47个

显示全部楼层 · 发表于 2008-1-29 16:55:47

信息 2004-02-02  16:55:34 您此次查毒共查出17个病毒以及危险代码
信息 2004-02-02  16:55:34 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件84个
信息 2004-02-02  16:55:34 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\xy.exe Win32.Troj.OnlineGamesT.nr.37008 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\xhqq.dll Win32.Troj.OnlineGamesT.ty.90112 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\wd.exe Win32.Troj.DownloaderT.m.101715 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\uyom.dll Win32.Troj.OnlineGames.yf.73728 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\tl.exe Win32.Troj.DownloaderT.m.101715 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\SVCHOST.exe Win32.Hack.Huigezi.356864 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\Rpcs.dll Win32.Hack.Delf.159744 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\qq.exe Win32.Troj.QQThiefT.ty.112755 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\qj.exe Win32.Troj.OnlineGamesT.nr.37008 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\puid.sys Win32.Troj.UnknownT.a.6768 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\nauhgnem.dll Win32.Troj.OnlineGamesT.ty.90112 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\my.exe Win32.Troj.OnlineGamesT.nr.37008 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\mh.exe Win32.Troj.OnlineGamesT.nr.37008 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\ijiq.dll Win32.Troj.OnlineGames.yk.73728 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\hx.exe Win32.Troj.OnlineGamesT.nr.37008 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\auhad.dll Win32.Troj.OnlineGamesT.xy.118784 跳过，未处理
病毒 2004-02-02  16:55:34 C:\Users\挪威的冬天\Desktop\system32\1.exe Win32.Troj.MachDogT.hl.98304 跳过，未处理

显示全部楼层 · 发表于 2008-1-29 16:59:16

扫描统计:
扫描时间: 11秒
扫描选项:
扫描目标: G:\Users\Administrator\Desktop\system32.part1.rar, G:\Users\Administrator\Desktop\system32.part2.rar
  计数:
扫描的项目总数: 55
- 文件和目录: 55
- 注册表项: 0
- 进程和启动项: 0
- 网络和浏览器项目: 0
- 其他: 0

检测到的安全风险总数: 25
已解决的项目总数: 0
需要注意的项目总数: 25

已解决的风险:

未解决的风险:
Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[msepion.sys] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer.Gampass
病毒 ID: 40673
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[tllt.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[_setupx.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer.Gampass
病毒 ID: 40673
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[wd.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[hx.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[qj.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[my.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer.Gampass
病毒 ID: 40673
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[auhad.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer.Gampass
病毒 ID: 40673
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[xy.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[mh.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer.Gampass
病毒 ID: 40673
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[wddw.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

W32.Gammima
病毒 ID: 40890
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[qq.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[wn_sys8x.sys] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Infostealer
病毒 ID: 24770
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[iexplore.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[passworddll.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[oesrv.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Backdoor.Trojan
病毒 ID: 7586
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[rpcs.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[oehk.dll] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Backdoor.Trojan
病毒 ID: 7586
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[11.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Backdoor.Trojan
病毒 ID: 7586
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[rpcs.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[eww.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Backdoor.Trojan
病毒 ID: 7586
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[11.exe] 位于[5.exe] 位于[g:\users\administrator\desktop\system32.part1.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[ansmtp.dll] 位于[g:\users\administrator\desktop\system32.part2.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[ewwie.dll] 位于[g:\users\administrator\desktop\system32.part2.rar] - 已感染

Adware.DropSpam
病毒 ID: 4294906560
类型: 已压缩
风险: 中 (中隐蔽性，中清除可能，中性能，中隐私)
类别: 广告软件
状态: 删除失败
-----------
1 文件
[ewwsetup.exe] 位于[g:\users\administrator\desktop\system32.part2.rar] - 已感染

显示全部楼层 · 发表于 2008-1-29 17:02:30

bd=27+2

D:\Download\S\QAA_XPTYJ_1007.dll infected: Generic.Malware.SBdld.DC9D88EC
D:\Download\S\cs.exe infected: Dropped:Generic.Malware.SBdld.8C699DB6
D:\Download\S\IGB_CQSJ_1023.exe infected: Dropped:Generic.Malware.SBdld.8C699DB6
D:\Download\S\pt.exe infected: Dropped:Generic.Malware.SBdld.DC9D88EC
D:\Download\S\QAA_XPTYJ_1007.exe infected: Dropped:Generic.Malware.SBdld.DC9D88EC
D:\Download\S\1.exe infected: Generic.Malware.SBdldg.07C79BA9
D:\Download\S\tllt.dll infected: Generic.Malware.SFdld.E749B5DE
D:\Download\S\wd.exe suspected: Generic.Malware.SFdldg.14662D5A
D:\Download\S\hx.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\qj.exe suspected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\my.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\nauhgnem.dll infected: DeepScan:Generic.PWS.Games.1.160CD74D
D:\Download\S\xy.exe infected: Trojan.PWS.Onlinegames.NYS
D:\Download\S\mh.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\knlps.exe infected: Application.Prockill.Knlkillp.D
D:\Download\S\csrss.exe infected: Generic.NPop.E7DC57C9
D:\Download\S\qq.exe infected: Generic.PWStealer.1B77DA91
D:\Download\S\Wn_Sys8x.Sys infected: Win32.Worm.Autorun.FF
D:\Download\S\iexplore.exe infected: Trojan.Spy.Agent.QD
D:\Download\S\PasswordDLL.dll infected: Adware.Dropspam.E
D:\Download\S\oesrv.exe infected: Adware.DropSpam
D:\Download\S\Rpcs.dll infected: Trojan.Downloader.Delf.NRT
D:\Download\S\oehk.dll infected: Adware.Dropspam.M
D:\Download\S\eww.exe infected: Adware.DropSpam
D:\Download\S\5.exe=>(RAR Sfx o)=>1.bat infected: BAT.Ebles.A
D:\Download\S\5.exe=>(RAR Sfx o)=>knlps.exe infected: Application.Prockill.Knlkillp.D
D:\Download\S\SVCHOST.exe infected: Backdoor.Hupigon.EZX
D:\Download\S\ewwie.dll infected: Adware.Dropspam.L
D:\Download\S\IGB_CQSJ_1023.dll infected: Generic.Malware.SBdld.8C699DB6

显示全部楼层 · 发表于 2008-1-29 17:02:37

I:\virus\test\1.exe - Signature 'Trojan-Downloader.Win32.Zlob.and' found
I:\virus\test\11.exe - Suspect code-parts found (Level: 180)
I:\virus\test\5.exe:\11.exe - Suspect code-parts found (Level: 180)
I:\virus\test\5.exe:\1.bat - Signature 'Trojan.BAT.KillAV.fb' found
I:\virus\test\5.exe:\1.vbs
I:\virus\test\5.exe:\knlps.exe - Signature 'Virus.Win32.Agent.AEZ' found
I:\virus\test\5.exe:\knlps.sys
I:\virus\test\5.exe
I:\virus\test\ANSMTP.dll
I:\virus\test\auhad.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\autonomy.tmp
I:\virus\test\cs.exe - Suspect code-parts found (Level: 25)
I:\virus\test\csrss.exe - Suspect code-parts found (Level: 150)
I:\virus\test\eww.exe - Signature 'AdWare.DropSpam' found
I:\virus\test\ewwie.dll - Signature 'Virus.Win32.AdWare' found
I:\virus\test\ewwsetup.exe - Signature 'Virus.Win32.Trojan' found
I:\virus\test\hx.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\test\iexplore.exe - Signature 'Trojan-Spy.Win32.Banker.RM' found
I:\virus\test\IGB_CQSJ_1023.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\IGB_CQSJ_1023.exe - Suspect code-parts found (Level: 25)
I:\virus\test\ijiq.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\knlps.exe - Signature 'Virus.Win32.Agent.AEZ' found
I:\virus\test\knlps.sys
I:\virus\test\mh.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\test\msepion.sys - Signature 'Trojan.Win32.Agent.anj' found
I:\virus\test\my.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\test\nauhgnem.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\oehk.dll
I:\virus\test\oesrv.exe - Signature 'AdWare.DropSpam' found
I:\virus\test\PasswordDLL.dll - Signature 'Virus.Win32.AdWare' found
I:\virus\test\pt.exe - Signature 'Trojan-PWS.Win32.OnLineGames.pou' found
I:\virus\test\puid.sys - Signature 'Trojan-Downloader.Win32.Agent.hif' found
I:\virus\test\QAA_XPTYJ_1007.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\QAA_XPTYJ_1007.exe - Signature 'Trojan-PWS.Win32.OnLineGames.pou' found
I:\virus\test\qj.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\test\qq.exe - Signature 'Trojan-Proxy.Win32.Delf.AN' found
I:\virus\test\Rpcs.dll - Signature 'Backdoor.Win32.Hupigon.bde' found
I:\virus\test\Rpcs.exe - Suspect code-parts found (Level: 180)
I:\virus\test\Setup.exe
I:\virus\test\SVCHOST.exe - Signature 'Virus.Packed.Win32.Klone.af' found
I:\virus\test\Sy_Win7k.Jmp
I:\virus\test\tl.exe - Signature 'Trojan-Dropper.Win32.Agent.ane' found
I:\virus\test\tllt.dll - Signature 'Trojan.Win32.Delf.RF' found
I:\virus\test\uyom.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\wd.exe - Signature 'Trojan-Dropper.Win32.Agent.ane' found
I:\virus\test\wddw.dll - Suspect code-parts found (Level: 50)
I:\virus\test\Wn_Sys8x.Sys - Signature 'Trojan-Proxy.Win32.Delf.AN' found
I:\virus\test\xhqq.dll - Signature 'Trojan-PWS.Win32.Small.br' found
I:\virus\test\xy.exe - Signature 'Trojan-Spy.Win32.Delf.PD' found
I:\virus\test\_Setupx.dll
I:\virus\test\~DF9292.tmp
I:\virus\test\~Fa93.tmp
52 Files scanned
(1 Archiv with 5 files)
33 Signatures found
7 Suspect code-parts found
Used time: 0:02.469

I:\virus\test/1.exe: PUA.Packed.UPack-2 FOUND
I:\virus\test/11.exe: Trojan.Gadgo.20 FOUND
I:\virus\test/auhad.dll: PUA.Packed.UPack FOUND
I:\virus\test/cs.exe: PUA.Packed.UPack-2 FOUND
I:\virus\test/csrss.exe: Trojan.Downloader-18725 FOUND
I:\virus\test/hx.exe: PUA.Packed.UPack-3 FOUND
I:\virus\test/iexplore.exe: Trojan.Spy-16555 FOUND
I:\virus\test/IGB_CQSJ_1023.dll: PUA.Packed.UPack FOUND
I:\virus\test/IGB_CQSJ_1023.exe: PUA.Packed.UPack-2 FOUND
I:\virus\test/ijiq.dll: PUA.Packed.UPack FOUND
I:\virus\test/knlps.exe: VirTool.Kernps.A FOUND
I:\virus\test/knlps.sys: Trojan.Packed-76 FOUND
I:\virus\test/mh.exe: PUA.Packed.UPack-3 FOUND
I:\virus\test/msepion.sys: Trojan.Mono-9 FOUND
I:\virus\test/my.exe: PUA.Packed.UPack-3 FOUND
I:\virus\test/nauhgnem.dll: PUA.Packed.UPack FOUND
I:\virus\test/pt.exe: PUA.Packed.UPack-2 FOUND
I:\virus\test/QAA_XPTYJ_1007.dll: PUA.Packed.UPack FOUND
I:\virus\test/QAA_XPTYJ_1007.exe: PUA.Packed.UPack-2 FOUND
I:\virus\test/qj.exe: PUA.Packed.UPack-3 FOUND
I:\virus\test/qq.exe: Trojan.QQPass-493 FOUND
I:\virus\test/Rpcs.dll: Trojan.Delf-816 FOUND
I:\virus\test/Rpcs.exe: Trojan.Gadgo.20 FOUND
I:\virus\test/SVCHOST.exe: Trojan.Packed-70 FOUND
I:\virus\test/tl.exe: PUA.Packed.UPack FOUND
I:\virus\test/uyom.dll: PUA.Packed.UPack FOUND
I:\virus\test/wd.exe: PUA.Packed.UPack FOUND
I:\virus\test/Wn_Sys8x.Sys: Trojan.QQPass-493 FOUND
I:\virus\test/xhqq.dll: PUA.Packed.UPack FOUND
I:\virus\test/xy.exe: PUA.Packed.UPack-3 FOUND
I:\virus\test/~Fa93.tmp: Broken.Executable FOUND
----------- SCAN SUMMARY -----------
Known viruses: 198503
Engine version: 0.92
Scanned directories: 1
Scanned files: 47
Infected files: 31
Data scanned: 4.80 MB
Time: 9.109 sec (0 m 9 s)

显示全部楼层 · 发表于 2008-1-29 17:13:11

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： RootKit.Win32.Mnless.fq
病毒： Trojan.PSW.Win32.GameOL.lrt
病毒： Trojan.PSW.Win32.GameOL.lrr
病毒： Trojan.PSW.Win32.GameOL.lqx
病毒： Trojan.PSW.Win32.XYOnline.abc
病毒： Trojan.PSW.Win32.QQHX.tvu
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.GamesOnline.lb
病毒： Trojan.PSW.Win32.QQGame.bq
病毒： Trojan.Win32.Undef.bfe
病毒： Worm.Win32.PaBug.GEN
病毒： Trojan.Spy.Agent.cro
病毒： Backdoor.Jusi.ao
病毒： Trojan.Win32.Undef.bzj

用户来源：互联网

软件版本：20.29.10

显示全部楼层 · 发表于 2008-1-29 17:43:15

26
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nmc File: E:\Ñù±¾\new1\msepion.sys
detected: Trojan program Trojan-PSW.Win32.OnLineGames.psa File: E:\Ñù±¾\new1\cs.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.psa File: E:\Ñù±¾\new1\IGB_CQSJ_1023.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pou File: E:\Ñù±¾\new1\pt.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pou File: E:\Ñù±¾\new1\QAA_XPTYJ_1007.exe//PE_Patch//UPack
detected: Trojan program Trojan-Downloader.Win32.Agent.hrl File: E:\Ñù±¾\new1\1.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pmi File: E:\Ñù±¾\new1\xhqq.dll//UPack//#
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prw File: E:\Ñù±¾\new1\ijiq.dll//UPack//#
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pml File: E:\Ñù±¾\new1\uyom.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pmi File: E:\Ñù±¾\new1\hx.exe//PE_Patch//UPack//#
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pry File: E:\Ñù±¾\new1\qj.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\Ñù±¾\new1\my.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nmc File: E:\Ñù±¾\new1\auhad.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.psy File: E:\Ñù±¾\new1\nauhgnem.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nmc File: E:\Ñù±¾\new1\xy.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\Ñù±¾\new1\mh.exe//PE_Patch//UPack
detected: Trojan program Trojan-Downloader.Win32.Agent.gbh File: E:\Ñù±¾\new1\csrss.exe//PE_Patch.PECompact//PecBundle//PECompact
detected: Trojan program Trojan-PSW.Win32.QQPass.asz File: E:\Ñù±¾\new1\qq.exe//UPX
detected: Trojan program Trojan-PSW.Win32.QQPass.ata File: E:\Ñù±¾\new1\Wn_Sys8x.Sys
detected: Trojan program Trojan-Spy.Win32.Agent.qd File: E:\Ñù±¾\new1\iexplore.exe
detected: Trojan program Backdoor.Win32.Vipdataend.en File: E:\Ñù±¾\new1\Rpcs.dll
detected: virus Heur.Trojan.Generic (modification) File: E:\Ñù±¾\new1\11.exe
detected: virus Heur.Trojan.Generic (modification) File: E:\Ñù±¾\new1\Rpcs.exe
detected: virus Heur.Trojan.Generic (modification) File: E:\Ñù±¾\new1\5.exe//data.rar/11.exe
detected: virus Packed.Win32.Klone.af File: E:\Ñù±¾\new1\SVCHOST.exe
detected: Trojan program Trojan-Downloader.Win32.Agent.hqv File: E:\Ñù±¾\new1\puid.sys

显示全部楼层 · 发表于 2008-1-29 17:47:40

D:\system32.part1.rar
  [0] Archive type: RAR
  --> QAA_XPTYJ_1007.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> msepion.sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> cs.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.11857
  --> IGB_CQSJ_1023.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.11857
  --> ~Fa93.tmp
   [DETECTION] Contains suspicious code HEUR/Malware
  --> pt.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> QAA_XPTYJ_1007.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> 1.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> xhqq.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> ijiq.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> uyom.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> tllt.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> tl.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> wd.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> hx.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> qj.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> my.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> auhad.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> nauhgnem.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> xy.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> mh.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> csrss.exe
   [DETECTION] Is the Trojan horse TR/Downloader.Gen
  --> wddw.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> qq.exe
   [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.26
  --> Wn_Sys8x.Sys
   [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.26
  --> iexplore.exe
   [DETECTION] Is the Trojan horse TR/Spy.Agent.QD.1
  --> PasswordDLL.dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/DropSpam.Q
  --> oesrv.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/DropSpam.A.2
  --> Rpcs.dll
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> oehk.dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/DropSpam.P
  --> 11.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> Rpcs.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> eww.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/DropSpam.A.3
--> 5.exe
   [1] Archive type: RAR SFX (self extracting)
   --> 11.exe
      [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen

   46 Files were scanned
   27 viruses and/or unwanted programs were found
   7 Files were classified as suspicious:

显示全部楼层 · 发表于 2008-1-29 17:53:02

2008-1-29 17:49:37 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\msepion.sys PWS-Mmorpg.gen (Trojan)
2008-1-29 17:49:38 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\cs.exe New Malware.aj (Trojan)
2008-1-29 17:49:38 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\IGB_CQSJ_1023.exe New Malware.aj (Trojan)
2008-1-29 17:49:38 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\pt.exe New Malware.aj (Trojan)
2008-1-29 17:49:38 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\QAA_XPTYJ_1007.exe New Malware.aj (Trojan)
2008-1-29 17:49:38 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\1.exe New Malware.aj (Trojan)
2008-1-29 17:49:51 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\xhqq.dll PWS-OnlineGames.r (Trojan)
2008-1-29 17:49:51 Not scanned (scan timed out) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\xhqq.dll (Virus)
2008-1-29 17:49:57 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\ijiq.dll PWS-OnlineGames.r (Trojan)
2008-1-29 17:50:03 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\uyom.dll PWS-OnlineGames.r (Trojan)
2008-1-29 17:50:07 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\tllt.dll PWS-OnlineGames.ae (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\tl.exe New Malware.n (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\wd.exe New Malware.n (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\hx.exe New Malware.aj (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\qj.exe New Malware.aj (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\my.exe New Malware.aj (Trojan)
2008-1-29 17:50:10 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\auhad.dll PWS-Mmorpg.gen (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\xy.exe New Malware.aj (Trojan)
2008-1-29 17:50:10 Moved (Clean failed because the file isn't cleanable) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\mh.exe New Malware.aj (Trojan)
2008-1-29 17:50:10 Moved (Clean failed) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\knlps.exe ProcKill-KnlKillP (Potentially Unwanted Program)
2008-1-29 17:50:10 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\csrss.exe Generic Downloader.j (Trojan)
2008-1-29 17:50:12 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\wddw.dll PWS-LegMir.dll (Trojan)
2008-1-29 17:50:14 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\qq.exe PWS-QQGame (Trojan)
2008-1-29 17:50:14 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\Wn_Sys8x.Sys PWS-QQGame (Trojan)
2008-1-29 17:50:14 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\iexplore.exe Spy-Agent.cd (Trojan)
2008-1-29 17:50:16 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\Rpcs.dll Generic PWS.b (Trojan)
2008-1-29 17:50:22 Deleted WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\SVCHOST.exe BackDoor-AWQ (Trojan)
2008-1-29 17:50:22 Moved (Clean failed) WHUT-D9193C067E\gho WinRAR.exe C:\Documents and Settings\gho\桌面\新建文件夹\knlps.sys ProcKill-KnlKillP (Potentially Unwanted Program)

显示全部楼层 · 发表于 2008-1-29 18:03:37

AVAST 31个
大蜘蛛 16个。。。。

[病毒样本] 47个

本帖子中包含更多资源

浏览过的版块