收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 病毒样本 分享&分析区 35
12下一页
返回列表 发新帖
查看: 3861|回复: 17
收起左侧

[病毒样本] 35

[复制链接]
sam.to
发表于 2008-5-9 23:19:05 | 显示全部楼层 |阅读模式
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adre        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/1.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adru        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/10.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adup        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/11.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adwl        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/13.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ygb        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/14.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adti        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/15.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adqp        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/16.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adqp        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/17.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aedw        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/18.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aedv        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/19.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adqh        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/2.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.yfj        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/20.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aedk        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/21.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ygb        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/23.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aecg        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/24.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adrw        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/25.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adrt        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/26.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aecx        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/27.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adrt        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/28.exe2//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.accx        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/29.exe2//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adqo        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/3.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aqr        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/30.exe3//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.acte        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/31.exe3//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adxm        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/32.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-Dropper.Win32.Agent.har        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/33.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ygb        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/34.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adru        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/35.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adxl        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/4.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adth        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/5.exe3
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aedt        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/6.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.acqk        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/7.exe3//FSG
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.QQPass.btb        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/8.exe3//UPX
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.adrv        檔案: C:\Documents and Settings\kato9096\桌面\複製 -rtfghysdefrtghjusdefgtjhuythgfdryhtfytg.zip/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/rtfghysdefrtghjusdefgtjhuythgfdryhtfytg/9.exe3//FSG


33个


Hello,

12.exed - Trojan-PSW.Win32.OnLineGames.aegg,
22.exed - Trojan-PSW.Win32.OnLineGames.aegh

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Denis Maslennikov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

挪威的冬天
发表于 2008-5-9 23:20:34 | 显示全部楼层
信息        2008-05-09  23:20:24        您此次查毒清除了31个病毒                       
信息        2008-05-09  23:20:24        您此次查毒共查出31个病毒以及危险代码                       
信息        2008-05-09  23:20:24        您此次查毒共查了内存模块0个,磁盘引导扇区0个,文件72个                       
信息        2008-05-09  23:20:24        金山毒霸主程序查毒过程结束,查毒方式:命令行查毒
回复

举报

IllusionWing
发表于 2008-5-9 23:21:05 | 显示全部楼层
all killed

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

细路(L)
发表于 2008-5-9 23:29:32 | 显示全部楼层

一个不漏...

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

sam.to
 楼主| 发表于 2008-5-9 23:30:24 | 显示全部楼层
原帖由 gankeyu 于 2008-5-9 23:21 发表
all killed

你肯定是all killed??
回复

举报

IllusionWing
发表于 2008-5-9 23:31:38 | 显示全部楼层

回复 5楼 kato9096 的帖子

不应该是35个吗?清空哈
回复

举报

Kitman
发表于 2008-5-9 23:32:24 | 显示全部楼层
all killed
Start of the scan: 2008年5月9日  23:32

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg'
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\1.exe3
      [DETECTION] Is the Trojan horse TR/PSW.Online.ddo
      [NOTE]      A backup was created as '48896eb2.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\10.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48526eb4.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\11.exe2
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.adwk
      [DETECTION] Is the Trojan horse TR/Downloader.Gen
      [NOTE]      A backup was created as '48526eb5.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\12.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48526eb6.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\13.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48526eb7.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\14.exe2
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      A backup was created as '48526eb8.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\15.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48526eb9.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\16.exe2
      [DETECTION] Is the Trojan horse TR/Onlinegames.NVI
      [NOTE]      A backup was created as '48526eba.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\17.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48526ebb.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\18.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48526ebc.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\19.exe2
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.EP
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.ald
      [NOTE]      A backup was created as '48526ebd.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\2.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '495d4c43.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\20.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '49864c45.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\21.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '49864c46.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\22.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '49864c47.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\23.exe2
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      A backup was created as '49864c48.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\24.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '49864c49.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\25.exe2
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.adrg
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aks.1
      [NOTE]      A backup was created as '49864c4a.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\26.exe2
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.EG
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aks.1
      [NOTE]      A backup was created as '49864c4b.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\27.exe2
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '49864c4d.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\28.exe2
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.adxc
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aks.1
      [NOTE]      A backup was created as '49864c4e.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\29.exe2
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.acjm
      [NOTE]      A backup was created as '48526ebe.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\3.exe3
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48896eb3.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\30.exe3
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      A backup was created as '49920f3e.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\31.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.actd
      [DETECTION] Is the Trojan horse TR/Dldr.Delphi.Gen
      [NOTE]      A backup was created as '49920f3f.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\32.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.adxo
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.ala
      [NOTE]      A backup was created as '49920f30.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\33.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
        [2] Archive type: RSRC
        --> Object
            [DETECTION] Contains detection pattern of the SPR/PortScan.S program
        --> Object
            [DETECTION] Is the Trojan horse TR/Dldr.VB.edj
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.acxz
      [NOTE]      A backup was created as '49920f31.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\34.exe3
      [DETECTION] Is the Trojan horse TR/Spy.Gen
      [NOTE]      A backup was created as '49920f32.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\35.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.aduf
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aks.1
      [NOTE]      A backup was created as '49920f33.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\4.exe3
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '49490f3c.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\5.exe3
      [DETECTION] Is the Trojan horse TR/Hijacker.Gen
      [NOTE]      A backup was created as '48896eb5.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\6.exe3
      [DETECTION] Is the Trojan horse TR/ATRAPS.Gen
      [NOTE]      A backup was created as '49490f3e.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\7.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/Proxy.Xorpix.ED
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.akk
      [NOTE]      A backup was created as '48896eb7.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\8.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.QQpass.btc
      [NOTE]      A backup was created as '49490f30.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!
C:\Documents and Settings\Administrator\桌面\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\rtfghysdefrtghjusdefgtjhuythgfdryhtfytg\9.exe3
    --> Object
      [1] Archive type: RSRC
      --> Object
          [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.adsr
      --> Object
          [DETECTION] Contains detection pattern of the rootkit RKIT/Agent.aks.1
      [NOTE]      A backup was created as '48896eb9.qua'  ( QUARANTINE )
      [NOTE]      The file was deleted!


End of the scan: 2008年5月9日  23:32
Used time: 00:03 min

The scan has been done completely.

      2 Scanning directories
     35 Files were scanned
     47 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     35 files were deleted
      0 files were repaired
     35 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
    -12 Files not concerned
      0 Archives were scanned
      0 Warnings
     35 Notes
回复

举报

IllusionWing
发表于 2008-5-9 23:33:17 | 显示全部楼层

回复 5楼 kato9096 的帖子

但也得忍受高误报呵..
回复

举报

wangjay1980
发表于 2008-5-9 23:37:36 | 显示全部楼层
没有完美的方案


本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

细路(L)
发表于 2008-5-9 23:41:19 | 显示全部楼层

回复 9楼 wangjay1980 的帖子

不是35个么?怎么显示36的?
回复

举报

下一页 »
12下一页
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2025-7-16 02:37 , Processed in 0.117083 second(s), 19 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表