53只

显示全部楼层 · 发表于 2008-3-9 16:16:17

C:\ABC\样本.rar:\zjydcx.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\aa1.exe - 特征码 'Trojan-Downloader.Win32.Zlob' 被发现
C:\ABC\样本.rar:\aa2.exe - 特征码 'Trojan-Downloader.Win32.Zlob' 被发现
C:\ABC\样本.rar:\aa3.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\aa4.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\Nv_Win3s.Jmp（损坏）
C:\ABC\样本.rar:\Ns_Sys55.Sys - 特征码 'Trojan-PWS.Win32.Nilage.bga' 被发现
C:\ABC\样本.rar:\aa5.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.ish' 被发现
C:\ABC\样本.rar:\aa6.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\aa7.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.ish' 被发现
C:\ABC\样本.rar:\aa8.exe - 特征码 'Win32.SuspectCrc' 被发现
C:\ABC\样本.rar:\aa9.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\aa10.exe - 特征码 'Virus.Win32.Agent.SOA' 被发现
C:\ABC\样本.rar:\aa11.exe - 特征码 'Trojan-PWS.Win32.Lmir.bpv' 被发现
C:\ABC\样本.rar:\aa12.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\aa13.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\aa14.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\aa15.exe - 特征码 'Trojan-PWS.Win32.Gamec.aa' 被发现
C:\ABC\样本.rar:\aa16.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\aa17.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\aa18.exe - 特征码 'Trojan-Dropper.Agent.TOQ' 被发现
C:\ABC\样本.rar:\aa19.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\aa20.exe - 特征码 'Virus.Win32.Agent.SOA' 被发现
C:\ABC\样本.rar:\aa21.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\aa22.exe - 特征码 'Trojan-Spy.Win32.Delf.PD' 被发现
C:\ABC\样本.rar:\aa23.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.tad' 被发现
C:\ABC\样本.rar:\aa24.exe - 特征码 'Virus.Trojan.Win32.BHO.bai' 被发现
C:\ABC\样本.rar:\aa25.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.ish' 被发现
C:\ABC\样本.rar:\aa26.exe - 特征码 'Trojan-Spy.Win32.Agent.hz' 被发现
C:\ABC\样本.rar:\608769MM.DLL - 特征码 'Trojan-PWS.Win32.OnLineGames.jcr' 被发现
C:\ABC\样本.rar:\AVPSrv.dll - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\cedafb.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\cmdbcs.dll - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\DbgHlp32.dlL - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\duygnef.dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\hfrdzx.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\hhrdxd.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\ijougiemnaw.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\jouantydj.dll - 特征码 'Trojan-PWS.Win32.Agent.jp' 被发现
C:\ABC\样本.rar:\kiluw.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\Kvsc3.dll - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\MsIMMs32.dll - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\msosdohs00.dll - 特征码 'Generic.PWS.Games.3' 被发现
C:\ABC\样本.rar:\msosmhfp00.dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\oubhpuywow.dll - 特征码 'Trojan-PWS.Win32.Agent.jp' 被发现
C:\ABC\样本.rar:\pahzij.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\r2.dll - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
C:\ABC\样本.rar:\rwdkwchzx.dll - 特征码 'Trojan-PWS.Win32.Agent.jp' 被发现
C:\ABC\样本.rar:\sgrefg.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar:\tsqc.dll - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
C:\ABC\样本.rar:\upxdnd.dll - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\WSockDrv32.dll - 特征码 'Trojan-PWS.OnlineGames.NSR' 被发现
C:\ABC\样本.rar:\wyrsdj.dll - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\样本.rar

显示全部楼层 · 发表于 2008-3-9 16:20:10

时间处理结果木马名称木马进程名木马文件创建者
2008-03-09 16:19:32 处理成功 Trojan-PSW.Win32.OLGames.ywd C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\WYRSDJ.DLL C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:32 处理成功 Trojan-PSW.Win32.OnLineGame.cqw C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\TSQC.DLL C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:32 处理成功 Trojan-PSW.Win32.OnLineGame.irj C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\MSOSMHFP00.DLL C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:32 处理成功 Trojan-PSW.Win32.Agent.fgk C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\MSOSDOHS00.DLL C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan-PSW.Win32.OnLineGame.hju C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA26.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan-PSW.Win32.OnLineGame.auk C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA25.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan.Win32.BHO.oc C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA24.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan-PSW.Win32.OnLineGame.eur C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA23.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan.Win32.Rootkit.bos C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA21.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan.Win32.BHO.nm C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA18.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:31 处理成功 Trojan-PSW.Win32.OnLineGame.hjv C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA12.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:30 处理成功 Trojan-PSW.Win32.OnLineGame.iue C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA10.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:30 处理成功 Trojan-PSW.Win32.OnLineGame.hik C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA9.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:30 处理成功 Trojan.Win32.BHO.oi C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA8.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:30 处理成功 Trojan-PSW.Win32.OnLineGame.hix C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA4.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE
2008-03-09 16:19:29 处理成功 Trojan-PSW.Win32.OnLineGame.hjw C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\VIR\AA1.EXE C:\PROGRAM FILES\WINRAR\WINRAR.EXE

显示全部楼层 · 发表于 2008-3-9 16:21:21

Begin scan in 'C:\Documents and Settings\haha\桌面\样本.rar'
C:\Documents and Settings\haha\桌面\样本.rar
  [0] Archive type: RAR
  --> zjydcx.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> aa1.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa2.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa3.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> aa4.exe
   [DETECTION] Is the Trojan horse TR/Onlinegames.rxt
  --> Ns_Sys55.Sys
   [DETECTION] Is the Trojan horse TR/PSW.Steal.44653
  --> aa5.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.XO
  --> aa6.exe
   [DETECTION] Is the Trojan horse TR/Onlinegames.NSR
  --> aa7.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.XO
  --> aa8.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa9.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> aa10.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa11.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> aa12.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> aa13.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.rxqe
  --> aa14.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> aa15.exe
   [DETECTION] Is the Trojan horse TR/PSW.Steal.44653
  --> aa16.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> aa17.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLin.8918.A
  --> aa18.exe
   [DETECTION] Is the Trojan horse TR/BHO.azw.21
  --> aa19.exe
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> aa20.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa21.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> aa22.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLin.8918.A
  --> aa23.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa24.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> aa25.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.XO
  --> aa26.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 608769MM.DLL
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> AVPSrv.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> cedafb.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> cmdbcs.dll
   [DETECTION] Is the Trojan horse TR/Onlinegames.NSR
  --> DbgHlp32.dlL
   [DETECTION] Contains suspicious code HEUR/Malware
  --> duygnef.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLin.8918.A
  --> hfrdzx.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> hhrdxd.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> ijougiemnaw.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> jouantydj.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> kiluw.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> Kvsc3.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> MsIMMs32.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> msosdohs00.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> msosmhfp00.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> oubhpuywow.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> pahzij.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.rxqe
  --> r2.dll
   [DETECTION] Is the Trojan horse TR/Rootkit.Gen
  --> rwdkwchzx.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
  --> sgrefg.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
  --> tsqc.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLin.8918.A
  --> upxdnd.dll
   [DETECTION] Is the Trojan horse TR/Onlinegames.rxt
  --> WSockDrv32.dll
   [DETECTION] Contains suspicious code HEUR/Malware
  --> wyrsdj.dll
   [DETECTION] Is the Trojan horse TR/Crypt.XDR.Gen
   [INFO]    A backup was created as '48020546.qua'  ( QUARANTINE )

End of the scan: 2008年3月9日  16:21
Used time: 00:15 min

The scan has been done completely.

   0 Scanning directories
   55 Files were scanned
   38 viruses and/or unwanted programs were found
   14 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   1 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   17 Files not concerned
   1 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-3-9 16:23:46

C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » zjydcx.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa1.exe - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa2.exe - probably a variant of Win32/PSW.OnLineGames.NMQ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa3.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa4.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » Ns_Sys55.Sys - a variant of Win32/PSW.QQPass.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa5.exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa6.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa7.exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa8.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa9.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa10.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa11.exe - probably a variant of Win32/PSW.WOW.WU trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa12.exe - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa13.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa14.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa15.exe - a variant of Win32/PSW.QQPass.NCZ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa16.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa17.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa18.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa19.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa20.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa21.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa22.exe - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa23.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa24.exe - a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa25.exe - a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » aa26.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » 608769MM.DLL - a variant of Win32/PSW.Legendmir.NFF trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » AVPSrv.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » cedafb.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » cmdbcs.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » DbgHlp32.dlL - probably a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » duygnef.dll - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » hfrdzx.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » hhrdxd.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » ijougiemnaw.dll - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » jouantydj.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » kiluw.dll - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » Kvsc3.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » MsIMMs32.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » msosdohs00.dll - a variant of Win32/PSW.OnLineGames.NMQ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » msosmhfp00.dll - a variant of Win32/PSW.OnLineGames.NMQ trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » oubhpuywow.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » pahzij.dll - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » r2.dll - a variant of Win32/PSW.OnLineGames.NLH trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » rwdkwchzx.dll - probably a variant of Win32/PSW.OnLineGames.GJV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » sgrefg.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » tsqc.dll - a variant of Win32/PSW.OnLineGames.MUG trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » upxdnd.dll - probably a variant of Win32/PSW.OnLineGames.NFL trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » WSockDrv32.dll - a variant of Win32/PSW.OnLineGames.HCV trojan
C:\Documents and Settings\Don johnson\桌面\样本.rar » RAR » wyrsdj.dll - probably a variant of Win32/PSW.OnLineGames.NML trojan

显示全部楼层 · 发表于 2008-3-9 16:25:06

Nv_Win3s.Jmp损坏了？？？

显示全部楼层 · 发表于 2008-3-9 16:26:39

费尔;50个

显示全部楼层 · 发表于 2008-3-9 16:34:24

41
deleted: Trojan program Trojan.Win32.Agent.gzv File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/zjydcx.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tde File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa1.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tde File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa2.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tea File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa4.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.QQPass.bcg File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/Ns_Sys55.Sys
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rkf File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa5.exe
deleted: Trojan program Trojan.Win32.Vaklik.qc File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa6.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rkf File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa7.exe
deleted: Trojan program Trojan.Win32.BHO.bai File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa8.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.teb File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa9.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tad File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa10.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.Lmir.bpv File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa11.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tgb File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa12.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rxps File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa13.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tct File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa14.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.QQPass.bbs File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa15.exe//UPX
deleted: Trojan program Trojan.Win32.KillAV.pg File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa16.exe//UPack//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sem File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa17.exe//PE_Patch//UPack
deleted: Trojan program Trojan.Win32.BHO.azw File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa18.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tct File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa19.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tik File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa20.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tim File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa21.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sem File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa22.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tad File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa23.exe//PE_Patch//UPack
deleted: Trojan program Trojan.Win32.BHO.bai File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa24.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rkf File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa25.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tcr File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/aa26.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tdd File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/608769MM.DLL
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tcq File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/AVPSrv.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tho File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/cedafb.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rxpg File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/duygnef.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tad File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/hfrdzx.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.svi File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/hhrdxd.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.Nilage.ccw File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/jouantydj.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tim File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/Kvsc3.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tip File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/MsIMMs32.dll
deleted: Trojan program Trojan-Spy.Win32.Agent.blw File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/oubhpuywow.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sus File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/pahzij.dll//UPack
detected: virus Heur.Trojan.Generic (modification) File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/r2.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rxpr File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/rwdkwchzx.dll//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.tgb File: C:\Documents and Settings\Administrator\×ÀÃæ\Ñù±¾.rar/WSockDrv32.dll

[ 本帖最后由 dark1109 于 2008-3-9 16:35 编辑 ]

显示全部楼层 · 发表于 2008-3-9 17:52:09

费尔杀漏3个~上报！

显示全部楼层 · 发表于 2008-3-9 18:00:04

nod 52个

显示全部楼层 · 发表于 2008-3-9 19:13:04

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.PSW.Win32.GameOL.mgh
病毒： Trojan.PSW.Win32.GamesOnline.qc
病毒： Trojan.PSW.Win32.GameOL.mjf
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Worm.Win32.PaBug.gew
病毒： Trojan.PSW.Win32.SunOnline.mr
病毒： Trojan.PSW.Win32.SunOnline.mq
病毒： Trojan.PSW.Win32.GamesOnline.pt
病毒： Trojan.PSW.Win32.GamesOnline.fz
病毒： Trojan.PSW.Win32.GameOL.min
病毒： Worm.Win32.PaBug.gew
病毒： Trojan.PSW.Win32.GamesOnline.oz
病毒： Trojan.PSW.Win32.GamesOnline.pc
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.GamesOnline.pr
病毒： Trojan.PSW.Win32.LMir.yzr
病毒： Trojan.PSW.Win32.SO2Game.n
病毒： Trojan.PSW.Win32.SO2Game.k
病毒： Trojan.PSW.Win32.GameOL.mge
病毒： Trojan.PSW.Win32.SO2Game.o
病毒： Trojan.PSW.Win32.SunOnline.mr
病毒： Trojan.PSW.Win32.SunOnline.mq
病毒： Trojan.PSW.Win32.SO2Game.i
病毒： Trojan.PSW.Win32.SO2Game.m

用户来源：互联网

软件版本：20.34.62

瑞星43个
诺顿27个

[病毒样本] 53只

本帖子中包含更多资源

52

本帖子中包含更多资源