今天抓的~

显示全部楼层 · 发表于 2009-5-5 18:07:34

扫描结果

文件名称 :	新建文件夹.rar
文件大小 :	255218 byte
文件类型 :	RAR archive data, v1d, os
MD5 :	8b3b7bad381f8e2d62e90593a9065a64
SHA1 :	15d4a19a04911390ed3c650c56bff7310f8fc2ee

http://virscan.org/report/bfa178677e4bbe8506c7b2615c886810.html

显示全部楼层 · 发表于 2009-5-5 18:22:05

7个

显示全部楼层 · 发表于 2009-5-5 18:22:55

使用 G DATA AntiVirus 进行病毒检测
版本 20.0.2.0 (2009-3-16)
病毒特征库日期 2009-5-5
开始时间: 2009-5-5 18:21
引擎: 引擎 A (AVA 19.5212), 引擎 B (AVB 19.320)
高启发: 开启
文件: 开启
系统区域: 开启
RootKits 检测: 关闭

检测系统区域
检测选中目录和文件:
C:\Downloads\新建文件夹\

项目: 100133.SYS
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: RootKit.Cnsmin.A (Engine A)
项目: ACPIDISK.SYS
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: Gen:Rootkit.Heur.90F30C2C2C (Engine A)
项目: EXPLORER.EXE
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: Trojan.Crypt.GQ (Engine A)
项目: LINKINFO.DLL
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: Generic.Malware.SP!VPk!Tkg.8D89CFAE (Engine A)
项目: LOPAGE95.EXE
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: Win32:Trojan-gen {Other} (Engine B)
项目: PNPMEM.SYS
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: Trojan.Generic.1411727 (Engine A)
项目: WUAUCLT.EXE
路径: C:\Downloads\新建文件夹
状态: 病毒无法清除
病毒: DeepScan:Generic.Malware.dldspTkg.5B6173B9 (Engine A)

检测执行时间: 2009-5-5 18:21
已检测 8 个文件
已发现 7 个病毒文件

显示全部楼层 · 发表于 2009-5-5 18:27:28

Starting the file scan:

Begin scan in 'D:\kafan\60C377.EXE'
Begin scan in 'D:\kafan\WUAUCLT.EXE'
D:\kafan\WUAUCLT.EXE
[DETECTION] Is the TR/Crypt.XDR.Gen Trojan
[NOTE]    A backup was created as '4a411552.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
Begin scan in 'D:\kafan\100133.SYS'
D:\kafan\100133.SYS
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    A backup was created as '4a30152e.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
Begin scan in 'D:\kafan\ACPIDISK.SYS'
D:\kafan\ACPIDISK.SYS
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    A backup was created as '4a501547.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
Begin scan in 'D:\kafan\EXPLORER.EXE'
D:\kafan\EXPLORER.EXE
[DETECTION] Is the TR/Expl.IMG-WMF.EX.1 Trojan
[NOTE]    A backup was created as '4a50155c.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
Begin scan in 'D:\kafan\LINKINFO.DLL'
D:\kafan\LINKINFO.DLL
[DETECTION] Is the TR/AntiAV.bib Trojan
[NOTE]    A backup was created as '4a4e154d.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
Begin scan in 'D:\kafan\LOPAGE95.EXE'
D:\kafan\LOPAGE95.EXE
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    A backup was created as '4a501553.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!
Begin scan in 'D:\kafan\PNPMEM.SYS'
D:\kafan\PNPMEM.SYS
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    A backup was created as '4a501552.qua'  ( QUARANTINE )
[NOTE]    The file was deleted!

End of the scan: 2009年5月5日  18:29
Used time: 00:07 Minute(s)

The scan has been done completely.

   0 Scanned directories
   8 Files were scanned
   7 Viruses and/or unwanted programs were found
   0 Files were classified as suspicious
   7 files were deleted
   0 Viruses and unwanted programs were repaired
   7 Files were moved to quarantine
   0 Files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   0 Archives were scanned
   0 Warnings
   7 Notes

显示全部楼层 · 发表于 2009-5-5 18:41:07

病毒 2009-05-05  18:41:49 F:\DL\WUAUCLT.EXE Win32.Hack.PcClient.53248 (后门程序) 隔离成功
病毒 2009-05-05  18:41:49 F:\DL\PNPMEM.SYS Win32.Troj.CinmusT.cc.157444 (木马程序) 隔离成功
病毒 2009-05-05  18:41:49 F:\DL\LOPAGE95.EXE Win32.VirInstaller.Agent.90112 (病毒安装器) 隔离成功
病毒 2009-05-05  18:41:49 F:\DL\EXPLORER.EXE Win32.Hack.MS08067.ae.57344 (后门程序) 隔离成功
病毒 2009-05-05  18:41:49 F:\DL\ACPIDISK.SYS Win32.Troj.DeskRootkitT.nv.127364 (木马程序) 隔离成功
病毒 2009-05-05  18:41:49 F:\DL\60C377.EXE Win32.Troj.FuckCryptT.d.114176 (木马程序) 隔离成功
病毒 2009-05-05  18:41:49 F:\DL\100133.SYS Win32.Troj.Rootkit.n.29184 (木马程序) 隔离成功

显示全部楼层 · 发表于 2009-5-5 18:59:34

凝逸反毒 ok:0|毒:2|末知:3|6/8|每秒2个文件

显示全部楼层 · 发表于 2009-5-5 21:51:05

McAfee 报了5个。。

[病毒样本] 今天抓的~

本帖子中包含更多资源

7