64 x

kkgh

诺顿26个


瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.Win32.Undef.clz   
病毒： Trojan.Win32.Undef.cju   
病毒： Trojan.Win32.Undef.cju   
病毒： Backdoor.Haxdoor.qe      
病毒： Trojan.Win32.Undef.egb   
病毒： Trojan.Win32.Undef.eea   
病毒： Trojan.Win32.Undef.cju   
病毒： Trojan.Win32.Undef.clz   
病毒： Trojan.Win32.Undef.cju   
病毒： Trojan.Win32.Undef.egb   
病毒： Backdoor.Haxdoor.GEN     
病毒： Trojan.Win32.Undef.eea   
病毒： Trojan.Win32.Undef.egf   
病毒： Trojan.Win32.Undef.egf   
病毒： Backdoor.Win32.PcClient.eah
病毒： Backdoor.Win32.PcClient.eab
病毒： AdWare.Win32.Dodolook.gth
病毒： Trojan.Win32.Undef.cju   
病毒： RootKit.Win32.Mnless.ha  

用户来源：互联网

软件版本：20.37.22

33个

nimble-zx

红伞干掉了52+2个

sam.to

已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Pophot.ale        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\080321.exe2//PE_Patch//UPack
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Cinmus.dsn        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\5.exe2//data0003
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Cinmus.dsn        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\5.exe2//data0004
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Cinmus.dsn        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\acpidisk.sys
已刪除: 特洛伊木馬程式 Backdoor.Win32.PcClient.cez        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\aydrde.SYS
已刪除: 特洛伊木馬程式 Backdoor.Win32.PcClient.cez        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\bquiog.SYS
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Cinmus.dsn        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\DoSSSetup.dll
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.gkk        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\HoneyMain.exe2//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.gkk        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\HoneySys.dat
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Agent.bxh        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\mcdcsrv32_080321.dll
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Agent.bxg        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\mxcdcsrv16_080321.dll
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Pophot.als        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\mycc080324.dll
已刪除: 特洛伊木馬程式 Trojan.Win32.Delf.blo        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\mycc080324.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Pophot.alr        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\mycc32.dll
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.Pophot.ale        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\raidiap080321.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Delf.blo        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\temp2.exe2//PE_Patch//UPack
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Cinmus.dsn        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\TempBA.exe2//data0003
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.Cinmus.dsm        檔案: C:\Documents and Settings\kato9096\桌面\224163\WINDOWS\TempCB.exe2//data0004

NobleT

BLINK2个加起来43个

The EQs

C:\Documents and Settings\Don johnson\桌面\WINDOWS\080321.exe - a variant of Win32/Spy.Delf.NHF trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\5.exe » NSIS » DoSSSetup.dll - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\5.exe » NSIS » acpidisk.sys - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\acpidisk.sys - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\aydrde.dll - Win32/PcClient trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\aydrde.SYS - Win32/PcClient.NBC trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\bquiog.dll - Win32/PcClient trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\bquiog.SYS - Win32/PcClient.NBC trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\d03.exe » NSIS » cpush.dll - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\d03.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\DoSSSetup.dll - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\dxdiags.exe - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\gopen.exe - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\HoneyDll.dll - Win32/TrojanClicker.Agent.NCS trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\HoneyMain.exe - Win32/TrojanClicker.Agent.NCS trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\HoneySys.dat - Win32/TrojanClicker.Agent.NCS trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\IVATE.DLL - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\LCInstall.exe - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\msxl32.dll - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\mxcdcsrv16_080321.dll - a variant of Win32/Spy.Delf.NHF trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\mycc080324.dll - a variant of Win32/Spy.Delf.NHV trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\mycc080324.exe - a variant of Win32/Spy.Delf.NHW trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\mycc32.dll - a variant of Win32/Spy.Delf.NHW trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\pcidevices8.inf - a variant of Win32/TrojanDownloader.QQHelper.ANP trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\pciloader.exe - a variant of Win32/TrojanDownloader.QQHelper.NEZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\portablemsi.dll - Win32/PSW.OnLineGames.WJG trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\QQHook.dll - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\qz.dll - a variant of Win32/Haxdoor trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\qz.sys - a variant of Win32/Haxdoor trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\raidiap080321.exe - a variant of Win32/Spy.Delf.NHF trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\skyx16.dll - a variant of Win32/Haxdoor trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\skyx24.sys - a variant of Win32/Haxdoor trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\tcpip.exe - a variant of Win32/TrojanDropper.Agent.NIY trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\temp1.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\temp2.exe - a variant of Win32/Spy.Delf.NHW trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\temp3.exe - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempAA.exe - a variant of Win32/TrojanDropper.Agent.NIY trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempAD.exe - Win32/PcClient trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempBA.exe » NSIS » 5.exe » NSIS » DoSSSetup.dll - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempBA.exe » NSIS » 5.exe » NSIS » acpidisk.sys - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempCA.exe » NSIS » cpush.dll - Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempCA.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempDA.exe » NSIS » pciloader.exe - a variant of Win32/TrojanDownloader.QQHelper.NEZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempDA.exe » NSIS » d03.exe » NSIS » cpush.dll - a variant of Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempDA.exe » NSIS » d03.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempDB.exe » NSIS » cpush.dll - Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\TempDB.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application
C:\Documents and Settings\Don johnson\桌面\WINDOWS\Windows Fime.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\winso32.sys - Win32/TrojanClicker.Agent.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\WINDOWS\zhqb080327.exe - probably a variant of Win32/Genetik trojan

woai_jolin

Scan Log
Version of virus signature database: 2983 (20080329)
Date: 2008/3/30  Time: 0:59:17
Scanned disks, folders and files: G:\v
G:\v\080321.exe - a variant of Win32/Spy.Delf.NHF trojan - cleaned by deleting - quarantined [1]
G:\v\5.exe » NSIS » Entries.bin - is OK
G:\v\5.exe » NSIS » Strings.txt - is OK
G:\v\5.exe » NSIS » System.dll - is OK
G:\v\5.exe » NSIS » DoSSSetup.dll - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\5.exe » NSIS » acpidisk.sys - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\acpidisk.sys - a variant of Win32/Adware.Cinmus application - cleaned by deleting - quarantined [1]
G:\v\aydrde.dll - Win32/PcClient trojan - cleaned by deleting - quarantined [1]
G:\v\aydrde.SYS - Win32/PcClient.NBC trojan - cleaned by deleting - quarantined [1]
G:\v\bquiog.dll - Win32/PcClient trojan - cleaned by deleting - quarantined [1]
G:\v\bquiog.SYS - Win32/PcClient.NBC trojan - cleaned by deleting - quarantined [1]
G:\v\comsysobj.exe - is OK
G:\v\config.ini - is OK
G:\v\d03.exe » NSIS » Entries.bin - is OK
G:\v\d03.exe » NSIS » Strings.txt - is OK
G:\v\d03.exe » NSIS » cpush.dll - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\d03.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\DoSSSetup.dll - a variant of Win32/Adware.Cinmus application - cleaned by deleting - quarantined [1]
G:\v\dxdiags.exe - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\gopen.exe - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\hllibex.exe - is OK
G:\v\HoneyDll.dll - Win32/TrojanClicker.Agent.NCS trojan - cleaned by deleting - quarantined [1]
G:\v\HoneyMain.exe - Win32/TrojanClicker.Agent.NCS trojan - cleaned by deleting - quarantined [1]
G:\v\HoneySys.dat - Win32/TrojanClicker.Agent.NCS trojan - cleaned by deleting - quarantined [1]
G:\v\iezsms.dat - is OK
G:\v\IVATE.DLL - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\LCInstall.exe - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\mcdcsrv32_080321.dll - is OK
G:\v\mscpx32r.det - is OK
G:\v\msxl32.dll - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\mxcdcsrv16_080321.dll - a variant of Win32/Spy.Delf.NHF trojan - cleaned by deleting - quarantined [1]
G:\v\mycc080324.dll - a variant of Win32/Spy.Delf.NHV trojan - cleaned by deleting - quarantined [1]
G:\v\mycc080324.exe - a variant of Win32/Spy.Delf.NHW trojan - cleaned by deleting - quarantined [1]
G:\v\mycc32.dll - a variant of Win32/Spy.Delf.NHW trojan - cleaned by deleting - quarantined [1]
G:\v\myiecfg.ini.tmp - is OK
G:\v\npf.sys - is OK
G:\v\npptools.dll - is OK
G:\v\pcidevices8.inf - a variant of Win32/TrojanDownloader.QQHelper.ANP trojan - cleaned by deleting - quarantined [1]
G:\v\pciloader.exe - a variant of Win32/TrojanDownloader.QQHelper.NEZ trojan - cleaned by deleting - quarantined [1]
G:\v\portablemsi.dll - Win32/PSW.OnLineGames.WJG trojan - cleaned by deleting - quarantined [1]
G:\v\QQHook.dll - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\qz.dll - a variant of Win32/Haxdoor trojan - cleaned by deleting - quarantined [1]
G:\v\qz.sys - a variant of Win32/Haxdoor trojan - cleaned by deleting - quarantined [1]
G:\v\raidiap080321.exe - a variant of Win32/Spy.Delf.NHF trojan - cleaned by deleting - quarantined [1]
G:\v\registry.pol - is OK
G:\v\shellexcon.exe - is OK
G:\v\skyx16.dll - a variant of Win32/Haxdoor trojan - cleaned by deleting - quarantined [1]
G:\v\skyx24.sys - a variant of Win32/Haxdoor trojan - cleaned by deleting - quarantined [1]
G:\v\SVSH0ST.EXE - is OK
G:\v\sysobjwertb.dll - is OK
G:\v\tcpip.exe - a variant of Win32/TrojanDropper.Agent.NIY trojan - cleaned by deleting - quarantined [1]
G:\v\temp1.exe - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\temp2.exe - a variant of Win32/Spy.Delf.NHW trojan - cleaned by deleting - quarantined [1]
G:\v\temp3.exe - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\TempAA.exe - a variant of Win32/TrojanDropper.Agent.NIY trojan - cleaned by deleting - quarantined [1]
G:\v\TempAB.exe - is OK
G:\v\TempAC.exe - is OK
G:\v\TempAD.exe - Win32/PcClient trojan - cleaned by deleting - quarantined [1]
G:\v\TempBA.exe » NSIS » Entries.bin - is OK
G:\v\TempBA.exe » NSIS » Strings.txt - is OK
G:\v\TempBA.exe » NSIS » System.dll - is OK
G:\v\TempBA.exe » NSIS » 5.exe » NSIS » Entries.bin - is OK
G:\v\TempBA.exe » NSIS » 5.exe » NSIS » Strings.txt - is OK
G:\v\TempBA.exe » NSIS » 5.exe » NSIS » System.dll - is OK
G:\v\TempBA.exe » NSIS » 5.exe » NSIS » DoSSSetup.dll - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempBA.exe » NSIS » 5.exe » NSIS » acpidisk.sys - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempCA.exe » NSIS » Entries.bin - is OK
G:\v\TempCA.exe » NSIS » Strings.txt - is OK
G:\v\TempCA.exe » NSIS » cpush.dll - Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempCA.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempCB.exe » NSIS » Entries.bin - is OK
G:\v\TempCB.exe » NSIS » Strings.txt - is OK
G:\v\TempCB.exe » NSIS » System.dll - is OK
G:\v\TempCB.exe » NSIS » scm.exe - is OK
G:\v\TempCB.exe » NSIS » 2.sys - is OK
G:\v\TempDA.exe » NSIS » Entries.bin - is OK
G:\v\TempDA.exe » NSIS » Strings.txt - is OK
G:\v\TempDA.exe » NSIS » pciloader.exe - a variant of Win32/TrojanDownloader.QQHelper.NEZ trojan - was a part of the deleted object
G:\v\TempDA.exe » NSIS » d03.exe » NSIS » Entries.bin - is OK
G:\v\TempDA.exe » NSIS » d03.exe » NSIS » Strings.txt - is OK
G:\v\TempDA.exe » NSIS » d03.exe » NSIS » cpush.dll - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempDA.exe » NSIS » d03.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempDB.exe » NSIS » Entries.bin - is OK
G:\v\TempDB.exe » NSIS » Strings.txt - is OK
G:\v\TempDB.exe » NSIS » cpush.dll - Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\TempDB.exe » NSIS » Uninst.exe - Win32/Adware.Cinmus application - was a part of the deleted object
G:\v\tromomwin32.exe - is OK
G:\v\win32st.exe - is OK
G:\v\Windows Fime.exe - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\winso32.sys - Win32/TrojanClicker.Agent.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\winstrse.exe - is OK
G:\v\wmstrbum.exe - is OK
G:\v\zhqb080327.exe - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\zhqb32.dll - is OK
G:\v\zhqbdf080327.dll - is OK
Number of scanned objects: 103
Number of threats found: 50
Number of cleaned objects: 50
Time of completion: 1:00:43  Total scanning time: 86 sec (00:01:26)

Notes:
[1] Object has been deleted as it only contained the virus body.

Palkia

病毒： RootKit.Win32.Undef.eb   
病毒： Trojan.Win32.Undef.clz   
病毒： Trojan.Win32.Undef.cju   
病毒： Trojan.Win32.Undef.cju   
病毒： Backdoor.Haxdoor.qe      
病毒： Trojan.Win32.Undef.egb   
病毒： Trojan.Win32.Undef.eea   
病毒： Trojan.Win32.Undef.cju   
病毒： Trojan.Win32.Undef.clz   
病毒： Trojan.Win32.Undef.cju   
病毒： Worm.Win32.DownLoad.gfu  
病毒： Trojan.Win32.Undef.egb   
病毒： Backdoor.Haxdoor.GEN     
病毒： Backdoor.Win32.PcClient.ebb
病毒： Trojan.Win32.Undef.eea   
病毒： Trojan.Win32.Undef.egf   
病毒： Trojan.Win32.Undef.egf   
病毒： Backdoor.Win32.PcClient.eah
病毒： Backdoor.Win32.PcClient.eab
病毒： AdWare.Win32.Dodolook.gth
病毒： Trojan.Win32.Undef.cju   
病毒： RootKit.Win32.Mnless.ha