新抓来一包

显示全部楼层 · 发表于 2007-7-20 20:20:09

21只

显示全部楼层 · 发表于 2007-7-20 20:44:58

===================================================================================================
NVCOD On Demand Scanner 5.80.02

NSE revision 5.91.02
nvcbin.def revision 5.90.00 of 2007/07/19 17:24:52 (812833 variants)
nvcmacro.def revision 5.90.00 of 2007/06/29 06:32:19 (20341 variants)
Total number of variants: 833174
Command line: "@C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~OD7.tmp"
===================================================================================================

   Time  Filename                                                    Virus name
---------------------------------------------------------------------------------------------------
- Scanning files in the directory: F:\v\
      0 ms F:\v\$$a.bat
   15 ms F:\v\daso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\daso0.dll
   16 ms F:\v\fyso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\fyso0.dll
      0 ms F:\v\jtso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\jtso0.dll
   3109 ms F:\v\M1.exe
      0 ms F:\v\mhso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\mhso0.dll
      0 ms F:\v\oKoK.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\qjso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\qjso0.dll                                              Trojan W32/OnLineGames.IHM ()
      0 ms F:\v\rxso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\rxso0.dll
      0 ms F:\v\tlso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\tlso0.dll                                              Trojan W32/OnLineGames.IHB ()
      0 ms F:\v\wdso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\wdso0.dll                                              Trojan W32/OnLineGames.IGZ ()
   15 ms F:\v\wgso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\wgso0.dll
      0 ms F:\v\wlso.exe                                              Security Risk W32/Suspicious_U.gen ()
   16 ms F:\v\wlso0.dll
      0 ms F:\v\wmso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\wmso0.dll
      0 ms F:\v\woso.exe                                              Security Risk W32/Suspicious_U.gen ()
   16 ms F:\v\woso0.dll                                              Trojan W32/Smalltroj.BILQ ()
      0 ms F:\v\ztso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\ztso0.dll                                              Backdoor W32/Lineage.AUPZ ()
   16 ms F:\v\zxso.exe                                              Security Risk W32/Suspicious_U.gen ()
      0 ms F:\v\zxso0.dll                                              Trojan W32/OnLineGames.IHA ()
- File F:\v\daso.exe quarantined.
- File F:\v\daso.exe deleted.
- File F:\v\fyso.exe quarantined.
- File F:\v\fyso.exe deleted.
- File F:\v\jtso.exe quarantined.
- File F:\v\jtso.exe deleted.
- File F:\v\mhso.exe quarantined.
- File F:\v\mhso.exe deleted.
- File F:\v\oKoK.exe quarantined.
- File F:\v\oKoK.exe deleted.
- File F:\v\qjso.exe quarantined.
- File F:\v\qjso.exe deleted.
- File F:\v\qjso0.dll quarantined.
- File F:\v\qjso0.dll deleted.
- File F:\v\rxso.exe quarantined.
- File F:\v\rxso.exe deleted.
- File F:\v\tlso.exe quarantined.
- File F:\v\tlso.exe deleted.
- File F:\v\tlso0.dll quarantined.
- File F:\v\tlso0.dll deleted.
- File F:\v\wdso.exe quarantined.
- File F:\v\wdso.exe deleted.
- File F:\v\wdso0.dll quarantined.
- File F:\v\wdso0.dll deleted.
- File F:\v\wgso.exe quarantined.
- File F:\v\wgso.exe deleted.
- File F:\v\wlso.exe quarantined.
- File F:\v\wlso.exe deleted.
- File F:\v\wmso.exe quarantined.
- File F:\v\wmso.exe deleted.
- File F:\v\woso.exe quarantined.
- File F:\v\woso.exe deleted.
- File F:\v\woso0.dll quarantined.
- File F:\v\woso0.dll deleted.
- File F:\v\ztso.exe quarantined.
- File F:\v\ztso.exe deleted.
- File F:\v\ztso0.dll quarantined.
- File F:\v\ztso0.dll deleted.
- File F:\v\zxso.exe quarantined.
- File F:\v\zxso.exe deleted.
- File F:\v\zxso0.dll quarantined.
- File F:\v\zxso0.dll deleted.

===================================================================================================

The scanning started: 2007/07/20 20:42:13
            ended: 2007/07/20 20:42:16
Logged on as       : Administrator
on hostname       : BE29C0E1C4C9406

Scanning results:
Total number of files found..............................:    31
Number of files scanned..................................:    31
Number of files/directories skipped due to exclude list..:    0
Number of files that could not be opened.................:    0
Number of archive files unpacked.........................:    0
Number of archive files not unpacked.....................:    0
Number of infections.....................................:    21

Copyright (c) 1993-2005 Norman ASA.

显示全部楼层 · 发表于 2007-7-20 23:18:58

不是测定压缩包的MD5，
C:\ABC\包包\$$a.bat
C:\ABC\包包\daso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\daso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.nw' 被发现
C:\ABC\包包\fyso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\fyso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.abi' 被发现
C:\ABC\包包\jtso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\jtso0.dll - 特征码 'Generic.Onlinegames.3' 被发现
C:\ABC\包包\M1.exe - 特征码 'Virus.Win32.AutoRun.bk' 被发现
C:\ABC\包包\mhso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\mhso0.dll - 特征码 'Generic.PWS.Games' 被发现
C:\ABC\包包\oKoK.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\qjso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\qjso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.bs' 被发现
C:\ABC\包包\rxso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\rxso0.dll - 特征码 'Generic.PWS.Games' 被发现
C:\ABC\包包\tlso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\tlso0.dll - 特征码 'Generic.Onlinegames.3' 被发现
C:\ABC\包包\wdso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\wdso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.bs' 被发现
C:\ABC\包包\wgso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\wgso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.abh' 被发现
C:\ABC\包包\wlso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\wlso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.qo' 被发现
C:\ABC\包包\wmso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\wmso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.sl' 被发现
C:\ABC\包包\woso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\woso0.dll - 特征码 'Trojan-PWS.Win32.Small.cf' 被发现
C:\ABC\包包\ztso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\ztso0.dll - 特征码 'Trojan-PWS.Win32.Nilage.bjp' 被发现
C:\ABC\包包\zxso.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\包包\zxso0.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.qo' 被发现

31 个文件被扫描
(0 个压缩档 0 个文件)
30 个特征码被侦测
0 个可疑代码段被发现
耗时: 0:00.171

显示全部楼层 · 发表于 2007-7-21 13:47:37

狮子全杀[:27:]

显示全部楼层 · 发表于 2007-7-21 16:45:10

McAfee VirusScan for Win32 v5.20.0
Copyright (c) 1992-2005 Networks Associates Technology Inc. All rights reserved.
(408) 988-3832  LICENSED COPY - Jun  5 2007
Scan engine v5.2.00 for Win32.
Virus data file v5079 created Jul 20 2007
Scanning for 289650 viruses, trojans and variants.
Using C:\Documents and Settings\小飞侠.net\桌面\桌面\McAfee VirusScan\EXTRA.DAT to scan for 0 additional virus(es).

07/21/2007  16:44:06

Options:
"V:\VIRUSDOC20070721\VM20070721AAA\078" /MIME /SUB /UNZIP /ALL /RPTALL /STREAMS /REPORT C:\DOCUME~1\小飞侠.NET\LOCALS~1\TEMP\SCAN.TXT /PROGRAM /ANALYZE /MAILBOX
Scanning V: [V盘]
Scanning V:\VIRUSDOC20070721\VM20070721AAA\078\*.*
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\TLSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\MHSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WOSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WOSO0.DLL ... Found the PWS-LegMir.dll trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\ZTSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\JTSO.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\JTSO.EXE\JTSO.EXE ... Found the PWS-LegMir trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\ZTSO0.DLL ... Found the PWS-LegMir.dll trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\JTSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WLSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WLSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WGSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WGSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WMSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\FYSO.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\FYSO.EXE\FYSO.EXE ... Found the PWS-LegMir trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WMSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\FYSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\QJSO.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\QJSO.EXE\QJSO.EXE ... Found the PWS-LegMir trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\QJSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\RXSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\RXSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WDSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\WDSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\TLSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\DASO.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\DASO.EXE\DASO.EXE ... Found the PWS-LegMir trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\MHSO.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\DASO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\ZXSO.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\ZXSO.EXE\ZXSO.EXE ... Found the PWS-LegMir trojan !!!
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\M1.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\M1.EXE\M1.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\M1.EXE\M1.EXE\0000b0f0.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\M1.EXE\M1.EXE\0000b0f0.EXE\0000b0f0.EXE ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\ZXSO0.DLL ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\OKOK.EXE ... Found trojan or variant New Malware.aj !!!
      Please send a copy of the file to McAfee
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar\$$A.BAT ... is OK.
V:\VIRUSDOC20070721\VM20070721AAA\078\包包.rar:Zone.Identifier ... is OK.
Summary report on V:\VIRUSDOC20070721\VM20070721AAA\078\*.*
File(s)
      Total files: ...........    41
      Clean: .................    24
      Possibly Infected: .....    17

Time: 00:00.16

[病毒样本] 新抓来一包

本帖子中包含更多资源

咖啡+费尔～爆爆爆

本帖子中包含更多资源

浏览过的版块