32个

显示全部楼层 · 发表于 2008-4-19 16:10:43

ESET,30个C:\Documents and Settings\shi\桌面\样本.rar > RAR > OnlO0r.dll - Win32/PSW.OnLineGames.NBR 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > mfchlp32.dll - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > msosmhfp00.dll - 可能是 Win32/PSW.OnLineGames.NMQ 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > sfnqpewv.dll - Win32/PSW.OnLineGames.HCV 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 1.exe - Win32/PSW.OnLineGames.NFN 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 21.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 22.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 23.exe - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 24.exe - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 25.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 27.exe - 可能是 Win32/PSW.OnLineGames.NMQ 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 29.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 30.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 31.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 32.exe - 可能是 Win32/PSW.OnLineGames.NMQ 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 33.exe - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 36.exe - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > 38.exe - Win32/PSW.QQPass.NCZ 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > DbgHlp32.dlL - Win32/PSW.OnLineGames.NVW 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > huifitc.dll - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > M1.exe - Win32/PSW.OnLineGames.NBR 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > MsIMMs32.dll - Win32/PSW.OnLineGames.NVW 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > msosmnsf00.dll - Win32/PSW.OnLineGames.NVW 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > Nt_Sys32.Sys - Win32/PSW.QQPass.NCZ 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > oKoK.exe - Win32/Spy.Agent.NEN 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > PTSShell.dll - Win32/PSW.OnLineGames.NVW 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > svchost.exe - Win32/Spy.Agent.NEN 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > ticisms.dll - Win32/PSW.OnLineGames.NVW 特洛伊木马的变种
C:\Documents and Settings\shi\桌面\样本.rar > RAR > upxdnd.dll - Win32/PSW.OnLineGames.NVW 特洛伊木马
C:\Documents and Settings\shi\桌面\样本.rar > RAR > WSockDrv32.dll - Win32/PSW.OnLineGames.NVW 特洛伊木马的变种

显示全部楼层 · 发表于 2008-4-19 16:19:17

TAV 12个

"16:16" "手动扫描" "文件" "Mal_OLGM-6" "1.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "Mal_MLWR-1" "21.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.RKQ" "24.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.AK" "29.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.NU" "32.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.RKQ" "huifitc.dll (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TROJ_DIALER.BN" "M1.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.AK" "MsIMMs32.dll (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.NU" "msosmnsf00.dll (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TROJ_DROPPER.AHR" "oKoK.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "TSPY_ONLINEG.BOM" "svchost.exe (C:\Documents and Settings\****\桌面\��.rar)" "隔离成功" ""
"16:16" "手动扫描" "文件" "---" "C:\Documents and Settings\****\桌面\��.rar" "隔离成功" ""

显示全部楼层 · 发表于 2008-4-19 16:34:03

小红伞杀了31个出来,只有一个PASS

[ 本帖最后由梦想奇迹于 2008-4-19 16:35 编辑 ]

显示全部楼层 · 发表于 2008-4-19 16:37:15

小红伞和ESET真强

显示全部楼层 · 发表于 2008-4-19 18:18:45

卡巴8.0.0.343扫出28个

显示全部楼层 · 发表于 2008-4-19 19:55:36

detected: Trojan program Trojan-PSW.Win32.OnLineGames.abeo URL: http://bbs.kafan.cn/attachment.php?aid=244843//AVPSrv.dll
detected: Trojan program Trojan-PSW.Win32.Delf.bge URL: http://bbs.kafan.cn/attachment.php?aid=244813//OnlO0r.dll
deleted: Trojan program Trojan-PSW.Win32.Delf.bge File: F:\Download\ï¿½ï¿½.rar/OnlO0r.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abdt File: F:\Download\ï¿½ï¿½.rar/sfnqpewv.dll
deleted: Trojan program Trojan.Win32.Vaklik.ada File: F:\Download\ï¿½ï¿½.rar/1.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abck File: F:\Download\ï¿½ï¿½.rar/21.exe//FSG
deleted: virus Heur.Trojan.Generic (modification) File: F:\Download\ï¿½ï¿½.rar/22.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aayn File: F:\Download\ï¿½ï¿½.rar/23.exe//FSG
deleted: virus Heur.Trojan.Generic (modification) File: F:\Download\ï¿½ï¿½.rar/24.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abah File: F:\Download\ï¿½ï¿½.rar/25.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abbh File: F:\Download\ï¿½ï¿½.rar/27.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aajp File: F:\Download\ï¿½ï¿½.rar/29.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aant File: F:\Download\ï¿½ï¿½.rar/30.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abcr File: F:\Download\ï¿½ï¿½.rar/31.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.zkz File: F:\Download\ï¿½ï¿½.rar/32.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abfn File: F:\Download\ï¿½ï¿½.rar/33.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abas File: F:\Download\ï¿½ï¿½.rar/36.exe//FSG
deleted: Trojan program Trojan-PSW.Win32.QQPass.bri File: F:\Download\ï¿½ï¿½.rar/38.exe//#
deleted: Trojan program Trojan-Downloader.Win32.Agent.mzm File: F:\Download\ï¿½ï¿½.rar/4.exe//PE_Patch//UPack//#
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aayn File: F:\Download\ï¿½ï¿½.rar/DbgHlp32.dlL
deleted: Trojan program Trojan-PSW.Win32.Delf.bfu File: F:\Download\ï¿½ï¿½.rar/M1.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aajo File: F:\Download\ï¿½ï¿½.rar/MsIMMs32.dll
deleted: Trojan program Trojan-PSW.Win32.QQPass.bri File: F:\Download\ï¿½ï¿½.rar/Nt_Sys32.Sys
deleted: Trojan program Trojan-Spy.Win32.Agent.bba File: F:\Download\ï¿½ï¿½.rar/oKoK.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.abcg File: F:\Download\ï¿½ï¿½.rar/PTSShell.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.nia File: F:\Download\ï¿½ï¿½.rar/svchost.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aant File: F:\Download\ï¿½ï¿½.rar/upxdnd.dll

[ 本帖最后由 aribeth199 于 2008-4-19 19:56 编辑 ]

显示全部楼层 · 发表于 2008-4-19 22:35:01

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.OnlineGames.dfd
病毒： Trojan.PSW.Win32.GameOL.mvg
病毒： Trojan.PSW.Win32.QQSG.dm
病毒： Suspicious.Trojan.Win32.Thruav.a
病毒： Trojan.PSW.Win32.GameOL.nbd
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： RootKit.Win32.FileHider.d
病毒： RootKit.Win32.FileHider.d
病毒： Packer.Win32.Upack.a
病毒： Trojan.PSW.Win32.GameOL.mzh
病毒： Trojan.Win32.Undef.bbw
病毒： Trojan.PSW.Win32.OnlineGames.dfd
病毒： Dropper.Win32.Agent.zce
病毒： Trojan.Win32.Undef.bge

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.40.52

显示全部楼层 · 发表于 2008-4-20 12:13:06

信息 2008-04-20  12:12:56 您此次查毒清除了21个病毒
信息 2008-04-20  12:12:56 您此次查毒共查出21个病毒以及危险代码
信息 2008-04-20  12:12:56 您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件49个
信息 2008-04-20  12:12:56 金山毒霸主程序查毒过程结束，查毒方式：命令行查毒

[病毒样本] 32个

本帖子中包含更多资源

本帖子中包含更多资源

66/25

浏览过的版块