收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一下载者及其产物(共116个)(地址更新了)
1234下一页
返回列表 发新帖
楼主: promised
 收起左侧

[病毒样本] 一下载者及其产物(共116个)(地址更新了)

[复制链接]
风野胤
发表于 2007-7-17 11:10:32 | 显示全部楼层
原帖由 woai_jolin 于 2007-7-17 11:07 发表

60多k强
我才6k

用IDM下的
一般60多K
高峰90多K
回复

举报

wangjay1980
发表于 2007-7-17 11:12:19 | 显示全部楼层

回复 #16 promised 的帖子

卡巴查得细致,没办法
回复

举报

一派胡言
发表于 2007-7-17 11:25:47 | 显示全部楼层
kv2007杀49个,太少了

        北京江民新科技术有限公司

        扫描引擎 10.00.600
        病毒库日期 2007-07-16
        更新日期 2007-07-17

扫描目标 C:\Documents and Settings\Administrator\桌面\down\

开始时间 2007-07-17 11:22:32

在 C:\Documents and Settings\Administrator\桌面\down\1093.exe 中发现 TrojanDownloader.Delf.bqm 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\s5888.exe 中发现 Trojan/PSW.GamePass.sln 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\pv0018.exe 中发现 Trojan/PSW.GamePass.qpf 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\Server.exe 中发现 TrojanSpy.Delf.ye 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\downloader1.exe 中发现 TrojanDownloader.Small.cam 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\mm.exe 中发现 Trojan/PSW.QQPass.qhf 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\80325.exe 中发现 Trojan/PSW.GamePass.sln 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\19008.exe 中发现 TrojanDownloader.Agent.kvh 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\62205.exe 中发现 Trojan/PSW.GamePass.slm 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\1012.exe 中发现 Trojan/PSW.GamePass.sqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\2209.exe 中发现 Trojan/PSW.GamePass.suz 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\1064.exe 中发现 TrojanDownloader.Delf.cka 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\winies21.dll 中发现 Trojan/StartPage.aat 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\nfqies21.dll 中发现 Trojan/StartPage.aau 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\Setup.exe 中发现 Adware/NewWeb.x 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\103.exe 中发现 Trojan/PSW.GamePass.sqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\329.exe 中发现 Trojan/PSW.GamePass.svb 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\13715C84.EXE 中发现 Trojan/PSW.GamePass.svb 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\hh.exe 中发现 TrojanDownloader.Delf.cko 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\3.exe 中发现 Trojan/PSW.GamePass.sdy 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\3EE4F2CC.EXE 中发现 Trojan/PSW.GamePass.sqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\4.exe 中发现 Trojan/PSW.GamePass.sqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\8.exe 中发现 Trojan/Agent.kfc 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\9.exe 中发现 TrojanDownloader.Agent.kvh 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\10.exe 中发现 Trojan/PSW.GamePass.slm 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\11.exe 中发现 TrojanDownloader.Delf.bqm 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\14.exe 中发现 Trojan/PSW.GamePass.sln 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\13.exe 中发现 TrojanDownloader.Delf.cka 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\kusn33sd.exe 中发现 Trojan/Agent.kfc 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\msv1_1.dll 中发现 TrojanDownloader.Agent.lnf 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\wdfmgrnt.exe 中发现 TrojanDownloader.Small.cam 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\aygcmq38.dll 中发现 Trojan/StartPage.aau 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\wincmq38.dll 中发现 Trojan/StartPage.aat 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\mszstb.dll 中发现 Trojan/PSW.GamePass.ome 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\nbuqmp68.sys 中发现 Adware/NewWeb.r 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\zlthro80.sys 中发现 Adware/NewWeb.r 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\acpidisk.sys 中发现 Adware/Clicker.apg 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\uusetup.exe 中发现 TrojanDownloader.Ieser.k 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\603.exe 中发现 TrojanDownloader.Delf.cko 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\8015.exe 中发现 TrojanDownloader.Delf.cfx 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\pv0009.exe 中发现 Trojan/PSW.GamePass.pzf 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\805~~.exe 中发现 Trojan/PSW.GamePass.suz 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\805~.exe 中发现 Trojan/PSW.GamePass.suz 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\aabb.exe 中发现 TrojanDownloader.Agent.lov 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\10012[1].exe 中发现 Trojan/PSW.GamePass.sqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\1012[1].exe 中发现 Trojan/PSW.GamePass.sqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\pc2198[1].exe 中发现 Trojan/Agent.kfc 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\pv0009[1].exe 中发现 Trojan/PSW.GamePass.sdy 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\down\bd8[1].rar 中发现 TrojanDownloader.Delf.cko 病毒, 已删除
正常结束。

扫描结果:
                 文件数 :767                                 病毒体 :49        
                   删除 :49                                    解毒 :0         
    扫描速度(千字节/秒) :1332                              扫描时间 :00:02:42
    扫描文件速度(个/秒) :4

   == == ==        == == == == == ==   == == == == == ==    == == == == == ==    == == == == ==     == == == == == ==
回复

举报

woai_jolin
发表于 2007-7-17 11:27:04 | 显示全部楼层
norman 44个
NSE revision 5.91.02
nvcbin.def revision 5.90.00 of 2007/07/16 18:21:00 (810345 variants)
nvcmacro.def revision 5.90.00 of 2007/06/29 06:32:19 (20341 variants)
Total number of variants: 830686
Command line: "@C:\Users\Jason\AppData\Local\Temp\~OD8587.tmp"
===================================================================================================

       Time  Filename                                                     Virus name
---------------------------------------------------------------------------------------------------
- Scanning files matching: C:\Downloads\572241.zip
       47 ms C:\Downloads\572241.zip : down/1093.exe                      Trojan W32/DLoader.CYSL ()
      109 ms C:\Downloads\572241.zip : down/s5888.exe                     Trojan Hupigon.gen66 ()
     2359 ms C:\Downloads\572241.zip : down/802.exe                     
       47 ms C:\Downloads\572241.zip : down/pv0018.exe                    Security Risk W32/Suspicious_U.gen ()
       32 ms C:\Downloads\572241.zip : down/Server.exe                    Trojan W32/Delf.AJIJ ()
       46 ms C:\Downloads\572241.zip : down/mm.exe                        Trojan W32/Delf.AHTZ ()
      125 ms C:\Downloads\572241.zip : down/downloader1.exe              
        0 ms C:\Downloads\572241.zip : down/80325.exe                     Trojan Hupigon.gen66 ()
      219 ms C:\Downloads\572241.zip : down/19008.exe                    
        0 ms C:\Downloads\572241.zip : down/62205.exe                     Trojan Hupigon.gen66 ()
     5344 ms C:\Downloads\572241.zip : down/host.exe                     
        0 ms C:\Downloads\572241.zip : down/cc_231.exe                    Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/1012.exe                      Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/2209.exe                      Trojan Hupigon.gen66 ()
       62 ms C:\Downloads\572241.zip : down/1064.exe                      Trojan W32/DLoader.CZUC ()
       16 ms C:\Downloads\572241.zip : down/p00qk.dll                    
       16 ms C:\Downloads\572241.zip : down/12345.exe                     Trojan W32/Malware.ABLY ()
       31 ms C:\Downloads\572241.zip : down/lujqmetiiojus.dll            
     5531 ms C:\Downloads\572241.zip : down/20540.exe                    
        0 ms C:\Downloads\572241.zip : down/winbce35.dll                 
       16 ms C:\Downloads\572241.zip : down/winies21.dll                 
        0 ms C:\Downloads\572241.zip : down/zlthro80.dll                 
        0 ms C:\Downloads\572241.zip : down/mmpbce35.dll                 
       16 ms C:\Downloads\572241.zip : down/nfqies21.dll                 
      297 ms C:\Downloads\572241.zip : down/Setup.exe                    
      234 ms C:\Downloads\572241.zip : down/winpop.exe                  
      141 ms C:\Downloads\572241.zip : down/UnInstall.exe               
     1890 ms C:\Downloads\572241.zip : down/Installeur.exe               
        0 ms C:\Downloads\572241.zip : down/103.exe                       Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/329.exe                       Trojan Hupigon.gen66 ()
      219 ms C:\Downloads\572241.zip : down/102.exe                     
     1578 ms C:\Downloads\572241.zip : down/12.exe                       
      687 ms C:\Downloads\572241.zip : down/b122.exe                     
      703 ms C:\Downloads\572241.zip : down/b122.exe.bin : b122.exe      
        0 ms C:\Downloads\572241.zip : down/b122.exe.bin                 
     1110 ms C:\Downloads\572241.zip : down/dodolook408.exe              
     1016 ms C:\Downloads\572241.zip : down/dd.exe                       
      125 ms C:\Downloads\572241.zip : down/b1b.exe                       Virus W32/Downloader ( [ General information ]
    * **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
    * File length:        20480 bytes.

[ Changes to filesystem ]
    * Creates file C:\WINDOWS\TEMP\tempaq.

[ Network services ]
    * Opens URL: http://install4.ring520.org/kkkk/mminstall.exe?queryid=70136.
    * Connects to "install4.ring520.org" on port 80 (TCP).
    * Opens URL: install4.ring520.org/kkkk/mminstall.exe.

[ Security issues ]
    * Starting downloaded file - potential security problem.

)
     1172 ms C:\Downloads\572241.zip : down/hh.exe                       
      515 ms C:\Downloads\572241.zip : down/retadpu566.exe               
        0 ms C:\Downloads\572241.zip : down/13715C84.EXE                  Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/0.exe                         Trojan W32/Agent.AMIS ()
        0 ms C:\Downloads\572241.zip : down/1.exe                         Trojan Hupigon.gen66 ()
      921 ms C:\Downloads\572241.zip : down/2.exe                        
       16 ms C:\Downloads\572241.zip : down/3.exe                         Trojan W32/Malware.ZTA ()
       16 ms C:\Downloads\572241.zip : down/3EE4F2CC.EXE                  Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/4.exe                         Trojan Hupigon.gen66 ()
     11312 ms C:\Downloads\572241.zip : down/5.exe                        
        0 ms C:\Downloads\572241.zip : down/6.exe                         Trojan Hupigon.gen66 ()
     1047 ms C:\Downloads\572241.zip : down/7.exe                        
       16 ms C:\Downloads\572241.zip : down/8.exe                         Trojan Hupigon.gen66 ()
      218 ms C:\Downloads\572241.zip : down/9.exe                        
        0 ms C:\Downloads\572241.zip : down/10.exe                        Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/11.exe                        Trojan W32/DLoader.CYSL ()
        0 ms C:\Downloads\572241.zip : down/13.exe                        Trojan W32/DLoader.CZUC ()
       16 ms C:\Downloads\572241.zip : down/14.exe                        Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/kusn33sd.exe                  Trojan Hupigon.gen66 ()
       15 ms C:\Downloads\572241.zip : down/idnreg.dll                  
       32 ms C:\Downloads\572241.zip : down/yazniqbgnhgcf.dll            
        0 ms C:\Downloads\572241.zip : down/DocProp1.dll                 
       15 ms C:\Downloads\572241.zip : down/msv1_1.dll                  
        0 ms C:\Downloads\572241.zip : down/g7cs0DXg1.dll               
      125 ms C:\Downloads\572241.zip : down/wdfmgrnt.exe                 
     1141 ms C:\Downloads\572241.zip : down/webhelp.exe                  
       47 ms C:\Downloads\572241.zip : down/webshow.dll                  
        0 ms C:\Downloads\572241.zip : down/ezhhzs08.dll                 
        0 ms C:\Downloads\572241.zip : down/winhzs08.dll                 
        0 ms C:\Downloads\572241.zip : down/wincmq38.dll                 
        0 ms C:\Downloads\572241.zip : down/aygcmq38.dll                 
       16 ms C:\Downloads\572241.zip : down/MSURLPAR.dll                 
        0 ms C:\Downloads\572241.zip : down/mszstb.dll                  
        0 ms C:\Downloads\572241.zip : down/nbuqmp68.dll                 
       47 ms C:\Downloads\572241.zip : down/idnaux.sys                  
      172 ms C:\Downloads\572241.zip : down/cnprov.sys                  
     1109 ms C:\Downloads\572241.zip : down/webhelp.drv                  
       63 ms C:\Downloads\572241.zip : down/webshow.drv                  
       94 ms C:\Downloads\572241.zip : down/aygcmq38.sys                 
       93 ms C:\Downloads\572241.zip : down/ezhhzs08.sys                 
      110 ms C:\Downloads\572241.zip : down/mmpbce35.sys                 
       93 ms C:\Downloads\572241.zip : down/nfqies21.sys                 
       32 ms C:\Downloads\572241.zip : down/nbuqmp68.sys                  Aggressive commersial W32/Newweb.EV ()
        0 ms C:\Downloads\572241.zip : down/zlthro80.sys                  Aggressive commersial W32/Newweb.EV ()
       93 ms C:\Downloads\572241.zip : down/mszstb.sys                  
       47 ms C:\Downloads\572241.zip : down/acpidisk.sys                 
       94 ms C:\Downloads\572241.zip : down/oxws6.sys                    
      109 ms C:\Downloads\572241.zip : down/qlydqd7dmo.sys               
     5907 ms C:\Downloads\572241.zip : down/uusetup.exe                  
     1563 ms C:\Downloads\572241.zip : down/pxMoB.exe                    
      640 ms C:\Downloads\572241.zip : down/tempaq                       
     1172 ms C:\Downloads\572241.zip : down/603.exe                     
        0 ms C:\Downloads\572241.zip : down/pv0009.exe                    Security Risk W32/Suspicious_U.gen ()
        0 ms C:\Downloads\572241.zip : down/1273.exe                      Trojan W32/Agent.AMIS ()
      453 ms C:\Downloads\572241.zip : down/8015.exe                      Virus W32/Downloader ( [ General information ]
    * **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
    * File length:       137728 bytes.

[ Changes to filesystem ]
    * Creates directory C:\dwnSetup.
    * Creates file C:\WINDOWS\SYSTEM32\g0e.dll.
    * Creates file C:\dwnSetup\wxpSetup202.txt.
    * Creates file C:\dwnSetup\wxpSetup202.exe.
    * Deletes file C:\dwnSetup\wxpSetup202.txt.

[ Network services ]
    * Downloads file from http://www2.softuu.cn/down/wxpSetup202.txt as C:\dwnSetup\wxpSetup202.txt.
    * Connects to "www2.softuu.cn" on port 80 (TCP).
    * Opens URL: www2.softuu.cn/down/wxpSetup202.txt.

[ Security issues ]
    * Starting downloaded file - potential security problem.

[ Process/window information ]
    * Creates an event called .

)
        0 ms C:\Downloads\572241.zip : down/805~~.exe                     Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/805~.exe                      Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/suada.exe                     Trojan W32/Agent.AMIS ()
     5344 ms C:\Downloads\572241.zip : down/li01.exe                     
      109 ms C:\Downloads\572241.zip : down/suad.exe                     
       78 ms C:\Downloads\572241.zip : down/aabb.exe                     
      907 ms C:\Downloads\572241.zip : down/1246.exe                     
      890 ms C:\Downloads\572241.zip : down/1238.exe                     
      891 ms C:\Downloads\572241.zip : down/944.exe                     
        0 ms C:\Downloads\572241.zip : down/DoSSSetup.dll               
      125 ms C:\Downloads\572241.zip : down/Setup1.exe                  
        0 ms C:\Downloads\572241.zip : down/wr-1-566.exe                  Trojan W32/DLoader.CZXD ()
     6984 ms C:\Downloads\572241.zip : down/bd3[1].rar                  
        0 ms C:\Downloads\572241.zip : down/10012[1].exe                  Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/1012[1].exe                   Trojan Hupigon.gen66 ()
        0 ms C:\Downloads\572241.zip : down/1093[1].exe                   Trojan W32/Malware.ABLY ()
        0 ms C:\Downloads\572241.zip : down/1273[1].exe                   Trojan W32/Agent.AMIS ()
     1593 ms C:\Downloads\572241.zip : down/802[1].exe                  
        0 ms C:\Downloads\572241.zip : down/pc2198[1].exe                 Trojan Hupigon.gen66 ()
       16 ms C:\Downloads\572241.zip : down/pv0009[1].exe                 Trojan W32/Malware.ZTA ()
      125 ms C:\Downloads\572241.zip : down/bd2[1].rar                    Virus W32/Downloader ( [ General information ]
    * **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
    * File length:        20480 bytes.

[ Changes to filesystem ]
    * Creates file C:\WINDOWS\TEMP\tempaq.

[ Network services ]
    * Opens URL: http://install4.ring520.org/kkkk/mminstall.exe?queryid=70136.
    * Connects to "install4.ring520.org" on port 80 (TCP).
    * Opens URL: install4.ring520.org/kkkk/mminstall.exe.

[ Security issues ]
    * Starting downloaded file - potential security problem.

)
     1156 ms C:\Downloads\572241.zip : down/bd8[1].rar                  
      218 ms C:\Downloads\572241.zip : down/my_70136[1].rar              
     1016 ms C:\Downloads\572241.zip : down/bd4[1].rar                  
        0 ms C:\Downloads\572241.zip                                    
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.
- File C:\Downloads\572241.zip quarantined.

===================================================================================================

The scanning started: 2007/07/17 11:22:20
               ended: 2007/07/17 11:23:35
Logged on as        : Jason
on hostname         : JASON-PC

Scanning results:
   Total number of files found..............................:     118
   Number of files scanned..................................:     118
   Number of files/directories skipped due to exclude list..:       0
   Number of files that could not be opened.................:       0
   Number of archive files unpacked.........................:       2
   Number of archive files not unpacked.....................:       0
   Number of infections.....................................:      44

Copyright (c) 1993-2005 Norman ASA.
回复

举报

啊弥陀佛
发表于 2007-7-17 11:32:33 | 显示全部楼层
微点砍掉了

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

promised
 楼主| 发表于 2007-7-17 11:34:19 | 显示全部楼层

66个


谀哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪哪姆
?           VirusBlokAda (Console scanner)            ?
?Vba32 Windows/CL 3.12.2 / 2007.07.16 19:56 (Vba32.W) ?
?        Copyright (c) 1993-2007 by VBA Ltd.          ?
酝屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯图
License expired
License #000000119 Valid till 2006-12-31
Demo mode
Computer: PROMISED-CE046A
System: Windows XP
Command line options:
/r=susp.rpt /ha=3 /collect_suspects /nc /sfx /af+ /fd+ /ar+ /bt- /mr- /ml+ /rw+ /as-
Program settings:
/r=susp.rpt /ha=3 /collect_suspects /nc /sfx /af+ /fd+ /ar+ /qu+ /ml+ /rw+
*:
C:\
C:\ABC\down\down\1.exe : is suspected of Trojan-PSW.Game.63 (paranoid heuristics)
C:\ABC\down\down\10.exe : infected BackDoor.QQChin
C:\ABC\down\down\10012[1].exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\1012.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\1012[1].exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\102.exe : infected Trojan.DownLoader.19155
C:\ABC\down\down\103.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\1064.exe : infected Trojan-Downloader.Win32.Banload.bpo
C:\ABC\down\down\1093.exe : infected Trojan-Downloader.Win32.Banload.bpo
C:\ABC\down\down\11.exe : infected Trojan-Downloader.Win32.Banload.bpo
C:\ABC\down\down\1238.exe : infected AdWare.Win32.Cinmus.ab
C:\ABC\down\down\1246.exe : infected AdWare.Win32.Cinmus.j
C:\ABC\down\down\1273.exe:<SFX>\TEMP\wr-1-566.exe : infected Trojan-Downloader.Win32.Small.eqn
C:\ABC\down\down\13.exe : infected Trojan-Downloader.Win32.Banload.bpo
C:\ABC\down\down\13715C84.EXE : infected BackDoor.QQChin
C:\ABC\down\down\14.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\19008.exe : infected Trojan.DownLoader.26574
C:\ABC\down\down\2.exe:<SFX>\TEMP\805~.exe : is suspected of Trojan-PSW.Game.63 (paranoid heuristics)
C:\ABC\down\down\2.exe : is suspected of Trojan-PSW.Game.63 (paranoid heuristics)
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\A\a.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\A\staA.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\A\winA.dll : infected AdWare.Win32.Agent.bz
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\B\b.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\B\staB.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\B\winB.dll : infected Application.Win32.Adware.Toolbar.Baidu
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\C\Autolive.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\C\autolive.sys : infected AdWare.Win32.NewWeb.m
C:\ABC\down\down\20540.exe:<SFX>\Program Files\NSIS\Setup.exe : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\2209.exe : is suspected of Trojan-PSW.Game.63 (paranoid heuristics)
C:\ABC\down\down\3.exe : infected Win32.HLLW.Wace
C:\ABC\down\down\329.exe : infected BackDoor.QQChin
C:\ABC\down\down\3EE4F2CC.EXE : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\4.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\A\a.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\A\staA.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\A\winA.dll : infected AdWare.Win32.Agent.bz
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\B\b.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\B\staB.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\B\winB.dll : infected Application.Win32.Adware.Toolbar.Baidu
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\C\Autolive.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\C\autolive.sys : infected AdWare.Win32.NewWeb.m
C:\ABC\down\down\5.exe:<SFX>\20540.exe:<SFX>\Program Files\NSIS\Setup.exe : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\62205.exe : infected BackDoor.QQChin
C:\ABC\down\down\7.exe : infected AdWare.Win32.Cinmus.j
C:\ABC\down\down\8.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\80325.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\805~.exe : is suspected of Trojan-PSW.Game.63 (paranoid heuristics)
C:\ABC\down\down\805~~.exe : is suspected of Trojan-PSW.Game.63 (paranoid heuristics)
C:\ABC\down\down\9.exe : infected Trojan.DownLoader.26574
C:\ABC\down\down\944.exe : infected AdWare.Win32.Cinmus.t
C:\ABC\down\down\aygcmq38.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\aygcmq38.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\b122.exe : infected AdWare.Win32.Softomate.u
C:\ABC\down\down\b122.exe.bin:<ZIP>\b122.exe : infected AdWare.Win32.Softomate.u
C:\ABC\down\down\bd4[1].rar : infected AdWare.Win32.Cinmus.t
C:\ABC\down\down\dd.exe : infected AdWare.Win32.Cinmus.t
C:\ABC\down\down\dodolook408.exe : infected AdWare.Win32.Cinmus.ab
C:\ABC\down\down\ezhhzs08.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\ezhhzs08.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\kusn33sd.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\mm.exe : infected Trojan.PWS.Gamania
C:\ABC\down\down\mmpbce35.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\mmpbce35.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\my_70136[1].rar : infected Trojan.DownLoader.19155
C:\ABC\down\down\nbuqmp68.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\nbuqmp68.sys : infected AdWare.Win32.NewWeb.m
C:\ABC\down\down\nfqies21.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\nfqies21.sys : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\pc2198[1].exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\pv0009[1].exe : infected Win32.HLLW.Wace
C:\ABC\down\down\s5888.exe : infected Backdoor.Win32.Agent.ahj
C:\ABC\down\down\Server.exe : infected MalwareScope.Trojan-PSW.Game.7
C:\ABC\down\down\Setup.exe : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\webhelp.drv : infected MalwareScope.Trojan-PSW.Game.16
C:\ABC\down\down\webhelp.exe : infected MalwareScope.Trojan-PSW.Game.16
C:\ABC\down\down\winbce35.dll : infected Application.Win32.Adware.Toolbar.Baidu
C:\ABC\down\down\wincmq38.dll : infected AdWare.Win32.Agent.bz
C:\ABC\down\down\winhzs08.dll : infected Application.Win32.Adware.Toolbar.Baidu
C:\ABC\down\down\winies21.dll : infected AdWare.Win32.Agent.bz
C:\ABC\down\down\winpop.exe : infected Trojan.Rond
C:\ABC\down\down\wr-1-566.exe : infected Trojan-Downloader.Win32.Small.eqn
C:\ABC\down\down\zlthro80.dll : infected Application.Win32.Adware.NewWeb
C:\ABC\down\down\zlthro80.sys : infected AdWare.Win32.NewWeb.m
Program execution terminated by user

Directories       : 6       Files in archives:      Files on disks:
Archives:                   - total       : 76      - total       : 141   
- scanned         : 28      -  scanned    : 76      - scanned     : 140   
- contain viruses : 5       -  infected   : 21      - infected    : 61   
- deleted         : 0       -  suspicious : 1       - suspicious  : 5     
Startup    : 11:32:54 17-07-2007
End        : 11:33:53 17-07-2007
Total time : 00:00:59
回复

举报

yurius
发表于 2007-7-17 11:50:33 | 显示全部楼层
99个,估计很多nsis的没查

Begin scan in 'C:\virus\572241.zip'
C:\virus\
  572241.zip
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cinmus.FM.1
      [WARNING]   The file was ignored!
    [0] Archive type: ZIP
    --> down/1093.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/s5888.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.752 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/802.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/pv0018.exe
        [DETECTION] Is the Trojan horse TR/Dldr.Onlineg.A.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/Server.exe
        [DETECTION] Is the Trojan horse TR/PSW.Steal.27210
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/mm.exe
        [DETECTION] Is the Trojan horse TR/PSW.Delf.QC.40
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/downloader1.exe
        [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/80325.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.752 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/19008.exe
        [DETECTION] Is the Trojan horse TR/Dldr.Agent.AF.12
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/62205.exe
        [DETECTION] Is the Trojan horse TR/Drop.Nervos.AT.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/host.exe
        [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/cc_231.exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1012.exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/2209.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.744 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1064.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/p00qk.dll
    --> down/12345.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/lujqmetiiojus.dll
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/20540.exe
        [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/winbce35.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/SoduiSearch
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/winies21.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.Z.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/zlthro80.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CnsMin.C
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/mmpbce35.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Agent.CK.27
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/nfqies21.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/TCent.J
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/Setup.exe
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.Z.2
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/winpop.exe
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Ronda.A
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/UnInstall.exe
        [DETECTION] Is the Trojan horse TR/Popwin.BK.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/Installeur.exe
        [DETECTION] Is the Trojan horse TR/Popwin.BK.2
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/103.exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/329.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.749 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/102.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/12.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/b122.exe
        [DETECTION] Contains signature of the dropper DR/Softomate.U.71
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/b122.exe.bin
        [1] Archive type: ZIP
        --> b122.exe
            [DETECTION] Contains signature of the dropper DR/Softomate.U.71
            [WARNING]   Infected files in archives cannot be repaired!
    --> down/dodolook408.exe
    --> down/dd.exe
        [DETECTION] Contains signature of the dropper DR/Cinmus.T.7
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/b1b.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/hh.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/retadpu566.exe
        [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/13715C84.EXE
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.749 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/0.exe
        [DETECTION] Contains signature of the dropper DR/Dldr.Agent.bys
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1.exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/2.exe
    --> down/3.exe
        [DETECTION] Contains signature of the dropper DR/Delphi.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/3EE4F2CC.EXE
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/4.exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/5.exe
        [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/6.exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/7.exe
        [DETECTION] Contains signature of the dropper DR/Cinmus.J.187
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/8.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.581 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/9.exe
        [DETECTION] Is the Trojan horse TR/Dldr.Agent.AF.12
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/10.exe
        [DETECTION] Is the Trojan horse TR/Drop.Nervos.AT.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/11.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/13.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/14.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.752 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/kusn33sd.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.581 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/idnreg.dll
    --> down/yazniqbgnhgcf.dll
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/DocProp1.dll
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/msv1_1.dll
        [DETECTION] Is the Trojan horse TR/Dldr.Agent.AF.12
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/g7cs0DXg1.dll
    --> down/wdfmgrnt.exe
        [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/webhelp.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/webshow.dll
    --> down/ezhhzs08.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Agent.CK.27
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/winhzs08.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/SoduiSearch
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/wincmq38.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.Z.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/aygcmq38.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/TCent.J
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/MSURLPAR.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Zhongsou.G.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/mszstb.dll
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/nbuqmp68.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CnsMin.C
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/idnaux.sys
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.Z.192
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/cnprov.sys
    --> down/webhelp.drv
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/webshow.drv
    --> down/aygcmq38.sys
        [DETECTION] Is the Trojan horse TR/Rootkit.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/ezhhzs08.sys
        [DETECTION] Is the Trojan horse TR/Rootkit.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/mmpbce35.sys
        [DETECTION] Is the Trojan horse TR/Rootkit.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/nfqies21.sys
        [DETECTION] Is the Trojan horse TR/Rootkit.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/nbuqmp68.sys
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.M.19
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/zlthro80.sys
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.M.19
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/mszstb.sys
    --> down/acpidisk.sys
        [DETECTION] Contains signature of the rootkit RKIT/Cinmus.M
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/oxws6.sys
        [DETECTION] Is the Trojan horse TR/Rootkit.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/qlydqd7dmo.sys
        [DETECTION] Is the Trojan horse TR/Rootkit.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/uusetup.exe
        [DETECTION] Is the Trojan horse TR/Dldr.Ieser.C.18
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/pxMoB.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/tempaq
    --> down/603.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/pv0009.exe
        [DETECTION] Is the Trojan horse TR/Dldr.Obfuscated.BZ
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1273.exe
    --> down/8015.exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/805~~.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.744 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/805~.exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.744 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/suada.exe
    --> down/li01.exe
    --> down/suad.exe
    --> down/aabb.exe
    --> down/1246.exe
    --> down/1238.exe
    --> down/944.exe
        [DETECTION] Contains signature of the dropper DR/Cinmus.T.5
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/DoSSSetup.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cinmus.JH
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/Setup1.exe
    --> down/wr-1-566.exe
        [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/bd3[1].rar
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CDN.B.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/10012[1].exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1012[1].exe
        [DETECTION] Contains suspicious code HEUR/Crypted
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1093[1].exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/1273[1].exe
        [DETECTION] Contains signature of the dropper DR/Dldr.Agent.bys
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/802[1].exe
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/pc2198[1].exe
        [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.581 Backdoor server programs
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/pv0009[1].exe
        [DETECTION] Contains signature of the dropper DR/Delphi.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/bd2[1].rar
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/bd8[1].rar
        [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/my_70136[1].rar
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> down/bd4[1].rar
        [DETECTION] Contains signature of the dropper DR/Cinmus.T.7
        [WARNING]   Infected files in archives cannot be repaired!
        [WARNING]   The file was ignored!
回复

举报

rasis
发表于 2007-7-17 11:51:56 | 显示全部楼层
572241(1).zip
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cinmus.FM.1
      [WARNING]   The file was ignored!
572241(1).zip
  [0] Archive type: ZIP
  --> down/1093.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/s5888.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.752 Backdoor server programs
  --> down/802.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/pv0018.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Onlineg.A.1
  --> down/Server.exe
      [DETECTION] Is the Trojan horse TR/PSW.Steal.27210
  --> down/mm.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.QC.40
  --> down/downloader1.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> down/80325.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.752 Backdoor server programs
  --> down/19008.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.AF.12
  --> down/62205.exe
      [DETECTION] Is the Trojan horse TR/Drop.Nervos.AT.1
  --> down/host.exe
      [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
  --> down/cc_231.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/1012.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/2209.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.744 Backdoor server programs
  --> down/1064.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/12345.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/lujqmetiiojus.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/20540.exe
      [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
  --> down/winbce35.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/SoduiSearch
  --> down/winies21.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.Z.1
  --> down/zlthro80.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CnsMin.C
  --> down/mmpbce35.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Agent.CK.27
  --> down/nfqies21.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/TCent.J
  --> down/Setup.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.Z.2
  --> down/winpop.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Ronda.A
  --> down/UnInstall.exe
      [DETECTION] Is the Trojan horse TR/Popwin.BK.1
  --> down/Installeur.exe
      [DETECTION] Is the Trojan horse TR/Popwin.BK.2
  --> down/103.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/329.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.749 Backdoor server programs
  --> down/102.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/12.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/b122.exe
      [DETECTION] Contains signature of the dropper DR/Softomate.U.71
    --> down/b122.exe.bin
      [1] Archive type: ZIP
      --> b122.exe
          [DETECTION] Contains signature of the dropper DR/Softomate.U.71
  --> down/dd.exe
      [DETECTION] Contains signature of the dropper DR/Cinmus.T.7
  --> down/b1b.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/hh.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/retadpu566.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> down/13715C84.EXE
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.749 Backdoor server programs
  --> down/0.exe
      [DETECTION] Contains signature of the dropper DR/Dldr.Agent.bys
  --> down/1.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/3.exe
      [DETECTION] Contains signature of the dropper DR/Delphi.Gen
  --> down/3EE4F2CC.EXE
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/4.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/5.exe
      [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
  --> down/6.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/7.exe
      [DETECTION] Contains signature of the dropper DR/Cinmus.J.187
  --> down/8.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.581 Backdoor server programs
  --> down/9.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.AF.12
  --> down/10.exe
      [DETECTION] Is the Trojan horse TR/Drop.Nervos.AT.1
  --> down/11.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/13.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/14.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.752 Backdoor server programs
  --> down/kusn33sd.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.581 Backdoor server programs
  --> down/yazniqbgnhgcf.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/DocProp1.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/msv1_1.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.AF.12
  --> down/wdfmgrnt.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> down/webhelp.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/ezhhzs08.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Agent.CK.27
  --> down/winhzs08.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/SoduiSearch
  --> down/wincmq38.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.Z.1
  --> down/aygcmq38.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/TCent.J
  --> down/MSURLPAR.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Zhongsou.G.1
  --> down/mszstb.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/nbuqmp68.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CnsMin.C
  --> down/idnaux.sys
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.Z.192
  --> down/webhelp.drv
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/aygcmq38.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> down/ezhhzs08.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> down/mmpbce35.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> down/nfqies21.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> down/nbuqmp68.sys
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.M.19
  --> down/zlthro80.sys
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/NewWeb.M.19
  --> down/acpidisk.sys
      [DETECTION] Contains signature of the rootkit RKIT/Cinmus.M
  --> down/oxws6.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> down/qlydqd7dmo.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> down/uusetup.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Ieser.C.18
  --> down/pxMoB.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/603.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/pv0009.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Obfuscated.BZ
  --> down/8015.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/805~~.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.744 Backdoor server programs
  --> down/805~.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.744 Backdoor server programs
  --> down/944.exe
      [DETECTION] Contains signature of the dropper DR/Cinmus.T.5
  --> down/DoSSSetup.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cinmus.JH
  --> down/wr-1-566.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> down/bd3[1].rar
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CDN.B.1
  --> down/10012[1].exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/1012[1].exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> down/1093[1].exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/1273[1].exe
      [DETECTION] Contains signature of the dropper DR/Dldr.Agent.bys
  --> down/802[1].exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/pc2198[1].exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.581 Backdoor server programs
  --> down/pv0009[1].exe
      [DETECTION] Contains signature of the dropper DR/Delphi.Gen
  --> down/bd2[1].rar
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/bd8[1].rar
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> down/my_70136[1].rar
      [DETECTION] Contains suspicious code HEUR/Malware
  --> down/bd4[1].rar
      [DETECTION] Contains signature of the dropper DR/Cinmus.T.7
      [WARNING]   The file was ignored!


End of the scan: 2007年7月17日  11:51
Used time: 00:21 min

The scan has been done completely.

      0 Scanning directories
    118 Files were scanned
     99 viruses and/or unwanted programs were found
     19 classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      0 Files not concerned
      2 Archives were scanned
      1 Warnings
      0 Notes
      0 Hidden objects were found
回复

举报

scottxzt
发表于 2007-7-17 11:52:16 | 显示全部楼层

DR 90

大多为广告.

data001\data002;D:\Documents and Settings\dell\桌面\新建文件夹\down\0.exe\data001;Trojan.DownLoader.27534;;
data001;D:\Documents and Settings\dell\桌面\新建文件夹\down\0.exe;Archive contains infected objects;;
0.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
10.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;BackDoor.QQChin;;
102.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.19155;;
1064.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.27530;;
1093.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.26659;;
11.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.26659;;
12.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.StartPage.origin;;
data001\mszstb.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe\data002\data001;Adware.Zhong;;
data001;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe\data002;Archive contains infected objects;;
data003\mszstb.dll.zgx;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe\data002\data003;Adware.Zhong;;
data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe\data002;Archive contains infected objects;;
data005\MSURLPAR.dll.zgx;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe\data002\data005;Adware.Zhong;;
data005;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe\data002;Archive contains infected objects;;
data002;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273.exe;Archive contains infected objects;;
1273.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
data001\data002;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273[1].exe\data001;Trojan.DownLoader.27534;;
data001;D:\Documents and Settings\dell\桌面\新建文件夹\down\1273[1].exe;Archive contains infected objects;;
1273[1].exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
13.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.27530;;
13715C84.EXE;D:\Documents and Settings\dell\桌面\新建文件夹\down;BackDoor.QQChin;;
14.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Popwin;;
19008.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.26574;;
20540.exe\data002;D:\Documents and Settings\dell\桌面\新建文件夹\down\20540.exe;Adware.Baidu;;
20540.exe\data004;D:\Documents and Settings\dell\桌面\新建文件夹\down\20540.exe;Adware.Baidu.274;;
20540.exe\data005;D:\Documents and Settings\dell\桌面\新建文件夹\down\20540.exe;Adware.Baidu;;
20540.exe\data006;D:\Documents and Settings\dell\桌面\新建文件夹\down\20540.exe;Adware.Baidu;;
20540.exe\data007;D:\Documents and Settings\dell\桌面\新建文件夹\down\20540.exe;Adware.Newweb.161;;
20540.exe\data009;D:\Documents and Settings\dell\桌面\新建文件夹\down\20540.exe;Adware.Newweb;;
20540.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
3.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Win32.HLLW.Wace;;
329.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;BackDoor.QQChin;;
5.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.MulDrop.7026;;
603.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Mokead.origin;;
62205.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;BackDoor.QQChin;;
8.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Popwin;;
802.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.StartPage.origin;;
802[1].exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.StartPage.origin;;
80325.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Popwin;;
9.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.26574;;
944.exe\data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\944.exe;Adware.Cinmus;;
944.exe\data004;D:\Documents and Settings\dell\桌面\新建文件夹\down\944.exe;Adware.Cinmus;;
944.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
aabb.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.27534;;
acpidisk.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Cinmus;;
aygcmq38.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
bd3[1].rar;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Cdn;;
data003\data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\bd4[1].rar\data003;Adware.Cinmus;;
data003\data004;D:\Documents and Settings\dell\桌面\新建文件夹\down\bd4[1].rar\data003;Adware.Cinmus;;
data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\bd4[1].rar;Archive contains infected objects;;
bd4[1].rar;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
bd8[1].rar;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Mokead.origin;;
cnprov.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Cdn.origin;;
data003\data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\dd.exe\data003;Adware.Cinmus;;
data003\data004;D:\Documents and Settings\dell\桌面\新建文件夹\down\dd.exe\data003;Adware.Cinmus;;
data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\dd.exe;Archive contains infected objects;;
dd.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
DocProp1.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Probably DLOADER.Trojan;;
DoSSSetup.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Cinmus;;
downloader1.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.14143;;
ezhhzs08.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
ezhhzs08.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
hh.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Mokead.origin;;
host.exe\data002;D:\Documents and Settings\dell\桌面\新建文件夹\down\host.exe;Adware.Baidu;;
host.exe\data004;D:\Documents and Settings\dell\桌面\新建文件夹\down\host.exe;Adware.Baidu.274;;
host.exe\data005;D:\Documents and Settings\dell\桌面\新建文件夹\down\host.exe;Adware.Baidu;;
host.exe\data006;D:\Documents and Settings\dell\桌面\新建文件夹\down\host.exe;Adware.Baidu;;
host.exe\data007;D:\Documents and Settings\dell\桌面\新建文件夹\down\host.exe;Adware.Newweb.161;;
host.exe\data009;D:\Documents and Settings\dell\桌面\新建文件夹\down\host.exe;Adware.Newweb;;
host.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
kusn33sd.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Popwin;;
mm.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.PWS.Gamania;;
mmpbce35.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
mmpbce35.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
MSURLPAR.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Zhong;;
mszstb.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Zhong;;
mszstb.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Zhong;;
my_70136[1].rar;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.19155;;
nbuqmp68.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Newweb.161;;
nbuqmp68.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Newweb;;
nfqies21.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
p00qk.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Probably DLOADER.Trojan;;
pc2198[1].exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Popwin;;
pv0009.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Resun.origin;;
pv0009[1].exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Win32.HLLW.Wace;;
pv0018.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Resun;;
pxMoB.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.StartPage.origin;;
retadpu566.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.24772;;
s5888.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Popwin;;
Server.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.PWS.Gamania.2453;;
Setup.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Newweb;;
data001\mszstb.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down\Setup1.exe\data001;Adware.Zhong;;
data001;D:\Documents and Settings\dell\桌面\新建文件夹\down\Setup1.exe;Archive contains infected objects;;
data003\mszstb.dll.zgx;D:\Documents and Settings\dell\桌面\新建文件夹\down\Setup1.exe\data003;Adware.Zhong;;
data003;D:\Documents and Settings\dell\桌面\新建文件夹\down\Setup1.exe;Archive contains infected objects;;
data005\MSURLPAR.dll.zgx;D:\Documents and Settings\dell\桌面\新建文件夹\down\Setup1.exe\data005;Adware.Zhong;;
data005;D:\Documents and Settings\dell\桌面\新建文件夹\down\Setup1.exe;Archive contains infected objects;;
Setup1.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Archive contains infected objects;;
uusetup.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Click.2788;;
wdfmgrnt.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.DownLoader.14143;;
webshow.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Mokead.origin;;
webshow.drv;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Mokead.origin;;
winbce35.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
wincmq38.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu.274;;
winhzs08.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu;;
winies21.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Baidu.274;;
winpop.exe;D:\Documents and Settings\dell\桌面\新建文件夹\down;Trojan.Rond;;
zlthro80.dll;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Newweb.161;;
zlthro80.sys;D:\Documents and Settings\dell\桌面\新建文件夹\down;Adware.Newweb;;
回复

举报

promised
 楼主| 发表于 2007-7-17 12:16:17 | 显示全部楼层

回复 #29 scottxzt 的帖子

其实是73个
回复

举报

下一页 »
1234下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-4 16:51 , Processed in 0.103764 second(s), 15 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表