29个

显示全部楼层 · 发表于 2007-10-31 18:42:49

deleted: Trojan program Backdoor.Win32.Delf.awy File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/fy.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fzw File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/jh.exe//PE_Patch.UPX//UPX//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmi File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/mir.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmh File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/my.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmo File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/qj.exe//FSG
deleted: virus Virus.Win32.AutoRun.yp File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/qst.exe//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gkv File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/tl.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gkv File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/wd.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ggm File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/wl.exe//UPack
deleted: Trojan program Trojan-Downloader.Win32.Agent.dll File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/wow.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmr File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/zt.exe//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gnb File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/zx.exe//UPack
deleted: Trojan program Backdoor.Win32.Delf.awy File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/scvhost.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmo File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/ahpvekqvcins.dll//UPack//PE_Patch.MaskPE
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmi File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/addrcqhelp.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ggl File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/avwldmn.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gna File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/kawdczy.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gnb File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/kvdxgis.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gnb File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/kvdxgma.dll
deleted: virus Virus.Win32.AutoRun.yp File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/WinSys8x.Sys
deleted: Trojan program Trojan-PSW.Win32.WOW.acl File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/qdshm.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gkv File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/ratbfpi.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmh File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/rsmygpm.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gmr File: C:\Users\Jack Jones\Desktop\Ñù±¾.rar/upxdnd.dll

显示全部楼层 · 发表于 2007-10-31 18:43:01

C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » fy.exe - Win32/Delf.NFD trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » jh.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » mir.exe - probably a variant of Win32/PSW.OnLineGames.NGU trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » my.exe - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » qj.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » qst.exe - probably a variant of Win32/AutoRun.Q worm
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » tl.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » wd.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » wl.exe - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » wow.exe - probably a variant of Win32/TrojanDownloader.Delf.NSA trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » zt.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » zx.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » scvhost.exe - Win32/Delf.AWY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » ahpvekqvcins.dll - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » addrcqhelp.dll - a variant of Win32/PSW.OnLineGames.DMQ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » avwldmn.dll - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » avzxemn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » kawdczy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » kvdxgis.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » kvdxgma.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » WinSys8x.Sys - probably a variant of Win32/AutoRun.Q worm
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » qdshm.dll - a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » ratbfpi.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » rsmygpm.dll - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » upxdnd.dll - Win32/PSW.OnLineGames.NFL trojan

显示全部楼层 · 发表于 2007-10-31 18:43:39

Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
  --> fy.exe
   [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> jh.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.fzw.1
  --> mir.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> my.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> qj.exe
   [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
  --> qst.exe
   [DETECTION] Contains detection pattern of the worm WORM/AutoRun.FF.5
  --> tl.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> wd.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> wl.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ggl
  --> wow.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> zt.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> zx.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> scvhost.exe
   [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> ahpvekqvcins.dll
   [DETECTION] Contains suspicious code HEUR/Crypted
  --> addrcqhelp.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> avwldmn.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ggl
  --> avzxemn.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> kawdczy.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> kvdxgis.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> kvdxgma.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> WinSys8x.Sys
   [DETECTION] Contains detection pattern of the worm WORM/AutoRun.FF.5
  --> qdshm.dll
   [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/UPACK). Please verify the origin of the file
  --> ratbfpi.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> rsmygpm.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> upxdnd.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [WARNING] The file was ignored!

End of the scan: 2007年10月31日  18:41
Used time: 00:13 min

The scan has been done completely.

   0 Scanning directories
   31 Files were scanned
   17 viruses and/or unwanted programs were found
   8 Files were classified as suspicious:

显示全部楼层 · 发表于 2007-10-31 18:44:42

C:\ABC\样本.rar:\fy.exe - 特征码 'Backdoor.Win32.Delf.awy' 被发现
C:\ABC\样本.rar:\jh.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\样本.rar:\mh.exe
C:\ABC\样本.rar:\mir.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\my.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\qj.exe - 特征码 'Trojan-PWS.Win32.Delf.ix' 被发现
C:\ABC\样本.rar:\qst.exe - 特征码 'Virus.Win32.AutoRun.bs' 被发现
C:\ABC\样本.rar:\tl.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\wd.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\wl.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\wow.exe - 特征码 'Trojan-PWS.Win32.QQPass.pb' 被发现
C:\ABC\样本.rar:\zt.exe - 特征码 'Generic.PWS.Games.1' 被发现
C:\ABC\样本.rar:\zx.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\scvhost.exe - 特征码 'Backdoor.Win32.Delf.awy' 被发现
C:\ABC\样本.rar:\ahpvekqvcins.dll - 特征码 'MalwareScope.Trojan-PWS.Game.7' 被发现
C:\ABC\样本.rar:\addrcqhelp.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\avwldmn.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\avzxemn.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\kawdczy.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\kvdxgis.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\kvdxgma.dll
C:\ABC\样本.rar:\Packet.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\WinSys8x.Sys - 特征码 'Trojan-Proxy.Win32.Delf.AN' 被发现
C:\ABC\样本.rar:\qdshm.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\ratbfpi.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\rsmygpm.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\样本.rar:\upxdnd.dll - 特征码 'Generic.PWS.Games.1' 被发现
C:\ABC\样本.rar:\WanPacket.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\wpcap.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar

30 文件被扫描
(1 压缩档 29 文件)
27 特征码被侦测
0 可疑代码段被发现
耗时: 0:00.406

显示全部楼层 · 发表于 2007-10-31 18:45:43

IK果然很强。。。。。

显示全部楼层 · 发表于 2007-10-31 18:48:42

We received the following archive files:

File ID  Filename  Size (Byte) Result
2231107  新建文件夹.rar 125.62 KB OK

A listing of files contained inside archives alongside their results can be found below:

File ID  Filename  Size (Byte) Result
2231108  mh.exe  342 Byte  UNDER ANALYSIS
1006662  Packet.dll  26.32 KB  CLEAN
1006659  WanPacket.dll  21.24 KB  CLEAN
540509  wpcap.dll  80.58 KB  CLEAN

显示全部楼层 · 发表于 2007-10-31 18:51:24

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 736
Paranoia Database - 48287
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\Uhthn\Desktop\New Folder (3)

C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\fy.exe - Infected WIN32.BACKDOOR.DELF.3 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\jh.exe - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\mh.exe - OK
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\mir.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\my.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\qj.exe - Suspected MaliciousScope:GENERIC.MALWARE.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\qst.exe - Infected WIN32.TROJAN-PSW.QQPASS.A - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\tl.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\wd.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\wl.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\wow.exe - Infected WIN32.GENERIC.MALWARE.D87.4A00 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\zt.exe - Infected TROJAN-PSW.ONLINEGAMES.8 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\zx.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\scvhost.exe - Infected BACKDOOR.DELF.3 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\ahpvekqvcins.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\addrcqhelp.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\avwldmn.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\avzxemn.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\kawdczy.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\kvdxgis.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\kvdxgma.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\Packet.dll - Infected GENERIC.MALWARE.3AF.694C - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\WinSys8x.Sys - Infected WIN32.TROJAN-PSW.QQPASS.A - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\qdshm.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\ratbfpi.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\rsmygpm.dll - Infected WIN32.TROJAN-PSW.ONLINEGAMES.AF - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\upxdnd.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\WanPacket.dll - Infected GENERIC.MALWARE.CC3.54F1 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (3)\wpcap.dll - Infected BACKDOOR.DELF.4 - Deleted

29 Files scanned
18 Infected files found
10 Suspected files found
0 Files disinfected
18 Files deleted

显示全部楼层 · 发表于 2007-10-31 19:01:26

扫描系统区域...
扫描所选择的目录和文件...
对象: fy.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Backdoor.Win32.Delf.awy (KAV 引擎), Backdoor.Agent.YPT (BD 引擎)
对象: jh.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.fzw (KAV 引擎), Generic.PWS.Games.4.9DF1A675 (BD 引擎)
对象: mir.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmi (KAV 引擎)
对象: my.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmh (KAV 引擎), DeepScan:Generic.Dld.Agent.D297FA41 (BD 引擎)
对象: qj.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmo (KAV 引擎)
对象: qst.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Virus.Win32.AutoRun.yp (KAV 引擎), Generic.PWStealer.CE451F0E (BD 引擎)
对象: tl.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gkv (KAV 引擎), DeepScan:Generic.Dld.Agent.64F4765D (BD 引擎)
对象: wd.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gkv (KAV 引擎), DeepScan:Generic.Dld.Agent.59C435C5 (BD 引擎)
对象: wl.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.ggm (KAV 引擎), Generic.Malware.SBdldg.107F0ADF (BD 引擎)
对象: wow.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-Downloader.Win32.Agent.dll (KAV 引擎), Trojan.Downloader.Delf.NZV (BD 引擎)
对象: zt.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmr (KAV 引擎), DeepScan:Generic.PWS.Games.1.2D90BD57 (BD 引擎)
对象: zx.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gnb (KAV 引擎), Generic.Malware.SBdldg.95F3A8BF (BD 引擎)
对象: scvhost.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Backdoor.Win32.Delf.awy (KAV 引擎), Trojan.Spy.Pcapbased.A (BD 引擎)
对象: ahpvekqvcins.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmo (KAV 引擎)
对象: addrcqhelp.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmi (KAV 引擎)
对象: avwldmn.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.ggl (KAV 引擎), BehavesLike:Trojan.WUDisable (BD 引擎)
对象: kawdczy.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gna (KAV 引擎), BehavesLike:Trojan.WUDisable (BD 引擎)
对象: kvdxgis.exe
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gnb (KAV 引擎), DeepScan:Generic.Dld.Agent.9713C3E6 (BD 引擎)
对象: kvdxgma.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gnb (KAV 引擎), BehavesLike:Trojan.WUDisable (BD 引擎)
对象: WinSys8x.Sys
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Virus.Win32.AutoRun.yp (KAV 引擎), Win32.Worm.Autorun.FF (BD 引擎)
对象: qdshm.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.WOW.acl (KAV 引擎)
对象: ratbfpi.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gkv (KAV 引擎), DeepScan:Generic.Dld.Agent.D0CB7743 (BD 引擎)
对象: rsmygpm.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmh (KAV 引擎), BehavesLike:Trojan.WUDisable (BD 引擎)
对象: upxdnd.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.gmr (KAV 引擎), DeepScan:Generic.PWS.Games.1.799DB2E6 (BD 引擎)
对象: avzxemn.dll
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: 样本.rar
路径: C:\Documents and Settings\wangcheng\桌面
Status: 已发现病毒
病毒: Backdoor.Win32.Delf.awy (2x), Trojan-PSW.Win32.OnLineGames.fzw, Trojan-PSW.Win32.OnLineGames.gmi (2x), Trojan-PSW.Win32.OnLineGames.gmh (2x), Trojan-PSW.Win32.OnLineGames.gmo (2x), Virus.Win32.AutoRun.yp (2x), Trojan-PSW.Win32.OnLineGames.gkv (3x), Trojan-PSW.Win32.OnLineGames.ggm, Trojan-Downloader.Win32.Agent.dll, Trojan-PSW.Win32.OnLineGames.gmr (2x), Trojan-PSW.Win32.OnLineGames.gnb (3x), Trojan-PSW.Win32.OnLineGames.ggl, Trojan-PSW.Win32.OnLineGames.gna, Trojan-PSW.Win32.WOW.acl (KAV 引擎), Backdoor.Agent.YPT, Generic.PWS.Games.4.9DF1A675, DeepScan:Generic.Dld.Agent.D297FA41, Generic.PWStealer.CE451F0E, DeepScan:Generic.Dld.Agent.64F4765D, DeepScan:Generic.Dld.Agent.59C435C5, Generic.Malware.SBdldg.107F0ADF, Trojan.Downloader.Delf.NZV, DeepScan:Generic.PWS.Games.1.2D90BD57, Generic.Malware.SBdldg.95F3A8BF, Trojan.Spy.Pcapbased.A, BehavesLike:Trojan.WUDisable (5x), DeepScan:Generic.Dld.Agent.9713C3E6, Win32.Worm.Autorun.FF, DeepScan:Generic.Dld.Agent.D0CB7743, DeepScan扫描完成: 2007-10-31 18:52
已检查 1 个文件
已发现 1 个染毒文件
发现 0 个可疑文件

显示全部楼层 · 发表于 2007-10-31 19:09:00

这几个卡巴也说干净

Hello,

avzxemn.dll - Trojan-PSW.Win32.OnLineGames.goe

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

mh.exe_, Packet.dll, WanPacket.dll, wpcap.dll

No malicious code were found in these files.

Please quote all when answering.

--
Best regards, Namestnikov Yury
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

[病毒样本] 29个

本帖子中包含更多资源

24

25个

25

28

回复 7楼 scottxzt 的帖子