可能比较新

yk1234

可能比较新

rest1min

江民杀毒软件报告文件

        北京江民新科技术有限公司

        扫描引擎 11.00.703
        病毒库日期 2008-05-09
        更新日期 2008-05-09

扫描目标 C:\Documents and Settings\Administrator\桌面\virus\

开始时间 2008-05-09 22:44:35

在 C:\Documents and Settings\Administrator\桌面\virus\pack1\8.exe->$TEMP\$TEMP\13.exe->$TEMP\acpidisk.sys 中发现 Adware/Clicker.hur 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\virus\pack2\auto.exe 中发现 Trojan/PSW.QQPass.nz 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\virus\pack3\k.dll 中发现 TrojanDownloader.Agent.yip 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\virus\pack1\4.exe 中发现 TrojanDropper.Small.bwz 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\virus\pack3\dflljy.exe 中发现 Trojan/PSW.QQPass.nz 病毒, 已删除
正常结束。

扫描结果:
                 文件数 :14                                  病毒体 :5         
                   删除 :5                                     解毒 :0         
    扫描速度(千字节/秒) :121                               扫描时间 :00:00:11
    扫描文件速度(个/秒) :1

wangjay1980

TO KL

[ 本帖最后由 wangjay1980 于 2008-5-9 23:47 编辑 ]

红心王子

木马名称:Trojan-Dropper.Win32.Small.bnl

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\7\4.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

蠕虫名称:Worm.Win32.AutoRun.cgt

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\7\AUTO.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?


广告软件名称:AdWare.Win32.Ejik.are

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\7\K.DLL
是广告软件!
已成功阻止其运行,是否要删除此文件?

蠕虫名称:Worm.Win32.AutoRun.cgt

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\7\DFLLJY.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?

挪威的冬天

信息        2008-05-09  23:02:23        您此次查毒隔离了5个文件                       
信息        2008-05-09  23:02:23        您此次查毒清除了1个病毒                       
信息        2008-05-09  23:02:23        您此次查毒共查出6个病毒以及危险代码                       
信息        2008-05-09  23:02:23        您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件17个                       
信息        2008-05-09  23:02:23        金山毒霸主程序查毒过程结束，查毒方式：命令行查毒                       
风险程序        2008-05-09  23:02:23        D:\Desktop\pack\4.exe        Win32.Adware.Agent.352256        隔离成功       
病毒        2008-05-09  23:02:22        D:\Desktop\pack\g.dll        Win32.Troj.BhoT.dw.163840        隔离成功       
病毒        2008-05-09  23:02:22        D:\Desktop\pack\dflljy.exe        Win32.Troj.PopHot.c.180224        隔离成功       
病毒        2008-05-09  23:02:22        D:\Desktop\pack\c.sys        Win32.Troj.RootKitT.ny.48544        隔离成功       
病毒        2008-05-09  23:02:22        D:\Desktop\pack\auto.exe        Win32.Troj.PopHot.c.180224        隔离成功       
病毒        2008-05-09  23:02:22        D:\Desktop\pack\5uzn4j7a9.sys        Win32.Troj.Rootkit.53760        隔离成功

mofunzone

差了2个
Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\pack2'
C:\Documents and Settings\morgan\My Documents\pack2\
  4.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
            [DETECTION] Is the Trojan horse TR/Click.Small.UG
            [WARNING]   Infected files in archives cannot be repaired!
        --> Object
            [DETECTION] Is the Trojan horse TR/Click.Agent.aam
            [WARNING]   Infected files in archives cannot be repaired!
        --> Object
            [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.aadi
            [WARNING]   Infected files in archives cannot be repaired!
        --> Object
      [NOTE]      The file was deleted!
  5uzn4j7a9.sys
  8.exe
      [DETECTION] Contains detection pattern of the dropper DR/Cinmus.fer
      [NOTE]      The file was deleted!
  9.exe
  auto.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
            [DETECTION] Contains detection pattern of the worm WORM/Autorun.dpy
            [WARNING]   Infected files in archives cannot be repaired!
      [NOTE]      The file was deleted!
  c.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [NOTE]      The file was deleted!
  dflljy.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
            [DETECTION] Contains detection pattern of the worm WORM/Autorun.dpy
            [WARNING]   Infected files in archives cannot be repaired!
      [NOTE]      The file was deleted!
  g.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
  k.dll
    [0] Archive type: Runtime Packed
    --> Object
      [NOTE]      The file was deleted!


End of the scan: 2008年5月9日  08:11
Used time: 00:04 min

The scan has been done completely.

      1 Scanning directories
      9 Files were scanned
      9 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      7 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      0 Files not concerned
      0 Archives were scanned
      5 Warnings
      7 Notes

yk1234

哈哈，红伞早上有4个没杀出来，中午上报，下午解决了。

IllusionWing

seven

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： RootKit.Win32.Undef.gb   
病毒： Dropper.Win32.Agent.gbc  

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.43.52

Starting the file scan:

Begin scan in 'E:\AV\4.exe'
E:\AV\4.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/Click.Small.UG
      --> Object
          [DETECTION] Is the Trojan horse TR/Click.Agent.aam
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.aadi
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\5uzn4j7a9.sys'
E:\AV\5uzn4j7a9.sys
      [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aln
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\8.exe'
E:\AV\8.exe
      [DETECTION] Contains detection pattern of the dropper DR/Cinmus.fer
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\auto.exe'
E:\AV\auto.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Contains detection pattern of the worm WORM/Autorun.dpy
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\c.sys'
E:\AV\c.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\g.dll'
E:\AV\g.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\9.exe'
E:\AV\9.exe
      [DETECTION] Is the Trojan horse TR/Drop.Nsis.B
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\dflljy.exe'
E:\AV\dflljy.exe
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Contains detection pattern of the worm WORM/Autorun.dpy
      [NOTE]      The file was deleted!
Begin scan in 'E:\AV\k.dll'
E:\AV\k.dll
      [DETECTION] Is the Trojan horse TR/BHO.Gen
      [NOTE]      The file was deleted!


End of the scan: 2008年5月13日  07:28
Used time: 00:20 min

The scan has been done completely.

      0 Scanning directories
      9 Files were scanned
     11 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      9 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     -2 Files not concerned
      0 Archives were scanned
      0 Warnings
      9 Notes