一下载者及其下载的东西和生成物[MD5: 1CC399 F6E7DE 594364 663D43 CFA1DB 7D34F8]

显示全部楼层 · 发表于 2007-11-10 08:45:00

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\de\m1.exe]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.jectd3
文件信息:  大小:88064  MD5:cfa1dbf0300a410bc98550beb75770a3

[C:\Documents and Settings\Administrator\桌面\Virus\de\main.exe]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.jectd3
文件信息:  大小:46080  MD5:7d34f8e8b1b1fe8083a4304e6c2986c7

文件数:6 病毒数:2  比重:0.3333333333333
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

显示全部楼层 · 发表于 2007-11-11 02:13:19

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 814
Paranoia Database - 48608
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\Uhthn\Desktop\New Folder

C:\Documents and Settings\Uhthn\Desktop\New Folder\winsys.sys - Infected GENERIC.MALWARE.910.5280 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder\winsys.exe - Suspected MaliciousScope:GENERIC.MALWARE.1
C:\Documents and Settings\Uhthn\Desktop\New Folder\m2.exe - Suspected WIN32.TROJAN-DOWNLOADER (HTTP://...)
C:\Documents and Settings\Uhthn\Desktop\New Folder\Rpcwcsamh.dll - Infected WIN32.BACKDOOR.DELF.2 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder\m1.exe - Suspected WIN32.TROJAN-DOWNLOADER (HTTP://...)
C:\Documents and Settings\Uhthn\Desktop\New Folder\main.exe - Infected WIN32.GENERIC.MALWARE.177.B400 - Deleted

6 Files scanned
3 Infected files found
3 Suspected files found
0 Files disinfected
3 Files deleted

[病毒样本] 一下载者及其下载的东西和生成物[MD5: 1CC399 F6E7DE 594364 663D43 CFA1DB 7D34F8]

浏览过的版块