收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 到马网中的n多,快收
12下一页
返回列表 发新帖
查看: 3916|回复: 14
收起左侧

[病毒样本] 到马网中的n多,快收

[复制链接]
qqq000@qq.com
头像被屏蔽
发表于 2007-4-25 11:02:42 | 显示全部楼层 |阅读模式
大蜘蛛(Dr.Web)


[Scan path] F:\070425\[木马]2\cns.exe=
F:\070425\[木马]2\cns.exe= 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\descript.ion
F:\070425\[木马]2\descript.ion - 好
[Scan path] F:\070425\[木马]2\editor[1].js
F:\070425\[木马]2\editor[1].js 可能感染 -->           SCRIPT.Virus
[Scan path] F:\070425\[木马]2\mowang.tdm
>F:\070425\[木马]2\mowang.tdm 感染 -->      Trojan.DownLoader.21525
[Scan path] F:\070425\[木马]2\cnsminexm[1].cab
F:\070425\[木马]2\cnsminexm[1].cab - 文档    CAB
>F:\070425\[木马]2\cnsminexm[1].cab\CnsMinEx.dll 可能感染 -->           DLOADER.Trojan
F:\070425\[木马]2\cnsminexm[1].cab - 文档包含感染对象                 
[Scan path] F:\070425\[木马]2\cnsminhk[1].cab
F:\070425\[木马]2\cnsminhk[1].cab - 文档    CAB
>F:\070425\[木马]2\cnsminhk[1].cab\CnsHook.dll 是 Adware 程序    Adware.Cdn
F:\070425\[木马]2\cnsminhk[1].cab - 文档包含感染对象                 
[Scan path] F:\070425\[木马]2\tmp
F:\070425\[木马]2\tmp 感染 -->      Trojan.DownLoader.6718
[Scan path] F:\070425\[木马]2\cnsminkp2k.sys
F:\070425\[木马]2\cnsminkp2k.sys - 好
[Scan path] F:\070425\[木马]2\cnsminkpxp.sys
F:\070425\[木马]2\cnsminkpxp.sys - 好
[Scan path] F:\070425\[木马]2\mowang.sys
>F:\070425\[木马]2\mowang.sys 感染 -->      Trojan.DownLoader.21525
[Scan path] F:\070425\[木马]2\msdirect.sys
F:\070425\[木马]2\msdirect.sys 感染 -->      Trojan.DownLoader.7332
[Scan path] F:\070425\[木马]2\cnsminkp.vxd
F:\070425\[木马]2\cnsminkp.vxd - 好
[Scan path] F:\070425\[木马]2\cns1.exe
F:\070425\[木马]2\cns1.exe 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\AutoLive.dll
F:\070425\[木马]2\AutoLive.dll - 文档    CAB
>F:\070425\[木马]2\AutoLive.dll\helper.dll 是 Adware 程序    Adware.Cnshel
>F:\070425\[木马]2\AutoLive.dll\cns01.dat - 好
F:\070425\[木马]2\AutoLive.dll - 文档包含感染对象                 
[Scan path] F:\070425\[木马]2\cns1.dll
F:\070425\[木马]2\cns1.dll 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\cns.dll
F:\070425\[木马]2\cns.dll 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\irjit.dll
F:\070425\[木马]2\irjit.dll 感染 -->      Trojan.DownLoader.6718
[Scan path] F:\070425\[木马]2\keepmain.dll
F:\070425\[木马]2\keepmain.dll 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\mppds.dll
F:\070425\[木马]2\mppds.dll 感染 -->      Trojan.PWS.Wsgame
[Scan path] F:\070425\[木马]2\nu.dll
F:\070425\[木马]2\nu.dll 感染 -->      Trojan.Vanti
[Scan path] F:\070425\[木马]2\复件cns.dll
F:\070425\[木马]2\复件cns.dll 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\复件irjit.dll
F:\070425\[木马]2\复件irjit.dll 感染 -->      Trojan.DownLoader.6718
[Scan path] F:\070425\[木马]2\cns1u.cpr
F:\070425\[木马]2\cns1u.cpr - 好
[Scan path] F:\070425\[木马]2\1[1].exe(1)_
>>>F:\070425\[木马]2\1[1].exe(1)_ 可能感染 -->           UPX
[Scan path] F:\070425\[木马]2\1[1]___0.exe(1)_
>>>F:\070425\[木马]2\1[1]___0.exe(1)_ 可能感染 -->           UPX
[Scan path] F:\070425\[木马]2\3[1].exe(1)_
F:\070425\[木马]2\3[1].exe(1)_ 感染 -->      Trojan.PWS.Wsgame
[Scan path] F:\070425\[木马]2\5[1].exe(1)_
>F:\070425\[木马]2\5[1].exe(1)_ 可能感染 -->           MULDROP.Trojan
[Scan path] F:\070425\[木马]2\5[1]___0.exe(1)_
F:\070425\[木马]2\5[1]___0.exe(1)_ 感染 -->      Trojan.PWS.Wsgame
[Scan path] F:\070425\[木马]2\6[1].exe(1)_
F:\070425\[木马]2\6[1].exe(1)_ 感染 -->      Trojan.MulDrop.5762
[Scan path] F:\070425\[木马]2\7.exe(1)_
>>>F:\070425\[木马]2\7.exe(1)_ 可能感染 -->           UPX
[Scan path] F:\070425\[木马]2\7[1].exe(1)_
>>>F:\070425\[木马]2\7[1].exe(1)_ 可能感染 -->           UPX
[Scan path] F:\070425\[木马]2\0794[1].exe(1)_
>F:\070425\[木马]2\0794[1].exe(1)_ 感染 -->      Trojan.DownLoader.21525
[Scan path] F:\070425\[木马]2\cns.exe(1)_
F:\070425\[木马]2\cns.exe(1)_ 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\ctfnom.exe(1)_
>>F:\070425\[木马]2\ctfnom.exe(1)_ 感染 -->      BackDoor.Twin
[Scan path] F:\070425\[木马]2\dnlsvc.exe(1)_
>F:\070425\[木马]2\dnlsvc.exe(1)_ 感染 -->      Trojan.DownLoader.7332
[Scan path] F:\070425\[木马]2\kehu0794[1].exe(1)_
>F:\070425\[木马]2\kehu0794[1].exe(1)_ 感染 -->      Trojan.DownLoader.21529
[Scan path] F:\070425\[木马]2\lyloade0.exe(1)_
>F:\070425\[木马]2\lyloade0.exe(1)_ 感染 -->      Trojan.MulDrop.6206
[Scan path] F:\070425\[木马]2\lyloader.exe(1)_
>F:\070425\[木马]2\lyloader.exe(1)_ 感染 -->      Trojan.MulDrop.6206
[Scan path] F:\070425\[木马]2\ms-16.exe(1)_
>F:\070425\[木马]2\ms-16.exe(1)_ 感染 -->      Trojan.PWS.Banker.6747
[Scan path] F:\070425\[木马]2\msccrt.exe(1)_
F:\070425\[木马]2\msccrt.exe(1)_ 感染 -->      Trojan.PWS.Wsgame
[Scan path] F:\070425\[木马]2\network.exe(1)_
F:\070425\[木马]2\network.exe(1)_ 是 Adware 程序    Adware.QQHelp
[Scan path] F:\070425\[木马]2\new[1].exe(1)_
>F:\070425\[木马]2\new[1].exe(1)_ - 好
[Scan path] F:\070425\[木马]2\nwizmhxy.exe(1)_
>F:\070425\[木马]2\nwizmhxy.exe(1)_ 可能感染 -->           MULDROP.Trojan
[Scan path] F:\070425\[木马]2\ravwm.exe(1)_
>>>F:\070425\[木马]2\ravwm.exe(1)_ 可能感染 -->           UPX
[Scan path] F:\070425\[木马]2\servet.exe(1)_
>F:\070425\[木马]2\servet.exe(1)_ 感染 -->      Trojan.DownLoader.21529
[Scan path] F:\070425\[木马]2\setup.exe(1)_
>F:\070425\[木马]2\setup.exe(1)_ - 文档    NSIS
>>F:\070425\[木马]2\setup.exe(1)_\data001 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data002 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data003 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data004 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data005 - 好
>F:\070425\[木马]2\setup.exe(1)_\data006 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data007 - 好
>F:\070425\[木马]2\setup.exe(1)_\data008 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data009 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data010 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data011 - 好
>F:\070425\[木马]2\setup.exe(1)_\data012 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data013 - 好
>F:\070425\[木马]2\setup.exe(1)_\data014 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data015 - 好
>F:\070425\[木马]2\setup.exe(1)_\data016 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data017 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data018 - 好
>F:\070425\[木马]2\setup.exe(1)_\data019 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data020 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data021 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data022 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data023 - 好
>F:\070425\[木马]2\setup.exe(1)_\data024 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data025 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data026 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data027 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data028 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data029 是 Adware 程序    Adware.Cdn
>F:\070425\[木马]2\setup.exe(1)_\data030 - 好
F:\070425\[木马]2\setup.exe(1)_ - 文档包含感染对象                 
[Scan path] F:\070425\[木马]2\uninrest.exe(1)_
F:\070425\[木马]2\uninrest.exe(1)_ 是 Adware 程序    Adware.Cdn
[Scan path] F:\070425\[木马]2\update.exe(1)_
F:\070425\[木马]2\update.exe(1)_ 是 Adware 程序    Adware.QQHelp
[Scan path] F:\070425\[木马]2\upxdndq.exe(1)_
F:\070425\[木马]2\upxdndq.exe(1)_ 感染 -->      Trojan.PWS.Wsgame
[Scan path] F:\070425\[木马]2\winform.exe(1)_
>F:\070425\[木马]2\winform.exe(1)_ 可能感染 -->           BACKDOOR.Trojan
[Scan path] F:\070425\[木马]2\yassist4[1].exe(1)_
>>F:\070425\[木马]2\yassist4[1].exe(1)_ - 文档    NSIS
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data001 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data002 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data003 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data004 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data005 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data006 - 文档    CAB
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data006\ylive.exe 是 Adware 程序    Adware.Yassist
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data006\yhelper.dll 是 Adware 程序    Adware.Yassist
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data006\yal01.dat - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data006\yal01.dat - 文档包含感染对象                 
>F:\070425\[木马]2\yassist4[1].exe(1)_\data007 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data008 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data009 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data010 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data011 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data012 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data013 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data014 - 文档    BINARYRES
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001 - 文档    CAB
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\CoolBar/prodef.ini - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\CoolBar/profile.ini - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/adkiller.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/alert.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/alertnew.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/anitvirus.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/assist.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/clear.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/custheme.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/hilight.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/iefix.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/logo.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/music.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/musiclink.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/musictop.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/picture.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/search.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/searchtop.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/settings.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/yphtb.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/Thumbs.db - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\Images/gouwu.bmp - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\SearchBar/prodef.ini - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\SearchBar/profile.ini - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\SecurityBar/prodef.ini - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\SecurityBar/profile.ini - 好
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data001\SecurityBar/profile.ini - 好
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data002 - 文档    CAB
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data002\sremove.exe 是 Adware 程序    Adware.Yassist
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data002\sremove.exe - 文档包含感染对象                 
>F:\070425\[木马]2\yassist4[1].exe(1)_\data014\data002\sremove.exe - 文档包含感染对象                 
>F:\070425\[木马]2\yassist4[1].exe(1)_\data015 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data016 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data017 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data018 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data019 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data020 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data021 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data022 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data023 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data024 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data025 - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data026 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data027 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data028 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data029 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data030 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data031 - 好
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data032 - 好
>>>F:\070425\[木马]2\yassist4[1].exe(1)_\data033 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data034 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data035 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data036 - 好
>>F:\070425\[木马]2\yassist4[1].exe(1)_\data037 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data038 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data039 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data040 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data041 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data042 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data043 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data044 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data045 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data046 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data047 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data048 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data049 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data050 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data051 - 好
>F:\070425\[木马]2\yassist4[1].exe(1)_\data052 - 好
F:\070425\[木马]2\yassist4[1].exe(1)_ - 文档包含感染对象                 
[Scan path] F:\070425\[木马]2\复件1[1].exe(1)_
>F:\070425\[木马]2\复件1[1].exe(1)_ 可能感染 -->           BACKDOOR.Trojan
[Scan path] F:\070425\[木马]2\复件5[1].exe(1)_
>F:\070425\[木马]2\复件5[1].exe(1)_ 可能感染 -->           MULDROP.Trojan
[Scan path] F:\070425\[木马]2\复件7.exe(1)_
>>>F:\070425\[木马]2\复件7.exe(1)_ 可能感染 -->           UPX
[Scan path] F:\070425\[木马]2\复件network.exe(1)_
F:\070425\[木马]2\复件network.exe(1)_ 是 Adware 程序    Adware.QQHelp
[Scan path] F:\070425\[木马]2\复件nwizmhxy.exe(1)_
>F:\070425\[木马]2\复件nwizmhxy.exe(1)_ 可能感染 -->           MULDROP.Trojan
回复

举报

欠妳緈諨
发表于 2007-4-25 11:04:01 | 显示全部楼层
发了这么一大排,却没有样本
回复

举报

qqq000@qq.com
头像被屏蔽
 楼主| 发表于 2007-4-25 11:04:42 | 显示全部楼层
=
回复

举报

The EQs
发表于 2007-4-25 11:05:09 | 显示全部楼层
蜘蛛连UPX都报????
回复

举报

qqq000@qq.com
头像被屏蔽
 楼主| 发表于 2007-4-25 11:06:13 | 显示全部楼层

2

2

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

qqq000@qq.com
头像被屏蔽
 楼主| 发表于 2007-4-25 11:10:57 | 显示全部楼层

1

1

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

qqq000@qq.com
头像被屏蔽
 楼主| 发表于 2007-4-25 11:12:07 | 显示全部楼层

3

3

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

qqq000@qq.com
头像被屏蔽
 楼主| 发表于 2007-4-25 11:13:09 | 显示全部楼层

y

y
没了

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

The EQs
发表于 2007-4-25 11:14:47 | 显示全部楼层

Scan performed at: 2007-4-25 11:14:39
Scanning Log
NOD32 version 2216 (20070424) NT
Command line: C:\Documents and Settings\EQ2\桌面\[木马]2
Operating memory - is OK

Date: 25.4.2007  Time: 11:14:43
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\[木马]2\
C:\Documents and Settings\EQ2\桌面\[木马]2\0794[1].exe(1)_ - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\3[1].exe(1)_ - a variant of Win32/PSW.Agent.NDF trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\5[1].exe(1)_ - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\5[1]___0.exe(1)_ - a variant of Win32/PSW.Agent.NCC trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\6[1].exe(1)_ - Win32/PSW.Delf.NHC trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\ctfnom.exe(1)_ - Win32/PSW.Agent.NEI trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\dnlsvc.exe(1)_ - Win32/TrojanProxy.Agent.JL trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\irjit.dll - Win32/TrojanDownloader.QQHelper.Z trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\kehu0794[1].exe(1)_ - Win32/TrojanDownloader.Delf.BHO trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\lyloade0.exe(1)_ - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\EQ2\桌面\[木马]2\lyloader.exe(1)_ - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\EQ2\桌面\[木马]2\mowang.sys - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\mowang.tdm - probably a variant of Win32/Spy.Delf.PG trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\ms-16.exe(1)_ - a variant of Win32/TrojanClicker.Delf.CN trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\msccrt.exe(1)_ - a variant of Win32/PSW.Agent.NCC trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\msdirect.sys - Win32/Rootkit.Agent.NAD trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\network.exe(1)_ - a variant of Win32/Adware.AdHelper application
C:\Documents and Settings\EQ2\桌面\[木马]2\nu.dll - Win32/PSW.Agent.NAW trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\nwizmhxy.exe(1)_ - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\servet.exe(1)_ - Win32/TrojanDownloader.Delf.BHO trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\setup.exe(1)_ ?NSIS ?setup.exe - Win32/Adware.CDN application - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\[木马]2\tmp - Win32/TrojanDownloader.QQHelper.Z trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\uninrest.exe(1)_ - Win32/Adware.CDN application - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\update.exe(1)_ - a variant of Win32/TrojanDownloader.QQHelper trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\upxdndq.exe(1)_ - a variant of Win32/PSW.Agent.NDF trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\winform.exe(1)_ - probably a variant of Win32/PSW.Agent.NCC trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\复件1[1].exe(1)_ - probably a variant of Win32/PSW.Agent.NCC trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\复件5[1].exe(1)_ - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\EQ2\桌面\[木马]2\复件irjit.dll - Win32/TrojanDownloader.QQHelper.Z trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\[木马]2\复件network.exe(1)_ - a variant of Win32/Adware.AdHelper application
C:\Documents and Settings\EQ2\桌面\[木马]2\复件nwizmhxy.exe(1)_ - probably a variant of Win32/Genetik trojan
Number of scanned files: 136
Number of threats found: 31
Number of files cleaned: 31
Time of completion: 11:14:48 Total scanning time: 5 sec (00:00:05)

Notes:
[7] File is probably infected with an unknown virus.
回复

举报

mofunzone
发表于 2007-4-25 11:17:31 | 显示全部楼层
Start of the scan: 2007年4月24日  20:16

Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\[ľ��]2'
C:\Documents and Settings\morgan\My Documents\[ľ��]2\
  0794[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/Agent.22684
      [INFO]      The file was deleted!
  1[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  1[1]___0.exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  3[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/Agent.17920.26
      [INFO]      The file was deleted!
  5[1].exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '465fc884.qua'!
  5[1]___0.exe(1)_
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.ES.1776
      [INFO]      The file was deleted!
  6[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/PSW.Onlinegames.EU.6
      [INFO]      The file was deleted!
  7.exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  7[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  AutoLive.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CoolBar
      [INFO]      The file was deleted!
  cns.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Baido
      [INFO]      The file was deleted!
  cns.exe(1)_
      [DETECTION] Is the Trojan horse TR/Dldr.Baido
      [INFO]      The file was deleted!
  cns.exe=
      [DETECTION] Is the Trojan horse TR/Dldr.Baido
      [INFO]      The file was deleted!
  cns1.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Baido
      [INFO]      The file was deleted!
  cns1.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Baido
      [INFO]      The file was deleted!
  cns1u.cpr
  cnsminexm[1].cab
    [0] Archive type: CAB (Microsoft)
    --> CnsMinEx.dll
  cnsminhk[1].cab
    [0] Archive type: CAB (Microsoft)
    --> CnsHook.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/SuspectModule
        [WARNING]   Infected files in archives cannot be repaired!
        [INFO]      The file was deleted!
  cnsminkp.vxd
      [DETECTION] Contains signature of the application APPL/Inst.Yok.6
      [INFO]      The file was deleted!
  cnsminkp2k.sys
  cnsminkpxp.sys
  ctfnom.exe(1)_
      [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
      [INFO]      The file was deleted!
  descript.ion
  dnlsvc.exe(1)_
      [DETECTION] Is the Trojan horse TR/Dldr.Barrako
      [INFO]      The file was deleted!
  editor[1].js
  irjit.dll
      [DETECTION] Is the Trojan horse TR/Dldr.QQHelper.Z.1
      [INFO]      The file was deleted!
  keepmain.dll
      [DETECTION] Is the Trojan horse TR/Spy.CNSMin
      [INFO]      The file was deleted!
  kehu0794[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  lyloade0.exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '469ac8a9.qua'!
  lyloader.exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '469ac8aa.qua'!
  mowang.sys
      [DETECTION] Is the Trojan horse TR/Agent.22684
      [INFO]      The file was deleted!
  mowang.tdm
      [DETECTION] Is the Trojan horse TR/Agent.22684
      [INFO]      The file was deleted!
  mppds.dll
      [DETECTION] Is the Trojan horse TR/Agent.10240.32
      [INFO]      The file was deleted!
  ms-16.exe(1)_
      [DETECTION] Is the Trojan horse TR/Click.Delf.FJ.7
      [INFO]      The file was deleted!
  msccrt.exe(1)_
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.ES.1776
      [INFO]      The file was deleted!
  msdirect.sys
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/ForBot.AF.1 Backdoor server programs
      [INFO]      The file was deleted!
  network.exe(1)_
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.XG.11
      [INFO]      The file was deleted!
  new[1].exe(1)_
      [DETECTION] Is the Trojan horse TR/Dldr.H
      [INFO]      The file was deleted!
  nu.dll
      [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
      [INFO]      The file was deleted!
  nwizmhxy.exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '4697c8ab.qua'!
  ravwm.exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  servet.exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  setup.exe(1)_
  tmp
      [DETECTION] Is the Trojan horse TR/Dldr.QQHelper.Z.1
      [INFO]      The file was deleted!
  uninrest.exe(1)_
      [DETECTION] Is the Trojan horse TR/Agent.BCO
      [INFO]      The file was deleted!
  update.exe(1)_
      [DETECTION] Is the Trojan horse TR/Dldr.QQHelpe.q.1
      [INFO]      The file was deleted!
  upxdndq.exe(1)_
      [DETECTION] Is the Trojan horse TR/Agent.17920.26
      [INFO]      The file was deleted!
  winform.exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '469cc89f.qua'!
  yassist4[1].exe(1)_
  复件1[1].exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '4660172d.qua'!
  复件5[1].exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '4664172e.qua'!
  复件7.exe(1)_
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  复件cns.dll
      [DETECTION] Is the Trojan horse TR/Dldr.Baido
      [INFO]      The file was deleted!
  复件irjit.dll
      [DETECTION] Is the Trojan horse TR/Dldr.QQHelper.Z.1
      [INFO]      The file was deleted!
  复件network.exe(1)_
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.XG.11
      [INFO]      The file was deleted!
  复件nwizmhxy.exe(1)_
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '469d1730.qua'!


End of the scan: 2007年4月24日  20:17
Used time: 00:30 min

The scan has been done completely.

      1 Scanning directories
     58 Files were scanned
     48 viruses and/or unwanted programs were found
      8 classified as suspicious:
     40 files were deleted
      0 files were repaired
      8 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      2 Files not concerned
      2 Archives were scanned
      1 Warnings
      0 Notes
      0 Hidden objects were found
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-25 13:16 , Processed in 0.153095 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表