一包病毒(网盘)

显示全部楼层 · 发表于 2007-9-9 18:29:47

新的老的都有

下午无聊开了N十个下载者硬折腾出来这么多

[MD5: F16D14 08AF86 1DDB44 CB468E 604E24 0FE904 571111 F5EA1D E872AE ABF278 EBF1F1 B7950D D081A2 BCD294 36FA6F 068470 042396 36FA6F B1C58D F04D35 912891 D8E1A2 03D744 33FDB4 4B8583 827203 C626FA 9C10E9 5C99B8 E068B1 75E1EA 59DD6F 523D9D C3B97B AFB4C7 3815AB E29F00 F2C383 C6E2D4 2C9BBE 97BA9A 68B699 BAD7CA 2C9BBE 97BA9A 68B699 BAD7CA 09490B FB6EDC AB5C07 A3B475 3CEB0A A8FCE4 EDB073 262572 73E3ED 2B3756 A34E8B EE2CC6 BEDE67 7525C1 2F3C77 EEDB62 A61E8F 268B4F BC95F5 0368D0 D21134 8F842B F2ABB1 C59C4B 972B17 0B71C4 D8E1A2 764CFA 84EEAD C661B1 8C04EE FAEAEF F0AC92]

传到网盘了这个网盘速度还行刚才试了下用IE是200K/S
http://www.mikebox.com/index.php?code=96491970

显示全部楼层 · 发表于 2007-9-9 18:35:00

显示全部楼层 · 发表于 2007-9-9 18:37:25

Virus (29).exe死了
C:\ABC\0909\Virus (1).sys - 特征码 'not-a-virus:AdWare.Win32.Cinmus.j' 被发现
C:\ABC\0909\Virus (10).dll - 特征码 'not-a-virus:AdWare.Win32.BHO.av' 被发现
C:\ABC\0909\Virus (11).exe - 特征码 'Virus.Win32.Boran.J' 被发现
C:\ABC\0909\Virus (12).dat - 特征码 'Trojan.Win32.Small.mj' 被发现
C:\ABC\0909\Virus (13).dll - 特征码 'Trojan-Proxy.Win32.Delf.AN' 被发现
C:\ABC\0909\Virus (14).bmt - 特征码 'Trojan-Spy.Win32.Delf.PG' 被发现
C:\ABC\0909\Virus (15).ins - 特征码 'Trojan-Spy.Win32.Delf.OG' 被发现
C:\ABC\0909\Virus (16).jup - 特征码 'Trojan-Spy.Win32.Delf.OG' 被发现
C:\ABC\0909\Virus (17).2dt - 特征码 'Trojan-PWS.Win32.Delf.qc' 被发现
C:\ABC\0909\Virus (18).exe - 特征码 'not-a-virus:AdWare.Win32.Rond.c' 被发现
C:\ABC\0909\Virus (19).lzma
C:\ABC\0909\Virus (2).sys - 特征码 'Trojan-Downloader.Win32.Agent.bbb' 被发现
C:\ABC\0909\Virus (20).bak - 特征码 'Virus.Win32.AutoRun.am' 被发现
C:\ABC\0909\Virus (21).dll - 特征码 'Virus.Win32.AutoRun.am' 被发现
C:\ABC\0909\Virus (22).sys - 特征码 'Trojan-Spy.Win32.Delf.ps' 被发现
C:\ABC\0909\Virus (23).tdm - 特征码 'Trojan-Proxy.Win32.Delf.AN' 被发现
C:\ABC\0909\Virus (24).exe - 特征码 'Trojan-PWS.Win32.OnLineGames.ru' 被发现
C:\ABC\0909\Virus (25).exe - 特征码 'Trojan.Win32.Small.oa' 被发现
C:\ABC\0909\Virus (26).lzma
C:\ABC\0909\Virus (27).exe - 特征码 'not-a-virus:AdWare.Win32.Rond.c' 被发现
C:\ABC\0909\Virus (28).lzma
C:\ABC\0909\Virus (29).exe
C:\ABC\0909\Virus (3).exe - 特征码 'BehavesLikeWin32.Malware' 被发现
C:\ABC\0909\Virus (30).exe - 特征码 'Trojan-Downloader.Win32.VB.atk' 被发现
C:\ABC\0909\Virus (31).exe - 特征码 'Trojan.Win32.Agent.ajr' 被发现
C:\ABC\0909\Virus (32).exe - 特征码 'BehavesLikeWin32.ExplorerHijack' 被发现
C:\ABC\0909\Virus (33).exe - 可疑代码段被发现 (Level: 140)
C:\ABC\0909\Virus (34).exe - 特征码 'AdWare.Win32.Cinmus.j' 被发现
C:\ABC\0909\Virus (35).exe - 特征码 'Trojan-PWS.Win32.Agent.iu' 被发现
C:\ABC\0909\Virus (36).exe - 特征码 'Virus.Win32.Delf.FKI' 被发现
C:\ABC\0909\Virus (37).sys - 特征码 'Trojan-Downloader.Win32.Agent.bbb' 被发现
C:\ABC\0909\Virus (38).exe - 特征码 'Trojan-Downloader.Win32.Agent.bls' 被发现
C:\ABC\0909\Virus (39).exe - 特征码 'Trojan-Downloader.Win32.VB.bic' 被发现
C:\ABC\0909\Virus (4).exe - 特征码 'Trojan-PWS.Win32.Agent.BU' 被发现
C:\ABC\0909\Virus (40).exe - 特征码 'Virus.Win32.QQHelper.BF' 被发现
C:\ABC\0909\Virus (41).exe - 特征码 'not-a-virus:AdWare.Win32.AdMoke.bx' 被发现
C:\ABC\0909\Virus (43).exe - 特征码 'Trojan-Downloader.Win32.VB.bic' 被发现
C:\ABC\0909\Virus (44).exe - 特征码 'Virus.Win32.QQHelper.BF' 被发现
C:\ABC\0909\Virus (45).exe - 特征码 'not-a-virus:AdWare.Win32.AdMoke.bx' 被发现
C:\ABC\0909\Virus (47).det
C:\ABC\0909\Virus (48).DAT - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0909\Virus (49).DAT - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0909\Virus (5).txt:\webhelp.exe - 特征码 'not-a-virus:AdWare.Win32.Agent.bs' 被发现
C:\ABC\0909\Virus (5).txt:\webshow.dll - 特征码 'not-a-virus:AdWare.Win32.Agent.bs' 被发现
C:\ABC\0909\Virus (5).txt
C:\ABC\0909\Virus (50).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\0909\Virus (51).exe - 特征码 'Backdoor.Win32.Hupigon.awl' 被发现
C:\ABC\0909\Virus (52).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\0909\Virus (53).dll - 特征码 'Backdoor.Win32.Small.pl' 被发现
C:\ABC\0909\Virus (54).EXE - 特征码 'Trojan-PWS.Win32.Agent.BU' 被发现
C:\ABC\0909\Virus (55).DLL - 特征码 'Trojan-Downloader' 被发现
C:\ABC\0909\Virus (56).EXE - 特征码 'Trojan-PWS.Win32.Agent.BU' 被发现
C:\ABC\0909\Virus (57).dll - 特征码 'Virus.Win32.Agent.JZN' 被发现
C:\ABC\0909\Virus (58).exe - 特征码 'Backdoor.Win32.Small.nw' 被发现
C:\ABC\0909\Virus (59).DLL - 特征码 'Trojan-Downloader' 被发现
C:\ABC\0909\Virus (6).exe - 特征码 'not-a-virus:AdWare.Win32.Agent.bs' 被发现
C:\ABC\0909\Virus (60).EXE - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0909\Virus (61).exe - 特征码 'Trojan-Downloader.Win32.Agent.cbb' 被发现
C:\ABC\0909\Virus (62).EXE - 特征码 'Trojan-PWS.Win32.Agent.BU' 被发现
C:\ABC\0909\Virus (63).dll - 特征码 'Trojan-Downloader.Agent.YJA' 被发现
C:\ABC\0909\Virus (64).DLL - 特征码 'Backdoor.Win32.Agent.ahj' 被发现
C:\ABC\0909\Virus (65).DLL - 特征码 'Backdoor.Win32.Agent.ari' 被发现
C:\ABC\0909\Virus (66).exe - 特征码 'Trojan.Win32.Agent.EP' 被发现
C:\ABC\0909\Virus (67).dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\0909\Virus (68).dll - 特征码 'Backdoor.Win32.Hupigon.bde' 被发现
C:\ABC\0909\Virus (69).exe - 特征码 'Backdoor.Win32.Delf.ash' 被发现
C:\ABC\0909\Virus (7).dll - 特征码 'not-a-virus:AdWare.Win32.Agent.bs' 被发现
C:\ABC\0909\Virus (70).exe - 特征码 'Virus.Win32.Delf.FKJ' 被发现
C:\ABC\0909\Virus (71).dll - 特征码 'Trojan-Downloader.Win32.Delf.asz' 被发现
C:\ABC\0909\Virus (72).dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\0909\Virus (73).chm - 特征码 'Trojan.Win32.Small.mj' 被发现
C:\ABC\0909\Virus (74).dll - 特征码 'Trojan-PWS.OnlineGames.AWR' 被发现
C:\ABC\0909\Virus (75).dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\0909\Virus (76).EXE - 特征码 'Win32.Starter.A' 被发现
C:\ABC\0909\Virus (77).exe - 特征码 'Trojan-Downloader.Win32.Delf.BU' 被发现
C:\ABC\0909\Virus (78).sys - 特征码 'Rootkit.Win32.Vanti.eu' 被发现
C:\ABC\0909\Virus (79).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0909\Virus (8).exe:\webhelp.exe - 特征码 'not-a-virus:AdWare.Win32.Agent.bs' 被发现
C:\ABC\0909\Virus (8).exe:\webshow.dll - 特征码 'not-a-virus:AdWare.Win32.Agent.bs' 被发现
C:\ABC\0909\Virus (8).exe
C:\ABC\0909\Virus (80).dll - 特征码 'Trojan-Downloader.Agent.YJA' 被发现
C:\ABC\0909\Virus (9).dll - 特征码 'not-a-virus:AdWare.Win32.BHO.av' 被发现
C:\ABC\0909\Virus (42)\[NSIS].nsi
C:\ABC\0909\Virus (42)\$PLUGINSDIR\System.dll
C:\ABC\0909\Virus (42)\$TEMP\$TEMP\1647.exe - 特征码 'not-a-virus:AdWare.Win32.Cinmus.f' 被发现
C:\ABC\0909\Virus (46)\[NSIS].nsi
C:\ABC\0909\Virus (46)\$PLUGINSDIR\System.dll
C:\ABC\0909\Virus (46)\$TEMP\$TEMP\1647.exe - 特征码 'not-a-virus:AdWare.Win32.Cinmus.f' 被发现

88 文件被扫描
(2 压缩档 4 文件)
76 特征码被侦测
1 可疑代码段被发现
耗时: 0:11.219

显示全部楼层 · 发表于 2007-9-9 18:42:46

楼上用的什么杀软？ikarus吗

显示全部楼层 · 发表于 2007-9-9 18:48:00

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.Mnless.lpi
病毒： Trojan.Win32.Agent.vam
病毒： AdWare.Win32.Agent.nzl
病毒： AdWare.Win32.Agent.nzm
病毒： AdWare.Win32.Cpush.j
病毒： Adware.Win32.CPush.e
病毒： Trojan.PSW.Delf.eze
病毒： Trojan.PSW.Delf.eze
病毒： Trojan.PSW.OnLineGames.chu
病毒： Trojan.PSW.Win32.QQPass.tnu
病毒： Trojan.PSW.Win32.QQPass.tnu
病毒： Trojan.PSW.Agent.kat
病毒： Adware.Win32.Agent.nuk
病毒： Trojan.PSW.OnlineGames.cdi
病毒： Trojan.PSW.Win32.OnlineGames.xym
病毒： Trojan.IMMSG.Win32.Agent.c
病毒： Trojan.IMMSG.Win32.Agent.b
病毒： Packer.Mian007
病毒： Adware.Win32.Agent.nuk
病毒： Trojan.DL.Win32.VB.xmn
病毒： Trojan.Win32.Agent.vyj
病毒： Backdoor.Win32.Gpigeon.h
病毒： Trojan.DL.Win32.VB.yda
病毒： Trojan.DL.Win32.Agent.yfc
病毒： Trojan.DL.Win32.Agent.yee
病毒： Trojan.PSW.Win32.OnlineGames.xlq
病毒： Trojan.PSW.Win32.OnLineGames.xlp
病毒： Trojan.PSW.Win32.WLOnline.jht
病毒： Trojan.DL.Win32.Agent.xon
病毒： Trojan.IMMSG.Win32.TBMSG.jx
病毒： Trojan.IMMSG.Win32.TBMSG.kc
病毒： Worm.Win32.Agent.ae
病毒： Backdoor.Win32.Jusi.as
病毒： Trojan.IMMSG.Win32.TBMSG.jo
病毒： Trojan.IMMSG.Win32.TBMsg.iv
病毒： Trojan.DL.Win32.Autorun.h
病毒： Trojan.IMMSG.Win32.TBMSG.jl
病毒： Trojan.PSW.Win32.XYOnline.dz
病毒： Trojan.IMMSG.Win32.TBMSG.jr
病毒： Worm.Win32.Agent.ae
病毒： Trojan.PSW.Win32.OnlineGames.ucg
病毒： Backdoor.Jusi.aa
病毒： Backdoor.Win32.Jusi.ag
病毒： Trojan.Win32.Agent.vxy
病毒： Trojan.Win32.Agent.vxy
病毒： Trojan.PSW.Win32.AskDao.b
病毒： Trojan.PSW.Win32.OnlineGames.xng
病毒： Trojan.DL.Win32.Agent.xon
病毒： Trojan.PSW.QQPass.qno
病毒： Worm.Win32.Autorun.j
病毒： Trojan.PSW.Win32.OnlineGames.xlt

MAC地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：19.39.62

显示全部楼层 · 发表于 2007-9-9 19:05:31

卡巴 7.0.0.125 高启发
64个

已隔离: 病毒 Heur.Invader (变种) 文件: D:\0909\Virus (32).exe
已隔离: 病毒 Heur.Invader (变种) 文件: D:\0909\Virus (33).exe//PE_Patch//MewBundle//MEW
已隔离: 病毒 Heur.Trojan.Generic (变种) 文件: D:\0909\Virus (51).exe//PE-Armor//PE-Crypt.Known
已删除: 病毒 Virus.Win32.AutoRun.bk 文件: D:\0909\Virus (21).dll//UPX
已删除: 病毒 Virus.Win32.AutoRun.bk 文件: D:\0909\Virus (20).bak//UPX
已删除: 病毒 Virus.Win32.AutoRun.go 文件: D:\0909\Virus (4).exe
已删除: 病毒 Virus.Win32.AutoRun.kn 文件: D:\0909\Virus (70).exe//PE_Patch.PECompact//PecBundle//PECompact//#
已删除: 病毒 Virus.Win32.AutoRun.kn 文件: D:\0909\Virus (71).dll
已删除: 病毒 Virus.Win32.AutoRun.ku 文件: D:\0909\Virus (36).exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 病毒 Worm.Win32.Delf.cc 文件: D:\0909\Virus (13).dll
已删除: 病毒 Worm.Win32.Delf.cc 文件: D:\0909\Virus (73).chm//NSPack
已删除: 病毒 Worm.Win32.Delf.cc 文件: D:\0909\Virus (12).dat//NSPack
已删除: 病毒 Worm.Win32.VB.cn 文件: D:\0909\Virus (30).exe
已删除: 恶意程序 not-virus:Hoax.Win32.Avgold.h 文件: D:\0909\Virus (66).exe
已删除: 广告程序 not-a-virus:AdWare.Win32.BHO.av 文件: D:\0909\Virus (10).dll
已删除: 广告程序 not-a-virus:AdWare.Win32.BHO.ef 文件: D:\0909\Virus (9).dll
已删除: 广告程序 not-a-virus:AdWare.Win32.Cinmus.j 文件: D:\0909\Virus (34).exe//stream//data0002//data0004
已删除: 广告程序 not-a-virus:AdWare.Win32.Cinmus.j 文件: D:\0909\Virus (34).exe//stream//data0002//data0003
已删除: 广告程序 not-a-virus:AdWare.Win32.Rond.c 文件: D:\0909\Virus (18).exe
已删除: 广告程序 not-a-virus:AdWare.Win32.Rond.c 文件: D:\0909\Virus (27).exe
已删除: 木马程序 Backdoor.Win32.Agent.ahj 文件: D:\0909\Virus (64).DLL
已删除: 木马程序 Backdoor.Win32.Agent.ahj 文件: D:\0909\Virus (65).DLL
已删除: 木马程序 Backdoor.Win32.Agent.ahj 文件: D:\0909\Virus (54).EXE
已删除: 木马程序 Backdoor.Win32.Agent.ahj 文件: D:\0909\Virus (55).DLL
已删除: 木马程序 Backdoor.Win32.Agent.ari 文件: D:\0909\Virus (56).EXE
已删除: 木马程序 Backdoor.Win32.Agent.arj 文件: D:\0909\Virus (58).exe//ASPack
已删除: 木马程序 Backdoor.Win32.Delf.ash 文件: D:\0909\Virus (69).exe//PolyCrypt
已删除: 木马程序 Backdoor.Win32.Delf.awy 文件: D:\0909\Virus (3).exe
已删除: 木马程序 Backdoor.Win32.Hupigon.cbf 文件: D:\0909\Virus (35).exe
已删除: 木马程序 Backdoor.Win32.Small.pl 文件: D:\0909\Virus (53).dll
已删除: 木马程序 Rootkit.Win32.Agent.fo 文件: D:\0909\Virus (78).sys
已删除: 木马程序 Trojan-Downloader.Win32.Agent.bls 文件: D:\0909\Virus (38).exe//PE_Patch.Upolyx//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Agent.cbb 文件: D:\0909\Virus (61).exe//NSPack//PE_Patch.MaskPE
已删除: 木马程序 Trojan-Downloader.Win32.Delf.bnc 文件: D:\0909\Virus (79).exe//UPack
已删除: 木马程序 Trojan-Downloader.Win32.Delf.caa 文件: D:\0909\Virus (45).exe
已删除: 木马程序 Trojan-Downloader.Win32.Delf.caa 文件: D:\0909\Virus (41).exe
已删除: 木马程序 Trojan-Downloader.Win32.Flux.a 文件: D:\0909\Virus (60).EXE//UPack//ASPack
已删除: 木马程序 Trojan-Downloader.Win32.Flux.b 文件: D:\0909\Virus (59).DLL
已删除: 木马程序 Trojan-Downloader.Win32.Flux.b 文件: D:\0909\Virus (62).EXE
已删除: 木马程序 Trojan-Downloader.Win32.QQHelper.adj 文件: D:\0909\Virus (40).exe
已删除: 木马程序 Trojan-Downloader.Win32.QQHelper.adj 文件: D:\0909\Virus (44).exe
已删除: 木马程序 Trojan-Downloader.Win32.Small.exh 文件: D:\0909\Virus (63).dll
已删除: 木马程序 Trojan-Downloader.Win32.VB.bic 文件: D:\0909\Virus (43).exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 木马程序 Trojan-Downloader.Win32.VB.bic 文件: D:\0909\Virus (39).exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 木马程序 Trojan-PSW.Win32.Delf.qc 文件: D:\0909\Virus (14).bmt
已删除: 木马程序 Trojan-PSW.Win32.Delf.qc 文件: D:\0909\Virus (15).ins
已删除: 木马程序 Trojan-PSW.Win32.Delf.qc 文件: D:\0909\Virus (16).jup//UPX
已删除: 木马程序 Trojan-PSW.Win32.Delf.qc 文件: D:\0909\Virus (17).2dt//UPX
已删除: 木马程序 Trojan-PSW.Win32.Gamec.ar 文件: D:\0909\Virus (23).tdm
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.acb 文件: D:\0909\Virus (48).DAT
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.aci 文件: D:\0909\Virus (52).exe//PE_Patch
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.aci 文件: D:\0909\Virus (50).exe//PE_Patch
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.aci 文件: D:\0909\Virus (49).DAT//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.ru 文件: D:\0909\Virus (24).exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.ru 文件: D:\0909\Virus (74).dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.uo 文件: D:\0909\Virus (67).dll
已删除: 木马程序 Trojan-PSW.Win32.QQPass.pa 文件: D:\0909\Virus (77).exe//ASPack//ASPack
已删除: 木马程序 Trojan-PSW.Win32.QQRob.lp 文件: D:\0909\Virus (68).dll
已删除: 木马程序 Trojan-Spy.Win32.Delf.ps 文件: D:\0909\Virus (22).sys
已删除: 木马程序 Trojan-Spy.Win32.Delf.uv 文件: D:\0909\Virus (80).dll
已删除: 木马程序 Trojan-Spy.Win32.Delf.uv 文件: D:\0909\Virus (75).dll
已删除: 木马程序 Trojan-Spy.Win32.Delf.uv 文件: D:\0909\Virus (72).dll
已删除: 木马程序 Trojan.Win32.Agent.bdg 文件: D:\0909\Virus (31).exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 木马程序 Trojan.Win32.Small.oa 文件: D:\0909\Virus (25).exe

显示全部楼层 · 发表于 2007-9-9 19:25:05

Scan performed at: 2007-9-9 19:24:19
Scanning Log
NOD32 version 2515 (20070909) NT
Command line: C:\Documents and Settings\Don johnson\桌面\0909.rar
Operating memory - is OK

Date: 9.9.2007 Time: 19:24:23
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\Don johnson\桌面\0909.rar
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (1).sys - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (3).exe - Win32/Delf.NFD trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (4).exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (5).txt ?RAR ?webhelp.exe - a variant of Win32/Adware.MoKeAD application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (5).txt ?RAR ?webshow.dll - a variant of Win32/Adware.MoKeAD application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (6).exe - a variant of Win32/Adware.MoKeAD application
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (7).dll - a variant of Win32/Adware.MoKeAD application
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (8).exe ?RAR ?webhelp.exe - a variant of Win32/Adware.MoKeAD application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (8).exe ?RAR ?webshow.dll - a variant of Win32/Adware.MoKeAD application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (9).dll - Win32/Adware.BHO.AV application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (10).dll - Win32/Adware.BHO.AV application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (12).dat - Win32/Delf.CC worm - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (13).dll - Win32/Delf.CC worm - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (14).bmt - Win32/PSW.Delf.NHI trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (15).ins - probably a variant of Win32/PSW.Delf.NIY trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (16).jup - a variant of Win32/PSW.Delf.NIY trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (17).2dt - Win32/PSW.Delf.NHI trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (20).bak - Win32/PSW.Delf.NHI trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (21).dll - Win32/PSW.Delf.NHI trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (22).sys - Win32/Spy.Delf.NFM trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (23).tdm - Win32/Spy.Delf.NFM trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (24).exe - Win32/Pacex.Gen virus
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (30).exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (31).exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (32).exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (34).exe ?NSIS ?1582.exe ?NSIS ?acpidisk.sys - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (35).exe - probably a variant of Win32/Hupigon trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (36).exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (38).exe - a variant of Win32/TrojanDownloader.Agent.BLS trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (42).exe ?NSIS ?1647.exe ?NSIS ?acpidisk.sys - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (46).exe ?NSIS ?1647.exe ?NSIS ?acpidisk.sys - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (48).DAT - a variant of Win32/PSW.OnLineGames.NCU trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (49).DAT - a variant of Win32/PSW.OnLineGames.NCU trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (50).exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (52).exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (54).EXE - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (55).DLL - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (56).EXE - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (57).dll - a variant of Win32/TrojanDownloader.Agent.NPO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (58).exe - probably a variant of Win32/Agent trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (59).DLL - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (60).EXE - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (61).exe - a variant of Win32/AutoRun.K worm
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (62).EXE - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (63).dll - a variant of Win32/PSW.OnLineGames.NEN trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (64).DLL - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (65).DLL - probably a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (66).exe - a variant of Win32/TopAntiSpyware trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (67).dll - probably a variant of Win32/PSW.OnLineGames.NEN trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (68).dll - a variant of Win32/PSW.QQRob.NAQ trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (69).exe - a variant of Win32/PSW.QQRob.NAQ trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (70).exe - a variant of Win32/TrojanDownloader.Ieser trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (71).dll - a variant of Win32/TrojanDownloader.Ieser trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (72).dll - probably a variant of Win32/PSW.OnLineGames.NEN trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (73).chm - Win32/Delf.CC worm - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (74).dll - Win32/Pacex.Gen virus
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (75).dll - a variant of Win32/PSW.OnLineGames.NDA trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (77).exe - probably a variant of Win32/PSW.QQPass.NBL trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (78).sys - a variant of Win32/Rootkit.Vanti.EE trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (79).exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\0909.rar ?RAR ?Virus (80).dll - Win32/PSW.OnLineGames.NDA trojan - was a part of the deleted object
Number of scanned files: 105
Number of threats found: 61
Number of files cleaned: 1
Time of completion: 19:24:34 Total scanning time: 11 sec (00:00:11)

Notes:
[7] File is probably infected with an unknown virus.

显示全部楼层 · 发表于 2007-9-9 19:28:50

Starting the file scan:

Begin scan in 'E:\病毒\0909.rar'
E:\病毒\0909.rar
  [0] Archive type: RAR
  --> Virus (1).sys
   [DETECTION] Contains detection pattern of the rootkit RKIT/Cinmus.M
  --> Virus (2).sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Virus (3).exe
   [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> Virus (4).exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
--> Virus (5).txt
   [1] Archive type: RAR SFX (self extracting)
   --> webhelp.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/MokeAD.CC
   --> webshow.dll
      [DETECTION] Is the Trojan horse TR/Spy.RegSerSetu.2
  --> Virus (6).exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/MokeAD.CC
  --> Virus (7).dll
   [DETECTION] Is the Trojan horse TR/Spy.RegSerSetu.2
--> Virus (8).exe
   [1] Archive type: RAR SFX (self extracting)
   --> webhelp.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/MokeAD.CC
   --> webshow.dll
      [DETECTION] Is the Trojan horse TR/Spy.RegSerSetu.2
  --> Virus (9).dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BHO.EF
  --> Virus (10).dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BHO.AV.45
  --> Virus (11).exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Boran.BD
  --> Virus (12).dat
   [DETECTION] Contains detection pattern of the worm WORM/Delf.CC.9
  --> Virus (13).dll
   [DETECTION] Contains detection pattern of the worm WORM/Delf.CC.9
  --> Virus (14).bmt
   [DETECTION] Is the Trojan horse TR/PSW.Delf.QC.40
  --> Virus (15).ins
   [DETECTION] Is the Trojan horse TR/PSW.Steal.27729
  --> Virus (16).jup
   [DETECTION] Is the Trojan horse TR/PSW.Steal.27729
  --> Virus (17).2dt
   [DETECTION] Is the Trojan horse TR/PSW.Delf.QC.40
  --> Virus (18).exe
   [DETECTION] Is the Trojan horse TR/Popwin.DE.1
  --> Virus (20).bak
   [DETECTION] Is the Trojan horse TR/AutoRun.BK
  --> Virus (21).dll
   [DETECTION] Is the Trojan horse TR/AutoRun.BK
  --> Virus (22).sys
   [DETECTION] Is the Trojan horse TR/Spy.Delf.PS.109
  --> Virus (23).tdm
   [DETECTION] Is the Trojan horse TR/PSW.Gamec.AR.12
  --> Virus (24).exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
  --> Virus (25).exe
   [DETECTION] Is the Trojan horse TR/Small.OA
  --> Virus (27).exe
   [DETECTION] Is the Trojan horse TR/Popwin.DE
  --> Virus (30).exe
   [DETECTION] Contains detection pattern of the worm WORM/VB.CN.21
  --> Virus (31).exe
   [DETECTION] Is the Trojan horse TR/Agent.bdg.1
  --> Virus (32).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (33).exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Virus (34).exe
   [DETECTION] Contains detection pattern of the dropper DR/Cinmus.PA
  --> Virus (35).exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
  --> Virus (36).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (37).sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Virus (38).exe
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> Virus (39).exe
   [DETECTION] Is the Trojan horse TR/Dldr.VB.bic.1
  --> Virus (40).exe
   [DETECTION] Is the Trojan horse TR/Dldr.QQHelper.adj
  --> Virus (41).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (43).exe
   [DETECTION] Is the Trojan horse TR/Dldr.VB.bic.1
  --> Virus (44).exe
   [DETECTION] Is the Trojan horse TR/Dldr.QQHelper.adj
  --> Virus (45).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (48).DAT
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
  --> Virus (49).DAT
   [DETECTION] Is the Trojan horse TR/Agent.8180
  --> Virus (50).exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.rwa
  --> Virus (51).exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> Virus (52).exe
   [DETECTION] Is the Trojan horse TR/Agent.8180
  --> Virus (53).dll
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Small.PL Backdoor server programs
  --> Virus (54).EXE
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
  --> Virus (55).DLL
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
  --> Virus (56).EXE
   [DETECTION] Is the Trojan horse TR/Dldr.Winko.A
  --> Virus (57).dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Virus (58).exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.arj Backdoor server programs
  --> Virus (59).DLL
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
  --> Virus (60).EXE
   [DETECTION] Is the Trojan horse TR/Dldr.Flux.A.2
  --> Virus (61).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (62).EXE
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
  --> Virus (63).dll
   [DETECTION] Is the Trojan horse TR/Dldr.Small.exh.7
  --> Virus (64).DLL
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
  --> Virus (65).DLL
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
  --> Virus (66).exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/AntiGold
  --> Virus (67).dll
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.16424.1
  --> Virus (68).dll
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (69).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (70).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (71).dll
   [DETECTION] Is the Trojan horse TR/Dldr.Ieser.I
  --> Virus (72).dll
   [DETECTION] Is the Trojan horse TR/Spy.Delf.UV.41
  --> Virus (73).chm
   [DETECTION] Contains detection pattern of the worm WORM/Delf.CC.9
  --> Virus (74).dll
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
  --> Virus (75).dll
   [DETECTION] Is the Trojan horse TR/Spy.Delf.UV.50
  --> Virus (76).EXE
   [DETECTION] Is the Trojan horse TR/Patched.Service
  --> Virus (77).exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Virus (79).exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> Virus (80).dll
   [DETECTION] Is the Trojan horse TR/Agent.16436
   [WARNING] The file was ignored!

End of the scan: 2007年9月9日  19:28
Used time: 00:14 min

The scan has been done completely.

   0 Scanning directories
   86 Files were scanned
   73 viruses and/or unwanted programs were found
   1 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   13 Files not concerned
   3 Archives were scanned
   1 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-9-9 19:41:44

微点：
广告软件名称:AdWare.Win32.Cinmus.bdu

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (1).SYS
是广告软件!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (1).SYS
是否删除RootKit程序?
木马名称:Backdoor.Win32.Delf.bgt

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (3).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.bmn

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (4).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.MoKeAD.cu

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (6).EXE
是广告软件!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.BHO.pk

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (9).DLL
是广告软件!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.BHO.mz

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (10).DLL
是广告软件!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Delf.asc

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (12).DAT
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.ecf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (14).BMT
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.esa

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (15).INS
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.erl

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (16).JUP
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.dvh

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (17).2DT
是木马程序!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.Rond.f

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (18).EXE
是广告软件!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.yt

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (20).BAK
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.cxn

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (22).SYS
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.ewm

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (24).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Small.aau

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (25).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.Rond.d

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (27).EXE
是广告软件!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.VB.pa

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (30).EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Agent.hnm

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (31).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.Cinmus.aul

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (34).EXE
是广告软件!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Huigezi.vqw

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (35).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.VB.dla

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (39).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.QQHelper.ftr

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (40).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Delf.hcw

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (41).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.VB.dla

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (43).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.QQHelper.ftr

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (44).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Delf.hcw

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (45).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.biy

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (52).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Agent.eei

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (54).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Agent.efc

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (55).DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Agent.dor

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (56).EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Agent.eej

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (58).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.bih

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (59).DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Agent.jas

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (61).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Agent.drm

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (62).EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Agent.efl

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (64).DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Agent.edq

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (65).DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
恶意程序名称:Hoax.Win32.Avgold.h

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (66).EXE
是恶意程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.QQRob.ctj

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (68).DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.QQRob.csy

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (69).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Delf.asc

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (73).CHM
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.QQPass.fjf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (77).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Delf.gwf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (79).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.MoKeAD.cu
程序:
C:\DWNSETUP\WEBHELP.EXE
是广告软件!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (8).EXE
木马程序生成以下文件:
1) C:\DWNSETUP\WEBHELP.EXE
2) C:\DWNSETUP\WEBSHOW.DLL
是否删除木马程序及其衍生物?
木马名称:未知木马
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (8).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (32).EXE
是否删除木马程序及其衍生物?
木马名称:未知木马
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (7).DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (33).EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\RGHRT.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (36).EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\WINUPDATE.EXE
是否删除木马程序及其衍生物?
广告软件名称:AdWare.Win32.Cinmus.bdu
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\ACPIDISK.SYS
是广告软件!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.Cinmus.bdu
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\ACPIDISK.SYS
是广告软件!
已成功阻止其运行,是否要删除此文件?
广告软件名称:AdWare.Win32.Cinmus.bdu
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\ACPIDISK.SYS
是广告软件!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (50).EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\RAVZTMON.EXE
2) C:\WINDOWS.0\SYSTEM32\RAVZTMON.DAT
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (51).EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\VIRUS (51).EXE
是否删除木马程序及其衍生物?
木马名称:Backdoor.Win32.Agent.efc
程序:
C:\WINDOWS.0\SYSTEM32\85EE8C1F.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (60).EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\886131C6.EXE
2) C:\WINDOWS.0\SYSTEM32\85EE8C1F.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (70).EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\WVSFXGUJBBEDI.DLL
是否删除木马程序及其衍生物?
木马名称:未知后门程序
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (70).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:未知木马
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\0909\VIRUS (5).EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

上报Virus (11).exe和Virus (38).exe

[ 本帖最后由微点卫士于 2007-9-9 19:46 编辑 ]

显示全部楼层 · 发表于 2007-9-9 19:55:19

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Paranoia Database - 3993
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder

C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (1).sys - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (2).sys - Suspicious of Trojan-Rootkit.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (3).exe - Infected with Win32.PDB-3912 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (4).exe - Suspicious of MalwareSpy.Trojan-PSW.Game.29
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (5).txt - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (6).exe - Suspicious of Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (7).dll - Suspicious of Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (8).exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (9).dll - Suspicious of Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (10).dll - Suspicious of Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (11).exe - Infected with PDB-2737 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (12).dat - Suspicious of MalwareSpy.Win32.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (13).dll - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (14).bmt - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (15).ins - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (16).jup - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (17).2dt - Infected with Win32.PDB-413 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (18).exe - Infected with PDB-3372 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (19).lzma - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (20).bak - Infected with Win32.PDB-3028 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (21).dll - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (22).sys - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (23).tdm - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (24).exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (25).exe - Infected with PDB-3151 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (26).lzma - OK
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (27).exe - Infected with PDB-436 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (28).lzma - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (29).exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (30).exe - Infected with PDB-3549 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (31).exe - Infected with Win32.PDB-3658 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (32).exe - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (33).exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (34).exe - Infected with PDB-645 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (35).exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (36).exe - Infected with Win32.PDB-127 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (37).sys - Suspicious of Trojan-Rootkit.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (38).exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (39).exe - Infected with PDB-3983 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (40).exe - Infected with PDB-2785 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (41).exe - Infected with Win32.PDB-3855 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (42).exe - Suspicious of Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (43).exe - Infected with PDB-974 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (44).exe - Infected with PDB-3384 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (45).exe - Infected with Win32.PDB-1953 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (46).exe - Suspicious of Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (47).det - OK
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (48).DAT - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (49).DAT - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (50).exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (51).exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (52).exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (53).dll - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (54).EXE - Suspicious of MalwareSpy.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (55).DLL - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (56).EXE - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (57).dll - Suspicious of Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (58).exe - Suspicious of Win32.Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (59).DLL - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (60).EXE - Infected with PDB-2351 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (61).exe - Suspicious of MalwareSpy.Win32.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (62).EXE - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (63).dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (64).DLL - Suspicious of Trojan.Autorun.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (65).DLL - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (66).exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (67).dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (68).dll - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (69).exe - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (70).exe - Suspicious of Win32.Trojan-PSW.Game.16
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (71).dll - Suspicious of Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (72).dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (73).chm - Suspicious of MalwareSpy.Win32.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (74).dll - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (75).dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (76).EXE - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (77).exe - Suspicious of Win32.Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (78).sys - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (79).exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder\Virus (80).dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3

80 Files scanned
18 Infected files found
58 Suspicious files found
0 Files cured
18 Files deleted

[病毒样本] 一包病毒(网盘)

本帖子中包含更多资源

133/61