64个

显示全部楼层 · 发表于 2008-1-4 21:42:32

Hello,

1.exe_, mndoor0.dll - Trojan-PSW.Win32.OnLineGames.myx,
2.exe_, qhdoor0.dll - Trojan-PSW.Win32.QQGame.av,
3.exe_ - Trojan-PSW.Win32.QQPass.aqq,
4.exe_ - Trojan-Downloader.Win32.Agent.hao,
00002.exe_, NVDispDrv.dll - Trojan-PSW.Win32.OnLineGames.myu,
00020.exe_, MsPrint32D.dll - Trojan-PSW.Win32.OnLineGames.myv,
jz.exe_ - Trojan-PSW.Win32.OnLineGames.myw,
spoolsv.exe_ - Trojan.Win32.Agent.dss

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

显示全部楼层 · 发表于 2008-1-4 22:53:02

Virus check with AntiVirusKit
Version 17.0.7089
Virus signatures of 1/4/2008
Start time: 1/4/2008 22:47
Engine(s): Engine A (AVK 18.2289), Engine B (AVKB 18.77)
Heuristic: On
Archives: On
System areas: Off

Check selected directories and files...
Object: avwghmn.dll
Path: D:\病毒测试\解压样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mhs (Engine A)
Object: jsqxbyc.dll
Path: D:\病毒测试\解压样本
Status: Virus detected
Virus: Win32:OnLineGames-BGD [Trj] (Engine B)
Object: kaqhmzy.dll
Path: D:\病毒测试\解压样本
Status: Virus detected
Virus: Win32:OnLineGames-BGD [Trj] (Engine B)
Object: rsjzapm.dll
Path: D:\病毒测试\解压样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mvb (Engine A)
Object: Wn_Sys8x.Sys
Path: D:\病毒测试\解压样本
Status: Virus detected
Virus: Win32:Delf-FZG [Trj] (Engine B)
Object: 00001.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mvy (Engine A)
Object: 00003.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mxp (Engine A)
Object: 00004.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mwp (Engine A)
Object: 00005.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mud (Engine A)
Object: 00006.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.moi (Engine A)
Object: 00007.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mxq (Engine A)
Object: 00008.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mws (Engine A)
Object: 00009.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mry (Engine A)
Object: 00012.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mtt (Engine A)
Object: 00013.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mjg (Engine A)
Object: 00014.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.Nilage.bwp (Engine A)
Object: 00015.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mhs (Engine A)
Object: 00016.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mvx (Engine A)
Object: 00017.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mqz (Engine A)
Object: 00018.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mkr (Engine A)
Object: 00019.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mxo (Engine A)
Object: 00021.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mpy (Engine A)
Object: 00022.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mqz (Engine A)
Object: 000221.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mwl (Engine A)
Object: 00023.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.jct (Engine A)
Object: 00024.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.moj (Engine A)
Object: 00025.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mrb (Engine A)
Object: 1010.inc
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-Downloader.Win32.Agent.blm (Engine A)
Object: 5238015000.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.Nilage.bwp (Engine A)
Object: arp111.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Backdoor.Win32.Delf.cjx (Engine A)
Object: avwghmn.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mhs (Engine A)
Object: avwlimn.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mua (Engine A)
Object: avzxmmn.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mrt (Engine A)
Object: cmdbcs.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mvw (Engine A)
Object: dd.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-Downloader.Win32.Agent.fon (Engine A)
Object: fbd.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan.Win32.Agent.drk (Engine A)
Object: gjcscyc.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mwv (Engine A)
Object: gjgfcyc.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.myo (Engine A)
Object: gjtmayc.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mxo (Engine A)
Object: host.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan.Win32.Qhost.aef (Engine A)
Object: jsqxayc.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mwk (Engine A)
Object: [Upack]
In archive: D:\病毒测试\解压样本\样本\jz.exe
Status: Virus detected
Virus: Win32:OnLineGames-BGD [Trj] (Engine B)
Object: jz.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Win32:OnLineGames-BGD [Trj] (Engine B)
Object: kapjgzy.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mpz (Engine A)
Object: kawdizy.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.msd (Engine A)
Object: kvdxsmma.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mwp (Engine A)
Object: lmmh.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan.Win32.Small.uj (Engine A)
Object: lmmy.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.kaw (Engine A)
Object: LotusHlp.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.moj (Engine A)
Object: pcihdd.sys
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-Downloader.Win32.Agent.blm (Engine A)
Object: PTSShell.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.moi (Engine A)
Object: raqjkpi.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mlb (Engine A)
Object: ratbspi.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mus (Engine A)
Object: ratbstl.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mum (Engine A)
Object: rsjzapm.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mvb (Engine A)
Object: smss.com
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Backdoor.Win32.Delf.awy (Engine A)
Object: smss.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Backdoor.Win32.Delf.awy (Engine A)
Object: soundma.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan.Win32.Agent.diq (Engine A)
Object: swjqbzc.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mxq (Engine A)
Object: upxdnd.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mjg (Engine A)
Object: wdlm.exe
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-Downloader.Win32.Small.hiq (Engine A)
Object: WinForm.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mth (Engine A)
Object: wsmsezx.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mws (Engine A)
Object: WSockDrv32.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mry (Engine A)
Object: wszjdzx.dll
Path: D:\病毒测试\解压样本\样本
Status: Virus detected
Virus: Trojan-PSW.Win32.OnLineGames.mud (Engine A)
Analysis complete: 1/4/2008 22:47
69 files checked
64 infected files detected
0 suspected files detected

显示全部楼层 · 发表于 2008-1-5 10:00:49

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\Wn_Sys8x.Sys]
                  …………发现Spy！报告: [4] [8] HOOK者
文件信息:  大小:48280  MD5:b0944c0ca8e5e6a30cc86d26ea523b40

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a2.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:18488  MD5:e05023d0fba651494a2ec7e76d8efe70

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a5.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16709  MD5:8651eee744c02d3be233fa37abbcbd44

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a7.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:49152  MD5:f0f748488c3e079ac4288f738ff1aafc

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a1.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:42057  MD5:7493d02c6f2082a037f287882322ea58

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a10.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:17292  MD5:20a9e467dc8c4231d2c691c80f4cd3d3

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a11.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16498  MD5:44e09bef5b2cefa495bf7838d72d1835

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a12.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15487  MD5:d77b58cf5efcb8e25c41729825e95b12

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a13.exe]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:29537  MD5:c84708c1fb8a0ffd2ef224e85926a64a

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a14.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16514  MD5:1f0cf45a2e551250b326da845237f722

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a15.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15578  MD5:b6dba3d05413e7459f6a3f7452136f6e

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a16.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17890  MD5:a0073d46740cc4f68265dfc21a27d228

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a17.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16223  MD5:bc5eafa9bca51a843e8e69ce404966c9

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a18.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17452  MD5:c9038876711d45356da2020cb0c3321c

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a19.exe]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.FSG.A
文件信息:  大小:31721  MD5:7522a479a95901f1878e0bc91b959e2d

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a20.exe]
                  …………发现Spy！报告:[2] [1] Win32.NkHack.FSG.A
文件信息:  大小:177425  MD5:e82dfa9913ef19f6a07539e5cbe33051

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a21.exe]
                  …………发现Spy！报告:[2]
文件信息:  大小:52529  MD5:6c8d5a014d1f11fe3677fba992e37e7f

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a22.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17968  MD5:1c6185bbc094e0c2fb6f9c8a10fd0966

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a23.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:31273  MD5:bd47a4c420c86e64ec9aaf2871fc1ee7

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a24.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16241  MD5:9fd2bec8eff1578de2cc11460d4339d1

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a25.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:16128  MD5:7edbfe568096bb8010946689855e6d9c

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a26.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17116  MD5:9411ca1be78655e636974caa6e563084

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a27.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:18373  MD5:3a99cd279fe5f842941d37f4e9061f6c

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a28.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:15468  MD5:fbcabd9d350be8a1d11e5ea2c6ce687b

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a8.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:31973  MD5:4697350f36323a4d2b1f79f32ddb405e

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\a9.exe]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:17463  MD5:9137f249da98de2445a6f1cf0022a856

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\scvhost.exe]
                  …………发现Spy！报告:[1] Win32.NkHack.FSG.A
文件信息:  大小:11081  MD5:059725b53772a916f11e27517edb6bf0

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\AVPSrv.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:28672  MD5:b75d24760a1b0987a20b93ef062f1aac

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\avwghmn.dll]
                  …………发现Spy！报告: [4] [6] 注入者[8] HOOK者
文件信息:  大小:24531  MD5:5408d26b796a4aac3b12018869701181

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\bgntfkpwow.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:20494  MD5:70ec2de4556de80341757d95723fedf9

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\cmdbcs.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:27648  MD5:65a798c64a82fefd6073fd9f1ece7e34

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\kpwdpvazx.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19945  MD5:27a799d13be7ccbe5687c15cc5927b7a

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\kqwdntydj.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:20361  MD5:6bdf603c40424e88660b6cee28a3fc2e

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\kvdxslma.dll]
                  …………发现Spy！报告:[6] 注入者[8] HOOK者
文件信息:  大小:23483  MD5:4418a01f2f4c8f9fe3cc958f396a6f72

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\Kvsc3.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:29696  MD5:51dfc7c03c46ddb36fa4ce10cf7ae27f

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\LotusHlp.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:26624  MD5:bd92f632c873e9af18c8c999b9bcc0f8

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\LYLOADER.EXE]
                  …………发现Spy！报告:[1] Win32.Unknow
文件信息:  大小:11772  MD5:d2fb759e879ff1d5b050c9d819860a31

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\LYMANGR.DLL]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:3398  MD5:b905fcd12f1197bbe05081d291db15db

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\MSDEG32.DLL]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:5959  MD5:f004de13a2085c17deab03af79f4efa5

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\MsIMMs32.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:29184  MD5:f6d683684076caf79efd0874578e0fb6

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\MsPrint32D.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:26112  MD5:31f2c2c0eb7796521b71962eb6d2dd6f

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\NVDispDrv.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:28160  MD5:000ab81894d4524d3e330e95d66c2ed1

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\puahsxdzx.dll]
                  …………发现Spy！报告:[1] Win32.F/S.ByDwing
文件信息:  大小:19945  MD5:990f89a276ccd3826b6ffb26ba196c77

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\rsjzapm.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:526430  MD5:f06aa4882a6761bc21c5a7e8cf2894da

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\SHAProc.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:28160  MD5:f043b2e8badc14caaf18a726f43f327d

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\upxdnd.dll]
                  …………发现Spy！报告:[1] Win32.Badsoft.RX[8] HOOK者
文件信息:  大小:27648  MD5:3124f7a2d91edc8cfb6b00f468085e03

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\jsqxbyc.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:2120185  MD5:56391e6e143420763e07c75ed9e2e131

[C:\Documents and Settings\Administrator\桌面\Virus\wwqwq\kaqhmzy.dll]
                  …………发现Spy！报告: [4]
文件信息:  大小:2120544  MD5:96a69d603466684d82ecd143dee7cf08

文件数:56 病毒数:48  比重:0.8571428571429
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎
[2] 文件特征码引擎
[1] 文件启发式引擎

显示全部楼层 · 发表于 2008-1-5 11:55:07

咖啡 58

2008-1-5 11:53:53 引擎版本=5200.2160
2008-1-5 11:53:53 防病毒 DAT 版本=5200.0000
2008-1-5 11:53:53 EXTRA.DAT 中的检测项特征码数=无
2008-1-5 11:53:53 EXTRA.DAT 中的检测项特征码名称=无
2008-1-5 11:53:35 扫描已启动 MICROSOF-6A2568\星星按需扫描
2008-1-5 11:53:54 未采取操作星星 E:\病毒\样本.rar\00001.EXE\00001.EXE\00003260.EXE PWS-OnlineGames.ad(特洛伊)
2008-1-5 11:53:56 未采取操作星星 E:\病毒\样本.rar\00003.EXE\00003.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:53:57 未采取操作星星 E:\病毒\样本.rar\00004.EXE New Malware.n(特洛伊)
2008-1-5 11:53:57 未采取操作星星 E:\病毒\样本.rar\00005.EXE\00005.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:53:58 未采取操作星星 E:\病毒\样本.rar\00006.EXE\00006.EXE\00003260.EXE PWS-OnlineGames.v.dll(特洛伊)
2008-1-5 11:53:59 未采取操作星星 E:\病毒\样本.rar\00007.EXE\00007.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:00 未采取操作星星 E:\病毒\样本.rar\00008.EXE New Malware.n(特洛伊)
2008-1-5 11:54:00 未采取操作星星 E:\病毒\样本.rar\00009.EXE\00009.EXE\00003260.EXE PWS-OnlineGames.ad(特洛伊)
2008-1-5 11:54:01 未采取操作星星 E:\病毒\样本.rar\00012.EXE New Malware.n(特洛伊)
2008-1-5 11:54:02 未采取操作星星 E:\病毒\样本.rar\00013.EXE\00013.EXE\00003260.EXE PWS-OnlineGames.v.dll(特洛伊)
2008-1-5 11:54:03 未采取操作星星 E:\病毒\样本.rar\00015.EXE New Malware.n(特洛伊)
2008-1-5 11:54:04 未采取操作星星 E:\病毒\样本.rar\00017.EXE New Malware.n(特洛伊)
2008-1-5 11:54:05 未采取操作星星 E:\病毒\样本.rar\00018.EXE\00018.EXE\0000630c.EXE PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:06 未采取操作星星 E:\病毒\样本.rar\00019.EXE\00019.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:07 未采取操作星星 E:\病毒\样本.rar\00020.EXE\00020.EXE\00003260.EXE PWS-OnlineGames.ad(特洛伊)
2008-1-5 11:54:08 未采取操作星星 E:\病毒\样本.rar\00021.EXE\00021.EXE\0000630c.EXE PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:09 未采取操作星星 E:\病毒\样本.rar\00022.EXE\00022.EXE\0000630c.EXE PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:09 未采取操作星星 E:\病毒\样本.rar\000221.EXE\000221.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:10 未采取操作星星 E:\病毒\样本.rar\00023.EXE Generic Packed(特洛伊)
2008-1-5 11:54:11 未采取操作星星 E:\病毒\样本.rar\00024.EXE\00024.EXE\00003260.EXE PWS-OnlineGames.v.dll(特洛伊)
2008-1-5 11:54:11 未采取操作星星 E:\病毒\样本.rar\00025.EXE\00025.EXE\0000630c.EXE PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:12 未采取操作星星 E:\病毒\样本.rar\1010.INC Generic Packed(特洛伊)
2008-1-5 11:54:13 未采取操作星星 E:\病毒\样本.rar\ARP111.EXE New Malware.n(特洛伊)
2008-1-5 11:54:13 未采取操作星星 E:\病毒\样本.rar\AVWGHMN.DLL PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:14 未采取操作星星 E:\病毒\样本.rar\AVWLIMN.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:14 未采取操作星星 E:\病毒\样本.rar\AVZXMMN.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:15 未采取操作星星 E:\病毒\样本.rar\DD.EXE New Malware.n(特洛伊)
2008-1-5 11:54:15 未采取操作星星 E:\病毒\样本.rar\FBD.EXE New Malware.n(特洛伊)
2008-1-5 11:54:16 未采取操作星星 E:\病毒\样本.rar\GJCSCYC.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:16 未采取操作星星 E:\病毒\样本.rar\GJGFCYC.DLL PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:17 未采取操作星星 E:\病毒\样本.rar\GJTMAYC.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:17 未采取操作星星 E:\病毒\样本.rar\HOST.EXE New Malware.n(特洛伊)
2008-1-5 11:54:18 未采取操作星星 E:\病毒\样本.rar\JSQXAYC.DLL PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:19 未采取操作星星 E:\病毒\样本.rar\JZ.EXE\JZ.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:19 未采取操作星星 E:\病毒\样本.rar\KAPJGZY.DLL PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:20 未采取操作星星 E:\病毒\样本.rar\KAWDIZY.DLL PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:20 未采取操作星星 E:\病毒\样本.rar\KVDXSMMA.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:21 未采取操作星星 E:\病毒\样本.rar\LMMH.EXE Generic.dx(特洛伊)
2008-1-5 11:54:21 未采取操作星星 E:\病毒\样本.rar\LMMY.EXE New Malware.n(特洛伊)
2008-1-5 11:54:21 未采取操作星星 E:\病毒\样本.rar\LOTUSHLP.DLL PWS-OnlineGames.v.dll(特洛伊)
2008-1-5 11:54:22 未采取操作星星 E:\病毒\样本.rar\MSPRINT32D.DLL PWS-OnlineGames.ad(特洛伊)
2008-1-5 11:54:22 未采取操作星星 E:\病毒\样本.rar\PCIHDD.SYS Generic Downloader.ab(特洛伊)
2008-1-5 11:54:23 未采取操作星星 E:\病毒\样本.rar\PTSSHELL.DLL PWS-OnlineGames.v.dll(特洛伊)
2008-1-5 11:54:23 未采取操作星星 E:\病毒\样本.rar\RAQJKPI.DLL PWS-OnlineGames.i(特洛伊)
2008-1-5 11:54:24 未采取操作星星 E:\病毒\样本.rar\RATBSPI.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:24 未采取操作星星 E:\病毒\样本.rar\RATBSTL.EXE\RATBSTL.EXE\0000630c.EXE PWS-OnlineGames.q.dll(特洛伊)
2008-1-5 11:54:25 未采取操作星星 E:\病毒\样本.rar\RSJZAPM.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:25 未采取操作星星 E:\病毒\样本.rar\SMSS.COM NetSniff(特洛伊)
2008-1-5 11:54:26 未采取操作星星 E:\病毒\样本.rar\SMSS.EXE NetSniff(特洛伊)
2008-1-5 11:54:27 未采取操作星星 E:\病毒\样本.rar\SOUNDMA.EXE New Malware.n(特洛伊)
2008-1-5 11:54:27 未采取操作星星 E:\病毒\样本.rar\SPOOLSV.EXE New Malware.n(特洛伊)
2008-1-5 11:54:27 未采取操作星星 E:\病毒\样本.rar\SWJQBZC.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:28 未采取操作星星 E:\病毒\样本.rar\UPXDND.DLL PWS-OnlineGames.v.dll(特洛伊)
2008-1-5 11:54:29 未采取操作星星 E:\病毒\样本.rar\WDLM.EXE New Malware.n(特洛伊)
2008-1-5 11:54:29 未采取操作星星 E:\病毒\样本.rar\WINFORM.DLL PWS-OnlineGames.ad(特洛伊)
2008-1-5 11:54:29 未采取操作星星 E:\病毒\样本.rar\WSMSEZX.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:30 未采取操作星星 E:\病毒\样本.rar\WSOCKDRV32.DLL PWS-OnlineGames.ad(特洛伊)
2008-1-5 11:54:30 未采取操作星星 E:\病毒\样本.rar\WSZJDZX.DLL PWS-OnlineGames.q(特洛伊)
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星扫描摘要
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已扫描的进程: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已检测的进程: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已清除病毒的进程: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已扫描的引导区: 1
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已检测的引导区: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已清除病毒的引导区: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已扫描的文件: 1
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星含有检测项的文件: 1
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星文件检测项: 58
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已清除病毒的文件： 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已删除的文件: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星未扫描的文件: 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星扫描摘要(注册表扫描)
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已扫描的项       : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已检测的项       : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已清理的项       : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已删除的项       : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星扫描摘要(Cookie 扫描)
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已扫描的 Cookie    : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已检测的 Cookie    : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已清理的 Cookie    : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星已删除的 Cookie    : 0
2008-1-5 11:54:30 扫描摘要 MICROSOF-6A2568\星星运行时间: 0:00:55
2008-1-5 11:54:30 扫描结束 MICROSOF-6A2568\星星按需扫描

显示全部楼层 · 发表于 2008-1-5 12:26:34

all killed

显示全部楼层 · 发表于 2008-1-5 16:51:21

D:\Download\VirusScan\样本\00001.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00002.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00003.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00004.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00005.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00006.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00007.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00008.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00009.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00012.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00013.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00014.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00015.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00016.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00017.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00018.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00019.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00020.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00021.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00022.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\000221.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00023.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00024.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00025.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\arp111.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\dd.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\fbd.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\host.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\jz.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\lmmh.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\lmmy.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\ratbstl.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\smss.com
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\smss.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\soundma.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\spoolsv.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\wdlm.exe
suspicious found:  ... (NOT killable) skipped

suspicious       |    37

显示全部楼层 · 发表于 2008-1-5 17:01:41

更新后更强大……原来他也有已知的……

D:\Download\VirusScan\样本\00001.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00002.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00003.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00004.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00005.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00006.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00007.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00008.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00009.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00012.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00013.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00014.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00015.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00016.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00017.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00018.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00019.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00020.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00021.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00022.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\000221.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00023.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00024.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\00025.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\arp111.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\avwghmn.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\avwlimn.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\avzxmmn.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\cmdbcs.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\dd.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\fbd.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\gjcscyc.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\gjgfcyc.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\gjtmayc.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\host.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\jsqxayc.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\jz.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\kapjgzy.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\kawdizy.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\kvdxsmma.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\lmmh.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\lmmy.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\LotusHlp.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\MsPrint32D.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\NVDispDrv.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\pcihdd.sys
trojan found: Trojan.DL.Agent.WVB ... (killable,deletable) skipped

D:\Download\VirusScan\样本\PTSShell.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\raqjkpi.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\ratbspi.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\ratbstl.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\rsjzapm.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\smss.com
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\smss.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\soundma.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\spoolsv.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\swjqbzc.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\upxdnd.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\wdlm.exe
suspicious found:  ... (NOT killable) skipped

D:\Download\VirusScan\样本\WinForm.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\wsmsezx.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

D:\Download\VirusScan\样本\WSockDrv32.dll
mutant found: Trojan.OnlineGames.Gen.63 ... (NOT killable) skipped

D:\Download\VirusScan\样本\wszjdzx.dll
mutant found: Trojan.OnlineGames.Gen.45 ... (NOT killable) skipped

suspicious       |    37
mutant             |    24
trojan             |       1
63……几乎全灭

显示全部楼层 · 发表于 2008-1-5 18:02:10

48个

显示全部楼层 · 发表于 2008-1-5 20:27:31

ArcaMicroScan - Scanning report [2008.01.05 20:27:23]
Base date : 2008.01.04 16:42:51

[Scanning : F:\病毒样本]

F:\病毒样本\样本.rar<RAR>:00001.exe<UPack>:00001.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Mth : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00003.exe <- Trojan.Psw.Onlinegames.Mxp : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00004.exe <- Trojan.Psw.Onlinegames.Mwp : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00005.exe<UPack>:00005.exe<DLLRES>:MUSIC0.exe <- Trojan.Psw.Onlinegames.Mud : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00006.exe<UPack>:00006.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Moi : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00007.exe <- Trojan.Psw.Onlinegames.Mxq : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00008.exe<UPack>:00008.exe<DLLRES>:MUSIC0.exe <- Trojan.Psw.Onlinegames.Mws : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00009.exe<UPack>:00009.exe <- Trojan.Psw.Onlinegames.Mry : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00012.exe<UPack>:00012.exe<DLLRES>:MUSIC0.exe <- Trojan.Psw.Onlinegames.Mua : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00013.exe<UPack>:00013.exe <- Trojan.Psw.Onlinegames.Mjg : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00014.exe <- Trojan.Psw.Nilage.Bwp : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00015.exe<UPack>:00015.exe <- Trojan.Psw.Onlinegames.Mhs : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00016.exe<UPack>:00016.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Mvw : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00017.exe<UPack>:00017.exe <- Variant:Trojan.Psw.Onlinegames.Mrt : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00018.exe<UPack>:00018.exe <- Trojan.Psw.Onlinegames.Mkr : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00019.exe <- Trojan.Psw.Onlinegames.Mxo : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00021.exe<UPack>:00021.exe<DLLRES>:MUSIC0.exe <- Trojan.Psw.Onlinegames.Mpz : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00022.exe<UPack>:00022.exe <- Trojan.Psw.Onlinegames.Mqz : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:000221.exe <- Trojan.Psw.Onlinegames.Mwl : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00023.exe<UPack>:00023.exe <- Trojan.Psw.Onlinegames.Jct : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:00024.exe<UPack>:00024.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Moj : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:1010.inc<UPack>:1010.inc <- Variant:Downloader.Agent.Blm : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:arp111.exe<UPack>:arp111.exe <- Trojan.Delf.Awy : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:avwghmn.dll <- Trojan.Psw.Onlinegames.Mhs : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:avwlimn.dll <- Trojan.Psw.Onlinegames.Mua : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:avzxmmn.dll <- Variant:Trojan.Psw.Onlinegames.Mrt : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:cmdbcs.dll <- Trojan.Psw.Onlinegames.Mvw : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:dd.exe<UPack>:dd.exe <- Downloader.Agent.Fon : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:gjcscyc.dll <- Trojan.Psw.Onlinegames.Mwv : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:host.exe<UPack>:host.exe <- Trojan.Qhost.Aef : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:jsqxayc.dll <- Trojan.Psw.Onlinegames.Mwk : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:jz.exe<UPack>:jz.exe<DLLRES>:MUSIC0.exe <- Trojan.Psw.Onlinegames.Mvb : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:kapjgzy.dll <- Trojan.Psw.Onlinegames.Mpz : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:kawdizy.dll <- Trojan.Psw.Onlinegames.Msd : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:kvdxsmma.dll <- Trojan.Psw.Onlinegames.Mwp : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:lmmh.exe<UPack>:lmmh.exe <- Trojan.Small.Uj : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:lmmy.exe<UPack>:lmmy.exe <- Trojan.Psw.Onlinegames.Kaw : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:LotusHlp.dll <- Trojan.Psw.Onlinegames.Moj : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:pcihdd.sys <- Trojan.Downloader.Agent.Blm : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:PTSShell.dll <- Trojan.Psw.Onlinegames.Moi : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:raqjkpi.dll <- Trojan.Psw.Onlinegames.Mlb : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:ratbspi.dll <- Trojan.Psw.Onlinegames.Mus : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:ratbstl.exe<UPack>:ratbstl.exe<DLLRES>:MUSIC0.exe <- Trojan.Psw.Onlinegames.Mus : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:rsjzapm.dll <- Trojan.Psw.Onlinegames.Mvb : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:smss.com <- Trojan.Delf.Awy : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:smss.exe <- Trojan.Delf.Awy : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:soundma.exe<UPack>:soundma.exe <- Trojan.Agent.Diq : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:swjqbzc.dll <- Trojan.Psw.Onlinegames.Mxq : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:upxdnd.dll <- Trojan.Psw.Onlinegames.Mjg : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:wdlm.exe<UPack>:wdlm.exe <- Downloader.Small.Hiq : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:WinForm.dll <- Trojan.Psw.Onlinegames.Mth : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:wsmsezx.dll <- Trojan.Psw.Onlinegames.Mws : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:WSockDrv32.dll <- Trojan.Psw.Onlinegames.Mry : Cleaning -> Delete
F:\病毒样本\样本.rar<RAR>:wszjdzx.dll <- Trojan.Psw.Onlinegames.Mud : Cleaning -> Delete

Scanned objects : 108

Infected objects : 54

显示全部楼层 · 发表于 2008-1-6 21:37:46

kis 7.0.1.285，64个

[病毒样本] 64个

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块