收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 42个
123下一页
返回列表 发新帖
查看: 3831|回复: 25
收起左侧

[病毒样本] 42个

[复制链接]
FBAV
发表于 2007-7-17 20:25:04 | 显示全部楼层 |阅读模式
Temp

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

The EQs
发表于 2007-7-17 20:27:55 | 显示全部楼层
Scan performed at: 2007-7-17 20:27:32
Scanning Log
NOD32 version 2402 (20070717) NT
Command line: C:\Documents and Settings\EQ2\桌面\桌面
Operating memory - is OK

Date: 17.7.2007  Time: 20:27:38
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\桌面\
C:\Documents and Settings\EQ2\桌面\桌面\1.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\10.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\2.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\3.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\4.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\5.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\6.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\7.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\8.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\9.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\daso.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\db_13.exe.Vir - a variant of Win32/PSW.OnLineGames.NDA trojan
C:\Documents and Settings\EQ2\桌面\桌面\db_15.exe - a variant of Win32/PSW.OnLineGames.NCU trojan
C:\Documents and Settings\EQ2\桌面\桌面\db_4.exe.Vir - probably a variant of Win32/TrojanDownloader.Delf.NSA trojan
C:\Documents and Settings\EQ2\桌面\桌面\fyso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\jtso.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\M1.exe - a variant of Win32/PSW.OnLineGames.NBR trojan
C:\Documents and Settings\EQ2\桌面\桌面\mhso.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\qjso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\rxso.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\rxso0.dll - a variant of Win32/PSW.OnLineGames.NBD trojan
C:\Documents and Settings\EQ2\桌面\桌面\tlso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\wdso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\wgso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\wlso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\wlso0.dll - Win32/PSW.OnLineGames.NDB trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\桌面\wmso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\woso.exe - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\ztso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\桌面\zxso.exe.Vir - probably a variant of Win32/PSW.Agent.NDP trojan
Number of scanned files: 42
Number of threats found: 30
Number of files cleaned: 30
Time of completion: 20:27:45 Total scanning time: 7 sec (00:00:07)
回复

举报

1688388728
发表于 2007-7-17 20:31:11 | 显示全部楼层

蜘蛛35个

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\eee[1].rar\wlso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\eee[1].rar\wmso0.dll - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\eee[1].rar\wmso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\eee[1].rar\woso.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\eee[1].rar\ztso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\eee[1].rar\zxso.exe.Vir - infected with Trojan.PWS.Wsgame

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\1.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\2.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\3.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\4.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\5.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\6.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\7.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\8.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\9.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\10.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\daso.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\db_4.exe.Vir - infected with Trojan.MulDrop.5969
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\db_10.exe.Vir - infected with Trojan.Havedo
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\db_12.exe - infected with BINARYRES
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\db_15.exe - infected with Trojan.PWS.Gamania.2682
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\fyso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\jtso.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\M1.exe - infected with Win32.HLLW.Autoruner.175
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\mhso.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\qjso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\rxso0.dll - infected with Trojan.PWS.Gamania.origin
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\rxso.exe - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\tlso0.dll - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\tlso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\wdso0.dll - infected with Trojan.PWS.Gamania
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\wdso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\wgso0.dll - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\wgso.exe.Vir - infected with Trojan.PWS.Wsgame
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\Temp[1].rar\wlso0.dll - infected with Trojan.PWS.Wsgame

[ 本帖最后由 1688388728 于 2007-7-17 20:32 编辑 ]
回复

举报

红心王子
发表于 2007-7-17 20:31:19 | 显示全部楼层
狮子吃掉38个
漏杀的上报。
回复

举报

wangjay1980
发表于 2007-7-17 20:32:10 | 显示全部楼层
37

deleted: virus Virus.Win32.AutoRun.bk File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.zip/M1.exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/1.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/2.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/3.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/4.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/5.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/6.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/7.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/8.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/9.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/10.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nw        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/daso.exe//PE_Patch//UPack
detected: virus Virus.Win32.AutoRun.au        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/db_4.exe.Vir
detected: Trojan program Trojan-Proxy.Win32.Small.du        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/db_10.exe.Vir
detected: Trojan program Backdoor.Win32.WinterLove.z        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/db_12.exe
detected: Trojan program Trojan-Downloader.Win32.Small.ewc        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/db_13.exe.Vir//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.es        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/db_15.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/fyso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/jtso.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/mhso.exe//PE_Patch//UPack
detected: virus Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/oKoK.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/qjso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.abv        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/rxso0.dll
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/rxso.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bs        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/tlso0.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/tlso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bs        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/wdso0.dll
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/wdso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.abh        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/wgso0.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ui        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/wgso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.qo        File: C:\Documents and Settings\Owner\×ÀÃæ\Temp.rar/wlso0.dll
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\eee.rar/wlso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.sl        File: C:\Documents and Settings\Owner\×ÀÃæ\eee.rar/wmso0.dll
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\eee.rar/wmso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\eee.rar/woso.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\eee.rar/ztso.exe.Vir//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.Small.cf        File: C:\Documents and Settings\Owner\×ÀÃæ\eee.rar/zxso.exe.Vir//PE_Patch//UPack

[ 本帖最后由 wangjay1980 于 2007-7-17 20:44 编辑 ]
回复

举报

haokoo
发表于 2007-7-17 20:33:42 | 显示全部楼层
不是说42个病毒么?
为什么扫描的结果是30个?
回复

举报

qqq000@qq.com
头像被屏蔽
发表于 2007-7-17 20:36:10 | 显示全部楼层
----------
              [凝逸反毒] (http://hi.baidu.com/503165656)

       [凝逸.扫描病毒引擎-日志]       2007.7.17 20:36:2

文件:F:\070717\eee\wlso.exe.Vir | 感染:Trojan.PWS.Wsgame [218>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\wmso0.dll | 感染:Trojan.PWS.Wsgame [532>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\wmso.exe.Vir | 感染:Trojan.PWS.Wsgame [765>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\ztso.exe.Vir | 感染:Trojan.PWS.Wsgame [439>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\zxso.exe.Vir | 感染:Trojan.PWS.Wsgame [296>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\3.exe.Vir | 感染:Trojan.PWS.Wsgame [439>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\4.exe | 感染:Trojan.PWS.Wsgame [527>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\5.exe.Vir | 感染:Trojan.PWS.Wsgame [218>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\6.exe.Vir | 感染:Trojan.PWS.Wsgame [76>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\7.exe.Vir | 感染:Trojan.PWS.Wsgame [765>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\8.exe.Vir | 感染:Trojan.PWS.Wsgame [410>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\9.exe.Vir | 感染:Trojan.PWS.Wsgame [716>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\10.exe | 感染:Trojan.PWS.Wsgame [578>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\daso.exe | 感染:Trojan.PWS.Wsgame [685>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\fyso.exe.Vir | 感染:Trojan.PWS.Wsgame [410>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\jtso0.dll | 感染:Trojan.PWS.Wsgame [1579>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\jtso.exe | 感染:Trojan.PWS.Wsgame [527>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\oKoK.exe | 感染:Trojan.PWS.Wsgame [1130>20070716_3159f3.axx]3(1.1)
操作:删除文件
文件:F:\070717\eee\qjso.exe.Vir | 感染:Trojan.PWS.Wsgame [716>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\rxso0.dll | 感染:Trojan.PWS.Wsgame [1581>20070716_3159f3.axx]3(1.1)
操作:删除文件
文件:F:\070717\eee\rxso.exe | 感染:Trojan.PWS.Wsgame [578>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\tlso0.dll | 感染:Trojan.PWS.Wsgame [501>20070716_3159f3.axx]2(1.2)
操作:删除文件
文件:F:\070717\eee\tlso.exe.Vir | 感染:Trojan.PWS.Wsgame [322>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\wdso0.dll | 感染:Trojan.PWS.Gamania [251>20070716_3159f3.axx]3(1.1)
操作:删除文件
文件:F:\070717\eee\wdso.exe.Vir | 感染:Trojan.PWS.Wsgame [112>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\wgso0.dll | 感染:Trojan.PWS.Wsgame [712>20070716_3159f3.axx]3(1.1)
操作:删除文件
文件:F:\070717\eee\wgso.exe.Vir | 感染:Trojan.PWS.Wsgame [76>20070716_3159f3.axx]2(1.1)
操作:删除文件
文件:F:\070717\eee\wlso0.dll | 感染:Trojan.PWS.Wsgame [432>20070716_3159f3.axx]2(1.1)
操作:删除文件

扫描完成|病毒:28 文件:42|耗时:8101
----------
回复

举报

zane_xzz
发表于 2007-7-17 20:37:34 | 显示全部楼层
Begin scan in 'C:\Documents and Settings\Administrator\桌面\Temp.rar'
C:\Documents and Settings\Administrator\桌面\Temp.rar
  [0] Archive type: RAR
  --> 1.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 2.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 3.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 4.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 5.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 6.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 7.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 8.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 9.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 10.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> daso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> db_1.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.SPfile
  --> db_4.exe.Vir
      [DETECTION] Is the Trojan horse TR/Dldr.Delf.bfs
  --> db_12.exe
      [DETECTION] Is the Trojan horse TR/Drop.Age.32873.C
  --> db_13.exe.Vir
      [DETECTION] Is the Trojan horse TR/Hook.Shell.155
  --> db_14.exe.Vir
      [DETECTION] Contains signature of the dropper DR/KWin.1
  --> db_15.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
  --> fyso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> jtso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> jtso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> M1.exe
      [DETECTION] Is the Trojan horse TR/Autorun.BK
  --> mhso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> oKoK.exe
      [DETECTION] Is the Trojan horse TR/Onlinegames.FQ
  --> qjso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> rxso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> rxso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> tlso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> tlso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wdso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wdso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wgso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wgso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wlso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wlso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wmso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> wmso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> woso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> ztso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> zxso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [WARNING]   The file was ignored!
回复

举报

风雪
发表于 2007-7-17 20:38:08 | 显示全部楼层
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>1.exe,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>10.exe,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>2.exe,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.GamePass.mda.jsax,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>3.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>4.exe,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.GamePass.mda.gqep,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>5.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanDownloader.Adload.lp.krfw,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>6.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.Small.cf.akvx,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>7.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.ui.ikte,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>8.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.Small.cf.likg,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>9.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.dga.lisw,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>daso.exe,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.Possible/Packed,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_1.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanProxy.Small.du.gaeo,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_10.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,W32.AutoRun.en.ypyz,病毒,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_12.exe,Manual scan
1184675944,2007-7-17 20:39:04,Backdoor.Huigezi.2007.tem.yagq,后门,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_13.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,Packed.NSPack.a,带壳程序,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_14.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.GamePass.sdl.dsly,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_15.exe,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.Possible/Packed,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>db_4.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.ui.ikte,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>fyso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>jtso.exe,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>mhso.exe,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>oKoK.exe,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.Small.cf.likg,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>qjso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>rxso.exe,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.ui.bilx,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>tlso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.bs.ogwa.dll,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>tlso0.dll,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.Small.cf.jyfw,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>wdso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnlineGames.byp.qoor.dll,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>wdso0.dll,Manual scan
1184675944,2007-7-17 20:39:04,TrojanDownloader.Adload.lp.krfw,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>wgso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.abh.assu.dll,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>wgso0.dll,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.qo.qwfd.dll,木马,mygood,D:\3\新建文件夹\新建文件夹\Temp.rar>>wlso0.dll,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.GamePass.mda.gqep,木马,mygood,D:\3\新建文件夹\新建文件夹\eee.rar>>wlso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.Small.cf.akvx,木马,mygood,D:\3\新建文件夹\新建文件夹\eee.rar>>wmso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.OnLineGames.sl.hgtc.dll,木马,mygood,D:\3\新建文件夹\新建文件夹\eee.rar>>wmso0.dll,Manual scan
1184675944,2007-7-17 20:39:04,Heuri.ERNM,启发式扫描,mygood,D:\3\新建文件夹\新建文件夹\eee.rar>>woso.exe,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.GamePass.mda.jsax,木马,mygood,D:\3\新建文件夹\新建文件夹\eee.rar>>ztso.exe.Vir,Manual scan
1184675944,2007-7-17 20:39:04,TrojanPSW.Small.cf.dxhf,木马,mygood,D:\3\新建文件夹\新建文件夹\eee.rar>>zxso.exe.Vir,Manual scan
费尔37。
回复

举报

Giggs
发表于 2007-7-17 20:39:10 | 显示全部楼层
Start of the scan: 2007年7月17日  20:38

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\新建文件夹'
C:\Documents and Settings\Administrator\桌面\新建文件夹\1.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '4701b87a.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\10.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46cab87c.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\2.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46a35b97.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\3.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '4701b87b.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\4.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46a35b90.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\5.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '4701b87d.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\6.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46a35b92.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\7.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '4701b87c.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\8.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46a35b91.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\9.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '4701b87e.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\daso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8af.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\db_1.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.SPfile
      [INFO]      A backup was created as '46fbb8b1.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\db_12.exe
      [DETECTION] Is the Trojan horse TR/Drop.Age.32873.C
      [INFO]      A backup was created as '47595b5e.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\db_13.exe.Vir
      [DETECTION] Is the Trojan horse TR/Hook.Shell.155
      [INFO]      A backup was created as '46fbb8b3.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\db_14.exe.Vir
      [DETECTION] Contains signature of the dropper DR/KWin.1
      [INFO]      A backup was created as '47595b58.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\db_15.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
      [INFO]      A backup was created as '46fbb8b2.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\db_4.exe.Vir
      [DETECTION] Is the Trojan horse TR/Dldr.Delf.bfs
      [INFO]      A backup was created as '47595b5f.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\fyso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8c9.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\jtso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8c4.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\jtso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8c5.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\M1.exe
      [DETECTION] Is the Trojan horse TR/Autorun.BK
      [INFO]      A backup was created as '46cab882.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\mhso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8b9.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\oKoK.exe
      [DETECTION] Is the Trojan horse TR/Onlinegames.FQ
      [INFO]      A backup was created as '470bb89c.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\qjso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8bc.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\rxso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8ca.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\rxso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46ad5b27.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\tlso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8be.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\tlso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8bf.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wdso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8b7.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wdso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46ad5b54.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wgso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8ba.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wgso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8bb.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wlso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8c0.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wlso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46ad5b2d.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wmso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8c1.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\wmso0.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46ad5b2e.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\woso.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46ad5b29.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\ztso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '46ad5b26.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\新建文件夹\zxso.exe.Vir
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [INFO]      A backup was created as '470fb8cd.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!


End of the scan: 2007年7月17日  20:38
Used time: 00:11 min

The scan has been done completely.

      1 Scanning directories
     42 Files were scanned
     39 viruses and/or unwanted programs were found
回复

举报

下一页 »
123下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-4 15:00 , Processed in 0.136370 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表