收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 最近流行的那堆木马群42个
12下一页
返回列表 发新帖
查看: 4024|回复: 11
收起左侧

[病毒样本] 最近流行的那堆木马群42个

[复制链接]
promised
发表于 2007-11-9 20:45:06 | 显示全部楼层 |阅读模式
里面还看到了机器狗
C:\ABC\virus.rar:\e1.exe - 特征码 'Virus.Win32.Downloader.LL' 被发现
C:\ABC\virus.rar:\scvhost.exe - 特征码 'Backdoor.Win32.Delf.awy' 被发现
C:\ABC\virus.rar:\MsPrint32D.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\NVDispDrv.exE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\upxdnd.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\e17.exe - 特征码 'Trojan-Downloader.Win32.Pux.d' 被发现
C:\ABC\virus.rar:\e18.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\virus.rar:\avwgest.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\virus.rar:\DbgHlp32.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\WinForm.exE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\AVPSrv.exE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\avzxfst.exe - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\virus.rar:\cmdbcs.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\virus.rar:\e6.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\virus.rar:\NVDispDrv.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\virus.rar:\MsPrint32D.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.hcv' 被发现
C:\ABC\virus.rar:\e5.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\virus.rar:\upxdnd.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.grn' 被发现
C:\ABC\virus.rar:\WanPacket.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\virus.rar:\diovcinsxc.dll - 特征码 'Trojan-PWS.Win32.Agent.jp' 被发现
C:\ABC\virus.rar:\avwgemn.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus.rar:\DbgHlp32.dll - 特征码 'Virus.Win32.Nilage.JY' 被发现
C:\ABC\virus.rar:\WinForm.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.gub' 被发现
C:\ABC\virus.rar:\AVPSrv.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\virus.rar:\cmdbcs.dll - 特征码 'Virus.Win32.Nilage.JY' 被发现
C:\ABC\virus.rar:\avzxfmn.dll - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
C:\ABC\virus.rar:\Packet.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\virus.rar:\e15.exe - 特征码 'Trojan-PWS.Win32.Nilage.bga' 被发现
C:\ABC\virus.rar:\NvWin75.Jmp - 特征码 'Trojan-PWS.Win32.Nilage.bga' 被发现
C:\ABC\virus.rar:\e13.exe - 特征码 'Trojan-PWS.Win32.Delf.ix' 被发现
C:\ABC\virus.rar:\mswmp32.dll - 特征码 'Trojan-PWS.Win32.Delf.ix' 被发现
C:\ABC\virus.rar:\IGM.exe - 特征码 'Trojan-PWS.Win32.WOW.vd' 被发现
C:\ABC\virus.rar:\608769WL.DLL - 特征码 'Trojan-PWS.Win32.OnLineGames.gis' 被发现
C:\ABC\virus.rar:\NvSys74.Sys - 特征码 'Trojan-PWS.Win32.Nilage.bga' 被发现
C:\ABC\virus.rar:\608769MM.DLL - 特征码 'Trojan-PWS.Win32.Lmir.bos' 被发现
C:\ABC\virus.rar:\e7.exe - 特征码 'Trojan-Downloader.Win32.Agent.blm' 被发现
C:\ABC\virus.rar:\swchost.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.ftd' 被发现
C:\ABC\virus.rar:\wpcap.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\virus.rar:\svchost.exe - 特征码 'Backdoor.Win32.Delf.awy' 被发现
C:\ABC\virus.rar:\sqmapi32.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\virus.rar:\pcihdd.sys - 特征码 'Trojan-Downloader.Win32.Agent.blm' 被发现
C:\ABC\virus.rar:\wlatl.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\virus.rar
43 文件被扫描
   (1 压缩档 42 文件)
42 特征码被侦测
0 可疑代码段被发现
耗时: 0:01.500

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

zah_123
发表于 2007-11-9 20:47:33 | 显示全部楼层
NOD32 42个发现39个
E:\下载区\新建文件夹\virus.rar » RAR » e1.exe - Win32/TrojanDownloader.SMW.A trojan
E:\下载区\新建文件夹\virus.rar » RAR » scvhost.exe - Win32/Delf.AWY trojan
E:\下载区\新建文件夹\virus.rar » RAR » MsPrint32D.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » NVDispDrv.exE - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » upxdnd.exe - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » e17.exe - Win32/PSW.OnLineGames.NGU trojan
E:\下载区\新建文件夹\virus.rar » RAR » e18.exe - Win32/PSW.OnLineGames.NGU trojan
E:\下载区\新建文件夹\virus.rar » RAR » avwgest.exe - Win32/PSW.OnLineGames.FDY trojan
E:\下载区\新建文件夹\virus.rar » RAR » DbgHlp32.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » WinForm.exE - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » AVPSrv.exE - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » avzxfst.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
E:\下载区\新建文件夹\virus.rar » RAR » cmdbcs.exe - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » e6.exe - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » NVDispDrv.dll - Win32/PSW.OnLineGames.GXB trojan
E:\下载区\新建文件夹\virus.rar » RAR » MsPrint32D.dll - Win32/PSW.OnLineGames.HCV trojan
E:\下载区\新建文件夹\virus.rar » RAR » e5.exe - Win32/PSW.OnLineGames.YA trojan
E:\下载区\新建文件夹\virus.rar » RAR » upxdnd.dll - Win32/PSW.OnLineGames.NIC trojan
E:\下载区\新建文件夹\virus.rar » RAR » WanPacket.dll - is OK
E:\下载区\新建文件夹\virus.rar » RAR » diovcinsxc.dll - Win32/PSW.OnLineGames.GJV trojan
E:\下载区\新建文件夹\virus.rar » RAR » avwgemn.dll - Win32/PSW.OnLineGames.FDY trojan
E:\下载区\新建文件夹\virus.rar » RAR » DbgHlp32.dll - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » WinForm.dll - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » AVPSrv.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » cmdbcs.dll - Win32/PSW.OnLineGames.NFL trojan
E:\下载区\新建文件夹\virus.rar » RAR » avzxfmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
E:\下载区\新建文件夹\virus.rar » RAR » Packet.dll - is OK
E:\下载区\新建文件夹\virus.rar » RAR » e15.exe - Win32/PSW.QQPass.AJT trojan
E:\下载区\新建文件夹\virus.rar » RAR » NvWin75.Jmp - Win32/PSW.QQPass.AJT trojan
E:\下载区\新建文件夹\virus.rar » RAR » e13.exe - Win32/PSW.OnLineGames.GJV trojan
E:\下载区\新建文件夹\virus.rar » RAR » mswmp32.dll - Win32/PSW.OnLineGames.GJV trojan
E:\下载区\新建文件夹\virus.rar » RAR » IGM.exe - Win32/PSW.WOW.WU trojan
E:\下载区\新建文件夹\virus.rar » RAR » 608769WL.DLL - Win32/PSW.OnLineGames.GIS trojan
E:\下载区\新建文件夹\virus.rar » RAR » NvSys74.Sys - Win32/PSW.QQPass.AJT trojan
E:\下载区\新建文件夹\virus.rar » RAR » 608769MM.DLL - Win32/PSW.Legendmir.NFF trojan
E:\下载区\新建文件夹\virus.rar » RAR » e7.exe - Win32/Agent.NLW trojan
E:\下载区\新建文件夹\virus.rar » RAR » swchost.exe - Win32/PSW.WOW.WU trojan
E:\下载区\新建文件夹\virus.rar » RAR » wpcap.dll - is OK
E:\下载区\新建文件夹\virus.rar » RAR » svchost.exe - Win32/Delf.NFD trojan
E:\下载区\新建文件夹\virus.rar » RAR » sqmapi32.dll - Win32/PSW.OnLineGames.NHF trojan
E:\下载区\新建文件夹\virus.rar » RAR » pcihdd.sys - Win32/TrojanDownloader.Agent.BLM trojan
E:\下载区\新建文件夹\virus.rar » RAR » wlatl.dll - Win32/PSW.OnLineGames.NHF trojan
回复

举报

nosferatu
头像被屏蔽
发表于 2007-11-9 20:49:07 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\virus.rar'
C:\Documents and Settings\Administrator\桌面\virus.rar
  [0] Archive type: RAR
  --> e1.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> scvhost.exe
      [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> MsPrint32D.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> NVDispDrv.exE
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gxb
  --> upxdnd.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> e17.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gyu
  --> e18.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.fnn
  --> avwgest.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.giy
  --> DbgHlp32.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> WinForm.exE
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> AVPSrv.exE
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> avzxfst.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> cmdbcs.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gsx.1
  --> e6.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> NVDispDrv.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gxb
  --> MsPrint32D.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> e5.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> upxdnd.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> diovcinsxc.dll
      [DETECTION] Is the Trojan horse TR/PSW.Wow.adm
  --> avwgemn.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.giy
  --> DbgHlp32.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> WinForm.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> AVPSrv.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> cmdbcs.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gsx.1
  --> avzxfmn.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> e15.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.ajt
  --> NvWin75.Jmp
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.ajt
  --> e13.exe
      [DETECTION] Is the Trojan horse TR/PSW.Wow.adm
  --> mswmp32.dll
      [DETECTION] Is the Trojan horse TR/PSW.Wow.adm
  --> IGM.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769WL.DLL
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gis
  --> NvSys74.Sys
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.ajt
  --> 608769MM.DLL
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> e7.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> swchost.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gis
  --> svchost.exe
      [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> sqmapi32.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> pcihdd.sys
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> wlatl.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.fnn
      [INFO]      The file was deleted!


End of the scan: 星期五 2007年11月9日  20:49
Used time: 00:08 min

The scan has been done completely.

      0 Scanning directories
     44 Files were scanned
     36 viruses and/or unwanted programs were found
      3 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      8 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

jimmyleo
发表于 2007-11-9 20:53:50 | 显示全部楼层
Packet.dll
wpcap.dll
WanPacket.dll
是ik的误报
回复

举报

gwg829
头像被屏蔽
发表于 2007-11-9 20:55:44 | 显示全部楼层
占39个 启发一个

[ 本帖最后由 gwg829 于 2007-11-9 20:59 编辑 ]

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

Joker
发表于 2007-11-9 20:59:19 | 显示全部楼层
39ge

deleted: Trojan program Trojan-Downloader.Win32.Delf.aas        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e1.exe//UPX
deleted: Trojan program Backdoor.Win32.Delf.awy        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/scvhost.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcp        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/MsPrint32D.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gxb        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/NVDispDrv.exE//PE_Patch//UPack//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.grp        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/upxdnd.exe//PE_Patch//UPack//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gyu        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e17.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fnn        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e18.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.giv        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/avwgest.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcq        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/DbgHlp32.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gub        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/WinForm.exE//PE_Patch//UPack
detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/AVPSrv.exE//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcr        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/avzxfst.exe//UPack
deleted: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/cmdbcs.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gny        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e6.exe//PE_Patch.UPX//UPX//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gxb        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/NVDispDrv.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcv        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/MsPrint32D.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fyn        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e5.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.grn        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/upxdnd.dll
deleted: Trojan program Trojan-PSW.Win32.WOW.adm        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/diovcinsxc.dll//UPack//PE_Patch.MaskPE
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.giy        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/avwgemn.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcw        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/DbgHlp32.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gub        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/WinForm.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gsx        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/cmdbcs.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcx        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/avzxfmn.dll
deleted: Trojan program Trojan-PSW.Win32.QQPass.ajt        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e15.exe//UPX
deleted: Trojan program Trojan-PSW.Win32.QQPass.ajt        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/NvWin75.Jmp//UPX
deleted: Trojan program Trojan-PSW.Win32.WOW.adm        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e13.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.WOW.adm        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/mswmp32.dll//FSG
deleted: Trojan program Trojan-PSW.Win32.Lmir.bos        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/IGM.exe//ASPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gis        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/608769WL.DLL
deleted: Trojan program Trojan-PSW.Win32.QQPass.ajt        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/NvSys74.Sys
deleted: Trojan program Trojan-PSW.Win32.Lmir.bos        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/608769MM.DLL
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/e7.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fxk        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/swchost.exe//ASPack
deleted: Trojan program Backdoor.Win32.Delf.awy        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/svchost.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fnm        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/sqmapi32.dll//UPack
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/pcihdd.sys
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fnn        File: C:\Documents and Settings\Administrator\×ÀÃæ\virus.rar/wlatl.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gti        File: c:\documents and settings\administrator\×ÀÃæ\virus.rar/cmdbcs.exe//PE_Patch//UPack//PE_Patch
回复

举报

qigang
发表于 2007-11-9 21:00:39 | 显示全部楼层

69/37

瑞星病毒查杀结果报告

清除病毒种类列表:

病毒: Trojan.DL.Delf.xxb      
病毒: Backdoor.Win32.Agent.yff
病毒: Trojan.PSW.Win32.QQSG.z  
病毒: Trojan.PSW.Win32.GameOnline.ws
病毒: Trojan.PSW.Win32.GameOnline.tz
病毒: Trojan.PSW.Win32.DJOnline.ao
病毒: Trojan.PSW.Win32.GameOnline.fa
病毒: Trojan.PSW.Win32.GameOnline.np
病毒: Trojan.PSW.Win32.GameOnline.ww
病毒: Trojan.PSW.Win32.XYOnline.qr
病毒: Trojan.PSW.Win32.GameOnline.wh
病毒: Trojan.PSW.Win32.RBLand.bp
病毒: Trojan.PSW.Win32.OnlineGame.ylz
病毒: Trojan.PSW.Win32.GameOnline.ws
病毒: Trojan.PSW.Win32.QQSG.z  
病毒: Trojan.PSW.Win32.GameOnline.px
病毒: Trojan.PSW.Win32.GameOnline.tz
病毒: Trojan.PSW.Win32.WoWar.aea
病毒: Trojan.PSW.Win32.GameOnline.np
病毒: Trojan.PSW.Win32.GameOnline.xc
病毒: Trojan.PSW.Win32.XYOnline.qr
病毒: Trojan.PSW.Win32.GameOnline.tw
病毒: Trojan.PSW.Win32.GameOnline.wh
病毒: Worm.Win32.PaBug.cp      
病毒: Trojan.PSW.Win32.WoWar.aea
病毒: Trojan.PSW.Win32.WoWar.uz
病毒: Trojan.PSW.Win32.GameOnline.nm
病毒: Worm.Win32.PaBug.cp      
病毒: Trojan.PSW.Win32.LMir.yym
病毒: Trojan.DL.Win32.Agent.yrh
病毒: Trojan.PSW.Win32.GameOnline.nm
病毒: Trojan.Mnless.lpi        
病毒: Trojan.PSW.Win32.GameOnline.ey
病毒: RootKit.Win32.Paice.a   
病毒: Trojan.PSW.Win32.GameOnline.fg

MAC 地址:00:11:5B:F3:6D:69

用户来源:互联网

软件版本:20.17.42
回复

举报

gwazy
发表于 2007-11-9 21:35:21 | 显示全部楼层
小红伞

Begin scan in 'C:\Documents and Settings\gwazy\桌面\virus.rar'
C:\Documents and Settings\gwazy\桌面\virus.rar
  [0] Archive type: RAR
  --> e1.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> scvhost.exe
      [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> MsPrint32D.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> NVDispDrv.exE
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gxb
  --> upxdnd.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> e17.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gyu
  --> e18.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.fnn
  --> avwgest.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.giy
  --> DbgHlp32.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> WinForm.exE
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> AVPSrv.exE
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> avzxfst.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> cmdbcs.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gsx.1
  --> e6.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> NVDispDrv.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gxb
  --> MsPrint32D.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> e5.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> upxdnd.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> diovcinsxc.dll
      [DETECTION] Is the Trojan horse TR/PSW.Wow.adm
  --> avwgemn.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.giy
  --> DbgHlp32.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> WinForm.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> AVPSrv.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> cmdbcs.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gsx.1
  --> avzxfmn.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> e15.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.ajt
  --> NvWin75.Jmp
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.ajt
  --> e13.exe
      [DETECTION] Is the Trojan horse TR/PSW.Wow.adm
  --> mswmp32.dll
      [DETECTION] Is the Trojan horse TR/PSW.Wow.adm
  --> IGM.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769WL.DLL
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gis
  --> NvSys74.Sys
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.ajt
  --> 608769MM.DLL
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> e7.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> swchost.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.gis
  --> svchost.exe
      [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> sqmapi32.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.dmj
  --> pcihdd.sys
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> wlatl.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.fnn
      [WARNING]   The file was ignored!


End of the scan: 2007年11月9日  21:32
Used time: 00:21 min

The scan has been done completely.

      0 Scanning directories
     44 Files were scanned
     36 viruses and/or unwanted programs were found
      3 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      8 Files not concerned
      1 Archives were scanned
      1 Warnings
      0 Notes
回复

举报

tonguewiz
发表于 2007-11-9 23:20:59 | 显示全部楼层
EAV报39只
C:\Documents and Settings\David\Desktop\13.rar » RAR » e1.exe - Win32/TrojanDownloader.SMW.A trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » scvhost.exe - Win32/Delf.AWY trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » MsPrint32D.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » NVDispDrv.exE - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » upxdnd.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e17.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e18.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » avwgest.exe - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » DbgHlp32.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » WinForm.exE - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » AVPSrv.exE - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » avzxfst.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » cmdbcs.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e6.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » NVDispDrv.dll - Win32/PSW.OnLineGames.GXB trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » MsPrint32D.dll - Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e5.exe - Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » upxdnd.dll - Win32/PSW.OnLineGames.NIC trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » diovcinsxc.dll - Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » avwgemn.dll - Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » DbgHlp32.dll - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » WinForm.dll - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » AVPSrv.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » cmdbcs.dll - Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » avzxfmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e15.exe - Win32/PSW.QQPass.AJT trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » NvWin75.Jmp - Win32/PSW.QQPass.AJT trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e13.exe - Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » mswmp32.dll - Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » IGM.exe - Win32/PSW.WOW.WU trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » 608769WL.DLL - Win32/PSW.OnLineGames.GIS trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » NvSys74.Sys - Win32/PSW.QQPass.AJT trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » 608769MM.DLL - Win32/PSW.Legendmir.NFF trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » e7.exe - Win32/Agent.NLW trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » swchost.exe - Win32/PSW.WOW.WU trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » svchost.exe - Win32/Delf.NFD trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » sqmapi32.dll - Win32/PSW.OnLineGames.NHF trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » pcihdd.sys - Win32/TrojanDownloader.Agent.BLM trojan
C:\Documents and Settings\David\Desktop\13.rar » RAR » wlatl.dll - Win32/PSW.OnLineGames.NHF trojan
回复

举报

残缺的唯美
发表于 2007-11-9 23:36:59 | 显示全部楼层
deleted: Trojan program Trojan-Downloader.Win32.Delf.aas        File: C:\Users\Administrator\Desktop\virus.rar/e1.exe//UPX
deleted: Trojan program Backdoor.Win32.Delf.awy        File: C:\Users\Administrator\Desktop\virus.rar/scvhost.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcp        File: C:\Users\Administrator\Desktop\virus.rar/MsPrint32D.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gxb        File: C:\Users\Administrator\Desktop\virus.rar/NVDispDrv.exE//PE_Patch//UPack//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.grp        File: C:\Users\Administrator\Desktop\virus.rar/upxdnd.exe//PE_Patch//UPack//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gyu        File: C:\Users\Administrator\Desktop\virus.rar/e17.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fnn        File: C:\Users\Administrator\Desktop\virus.rar/e18.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.giv        File: C:\Users\Administrator\Desktop\virus.rar/avwgest.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcq        File: C:\Users\Administrator\Desktop\virus.rar/DbgHlp32.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gub        File: C:\Users\Administrator\Desktop\virus.rar/WinForm.exE//PE_Patch//UPack
quarantined: virus Heur.Invader (modification)        File: C:\Users\Administrator\Desktop\virus.rar/AVPSrv.exE//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcr        File: C:\Users\Administrator\Desktop\virus.rar/avzxfst.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gsx        File: C:\Users\Administrator\Desktop\virus.rar/cmdbcs.exe//PE_Patch//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gny        File: C:\Users\Administrator\Desktop\virus.rar/e6.exe//PE_Patch.UPX//UPX//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gxb        File: C:\Users\Administrator\Desktop\virus.rar/NVDispDrv.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcv        File: C:\Users\Administrator\Desktop\virus.rar/MsPrint32D.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fyn        File: C:\Users\Administrator\Desktop\virus.rar/e5.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.grn        File: C:\Users\Administrator\Desktop\virus.rar/upxdnd.dll
deleted: Trojan program Trojan-PSW.Win32.WOW.adm        File: C:\Users\Administrator\Desktop\virus.rar/diovcinsxc.dll//UPack//PE_Patch.MaskPE
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.giy        File: C:\Users\Administrator\Desktop\virus.rar/avwgemn.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcw        File: C:\Users\Administrator\Desktop\virus.rar/DbgHlp32.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gub        File: C:\Users\Administrator\Desktop\virus.rar/WinForm.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gsx        File: C:\Users\Administrator\Desktop\virus.rar/cmdbcs.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hcx        File: C:\Users\Administrator\Desktop\virus.rar/avzxfmn.dll
deleted: Trojan program Trojan-PSW.Win32.QQPass.ajt        File: C:\Users\Administrator\Desktop\virus.rar/e15.exe//UPX
deleted: Trojan program Trojan-PSW.Win32.QQPass.ajt        File: C:\Users\Administrator\Desktop\virus.rar/NvWin75.Jmp//UPX
deleted: Trojan program Trojan-PSW.Win32.WOW.adm        File: C:\Users\Administrator\Desktop\virus.rar/e13.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.WOW.adm        File: C:\Users\Administrator\Desktop\virus.rar/mswmp32.dll//FSG
deleted: Trojan program Trojan-PSW.Win32.Lmir.bos        File: C:\Users\Administrator\Desktop\virus.rar/IGM.exe
deleted: Trojan program Trojan-PSW.Win32.Lmir.bos        File: C:\Users\Administrator\Desktop\virus.rar/IGM.exe//ASPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.gis        File: C:\Users\Administrator\Desktop\virus.rar/608769WL.DLL
deleted: Trojan program Trojan-PSW.Win32.QQPass.ajt        File: C:\Users\Administrator\Desktop\virus.rar/NvSys74.Sys
deleted: Trojan program Trojan-PSW.Win32.Lmir.bos        File: C:\Users\Administrator\Desktop\virus.rar/608769MM.DLL
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm        File: C:\Users\Administrator\Desktop\virus.rar/e7.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fxk        File: C:\Users\Administrator\Desktop\virus.rar/swchost.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fxk        File: C:\Users\Administrator\Desktop\virus.rar/swchost.exe//ASPack
deleted: Trojan program Backdoor.Win32.Delf.awy        File: C:\Users\Administrator\Desktop\virus.rar/svchost.exe//FSG
quarantined: virus Heur.Invader (modification)        File: C:\Users\Administrator\Desktop\virus.rar/sqmapi32.dll//UPack
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm        File: C:\Users\Administrator\Desktop\virus.rar/pcihdd.sys
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.fnn        File: C:\Users\Administrator\Desktop\virus.rar/wlatl.dll//UPack
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-21 01:13 , Processed in 0.138874 second(s), 19 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表