[病毒样本] 54

显示全部楼层 · 发表于 2008-1-30 16:43:56

AVAST 27
大蜘蛛 33

打赌，以上2个都没NOD多

显示全部楼层 · 发表于 2008-1-30 16:44:09

祥子去写个样本链接有效验证和更新监视的小软件吧~

显示全部楼层 · 发表于 2008-1-30 16:45:55

有想法没办法以前写了个简单的总是假死

显示全部楼层 · 发表于 2008-1-30 16:51:02

43
detected: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: E:\Ñù±¾\new\cmdbcs.exe
detected: Trojan program Trojan.Win32.Vaklik.gg File: E:\Ñù±¾\new\DbgHlp32.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prg File: E:\Ñù±¾\new\LotusHlp.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nfz File: E:\Ñù±¾\new\PTSShell.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oiu File: E:\Ñù±¾\new\Fonts\avzxomn.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.odx File: E:\Ñù±¾\new\Fonts\avzxost.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oec File: E:\Ñù±¾\new\Fonts\gjcsdyc.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oee File: E:\Ñù±¾\new\Fonts\gjcsdzc.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pmg File: E:\Ñù±¾\new\system32\DbgHlp32.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pps File: E:\Ñù±¾\new\system32\gnolnait.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pop File: E:\Ñù±¾\new\system32\IGB_WD_1026.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pou File: E:\Ñù±¾\new\system32\IGB_WD_1026.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pvt File: E:\Ñù±¾\new\system32\ijiq.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prw File: E:\Ñù±¾\new\system32\ijougiemnaw.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.psx File: E:\Ñù±¾\new\system32\iqnauhc.dll//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prh File: E:\Ñù±¾\new\system32\LotusHlp.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nfy File: E:\Ñù±¾\new\system32\PTSShell.dll
detected: Trojan program Trojan-Clicker.Win32.Agent.qw File: E:\Ñù±¾\new\system32\shelrav.exe
detected: Trojan program Trojan-Clicker.Win32.Agent.qm File: E:\Ñù±¾\new\system32\sychost.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ppj File: E:\Ñù±¾\new\system32\utgnehz.dll//UPack
detected: Trojan program Trojan.Win32.Pakes.bzp File: E:\Ñù±¾\new\system32\XSXCompress.dll
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ptd File: E:\Ñù±¾\new\system32\drivers\1.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.odb File: E:\Ñù±¾\new\system32\drivers\10.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\Ñù±¾\new\system32\drivers\11.exe//PE_Patch//UPack
detected: Trojan program Trojan.Win32.Vaklik.gg File: E:\Ñù±¾\new\system32\drivers\12.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.oee File: E:\Ñù±¾\new\system32\drivers\13.exe//UPack
detected: Trojan program Trojan-Downloader.Win32.Zlob.gef File: E:\Ñù±¾\new\system32\drivers\14.exe//PE_Patch
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\Ñù±¾\new\system32\drivers\15.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pry File: E:\Ñù±¾\new\system32\drivers\16.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.isb File: E:\Ñù±¾\new\system32\drivers\17.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prg File: E:\Ñù±¾\new\system32\drivers\18.exe//UPack
detected: Trojan program Trojan-PSW.Win32.QQPass.asf File: E:\Ñù±¾\new\system32\drivers\19.exe//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pcn File: E:\Ñù±¾\new\system32\drivers\2.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\Ñù±¾\new\system32\drivers\4.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.odx File: E:\Ñù±¾\new\system32\drivers\5.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pbp File: E:\Ñù±¾\new\system32\drivers\6.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.prw File: E:\Ñù±¾\new\system32\drivers\7.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.pou File: E:\Ñù±¾\new\system32\drivers\8.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.nfz File: E:\Ñù±¾\new\system32\drivers\9.exe//UPack
detected: Trojan program Trojan-Downloader.Win32.Agent.ibk File: E:\Ñù±¾\new\system32\drivers\puid.sys
detected: Trojan program Trojan-Downloader.Win32.Agent.gbh File: E:\Ñù±¾\new\system32\wbem\csrss.exe//PE_Patch.PECompact//PecBundle//PECompact
detected: Trojan program Trojan-Downloader.Win32.Agent.ibh File: E:\Ñù±¾\new\temp\~FaB.tmp
detected: Trojan program Trojan-Downloader.Win32.Agent.ibh File: E:\Ñù±¾\new\temp\~FaC.tmp

显示全部楼层 · 发表于 2008-1-30 16:51:23

呵呵慢慢来~

bd=33+3

D:\Download\S\Fonts\avzxomn.dll infected: Trojan.PWS.OnlineGames.NZH
D:\Download\S\Fonts\avzxost.exe infected: Trojan.PWS.OnlineGames.NZH
D:\Download\S\Fonts\gjcsdyc.dll infected: Trojan.PWS.OnlineGames.NZH
D:\Download\S\Fonts\gjcsdzc.exe infected: Trojan.PWS.OnlineGames.NZH
D:\Download\S\system32\cmdbcs.dll infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\DbgHlp32.dll infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\drivers\1.exe infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\drivers\10.exe infected: Trojan.PWS.Onlinegames.NYS
D:\Download\S\system32\drivers\11.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\system32\drivers\12.exe infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\drivers\13.exe infected: Trojan.PWS.OnlineGames.NZH
D:\Download\S\system32\drivers\14.exe infected: Trojan.PWS.Onlinegames.NYS
D:\Download\S\system32\drivers\15.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\system32\drivers\16.exe suspected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\system32\drivers\17.exe infected: Generic.PWS.Games.4.BDEFE533
D:\Download\S\system32\drivers\18.exe infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\drivers\19.exe infected: Generic.PWStealer.A63F3CBB
D:\Download\S\system32\drivers\4.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\system32\drivers\5.exe infected: Trojan.PWS.OnlineGames.NZH
D:\Download\S\system32\drivers\6.exe infected: Trojan.PWS.OnlineGames.NZG
D:\Download\S\system32\drivers\7.exe infected: DeepScan:Generic.Onlinegames.3.DBB5EE67
D:\Download\S\system32\drivers\8.exe infected: Dropped:Generic.Malware.SBdld.318339A6
D:\Download\S\system32\drivers\9.exe infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\IGB_WD_1026.dll infected: Generic.Malware.SBdld.318339A6
D:\Download\S\system32\IGB_WD_1026.exe infected: Dropped:Generic.Malware.SBdld.318339A6
D:\Download\S\system32\LotusHlp.dll infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\PTSShell.dll infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\system32\wbem\csrss.exe infected: Generic.NPop.E7DC57C9
D:\Download\S\system32\XSXCompress.dll suspected: Dropped:Generic.Malware.Fdld.13F0E52E
D:\Download\S\temp\IXP000.TMP\kavjs.exe infected: MemScan:Trojan.Qhost.LY
D:\Download\S\Web\explor0er.exe suspected: Generic.Malware.Yd.8F1092AA
D:\Download\S\Web\syst1m.exe infected: MemScan:Trojan.Qhost.LY
D:\Download\S\cmdbcs.exe infected: Generic.PWS.Games.4.BDEFE533
D:\Download\S\DbgHlp32.exe infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\LotusHlp.exe infected: Trojan.PWS.OnLineGames.NSR
D:\Download\S\PTSShell.exe infected: Trojan.PWS.OnLineGames.NSR

显示全部楼层 · 发表于 2008-1-30 16:54:05

D:\download\windows.part1.rar>>Fonts\avzxomn.dll TrojanPSW.OnLineGames.oiu.gjaq.dll 木马还未处理
D:\download\windows.part1.rar>>Fonts\avzxost.exe TrojanPSW.OnLineGames.odx.jrkz 木马还未处理
D:\download\windows.part1.rar>>Fonts\gjcsdyc.dll PWSteal.OnlineGames.q.zpyq.dll 木马还未处理
D:\download\windows.part1.rar>>Fonts\gjcsdzc.exe TrojanPSW.OnLineGames.lhc.fgfs 木马还未处理
D:\download\windows.part1.rar>>system32\cmdbcs.dll PWSteal.OnlineGames.v.dll.pjyl.dll 木马还未处理
D:\download\windows.part1.rar>>system32\DbgHlp32.dll TrojanPSW.OnLineGames.pjl.ofml.dll 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\1.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>system32\drivers\10.exe TrojanPSW.OnLineGames.odb.ldgm 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\11.exe TrojanPSW.QQHX.tvu.fmwx 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\12.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>system32\drivers\13.exe TrojanPSW.OnLineGames.lhc.fgfs 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\14.exe TrojanPSW.OnLineGames.oml.llxs 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\15.exe TrojanPSW.OnLineGames.pbp.zipb 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\16.exe TrojanPSW.OnLineGames.pry.icqj 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\17.exe TrojanDownloader.Nurech.bd.bmqk 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\18.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>system32\drivers\19.exe W32.Gammima.figd 病毒还未处理
D:\download\windows.part1.rar>>system32\drivers\2.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>system32\drivers\22.exe Adware.Agent.zqf.lfoo 广告程序还未处理
D:\download\windows.part1.rar>>system32\drivers\4.exe TrojanPSW.OnLineGames.pbp.navg 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\5.exe TrojanPSW.OnLineGames.odx.jrkz 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\6.exe TrojanPSW.OnLineGames.pbp.ovcn 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\7.exe Trojan.Yruuji.tmiq 木马还未处理
D:\download\windows.part1.rar>>system32\drivers\8.exe W32.Warezov.p 病毒还未处理
D:\download\windows.part1.rar>>system32\drivers\9.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>system32\gnolnait.dll TrojanPSW.GameOL.lqx.ishw.dll 木马还未处理
D:\download\windows.part1.rar>>system32\IGB_WD_1026.dll TrojanPSW.GamesOnline.kw.jmbu.dll 木马还未处理
D:\download\windows.part1.rar>>system32\IGB_WD_1026.exe W32.Warezov.p 病毒还未处理
D:\download\windows.part1.rar>>system32\ijiq.dll RootKit.GameHacktool.geo.lwpp.dll 木马还未处理
D:\download\windows.part1.rar>>system32\ijougiemnaw.dll Trojan.Gampass.nhtf.dll 木马还未处理
D:\download\windows.part1.rar>>system32\iqnauhc.dll RootKit.Mnless.gw.xvsp.dll 木马还未处理
D:\download\windows.part1.rar>>system32\LotusHlp.dll TrojanPSW.OnLineGames.prh.vmet.dll 木马还未处理
D:\download\windows.part1.rar>>system32\PTSShell.dll TrojanPSW.OnLineGames.nfy.tpqo.dll 木马还未处理
D:\download\windows.part1.rar>>system32\suchost.exe Adware.Agent.zqf.lfoo 广告程序还未处理
D:\download\windows.part1.rar>>system32\sychost.exe TrojanClicker.Agent.qm.jxlv 木马还未处理
D:\download\windows.part1.rar>>system32\utgnehz.dll TrojanPSW.ZhengTu.ymq.clmu.dll 木马还未处理
D:\download\windows.part1.rar>>system32\wbem\csrss.exe TrojanDownloader.Agent.gbh.zemh 木马还未处理
D:\download\windows.part1.rar>>system32\XSXCompress.dll Trojan.Pakes.bzp.yatu 木马还未处理
D:\download\windows.part1.rar>>temp\~FaB.tmp TrojanDownloader.Agent.ibh.syjf 木马还未处理
D:\download\windows.part1.rar>>temp\~FaC.tmp TrojanDownloader.Agent.ibh.syjf 木马还未处理
D:\download\windows.part1.rar>>Web\explor0er.exe Heuri.Suspicious.ERNM 启发式扫描还未处理
D:\download\windows.part1.rar>>cmdbcs.exe TrojanDownloader.Nurech.bd.bmqk 木马还未处理
D:\download\windows.part1.rar>>DbgHlp32.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>LotusHlp.exe W32.Viking.k 病毒还未处理
D:\download\windows.part1.rar>>PTSShell.exe W32.Viking.k 病毒还未处理
45

显示全部楼层 · 发表于 2008-1-30 16:57:52

47
Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\windows'
C:\Documents and Settings\Administrator\My Documents\windows\
  cmdbcs.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [INFO]    The file was deleted!
  DbgHlp32.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.PMG.5
   [INFO]    The file was deleted!
  LotusHlp.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prh.1
   [INFO]    The file was deleted!
  PTSShell.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NFY.4
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\My Documents\windows\Fonts\
  avzxomn.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLinGame.lus
   [INFO]    The file was deleted!
  avzxost.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLinGame.lus
   [INFO]    The file was deleted!
  gjcsdyc.dll
   [DETECTION] Is the Trojan horse TR/WuDisable.B
   [INFO]    The file was deleted!
  gjcsdzc.exe
   [DETECTION] Is the Trojan horse TR/WuDisable.B
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\My Documents\windows\system32\
  cifmon.exe
  cmdbcs.dll
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '48043c63.qua'!
  DbgHlp32.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.PMG.5
   [INFO]    The file was deleted!
  gnolnait.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.22
   [INFO]    The file was deleted!
  IGB_WD_1026.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pop
   [INFO]    The file was deleted!
  IGB_WD_1026.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pou.1
   [INFO]    The file was deleted!
  ijiq.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
   [INFO]    The file was deleted!
  ijougiemnaw.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
   [INFO]    The file was deleted!
  iqnauhc.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.23
   [INFO]    The file was deleted!
  LotusHlp.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prh.1
   [INFO]    The file was deleted!
  PTSShell.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NFY.4
   [INFO]    The file was deleted!
  shelrav.exe
  ssdt.sys
  suchost.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [INFO]    The file was moved to '48033c6b.qua'!
  sychost.exe
  url1.exe
  utgnehz.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.1
   [INFO]    The file was deleted!
  XSXCompress.dll
   [DETECTION] Is the Trojan horse TR/PSW.Nilage.bxo
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\My Documents\windows\system32\drivers\
  1.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.aav.1
   [INFO]    The file was deleted!
  10.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.nzv.1
   [INFO]    The file was deleted!
  11.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
   [INFO]    The file was deleted!
  12.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.PMG.5
   [INFO]    The file was deleted!
  13.exe
   [DETECTION] Is the Trojan horse TR/WuDisable.B
   [INFO]    The file was deleted!
  14.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.omf
   [INFO]    The file was deleted!
  15.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.1
   [INFO]    The file was deleted!
  16.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
   [INFO]    The file was deleted!
  17.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [INFO]    The file was deleted!
  18.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.prh.1
   [INFO]    The file was deleted!
  19.exe
   [DETECTION] Is the Trojan horse TR/PSW.QQpass.ase
   [INFO]    The file was deleted!
  2.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pcn.3
   [INFO]    The file was deleted!
  21.exe
  22.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [INFO]    The file was moved to '47ce3c28.qua'!
  4.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.22
   [INFO]    The file was deleted!
  5.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLinGame.lus
   [INFO]    The file was deleted!
  6.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pmi.23
   [INFO]    The file was deleted!
  7.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
   [INFO]    The file was deleted!
  8.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.pou.1
   [INFO]    The file was deleted!
  9.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.NFY.4
   [INFO]    The file was deleted!
  puid.sys
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\My Documents\windows\system32\wbem\
  csrss.exe
   [DETECTION] Is the Trojan horse TR/Downloader.Gen
   [INFO]    The file was deleted!
C:\Documents and Settings\Administrator\My Documents\windows\temp\
  ~FaB.tmp
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '48013c3d.qua'!
  ~FaC.tmp
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '49a22156.qua'!
C:\Documents and Settings\Administrator\My Documents\windows\temp\IXP000.TMP\
  kavjs.exe
   [DETECTION] Is the Trojan horse TR/Qhost.LY.56
   [INFO]    The file was deleted!
  spec.fne
C:\Documents and Settings\Administrator\My Documents\windows\Web\
  explor0er.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [INFO]    The file was moved to '48103c6f.qua'!
  syst1m.exe
   [DETECTION] Is the Trojan horse TR/Qhost.LY.55
   [INFO]    The file was deleted!

End of the scan: 2008年1月30日  00:57
Used time: 00:05 min

The scan has been done completely.

   8 Scanning directories
   54 Files were scanned
   41 viruses and/or unwanted programs were found
   6 Files were classified as suspicious:
   41 files were deleted
   0 files were repaired
   6 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   13 Files not concerned
   0 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-1-30 16:59:04

对象: system32 utgnehz.dll
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.ppj (KAV 引擎)
对象: system32/wbem csrss.exe
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-Downloader.Win32.Agent.gbh (KAV 引擎)
对象: system32 XSXCompress.dll
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan.Win32.Pakes.bzp (KAV 引擎)
对象: temp ~FaB.tmp
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-Downloader.Win32.Agent.ibh (KAV 引擎)
对象: temp ~FaC.tmp
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-Downloader.Win32.Agent.ibh (KAV 引擎)
对象: cmdbcs.exe
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.isb (KAV 引擎)
对象: DbgHlp32.exe
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan.Win32.Vaklik.gg (KAV 引擎)
对象: LotusHlp.exe
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.prg (KAV 引擎)
对象: PTSShell.exe
在压缩档案里: D:\Documents\桌面\windows.part2.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.nfz (KAV 引擎)
对象: windows.part2.rar
路径: D:\Documents\桌面
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.ppj, Trojan-Downloader.Win32.Agent.gbh, Trojan.Win32.Pakes.bzp, Trojan-Downloader.Win32.Agent.ibh (2x), Trojan-PSW.Win32.OnLineGames.isb, Trojan.Win32.Vaklik.gg, Trojan-PSW.Win32.OnLineGames.prg, Trojan-PSW.Win32.OnLineGames.nfz (KAV 引擎)
对象: Fonts avzxomn.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.oiu (KAV 引擎)
对象: Fonts avzxost.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.odx (KAV 引擎)
对象: Fonts gjcsdyc.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.oec (KAV 引擎)
对象: Fonts gjcsdzc.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.oee (KAV 引擎)
对象: system32 DbgHlp32.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pmg (KAV 引擎)
对象: system32/drivers 1.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.ptd (KAV 引擎)
对象: system32/drivers 10.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.odb (KAV 引擎)
对象: system32/drivers 11.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pbp (KAV 引擎)
对象: system32/drivers 12.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan.Win32.Vaklik.gg (KAV 引擎)
对象: system32/drivers 13.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.oee (KAV 引擎)
对象: system32/drivers 14.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-Downloader.Win32.Zlob.gef (KAV 引擎)
对象: system32/drivers 15.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pbp (KAV 引擎)
对象: system32/drivers 16.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pry (KAV 引擎)
对象: system32/drivers 17.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.isb (KAV 引擎)
对象: system32/drivers 18.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.prg (KAV 引擎)
对象: system32/drivers 19.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.QQPass.asf (KAV 引擎)
对象: system32/drivers 2.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pcn (KAV 引擎)
对象: system32/drivers 4.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pbp (KAV 引擎)
对象: system32/drivers 5.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.odx (KAV 引擎)
对象: system32/drivers 6.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pbp (KAV 引擎)
对象: system32/drivers 7.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.prw (KAV 引擎)
对象: system32/drivers 8.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pou (KAV 引擎)
对象: system32/drivers 9.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.nfz (KAV 引擎)
对象: system32/drivers puid.sys
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-Downloader.Win32.Agent.ibk (KAV 引擎)
对象: system32 gnolnait.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pps (KAV 引擎)
对象: system32 IGB_WD_1026.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pop (KAV 引擎)
对象: system32 IGB_WD_1026.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.pou (KAV 引擎)
对象: system32 ijougiemnaw.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.prw (KAV 引擎)
对象: system32 iqnauhc.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.psx (KAV 引擎)
对象: system32 LotusHlp.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.prh (KAV 引擎)
对象: system32 PTSShell.dll
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.nfy (KAV 引擎)
对象: system32 shelrav.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-Clicker.Win32.Agent.qw (KAV 引擎)
对象: system32 sychost.exe
在压缩档案里: D:\Documents\桌面\windows.part1.rar
状态: 已发现病毒
病毒: Trojan-Clicker.Win32.Agent.qm (KAV 引擎)
对象: windows.part1.rar
路径: D:\Documents\桌面
状态: 已发现病毒
病毒: Trojan-PSW.Win32.OnLineGames.oiu, Trojan-PSW.Win32.OnLineGames.odx (2x), Trojan-PSW.Win32.OnLineGames.oec, Trojan-PSW.Win32.OnLineGames.oee (2x), Trojan-PSW.Win32.OnLineGames.pmg, Trojan-PSW.Win32.OnLineGames.ptd, Trojan-PSW.Win32.OnLineGames.odb, Trojan-PSW.Win32.OnLineGames.pbp (4x), Trojan.Win32.Vaklik.gg, Trojan-Downloader.Win32.Zlob.gef, Trojan-PSW.Win32.OnLineGames.pry, Trojan-PSW.Win32.OnLineGames.isb, Trojan-PSW.Win32.OnLineGames.prg, Trojan-PSW.Win32.QQPass.asf, Trojan-PSW.Win32.OnLineGames.pcn, Trojan-PSW.Win32.OnLineGames.prw (2x), Trojan-PSW.Win32.OnLineGames.pou (2x), Trojan-PSW.Win32.OnLineGames.nfz, Trojan-Downloader.Win32.Agent.ibk, Trojan-PSW.Win32.OnLineGames.pps, Trojan-PSW.Win32.OnLineGames.pop, Trojan-PSW.Win32.OnLineGames.psx, Trojan-PSW.Win32.OnLineGames.prh, Trojan-PSW.Win32.OnLineGames.nfy, Trojan-Clicker.Win32.Agent.qw, Trojan-Clicker.Win32.Agent.qm (KAV 引擎)
分析完成: 2008-1-30 16:58
已扫描 2 个文件
已发现 2 个染毒文件
发现 0 个可疑文件

显示全部楼层 · 发表于 2008-1-30 17:03:08

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.GameOL.lhw
病毒： Trojan.PSW.Win32.GameOL.lhu
病毒： AdWare.Win32.Agent.zqf
病毒： Trojan.PSW.Win32.QQGame.GEN
病毒： Trojan.PSW.Win32.QQGame.GEN
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.QQHX.tvo
病毒： Trojan.PSW.Win32.QQHX.tvu
病毒： Trojan.PSW.Win32.QQGame.GEN
病毒： Trojan.PSW.Win32.GamesOnline.ir
病毒： Trojan.PSW.Win32.XYOnline.abc
病毒： Trojan.PSW.Win32.OnlineGames.GEN
病毒： Trojan.PSW.Win32.QQGame.GEN
病毒： Worm.Win32.PaBug.gs
病毒： Trojan.Win32.Undef.bxt
病毒： AdWare.Win32.Agent.zqf
病毒： AdWare.Win32.Agent.zqf
病毒： AdWare.Win32.Agent.zqf
病毒： Trojan.PSW.Win32.GameOL.lst
病毒： Trojan.PSW.Win32.GameOL.lrr
病毒： Trojan.PSW.Win32.GameOL.lca
病毒： Trojan.PSW.Win32.GameOL.lqx
病毒： Trojan.PSW.Win32.GamesOnline.kw
病毒： Trojan.PSW.Win32.GameOL.lsd
病毒： Trojan.Win32.GameOL.b
病毒： Trojan.PSW.Win32.ZhengTu.ymq
病毒： Trojan.Win32.Undef.bfe
病毒： Trojan.PSW.Win32.GameOL.lmf

用户来源：互联网

软件版本：20.29.20

51个

[病毒样本] 54

本帖子中包含更多资源

回复 3楼 jimmyleo 的帖子

浏览过的版块