请版主关闭此帖!!! 不是本人发的

显示全部楼层 · 发表于 2007-12-9 21:12:20

68down.exe - 从OD分析看不是下载者,但释放了一个驱动并且改时间还注入
另外一个同上

显示全部楼层 · 发表于 2007-12-9 21:20:55

ESET Smart Security 3的检查结果！！
发现两个病毒

显示全部楼层 · 发表于 2007-12-9 23:33:30

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 1056
Paranoia Database - 49948
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\Uhthn\Desktop\New Folder (2)

C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\20[1].exe - Infected WIN32.GENERIC.MALWARE.49F.2400 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\avwghst.exe - Infected TROJAN-PSW.ONLINEGAMES.164 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\CANI6LVZ.htm - Suspected TROJAN-DOWNLOADER.VBS.AGENT.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\comrecfg.exe - OK
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\FTCCompress.dll - Infected TROJAN-PSW.ONLINEGAMES.121 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\GenProtect.exE - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\GenProtect.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass0.exe - Infected TROJAN-PSW.ONLINEGAMES.U - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass1.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass2.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass3.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass4.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass5.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass6.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass7.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass8.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsass9.exe - Infected WIN32.TROJAN-PSW.LMIR.6 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsassa.exe - Infected WIN32.TROJAN-PSW.QQPASS.A - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsassc.exe - Infected GENERIC.MALWARE.4DB.38E2 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsassd.exe - Infected TROJAN-PSW.ONLINEGAMES.164 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsasse.exe - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsassh.exe - Infected WIN32.TROJAN-PSW.ONLINEGAMES.G - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\lsassi.exe - Infected BACKDOOR.DELF.4 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\LYLOADER.EXE - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\LYMANGR.DLL - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\sairfntaio.dll - Suspected MaliciousScope:GENERIC.MALWARE.3
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\SIDJEAZ.EXE - Infected GENERIC.MALWARE.4DB.38E2 - Deleted
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\upxdnd.exe - Suspected TROJAN-PSW.ONLINEGAMES.2
C:\Documents and Settings\Uhthn\Desktop\New Folder (2)\upxdnd.dll - Infected TROJAN-PSW.ONLINEGAMES.43 - Deleted

29 Files scanned
13 Infected files found
15 Suspected files found
0 Files disinfected
13 Files deleted

显示全部楼层 · 发表于 2007-12-10 00:53:03

卡吧给红伞一样多28个

显示全部楼层 · 发表于 2007-12-10 12:00:39

微点砍掉

显示全部楼层 · 发表于 2007-12-15 17:43:24

原帖由 gogo8989 于 2007-12-10 00:53 发表
卡吧给红伞一样多28个

红伞是报了29个!

显示全部楼层 · 发表于 2007-12-15 19:05:46

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.Win32.Mnless.zyt
病毒： Trojan.Win32.Mnless.zva

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.22.51

显示全部楼层 · 发表于 2007-12-15 19:06:38

44/28

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.DL.Delf.xxb
病毒： Trojan.PSW.Win32.SunOnline.iv
病毒： Trojan.Win32.Mnless.zgl
病毒： Trojan.PSW.Win32.SunOnline.it
病毒： Trojan.PSW.Win32.GameOnline.avu
病毒： Trojan.PSW.Win32.GameOnline.zyd
病毒： Dropper.Win32.Agent.yth
病毒： Trojan.PSW.Win32.OnlineGames.GEN
病毒： Trojan.PSW.Win32.AskTao.fn
病毒： Trojan.Win32.Mnless.zqz
病毒： Worm.Win32.PaBug.eq
病毒： Trojan.PSW.Win32.GameOnline.ars
病毒： Trojan.PSW.Win32.QQHX.tsy
病毒： Trojan.PSW.Win32.Woool.c
病毒： Trojan.Mnless.lpi
病毒： Trojan.PSW.Win32.XYOnline.wa
病毒： Trojan.PSW.Win32.XYOnline.vh
病毒： Trojan.PSW.Win32.SunOnline.it
病毒： Trojan.PSW.Win32.GameOnline.zyq

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.22.51

[病毒样本] 请版主关闭此帖!!! 不是本人发的

本帖子中包含更多资源

本帖子中包含更多资源

4/2

回复 6楼 Love=卡巴+费尔的帖子

[病毒样本] 请版主关闭此帖!!! 不是本人发的

本帖子中包含更多资源

本帖子中包含更多资源

4/2

回复 6楼 Love=卡巴+费尔 的帖子

回复 6楼 Love=卡巴+费尔的帖子