来一包13个！

显示全部楼层 · 发表于 2007-9-13 18:51:01

Scan performed at: 2007-9-13 18:50:19
Scanning Log
NOD32 version 2527 (20070913) NT
Command line: D:\Documents and Settings\EKINCHENG\桌面\old.zip

Date: 13.9.2007 Time: 18:50:22
Anti-Stealth technology is enabled.
Scanned disks, folders and files: D:\Documents and Settings\EKINCHENG\桌面\old.zip
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/2.exe - a variant of Win32/PSW.OnLineGames.YA trojan
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/3.exe - a variant of Win32/PSW.Agent.NEC trojan
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/4.exe - probably unknown NewHeur_PE virus [7]
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/5.exe - a variant of Win32/AutoRun.Q worm
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/6.exe - probably a variant of Win32/PSW.OnLineGames.NEN trojan
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/7.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/8.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/9.exe - probably a variant of Win32/PSW.OnLineGames.NEN trojan
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/a.exe - Win32/Delf.NGD trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/f.exe - probably a variant of Win32/Viking virus
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/g.exe - Win32/Agent.NEM trojan - was a part of the deleted object
D:\Documents and Settings\EKINCHENG\桌面\old.zip ?ZIP ?old/soft.exe - probably a variant of Win32/Genetik trojan
Number of scanned files: 14
Number of threats found: 12
Number of files cleaned: 1
Time of completion: 18:50:31 Total scanning time: 9 sec (00:00:09)

Notes:
[7] File is probably infected with an unknown virus.

显示全部楼层 · 发表于 2007-9-13 18:51:55

显示全部楼层 · 发表于 2007-9-13 19:06:44

Begin scan in 'C:\Documents and Settings\Administrator\桌面\old.zip'
C:\Documents and Settings\Administrator\桌面\old.zip
  [0] Archive type: ZIP
  --> old/1.exe
   [DETECTION] Is the Trojan horse TR/PSW.19610
  --> old/2.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Zlob.cdg.5
  --> old/3.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> old/4.exe
   [DETECTION] Is the Trojan horse TR/PSW.WOW.VU.1
  --> old/5.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/WinterLove.BJ.1 Backdoor server programs
  --> old/6.exe
   [DETECTION] Is the Trojan horse TR/ShellHook.M
  --> old/7.exe
   [DETECTION] Is the Trojan horse TR/Agent.12665
  --> old/8.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.cew
  --> old/9.exe
   [DETECTION] Is the Trojan horse TR/Spy.Delf.UV.125
  --> old/a.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Kolmat.B.11 Backdoor server programs
  --> old/f.exe
   [DETECTION] Is the Trojan horse TR/PSW.Delf.AF.2
  --> old/g.exe
   [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.alh.25 Backdoor server programs
  --> old/soft.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Delf.cbc
   [WARNING] The file was ignored!

End of the scan: 2007年9月13日  19:05
Used time: 00:14 min

The scan has been done completely.

   0 Scanning directories
   14 Files were scanned
   13 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   1 Archives were scanned
   1 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-9-13 19:18:48

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.Win32.Agent.ygm
病毒： Trojan.PSW.Win32.OnlineGames.ybe
病毒： Trojan.PSW.Win32.OnlineGames.yoy
病毒： Dropper.Win32.Agent.far
病毒： Trojan.PSW.Win32.QQPass.tqq
病毒： Trojan.PSW.Win32.OnlineGames.yng
病毒： Trojan.PSW.Win32.ZeroOnline.aq
病毒： Trojan.PSW.Win32.OnlineGames.ykp
病毒： Trojan.PSW.Win32.WorldOnline.kl
病毒： Worm.Nimaya.ef
病毒： Worm.Win32.Viking.viv
病毒： Trojan.Win32.Agent.q
病毒： Trojan.DL.Win32.Autorun.iox

13个满分

显示全部楼层 · 发表于 2007-9-13 19:34:19

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Paranoia Database - 4740
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\old

C:\Documents and Settings\uhthn\Desktop\old\1.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\old\2.exe - Infected with PDB-8b4 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\old\3.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\old\4.exe - Infected with PDB-8cf Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\old\5.exe - Infected with Win32.PDB-0d6 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\old\6.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\old\7.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\old\8.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\old\9.exe - Infected with PDB-203 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\old\a.exe - Infected with Win32.PDB-363 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\old\f.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\old\g.exe - Suspicious of Trojan-PSW.Game.3
C:\Documents and Settings\uhthn\Desktop\old\soft.exe - Infected with Win32.PDB-fdc Malware program - Deleted

13 Files scanned
6 Infected files found
7 Suspicious files found
0 Files cured
6 Files deleted

显示全部楼层 · 发表于 2007-9-13 19:45:04

微点：
木马名称:Trojan-Downloader.Win32.Zlob.btl

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.kzc

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\3.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.WOW.ayx

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\4.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.WinterLove.di

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\5.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.lap

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\6.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.knu

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\7.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-PSW.Win32.OnLineGames.knv

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\8.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Spy.Win32.Delf.dkv

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\9.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Backdoor.Win32.Kolmat.i

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\A.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
木马名称:Trojan-Dropper.Win32.Agent.dvy

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\F.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
蠕虫名称:Worm.Win32.Agent.bni

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\G.EXE
是蠕虫程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\OLD\SOFT.EXE
是否删除木马程序及其衍生物?

1启动即退出

显示全部楼层 · 发表于 2007-9-13 20:46:25

13
detected: Trojan program Trojan.Win32.Agent.bkw File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/1.exe//UPack
detected: Trojan program Trojan-Downloader.Win32.Zlob.cdg File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/2.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.cny File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/3.exe
detected: Trojan program Trojan-PSW.Win32.WOW.vu File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/4.exe//UPack
detected: Trojan program Backdoor.Win32.WinterLove.bi File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/5.exe//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.cog File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/6.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.cgd File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/7.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.cew File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/8.exe//UPack
detected: Trojan program Trojan-Spy.Win32.Delf.uv File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/9.exe//UPack
detected: Trojan program Backdoor.Win32.Kolmat.b File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/a.exe
detected: Trojan program Trojan-Dropper.Win32.Agent.bou File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/f.exe//UPack
detected: Trojan program Trojan-Dropper.Win32.Agent.aqq File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/g.exe//UPack
detected: Trojan program Trojan-Downloader.Win32.Delf.cbc File: C:\Documents and Settings\Owner\×ÀÃæ\old.zip/old/soft.exe//PE_Patch

显示全部楼层 · 发表于 2007-9-13 21:37:23

1就没有动作

显示全部楼层 · 发表于 2007-9-13 22:22:40

13个满分

----------
            [凝逸反毒] (http://hi.baidu.com/503165656)

   [凝逸.扫描病毒引擎-日志]    2007.9.13 18:15:5

文件:F:\070914\onlinegames\wgdoor0.dll | 感染:Trojan.PWS.Wsgame.1193 [200>20070906_ny0013.axx]3(1.1)
操作:删除文件
文件:F:\070914\onlinegames\ratbbpi.dll | 感染:virus [166>20070913_ny0018.axx]3(2.2)
操作:删除文件
文件:F:\070914\onlinegames\ratbbtl.exe | 感染:virus [167>20070913_ny0018.axx]3(6.7)
操作:删除文件
文件:F:\070914\onlinegames\ravcqmon.dat | 感染:virus [176>20070913_ny0018.axx]3(1.1)
操作:删除文件
文件:F:\070914\onlinegames\ravcqmon.exe | 感染:BACKDOOR.Trojan [6>20070913_ny0018.axx]3(1.2)
操作:删除文件
文件:F:\070914\onlinegames\ravmsmon.dat | 感染:virus [178>20070913_ny0018.axx]2(1.1)
操作:删除文件
文件:F:\070914\onlinegames\ravmsmon.exe | 感染:BACKDOOR.Trojan [233>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:F:\070914\onlinegames\ravwlmon.exe | 感染:Trojan.PWS.Gamania.3699 [31>20070906_ny0013.axx]3(2.3)
操作:删除文件
文件:F:\070914\onlinegames\ravztmon2.exe | 感染:BACKDOOR.Trojan [93>20070913_ny0018.axx]3(1.2)
操作:删除文件
文件:F:\070914\onlinegames\RAVZXMON2.DAT | 感染:virus [479>20070819_ny0008.axx]2(1.3)
操作:删除文件
文件:F:\070914\onlinegames\RAVZXMON.exe | 感染:UPACK [146>20070819_ny0008.axx]3(1.2)
操作:删除文件

扫描完成|病毒:11 文件:24|耗时:9964
----------

----------
            [凝逸反毒] (http://hi.baidu.com/503165656)

   [凝逸.扫描病毒引擎-日志]    2007.9.13 22:22:12

文件:F:\070914\old\old\1.exe | 感染:virus [263>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\2.exe | 感染:Trojan.PWS.Wsgame.1182 [333>20070830_ny0012.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\3.exe | 感染:MULDROP.Trojan [209>20070911_ny0016.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\4.exe | 感染:BINARYRES [227>20070910_ny0015.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\5.exe | 感染:Trojan.PWS.Qqpass.1350 [88>20070906_ny0013.axx]3(2.7)
操作:删除文件
文件:F:\070914\old\old\6.exe | 感染:virus [114>20070912_ny0017.axx]3(3.4)
操作:删除文件
文件:F:\070914\old\old\7.exe | 感染:Trojan.PWS.Gamania.3971 [150>20070911_ny0016.axx]3(8.8)
操作:删除文件
文件:F:\070914\old\old\8.exe | 感染:virus [299>20070911_ny0016.axx]3(6.7)
操作:删除文件
文件:F:\070914\old\old\9.exe | 感染:Trojan.PWS.Gamania.3565 [205>20070830_ny0012.axx]3(7.8)
操作:删除文件
文件:F:\070914\old\old\a.exe | 感染:Trojan.Inject.263 [6941>20070726_dw0001.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\f.exe | 感染:Win32.HLLW.Gavir.72 [136>20070816_ny0006.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\g.exe | 感染:virus [10931>20070726_dw0001.axx]3(1.1)
操作:删除文件
文件:F:\070914\old\old\soft.exe | 感染:BackDoor.WebDor [80>20070911_ny0016.axx]3(3.4)
操作:删除文件

扫描完成|病毒:13 文件:13|耗时:3074
----------

[病毒样本] 来一包13个！

本帖子中包含更多资源

本帖子中包含更多资源

13个满分

[病毒样本] 来一包13个！

本帖子中包含更多资源

本帖子中包含更多资源

13个 满分

13个满分