62个毒网产物

显示全部楼层 · 发表于 2007-9-10 22:23:49

Scan performed at: 2007-9-10 22:22:50
Scanning Log
NOD32 version 2519 (20070910) NT
Command line: D:\Documents and Settings\EKINCHENG\桌面\ABC.rar

Date: 10.9.2007 Time: 22:22:53
Anti-Stealth technology is enabled.
Scanned disks, folders and files: D:\Documents and Settings\EKINCHENG\桌面\ABC.rar
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\10.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\11.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\12.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\13.exe - a variant of Win32/PSW.Legendmir.NEP trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\14.exe - probably a variant of Win32/AutoRun.Q worm
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\15.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\16.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\17.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\19.exe - Win32/Delf.NGD trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\2.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\20.exe - Win32/Agent.NEM trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\3.exe - probably a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\4.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\5.exe - a variant of Win32/PSW.WOW.UT trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\6.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\7.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\8.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?1\9.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\0.exe - probably a variant of Win32/PSW.Delf.NHI trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\1.exe - probably a variant of Win32/StartPage trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\10.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\11.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\12.exe - probably a variant of Win32/AutoRun.Q worm
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\13.exe - probably unknown NewHeur_PE virus [7]
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\14.exe - a variant of Win32/PSW.Legendmir.NEP trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\15.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\16.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\17.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\18.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\19.exe - Win32/Delf.NFD trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\2.exe - probably unknown NewHeur_PE virus [7]
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\20.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\21.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\3.exe - Win32/PSW.OnLineGames.NEN trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\4.exe - probably a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\5.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\6.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\7.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\8.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\9.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?2\wl.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\1.exe - a variant of Win32/PSW.Agent.NEC trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\10.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\11.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\12.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\13.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\14.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\15.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\16.exe - Win32/Agent.NEM trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\17.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\18.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\19.exe - probably unknown NewHeur_PE virus [7]
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\2.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\20.exe - probably unknown NewHeur_PE virus [7]
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\3.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\4.exe - probably a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\5.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\6.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\7.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\8.exe - a variant of Win32/PSW.Legendmir.NEP trojan
D:\Documents and Settings\EKINCHENG\桌面\ABC.rar ?RAR ?3\9.exe - probably unknown NewHeur_PE virus [7]
Number of scanned files: 63
Number of threats found: 61
Number of files cleaned: 1
Time of completion: 22:23:15 Total scanning time: 22 sec (00:00:22)

Notes:
[7] File is probably infected with an unknown virus.

显示全部楼层 · 发表于 2007-9-11 09:43:48

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.PSW.Win32.OnlineGames.yjw
病毒： Trojan.PSW.Win32.AskTao.cd
病毒： Trojan.PSW.Win32.TLOnline.at
病毒： Trojan.PSW.Win32.OnlineGames.yda
病毒： Trojan.PSW.Win32.LMir.yev
病毒： Trojan.PSW.Win32.QQPass.tqu
病毒： Trojan.PSW.Win32.OnlineGames.ykp
病毒： Trojan.PSW.Win32.QQHX.tps
病毒： Trojan.PSW.Win32.OnlineGames.yhi
病毒： Worm.Nimaya.ef
病毒： Trojan.PSW.Win32.XYOnline.ho
病毒： Hack.Win32.ArpCheater.d
病毒： Trojan.PSW.Win32.OnlineGames.yka
病毒： Trojan.PSW.Win32.RocOnline.cx
病毒： Trojan.PSW.Win32.WoWar.wi
病毒： Trojan.PSW.Win32.OnlineGames.yii
病毒： Trojan.PSW.Win32.OnlineGames.ydk
病毒： Trojan.PSW.Win32.OnlineGames.ylc
病毒： Trojan.PSW.Win32.Agent.vcd
病毒： Trojan.Win32.StartPage.ehk
病毒： Trojan.PSW.Win32.RocOnline.cx
病毒： Trojan.PSW.Win32.LMir.lyd
病毒： Trojan.PSW.Win32.LMir.lyc
病毒： Trojan.PSW.Win32.ZeroOnline.am
病毒： Trojan.PSW.Win32.OnlineGames.xwf
病毒： Trojan.PSW.Win32.Wowar.vr
病毒： Trojan.PSW.Win32.ZeroOnline.ao
病毒： Trojan.PSW.Win32.OnlineGames.ygr
病毒： Trojan.PSW.Win32.XYOnline.hd
病毒： Trojan.PSW.Win32.OnlineGames.ydy
病毒： Trojan.PSW.Win32.OnlineGames.ylq
病毒： Trojan.PSW.Win32.OnlineGames.yji
病毒： Trojan.PSW.Win32.FYOnline.cu
病毒： Trojan.PSW.Win32.YBOnline.ak
病毒： Trojan.PSW.Win32.OnlineGames.ylk
病毒： Trojan.PSW.Win32.ZeroOnline.aq
病毒： Trojan.PSW.Win32.NSword.a
病毒： Dropper.Win32.Agent.och
病毒： Trojan.PSW.Win32.OnlineGames.yim
病毒： Trojan.PSW.Win32.OnlineGames.yin
病毒： Trojan.PSW.Win32.OnlineGames.yet
病毒： Trojan.PSW.Win32.OnlineGames.ybl
病毒： Trojan.PSW.Win32.OnlineGames.ydh
病毒： Trojan.PSW.Win32.WoWar.ua

MAC地址：00:D0:F8:38:4B:7A

用户来源：局域网

软件版本：19.40.02

显示全部楼层 · 发表于 2007-9-11 10:16:08

微点：
木马名称:Trojan-PSW.Win32.OnLineGames.jyr

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\11.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dqf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\12.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.fci

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\13.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kkp

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\14.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kga

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\15.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kbq

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\16.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.khk

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\17.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Kolmat.k

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\19.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.cen

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Agent.dew

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\20.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kjg

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\3.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.byb

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\4.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.WOW.azf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\5.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dtf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\6.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jpd

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\7.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.klk

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\8.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.ewf

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\0.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.StartPage.ada

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\1.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jzv

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\10.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kgy

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\12.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Small.khp

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\13.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jap

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\14.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwb

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\16.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwd

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\17.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.khd

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\18.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Delf.bog

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\19.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.WOW.ayj

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwc

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\21.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.exz

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\3.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Dropper.Win32.Killav.h

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\7.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jzh

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\8.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Delf.ezi

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\9.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.jvy

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\11.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.Genetik.cev

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\13.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kay

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\15.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Dropper.Win32.Agent.dxx

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\16.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.khm

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\18.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Small.khz

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\19.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwv

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\20.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dwh

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\5.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Downloader.Win32.Agent.jrk

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\6.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.WOW.avh

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\9.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\9.EXE
1) C:\DFD4153265.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\9.EXE
1) C:\DFD4153265.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\10.EXE
1) C:\DFD4164875.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\1\10.EXE
1) C:\DFD4164875.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\4.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\UPXDND.EXE
2) C:\WINDOWS.0\SYSTEM32\UPXDND.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\5.EXE
1) C:\DFD4185656.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\5.EXE
1) C:\DFD4185656.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\6.EXE
1) C:\DFD4196078.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\6.EXE
1) C:\DFD4196078.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\11.EXE
1) C:\DFD4207625.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\11.EXE
1) C:\DFD4207625.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\15.EXE
1) C:\DFD4218046.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\15.EXE
1) C:\DFD4218046.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\20.EXE
1) C:\DFD4227546.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\20.EXE
1) C:\DFD4227546.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\WL.EXE
1) C:\DFD4237593.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\2\WL.EXE
1) C:\DFD4237593.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\1.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\LYLOADER.EXE
2) C:\WINDOWS.0\SYSTEM32\LYLOADER.EXE
3) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\LYMANGR.DLL
4) C:\WINDOWS.0\SYSTEM32\LYMANGR.DLL
5) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\MSDEG32.DLL
6) C:\WINDOWS.0\SYSTEM32\MSDEG32.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\2.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\DISKMAN32.EXE
2) C:\WINDOWS.0\SYSTEM32\DISKMAN32.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\3.EXE
1) C:\DFD4295531.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\3.EXE
1) C:\DFD4295531.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\4.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\UPXDND.EXE
2) C:\WINDOWS.0\SYSTEM32\UPXDND.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\7.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\CMDBCS.EXE
2) C:\WINDOWS.0\SYSTEM32\CMDBCS.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\10.EXE
1) C:\DFD4337859.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\10.EXE
1) C:\DFD4337859.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\12.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\IFC222.DLL
2) C:\WINDOWS.0\WINLOGOR.EXE
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\14.EXE
1) C:\DFD4362625.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\14.EXE
1) C:\DFD4362625.BAT
是否删除可疑程序?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\ABC\3\17.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\DBGHLP32.EXE
2) C:\WINDOWS.0\SYSTEM32\DBGHLP32.DLL
是否删除木马程序及其衍生物?

1和8是死的

[病毒样本] 62个毒网产物