高质量76X（20多个过卡巴）

Sherry.ai

整理了一个晚上...累死了 很多都是从国外找到的
Miss的请上报

Sherry.ai

...睡觉了
明天继续继续发

ledled

晚安~

48 MISS to VB

[ 本帖最后由 ledled 于 2009-2-18 22:48 编辑 ]

nosferatu

Begin scan in 'C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X'
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\0[1].exe
    [DETECTION] Is the TR/Drop.Agent.xqa Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\10[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\11[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\12[1].exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\13[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\14[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\15[1].exe
    [DETECTION] Is the TR/Thief.Magania.B Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\16[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\17[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\18[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\198FF3D8.dll
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\19[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\1[1].exe
    [DETECTION] Is the TR/Hijacker.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\2[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\3[1].exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\498FF28D.EXE
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\4[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\5[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\6FBC8584.DLL
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\6[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\7dfc3.dll
    [DETECTION] Is the TR/Dldr.Agent.bgnd Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\7[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\8[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\9[1].exe
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\Ajiang.exe
    [0] Archive type: RSRC
    --> Object
      [DETECTION] Contains recognition pattern of the DDOS/Agent.DS distributed denial of service program
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\alimoto32.dll
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\alimoto32.exe
    [DETECTION] Is the TR/Drop.Agent.ahev Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\baiduc.dll
    [DETECTION] Is the TR/BHO.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\beep.sys
    [DETECTION] Is the TR/Yangxiay.A!sys.1 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\bGB9Sawh6Q.pif
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\brL83QekKn.pif
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\ByAvekC5zA.pif
    [DETECTION] Contains HEUR/Crypted.E suspicious code
    [NOTE]      The detection was classified as suspicious.
    [NOTE]      The file was moved to '49dd2007.qua'!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\c.exe
    [DETECTION] Contains a recognition pattern of the (harmful) BDS/Rippy.1 back-door program
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\cb.exe
    [DETECTION] Is the TR/Agent.66173 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\cheat.exe
      [DETECTION] Is the TR/ATRAPS.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\cpush.dll
    [DETECTION] Contains recognition pattern of the ADSPY/Bho.fne adware or spyware
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\d (2).exe
      [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\d.exe
      [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\DA63E650.dll
      [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\dadfln.dll
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\ds.exe
    [DETECTION] Is the TR/Spy.pci.88 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\E8n6Ml2Uwr.pif
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\EUCZMJQ.EXE
    [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\hplS5QpRe2.pif
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\IETimber.dll
    [DETECTION] Contains recognition pattern of the ADSPY/Timber.BHO adware or spyware
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\jiocs.dll
    [DETECTION] Is the TR/Inject.SJ.1 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\oiiuasdfh.dll
    [DETECTION] Is the TR/Agent.bozs Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\push.exe
    [0] Archive type: NSIS
    --> SOFTWARE/MicroPlugins/Common/cpush.dll
      [DETECTION] Contains recognition pattern of the ADSPY/Bho.fne adware or spyware
    --> SOFTWARE/MicroPlugins/Common/cpush.tmp
      [DETECTION] Contains recognition pattern of the ADSPY/Bho.fne adware or spyware
    [DETECTION] Contains recognition pattern of the DR/BHO.fne.47 dropper
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\qrqwerwqer.dll
    [DETECTION] Is the TR/PSW.OnlineGames.KBNQ Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\RsoPFPclhnYIrKFAK.dll
      [DETECTION] Contains a recognition pattern of the (harmful) BDS/Backdoor.Gen back-door program
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\sa.exe
    [0] Archive type: NSIS
    --> [ProgramFilesDir]/Internet Explorer/IETimber/IETimber.dll
      [DETECTION] Contains recognition pattern of the ADSPY/Timber.BHO adware or spyware
    [DETECTION] Contains recognition pattern of the DR/Timber.RT dropper
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\sad.exe
      [DETECTION] Is the TR/Crypt.XDR.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\task.exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\TkmbtiD.dll
    [DETECTION] Contains recognition pattern of the DDOS/Agent.DS distributed denial of service program
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\twext.exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\USB.bat
    [DETECTION] Is the TR/Agent.24659.1 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\usp10.dll
    [DETECTION] Is the TR/Agent.7680.22 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\UWXNFHRUXDX.DLL
    [DETECTION] Contains recognition pattern of the ADSPY/Admoke.bxy adware or spyware
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\uzuMclqy6V.pif
    [DETECTION] Is the TR/Thief.Magania.B Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\vb.exe
    [0] Archive type: RSRC
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/Agent.66173 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\vb2.exe
    [0] Archive type: RSRC
    --> Object
      [DETECTION] Is the TR/Agent.66173 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\virus.gif
    [0] Archive type: RAR
    --> ￕￕￆﾬ                                                                                                                  .exe
      [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\vubke17fhj4fj17.bak
    [0] Archive type: RSRC
    --> Object
      [DETECTION] Is the TR/Agent.66173 Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\wsock32.dll
    [DETECTION] Contains recognition pattern of the WORM/Autorun.nvc worm
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\wV8MbTht.exe
    [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\XWq9PgiQ7D.pif
    [DETECTION] Is the TR/Drop.Agent.xqa Trojan
    [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\76_X\76 X\76X\YhCeVPI9Su.pif
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!


End of the scan: 星期三 2009年2月18日  22:47
Used time: 00:27 Minute(s)

The scan has been done completely.

      1 Scanning directories
     84 Files were scanned
     69 viruses and/or unwanted programs were found
      1 Files were classified as suspicious:
File ID  Filename Size (Byte) Result
25265547  1k80u10g8.dll  2.46 KB  UNDER ANALYSIS
25265548  20[1].exe  13.25 KB  UNDER ANALYSIS
25222303  AD.exe  32.68 KB  CLEAN
25265549  md5.exe  22.08 KB  UNDER ANALYSIS
25265550  mfc1.dll  1.02 MB  UNDER ANALYSIS
25265551  ntfastuserswitchi...ty.dll  140 KB  UNDER ANALYSIS
4039214  DLDNOCTYNQUJ.DLL  0 Byte  KNOWN CLEAN
4039214  MFC71.dll  0 Byte  KNOWN CLEAN
4039214  verclsid.exe  0 Byte  KNOWN CLEAN

[ 本帖最后由 nosferatu 于 2009-2-18 22:52 编辑 ]

黑衣~魂

DR.WEB 殺44
MISS 32
TO

JusticeH

BitDefender殺54個
上報22個

TYHF

找出66个
D:\76X.7z > 7ZIP > 76X/virus.gif > RAR > 照片.exe - 可能是 Win32/AutoRun.Agent.IE 蠕虫 的变种
D:\76X.7z > 7ZIP > 76X/USB.bat - Win32/AutoRun.Agent.JI 蠕虫
D:\76X.7z > 7ZIP > 76X/vubke17fhj4fj17.bak - 未查明的 NewHeur_PE 病毒
D:\76X.7z > 7ZIP > 76X/bGB9Sawh6Q.pif - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/brL83QekKn.pif - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/E8n6Ml2Uwr.pif - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/hplS5QpRe2.pif - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/uzuMclqy6V.pif - Win32/PSW.OnLineGames.NRF 特洛伊木马
D:\76X.7z > 7ZIP > 76X/XWq9PgiQ7D.pif - Win32/TrojanDropper.Agent.NVD 特洛伊木马
D:\76X.7z > 7ZIP > 76X/YhCeVPI9Su.pif - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/0[1].exe - Win32/TrojanDropper.Agent.NVD 特洛伊木马
D:\76X.7z > 7ZIP > 76X/10[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/11[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/12[1].exe - Win32/PSW.OnLineGames.NUO 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/13[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/14[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/15[1].exe - Win32/PSW.OnLineGames.NRF 特洛伊木马
D:\76X.7z > 7ZIP > 76X/16[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/17[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/18[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/19[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/1[1].exe - Win32/PSW.WOW.DZI 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/2[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/3[1].exe - Win32/PSW.OnLineGames.NSU 特洛伊木马
D:\76X.7z > 7ZIP > 76X/498FF28D.EXE - 可能是 Win32/TrojanDownloader.Flux 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/4[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/5[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/6[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/7[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/8[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马
D:\76X.7z > 7ZIP > 76X/9[1].exe - Win32/PSW.OnLineGames.NTM 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/AD.exe - Win32/Adware.Cinmus 应用程序
D:\76X.7z > 7ZIP > 76X/Ajiang.exe - Win32/Agent.NVI 特洛伊木马
D:\76X.7z > 7ZIP > 76X/alimoto32.exe - Win32/PSW.Legendmir.NGG 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/c.exe - Win32/Hupigon 特洛伊木马
D:\76X.7z > 7ZIP > 76X/cb.exe - 未查明的 NewHeur_PE 病毒
D:\76X.7z > 7ZIP > 76X/cheat.exe - Win32/PSW.Delf.NMX 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/d (2).exe - 未查明的 NewHeur_PE 病毒
D:\76X.7z > 7ZIP > 76X/d.exe - Win32/TrojanDropper.Small.NIY 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/ds.exe - Win32/Agent.OWJ 特洛伊木马
D:\76X.7z > 7ZIP > 76X/EUCZMJQ.EXE - Win32/Adware.MoKeAD 应用程序 的变种
D:\76X.7z > 7ZIP > 76X/push.exe > NSIS > cpush.dll - Win32/Adware.Cinmus 应用程序 的变种
D:\76X.7z > 7ZIP > 76X/push.exe > NSIS > Uninst.exe - Win32/Adware.Cinmus 应用程序
D:\76X.7z > 7ZIP > 76X/sa.exe > NSIS > IETimber.dll - Win32/Adware.Zhongsou 应用程序
D:\76X.7z > 7ZIP > 76X/sad.exe - 可能是 Win32/Genetik 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/task.exe - 可能是 Win32/PSW.WOW.DZI 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/twext.exe - Win32/Spy.Zbot.BA 特洛伊木马
D:\76X.7z > 7ZIP > 76X/vb.exe - 未查明的 NewHeur_PE 病毒
D:\76X.7z > 7ZIP > 76X/vb2.exe - 未查明的 NewHeur_PE 病毒
D:\76X.7z > 7ZIP > 76X/198FF3D8.dll - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/6FBC8584.DLL - 可能是 Win32/TrojanDownloader.Flux 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/alimoto32.dll - Win32/PSW.Legendmir.NFY 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/baiduc.dll - 可能是 Win32/Adware.Cinmus 应用程序 的变种
D:\76X.7z > 7ZIP > 76X/cpush.dll - Win32/Adware.Cinmus 应用程序 的变种
D:\76X.7z > 7ZIP > 76X/DA63E650.dll - Win32/PSW.OnLineGames.NRD 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/dadfln.dll - Win32/Delf.NNM 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/IETimber.dll - Win32/Adware.Zhongsou 应用程序
D:\76X.7z > 7ZIP > 76X/jiocs.dll - Win32/TrojanDownloader.Agent.OSI 特洛伊木马
D:\76X.7z > 7ZIP > 76X/ntfastuserswitchingcompatibility.dll - Win32/Dialer.NGS 特洛伊木马
D:\76X.7z > 7ZIP > 76X/qrqwerwqer.dll - Win32/PSW.WOW.DZI 特洛伊木马
D:\76X.7z > 7ZIP > 76X/RsoPFPclhnYIrKFAK.dll - Win32/Agent.OWO 特洛伊木马
D:\76X.7z > 7ZIP > 76X/TkmbtiD.dll - Win32/Agent.NVI 特洛伊木马
D:\76X.7z > 7ZIP > 76X/usp10.dll - Win32/TrojanDownloader.Agent.OQW 特洛伊木马 的变种
D:\76X.7z > 7ZIP > 76X/UWXNFHRUXDX.DLL - 可能是 Win32/Adware.MoKeAD 应用程序 的变种
D:\76X.7z > 7ZIP > 76X/wsock32.dll - Win32/AutoRun.Agent.HZ 蠕虫
D:\76X.7z > 7ZIP > 76X/beep.sys - Win32/Agent.OWO 特洛伊木马

saga3721

红伞实际漏杀一个dll
25265549  md5.exe  22.08 KB  CLEAN
25265550  mfc1.dll  1.02 MB  DAMAGED FILE (UNKNOWN)
25265551  ntfastuserswitchi...ty.dll  140 KB  MALWARE
25265547  1k80u10g8.dll  2.46 KB  DAMAGED FILE (UNKNOWN)
25265548  20[1].exe  13.25 KB  DAMAGED FILE (MALWARE)
25222303  AD.exe  32.68 KB  CLEAN
4039214  MFC71.dll  0 Byte  KNOWN CLEAN
4039214  verclsid.exe  0 Byte  KNOWN CLEAN
4039214  DLDNOCTYNQUJ.DLL  0 Byte  KNOWN CLEAN

FLogo

kaba miss 23x (heur 2x)
to kaba kill,waiting for reply。。。

axishero

AVG 干掉64个，剩余12个上报

"Scan ""Shell extension scan"" was finished."
"Infections";"63";"63";"0"
"Spyware";"3";"3";"0"
"Information";"1"
"Folders selected for scanning:";"C:\Users\Administrator\Desktop\test\76 X\76 X\76X;"
"Scan started:";"2009年2月19日, 7:22:26"
"Scan finished:";"2009年2月19日, 7:22:34 (8 second(s))"
"Total object scanned:";"92"
"User who launched the scan:";"Administrator"

"Infections"
"File";"Infection";"Result"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\YhCeVPI9Su.pif";"Trojan horse PSW.Generic6.BBTJ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\XWq9PgiQ7D.pif";"Trojan horse Agent_r.HC";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\wV8MbTht.exe";"Trojan horse SHeur2.RGF";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\wsock32.dll";"Virus identified Worm/Generic.KKG";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\vubke17fhj4fj17.bak";"Trojan horse Small.BDL";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\virus.gif:\照片                                                                                                                  .exe";"Virus identified Worm/Generic.VGI.dropper";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\virus.gif";"Virus identified Worm/Generic.VGI.dropper";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\vb2.exe";"Trojan horse Small.BDL";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\vb.exe";"Trojan horse Generic12.BPLW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\uzuMclqy6V.pif";"Trojan horse PSW.OnlineGames.BJIB";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\usp10.dll";"Trojan horse Downloader.Agent.AUFN";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\USB.bat";"Virus found Win32/PEMask";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\twext.exe";"Virus identified Win32/Cryptor";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\TkmbtiD.dll";"Trojan horse BackDoor.Hupigon4.BFUT";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\task.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\sad.exe";"Trojan horse Generic12.BRUV";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\RsoPFPclhnYIrKFAK.dll";"Virus identified Worm/Agent.N";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\qrqwerwqer.dll";"Trojan horse PSW.Generic6.BDEO";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\push.exe:\$CL\PushWare\cpush.dll";"Trojan horse Clicker.WWB";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\push.exe";"Trojan horse Clicker.WWB";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\oiiuasdfh.dll";"Trojan horse Agent.AYNC";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\ntfastuserswitchingcompatibility.dll";"Trojan horse Agent.AZDE";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\jiocs.dll";"Trojan horse Agent.AISG";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\hplS5QpRe2.pif";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\E8n6Ml2Uwr.pif";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\ds.exe";"Trojan horse SHeur2.QEC";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\dadfln.dll";"Trojan horse Delf.IOM";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\DA63E650.dll";"Trojan horse Downloader.Generic_r.CI";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\d.exe";"Trojan horse Downloader.Generic8.VRN";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\cpush.dll";"Trojan horse Clicker.WWB";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\cheat.exe";"Trojan horse PSW.Delf.CYY";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\cb.exe";"Trojan horse Generic12.BPLX";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\c.exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\brL83QekKn.pif";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\bGB9Sawh6Q.pif";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\beep.sys";"Virus identified Worm/Agent.N";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\alimoto32.exe";"Trojan horse PSW.Ldpinch.11.BQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\alimoto32.dll";"Trojan horse PSW.Generic6.BDIX";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\Ajiang.exe";"Trojan horse BackDoor.Hupigon4.BFUS";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\9[1].exe";"Trojan horse PSW.OnlineGames.BPSW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\8[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\7dfc3.dll";"Trojan horse Generic12.BOAS";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\7[1].exe";"Trojan horse PSW.Generic6.BDPW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\6FBC8584.DLL";"Trojan horse Downloader.Generic8.WQC";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\6[1].exe";"Trojan horse PSW.Generic6.BDPW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\5[1].exe";"Trojan horse PSW.OnlineGames.BPZO";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\498FF28D.EXE";"Trojan horse Downloader.Generic8.WJL";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\4[1].exe";"Trojan horse PSW.Generic6.BDPW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\3[1].exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\2[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\198FF3D8.dll";"Trojan horse Downloader.Generic_r.CI";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\19[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\18[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\17[1].exe";"Trojan horse PSW.Generic6.BBTJ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\16[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\15[1].exe";"Trojan horse PSW.OnlineGames.BJIB";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\14[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\13[1].exe";"Trojan horse PSW.OnlineGames.BPSW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\12[1].exe";"Virus found Win32/Heur";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\11[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\10[1].exe";"Trojan horse PSW.OnlineGames.BPPQ";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\1[1].exe";"Trojan horse PSW.Generic6.BDUW";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\0[1].exe";"Trojan horse Agent_r.HC";"Moved to Virus Vault"

"Spyware"
"File";"Infection";"Result"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\UWXNFHRUXDX.DLL";"Adware Generic3.AJOC";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\EUCZMJQ.EXE";"Adware Generic3.AHBP";"Moved to Virus Vault"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\baiduc.dll";"Adware Generic3.AJSU";"Moved to Virus Vault"

"Information"
"File";"Infection";"Result"
"C:\Users\Administrator\Desktop\test\76 X\76 X\76X\76X\d (2).exe";"Runtime packed upack";""

[ 本帖最后由 axishero 于 2009-2-19 07:25 编辑 ]