收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 下载者下的42个
12
返回列表 发新帖
楼主: promised
 收起左侧

[病毒样本] 下载者下的42个

[复制链接]
chjy007
发表于 2007-11-30 21:48:52 | 显示全部楼层
nod  kiss
扫描进行于:2007-11-30 21:47:43
扫描日志
NOD32版本 2694 (20071130) NT
命令行: F:\病毒\复件 样本.rar
系统内存  - 是正常的

日期: 30.11.2007  时间:21:47:47
已开启反隐藏功能.
已扫描的磁盘,文件夹及文件:F:\病毒\复件 样本.rar
F:\病毒\复件 样本.rar >>RAR >>MSDEG32.DLL - Win32/PSW.OnLineGames.DVV 木马
F:\病毒\复件 样本.rar >>RAR >>a3.exe - Win32/PSW.Agent.NEC 木马
F:\病毒\复件 样本.rar >>RAR >>608769L.exe - Win32/PSW.WOW.WU 木马
F:\病毒\复件 样本.rar >>RAR >>a4.exe - Win32/TrojanDownloader.SMW.A 木马
F:\病毒\复件 样本.rar >>RAR >>a5.exe - Win32/PSW.OnLineGames.NFL 木马
F:\病毒\复件 样本.rar >>RAR >>608769MM.DLL - Win32/PSW.Legendmir.NFF 木马
F:\病毒\复件 样本.rar >>RAR >>608769WL.DLL - Win32/PSW.Legendmir.NFN 木马
F:\病毒\复件 样本.rar >>RAR >>cmdbcs.exe - Win32/PSW.OnLineGames.YA 木马
F:\病毒\复件 样本.rar >>RAR >>GenProtect.exE - Win32/PSW.OnLineGames.NFL 木马
F:\病毒\复件 样本.rar >>RAR >>MsPrint32D.exe - Win32/PSW.OnLineGames.NFL 木马
F:\病毒\复件 样本.rar >>RAR >>608769M.exe - Win32/PSW.WOW.WU 木马
F:\病毒\复件 样本.rar >>RAR >>a6.exe - 可能是 Win32/AutoRun.Q 蠕虫 的一个变种
F:\病毒\复件 样本.rar >>RAR >>a7.exe - Win32/Agent.NLW 木马
F:\病毒\复件 样本.rar >>RAR >>a8.exe - Win32/PSW.OnLineGames.GJV 木马
F:\病毒\复件 样本.rar >>RAR >>a9.exe - Win32/PSW.OnLineGames.FDY 木马的变种
F:\病毒\复件 样本.rar >>RAR >>a11.exe - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>a12.exe - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>a14.exe - Win32/PSW.OnLineGames.FDY 木马的变种
F:\病毒\复件 样本.rar >>RAR >>a15.exe - Win32/PSW.OnLineGames.NJD 木马
F:\病毒\复件 样本.rar >>RAR >>a16.exe - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>a18.exe - Win32/PSW.OnLineGames.FDY 木马的变种
F:\病毒\复件 样本.rar >>RAR >>a19.exe - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>a20.exe - Win32/Delf.CGB 木马
F:\病毒\复件 样本.rar >>RAR >>avwggmn.dll - Win32/PSW.OnLineGames.FDY 木马的变种
F:\病毒\复件 样本.rar >>RAR >>avwlfmn.dll - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>cmdbcs.dll - Win32/PSW.OnLineGames.NFL 木马
F:\病毒\复件 样本.rar >>RAR >>Wn_Sys8x.Sys - 可能是 Win32/AutoRun.Q 蠕虫 的一个变种
F:\病毒\复件 样本.rar >>RAR >>gdqqhxi32.dll - Win32/PSW.OnLineGames.NJD 木马
F:\病毒\复件 样本.rar >>RAR >>GenProtect.dll - Win32/PSW.OnLineGames.HCV 木马
F:\病毒\复件 样本.rar >>RAR >>kawdfzy.dll - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>kvdxjma.dll - Win32/PSW.OnLineGames.FDY 木马的变种
F:\病毒\复件 样本.rar >>RAR >>kvdxsjma.dll - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>LYLOADER.EXE - Win32/PSW.Agent.NEC 木马
F:\病毒\复件 样本.rar >>RAR >>MsPrint32D.dll - Win32/PSW.OnLineGames.HCV 木马
F:\病毒\复件 样本.rar >>RAR >>qwdjrxchns.dll - Win32/PSW.OnLineGames.GJV 木马
F:\病毒\复件 样本.rar >>RAR >>ratbmpi.dll - Win32/PSW.OnLineGames.FDY 木马的变种
F:\病毒\复件 样本.rar >>RAR >>sidjezy.dll - Win32/PSW.OnLineGames.FDY 木马
F:\病毒\复件 样本.rar >>RAR >>upxdnd.dll - Win32/PSW.OnLineGames.HCV 木马
F:\病毒\复件 样本.rar >>RAR >>pcihdd.sys - Win32/TrojanDownloader.Agent.BLM 木马
F:\病毒\复件 样本.rar >>RAR >>scvhost.exe - Win32/Delf.AWY 木马
F:\病毒\复件 样本.rar >>RAR >>a1.exe - Win32/Delf.NIN 木马
F:\病毒\复件 样本.rar >>RAR >>LYMANGR.DLL - Win32/PSW.OnLineGames.DTR 木马
已扫描的文件数目:42
已发现的病毒数目:42
完成时间: 21:47:48 总扫描时间:1 秒 (00:00:01)
回复

举报

zwl2828
发表于 2007-11-30 21:56:08 | 显示全部楼层

42

ESET Smart Security
C:\Users\Wesley\Desktop\样本.rar » RAR » MSDEG32.DLL - Win32/PSW.OnLineGames.DVV trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a3.exe - Win32/PSW.Agent.NEC trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » 608769L.exe - Win32/PSW.WOW.WU trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a4.exe - Win32/TrojanDownloader.SMW.A trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a5.exe - Win32/PSW.OnLineGames.NFL trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » 608769MM.DLL - Win32/PSW.Legendmir.NFF trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » 608769WL.DLL - Win32/PSW.Legendmir.NFN trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » cmdbcs.exe - Win32/PSW.OnLineGames.YA trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » GenProtect.exE - Win32/PSW.OnLineGames.NFL trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » MsPrint32D.exe - Win32/PSW.OnLineGames.NFL trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » 608769M.exe - Win32/PSW.WOW.WU trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a6.exe - probably a variant of Win32/AutoRun.Q worm - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a7.exe - Win32/Agent.NLW trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a8.exe - Win32/PSW.OnLineGames.GJV trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a9.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a11.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a12.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a14.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a15.exe - Win32/PSW.OnLineGames.NJD trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a16.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a18.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a19.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a20.exe - Win32/Delf.CGB trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » avwggmn.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » avwlfmn.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » cmdbcs.dll - Win32/PSW.OnLineGames.NFL trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » Wn_Sys8x.Sys - probably a variant of Win32/AutoRun.Q worm - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » gdqqhxi32.dll - Win32/PSW.OnLineGames.NJD trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » GenProtect.dll - Win32/PSW.OnLineGames.HCV trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » kawdfzy.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » kvdxjma.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » kvdxsjma.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » LYLOADER.EXE - Win32/PSW.Agent.NEC trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » MsPrint32D.dll - Win32/PSW.OnLineGames.HCV trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » qwdjrxchns.dll - Win32/PSW.OnLineGames.GJV trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » ratbmpi.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » sidjezy.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » upxdnd.dll - Win32/PSW.OnLineGames.HCV trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » pcihdd.sys - Win32/TrojanDownloader.Agent.BLM trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » scvhost.exe - Win32/Delf.AWY trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » a1.exe - Win32/Delf.NIN trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar » RAR » LYMANGR.DLL - Win32/PSW.OnLineGames.DTR trojan - was a part of the deleted object
C:\Users\Wesley\Desktop\样本.rar - multiple threats - deleted - quarantined
回复

举报

嘁。不稀罕~
发表于 2007-11-30 22:48:17 | 显示全部楼层
"病毒扫描日志"        "2007/11/30"        ""
"时间"        "已检测,用户设定为信任"        "类型"        "威胁名称"        "受感染文件"        "第一处理措施"        "第二处理措施"
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "MSDEG32.DLL (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.LPE"        "a3.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_LEGMIR.CTN"        "608769L.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_DELF.NRZ"        "a4.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "a5.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_LEGMIR.CUL"        "608769MM.DLL (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "608769WL.DLL (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "cmdbcs.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "GenProtect.exE (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "MsPrint32D.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "608769M.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "PACKER-GEN.001"        "a6.exe (E:\下载\病毒测试\样本.rar)"        "忽略 成功"        ""
"22:41"        "手动扫描"        "文件"        "PACKER-GEN.001"        "a7.exe (E:\下载\病毒测试\样本.rar)"        "忽略 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "a8.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "PACKER-GEN.001"        "a9.exe (E:\下载\病毒测试\样本.rar)"        "忽略 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "a11.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "a12.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "a14.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.MBB"        "a15.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "PACKER-GEN.001"        "a16.exe (E:\下载\病毒测试\样本.rar)"        "忽略 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "a18.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "a19.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "BKDR_DELF.HBW"        "a20.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "avwggmn.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "avwlfmn.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "cmdbcs.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "gdqqhxi32.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "GenProtect.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "kvdxsjma.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.NIR"        "LYLOADER.EXE (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "MsPrint32D.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "PAK_Generic.006"        "qwdjrxchns.dll (E:\下载\病毒测试\样本.rar)"        "忽略 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "ratbmpi.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.EOS"        "sidjezy.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "upxdnd.dll (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "BKDR_DELF.HBW"        "scvhost.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TROJ_GENERIC.APC"        "a1.exe (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "TSPY_ONLINEG.NIR"        "LYMANGR.DLL (E:\下载\病毒测试\样本.rar)"        "隔离 成功"        ""
"22:41"        "手动扫描"        "文件"        "---"        "E:\下载\病毒测试\样本.rar"        "隔离 成功"        ""
回复

举报

12
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-5-21 18:52 , Processed in 0.110360 second(s), 16 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表