http://camas.comodo.com/cgi-bin/ … c4d9a18a3b7a6fd05c6
no actions detected
2011-05-05 16:30:56 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hnf.exe Sandboxed As Partially Limited2011-05-05 16:30:57 C:\Documents and Settings\Roger\Local Settings\Temp\sshnas21.dll Sandboxed As Partially Limited
2011-05-05 16:31:04 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hnf.exe Modify File C:\WINDOWS\system32\sshnas21.dll
2011-05-05 16:31:04 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hnf.exe Modify Key HKLM\SYSTEM\ControlSet001\Services\SSHNAS
2011-05-05 16:31:04 C:\Documents and Settings\Roger\Local Settings\Temp\sshnas21.dll Access Memory System
no actions detected
2011-05-05 16:39:04 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hng.exe Sandboxed As Partially Limited2011-05-05 16:39:10 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hng.exe Modify File C:\WINDOWS\Tasks{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job
2011-05-05 16:39:27 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hng.exe Modify Key HKUS\S-1-5-21-2000478354-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\
2011-05-05 16:39:34 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hng.exe Modify Key HKUS\S-1-5-21-2000478354-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyEnable
no actions detected
2011-05-05 16:42:30 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hnh.exe Sandboxed As Partially Limited2011-05-05 16:42:42 C:\Documents and Settings\Roger\桌面\virus\movie.avi\Hnh.exe Modify Key HKUS\S-1-5-21-2000478354-583907252-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Run\R8388QA8U8