毒网收集的20个

显示全部楼层 · 发表于 2007-5-27 22:57:24

不对，卡7报3个

显示全部楼层 · 发表于 2007-5-28 00:47:04

Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\28'
C:\Documents and Settings\morgan\My Documents\28\EXE\
  0.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '46beb638.qua'!
  10.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '4687b63a.qua'!
  2.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    HEUR/Malware:[HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN]:<NvCplDaemon>=sz:2.exe
   [INFO]    The file was moved to '471b0cbd.qua'!
  3.exe
  5.exe
  6.exe
  637.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '4690b63e.qua'!
  7.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '46beb639.qua'!
  8.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '46beb63a.qua'!
  bt1.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '468ab680.qua'!
  bt2.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.SX.52
   [INFO]    The file was moved to '468bb680.qua'!
  bt3.exe
   [DETECTION] Is the Trojan horse TR/Agent.22016.B
   [INFO]    The file was moved to '468cb680.qua'!
  bt4.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.ES.2551
   [INFO]    The file was moved to '468db681.qua'!
  bt5.exe
   [DETECTION] Is the Trojan horse TR/PSW.Nilage.bjy.2
   [INFO]    The file was moved to '468eb681.qua'!
  bt6.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.OE.218
   [INFO]    The file was moved to '468fb681.qua'!
  bt7.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '4690b681.qua'!
  btb.exe
   [DETECTION] Is the Trojan horse TR/Agent.nma.1
   [INFO]    The file was moved to '46bbb682.qua'!
  coopen_setup.exe
  love.exe
   [DETECTION] Is the Trojan horse TR/PSW.Delf.AF.2
   [INFO]    The file was moved to '46cfb67d.qua'!
  xuik.exe

End of the scan: 2007年5月27日  09:47
Used time: 00:11 min

The scan has been done completely.

   2 Scanning directories
   20 Files were scanned
   15 viruses and/or unwanted programs were found
   8 classified as suspicious:
   0 files were deleted
   0 files were repaired
   15 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   -3 Files not concerned
   0 Archives were scanned
   0 Warnings
   0 Notes
   0 Hidden objects were found

显示全部楼层 · 发表于 2007-5-28 01:10:54

2.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    HEUR/Malware:[HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN]:<NvCplDaemon>=sz:2.exe
   [INFO]    The file was moved to '471b0cbd.qua'!

怎么有注册表的东西

显示全部楼层 · 发表于 2007-5-28 03:09:42

咖啡杀一半10个

2007-5-28 3:10:38 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\0.exe\00000c80.EXE New Malware.aj(特洛伊)
2007-5-28 3:10:38 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\2.exe New Malware.aj(特洛伊)
2007-5-28 3:10:38 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\7.exe New Malware.n(特洛伊)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\bt2.exe PWS-LegMir(特洛伊)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\bt4.exe PWS-LegMir(特洛伊)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\bt5.exe PWS-LegMir(特洛伊)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\bt6.exe New Malware.aj(特洛伊)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\btb.exe\00000c80.EXE New Malware.aj(特洛伊)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\love.exe W32/HLLP.Philis.kl (ED)(病毒)
2007-5-28 3:10:39 未采取操作 C:\Documents and Settings\Administrator\桌面\28\EXE\xuik.exe New Malware.aj(特洛伊)

显示全部楼层 · 发表于 2007-5-28 08:17:34

原帖由 mofunzone 于 2007-5-28 00:47 发表
Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\28'
C:\Documents and Settings\morgan\My Documents\28\EXE\
0.exe
[DETECTION] Contains suspicious ...

怎么会有这些提示？？？

--> bt1.exe
   [WARNING] An exception has been identified!
  --> bt2.exe
   [WARNING] An exception has been identified!
  --> bt3.exe
   [WARNING] An exception has been identified!
  --> bt4.exe
   [WARNING] An exception has been identified!
  --> bt5.exe
   [WARNING] An exception has been identified!
  --> bt6.exe
   [WARNING] An exception has been identified!

显示全部楼层 · 发表于 2007-5-28 17:15:59

木马名称:Trojan-PSW.Win32.OnLineGames.dvy
程序:
I:\TEST\070527\37\28[1]\EXE\2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.dtd
程序:
I:\TEST\070527\37\28[1]\EXE\BT1.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.dho
程序:
I:\TEST\070527\37\28[1]\EXE\BT2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan.Win32.MNLess.ex
程序:
I:\TEST\070527\37\28[1]\EXE\BT3.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.dqv
程序:
I:\TEST\070527\37\28[1]\EXE\BT4.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.Nilage.bmq
程序:
I:\TEST\070527\37\28[1]\EXE\BT5.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.dtz
程序:
I:\TEST\070527\37\28[1]\EXE\BT6.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.dwf
程序:
I:\TEST\070527\37\28[1]\EXE\BT7.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

显示全部楼层 · 发表于 2007-5-29 10:00:09

----------
[凝逸反毒] (http://hi.baidu.com/503165656)

[凝逸.扫描病毒引擎-日志] 2007.5.29 9:59:8

文件:F:\070529\28[1]\EXE\2.exe | 感染:Trojan.PWS.Soul [36>20070526_215840_0112.axx]3
操作:删除文件

文件:F:\070529\28[1]\EXE\5.exe | 感染:木马 [93>20070526_215840_0112.axx]3
操作:删除文件

文件:F:\070529\28[1]\EXE\7.exe | 感染:Trojan.PWS.Zhengtu [37>20070526_215840_0112.axx]3
操作:删除文件

文件:F:\070529\28[1]\EXE\love.exe | 感染:Win32.HLLW.Gavir.72 [105>20070526_215840_0112.axx]3
操作:删除文件

扫描完成|病毒:4 文件:20|耗时:1983
----------

毒网收集的20个

本帖子中包含更多资源

回复 #12 mofunzone 的帖子

微点全拦

本帖子中包含更多资源