某贴挖的下载者及产物共53个

promised

wangjay1980

detected: virus         File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/kaqhkzy.dll
detected: virus






















































































































































































        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/okmhaaz.exe//
detected: virus         File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/okmhazy.dll
detected: virus


































































































































































































êÔ’|ÿ

Graybird

Starting the file scan:

Begin scan in 'E:\bd.rar'
E:\bd.rar
  [0] Archive type: RAR
  --> bd\down.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> bd\svcos.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> bd\wxptdi.sys
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.45056
      [WARNING]   The file was ignored!
Begin scan in 'E:\样本.rar'
E:\样本.rar
  [0] Archive type: RAR
  --> kaqhkzy.dll
      [DETECTION] Is the Trojan horse TR/WuDisable.D
  --> okmhaaz.exe
      [DETECTION] Is the Trojan horse TR/FWDisable.23390.1
  --> okmhazy.dll
      [DETECTION] Is the Trojan horse TR/FWDisable.23390.1
  --> swrceac.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> swrcezc.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> GenProtect.exE
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> GenProtect.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.iqw
  --> kawdfaz.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> kawdfzy.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> kvdxjis.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jop
  --> kvdxjma.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jop
  --> LYLOADER.EXE
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> LYMANGR.DLL
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> MSDEG32.DLL
      [DETECTION] Is the Trojan horse TR/PSW.Online.gyo.2
  --> ratbnpi.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jsh
  --> ratbntl.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jsh
  --> 1.exe
      [DETECTION] Is the Trojan horse TR/PSW.Online.agb.2
  --> 4.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 8.exe
      [DETECTION] Is the Trojan horse TR/WuDisable.D
  --> 10.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 11.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 12.exe
      [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
  --> 13.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 14.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 15.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 16.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jsl
  --> 17.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 18.exe
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> 19.exe
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.anv
  --> 20.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> cotsus.exe
      [DETECTION] Contains suspicious code HEUR/Crypted
  --> custom.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> getmac007.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> Wn_Sys8x.Sys
      [DETECTION] Is the Trojan horse TR/PSW.QQpass.anv
  --> 83288.dat
      [DETECTION] Contains suspicious code HEUR/Malware
  --> avwlgmn.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.jsl
  --> avzxkmn.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> gdqji32.dll
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> gdrxjhi32.dll
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> HookHelp.sys
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> kvdxskma.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> rsztmpm.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> gddji32.dll
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> svcost.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> avwghmn.dll
      [DETECTION] Contains suspicious code HEUR/Malware
  --> gdmsi32.dll
      [DETECTION] Is the Trojan horse TR/PSW.Wow.acd
  --> gdqqsgi32.dll
      [DETECTION] Is the Trojan horse TR/Rootkit.Gen
      [WARNING]   The file was ignored!


End of the scan: 2007年12月9日  09:51
Used time: 00:35 min

The scan has been done completely.

      0 Scanning directories
     55 Files were scanned
     42 viruses and/or unwanted programs were found
      8 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     13 Files not concerned
      2 Archives were scanned
      2 Warnings
      0 Notes

傻猪猪米走鸡

F:\virus\bd.rar » RAR » bd\down.exe - a variant of Win32/Jalous worm
F:\virus\bd.rar » RAR » bd\svcos.exe - a variant of Win32/Jalous worm
F:\virus\bd.rar » RAR » bd\wxptdi.sys - a variant of Win32/Jalous worm

F:\virus\样本.rar » RAR » kaqhkzy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » okmhaaz.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » okmhazy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » swrceac.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » swrcezc.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » GenProtect.exE - a variant of Win32/PSW.OnLineGames.NFL trojan
F:\virus\样本.rar » RAR » GenProtect.dll - a variant of Win32/PSW.OnLineGames.HCV trojan
F:\virus\样本.rar » RAR » kawdfaz.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » kawdfzy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » kvdxjis.exe - Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » kvdxjma.dll - Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » LYLOADER.EXE - a variant of Win32/PSW.Agent.NEC trojan
F:\virus\样本.rar » RAR » LYMANGR.DLL - Win32/PSW.OnLineGames.DTR trojan
F:\virus\样本.rar » RAR » MSDEG32.DLL - a variant of Win32/PSW.OnLineGames.DVV trojan
F:\virus\样本.rar » RAR » ratbnpi.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » ratbntl.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 1.exe - Win32/PSW.Agent.NEC trojan
F:\virus\样本.rar » RAR » 4.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan
F:\virus\样本.rar » RAR » 8.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 10.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 12.exe - a variant of Win32/PSW.OnLineGames.NHF trojan
F:\virus\样本.rar » RAR » 13.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 14.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 15.exe - a variant of Win32/PSW.OnLineGames.NFC trojan
F:\virus\样本.rar » RAR » 16.exe - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 17.exe - Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » 19.exe - Win32/PSW.QQPass.ANV trojan
F:\virus\样本.rar » RAR » 20.exe - a variant of Win32/TrojanDownloader.VB.APY trojan
F:\virus\样本.rar » RAR » custom.exe - probably a variant of Win32/Agent.AAC trojan
F:\virus\样本.rar » RAR » getmac007.exe - a variant of Win32/TrojanDownloader.VB.APY trojan
F:\virus\样本.rar » RAR » tempaq - a variant of Win32/TrojanDownloader.QQHelper.NDW trojan
F:\virus\样本.rar » RAR » Wn_Sys8x.Sys - Win32/PSW.QQPass.ANV trojan
F:\virus\样本.rar » RAR » 83288.dat - probably a variant of Win32/Agent.AAC trojan
F:\virus\样本.rar » RAR » avwlgmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » avzxkmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » gdrxjhi32.dll - a variant of Win32/PSW.OnLineGames.NFC trojan
F:\virus\样本.rar » RAR » HookHelp.sys - a variant of Win32/PSW.OnLineGames.NFC trojan
F:\virus\样本.rar » RAR » kvdxskma.dll - Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » rsztmpm.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » gddji32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan
F:\virus\样本.rar » RAR » avwghmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan
F:\virus\样本.rar » RAR » gdmsi32.dll - a variant of Win32/PSW.OnLineGames.NHF trojan

dericyeoh

bd.rar

已删除: 病毒 Worm.Win32.Downloader.ci        文件: F:\bd.rar/bd\down.exe//PE_Patch//UPack//#
已删除: 病毒 Worm.Win32.Downloader.bw        文件: F:\bd.rar/bd\svcos.exe//PE_Patch//UPack
已删除: 病毒 Worm.Win32.Downloader.ci        文件: F:\bd.rar/bd\wxptdi.sys

后面的只报39个...

已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jsj 文件: F:\样本.rar/kaqhkzy.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.kaf 文件: F:\样本.rar/okmhaaz.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.kae 文件: F:\样本.rar/okmhazy.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.kcq 文件: F:\样本.rar/swrceac.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.kcq 文件: F:\样本.rar/swrcezc.dll
已删除: 病毒 Heur.Trojan.Generic 文件: F:\样本.rar/GenProtect.exE//UPack
已删除: 病毒 Heur.Trojan.Generic （变种） 文件: F:\样本.rar/kawdfaz.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jop 文件: F:\样本.rar/kvdxjis.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jop 文件: F:\样本.rar/kvdxjma.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.ixl 文件: F:\样本.rar/LYLOADER.EXE//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.ixj 文件: F:\样本.rar/LYMANGR.DLL//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.ixk 文件: F:\样本.rar/MSDEG32.DLL//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jsh 文件: F:\样本.rar/ratbnpi.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jzu 文件: F:\样本.rar/ratbntl.exe//UPack
已删除: 木马程序 Trojan-Dropper.Win32.Small.bbz 文件: F:\样本.rar/1.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jza 文件: F:\样本.rar/4.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.kcc 文件: F:\样本.rar/8.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jtw 文件: F:\样本.rar/10.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jyt 文件: F:\样本.rar/11.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jza 文件: F:\样本.rar/12.exe//PE_Patch//UPack
已删除: 病毒 Heur.Trojan.Generic （变种） 文件: F:\样本.rar/13.exe//UPack
已删除: 病毒 Heur.Trojan.Generic （变种） 文件: F:\样本.rar/14.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jyt 文件: F:\样本.rar/15.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jtw 文件: F:\样本.rar/16.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jpn 文件: F:\样本.rar/17.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.QQPass.anv 文件: F:\样本.rar/19.exe//UPX
已删除: 木马程序 Trojan-Downloader.Win32.Cryptic.ic 文件: F:\样本.rar/20.exe
已删除: 病毒 Heur.Downloader （变种） 文件: F:\样本.rar/cotsus.exe//NSPack
已删除: 木马程序 Trojan-Downloader.Win32.Cryptic.gen 文件: F:\样本.rar/getmac007.exe
已删除: 木马程序 Trojan-PSW.Win32.QQPass.anv 文件: F:\样本.rar/Wn_Sys8x.Sys
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jsl 文件: F:\样本.rar/avwlgmn.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jzx 文件: F:\样本.rar/gdrxjhi32.dll//UPack
已删除: 木马程序 Trojan-PSW.Win32.Agent.um 文件: F:\样本.rar/HookHelp.sys
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jts 文件: F:\样本.rar/kvdxskma.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.kbm 文件: F:\样本.rar/gddji32.dll//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jtg 文件: F:\样本.rar/avwghmn.dll
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jza 文件: F:\样本.rar/gdmsi32.dll//UPack//#
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jza 文件: F:\样本.rar/gdqqsgi32.dll//UPack//#
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.jyt 文件: F:\样本.rar/gdqqsgi32.dll//UPack

leonfg

FS的扫描漏了好多 以上报

残缺的唯美

G:\Users\Administrator\Desktop\bd.rar » RAR » bd\down.exe - a variant of Win32/Jalous worm - was a part of the deleted object
G:\Users\Administrator\Desktop\bd.rar » RAR » bd\svcos.exe - a variant of Win32/Jalous worm - was a part of the deleted object
G:\Users\Administrator\Desktop\bd.rar » RAR » bd\wxptdi.sys - a variant of Win32/Jalous worm - was a part of the deleted object
G:\Users\Administrator\Desktop\bd.rar - a variant of Win32/Jalous worm - deleted - quarantined



G:\Users\Administrator\Desktop\样本.rar » RAR » kaqhkzy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » okmhaaz.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » okmhazy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » swrceac.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » swrcezc.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » GenProtect.exE - a variant of Win32/PSW.OnLineGames.NFL trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » GenProtect.dll - a variant of Win32/PSW.OnLineGames.HCV trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » kawdfaz.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » kawdfzy.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » kvdxjis.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » kvdxjma.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » LYLOADER.EXE - a variant of Win32/PSW.Agent.NEC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » LYMANGR.DLL - Win32/PSW.OnLineGames.DTR trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » MSDEG32.DLL - a variant of Win32/PSW.OnLineGames.DVV trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » ratbnpi.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » ratbntl.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 1.exe - Win32/PSW.Agent.NEC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 4.exe - probably a variant of Win32/PSW.OnLineGames.NHF trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 8.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 10.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 12.exe - a variant of Win32/PSW.OnLineGames.NHF trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 13.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 14.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 15.exe - a variant of Win32/PSW.OnLineGames.NFC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 16.exe - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 17.exe - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 19.exe - Win32/PSW.QQPass.ANV trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 20.exe - a variant of Win32/TrojanDownloader.VB.APY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » custom.exe - probably a variant of Win32/Agent.AAC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » getmac007.exe - a variant of Win32/TrojanDownloader.VB.APY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » tempaq - a variant of Win32/TrojanDownloader.QQHelper.NDW trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » Wn_Sys8x.Sys - Win32/PSW.QQPass.ANV trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » 83288.dat - probably a variant of Win32/Agent.AAC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » avwlgmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » avzxkmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » gdrxjhi32.dll - a variant of Win32/PSW.OnLineGames.NFC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » HookHelp.sys - a variant of Win32/PSW.OnLineGames.NFC trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » kvdxskma.dll - Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » rsztmpm.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » gddji32.dll - probably a variant of Win32/PSW.OnLineGames.NHF trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » avwghmn.dll - a variant of Win32/PSW.OnLineGames.FDY trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar » RAR » gdmsi32.dll - a variant of Win32/PSW.OnLineGames.NHF trojan - was a part of the deleted object
G:\Users\Administrator\Desktop\样本.rar - multiple threats - deleted - quarantined

jimmyleo

50 哈哈 用上了
D:\Download\VirusScan\kaqhkzy.dll [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\swrceac.exe\[Upack]\[Embedded#MUSIC] [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\swrcezc.dll [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\GenProtect.exE\[Upack]\[Embedded#4060] [L] Win32:OnLineGames-BMZ [Trj] (0)
D:\Download\VirusScan\GenProtect.dll [L] Win32:OnLineGames-BMZ [Trj] (0)
D:\Download\VirusScan\kawdfaz.exe\[Upack]\[Embedded#MUSIC] [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\kawdfzy.dll [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\kvdxjis.exe\[Upack]\[Embedded#MUSIC] [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\kvdxjma.dll [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\LYLOADER.EXE\[Upack]\[Embedded#5158]\[Upack] [L] Win32:OnLineGames-ST [Trj] (0)
D:\Download\VirusScan\LYMANGR.DLL\[Upack] [L] Win32:OnLineGames-ST [Trj] (0)
D:\Download\VirusScan\MSDEG32.DLL\[Upack] [L] Win32:OnLineGames-BKV [Trj] (0)
D:\Download\VirusScan\ratbnpi.dll [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\ratbntl.exe\[Upack]\[Embedded#MUSIC] [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\1.exe\[Embedded#0c80]\[Upack]\[Embedded#5158]\[Upack] [L] Win32:OnLineGames-ST [Trj] (0)
D:\Download\VirusScan\1.exe [L] Win32:OnLineGames-SR [Trj] (0)
D:\Download\VirusScan\4.exe\[Upack]\[Embedded#6060]\[Upack] [L] Win32:OnLineGames-BEG [Trj] (0)
D:\Download\VirusScan\8.exe\[Upack]\[Embedded#MUSIC] [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\10.exe\[Upack]\[Embedded#MUSIC] [L] Win32:Delf-FVM [Trj] (0)
D:\Download\VirusScan\11.exe\[Upack]\[Embedded#6060]\[Upack] [L] Win32:OnLineGames-BKU [Trj] (0)
D:\Download\VirusScan\12.exe\[Upack]\[Embedded#6060]\[Upack] [L] Win32:OnLineGames-BKU [Trj] (0)
D:\Download\VirusScan\13.exe\[Upack]\[Embedded#MUSIC] [L] Win32:Delf-FVM [Trj] (0)
D:\Download\VirusScan\15.exe\[Upack]\[Embedded#6060]\[Upack]\[Embedded#0e970] [L] Win32:Agent-KKN [Trj] (0)
D:\Download\VirusScan\16.exe\[Upack]\[Embedded#MUSIC] [L] Win32:Delf-FVM [Trj] (0)
D:\Download\VirusScan\17.exe\[Upack]\[Embedded#MUSIC] [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\18.exe\[Upack]\[Embedded#6060]\[Upack] [L] Win32:OnLineGames-BKU [Trj] (0)
D:\Download\VirusScan\19.exe\[UPX]\[Embedded#060f8] [L] Win32:Delf-FZG [Trj] (0)
D:\Download\VirusScan\20.exe [L] Win32:Cryptic-OU [Trj] (0)
D:\Download\VirusScan\custom.exe\[NsPack]\[Embedded#0c6b0]\[NsPack] [L] Win32:Agent-KGT [Trj] (0)
D:\Download\VirusScan\getmac007.exe [L] Win32:Cryptic-OU [Trj] (0)
D:\Download\VirusScan\tempaq\[UPX]\[Embedded#11a84] [L] Win32:Agent-JZN [Trj] (0)
D:\Download\VirusScan\Wn_Sys8x.Sys [L] Win32:Delf-FZG [Trj] (0)
D:\Download\VirusScan\83288.dat\[NsPack] [L] Win32:Agent-KGT [Trj] (0)
D:\Download\VirusScan\avwlgmn.dll [L] Win32:Delf-FVM [Trj] (0)
D:\Download\VirusScan\avzxkmn.dll [L] Win32:Delf-FVM [Trj] (0)
D:\Download\VirusScan\gdqji32.dll\[Upack] [L] Win32:OnLineGames-BKU [Trj] (0)
D:\Download\VirusScan\gdrxjhi32.dll\[Upack]\[Embedded#0e970] [L] Win32:Agent-KKN [Trj] (0)
D:\Download\VirusScan\HookHelp.sys [L] Win32:Agent-KKN [Trj] (0)
D:\Download\VirusScan\kvdxskma.dll [L] Win32:OnLineGames-BGD [Trj] (0)
D:\Download\VirusScan\gddji32.dll\[Upack] [L] Win32:OnLineGames-BEG [Trj] (0)
D:\Download\VirusScan\svcost.exe\[NsPack]\[Embedded#042cc]\[NsPack]\[Embedded#0c6b0]\[NsPack] [L] Win32:Agent-KGT [Trj] (0)
D:\Download\VirusScan\avwghmn.dll [L] Win32:Delf-FVM [Trj] (0)
D:\Download\VirusScan\gdmsi32.dll\[Upack] [L] Win32:OnLineGames-BKU [Trj] (0)
D:\Download\VirusScan\gdqqsgi32.dll\[Upack] [L] Win32:OnLineGames-BKU [Trj] (0)
D:\Download\VirusScan\down.exe\[Upack]\[Embedded#03008]\[Embedded#08008] [L] Win32:Downloader-RR [Wrm] (0)
D:\Download\VirusScan\svcos.exe\[Upack]\[Embedded#03008]\[Embedded#08008] [L] Win32:Downloader-RR [Wrm] (0)
D:\Download\VirusScan\wxptdi.sys\[Embedded#08008] [L] Win32:Downloader-RR [Wrm] (0)
D:\Download\VirusScan\wxptdi.sys\[Embedded#0cc08] [L] Win32:Downloader-RQ [Wrm] (0)
D:\Download\VirusScan\wxptdi.sys\[Embedded#0d9b0] [L] Win32:Downloader-RT [Wrm] (0)
D:\Download\VirusScan\wxptdi.sys [L] Win32:Downloader-RR [Wrm] (0)

ykz1991

avast？

欠妳緈諨

看报的名称应该是avast！