21个--------------

显示全部楼层 · 发表于 2008-3-3 02:09:31

费尔

Date,Virus Name,Virus Type,User,Filename,Scan Type
2008-3-3 2:07:05,Trojan.Tiny.e.sbt,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_3435.exe.exe,Manual scan
2008-3-3 2:06:54,Trojan.Tiny.e.sbt,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_3~1.EXE,Manual scan
2008-3-3 2:06:51,Trojan.Agent.wya.adk,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_965.exe.exe>>emb-1.exe,Manual scan
2008-3-3 2:06:51,Heuri.Suspicious.ERNM,启发式扫描,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_921.exe.exe,Manual scan
2008-3-3 2:06:51,TrojanPSW.GamePass.aawb.sagx,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_609.exe,Manual scan
2008-3-3 2:06:51,TrojanDownloader.BDH.favd,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_598.exe.exe,Manual scan
2008-3-3 2:06:51,Trojan.Xbagyt.sdyp,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_404.exe.exe,Manual scan
2008-3-3 2:06:51,Trojan.Tiny.e.sbt,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_3435.exe.exe,Manual scan
2008-3-3 2:06:51,TrojanDownloader.Agent.xke.pxrn,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_2994.exe.exe,Manual scan
2008-3-3 2:06:51,RootKit.PsHide.b.igan,木马,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_1684.exe.exe,Manual scan
2008-3-3 2:06:51,Adware.Agent.zo.zvlg.dll,广告程序,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_1509.exe.exe,Manual scan
2008-3-3 2:06:51,Backdoor.Small.hap.rudm,后门,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_1291.exe.exe,Manual scan
2008-3-3 2:06:51,Heuri.Suspicious.ERNM,启发式扫描,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%#^&_1259.exe.exe,Manual scan
2008-3-3 2:06:51,Backdoor.Small.hap.rudm,后门,Raymond,C:\Documents and Settings\Raymond\桌面\21(2).zip>>21\%

卡巴

扫描 : 已完成
-------------
已扫描： 37
检测到： 15
未处理： 1
开始时间： 2008-3-3 2:06:16
运行时间： 00:00:06
完成时间： 2008-3-3 2:06:22

检测到
------
状态对象
---- ----
已删除：木马程序 Trojan-Downloader.Win32.Small.irp 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1066.exe.exe
已删除：木马程序 Backdoor.Win32.Poison.abo 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1125.exe.exe
已隔离：病毒 Heur.Invader (修改) 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1199.exe.exe
已删除：木马程序 Trojan-Downloader.Win32.Injecter.ha 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1245.exe.exe
检测到：木马程序 Trojan-Spy.Win32.Iespy.jf 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1259.exe.exe//FSG//#//PE_Patch.UPX//UPX
已删除：木马程序 Backdoor.Win32.Poison.abm 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1291.exe.exe
已删除：广告程序 not-a-virus:AdWare.Win32.Agent.zo 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1509.exe.exe//PE_Patch.UPX//UPX
已删除：木马程序 Trojan.BAT.Shutdown.ax 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1654.exe.exe
已删除：广告程序 not-a-virus:AdWare.Win32.Agent.br 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1684.exe.exe
已删除：风险软件 not-a-virus:RiskTool.Win32.Kerberos.a 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1690.exe.exe
已删除：木马程序 Trojan.Win32.Tiny.e 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_3435.exe.exe
已隔离：病毒 Heur.Invader (修改) 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_404.exe.exe
已删除：木马程序 Trojan-Downloader.Win32.Small.ipr 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_598.exe.exe
已隔离：病毒 Heur.Trojan.Generic (修改) 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_921.exe.exe//FSG
已删除：木马程序 Trojan-Proxy.Win32.Agent.ji 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_965.exe.exe//#

事件
----
时间名称状态原因
---- ---- ---- ----
2008-3-3 2:06:16 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1066.exe.exe 检测到木马程序 'Trojan-Downloader.Win32.Small.irp'
2008-3-3 2:06:16 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1066.exe.exe 已删除
2008-3-3 2:06:16 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1125.exe.exe 检测到木马程序 'Backdoor.Win32.Poison.abo'
2008-3-3 2:06:16 文件　: C:\Documents and Settings\Raymond\桌面\21.zip/21/%#^&_1125.exe.exe 已删除

显示全部楼层 · 发表于 2008-3-3 03:38:35

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\21.zip'
C:\Documents and Settings\Administrator\My Documents\
  21.zip
[0] Archive type: ZIP
--> 21/%#^&_1066.exe.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Apher.Gen.3
--> 21/%#^&_1125.exe.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Poison.abo Backdoor server programs
--> 21/%#^&_1199.exe.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   --> 21/%#^&_1237.exe.exe
      [1] Archive type: Runtime Packed
      --> Object
--> 21/%#^&_1245.exe.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
--> 21/%#^&_1259.exe.exe
      [DETECTION] Contains detection pattern of the dropper DR/Spy.Iespy.B.57
--> 21/%#^&_1291.exe.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Poison.abm Backdoor server programs
   --> 21/%#^&_1509.exe.exe
      [1] Archive type: Runtime Packed
      --> Object
         [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Sert.A
         [WARNING] Infected files in archives cannot be repaired!
--> 21/%#^&_1654.exe.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Shutdown.AX Backdoor server programs
--> 21/%#^&_1684.exe.exe
      [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.1920
--> 21/%#^&_1690.exe.exe
      [DETECTION] Contains detection pattern of the SPR/Tool.Kerberos.A program
--> 21/%#^&_2994.exe.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
--> 21/%#^&_3435.exe.exe
      [DETECTION] Is the Trojan horse TR/Tiny.E.1
--> 21/%#^&_404.exe.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
--> 21/%#^&_524.exe.exe
      [DETECTION] Is the Trojan horse TR/Agent.7225
   --> 21/%#^&_598.exe.exe
      [1] Archive type: Runtime Packed
      --> Object
         [DETECTION] Is the Trojan horse TR/Dldr.Small.DDT.2
         [WARNING] Infected files in archives cannot be repaired!
--> 21/%#^&_609.exe
      [DETECTION] Is the Trojan horse TR/Agent.6144.166
   --> 21/%#^&_641.exe.exe
      [1] Archive type: Runtime Packed
      --> Object
--> 21/%#^&_679.exe.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   --> 21/%#^&_921.exe.exe
      [1] Archive type: Runtime Packed
      --> Object
   --> 21/%#^&_965.exe.exe
      [1] Archive type: OVL
      --> Object
         [DETECTION] Is the Trojan horse TR/Spabot.AA
         [WARNING] Infected files in archives cannot be repaired!
   [WARNING] The file was ignored!
  21.zip:Zone.Identifier

End of the scan: 2008年3月2日  11:38
Used time: 00:04 min

The scan has been done completely.

   0 Scanning directories
   23 Files were scanned
   21 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   2 Files not concerned
   1 Archives were scanned
   4 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-3-3 09:05:24

扫描进行于：2008-3-3 9:04:58
扫描日志
NOD32版本 2914 (20080302) NT
命令行： F:\virus\21.zip

日期： 3.3.2008 时间：09:04:59
已开启反隐藏功能.
已扫描的磁盘，文件夹及文件：F:\virus\21.zip
F:\virus\21.zip >>ZIP >>21/%#^&_1245.exe.exe - Win32/TrojanDownloader.Injecter.HA 木马
F:\virus\21.zip >>ZIP >>21/%#^&_1259.exe.exe - Win32/Spy.Iespy 木马的变种
F:\virus\21.zip >>ZIP >>21/%#^&_1509.exe.exe - Win32/TrojanDownloader.Small.NZN 木马
F:\virus\21.zip >>ZIP >>21/%#^&_1684.exe.exe - 可能是 Win32/Adware.Agent 应用程序的一个变种
F:\virus\21.zip >>ZIP >>21/%#^&_3435.exe.exe - Win32/Tiny.NAB 木马
F:\virus\21.zip >>ZIP >>21/%#^&_404.exe.exe - Win32/Small.NCK 木马
F:\virus\21.zip >>ZIP >>21/%#^&_609.exe - 未查明的 NewHeur_PE 病毒 [7]
F:\virus\21.zip >>ZIP >>21/%#^&_921.exe.exe - 可能是 Win32/TrojanDownloader.Small.DRU 木马的一个变种
F:\virus\21.zip >>ZIP >>21/%#^&_965.exe.exe - 未查明的 NewHeur_PE 病毒 [7]
已扫描的文件数目：21
已发现的病毒数目：9
完成时间： 09:05:01 总扫描时间：2 秒 (00:00:02)

注意：
[7] 该文件可能感染上未知病毒。

显示全部楼层 · 发表于 2008-3-3 09:51:41

显示全部楼层 · 发表于 2008-3-3 09:54:46

C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_1245.exe.exe - Win32/TrojanDownloader.Injecter.HA 特洛伊木马 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_1259.exe.exe - Win32/Spy.Iespy 特洛伊木马的变种 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_1509.exe.exe - Win32/TrojanDownloader.Small.NZN 特洛伊木马 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_1684.exe.exe - 可能是 Win32/Adware.Agent 应用程序的变种 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_3435.exe.exe - Win32/Tiny.NAB 特洛伊木马 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_404.exe.exe - Win32/Small.NCK 特洛伊木马 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_609.exe - 未查明的 NewHeur_PE 病毒 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_921.exe.exe - 可能是 Win32/TrojanDownloader.Small.DRU 特洛伊木马的变种 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip > ZIP > 21/%#^&_965.exe.exe - 未查明的 NewHeur_PE 病毒 - 是已删除对象的一部分
C:\Users\Administrator\Desktop\21.zip - 多个威胁 - 已删除 - 已隔离

显示全部楼层 · 发表于 2008-3-3 11:47:28

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： RootKit.PsHide.b
病毒： Trojan.DL.Agent.ckl
病毒： Trojan.Win32.Small.jbt

用户来源：互联网

软件版本：20.33.62
mcafee9个

显示全部楼层 · 发表于 2008-3-3 16:00:23

X星今天最新的20.34

3个哈哈,搞笑

显示全部楼层 · 发表于 2008-3-3 16:08:27

毒霸2008 14点病毒库2只。

显示全部楼层 · 发表于 2008-3-3 16:19:33

为什么瑞星还没倒闭呢..............

[病毒样本] 21个--------------

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

回复 8楼 maple 的帖子