收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 某贴挖的46个
12下一页
返回列表 发新帖
查看: 2836|回复: 12
收起左侧

[病毒样本] 某贴挖的46个

[复制链接]
promised
 楼主| 发表于 2007-12-8 09:29:24 | 显示全部楼层

全灭

C:\ABC\样本\608769MM.DLL
>>> Virus 'Mal/Heuri-E' found in file C:\ABC\样本\608769MM.DLL
>>> Virus 'Mal/Behav-010' found in file C:\ABC\样本\608769MM.DLL
        C:\ABC\样本\608769WL.DLL
>>> File "C:\ABC\样本\608769WL.DLL" has been identified as suspicious 'Sus/Malware-A'.
        C:\ABC\样本\a1.exe
>>> Virus 'Mal/EncPk-AP' found in file C:\ABC\样本\a1.exe
        C:\ABC\样本\a10.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a10.exe
        C:\ABC\样本\a11.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\a11.exe
        C:\ABC\样本\a12.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a12.exe
        C:\ABC\样本\a13.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a13.exe
        C:\ABC\样本\a14.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\a14.exe
        C:\ABC\样本\a15.exe
>>> Virus 'Mal/EncPk-BW' found in file C:\ABC\样本\a15.exe
        C:\ABC\样本\a16.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\a16.exe
        C:\ABC\样本\a17.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a17.exe
        C:\ABC\样本\a18.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\a18.exe
        C:\ABC\样本\a19.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\a19.exe
        C:\ABC\样本\a2.exe
>>> Virus 'Mal/EncPk-BW' found in file C:\ABC\样本\a2.exe
        C:\ABC\样本\a20.exe
>>> Virus 'Mal/EncPk-AP' found in file C:\ABC\样本\a20.exe
        C:\ABC\样本\a21.exe
        C:\ABC\样本\a21.exe\FILE:0000
>>> File "C:\ABC\样本\a21.exe\FILE:0000" has been identified as suspicious 'Sus/Malware-A'.
        C:\ABC\样本\a21.exe\FILE:0000
>>> File "C:\ABC\样本\a21.exe\FILE:0000" has been identified as suspicious 'Sus/Malware-A'.
>>> Virus 'Mal/Behav-053' found in file C:\ABC\样本\a21.exe
        C:\ABC\样本\a22.exe
        C:\ABC\样本\a22.exe\FILE:0000
>>> Virus 'Mal/Behav-160' found in file C:\ABC\样本\a22.exe\FILE:0000
>>> File "C:\ABC\样本\a22.exe" has been identified as suspicious 'Sus/Dropper-R'.
        C:\ABC\样本\a23.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a23.exe
        C:\ABC\样本\a3.exe
        C:\ABC\样本\a3.exe\FILE:0000
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a3.exe\FILE:0000
>>> Virus 'Mal/PWS-N' found in file C:\ABC\样本\a3.exe
        C:\ABC\样本\a4.exe
>>> Virus 'Mal/Heuri-E' found in file C:\ABC\样本\a4.exe
        C:\ABC\样本\a5.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a5.exe
        C:\ABC\样本\a6.exe
        C:\ABC\样本\a6.exe\FILE:0000
>>> Virus 'Mal/Gampass-A' found in file C:\ABC\样本\a6.exe\FILE:0000
>>> File "C:\ABC\样本\a6.exe" has been identified as suspicious 'Sus/Dropper-R'.
        C:\ABC\样本\a7.exe
>>> Virus 'Mal/Dorf-A' found in file C:\ABC\样本\a7.exe
        C:\ABC\样本\a8.exe
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\a8.exe
        C:\ABC\样本\a9.exe
>>> Virus 'Mal/Behav-152' found in file C:\ABC\样本\a9.exe
        C:\ABC\样本\avwghmn.dll
>>> Virus 'Mal/Gampass-A' found in file C:\ABC\样本\avwghmn.dll
        C:\ABC\样本\avwlgmn.dll
>>> Virus 'Mal/Gampass-A' found in file C:\ABC\样本\avwlgmn.dll
        C:\ABC\样本\cmdbcs.dll
>>> File "C:\ABC\样本\cmdbcs.dll" has been identified as suspicious 'Sus/Malware-B'.
        C:\ABC\样本\DbgHlp32.dll
>>> File "C:\ABC\样本\DbgHlp32.dll" has been identified as suspicious 'Sus/Malware-B'.
        C:\ABC\样本\djouejouafkp.dll
>>> Virus 'Mal/Behav-160' found in file C:\ABC\样本\djouejouafkp.dll
>>> Virus 'Mal/Emogen-E' found in file C:\ABC\样本\djouejouafkp.dll
        C:\ABC\样本\gdqqhxi32.dll
>>> Virus 'Mal/EncPk-BW' found in file C:\ABC\样本\gdqqhxi32.dll
        C:\ABC\样本\gdzxi32.dll
>>> Virus 'Mal/EncPk-BW' found in file C:\ABC\样本\gdzxi32.dll
        C:\ABC\样本\GenProtect.dll
>>> File "C:\ABC\样本\GenProtect.dll" has been identified as suspicious 'Sus/Malware-A'.
        C:\ABC\样本\kawdfzy.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本\kawdfzy.dll
        C:\ABC\样本\kvdxjma.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本\kvdxjma.dll
        C:\ABC\样本\LYLOADER.EXE
>>> Virus 'Mal/Packer' found in file C:\ABC\样本\LYLOADER.EXE
        C:\ABC\样本\LYMANGR.DLL
>>> Virus 'Mal/EncPk-BW' found in file C:\ABC\样本\LYMANGR.DLL
        C:\ABC\样本\MSDEG32.DLL
>>> Virus 'Mal/EncPk-BW' found in file C:\ABC\样本\MSDEG32.DLL
        C:\ABC\样本\MsPrint32D.dll
>>> File "C:\ABC\样本\MsPrint32D.dll" has been identified as suspicious 'Sus/Malware-A'.
        C:\ABC\样本\pcihdd.sys
>>> Virus 'Troj/DwnLdr-GZH' found in file C:\ABC\样本\pcihdd.sys
        C:\ABC\样本\puagntydjo.dll
>>> Virus 'Mal/Behav-160' found in file C:\ABC\样本\puagntydjo.dll
        C:\ABC\样本\ratbmpi.dll
>>> Virus 'Mal/Delagen-A' found in file C:\ABC\样本\ratbmpi.dll
        C:\ABC\样本\scvhost.exe
>>> Virus 'Mal/HckPk-C' found in file C:\ABC\样本\scvhost.exe
        C:\ABC\样本\sidjfzy.dll
>>> File "C:\ABC\样本\sidjfzy.dll" has been identified as suspicious 'Sus/Malware-A'.
        C:\ABC\样本\upxdnd.dll
>>> File "C:\ABC\样本\upxdnd.dll" has been identified as suspicious 'Sus/Zhengtu-A'.
        C:\ABC\样本\Wn_Sys8x.Sys
>>> Virus 'Mal/Gampass-A' found in file C:\ABC\样本\Wn_Sys8x.Sys
回复

举报

Graybird
发表于 2007-12-8 09:30:51 | 显示全部楼层

46

Starting the file scan:

Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
  --> Ñù±¾\608769MM.DLL
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Ñù±¾\608769WL.DLL
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\a1.exe
      [DETECTION] Is the Trojan horse TR/StartPa.Delf.D.2
  --> Ñù±¾\a10.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\a11.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jes
  --> Ñù±¾\a12.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\a13.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Ñù±¾\a14.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\a15.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ivl.25
  --> Ñù±¾\a16.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jgd
  --> Ñù±¾\a17.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\a18.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbm
  --> Ñù±¾\a19.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jrd
  --> Ñù±¾\a2.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> Ñù±¾\a20.exe
      [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> Ñù±¾\a21.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\a22.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.asv
  --> Ñù±¾\a23.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Zlob.AEI.2
  --> Ñù±¾\a3.exe
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> Ñù±¾\a4.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> Ñù±¾\a5.exe
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\a6.exe
      [DETECTION] Contains detection pattern of the dropper DR/Delphi.Gen
  --> Ñù±¾\a7.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> Ñù±¾\a8.exe
      [DETECTION] Is the Trojan horse TR/PSW.Wow.afy
  --> Ñù±¾\a9.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> Ñù±¾\avwghmn.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\avwlgmn.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jes
  --> Ñù±¾\cmdbcs.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\DbgHlp32.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\djouejouafkp.dll
      [DETECTION] Is the Trojan horse TR/Spy.Delf.asv
  --> Ñù±¾\gdqqhxi32.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ivl.25
  --> Ñù±¾\gdzxi32.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.22
  --> Ñù±¾\GenProtect.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> Ñù±¾\kawdfzy.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jgd
  --> Ñù±¾\kvdxjma.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\LYLOADER.EXE
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> Ñù±¾\LYMANGR.DLL
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> Ñù±¾\MSDEG32.DLL
      [DETECTION] Is the Trojan horse TR/PSW.Online.gyo.2
  --> Ñù±¾\MsPrint32D.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> Ñù±¾\pcihdd.sys
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> Ñù±¾\puagntydjo.dll
      [DETECTION] Is the Trojan horse TR/PSW.Wow.afy
  --> Ñù±¾\ratbmpi.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbm
  --> Ñù±¾\scvhost.exe
      [DETECTION] Is the Trojan horse TR/Drop.Spy.Pca.A.1
  --> Ñù±¾\sidjfzy.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jrd
  --> Ñù±¾\upxdnd.dll
      [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Ñù±¾\Wn_Sys8x.Sys
      [DETECTION] Contains suspicious code HEUR/Malware
      [INFO]      The file was deleted!


End of the scan: 2007年12月8日  09:31
Used time: 00:33 min

The scan has been done completely.

      0 Scanning directories
     47 Files were scanned
     40 viruses and/or unwanted programs were found
      6 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      7 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

1p1
发表于 2007-12-8 09:32:30 | 显示全部楼层
扫描进行于:2007-12-8 9:31:42
扫描日志
NOD32版本 2710 (20071207) NT
命令行: C:\Documents and Settings\user\桌面\样本.rar

日期: 8.12.2007  时间:09:31:44
已开启反隐藏功能.
已扫描的磁盘,文件夹及文件:C:\Documents and Settings\user\桌面\样本.rar
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\608769MM.DLL - Win32/PSW.Legendmir.NFF 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\608769WL.DLL - Win32/PSW.Legendmir.NFN 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a1.exe - Win32/Delf.NIP 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a10.exe - Win32/PSW.OnLineGames.YA 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a11.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a12.exe - Win32/PSW.OnLineGames.NFL 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a13.exe - Win32/PSW.WOW.WU 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a14.exe - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a15.exe - Win32/PSW.OnLineGames.NJD 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a16.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a17.exe - 可能是 Win32/PSW.OnLineGames.NFL 木马 的一个变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a18.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a19.exe - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a2.exe - Win32/PSW.OnLineGames.NFL 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a20.exe - Win32/Delf.CGB 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a21.exe - Win32/PSW.WOW.WU 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a22.exe - 可能是 Win32/PSW.OnLineGames.GJV 木马 的一个变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a23.exe - Win32/PSW.OnLineGames.JOJ 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a3.exe - Win32/PSW.Agent.NEC 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a4.exe - Win32/TrojanDownloader.SMW.A 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a5.exe - Win32/PSW.OnLineGames.NFL 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a6.exe - 可能是 Win32/AutoRun.Q 蠕虫 的一个变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a7.exe - Win32/Agent.NLW 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a8.exe - Win32/PSW.OnLineGames.GJV 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\a9.exe - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\avwghmn.dll - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\avwlgmn.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\cmdbcs.dll - 可能是 Win32/PSW.OnLineGames.NFL 木马 的一个变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\DbgHlp32.dll - Win32/PSW.OnLineGames.HCV 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\djouejouafkp.dll - Win32/PSW.OnLineGames.GJV 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\gdqqhxi32.dll - Win32/PSW.OnLineGames.NJD 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\gdzxi32.dll - Win32/PSW.OnLineGames.JOJ 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\GenProtect.dll - Win32/PSW.OnLineGames.HCV 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\kawdfzy.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\kvdxjma.dll - Win32/PSW.OnLineGames.FDY 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\LYLOADER.EXE - Win32/PSW.Agent.NEC 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\LYMANGR.DLL - Win32/PSW.OnLineGames.DTR 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\MSDEG32.DLL - Win32/PSW.OnLineGames.DVV 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\MsPrint32D.dll - Win32/PSW.OnLineGames.HCV 木马的变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\pcihdd.sys - Win32/TrojanDownloader.Agent.BLM 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\puagntydjo.dll - Win32/PSW.OnLineGames.GJV 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\ratbmpi.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\scvhost.exe - Win32/Delf.AWY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\sidjfzy.dll - Win32/PSW.OnLineGames.FDY 木马
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\upxdnd.dll - 可能是 Win32/PSW.OnLineGames.HCV 木马 的一个变种
C:\Documents and Settings\user\桌面\样本.rar >>RAR >>样本\Wn_Sys8x.Sys - 可能是 Win32/AutoRun.Q 蠕虫 的一个变种
已扫描的文件数目:46
已发现的病毒数目:46
完成时间: 09:31:47 总扫描时间:3 秒 (00:00:03)
回复

举报

秋叶濛濛
发表于 2007-12-8 09:32:36 | 显示全部楼层
红伞也全灭哦
The scan has been done completely.

      0 Scanning directories
     47 Files were scanned
     40 viruses and/or unwanted programs were found
      6 Files were classified as suspicious:
      1 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      7 Files not concerned
      1 Archives were scanned
      0 Warnings
      0 Notes
回复

举报

wangjay1980
发表于 2007-12-8 09:41:52 | 显示全部楼层
46
detected: virus         File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/Ñù±¾\608769MM.DLL
detected: virus         File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/Ñù±¾\608769WL.DLL
detected: virus ¡d?        X?8¢dÄé        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/Ñù±¾\a10.exe
detected: virus         File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/Ñù±¾\a11.exe//
detected: virus         File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/Ñù±¾\a12.exe
detected: virus êÔ’|ÿ
回复

举报

啊弥陀佛
发表于 2007-12-8 10:04:59 | 显示全部楼层
木马名称:Trojan-PSW.Win32.OnLineGames.zgs
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\608769MM.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?


木马名称:Trojan-PSW.Win32.OLGames.bz
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A11.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.Lmir.cnv
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A13.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.Lmir.cod
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A15.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OLGames.dy
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A16.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.zlw
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A18.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan.Win32.Delf.cii
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A2.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Backdoor.Win32.Delf.caa
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A20.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.zqo
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A21.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.zcp
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A3.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-Downloader.Win32.Delf.huy
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A4.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.WOW.bnl
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A8.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.zoo
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\GDQQHXI32.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.yud
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\LYLOADER.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.zcs
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\LYMANGR.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.OnLineGames.zoy
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\MSDEG32.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-Downloader.Win32.Agent.jzd
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\PCIHDD.SYS
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Backdoor.Win32.ARP.c
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\SCVHOST.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A6.EXE
并生成以下文件:
1) E:\AUTORUN.EXE
2) E:\AUTORUN.INF
3) E:\AUTORUN.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A7.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\DRIVERS\PCIHDD.SYS
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A9.EXE
1) C:\DFD976718.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A10.EXE
木马程序生成以下文件:
1) C:\WINDOWS\CMDBCS.EXE
2) C:\WINDOWS\SYSTEM32\CMDBCS.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A12.EXE
木马程序生成以下文件:
1) C:\WINDOWS\DBGHLP32.EXE
2) C:\WINDOWS\SYSTEM32\DBGHLP32.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A14.EXE
1) C:\DFD1051156.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A17.EXE
木马程序生成以下文件:
1) C:\WINDOWS\MSPRINT32D.EXE
2) C:\WINDOWS\SYSTEM32\MSPRINT32D.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A19.EXE
1) C:\DFD1086484.BAT
是可疑程序!
试图删除文件!
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\A22.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\YFNUFMSYHOVB.DLL
2) C:\WINDOWS\SYSTEM32\AMPVSTQJ32.DLL
是否删除木马程序及其衍生物?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\CMDBCS.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\DBGHLP32.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\UPXDND.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:未知间谍软件
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\样本\样本\MSPRINT32D.DLL
是木马程序!
已成功阻止其运行,是否要删除此文件?

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

挪威的冬天
发表于 2007-12-8 10:09:14 | 显示全部楼层


信息        2007-12-08  10:08:15        您此次查毒清除了41个病毒                       
信息        2007-12-08  10:08:15        您此次查毒共查出41个病毒以及危险代码                       
信息        2007-12-08  10:08:15        您此次查毒共查了内存模块0个,磁盘引导扇区0个,文件59个                       
信息        2007-12-08  10:08:15        金山毒霸主程序查毒过程结束,查毒方式:命令行查毒                       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\upxdnd.dll        Win32.Troj.OnlineGamesT.ip.28160        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\sidjfzy.dll        Win32.Troj.OnLimeGamesT.zf.21080        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\scvhost.exe        Win32.Troj.Delf.11081        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\ratbmpi.dll        Win32.Troj.OnlineGamesT.ty.24902        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\puagntydjo.dll        Win32.PSWTroj.WowT.my.17831        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\pcihdd.sys        Win32.Troj.Agent.dz.6768        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\MSDEG32.DLL        Win32.Troj.OnlineGamesT.ty.135168        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\LYMANGR.DLL        Win32.Troj.OnlineGames.jx.61440        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\kvdxjma.dll        Win32.Troj.OnLimeGamesT.zf.21080        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\kawdfzy.dll        Win32.Troj.OnLimeGamesT.zf.21080        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\GenProtect.dll        Win32.Troj.OnlineGames.jb.134144        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\gdzxi32.dll        Win32.Troj.OnlineGamesT.zy.90112        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\gdqqhxi32.dll        Win32.Troj.OnlineGamesT.ty.90112        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\djouejouafkp.dll        Win32.PSWTroj.WowT.my.17831        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\DbgHlp32.dll        Win32.Troj.OnlineGamesT.ip.28160        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\cmdbcs.dll        Win32.Troj.OnlineGamesT.ip.28160        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\avwlgmn.dll        Win32.Troj.OnLimeGamesT.zf.21080        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\avwghmn.dll        Win32.Troj.OnLimeGamesT.zf.21080        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a9.exe        Win32.Troj.AgentT.fm.14452        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a8.exe        Win32.Troj.WoWT.zy.110592        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a7.exe        Win32.TrojDownloader.Agent.61440        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a6.exe        Worm.PaBug.eb.110710        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a5.exe        Win32.Troj.OnLineGamesT.gr.2637        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a4.exe        Win32.Hack.Huigezi.mk.14848        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a3.exe        Win32.PSWTroj.GameOnline.57344        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a23.exe        Trash.OnlineGamesT.aq.2615        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a21.exe        Win32.PSWTroj.OnLineGames.49664        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a20.exe        Win32.Packed.MaskPE        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a19.exe        Win32.Troj.AgentT.fm.14452        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a18.exe        Win32.Troj.AgentT.fm.14452        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a17.exe        Win32.Troj.OnLineGamesT.gr.2637        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a16.exe        Win32.Troj.AgentT.fm.14452        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a15.exe        Win32.Troj.OnLineGamesT.or.258048        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a14.exe        Win32.Troj.OnLineGamesT.gp.15597        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a13.exe        Win32.Troj.OnLineGames.xt.163840        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a12.exe        Win32.Troj.OnLineGamesT.gr.2637        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a11.exe        Win32.Troj.AgentT.fm.14452        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a10.exe        Win32.Troj.OnLineGamesT.gr.2637        清除成功       
病毒        2007-12-08  10:08:15        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\a1.exe        Win32.Packed.MaskPE        清除成功       
病毒        2007-12-08  10:08:14        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\608769WL.DLL        Win32.Troj.OnlineGamesT.xy.44337        清除成功       
病毒        2007-12-08  10:08:14        C:\Documents and Settings\Norways Winter\桌面\样本.rar\样本\608769MM.DLL        Win32.Troj.OnlineGames.ie.47709        清除成功
回复

举报

nosferatu
头像被屏蔽
发表于 2007-12-8 10:30:57 | 显示全部楼层
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at:        10:31:10 2007-12-8

+ Scan result:       



C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a20.exe -> Backdoor.Delf.cgb : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a22.exe -> Downloader.Agent.bhc : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a8.exe -> Downloader.Agent.bhc : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a7.exe -> Downloader.Agent.blm : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\pcihdd.sys -> Downloader.Agent.blm : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\scvhost.exe -> Logger.Pcap.a : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a19.exe -> Trojan.Agent : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a13.exe -> Trojan.Lmir.boy : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a11.exe -> Trojan.OnLineGames.dwe : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a9.exe -> Trojan.OnLineGames.dwe : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a14.exe -> Trojan.OnLineGames.ezw : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a16.exe -> Trojan.OnLineGames.gih : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\a21.exe -> Trojan.OnLineGames.hfr : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\608769WL.DLL -> Trojan.OnLineGames.iay : Cleaned.
C:\Documents and Settings\Administrator\桌面\样本.rar/Ñù±¾\608769MM.DLL -> Trojan.OnLineGames.ieg : Cleaned.


::Report end
回复

举报

kkgh
发表于 2007-12-8 10:48:53 | 显示全部楼层
瑞星病毒查杀结果报告

清除病毒种类列表:
病毒: Trojan.PSW.Win32.LMir.yzb
病毒: Trojan.PSW.Win32.Woool.c
病毒: Trojan.Win32.Mnless.zyf  
病毒: Trojan.PSW.Win32.GamesOnline.d
病毒: Trojan.PSW.Win32.GameOnline.auv
病毒: Trojan.PSW.Win32.GameOnline.zzs
病毒: Trojan.PSW.Win32.LMir.yzb
病毒: Trojan.PSW.Win32.QQHX.tsg
病毒: Trojan.PSW.Win32.TLOnline.jjy
病毒: Trojan.PSW.Win32.TLOnline.jjw
病毒: Trojan.PSW.Win32.GameOL.a
病毒: Trojan.PSW.Win32.GameOnline.zxs
病毒: Trojan.Win32.Mnless.zhs  
病毒: Trojan.PSW.Win32.Woool.c
病毒: Trojan.PSW.Win32.WLOnline.jjv
病毒: Trojan.PSW.Win32.GameOnline.asm
病毒: Trojan.DL.Delf.xxb      
病毒: Trojan.DL.Win32.Agent.yrh
病毒: Trojan.PSW.Win32.GameOnline.zxr
病毒: Trojan.PSW.Win32.SunOnline.ie
病毒: Trojan.PSW.Win32.GamesOnline.d
病毒: Trojan.PSW.Win32.GameOnline.zzs
病毒: Trojan.PSW.Win32.QQHX.tsg
病毒: Trojan.PSW.Win32.ZhuXian.ed
病毒: Trojan.PSW.Win32.GameOnline.zxs
病毒: Trojan.PSW.Win32.AskTao.fd
病毒: Trojan.PSW.Win32.GameOnline.aro
病毒: Trojan.PSW.Win32.GameOnline.aro
病毒: Trojan.PSW.Win32.GameOnline.aro
病毒: RootKit.Win32.Paice.a   
病毒: Trojan.PSW.Win32.GameOnline.zxr
病毒: Trojan.PSW.Win32.TLOnline.jjw
病毒: Backdoor.Win32.Agent.yff
病毒: Trojan.PSW.Win32.GameOnline.zzl
病毒: Worm.Win32.PaBug.ew      

用户来源:互联网

软件版本:20.21.42
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-4-28 19:53 , Processed in 0.138996 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表