在发些大蜘蛛报的 102个样本大蜘蛛全杀, 凝逸反毒杀了56 个

显示全部楼层 · 发表于 2007-9-11 17:37:46

在发些大蜘蛛报的 102个样本大蜘蛛全杀, 凝逸反毒杀了56 个
凝逸反毒-样本 http://groups.google.com/group/nyfd
样本在这下

---------升级后,全杀了

-
[凝逸反毒] (http://hi.baidu.com/503165656)
[凝逸.扫描病毒引擎-日志] 2007.9.12 8:24:13
文件:C:\infected\setup.exe | 感染:BACKDOOR.Trojan [188>20070910_ny0015.axx]3(1.2)
操作:删除文件
文件:C:\infected\auto.exe | 感染:Trojan.Popwin.647 [137>20070911_ny0016.axx]3(2.2)
操作:删除文件
文件:C:\infected\pegefile.pif | 感染:Win32.HLLW.Autoruner.249 [445>20070830_ny0012.axx]3(2.4)
操作:删除文件
文件:C:\infected\11265639995.exe | 感染:DLOADER.Trojan [291>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\39691.exe | 感染:BackDoor.Pigeon.775 [162>20070911_ny0016.axx]3(2.2)
操作:删除文件
文件:C:\infected\9894e9bc.exe | 感染:virus [553>20070830_ny0012.axx]3(3.5)
操作:删除文件
文件:C:\infected\avpcon.exe | 感染:Trojan.StartPage.20472 [139>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\avpsvr.exe | 感染:Trojan.StartPage.20472 [142>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\dodolook451.exe | 感染:virus [714>20070816_ny0006.axx]3(11.21)
操作:删除文件
文件:C:\infected\inin.exe | 感染:BACKDOOR.Trojan [93>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:C:\infected\io.pif | 感染:WIN.WORM.Virus [189>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\load1.exe | 感染:Win32.Virut.5 [102>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\momo.exe | 感染:BackDoor.WebDor [172>20070910_ny0015.axx]3(2.2)
操作:删除文件
文件:C:\infected\newtemp.dll | 感染:Trojan.PWS.Lineage.3021 [341>20070906_ny0013.axx]3(3.3)
操作:删除文件
文件:C:\infected\rising771.exe | 感染:Win32.HLLW.Gavir.66 [113>20070910_ny0015.axx]3(7.8)
操作:删除文件
文件:C:\infected\rising9.exe | 感染:virus [672>20070910_ny0015.axx]3(2.4)
操作:删除文件
文件:C:\infected\webpnt.exe | 感染:Trojan.DownLoader.32011 [180>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\webprint.exe | 感染:Trojan.DownLoader.32011 [180>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\wr-1-20.exe | 感染:Trojan.DownLoader.31840 [321>20070906_ny0013.axx]2(1.1)
操作:删除文件
文件:C:\infected\~tmp4006.exe | 感染:Win32.HLLW.Autoruner.473 [13>20070911_ny0016.axx]3(1.9)
操作:删除文件
文件:C:\infected\~tmp5250.exe | 感染:Win32.HLLW.Autoruner.473 [14>20070911_ny0016.axx]3(2.9)
操作:删除文件
文件:C:\infected\~tmp8027.exe | 感染:Win32.HLLW.Autoruner.473 [15>20070911_ny0016.axx]3(3.9)
操作:删除文件
文件:C:\infected\1.exe | 感染:BACKDOOR.Trojan [160>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\10.exe | 感染:BACKDOOR.Trojan [12>20070911_ny0016.axx]3(1.2)
操作:删除文件
文件:C:\infected\11.exe | 感染:BACKDOOR.Trojan [33>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\13.exe | 感染:Trojan.PWS.Gamania.3971 [235>20070910_ny0015.axx]3(4.8)
操作:删除文件
文件:C:\infected\3.exe | 感染:Trojan.PWS.Gamania.3878 [24>20070906_ny0014.axx]3(2.2)
操作:删除文件
文件:C:\infected\6.exe | 感染:Trojan.PWS.Gamania.3870 [41>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\609031.exe | 感染:BackDoor.Bulknet [148>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\8.exe | 感染:virus [706>20070906_ny0013.axx]3(3.5)
操作:删除文件
文件:C:\infected\cnnic.exe | 感染:virus [411>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\conime.exe | 感染:BACKDOOR.Trojan [246>20070906_ny0013.axx]2(1.1)
操作:删除文件
文件:C:\infected\d9dx.dll | 感染:Trojan.PWS.Gamania [52>20070910_ny0015.axx]3(2.2)
操作:删除文件
文件:C:\infected\kapjaaz.exe | 感染:Trojan.PWS.Gamania.3971 [315>20070910_ny0015.axx]3(2.2)
操作:删除文件
文件:C:\infected\kaqhcaz.exe | 感染:Trojan.MulDrop.8693 [112>20070911_ny0016.axx]3(10.10)
操作:删除文件
文件:C:\infected\kvdxbis.exe | 感染:Trojan.PWS.Gamania.3925 [96>20070911_ny0016.axx]3(14.14)
操作:删除文件
文件:C:\infected\lgdnmd.exe | 感染:Trojan.Packed.155 [101>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\lyloader.exe | 感染:MULDROP.Trojan [103>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\onlo0r.dll | 感染:Trojan.PWS.Gamania.3979 [23>20070911_ny0016.axx]3(2.2)
操作:删除文件
文件:C:\infected\onlo0r.obk | 感染:Trojan.PWS.Gamania.3979 [23>20070911_ny0016.axx]3(2.2)
操作:删除文件
文件:C:\infected\qq2007β3.exe | 感染:Trojan.PWS.Qqpass.1356 [74>20070910_ny0015.axx]3(2.8)
操作:删除文件
文件:C:\infected\re.exe | 感染:BACKDOOR.Trojan [246>20070906_ny0013.axx]2(1.1)
操作:删除文件
文件:C:\infected\rsjzasp.exe | 感染:Trojan.MulDrop.8696 [86>20070911_ny0016.axx]3(10.10)
操作:删除文件
文件:C:\infected\setup291.exe | 感染:virus [570>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:C:\infected\system.dat | 感染:DLOADER.Trojan [167>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\tempa.exe | 感染:BINARYRES [84>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\tempd.exe | 感染:BACKDOOR.Trojan [77>20070911_ny0016.axx]3(6.6)
操作:删除文件
文件:C:\infected\tempg.exe | 感染:Trojan.PWS.Qqpass.1356 [386>20070910_ny0015.axx]3(7.8)
操作:删除文件
文件:C:\infected\temph.exe | 感染:BACKDOOR.Trojan [68>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\tempi.exe | 感染:Trojan.PWS.Wsgame.1204 [69>20070911_ny0016.axx]3(2.2)
操作:删除文件
文件:C:\infected\tempj.exe | 感染:BACKDOOR.Trojan [70>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\templ.exe | 感染:Trojan.DownLoader.31983 [387>20070910_ny0015.axx]2(1.1)
操作:删除文件
文件:C:\infected\virus (51).exe | 感染:DDoS.Bonke [6>20070910_ny0015.axx]2(1.1)
操作:删除文件
文件:C:\infected\查看更新版本.exe | 感染:virus [405>20070910_ny0015.axx]3(170.177)
操作:删除文件
文件:C:\infected\22.vmp.exe | 感染:BackDoor.Pigeon.775 [179>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\intelx86.dll | 感染:Trojan.PWS.Gamania.3972 [118>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\241.exe | 感染:Trojan.MulDrop.8526 [159>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\_network.exe | 感染:BackDoor.Pigeon.775 [283>20070910_ny0015.axx]3(1.2)
操作:删除文件
文件:C:\infected\d03.exe | 感染:virus [681>20070910_ny0015.axx]3(34.34)
操作:删除文件
文件:C:\infected\g_server2007.dll | 感染:BackDoor.Pigeon.1559 [2170>20070726_dw0001.axx]3(1.1)
操作:删除文件
文件:C:\infected\idnreg.dll | 感染:virus [773>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:C:\infected\ifc222.dll | 感染:Trojan.PWS.Gamania.3977 [116>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\lucvjracazkyy.dll | 感染:Trojan.Click.4318 [103>20070910_ny0015.axx]3(2.3)
操作:删除文件
文件:C:\infected\nvdispdrv.exe | 感染:BINARYRES [156>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\rising838.exe | 感染:virus [672>20070910_ny0015.axx]3(2.4)
操作:删除文件
文件:C:\infected\winlogor.exe | 感染:virus [449>20070910_ny0015.axx]3(2.5)
操作:删除文件
文件:C:\infected\winupdate.exe | 感染:BACKDOOR.Trojan [93>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:C:\infected\&pid=pv0016.exe | 感染:Trojan.DownLoader.32023 [10>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\11898737845.exe | 感染:DLOADER.Trojan [291>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\_rejoice91.exe | 感染:BackDoor.Huai.518 [90>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\_rundl1.exe | 感染:BackDoor.Pigeon.775 [179>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\_ser.exe | 感染:Trojan.Popuper [144>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\avzxast.exe | 感染:Trojan.PWS.Gamania.3909 [319>20070910_ny0015.axx]3(5.5)
操作:删除文件
文件:C:\infected\d33927e.dll | 感染:Trojan.Popwin.644 [74>20070906_ny0014.axx]3(1.1)
操作:删除文件
文件:C:\infected\dhdh.exe | 感染:Trojan.PWS.Gamania.3925 [380>20070910_ny0015.axx]3(12.14)
操作:删除文件
文件:C:\infected\112.exe | 感染:BACKDOOR.Trojan [33>20070906_ny0014.axx]3(1.2)
操作:删除文件
文件:C:\infected\a41296e0.exe | 感染:BINARYRES [256>20070910_ny0015.axx]3(1.2)
操作:删除文件
文件:C:\infected\da0bb4da.dll | 感染:DLOADER.Trojan [436>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:C:\infected\host.exe | 感染:virus [319>20070911_ny0016.axx]3(3.3)
操作:删除文件
文件:C:\infected\husjdd8s.exe | 感染:virus [682>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:C:\infected\k112680178410.exe | 感染:virus [682>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:C:\infected\rejoice91.exe | 感染:BackDoor.Huai.518 [90>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\sh10st2.exe | 感染:WIN.WORM.Virus [78>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\syswin64.jmp | 感染:Trojan.PWS.Qqpass.1354 [168>20070911_ny0016.axx]3(6.6)
操作:删除文件
文件:C:\infected\urdvxc.exe | 感染:Trojan.MulDrop.6435 [395>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\xhmh.exe | 感染:Trojan.PWS.Wsgame.1200 [57>20070911_ny0016.axx]3(13.13)
操作:删除文件
文件:C:\infected\624.exe | 感染:Trojan.DownLoader.21028 [149>20070911_ny0016.axx]2(1.1)
操作:删除文件
文件:C:\infected\b2a41.exe | 感染:Trojan.Popuper [144>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\cdnprh.dll | 感染:DLOADER.Trojan [119>20070911_ny0016.axx]2(1.1)
操作:删除文件
文件:C:\infected\k11268017843.exe | 感染:virus [684>20070906_ny0013.axx]3(4.6)
操作:删除文件
文件:C:\infected\kksi8s3.exe | 感染:virus [318>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\my_70145.exe | 感染:Trojan.DownLoader.32571 [306>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:C:\infected\osiesd3.dll | 感染:virus [383>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\rpcs.exe | 感染:BackDoor.Rpcs [207>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\sh10st5.exe | 感染:Trojan.DownLoader.21028 [79>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\svchost.dll | 感染:Trojan.DownLoader.31846 [166>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\yra9wi2lol.dll | 感染:DLOADER.Trojan [59>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:C:\infected\zqivqbgerasee.dll | 感染:Trojan.Click.4318 [103>20070910_ny0015.axx]3(2.3)
操作:删除文件
文件:C:\infected\boboturbo.exe | 感染:BINARYRES [118>20070906_ny0013.axx]3(1.2)
操作:删除文件
文件:C:\infected\kvdxbma.dll | 感染:Trojan.PWS.Gamania.3924 [97>20070911_ny0016.axx]3(5.5)
操作:删除文件
文件:C:\infected\kvmxbma.dll | 感染:Trojan.PWS.Wsgame.1200 [98>20070911_ny0016.axx]3(4.4)
操作:删除文件
文件:C:\infected\newtemp.bak | 感染:Win32.HLLW.Autoruner.249 [445>20070830_ny0012.axx]3(2.4)
操作:删除文件
扫描完成|病毒:102 文件:102|耗时:31124
----------

[ 本帖最后由 qqq000@qq.com 于 2007-9-11 19:27 编辑 ]

显示全部楼层 · 发表于 2007-9-11 18:16:32

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\setup.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\pegefile.pif]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\39691.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\39691.exe]
                  …………引擎[2]发现病毒:Win32.Nop ?
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\9894e9bc.exe]
                  …………引擎[2]发现病毒:Win32.Nop ?Ju
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\inin.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\rising9.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\~tmp4006.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\~tmp5250.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\~tmp8027.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\1.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\10.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\11.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\13.exe]
                  …………引擎[3]发现Suspicious file
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\13.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\13.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\3.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\3.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\8.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\8.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\conime.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\kapjaaz.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\kapjaaz.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\kaqhcaz.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\kaqhcaz.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\kvdxbis.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\kvdxbis.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\lyloader.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\onlo0r.dll]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\onlo0r.obk]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\qq2007β3.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\re.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\rsjzasp.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\rsjzasp.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\setup291.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\tempd.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\tempd.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\tempg.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\temph.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\tempi.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\tempj.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\templ.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\virus (51).exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\22.vmp.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\22.vmp.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\_network.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\_network.exe]
                  …………引擎[2]发现病毒:Win32.Nop ?
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\idnreg.dll]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\ifc222.dll]
                  …………引擎[2]发现病毒:Win32.NkHack.超级马丽
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\rising838.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\winlogor.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\winupdate.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\&pid=pv0016.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\_rundl1.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\_rundl1.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\_ser.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\avzxast.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\avzxast.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\d33927e.dll]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\dhdh.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\dhdh.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\112.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\da0bb4da.dll]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\sh10st2.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\syswin64.jmp]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\xhmh.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\xhmh.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\b2a41.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\rpcs.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\rpcs.exe]
                  …………引擎[2]发现病毒:Win32.Virus.Gen32
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\svchost.dll]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\infected.!!!\newtemp.bak]
                  …………特征码引擎[1]发现病毒
文件数:102 病毒数:72  比重:0.7058823529412
OK  扫描完毕！

[ 本帖最后由 FBAV 于 2007-9-11 18:21 编辑 ]

显示全部楼层 · 发表于 2007-9-11 18:58:31

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Paranoia Database - 4214
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder (2)

C:\Documents and Settings\uhthn\Desktop\New Folder (2)\setup.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\auto.exe - Infected with PDB-009 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\pegefile.pif - Infected with Win32.PDB-cc1 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\11265639995.exe - Suspicious of Win32.Trojan-PSW.Game.16
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\39691.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\9894e9bc.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\avpcon.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\avpsvr.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\dodolook451.exe - Infected with PDB-aae Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\inin.exe - Infected with Win32.PDB-eee Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\io.pif - Suspicious of Win32.Trojan-PSW.Game.16
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\load1.exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\momo.exe - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\newtemp.dll - Infected with Win32.PDB-99a Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\rising771.exe - Infected with Win32.PDB-661 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\rising9.exe - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\webpnt.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\webprint.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\wr-1-20.exe - Infected with PDB-ee4 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\~tmp4006.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\~tmp5250.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\~tmp8027.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\1.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\10.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\11.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\13.exe - Infected with PDB-117 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\3.exe - Infected with PDB-ff3 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\6.exe - Infected with PDB-bb6 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\609031.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\8.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\cnnic.exe - Suspicious of Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\conime.exe - Infected with PDB-aad Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\d9dx.dll - Infected with PDB-666 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\kapjaaz.exe - Infected with PDB-cc2 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\kaqhcaz.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\kvdxbis.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\lgdnmd.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\lyloader.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\onlo0r.dll - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\onlo0r.obk - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\qq2007β3.exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\re.exe - Infected with PDB-aad Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\rsjzasp.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\setup291.exe - Infected with PDB-443 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\system.dat - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\tempa.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\tempd.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\tempg.exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\temph.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\tempi.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\tempj.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\templ.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\virus (51).exe - Infected with PDB-337 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\查看更新版本.exe - Suspicious of Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\22.vmp.exe - Suspicious of Win32.Trojan-PSW.Game.6
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\intelx86.dll - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\241.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\_network.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\d03.exe - Infected with PDB-444 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\g_server2007.dll - Suspicious of Win32.Backdoor.Hupigon.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\idnreg.dll - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\ifc222.dll - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\lucvjracazkyy.dll - Infected with Win32.PDB-998 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\nvdispdrv.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\rising838.exe - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\winlogor.exe - Infected with PDB-229 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\winupdate.exe - Infected with Win32.PDB-eee Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\&pid=pv0016.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\11898737845.exe - Suspicious of Win32.Trojan-PSW.Game.16
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\_rejoice91.exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\_rundl1.exe - Suspicious of Win32.Trojan-PSW.Game.6
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\_ser.exe - Suspicious of Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\avzxast.exe - Infected with PDB-66a Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\d33927e.dll - Infected with PDB-009 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\dhdh.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\112.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\a41296e0.exe - Suspicious of Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\da0bb4da.dll - Infected with PDB-ee8 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\host.exe - Suspicious of Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\husjdd8s.exe - Suspicious of Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\k112680178410.exe - Suspicious of Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\rejoice91.exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\sh10st2.exe - Suspicious of MalwareSpy.Win32.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\syswin64.jmp - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\urdvxc.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\xhmh.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\624.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\b2a41.exe - Suspicious of Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\cdnprh.dll - OK
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\k11268017843.exe - Suspicious of Win32.Trojan-PSW.Game.16
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\kksi8s3.exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\my_70145.exe - Suspicious of Trojan-Downloader.Small.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\osiesd3.dll - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\rpcs.exe - Infected with Win32.PDB-cc5 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\sh10st5.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\svchost.dll - Infected with PDB-dd3 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\yra9wi2lol.dll - Suspicious of Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\zqivqbgerasee.dll - Infected with Win32.PDB-998 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\boboturbo.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\kvdxbma.dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\kvmxbma.dll - Suspicious of Win32.Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\newtemp.bak - Infected with Win32.PDB-cc1 Malware program - Deleted

102 Files scanned
27 Infected files found
72 Suspicious files found
0 Files cured
27 Files deleted

显示全部楼层 · 发表于 2007-9-11 20:01:01

卡巴 7.0.0.125 高启发
82个（居然有16个启发。。。）
已隔离: 病毒 Heur.Invader (变种)       文件: F:\病毒样本\infected.!!!\tempa.exe//PE_Patch.UPX
已隔离: 病毒 Heur.Invader (变种)       文件: F:\病毒样本\infected.!!!\lyloader.exe//PE_Patch//UPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\~tmp8027.exe//UPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\~tmp5250.exe//UPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\~tmp4006.exe//UPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\_rejoice91.exe//PE_Patch.UPX
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\11898737845.exe//PE_Patch.PECompact//PecBundle//PECompact
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\k112680178410.exe//ASPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\rejoice91.exe//PE_Patch.UPX
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\a41296e0.exe//ASPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\11265639995.exe//PE_Patch.PECompact//PecBundle//PECompact
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\husjdd8s.exe//ASPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\10.exe//PE_Patch//UPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\temph.exe//PE_Patch//UPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\setup.exe//UPack//ASPack
已隔离: 病毒 Heur.Trojan.Generic (变种)       文件: F:\病毒样本\infected.!!!\tempj.exe//PE_Patch//UPack
已删除: 病毒 Net-Worm.Win32.Allaple.b       文件: F:\病毒样本\infected.!!!\urdvxc.exe
已删除: 病毒 Packed.Win32.Klone.af       文件: F:\病毒样本\infected.!!!\22.vmp.exe
已删除: 病毒 Packed.Win32.Klone.af       文件: F:\病毒样本\infected.!!!\_rundl1.exe
已删除: 病毒 Virus.Win32.AutoRun.kn       文件: F:\病毒样本\infected.!!!\zqivqbgerasee.dll
已删除: 病毒 Virus.Win32.AutoRun.kn       文件: F:\病毒样本\infected.!!!\lucvjracazkyy.dll
已删除: 病毒 Virus.Win32.AutoRun.ku       文件: F:\病毒样本\infected.!!!\winupdate.exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 病毒 Virus.Win32.AutoRun.ku       文件: F:\病毒样本\infected.!!!\inin.exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 病毒 Virus.Win32.AutoRun.lp       文件: F:\病毒样本\infected.!!!\io.pif//PE_Patch.PECompact//PecBundle//PECompact//PE_Patch.MaskPE
已删除: 病毒 Virus.Win32.Hala.a       文件: F:\病毒样本\infected.!!!\d9dx.dll
已删除: 病毒 Worm.Win32.QQPass.a       文件: F:\病毒样本\infected.!!!\newtemp.bak//PE_Patch.UPX//UPX
已删除: 病毒 Worm.Win32.QQPass.a       文件: F:\病毒样本\infected.!!!\pegefile.pif//PE_Patch.UPX//UPX
已删除: 病毒 Worm.Win32.QQPass.c       文件: F:\病毒样本\infected.!!!\newtemp.dll//PE_Patch.UPX//UPX
已删除: 病毒 Worm.Win32.QQPass.r       文件: F:\病毒样本\infected.!!!\qq2007β3.exe//UPX
已删除: 病毒 Worm.Win32.QQPass.r       文件: F:\病毒样本\infected.!!!\tempg.exe//UPX
已删除: 病毒 Worm.Win32.Viking.mc       文件: F:\病毒样本\infected.!!!\rising771.exe//PE_Patch
已删除: 广告程序 not-a-virus:AdWare.Win32.BHO.av       文件: F:\病毒样本\infected.!!!\查看更新版本.exe//stream//data0001
已删除: 广告程序 not-a-virus:AdWare.Win32.BHO.ef       文件: F:\病毒样本\infected.!!!\d03.exe//data0003//stream//data0001
已删除: 广告程序 not-a-virus:AdWare.Win32.Cinmus.j       文件: F:\病毒样本\infected.!!!\dodolook451.exe//stream//data0002//data0003
已删除: 广告程序 not-a-virus:AdWare.Win32.Cinmus.j       文件: F:\病毒样本\infected.!!!\dodolook451.exe//stream//data0002//data0004
已删除: 木马程序 Backdoor.Win32.Agent.axa       文件: F:\病毒样本\infected.!!!\9894e9bc.exe
已删除: 木马程序 Backdoor.Win32.Agent.bex       文件: F:\病毒样本\infected.!!!\da0bb4da.dll
已删除: 木马程序 Backdoor.Win32.Agent.bmt       文件: F:\病毒样本\infected.!!!\svchost.dll
已删除: 木马程序 Backdoor.Win32.Agent.bqa       文件: F:\病毒样本\infected.!!!\auto.exe//ASPack
已删除: 木马程序 Backdoor.Win32.Agent.sp       文件: F:\病毒样本\infected.!!!\624.exe//UPX
已删除: 木马程序 Backdoor.Win32.Hupigon.emb       文件: F:\病毒样本\infected.!!!\g_server2007.dll
已删除: 木马程序 Backdoor.Win32.Small.te       文件: F:\病毒样本\infected.!!!\virus (51).exe
已删除: 木马程序 Rootkit.Win32.Agent.ey       文件: F:\病毒样本\infected.!!!\609031.exe
已删除: 木马程序 Trojan-Downloader.Win32.Agent.csr       文件: F:\病毒样本\infected.!!!\6.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Agent.ctp       文件: F:\病毒样本\infected.!!!\kksi8s3.exe
已删除: 木马程序 Trojan-Downloader.Win32.Agent.ddq       文件: F:\病毒样本\infected.!!!\system.dat//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Agent.ddr       文件: F:\病毒样本\infected.!!!\yra9wi2lol.dll
已删除: 木马程序 Trojan-Downloader.Win32.Delf.cae       文件: F:\病毒样本\infected.!!!\k11268017843.exe//PE_Patch.PECompact//PecBundle//PECompact
已删除: 木马程序 Trojan-Downloader.Win32.Flux.d       文件: F:\病毒样本\infected.!!!\d33927e.dll
已删除: 木马程序 Trojan-Downloader.Win32.Injecter.f       文件: F:\病毒样本\infected.!!!\momo.exe
已删除: 木马程序 Trojan-Downloader.Win32.QQHelper.adk       文件: F:\病毒样本\infected.!!!\d03.exe//data0002
已删除: 木马程序 Trojan-Downloader.Win32.Small.eyz       文件: F:\病毒样本\infected.!!!\conime.exe//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Small.eyz       文件: F:\病毒样本\infected.!!!\re.exe//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Small.fky       文件: F:\病毒样本\infected.!!!\wr-1-20.exe
已删除: 木马程序 Trojan-Downloader.Win32.Small.fot       文件: F:\病毒样本\infected.!!!\load1.exe
已删除: 木马程序 Trojan-Downloader.Win32.Small.fpf       文件: F:\病毒样本\infected.!!!\sh10st2.exe
已删除: 木马程序 Trojan-Downloader.Win32.Tiny.hu       文件: F:\病毒样本\infected.!!!\setup291.exe
已删除: 木马程序 Trojan-PSW.Win32.Delf.zm       文件: F:\病毒样本\infected.!!!\kvmxbma.dll
已删除: 木马程序 Trojan-PSW.Win32.Delf.zm       文件: F:\病毒样本\infected.!!!\xhmh.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.Delf.zn       文件: F:\病毒样本\infected.!!!\avzxast.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.blz       文件: F:\病毒样本\infected.!!!\3.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bmj       文件: F:\病毒样本\infected.!!!\rsjzasp.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bou       文件: F:\病毒样本\infected.!!!\kaqhcaz.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.bov       文件: F:\病毒样本\infected.!!!\syswin64.jmp//UPX
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.box       文件: F:\病毒样本\infected.!!!\8.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cer       文件: F:\病毒样本\infected.!!!\nvdispdrv.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cfl       文件: F:\病毒样本\infected.!!!\winlogor.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cfm       文件: F:\病毒样本\infected.!!!\kapjaaz.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cgd       文件: F:\病毒样本\infected.!!!\13.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cjq       文件: F:\病毒样本\infected.!!!\tempd.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cks       文件: F:\病毒样本\infected.!!!\tempi.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.cks       文件: F:\病毒样本\infected.!!!\112.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.clj       文件: F:\病毒样本\infected.!!!\1.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.clj       文件: F:\病毒样本\infected.!!!\11.exe
已删除: 木马程序 Trojan-PSW.Win32.QQRob.oi       文件: F:\病毒样本\infected.!!!\rpcs.exe
已删除: 木马程序 Trojan-Spy.Win32.Delf.agk       文件: F:\病毒样本\infected.!!!\dhdh.exe//UPack
已删除: 木马程序 Trojan-Spy.Win32.Delf.agk       文件: F:\病毒样本\infected.!!!\kvdxbis.exe//UPack
已删除: 木马程序 Trojan-Spy.Win32.Delf.agk       文件: F:\病毒样本\infected.!!!\kvdxbma.dll
已删除: 木马程序 Trojan-Spy.Win32.Delf.agu       文件: F:\病毒样本\infected.!!!\rising838.exe//UPX
已删除: 木马程序 Trojan-Spy.Win32.Delf.agu       文件: F:\病毒样本\infected.!!!\rising9.exe//UPX
已删除: 木马程序 Trojan.Win32.Agent.bgj       文件: F:\病毒样本\infected.!!!\avpcon.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan.Win32.Agent.bgl       文件: F:\病毒样本\infected.!!!\avpsvr.exe//PE_Patch.UPX//UPX

[ 本帖最后由浪滔天于 2007-9-11 20:02 编辑 ]

显示全部楼层 · 发表于 2007-9-11 20:46:20

凝逸反毒升级了,可以全杀了
病毒库病毒总数:23256
20070911_ny0016.axx | 病毒数:386 病毒提取=凝逸.绘梦银月

显示全部楼层 · 发表于 2007-9-11 21:42:05

..只有64个..看来要好好研究启发引擎了...

UGuard Log (Digital Fox - gankeyu@126.com)
UGuarduu.exe = 3.7.0
HC0.rlb = 2.8.0
HC2.rlb = 2.3.8
FN0.rlb = 2.3.0
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\&pid=pv0016.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 1] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\1.exe 检测到 Generic.Virus
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\10.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\11.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\112.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\11265639995.exe 检测到 Worm.Agent.t
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\11898737845.exe 检测到 Worm.Agent.t
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\13.exe 检测到 Generic.Upack -> Dwing
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\22.vmp.exe 检测到 Generic.NSAnti
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\22.vmp.exe 检测到 Generic.VMProtect
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\241.exe 检测到 Trojan.Hrqty
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\3.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 1] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\6.exe 检测到 Generic.Virus
[扫描] [Level 1] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\8.exe 检测到 Generic.Virus
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\9894e9bc.exe 检测到 Trojan.OnLineGames.aya
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\a41296e0.exe 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\auto.exe 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\avzxast.exe 检测到 Generic.Upack -> Dwing
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\boboturbo.exe 检测到 Generic.Binder
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\d33927e.dll 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\da0bb4da.dll 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\dhdh.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 1] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\host.exe 检测到 Generic.Virus
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\husjdd8s.exe 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\idnreg.dll 检测到 Adware.3721.b
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\ifc222.dll 检测到 Risk.HookTool
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\k112680178410.exe 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\k11268017843.exe 检测到 Trojan.Agent.azn
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\kapjaaz.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\kaqhcaz.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\kksi8s3.exe 检测到 Virus.SkinDetect.QQ
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\kvdxbis.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\kvdxbma.dll 检测到 Trojan.Delf.uw
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\kvmxbma.dll 检测到 Trojan.QQPass.lr
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\lucvjracazkyy.dll 检测到 Trojan.Agent.azm
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\lyloader.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\momo.exe 检测到 Win32.AutorunU
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\newtemp.dll 检测到 Trojan.QQPass.c
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\nvdispdrv.exe 检测到 Trojan.Generic
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\onlo0r.dll 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\onlo0r.obk 检测到 Generic.Upack -> Dwing
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\osiesd3.dll 检测到 Generic.Binder
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\rising771.exe 检测到 Generic.Binder
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\rpcs.exe 检测到 Generic.VMProtect
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\rsjzasp.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\setup.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\sh10st2.exe 检测到 Backdoor.Generic
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\svchost.dll 检测到 Win32.Autorun.gp
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\syswin64.jmp 检测到 Trojan.OnLineGames.bov
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\tempa.exe 检测到 Trojan.Generic
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\tempd.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\temph.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\tempi.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\tempj.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\templ.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\winlogor.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\wr-1-20.exe 检测到 Generic.ULPM.b
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\xhmh.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\zqivqbgerasee.dll 检测到 Trojan.Agent.azm
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\_rundl1.exe 检测到 Generic.NSAnti
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\_rundl1.exe 检测到 Generic.VMProtect
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\~tmp4006.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\~tmp5250.exe 检测到 Generic.Upack -> Dwing
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\新建文件夹 (5)\infected.!!!\~tmp8027.exe 检测到 Generic.Upack -> Dwing
任务扫描完成。共耗费的时间：0-00-00 00:00:05:0141，共扫描的文件数量：102，共扫描到的威胁数量：64，威胁率：0.62745098

显示全部楼层 · 发表于 2007-9-11 22:48:22

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\infected.!!!.rar'
C:\Documents and Settings\Administrator\My Documents\
  infected.!!!.rar
[0] Archive type: RAR
--> setup.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
      [WARNING] Infected files in archives cannot be repaired!
--> auto.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> pegefile.pif
      [DETECTION] Contains detection pattern of the worm WORM/QQPass.A
      [WARNING] Infected files in archives cannot be repaired!
--> 11265639995.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 39691.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> 9894e9bc.exe
      [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> avpcon.exe
      [DETECTION] Is the Trojan horse TR/Agent.bgj.1
      [WARNING] Infected files in archives cannot be repaired!
--> avpsvr.exe
      [DETECTION] Is the Trojan horse TR/Agent.bgl.1
      [WARNING] Infected files in archives cannot be repaired!
--> dodolook451.exe
      [DETECTION] Contains detection pattern of the dropper DR/Cinmus.PA
      [WARNING] Infected files in archives cannot be repaired!
--> inin.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> io.pif
      [DETECTION] Is the Trojan horse TR/Agent.20480.245
      [WARNING] Infected files in archives cannot be repaired!
--> load1.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.fot.2
      [WARNING] Infected files in archives cannot be repaired!
--> momo.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Injecter.F
      [WARNING] Infected files in archives cannot be repaired!
--> newtemp.dll
      [DETECTION] Is the Trojan horse TR/PSW.Delf.WH.13
      [WARNING] Infected files in archives cannot be repaired!
--> rising771.exe
      [DETECTION] Contains detection pattern of the worm WORM/Viking.DLL.2
      [WARNING] Infected files in archives cannot be repaired!
--> rising9.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.abf
      [WARNING] Infected files in archives cannot be repaired!
--> webpnt.exe
--> webprint.exe
--> wr-1-20.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> ~tmp4006.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [WARNING] Infected files in archives cannot be repaired!
--> ~tmp5250.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [WARNING] Infected files in archives cannot be repaired!
--> ~tmp8027.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [WARNING] Infected files in archives cannot be repaired!
--> 1.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [WARNING] Infected files in archives cannot be repaired!
--> 10.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Explor.4259
      [WARNING] Infected files in archives cannot be repaired!
--> 11.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Exp.S.3.B
      [WARNING] Infected files in archives cannot be repaired!
--> 13.exe
      [DETECTION] Is the Trojan horse TR/Agent.12665
      [WARNING] Infected files in archives cannot be repaired!
--> 3.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Explor.4122
      [WARNING] Infected files in archives cannot be repaired!
--> 6.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.csr.2
      [WARNING] Infected files in archives cannot be repaired!
--> 609031.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agent.40960
      [WARNING] Infected files in archives cannot be repaired!
--> 8.exe
      [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
      [WARNING] Infected files in archives cannot be repaired!
--> cnnic.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Cdnup.G
      [WARNING] Infected files in archives cannot be repaired!
--> conime.exe
      [DETECTION] Is the Trojan horse TR/Conime.8192
      [WARNING] Infected files in archives cannot be repaired!
--> d9dx.dll
      [DETECTION] Contains code of the Windows virus W32/Rectix.A
      [WARNING] Infected files in archives cannot be repaired!
--> kapjaaz.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.cfm
      [WARNING] Infected files in archives cannot be repaired!
--> kaqhcaz.exe
      [DETECTION] Is the Trojan horse TR/Agent.11800
      [WARNING] Infected files in archives cannot be repaired!
--> kvdxbis.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.agk
      [WARNING] Infected files in archives cannot be repaired!
--> lgdnmd.exe
--> lyloader.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> onlo0r.dll
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.11887 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> onlo0r.obk
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.11887 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> qq2007¦Â3.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQPass.UP.41
      [WARNING] Infected files in archives cannot be repaired!
--> re.exe
      [DETECTION] Is the Trojan horse TR/Conime.8192
      [WARNING] Infected files in archives cannot be repaired!
--> rsjzasp.exe
      [DETECTION] Is the Trojan horse TR/Agent.12580
      [WARNING] Infected files in archives cannot be repaired!
--> setup291.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Tiny.HU.3
      [WARNING] Infected files in archives cannot be repaired!
--> system.dat
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.ddq.1
      [WARNING] Infected files in archives cannot be repaired!
--> tempa.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> tempd.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.cdl
      [WARNING] Infected files in archives cannot be repaired!
--> tempg.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQPass.UP.41
      [WARNING] Infected files in archives cannot be repaired!
--> temph.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLine.bgh.2
      [WARNING] Infected files in archives cannot be repaired!
--> tempi.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Explor.4208
      [WARNING] Infected files in archives cannot be repaired!
--> tempj.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLine.bgh.2
      [WARNING] Infected files in archives cannot be repaired!
--> templ.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
      [WARNING] Infected files in archives cannot be repaired!
--> virus (51).exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> ²é¿´¸üÐÂ°æ±¾.exe
--> 22.vmp.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> intelx86.dll
      [DETECTION] Is the Trojan horse TR/PSW.28672.8
      [WARNING] Infected files in archives cannot be repaired!
--> 241.exe
--> _network.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> d03.exe
      [DETECTION] Contains detection pattern of the dropper DR/Dldr.QQHelper.adk
      [WARNING] Infected files in archives cannot be repaired!
--> g_server2007.dll
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/GrayBird.EJ.17 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> idnreg.dll
--> ifc222.dll
      [DETECTION] Is the Trojan horse TR/PSW.Steal.38400
      [WARNING] Infected files in archives cannot be repaired!
--> lucvjracazkyy.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Ieser.I
      [WARNING] Infected files in archives cannot be repaired!
--> nvdispdrv.exe
      [DETECTION] Is the Trojan horse TR/Agent.18944.107
      [WARNING] Infected files in archives cannot be repaired!
--> rising838.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.abf
      [WARNING] Infected files in archives cannot be repaired!
--> winlogor.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.cfl
      [WARNING] Infected files in archives cannot be repaired!
--> winupdate.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> &pid=pv0016.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.75456
      [WARNING] Infected files in archives cannot be repaired!
--> 11898737845.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> _rejoice91.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> _rundl1.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> _ser.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BHO.EA
      [WARNING] Infected files in archives cannot be repaired!
--> avzxast.exe
      [DETECTION] Is the Trojan horse TR/Agent.13023
      [WARNING] Infected files in archives cannot be repaired!
--> d33927e.dll
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> dhdh.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.agk
      [WARNING] Infected files in archives cannot be repaired!
--> 112.exe
      [DETECTION] Is the Trojan horse TR/Hijack.Explor.4208
      [WARNING] Infected files in archives cannot be repaired!
--> a41296e0.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> da0bb4da.dll
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> host.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Cdnup.G
      [WARNING] Infected files in archives cannot be repaired!
--> husjdd8s.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> k112680178410.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> rejoice91.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> sh10st2.exe
      [DETECTION] Is the Trojan horse TR/Crypt.NSPI.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> syswin64.jmp
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.bov
      [WARNING] Infected files in archives cannot be repaired!
--> urdvxc.exe
      [DETECTION] Contains detection pattern of the Windows virus W32/Rectix.A
      [WARNING] Infected files in archives cannot be repaired!
--> xhmh.exe
      [DETECTION] Is the Trojan horse TR/Agent.12716
      [WARNING] Infected files in archives cannot be repaired!
--> 624.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.SP.78 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> b2a41.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/BHO.EA
      [WARNING] Infected files in archives cannot be repaired!
--> cdnprh.dll
      [DETECTION] Is the Trojan horse TR/Agent.4096.144
      [WARNING] Infected files in archives cannot be repaired!
--> k11268017843.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> kksi8s3.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.ctp.1
      [WARNING] Infected files in archives cannot be repaired!
--> my_70145.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [WARNING] Infected files in archives cannot be repaired!
--> osiesd3.dll
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Exaal.45056 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> rpcs.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> sh10st5.exe
      [DETECTION] Is the Trojan horse TR/Crypt.Morphine.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> svchost.dll
      [DETECTION] Is the Trojan horse TR/Agent.32768.55
      [WARNING] Infected files in archives cannot be repaired!
--> yra9wi2lol.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> zqivqbgerasee.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Ieser.I
      [WARNING] Infected files in archives cannot be repaired!
--> boboturbo.exe
--> kvdxbma.dll
      [DETECTION] Is the Trojan horse TR/Spy.Delf.agk.1
      [WARNING] Infected files in archives cannot be repaired!
--> kvmxbma.dll
      [DETECTION] Is the Trojan horse TR/Agent.19530
      [WARNING] Infected files in archives cannot be repaired!
--> newtemp.bak
      [DETECTION] Contains detection pattern of the worm WORM/QQPass.A
      [WARNING] Infected files in archives cannot be repaired!
      [WARNING] The file was ignored!

End of the scan: 2007年9月11日  07:48
Used time: 00:05 min

The scan has been done completely.

   0 Scanning directories
103 Files were scanned
   88 viruses and/or unwanted programs were found
   7 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   15 Files not concerned
   1 Archives were scanned
   96 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-9-11 23:59:25

实机微点运行到无法关机，汗死，这个infected.!!!大部分是活的。不过微点还没挂。

显示全部楼层 · 发表于 2007-9-12 10:58:34

弄这么些病毒包干什么啊，就是为了试验杀毒软件的威力吗？这个什么凝逸为什么没全杀了？

显示全部楼层 · 发表于 2007-9-12 15:05:51

原帖由 fanrenta 于 2007-9-11 21:58 发表
弄这么些病毒包干什么啊，就是为了试验杀毒软件的威力吗？这个什么凝逸为什么没全杀了？

不是上报样本吗?
那时是才收到的样本,还没入凝逸反毒的样本库,自然不全杀

[病毒样本] 在发些大蜘蛛报的 102个样本大蜘蛛全杀, 凝逸反毒杀了56 个

浏览过的版块

[病毒样本] 在发些 大蜘蛛报的 102个样本大蜘蛛 全杀, 凝逸反毒杀了56 个

浏览过的版块

[病毒样本] 在发些大蜘蛛报的 102个样本大蜘蛛全杀, 凝逸反毒杀了56 个