收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一堆
返回列表 发新帖
查看: 2217|回复: 9
收起左侧

[病毒样本] 一堆

[复制链接]
zane_xzz
发表于 2007-9-9 19:17:03 | 显示全部楼层 |阅读模式
[MD5: CC7FCA 0C8596 1DC07F DDF881 5B9830 43C0E8 272974 0C4D2F 720926 E6EA3F 472C0E 348887 7AC69B 290E29 EC76B8 B99ADC 991628 EA1275 84EDB8 5F38AD F9E38B F5F2DB 7CF2D4 6EA355 11B4BE]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

qigang
发表于 2007-9-9 19:21:22 | 显示全部楼层

39/17

瑞星病毒查杀结果报告

清除病毒种类列表:

病毒: Trojan.PSW.Win32.OnlineGames.yem
病毒: Trojan.PSW.Win32.YBOnline.ak
病毒: Trojan.PSW.Win32.ZeroOnline.am
病毒: Trojan.PSW.Win32.NPSword.a
病毒: Trojan.PSW.Win32.QQHX.tps
病毒: Trojan.PSW.Win32.OnlineGames.yim
病毒: Trojan.PSW.Win32.OnlineGames.yba
病毒: Trojan.PSW.Win32.LMir.lyd
病毒: Trojan.PSW.Win32.OnlineGames.yii
病毒: Trojan.PSW.Win32.AskTao.cd
病毒: Trojan.PSW.Win32.OnlineGames.yet
病毒: Trojan.PSW.Win32.OnlineGames.ybl
病毒: Trojan.PSW.Win32.LMir.yev
病毒: Trojan.PSW.Win32.WoWar.wo
病毒: Trojan.PSW.Win32.OnlineGames.yhf
病毒: Trojan.PSW.Win32.Agent.vcd

MAC地址:00:11:5B:F3:6D:69

用户来源:互联网

软件版本:19.39.62
回复

举报

平淡
发表于 2007-9-9 19:22:33 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

The EQs
发表于 2007-9-9 19:23:21 | 显示全部楼层
Scan performed at: 2007-9-9 19:22:52
Scanning Log
NOD32 version 2515 (20070909) NT
Command line: C:\Documents and Settings\Don johnson\桌面\桌面
Operating memory - is OK

Date: 9.9.2007  Time: 19:22:56
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\Don johnson\桌面\桌面\
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\1.exe - a variant of Win32/PSW.Agent.NEC trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\10.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\11.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\12.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\13.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\14.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\15.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\16.exe - Win32/Agent.NEM trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\17.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\18.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\19.exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\2.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\3.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\4.exe - probably a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\5.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\6.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\7.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\8.exe - a variant of Win32/PSW.Legendmir.NEP trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\9.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\cao.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\down1.exe - probably a variant of Win32/PSW.Delf.NHI trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\momo.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\qq.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\system22.exe - probably a variant of Win32/Viking virus
C:\Documents and Settings\Don johnson\桌面\桌面\桌面\vip.exe - probably a variant of Win32/PSW.Delf.NHI trojan
Number of scanned files: 26
Number of threats found: 25
Number of files cleaned: 25
Time of completion: 19:23:04 Total scanning time: 8 sec (00:00:08)

Notes:
[7] File is probably infected with an unknown virus.
回复

举报

微点卫士
发表于 2007-9-9 19:33:30 | 显示全部楼层
微点:
木马名称:Trojan-PSW.Win32.OnLineGames.kdf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\1.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.drv

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\10.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jvy

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\11.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kbs

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\13.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.cam

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\14.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kay

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\15.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Dropper.Win32.Agent.dxx

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\16.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.khm

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\17.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.drh

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\18.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Small.khz

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\19.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jwd

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwg

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\3.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwh

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\5.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Agent.jrk

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\6.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jml

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\7.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.ezw

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\9.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Small.kqw

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\CAO.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.eug

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\DOWN1.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Delf.hcx

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\QQ.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Vikings.hyk

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\SYSTEM22.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.eug

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\VIP.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\4.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\UPXDND.EXE
2) C:\WINDOWS.0\SYSTEM32\UPXDND.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\12.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\IFC222.DLL
2) C:\WINDOWS.0\WINLOGOR.EXE
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\桌面\MOMO.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\SERVEST.EXE
是否删除木马程序及其衍生物?


down写入文件失败
8是死的么?
回复

举报

浪滔天
发表于 2007-9-9 19:45:10 | 显示全部楼层
卡巴 7.0.0.125 高启发

25个

已隔离: 病毒 Heur.Invader (变种)        文件: F:\病毒样本\桌面[1]\桌面\4.exe
已删除: 病毒 Worm.Win32.QQPass.c        文件: F:\病毒样本\桌面[1]\桌面\down1.exe//PE_Patch.UPX//UPX
已删除: 病毒 Worm.Win32.QQPass.c        文件: F:\病毒样本\桌面[1]\桌面\vip.exe//PE_Patch.UPX//UPX
已删除: 病毒 Worm.Win32.Viking.mc        文件: F:\病毒样本\桌面[1]\桌面\system22.exe//PE_Patch
已删除: 木马程序 Trojan-Downloader.VBS.Small.ep        文件: F:\病毒样本\桌面[1]\桌面\down.exe//UPX//WScript
已删除: 木马程序 Trojan-Downloader.Win32.Agent.csr        文件: F:\病毒样本\桌面[1]\桌面\6.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Delf.bzy        文件: F:\病毒样本\桌面[1]\桌面\qq.exe//PE_Patch
已删除: 木马程序 Trojan-Downloader.Win32.Injecter.f        文件: F:\病毒样本\桌面[1]\桌面\momo.exe
已删除: 木马程序 Trojan-Downloader.Win32.Small.czl        文件: F:\病毒样本\桌面[1]\桌面\19.exe//NSPack
已删除: 木马程序 Trojan-Downloader.Win32.Small.fkw        文件: F:\病毒样本\桌面[1]\桌面\cao.exe//FSG
已删除: 木马程序 Trojan-Dropper.Win32.Agent.aqq        文件: F:\病毒样本\桌面[1]\桌面\16.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.Agent.pl        文件: F:\病毒样本\桌面[1]\桌面\14.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.Delf.aav        文件: F:\病毒样本\桌面[1]\桌面\8.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.Delf.aaw        文件: F:\病毒样本\桌面[1]\桌面\9.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bgr        文件: F:\病毒样本\桌面[1]\桌面\7.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.blb        文件: F:\病毒样本\桌面[1]\桌面\2.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.blx        文件: F:\病毒样本\桌面[1]\桌面\11.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bmj        文件: F:\病毒样本\桌面[1]\桌面\13.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bms        文件: F:\病毒样本\桌面[1]\桌面\1.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bou        文件: F:\病毒样本\桌面[1]\桌面\15.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bwr        文件: F:\病毒样本\桌面[1]\桌面\17.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-Spy.Win32.Delf.abi        文件: F:\病毒样本\桌面[1]\桌面\18.exe
已删除: 木马程序 Trojan-Spy.Win32.Delf.ach        文件: F:\病毒样本\桌面[1]\桌面\10.exe//UPack
已删除: 木马程序 Trojan-Spy.Win32.Delf.agk        文件: F:\病毒样本\桌面[1]\桌面\3.exe//UPack
已删除: 木马程序 Trojan-Spy.Win32.Delf.ago        文件: F:\病毒样本\桌面[1]\桌面\5.exe//UPack
回复

举报

uhthn2002
发表于 2007-9-9 19:58:38 | 显示全部楼层
Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Paranoia Database - 4052
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\桌面

C:\Documents and Settings\uhthn\Desktop\桌面\1.exe - Infected with PDB-635 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\10.exe - Infected with PDB-3195 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\11.exe - Infected with PDB-875 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\12.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\桌面\13.exe - Infected with PDB-206 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\14.exe - Infected with PDB-805 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\15.exe - Infected with PDB-901 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\16.exe - Infected with PDB-176 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\17.exe - Infected with PDB-2555 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\18.exe - Infected with PDB-1656 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\19.exe - Infected with MalwareSpy.PDB-1203 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\2.exe - Infected with PDB-2308 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\3.exe - Infected with PDB-3313 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\4.exe - Suspicious of Trojan-PSW.OnLineGames.1
C:\Documents and Settings\uhthn\Desktop\桌面\5.exe - Infected with PDB-278 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\6.exe - Infected with PDB-1289 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\7.exe - Infected with PDB-2432 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\8.exe - Infected with PDB-3284 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\9.exe - Infected with PDB-4042 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\cao.exe - Infected with PDB-3603 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\down.exe - Infected with PDB-39 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\down1.exe - Infected with Win32.PDB-2188 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\momo.exe - Infected with Win32.PDB-2473 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\qq.exe - Infected with Win32.PDB-1271 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\桌面\system22.exe - Suspicious of Win32.Worm.Viking.2
C:\Documents and Settings\uhthn\Desktop\桌面\vip.exe - Infected with Win32.PDB-2917 Malware program - Deleted

26 Files scanned
23 Infected files found
3 Suspicious files found
0 Files cured
23 Files deleted
回复

举报

qqq000@qq.com
头像被屏蔽
发表于 2007-9-9 23:17:21 | 显示全部楼层
----------
              [凝逸反毒] (http://hi.baidu.com/503165656)

       [凝逸.扫描病毒引擎-日志]       2007.9.9 23:17:21

文件:F:\070907\桌面[1]\桌面\1.exe | 感染:MULDROP.Trojan [36>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\10.exe | 感染:virus [579>20070906_ny0013.axx]3(1.3)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\11.exe | 感染:virus [581>20070906_ny0013.axx]3(1.4)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\13.exe | 感染:virus [580>20070906_ny0013.axx]3(1.7)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\14.exe | 感染:virus [578>20070906_ny0013.axx]3(1.3)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\15.exe | 感染:virus [576>20070906_ny0013.axx]3(1.6)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\16.exe | 感染:virus [513>20070819_ny0008.axx]3(1.3)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\17.exe | 感染:BINARYRES [20>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\18.exe | 感染:virus [720>20070830_ny0012.axx]3(2.4)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\19.exe | 感染:BackDoor.Twin [262>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\2.exe | 感染:virus [596>20070906_ny0013.axx]3(3.8)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\3.exe | 感染:virus [421>20070906_ny0014.axx]3(1.7)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\7.exe | 感染:BINARYRES [439>20070830_ny0012.axx]3(1.1)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\down1.exe | 感染:Win32.HLLW.Autoruner.249 [10>20070822_ny0010.axx]3(2.4)
操作:删除文件
文件:F:\070907\桌面[1]\桌面\vip.exe | 感染:Win32.HLLW.Autoruner.249 [10>20070822_ny0010.axx]3(2.4)
操作:删除文件

扫描完成|病毒:15 文件:26|耗时:6429
----------
回复

举报

ssy275
发表于 2007-9-9 23:57:19 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\ssy\桌面\1.part1.rar'
C:\Documents and Settings\ssy\桌面\1.part1.rar
  [0] Archive type: RAR
  --> ×ÀÃæ\1.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> ×ÀÃæ\10.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.acb
  --> ×ÀÃæ\11.exe
      [DETECTION] Is the Trojan horse TR/Agent.12767
  --> ×ÀÃæ\12.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> ×ÀÃæ\13.exe
      [DETECTION] Is the Trojan horse TR/Agent.12580
  --> ×ÀÃæ\14.exe
      [DETECTION] Is the Trojan horse TR/PSW.Agent.PL
  --> ×ÀÃæ\15.exe
      [DETECTION] Is the Trojan horse TR/Agent.11800
  --> ×ÀÃæ\16.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.alh.37 Backdoor server programs
  --> ×ÀÃæ\17.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.bws
  --> ×ÀÃæ\18.exe
      [DETECTION] Is the Trojan horse TR/Agent.12366
  --> ×ÀÃæ\19.exe
      [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> ×ÀÃæ\2.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.blb
  --> ×ÀÃæ\3.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.agk
  --> ×ÀÃæ\4.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> ×ÀÃæ\5.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.ago
  --> ×ÀÃæ\6.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.csr.2
  --> ×ÀÃæ\7.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLine.bds.1
  --> ×ÀÃæ\8.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> ×ÀÃæ\9.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.aaw
  --> ×ÀÃæ\cao.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.fkw
      [INFO]      A backup was created as '475417d6.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!


End of the scan: 2007年9月9日  23:56
Used time: 00:02 min

The scan has been done completely.

      0 Scanning directories
     22 Files were scanned
     19 viruses and/or unwanted programs were found
      1 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      1 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      3 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
  --> ×ÀÃæ\momo.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Injecter.F
  --> ×ÀÃæ\qq.exe
      [DETECTION] Contains suspicious code HEUR/Malware
  --> ×ÀÃæ\system22.exe
      [DETECTION] Contains detection pattern of the worm WORM/Viking.DLL.2
  --> ×ÀÃæ\vip.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.13
      [INFO]      A backup was created as '475417f6.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
回复

举报

mofunzone
发表于 2007-9-10 01:07:21 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\桌面'
C:\Documents and Settings\Administrator\My Documents\桌面\
  1.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      The file was deleted!
  10.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.acb
      [INFO]      The file was deleted!
  11.exe
      [DETECTION] Is the Trojan horse TR/Agent.12767
      [INFO]      The file was deleted!
  12.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '47122874.qua'!
  13.exe
      [DETECTION] Is the Trojan horse TR/Agent.12580
      [INFO]      The file was deleted!
  14.exe
      [DETECTION] Is the Trojan horse TR/PSW.Agent.PL
      [INFO]      The file was deleted!
  15.exe
      [DETECTION] Is the Trojan horse TR/Agent.11800
      [INFO]      The file was deleted!
  16.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.alh.37 Backdoor server programs
      [INFO]      The file was deleted!
  17.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.bws
      [INFO]      The file was deleted!
  18.exe
      [DETECTION] Is the Trojan horse TR/Agent.12366
      [INFO]      The file was deleted!
  19.exe
      [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
      [INFO]      The file was deleted!
  2.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.blb
      [INFO]      The file was deleted!
  3.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.agk
      [INFO]      The file was deleted!
  4.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
      [INFO]      The file was deleted!
  5.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.ago
      [INFO]      The file was deleted!
  6.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.csr.2
      [INFO]      The file was deleted!
  7.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLine.bds.1
      [INFO]      The file was deleted!
  8.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
      [INFO]      The file was deleted!
  9.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.aaw
      [INFO]      The file was deleted!
  cao.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.fkw
      [INFO]      The file was deleted!
  down.exe
  down1.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.13
      [INFO]      The file was deleted!
  momo.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Injecter.F
      [INFO]      The file was deleted!
  qq.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '471228b4.qua'!
  system22.exe
      [DETECTION] Contains detection pattern of the worm WORM/Viking.DLL.2
      [INFO]      The file was deleted!
  vip.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.13
      [INFO]      The file was deleted!


End of the scan: 2007年9月9日  10:07
Used time: 00:05 min

The scan has been done completely.

      1 Scanning directories
     26 Files were scanned
     23 viruses and/or unwanted programs were found
      2 Files were classified as suspicious:
     23 files were deleted
      0 files were repaired
      2 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      3 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-6 09:01 , Processed in 0.127303 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表