朋友U盘里的东西再次更新!!!微点来测试

gho

已删除: 木马程序 Trojan-Downloader.Win32.Agent.bkw        文件: E:\Documents and Settings\Administrator\桌面\新建文件夹\NTDRV.EXE
已删除: 木马程序 Trojan-Downloader.Win32.Agent.bkw        文件: E:\Documents and Settings\Administrator\桌面\新建文件夹\SETUP.EXE
已删除: 木马程序 Trojan-Downloader.Win32.Agent.bkw        文件: E:\Documents and Settings\Administrator\桌面\新建文件夹\Upys.exe

shxzj

红伞v8一个都没有报？

promised

C:\ABC\haha.rar:\新建文件夹\NTDRV.EXE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\haha.rar:\新建文件夹\SETUP.EXE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\haha.rar:\新建文件夹\Upys.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现

LUKY

红伞竟然不报，费解……

shxzj

红伞到现在才报
a-squared 3.0.0.126 2007.12.02 2007-12-02 - 6.846
AntiVir 7.6.0.35 7.0.1.32 2007-12-02 TR/Dldr.Agent.bkw.44 2.903
Arcavir 1.0.4 200712021651 2007-12-02 - 1.434
AVAST 1.0.8 071202-0 2007-12-02 Win32:Tufik 3.342
AVG 7.5.49.442 269.16.10/1160 2007-11-29 - 2.578
BitDefender 7.60825.957590 7.16081 2007-12-03 DeepScan:Generic.Malware.SPBPkg.2FE22BBA 3.768
CA (VET) 9.0.0.143 31.3.5340 2007-12-01 - 0.812
ClamAV  0.91.2 4980 2007-12-03 - 0.822
Comodo 2.11 2.0.0.361 2007-12-02 - 0.958
CP Secure 1.1.0.655 2007.12.03 2007-12-03 - 5.464
Dr.WEB 4.44.0.9170 2007.12.02 2007-12-02 Trojan.DownLoader.4268 3.431
ewido 4.0.0.2 2007.12.02 2007-12-02 - 1.963
F-PROT 4.4.1.52 20071202 2007-12-02 Possible W32/Heuristic-162!Eldorado (not disinfectable) 1.344
F-SECURE 5.51.6100 2007.12.03.01 2007-12-03 Trojan-Downloader.Win32.Agent.bkw [AVP] 2.934
IKARUS T3.1.01.15 2007.11.26.69895 2007-11-26 Trojan-Downloader.Win32.Zlob.and 1.482
MKS_VIR 2.01 2007.12.02 2007-12-02 - 3.980
NOD32 2.70.10 2697 2007-12-02 probably unknown WIN32 virus 0.048
NORMAN 5.91.08 5.90 2007-11-29 Sandbox: W32/Suspicious_U.gen.dropper 31.999
nProtect 2007-12-03.00 1075931 2007-12-03 Trojan-Downloader/W32.Agent.39424.J 8.994
Prevx V2 20071203 2007-12-03 - 15.611
QuickHeal 9.00 2007.12.01 2007-12-01 - 3.246
SOPHOS 2.49.1 4.21 2007-12-03 W32/Tufik-Fam 8.184
The Hacker 6.2.9 v00147 2007-12-01 - 1.225
VBA32 3.12.2.5 20071202.0223 2007-12-02 - 4.965
ViRobot 20071129 2007.11.29 2007-11-29 - 0.388
VirusBuster 4.3.19:9 9.115.17/11.0 2007-12-03 Win32.Tufik.C 3.400
卡巴斯基 5.5.10 2007.12.03 2007-12-03 Trojan-Downloader.Win32.Agent.bkw 5.792
安博士V3 2007.11.29.00 2007.11.29 2007-11-29 - 1.390
江民杀毒 10.00.650 2007.12.03 2007-12-03 TrojanDownloader.Agent.Zlob.v 1.107
熊猫卫士 9.04.03.0001 2007.12.02 2007-12-02 Suspicious file 5.337
瑞星 19.0 20.20.62.00 2007-12-02 Worm.Sadback.a 1.902
赛门铁克 1.3.0.24 20071202.001 2007-12-02 W32.Bufei 0.265
趋势 8.500-1001 4.858.05 2007-12-02 - 0.058
迈克菲 5.2.00 5175 2007-11-30 W32/Tufik.worm 1.778
金山毒霸 2007.6.20.249 2007.12.3 2007-12-03 Win32.BlackIce.b.931328 0.633
飞塔 2.81-3.11 8.446 2007-12-02 W32/Tufik.BKW!tr.dldr 1.846

[ 本帖最后由 shxzj 于 2007-12-3 14:21 编辑 ]

Graybird

Starting the file scan:

Begin scan in 'E:\haha.rar'
E:\haha.rar
  [0] Archive type: RAR
  --> н¨Îļþ¼Ð\NTDRV.EXE
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.bkw.43
  --> н¨Îļþ¼Ð\SETUP.EXE
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.bkw.44
  --> н¨Îļþ¼Ð\Upys.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.bkw.45
      [INFO]      The file was deleted!

千里同风

解压时微点提示（拼合而成）

气态的水

NOD32全部砍掉