53x卡巴杀34x

显示全部楼层 · 发表于 2008-12-14 17:06:47

see it yourself

显示全部楼层 · 发表于 2008-12-14 17:07:06

Begin scan in 'C:\Documents and Settings\Owner\桌面\新建文件夹'
C:\Documents and Settings\Owner\桌面\新建文件夹\13.exe
[DETECTION] Contains recognition pattern of the DR/Cinmus.dtv dropper
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\54A62700.dat
[DETECTION] Is the TR/Agent.aulj Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\acpidisk.sys
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\beep.sys
[DETECTION] Contains recognition pattern of the RKIT/Agent.AIXF root kit
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\D256C718.dat
[DETECTION] Is the TR/Agent.aulj Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\oitrxet.sys
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\pbhealth.dll
[DETECTION] Is the TR/Cinmus.AQ Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\rgadnlt.sys
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv10.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv11.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv12.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv13.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv14.tmp
   [DETECTION] Is the TR/PSW.Online.bir Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv15.tmp
   [DETECTION] Is the TR/PSW.Online.bir Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv16.tmp
[DETECTION] Is the TR/Crypt.ULPM.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv17.tmp
   --> Object
      [1] Archive type: RSRC
      --> Object
      [DETECTION] Is the TR/Thief.OnLineGames.txjh Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv18.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv19.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv1A.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv1B.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv1C.tmp
   [DETECTION] Is the TR/PSW.Online.bir Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv1E.tmp
   [DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv2.tmp
[DETECTION] Is the TR/StartPa.Delf.D.2 Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv20.tmp
   [DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv21.tmp
   [DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv2D.tmp
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv2E.tmp
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv2F.tmp
[DETECTION] Contains recognition pattern of the ADSPY/AdMedia.ED.129 adware or spyware
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv3.tmp
[0] Archive type: RSRC
--> Object
   [DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv30.tmp
   [DETECTION] Is the TR/ATRAPS.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv31.tmp
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv32.tmp
[DETECTION] Is the TR/ATRAPS.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv33.tmp
   [DETECTION] Is the TR/Downloader.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv5.tmp
   [DETECTION] Is the TR/PSW.Online.bir Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv6.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\sv8.tmp
   [DETECTION] Is the TR/PSW.Online.bin Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\svB.tmp
[DETECTION] Is the TR/Hijacker.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\svC.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\svD.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\svE.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\svF.tmp
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\Sys_NtMe.Zys
[DETECTION] Is the TR/ATRAPS.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\TamntwD.dll
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\ThmgtjD.dll
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\xvEdBw.dll
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    The file was deleted!
C:\Documents and Settings\Owner\桌面\新建文件夹\zjOcgd.dll
[DETECTION] Is the TR/Spy.Gen Trojan
[NOTE]    The file was deleted!

[ 本帖最后由 luxiao200888 于 2008-12-14 17:08 编辑 ]

显示全部楼层 · 发表于 2008-12-14 17:09:32

信息 2008-12-14  17:09:07 您此次查毒共查出33个病毒以及危险代码
信息 2008-12-14  17:09:07 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件96个
信息 2008-12-14  17:09:07 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

金山毒霸可信认证查询结果如下:

报告生成于: 2008/12/14 17:8

seruc.exe    --------    可疑的
sv12.tmp    --------    可疑的
sv13.tmp    --------    可疑的
sv15.tmp    --------    可疑的
sv17.tmp    --------    可疑的
sv1A.tmp    --------    可疑的
sv1B.tmp    --------    可疑的
sv2E.tmp    --------    可疑的
sv30.tmp    --------    可疑的
sv5.tmp    --------    可疑的
sv6.tmp    --------    可疑的
sv8.tmp    --------    可疑的
svB.tmp    --------    可疑的
svD.tmp    --------    可疑的
svE.tmp    --------    可疑的
temp.tv    --------    可疑的

13.exe    --------    病毒
acpidisk.sys    --------    病毒
DogKiller.sys    --------    病毒
pbhealth.dll    --------    病毒
sv14.tmp    --------    病毒
sv16.tmp    --------    病毒
sv18.tmp    --------    病毒
sv19.tmp    --------    病毒
sv2F.tmp    --------    病毒
sv31.tmp    --------    病毒
sv32.tmp    --------    病毒
svC.tmp    --------    病毒
svF.tmp    --------    病毒
Sys_NtMe.Zys    --------    病毒
TamntwD.dll    --------    病毒
ThmgtjD.dll    --------    病毒

oitrxet.sys    --------    未知
rgadnlt.sys    --------    未知
sv10.tmp    --------    未知
sv11.tmp    --------    未知
sv1C.tmp    --------    未知
sv20.tmp    --------    未知
sv21.tmp    --------    未知
xvEdBw.dll    --------    未知
zjOcgd.dll    --------    未知

0B65C072.dat    --------    分析中
220DA350.dat    --------    分析中
54A62700.dat    --------    分析中
60F0AABA.dat    --------    分析中
870A092E.dat    --------    分析中
beep.sys    --------    分析中
D256C718.dat    --------    分析中
sv1E.tmp    --------    分析中
sv2.tmp    --------    分析中
sv2D.tmp    --------    分析中
sv3.tmp    --------    分析中
sv33.tmp    --------    分析中

理论文件总数: 53
实际文件总数: 53

其中:

分析中: 12
可疑的: 16
病毒: 16
未知: 9

识别率为: 83%

显示全部楼层 · 发表于 2008-12-14 17:22:34

在 C:\Documents and Settings\Administrator\桌面\drive.rar->13.exe->$[34]\$R0 中发现 AdWare/Cinmus.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->pbhealth.dll 中发现 AdWare/Cinmus.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->TamntwD.dll 中发现 Backdoor/NetBot.v 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->ThmgtjD.dll 中发现 Backdoor/NetBot.v 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->xvEdBw.dll 中发现 Trojan/JunkCode.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->zjOcgd.dll 中发现 Trojan/JunkCode.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->beep.sys 中发现 Backdoor/NetBot.q 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->oitrxet.sys 中发现 Trojan/JunkCode.ao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->rgadnlt.sys 中发现 Trojan/JunkCode.ao 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->54A62700.dat 中发现 Trojan/Agent.bsbm 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->D256C718.dat 中发现 Trojan/Agent.bsbm 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv13.tmp 中发现 TrojanDropper.Agent.rgs 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv14.tmp 中发现 Trojan/PSW.OnLineGames.apqd 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv16.tmp 中发现 Trojan/PSW.OnLineGames.apjd 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv17.tmp 中发现 Trojan/PSW.OnLineGames.apqq 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv18.tmp 中发现 Trojan/PSW.OnLineGames.apqh 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv1E.tmp 中发现 TrojanDropper.Agent.rgo 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv2.tmp 中发现 Trojan/Agent.bqic 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv20.tmp 中发现 Trojan/Agent.bsbn 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv21.tmp 中发现 TrojanDropper.Agent.rgo 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv2E.tmp 中发现 Trojan/JunkCode.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv2F.tmp->$TEMP\$TEMP\13.exe->$[34]\$R0 中发现 AdWare/Cinmus.Gen 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv3.tmp 中发现 TrojanDownloader.Small.aiyk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv31.tmp 中发现 Backdoor/Agent.bwti 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv32.tmp 中发现 TrojanSpy.Delf.dix 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv33.tmp 中发现 TrojanDownloader.Agent.avez 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv5.tmp 中发现 Trojan/PSW.OnLineGames.apqk 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->sv6.tmp 中发现 Trojan/PSW.OnLineGames.apqa 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->svB.tmp 中发现 Trojan/Hijacker.ej 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->svC.tmp 中发现 Trojan/PSW.OnLineGames.apqi 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->svD.tmp 中发现 TrojanDropper.Agent.rgr 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->svE.tmp 中发现 Trojan/PSW.OnLineGames.appy 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\drive.rar->Sys_NtMe.Zys 中发现 Trojan/PSW.GamePass.ahjr 病毒, 已删除

显示全部楼层 · 发表于 2008-12-14 17:33:08

检测到23个包括广告程序和木马

显示全部楼层 · 发表于 2008-12-14 17:41:57

剩27个
TO MMPC

显示全部楼层 · 发表于 2008-12-14 17:48:00

Scan Stats:
  Scan Time: 7 seconds
  Scan Options:
  Scan Targets: D:\Virus\drive.zip
  Counts:
Total items scanned: 54
- Files & Directories: 54
- Registry Entries: 0
- Processes & Start-up Items: 0
- Network & Browser Items: 0
- Other: 0
- Trusted Files: 0
- Skipped Files: 0

Total security risks detected: 39
Total items resolved: 39
Total items that require attention: 0

显示全部楼层 · 发表于 2008-12-14 17:48:54

G DATA剩9个。

显示全部楼层 · 发表于 2008-12-14 17:55:03

NOD 剩6个
TO ESET

显示全部楼层 · 发表于 2008-12-14 18:26:24

驱逐艦杀36

[病毒样本] 53x卡巴杀34x

本帖子中包含更多资源

avira

33

本帖子中包含更多资源

Forefront Client Security