毒网＋网马~~~N个（含部分样本）

显示全部楼层 · 发表于 2007-7-31 09:41:50

2007-7-31 0:09:26 恶意 HTTP 对象 <http://www.ndnd.info/cj/vijpg.jpg>: 已检测恶意程序 Exploit.Win32.IMG-ANI.x.
2007-7-31 0:09:26 恶意 HTTP 对象 <http://www.ndnd.info/cj/vijpg.jpg>: 拒绝访问.
2007-7-31 0:09:31 恶意 HTTP 对象 <http://go1.bannerbox.cn/KW55.asp>: 已检测木马程序 Trojan-Downloader.JS.IstBar.ai.
2007-7-31 0:09:31 恶意 HTTP 对象 <http://go1.bannerbox.cn/KW55.asp>: 拒绝访问.
2007-7-31 0:09:36 恶意 HTTP 对象 <http://59.34.197.239/66005.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:09:36 恶意 HTTP 对象 <http://59.34.197.239/66005.htm>: 拒绝访问.
2007-7-31 0:09:38 恶意 HTTP 对象 <http://59.34.197.176/1326.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:09:38 恶意 HTTP 对象 <http://59.34.197.176/1326.htm>: 拒绝访问.
2007-7-31 0:11:03 弹出窗口 http://video.gowog.com/blue/index.html 已被阻止。
2007-7-31 0:12:39 恶意 HTTP 对象 <http://59.34.197.176/dodolook264.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:12:39 恶意 HTTP 对象 <http://59.34.197.176/dodolook264.htm>: 拒绝访问.
2007-7-31 0:12:48 恶意 HTTP 对象 <http://59.34.197.239/1093.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:12:48 恶意 HTTP 对象 <http://59.34.197.239/1093.htm>: 拒绝访问.
2007-7-31 0:12:50 恶意 HTTP 对象 <http://59.34.197.239/bao118.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:12:50 恶意 HTTP 对象 <http://59.34.197.239/bao118.htm>: 拒绝访问.
2007-7-31 0:12:52 恶意 HTTP 对象 <http://59.34.197.239/83.asp>: 已检测木马程序 Trojan-Downloader.JS.IstBar.ai.
2007-7-31 0:12:52 恶意 HTTP 对象 <http://59.34.197.239/83.asp>: 拒绝访问.
2007-7-31 0:12:54 恶意 HTTP 对象 <http://www1.winopen.cn/95ZT.asp>: 已检测木马程序 Trojan-Downloader.JS.IstBar.ai.
2007-7-31 0:12:54 恶意 HTTP 对象 <http://www1.winopen.cn/95ZT.asp>: 拒绝访问.
2007-7-31 0:13:13 恶意 HTTP 对象 <http://59.34.197.176/62205.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:13:13 恶意 HTTP 对象 <http://59.34.197.176/62205.htm>: 拒绝访问.
2007-7-31 0:13:56 恶意 HTTP 对象 <http://www.171l73.cn/main.htm>: 已检测木马程序 Trojan-Downloader.JS.Agent.hf.
2007-7-31 0:13:56 恶意 HTTP 对象 <http://www.171l73.cn/main.htm>: 拒绝访问.
2007-7-31 0:14:03 恶意 HTTP 对象 <http://59.34.197.239/2209.htm>: 已检测木马程序 Trojan-Downloader.VBS.Agent.cs.
2007-7-31 0:14:03 恶意 HTTP 对象 <http://59.34.197.239/2209.htm>: 拒绝访问.
2007-7-31 0:14:10 恶意 HTTP 对象 <http://ooo.18dmm.com/wm/06014.htm>: 已检测木马程序 Trojan-Downloader.JS.Agent.gn.
2007-7-31 0:14:10 恶意 HTTP 对象 <http://ooo.18dmm.com/wm/06014.htm>: 拒绝访问.
2007-7-31 0:14:12 恶意 HTTP 对象 <http://xx.wzxqy.com/wm/index.htm>: 已检测木马程序 Trojan-Downloader.JS.Agent.lc.
2007-7-31 0:14:12 恶意 HTTP 对象 <http://xx.wzxqy.com/wm/index.htm>: 拒绝访问.
2007-7-31 0:15:52 恶意 HTTP 对象 <http://web.21575.com/103/222/002.htm>: 已检测木马程序 Trojan-Downloader.JS.Small.ew.
2007-7-31 0:15:52 恶意 HTTP 对象 <http://web.21575.com/103/222/002.htm>: 拒绝访问.
2007-7-31 0:15:57 恶意 HTTP 对象 <http://www.88889999.info/cj/vijpg.jpg>: 已检测恶意程序 Exploit.Win32.IMG-ANI.x.
2007-7-31 0:15:57 恶意 HTTP 对象 <http://www.88889999.info/cj/vijpg.jpg>: 拒绝访问.
2007-7-31 0:16:00 恶意 HTTP 对象 <http://mm.987999.com/mm/ok.htm>: 已检测恶意程序 Exploit.HTML.Ascii.q.
2007-7-31 0:16:01 恶意 HTTP 对象 <http://mm.987999.com/mm/ok.htm>: 拒绝访问.
2007-7-31 0:16:03 恶意 HTTP 对象 <http://ooo.18dmm.com/wm/jpg.jpg>: 已检测恶意程序 Exploit.Win32.IMG-ANI.x.
2007-7-31 0:16:03 恶意 HTTP 对象 <http://ooo.18dmm.com/wm/jpg.jpg>: 拒绝访问.
2007-7-31 0:16:07 恶意 HTTP 对象 <http://xx.wzxqy.com/wm/index.htm>: 已检测木马程序 Trojan-Downloader.JS.Agent.lc.
2007-7-31 0:16:07 恶意 HTTP 对象 <http://xx.wzxqy.com/wm/index.htm>: 拒绝访问.
2007-7-31 0:16:13 恶意 HTTP 对象 <http://www.171l73.cn/main1.htm>: 已检测木马程序 Trojan-Downloader.JS.Agent.hf.
2007-7-31 0:16:13 恶意 HTTP 对象 <http://www.171l73.cn/main1.htm>: 拒绝访问.
2007-7-31 0:16:17 恶意 HTTP 对象 <http://ooo.18dmm.com/wm/06014.htm>: 已检测木马程序 Trojan-Downloader.JS.Agent.gn.
2007-7-31 0:16:17 恶意 HTTP 对象 <http://ooo.18dmm.com/wm/06014.htm>: 拒绝访问.
2007-7-31 0:16:47 恶意 HTTP 对象 <http://web.21575.com/103/xl/okkt.js>: 已检测木马程序 Trojan-Downloader.JS.Agent.ka.
2007-7-31 0:16:47 恶意 HTTP 对象 <http://web.21575.com/103/xl/okkt.js>: 拒绝访问.
2007-7-31 0:17:25 恶意 HTTP 对象 <http://mm.987999.com/mm/haha.js>: 已检测木马程序 Trojan-Downloader.JS.Agent.ka.
2007-7-31 0:17:25 恶意 HTTP 对象 <http://mm.987999.com/mm/haha.js>: 拒绝访问.
2007-7-31 0:18:27 恶意 HTTP 对象 <http://www.666535.cn/18.htm>: 已检测木马程序 Trojan-Downloader.HTML.Agent.ey.
2007-7-31 0:18:27 恶意 HTTP 对象 <http://www.666535.cn/18.htm>: 拒绝访问.
2007-7-31 0:18:29 恶意 HTTP 对象 <http://www.453888.com/1.htm>: 已检测恶意程序 Exploit.HTML.Ascii.n.
2007-7-31 0:18:29 恶意 HTTP 对象 <http://www.453888.com/1.htm>: 拒绝访问.
2007-7-31 0:18:30 恶意 HTTP 对象 <http://www.453888.com/haha.js>: 已检测木马程序 Trojan-Downloader.JS.Agent.ka.
2007-7-31 0:18:30 恶意 HTTP 对象 <http://www.453888.com/haha.js>: 拒绝访问.
========================
上半部分的样本已经提取，后半部分就暂时不提取了
有点晕...

[ 本帖最后由 Cloud018 于 2007-7-31 11:43 编辑 ]

显示全部楼层 · 发表于 2007-7-31 09:43:41

开着FS不敢啊

显示全部楼层 · 发表于 2007-7-31 11:40:43

已经提取了部分样本！
剩下的有空在提取...

显示全部楼层 · 发表于 2007-7-31 12:03:53

扫描系统区域...
扫描所选择的目录和文件...
扫描文件 F:\virus.rar
对象: virus\11d003.exe=>(NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_solid_nsis0001
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.AdClick.DU (BD 引擎)
对象: virus\14.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWStealer.2E859291 (BD 引擎)
对象: virus\1093.exe
在压缩档案里: F:\virus.rar
Status: 可疑病毒
病毒: BehavesLike:Trojan.Downloader (BD 引擎)
对象: virus\cdnprh.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Malware.dld!!.CE1FB1A6 (BD 引擎)
对象: virus\cndsv.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\cnprovh.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\config.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\convs.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\d10.exe=>(NSIS o) lzma_solid_nsis0001
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.AdClick.DU (BD 引擎)
对象: virus\dodolook408.exe=>(NSIS o) lzma_nsis0000
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Cinmus.P (BD 引擎)
对象: virus\dodolook408.exe=>(NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_nsis0000
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Cinmeng.A (BD 引擎)
对象: virus\dodolook408.exe=>(NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_nsis0002
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Cinmeng.D (BD 引擎)
对象: virus\dodolook408.exe=>(NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_nsis0003
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Cinmeng.D (BD 引擎)
对象: virus\host.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AT (BD 引擎)
对象: virus\husjdd8s.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.SBdldspg.0AC95778 (BD 引擎)
对象: virus\hyzdvmetsvzwk.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Ieser.A (BD 引擎)
对象: virus\idnaux.sys
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.Bdsearch.CX (BD 引擎)
对象: virus\idnreg.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\idnsvr.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\internat.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Agent.Delf.CA (BD 引擎)
对象: virus\kksi8s3.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: GenPack:Trojan.PWS.Agent.NDY (BD 引擎)
对象: virus\loader.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\mclient.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Dropped:Trojan.Ieser.A (BD 引擎)
对象: virus\MsIMMs32.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Malware.gPWS.DEE72234 (BD 引擎)
对象: virus\MsIMMs32.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Onlinegames.1.87DFC948 (BD 引擎)
对象: virus\NewTemp.bak
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.Delf.IEN (BD 引擎)
对象: virus\NewTemp.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.Delf.WH (BD 引擎)
对象: virus\osiesd3.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Agent.ABHL (BD 引擎)
对象: virus\PegeFile.pif
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.Delf.IEN (BD 引擎)
对象: virus\qjso0.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Forthgoer.D (BD 引擎)
对象: virus\qjso.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.OnlineGames.AVG (BD 引擎)
对象: virus\RAV00A3.DAT
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.dld!!gPWS.EDB14F38 (BD 引擎)
对象: virus\RAV00A3.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Onlinegames.3.9E21C46D (BD 引擎)
对象: virus\RAV00B2.DAT
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.dld!!gPWS.E6D5EC13 (BD 引擎)
对象: virus\RAV00B2.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Onlinegames.3.B89F4547 (BD 引擎)
对象: virus\RAV008C.DAT
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.dld!!gPWS.0C974778 (BD 引擎)
对象: virus\RAV008C.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.Sdld!gPWS.0E2B5119 (BD 引擎)
对象: virus\RAV009B.DAT
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.dld!!gPWS.EBDE2708 (BD 引擎)
对象: virus\RAV009B.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.Sdld!gPWS.CE7DBABA (BD 引擎)
对象: virus\RemoteDbg.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.Onlinegames.AYD (BD 引擎)
对象: virus\rundll01.exe=>(NSIS o) lzma_nsis0000
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Cinmus.P (BD 引擎)
对象: virus\rundll01.exe=>(NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_nsis0000
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Cinmeng.A (BD 引擎)
对象: virus\rundll02.exe
在压缩档案里: F:\virus.rar
Status: 可疑病毒
病毒: BehavesLike:Trojan.Downloader (BD 引擎)
对象: virus\rundll04.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Malware.dld!!.DD353FCF (BD 引擎)
对象: virus\rxso0.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWS.Games.DC73541A (BD 引擎)
对象: virus\rxso.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Onlinegames.3.1D10BCF3 (BD 引擎)
对象: virus\setup.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.CDN.AR (BD 引擎)
对象: virus\sizlxadspmybc.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Ieser.A (BD 引擎)
对象: virus\SysWin64.Jmp
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWStealer.2E859291 (BD 引擎)
对象: virus\SysWin64.Sys
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWStealer.7BC64692 (BD 引擎)
对象: virus\TIMHost.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Onlinegames.2.CCB4DE14 (BD 引擎)
对象: virus\TIMHost.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Onlinegames.2.FD450599 (BD 引擎)
对象: virus\tlso0.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Onlinegames.3.0F5FA7E7 (BD 引擎)
对象: virus\tlso.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.OnlineGames.AVG (BD 引擎)
对象: virus\toolbar.exe=>(NSIS o) lzma_solid_nsis0013
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Adware.Softomate.GA (BD 引擎)
对象: virus\upxdnd.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Onlinegames.2.7B291233 (BD 引擎)
对象: virus\upxdnd.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Dropped:Trojan.PWS.Wsgame.AV (BD 引擎)
对象: virus\usbinte.sys
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Rootkit.Agent.NAW (BD 引擎)
对象: virus\webhelp.drv
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Dropped:Adware.Agent.IT (BD 引擎)
对象: virus\webhelp.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Dropped:Adware.Agent.IT (BD 引擎)
对象: virus\WinForm.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Malware.gPWS.6A6333D2 (BD 引擎)
对象: virus\WinForm.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Malware.gPWS.B2F65719 (BD 引擎)
对象: virus\winow.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWS.WoW.B0C1E3EC (BD 引擎)
对象: virus\winow.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWS.WoW.F8F058D2 (BD 引擎)
对象: virus\woso0.dll
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.Malware.gPWS.8F4A8280 (BD 引擎)
对象: virus\woso.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Onlinegames.3.B2C6138E (BD 引擎)
对象: virus\wxpSetup233.exe=>(RAR Sfx o) webhelp.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Dropped:Adware.Agent.IT (BD 引擎)
对象: virus\~tmp.tmp
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.PWS.Delf.IEN (BD 引擎)
对象: virus\6.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Generic.PWS.WoW.F8F058D2 (BD 引擎)
对象: virus\7.exe
在压缩档案里: F:\virus.rar
Status: 已发现病毒
病毒: Trojan.Dropper.Agent.LB (BD 引擎)

显示全部楼层 · 发表于 2007-7-31 12:50:09

显示全部楼层 · 发表于 2007-7-31 14:45:48

真不少啊

显示全部楼层 · 发表于 2007-7-31 14:46:13

太多了，不下了

显示全部楼层 · 发表于 2007-7-31 14:51:01

蜘蛛69个

显示全部楼层 · 发表于 2007-7-31 14:52:49

Begin scan in 'D:\My Download\virus'
1093.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
   [WARNING] The file was ignored!
14.exe
   [DETECTION] Is the Trojan horse TR/Drop.Age.32873.C
   [WARNING] The file was ignored!
1902.exe
   [DETECTION] Contains signature of the dropper DR/Delphi.Gen
   [WARNING] The file was ignored!
2.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] The file was ignored!
6.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [WARNING] The file was ignored!
7.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.LB.3
   [WARNING] The file was ignored!
acpidisk.sys
   [DETECTION] Contains signature of the rootkit RKIT/Cinmus.M
   [WARNING] The file was ignored!
ad_2276.exe
   [DETECTION] Contains signature of the dropper DR/Boran.AM.2
   [WARNING] The file was ignored!
ad_30.exe
   [DETECTION] Contains signature of the dropper DR/Boran.AM.2
   [WARNING] The file was ignored!
cdnprh.dll
   [DETECTION] Is the Trojan horse TR/Agent.1776.3
   [WARNING] The file was ignored!
cndsv.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BDSearch.CBY
   [WARNING] The file was ignored!
cnprov.sys
   [DETECTION] Contains signature of the rootkit RKIT/AdProt
   [WARNING] The file was ignored!
cnprovh.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BDSearch.CBU
   [WARNING] The file was ignored!
config.exe
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.G
   [WARNING] The file was ignored!
convf.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.H
   [WARNING] The file was ignored!
convs.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.F
   [WARNING] The file was ignored!
d10.exe
   [DETECTION] Contains signature of the dropper DR/BHO.AV.439
   [WARNING] The file was ignored!
dodolook408.exe
   [DETECTION] Contains signature of the dropper DR/Cinmus.AB.34
   [WARNING] The file was ignored!
efcu.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AM.1
   [WARNING] The file was ignored!
gjj.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [WARNING] The file was ignored!
host.exe
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.G
   [WARNING] The file was ignored!
husjdd8s.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [WARNING] The file was ignored!
hyzdvmetsvzwk.dll
   [DETECTION] Is the Trojan horse TR/Ieser.A
   [WARNING] The file was ignored!
idnaux.sys
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.Z.192
   [WARNING] The file was ignored!
idnsvr.exe
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BDSearch.CBT
   [WARNING] The file was ignored!
iExplorer.exe
   [DETECTION] Contains signature of the dropper DR/Boran.AM.2
   [WARNING] The file was ignored!
ijgy.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AM
   [WARNING] The file was ignored!
internat.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Zhidao
   [WARNING] The file was ignored!
kksi8s3.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [WARNING] The file was ignored!
lmjb.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
   [WARNING] The file was ignored!
loader.exe
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.3
   [WARNING] The file was ignored!
mclient.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
   [WARNING] The file was ignored!
MsIMMs32.dll
   [DETECTION] Is the Trojan horse TR/PSW.Agent.20480
   [WARNING] The file was ignored!
MsIMMs32.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.20480
   [WARNING] The file was ignored!
my_70204.exe
   [DETECTION] Is the Trojan horse TR/Small.24576.I
   [WARNING] The file was ignored!
netdde32.exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
   [WARNING] The file was ignored!
NewTemp.bak
   [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.5
   [WARNING] The file was ignored!
NewTemp.dll
   [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.5
   [WARNING] The file was ignored!
nold.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
   [WARNING] The file was ignored!
osiesd3.dll
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
   [WARNING] The file was ignored!
PegeFile.pif
   [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.5
   [WARNING] The file was ignored!
qjso.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
qjso0.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
QQIEHelper.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] The file was ignored!
qrog.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
   [WARNING] The file was ignored!
RAV008C.DAT
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV008C.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV009B.DAT
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV009B.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV00A3.DAT
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV00A3.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV00B2.DAT
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RAV00B2.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
   [WARNING] The file was ignored!
RemoteDbg.dll
   [DETECTION] Is the Trojan horse TR/Agent.22016.B
   [WARNING] The file was ignored!
rundll02.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
   [WARNING] The file was ignored!
rundll03.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] The file was ignored!
rundll04.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   [WARNING] The file was ignored!
rxso.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
rxso0.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
setup.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.6
   [WARNING] The file was ignored!
setup298.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] The file was ignored!
sizlxadspmybc.dll
   [DETECTION] Is the Trojan horse TR/Ieser.A
   [WARNING] The file was ignored!
srchsp.dll
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BHO.32768
   [WARNING] The file was ignored!
SysWin64.Jmp
   [DETECTION] Is the Trojan horse TR/Drop.Age.32873.C
   [WARNING] The file was ignored!
SysWin64.Sys
   [DETECTION] Is the Trojan horse TR/Drop.Age.32873.C
   [WARNING] The file was ignored!
TIMHost.dll
   [DETECTION] Is the Trojan horse TR/PWS.Banker.22016.C
   [WARNING] The file was ignored!
TIMHost.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
tlso.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
tlso0.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
Uninst.exe
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.BD
   [WARNING] The file was ignored!
update.exe
   [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CDN.B.1
   [WARNING] The file was ignored!
upxdnd.dll
   [DETECTION] Is the Trojan horse TR/PSW.Agent.20480
   [WARNING] The file was ignored!
upxdnd.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
usbinte.sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
   [WARNING] The file was ignored!
webhelp.drv
   [DETECTION] Is the Trojan horse TR/Drop.Webhelp
   [WARNING] The file was ignored!
webhelp.exe
   [DETECTION] Is the Trojan horse TR/Drop.Webhelp
   [WARNING] The file was ignored!
win1ogin.exe
   [DETECTION] Contains signature of the dropper DR/PcClient.Gen
   [WARNING] The file was ignored!
WinForm.dll
   [DETECTION] Is the Trojan horse TR/PSW.Agent.20480
   [WARNING] The file was ignored!
WinForm.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.20480
   [WARNING] The file was ignored!
winow.dll
   [DETECTION] Is the Trojan horse TR/PSW.33792.1
   [WARNING] The file was ignored!
winow.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [WARNING] The file was ignored!
woso.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
woso0.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
wxpSetup233.exe
  [0] Archive type: RAR SFX (self extracting)
  --> webhelp.exe
   [DETECTION] Is the Trojan horse TR/Drop.Webhelp
   [WARNING] The file was ignored!
zmikdxyr.ime
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Ckb.DLL.2 Backdoor server programs
   [WARNING] The file was ignored!
~tmp.tmp
   [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.5
   [WARNING] The file was ignored!

End of the scan: 2007年7月31日  14:52
Used time: 00:18 min

The scan has been done completely.

   1 Scanning directories
152 Files were scanned
   86 viruses and/or unwanted programs were found
   5 classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   61 Files not concerned
   1 Archives were scanned
   86 Warnings
   0 Notes
   0 Hidden objects were found

显示全部楼层 · 发表于 2007-7-31 15:03:40

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Adware.Win32.Winsdup.u
病毒： Trojan.Spy.Win32.Agent.ddd
病毒： Adware.Win32.Winsdup.w
病毒： Trojan.DL.Win32.Agent.wgd
病毒： Adware.Win32.Winsdup.x
病毒： Trojan.PSW.Win32.OnlineGames.ddk
病毒： Trojan.PSW.Win32.OnlineGames.ddk
病毒： Worm.Win32.Agent.ilm
病毒： Worm.Win32.Agent.ilm
病毒： Adware.Win32.Winsdup.y
病毒： Trojan.PSW.Win32.OnlineGames.del
病毒： Trojan.PSW.WLOnline.jed
病毒： Adware.Win32.Winsdup.v
病毒： Trojan.PSW.Win32.OnlineGames.dsw
病毒： Trojan.PSW.Win32.XYOnline.cj
病毒： Trojan.PSW.Win32.OnlineGames.dpq
病毒： Trojan.PSW.Win32.OnlineGames.dqh
病毒： Trojan.DL.Win32.Agent.xeq
病毒： Trojan.PSW.Win32.OnlineGames.djd
病毒： Trojan.PSW.Win32.SunOnline.b
病毒： Trojan.PSW.Win32.OnlineGames.dsa
病毒： Trojan.PSW.Win32.OnlineGames.dlb
病毒： Trojan.PSW.Win32.OnlineGames.dlb
病毒： Trojan.PSW.Win32.WoWar.sl
病毒： Trojan.PSW.ZhengTu.jzd
病毒： Trojan.DL.Win32.Agent.av
病毒： Trojan.Win32.Agent.ijx
病毒： Trojan.PSW.Win32.QQPass.qop
病毒： Trojan.PSW.Win32.RocOnline.ay
病毒： Trojan.PSW.Win32.RocOnline.ay
病毒： Trojan.PSW.Win32.Agent.pn
病毒： Trojan.PSW.OnlineGames.bto
病毒： Trojan.PSW.Win32.Shanda.k
病毒： Trojan.PSW.Win32.Shanda.k
病毒： RootKit.Win32.CallGate.g

MAC地址：00:D0:F8:38:4B:7A

用户来源：局域网

软件版本：19.34.11

43个

[病毒样本] 毒网＋网马~~~N个（含部分样本）

本帖子中包含更多资源

本帖子中包含更多资源