[病毒样本] 181

显示全部楼层 · 发表于 2008-4-11 22:19:23

a兄不在。。。帮着测FP。。。上报就不上报了，a兄帮忙。。。
FP报163个。。。
[Clean] C:\virus\182\新建文件夹\1.exe
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\11.exe->(FSG)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\123.exe
[Found Trojan] <W32/Trojan2.VHD (exact, damaged)> C:\virus\182\新建文件夹\2.exe
[Found backdoor] <W32/Backdoor2.AXU (exact)> C:\virus\182\新建文件夹\2EE63EE2.EXE
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\338448L.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\338448M.exe->(UPack)
[Found password stealer] <W32/Pws.XLO (exact)> C:\virus\182\新建文件夹\338448MM.DLL
[Found password stealer] <W32/Onlinegames.ARU (exact)> C:\virus\182\新建文件夹\338448WL.DLL
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\365.exe->(UPack)
[Found downloader] <W32/Downloader!f828 (exact)> C:\virus\182\新建文件夹\6.exe
[Found Trojan] <W32/Trojan2.VHB (exact, damaged)> C:\virus\182\新建文件夹\a1.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a10.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a11[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a12.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a13[1].exe->(UPack)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\a13[41].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a141[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a14[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a154[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a15[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a16[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a16[41].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a17[14].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a17[1].exe->(UPack)
[Found password stealer] <W32/Pws.XKG (exact)> C:\virus\182\新建文件夹\a184[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a18[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a19[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a20.exe->(FSG)
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a20[1].exe->(FSG)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\a21[1].exe
[Found Trojan] <W32/Trojan2.ADFC (exact, damaged)> C:\virus\182\新建文件夹\a22[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a2[1].exe->(UPack)
[Found Trojan] <W32/Trojan2.SNL (exact)> C:\virus\182\新建文件夹\a3[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a5[1].exe->(UPack)
[Found security risk] <W32/AutoRun.C.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\a6.exe->(UPX)
[Found security risk] <W32/AutoRun.C.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\a6[1].exe->(UPX)
[Found downloader] <W32/Downloader!f828 (exact)> C:\virus\182\新建文件夹\a7.exe
[Found downloader] <W32/Downloader!f828 (exact)> C:\virus\182\新建文件夹\a7[14].exe
[Found downloader] <W32/Downloader!f828 (exact)> C:\virus\182\新建文件夹\a7[1].exe
[Found Trojan] <W32/Trojan2.XUX (exact, damaged)> C:\virus\182\新建文件夹\a8.exe
[Found Trojan] <W32/Trojan2.YFC (exact, damaged)> C:\virus\182\新建文件夹\a8[14].exe
[Found Trojan] <W32/Trojan2.ZNL (exact, damaged)> C:\virus\182\新建文件夹\a8[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a94[14].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\a9[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\aa.exe->(UPack)
[Found downloader] <W32/Downldr2.AIPF (exact, damaged)> C:\virus\182\新建文件夹\abc[1].exe
[Found Trojan] <W32/Trojan2.ADFC (exact, damaged)> C:\virus\182\新建文件夹\ampvstqj32.dll
[Clean] C:\virus\182\新建文件夹\ardaase.fon
[Found Trojan] <W32/Trojan2.ZNL (exact, damaged)> C:\virus\182\新建文件夹\asvzhuzhu32.dll
[Found backdoor] <W32/Backdoor2.AXU (exact)> C:\virus\182\新建文件夹\ato.exe
[Found worm] <W32/Worm.LRV (exact)> C:\virus\182\新建文件夹\aut.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\auto.exe->(Klone.AF)
[Found Trojan] <W32/Trojan2.GHE (exact)> C:\virus\182\新建文件夹\autochk.exe
[Found backdoor] <W32/Backdoor2.GOP (exact)> C:\virus\182\新建文件夹\autoklh.jpg
[Found password stealer] <W32/Pws.VAE (exact)> C:\virus\182\新建文件夹\avwgcst.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\avwgest.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\avwldst.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\avwlfin.dll
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\avwlfst.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\bb.exe->(FSG)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\cc.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\chtiaur.fon
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\cmdb4cs.exe->(UPack)
[Found Trojan] <W32/Trojan2.QIF (exact)> C:\virus\182\新建文件夹\cmdbcs.dll
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\cmdbcs.exe->(UPack)
[Found Trojan] <W32/Trojan2.SBW (exact)> C:\virus\182\新建文件夹\comint32.sys
[Found worm] <W32/Worm.LLR (exact)> C:\virus\182\新建文件夹\comrepl32.exe
[Found security risk] <W32/AutoRun.C.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\coni4me1.exe->(UPX)
[Clean] C:\virus\182\新建文件夹\conime0.exe->(UPX)
[Found possible virus] <W32/Downloader-Sml-based!Maximus> C:\virus\182\新建文件夹\conime0.exe
[Found Trojan] <W32/Trojan2.VHB (exact, damaged)> C:\virus\182\新建文件夹\conime04.exe

显示全部楼层 · 发表于 2008-4-11 22:19:40

[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\virus\182\新建文件夹\conime1.exe
[Found downloader] <W32/Downloader!f828 (exact)> C:\virus\182\新建文件夹\conime2.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\conime5.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\conime7.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\conimec.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\cq0619.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\cq0619[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\DbgHlp32.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\dh3[1].exe->(UPack)
[Clean] C:\virus\182\新建文件夹\dns-sd.exe
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\dn[1].exe->(UPX)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\don[1].exe->(UPX)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\down[1].exe->(UPX)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\dow[1].exe->(UPX)
[Found worm] <W32/Worm.LRV (exact)> C:\virus\182\新建文件夹\e47e57844ef30ab4[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\ee.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\enhuafx.fon
[Found password stealer] <W32/QQPass.AVG (exact)> C:\virus\182\新建文件夹\ff.exe
[Found possible security risk] <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\GenProtect.dll
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\GenProtect.exE->(UPack)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\gg.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\hf.exe->(RCryptor)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\hh.exe->(UPack)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\IGM.exe
[Found possible virus] <W32/Blocker-based!Maximus> C:\virus\182\新建文件夹\IwGM.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\jh0619[1].exe->(UPack)
[Clean] C:\virus\182\新建文件夹\K11304.EXE->(NSPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\virus\182\新建文件夹\k11304105004.exe->(UPX)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\k11942645627.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\k11942645659.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\k119426456711.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\k119426456913.exe->(UPack)
[Found possible security risk] <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\k119426477114.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kaqhiaz.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kawdcaz.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kawdfaz.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kk.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\kllsystem.exe
[Found possible virus] <W32/Threat-IKNP-based!Maximus> C:\virus\182\新建文件夹\KnQQ.exe->(NSPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kowbjptyej.dll->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kvdxhis.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\kvdxjis.exe->(UPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\virus\182\新建文件夹\kvsc3.exe->(UPX)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\lyloader.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\LYMANGR.DLL->(UPack)
[Found possible security risk] <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\mj[1].exe
[Found Trojan] <W32/Trojan.BIMQ (exact)> C:\virus\182\新建文件夹\MM.exe
[Found backdoor] <W32/Backdoor2.AXU (exact)> C:\virus\182\新建文件夹\most[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\msccrt.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\mscfg.exe
[Clean] C:\virus\182\新建文件夹\mscrt.exe->(Aspack)->(Aspack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\MSDEG32.DLL->(UPack)
[Clean] C:\virus\182\新建文件夹\msguasd.fon
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\MsIMMs32.exE->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\MsPrint32D.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\msqip.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\mswuasd.fon
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\my0616[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\nn.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\ocwkxj.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\oo.exe->(UPack)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\own[1].exe->(UPX)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\qj0617[1].exe->(UPack)
[Found virus] <W32/Downloader.gen10> C:\virus\182\新建文件夹\qq.exe->(UPX)->(PE_Patch.MaskPE)
[Found password stealer] <W32/Pws.XKG (exact)> C:\virus\182\新建文件夹\ratbhtl.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\ratbltl.exe->(UPack)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\rising281.exe->(UPX)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\rising795.exe->(UPX)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\rwchqvagmrwc.dll->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\rwcirxdhnsxc.dll->(UPack)
[Found backdoor] <W32/Backdoor.BGBT (exact)> C:\virus\182\新建文件夹\scvhost.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\sidjeaz.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\sqmapi32.dll->(UPack)
[Found password stealer] <W32/Onlinegaming.AMY (exact)> C:\virus\182\新建文件夹\ss.exe
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\svchost.exe->(FSG)
[Found possible security risk] <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\svchostzamj.exe
[Found Trojan] <W32/Trojan2.GST (exact)> C:\virus\182\新建文件夹\svcos[1].exe
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\sys228.exe->(NSPack)->(PE_Patch)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\tl0619[1].exe->(UPack)
[Found downloader] <W32/Downloader.C.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\Trojan-Downloader.Win32.Baser.exe->(UPX)
[Found possible security risk] <W32/Heuristic-162!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\Trojan-Downloader.Win32.Flux.y.exe->(Klone.AF)
[Found Trojan] <W32/Trojan.BTXH (exact)> C:\virus\182\新建文件夹\Trojan-PSW.Win32.QQPass.ajo.Exe
[Found password stealer] <W32/Wowcraft.MI (exact)> C:\virus\182\新建文件夹\Trojan-PSW.Win32.WOW.exe
[Clean] C:\virus\182\新建文件夹\Trojan-Win32.Down.exe->(Unicode)
[Clean] C:\virus\182\新建文件夹\Trojan-Win32.Down.exe
[Clean] C:\virus\182\新建文件夹\tt.exe->(FSG)
[Clean] C:\virus\182\新建文件夹\updatelist[1].exe
[Found Trojan] <W32/Trojan2.QLK (exact)> C:\virus\182\新建文件夹\upxdnd.dll
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\upxdnd.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\userinit.exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\vipmm.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\vip[1].exe->(Klone.AF)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\Virus.Win32.AutoRun.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\wd0618[1].exe->(UPack)
[Found password stealer] <W32/Pws.AEQY (exact)> C:\virus\182\新建文件夹\WIN32-Down.pif
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\WIN32-Trojan-upxdnd.exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\WIN32-Trojan.exe->(UPack)
[Found virus] <W32/Viking.3!Generic> C:\virus\182\新建文件夹\Worm.Win32.Viking.exe
[Found Trojan] <W32/Trojan2.RGR (exact)> C:\virus\182\新建文件夹\wow0617[1].exe
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\wrispm.exe->(UPack)
[Clean] C:\virus\182\新建文件夹\Wsyscheck.exe-up.txt
[Found possible security risk] <W32/Heuristic-162!Eldorado (not disinfectable)> C:\virus\182\新建文件夹\WWokn.exe->(Klone.AF)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\ydkqxchmrw.dll->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\zt0616[1].exe->(UPack)
[Found possible security risk] <W32/Heuristic-162!Eldorado (damaged, not disinfectable)> C:\virus\182\新建文件夹\~tmp1674.exe->(UPack)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\~tmp2578.exe->(UPX)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\~tmp3279.exe->(UPX)
[Found possible virus] <W32/Threat-HLLPEM-based!Maximus> C:\virus\182\新建文件夹\~tmp8093.exe->(UPX)
[Found Trojan] <W32/Trojan2.AAI (exact)> C:\virus\182\新建文件夹\恶意程序 Constructor.Win32.Downldr.v.exe
[Found password stealer] <W32/Pws.VAF (exact)> C:\virus\182\新建文件夹\梦幻Trojan-OnLineGames.exe
[Found downloader] <W32/Banload.B.gen!Eldorado (not disinfectable, generic)> C:\virus\182\新建文件夹\熊猫烧香病毒.exe

显示全部楼层 · 发表于 2008-4-11 22:25:14

好多，等你消息

显示全部楼层 · 发表于 2008-4-11 22:33:47

扫描报告
2008年4月11日 22:32:13 - 22:32:27

计算机名称: LENOVO-15123304
扫描类型: 扫描目标
目标: D:\TDdownload\181.part1.rar D:\TDdownload\181.part2.rar D:\TDdownload\181.part3.rar D:\TDdownload\181.part4.rar D:\TDdownload\181.part5.rar D:\TDdownload\181.part6.rar
结果: 找到 162 恶意软件
Backdoor.Win32.Delf.cgb (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\11.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\11.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\11.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\11.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\11.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\11.exe

Trojan-PSW.Win32.OnLineGames.hfr (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\123.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448L.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\123.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448L.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\123.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448L.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\123.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448L.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\123.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448L.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\123.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448L.exe

Trojan.Win32.Agent.czq (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2.exe

Backdoor.Win32.Popwin.aic (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2EE63EE2.EXE
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2EE63EE2.EXE
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2EE63EE2.EXE
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2EE63EE2.EXE
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2EE63EE2.EXE
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\2EE63EE2.EXE

Trojan-PSW.Win32.Lmir.bpc (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448M.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448M.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448M.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448M.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448M.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448M.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[1].exe

Trojan-PSW.Win32.Lmir.bos (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448MM.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448MM.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448MM.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448MM.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448MM.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448MM.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a13[41].exe

Trojan-PSW.Win32.OnLineGames.iay (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448WL.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448WL.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448WL.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448WL.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448WL.DLL
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\338448WL.DLL

Trojan-PSW.Win32.OnLineGames.fhw (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\365.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\365.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\365.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\365.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\365.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\365.exe

Trojan-Downloader.Win32.Agent.blm (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\6.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\6.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\6.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\6.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\6.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\6.exe

Trojan.Win32.Agent.crc (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a1.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a1.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a1.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a1.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a1.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a1.exe

Trojan-PSW.Win32.OnLineGames.isb (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a10.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a12.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[14].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a10.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a12.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[14].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a10.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a12.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[14].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a10.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a12.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[14].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a10.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a12.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[14].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a10.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a12.exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[14].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a17[1].exe

Trojan-PSW.Win32.OnLineGames.iti (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a11[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a11[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a11[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a11[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a11[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a11[1].exe

Trojan-PSW.Win32.OnLineGames.gwy (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a141[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a14[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a141[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a14[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a141[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a14[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a141[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a14[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a141[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a14[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a141[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a14[1].exe

Trojan-PSW.Win32.OnLineGames.hfq (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a154[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a154[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a154[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a154[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a154[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a154[1].exe

Trojan-PSW.Win32.Lmir.bpd (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a15[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a15[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a15[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a15[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a15[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a15[1].exe

Trojan-PSW.Win32.OnLineGames.inp (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[1].exe

Trojan-PSW.Win32.OnLineGames.gvs (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[41].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a16[41].exe

Trojan-PSW.Win32.OnLineGames.hgw (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a184[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a184[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a184[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a184[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a184[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a184[1].exe

Trojan-PSW.Win32.OnLineGames.iqo (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a18[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a18[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a18[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a18[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a18[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a18[1].exe

Trojan-PSW.Win32.OnLineGames.iys (病毒)

* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a19[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a19[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a19[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a19[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a19[1].exe
* D:\TDdownload\181.part1.rar\182\穝?ゅン?\a19[1].exe

统计信息
已扫描:

* 文件: 174
* 未扫描: 0

结果:

* 病毒: 162
* 间谍软件: 0
* 可疑项目: 0
* 危险软件: 0

操作:

* 已杀毒: 0
* 已重命名: 0
* 删除: 0
* 已隔离: 0
* 失败: 0

启动扇区:

* 已扫描: 0
* 受感染: 0
* 可疑项目: 0
* 已杀毒: 0

选项
定义版本:

* 病毒: 2008-04-11_05
* 间谍软件: 2008-04-11_05

扫描引擎:

* F-Secure AVP: 7.00.171, 2008-04-11
* F-Secure Hydra: 2.06.7470, 2008-04-11

扫描选项:

* 扫描所有文件
* 扫描内部存档

操作:

* 病毒: 扫描后询问
* 间谍软件: 扫描后询问

版权 © 1998-2008 产品支持 | 发送病毒样本到 F-Secure
对于 F-Secure 万维网页面上所链接的由第三方创建和发布的材料， F-Secure 不承担任何责任。除非已通过电子邮件或 F-Secure CGI 电子邮件向任一台服务器提交材料以清楚说明情况，除非您明确表示(如使用电子邮件或通过我们的 F-Secure CGI 电子邮件)，通过 F-Secure 万维网页或硬拷贝发布已有的材料。单击带下划线的链接，可访问 F-Secure 公共网站。此时，系统会在专用访问统计信息中用域名记录您的访问。此信息不会提供给任何第三方。您同意不针对所提交的材料向我们提出诉讼。除非您已明确说明，否则应提交材料以保证 F-Secure 针对可能在 F-Secure 产品/出版物中采用的概念，不承担任何责任。

囧，对中文支持不好

显示全部楼层 · 发表于 2008-4-11 22:57:55

Hello,

1.exe_, ardaase.fon, avwlfin.dll, bhoupdate.exe_, boot.exe_, Cache.ini, Certification.dll, chtiaur.fon, CSPlatform.dll, csp_ex.dll, dns-sd.exe_, enhuafx.fon, fl.dat, fl.dat2, fl.dat3, K11304.EXE_, msguasd.fon, mswuasd.fon, sign.dat, sign.dat2, sign.dat3, st.dll, start.exe_, Trojan-Win32.Down.exe_, updatelist[1].exe_, UserBHO.dll, Wsyscheck.exe-up.txt, _start.exed

No malicious code were found in these files.

mscrt.exe_ - Trojan-Spy.Win32.KeyLogger.adz

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Denis Maslennikov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

显示全部楼层 · 发表于 2008-4-12 12:37:53

信息 2008-04-12  12:37:09 您此次查毒隔离了165个文件
信息 2008-04-12  12:37:09 您此次查毒共查出165个病毒以及危险代码
信息 2008-04-12  12:37:09 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件234个
信息 2008-04-12  12:37:09 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

显示全部楼层 · 发表于 2008-4-12 14:39:22

DR.Web163个

[病毒样本] 181

162个