两个downloader和他们的下载物

woai_jolin

Started scanning at 2007-8-11 19:23:06. Engine Ver: 31.1.0. Sig Ver:5050. Sig Date: 2007-8-11. ArcLib Ver: 7.3.0.9.
F:\v\桌\桌\1.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\2.exe - Win32/Frethog!generic trojan. Deleted.
F:\v\桌\桌\4.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\5.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\6.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\7.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\8.exe - Win32/Posertm.A trojan. Deleted.
F:\v\桌\桌\win.exe - Win32/Dowque!generic trojan. Deleted.
F:\v\桌\桌\win10.exe - Win32/Injeven unknown type. Quarantined.
F:\v\桌\桌\win12.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win13.exe - Win32/Junkoil!generic trojan. Deleted.
F:\v\桌\桌\win14.exe - Win32/Injeven unknown type. Quarantined.
F:\v\桌\桌\win15.exe - Win32/Dowque!generic trojan. Deleted.
F:\v\桌\桌\win17.exe - Win32/Lemir.MM trojan. Deleted.
F:\v\桌\桌\win18.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win19.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win3.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win4.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win5.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win6.exe - Win32/Storark!generic trojan. Deleted.
F:\v\桌\桌\win7.exe - Win32/Injeven unknown type. Quarantined.
F:\v\桌\桌\win8.exe - Win32/Injeven unknown type. Quarantined.
F:\v\桌\桌\win9.exe - Win32/Injeven unknown type. Quarantined.

Files Scanned: 31
Files Infected: 23
Files Cleaned \ Deleted: 18
Files Quarantined: 5
Memory Infections: 0
Memory Infections Cleaned: 0
Boot Infections: 0
Boot Infections Cleaned: 0

Top infections found during scan (Limited to 10).
        Win32/Storark!generic
        Win32/Injeven
        Win32/Dowque!generic
        Win32/Frethog!generic
        Win32/Junkoil!generic
        Win32/Lemir.MM
        Win32/Posertm.A

Files not Cleaned\Deleted\Quarantined (Limit 100): 0

Finished scanning at 2007-8-11 19:23:09.

taihuxian

C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\1.exe\[Upack] [L] Win32:Delf-FJH [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\2.exe\[Upack]\[Embedded#4060]\[Upack] [L] Win32:Onlinegames-ATD [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\4.exe\[Upack]\[Embedded#MAIN] [L] Win32:Small-HHY [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\5.exe\[Upack] [L] Win32:Delf-FJH [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\6.exe\[Upack]\[Embedded#MAIN] [L] Win32:Small-HHY [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
http://bbs.kafan.cn/attachment.php?aid=112219\桌\桌\1.exe\[Upack] [L] Win32:Delf-FJH [Trj] (0)
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\7.exe\[Upack] [L] Win32:Delf-FJH [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\8.exe\[Embedded#EXE] [L] Win32:Delf-DXA [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\8.exe [L] Win32:Delf-DXA [Trj] (0)
During the file repair, error occurred: 没有更多文件。
While moving file to chest, error occurred: 没有更多文件。
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win.exe\[UPX]\[Embedded#2af0]\[UPX] [L] Win32:Nilage-AI [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win10.exe [L] Win32:Rizo-E [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win11.exe\[NsPack] [L] Win32:Small-EKC [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win12.exe\[Upack]\[Embedded#MAIN] [L] Win32:Small-HHY [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win13.exe\[Upack]\[Embedded#DOWN] [L] Win32:Delf-DTT [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win14.exe [L] Win32:Rizo-E [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win15.exe\[UPX]\[Embedded#05ef8] [L] Win32:Autorun-BG (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...
C:\Documents and Settings\Administrator\Application Data\Opera\Opera\profile\cache4\opr0018E.rar\桌\桌\win17.exe\[ASPack]\[Embedded#IDR_DATA0] [L] Win32:Onlinegames-ALS [Trj] (0)
During the file repair, error occurred: The file was not repaired.
File was successfully moved to chest...

uhthn2002

C:\Documents and Settings\uhthn\Desktop\桌\桌\0.exe : is suspected of Backdoor.Hupigon.4 (paranoid heuristics)
C:\Documents and Settings\uhthn\Desktop\桌\桌\2.exe : infected Trojan-PSW.Win32.OnLineGames.afb
C:\Documents and Settings\uhthn\Desktop\桌\桌\7.exe : infected Trojan-Spy.Win32.Delf.uv
C:\Documents and Settings\uhthn\Desktop\桌\桌\8.exe : infected Trojan.Sniff
C:\Documents and Settings\uhthn\Desktop\桌\桌\win.exe : infected Trojan-PSW.Win32.Delf.wh
C:\Documents and Settings\uhthn\Desktop\桌\桌\win10.exe : infected Trojan-PSW.Win32.OnLineGames.bs
C:\Documents and Settings\uhthn\Desktop\桌\桌\win11.exe : infected Trojan-Downloader.Win32.Small.czl
C:\Documents and Settings\uhthn\Desktop\桌\桌\win13.exe : infected MalwareScope.Trojan-PSW.Game.17
C:\Documents and Settings\uhthn\Desktop\桌\桌\win14.exe : infected Trojan-PSW.Win32.OnLineGames.bs
C:\Documents and Settings\uhthn\Desktop\桌\桌\win15.exe : infected MalwareScope.Trojan-PSW.Game.7
C:\Documents and Settings\uhthn\Desktop\桌\桌\win17.exe : infected Trojan-PSW.Win32.OnLineGames.adn
C:\Documents and Settings\uhthn\Desktop\桌\桌\win20.exe : is suspected of Embedded.Backdoor.Win32.Delf.awy
C:\Documents and Settings\uhthn\Desktop\桌\桌\win3.exe : infected Trojan-PSW.Win32.Lmir.amj
C:\Documents and Settings\uhthn\Desktop\桌\桌\win4.exe : infected Trojan-Spy.Win32.Delf.uv
C:\Documents and Settings\uhthn\Desktop\桌\桌\win5.exe : infected Trojan-Spy.Win32.Delf.uv
C:\Documents and Settings\uhthn\Desktop\桌\桌\win7.exe : infected Trojan-PSW.Win32.OnLineGames.bs
C:\Documents and Settings\uhthn\Desktop\桌\桌\win8.exe : infected Trojan-PSW.Win32.OnLineGames.bs
C:\Documents and Settings\uhthn\Desktop\桌\桌\win9.exe : infected Trojan-PSW.Win32.OnLineGames.bs
C:\Documents and Settings\uhthn\Desktop\桌\桌\window.exe : infected MalwareScope.Trojan-PSW.Game.14


Directories       : 1       Files in archives:      Files on disks:
Archives:                   - total       : 0       - total       : 31   
- scanned         : 0       -  scanned    : 0       - scanned     : 31   
- contain viruses : 0       -  infected   : 0       - infected    : 17   
- deleted         : 0       -  suspicious : 0       - suspicious  : 2

yurius

[Scan path] C:\virus\桌
>C:\virus\桌\0.exe infected with Trojan.DownLoader.29758
>C:\virus\桌\1.exe infected with Trojan.PWS.Lineage.2980
>C:\virus\桌\2.exe infected with Trojan.MulDrop.8218
>C:\virus\桌\3.exe infected with Trojan.PWS.Wsgame.1066
>C:\virus\桌\4.exe infected with Trojan.PWS.Lineage.2981
>C:\virus\桌\5.exe infected with Trojan.PWS.Lineage.2982
>C:\virus\桌\6.exe infected with Trojan.PWS.Lineage.2983
>C:\virus\桌\7.exe infected with Trojan.PWS.Gamania.3239
C:\virus\桌\8.exe infected with Trojan.Sniff
C:\virus\桌\win.exe infected with Win32.HLLW.Autoruner.249
C:\virus\桌\win1.exe - Ok
C:\virus\桌\win10.exe infected with Trojan.Inject.251
>C:\virus\桌\win11.exe infected with BackDoor.Twin
>>C:\virus\桌\win12.exe - Ok
>>C:\virus\桌\win13.exe - Ok
C:\virus\桌\win14.exe infected with Trojan.Inject.251
>C:\virus\桌\win15.exe infected with Trojan.PWS.Qqpass.1190
>>C:\virus\桌\win16.exe - Ok
>C:\virus\桌\win17.exe infected with Trojan.PWS.Legmir.1188
>C:\virus\桌\win18.exe infected with Trojan.PWS.Lineage.2983
>>C:\virus\桌\win19.exe - Ok
C:\virus\桌\win2.exe - Ok
C:\virus\桌\win20.exe - Ok
>C:\virus\桌\win3.exe infected with Trojan.PWS.Lineage.2977
>C:\virus\桌\win4.exe infected with Trojan.PWS.Wsgame.1063
>C:\virus\桌\win5.exe infected with Trojan.PWS.Gamania.3239
>>C:\virus\桌\win6.exe - Ok
C:\virus\桌\win7.exe infected with Trojan.Inject.251
C:\virus\桌\win8.exe infected with Trojan.Inject.251
C:\virus\桌\win9.exe infected with Trojan.Inject.251
C:\virus\桌\window.exe - Ok