54 Trojans

显示全部楼层 · 发表于 2008-4-13 22:31:11

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\MD_4_13_A.rar'
C:\Documents and Settings\Administrator\桌面\MD_4_13_A.rar
  [0] Archive type: RAR
  --> 2008-4-13__72231.exe
   [DETECTION] Is the Trojan horse TR/PSW.Nilage.bka
  --> 2008-4-13__28C94.exe
   [DETECTION] Is the Trojan horse TR/Crypt.Morphine.Gen
  --> 2008-4-13__E2FFE.exe
   [DETECTION] Contains detection pattern of the worm WORM/Cekar.A
  --> 2008-4-13__EDDD6.exe
   [DETECTION] Is the Trojan horse TR/Drop.Delf.alm.18
  --> 2008-4-13__3F420.exe
   [DETECTION] Contains detection pattern of the dropper DR/Cinmus.ehb
  --> 2008-4-13__78A85.exe
   [DETECTION] Is the Trojan horse TR/Click.Agent.YT.3
  --> 2008-4-13__5E8C0.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__C750E.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.6
  --> 2008-4-13__1FD9.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__8D749.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__415B0.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__1463E.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ZFE.3
  --> 2008-4-13__B54B4.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__B62EC.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__47227.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__A70A3.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> 2008-4-13__D4B48.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__DCB0D.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__E292F.exe
   [DETECTION] Is the Trojan horse TR/Onlinegames.NVI
  --> 2008-4-13__92F32.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__204A8.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__CCB9B.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__CDBF5.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__EFD69.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.7
  --> 2008-4-13__2C42E.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__342A1.exe
   [DETECTION] Contains detection pattern of the rootkit RKIT/OnLineGames.C.1
  --> 2008-4-13__501EC.exe
   [DETECTION] Contains detection pattern of the worm WORM/Autorun.FF.39
  --> 2008-4-13__4413D.exe
   [DETECTION] Is the Trojan horse TR/PSW.16513
  --> 2008-4-13__9389A.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__BF637.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__C91CC.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__CF631.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__EEC0.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__603F9.exe
   [DETECTION] Is the Trojan horse TR/Click.Delf.MA
  --> 2008-4-13__D38DF.exe
   [DETECTION] Contains detection pattern of the worm WORM/Autorun.cyj
  --> 2008-4-13__34D1A.exe
   [DETECTION] Is the Trojan horse TR/PSW.16513
  --> 2008-4-13__36C5A.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__EBCD0.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.ddn.2
  --> 2008-4-13__2C36D.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.6
  --> 2008-4-13__B881F.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__D04E6.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.ddn.2
  --> 2008-4-13__D5B1F.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__6EDF7.exe
   [DETECTION] Is the Trojan horse TR/PSW.Agent.agm.1
  --> 2008-4-13__37EA2.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__44B59.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__EF0DD.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__457AE.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__919DC.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 2008-4-13__2D962.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2008-4-13__6EE0B.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NVI.7
  --> cunlim.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> 2008-4-13__E7264.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.TL.190
  --> 2008-4-13__533D5.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Thunder
  --> 2008-4-13__897F7.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.BTG.46 Backdoor server programs
   [INFO]    The file was deleted!

End of the scan: 星期日 2008年4月13日  22:30
Used time: 00:11 min

The scan has been done completely.

   0 Scanning directories
   56 Files were scanned
   53 viruses and/or unwanted programs were found
   1 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   3 Files not concerned
   1 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-4-14 11:41:40

卡巴已删除：木马程序 Trojan-PSW.Win32.Nilage.bka 文件: F:\Download\MD_4_13_A.rar/2008-4-13__72231.exe//UPX
已删除：木马程序 Backdoor.Win32.Agent.grj 文件: F:\Download\MD_4_13_A.rar/2008-4-13__28C94.exe//PE_Patch.Morphine//Morphine//Expressor
已删除：病毒 Worm.Win32.AutoRun.dgj 文件: F:\Download\MD_4_13_A.rar/2008-4-13__E2FFE.exe//UPack
已删除：木马程序 Trojan-Dropper.Win32.Delf.alm 文件: F:\Download\MD_4_13_A.rar/2008-4-13__EDDD6.exe//PE_Patch//UPack
已删除：广告程序 not-a-virus:AdWare.Win32.Cinmus.ehb 文件: F:\Download\MD_4_13_A.rar/2008-4-13__3F420.exe//stream//data0002//data0003
已删除：广告程序 not-a-virus:AdWare.Win32.Cinmus.eha 文件: F:\Download\MD_4_13_A.rar/2008-4-13__3F420.exe//stream//data0002//data0004
已删除：木马程序 Trojan-Downloader.Win32.Agent.mno 文件: F:\Download\MD_4_13_A.rar/2008-4-13__78A85.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafl 文件: F:\Download\MD_4_13_A.rar/2008-4-13__5E8C0.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aakp 文件: F:\Download\MD_4_13_A.rar/2008-4-13__C750E.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafo 文件: F:\Download\MD_4_13_A.rar/2008-4-13__1FD9.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafo 文件: F:\Download\MD_4_13_A.rar/2008-4-13__8D749.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafe 文件: F:\Download\MD_4_13_A.rar/2008-4-13__415B0.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.zfe 文件: F:\Download\MD_4_13_A.rar/2008-4-13__1463E.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaei 文件: F:\Download\MD_4_13_A.rar/2008-4-13__B54B4.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aadv 文件: F:\Download\MD_4_13_A.rar/2008-4-13__B62EC.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafl 文件: F:\Download\MD_4_13_A.rar/2008-4-13__47227.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaog 文件: F:\Download\MD_4_13_A.rar/2008-4-13__A70A3.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafl 文件: F:\Download\MD_4_13_A.rar/2008-4-13__D4B48.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aanv 文件: F:\Download\MD_4_13_A.rar/2008-4-13__DCB0D.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaed 文件: F:\Download\MD_4_13_A.rar/2008-4-13__E292F.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafp 文件: F:\Download\MD_4_13_A.rar/2008-4-13__92F32.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafo 文件: F:\Download\MD_4_13_A.rar/2008-4-13__204A8.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaeb 文件: F:\Download\MD_4_13_A.rar/2008-4-13__CCB9B.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaek 文件: F:\Download\MD_4_13_A.rar/2008-4-13__CDBF5.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaef 文件: F:\Download\MD_4_13_A.rar/2008-4-13__EFD69.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aadz 文件: F:\Download\MD_4_13_A.rar/2008-4-13__2C42E.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aafq 文件: F:\Download\MD_4_13_A.rar/2008-4-13__342A1.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.QQPass.bpi 文件: F:\Download\MD_4_13_A.rar/2008-4-13__501EC.exe//UPX
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaeq 文件: F:\Download\MD_4_13_A.rar/2008-4-13__4413D.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aagt 文件: F:\Download\MD_4_13_A.rar/2008-4-13__9389A.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aadx 文件: F:\Download\MD_4_13_A.rar/2008-4-13__BF637.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aalm 文件: F:\Download\MD_4_13_A.rar/2008-4-13__C91CC.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aajs 文件: F:\Download\MD_4_13_A.rar/2008-4-13__EEC0.exe//PE_Patch//UPack
已删除：木马程序 Trojan-Clicker.Win32.Delf.ma 文件: F:\Download\MD_4_13_A.rar/2008-4-13__603F9.exe//UPack
已删除：病毒 Worm.Win32.AutoRun.cyj 文件: F:\Download\MD_4_13_A.rar/2008-4-13__D38DF.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaeq 文件: F:\Download\MD_4_13_A.rar/2008-4-13__34D1A.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aadx 文件: F:\Download\MD_4_13_A.rar/2008-4-13__36C5A.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.yzt 文件: F:\Download\MD_4_13_A.rar/2008-4-13__EBCD0.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aakp 文件: F:\Download\MD_4_13_A.rar/2008-4-13__2C36D.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aanv 文件: F:\Download\MD_4_13_A.rar/2008-4-13__B881F.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.yzt 文件: F:\Download\MD_4_13_A.rar/2008-4-13__D04E6.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaei 文件: F:\Download\MD_4_13_A.rar/2008-4-13__D5B1F.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.zwo 文件: F:\Download\MD_4_13_A.rar/2008-4-13__6EDF7.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aagt 文件: F:\Download\MD_4_13_A.rar/2008-4-13__37EA2.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaeb 文件: F:\Download\MD_4_13_A.rar/2008-4-13__44B59.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.zry 文件: F:\Download\MD_4_13_A.rar/2008-4-13__EF0DD.exe//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaes 文件: F:\Download\MD_4_13_A.rar/2008-4-13__457AE.exe//FSG//PE_Patch
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaek 文件: F:\Download\MD_4_13_A.rar/2008-4-13__919DC.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aadz 文件: F:\Download\MD_4_13_A.rar/2008-4-13__2D962.exe//FSG
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaef 文件: F:\Download\MD_4_13_A.rar/2008-4-13__6EE0B.exe//FSG
已删除：病毒 Heur.Trojan.Generic (修改) 文件: F:\Download\MD_4_13_A.rar/cunlim.exe//PE-Crypt.XorPE//PE_Patch.UPX//UPX//data0000.bin
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.tl 文件: F:\Download\MD_4_13_A.rar/2008-4-13__E7264.exe
已删除：广告程序 not-a-virus:AdWare.Win32.BHO.aj 文件: F:\Download\MD_4_13_A.rar/2008-4-13__533D5.exe
已删除：木马程序 Backdoor.Win32.Hupigon.btg 文件: F:\Download\MD_4_13_A.rar/2008-4-13__897F7.exe//PELock

显示全部楼层 · 发表于 2008-4-14 13:58:59

巡警22

显示全部楼层 · 发表于 2008-4-14 14:20:02

我刚才用卡吧试一下了检测到54个

显示全部楼层 · 发表于 2008-4-14 14:48:40

蠕虫名称:Worm.Win32.AutoRun.bhl
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__E2FFE.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?

广告软件名称:AdWare.Win32.Cinmus.cnd
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__3F420.EXE
是广告软件!
已成功阻止其运行,是否要删除此文件?

蠕虫名称:Worm.Win32.AutoRun.ayv
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__D38DF.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__1FD9.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP91.TMP
2) C:\WINDOWS\SYSTEM32\MSOSDOHS00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__2C36D.EXE
木马程序生成以下文件:
1) C:\WINDOWS\WSOCKDRV32.EXE
2) C:\WINDOWS\SYSTEM32\WSOCKDRV32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__2C42E.EXE
木马程序生成以下文件:
1) C:\WINDOWS\FMSBBQI.EXE
2) C:\WINDOWS\SYSTEM32\FMSBBQI.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__2D962.EXE
木马程序生成以下文件:
1) C:\WINDOWS\FMSBBQI.EXE
2) C:\WINDOWS\SYSTEM32\FMSBBQI.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__5E8C0.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP93.TMP
2) C:\WINDOWS\SYSTEM32\MSOSMHFP00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__6EDF7.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP95.TMP
2) C:\WINDOWS\SYSTEM32\MSOSDOHS00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__6EE0B.EXE
木马程序生成以下文件:
1) C:\WINDOWS\CMDBCS.EXE
2) C:\WINDOWS\SYSTEM32\CMDBCS.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__8D749.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP99.TMP
2) C:\WINDOWS\SYSTEM32\MSOSDOHS00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__28C94.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\RETR.EXE
2) C:\WINDOWS\SYSTEM32\RETR.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__34D1A.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MFCHLP32.EXE
2) C:\WINDOWS\SYSTEM32\MFCHLP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__36C5A.EXE
木马程序生成以下文件:
1) C:\WINDOWS\TCIOCP32.EXE
2) C:\WINDOWS\SYSTEM32\TCIOCP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__37EA2.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP9B.TMP
2) C:\WINDOWS\SYSTEM32\MSOSCQIT00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__44B59.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MSCCRT.EXE
2) C:\WINDOWS\SYSTEM32\MSCCRT.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__78A85.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\SOVLOST.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__92F32.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MSIMMS32.EXE
2) C:\WINDOWS\SYSTEM32\MSIMMS32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__204A8.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP9D.TMP
2) C:\WINDOWS\SYSTEM32\MSOSDOHS00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__342A1.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMP9F.TMP
2) C:\WINDOWS\SYSTEM32\MSOSPING00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__415B0.EXE
木马程序生成以下文件:
1) C:\WINDOWS\AVPSRV.EXE
2) C:\WINDOWS\SYSTEM32\AVPSRV.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__457AE.EXE
木马程序生成以下文件:
1) C:\WINDOWS\DNDSIOC.EXE
2) C:\WINDOWS\SYSTEM32\DNDSIOC.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__501EC.EXE
木马程序生成以下文件:
1) C:\PROGRAM FILES\INTERNET EXPLORER\PLUGINS\WINSYS8V.SYS
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__533D5.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\XUNLEI.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__919DC.EXE
木马程序生成以下文件:
1) C:\WINDOWS\LOTUSHLP.EXE
2) C:\WINDOWS\SYSTEM32\LOTUSHLP.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__1463E.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\TTEZZEZZ1046.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__9389A.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMPA1.TMP
2) C:\WINDOWS\SYSTEM32\MSOSCQIT00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__4413D.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MFCHLP32.EXE
2) C:\WINDOWS\SYSTEM32\MFCHLP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__47227.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMPA3.TMP
2) C:\WINDOWS\SYSTEM32\MSOSMHFP00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__A70A3.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\TTNNBNNB1049.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__B54B4.EXE
木马程序生成以下文件:
1) C:\WINDOWS\PTSSHELL.EXE
2) C:\WINDOWS\SYSTEM32\PTSSHELL.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__603F9.EXE
木马程序生成以下文件:
1) C:\VBURL.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__B62EC.EXE
木马程序生成以下文件:
1) C:\WINDOWS\UPXDND.EXE
2) C:\WINDOWS\SYSTEM32\UPXDND.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__BF637.EXE
木马程序生成以下文件:
1) C:\WINDOWS\TCIOCP32.EXE
2) C:\WINDOWS\SYSTEM32\TCIOCP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__B881F.EXE
木马程序生成以下文件:
1) C:\WINDOWS\GWSMHXUQ.EXE
2) C:\WINDOWS\SYSTEM32\RZYSDHBX.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__C750E.EXE
木马程序生成以下文件:
1) C:\WINDOWS\WSOCKDRV32.EXE
2) C:\WINDOWS\SYSTEM32\WSOCKDRV32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__CCB9B.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MSCCRT.EXE
2) C:\WINDOWS\SYSTEM32\MSCCRT.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__CDBF5.EXE
木马程序生成以下文件:
1) C:\WINDOWS\LOTUSHLP.EXE
2) C:\WINDOWS\SYSTEM32\LOTUSHLP.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__CF631.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\OQRTHC.DLL
2) C:\WINDOWS\SYSTEM32\SPERLS.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__D4B48.EXE
木马程序生成以下文件:
1) C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMP\TMPA9.TMP
2) C:\WINDOWS\SYSTEM32\MSOSMNSF00.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__C91CC.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\DNTEH.DLL
2) C:\WINDOWS\SYSTEM32\MSEPBE.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__D04E6.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\EKTVM.DLL
2) C:\WINDOWS\SYSTEM32\MSEPBE.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__DCB0D.EXE
木马程序生成以下文件:
1) C:\WINDOWS\GWSMHXUQ.EXE
2) C:\WINDOWS\SYSTEM32\RZYSDHBX.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__E7264.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MPPDS.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__D5B1F.EXE
木马程序生成以下文件:
1) C:\WINDOWS\PTSSHELL.EXE
2) C:\WINDOWS\SYSTEM32\PTSSHELL.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__EBCD0.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\BJRVM.DLL
2) C:\WINDOWS\SYSTEM32\MSEION.SYS
3) C:\WINDOWS\SYSTEM32\MSEPBE.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__EEC0.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\XFGNXFN.DLL
2) C:\WINDOWS\SYSTEM32\MSEPBE.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__EF0DD.EXE
木马程序生成以下文件:
1) C:\WINDOWS\AVPSRV.EXE
2) C:\WINDOWS\SYSTEM32\AVPSRV.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__EFD69.EXE
木马程序生成以下文件:
1) C:\WINDOWS\CMDBCS.EXE
2) C:\WINDOWS\SYSTEM32\CMDBCS.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__E292F.EXE
木马程序生成以下文件:
1) C:\WINDOWS\DBGHLP32.EXE
2) C:\WINDOWS\SYSTEM32\DBGHLP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\MD_4_13_A\2008-4-13__897F7.EXE
木马程序生成以下文件:
1) C:\WINDOWS\INTER.EXE
2) C:\WINDOWS\INTER.DLL
是否删除木马程序及其衍生物?

显示全部楼层 · 发表于 2008-4-14 17:42:02

瑞星
文件数：141
病毒数：48

显示全部楼层 · 发表于 2008-4-14 18:55:19

[病毒样本] 54 Trojans

本帖子中包含更多资源