HIPS区一包　红伞84

显示全部楼层 · 发表于 2008-2-5 12:00:54

HIPS区一包　红伞84

解包后将文件后缀名改为RAR就可

显示全部楼层 · 发表于 2008-2-5 12:02:44

信息 2008-02-05  12:02:28 您此次查毒共查出71个病毒以及危险代码
信息 2008-02-05  12:02:28 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件189个
信息 2008-02-05  12:02:28 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

显示全部楼层 · 发表于 2008-2-5 12:04:46

Starting the file scan:

Begin scan in 'E:\DefaultBox.rar'
E:\DefaultBox.rar
  [0] Archive type: RAR
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa7[1].exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa18[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.2
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa2[1].exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa8[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjj
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa20[1].exe
   [DETECTION] Is the Trojan horse TR/WuDisable.B
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa3[1].exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa9[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.6
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa21[1].exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa4[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.1
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa13[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qlc
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa25[1].exe
   [DETECTION] Contains suspicious code HEUR/Crypted
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa5[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.292
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa14[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.8
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa6[1].exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa16[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ozu.8
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa10[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjk
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa22[1].exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.12343
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa11[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.4
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa23[1].exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\K12J0L63\aa12[1].exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\K12J0L63\aa24[1].exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\G1KT25C1\aa15[1].exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\WD6RO1EF\aa17[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.300
  --> DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\O9A3WTUJ\aa19[1].exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.12211
  --> DefaultBox\user\current\Local Settings\Temp\tmp9.tmp
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.1
  --> DefaultBox\user\current\Local Settings\Temp\tmpC.tmp
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.6
  --> DefaultBox\user\current\Local Settings\Temp\tmpF.tmp
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.4
  --> DefaultBox\user\current\Local Settings\Temp\tmp12.tmp
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.8
  --> DefaultBox\user\current\Local Settings\Temp\tmp15.tmp
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.2
  --> DefaultBox\drive\C\WINDOWS\system32\2.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\cuhad.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\3.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\4.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.1
  --> DefaultBox\drive\C\WINDOWS\system32\hjxr.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.1
  --> DefaultBox\drive\C\WINDOWS\system32\5.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.292
  --> DefaultBox\drive\C\WINDOWS\system32\WSockDrv32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.299
  --> DefaultBox\drive\C\WINDOWS\system32\upxdnd.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.292
  --> DefaultBox\drive\C\WINDOWS\system32\dlufntywow.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\HHHCompress.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\8.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjj
  --> DefaultBox\drive\C\WINDOWS\system32\wenwnsyzx.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\mshxxbb32.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\9.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.6
  --> DefaultBox\drive\C\WINDOWS\system32\10.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjk
  --> DefaultBox\drive\C\WINDOWS\system32\3auhad.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.6
  --> DefaultBox\drive\C\WINDOWS\system32\msepion.sys
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\11.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.4
  --> DefaultBox\drive\C\WINDOWS\system32\gnolnait.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prw.4
  --> DefaultBox\drive\C\WINDOWS\system32\ahpyqvbdj.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\mswwwdj32.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\13.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qlc
  --> DefaultBox\drive\C\WINDOWS\system32\JAA-JAA-1032.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qld
  --> DefaultBox\drive\C\WINDOWS\system32\LotusHlp.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjk
  --> DefaultBox\drive\C\WINDOWS\system32\14.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.8
  --> DefaultBox\drive\C\WINDOWS\system32\niluw.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.Qha.8
  --> DefaultBox\drive\C\WINDOWS\system32\qyhqhnswm.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\mswmkkk32.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\16.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ozu.8
  --> DefaultBox\drive\C\WINDOWS\system32\17.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.300
  --> DefaultBox\drive\C\WINDOWS\system32\18.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.2
  --> DefaultBox\drive\C\WINDOWS\system32\19.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.12211
  --> DefaultBox\drive\C\WINDOWS\system32\lnaixnauhqq.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.QIV.2
  --> DefaultBox\drive\C\WINDOWS\system32\20.exe
   [DETECTION] Is the Trojan horse TR/WuDisable.B
  --> DefaultBox\drive\C\WINDOWS\system32\RAA_RAA_1002.dll
   [DETECTION] Is the Trojan horse TR/Agent.7339
  --> DefaultBox\drive\C\WINDOWS\system32\22.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agent.12343
  --> DefaultBox\drive\C\WINDOWS\system32\syiskpvqj.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\msqjmmm32.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\QAB_QAB_1011.dll
   [DETECTION] Is the Trojan horse TR/Agent.7447
  --> DefaultBox\drive\C\WINDOWS\system32\24.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\eluewcizyzj.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\mstfhncn32.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\25.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
  --> DefaultBox\drive\C\WINDOWS\system32\wyrsdj.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> DefaultBox\drive\C\WINDOWS\system32\PTSShell.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ozu.8
  --> DefaultBox\drive\C\WINDOWS\system32\SHAProc.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.300
  --> DefaultBox\drive\C\WINDOWS\WSockDrv32.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> DefaultBox\drive\C\WINDOWS\upxdnd.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.292
  --> DefaultBox\drive\C\WINDOWS\nucwxhami.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjj
  --> DefaultBox\drive\C\WINDOWS\rujfeobq.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjj
  --> DefaultBox\drive\C\WINDOWS\irtuxjpf.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qji
  --> DefaultBox\drive\C\WINDOWS\LotusHlp.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.qjk
  --> DefaultBox\drive\C\WINDOWS\Fonts\gjcsdzc.exe
   [DETECTION] Is the Trojan horse TR/WuDisable.B
  --> DefaultBox\drive\C\WINDOWS\Fonts\gjcsdyc.dll
   [DETECTION] Is the Trojan horse TR/WuDisable.B
  --> DefaultBox\drive\C\WINDOWS\PTSShell.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ozu.8
  --> DefaultBox\drive\C\WINDOWS\SHAProc.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NSR.300
  --> DefaultBox\drive\C\caca76450c340569.bat
   [DETECTION] Contains detection pattern of the batch virus BAT/Small.171
   [WARNING] The file was ignored!

End of the scan: 2008年2月5日  12:05
Used time: 00:30 min

The scan has been done completely.

   0 Scanning directories
105 Files were scanned
   84 viruses and/or unwanted programs were found
   2 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   21 Files not concerned
   1 Archives were scanned
   1 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-2-5 12:07:55

红伞微点狂报一通还有广告，好久没扫毒包了

显示全部楼层 · 发表于 2008-2-5 12:10:53

84  还有两个

看来我的库老了，只有两个未杀

Hello,

17.exek, aa17[1].exek, SHAProc.exek - Trojan-PSW.Win32.OnLineGames.qnb,
24.exek, aa24[1].exek - Trojan-PSW.Win32.OnLineGames.qnd,
3.exek, aa3[1].exek, WSockDrv32.exek - Trojan-PSW.Win32.OnLineGames.qnc,
aa12[1].exek, mswwwdj32.dll - Trojan-PSW.Win32.OnLineGames.qna,
ahpyqvbdj.dll - Trojan-PSW.Win32.Nilage.bza,
dlufntywow.dll - Trojan-PSW.Win32.Nilage.bzc,
SHAProc.dll - Trojan-PSW.Win32.OnLineGames.qnf,
WSockDrv32.dll - Trojan-PSW.Win32.OnLineGames.qne

These files are already detected. Please update your antivirus bases.

3auhad.cfg, caca76450c340569.batk, cuhad.cfg, DFD353147.batk, joerrueq.dat, niluw.cfg, nucwxhami.exe.hiv, verclsid.exek, WIN.INI

No malicious code were found in these files.

cuhad.dll - Trojan-PSW.Win32.OnLineGames.qnv,
wyrsdj.dll - Trojan.Win32.Agent.ewi

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Vladimir Krylov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

detected: Trojan program Trojan-PSW.Win32.Nilage.byy       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa7[1].exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa18[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa2[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjj       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa8[1].exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oee       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa20[1].exe//UPack
detected: virus Heur.Trojan.Generic (modification)       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa3[1].exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa9[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.WOW.ale       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa21[1].exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa4[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qlc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa13[1].exe//PE_Patch//UPack
detected: Trojan program Trojan.Win32.Agent.evc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa25[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qfw       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa5[1].exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa14[1].exe//PE_Patch//UPack
detected: Trojan program Trojan.Win32.Pakes.bzp       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa6[1].exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ozu       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa16[1].exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa10[1].exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qhd       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa22[1].exe//PE_Patch//UPack//data0000.bin//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvm       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa11[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.WOW.ald       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa23[1].exe//PE_Patch.UPX//UPX
detected: virus Heur.Invader (modification)       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\K12J0L63\aa12[1].exe//PE_Patch.UPX
detected: Trojan program Trojan-PSW.Win32.Nilage.byx       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\G1KT25C1\aa15[1].exe//PE_Patch.UPX//UPX
detected: virus Heur.Trojan.Generic       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\WD6RO1EF\aa17[1].exe//UPack
detected: Trojan program Trojan-Dropper.Win32.Agent.ebc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\O9A3WTUJ\aa19[1].exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temp\tmp6.tmp
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qha       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temp\tmp9.tmp
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qha       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temp\tmpC.tmp
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prw       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temp\tmpF.tmp
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qha       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temp\tmp12.tmp
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\user\current\Local Settings\Temp\tmp15.tmp
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\2.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\cuhad.dll//UPack//#
detected: virus Heur.Trojan.Generic (modification)       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\3.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\4.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qmm       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\hjxr.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qfw       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\5.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qmk       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\upxdnd.dll
detected: Trojan program Trojan.Win32.Pakes.bzp       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\HHHCompress.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjj       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\8.exe//UPack
detected: Trojan program Trojan-PSW.Win32.Nilage.byy       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\wenwnsyzx.dll//UPack//PE_Patch.MaskPE
detected: Trojan program Trojan-PSW.Win32.Nilage.byy       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\mshxxbb32.dll//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\9.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\10.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qdj       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\3auhad.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qcm       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\msepion.sys
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvm       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\11.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qij       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\gnolnait.dll//UPack
detected: virus Heur.Invader (modification)       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\mswwwdj32.dll//PE_Patch.UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qlc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\13.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qld       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\JAA-JAA-1032.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjk       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\LotusHlp.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pzl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\14.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qml       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\niluw.dll//UPack
detected: Trojan program Trojan-PSW.Win32.Nilage.byp       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\qyhqhnswm.dll//UPack//PE_Patch.MaskPE
detected: Trojan program Trojan-PSW.Win32.Nilage.byx       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\mswmkkk32.dll//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ozu       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\16.exe//UPack
detected: virus Heur.Trojan.Generic       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\17.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\18.exe//PE_Patch//UPack
detected: Trojan program Trojan-Dropper.Win32.Agent.ebc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\19.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qiv       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\lnaixnauhqq.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oee       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\20.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qge       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\RAA_RAA_1002.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qhd       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\22.exe//PE_Patch//UPack//data0000.bin//UPack
detected: Trojan program Trojan-PSW.Win32.WOW.ale       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\syiskpvqj.dll//UPack//PE_Patch.MaskPE
detected: Trojan program Trojan-PSW.Win32.WOW.ale       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\msqjmmm32.dll//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qhd       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\QAB_QAB_1011.dll//UPack
detected: Trojan program Trojan-PSW.Win32.WOW.alc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\eluewcizyzj.dll//UPack//PE_Patch.MaskPE
detected: Trojan program Trojan-PSW.Win32.WOW.ald       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\mstfhncn32.dll//PE_Patch.UPX//UPX
detected: Trojan program Trojan.Win32.Agent.evc       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\25.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ozu       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\system32\PTSShell.dll
detected: virus Heur.Trojan.Generic (modification)       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\WSockDrv32.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qfw       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\upxdnd.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjj       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\nucwxhami.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjj       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\rujfeobq.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qji       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\irtuxjpf.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qjl       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\LotusHlp.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oee       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\Fonts\gjcsdzc.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oec       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\Fonts\gjcsdyc.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ozu       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\PTSShell.exe//UPack
detected: virus Heur.Trojan.Generic       File: C:\Documents and Settings\Owner\×ÀÃæ\DefaultBox.raa/DefaultBox\drive\C\WINDOWS\SHAProc.exe//UPack

[ 本帖最后由 wangjay1980 于 2008-2-5 13:18 编辑 ]

显示全部楼层 · 发表于 2008-2-5 12:21:57

avast 30.................

显示全部楼层 · 发表于 2008-2-5 12:35:17

蜘蛛 70
ESET 84：
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa7[1].exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa18[1].exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa2[1].exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa8[1].exe - a variant of Win32/PSW.OnLineGames.NLY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa20[1].exe - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa3[1].exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa9[1].exe - Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa21[1].exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa4[1].exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa13[1].exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa25[1].exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa5[1].exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa14[1].exe - Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa6[1].exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa16[1].exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa10[1].exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa22[1].exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa11[1].exe - Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa23[1].exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\K12J0L63\aa12[1].exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\G1KT25C1\aa15[1].exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\WD6RO1EF\aa17[1].exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\O9A3WTUJ\aa19[1].exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temp\tmp6.tmp - Win32/PSW.OnLineGames.NME trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temp\tmp9.tmp - Win32/PSW.OnLineGames.NME trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temp\tmpC.tmp - Win32/PSW.OnLineGames.NME trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temp\tmpF.tmp - Win32/PSW.OnLineGames.NME trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temp\tmp12.tmp - Win32/PSW.OnLineGames.NME trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\user\current\Local Settings\Temp\tmp15.tmp - Win32/PSW.OnLineGames.NME trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\2.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\cuhad.dll - a variant of Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\3.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\4.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\hjxr.dll - probably a variant of Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\5.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\WSockDrv32.dll - a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\upxdnd.dll - probably a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\dlufntywow.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\HHHCompress.dll - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\8.exe - a variant of Win32/PSW.OnLineGames.NLY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\wenwnsyzx.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\mshxxbb32.dll - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\9.exe - Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\10.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\3auhad.dll - Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\msepion.sys - Win32/PSW.OnLineGames.NFC trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\11.exe - Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\gnolnait.dll - Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\ahpyqvbdj.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\mswwwdj32.dll - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\13.exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\JAA-JAA-1032.dll - probably a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\LotusHlp.dll - a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\14.exe - Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\niluw.dll - Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\qyhqhnswm.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\mswmkkk32.dll - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\16.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\17.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\18.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\19.exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\lnaixnauhqq.dll - a variant of Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\20.exe - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\RAA_RAA_1002.dll - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\22.exe - a variant of Win32/PSW.OnLineGames.PBQ trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\syiskpvqj.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\msqjmmm32.dll - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\QAB_QAB_1011.dll - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\eluewcizyzj.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\mstfhncn32.dll - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\25.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\wyrsdj.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\PTSShell.dll - Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\system32\SHAProc.dll - a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\WSockDrv32.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\upxdnd.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\nucwxhami.exe - a variant of Win32/PSW.OnLineGames.NLY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\rujfeobq.exe - a variant of Win32/PSW.OnLineGames.NLY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\irtuxjpf.dll - a variant of Win32/PSW.OnLineGames.NLY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\LotusHlp.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\Fonts\gjcsdzc.exe - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\Fonts\gjcsdyc.dll - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\PTSShell.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\GUNDAM\桌面\DefaultBox\DefaultBox.rar » RAR » DefaultBox\drive\C\WINDOWS\SHAProc.exe - a variant of Win32/PSW.OnLineGames.NFL trojan

显示全部楼层 · 发表于 2008-2-5 12:39:30

MicroVita AntiSpyware
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa7[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:32256  MD5:1fa766041a1b5fc28a0ee8e6fb703947

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W5MJ4PUN\aa18[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18220  MD5:6ed276e13dad7201a0f32065cccc0830

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa2[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:23428  MD5:1b73f1c6c048279078ab15bf9379f53e

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa8[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:9739  MD5:f2b6e1033e02139cfabca98a8d233a17

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\HHRV2WE9\aa20[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:15585  MD5:b5531fe39891a379b57e851ad6486d79

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa3[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19330  MD5:26b53db0116e6a302a6a04bb1f9fb99f

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa9[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:22664  MD5:e788b4f4664c71d561985780cd186de5

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LXCM7J9P\aa21[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:32256  MD5:c6f582e64a58234ebff21b5467bece1c

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa4[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:23232  MD5:33578fb78062cf19a9e7785be71f8cbb

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa13[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:11638  MD5:dbaaaeba72422423a461f732b7e5ebcd

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\W3EBC1KL\aa25[1].exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:18086  MD5:a572562a5180e9f66e804e3415cb263a

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa5[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17853  MD5:d0e3cddff2d7f3a911d9184dd3410aa4

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\UP2V8TSR\aa14[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18408  MD5:bde0330bb23809241ae82616786b5b94

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa6[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.FSG.A
文件信息:  大小:33261  MD5:a5d645e3596793588bb665c2df2f63a5

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\8XYJWHAB\aa16[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:18251  MD5:a999067cd0d182a3e7fa71c2f56e2c11

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa10[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17495  MD5:d36b1b014adeec43e9b6bb8f79e0b64b

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\LP5QR3XU\aa22[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:12335  MD5:616b5399524974f684b251a1e1cba288

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa11[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:18600  MD5:46a55f4dc70c6796053e01ac6be7c273

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\YG9J72PB\aa23[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:30720  MD5:e8dd7540ad58a2ebaf5b646cfadb41e3

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\K12J0L63\aa12[1].exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:32256  MD5:2b0fd0db40d281ac47f62106a0c7ed98

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\K12J0L63\aa24[1].exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:30984  MD5:516247564185f0ad6240864478658e90

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\G1KT25C1\aa15[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:31744  MD5:3549aed8d70a5367370294c338350c54

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\WD6RO1EF\aa17[1].exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18544  MD5:bf18618040c238b1d346721cee93a760

[F:\DefaultBox\DefaultBox\user\current\Local Settings\Temporary Internet Files\Content.IE5\O9A3WTUJ\aa19[1].exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:12211  MD5:39397e5c14b366ac66bfc8f4931feac9

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\WSockDrv32.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19330  MD5:26b53db0116e6a302a6a04bb1f9fb99f

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\upxdnd.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17853  MD5:d0e3cddff2d7f3a911d9184dd3410aa4

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\nucwxhami.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:9739  MD5:f2b6e1033e02139cfabca98a8d233a17

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\rujfeobq.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:9739  MD5:f2b6e1033e02139cfabca98a8d233a17

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\LotusHlp.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17495  MD5:d36b1b014adeec43e9b6bb8f79e0b64b

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\PTSShell.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:18251  MD5:a999067cd0d182a3e7fa71c2f56e2c11

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\SHAProc.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18544  MD5:bf18618040c238b1d346721cee93a760

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\2.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:23428  MD5:1b73f1c6c048279078ab15bf9379f53e

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\3.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19330  MD5:26b53db0116e6a302a6a04bb1f9fb99f

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\4.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:23232  MD5:33578fb78062cf19a9e7785be71f8cbb

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\5.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17853  MD5:d0e3cddff2d7f3a911d9184dd3410aa4

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\8.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:9739  MD5:f2b6e1033e02139cfabca98a8d233a17

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\9.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:22664  MD5:e788b4f4664c71d561985780cd186de5

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\10.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17495  MD5:d36b1b014adeec43e9b6bb8f79e0b64b

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\11.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing[5] 下载者
文件信息:  大小:18600  MD5:46a55f4dc70c6796053e01ac6be7c273

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\13.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:11638  MD5:dbaaaeba72422423a461f732b7e5ebcd

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\14.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18408  MD5:bde0330bb23809241ae82616786b5b94

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\16.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:18251  MD5:a999067cd0d182a3e7fa71c2f56e2c11

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\17.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18544  MD5:bf18618040c238b1d346721cee93a760

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\18.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18220  MD5:6ed276e13dad7201a0f32065cccc0830

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\19.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:12211  MD5:39397e5c14b366ac66bfc8f4931feac9

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\20.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:15585  MD5:b5531fe39891a379b57e851ad6486d79

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\22.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing[5] 下载者
文件信息:  大小:12335  MD5:616b5399524974f684b251a1e1cba288

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\24.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:30984  MD5:516247564185f0ad6240864478658e90

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\25.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:18086  MD5:a572562a5180e9f66e804e3415cb263a

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\Fonts\gjcsdzc.exe]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:15585  MD5:b5531fe39891a379b57e851ad6486d79

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\irtuxjpf.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:6270  MD5:82cd1d1a66d207650010bd0cdbf28610

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\cuhad.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19879  MD5:87f6847359ef3913cc881d8fa7a97715

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\hjxr.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19716  MD5:a0d30eb027cfadb269b451381c135540

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\upxdnd.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX
文件信息:  大小:29696  MD5:73984bab9993f59e1b07c1a1fdb2ec5b

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\dlufntywow.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:21526  MD5:d6dd7bb62de078040652479b94c3a394

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\HHHCompress.dll]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.FSG.A
文件信息:  大小:33261  MD5:a5d645e3596793588bb665c2df2f63a5

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\wenwnsyzx.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19713  MD5:ceff1f80115449727f5a9119ccf86f11

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\mshxxbb32.dll]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:32256  MD5:1fa766041a1b5fc28a0ee8e6fb703947

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\3auhad.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19144  MD5:786bf6b1b04df7861901e70b2a253cd5

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\gnolnait.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15169  MD5:bd72043264cbb1035352587b8f8c0a10

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\ahpyqvbdj.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19798  MD5:1c163d363d73f1b2ac5ad4131cb1e432

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\mswwwdj32.dll]
                  …………发现Spy！报告:[2]
文件信息:  大小:32256  MD5:2b0fd0db40d281ac47f62106a0c7ed98

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\JAA-JAA-1032.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:6758  MD5:5ab426113a666276a2d9659b5f5dfc82

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\LotusHlp.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX
文件信息:  大小:29184  MD5:f63e3ecdcb50b0dc749260d52dc46716

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\niluw.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14890  MD5:f7ea78642364d74c7cfc4dc8c532456e

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\qyhqhnswm.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19489  MD5:72fee5620cc3090946cf472975cb1abb

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\mswmkkk32.dll]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:31744  MD5:3549aed8d70a5367370294c338350c54

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\lnaixnauhqq.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14701  MD5:cff7db411e7cb13a689761e402521ea6

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\RAA_RAA_1002.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:7339  MD5:89d7d1c13db1928393b2926f7e24cd5f

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\syiskpvqj.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:20026  MD5:2e97b4b022db75e214503b7d259afd04

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\msqjmmm32.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:32256  MD5:c6f582e64a58234ebff21b5467bece1c

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\QAB_QAB_1011.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:7447  MD5:feaab511c8618042921a82ab9e9457e8

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\eluewcizyzj.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18662  MD5:9db3629d7351592a450432c6ab9edb85

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\mstfhncn32.dll]
                  …………发现Spy！报告:[2] [1] Win32.F/S.ByDwing
文件信息:  大小:30720  MD5:e8dd7540ad58a2ebaf5b646cfadb41e3

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\wyrsdj.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:157091  MD5:05c6676aa10a5b94d0b340d1f6cb74df

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\PTSShell.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX
文件信息:  大小:30208  MD5:2c6b917d38a116fe045935924ce3d60f

[F:\DefaultBox\DefaultBox\drive\C\WINDOWS\system32\SHAProc.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX
文件信息:  大小:30208  MD5:54f752c6df597dd486283089e5b062af

文件数:80 病毒数:77  比重:0.9625
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

显示全部楼层 · 发表于 2008-2-5 12:49:22

原帖由 spaceplane 于 2008-2-5 12:21 发表
avast 30.................

你确定有30么 ? 实际只有22.

显示全部楼层 · 发表于 2008-2-5 12:51:47

原帖由 hj5abc 于 2008-2-5 12:49 发表

你确定有30么 ? 实际只有22.

不忍心去重复了

[病毒样本] HIPS区一包　红伞84

本帖子中包含更多资源

86

[病毒样本] HIPS区一包 红伞84

本帖子中包含更多资源

86

[病毒样本] HIPS区一包　红伞84