不行了..
垫底垫不成了，安铁诺垫底了

安铁诺.....23个

显示全部楼层 · 发表于 2007-10-5 13:20:19

Start of the scan: 2007年10月5日  13:19

Starting the file scan:

Begin scan in 'F:\TDdownload\test2'
F:\TDdownload\test2\test2\100.dll
   [DETECTION] Is the Trojan horse TR/Spy.Agent.32768
   [INFO]    The file was moved to '4735c98d.qua'!
F:\TDdownload\test2\test2\106.html
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Bumei
   [INFO]    The file was moved to '473bc98d.qua'!
F:\TDdownload\test2\test2\11.exe
   [DETECTION] Is the Trojan horse TR/Small.DBY.DB
   [INFO]    The file was moved to '4733c98e.qua'!
F:\TDdownload\test2\test2\110.bat
   [DETECTION] Contains suspicious code HEUR/Crypted.E
   [INFO]    The file was moved to '4735c98e.qua'!
F:\TDdownload\test2\test2\112.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [INFO]    The file was moved to '4737c98e.qua'!
F:\TDdownload\test2\test2\114.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Piensa.A
   [INFO]    The file was moved to '4739c98e.qua'!
F:\TDdownload\test2\test2\122.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.BV.393 Backdoor server programs
   [INFO]    The file was moved to '4737c98f.qua'!
F:\TDdownload\test2\test2\125.exe
   [DETECTION] Contains detection pattern of the SPR/WFPDis.A program
   [INFO]    The file was moved to '473ac98f.qua'!
F:\TDdownload\test2\test2\126.gif
   [DETECTION] Is the Trojan horse TR/Exploit.Obscuredhtml.B
   [INFO]    The file was moved to '473bc98f.qua'!
F:\TDdownload\test2\test2\128.exe
   [DETECTION] Is the Trojan horse TR/HackTool.B
   [INFO]    The file was moved to '473dc98f.qua'!
F:\TDdownload\test2\test2\129.exe
   [DETECTION] Contains detection pattern of the SPR/Tool.Chin.AB program
   [INFO]    The file was moved to '473ec98f.qua'!
F:\TDdownload\test2\test2\133.com
   [DETECTION] Contains detection pattern of the dropper DR/PSW.Magania.KB.11
   [INFO]    The file was moved to '4738c990.qua'!
F:\TDdownload\test2\test2\137.vbs
   [DETECTION] Contains detection pattern of the VBS script virus VBS/Dldr.Agent.F
   [INFO]    The file was moved to '473cc990.qua'!
F:\TDdownload\test2\test2\138.exe
   [DETECTION] Is the Trojan horse TR/Drop.NSAnti.N
   [INFO]    The file was moved to '473dc990.qua'!
F:\TDdownload\test2\test2\18.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Agent.H.2
   [INFO]    The file was moved to '4733c996.qua'!
F:\TDdownload\test2\test2\19.htm
   [DETECTION] Is the Trojan horse TR/Dldr.HTML.Agent.DT
   [INFO]    The file was moved to '4733c997.qua'!
F:\TDdownload\test2\test2\20.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Agent.H
   [INFO]    The file was moved to '469624bf.qua'!
F:\TDdownload\test2\test2\21.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Agent.H.1
   [INFO]    The file was moved to '4733c98f.qua'!
F:\TDdownload\test2\test2\23.asp
   [DETECTION] Is the Trojan horse TR/ASP.QQPass.A
   [INFO]    The file was moved to '4733c991.qua'!
F:\TDdownload\test2\test2\24.htm
   [DETECTION] Contains detection pattern of the exploits EXP/HTML.Ascii.4
   [INFO]    The file was moved to '4733c992.qua'!
F:\TDdownload\test2\test2\25.exe
   [DETECTION] Is the Trojan horse TR/Dldr.sofky.1
   [INFO]    The file was moved to '4733c993.qua'!
F:\TDdownload\test2\test2\40.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/KillAV
   [INFO]    The file was moved to '4733c9f0.qua'!
F:\TDdownload\test2\test2\49.exe
   [DETECTION] Is the Trojan horse TR/Pakes.A.295
   [INFO]    The file was moved to '469624a8.qua'!
F:\TDdownload\test2\test2\5.exe
  [0] Archive type: ZIP SFX (self extracting)
  --> ebnmj.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [INFO]    The file was moved to '476ac98c.qua'!
F:\TDdownload\test2\test2\50.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Wdoor.R Backdoor server programs
   [INFO]    The file was moved to '469624c1.qua'!
F:\TDdownload\test2\test2\51.exe
   [DETECTION] Contains detection pattern of the SPR/Hacktool.Getwebshell program
   [INFO]    The file was moved to '469624a0.qua'!
F:\TDdownload\test2\test2\57.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [INFO]    The file was moved to '4733c995.qua'!
F:\TDdownload\test2\test2\68.htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/IFRAME
   [INFO]    The file was moved to '469624a7.qua'!
F:\TDdownload\test2\test2\72.com
   [DETECTION] Contains detection pattern of the dropper DR/PCK.NSAnti.R.62
   [INFO]    The file was moved to '4733c990.qua'!
F:\TDdownload\test2\test2\95.asp
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/ASP.WebShell.2 Backdoor server programs
   [INFO]    The file was moved to '469624a4.qua'!

[病毒样本] 費爾全掛樣本 139隻

本帖子中包含更多资源