[病毒样本] 41

显示全部楼层 · 发表于 2008-4-4 00:55:57

f-secure found 40 threats

显示全部楼层 · 发表于 2008-4-4 02:45:48

大蜘蛛36个

显示全部楼层 · 发表于 2008-4-4 15:49:50

信息 2008-04-04  15:47:54 您此次查毒清除了28个病毒
信息 2008-04-04  15:47:54 您此次查毒共查出28个病毒以及危险代码
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\ss.exe2 Win32.PSWTroj.OnLineGames.102400 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\windows.scr-autorun.inf Win32.Troj.InfBot.f.97 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\Windows.scr3 Win32.PSWTroj.Delf.39194 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\8.exe2 Win32.PSWTroj.OnLineGames.wz.36864 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\7.exe2 Win32.PSWTroj.OnLineGames.40960 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\6.exe2 Win32.PSWTroj.OnLineGames.ux.53248 清除成功
病毒 2008-04-04  15:47:53\桌面\41.rar\Virus - exe .rar\5.exe2 Win32.PSWTroj.OnLineGames.be.49152 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\4.exe2 Win32.PSWTroj.OnLineGames.40960 清除成功
病毒 2008-04-04  15:47:53 \桌面\41.rar\Virus - exe .rar\3.exe2 Win32.PSWTroj.OnLineGames.40960 清除成功
病毒 2008-04-04  15:47:52 \桌面\41.rar\Virus - exe .rar\2.exe2 Win32.PSWTroj.OnLineGames.53248 清除成功
病毒 2008-04-04  15:47:52 \桌面\41.rar\Virus - exe .rar\1.exe2 Win32.PSWTroj.OnLineGames.40960 清除成功
病毒 2008-04-04  15:47:52 \桌面\41.rar\Virus - exe .rar\22.exe2 Win32.TrojDownloader.Agent.110080 清除成功
病毒 2008-04-04  15:47:52\桌面\41.rar\Virus - exe .rar\21.exe2 Win32.Troj.Vaklik.bk.40960 清除成功
病毒 2008-04-04  15:47:51\桌面\41.rar\Virus - exe .rar\19.exe2 Win32.Troj.Vaklik.ag.36864 清除成功
病毒 2008-04-04  15:47:51\桌面\41.rar\Virus - exe .rar\18.exe2 Win32.Troj.OnlineGamesT.ck.49152 清除成功
病毒 2008-04-04  15:47:51 \桌面\41.rar\Virus - exe .rar\17.exe2 Win32.PSWTroj.OnLineGames.36864 清除成功
病毒 2008-04-04  15:47:51 桌面\41.rar\Virus - exe .rar\16.exe2 Win32.PSWTroj.OnLineGames.vy.10752 清除成功
病毒 2008-04-04  15:47:51 \桌面\41.rar\Virus - exe .rar\13.exe2 Win32.PSWTroj.OnLineGames.45056 清除成功
病毒 2008-04-04  15:47:50\桌面\41.rar\Virus - exe .rar\12.exe2 Win32.Troj.OnlineGamesT.ck.49152 清除成功
病毒 2008-04-04  15:47:50 strator\桌面\41.rar\Virus - exe .rar\9.exe2 Win32.PSWTroj.OnLineGames.vy.49152 清除成功
病毒 2008-04-04  15:47:50 \桌面\41.rar\OnlO0r.dll.rar\OnlO0r.dll Win32.PSWTroj.OnLineGames.34851 清除成功
病毒 2008-04-04  15:47:50 桌面\41.rar\OnlO0r.bak.rar\OnlO0r.bak Win32.PSWTroj.Delf.39194 清除成功
病毒 2008-04-04  15:47:50 \桌面\41.rar\qqdoor0.dll.rar\qqdoor0.dll Win32.Troj.OnlineGamesT.nf.14848 清除成功
病毒 2008-04-04  15:47:50 \桌面\41.rar\qhdoor0.dll.rar\qhdoor0.dll Win32.PSWTroj.OnLineGames.15872 清除成功
病毒 2008-04-04  15:47:50 \桌面\41.rar\mndoor0.dll.rar\mndoor0.dll Win32.Troj.OnLineGames.ae.124928 清除成功
病毒 2008-04-04  15:47:49 \桌面\41.rar\svchost.exe.rar\svchost.exe2 Win32.Troj.Agent.49152 清除成功
病毒 2008-04-04  15:47:49 \桌面\41.rar\fjOs0r.dll.rar\fjOs0r.dll Win32.PSWTroj.OnLineGames.34851 清除成功
病毒 2008-04-04  15:47:49 \桌面\41.rar\Windows.scr.rar\Windows.scr1 Win32.PSWTroj.Delf.39194 清除成功

显示全部楼层 · 发表于 2008-4-4 15:59:10

D:\Virus\41.rar=]Virus - exe .rar=]22.exe2 Dropped:Backdoor.Hondir.A Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]qqdoor0.dll.rar=]qqdoor0.dll Generic.Malware.SPWS.2C4FE465 Disinfect Failed
D:\Virus\41.rar=]Virus - exe .rar=]21.exe2 Generic.Onlinegames.3.3483F38B Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]20.exe2 Generic.Onlinegames.3.3A91AE6A Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]6.exe2 Generic.Onlinegames.3.3DCF971D Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]5.exe2 Generic.Onlinegames.3.3EFEFF5D Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]16.exe2 Generic.Onlinegames.3.5281F218 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]4.exe2 Generic.Onlinegames.3.5BA92147 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]14.exe4 Generic.Onlinegames.3.7256CE17 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]19.exe2 Generic.Onlinegames.3.79BF0017 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]12.exe2 Generic.Onlinegames.3.80EAFEB7 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]13.exe2 Generic.Onlinegames.3.888406A1 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]2.exe2 Generic.Onlinegames.3.9C7C2F8A Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]qhdoor0.dll.rar=]qhdoor0.dll Generic.Onlinegames.3.AF8D0F52 Disinfect Failed
D:\Virus\41.rar=]Virus - exe .rar=]17.exe2 Generic.Onlinegames.3.C71FE5B8 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]10.exe2 Generic.Onlinegames.3.D3FFADFC Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]15.exe2 Generic.Onlinegames.3.ED8A21C1 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]9.exe2 Generic.Onlinegames.3.F9CADC61 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]1.exe2 Generic.PWS.Games.1.C7F91566 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]8.exe2 Generic.PWS.Games.2.31B76723 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]7.exe2 Generic.PWS.Games.2.3C6D2EE5 Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]18.exe2 Generic.PWS.Games.2.55C82CFF Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]Virus - exe .rar=]3.exe2 Generic.PWS.Games.2.936DEF4F Disinfect Failed (file was in an archive)
D:\Virus\41.rar=]svchost.exe.rar=]svchost.exe2 Trojan.Generic.122856 Delete Failed (file was in an archive)
D:\Virus\41.rar=]Windows.scr.rar=]Windows.scr1 Trojan.PWS.Delf.IFD Disinfect Failed
D:\Virus\41.rar=]fjOs0r.dll.rar=]fjOs0r.dll Trojan.PWS.Delf.IFD Disinfect Failed
D:\Virus\41.rar=]OnlO0r.bak.rar=]OnlO0r.bak Trojan.PWS.Delf.IFD Disinfect Failed
D:\Virus\41.rar=]OnlO0r.dll.rar=]OnlO0r.dll Trojan.PWS.Delf.IFD Disinfect Failed
D:\Virus\41.rar=]Virus - exe .rar=]ss.exe2 Trojan.PWS.Delf.IFD Disinfect Failed
D:\Virus\41.rar=]Virus - exe .rar=]Windows.scr3 Trojan.PWS.Delf.IHF Delete Failed (file was in an archive)

显示全部楼层 · 发表于 2008-4-4 21:14:24

Start of the scan: 2008年4月4日  21:13

Starting the file scan:

Begin scan in 'H:\样本'
H:\样本\41.rar
  [0] Archive type: RAR
--> Windows.scr.rar
   [1] Archive type: RAR
   --> Windows.scr1
      [DETECTION] Is the Trojan horse TR/Autorun.BK
--> fjOs0r.dll.rar
   [1] Archive type: RAR
   --> fjOs0r.dll
      [DETECTION] Is the Trojan horse TR/PSW.Delf.all
--> svchost.exe.rar
   [1] Archive type: RAR
   --> svchost.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.nia
--> mndoor0.dll.rar
   [1] Archive type: RAR
   --> mndoor0.dll
      [DETECTION] Is the Trojan horse TR/Click.121856
--> qhdoor0.dll.rar
   [1] Archive type: RAR
   --> qhdoor0.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.AAB
--> qqdoor0.dll.rar
   [1] Archive type: RAR
   --> qqdoor0.dll
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.NFO
--> 1.js.rar
   [1] Archive type: RAR
   --> 1.js
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Spark
--> ms.htm.rar
   [1] Archive type: RAR
   --> ms.htm2
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Small.EH
--> OnlO0r.bak.rar
   [1] Archive type: RAR
   --> OnlO0r.bak
      [DETECTION] Is the Trojan horse TR/Autorun.BK
--> OnlO0r.dll.rar
   [1] Archive type: RAR
   --> OnlO0r.dll
      [DETECTION] Is the Trojan horse TR/PSW.Delf.all
--> Virus - exe .rar
   [1] Archive type: RAR
   --> 9.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.emg
   --> 10.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kzf
   --> 12.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.lah
   --> 13.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.lai
   --> 14.exe4
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.laj
   --> 15.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kzj
   --> 16.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.lal
   --> 17.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.lam
   --> 18.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.NFO
   --> 19.exe2
      [DETECTION] Is the Trojan horse TR/Onlinegames.9216
   --> 20.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kyz
   --> 21.exe2
      [DETECTION] Is the Trojan horse TR/Onlinegames.12800.1
   --> 22.exe2
      [DETECTION] Is the Trojan horse TR/Crypt.NSPM.Gen
   --> 1.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kze
   --> 2.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.emj
   --> 3.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.lao
   --> 4.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kyx
   --> 5.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.kzc
   --> 6.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.emi
   --> 7.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnLineGa.emc
   --> 8.exe2
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.laq
   --> Windows.scr3
      [DETECTION] Is the Trojan horse TR/Autorun.BK
   --> ss.exe2
      [DETECTION] Is the Trojan horse TR/Autorun.BK
--> virus - gif.rar
   [1] Archive type: RAR
   --> lz.gif2
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Agent.amw
   --> bf.gif2
      [DETECTION] Contains detection pattern of the exploits EXP/HTML.IframeBof.H
   --> real.gif1
      [DETECTION] Contains detection pattern of the exploits EXP/RealPlay.U
   --> xl.gif5
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Agent.tao
   --> baidu.gif2
      [DETECTION] Contains detection pattern of the exploits EXP/BaiduBar.B
   --> ms.gif2
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Small.EH
   [INFO]    The file was deleted!

End of the scan: 2008年4月4日  21:13
Used time: 00:19 min

The scan has been done completely.

   1 Scanning directories
   55 Files were scanned
   39 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   16 Files not concerned
   14 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2008-4-5 02:31:33

Scan Log
Version of virus signature database: 3003 (20080404)
Date: 2008/4/5 Time: 2:31:17
Scanned disks, folders and files: G:\v\41.rar
G:\v\41.rar » RAR » Windows.scr.rar » RAR » Windows.scr1 - Win32/PSW.OnLineGames.NBR trojan - was a part of the deleted object
G:\v\41.rar » RAR » fjOs0r.dll.rar » RAR » fjOs0r.dll - Win32/PSW.OnLineGames.NBR trojan - was a part of the deleted object
G:\v\41.rar » RAR » svchost.exe.rar » RAR » svchost.exe2 - Win32/Spy.Agent.NEN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Setup.exe.rar » RAR » Setup.exe2 - is OK
G:\v\41.rar » RAR » mndoor0.dll.rar » RAR » mndoor0.dll - a variant of Win32/PSW.Legendmir.NFP trojan - was a part of the deleted object
G:\v\41.rar » RAR » qhdoor0.dll.rar » RAR » qhdoor0.dll - Win32/PSW.OnLineGames.NFO trojan - was a part of the deleted object
G:\v\41.rar » RAR » qqdoor0.dll.rar » RAR » qqdoor0.dll - Win32/PSW.OnLineGames.NFO trojan - was a part of the deleted object
G:\v\41.rar » RAR » 1.js.rar » RAR » 1.js - is OK
G:\v\41.rar » RAR » ms.htm.rar » RAR » ms.htm2 - is OK
G:\v\41.rar » RAR » OnlO0r.bak.rar » RAR » OnlO0r.bak - Win32/PSW.OnLineGames.NBR trojan - was a part of the deleted object
G:\v\41.rar » RAR » OnlO0r.dll.rar » RAR » OnlO0r.dll - Win32/PSW.OnLineGames.NBR trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 9.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 10.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 12.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 13.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 14.exe4 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 15.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 16.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 17.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 18.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 19.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 20.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 21.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 22.exe2 - probably unknown NewHeur_PE virus [7] - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 1.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 2.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 3.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 4.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 5.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 6.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 7.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » 8.exe2 - a variant of Win32/PSW.OnLineGames.NFN trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » Windows.scr3 - probably a variant of Win32/PSW.OnLineGames.NBR trojan - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » windows.scr-autorun.inf - INF/Autorun virus - was a part of the deleted object
G:\v\41.rar » RAR » Virus - exe .rar » RAR » ss.exe2 - a variant of Win32/PSW.OnLineGames.NBR trojan - was a part of the deleted object
G:\v\41.rar » RAR » virus - gif.rar » RAR » lz.gif2 - probably a variant of HTML/Exploit.Agent trojan - was a part of the deleted object
G:\v\41.rar » RAR » virus - gif.rar » RAR » bf.gif2 - probably a variant of HTML/Exploit.Agent trojan - was a part of the deleted object
G:\v\41.rar » RAR » virus - gif.rar » RAR » real.gif1 - probably a variant of JS/TrojanDownloader.Small trojan - was a part of the deleted object
G:\v\41.rar » RAR » virus - gif.rar » RAR » xl.gif5 - probably a variant of JS/TrojanDownloader.Small trojan - was a part of the deleted object
G:\v\41.rar » RAR » virus - gif.rar » RAR » baidu.gif2 - probably a variant of JS/TrojanDownloader.Small trojan - was a part of the deleted object
G:\v\41.rar » RAR » virus - gif.rar » RAR » ms.gif2 - is OK
Number of scanned objects: 52
Number of threats found: 37
Number of cleaned objects: 37
Time of completion: 2:31:19 Total scanning time: 2 sec (00:00:02)

Notes:
[7] Object is probably infected with an unknown virus.

显示全部楼层 · 发表于 2008-4-8 22:17:01

Dr.Web 4.44 查出 36个
G DATA AntiVirus 2008 查出40个
小红伞 P版查出30个

[病毒样本] 41

BD 30