收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 一大包几十个病毒
123下一页
返回列表 发新帖
查看: 3796|回复: 20
收起左侧

[病毒样本] 一大包几十个病毒

[复制链接]
troika
发表于 2007-5-8 07:04:37 | 显示全部楼层 |阅读模式
呵呵

[ 本帖最后由 troika 于 2007-5-8 07:05 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

The EQs
发表于 2007-5-8 07:11:45 | 显示全部楼层
nod32的成绩不敢恭维。。。上报
回复

举报

jlennon
头像被屏蔽
发表于 2007-5-8 07:58:12 | 显示全部楼层
Virus check with AntiVirusKit
Version 16.0.7
Virus signatures of 2007-5-4
Start time: 2007-5-8 7:56
Engine(s): KAV engine (AVK 17.5061), BD-Engine (BD 17.4685)
Heuristic: On
Archives: On
System areas: On

Check system areas...
Check selected directories and files...
Object: 1103[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Backdoor.Win32.Agent.ahj (KAV engine), GenPack:Trojan.Popwin.AG (BD-Engine)
Object: 20280.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.NewWeb.m (KAV engine)
Object: 20328[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.Agent.bz (KAV engine)
Object: cdn.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.CDN.K (BD-Engine)
Object: cdnaux.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.CDN.B (BD-Engine)
Object: cdnforie.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnup.S (BD-Engine)
Object: cdnins.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnhelper.AI (BD-Engine)
Object: cdnprh.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.CDN.K (BD-Engine)
Object: cdnprot.sys
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Bdsearch.B (BD-Engine)
Object: cdnsign.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnup.F (BD-Engine)
Object: cdnunins.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnhelper.AP (BD-Engine)
Object: cdnup.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnhelper.BA (BD-Engine)
Object: cdnuplib.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnhelper.AQ (BD-Engine)
Object: idnconvs.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.CDN.E (BD-Engine)
Object: setup.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\22
        Status: Move file into quarantine
        Virus: Adware.Cdnup.B (BD-Engine)
Object: 244191.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Dropper.Win32.Small.awk (KAV engine)
Object: 251281.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Dropper.Win32.Small.awk (KAV engine)
Object: stream data0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\ad_1720.exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.Boran.z (KAV engine)
Object: ad_1720.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.Boran.z (KAV engine)
Object: stream data0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\ad_1767[1].exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.Boran.z (KAV engine)
Object: ad_1767[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.Boran.z (KAV engine)
Object: bind_50407.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: DeepScan:Generic.Dld.ADL.C253783D (BD-Engine)
Object: bofang.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.WSearch.o (KAV engine)
Object: data0002
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\B[1].exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.NewWeb.m (KAV engine)
Object: data0003
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\B[1].exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.Agent.ck (KAV engine)
Object: data0004
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\B[1].exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.Agent.bz (KAV engine)
Object: B[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.NewWeb.m, not-a-virus:AdWare.Win32.Agent.ck, not-a-virus:AdWare.Win32.Agent.bz (KAV engine), Adware.Soduisearch.C (BD-Engine)
Object: stream data0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\d6[1].exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.BHO.av (KAV engine)
Object: (NSIS o) lzma_solid_nsis0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\d6[1].exe
        Status: Virus detected
        Virus: Adware.BHO.BY (BD-Engine)
Object: d6[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.BHO.av (KAV engine), Adware.BHO.BY (BD-Engine)
Object: (NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_nsis0003
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\dodolook133.exe
        Status: Virus detected
        Virus: Adware.Cinmus.AY (BD-Engine)
Object: dodolook133.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Adware.Cinmus.AY (BD-Engine)
Object: data0004
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\dodolook133[1].exe
        Status: Virus detected
        Virus: Trojan.Win32.Agent.akv (KAV engine)
Object: (NSIS o)=>lzma_nsis0002=>(NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_nsis0003
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\dodolook133[1].exe
        Status: Virus detected
        Virus: Adware.Cinmus.AY (BD-Engine)
Object: dodolook133[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan.Win32.Agent.akv (KAV engine), Adware.Cinmus.AY (BD-Engine)
Object: hbcmd.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.Dm.s (KAV engine)
Object: hostA.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Dropper.Win32.Small.awk (KAV engine)
Object: hostB.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Dropper.Win32.Small.awk (KAV engine)
Object: jubao144.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.AdMoke.dv (KAV engine), Trojan.Adload.L (BD-Engine)
Object: lfrmewrk.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Downloader.Win32.Adload.bz (KAV engine), Trojan.Adclicker.FC (BD-Engine)
Object: lssas.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan.Win32.Small.dl (KAV engine)
Object: nttstat[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Downloader.Win32.QQHelper.vn (KAV engine)
Object: rising.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Downloader.Win32.Small.ele (KAV engine), GenPack:Trojan.Downloader.Agent.BEC (BD-Engine)
Object: s117[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Downloader.Win32.Delf.bgp (KAV engine)
Object: se.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Backdoor.Win32.PcClient.is (KAV engine), Backdoor.PcClient.HP (BD-Engine)
Object: setup[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan-Dropper.Win32.Delf.or (KAV engine), MemScan:Trojan.Downloader.Agent.BEC (BD-Engine)
Object: shengji[1].exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Backdoor.Win32.Agent.ahj (KAV engine), Backdoor.Agent.AHQ (BD-Engine)
Object: data0003/stream data0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\ssog04.exe
        Status: Virus detected
        Virus: not-a-virus:AdWare.Win32.BHO.av (KAV engine)
Object: (NSIS o) lzma_nsis0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\ssog04.exe
        Status: Virus detected
        Virus: BehavesLike:Win32.ExplorerHijack (BD-Engine)
Object: (NSIS o)=>lzma_nsis0002=>(NSIS o) lzma_solid_nsis0001
        In archive: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp\ssog04.exe
        Status: Virus detected
        Virus: Adware.Sogou.B (BD-Engine)
Object: ssog04.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: not-a-virus:AdWare.Win32.BHO.av (KAV engine), BehavesLike:Win32.ExplorerHijack, Adware.Sogou.B (BD-Engine)
Object: temp.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan.Muldrop.BX (BD-Engine)
Object: tsBHO.dll
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Trojan.Spy.Agent.ABS (BD-Engine)
Object: ~az14y98.exe
        Path: C:\Documents and Settings\Administrator\桌面\Temp[1]\Temp
        Status: Move file into quarantine
        Virus: Adware.Cdn.H (BD-Engine)
Analysis complete: 2007-5-8 7:57
    55 files checked
    41 infected files detected
    0 suspected files detected
回复

举报

mofunzone
发表于 2007-5-8 08:12:44 | 显示全部楼层
比kav+bd还要强,hoho~~

Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\Temp'
C:\Documents and Settings\morgan\My Documents\Temp\Temp\
  001[1].exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  1103[1].exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.316 Backdoor server programs
      [INFO]      The file was deleted!
  20280.exe
      [DETECTION] Is the Trojan horse TR/Dldr.masa.1
      [INFO]      The file was deleted!
  20328[1].exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Agent.BZ.6
      [INFO]      The file was deleted!
  244191.exe
      [DETECTION] Is the Trojan horse TR/Drop.Small.awk.10
      [INFO]      The file was deleted!
  251281.exe
      [DETECTION] Is the Trojan horse TR/Drop.Small.awk.11
      [INFO]      The file was deleted!
  ad_1720.exe
  ad_1767[1].exe
      [DETECTION] Is the Trojan horse TR/Drop.Xoodast
      [INFO]      The file was deleted!
  Autolive.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CnsMin.C
      [INFO]      The file was deleted!
  bind_50099[1].exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '46adc0fd.qua'!
  bind_50202[1].exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '470a7b82.qua'!
  bind_50407.exe
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was moved to '46adc0ff.qua'!
  bofang.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BDSearch.Y.1
      [INFO]      The file was deleted!
  B[1].exe
      [DETECTION] Contains signature of the dropper DR/NewWeb.M
      [INFO]      The file was deleted!
  d6[1].exe
      [DETECTION] Contains signature of the dropper DR/BHO.AV.187
      [INFO]      The file was deleted!
  dodolook070.exe
  dodolook133.exe
      [DETECTION] Is the Trojan horse TR/Drop.Ag.170787.B
      [INFO]      The file was deleted!
  dodolook133[1].exe
      [DETECTION] Contains signature of the dropper DR/Agent.akv
      [INFO]      The file was deleted!
  ft001[1].exe
  GTIAPI.dll
  hbcmd.dll
      [DETECTION] Is the Trojan horse TR/BHO.126976
      [INFO]      The file was deleted!
  hostA.exe
      [DETECTION] Is the Trojan horse TR/Drop.Small.awk.11
      [INFO]      The file was deleted!
  hostB.exe
      [DETECTION] Is the Trojan horse TR/Drop.Small.awk.10
      [INFO]      The file was deleted!
  jubao144.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  lfrmewrk.exe
      [DETECTION] Is the Trojan horse TR/Adclicker.FC
      [INFO]      The file was deleted!
  lssas.exe
      [DETECTION] Is the Trojan horse TR/Small.DL.2
      [INFO]      The file was deleted!
  nttstat[1].exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
      [INFO]      The file was deleted!
  RGInstall.dll
      [DETECTION] Is the Trojan horse TR/Agent.110592
      [INFO]      The file was deleted!
  rising.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.ejw.9
      [INFO]      The file was deleted!
  s117[1].exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!
  se.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/PcClient.HP Backdoor server programs
      [INFO]      The file was deleted!
  setup-235[1].exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.1
      [INFO]      The file was deleted!
  Setup65.exe
  setup[1].exe
      [DETECTION] Is the Trojan horse TR/Delf.TT
      [INFO]      The file was deleted!
  shengji[1].exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.AHQ.1 Backdoor server programs
      [INFO]      The file was deleted!
  ssog04.exe
      [DETECTION] Contains signature of the dropper DR/BHO.AV.176
      [INFO]      The file was deleted!
  temp.exe
  tsBHO.dll
  ~az14y98.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.C.2.A
      [INFO]      The file was deleted!
C:\Documents and Settings\morgan\My Documents\Temp\Temp\22\
  cdn.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.3
      [INFO]      The file was deleted!
  cdnaux.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.4
      [INFO]      The file was deleted!
  cdnforie.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.5
      [INFO]      The file was deleted!
  cdnins.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.6
      [INFO]      The file was deleted!
  cdnprh.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BDSearch.dll
      [INFO]      The file was deleted!
  cdnprot.dat
  cdnprot.sys
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/BDSearch.B.7
      [INFO]      The file was deleted!
  cdnsign.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.B.5
      [INFO]      The file was deleted!
  cdnunins.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CDNHelper.U
      [INFO]      The file was deleted!
  cdnup.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/CDNHelper.T
      [INFO]      The file was deleted!
  cdnuplib.dll
  cdnvers.dat
  idnconvs.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.11.A
      [INFO]      The file was deleted!
  setup.exe
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Cdnup.A.3
      [INFO]      The file was deleted!
  setup.exe.manifest
  src.dat


End of the scan: 2007年5月7日  17:13
Used time: 00:19 min

The scan has been done completely.

      3 Scanning directories
     55 Files were scanned
     43 viruses and/or unwanted programs were found
      3 classified as suspicious:
     40 files were deleted
      0 files were repaired
      3 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      9 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes
      0 Hidden objects were found
回复

举报

fireworld
发表于 2007-5-8 08:25:17 | 显示全部楼层
天啊  全部没有反映 不活了
回复

举报

wangjay1980
发表于 2007-5-8 09:18:28 | 显示全部楼层
detected: virus Trojan.Generic (modification)        File: E:\Ñù±¾\Temp\001[1].exe//PE_Patch.PECompact//PecBundle//PECompact
detected: Trojan program Backdoor.Win32.Agent.ahj        File: E:\Ñù±¾\Temp\1103[1].exe
detected: adware not-a-virus:AdWare.Win32.NewWeb.m        File: E:\Ñù±¾\Temp\20280.exe
detected: adware not-a-virus:AdWare.Win32.Agent.bz        File: E:\Ñù±¾\Temp\20328[1].exe
detected: Trojan program Trojan-Dropper.Win32.Small.awk        File: E:\Ñù±¾\Temp\244191.exe
detected: Trojan program Trojan-Dropper.Win32.Small.awk        File: E:\Ñù±¾\Temp\251281.exe
detected: adware not-a-virus:AdWare.Win32.Boran.z        File: E:\Ñù±¾\Temp\ad_1720.exe//stream//data0001
detected: adware not-a-virus:AdWare.Win32.Boran.z        File: E:\Ñù±¾\Temp\ad_1767[1].exe//stream
detected: adware not-a-virus:AdWare.Win32.NewWeb.m        File: E:\Ñù±¾\Temp\B[1].exe//data0002
detected: adware not-a-virus:AdWare.Win32.Agent.ck        File: E:\Ñù±¾\Temp\B[1].exe//data0003
detected: adware not-a-virus:AdWare.Win32.Agent.bz        File: E:\Ñù±¾\Temp\B[1].exe//data0004
detected: virus Downloader (modification)        File: E:\Ñù±¾\Temp\bind_50099[1].exe
detected: virus Downloader (modification)        File: E:\Ñù±¾\Temp\bind_50202[1].exe
detected: virus Downloader (modification)        File: E:\Ñù±¾\Temp\bind_50407.exe
detected: adware not-a-virus:AdWare.Win32.WSearch.o        File: E:\Ñù±¾\Temp\bofang.exe
detected: adware not-a-virus:AdWare.Win32.BHO.av        File: E:\Ñù±¾\Temp\d6[1].exe//stream//data0001
detected: Trojan program Trojan.Win32.Agent.akv        File: E:\Ñù±¾\Temp\dodolook133[1].exe//data0004
detected: Trojan program Trojan-Dropper.Win32.Small.awk        File: E:\Ñù±¾\Temp\hostA.exe
detected: Trojan program Trojan-Dropper.Win32.Small.awk        File: E:\Ñù±¾\Temp\hostB.exe
detected: adware not-a-virus:AdWare.Win32.AdMoke.dv        File: E:\Ñù±¾\Temp\jubao144.exe//ASPack
detected: Trojan program Trojan-Downloader.Win32.Adload.bz        File: E:\Ñù±¾\Temp\lfrmewrk.exe
detected: Trojan program Trojan.Win32.Small.dl        File: E:\Ñù±¾\Temp\lssas.exe
detected: Trojan program Trojan-Downloader.Win32.QQHelper.vn        File: E:\Ñù±¾\Temp\nttstat[1].exe
detected: Trojan program Trojan-Downloader.Win32.Small.ele        File: E:\Ñù±¾\Temp\rising.exe
detected: Trojan program Trojan-Downloader.Win32.Delf.bgp        File: E:\Ñù±¾\Temp\s117[1].exe
detected: Trojan program Backdoor.Win32.PcClient.is        File: E:\Ñù±¾\Temp\se.exe
detected: Trojan program Trojan-Dropper.Win32.Delf.or        File: E:\Ñù±¾\Temp\setup[1].exe//ASPack
detected: Trojan program Backdoor.Win32.Agent.ahj        File: E:\Ñù±¾\Temp\shengji[1].exe
detected: virus Trojan.Generic (modification)        File: E:\Ñù±¾\Temp\ssog04.exe//data0002
detected: adware not-a-virus:AdWare.Win32.BHO.av        File: E:\Ñù±¾\Temp\ssog04.exe//data0003//stream//data0001
detected: virus StartPage (modification)        File: E:\Ñù±¾\Temp\temp.exe
detected: adware not-a-virus:AdWare.Win32.Dm.s        File: E:\Ñù±¾\Temp\hbcmd.dll
回复

举报

wao1201
发表于 2007-5-8 10:30:01 | 显示全部楼层
2007-5-8 10:33:27        Safe'n'Sec Scan report

2007-5-8 10:33:27        Scan start time:        2007-5-8 10:33:27

2007-5-8 10:33:27        Action applied to detected malware:       
2007-5-8 10:33:27        Scan level:        Full

2007-5-8 10:33:42        C:\Documents and Settings\Wao\桌面\Temp\1103[1].exe        Infected        GenPack:Trojan.Popwin.AG        Moved to quarantine
2007-5-8 10:33:51        C:\Documents and Settings\Wao\桌面\Temp\bind_50407.exe        Infected        DeepScan:Generic.Dld.ADL.C253783D        Moved to quarantine
2007-5-8 10:34:14        C:\Documents and Settings\Wao\桌面\Temp\jubao144.exe        Infected        Trojan.Adload.L        Moved to quarantine
2007-5-8 10:34:14        C:\Documents and Settings\Wao\桌面\Temp\lfrmewrk.exe        Infected        Trojan.Adclicker.FC        Moved to quarantine
2007-5-8 10:34:20        C:\Documents and Settings\Wao\桌面\Temp\rising.exe        Infected        GenPack:Trojan.Downloader.Agent.BEC        Moved to quarantine
2007-5-8 10:34:20        C:\Documents and Settings\Wao\桌面\Temp\se.exe        Infected        Backdoor.PcClient.HP        Moved to quarantine
2007-5-8 10:34:24        C:\Documents and Settings\Wao\桌面\Temp\setup[1].exe        Infected        MemScan:Trojan.Downloader.Agent.BEC        Moved to quarantine
2007-5-8 10:34:24        C:\Documents and Settings\Wao\桌面\Temp\shengji[1].exe        Infected        Backdoor.Agent.AHQ        Moved to quarantine
2007-5-8 10:34:31        C:\Documents and Settings\Wao\桌面\Temp\ssog04.exe        Infected                Moved to quarantine
2007-5-8 10:34:31        C:\Documents and Settings\Wao\桌面\Temp\temp.exe        Infected        Trojan.Muldrop.BX        Moved to quarantine
2007-5-8 10:34:32        C:\Documents and Settings\Wao\桌面\Temp\tsBHO.dll        Infected        Trojan.Spy.Agent.ABS        Moved to quarantine
2007-5-8 10:34:34        Scan area:

2007-5-8 10:34:34        C:\Documents and Settings\Wao\桌面\Temp
2007-5-8 10:34:34       
2007-5-8 10:34:34        Objects scanned:        55
2007-5-8 10:34:34        Malicious objects detected:        11
2007-5-8 10:34:34        Malicious objects deleted / removed:        11

2007-5-8 10:34:34        Scan completion time:        2007-5-8 10:34:34
回复

举报

1p1
发表于 2007-5-8 10:30:40 | 显示全部楼层
原帖由 EQ2 于 2007-5-8 07:11 发表
nod32的成绩不敢恭维。。。上报



大部分是广告 [:23:]
回复

举报

The EQs
发表于 2007-5-8 10:31:29 | 显示全部楼层
nod32杀广告很一般。。。。。
回复

举报

tracydk
发表于 2007-5-8 10:37:28 | 显示全部楼层
广告又没什么威胁
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-1-12 04:07 , Processed in 0.124452 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表