40个

显示全部楼层 · 发表于 2007-10-12 17:51:45

25个

[ 本帖最后由坐在墙头于 2007-10-12 17:57 编辑 ]

显示全部楼层 · 发表于 2007-10-12 17:54:22

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\virus.rar'
C:\Documents and Settings\Administrator\桌面\virus.rar
  [0] Archive type: RAR
  --> ratbftl.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.akx
  --> kawdbaz.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> kaqhfaz.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.eoa
  --> kvdxcis.exe
   [DETECTION] Is the Trojan horse TR/FWDisable.20048
  --> kvmxeis.exe
   [DETECTION] Is the Trojan horse TR/FWDisable.20570.1
  --> avzxdst.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> rsmyesp.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.epn
  --> avwlcst.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.eqr
  --> rsztdsp.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.eqt.1
  --> syektyekqva.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> ratbfpi.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> kvdxcma.dll
   [DETECTION] Is the Trojan horse TR/FWDisable.20048
  --> kvmxema.dll
   [DETECTION] Is the Trojan horse TR/FWDisable.20570.1
  --> rsmyepm.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.epn.2
  --> avwgdmn.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.EEX
  --> avzxdmn.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> rsztdpm.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.eqt.1
  --> kaqhfzy.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.eoa.1
  --> System36.jup
   [DETECTION] Is the Trojan horse TR/Spy.Delf.akz
  --> avwlcmn.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> System6.ins
   [DETECTION] Is the Trojan horse TR/Spy.Delf.akz
  --> NysWin75.Jmp
   [DETECTION] Is the Trojan horse TR/PSW.QQpass.agq
  --> SysWin78.Jmp
   [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
  --> mstsc32.dll
   [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
  --> IGM.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 888
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> WinSys88.Sys
   [DETECTION] Contains suspicious code HEUR/Malware
  --> 608769WO.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> IGW.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> provie.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> AlxRes071010.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> scrsys071010.scr
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> winsys32_071010.dll
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> cqatl.dll
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/UPACK). Please verify the origin of the file
  --> msatl.dll
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/UPACK). Please verify the origin of the file
  --> addrzxhelp.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> sqmapi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> qdshm.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
   [WARNING] The file was ignored!

End of the scan: 星期五 2007年10月12日  17:54
Used time: 00:53 min

The scan has been done completely.

   0 Scanning directories
   41 Files were scanned
   30 viruses and/or unwanted programs were found
   8 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   11 Files not concerned
   1 Archives were scanned
   1 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-10-12 17:56:45

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\ratbftl.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:13947  MD5:6e2268c6213905e9b7513582b6c7d5dc

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kawdbaz.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:13976  MD5:c82f9f2765d18805d1f15ca315ab7d6f

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kaqhfaz.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:14237  MD5:6f695394ee046c5137ce3d0310769924

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kvdxcis.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:14307  MD5:0e99fa78fa94ebb67f4c08accc097265

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kvmxeis.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:14425  MD5:48916acdfc8772cbf0e3785987ac07d5

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\avzxdst.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:15054  MD5:fa2bd6f1bbba8392414fe76225c40ca7

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\rsmyesp.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:15116  MD5:1bc879236dba254f4f0fa2fd3ca300c7

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\avwlcst.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:15201  MD5:9e43018bf5625cad265a8de3c60ac25b

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\rsztdsp.exe]
                  …………发现Spy！报告:[1]
文件信息:  大小:15278  MD5:c077461a17102d0d993188431548c525

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\syektyekqva.dll]
                  …………发现Spy！报告:[1]
文件信息:  大小:17809  MD5:9b7e67430a916b2951cf9ba920f71da2

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\ratbfpi.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:19528  MD5:86f45f8d64719314bc8be84dc6671760

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kvdxcma.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:20040  MD5:cc71cdfbe27ef31e7e8f6477186a688f

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kvmxema.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:20560  MD5:320d8e3cda767aac425559568aca7249

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\rsmyepm.dll]
                  …………发现Spy！报告:[6] 注入者[8] HOOK者
文件信息:  大小:22096  MD5:8054e78db899f8e7dce31031c6787b61

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\avwgdmn.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:22620  MD5:616f375537839c2d64621fc6f7de5ee9

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\avzxdmn.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:23114  MD5:122b17c8a248c64b7b74c703b857f106

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\rsztdpm.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:23120  MD5:02a6e209eaee945a92355342c97a6a2c

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\kaqhfzy.dll]
                  …………发现Spy！报告:[6] 注入者[8] HOOK者
文件信息:  大小:23124  MD5:cb465ab66faa64ef163d6ab4a9cb50b7

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\System36.jup]
                  …………发现Spy！报告: [4] [2]
文件信息:  大小:23130  MD5:76aa571af28afbe22dd7812667cded92

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\scrsys16_071010.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:24576  MD5:b5c2a2f7f8e3132d955010a5906f10fa

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\winsys16_071010.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:24576  MD5:b5c2a2f7f8e3132d955010a5906f10fa

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\avwlcmn.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:25672  MD5:0f26c83b37f67a893fd7f7eedf4f8f32

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\System6.ins]
                  …………发现Spy！报告: [4] [8] HOOK者
文件信息:  大小:28248  MD5:5d0612e43dded55e52991c5411c649a7

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\NysWin75.Jmp]
                  …………发现Spy！报告:[2]
文件信息:  大小:32366  MD5:18aac6074ba8353a908cab5cdf797ec4

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\SysWin78.Jmp]
                  …………发现Spy！报告:[2]
文件信息:  大小:32371  MD5:9a5822b92fef76f4e66a0d23c9ac6fa5

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\mstsc32.dll]
                  …………发现Spy！报告:[1]
文件信息:  大小:33801  MD5:c95d0d8502b480be557d6f9be7a89394

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\IGM.exe]
                  …………发现Spy！报告: [4]
文件信息:  大小:40753  MD5:734d2dd13284e0342f30c5c9a481855f

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\888]
                  …………发现Spy！报告: [4]
文件信息:  大小:43313  MD5:ae2c60143fe914e144f5e9d12b4b01a4

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\WinSys88.Sys]
                  …………发现Spy！报告: [4] [8] HOOK者
文件信息:  大小:45171  MD5:c66967d1ca76246441d6487f2455620f

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\608769WO.DLL]
                  …………发现Spy！报告: [4]
文件信息:  大小:46897  MD5:ea06d20f099cbd3962eb4327898f74c5

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\AlxRes071010.exe]
                  …………发现Spy！报告: [4] [1]
文件信息:  大小:102000  MD5:7b9cdd18393e233c5b476b44ce1f6139

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\scrsys071010.scr]
                  …………发现Spy！报告: [4] [1]
文件信息:  大小:102000  MD5:7b9cdd18393e233c5b476b44ce1f6139

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\winsys32_071010.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:199168  MD5:4d148e4dad88fb2185dd92d466aa9958

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\cqatl.dll]
                  …………发现Spy！报告: [4] [1]
文件信息:  大小:5993  MD5:796f69d16d74d10fb078ef99fc9a62ef

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\msatl.dll]
                  …………发现Spy！报告: [4] [1]
文件信息:  大小:7981  MD5:1d2645d71c85b16817202fcbf7aed382

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\addrzxhelp.dll]
                  …………发现Spy！报告:[1]
文件信息:  大小:8485  MD5:f09b523638c027f1aa7243290dabe8ab

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\sqmapi32.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:9282  MD5:f951cba37be88ee4408d0e27fc0ad56a

[C:\Documents and Settings\Administrator\桌面\Virus\400000virus\qdshm.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:9306  MD5:0f0cde41e6354252b9a31346cd3457a1

文件数:40 病毒数:38  比重:0.95
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

[ 本帖最后由 FBAV 于 2007-10-12 17:58 编辑 ]

显示全部楼层 · 发表于 2007-10-12 17:58:57

31
detected: Trojan program Trojan-Spy.Win32.Delf.akx File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/ratbftl.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eoa File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/kaqhfaz.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eof File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/kvdxcis.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eof File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/kvmxeis.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eys File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/avzxdst.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.epn File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/rsmyesp.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqr File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/avwlcst.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqt File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/rsztdsp.exe//UPack
detected: Trojan program Trojan-Spy.Win32.Delf.akx File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/ratbfpi.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.epn File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/rsmyepm.dll
detected: Trojan program Trojan-PSW.Win32.Agent.rw File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/avwgdmn.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eyt File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/avzxdmn.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqt File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/rsztdpm.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eoa File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/kaqhfzy.dll
detected: Trojan program Trojan-Spy.Win32.Delf.alb File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/System36.jup//UPX
detected: virus Virus.Win32.AutoRun.tp File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/scrsys16_071010.dll
detected: virus Virus.Win32.AutoRun.tp File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/winsys16_071010.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqr File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/avwlcmn.dll
detected: Trojan program Trojan-Spy.Win32.Delf.akz File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/System6.ins
detected: Trojan program Trojan-PSW.Win32.QQPass.agr File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/NysWin75.Jmp//UPX
detected: virus Virus.Win32.AutoRun.ub File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/SysWin78.Jmp//UPX
detected: Trojan program Trojan-PSW.Win32.Lmir.bnl File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/IGM.exe//ASPack
detected: Trojan program Trojan-PSW.Win32.Lmir.bnm File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/888
detected: virus Virus.Win32.AutoRun.ub File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/WinSys88.Sys
detected: Trojan program Trojan-PSW.Win32.WOW.zr File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/608769WO.DLL
detected: Trojan program Trojan-PSW.Win32.WOW.zr File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/IGW.exe
detected: Trojan program Trojan-PSW.Win32.WOW.zr File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/provie.exe
detected: virus Virus.Win32.AutoRun.tp File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/AlxRes071010.exe//PE_Patch//UPack
detected: virus Virus.Win32.AutoRun.tp File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/scrsys071010.scr//PE_Patch//UPack
detected: virus Virus.Win32.AutoRun.tp File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/winsys32_071010.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqj File: C:\Documents and Settings\Owner\×ÀÃæ\virus.rar/addrzxhelp.dll//UPack

显示全部楼层 · 发表于 2007-10-12 18:07:34

C:\ABC\virus\kvdxcma.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus\kvmxeis.exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现
C:\ABC\virus\kvmxema.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus\msatl.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\virus\mstsc32.dll - 特征码 'Generic.PWS.WoW' 被发现
C:\ABC\virus\NysWin75.Jmp - 特征码 'Virus.Win32.AutoRun.bs' 被发现
C:\ABC\virus\provie.exe - 特征码 'Trojan-PWS.Win32.WOW.vd' 被发现
C:\ABC\virus\qdshm.dll
C:\ABC\virus\ratbfpi.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus\ratbftl.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\virus\rsmyepm.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus\rsmyesp.exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现
C:\ABC\virus\rsztdpm.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus\rsztdsp.exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现
C:\ABC\virus\scrsys071010.scr - 特征码 'Trojan-Spy.Win32.Agent.pn' 被发现
C:\ABC\virus\scrsys16_071010.dll - 特征码 'Virus.Win32.AutoRun.kt' 被发现
C:\ABC\virus\sqmapi32.dll
C:\ABC\virus\syektyekqva.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\virus\System36.jup - 特征码 'Trojan-Spy.Win32.Delf.PG' 被发现
C:\ABC\virus\System6.ins - 特征码 'Trojan-Spy.Win32.Delf.OG' 被发现
C:\ABC\virus\SysWin78.Jmp - 特征码 'Virus.Win32.AutoRun.bs' 被发现
C:\ABC\virus\winsys16_071010.dll - 特征码 'Virus.Win32.AutoRun.kt' 被发现
C:\ABC\virus\winsys32_071010.dll - 特征码 'Generic.Onlinegames.5' 被发现
C:\ABC\virus\WinSys88.Sys - 特征码 'Trojan-PWS.Win32.Nilage.bga' 被发现

40 文件被扫描
(0 压缩档 0 文件)
38 特征码被侦测
0 可疑代码段被发现
耗时: 0:00.594

显示全部楼层 · 发表于 2007-10-12 19:06:38

Result: 31 malware found
Trojan-Spy.Win32.Delf.akx (virus)
C:\Users\Administrator\Desktop\virus.rar\ratbftl.exe
C:\Users\Administrator\Desktop\virus.rar\ratbfpi.dll
Trojan-PSW.Win32.OnLineGames.eoa (virus)
C:\Users\Administrator\Desktop\virus.rar\kaqhfaz.exe
C:\Users\Administrator\Desktop\virus.rar\kaqhfzy.dll
Trojan-PSW.Win32.OnLineGames.eof (virus)
C:\Users\Administrator\Desktop\virus.rar\kvdxcis.exe
C:\Users\Administrator\Desktop\virus.rar\kvmxeis.exe
Trojan-PSW.Win32.OnLineGames.eys (virus)
C:\Users\Administrator\Desktop\virus.rar\avzxdst.exe
Trojan-PSW.Win32.OnLineGames.epn (virus)
C:\Users\Administrator\Desktop\virus.rar\rsmyesp.exe
C:\Users\Administrator\Desktop\virus.rar\rsmyepm.dll
Trojan-PSW.Win32.OnLineGames.eqr (virus)
C:\Users\Administrator\Desktop\virus.rar\avwlcst.exe
C:\Users\Administrator\Desktop\virus.rar\avwlcmn.dll
Trojan-PSW.Win32.OnLineGames.eqt (virus)
C:\Users\Administrator\Desktop\virus.rar\rsztdsp.exe
C:\Users\Administrator\Desktop\virus.rar\rsztdpm.dll
Trojan-PSW.Win32.Agent.rw (virus)
C:\Users\Administrator\Desktop\virus.rar\avwgdmn.dll
Trojan-PSW.Win32.OnLineGames.eyt (virus)
C:\Users\Administrator\Desktop\virus.rar\avzxdmn.dll
Trojan-Spy.Win32.Delf.alb (virus)
C:\Users\Administrator\Desktop\virus.rar\System36.jup
Virus.Win32.AutoRun.tp (virus)
C:\Users\Administrator\Desktop\virus.rar\scrsys16_071010.dll
C:\Users\Administrator\Desktop\virus.rar\winsys16_071010.dll
C:\Users\Administrator\Desktop\virus.rar\AlxRes071010.exe
C:\Users\Administrator\Desktop\virus.rar\scrsys071010.scr
C:\Users\Administrator\Desktop\virus.rar\winsys32_071010.dll
Trojan-Spy.Win32.Delf.akz (virus)
C:\Users\Administrator\Desktop\virus.rar\System6.ins
Trojan-PSW.Win32.QQPass.agr (virus)
C:\Users\Administrator\Desktop\virus.rar\NysWin75.Jmp
Virus.Win32.AutoRun.ub (virus)
C:\Users\Administrator\Desktop\virus.rar\SysWin78.Jmp
C:\Users\Administrator\Desktop\virus.rar\WinSys88.Sys
Trojan-PSW.Win32.Lmir.bnl (virus)
C:\Users\Administrator\Desktop\virus.rar\IGM.exe
Trojan-PSW.Win32.Lmir.bnm (virus)
C:\Users\Administrator\Desktop\virus.rar\888
Trojan-PSW.Win32.WOW.zr (virus)
C:\Users\Administrator\Desktop\virus.rar\608769WO.DLL
C:\Users\Administrator\Desktop\virus.rar\IGW.exe
C:\Users\Administrator\Desktop\virus.rar\provie.exe
Trojan-PSW.Win32.OnLineGames.eqj (virus)
C:\Users\Administrator\Desktop\virus.rar\addrzxhelp.dll

显示全部楼层 · 发表于 2007-10-12 19:14:18

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.OnlineGames.zuo
病毒： Trojan.PSW.Win32.QQHX.tqv
病毒： Trojan.PSW.Win32.XYOnline.mb
病毒： Trojan.PSW.Win32.RocOnline.gc
病毒： Trojan.PSW.Win32.OnlineGames.eqr
病毒： Trojan.PSW.Win32.TLOnline.bj
病毒： Trojan.PSW.Win32.XYOnline.mb
病毒： Trojan.PSW.Win32.RocOnline.gb
病毒： Trojan.PSW.Win32.OnlineGames.zuu
病毒： Trojan.PSW.Win32.QQHX.tqv
病毒： Trojan.DL.Win32.Agent.ziy
病毒： Trojan.Clicker.Win32.PopHot.cc
病毒： Trojan.DL.Win32.Agent.ziy
病毒： Trojan.PSW.Win32.QQPass.ysy
病毒： Worm.Win32.PaBug.aq
病毒： Trojan.PSW.Win32.WoWar.aay
病毒： Trojan.PSW.Win32.WoWar.abf
病毒： Trojan.Clicker.Win32.PopHot.cc
病毒： Trojan.PSW.Win32.OnlineGames.zwl
病毒： Trojan.PSW.Win32.OnlineGames.zqw

MAC地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：19.44.42

显示全部楼层 · 发表于 2007-10-12 19:18:19

NIS2008 30个
Scan Stats:
  Scan Time: 12 seconds
  Scan Options:
  Scan Targets: C:\Users\m\Desktop\virus.rar
  Counts:
Total items scanned: 41
- Files & Directories: 41
- Registry Entries: 0
- Processes & Start-up Items: 0
- Network & Browser Items: 0
- Other: 0

Total security risks detected: 30
Total items resolved: 0
Total items that require attention: 30

显示全部楼层 · 发表于 2007-10-12 19:25:26

UGuard Log (Digital Fox - gankeyu@126.com)
UGuarduu.exe = 4.3.1
HC0.rlb = 2.9.1
HC2.rlb = 2.4.0
FN0.rlb = 2.3.1
扫描选项：扫描档案, 扩展, 忽略非活动, 忽略大文件, nFile, BAT模拟, 捆绑检测, 变形壳, 启发,
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\608769WO.DLL 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\888 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\addrzxhelp.dll 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\AlxRes071010.exe 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\avwgdmn.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\avwlcmn.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\avwlcst.exe 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\avzxdmn.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\avzxdst.exe 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\cqatl.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\IGM.exe 检测到 Generic.nFile
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\IGW.exe 检测到 Generic.Binder
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kaqhfaz.exe 检测到 Packed.Generic.UPack
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kaqhfzy.dll 检测到 Trojan.Roast.Hidden
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kawdbaz.exe 检测到 Packed.Generic.UPack
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kvdxcis.exe 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kvdxcma.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kvmxeis.exe 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\kvmxema.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\msatl.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\mstsc32.dll 检测到 Packed.Generic.Modified
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\NysWin75.Jmp//UPX 检测到 Generic.Binder
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\provie.exe 检测到 Generic.Binder
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\qdshm.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\ratbfpi.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\ratbftl.exe 检测到 Packed.Generic.UPack
[扫描] [Level 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\rsmyepm.dll 检测到 Trojan.Roast.Hidden
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\rsmyesp.exe 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\rsztdpm.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\rsztdsp.exe 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\scrsys071010.scr 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\scrsys16_071010.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\sqmapi32.dll 检测到 Generic.nFile
[扫描] [变形壳检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\syektyekqva.dll 检测到 Packed.Generic.UPack
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\System36.jup 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\System6.ins 检测到 Generic.nFile
[扫描] [捆绑检测] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\SysWin78.Jmp//UPX 检测到 Generic.Binder
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\winsys16_071010.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\winsys32_071010.dll 检测到 Generic.nFile
[扫描] [nFile Detect 2] 在 E:\Documents and Settings\Administrator\桌面\Vir\virus\WinSys88.Sys 检测到 Generic.nFile
检测到了 38 个未知的恶意程序，请上报。
任务扫描完成。共耗费的时间：0-00-00 00:00:00:0750，共扫描的文件数量：42，共扫描到的威胁数量：40，威胁率：95.24%，扫描速率： 56 文件/秒，扫描速度： 1885.42 千字节/秒，共扫描了 1414.07 千字节。

[病毒样本] 40个

本帖子中包含更多资源

本帖子中包含更多资源

59/23

浏览过的版块