[病毒样本] 76

显示全部楼层 · 发表于 2008-6-24 00:52:08

已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.sat 檔案: C:\Documents and Settings\kato9096\桌面\DNT\10156.dat
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Small.bue 檔案: C:\Documents and Settings\kato9096\桌面\DNT\360safe.exe2
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.rkf 檔案: C:\Documents and Settings\kato9096\桌面\DNT\allps.exe6
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.sat 檔案: C:\Documents and Settings\kato9096\桌面\DNT\bwpr0.exe1//NSPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.rjq 檔案: C:\Documents and Settings\kato9096\桌面\DNT\conime.exe4//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.rjq 檔案: C:\Documents and Settings\kato9096\桌面\DNT\ctfmon.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.ntx 檔案: C:\Documents and Settings\kato9096\桌面\DNT\ddddd.exe6
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.rlr 檔案: C:\Documents and Settings\kato9096\桌面\DNT\DNT.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.QQPass.cjn 檔案: C:\Documents and Settings\kato9096\桌面\DNT\eoms19.exe2//UPX
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Ardamax.gx 檔案: C:\Documents and Settings\kato9096\桌面\DNT\FireFoxUpdater.exe5//PE_Patch//MEW
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.asel 檔案: C:\Documents and Settings\kato9096\桌面\DNT\hjsv10.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.sqc 檔案: C:\Documents and Settings\kato9096\桌面\DNT\Jack.exe2
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.asel 檔案: C:\Documents and Settings\kato9096\桌面\DNT\jfrwdh.dll
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Agent.cuq 檔案: C:\Documents and Settings\kato9096\桌面\DNT\mcdcsrv32_080602.dll
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Zapchast.d 檔案: C:\Documents and Settings\kato9096\桌面\DNT\mspcexp.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.asel 檔案: C:\Documents and Settings\kato9096\桌面\DNT\nkly6.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.BHO.dxy 檔案: C:\Documents and Settings\kato9096\桌面\DNT\qqshel.exe2
已刪除: 特洛伊木馬程式 Trojan.Win32.BHO.ebl 檔案: C:\Documents and Settings\kato9096\桌面\DNT\RavNT.e1xe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.asel 檔案: C:\Documents and Settings\kato9096\桌面\DNT\ujzb7.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.ntx 檔案: C:\Documents and Settings\kato9096\桌面\DNT\userinit.exe43
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.asbm 檔案: C:\Documents and Settings\kato9096\桌面\DNT\xsxw7.exe2//PE_Patch//UPack

21,已上报卡巴.

Starting the file scan:

Begin scan in 'C:\Documents and Settings\kato9096\桌面\DNT'
C:\Documents and Settings\kato9096\桌面\DNT\033.exe2
   [DETECTION] Is the Trojan horse TR/Agent.49152
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\10156.dat
   [DETECTION] Is the Trojan horse TR/Agent.243200
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\3157.exe2
   [DETECTION] Is the Trojan horse TR/Downloader.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\360safe.exe2
   [DETECTION] Is the Trojan horse TR/Spy.Small.bua
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\allps.exe6
   [DETECTION] Is the Trojan horse TR/Agent.rkf
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\bwpr0.exe1
   [DETECTION] Is the Trojan horse TR/Drop.Agent.64757
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\conime.exe4
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.Mts.1
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\ctfmon.exe2
   [DETECTION] Is the Trojan horse TR/Downloader.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\ddddd.exe6
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.ntx.3
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\DNT.exe2
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.rlr.6
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\eoms19.exe2
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\FireFoxUpdater.exe5
   [DETECTION] Is the Trojan horse TR/Crypt.CFI.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\hjsv10.exe2
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\Jack.exe2
   [DETECTION] Is the Trojan horse TR/Dldr.StartPa.B
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\mcdcsrv32_080602.dll
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\mspcexp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Zapchast.D.1
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\nkly6.exe2
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\od.exe2
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\qqshel.exe2
   [DETECTION] Is the Trojan horse TR/BHO.dxy.3
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\RavNT.e1xe
   [DETECTION] Is the Trojan horse TR/BHO.ebl
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\TElem32.dll
   [DETECTION] Is the Trojan horse TR/Dldr.Small.btt
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\ujzb7.exe2
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\userinit.exe43
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.ntx.4
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\VTEYLSO.exe2
   [DETECTION] Is the Trojan horse TR/Drop.Agent.53248
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\xsxw7.exe2
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\YQL_Lyrics_Common.dll
   [DETECTION] Is the Trojan horse TR/Click.Agent.auj
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\ZSC9QLVJYM73msi.exe2
   [DETECTION] Is the Trojan horse TR/Crypt.CFI.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\DNT\ZZCL61.exe4
   [DETECTION] Is the Trojan horse TR/Drop.Agent.53248
   [NOTE]    The file was deleted!

End of the scan: Tuesday,24 June 2008  00:54
Used time: 00:14 min

The scan has been done completely.

   1 Scanning directories
   77 Files were scanned
   28 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   28 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   49 Files not concerned
   0 Archives were scanned
   0 Warnings
   28 Notes

28,已上报

[ 本帖最后由 kato9096 于 2008-6-24 00:54 编辑 ]

显示全部楼层 · 发表于 2008-6-24 09:13:55

MicroVita AntiSpyware
_____________________________________________

         风暴微塔反间谍 T2
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[D:\Virus1\76\DNT\Access.exe2]
                  …………发现Spy！报告: [4]
文件信息:  大小:57344  MD5:741a9876a360256a77e4f72522df2f05

[D:\Virus1\76\DNT\ad7546.exe2]
                  …………发现Spy！报告:[1] Win32.HGZ-HF.A
文件信息:  大小:133950  MD5:d021475f46a80302e436afdc48b02703

[D:\Virus1\76\DNT\ad7553.exe2]
                  …………发现Spy！报告:[1] Win32.HGZ-HF.A
文件信息:  大小:133905  MD5:3de6e974415ba9f332b87667d8b4b848

[D:\Virus1\76\DNT\allps.exe6]
                  …………发现Spy！报告: [4]
文件信息:  大小:24576  MD5:6c71b48750cb8bd688e93a5e319b11f9

[D:\Virus1\76\DNT\aoqnabib.sys]
                  …………发现Spy！报告: [4]
文件信息:  大小:520  MD5:007e0ffcbce9bc3448aeb569094d0ae6

[D:\Virus1\76\DNT\conime.exe4]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:977920  MD5:3b9e0f7d4dbf8b65e5cf72971b4166d2

[D:\Virus1\76\DNT\ctfmon.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:7016  MD5:369150e347b650085aebee5f4d48c66a

[D:\Virus1\76\DNT\ddddd.exe6]
                  …………发现Spy！报告:[2]
文件信息:  大小:56353  MD5:fb929c02524432064787bab9808fda08

[D:\Virus1\76\DNT\DNT.exe2]
                  …………发现Spy！报告:[2] [1] Win32.Unknow
文件信息:  大小:271360  MD5:15c521a1647aefdae7d913fcb48ac644

[D:\Virus1\76\DNT\eoms19.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:32896  MD5:56dd412a54fdc992e095911c173fea66

[D:\Virus1\76\DNT\hjsv10.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:19419  MD5:56b6ce8c6688d743d6485c7599ef2b75

[D:\Virus1\76\DNT\Jack.exe2]
                  …………发现Spy！报告: [4]
文件信息:  大小:241664  MD5:e2c4eb8e3a2ddc926e12cd161421e454

[D:\Virus1\76\DNT\jview.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:172304  MD5:90b2f298485c7f665bc21ee32b9af9af

[D:\Virus1\76\DNT\mcdcsrv32_080602.dll]
                  …………发现Spy！报告: [4] [2]
文件信息:  大小:538112  MD5:d1e6c5b71a7fbe9a3b015f090b7e71de

[D:\Virus1\76\DNT\mspcexp.dll]
                  …………发现Spy！报告:[2] [8] HOOK者
文件信息:  大小:49152  MD5:75d0d5b9d9d239eabcfe202b5879009f

[D:\Virus1\76\DNT\nkly6.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:22407  MD5:19c4b67896993b9f98fa2b1bbe61dec1

[D:\Virus1\76\DNT\qqshel.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:69763  MD5:b64ac46bdf8deb96bf6f6e82adc16180

[D:\Virus1\76\DNT\RsAgent.dll]
                  …………发现Spy！报告:[1] Win32.NkHack.PeM.A
文件信息:  大小:477548  MD5:f32bc7c450747a076678077217e59f0c

[D:\Virus1\76\DNT\spssvr.exe5]
                  …………发现Spy！报告: [4]
文件信息:  大小:14848  MD5:e04d3582f1ea6a559745e855c30cf79b

[D:\Virus1\76\DNT\stormliv.exe5]
                  …………发现Spy！报告: [4]
文件信息:  大小:28672  MD5:42edb377af15c1a71c281eb267225fc3

[D:\Virus1\76\DNT\Thunder1.dll2]
                  …………发现Spy！报告: [4] [1] Win32.Packer3
文件信息:  大小:36352  MD5:9e7a0d5b29b0a3778a1ff6d44dd58dc2

[D:\Virus1\76\DNT\ujzb7.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:22431  MD5:29bb2bea64012791745b30d0d6480096

[D:\Virus1\76\DNT\VTEYLSO.exe2]
                  …………发现Spy！报告: [4]
文件信息:  大小:61440  MD5:78bd466ee8adbafde7f8863fcc65ce84

[D:\Virus1\76\DNT\winabc.GID]
                  …………发现Spy！报告: [4]
文件信息:  大小:10855  MD5:95ff826c5b5653c13729f74952c4ef03

[D:\Virus1\76\DNT\winxp1.exe2]
                  …………发现Spy！报告:[1] Win32.HGZ-HF.A
文件信息:  大小:57509  MD5:0aaa3498d155792771f0d51463c41fe4

[D:\Virus1\76\DNT\wjview.exe1]
                  …………发现Spy！报告:[2]
文件信息:  大小:171792  MD5:2351f710e971c080784a85b9e7cf2d5b

[D:\Virus1\76\DNT\xsxw7.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:22419  MD5:32f9c41f8a2cb62f30718e171c188f62

[D:\Virus1\76\DNT\ZSC9QLVJYM73msi.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:24576  MD5:ab679ddd2fa232f7b0dec98d5ed2aca1

[D:\Virus1\76\DNT\超级木马.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:284756  MD5:0833e3768e12abdaa2ba9c9e8bb6e0a9

文件数:76 病毒数:29  比重:0.3815789473684
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎
正在检查启动……
[D:\Virus1\76\DNT\Access.exe2]
                  …………发现Spy！报告: [4]
文件信息:  大小:57344  MD5:741a9876a360256a77e4f72522df2f05

[D:\Virus1\76\DNT\ad7546.exe2]
                  …………发现Spy！报告:[1] Win32.HGZ-HF.A
文件信息:  大小:133950  MD5:d021475f46a80302e436afdc48b02703

[D:\Virus1\76\DNT\ad7553.exe2]
                  …………发现Spy！报告:[1] Win32.HGZ-HF.A
文件信息:  大小:133905  MD5:3de6e974415ba9f332b87667d8b4b848

[D:\Virus1\76\DNT\allps.exe6]
                  …………发现Spy！报告: [4]
文件信息:  大小:24576  MD5:6c71b48750cb8bd688e93a5e319b11f9

[D:\Virus1\76\DNT\aoqnabib.sys]
                  …………发现Spy！报告: [4]
文件信息:  大小:520  MD5:007e0ffcbce9bc3448aeb569094d0ae6

[D:\Virus1\76\DNT\conime.exe4]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:977920  MD5:3b9e0f7d4dbf8b65e5cf72971b4166d2

[D:\Virus1\76\DNT\ctfmon.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:7016  MD5:369150e347b650085aebee5f4d48c66a

[D:\Virus1\76\DNT\ddddd.exe6]
                  …………发现Spy！报告:[2]
文件信息:  大小:56353  MD5:fb929c02524432064787bab9808fda08

[D:\Virus1\76\DNT\DNT.exe2]
                  …………发现Spy！报告:[2] [1] Win32.Unknow
文件信息:  大小:271360  MD5:15c521a1647aefdae7d913fcb48ac644

[D:\Virus1\76\DNT\eoms19.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:32896  MD5:56dd412a54fdc992e095911c173fea66

[D:\Virus1\76\DNT\hjsv10.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:19419  MD5:56b6ce8c6688d743d6485c7599ef2b75

[D:\Virus1\76\DNT\Jack.exe2]
                  …………发现Spy！报告: [4]
文件信息:  大小:241664  MD5:e2c4eb8e3a2ddc926e12cd161421e454

[D:\Virus1\76\DNT\jview.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:172304  MD5:90b2f298485c7f665bc21ee32b9af9af

[D:\Virus1\76\DNT\mcdcsrv32_080602.dll]
                  …………发现Spy！报告: [4] [2]
文件信息:  大小:538112  MD5:d1e6c5b71a7fbe9a3b015f090b7e71de

[D:\Virus1\76\DNT\mspcexp.dll]
                  …………发现Spy！报告:[2] [8] HOOK者
文件信息:  大小:49152  MD5:75d0d5b9d9d239eabcfe202b5879009f

[D:\Virus1\76\DNT\nkly6.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:22407  MD5:19c4b67896993b9f98fa2b1bbe61dec1

[D:\Virus1\76\DNT\qqshel.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:69763  MD5:b64ac46bdf8deb96bf6f6e82adc16180

[D:\Virus1\76\DNT\RsAgent.dll]
                  …………发现Spy！报告:[1] Win32.NkHack.PeM.A
文件信息:  大小:477548  MD5:f32bc7c450747a076678077217e59f0c

[D:\Virus1\76\DNT\spssvr.exe5]
                  …………发现Spy！报告: [4]
文件信息:  大小:14848  MD5:e04d3582f1ea6a559745e855c30cf79b

[D:\Virus1\76\DNT\stormliv.exe5]
                  …………发现Spy！报告: [4]
文件信息:  大小:28672  MD5:42edb377af15c1a71c281eb267225fc3

[D:\Virus1\76\DNT\Thunder1.dll2]
                  …………发现Spy！报告: [4] [1] Win32.Packer3
文件信息:  大小:36352  MD5:9e7a0d5b29b0a3778a1ff6d44dd58dc2

[D:\Virus1\76\DNT\ujzb7.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:22431  MD5:29bb2bea64012791745b30d0d6480096

[D:\Virus1\76\DNT\VTEYLSO.exe2]
                  …………发现Spy！报告: [4]
文件信息:  大小:61440  MD5:78bd466ee8adbafde7f8863fcc65ce84

[D:\Virus1\76\DNT\winabc.GID]
                  …………发现Spy！报告: [4]
文件信息:  大小:10855  MD5:95ff826c5b5653c13729f74952c4ef03

[D:\Virus1\76\DNT\winxp1.exe2]
                  …………发现Spy！报告:[1] Win32.HGZ-HF.A
文件信息:  大小:57509  MD5:0aaa3498d155792771f0d51463c41fe4

[D:\Virus1\76\DNT\wjview.exe1]
                  …………发现Spy！报告:[2]
文件信息:  大小:171792  MD5:2351f710e971c080784a85b9e7cf2d5b

[D:\Virus1\76\DNT\xsxw7.exe2]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:22419  MD5:32f9c41f8a2cb62f30718e171c188f62

[D:\Virus1\76\DNT\ZSC9QLVJYM73msi.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:24576  MD5:ab679ddd2fa232f7b0dec98d5ed2aca1

[D:\Virus1\76\DNT\超级木马.exe2]
                  …………发现Spy！报告:[2]
文件信息:  大小:284756  MD5:0833e3768e12abdaa2ba9c9e8bb6e0a9

文件数:76 病毒数:29  比重:0.3815789473684
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

显示全部楼层 · 发表于 2008-6-24 09:20:41

看来卡巴到现在还没有处理完

显示全部楼层 · 发表于 2008-6-24 09:34:29

AVK（3）：30个

显示全部楼层 · 发表于 2008-6-24 09:48:08

vba32 = 16+2

G:\Security\Scan\76\DNT\360safe.exe2 : infected Trojan-Spy.Win32.Small.bue
G:\Security\Scan\76\DNT\allps.exe6 : infected Trojan.Win32.Agent.rkf
G:\Security\Scan\76\DNT\bwpr0.exe1 : infected Trojan.Win32.Agent.sat
G:\Security\Scan\76\DNT\conime.exe4 : infected Trojan-Downloader.Win32.Agent.rjq
G:\Security\Scan\76\DNT\ctfmon.exe2 : infected Trojan-Downloader.Win32.Agent.rjq
G:\Security\Scan\76\DNT\ddddd.exe6 : infected Trojan-Downloader.Win32.Agent.ntx
G:\Security\Scan\76\DNT\DNT.exe2 : infected Trojan-Downloader.Win32.Agent.rlr
G:\Security\Scan\76\DNT\eoms19.exe2 : infected MalwareScope.Trojan-PSW.Game.7
G:\Security\Scan\76\DNT\Jack.exe2 : infected Trojan-Downloader.Win32.Agent.sqc
G:\Security\Scan\76\DNT\mcdcsrv32_080602.dll : infected Trojan-Spy.Win32.Agent.cuq
G:\Security\Scan\76\DNT\mspcexp.dll : infected Trojan-Spy.Win32.Zapchast.d
G:\Security\Scan\76\DNT\qqshel.exe2 : infected Trojan.Win32.BHO.dxy
G:\Security\Scan\76\DNT\RavNT.e1xe : infected Trojan.Win32.BHO.ebl
G:\Security\Scan\76\DNT\RsAgent.dll : infected Backdoor.Win32.Hupigon.chlx
G:\Security\Scan\76\DNT\userinit.exe43 : infected Win32.TrojanDownloader.Agent.NYP
G:\Security\Scan\76\DNT\VTEYLSO.exe2 : is suspected of Trojan-Spy.Agent.13 (paranoid heuristics)
G:\Security\Scan\76\DNT\YQL_Lyrics_Common.dll : infected Trojan-Clicker.Win32.Agent.auj
G:\Security\Scan\76\DNT\ZZCL61.exe4 : is suspected of Trojan-Spy.Agent.13 (paranoid heuristics)

显示全部楼层 · 发表于 2008-6-24 10:38:03

IKARUS 35
D:\virus\DNT\-90393359
D:\virus\DNT\033.exe2 - 特征码 'Virus.Win32.Agent.GRW' 被发现
D:\virus\DNT\10156.dat - 特征码 'BehavesLike.Trojan.ShellObject' 被发现
D:\virus\DNT\11135.dat - 特征码 'BehavesLike.Trojan.ShellObject' 被发现
D:\virus\DNT\2.tmp - 特征码 'Virus.Win32.Qhost.AYU' 被发现
D:\virus\DNT\3157.exe2
D:\virus\DNT\360safe.exe2 - 特征码 'Trojan-Spy.Small.bua' 被发现
D:\virus\DNT\6to4.dll - 特征码 'Virus.Win32.Agent.WLV' 被发现
D:\virus\DNT\Access.exe2
D:\virus\DNT\ad7546.exe2:\$COMMONFILES\CPUSH\cpush.dll - 特征码 'Virus.Win32.BHO.GG' 被发现
D:\virus\DNT\ad7546.exe2
D:\virus\DNT\ad7553.exe2:\$COMMONFILES\CPUSH\cpush.dll - 特征码 'Virus.Win32.BHO.GG' 被发现
D:\virus\DNT\ad7553.exe2
D:\virus\DNT\allps.exe6 - 特征码 'Virus.Trojan.Win32.Agent.rkf' 被发现
D:\virus\DNT\ansi.sys
D:\virus\DNT\aoqnabib.sys
D:\virus\DNT\bootcfg.exe12
D:\virus\DNT\bwpr0.exe1 - 特征码 'Backdoor.Win32.Agent.ahj' 被发现
D:\virus\DNT\cid_store.dat
D:\virus\DNT\comarshal.dat
D:\virus\DNT\comspring.dat
D:\virus\DNT\conime.exe4 - 特征码 'Trojan-Downloader.Win32.Agent.rjq' 被发现
D:\virus\DNT\ctfmon.exe2 - 特征码 'Trojan-Downloader.Win32.Agent.rjq' 被发现
D:\virus\DNT\ddddd.exe6 - 特征码 'Trojan-Downloader.Win32.Agent.ntx' 被发现
D:\virus\DNT\DNT.exe2 - 特征码 'Trojan-Downloader.Win32.Agent.rlr' 被发现
D:\virus\DNT\eoms19.exe2 - 特征码 'Trojan-Downloader.6165' 被发现
D:\virus\DNT\FireFoxUpdater.exe5 - 特征码 'Backdoor.Win32.IRCBot.BV' 被发现
D:\virus\DNT\gtwatch.exe1
D:\virus\DNT\hjsv10.exe2 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\virus\DNT\ICBCNetSignG.dll
D:\virus\DNT\Jack.exe2 - 特征码 'Trojan-Downloader.Win32.Agent.sqc' 被发现
D:\virus\DNT\jcutilgem101101.dll
D:\virus\DNT\JCUTILGEM102K.dll
D:\virus\DNT\jcutilHUAUK.dll
D:\virus\DNT\jfrwdh.dll - 特征码 'Trojan.Win32.Tilcun.B' 被发现
D:\virus\DNT\jview.exe2
D:\virus\DNT\mcdcsrv32_080602.dll - 特征码 'Trojan-Spy.Win32.Agent.pn' 被发现
D:\virus\DNT\mspcexp.dll - 特征码 'Trojan-Spy.Zapchast.D.1' 被发现
D:\virus\DNT\myiecfg.ini.tmp
D:\virus\DNT\nkly6.exe2 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\virus\DNT\od.exe2 - 特征码 'Trojan-Downloader.Win32.Agent.anh' 被发现
D:\virus\DNT\perfc009.dat
D:\virus\DNT\perfh009.dat
D:\virus\DNT\pid.PNF
D:\virus\DNT\prfc0804.dat
D:\virus\DNT\prfh0804.dat
D:\virus\DNT\pub_store.dat
D:\virus\DNT\qqshel.exe2 - 特征码 'Virus.Trojan.Win32.BHO.dxy' 被发现
D:\virus\DNT\RavNT.e1xe - 特征码 'Virus.Trojan.Win32.BHO.dxy' 被发现
D:\virus\DNT\reg.exe6
D:\virus\DNT\RsAgent.dll - 特征码 'VirTool.Win32.DelfInject.X' 被发现
D:\virus\DNT\sc.exe4
D:\virus\DNT\spssvr.exe5 - 特征码 'Trojan.Win32.Arveye.A' 被发现
D:\virus\DNT\stormliv.exe5
D:\virus\DNT\systemdrv.dll - 特征码 'Backdoor.Win32.Agent.RK' 被发现
D:\virus\DNT\systome.dll
D:\virus\DNT\TElem32.dll
D:\virus\DNT\Thunder1.dll2
D:\virus\DNT\ticw.exe2
D:\virus\DNT\ujzb7.exe2 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\virus\DNT\userinit.exe43 - 特征码 'Trojan-Downloader.Win32.Agent.ntx' 被发现
D:\virus\DNT\usmsho.dll
D:\virus\DNT\usmsvc.exe14 - 特征码 'AdWare.Agent.45056' 被发现
D:\virus\DNT\VTEYLSO.exe2 - 特征码 'Trojan-Dropper.Agent.zaf' 被发现
D:\virus\DNT\W15J6.tmp1
D:\virus\DNT\winabc.GID
D:\virus\DNT\winxp1.exe2
D:\virus\DNT\wjview.exe1
D:\virus\DNT\wpa.dbl
D:\virus\DNT\wsock32.dll
D:\virus\DNT\wv.dat
D:\virus\DNT\xavengine.dll
D:\virus\DNT\xlhcc.dat
D:\virus\DNT\xsxw7.exe2 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\virus\DNT\YQL_Lyrics_Common.dll - 特征码 'Trojan-Clicker.Win32.Agent.auj' 被发现
D:\virus\DNT\ZSC9QLVJYM73msi.exe2
D:\virus\DNT\ZZCL61.exe4 - 特征码 'Trojan-Dropper.Agent.zaf' 被发现
D:\virus\DNT\超级木马.exe2

78 文件被扫描
(3 压缩档 2 文件)
35 特征码被侦测
0 可疑代码段被发现
耗时: 0:14.485

显示全部楼层 · 发表于 2008-6-24 11:06:19

显示全部楼层 · 发表于 2008-6-24 11:15:14

等待更多测试结果！我的卡巴2009表现不佳！可能设置的有问题吧！

显示全部楼层 · 发表于 2008-6-24 11:18:38

我的卡巴今天没有更新！

显示全部楼层 · 发表于 2008-6-24 11:55:00

原帖由 aerbeisi 于 2008-6-24 11:06 发表

把一些dat去掉行...

[病毒样本] 76

本帖子中包含更多资源

NOD32 29个，很多都是无毒文件