30个

显示全部楼层 · 发表于 2008-6-29 15:43:06

[ExeList]
|j0|[5]*http://666.232313.cn/wm/bb.exe*
|j1|[5]*http://www.5gidc.net/cert/menghuan.exe*
|j3|[5]*http://www.5gidc.net/cert/cq2.exe*
|j4|[5]*http://www.5gidc.net/cert/daojian.exe*
|j5|[5]*http://www.5gidc.net/cert/jianxia.exe*
|j6|[5]*http://www.5gidc.net/cert/maoxiandao.exe*
|j7|[5]*http://www.5gidc.net/cert/chibi.exe*
|j8|[5]*http://www.5gidc.net/cert/potian.exe*
|j9|[5]*http://www.5gidc.net/cert/juren.exe*
|ja|[5]*http://www.5gidc.net/cert/my.exe*
|jb|[5]*http://www.5gidc.net/cert/qq.exe*
|jc|[5]*http://www.5gidc.net/cert/zhuxian.exe*
|jd|[5]*http://www.5gidc.net/cert/qqsanguo.exe*
|je|[5]*http://219.136.252.219/tl.exe*
|jf|[5]*http://219.136.252.219/wendao.exe*
|jg|[5]*http://219.136.252.219/wow.exe*
|jh|[5]*http://219.136.252.219/wulin.exe*
[ExeList]

复制代码

[ 本帖最后由 promised 于 2008-6-29 15:47 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:44:31

MicroVita AntiSpyware
_____________________________________________

         风暴微塔反间谍 T2
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\__\bb.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.BDX.A
文件信息:  大小:12384  MD5:d199feedc47cfbc22956ed1b08220b1f

[C:\Documents and Settings\Administrator\桌面\__\chibi.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:25760  MD5:3fc88e9bd9033bdbe43e5d28c211ca2f

[C:\Documents and Settings\Administrator\桌面\__\cq2.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19359  MD5:b0fde629dfa7d09dd2fb0e8f9c7fecdb

[C:\Documents and Settings\Administrator\桌面\__\daojian.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18507  MD5:0ec3607c473ba3b438e6b708e03c46d2

[C:\Documents and Settings\Administrator\桌面\__\maoxiandao.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16341  MD5:36b5e31074f6ec138d3ac630208d1e0e

[C:\Documents and Settings\Administrator\桌面\__\menghuan.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18296  MD5:d7a31e64e6f39b0a796d60b3774d46e5

[C:\Documents and Settings\Administrator\桌面\__\potian.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18613  MD5:ed6acb14428519a920571ee12109147b

[C:\Documents and Settings\Administrator\桌面\__\qq.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:32910  MD5:ca3c64f18c964b1becf8147bb6ffe96b

[C:\Documents and Settings\Administrator\桌面\__\qqsanguo.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18939  MD5:d575b37a900d8820f5b64dbfe5c62393

[C:\Documents and Settings\Administrator\桌面\__\tl.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16776  MD5:8e15dc81f65cfaec4dc6b792d0034864

[C:\Documents and Settings\Administrator\桌面\__\wendao.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17521  MD5:a40d31f503a93e52a82e1fea1a20d938

[C:\Documents and Settings\Administrator\桌面\__\wulin.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17252  MD5:d68b5d96edb31c2f675cacb3f528c3ca

[C:\Documents and Settings\Administrator\桌面\__\zhuxian.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19582  MD5:c4043c5826587995e328ac1bf5def02f

[C:\Documents and Settings\Administrator\桌面\__\MMQACNAR1068.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:10505  MD5:5624d2f1159dd3125d2dfd1fce41f0ef

[C:\Documents and Settings\Administrator\桌面\__\MMHADPQG1099.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:10403  MD5:ca52e5718cd0cdfd2625651e63af53b0

[C:\Documents and Settings\Administrator\桌面\__\MMBAIKOK1099.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:11466  MD5:052354c7b96f6f6b382e78677baacf4c

[C:\Documents and Settings\Administrator\桌面\__\SysCbCYK.dll]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:21124  MD5:9fde96b31fc2930289065eaf2badf136

[C:\Documents and Settings\Administrator\桌面\__\MMWLANGH1006.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:10671  MD5:bb6ce1e8c51f74cd03a38c8d0f34b5a7

文件数:28 病毒数:18  比重:0.6428571428571
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

显示全部楼层 · 发表于 2008-6-29 15:44:36

病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\MMWLANGH1006.dll Win32.Troj.Agent.ks.81920 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\SysCbCYK.dll Win32.PSWTroj.OnLineGames.122880 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\nhmxdjkl.dll Win32.Troj.OnlineGamesT.fy.534788 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\zptlcsys.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\mpwdeapi.dll Win32.Troj.OnlineGames.u.186880 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\zywlcime.dll Win32.Troj.OnlineGames.u.538120 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\mnmhgsrv.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\ypcqghlp.dll Win32.PSWTroj.GameOL.539144 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\ddxzz.vxd Win32.Troj.Unknown.27136 清除成功
病毒 2008-06-29  15:44:25 C:\Documents and Settings\Administrator\桌面\样本.rar\MMBAIKOK1099.dll Win32.Troj.Agent.ks.86016 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\MMHADPQG1099.dll Win32.Troj.Agent.ks.81920 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\Windows64.Sys Win32.Troj.QQPass.a.48253 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\zhuxian.exe Win32.Troj.OnlineGameT.pq.57344 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\wulin.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\wow.exe Win32.Troj.GameOnlineT.xx.61440 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\wendao.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:44:24 C:\Documents and Settings\Administrator\桌面\样本.rar\tl.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\qqsanguo.exe Win32.Troj.OnlineGameT.pq.57344 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\qq.exe Win32.Troj.QQPswT.bs.116858 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\potian.exe Win32.Troj.OnlineGameT.pq.57344 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\my.exe Win32.Troj.GameOnlineT.xx.61440 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\menghuan.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\maoxiandao.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\juren.exe Win32.Troj.GameOnlineT.xx.61440 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\jianxia.exe Win32.Troj.GameOnlineT.xx.61440 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\daojian.exe Win32.Troj.OnlineGameT.pq.57344 清除成功
病毒 2008-06-29  15:44:23 C:\Documents and Settings\Administrator\桌面\样本.rar\cq2.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:44:22 C:\Documents and Settings\Administrator\桌面\样本.rar\bb.exe Win32.Troj.Qhost.69632 清除成功
病毒 2008-06-29  15:44:22 C:\Documents and Settings\Administrator\桌面\样本.rar\MMQACNAR1068.dll Win32.Troj.Agent.ks.81920 清除成功

显示全部楼层 · 发表于 2008-6-29 15:45:28

显示全部楼层 · 发表于 2008-6-29 15:47:31

已刪除: 特洛伊木馬程式 Trojan.Win32.Qhost.aqn 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/bb.exe//NSPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.amey 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/chibi.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryqo 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/cq2.exe//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.sav 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/jianxia.exe//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.sav 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/juren.exe//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxi 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/maoxiandao.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyp 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/menghuan.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.QQPass.ckv 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/qq.exe//UPX
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rzbh 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/qqsanguo.exe//PE_Patch//UPack//data0000//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxp 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/tl.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxp 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/wendao.exe//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.sav 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/wow.exe//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxz 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/wulin.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Delf.gce 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/ddxzz.vxd
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rytv 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/ypcqghlp.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxl 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/mnmhgsrv.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/zywlcime.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryts 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/mpwdeapi.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxm 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/zptlcsys.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/nhmxdjkl.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.anaw 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/SysCbCYK.dll//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rzbh 檔案: C:\Documents and Settings\kato9096\桌面\样本.rar/MMWLANGH1006.dll//UPack

18,不报的已上报.

显示全部楼层 · 发表于 2008-6-29 15:48:09

kv杀29

网络监控过滤压缩病毒28个扫描1个

[ 本帖最后由 aaad2008 于 2008-6-29 15:54 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:49:25

C:\Documents and Settings\kato9096\桌面\样本\cq2.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\daojian.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\ddxzz.vxd
   [DETECTION] Is the Trojan horse TR/Dldr.Delphi.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\jianxia.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\juren.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\maoxiandao.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\menghuan.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\MMBAIKOK1099.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\MMHADPQG1099.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\MMQACNAR1068.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\MMWLANGH1006.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\mnmhgsrv.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\mpwdeapi.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\my.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\nhmxdjkl.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\potian.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\qq.exe
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\qqsanguo.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\SysCbCYK.dll
   [DETECTION] Is the Trojan horse TR/Downloader.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\tl.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\wendao.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\Windows64.Sys
   [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\wow.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\wulin.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\ypcqghlp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\zhuxian.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\zptlcsys.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\样本\zywlcime.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!

End of the scan: Sunday,29 June 2008  15:49
Used time: 00:15 min

The scan has been done completely.

   1 Scanning directories
   30 Files were scanned
   29 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   29 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   0 Archives were scanned
   1 Warnings
   29 Notes

29,已上报.

File ID    Filename    Size (Byte) Result
25060967    chibi.exe    25.16 KB    MALWARE

The file 'chibi.exe' has been determined to be 'MALWARE'. This malware is detected by a special detection routine from the engine module.

[ 本帖最后由 kato9096 于 2008-6-29 15:51 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:50:36

金山和红伞一样哦~

显示全部楼层 · 发表于 2008-6-29 15:53:28

正分析ddxzz.vxd.......

http://www.threatexpert.com/repo ... 546a9dda2ffc320ee4f

[ 本帖最后由 kato9096 于 2008-6-29 15:57 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:54:14

C:\ABC\vir\bb.exe - 特征码 'MalwareScope.Worm.Viking.4' 被发现
C:\ABC\vir\chibi.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\vir\cq2.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\vir\daojian.exe - 可疑代码段被发现 (Level: 75)
C:\ABC\vir\ddxzz.vxd - 特征码 'MalwareScope.Worm.Viking.4' 被发现
C:\ABC\vir\jianxia.exe
C:\ABC\vir\juren.exe - 特征码 'Trojan-PWS.OnlineGames.ZAY' 被发现
C:\ABC\vir\maoxiandao.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\vir\menghuan.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\vir\MMBAIKOK1099.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\vir\MMHADPQG1099.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\vir\MMQACNAR1068.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\vir\MMWLANGH1006.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\vir\mnmhgsrv.dll - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
C:\ABC\vir\mpwdeapi.dll - 特征码 'Virus.Win32.OnLineGames.BGD' 被发现
C:\ABC\vir\my.exe - 特征码 'Trojan-PWS.OnlineGames.ZAY' 被发现
C:\ABC\vir\nhmxdjkl.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\vir\potian.exe - 可疑代码段被发现 (Level: 75)
C:\ABC\vir\qq.exe - 特征码 'Trojan-Downloader.6165' 被发现
C:\ABC\vir\qqsanguo.exe - 可疑代码段被发现 (Level: 75)
C:\ABC\vir\SysCbCYK.dll - 特征码 'Trojan-PWS.Win32.Agent.jp' 被发现
C:\ABC\vir\tl.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\vir\wendao.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\vir\Windows64.Sys - 特征码 'Trojan-Proxy.Win32.Delf.AN' 被发现
C:\ABC\vir\wow.exe - 特征码 'Trojan-PWS.OnlineGames.ZAY' 被发现
C:\ABC\vir\wulin.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\vir\ypcqghlp.dll - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
C:\ABC\vir\zhuxian.exe - 特征码 'Virus.Win32.OnLineGames.EEH' 被发现
C:\ABC\vir\zptlcsys.dll - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
C:\ABC\vir\zywlcime.dll - 特征码 'Virus.Win32.OnLineGames.EAT' 被发现

30 文件被扫描
(0 压缩档 0 文件)
26 特征码被侦测
3 可疑代码段被发现
耗时: 0:00.531

[病毒样本] 30个

本帖子中包含更多资源

29

本帖子中包含更多资源

回复 5楼 kato9096 的帖子