另一堆木马群更新35个

NobleT

F-PROT查了19个，最好把那个压缩文件删了.....等于全干了

F-PROT Antivirus for Windows

Antivirus Scanning Engine version number: 4.4.2
Virus signature file from: 2007-11-11, 4:40

Scan name: [Custom Scan]
Path to scan: F:\|

Normal scan
Also scan: Inside subfolders, Compressed files, Streams

Scan started: 2007-11-11, 9:03:28
---------------------------------------------------------------------

[Clean]        Boot sector on drive F:
[Clean]        Boot sector on drive E:
[Clean]        Boot sector on drive D:
[Clean]        Boot sector on drive G:
[Clean]        Boot sector on drive C:
[Clean]        Master Boot Record on disk 0
[Clean]        F:\20071109224401.jpg
[Clean]        F:\20071109232023.jpg
[Clean]        F:\20071109232700.jpg
[Clean]        F:\b.zip->b.exe->(PE_Patch.MaskPE)
[Clean]        F:\b.zip
[Clean]        F:\LFS_S2W_KeyGen.exe
[Clean]        F:\RECYCLER\S-1-5-21-746137067-725345543-839522115-1003\desktop.ini
[Clean]        F:\RECYCLER\S-1-5-21-746137067-725345543-839522115-1003\INFO2
[Clean]        F:\virus.rar->16.exe->(UPack)
[Found password stealer]         <W32/PWS!4977 (exact, not disinfectable)>        F:\virus.rar->14.exe
[Found password stealer]         <W32/Pws.XHN (exact, damaged, not disinfectable)>        F:\virus.rar->10.exe
[Clean]        F:\virus.rar->11.exe->(UPack)
[Clean]        F:\virus.rar->15.exe->(UPack)
[Clean]        F:\virus.rar->3.exe->(UPack)
[Clean]        F:\virus.rar->17.exe->(UPack)
[Clean]        F:\virus.rar->19.exe->(UPack)
[Clean]        F:\virus.rar->0.exe->(UPack)
[Clean]        F:\virus.rar->2.exe->(UPack)
[Clean]        F:\virus.rar->5.exe->(UPack)
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->6.exe->(embedded)
[Found password stealer]         <W32/Onlinegaming.AIX (exact, not disinfectable)>        F:\virus.rar->7.exe
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->8.exe->(embedded)
[Clean]        F:\virus.rar->9.exe->(UPack)
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->intest.exe
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->nk.exe
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->wistves.exe
[Found password stealer]         <W32/Onlinegaming.AJG (exact, not disinfectable)>        F:\virus.rar->608769WL.DLL
[Found security risk]         <W32/Nilage.gen!GSA (not disinfectable, generic)>        F:\virus.rar->608769WO.DLL
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->IGM.exe
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->IGW.exe
[Found possible virus]         <W32/Blocker-based!Maximus (not disinfectable)>        F:\virus.rar->swchost.exe
[Clean]        F:\virus.rar->608769MM.DLL
[Found security risk]         <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)>        F:\virus.rar->kapjdaz.exe->(UPack)
[Found security risk]         <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)>        F:\virus.rar->kapjdzy.dll
[Found possible security risk]         <W32/Heuristic-114!Eldorado (damaged, not disinfectable)>        F:\virus.rar->LYLOADER.EXE->(UPack)
[Clean]        F:\virus.rar->REGKEY.hiv
[Found possible virus]         <W32/Downloader-SmlInject-based!Maximus (not disinfectable)>        F:\virus.rar->LYMANGR.DLL->(UPack)
[Clean]        F:\virus.rar->MSDEG32.DLL->(UPack)
[Clean]        F:\virus.rar->18.exe->(UPack)
[Clean]        F:\virus.rar->12.exe->(UPack)
[Clean]        F:\virus.rar->4.exe->(UPack)
[Found security risk]         <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)>        F:\virus.rar->13.exe->(UPack)
[Found possible security risk]         <W32/Heuristic-114!Eldorado (damaged, not disinfectable)>        F:\virus.rar->1.exe->(embedded)->(UPack)
[Contains infected objects]        F:\virus.rar
[Quarantined]        F:\virus.rar->1.exe->(embedded)->(UPack)
[Clean]        F:\wos5_00006.jpg
[Clean]        F:\wos5_00008.jpg
[Clean]        F:\wos5_00010.jpg
[Clean]        F:\wos5_00011.jpg
[Clean]        F:\wos5_00013.jpg
[Clean]        F:\wos5_00017.jpg
[Clean]        F:\wos5_00022.jpg
[Clean]        F:\存档\fdgvd.sav
[Clean]        F:\存档\Hroll\playersave\commondt.sav
[Clean]        F:\存档\Hroll\playersave\playersave
[Clean]        F:\存档\Hroll\playersave2\commondt.sav
[Clean]        F:\存档\Hroll\playersave2\playersave

---------------------------------------------------------------------
Scan ended:        2007-11-11, 9:03:50
Duration:        0:00:22

Scan result:

Scanned files:                 26
Infected objects:         19
Disinfected objects:         0
Quarantined files:         1

forget

又只34个
我晕了

sam.to

已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhj        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/16.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hde        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/14.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.guz        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/10.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhi        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/11.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhi        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/15.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhl        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/3.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.WOW.aeh        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/17.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhk        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/19.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hec        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/0.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hed        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/2.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hdg        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/5.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.bou        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/6.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gis        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/7.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.fhz        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/8.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhm        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/9.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.bos        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/intest.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.fxk        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/nk.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.fhz        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/wistves.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gis        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/608769WL.DLL
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.fhz        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/608769WO.DLL
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.bos        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/IGM.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.fhz        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/IGW.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.fxk        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/swchost.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.bos        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/608769MM.DLL
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gpx        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/kapjdaz.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gri        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/kapjdzy.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhp        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/LYLOADER.EXE//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhp        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/LYMANGR.DLL//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hhp        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/MSDEG32.DLL//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.WOW.aei        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/18.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gyu        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/12.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hee        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/4.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gpx        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/13.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.gvc        檔案: C:\Documents and Settings\kato9096\桌面\virus.rar/1.exe


kis 只有一個沒杀!，杀了３４个，比前面的卡巴殺得更多我已把沒杀的傳給卡巴
2樓28个
8樓32个
10樓26个

[ 本帖最后由 kato9096 于 2007-11-12 11:40 编辑 ]

yclidong

avg 34个

sam.to

Hello,

REGKEY.hiv

No malicious code was found in this file.

Please quote all when answering.

--
Best regards, Alexander Romanenko
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

这是卡巴给我的回复，意思是REGKEY.hiv没有恶意代码

[ 本帖最后由 kato9096 于 2007-11-12 13:18 编辑 ]

zw3912905

nod32杀36个