63个

显示全部楼层 · 发表于 2008-4-26 13:05:05

IK
64 Files scanned
(1 Archiv with 63 files)
51 Signatures found
8 Suspect code-parts found
Used time: 0:00.984

显示全部楼层 · 发表于 2008-4-26 13:15:57

瑞星63

显示全部楼层 · 发表于 2008-4-26 13:45:27

在下载的时候就被小A劫拦了
（avast不错啊！）

显示全部楼层 · 发表于 2008-4-26 15:07:54

[扫描路径] C:\Documents and Settings\zh\桌面\新建文件夹
C:\Documents and Settings\zh\桌面\新建文件夹\WSockDrv32.dll 已被病毒感染：  Trojan.PWS.Wsgame.4863
C:\Documents and Settings\zh\桌面\新建文件夹\yuiabct.dll 已被病毒感染：  Trojan.PWS.Wsgame.4828
C:\Documents and Settings\zh\桌面\新建文件夹\svchost.exe - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\Nt_Sys32.Sys 已被病毒感染：  Trojan.PWS.Lineage.origin
>>>C:\Documents and Settings\zh\桌面\新建文件夹\1.exe\data001 - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\1.exe\data002 - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\1.exe - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\2.exe 已被病毒感染：  Trojan.PWS.Wsgame.4860
>>C:\Documents and Settings\zh\桌面\新建文件夹\3.exe 已被病毒感染：  Trojan.PWS.Wsgame.origin
>C:\Documents and Settings\zh\桌面\新建文件夹\4.exe 已被病毒感染：  Trojan.PWS.Wsgame.4418
>C:\Documents and Settings\zh\桌面\新建文件夹\bincdwsa.exe 已被病毒感染：  Trojan.PWS.Gamania.9726
>>C:\Documents and Settings\zh\桌面\新建文件夹\dbhlp32.exe 已被病毒感染：  Trojan.PWS.Wsgame.4604
>C:\Documents and Settings\zh\桌面\新建文件夹\dionpis.exe 已被病毒感染：  Trojan.PWS.Wsgame.4859
>C:\Documents and Settings\zh\桌面\新建文件夹\dndsioc.exe 已被病毒感染：  Trojan.PWS.Gamania.9727
>C:\Documents and Settings\zh\桌面\新建文件夹\fiosectc.exe 已被病毒感染：  Trojan.PWS.Gamania.9728
>C:\Documents and Settings\zh\桌面\新建文件夹\fmbiost.exe 已被病毒感染：  Trojan.PWS.Gamania.9729
>C:\Documents and Settings\zh\桌面\新建文件夹\fmsbbqi.exe 已被病毒感染：  Trojan.PWS.Gamania.9730
>C:\Documents and Settings\zh\桌面\新建文件夹\fmsjhif.exe 已被病毒感染：  Trojan.PWS.Gamania.9731
>C:\Documents and Settings\zh\桌面\新建文件夹\hefcndy.exe 已被病毒感染：  Trojan.PWS.Gamania.9729
>C:\Documents and Settings\zh\桌面\新建文件夹\huifitc.exe 已被病毒感染：  Trojan.PWS.Gamania.9732
>C:\Documents and Settings\zh\桌面\新建文件夹\jaqfsvhx.exe 已被病毒感染：  Trojan.PWS.Gamania.9737
>C:\Documents and Settings\zh\桌面\新建文件夹\ptshell.exe 已被病毒感染：  Trojan.PWS.Gamania.9733
>C:\Documents and Settings\zh\桌面\新建文件夹\tciocp32.exe 已被病毒感染：  Trojan.PWS.Gamania.9734
>C:\Documents and Settings\zh\桌面\新建文件夹\ticisms.exe 已被病毒感染：  Trojan.PWS.Gamania.9735
>C:\Documents and Settings\zh\桌面\新建文件夹\yuiabct.exe 已被病毒感染：  Trojan.PWS.Wsgame.4828
>>>C:\Documents and Settings\zh\桌面\新建文件夹\7.exe\data001 - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\7.exe\data002 - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\7.exe - 确定
>>C:\Documents and Settings\zh\桌面\新建文件夹\8.exe 已被病毒感染：  Trojan.PWS.Lineage.origin
>>>C:\Documents and Settings\zh\桌面\新建文件夹\9.exe 已被病毒感染：  Trojan.DownLoader.origin
>>>C:\Documents and Settings\zh\桌面\新建文件夹\19.exe\data001 - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\19.exe\data002 - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\19.exe - 确定
>>>C:\Documents and Settings\zh\桌面\新建文件夹\22.exe 已被病毒感染：  Trojan.DownLoader.origin
>C:\Documents and Settings\zh\桌面\新建文件夹\24.exe 已被病毒感染：  Trojan.PWS.Gamania.3284
>C:\Documents and Settings\zh\桌面\新建文件夹\25.exe - 确定
>>>C:\Documents and Settings\zh\桌面\新建文件夹\26.exe\data001 - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\26.exe\data002 - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\26.exe - 确定
>>>C:\Documents and Settings\zh\桌面\新建文件夹\28.exe\data001 已被病毒感染：  Trojan.PWS.Gamania.9711
>C:\Documents and Settings\zh\桌面\新建文件夹\28.exe\data002 - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\28.exe - 发现压缩文件中有被感染的对象
>>>C:\Documents and Settings\zh\桌面\新建文件夹\29.exe\data001\data001 是黑客工具 Tool.PortScan
>>>C:\Documents and Settings\zh\桌面\新建文件夹\29.exe\data001\data002 - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\29.exe\data001 - 发现压缩文件中有被感染的对象
>C:\Documents and Settings\zh\桌面\新建文件夹\29.exe\data002 已被病毒感染：  Trojan.DownLoader.55879
C:\Documents and Settings\zh\桌面\新建文件夹\29.exe - 发现压缩文件中有被感染的对象
>C:\Documents and Settings\zh\桌面\新建文件夹\30.exe - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\31.exe - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\cqavpw0.dll 已被病毒感染：  Trojan.PWS.Wsgame.origin
>C:\Documents and Settings\zh\桌面\新建文件夹\jravpw0.dll 已被病毒感染：  Trojan.PWS.Wsgame.origin
>C:\Documents and Settings\zh\桌面\新建文件夹\zxavpw0.dll 已被病毒感染：  Trojan.PWS.Wsgame.origin
>C:\Documents and Settings\zh\桌面\新建文件夹\SoundMan.exe\data001 是黑客工具 Tool.PortScan
>>C:\Documents and Settings\zh\桌面\新建文件夹\SoundMan.exe\data002 - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\SoundMan.exe - 发现压缩文件中有被感染的对象
C:\Documents and Settings\zh\桌面\新建文件夹\anistio.dll - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\bincdwsa.dll 已被病毒感染：  Trojan.PWS.Gamania.9726
C:\Documents and Settings\zh\桌面\新建文件夹\dbhlp32.dlL 已被病毒感染：  Trojan.PWS.Wsgame.4604
C:\Documents and Settings\zh\桌面\新建文件夹\dionpis.dll - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\DLD.exe - 确定
C:\Documents and Settings\zh\桌面\新建文件夹\dndsioc.dll 已被病毒感染：  Trojan.PWS.Gamania.9727
C:\Documents and Settings\zh\桌面\新建文件夹\fiosectc.dll 已被病毒感染：  Trojan.PWS.Gamania.9728
C:\Documents and Settings\zh\桌面\新建文件夹\fmbiost.dll 已被病毒感染：  Trojan.PWS.Gamania.9729
C:\Documents and Settings\zh\桌面\新建文件夹\fmsbbqi.dll 已被病毒感染：  Trojan.PWS.Gamania.9730
C:\Documents and Settings\zh\桌面\新建文件夹\fmsjhif.dll 已被病毒感染：  Trojan.PWS.Gamania.9731
C:\Documents and Settings\zh\桌面\新建文件夹\hefcndy.dll 已被病毒感染：  Trojan.PWS.Wsgame.origin
C:\Documents and Settings\zh\桌面\新建文件夹\huifitc.dll 已被病毒感染：  Trojan.PWS.Gamania.9732
C:\Documents and Settings\zh\桌面\新建文件夹\interne.exe 已被病毒感染：  Trojan.DownLoader.55879
>C:\Documents and Settings\zh\桌面\新建文件夹\msosdohs00.dll - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\msosfmsq00.dll 已被病毒感染：  Trojan.PWS.Gamania.9711
>C:\Documents and Settings\zh\桌面\新建文件夹\msosmhfp00.dll - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\msosmnsf00.dll - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\msosping00.dll - 确定
>C:\Documents and Settings\zh\桌面\新建文件夹\msosptfs00.dll 已被病毒感染：  Trojan.PWS.Wsgame.origin
C:\Documents and Settings\zh\桌面\新建文件夹\ptshell.dll 已被病毒感染：  Trojan.PWS.Gamania.9733
C:\Documents and Settings\zh\桌面\新建文件夹\sfnqpewv.dll 已被病毒感染：  Trojan.PWS.Gamania.9737
>C:\Documents and Settings\zh\桌面\新建文件夹\SysWoWa8.dll 已被病毒感染：  Trojan.PWS.Gamania.origin
C:\Documents and Settings\zh\桌面\新建文件夹\tciocp32.dll 已被病毒感染：  Trojan.PWS.Gamania.9734
C:\Documents and Settings\zh\桌面\新建文件夹\ticisms.dll 已被病毒感染：  Trojan.PWS.Gamania.9735

-----------------------------------------------------------------------------
扫描统计
-----------------------------------------------------------------------------
已扫描对象: 73
发现受感染对象: 47
发现受变种感染对象: 0
发现可疑对象: 0
发现广告软件: 0
发现拨号软件: 0
发现恶作剧程序: 0
发现风险程序: 0
发现黑客工具: 2

显示全部楼层 · 发表于 2008-4-26 16:45:17

McAfee只有報23隻

显示全部楼层 · 发表于 2008-4-26 20:30:37

[Scanning : C:\Documents and Settings\All Users\Documents\Test]

C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:WSockDrv32.dll <- Trojan.Psw.Onlinegames.Aban : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:yuiabct.dll <- Trojan.Psw.Onlinegames.Abwn : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:1.exe<FSG>:1.exe<DLLRES>:res1.exe <- Trojan.Rootkit.Agent.Aji : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:2.exe<FSG>:2.exe <- Trojan.Psw.Onlinegames.Abas : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:2.exe<FSG>:2.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Aban : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:4.exe<UPack>:4.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Abry : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:bincdwsa.exe<FSG>:bincdwsa.exe <- Trojan.Psw.Onlinegames.Abtp : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dbhlp32.exe<FSG>:dbhlp32.exe <- Trojan.Psw.Onlinegames.Abtl : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dbhlp32.exe<FSG>:dbhlp32.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Abtl : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dionpis.exe<FSG>:dionpis.exe <- Trojan.Psw.Onlinegames.Abue : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dionpis.exe<FSG>:dionpis.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Abuf : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dndsioc.exe<FSG>:dndsioc.exe <- Trojan.Psw.Onlinegames.Abud : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:fmsbbqi.exe<FSG>:fmsbbqi.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Abtw : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:fmsjhif.exe<FSG>:fmsjhif.exe <- Trojan.Psw.Onlinegames.Abtj : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:jaqfsvhx.exe<FSG>:jaqfsvhx.exe <- Trojan.Psw.Onlinegames.Abtl : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:ptshell.exe<FSG>:ptshell.exe <- Trojan.Psw.Onlinegames.Abtu : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:tciocp32.exe<FSG>:tciocp32.exe <- Trojan.Psw.Onlinegames.Abcr : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:ticisms.exe <- Trojan.Psw.Onlinegames.Abwr : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:yuiabct.exe <- Trojan.Psw.Onlinegames.Abwp : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:yuiabct.exe<FSG>:yuiabct.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Abwn : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:7.exe<FSG>:7.exe<DLLRES>:res1.exe <- Trojan.Rootkit.Agent.Aji : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:19.exe<FSG>:19.exe<DLLRES>:res1.exe <- Trojan.Rootkit.Agent.Aji : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:25.exe<UPack>:25.exe<DLLRES>:res1.exe <- Trojan.Rootkit.Agent.Ahy : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:28.exe<FSG>:28.exe <- Trojan.Psw.Onlinegames.Abxi : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:28.exe<FSG>:28.exe<DLLRES>:res1.exe <- Trojan.Rootkit.Agent.Aji : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:29.exe<FSG>:29.exe<DLLRES>:res0.exe<DLLRES>:res1.exe<FSG>:res1.exe <- Downloader.Vb.Dzy : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:29.exe<FSG>:29.exe<DLLRES>:res1.exe <- Variant:Downloader.Vb.Bbe : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:30.exe<UPack>:30.exe<DLLRES>:res1.exe <- Downloader.Agent.Mzm : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:31.exe<UPack>:31.exe <- Variant:Trojan.Agent.Ms : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:SoundMan.exe<DLLRES>:res1.exe<FSG>:res1.exe <- Downloader.Vb.Dzy : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dbhlp32.dlL <- Trojan.Psw.Onlinegames.Abtl : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:dionpis.dll <- Trojan.Psw.Onlinegames.Abuf : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:DLD.exe <- Trojan.Downloader.Murlo.Lw : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:fmsbbqi.dll <- Trojan.Psw.Onlinegames.Abtw : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:interne.exe <- Variant:Downloader.Vb.Bbe : No action
C:\Documents and Settings\All Users\Documents\Test\样本.rar<RAR>:SysWoWa8.dll <- Trojan.Psw.Onlinegames.Abry : No action

Scanned objects : 166

Infected objects : 36

显示全部楼层 · 发表于 2008-4-26 20:57:42

Hello,

3.exe_ - Trojan-PSW.Win32.OnLineGames.acch,
anistio.dll - Trojan-PSW.Win32.OnLineGames.accg

These files are already detected. Please update your antivirus bases.

31.exe_, interne.exe_, svchost.exe_

No malicious code were found in these files.

bincdwsa.dll - Trojan-PSW.Win32.OnLineGames.xzy,
dbhlp32.dlL - Trojan-PSW.Win32.OnLineGames.yai,
dndsioc.dll - Trojan-PSW.Win32.OnLineGames.yaj,
fiosectc.dll - Trojan-PSW.Win32.OnLineGames.accv,
fmbiost.dll - Trojan-PSW.Win32.OnLineGames.ybi,
fmsjhif.dll - Trojan-PSW.Win32.OnLineGames.ybx,
hefcndy.dll - Trojan-PSW.Win32.OnLineGames.ybz,
jravpw0.dll - Trojan-Downloader.Win32.Agent.nsb,
msosping00.dll - Trojan-PSW.Win32.OnLineGames.ydw,
msosptfs00.dll - Trojan.Win32.Agent.kvh,
ptshell.dll - Trojan-PSW.Win32.OnLineGames.ycn,
sfnqpewv.dll - Trojan-PSW.Win32.OnLineGames.ycl,
tciocp32.dll - Trojan-PSW.Win32.OnLineGames.yca,
ticisms.dll - Trojan-PSW.Win32.OnLineGames.ych

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Evgeny Aseev
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.
[:1:]

显示全部楼层 · 发表于 2008-4-26 22:25:10

咔吧 KILL ALL

显示全部楼层 · 发表于 2008-4-26 22:34:28

瑞星果然强大吧！

显示全部楼层 · 发表于 2008-4-27 02:47:32

小a不让下载，直接干掉了

[病毒样本] 63个

63

本帖子中包含更多资源