27个,杀不掉的帮我上报卡巴,md5内见

显示全部楼层 · 发表于 2007-9-3 10:53:07

文件: E:\1\01.exe
大小: 36149 字节
MD5: 53FA75AEA351B735A2C11831EF46AD52
文件: E:\1\02.exe
大小: 28034 字节
MD5: C211146395BCE6DEC900A88F55866D88
文件: E:\1\03.exe
大小: 33392 字节
MD5: 27E23D835705FAF44FFD4EAD795A8824
文件: E:\1\04.exe
大小: 25850 字节
MD5: 7E85758451F7E36504A8635E466FB3C3
文件: E:\1\05.exe
大小: 12903 字节
MD5: 348887D67BC6088B31AD662327B86287
文件: E:\1\06.exe
大小: 11438 字节
MD5: 3A61063F4B41B5BE11743EEE6A508B7C
文件: E:\1\07.exe
大小: 31744 字节
MD5: 84D474F45F4905499048657F39B28848
文件: E:\1\08.exe
大小: 12767 字节
MD5: C54ED2BE0AAD3ACB43A6F1765EC29809
文件: E:\1\09.exe
大小: 27648 字节
MD5: B563BBD54257D3C4D38A5AA1C23C73FD
文件: E:\1\10.exe
大小: 420251 字节
MD5: 62F88D51F8A8CE178C945B5536A8FEC1
文件: E:\1\11.exe
大小: 11892 字节
MD5: 4E8ADBFF558C24C574ED3D47D1EC8F48
文件: E:\1\12.exe
大小: 153721 字节
MD5: 1939FDCBA9242DCD1FB633DF1369E6EE
文件: E:\1\13.exe
大小: 123947 字节
MD5: 3F8C7EECAC2DB9CE9C44C873DC71D92C
文件: E:\1\14.exe
大小: 12407 字节
MD5: 0C85965B65B1AE599EB2B4145AB68EBD
文件: E:\1\15.exe
大小: 15360 字节
MD5: 0FF44C30F7AAFD0E2B776374A8263B90
文件: E:\1\16.exe
大小: 28715 字节
MD5: 091B786E1E83A3CE64F5589E712038C9
文件: E:\1\17.exe
大小: 11971 字节
MD5: CA34DB6040C556C22D6A279B21932469
文件: E:\1\18.exe
大小: 11055 字节
MD5: F3884CE7F61ABF6423861B32845579ED
文件: E:\1\19.exe
大小: 166397 字节
MD5: 0C4D2F3415A168C0AA3EA3EA9378DF5C
文件: E:\1\20.exe
大小: 14848 字节
MD5: 104B58FA55F3AC5507079278F0AA64CC
文件: E:\1\21.exe
大小: 12382 字节
MD5: E6EA3F06915A60ECC3BF54F0A2038562
文件: E:\1\22.exe
大小: 26924 字节
MD5: 472C0E884A6966A3777AEBE3010BF213
文件: E:\1\23.exe
大小: 11230 字节
MD5: 9FDE20B03CFA2920AECF9BF1CADFEF01
文件: E:\1\24.exe
大小: 18432 字节
MD5: 9916287B1B69CAAC743DB7824CB8944A
文件: E:\1\25.exe
大小: 325019 字节
MD5: EEC7D43588AA319A5D4334F56D29369A
文件: E:\1\26.exe
大小: 58489 字节
MD5: EBEB67BC080BDFC4DFDFE27CFF9BF2DA
文件: E:\1\27.exe
大小: 95232 字节
MD5: 91B013CBF4448EAD28D78B407D47F445

显示全部楼层 · 发表于 2007-9-3 11:15:34

27
detected: Trojan program Trojan-Spy.Win32.Delf.abi File: E:\Ñù±¾\bingdu\17.exe
detected: Trojan program Trojan-Spy.Win32.Delf.abi File: E:\Ñù±¾\bingdu\18.exe
detected: Trojan program Trojan-Dropper.Win32.Agent.aqq File: E:\Ñù±¾\bingdu\19.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bjb File: E:\Ñù±¾\bingdu\20.exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-Spy.Win32.Delf.abi File: E:\Ñù±¾\bingdu\21.exe
detected: Trojan program Trojan-Downloader.Win32.Small.czl File: E:\Ñù±¾\bingdu\22.exe//NSPack
detected: Trojan program Trojan-Spy.Win32.Delf.abi File: E:\Ñù±¾\bingdu\23.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bgr File: E:\Ñù±¾\bingdu\24.exe//PE_Patch.UPX//UPX
detected: virus Heur.Trojan.Generic (modification) File: E:\Ñù±¾\bingdu\25.exe//NSPack//PE_Patch//Sylm
detected: Trojan program Trojan-PSW.Win32.QQPass.ys File: E:\Ñù±¾\bingdu\26.exe//#//UPack
detected: virus Worm.Win32.Viking.lz File: E:\Ñù±¾\bingdu\27.exe//PE_Patch
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bdo File: E:\Ñù±¾\bingdu\02.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bjo File: E:\Ñù±¾\bingdu\01.exe//PE_Patch//UPack
detected: Trojan program Backdoor.Win32.WinterLove.bi File: E:\Ñù±¾\bingdu\03.exe//UPX
detected: Trojan program Trojan-Spy.Win32.Delf.uh File: E:\Ñù±¾\bingdu\04.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.blb File: E:\Ñù±¾\bingdu\05.exe
detected: Trojan program Trojan-Spy.Win32.Delf.abi File: E:\Ñù±¾\bingdu\06.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bgu File: E:\Ñù±¾\bingdu\07.exe
detected: Trojan program Trojan-Spy.Win32.Delf.aao File: E:\Ñù±¾\bingdu\08.exe//UPack//#
detected: Trojan program Trojan-PSW.Win32.WOW.sa File: E:\Ñù±¾\bingdu\09.exe//UPack
detected: virus Worm.Win32.Viking.lz File: E:\Ñù±¾\bingdu\10.exe//PE_Patch
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bfj File: E:\Ñù±¾\bingdu\11.exe//PE_Patch//UPack
detected: virus Worm.Win32.Viking.lz File: E:\Ñù±¾\bingdu\12.exe//PE_Patch
detected: virus Worm.Win32.Viking.lz File: E:\Ñù±¾\bingdu\13.exe//PE_Patch
detected: Trojan program Trojan-Spy.Win32.Delf.acb File: E:\Ñù±¾\bingdu\14.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bgl File: E:\Ñù±¾\bingdu\15.exe
detected: virus Worm.Win32.QQPass.m File: E:\Ñù±¾\bingdu\16.exe//PE_Patch

显示全部楼层 · 发表于 2007-9-3 11:57:20

AVAST删除 20个

显示全部楼层 · 发表于 2007-9-3 11:57:30

Starting the file scan:

Begin scan in 'C:\Documents and Settings\dell\桌面\新建文件夹 (2)'
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\01.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\02.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\03.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/WinterLove.BJ.1 Backdoor server programs
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\04.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\05.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.blb
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\06.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.abi.1
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\07.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.bdw
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\08.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\09.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\10.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\11.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\12.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\13.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\14.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.acb
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\15.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\16.exe
   [DETECTION] Is the Trojan horse TR/Hook.Shell.272
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\17.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.UV.127
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\18.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGa.HIJ
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\19.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.alh.37 Backdoor server programs
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\20.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\21.exe
   [DETECTION] Is the Trojan horse TR/Agent.12366
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\22.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\23.exe
   [DETECTION] Is the Trojan horse TR/Agent.11212
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\24.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLine.bds.1
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\25.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\26.exe
   [DETECTION] Is the Trojan horse TR/Hook.Shell.301
   [WARNING] The file was ignored!
C:\Documents and Settings\dell\桌面\新建文件夹 (2)\27.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [WARNING] The file was ignored!

End of the scan: 2007年9月3日  11:57
Used time: 00:21 min

The scan has been done completely.

   1 Scanning directories
   27 Files were scanned
   27 viruses and/or unwanted programs were found

显示全部楼层 · 发表于 2007-9-3 13:27:32

Begin scan in '01.exe'
01.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [INFO]    The file was deleted!
Begin scan in '02.exe'
02.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [INFO]    The file was deleted!
Begin scan in '03.exe'
03.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/WinterLove.BJ.1 Backdoor server programs
   [INFO]    The file was deleted!
Begin scan in '04.exe'
04.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [INFO]    The file was deleted!
Begin scan in '05.exe'
05.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.blb
   [INFO]    The file was deleted!
Begin scan in '06.exe'
06.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.abi.1
   [INFO]    The file was deleted!
Begin scan in '07.exe'
07.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.bdw
   [INFO]    The file was deleted!
Begin scan in '08.exe'
08.exe
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/UPACK). Please verify the origin of the file
   [INFO]    The file was moved to '47099b71.qua'!
Begin scan in '09.exe'
09.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
   [INFO]    The file was deleted!
Begin scan in '10.exe'
10.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [INFO]    The file was deleted!
Begin scan in '11.exe'
11.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [INFO]    The file was deleted!
Begin scan in '12.exe'
12.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [INFO]    The file was deleted!
Begin scan in '13.exe'
13.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [INFO]    The file was deleted!
Begin scan in '14.exe'
14.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.acb
   [INFO]    The file was deleted!
Begin scan in '15.exe'
15.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [INFO]    The file was deleted!
Begin scan in '16.exe'
16.exe
   [DETECTION] Is the Trojan horse TR/Hook.Shell.272
   [INFO]    The file was deleted!
Begin scan in '17.exe'
17.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.UV.127
   [INFO]    The file was deleted!
Begin scan in '18.exe'
18.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGa.HIJ
   [INFO]    The file was deleted!
Begin scan in '19.exe'
19.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.alh.37 Backdoor server programs
   [INFO]    The file was deleted!
Begin scan in '20.exe'
20.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [INFO]    The file was deleted!
Begin scan in '21.exe'
21.exe
   [DETECTION] Is the Trojan horse TR/Agent.12366
   [INFO]    The file was deleted!
Begin scan in '22.exe'
22.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
   [INFO]    The file was deleted!
Begin scan in '23.exe'
23.exe
   [DETECTION] Is the Trojan horse TR/Agent.11212
   [INFO]    The file was deleted!
Begin scan in '24.exe'
24.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLine.bds.1
   [INFO]    The file was deleted!
Begin scan in '25.exe'
25.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
   [INFO]    The file was deleted!
Begin scan in '26.exe'
26.exe
   [DETECTION] Is the Trojan horse TR/Hook.Shell.301
   [INFO]    The file was deleted!
Begin scan in '27.exe'
27.exe
   [DETECTION] Contains signature of the worm WORM/Viking.DLL.1
   [INFO]    The file was deleted!

End of the scan: 2007年9月3日星期一  13:27
Used time: 00:02 min

The scan has been done completely.

   0 Scanning directories
   27 Files were scanned
   27 viruses and/or unwanted programs were found
   0 classified as suspicious:
   26 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   0 Files not concerned
   0 Archives were scanned
   0 Warnings
   0 Notes
   0 Hidden objects were found

显示全部楼层 · 发表于 2007-9-3 14:44:40

已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bjo 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\01.exe//PE_Patch//UPack
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bdo 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\02.exe//UPack
已检测: 木马程序 Backdoor.Win32.WinterLove.bi 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\03.exe//UPX
已检测: 木马程序 Trojan-Spy.Win32.Delf.uh 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\04.exe//UPack
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.blb 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\05.exe
已检测: 木马程序 Trojan-Spy.Win32.Delf.abi 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\06.exe
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bgu 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\07.exe
已检测: 木马程序 Trojan-PSW.Win32.WOW.sa 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\09.exe//UPack
已检测: 病毒 Worm.Win32.Viking.lz 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\10.exe//PE_Patch
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bfj 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\11.exe//PE_Patch//UPack
已检测: 病毒 Worm.Win32.Viking.lz 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\12.exe//PE_Patch
已检测: 病毒 Worm.Win32.Viking.lz 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\13.exe//PE_Patch
已检测: 木马程序 Trojan-Spy.Win32.Delf.acb 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\14.exe//UPack
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bgl 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\15.exe
已检测: 病毒 Worm.Win32.QQPass.m 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\16.exe//PE_Patch
已检测: 木马程序 Trojan-Spy.Win32.Delf.abi 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\17.exe
已检测: 木马程序 Trojan-Spy.Win32.Delf.abi 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\18.exe
已检测: 木马程序 Trojan-Dropper.Win32.Agent.aqq 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\19.exe//UPack
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bjb 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\20.exe//PE_Patch.UPX//UPX
已检测: 木马程序 Trojan-Spy.Win32.Delf.abi 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\21.exe
已检测: 木马程序 Trojan-Downloader.Win32.Small.czl 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\22.exe//NSPack
已检测: 木马程序 Trojan-Spy.Win32.Delf.abi 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\23.exe
已检测: 木马程序 Trojan-PSW.Win32.OnLineGames.bgr 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\24.exe//PE_Patch.UPX//UPX
已检测: 病毒 Worm.Win32.Viking.lz 文件: C:\Documents and Settings\gho\My Documents\卡巴小助手_V3[1].6\27.exe//PE_Patch

显示全部楼层 · 发表于 2007-9-3 14:46:20

nod32就25.exe没报

显示全部楼层 · 发表于 2007-9-3 15:33:20

我要去上报！

显示全部楼层 · 发表于 2007-9-3 15:54:53

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Paranoia Database - 2651
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder

C:\Documents and Settings\uhthn\Desktop\New Folder\02.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder\01.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\03.exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\04.exe - Infected with PDB-1779 Malware program (Paranoia Database) - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\05.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\06.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\07.exe - Suspicious of Trojan-PSW.OnLineGames.1
C:\Documents and Settings\uhthn\Desktop\New Folder\08.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\09.exe - Infected with PDB-1516 Malware program (Paranoia Database) - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\10.exe - Suspicious of MalwareSpy.Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\New Folder\11.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\12.exe - Suspicious of Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\New Folder\13.exe - Suspicious of Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\New Folder\14.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\15.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\16.exe - Infected with Win32.PDB-160 Malware program (Paranoia Database) - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\17.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\18.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\19.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder\20.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\21.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\22.exe - Suspicious of MalwareSpy.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\23.exe - Suspicious of Trojan-Spy.Delf.2
C:\Documents and Settings\uhthn\Desktop\New Folder\24.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\25.exe - Suspicious of MalwareSpy.Win32.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\26.exe - Suspicious of Win32.Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder\27.exe - Suspicious of Win32.Worm.Viking.2

27 Files scanned
3 Infected files found
24 Suspicious files found
0 Files cured
3 Files deleted

显示全部楼层 · 发表于 2007-9-3 15:58:32

木马名称:Trojan-PSW.Win32.WOW.avh
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\09.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.Delf.eur
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\16.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-Downloader.Win32.Small.khz
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\22.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

蠕虫名称:Worm.Win32.Vikings.gxu
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\27.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\02.EXE
木马程序生成以下文件:
1) C:\WINDOWS\WMSJ.EXE
2) C:\WINDOWS\VIDEO.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\04.EXE
木马程序生成以下文件:
1) C:\WINDOWS\WINWM.EXE
2) C:\WINDOWS\KULIONWM.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\05.EXE
1) C:\DFD3984500.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\06.EXE
1) C:\DFD4001937.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\07.EXE
木马程序生成以下文件:
1) C:\WINDOWS\UPXDND.EXE
2) C:\WINDOWS\SYSTEM32\UPXDND.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\08.EXE
1) C:\DFD4035171.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\10.EXE
木马程序生成以下文件:
1) C:\WINDOWS\LOGO1_.EXE
2) C:\WINDOWS\UNINSTALL\RUNDL132.EXE
3) C:\WINDOWS\RICHDLL.DLL
4) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\10.EXE
5) C:\WINDOWS\NNET.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\11.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\LYLOADER.EXE
2) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\LYMANGR.DLL
3) C:\WINDOWS\SYSTEM32\LYMANGR.DLL
4) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\MSDEG32.DLL
5) C:\WINDOWS\SYSTEM32\MSDEG32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\12.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\13.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\14.EXE
1) C:\DFD4294437.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\15.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\LYLOADER.EXE
2) C:\WINDOWS\SYSTEM32\LYLOADER.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\17.EXE
1) C:\DFD4550906.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\18.EXE
1) C:\DFD4575156.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\20.EXE
木马程序生成以下文件:
1) C:\WINDOWS\DBGHLP32.EXE
2) C:\WINDOWS\SYSTEM32\DBGHLP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\21.EXE
1) C:\DFD4702656.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\23.EXE
1) C:\DFD4719500.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\24.EXE
木马程序生成以下文件:
1) C:\WINDOWS\CMDBCS.EXE
2) C:\WINDOWS\SYSTEM32\CMDBCS.DLL
是否删除木马程序及其衍生物?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\25.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\1[1]\26.EXE
木马程序生成以下文件:
1) C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\MSINFO\SYSWFGQQ2.DLL
是否删除木马程序及其衍生物?

微点砍掉咯

[病毒样本] 27个,杀不掉的帮我上报卡巴,md5内见

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块