75个

显示全部楼层 · 发表于 2007-12-9 21:56:30

AVG 57~~金山56個~費爾61

显示全部楼层 · 发表于 2007-12-9 22:02:51

卡巴 70个

显示全部楼层 · 发表于 2007-12-9 23:26:33

繼續啟發

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 1056
Paranoia Database - 49948
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\Uhthn\Desktop\mm

C:\Documents and Settings\Uhthn\Desktop\mm\0.exe - OK
C:\Documents and Settings\Uhthn\Desktop\mm\1.exe - Suspected MaliciousScope:TROJAN-DOWNLOADER.DELF.1
C:\Documents and Settings\Uhthn\Desktop\mm\10.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\101.exe - Suspected TROJAN-DOWNLOADER (HTTP://{REMOVED}/...)
C:\Documents and Settings\Uhthn\Desktop\mm\11.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\110.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\111.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\12.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\121.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\13.exe - Infected TROJAN-PSW.ONLINEGAMES.166 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\14.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\141.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\15.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\151.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\16.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\161.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\17.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\171.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\18.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\19.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\2.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\20.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\21.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\210.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\3.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\310.exe - Suspected MaliciousScope:GENERIC.MALWARE.2
C:\Documents and Settings\Uhthn\Desktop\mm\31xz.dll - Suspected WIN32.BACKDOOR.HUPIGON.5
C:\Documents and Settings\Uhthn\Desktop\mm\4.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\410.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\5.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\51.exe - Suspected MaliciousScope:WIN32.GENERIC.MALWARE.17
C:\Documents and Settings\Uhthn\Desktop\mm\6.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\61.exe - Infected WIN32.TROJAN-PSW.QQPASS.A - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\7.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\71.exe - Suspected MaliciousScope:TROJAN-DOWNLOADER.DELF.1
C:\Documents and Settings\Uhthn\Desktop\mm\8.exe - Infected TROJAN-PSW.ONLINEGAMES.83 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\81.exe - Suspected MaliciousScope:WIN32.GENERIC.MALWARE.12
C:\Documents and Settings\Uhthn\Desktop\mm\9.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\91.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\mm\addrjx2help.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\addrmshelp.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\addrtlhelp.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\avwlgmn.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\avzxkmn.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\gdcqi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gddh3i32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gddhi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gddji32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdgji32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdhnxai32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdmoyi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdmsi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdqji32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdqqhxi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdtli32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdwmi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\gdzyhxi32.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\GenProtect.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\gqlaem.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\Hook.sys - OK
C:\Documents and Settings\Uhthn\Desktop\mm\HookHelp.sys - OK
C:\Documents and Settings\Uhthn\Desktop\mm\itzrcd.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\kawdcaz.dat - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\kawdfzy.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\kvdxjma.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\LotusHlp.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\MsPrint32D.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\netapi16.dll - Infected TROJAN-PSW.GAME.25 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\PTSShell.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\qdshm.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\mm\rarjepi.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\rsztmpm.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\sidjfzy.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\swrcezc.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\mm\Wn_Sys8x.Sys - Infected WIN32.TROJAN-PSW.QQPASS.A - Deleted

75 Files scanned
20 Infected files found
52 Suspected files found
0 Files disinfected
20 Files deleted

显示全部楼层 · 发表于 2007-12-10 03:14:07

Moon Secure Antivirus scan reports
Generated by msavcore.exe on 2007-12-10 上午 03:28:03
+++++++++++++++++++++++++++++++++++++
Session started on: 2007-12-10 上午 03:28:03
Scan for files in: "C:\Documents and Settings\Administrator\妗岄潰\__"
Total Scanning Time: 00:00:01
Scanned total 75 files and 2 folders
6 files was FOUND to be infected
Scanning took 1.09 seconds. Database 96712 viruses
+++++++++++++++++++++++++++++++++++++++++
Scan Options: scan archive, extensions (exe,dll,vxd,sys, xls, ...)

Listing infected file(s):
C:\Documents and Settings\Administrator\妗岄潰\__\鏍锋湰\avwlgmn.dll infected Trojan.Spy-16289 [STILL INFECTED]
C:\Documents and Settings\Administrator\妗岄潰\__\鏍锋湰\avzxkmn.dll infected Trojan.Spy-16289 [STILL INFECTED]
C:\Documents and Settings\Administrator\妗岄潰\__\鏍锋湰\kawdfzy.dll infected Trojan.Spy-16289 [STILL INFECTED]
C:\Documents and Settings\Administrator\妗岄潰\__\鏍锋湰\rsztmpm.dll infected Trojan.Spy-16289 [STILL INFECTED]
C:\Documents and Settings\Administrator\妗岄潰\__\鏍锋湰\sidjfzy.dll infected Trojan.Spy-16289 [STILL INFECTED]
C:\Documents and Settings\Administrator\妗岄潰\__\鏍锋湰\swrcezc.dll infected Trojan.Spy-16289 [STILL INFECTED]

[ 本帖最后由 lanvin 于 2007-12-10 03:26 编辑 ]

显示全部楼层 · 发表于 2007-12-10 03:45:24

Scan Started Mon Dec 10 03:46:54 2007
-------------------------------------------------------------------------------

C:\Documents and Settings\Administrator\桌面\__\样本\0.exe: Trojan.Downloader-13207 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\61.exe: Trojan.QQPass-493 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\avwlgmn.dll: Trojan.Spy-16289 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\avzxkmn.dll: Trojan.Spy-16289 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\kawdfzy.dll: Trojan.Spy-16289 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\rsztmpm.dll: Trojan.Spy-16289 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\sidjfzy.dll: Trojan.Spy-16289 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\swrcezc.dll: Trojan.Spy-16289 FOUND
C:\Documents and Settings\Administrator\桌面\__\样本\Wn_Sys8x.Sys: Trojan.QQPass-493 FOUND
----------- SCAN SUMMARY -----------
Known viruses: 174215
Engine version: 0.91.2
Scanned directories: 2
Scanned files: 74
Skipped non-executable files: 0
Infected files: 9

Data scanned: 2.20 MB
Time: 17.215 sec (0 m 17 s)
--------------------------------------
Completed
--------------------------------------

显示全部楼层 · 发表于 2007-12-10 07:55:20

mcafee不让下载的文件复制到硬盘，呵呵，无法判断多少。

显示全部楼层 · 发表于 2007-12-10 10:28:29

木马名称:Backdoor.Win32.GreyPigeon.blh
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\81.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\1.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\ILOVE.SYS
2) C:\WINDOWS\SYSTEM32\INETSVR.EXE
3) C:\WINDOWS\SYSTEM32\NETAPI16.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\2.EXE
木马程序生成以下文件:
1) C:\WINDOWS\LOTUSHLP.EXE
2) C:\WINDOWS\SYSTEM32\LOTUSHLP.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\3.EXE
木马程序生成以下文件:
1) C:\WINDOWS\GENPROTECT.EXE
2) C:\WINDOWS\SYSTEM32\GENPROTECT.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\4.EXE
木马程序生成以下文件:
1) C:\WINDOWS\PTSSHELL.EXE
2) C:\WINDOWS\SYSTEM32\PTSSHELL.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\5.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MSPRINT32D.EXE
2) C:\WINDOWS\SYSTEM32\MSPRINT32D.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\6.EXE
1) C:\DFD3981703.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\7.EXE
1) C:\DFD3996578.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\8.EXE
1) C:\DFD4010890.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\9.EXE
1) C:\DFD4079281.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\10.EXE
1) C:\DFD4099468.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\11.EXE
1) C:\DFD4112000.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\12.EXE
1) C:\DFD4124625.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\13.EXE
1) C:\DFD4135906.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\71.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\INETSVR.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\110.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\QDSHM.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\101.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\RXUPRI0.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\310.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\310XZ.DLL
是否删除木马程序及其衍生物?

木马名称:未知木马
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\QDSHM.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\MSPRINT32D.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\GENPROTECT.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知木马
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\HOOK.SYS
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\ITZRCD.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知木马
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\NETAPI16.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\31XZ.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

显示全部楼层 · 发表于 2007-12-10 11:08:09

0 Scanning directories
   79 Files were scanned
   63 viruses and/or unwanted programs were found
   10 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   16 Files not concerned
   2 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-12-10 21:15:15

Rising 57

显示全部楼层 · 发表于 2007-12-10 21:19:39

Starting the file scan:

Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
--> Ñù±¾\0.exe
   [1] Archive type: RAR SFX (self extracting)
   --> jq.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> Ñù±¾\1.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
  --> Ñù±¾\10.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\101.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.PO.3
  --> Ñù±¾\11.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kdb
  --> Ñù±¾\110.exe
   [DETECTION] Is the Trojan horse TR/PSW.Onlineg.KC.2
  --> Ñù±¾\111.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\12.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jro
  --> Ñù±¾\121.exe
   [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
  --> Ñù±¾\13.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\14.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> Ñù±¾\141.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\15.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\151.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\16.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\161.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\17.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jlc.2
  --> Ñù±¾\171.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\18.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\19.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\2.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\20.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\21.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> Ñù±¾\210.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.iiu.1.A
  --> Ñù±¾\3.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> Ñù±¾\310.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kdo
  --> Ñù±¾\31xz.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\4.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\410.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jti.3
  --> Ñù±¾\5.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\51.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kgw
  --> Ñù±¾\6.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jrd
  --> Ñù±¾\61.exe
   [DETECTION] Is the Trojan horse TR/PSW.QQpass.anj
  --> Ñù±¾\7.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jft
  --> Ñù±¾\71.exe
   [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
  --> Ñù±¾\8.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\81.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
  --> Ñù±¾\9.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jsl
  --> Ñù±¾\91.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\addrjx2help.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> Ñù±¾\addrmshelp.dll
   [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
  --> Ñù±¾\addrtlhelp.dll
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/UPACK). Please verify the origin of the file
  --> Ñù±¾\avwlgmn.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jsl
  --> Ñù±¾\avzxkmn.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jro
  --> Ñù±¾\gdcqi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gddh3i32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gddhi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gddji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdgji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdhnxai32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdmoyi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdmsi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
  --> Ñù±¾\gdqji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdqqhxi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdtli32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdwmi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\gdzyhxi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\GenProtect.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> Ñù±¾\gqlaem.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\Hook.sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\HookHelp.sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> Ñù±¾\itzrcd.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\kawdcaz.dat
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.iiu.1.A
  --> Ñù±¾\kawdfzy.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\kvdxjma.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\LotusHlp.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\MsPrint32D.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\netapi16.dll
   [DETECTION] Is the Trojan horse TR/Spy.Agent.aqk
  --> Ñù±¾\PTSShell.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\qdshm.dll
   [DETECTION] Is the Trojan horse TR/PSW.Onlineg.KC.2
  --> Ñù±¾\rarjepi.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\rsztmpm.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kdb
  --> Ñù±¾\sidjfzy.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jrd
  --> Ñù±¾\swrcezc.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jft
  --> Ñù±¾\Wn_Sys8x.Sys
   [DETECTION] Is the Trojan horse TR/PSW.QQpass.anj
   [WARNING] The file was ignored!

End of the scan: 2007年12月10日  21:19
Used time: 00:47 min

The scan has been done completely.

   0 Scanning directories
   79 Files were scanned
   67 viruses and/or unwanted programs were found
   8 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   12 Files not concerned
   2 Archives were scanned
   1 Warnings
   0 Notes

[病毒样本] 75个

本帖子中包含更多资源

全杀~