下载者下的42个

显示全部楼层 · 发表于 2007-11-30 19:47:12

C:\ABC\样本.rar
C:\ABC\样本.rar\MSDEG32.DLL
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\MSDEG32.DLL
C:\ABC\样本.rar\a3.exe
C:\ABC\样本.rar\a3.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\a3.exe\FILE:0000
>>> Virus 'Mal/PWS-N' found in file C:\ABC\样本.rar\a3.exe
C:\ABC\样本.rar\608769L.exe
C:\ABC\样本.rar\608769L.exe\FILE:0000
>>> File "C:\ABC\样本.rar\608769L.exe\FILE:0000" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本.rar\608769L.exe\FILE:0000
>>> File "C:\ABC\样本.rar\608769L.exe\FILE:0000" has been identified as suspicious 'Sus/Malware-A'.
>>> Virus 'Mal/Behav-053' found in file C:\ABC\样本.rar\608769L.exe
C:\ABC\样本.rar\a4.exe
>>> Virus 'Mal/DelpDldr-B' found in file C:\ABC\样本.rar\a4.exe
C:\ABC\样本.rar\a5.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\a5.exe
C:\ABC\样本.rar\608769MM.DLL
>>> Virus 'Mal/GamePSW-C' found in file C:\ABC\样本.rar\608769MM.DLL
C:\ABC\样本.rar\608769WL.DLL
>>> File "C:\ABC\样本.rar\608769WL.DLL" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本.rar\cmdbcs.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\cmdbcs.exe
C:\ABC\样本.rar\GenProtect.exE
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\GenProtect.exE
C:\ABC\样本.rar\MsPrint32D.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\MsPrint32D.exe
C:\ABC\样本.rar\608769M.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\608769M.exe
C:\ABC\样本.rar\a6.exe
C:\ABC\样本.rar\a6.exe\FILE:0000
>>> Virus 'Mal/Gampass-A' found in file C:\ABC\样本.rar\a6.exe\FILE:0000
>>> File "C:\ABC\样本.rar\a6.exe" has been identified as suspicious 'Sus/Dropper-R'.
C:\ABC\样本.rar\a7.exe
>>> Virus 'Mal/Dorf-A' found in file C:\ABC\样本.rar\a7.exe
C:\ABC\样本.rar\a8.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\a8.exe
C:\ABC\样本.rar\a9.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a9.exe
C:\ABC\样本.rar\a11.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a11.exe
C:\ABC\样本.rar\a12.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a12.exe
C:\ABC\样本.rar\a14.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a14.exe
C:\ABC\样本.rar\a15.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\a15.exe
C:\ABC\样本.rar\a16.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a16.exe
C:\ABC\样本.rar\a18.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a18.exe
C:\ABC\样本.rar\a19.exe
>>> Virus 'Mal/Behav-112' found in file C:\ABC\样本.rar\a19.exe
C:\ABC\样本.rar\a20.exe
>>> Virus 'Mal/EncPk-AP' found in file C:\ABC\样本.rar\a20.exe
C:\ABC\样本.rar\avwggmn.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\avwggmn.dll
C:\ABC\样本.rar\avwlfmn.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\avwlfmn.dll
C:\ABC\样本.rar\cmdbcs.dll
>>> File "C:\ABC\样本.rar\cmdbcs.dll" has been identified as suspicious 'Sus/Malware-B'.
C:\ABC\样本.rar\Wn_Sys8x.Sys
>>> Virus 'Mal/Gampass-A' found in file C:\ABC\样本.rar\Wn_Sys8x.Sys
C:\ABC\样本.rar\gdqqhxi32.dll
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\gdqqhxi32.dll
C:\ABC\样本.rar\GenProtect.dll
>>> File "C:\ABC\样本.rar\GenProtect.dll" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本.rar\kawdfzy.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\kawdfzy.dll
C:\ABC\样本.rar\kvdxjma.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\kvdxjma.dll
C:\ABC\样本.rar\kvdxsjma.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\kvdxsjma.dll
C:\ABC\样本.rar\LYLOADER.EXE
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\LYLOADER.EXE
C:\ABC\样本.rar\MsPrint32D.dll
>>> File "C:\ABC\样本.rar\MsPrint32D.dll" has been identified as suspicious 'Sus/Malware-A'.
C:\ABC\样本.rar\qwdjrxchns.dll
>>> Virus 'Mal/Behav-160' found in file C:\ABC\样本.rar\qwdjrxchns.dll
C:\ABC\样本.rar\ratbmpi.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\ratbmpi.dll
C:\ABC\样本.rar\sidjezy.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本.rar\sidjezy.dll
C:\ABC\样本.rar\upxdnd.dll
>>> File "C:\ABC\样本.rar\upxdnd.dll" has been identified as suspicious 'Sus/Zhengtu-A'.
C:\ABC\样本.rar\pcihdd.sys
C:\ABC\样本.rar\scvhost.exe
>>> Virus 'Mal/HckPk-C' found in file C:\ABC\样本.rar\scvhost.exe
C:\ABC\样本.rar\a1.exe
>>> Virus 'Mal/EncPk-AP' found in file C:\ABC\样本.rar\a1.exe
C:\ABC\样本.rar\LYMANGR.DLL
>>> Virus 'Mal/Packer' found in file C:\ABC\样本.rar\LYMANGR.DLL

显示全部楼层 · 发表于 2007-11-30 19:48:34

deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixk File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/MSDEG32.DLL//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iyv File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a3.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hfr File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/608769L.exe//ASPack
deleted: Trojan program Trojan-Downloader.Win32.Delf.aas File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a4.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a5.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.izb File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/608769MM.DLL
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iay File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/608769WL.DLL
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/cmdbcs.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iyu File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/GenProtect.exE//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/MsPrint32D.exe
deleted: Trojan program Trojan-PSW.Win32.Lmir.bpc File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/608769M.exe//PE_Patch//UPack//PE_Patch
deleted: virus Virus.Win32.AutoRun.ahn File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a6.exe//UPX
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a7.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.inn File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a8.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jcn File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a9.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iti File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a11.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iyt File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a12.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jas File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a14.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.Lmir.bpd File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a15.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.inp File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a16.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jbm File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a18.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iys File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a19.exe//UPack
deleted: Trojan program Backdoor.Win32.Delf.cgb File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a20.exe//FSG//PEPatch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jak File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/avwggmn.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.itq File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/avwlfmn.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.inw File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/cmdbcs.dll
deleted: virus Virus.Win32.AutoRun.ahn File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/Wn_Sys8x.Sys
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.izc File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/gdqqhxi32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.izd File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/GenProtect.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.inb File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/kawdfzy.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jcn File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/kvdxjma.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iza File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/kvdxsjma.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixl File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/LYLOADER.EXE//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jbi File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/MsPrint32D.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.inn File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/qwdjrxchns.dll//UPack//PE_Patch.MaskPE
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jbm File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/ratbmpi.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iyz File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/sidjezy.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jaq File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/upxdnd.dll
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/pcihdd.sys
deleted: Trojan program Backdoor.Win32.Delf.awy File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/scvhost.exe
deleted: Trojan program Trojan.Win32.Agent.czq File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/a1.exe//FSG//PEPatch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixj File: C:\Users\Nerazzurri\Desktop\Ñù±¾.rar/LYMANGR.DLL//UPack

显示全部楼层 · 发表于 2007-11-30 19:49:20

Starting the file scan:

Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
  --> MSDEG32.DLL
   [DETECTION] Is the Trojan horse TR/PSW.Online.gyo.2
  --> a3.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> 608769L.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> a4.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> a5.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 608769MM.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769WL.DLL
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> cmdbcs.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> GenProtect.exE
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> MsPrint32D.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.iwx.1
  --> 608769M.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> a6.exe
   [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
  --> a7.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> a8.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.inn
  --> a9.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> a11.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.itq
  --> a12.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.iza
  --> a14.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> a15.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ivl.25
  --> a16.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.ikc
  --> a18.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> a19.exe
   [DETECTION] Is the Trojan horse TR/FWDisable.22884
  --> a20.exe
   [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> avwggmn.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> avwlfmn.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.itq
  --> cmdbcs.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> Wn_Sys8x.Sys
   [DETECTION] Contains suspicious code HEUR/Malware
  --> gdqqhxi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ivl.25
  --> GenProtect.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> kawdfzy.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.inb
  --> kvdxjma.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> kvdxsjma.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.iza
  --> LYLOADER.EXE
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> MsPrint32D.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.iwx.1
  --> qwdjrxchns.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.inn
  --> ratbmpi.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> sidjezy.dll
   [DETECTION] Is the Trojan horse TR/FWDisable.22884
  --> upxdnd.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> pcihdd.sys
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> scvhost.exe
   [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> a1.exe
   [DETECTION] Is the Trojan horse TR/Agent.czq
  --> LYMANGR.DLL
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
   [INFO]    The file was deleted!

End of the scan: 2007年11月30日  19:49
Used time: 00:34 min

The scan has been done completely.

   0 Scanning directories
   43 Files were scanned
   37 viruses and/or unwanted programs were found
   5 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   6 Files not concerned
   1 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-11-30 19:49:27

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\en\MSDEG32.DLL]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:6009  MD5:5ce7ccf2023238bab78883360c545a06

[C:\Documents and Settings\Administrator\桌面\Virus\en\608769L.exe]
                  …………发现Spy！报告: [4]
文件信息:  大小:52529  MD5:3dad99a4a31b5b5111a76c0019de0721

[C:\Documents and Settings\Administrator\桌面\Virus\en\a5.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:16040  MD5:c2787feb3ebb616deaeb785451e01b6a

[C:\Documents and Settings\Administrator\桌面\Virus\en\608769MM.DLL]
                  …………发现Spy！报告: [4]
文件信息:  大小:47409  MD5:7be33ac9c94dea1e9858fb9130e00bd9

[C:\Documents and Settings\Administrator\桌面\Virus\en\cmdbcs.exe]
                  …………发现Spy！报告:[2] [1] Win32.Unknow
文件信息:  大小:16908  MD5:ac0147c76b3870346ca0d23701c20b3e

[C:\Documents and Settings\Administrator\桌面\Virus\en\GenProtect.exE]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18997  MD5:5c89c412744df0c962a1795719634662

[C:\Documents and Settings\Administrator\桌面\Virus\en\MsPrint32D.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15848  MD5:f99da21388050910e4f3c7623c9a3585

[C:\Documents and Settings\Administrator\桌面\Virus\en\608769M.exe]
                  …………发现Spy！报告: [4] [1] Win32.Unknow
文件信息:  大小:29061  MD5:8f70099569af445718839acafc004456

[C:\Documents and Settings\Administrator\桌面\Virus\en\a6.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:33434  MD5:c0b4985c6063de5a36d04fb2da5a2c97

[C:\Documents and Settings\Administrator\桌面\Virus\en\a7.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:49152  MD5:9940ff39321c0dd1acb140ab5c9ed048

[C:\Documents and Settings\Administrator\桌面\Virus\en\a8.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:33649  MD5:f5f4591f5e0f51ea6cc9ef54a6a1c019

[C:\Documents and Settings\Administrator\桌面\Virus\en\a9.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15356  MD5:58ef5345fef7de97fb08eba23c804476

[C:\Documents and Settings\Administrator\桌面\Virus\en\a11.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15492  MD5:981265c4844d8a393efe9312a333f483

[C:\Documents and Settings\Administrator\桌面\Virus\en\a12.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15110  MD5:b83f8cb377b7089c64343bb07009b547

[C:\Documents and Settings\Administrator\桌面\Virus\en\a14.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15569  MD5:fe25906a641dad5fc1ae52b70e5d8a61

[C:\Documents and Settings\Administrator\桌面\Virus\en\a15.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:14840  MD5:7f188122d48377fe5f88bc3e990fe3eb

[C:\Documents and Settings\Administrator\桌面\Virus\en\a16.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14996  MD5:7e39fde1149e714e6b4751588ce5b930

[C:\Documents and Settings\Administrator\桌面\Virus\en\a18.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14995  MD5:239b61b31aad98419f296d2d51e1462c

[C:\Documents and Settings\Administrator\桌面\Virus\en\a19.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:14562  MD5:f7c5344c268b2202463581af665b9cc5

[C:\Documents and Settings\Administrator\桌面\Virus\en\a20.exe]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.FSG.A
文件信息:  大小:178193  MD5:dd6892550b6068c5b2d3040937e356e5

[C:\Documents and Settings\Administrator\桌面\Virus\en\avwggmn.dll]
                  …………发现Spy！报告:[6] 注入者[8] HOOK者
文件信息:  大小:22372  MD5:9e3623c330ed6ebfabf7d7e82a5b421b

[C:\Documents and Settings\Administrator\桌面\Virus\en\avwlfmn.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:22346  MD5:e1441a1d2f52e6fe55d0b8df61056309

[C:\Documents and Settings\Administrator\桌面\Virus\en\cmdbcs.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:27136  MD5:2b2d238cf1a78d4e3278b96757f676c7

[C:\Documents and Settings\Administrator\桌面\Virus\en\Wn_Sys8x.Sys]
                  …………发现Spy！报告: [4] [8] HOOK者
文件信息:  大小:48282  MD5:36a070816ddc539f17118eb54d72b788

[C:\Documents and Settings\Administrator\桌面\Virus\en\gdqqhxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11450  MD5:721d977e69ddbc04c31f3a6bc271b535

[C:\Documents and Settings\Administrator\桌面\Virus\en\kawdfzy.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:23892  MD5:c852c2172af2f18a2b5983ee142426d0

[C:\Documents and Settings\Administrator\桌面\Virus\en\kvdxjma.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:24402  MD5:15e43bebddbe288d519c043ce45e1ac6

[C:\Documents and Settings\Administrator\桌面\Virus\en\kvdxsjma.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:23890  MD5:138b660e2af497d2ddf2103b302e4672

[C:\Documents and Settings\Administrator\桌面\Virus\en\LYLOADER.EXE]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:12024  MD5:2eab0728dd40434c1cd0f52108314f4a

[C:\Documents and Settings\Administrator\桌面\Virus\en\MsPrint32D.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:25600  MD5:05ce98c59d769359baba511956c76e77

[C:\Documents and Settings\Administrator\桌面\Virus\en\qwdjrxchns.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:21851  MD5:8b4eab1adffac82bd55ff9aeaf52623d

[C:\Documents and Settings\Administrator\桌面\Virus\en\ratbmpi.dll]
                  …………发现Spy！报告:[6] 注入者[8] HOOK者
文件信息:  大小:22864  MD5:587a6e81af2a22e8301585baa15be03d

[C:\Documents and Settings\Administrator\桌面\Virus\en\sidjezy.dll]
                  …………发现Spy！报告:[6] 注入者[8] HOOK者
文件信息:  大小:22884  MD5:fd3dc7633dfd5c4cc47c229a886ec40c

[C:\Documents and Settings\Administrator\桌面\Virus\en\upxdnd.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:26112  MD5:4124a60964b551dc8c7e1a3b44346728

[C:\Documents and Settings\Administrator\桌面\Virus\en\scvhost.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:11081  MD5:059725b53772a916f11e27517edb6bf0

[C:\Documents and Settings\Administrator\桌面\Virus\en\a1.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:45333  MD5:679370f217e1366132d875c16c306984

[C:\Documents and Settings\Administrator\桌面\Virus\en\LYMANGR.DLL]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:3560  MD5:3df8f45f823217a1f9e9fbaefd70d99a

文件数:42 病毒数:37  比重:0.8809523809524
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

[ 本帖最后由 FBAV 于 2007-11-30 19:56 编辑 ]

显示全部楼层 · 发表于 2007-11-30 19:50:05

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GameOnline.aro
病毒： Trojan.PSW.Win32.GameOnline.asm
病毒： Trojan.PSW.Win32.Woool.c
病毒： Trojan.DL.Delf.xxb
病毒： Trojan.PSW.Win32.GameOnline.art
病毒： Trojan.PSW.Win32.LMir.yzb
病毒： Trojan.PSW.Win32.Woool.c
病毒： Trojan.PSW.Win32.GameOnline.amm
病毒： Trojan.PSW.Win32.GameOnline.asy
病毒： Trojan.PSW.Win32.QQSG.an
病毒： Trojan.PSW.Win32.LMir.yzb
病毒： Worm.Win32.PaBug.ep
病毒： Trojan.DL.Win32.Agent.yrh
病毒： Trojan.PSW.Win32.WoWar.afr
病毒： Trojan.PSW.Win32.QQHX.tsf
病毒： Trojan.PSW.Win32.XYOnline.ui
病毒： Trojan.PSW.Win32.SunOnline.hy
病毒： Trojan.PSW.Win32.QQHX.tsg
病毒： Trojan.PSW.Win32.GameOnline.ana
病毒： Trojan.PSW.Win32.GameOnline.ars
病毒： Trojan.Win32.Mnless.zhs
病毒： Trojan.PSW.Win32.SunOnline.hy
病毒： Trojan.PSW.Win32.GameOnline.aqh
病毒： Trojan.PSW.Win32.GameOnline.amm
病毒： Worm.Win32.PaBug.ep
病毒： Trojan.PSW.Win32.QQHX.tsg
病毒： Trojan.PSW.Win32.GameOnline.arz
病毒： Trojan.PSW.Win32.GameOnline.ana
病毒： Trojan.PSW.Win32.XYOnline.ui
病毒： Trojan.PSW.Win32.GameOnline.aro
病毒： Trojan.PSW.Win32.QQSG.an
病毒： Trojan.PSW.Win32.WoWar.afr
病毒： Trojan.PSW.Win32.GameOnline.ars
病毒： Trojan.PSW.Win32.GameOnline.art
病毒： RootKit.Win32.Paice.a
病毒： Backdoor.Win32.Agent.yff
病毒： Trojan.Win32.Mnless.zub
病毒： Trojan.PSW.Win32.GameOnline.aro

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.20.41

显示全部楼层 · 发表于 2007-11-30 19:55:37

已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.hfr 檔案: C:\Documents and Settings\kato9096\桌面\164359\608769L.exe//ASPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.bpc 檔案: C:\Documents and Settings\kato9096\桌面\164359\608769M.exe//PE_Patch//UPack//PE_Patch
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.izb 檔案: C:\Documents and Settings\kato9096\桌面\164359\608769MM.DLL
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iay 檔案: C:\Documents and Settings\kato9096\桌面\164359\608769WL.DLL
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.czq 檔案: C:\Documents and Settings\kato9096\桌面\164359\a1.exe//FSG//PEPatch
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iti 檔案: C:\Documents and Settings\kato9096\桌面\164359\a11.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iyt 檔案: C:\Documents and Settings\kato9096\桌面\164359\a12.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jas 檔案: C:\Documents and Settings\kato9096\桌面\164359\a14.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Lmir.bpd 檔案: C:\Documents and Settings\kato9096\桌面\164359\a15.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inp 檔案: C:\Documents and Settings\kato9096\桌面\164359\a16.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jbm 檔案: C:\Documents and Settings\kato9096\桌面\164359\a18.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iys 檔案: C:\Documents and Settings\kato9096\桌面\164359\a19.exe//UPack
已刪除: 特洛伊木馬程式 Backdoor.Win32.Delf.cgb 檔案: C:\Documents and Settings\kato9096\桌面\164359\a20.exe//FSG//PEPatch
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iyv 檔案: C:\Documents and Settings\kato9096\桌面\164359\a3.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Delf.aas 檔案: C:\Documents and Settings\kato9096\桌面\164359\a4.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.isb 檔案: C:\Documents and Settings\kato9096\桌面\164359\a5.exe
已刪除: 病毒 Virus.Win32.AutoRun.ahn 檔案: C:\Documents and Settings\kato9096\桌面\164359\a6.exe//UPX
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.blm 檔案: C:\Documents and Settings\kato9096\桌面\164359\a7.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inn 檔案: C:\Documents and Settings\kato9096\桌面\164359\a8.exe//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jcn 檔案: C:\Documents and Settings\kato9096\桌面\164359\a9.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jak 檔案: C:\Documents and Settings\kato9096\桌面\164359\avwggmn.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.itq 檔案: C:\Documents and Settings\kato9096\桌面\164359\avwlfmn.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inw 檔案: C:\Documents and Settings\kato9096\桌面\164359\cmdbcs.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.isb 檔案: C:\Documents and Settings\kato9096\桌面\164359\cmdbcs.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.izc 檔案: C:\Documents and Settings\kato9096\桌面\164359\gdqqhxi32.dll//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.izd 檔案: C:\Documents and Settings\kato9096\桌面\164359\GenProtect.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iyu 檔案: C:\Documents and Settings\kato9096\桌面\164359\GenProtect.exE//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inb 檔案: C:\Documents and Settings\kato9096\桌面\164359\kawdfzy.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jcn 檔案: C:\Documents and Settings\kato9096\桌面\164359\kvdxjma.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iza 檔案: C:\Documents and Settings\kato9096\桌面\164359\kvdxsjma.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ixl 檔案: C:\Documents and Settings\kato9096\桌面\164359\LYLOADER.EXE//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ixj 檔案: C:\Documents and Settings\kato9096\桌面\164359\LYMANGR.DLL//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ixk 檔案: C:\Documents and Settings\kato9096\桌面\164359\MSDEG32.DLL//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jbi 檔案: C:\Documents and Settings\kato9096\桌面\164359\MsPrint32D.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.isb 檔案: C:\Documents and Settings\kato9096\桌面\164359\MsPrint32D.exe
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.blm 檔案: C:\Documents and Settings\kato9096\桌面\164359\pcihdd.sys
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.inn 檔案: C:\Documents and Settings\kato9096\桌面\164359\qwdjrxchns.dll//UPack//PE_Patch.MaskPE
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jbm 檔案: C:\Documents and Settings\kato9096\桌面\164359\ratbmpi.dll
已刪除: 特洛伊木馬程式 Backdoor.Win32.Delf.awy 檔案: C:\Documents and Settings\kato9096\桌面\164359\scvhost.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.iyz 檔案: C:\Documents and Settings\kato9096\桌面\164359\sidjezy.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.jaq 檔案: C:\Documents and Settings\kato9096\桌面\164359\upxdnd.dll
已刪除: 病毒 Virus.Win32.AutoRun.ahn 檔案: C:\Documents and Settings\kato9096\桌面\164359\Wn_Sys8x.Sys

kis 42个

显示全部楼层 · 发表于 2007-11-30 20:04:22

扫描进行于：2007-11-30 20:04:11
扫描日志
NOD32版本 2694 (20071130) NT
命令行： C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar

日期： 30.11.2007 时间：20:04:14
已开启反隐藏功能.
已扫描的磁盘，文件夹及文件：C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>MSDEG32.DLL - Win32/PSW.OnLineGames.DVV 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a3.exe - Win32/PSW.Agent.NEC 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>608769L.exe - Win32/PSW.WOW.WU 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a4.exe - Win32/TrojanDownloader.SMW.A 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a5.exe - Win32/PSW.OnLineGames.NFL 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>608769MM.DLL - Win32/PSW.Legendmir.NFF 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>608769WL.DLL - Win32/PSW.Legendmir.NFN 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>cmdbcs.exe - Win32/PSW.OnLineGames.YA 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>GenProtect.exE - Win32/PSW.OnLineGames.NFL 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>MsPrint32D.exe - Win32/PSW.OnLineGames.NFL 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>608769M.exe - Win32/PSW.WOW.WU 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a6.exe - 可能是 Win32/AutoRun.Q 蠕虫的一个变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a7.exe - Win32/Agent.NLW 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a8.exe - Win32/PSW.OnLineGames.GJV 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a9.exe - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a11.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a12.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a14.exe - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a15.exe - Win32/PSW.OnLineGames.NJD 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a16.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a18.exe - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a19.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a20.exe - Win32/Delf.CGB 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>avwggmn.dll - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>avwlfmn.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>cmdbcs.dll - Win32/PSW.OnLineGames.NFL 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>Wn_Sys8x.Sys - 可能是 Win32/AutoRun.Q 蠕虫的一个变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>gdqqhxi32.dll - Win32/PSW.OnLineGames.NJD 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>GenProtect.dll - Win32/PSW.OnLineGames.HCV 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>kawdfzy.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>kvdxjma.dll - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>kvdxsjma.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>LYLOADER.EXE - Win32/PSW.Agent.NEC 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>MsPrint32D.dll - Win32/PSW.OnLineGames.HCV 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>qwdjrxchns.dll - Win32/PSW.OnLineGames.GJV 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>ratbmpi.dll - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>sidjezy.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>upxdnd.dll - Win32/PSW.OnLineGames.HCV 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>pcihdd.sys - Win32/TrojanDownloader.Agent.BLM 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>scvhost.exe - Win32/Delf.AWY 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>a1.exe - Win32/Delf.NIN 木马
C:\Documents and Settings\Administrator.0CDC92BBFF714E5\桌面\样本.rar >>RAR >>LYMANGR.DLL - Win32/PSW.OnLineGames.DTR 木马
已扫描的文件数目：42
已发现的病毒数目：42
完成时间： 20:04:17 总扫描时间：3 秒 (00:00:03)

显示全部楼层 · 发表于 2007-11-30 20:28:35

全灭!

显示全部楼层 · 发表于 2007-11-30 20:40:50

小红伞，扫了43个文件，报了42个

显示全部楼层 · 发表于 2007-11-30 20:47:40

扫描系统区域...
扫描所选择的目录和文件...
对象: MSDEG32.DLL
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.PWS.Games.3.6463A40F (BD 引擎)
对象: a3.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Dropped:Generic.PWS.Games.3.6463A40F (BD 引擎)
对象: 608769L.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.PWS.Games.4.BDBB87C9 (BD 引擎)
对象: a4.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Trojan.Downloader.OH (BD 引擎)
对象: a5.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.PWS.Games.4.FF528E4C (BD 引擎)
对象: cmdbcs.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.PWS.Games.4.963003EC (BD 引擎)
对象: GenProtect.exE
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.PWS.Games.4.826EAA6F (BD 引擎)
对象: MsPrint32D.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.PWS.Games.4.1A0DB18E (BD 引擎)
对象: 608769M.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.PWS.Games.4.048CCA22 (BD 引擎)
对象: a6.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.PWStealer.7001320B (BD 引擎)
对象: a7.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Dropped:Trojan.Downloader.Agent.YMX (BD 引擎)
对象: a8.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 可疑病毒
病毒: Dropped:Generic.Malware.Fdldg.4EDDB8B4 (BD 引擎)
对象: a9.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Dld.Agent.47CD2AEB (BD 引擎)
对象: a11.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.Malware.SBdldg.4A6ABF0A (BD 引擎)
对象: a12.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Dld.Agent.6B153700 (BD 引擎)
对象: a14.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Generic.Malware.SBdldg.D0E79CCC (BD 引擎)
对象: a16.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Dld.Agent.98720270 (BD 引擎)
对象: a18.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Dld.Agent.CA79F7C4 (BD 引擎)
对象: a19.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.Dld.Agent.E5A2156B (BD 引擎)
对象: a20.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 可疑病毒
病毒: BehavesLike:Win32.Malware (BD 引擎)
对象: avwggmn.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: avwlfmn.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: cmdbcs.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.PWS.Games.1.6CE89BFA (BD 引擎)
对象: Wn_Sys8x.Sys
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Win32.Worm.Autorun.FF (BD 引擎)
对象: kawdfzy.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: kvdxjma.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: kvdxsjma.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: LYLOADER.EXE
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Dropped:Generic.PWS.Games.3.6463A40F (BD 引擎)
对象: MsPrint32D.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.PWS.Games.1.9051B838 (BD 引擎)
对象: qwdjrxchns.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 可疑病毒
病毒: Generic.Malware.Fdldg.4EDDB8B4 (BD 引擎)
对象: ratbmpi.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: sidjezy.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: BehavesLike:Trojan.WUDisable (BD 引擎)
对象: upxdnd.dll
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: DeepScan:Generic.PWS.Games.4.625663F8 (BD 引擎)
对象: pcihdd.sys
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Trojan.Downloader.Agent.YMX (BD 引擎)
对象: scvhost.exe
在压缩档案里: C:\Documents and Settings\wangcheng\My Documents\样本.rar
Status: 已发现病毒
病毒: Trojan.Spy.Pcapbased.A (BD 引擎)
对象: 样本.rar
路径: C:\Documents and Settings\wangcheng\My Documents
Status: 已发现病毒
病毒: Generic.PWS.Games.3.6463A40F, Dropped:Generic.PWS.Games.3.6463A40F (2x), DeepScan:Generic.PWS.Games.4.BDBB87C9, Trojan.Downloader.OH, Generic.PWS.Games.4.FF528E4C, Generic.PWS.Games.4.963003EC, Generic.PWS.Games.4.826EAA6F, Generic.PWS.Games.4.1A0DB18E, DeepScan:Generic.PWS.Games.4.048CCA22, Generic.PWStealer.7001320B, Dropped:Trojan.Downloader.Agent.YMX, Dropped:Generic.Malware.Fdldg.4EDDB8B4, DeepScan:Generic.Dld.Agent.47CD2AEB, Generic.Malware.SBdldg.4A6ABF0A, DeepScan:Generic.Dld.Agent.6B153700, Generic.Malware.SBdldg.D0E79CCC, DeepScan:Generic.Dld.Agent.98720270, DeepScan:Generic.Dld.Agent.CA79F7C4, DeepScan:Generic.Dld.Agent.E5A2156B, BehavesLike:Win32.Malware, BehavesLike:Trojan.WUDisable (7x), DeepScan:Generic.PWS.Games.1.6CE89BFA, Win32.Worm.Autorun.FF, DeepScan:Generic.PWS.Games.1.9051B838, Generic.Malware.Fdldg.4EDDB8B4, DeepScan:Generic.PWS.Games.4.625663F8, Trojan.Downloader.Agent.YMX, Trojan.Spy.Pcapbased.A (BD 引擎)
扫描完成: 2007-11-30 20:47
已检查 1 个文件
已发现 1 个染毒文件

[病毒样本] 下载者下的42个

本帖子中包含更多资源

42

42

63/38

本帖子中包含更多资源