换一种心情3，64个

显示全部楼层 · 发表于 2008-7-29 16:47:20

小卡漏12个

已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skry 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\29918029//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\29937427//PE_Patch.UPX//UPX
已删除：木马程序 Trojan.Win32.Agent.udd 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\29957216//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.siyn 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\29976614//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\29995901//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.siyn 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30014959//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.slcw 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30034126//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skry 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30053234//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.ryhe 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30072411//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.slcw 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30091559//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.sjxn 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30110726//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skry 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30130485//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skry 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30150183//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.siyn 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30169661//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.siyn 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30189209//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhw 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30210129//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30229217//PE_Patch.UPX//UPX
已删除：木马程序 Trojan.Win32.Agent.sav 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30248364//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30267572//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.siyn 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\30287941//PE_Patch//UPack
已删除：木马程序 Trojan-Downloader.Win32.Flux.fm 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\31C847F5.EXE//PE_Patch//UPack
已删除：木马程序 Trojan-Downloader.Win32.Agent.xql 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\adsntzt.tmp
已删除：木马程序 Trojan-Downloader.Win32.Flux.fo 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\C95D4441.DLL
已删除：木马程序 Trojan-Downloader.Win32.Agent.xqm 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\certmgrkd.tmp
已删除：木马程序 Trojan.Win32.Agent.udc 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\HBmhly.exe//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skzs 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\lweurqhx.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skaq 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\msobjstl.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.sgsj 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\mstimewd.tmp
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.aaso 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\System76.Ins
已删除：木马程序 Trojan-Downloader.Win32.Zlob.sza 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp102.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.siwi 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp106.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp107.tmp//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-Downloader.Win32.Agent.xqm 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp10D.tmp//PE_Patch//UPack//#
已删除：木马程序 Trojan.Win32.Agent.sav 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp113.tmp//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp126.tmp//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.sife 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp136.tmp//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shss 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp13C.tmp//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.skzs 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp144.tmp//PE_Patch//UPack//#
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.slhe 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp14C.tmp
已删除：木马程序 Trojan.Win32.Agent.udd 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp154.tmp//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.slgu 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp159.tmp
已删除：木马程序 Trojan-PSW.Win32.Agent.nr 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp160.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhv 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp164.tmp//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shhw 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp169.tmp//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shzr 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp171.tmp
已删除：木马程序 Trojan-PSW.Win32.QQPass.bsg 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmp193.tmp//UPX
已删除：木马程序 Trojan.Win32.Kilva.q 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmpD6.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.sjcq 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmpEE.tmp//PE_Patch//UPack
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.sjcq 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\tmpF4.tmp//PE_Patch//UPack
已删除：木马程序 Trojan-PSW.Win32.QQPass.cok 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\Windows64.Sys
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.sikx 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\~f139.tmp
已删除：木马程序 Trojan-GameThief.Win32.OnLineGames.shwi 文件: C:\Documents and Settings\Administrator\桌面\复件生成物\~f141.tmp

显示全部楼层 · 发表于 2008-7-29 16:52:35

25099541    2E6B41C9.DLL    44 KB    UNDER ANALYSIS
1263422    Beep.sys    36 KB    MALWARE
25099542    tmpE0.tmp    11 KB    UNDER ANALYSIS
3645564    userinit.exe    23 KB    CLEAN
1004883    tree.com    11 KB    KNOWN CLEAN

显示全部楼层 · 发表于 2008-7-29 16:55:04

楼主今天提供的样本很多360也能查杀

显示全部楼层 · 发表于 2008-7-29 17:09:43

360扫出45个，汗一个。
File:BootDel: D:\Backup\桌面\x64\31C847F5.EXE
File:BootDel: D:\Backup\桌面\x64\HBmhly.exe
File:BootDel: D:\Backup\桌面\x64\C95D4441.DLL
File:BootDel: D:\Backup\桌面\x64\Windows64.Sys
File:BootDel: D:\Backup\桌面\x64\29918029
File:BootDel: D:\Backup\桌面\x64\29937427
File:BootDel: D:\Backup\桌面\x64\29957216
File:BootDel: D:\Backup\桌面\x64\29976614
File:BootDel: D:\Backup\桌面\x64\29995901
File:BootDel: D:\Backup\桌面\x64\30014959
File:BootDel: D:\Backup\桌面\x64\30053234
File:BootDel: D:\Backup\桌面\x64\30072411
File:BootDel: D:\Backup\桌面\x64\30110726
File:BootDel: D:\Backup\桌面\x64\30169661
File:BootDel: D:\Backup\桌面\x64\30189209
File:BootDel: D:\Backup\桌面\x64\30210129
File:BootDel: D:\Backup\桌面\x64\30248364
File:BootDel: D:\Backup\桌面\x64\30267572
File:BootDel: D:\Backup\桌面\x64\30287941
File:BootDel: D:\Backup\桌面\x64\System76.Ins
File:BootDel: D:\Backup\桌面\x64\~f139.tmp
File:BootDel: D:\Backup\桌面\x64\~f141.tmp
File:BootDel: D:\Backup\桌面\x64\tmp102.tmp
File:BootDel: D:\Backup\桌面\x64\tmp106.tmp
File:BootDel: D:\Backup\桌面\x64\tmp107.tmp
File:BootDel: D:\Backup\桌面\x64\tmp10D.tmp
File:BootDel: D:\Backup\桌面\x64\tmp113.tmp
File:BootDel: D:\Backup\桌面\x64\tmp118.tmp
File:BootDel: D:\Backup\桌面\x64\tmp11F.tmp
File:BootDel: D:\Backup\桌面\x64\tmp126.tmp
File:BootDel: D:\Backup\桌面\x64\tmp136.tmp
File:BootDel: D:\Backup\桌面\x64\tmp13C.tmp
File:BootDel: D:\Backup\桌面\x64\tmp144.tmp
File:BootDel: D:\Backup\桌面\x64\tmp14C.tmp
File:BootDel: D:\Backup\桌面\x64\tmp154.tmp
File:BootDel: D:\Backup\桌面\x64\tmp159.tmp
File:BootDel: D:\Backup\桌面\x64\tmp160.tmp
File:BootDel: D:\Backup\桌面\x64\tmp164.tmp
File:BootDel: D:\Backup\桌面\x64\tmp169.tmp
File:BootDel: D:\Backup\桌面\x64\tmp171.tmp
File:BootDel: D:\Backup\桌面\x64\tmp193.tmp
File:BootDel: D:\Backup\桌面\x64\tmpD6.tmp
File:BootDel: D:\Backup\桌面\x64\tmpE0.tmp
File:BootDel: D:\Backup\桌面\x64\tmpEE.tmp
File:BootDel: D:\Backup\桌面\x64\tmpF4.tmp

显示全部楼层 · 发表于 2008-7-29 17:35:53

IK 57
D:\病毒测试\临时解压\29918029 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\29937427 - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\29957216 - 特征码 'Virus.Trojan.Win32.Agent.udd' 被发现
D:\病毒测试\临时解压\29976614 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\29995901 - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\2E6B41C9.DLL
D:\病毒测试\临时解压\30014959 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30034126 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30053234 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30072411 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30091559 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30110726 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30130485 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30150183 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30169661 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30189209 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\30210129 - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\30229217 - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\30248364 - 特征码 'Trojan-PWS.OnlineGames.ZAY' 被发现
D:\病毒测试\临时解压\30267572 - 特征码 'Trojan-GameThief.Win32.OnLineGames.shhv' 被发现
D:\病毒测试\临时解压\30287941 - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\31C847F5.EXE - 特征码 'Trojan-Downloader.Win32.Flux.fm' 被发现
D:\病毒测试\临时解压\6A36FA12.EXE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\adsntzt.tmp - 特征码 'Trojan-Spy' 被发现
D:\病毒测试\临时解压\Beep.sys
D:\病毒测试\临时解压\bootvidgj.tmp - 特征码 'Trojan-Spy' 被发现
D:\病毒测试\临时解压\C95D4441.DLL - 特征码 'Trojan-Downloader.Win32.Flux.fo' 被发现
D:\病毒测试\临时解压\certmgrkd.tmp
D:\病毒测试\临时解压\cliconfgzx.tmp - 特征码 'Trojan-Spy' 被发现
D:\病毒测试\临时解压\dpvvoxmh.tmp
D:\病毒测试\临时解压\HBmhly.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\lweurqhx.tmp - 特征码 'Trojan-Spy' 被发现
D:\病毒测试\临时解压\msobjstl.tmp - 特征码 'Virus.Win32.Nilage.NP' 被发现
D:\病毒测试\临时解压\mstimewd.tmp - 特征码 'Virus.Win32.Nilage.NP' 被发现
D:\病毒测试\临时解压\NTDUBECT.EXE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\System76.Ins - 特征码 'Trojan-Spy.Win32.Delf.OG' 被发现
D:\病毒测试\临时解压\tmp102.tmp - 特征码 'Virus.Win32.Nilage.NP' 被发现
D:\病毒测试\临时解压\tmp106.tmp - 特征码 'Virus.Win32.Nilage.NP' 被发现
D:\病毒测试\临时解压\tmp107.tmp - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\tmp10D.tmp - 可疑代码段被发现 (Level: 75)
D:\病毒测试\临时解压\tmp113.tmp - 特征码 'Trojan-PWS.OnlineGames.ZAY' 被发现
D:\病毒测试\临时解压\tmp118.tmp - 特征码 'Trojan-PWS.Lmir.UMH' 被发现
D:\病毒测试\临时解压\tmp11F.tmp - 特征码 'Trojan-PWS.Lmir.UMH' 被发现
D:\病毒测试\临时解压\tmp126.tmp - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\tmp136.tmp - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\tmp13C.tmp - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
D:\病毒测试\临时解压\tmp144.tmp - 特征码 'Trojan-PWS.Lmir.UMH' 被发现
D:\病毒测试\临时解压\tmp14C.tmp - 特征码 'Trojan-PWS.Lmir.UMH' 被发现
D:\病毒测试\临时解压\tmp154.tmp - 特征码 'Virus.Trojan.Win32.Agent.udd' 被发现
D:\病毒测试\临时解压\tmp159.tmp - 特征码 'Trojan-PWS.Lmir.UMH' 被发现
D:\病毒测试\临时解压\tmp160.tmp - 特征码 'Trojan-PWS.Win32.Agent.nr' 被发现
D:\病毒测试\临时解压\tmp164.tmp - 特征码 'Trojan-GameThief.Win32.OnLineGames.shhv' 被发现
D:\病毒测试\临时解压\tmp169.tmp - 特征码 'Virus.Trojan.GameThief.Win32.OnLineGames.shhw' 被发现
D:\病毒测试\临时解压\tmp171.tmp - 特征码 'Trojan-Downloader.6165' 被发现
D:\病毒测试\临时解压\tmp193.tmp - 特征码 'Trojan-Downloader.6165' 被发现
D:\病毒测试\临时解压\tmpD6.tmp - 特征码 'Trojan.Win32.Kilva.q' 被发现
D:\病毒测试\临时解压\tmpE0.tmp
D:\病毒测试\临时解压\tmpEE.tmp - 特征码 'Trojan-GameThief.Win32.OnLineGames.sjcq' 被发现
D:\病毒测试\临时解压\tmpF4.tmp - 特征码 'Trojan-GameThief.Win32.OnLineGames.sjcq' 被发现
D:\病毒测试\临时解压\tree.com
D:\病毒测试\临时解压\userinit.exe
D:\病毒测试\临时解压\Windows64.Sys - 特征码 'Trojan-Proxy.Win32.Delf.AN' 被发现
D:\病毒测试\临时解压\~f139.tmp - 特征码 'Backdoor.Win32.NetCrack.13.b' 被发现
D:\病毒测试\临时解压\~f141.tmp - 特征码 'Trojan-PWS.Win32.OnLineGames.alrf' 被发现

64 文件被扫描
(0 压缩档 0 文件)
56 特征码被侦测
1 可疑代码段被发现
耗时: 0:01.792

显示全部楼层 · 发表于 2008-7-29 17:38:06

avast! 47

显示全部楼层 · 发表于 2008-7-29 17:47:25

红伞 59 miss 5

End of the scan: 2008年7月29日  17:46
Used time: 00:36 Minute(s)

The scan has been done completely.

   1 Scanning directories
   64 Files were scanned
   59 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   59 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   5 Files not concerned
   0 Archives were scanned
   0 Warnings
   59 Notes

显示全部楼层 · 发表于 2008-7-29 17:57:09

Scan Log
Version of virus signature database: 3305 (20080729)
Date: 2008-7-29 Time: 17:56:34
Scanned disks, folders and files: G:\v\x64
G:\v\x64\29918029 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\29937427 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\29957216 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\29976614 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\29995901 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\2E6B41C9.DLL - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30014959 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30034126 - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30053234 - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30072411 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30091559 - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30110726 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30130485 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30150183 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30169661 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30189209 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30210129 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30229217 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30248364 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30267572 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\30287941 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\31C847F5.EXE - Win32/TrojanDownloader.Flux.AB trojan - cleaned by deleting - quarantined [1]
G:\v\x64\6A36FA12.EXE - probably a variant of Win32/TrojanDownloader.Flux trojan - cleaned by deleting - quarantined [1]
G:\v\x64\adsntzt.tmp - Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\Beep.sys - is OK
G:\v\x64\bootvidgj.tmp - Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\C95D4441.DLL - Win32/TrojanDownloader.Flux.AB trojan - cleaned by deleting - quarantined [1]
G:\v\x64\certmgrkd.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\cliconfgzx.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\dpvvoxmh.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\HBmhly.exe - Win32/PSW.OnLineGames.NPM trojan - cleaned by deleting - quarantined [1]
G:\v\x64\lweurqhx.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\msobjstl.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\mstimewd.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\NTDUBECT.EXE - a variant of Win32/Delf.NMX trojan - cleaned by deleting - quarantined [1]
G:\v\x64\System76.Ins - is OK
G:\v\x64\tmp102.tmp - Win32/PSW.Agent.NIC trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp106.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp107.tmp - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp10D.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp113.tmp - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp118.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp11F.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp126.tmp - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp136.tmp - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp13C.tmp - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp144.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp14C.tmp - Win32/PSW.Agent.NIG trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp154.tmp - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp159.tmp - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp160.tmp - Win32/TrojanDownloader.Agent.OAQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp164.tmp - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp169.tmp - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp171.tmp - Win32/PSW.QQPass.NDM trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmp193.tmp - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmpD6.tmp - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmpE0.tmp - is OK
G:\v\x64\tmpEE.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tmpF4.tmp - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\tree.com - is OK
G:\v\x64\userinit.exe - is OK
G:\v\x64\Windows64.Sys - Win32/PSW.QQPass.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\x64\~f139.tmp - a variant of Win32/PSW.OnLineGames.NOA trojan - cleaned by deleting - quarantined [1]
G:\v\x64\~f141.tmp - a variant of Win32/PSW.OnLineGames.NOA trojan - cleaned by deleting - quarantined [1]
Number of scanned objects: 64
Number of threats found: 59
Number of cleaned objects: 59
Time of completion: 17:56:39 Total scanning time: 5 sec (00:00:05)

Notes:
[1] Object has been deleted as it only contained the virus body.

显示全部楼层 · 发表于 2008-7-29 17:58:22

2008-7-29 17:57:25 Kernel File  'G:\v\0729\tree.com' was sent to ESET for analysis.
2008-7-29 17:57:08 Kernel File  'G:\v\0729\tmpE0.tmp' was sent to ESET for analysis.
2008-7-29 17:56:58 Kernel File  'G:\v\0729\System76.Ins' was sent to ESET for analysis.
2008-7-29 17:49:54 Kernel File  'G:\v\service.exe' was sent to ESET for analysis.

显示全部楼层 · 发表于 2008-7-29 20:21:39

用的是nod32，59个

[病毒样本] 换一种心情3，64个