33个

promised

全灭
Quick Scanning
C:\ABC\样本\0.exe
>>> Virus 'Mal/Basine-C' found in file C:\ABC\样本\0.exe
>>> Virus 'Mal/Behav-156' found in file C:\ABC\样本\0.exe
C:\ABC\样本\1.exe
C:\ABC\样本\1.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\1.exe\FILE:0000
>>> Virus 'Mal/PWS-N' found in file C:\ABC\样本\1.exe
C:\ABC\样本\11.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\11.exe
C:\ABC\样本\12.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\12.exe
C:\ABC\样本\13.exe
C:\ABC\样本\13.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\13.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\13.exe
C:\ABC\样本\15.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\15.exe
C:\ABC\样本\16.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\16.exe
C:\ABC\样本\17.exe
C:\ABC\样本\17.exe\FILE:0000
>>> Virus 'Mal/DllHook-A' found in file C:\ABC\样本\17.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\17.exe
C:\ABC\样本\18.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\18.exe
C:\ABC\样本\19.exe
C:\ABC\样本\19.exe\FILE:0000
>>> Virus 'Mal/DllHook-A' found in file C:\ABC\样本\19.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\19.exe
C:\ABC\样本\2.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\2.exe
C:\ABC\样本\20.exe
C:\ABC\样本\20.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\20.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\20.exe
C:\ABC\样本\21.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\21.exe
C:\ABC\样本\22.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\22.exe
C:\ABC\样本\23.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\23.exe
C:\ABC\样本\24.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\24.exe
C:\ABC\样本\3.exe
>>> Virus 'Mal/Generic-A' found in file C:\ABC\样本\3.exe
C:\ABC\样本\4.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\4.exe
C:\ABC\样本\5.exe
C:\ABC\样本\5.exe\FILE:0000
>>> File "C:\ABC\样本\5.exe\FILE:0000" has been identified as suspicious 'Sus/Malware-A'.
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\5.exe
C:\ABC\样本\6.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\6.exe
>>> Virus 'Mal/Generic-A' found in file C:\ABC\样本\6.exe
C:\ABC\样本\608769MM.DLL
>>> Virus 'Mal/Heuri-E' found in file C:\ABC\样本\608769MM.DLL
>>> Virus 'Mal/Behav-010' found in file C:\ABC\样本\608769MM.DLL
C:\ABC\样本\608769WL.DLL
>>> File "C:\ABC\样本\608769WL.DLL" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本\8.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\8.exe
C:\ABC\样本\9.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\9.exe
C:\ABC\样本\cmdbcs.dll
>>> File "C:\ABC\样本\cmdbcs.dll" has been identified as suspicious 'Sus/Malware-B'.
C:\ABC\样本\GenProtect.dll
>>> File "C:\ABC\样本\GenProtect.dll" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本\LotusHlp.dll
>>> File "C:\ABC\样本\LotusHlp.dll" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本\LYLOADER.EXE
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\LYLOADER.EXE
C:\ABC\样本\LYMANGR.DLL
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\LYMANGR.DLL
C:\ABC\样本\msccrt.dll
>>> File "C:\ABC\样本\msccrt.dll" has been identified as suspicious 'Sus/Malware-B'.
C:\ABC\样本\MSDEG32.DLL
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\MSDEG32.DLL
C:\ABC\样本\NVDispDrv.dll
>>> File "C:\ABC\样本\NVDispDrv.dll" has been identified as suspicious 'Sus/Malware-B'.
C:\ABC\样本\s.exe
C:\ABC\样本\s.exe\FILE:0000
>>> Virus 'Mal/GamePSW-C' found in file C:\ABC\样本\s.exe\FILE:0000
>>> Virus 'Mal/Behav-116' found in file C:\ABC\样本\s.exe

33 files swept in 16 seconds.
36 viruses were discovered.
7 suspicious files were discovered.
33 files out of 33 were infected.
Please send infected samples to Sophos for analysis.
For advice consult www.sophos.com, email support@sophos.com
or telephone +44 1235 559933
Ending Sophos Anti-Virus.

promised

C:\ABC\样本\0.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本\1.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hqi' 被发现
C:\ABC\样本\11.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hqh' 被发现
C:\ABC\样本\12.exe - 特征码 'Trojan-Downloader.Win32.Pux.d' 被发现
C:\ABC\样本\13.exe - 特征码 'Trojan-Downloader.Win32.Pux.d' 被发现
C:\ABC\样本\15.exe - 特征码 'Trojan-Downloader.Win32.Pux.d' 被发现
C:\ABC\样本\16.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hqh' 被发现
C:\ABC\样本\17.exe - 特征码 'Packed.Win32.Klone.af' 被发现
C:\ABC\样本\18.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hqh' 被发现
C:\ABC\样本\19.exe - 特征码 'Packed.Win32.Klone.af' 被发现
C:\ABC\样本\2.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本\20.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本\21.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hqh' 被发现
C:\ABC\样本\22.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.idj' 被发现
C:\ABC\样本\23.exe - 特征码 'Trojan-Downloader.Win32.Pux.d' 被发现
C:\ABC\样本\24.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hzt' 被发现
C:\ABC\样本\3.exe - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本\4.exe - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本\5.exe - 特征码 'Packed.Win32.Klone.af' 被发现
C:\ABC\样本\6.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本\608769MM.DLL - 特征码 'Virus.Win32.Lmir.OK' 被发现
C:\ABC\样本\608769WL.DLL - 特征码 'Trojan-PWS.Win32.OnLineGames.hiy' 被发现
C:\ABC\样本\8.exe - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本\9.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.iep' 被发现
C:\ABC\样本\cmdbcs.dll - 特征码 'Virus.Win32.OnLineGames.BHW' 被发现
C:\ABC\样本\GenProtect.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\样本\LotusHlp.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.hzt' 被发现
C:\ABC\样本\LYLOADER.EXE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本\LYMANGR.DLL - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本\msccrt.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\样本\MSDEG32.DLL - 特征码 'Generic.PWS.Games.3' 被发现
C:\ABC\样本\NVDispDrv.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\样本\s.exe - 特征码 'Trojan-PWS.Win32.WOW.vd' 被发现

        33 文件被扫描
          (0 压缩档 0 文件)
        33 特征码被侦测
        0 可疑代码段被发现
        耗时: 0:07.109

f286168511

AVG AV 32

Graybird

Starting the file scan:

Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
  --> Ñù±¾\0.exe
      [DETECTION] Is the Trojan horse TR/Killav.GE.3
  --> Ñù±¾\1.exe
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> Ñù±¾\11.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\12.exe
      [DETECTION] Is the Trojan horse TR/Agent.AFVL
  --> Ñù±¾\13.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\15.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\16.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\17.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\18.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\19.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\2.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\20.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\21.exe
      [DETECTION] Is the Trojan horse TR/Gendal.7624
  --> Ñù±¾\22.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\23.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\24.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.hzt.7
  --> Ñù±¾\3.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\4.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\5.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\6.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Ñù±¾\608769MM.DLL
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Ñù±¾\608769WL.DLL
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\8.exe
      [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
  --> Ñù±¾\9.exe
      [DETECTION] Is the Trojan horse TR/CrashSystem.C
  --> Ñù±¾\cmdbcs.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\GenProtect.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.iha.1
  --> Ñù±¾\LotusHlp.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.hzt.7
  --> Ñù±¾\LYLOADER.EXE
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> Ñù±¾\LYMANGR.DLL
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> Ñù±¾\msccrt.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\MSDEG32.DLL
      [DETECTION] Is the Trojan horse TR/PSW.Online.gyo.2
  --> Ñù±¾\NVDispDrv.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\s.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [INFO]      The file was deleted!


End of the scan: 2007年11月23日  21:54
Used time: 00:37 min

The scan has been done completely.

      0 Scanning directories
     34 Files were scanned
     31 viruses and/or unwanted programs were found
      2 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      3 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes

wu19934718

费尔，30个，哈哈

浪滔天

卡巴 33个

已删除: 木马程序 Trojan.Win32.KillAV.ge        文件: F:\病毒样本\样本\样本\0.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqi        文件: F:\病毒样本\样本\样本\1.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\11.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\12.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\13.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\15.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\16.exe
已删除: 木马程序 Trojan-PSW.Win32.Nilage.bty        文件: F:\病毒样本\样本\样本\17.exe//NSPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\18.exe
已删除: 木马程序 Trojan-PSW.Win32.Nilage.bty        文件: F:\病毒样本\样本\样本\19.exe//NSPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.iha        文件: F:\病毒样本\样本\样本\2.exe//PE_Patch//UPack
已删除: 病毒 Heur.Trojan.PSW        文件: F:\病毒样本\样本\样本\20.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\21.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.idj        文件: F:\病毒样本\样本\样本\22.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\23.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hzt        文件: F:\病毒样本\样本\样本\24.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.idj        文件: F:\病毒样本\样本\样本\3.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hqh        文件: F:\病毒样本\样本\样本\4.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.iaw        文件: F:\病毒样本\样本\样本\5.exe//NSPack//PE_Patch
已删除: 木马程序 Trojan-Downloader.Win32.Delf.axx        文件: F:\病毒样本\样本\样本\6.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.Lmir.boy        文件: F:\病毒样本\样本\样本\608769MM.DLL
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.iay        文件: F:\病毒样本\样本\样本\608769WL.DLL
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.iet        文件: F:\病毒样本\样本\样本\8.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.iep        文件: F:\病毒样本\样本\样本\9.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.inw        文件: F:\病毒样本\样本\样本\cmdbcs.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.iha        文件: F:\病毒样本\样本\样本\GenProtect.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hzt        文件: F:\病毒样本\样本\样本\LotusHlp.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hpl        文件: F:\病毒样本\样本\样本\LYLOADER.EXE//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hpo        文件: F:\病毒样本\样本\样本\LYMANGR.DLL//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.inm        文件: F:\病毒样本\样本\样本\msccrt.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.hpp        文件: F:\病毒样本\样本\样本\MSDEG32.DLL//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.inv        文件: F:\病毒样本\样本\样本\NVDispDrv.dll
已删除: 木马程序 Trojan-PSW.Win32.Lmir.boy        文件: F:\病毒样本\样本\样本\s.exe

zwl2828

ESET Smart Security
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\0.exe - Win32/Delf.NIG trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\1.exe - Win32/PSW.Agent.NEC trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\11.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\12.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\13.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\15.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\16.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\17.exe - Win32/PSW.OnLineGames.NIM trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\18.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\19.exe - Win32/PSW.OnLineGames.NIF trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\2.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\20.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\21.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\22.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\23.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\24.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\3.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\4.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\5.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\6.exe - Win32/PSW.WOW.WU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\608769MM.DLL - Win32/PSW.Legendmir.NFF trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\608769WL.DLL - Win32/PSW.Legendmir.NFN trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\8.exe - probably a variant of Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\9.exe - Win32/PSW.OnLineGames.NGU trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\cmdbcs.dll - Win32/PSW.OnLineGames.NFL trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\GenProtect.dll - Win32/PSW.OnLineGames.HCV trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\LotusHlp.dll - Win32/PSW.OnLineGames.HCV trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\LYLOADER.EXE - Win32/PSW.Agent.NEC trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\LYMANGR.DLL - Win32/PSW.OnLineGames.DTR trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\msccrt.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\MSDEG32.DLL - Win32/PSW.OnLineGames.DVV trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\NVDispDrv.dll - probably a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Users\Administrator\Desktop\样本.rar » RAR » 样本\s.exe - Win32/PSW.WOW.WU trojan

uhthn2002

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 977
Paranoia Database - 48989
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\Uhthn\Desktop\2

C:\Documents and Settings\Uhthn\Desktop\2\0.exe - Infected TROJAN.KILLAV.2 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\1.exe - Infected TROJAN-PSW.ONLINEGAMES.U - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\11.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\12.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\13.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\15.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\16.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\17.exe - Infected MaliciousScope:GENERIC.MALWARE.0DA.48C4 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\18.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\19.exe - Infected MaliciousScope:GENERIC.MALWARE.E27.4868 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\2.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\2\20.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\2\21.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\22.exe - Infected GENERIC.MALWARE.C55.42C8 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\23.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\24.exe - Infected TROJAN-PSW.ONLINEGAMES.126 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\3.exe - Infected GENERIC.MALWARE.18D.4FAC - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\4.exe - Infected TROJAN-PSW.ONLINEGAMES.48 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\5.exe - Infected MaliciousScope:TROJAN-PSW.GAME.35 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\6.exe - Infected GENERIC.MALWARE.077.7957 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\608769MM.DLL - Infected WIN32.MALWARE.AGENT.6 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\608769WL.DLL - Infected WIN32.TROJAN-PSW.ONLINEGAMES.G - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\8.exe - Infected GENERIC.MALWARE.E84.51DC - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\9.exe - Infected TROJAN-PSW.ONLINEGAMES.147 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\cmdbcs.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\GenProtect.dll - Infected TROJAN-PSW.ONLINEGAMES.12 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\LotusHlp.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\LYLOADER.EXE - Infected GENERIC.MALWARE.4A1.2EE0 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\LYMANGR.DLL - Infected GENERIC.MALWARE.28C.DC2 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\msccrt.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\MSDEG32.DLL - Infected GENERIC.MALWARE.334.175A - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\NVDispDrv.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\2\s.exe - Infected WIN32.MALWARE.AGENT.6 - Deleted

33 Files scanned
31 Infected files found
2 Suspected files found
0 Files disinfected
31 Files deleted

sam.to

已刪除: 特洛伊木馬程式 Trojan.Win32.KillAV.ge    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\0.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqi    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\1.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\11.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\12.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\13.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\15.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\16.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Nilage.bty    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\17.exe//NSPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\18.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Nilage.bty    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\19.exe//NSPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iha    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\2.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\21.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.idj    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\22.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\23.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hzt    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\24.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.idj    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\3.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hqh    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\4.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iaw    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\5.exe//NSPack//PE_Patch
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Delf.axx    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\6.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.boy    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\608769MM.DLL
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iay    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\608769WL.DLL
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iet    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\8.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iep    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\9.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inw    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\cmdbcs.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iha    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\GenProtect.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hzt    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\LotusHlp.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hpl    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\LYLOADER.EXE//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hpo    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\LYMANGR.DLL//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inm    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\msccrt.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hpp    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\MSDEG32.DLL//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inv    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\NVDispDrv.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.boy    檔案: C:\Documents and Settings\kato9096\桌面\160913\样本\s.exe


杀了三十二个,一个不报,已上报。

sam.to

Hello,

20.exe_ - Trojan-PSW.Win32.OnLineGames.iox

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Kirill Erakhtin
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.