43个

显示全部楼层 · 发表于 2007-12-2 12:25:18

全灭
C:\ABC\样本.rar:\sanguo.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\tl.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\wd.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\wl.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\wmgj.exe - 特征码 'Backdoor.Win32.Rbot.aeu' 被发现
C:\ABC\样本.rar:\wmsj.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\wow.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\zt.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\zx.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\zy.exe - 特征码 'Trojan-PWS.Win32.Delf.ix' 被发现
C:\ABC\样本.rar:\gdgji32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdwmi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdzxi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdzhtui32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\yejpyfkqwbgms.dll - 特征码 'Trojan-PWS.Win32.Agent.jp' 被发现
C:\ABC\样本.rar:\gddhi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdqqhxi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\HookHelp.sys - 特征码 'Trojan.Win32.Agent.anj' 被发现
C:\ABC\样本.rar:\kvdxsjis.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\kvdxsjma.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\kapjezy.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\gdmhi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\kapjeaz.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\gdwli32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdqji32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\Hookelp.sys - 特征码 'Trojan.Win32.Agent.anj' 被发现
C:\ABC\样本.rar:\gdjzi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdqqsgi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdtli32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\kawdcaz.dat - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\GenProtect.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\样本.rar:\rarjepi.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\rarjetl.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\sidjeaz.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\sidjezy.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\swrceac.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\swrcezc.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\GenProtect.exE - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\dahua.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\hx.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\jz.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\mh.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\qjsj.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar

[ 本帖最后由 promised 于 2007-12-2 12:32 编辑 ]

显示全部楼层 · 发表于 2007-12-2 12:28:34

ESS只有29个。。。

显示全部楼层 · 发表于 2007-12-2 12:30:28

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdwmi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11954  MD5:4f11b5177074c2bd996712f13c88181b

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdzxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12377  MD5:cbc096d3e4ab2cd877b6148ff89231cf

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdzhtui32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12725  MD5:ea3be06c4d74e330838221622dfe9417

[C:\Documents and Settings\Administrator\桌面\Virus\43333\yejpyfkqwbgms.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18423  MD5:c7c1b6e966e7a6635975c448b495f30e

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gddhi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:16223  MD5:9c464aa0878d4ba50df3cfe85c36b2ab

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdqqhxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11535  MD5:942536a2ce6e5e948b5a86291a0ae7b1

[C:\Documents and Settings\Administrator\桌面\Virus\43333\kvdxsjis.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15180  MD5:2dff1be1a0359b26719743557dcd6f90

[C:\Documents and Settings\Administrator\桌面\Virus\43333\kvdxsjma.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:23924  MD5:bc5a479fb54d4b3ed0b57c5ee1ece9e7

[C:\Documents and Settings\Administrator\桌面\Virus\43333\kapjezy.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:22886  MD5:846544504d8598f980f1bec17464a388

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdmhi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:17815  MD5:423a20f104c0a03d6d3d0bd607f52341

[C:\Documents and Settings\Administrator\桌面\Virus\43333\kapjeaz.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15227  MD5:610e195e2fc5eeed09969f58c5299c3f

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdwli32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12861  MD5:397a95d4e52be0d7556d1b873edfac49

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdqji32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12416  MD5:f0889451480e70a1a1504907bd141082

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdjzi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11651  MD5:697f27e0c664dd27c13c36c7ac9ede95

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdqqsgi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11512  MD5:7cb0cf1890341cfcf4730adc02d79852

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdtli32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11043  MD5:271b6045062b8a263309c833fe877cfc

[C:\Documents and Settings\Administrator\桌面\Virus\43333\kawdcaz.dat]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:8468  MD5:5146130e9f328c33400b2d4447ba120e

[C:\Documents and Settings\Administrator\桌面\Virus\43333\rarjepi.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:22374  MD5:448dd7357f7de9fbff391086c8fd47f7

[C:\Documents and Settings\Administrator\桌面\Virus\43333\rarjetl.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15311  MD5:07cf3f7833df17aa56b98688099db1f6

[C:\Documents and Settings\Administrator\桌面\Virus\43333\sidjeaz.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14558  MD5:4093d8c31d017eacc5a3cedfa05bd8ea

[C:\Documents and Settings\Administrator\桌面\Virus\43333\sidjezy.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:22880  MD5:ddf1bde00ea6a9ac910b9b74ed941105

[C:\Documents and Settings\Administrator\桌面\Virus\43333\swrceac.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15031  MD5:fd23a71e0f9a3161f7a5b90766db36b1

[C:\Documents and Settings\Administrator\桌面\Virus\43333\swrcezc.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:23910  MD5:981ab5b7f6bab87844bdd0e221b82948

[C:\Documents and Settings\Administrator\桌面\Virus\43333\GenProtect.exE]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19028  MD5:ae30358812062b516b79b75d7f4d0fe0

[C:\Documents and Settings\Administrator\桌面\Virus\43333\dahua.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:19636  MD5:85c8692c52386047d4e2372f8fa3bf5c

[C:\Documents and Settings\Administrator\桌面\Virus\43333\hx.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:14928  MD5:af68a63118dd24731b597e227032b4cc

[C:\Documents and Settings\Administrator\桌面\Virus\43333\jz.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15020  MD5:e11d1e8dbb65862d019ecc0d7b362527

[C:\Documents and Settings\Administrator\桌面\Virus\43333\mh.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:21208  MD5:431a0d3abf117c5e899600ea0b19c2f6

[C:\Documents and Settings\Administrator\桌面\Virus\43333\qjsj.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15840  MD5:bf78cf26cb740de5c4a93903e5574f5b

[C:\Documents and Settings\Administrator\桌面\Virus\43333\wmgj.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15316  MD5:1fb59ff2a67781f6d419501c7618bdd0

[C:\Documents and Settings\Administrator\桌面\Virus\43333\sanguo.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:14896  MD5:5d4b4f981ddfadc16b65db4d4196daec

[C:\Documents and Settings\Administrator\桌面\Virus\43333\tl.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:14440  MD5:c34f5814c3f5851cc2b1aec6542d72f9

[C:\Documents and Settings\Administrator\桌面\Virus\43333\wl.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:16260  MD5:00d4079924438dbb644579810d293874

[C:\Documents and Settings\Administrator\桌面\Virus\43333\wow.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:18340  MD5:7e052df620d709c6c497bb75ad8908ee

[C:\Documents and Settings\Administrator\桌面\Virus\43333\zx.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15780  MD5:750b223113810996c54e131056dca192

[C:\Documents and Settings\Administrator\桌面\Virus\43333\gdgji32.dll.VIRUS]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11928  MD5:fcaedff9db674cb8be072a0c7452347e

[C:\Documents and Settings\Administrator\桌面\Virus\43333\wd.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14040  MD5:2481364b04f35947d1005e5e4ec652e8

[C:\Documents and Settings\Administrator\桌面\Virus\43333\wmsj.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15328  MD5:839f1626e7737d2a977fbd4c55c05342

[C:\Documents and Settings\Administrator\桌面\Virus\43333\zy.exe.VIRUS]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.FSG.A
文件信息:  大小:29553  MD5:38c20e1d89fe983911c024382c5e748e

[C:\Documents and Settings\Administrator\桌面\Virus\43333\zt.exe.VIRUS]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:16108  MD5:c0270e4cf54575bd7712aca5d8f808e7

文件数:43 病毒数:40  比重:0.9302325581395
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

[ 本帖最后由 FBAV 于 2007-12-2 12:32 编辑 ]

显示全部楼层 · 发表于 2007-12-2 12:31:20

36个

检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/sanguo.exe//PE_Patch//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jbt 文件　: F:\du\样本.rar/tl.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgg 文件　: F:\du\样本.rar/wd.exe//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/wl.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jbk 文件　: F:\du\样本.rar/wmgj.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jer 文件　: F:\du\样本.rar/wmsj.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/wow.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/zt.exe//PE_Patch//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/zx.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/gdzxi32.dll//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/gdzhtui32.dll//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jfu 文件　: F:\du\样本.rar/gddhi32.dll//UPack
未发现：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/gdqqhxi32.dll//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jfu 文件　: F:\du\样本.rar/HookHelp.sys
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jff 文件　: F:\du\样本.rar/kvdxsjis.exe//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jff 文件　: F:\du\样本.rar/kvdxsjma.dll
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/gdmhi32.dll//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/gdwli32.dll//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jfd 文件　: F:\du\样本.rar/gdjzi32.dll//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/gdqqsgi32.dll//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgn 文件　: F:\du\样本.rar/kawdcaz.dat
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jbj 文件　: F:\du\样本.rar/GenProtect.dll
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.iys 文件　: F:\du\样本.rar/sidjeaz.exe//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.iyz 文件　: F:\du\样本.rar/sidjezy.dll
未发现：木马程序 Trojan-PSW.Win32.OnLineGames.ioj 文件　: F:\du\样本.rar/swrceac.exe//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.ioj 文件　: F:\du\样本.rar/swrcezc.dll
未发现：木马程序 Trojan-PSW.Win32.OnLineGames.jbj 文件　: F:\du\样本.rar/GenProtect.exE//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jbt 文件　: F:\du\样本.rar/dahua.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/hx.exe//PE_Patch//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jer 文件　: F:\du\样本.rar/jz.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgq 文件　: F:\du\样本.rar/mh.exe//PE_Patch//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jbt 文件　: F:\du\样本.rar/qjsj.exe//PE_Patch//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgc 文件　: F:\du\样本.rar/gdqqhxi32.dll//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.ioi 文件　: F:\du\样本.rar/swrceac.exe//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jbj 文件　: F:\du\样本.rar/GenProtect.exE//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.jgc 文件　: f:\du\样本.rar/hx.exe//PE_Patch//UPack//#//UPack

显示全部楼层 · 发表于 2007-12-2 12:53:24

D:\Download\VirusScan\样本.rar=>zy.exe suspected: Dropped:Generic.Malware.Fdldg.025D332D
D:\Download\VirusScan\样本.rar=>yejpyfkqwbgms.dll suspected: Generic.Malware.Fdldg.025D332D
D:\Download\VirusScan\样本.rar=>kvdxsjis.exe infected: DeepScan:Generic.Dld.Agent.6B4AF548
D:\Download\VirusScan\样本.rar=>kvdxsjma.dll infected: BehavesLike:Trojan.WUDisable
D:\Download\VirusScan\样本.rar=>kapjezy.dll infected: BehavesLike:Trojan.WUDisable
D:\Download\VirusScan\样本.rar=>gdmhi32.dll infected: DeepScan:Generic.PWS.Games.1.EE07A3A8
D:\Download\VirusScan\样本.rar=>kapjeaz.exe infected: Generic.Malware.SBdldg.6ED6DF12
D:\Download\VirusScan\样本.rar=>GenProtect.dll infected: Trojan.PWS.OnLineGames.NPD
D:\Download\VirusScan\样本.rar=>rarjepi.dll infected: BehavesLike:Trojan.WUDisable
D:\Download\VirusScan\样本.rar=>rarjetl.exe infected: DeepScan:Generic.Dld.Agent.D90A2DC0
D:\Download\VirusScan\样本.rar=>sidjeaz.exe infected: DeepScan:Generic.Dld.Agent.E5A2156B
D:\Download\VirusScan\样本.rar=>sidjezy.dll infected: BehavesLike:Trojan.WUDisable
D:\Download\VirusScan\样本.rar=>swrceac.exe infected: DeepScan:Generic.Dld.Agent.F5AAB27C
D:\Download\VirusScan\样本.rar=>swrcezc.dll infected: BehavesLike:Trojan.WUDisable
D:\Download\VirusScan\样本.rar=>GenProtect.exE infected: Generic.PWS.Games.4.85E9BB1F
D:\Download\VirusScan\样本.rar=>mh.exe infected: DeepScan:Generic.PWS.Games.1.CE99F70E

显示全部楼层 · 发表于 2007-12-2 13:23:30

小A 33个

显示全部楼层 · 发表于 2007-12-2 13:23:49

恩加入了

显示全部楼层 · 发表于 2007-12-2 13:34:50

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\样本'
C:\Documents and Settings\Administrator\桌面\样本\
  Sy_Win7z.jmp
  gdcqi32.dll
  sanguo.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c04491.qua'!
  tl.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbt.8
   [INFO]    The file was moved to '4780449c.qua'!
  wd.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.iiu.1.A
   [INFO]    The file was moved to '47804494.qua'!
  wl.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '4780449d.qua'!
  wmgj.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbk.3
   [INFO]    The file was moved to '47b9449e.qua'!
  wmsj.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c5449e.qua'!
  wow.exe
   [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
   [INFO]    The file was moved to '47c944a0.qua'!
  zt.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '478044a5.qua'!
  zx.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '478044aa.qua'!
  zy.exe
   [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
   [INFO]    The file was moved to '478044ab.qua'!
  gdgji32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbo.1
   [INFO]    The file was moved to '47b94496.qua'!
  gdwmi32.dll
  gdzxi32.dll
  gdzhtui32.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47cc4496.qua'!
  yejpyfkqwbgms.dll
   [DETECTION] Contains suspicious code HEUR/Crypted
   [INFO]    The file was moved to '47bc4497.qua'!
  gddhi32.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47b64497.qua'!
  gdqqhxi32.dll
  HookHelp.sys
  kvdxsjis.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [INFO]    The file was moved to '47b644a9.qua'!
  kvdxsjma.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '461433a2.qua'!
  kapjezy.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c24494.qua'!
  gdmhi32.dll
  kapjeaz.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [INFO]    The file was moved to '4660339d.qua'!
  gdwli32.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c94498.qua'!
  gdqji32.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c34498.qua'!
  Hookelp.sys
  gdjzi32.dll
  gdqqsgi32.dll
  gdtli32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbo.7
   [INFO]    The file was moved to '47c64498.qua'!
  kawdcaz.dat
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.iiu.1.A
   [INFO]    The file was moved to '47c94495.qua'!
  GenProtect.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
   [INFO]    The file was moved to '47c04499.qua'!
  rarjepi.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c44495.qua'!
  rarjetl.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [INFO]    The file was moved to '4666339e.qua'!
  sidjeaz.exe
   [DETECTION] Is the Trojan horse TR/FWDisable.22884
   [INFO]    The file was moved to '47b6449e.qua'!
  sidjezy.dll
   [DETECTION] Is the Trojan horse TR/FWDisable.22884
   [INFO]    The file was moved to '46143397.qua'!
  swrceac.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ioj
   [INFO]    The file was moved to '47c444ac.qua'!
  swrcezc.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ioj
   [INFO]    The file was moved to '466633a5.qua'!
  GenProtect.exE
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
   [INFO]    The file was moved to '47c0449a.qua'!
  dahua.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbt.4
   [INFO]    The file was moved to '47ba4496.qua'!
  hx.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '478044ad.qua'!
  jz.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '478044b0.qua'!
  mh.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '4780449e.qua'!
  qjsj.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '47c544a0.qua'!

显示全部楼层 · 发表于 2007-12-2 13:50:22

卡巴38割，我晕晕

显示全部楼层 · 发表于 2007-12-2 14:01:33

AVG 免费版干掉21个...

[病毒样本] 43个

本帖子中包含更多资源

浏览过的版块