下载者下的53个

显示全部楼层 · 发表于 2007-12-8 18:06:15

C:\ABC\样本.rar:\MSDEG32.DLL - 特征码 'Generic.PWS.Games.3' 被发现
C:\ABC\样本.rar:\pcihdd.sys - 特征码 'Trojan-Downloader.Win32.Agent.blm' 被发现
C:\ABC\样本.rar:\1.exe - 特征码 'Virus.Win32.OnLineGames.SR' 被发现
C:\ABC\样本.rar:\2.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\3.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\4.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\5.exe - 特征码 'Packed.Win32.Klone.af' 被发现
C:\ABC\样本.rar:\6.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\7.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\8.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\9.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\10.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\11.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\13.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\14.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\15.exe - 可疑代码段被发现 (Level: 45)
C:\ABC\样本.rar:\16.exe - 特征码 'Packed.Win32.Klone.af' 被发现
C:\ABC\样本.rar:\17.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\18.exe - 特征码 'Packed.Win32.Klone.af' 被发现
C:\ABC\样本.rar:\19.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\20.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\21.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\22.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\23.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\24.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\27.exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\608769L.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.hiy' 被发现
C:\ABC\样本.rar:\608769M.exe - 特征码 'Trojan-PWS.Win32.WOW.vd' 被发现
C:\ABC\样本.rar:\608769W.exe - 特征码 'Trojan-PWS.Win32.WOW.vd' 被发现
C:\ABC\样本.rar:\LYLOADER.EXE - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\nlooks.exe - 特征码 'Trojan-Downloader.Win32.Agent.blm' 被发现
C:\ABC\样本.rar:\sj.exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\样本.rar:\608769MM.DLL - 特征码 'Trojan-PWS.Win32.OnLineGames.jcr' 被发现
C:\ABC\样本.rar:\608769WL.DLL - 特征码 'Trojan-PWS.Win32.OnLineGames.hiy' 被发现
C:\ABC\样本.rar:\608769WO.DLL - 特征码 'Trojan-PWS.Win32.OnLineGames.hlu' 被发现
C:\ABC\样本.rar:\gddji32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gddthxi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdfyi32.dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\gdgei32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdgji32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdhnxai32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdjzi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdqji32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdqqhxi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdtli32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdwdi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdwli32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdwmi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdzhtui32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdzxi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\gdzyhxi32.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\GenProtect.dll - 特征码 'Trojan-PWS.Win32.OnLineGames.es' 被发现
C:\ABC\样本.rar:\LYMANGR.DLL - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar

显示全部楼层 · 发表于 2007-12-8 18:07:40

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\MSDEG32.DLL]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:6011  MD5:c9972e06dfe5e7a319679ffb91f30591

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\2.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:18296  MD5:d8394d08eb7d33a67d4845a227852815

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\3.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15772  MD5:ae0dee40169023e7ccf6590897ae1dca

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\4.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15752  MD5:be26e77c160266f0e951d6e06d2b3c7e

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\5.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.BDX.A
文件信息:  大小:19689  MD5:43333b8ac0b369b6c865b1866678cb35

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\6.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:32156  MD5:c62be2a47c69c3949df4476d9a395a2a

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\7.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:40072  MD5:74f98fecd901c14d18d495efd582137a

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\8.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:33266  MD5:18f87a7f53e85bfa8e183235f5c0db76

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\9.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:16472  MD5:8722de404abd48df5731f6ae9381e0d6

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\10.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:16120  MD5:fb736378dd98d27d07dc5cd3c72cee3c

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\11.exe]
                  …………发现Spy！报告:[1] Win32.Unknow[5] 下载者
文件信息:  大小:15956  MD5:0e4f3124cef33182bfd774f2f381b7ec

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\13.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15544  MD5:8e3642ee0d83619ac6f1f1b0ec8af6ae

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\14.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:16700  MD5:eb827ebbf5a863a857d5468f0cf97b23

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\15.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15160  MD5:9a64114e13b5d080a8478a4909e73886

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\16.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.BDX.A
文件信息:  大小:19417  MD5:9d46805b6f27f53d2adc4bb059feea58

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\17.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15692  MD5:1ece5037964b8d21a302e073a476045f

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\18.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.BDX.A
文件信息:  大小:20638  MD5:0faad265dc219b2d1fc57cf50a775a0b

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\19.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15300  MD5:c723566bde923c4144343d4e379965a4

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\20.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:14700  MD5:d20440d23f0c7b6503bc3ea5ce45685c

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\21.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15584  MD5:5fc3e186630fb4caba504817f3d9d7c9

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\22.exe]
                  …………发现Spy！报告:[1] Win32.Unknow[5] 下载者
文件信息:  大小:16328  MD5:d58e6e8fbd755c89a5bdc1141ef2e799

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\23.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15668  MD5:960508b3e450c4a2ab90b3a626263d2a

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\24.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15296  MD5:676ae3f1947dca89c5a998ccf482dc1b

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\27.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:23852  MD5:8211694c6bfed513d553b098de5b261b

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\608769L.exe]
                  …………发现Spy！报告: [4]
文件信息:  大小:89905  MD5:209092027d99d5c3eec9ad6076d582ab

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\608769M.exe]
                  …………发现Spy！报告: [4]
文件信息:  大小:69937  MD5:913346ccb485fbadd9b4b9506d0ee1e8

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\608769W.exe]
                  …………发现Spy！报告: [4]
文件信息:  大小:71473  MD5:c2bcb416f99d860a733fbcd9e84477cd

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\LYLOADER.EXE]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:12016  MD5:00320230bf11f3f1bb45e95897b3a010

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\nlooks.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:49152  MD5:85fc5f3ed054e9ca8826aa79265ad385

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\sj.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:15332  MD5:649d99a74a07b5a18eab1c492032d427

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\608769MM.DLL]
                  …………发现Spy！报告: [4]
文件信息:  大小:47409  MD5:f454ae92ed4a82a8053d20875b0e416c

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\608769WO.DLL]
                  …………发现Spy！报告: [4]
文件信息:  大小:48945  MD5:30a5245930ef7588d4e8d0f256cf962a

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gddji32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12864  MD5:458a893fc4d9534226ed3f5a3d4679fa

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gddthxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11898  MD5:bc18848bc7bc56795e8748dd14eb6f92

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdfyi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12474  MD5:b710d555d893b70d904b42a3248f42af

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdgei32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:11334  MD5:fc8574588c239253f8d3f63fcafb966e

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdgji32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:13027  MD5:e64d5a254d637e30936727c5da29eed3

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdhnxai32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12231  MD5:57558e5c1a57a9e8163790c70810ba07

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdjzi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12601  MD5:3675220a1948f4635f03b43141f90bd7

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdqji32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:13382  MD5:690fbe4064daef6136184d40f6b657a6

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdqqhxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12470  MD5:f754fe3f2084188d16e1fefa3b067205

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdtli32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12024  MD5:0322aaf9a3af6a6a904278f1e86ead99

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdwdi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12666  MD5:58c2249c64783183118bdc6fdaa532d3

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdwli32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:13607  MD5:1af429b1d7b2b3329671de63897620c4

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdwmi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12245  MD5:cfad88eab36828efa5f03d70c716075a

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdzhtui32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12670  MD5:bb2372400a221a1323f7f250be330381

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdzxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:13213  MD5:f0976101e78acc08ba38f42c4d2090cb

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\gdzyhxi32.dll]
                  …………发现Spy！报告: [4] [1] Win32.F/S.ByDwing
文件信息:  大小:12508  MD5:a8cfeb1f6fb85e0eca994bd70601fc28

[C:\Documents and Settings\Administrator\桌面\Virus\样4444444本\LYMANGR.DLL]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:3560  MD5:3df8f45f823217a1f9e9fbaefd70d99a

文件数:53 病毒数:49  比重:0.9245283018868
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

[ 本帖最后由 FBAV 于 2007-12-8 18:16 编辑 ]

显示全部楼层 · 发表于 2007-12-8 18:08:36

全杀~

Starting the file scan:

Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
  --> MSDEG32.DLL
   [DETECTION] Is the Trojan horse TR/PSW.Online.gyo.2
  --> pcihdd.sys
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> 1.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> 2.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 3.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.26
  --> 4.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 5.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 6.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 7.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 8.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 9.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 10.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 11.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 13.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 14.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 15.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 16.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 17.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> 18.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 19.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 20.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jti
  --> 21.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> 22.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> 23.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 24.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbo.6
  --> 27.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> 608769L.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 608769M.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769W.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> LYLOADER.EXE
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> nlooks.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> sj.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.34
  --> 608769MM.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769WL.DLL
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 608769WO.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> gddji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gddthxi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbo.6
  --> gdfyi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> gdgei32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jtj
  --> gdgji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdhnxai32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdjzi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> gdqji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdqqhxi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdtli32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdwdi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdwli32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdwmi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdzhtui32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.15
  --> gdzxi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> gdzyhxi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> GenProtect.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbj.1
  --> LYMANGR.DLL
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
   [INFO]    The file was deleted!

End of the scan: 2007年12月8日  18:08
Used time: 00:40 min

The scan has been done completely.

   0 Scanning directories
   54 Files were scanned
   53 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   1 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-12-8 18:09:46

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\样本.rar'
C:\Documents and Settings\Administrator\桌面\样本.rar
  [0] Archive type: RAR
  --> MSDEG32.DLL
   [DETECTION] Is the Trojan horse TR/PSW.Online.gyo.2
  --> pcihdd.sys
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> 1.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> 2.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 3.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.26
  --> 4.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 5.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 6.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 7.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 8.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 9.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 10.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 11.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 13.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 14.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 15.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 16.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 17.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> 18.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 19.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 20.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jti
  --> 21.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> 22.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jqp
  --> 23.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 24.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbo.6
  --> 27.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> 608769L.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 608769M.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769W.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> LYLOADER.EXE
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> nlooks.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Agent.blm.3
  --> sj.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.34
  --> 608769MM.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 608769WL.DLL
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> 608769WO.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> gddji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gddthxi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbo.6
  --> gdfyi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> gdgei32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jtj
  --> gdgji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdhnxai32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdjzi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> gdqji32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdqqhxi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdtli32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdwdi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdwli32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdwmi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdzhtui32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.joj.15
  --> gdzxi32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLiGames.jrs
  --> gdzyhxi32.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> GenProtect.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jbj.1
  --> LYMANGR.DLL
   [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
   [WARNING] The file was ignored!

显示全部楼层 · 发表于 2007-12-8 18:39:33

C:\Users\Wesley\Downloads\样本.rar » RAR » MSDEG32.DLL - a variant of Win32/PSW.OnLineGames.DVV trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » pcihdd.sys - Win32/TrojanDownloader.Agent.BLM trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 1.exe - Win32/PSW.Agent.NEC trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 2.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 3.exe - Win32/PSW.OnLineGames.NJQ trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 5.exe - Win32/PSW.OnLineGames.NFL trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 6.exe - Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 7.exe - a variant of Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 8.exe - Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 9.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 10.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 11.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 14.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 15.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 16.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 18.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 21.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 22.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 27.exe - a variant of Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 608769L.exe - Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 608769M.exe - Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 608769W.exe - Win32/PSW.WOW.WU trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » LYLOADER.EXE - a variant of Win32/PSW.Agent.NEC trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » nlooks.exe - Win32/Agent.NLW trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » sj.exe - Win32/PSW.OnLineGames.JOJ trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 608769MM.DLL - Win32/PSW.Legendmir.NFF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 608769WL.DLL - Win32/PSW.Legendmir.NFN trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » 608769WO.DLL - Win32/PSW.Legendmir.NFF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gddji32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdfyi32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdgji32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdqji32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdtli32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdwli32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdzhtui32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » gdzxi32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » GenProtect.dll - Win32/PSW.OnLineGames.NFL trojan
C:\Users\Wesley\Downloads\样本.rar » RAR » LYMANGR.DLL - Win32/PSW.OnLineGames.DTR trojan

显示全部楼层 · 发表于 2007-12-8 19:38:22

deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixk File: I:\hanxiaojun\Ñù±¾(12).rar/MSDEG32.DLL//UPack
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm File: I:\hanxiaojun\Ñù±¾(12).rar/pcihdd.sys
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixl File: I:\hanxiaojun\Ñù±¾(12).rar/1.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: I:\hanxiaojun\Ñù±¾(12).rar/2.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.joj File: I:\hanxiaojun\Ñù±¾(12).rar/3.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/4.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ieq File: I:\hanxiaojun\Ñù±¾(12).rar/5.exe//NSPack//PE_Patch
deleted: Trojan program Trojan-Downloader.Win32.Delf.axx File: I:\hanxiaojun\Ñù±¾(12).rar/6.exe//UPack
deleted: Trojan program Trojan-Downloader.Win32.Delf.axx File: I:\hanxiaojun\Ñù±¾(12).rar/7.exe//UPack
deleted: Trojan program Trojan-Downloader.Win32.Delf.axx File: I:\hanxiaojun\Ñù±¾(12).rar/8.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/9.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/10.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/11.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jyt File: I:\hanxiaojun\Ñù±¾(12).rar/13.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/14.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/15.exe//PE_Patch//UPack
deleted: virus Heur.Trojan.Generic File: I:\hanxiaojun\Ñù±¾(12).rar/16.exe//NSPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jqp File: I:\hanxiaojun\Ñù±¾(12).rar/17.exe//PE_Patch//UPack
deleted: virus Heur.Trojan.Generic File: I:\hanxiaojun\Ñù±¾(12).rar/18.exe//NSPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jyt File: I:\hanxiaojun\Ñù±¾(12).rar/19.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jti File: I:\hanxiaojun\Ñù±¾(12).rar/20.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jqp File: I:\hanxiaojun\Ñù±¾(12).rar/21.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jqp File: I:\hanxiaojun\Ñù±¾(12).rar/22.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/23.exe//PE_Patch//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jdn File: I:\hanxiaojun\Ñù±¾(12).rar/24.exe//PE_Patch//UPack//#//UPack
deleted: Trojan program Trojan-Downloader.Win32.Delf.axx File: I:\hanxiaojun\Ñù±¾(12).rar/27.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.hfr File: I:\hanxiaojun\Ñù±¾(12).rar/608769L.exe
deleted: Trojan program Trojan-PSW.Win32.Lmir.boy File: I:\hanxiaojun\Ñù±¾(12).rar/608769M.exe
deleted: Trojan program Trojan-PSW.Win32.Lmir.boy File: I:\hanxiaojun\Ñù±¾(12).rar/608769W.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixl File: I:\hanxiaojun\Ñù±¾(12).rar/LYLOADER.EXE//PE_Patch//UPack
deleted: Trojan program Trojan-Downloader.Win32.Agent.blm File: I:\hanxiaojun\Ñù±¾(12).rar/nlooks.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.joj File: I:\hanxiaojun\Ñù±¾(12).rar/sj.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jcr File: I:\hanxiaojun\Ñù±¾(12).rar/608769MM.DLL
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.iay File: I:\hanxiaojun\Ñù±¾(12).rar/608769WL.DLL
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/gddji32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jdn File: I:\hanxiaojun\Ñù±¾(12).rar/gddthxi32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jrr File: I:\hanxiaojun\Ñù±¾(12).rar/gdfyi32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jtj File: I:\hanxiaojun\Ñù±¾(12).rar/gdgei32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/gdgji32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/gdhnxai32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jrr File: I:\hanxiaojun\Ñù±¾(12).rar/gdjzi32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/gdqji32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jzm File: I:\hanxiaojun\Ñù±¾(12).rar/gdqqhxi32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jzq File: I:\hanxiaojun\Ñù±¾(12).rar/gdtli32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/gdwdi32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jzt File: I:\hanxiaojun\Ñù±¾(12).rar/gdwli32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.joj File: I:\hanxiaojun\Ñù±¾(12).rar/gdwmi32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.joj File: I:\hanxiaojun\Ñù±¾(12).rar/gdzhtui32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jrn File: I:\hanxiaojun\Ñù±¾(12).rar/gdzxi32.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jza File: I:\hanxiaojun\Ñù±¾(12).rar/gdzyhxi32.dll//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.jbj File: I:\hanxiaojun\Ñù±¾(12).rar/GenProtect.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ixj File: I:\hanxiaojun\Ñù±¾(12).rar/LYMANGR.DLL//UPack

显示全部楼层 · 发表于 2007-12-8 19:41:13

2007-12-8 19:39:10 No Action Taken I:\hanxiaojun\样本(12).rar\MSDEG32.DLL\MSDEG32.DLL PWS-LegMir.dll(Trojan)
2007-12-8 19:39:10 No Action Taken I:\hanxiaojun\样本(12).rar\PCIHDD.SYS Generic Downloader.ab(Trojan)
2007-12-8 19:39:10 No Action Taken I:\hanxiaojun\样本(12).rar\1.EXE\00000c80.EXE PWS-LegMir(Trojan)
2007-12-8 19:39:12 No Action Taken I:\hanxiaojun\样本(12).rar\2.EXE New Malware.aj(Trojan)
2007-12-8 19:39:13 No Action Taken I:\hanxiaojun\样本(12).rar\3.EXE New Malware.aj(Trojan)
2007-12-8 19:39:14 No Action Taken I:\hanxiaojun\样本(12).rar\4.EXE New Malware.aj(Trojan)
2007-12-8 19:39:17 No Action Taken I:\hanxiaojun\样本(12).rar\5.EXE\5.EXE PWS-LegMir.gen.h(Trojan)
2007-12-8 19:39:17 No Action Taken I:\hanxiaojun\样本(12).rar\6.EXE New Malware.n(Trojan)
2007-12-8 19:39:18 No Action Taken I:\hanxiaojun\样本(12).rar\7.EXE New Malware.n(Trojan)
2007-12-8 19:39:18 No Action Taken I:\hanxiaojun\样本(12).rar\8.EXE New Malware.n(Trojan)
2007-12-8 19:39:19 No Action Taken I:\hanxiaojun\样本(12).rar\9.EXE New Malware.aj(Trojan)
2007-12-8 19:39:20 No Action Taken I:\hanxiaojun\样本(12).rar\10.EXE New Malware.aj(Trojan)
2007-12-8 19:39:21 No Action Taken I:\hanxiaojun\样本(12).rar\11.EXE New Malware.aj(Trojan)
2007-12-8 19:39:22 No Action Taken I:\hanxiaojun\样本(12).rar\13.EXE New Malware.aj(Trojan)
2007-12-8 19:39:23 No Action Taken I:\hanxiaojun\样本(12).rar\14.EXE New Malware.aj(Trojan)
2007-12-8 19:39:24 No Action Taken I:\hanxiaojun\样本(12).rar\15.EXE New Malware.aj(Trojan)
2007-12-8 19:39:28 No Action Taken I:\hanxiaojun\样本(12).rar\17.EXE New Malware.aj(Trojan)
2007-12-8 19:39:28 No Action Taken I:\hanxiaojun\样本(12).rar\18.EXE New Malware.aq(Trojan)
2007-12-8 19:39:29 No Action Taken I:\hanxiaojun\样本(12).rar\19.EXE New Malware.aj(Trojan)
2007-12-8 19:39:30 No Action Taken I:\hanxiaojun\样本(12).rar\20.EXE New Malware.aj(Trojan)
2007-12-8 19:39:31 No Action Taken I:\hanxiaojun\样本(12).rar\21.EXE New Malware.aj(Trojan)
2007-12-8 19:39:32 No Action Taken I:\hanxiaojun\样本(12).rar\22.EXE New Malware.aj(Trojan)
2007-12-8 19:39:33 No Action Taken I:\hanxiaojun\样本(12).rar\23.EXE New Malware.aj(Trojan)
2007-12-8 19:39:34 No Action Taken I:\hanxiaojun\样本(12).rar\24.EXE New Malware.aj(Trojan)
2007-12-8 19:39:34 No Action Taken I:\hanxiaojun\样本(12).rar\27.EXE New Malware.n(Trojan)
2007-12-8 19:39:34 No Action Taken I:\hanxiaojun\样本(12).rar\608769L.EXE\0000a24c.EXE PWS-LegMir.dll(Trojan)
2007-12-8 19:39:35 No Action Taken I:\hanxiaojun\样本(12).rar\LYLOADER.EXE PWS-LegMir(Trojan)
2007-12-8 19:39:35 No Action Taken I:\hanxiaojun\样本(12).rar\NLOOKS.EXE\00004ce0.EXE Generic Downloader.ab(Trojan)
2007-12-8 19:39:36 No Action Taken I:\hanxiaojun\样本(12).rar\SJ.EXE New Malware.aj(Trojan)
2007-12-8 19:39:36 No Action Taken I:\hanxiaojun\样本(12).rar\608769WL.DLL PWS-LegMir.dll(Trojan)
2007-12-8 19:39:36 No Action Taken I:\hanxiaojun\样本(12).rar\GDDJI32.DLL\GDDJI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:36 No Action Taken I:\hanxiaojun\样本(12).rar\GDFYI32.DLL\GDFYI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:37 No Action Taken I:\hanxiaojun\样本(12).rar\GDGEI32.DLL\GDGEI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:37 No Action Taken I:\hanxiaojun\样本(12).rar\GDQJI32.DLL\GDQJI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:37 No Action Taken I:\hanxiaojun\样本(12).rar\GDQQHXI32.DLL\GDQQHXI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:37 No Action Taken I:\hanxiaojun\样本(12).rar\GDTLI32.DLL\GDTLI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:37 No Action Taken I:\hanxiaojun\样本(12).rar\GDWDI32.DLL\GDWDI32.DLL PWS-OnlineGames.r(Trojan)
2007-12-8 19:39:38 No Action Taken I:\hanxiaojun\样本(12).rar\LYMANGR.DLL\LYMANGR.DLL Generic PWS.j(Trojan)

显示全部楼层 · 发表于 2007-12-8 20:56:10

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GameOnline.aro
病毒： RootKit.Win32.Paice.a
病毒： Trojan.PSW.Win32.GameOnline.asm
病毒： Trojan.PSW.Win32.GameOnline.asx
病毒： Trojan.PSW.Win32.WLOnline.jjv
病毒： Trojan.PSW.Win32.GameOnline.ajz
病毒： Trojan.PSW.Win32.GameOnline.ajs
病毒： Dropper.Win32.Agent.ysq
病毒： Trojan.PSW.Win32.GameOnline.awq
病毒： Trojan.PSW.Win32.QQSG.ay
病毒： Trojan.PSW.Win32.GameOnline.zzs
病毒： Trojan.PSW.Win32.GameOL.ai
病毒： Trojan.PSW.Win32.GameOnline.ate
病毒： Trojan.PSW.Win32.Woool.c
病毒： Trojan.PSW.Win32.LMir.yys
病毒： Trojan.PSW.Win32.GameOnline.aro
病毒： Trojan.DL.Win32.Agent.yrh
病毒： Trojan.PSW.Win32.LMir.yzc
病毒： Trojan.PSW.Win32.Woool.c
病毒： Trojan.PSW.Win32.WoWar.agm
病毒： Trojan.PSW.Win32.DTOnline.a
病毒： Trojan.PSW.Win32.GameOL.ai
病毒： Trojan.PSW.Win32.GameOnline.asx
病毒： Trojan.PSW.Win32.GameOnline.aro

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.21.52

显示全部楼层 · 发表于 2007-12-8 20:58:49

。。。。

信息 2007-12-08  20:58:41 您此次查毒共查出48个病毒以及危险代码
信息 2007-12-08  20:58:41 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件87个
信息 2007-12-08  20:58:41 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\LYMANGR.DLL Win32.Troj.OnlineGames.jx.61440 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\GenProtect.dll Win32.Troj.OnlineGames.jb.134144 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdzyhxi32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdzxi32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdzhtui32.dll Win32.Troj.OnlineGamesT.zy.90112 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdwmi32.dll Win32.Troj.OnlineGames.yf.73728 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdwli32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdwdi32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdtli32.dll Win32.Troj.OnlineGames.yf.73728 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdqqhxi32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdqji32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdjzi32.dll Win32.Troj.OnlineGames.yf.73728 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdhnxai32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdgji32.dll Win32.Troj.OnlineGamesT.ty.102400 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdgei32.dll Win32.Troj.OnLimeGamesT.gs.73779 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gdfyi32.dll Win32.Troj.OnlineGames.yf.73728 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gddthxi32.dll Win32.PSWTroj.OnLineGames.102522 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\gddji32.dll Win32.Troj.OnlineGames.yf.73728 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\608769WO.DLL Win32.Troj.OnlineGamesT.xy.49958 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\608769WL.DLL Win32.Troj.OnlineGamesT.xy.44337 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\608769MM.DLL Win32.PSWTroj.OnLineGames.47714 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\sj.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\nlooks.exe Win32.TrojDownloader.Agent.61440 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\608769W.exe Win32.PSWTroj.Lmir.106801 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\608769M.exe Win32.Troj.OnlineGames.ie.22228 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\608769L.exe Win32.Troj.OnlineGamesT.zy.123185 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\24.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\23.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\22.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\21.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\20.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\19.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\18.exe Win32.Troj.OnlineGames.db.57344 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\17.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\15.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\14.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\13.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\11.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\10.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\9.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\8.exe Win32.Troj.OnlineGamesT.id.6924 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\6.exe Win32.Troj.OnlineGamesT.id.6924 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\4.exe Win32.Troj.OnLineGamesT.or.258048 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\3.exe Trash.OnlineGamesT.aq.2615 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\2.exe Win32.Troj.OnLineGamesT.gr.2637 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\1.exe Win32.PSWTroj.GameOnline.57344 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\pcihdd.sys Win32.Troj.Agent.dz.6768 跳过，未处理
病毒 2007-12-08  20:58:41 C:\Documents and Settings\Norways Winter\桌面\样本.rar\MSDEG32.DLL Win32.Troj.OnlineGamesT.ty.135168 跳过，未处理

显示全部楼层 · 发表于 2007-12-8 21:08:28

52
detected: virus File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾3.rar/MSDEG32.DLL//
detected: virus êÔ’|ÿ

[病毒样本] 下载者下的53个

本帖子中包含更多资源

ESET Smart Security

97/30