10个

浪滔天

都是BT上下到的。。。。。

wangjay1980

好久不见

你上报卡巴了吗？报了偶就不保了

[ 本帖最后由 wangjay1980 于 2008-2-17 17:01 编辑 ]

wangjay1980

detected: virus Heur.Trojan.Generic (modification)        File: E:\Ñù±¾\newvirus\8.exe
detected: Trojan program Trojan-Spy.Win32.Delf.uc        File: E:\Ñù±¾\newvirus\5930875.dll
detected: Trojan program Backdoor.Win32.Hupigon.afh        File: E:\Ñù±¾\newvirus\1.exe
detected: Trojan program Backdoor.Win32.Hupigon.afh        File: E:\Ñù±¾\newvirus\2.exe
detected: Trojan program Backdoor.Win32.FireFly.a        File: E:\Ñù±¾\newvirus\3.exe//PE_Patch//UPack
detected: Trojan program Backdoor.Win32.Hupigon.apgg        File: E:\Ñù±¾\newvirus\4.exe
detected: Trojan program Backdoor.Win32.Hupigon.cal        File: E:\Ñù±¾\newvirus\5.exe//UPack
detected: Trojan program Backdoor.Win32.Hupigon.cal        File: E:\Ñù±¾\newvirus\6.exe//UPack
detected: Trojan program Backdoor.Win32.Agent.din        File: E:\Ñù±¾\newvirus\7.exe//data.rar/aoc.exe

浪滔天

报了，你用新的启发引擎了？

wangjay1980

是的

wolffshen

FS结果: 找到 8 恶意软件
Backdoor.Win32.Agent.din (病毒)
D:\Virus\Test\7.exe\aoc.exe
Backdoor.Win32.Hupigon.afh (病毒)
D:\Virus\Test\1.exe 操作: 删除
D:\Virus\Test\2.exe 操作: 删除
Backdoor.Win32.FireFly.a (病毒)
D:\Virus\Test\3.exe 操作: 删除
Backdoor.Win32.Hupigon.apgg (病毒)
D:\Virus\Test\4.exe 操作: 删除
Backdoor.Win32.Hupigon.cal (病毒)
D:\Virus\Test\5.exe 操作: 删除
D:\Virus\Test\6.exe 操作: 删除
Trojan-Spy.Win32.Delf.uc (病毒)
D:\Virus\Test\5930875.dll 操作: 删除

挪威的冬天

信息        2008-02-17  17:08:25        您此次查毒共查出8个病毒以及危险代码                       
信息        2008-02-17  17:08:25        您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件31个                       
信息        2008-02-17  17:08:25        金山毒霸主程序查毒过程结束，查毒方式：命令行查毒                       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\8.exe        Win32.Hack.Huigezi.1110016        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\7.exe        Win32.Troj.Unknown.a.378786        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\6.exe        Win32.Hack.Huigezi.al.267173        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\5930875.dll        Win32.Hack.Delf.uc.129024        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\5.exe        Win32.Hack.Huigezi.al.267173        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\3.exe        Win32.Hack.FireFly.c.15390        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\2.exe        Win32.Troj.Delf.uc.139776        跳过，未处理       
病毒        2008-02-17  17:08:25        C:\Users\挪威的冬天\Desktop\10\1.exe        Win32.Troj.Delf.uc.139776        跳过，未处理

wolffshen

那个9.chm好想隐藏的挺深的，大家再看看生成物

A-Squared	Found  nothing
AntiVir	Found TR/Crypt.NSPM.Gen
ArcaVir	Found  nothing
Avast	Found  nothing
AVG Antivirus	Found Klone.H
BitDefender	Found Packer.Malware.NSAnti.K
ClamAV	Found  nothing
CPsecure	Found  nothing
Dr.Web	Found  nothing
F-Prot Antivirus	Found Possibly a new variant of W32/PWStealer3!Generic
F-Secure Anti-Virus	Found  nothing
Fortinet	Found  nothing
Ikarus	Found Suspect code-parts (probable variant)
Kaspersky Anti-Virus	Found  nothing
NOD32	Found  nothing
Norman Virus Control	Found  nothing
Panda Antivirus	Found  nothing
Rising Antivirus	Found  nothing
Sophos Antivirus	Found Mal/EncPk-CE
VirusBuster	Found  nothing
VBA32	Found  nothing

无尽藏海

Scan Log
Version of virus signature database: 2880 (20080215)
Date: 2008-2-17  Time: 17:24:01
Scanned disks, folders and files: F:\virus\10[1]
F:\virus\10[1]\8.exe - probably a variant of Win32/Hupigon.NCE trojan
F:\virus\10[1]\5930875.dll - Win32/Spy.Delf.NEH trojan
F:\virus\10[1]\1.exe - Win32/Spy.Delf.NEH trojan
F:\virus\10[1]\2.exe - Win32/Spy.Delf.NEH trojan
F:\virus\10[1]\3.exe - Win32/FireFly trojan
F:\virus\10[1]\5.exe - a variant of Win32/Hupigon trojan
F:\virus\10[1]\6.exe - a variant of Win32/Hupigon trojan
F:\virus\10[1]\7.exe » RAR » aoc.exe - probably unknown NewHeur_PE virus [7]
Number of scanned objects: 37
Number of threats found: 8
Time of completion: 17:24:55  Total scanning time: 54 sec (00:00:54)

Notes:
[7] Object is probably infected with an unknown virus.

上报……

wangjay1980

9里面绑了个exe

File: E:\Ñù±¾\newvirus\9.chm//~DF2CF7#tmp.exe        这个