30ge[MD5略]

显示全部楼层 · 发表于 2007-10-8 18:02:29

22.........

显示全部楼层 · 发表于 2007-10-8 18:07:31

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 332
Paranoia Database - 6935
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder

C:\Documents and Settings\uhthn\Desktop\New Folder\tempO.exe - Suspected Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\zt.exe - Suspected MalwareDetector:Generic.PSW.3
C:\Documents and Settings\uhthn\Desktop\New Folder\0.exe - Infected Win32.Trojan-PSW.Delf.b
C:\Documents and Settings\uhthn\Desktop\New Folder\1(1).exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\1(4)(1).exe - Suspected Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\2.exe - Suspected Trojan-PSW.Small.1
C:\Documents and Settings\uhthn\Desktop\New Folder\02jh.exe - Suspected Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\3(1)(1)(2).exe - Suspected MalwareDetector:Generic.PSW.3
C:\Documents and Settings\uhthn\Desktop\New Folder\3(1)(1).exe - Suspected MalwareDetector:Generic.PSW.3
C:\Documents and Settings\uhthn\Desktop\New Folder\4(1)(2).exe - Suspected MalwareDetector:Generic.PSW.3
C:\Documents and Settings\uhthn\Desktop\New Folder\4.exe - Suspected Trojan-PSW.Small.1
C:\Documents and Settings\uhthn\Desktop\New Folder\5.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\6.exe - Suspected Trojan-PSW.Small.1
C:\Documents and Settings\uhthn\Desktop\New Folder\7(2)(1)(1).exe - Infected Trojan-PSW.OnLineGames.42
C:\Documents and Settings\uhthn\Desktop\New Folder\7.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\8.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\9.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\10.exe - Suspected Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\11.exe - Suspected Trojan-PSW.Small.1
C:\Documents and Settings\uhthn\Desktop\New Folder\12.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\13.exe - Suspected Trojan-PSW.Small.1
C:\Documents and Settings\uhthn\Desktop\New Folder\14.exe - Suspected Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\15.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\menghuan1.exe - Suspected Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\menghuan.exe - Suspected MalwareDetector:Generic.PSW.3
C:\Documents and Settings\uhthn\Desktop\New Folder\mh(1).exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder\mminstall.exe - Suspected MalwareDetector:Generic.PSW.1
C:\Documents and Settings\uhthn\Desktop\New Folder\qiji.exe - Suspected Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\qjsj.exe - Suspected MalwareDetector:Generic.PSW.3
C:\Documents and Settings\uhthn\Desktop\New Folder\smss.exe - Suspected Trojan-PSW.OnLineGames.2

30 Files scanned
2 Infected files found
27 Suspected files found
0 Files cured
2 Files deleted

显示全部楼层 · 发表于 2007-10-8 18:58:09

[凝逸反毒] (http://hi.baidu.com/503165656)

[凝逸.扫描病毒引擎-日志] 2007.10.9 18:59:31

文件:F:\071009\30\tempO.exe | 感染:virus [59>20071008_ny0027.axx]3(3.3)
操作:删除文件
文件:F:\071009\30\0.exe | 感染:virus [20>20071008_ny0027.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\1(1).exe | 感染:virus [35>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\1(4)(1).exe | 感染:virus [22>20071008_ny0027.axx]3(2.3)
操作:删除文件
文件:F:\071009\30\2.exe | 感染:virus [28>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\02jh.exe | 感染:virus [21>20071008_ny0027.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\4.exe | 感染:virus [37>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\5.exe | 感染:virus [33>20071007_ny0026.axx]2(1.1)
操作:删除文件
文件:F:\071009\30\6.exe | 感染:virus [26>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\7(2)(1)(1).exe | 感染:virus [15>20071008_ny0027.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\7.exe | 感染:virus [36>20071007_ny0026.axx]2(1.1)
操作:删除文件
文件:F:\071009\30\8.exe | 感染:virus [34>20071007_ny0026.axx]2(1.1)
操作:删除文件
文件:F:\071009\30\9.exe | 感染:virus [23>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\10.exe | 感染:virus [31>20071007_ny0026.axx]2(1.1)
操作:删除文件
文件:F:\071009\30\11.exe | 感染:virus [25>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\12.exe | 感染:virus [30>20071007_ny0026.axx]2(1.1)
操作:删除文件
文件:F:\071009\30\13.exe | 感染:virus [38>20071007_ny0026.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\14.exe | 感染:virus [254>20071008_ny0027.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\15.exe | 感染:virus [32>20071007_ny0026.axx]2(1.1)
操作:删除文件
文件:F:\071009\30\menghuan1.exe | 感染:virus [49>20071008_ny0027.axx]3(1.1)
操作:删除文件
文件:F:\071009\30\menghuan.exe | 感染:virus [48>20071008_ny0027.axx]3(5.5)
操作:删除文件
文件:F:\071009\30\smss.exe | 感染:virus [1781>20071006_ny0025.axx]2(1.1)
操作:删除文件

扫描完成|病毒:22 文件:30|耗时:13229
----------

显示全部楼层 · 发表于 2007-10-8 19:01:59

江民8个

显示全部楼层 · 发表于 2007-10-8 19:07:41

[扫描路径] C:\Documents and Settings\wangcheng\桌面\30.rar
>>C:\Documents and Settings\wangcheng\桌面\30.rar\zt.exe 已被感染了 :  Trojan.PWS.Gamania.5046
>>>C:\Documents and Settings\wangcheng\桌面\30.rar\0.exe 已被感染了 :  Win32.HLLW.Autoruner.origin
>>C:\Documents and Settings\wangcheng\桌面\30.rar\1(1).exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\2.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\3(1)(1)(2).exe 已被感染了 :  Trojan.PWS.Gamania.5046
>>C:\Documents and Settings\wangcheng\桌面\30.rar\3(1)(1).exe 已被感染了 :  Trojan.PWS.Gamania.5046
>>>C:\Documents and Settings\wangcheng\桌面\30.rar\4(1)(2).exe 已被感染了 :  Trojan.PWS.Gamania.origin
>C:\Documents and Settings\wangcheng\桌面\30.rar\4.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\5.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\6.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\7(2)(1)(1).exe 已被感染了 :  Trojan.PWS.Wsgame.1632
>>C:\Documents and Settings\wangcheng\桌面\30.rar\7.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\8.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\9.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\10.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\11.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\12.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\13.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\14.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\15.exe 已被感染了 :  Trojan.PWS.Wsgame.1242
>>C:\Documents and Settings\wangcheng\桌面\30.rar\menghuan1.exe 已被感染了 :  Trojan.MulDrop.9208
>>>C:\Documents and Settings\wangcheng\桌面\30.rar\menghuan.exe 已被感染了 :  Trojan.PWS.Gamania.origin
>C:\Documents and Settings\wangcheng\桌面\30.rar\mh(1).exe 已被感染了 :  Trojan.MulDrop.6156
>>>C:\Documents and Settings\wangcheng\桌面\30.rar\qjsj.exe 已被感染了 :  Trojan.PWS.Gamania.origin

显示全部楼层 · 发表于 2007-10-8 19:53:39

Starting the file scan:

Begin scan in 'D:\30.rar'
D:\30.rar
  [0] Archive type: RAR
  --> tempO.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> zt.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ejq
  --> 0.exe
   [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
  --> 1(1).exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 1(4)(1).exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> 2.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 02jh.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> 3(1)(1)(2).exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ejq
  --> 3(1)(1).exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ejq
  --> 4(1)(2).exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ejx.1
  --> 4.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> 5.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 6.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 7(2)(1)(1).exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 7.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 8.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 9.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 10.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 11.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 12.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 13.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> 14.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ejv
  --> 15.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> menghuan1.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> menghuan.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ejx
  --> mh(1).exe
   [DETECTION] Is the Trojan horse TR/PSW.LdPinch.jm1
  --> qiji.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ekb
  --> qjsj.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> smss.exe
   [DETECTION] Is the Trojan horse TR/Agent.2596
   [INFO]    The file was moved to '47381a56.qua'!
The scan has been done completely.

   0 Scanning directories
   32 Files were scanned
   27 viruses and/or unwanted programs were found
   2 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   5 Files not concerned
   1 Archives were scanned
   0 Warnings
   0 Notes

[病毒样本] 30ge[MD5略]

本帖子中包含更多资源

浏览过的版块