33样本

qianwenxiang

[MD5: AF3B30 572820 957810 C50E73 91B013 A7BF8F 541187 CC7FCA 348887 7AC69B B4F320 E0B118 D8531B 991628 53FA75 B563BB 0C8596 1DC07F EAB99C 5B9830 43C0E8 272974 0C4D2F B31324 720926 E6EA3F 472C0E 37C73F D15326 EEBFF1 A66784 2156E3 4E6B49]

从一毒网扒的 可能有些老样本

qianwenxiang

wangjay1980

33

detected: Trojan program Trojan-Downloader.Win32.Delf.bko        File: E:\Ñù±¾\bingdu\vir (28).exe
detected: Trojan program Trojan-PSW.Win32.Nilage.blg        File: E:\Ñù±¾\bingdu\vir (29).exe//PE_Patch//NSPack//PE_Patch
detected: Trojan program Trojan-PSW.Win32.Delf.qc        File: E:\Ñù±¾\bingdu\vir (30).exe//UPX
detected: Trojan program Trojan-PSW.Win32.Delf.qc        File: E:\Ñù±¾\bingdu\vir (31).exe//UPX
detected: Trojan program Backdoor.Win32.Agent.ahj        File: E:\Ñù±¾\bingdu\vir (32).exe
detected: virus Worm.Win32.QQPass.p        File: E:\Ñù±¾\bingdu\vir (33).exe//PE_Patch
detected: virus Worm.Win32.Viking.lz        File: E:\Ñù±¾\bingdu\vir (1).exe//PE_Patch
detected: virus Virus.Win32.AutoRun.fk        File: E:\Ñù±¾\bingdu\vir (2).exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ain        File: E:\Ñù±¾\bingdu\vir (3).exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bms        File: E:\Ñù±¾\bingdu\vir (4).exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.blb        File: E:\Ñù±¾\bingdu\vir (5).exe
detected: Trojan program Trojan-Spy.Win32.Delf.agk        File: E:\Ñù±¾\bingdu\vir (6).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bnx        File: E:\Ñù±¾\bingdu\vir (7).exe
detected: Trojan program Trojan-Spy.Win32.Delf.aci        File: E:\Ñù±¾\bingdu\vir (8).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.aqw        File: E:\Ñù±¾\bingdu\vir (9).exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bgr        File: E:\Ñù±¾\bingdu\vir (10).exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bjo        File: E:\Ñù±¾\bingdu\vir (11).exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.WOW.sa        File: E:\Ñù±¾\bingdu\vir (12).exe//UPack
detected: Trojan program Trojan-Spy.Win32.Delf.ach        File: E:\Ñù±¾\bingdu\vir (13).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.blx        File: E:\Ñù±¾\bingdu\vir (14).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.box        File: E:\Ñù±¾\bingdu\vir (15).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bmj        File: E:\Ñù±¾\bingdu\vir (16).exe//UPack
detected: Trojan program Trojan-PSW.Win32.Agent.pl        File: E:\Ñù±¾\bingdu\vir (17).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bou        File: E:\Ñù±¾\bingdu\vir (18).exe//UPack
detected: Trojan program Trojan-Dropper.Win32.Agent.aqq        File: E:\Ñù±¾\bingdu\vir (19).exe//UPack
detected: Trojan program Trojan-Spy.Win32.Delf.afs        File: E:\Ñù±¾\bingdu\vir (20).exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bwr        File: E:\Ñù±¾\bingdu\vir (21).exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-Spy.Win32.Delf.abi        File: E:\Ñù±¾\bingdu\vir (22).exe
detected: Trojan program Trojan-Downloader.Win32.Small.czl        File: E:\Ñù±¾\bingdu\vir (23).exe//NSPack
detected: Trojan program Trojan-Proxy.Win32.Small.du        File: E:\Ñù±¾\bingdu\vir (24).exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.bkz        File: E:\Ñù±¾\bingdu\vir (25).exe
detected: Trojan program Trojan-PSW.Win32.Delf.zm        File: E:\Ñù±¾\bingdu\vir (26).exe//UPack
detected: Trojan program Trojan-Dropper.Win32.Agent.bmi        File: E:\Ñù±¾\bingdu\vir (27).exe

promised

C:\ABC\0906\vir (1).exe - 特征码 'Worm.Win32.Viking.lj' 被发现
C:\ABC\0906\vir (10).exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\0906\vir (11).exe - 特征码 'Trojan-PWS.Win32.OnLineGames.bjo' 被发现
C:\ABC\0906\vir (12).exe - 特征码 'Generic.PWS.WoW' 被发现
C:\ABC\0906\vir (13).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (14).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (15).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (16).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (17).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (18).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (19).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (2).exe - 特征码 'Win32.SuspectCrc' 被发现
C:\ABC\0906\vir (20).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (21).exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\0906\vir (22).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (23).exe - 特征码 'Virus.Win32.Crypt.VA' 被发现
C:\ABC\0906\vir (24).exe - 特征码 'Trojan-Proxy.Win32.Small.DU' 被发现
C:\ABC\0906\vir (25).exe - 特征码 'Generic.PWS.Games.4' 被发现
C:\ABC\0906\vir (26).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (27).exe - 特征码 'Trojan-Dropper.Win32.Agent.bmi' 被发现
C:\ABC\0906\vir (28).exe - 特征码 'Trojan-PWS.Win32.QQPass.pb' 被发现
C:\ABC\0906\vir (29).exe - 特征码 'Trojan-PWS.Win32.Nilage.akh' 被发现
C:\ABC\0906\vir (3).exe - 特征码 'Trojan-PWS.Win32.Agent.BU' 被发现
C:\ABC\0906\vir (30).exe - 特征码 'Trojan-Spy.Win32.Delf.PG' 被发现
C:\ABC\0906\vir (31).exe - 特征码 'Trojan-Spy.Win32.Delf.PG' 被发现
C:\ABC\0906\vir (32).exe - 特征码 'Backdoor.Win32.Agent.ahj' 被发现
C:\ABC\0906\vir (33).exe - 特征码 'Trojan-PWS.Win32.Delf.mc' 被发现
C:\ABC\0906\vir (4).exe - 特征码 'Generic.PWS.Games.3' 被发现
C:\ABC\0906\vir (5).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (6).exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现
C:\ABC\0906\vir (7).exe - 特征码 'Generic.PWS.Games.1' 被发现
C:\ABC\0906\vir (8).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\0906\vir (9).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现

        33 文件被扫描
          (0 压缩档 0 文件)
        33 特征码被侦测
        0 可疑代码段被发现
        耗时: 0:01.860

wangjay1980

费尔的启发式可以与伞比美了

uhthn2002

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Paranoia Database - 3692
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder

C:\Documents and Settings\uhthn\Desktop\New Folder\vir (28).exe - Infected with Win32.PDB-42 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (29).exe - Infected with MalwareSpy.Win32.PDB-8 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (30).exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (31).exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (32).exe - Suspicious of MalwareSpy.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (33).exe - Infected with Win32.PDB-2643 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (1).exe - Infected with Win32.PDB-657 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (2).exe - Suspicious of Win32.Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (3).exe - Suspicious of MalwareSpy.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (4).exe - Infected with PDB-710 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (5).exe - Infected with PDB-957 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (6).exe - Infected with PDB-403 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (7).exe - Infected with PDB-3515 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (8).exe - Infected with PDB-1119 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (9).exe - Infected with PDB-2313 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (10).exe - Infected with PDB-2014 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (11).exe - Infected with PDB-2302 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (12).exe - Infected with PDB-1130 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (13).exe - Infected with PDB-2060 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (14).exe - Infected with PDB-2578 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (15).exe - Infected with PDB-492 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (16).exe - Infected with PDB-2996 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (17).exe - Infected with PDB-867 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (18).exe - Infected with PDB-1136 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (19).exe - Infected with PDB-1745 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (20).exe - Infected with PDB-2856 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (21).exe - Infected with PDB-3529 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (22).exe - Infected with PDB-211 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (23).exe - Infected with MalwareSpy.PDB-154 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (24).exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (25).exe - Infected with PDB-293 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (26).exe - Infected with PDB-1307 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\vir (27).exe - Suspicious file

33 Files scanned
26 Infected files found
7 Suspicious files found
0 Files cured
26 Files deleted

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.OnlineGames.ybl
病毒： Trojan.PSW.Win32.OnlineGames.ydh
病毒： Trojan.PSW.Win32.WoWar.ua
病毒： Trojan.PSW.Win32.OnlineGames.yem
病毒： Trojan.PSW.Win32.YBOnline.ak
病毒： Trojan.PSW.Win32.ZeroOnline.am
病毒： Trojan.PSW.Win32.NPSword.a
病毒： Trojan.PSW.Win32.QQHX.tps
病毒： Worm.Win32.Agent.inc     
病毒： Trojan.PSW.Win32.OnlineGames.yba
病毒： Trojan.PSW.Win32.LMir.lyd
病毒： Trojan.PSW.Win32.XYOnline.hd
病毒： Worm.Win32.Agent.ime     
病毒： Dropper.Agent.cvz        
病毒： Trojan.PSW.QQPass.rwm   
病毒： Trojan.DL.Multi.whk      
病毒： Trojan.PSW.Win32.RocOnline.cx
病毒： Trojan.PSW.Win32.OnlineGames.yii
病毒： Trojan.PSW.Win32.AskTao.bz
病毒： Trojan.PSW.Win32.OnlineGames.xzz

MAC地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：19.39.32

平淡

ssy275

结果: 找到 30 恶意软件
Trojan-Downloader.Win32.Delf.bko (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (28).exe
Trojan-PSW.Win32.Nilage.blg (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (29).exe
Trojan-PSW.Win32.Delf.qc (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (30).exe
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (31).exe
Backdoor.Win32.Agent.ahj (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (32).exe
Worm.Win32.QQPass.p (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (33).exe
Worm.Win32.Viking.lz (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (1).exe
Virus.Win32.AutoRun.fk (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (2).exe
Trojan-PSW.Win32.OnLineGames.ain (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (3).exe
Trojan-PSW.Win32.OnLineGames.bms (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (4).exe
Trojan-PSW.Win32.OnLineGames.blb (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (5).exe
Trojan-PSW.Win32.OnLineGames.bnx (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (7).exe
Trojan-Spy.Win32.Delf.aci (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (8).exe
Trojan-PSW.Win32.OnLineGames.aqw (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (9).exe
Trojan-PSW.Win32.OnLineGames.bgr (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (10).exe
Trojan-PSW.Win32.OnLineGames.bjo (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (11).exe
Trojan-PSW.Win32.WOW.sa (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (12).exe
Trojan-Spy.Win32.Delf.ach (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (13).exe
Trojan-PSW.Win32.OnLineGames.blx (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (14).exe
Trojan-PSW.Win32.OnLineGames.box (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (15).exe
Trojan-PSW.Win32.OnLineGames.bmj (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (16).exe
Trojan-PSW.Win32.Agent.pl (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (17).exe
Trojan-PSW.Win32.OnLineGames.bou (病毒)
C:\Documents and Settings\ssy\桌面\0906.part1.rar\vir (18).exe
rojan-Spy.Win32.Delf.afs (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (20).exe
Trojan-PSW.Win32.OnLineGames.bwr (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (21).exe
Trojan-Spy.Win32.Delf.abi (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (22).exe
Trojan-Downloader.Win32.Small.czl (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (23).exe
Trojan-Proxy.Win32.Small.du (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (24).exe
Trojan-PSW.Win32.OnLineGames.bkz (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (25).exe
Trojan-PSW.Win32.Delf.zm (病毒)
C:\Documents and Settings\ssy\桌面\0906.part2.rar\vir (26).exe
统计信息
已扫描:
文件: 31
未扫描: 0
结果:
病毒:30
间谍软件: 0
可疑项目: 0
危险软件: 0

[ 本帖最后由 ssy275 于 2007-9-6 21:15 编辑 ]

自由

微点，１１死的，２７有点猛，里面还有ＣＮＮＩＣ．
其他微点全杀，多数报已知．