在办公室电脑提取的

显示全部楼层 · 发表于 2008-6-29 15:07:31

数量蛮多的不保证全部是病毒因为太多我只是把隐藏起来的和生成日期接近的都打包进来本来用趋势扫描后把没有准确识别的交给别人上报了后来还是觉得把趋势删除的还是一起放进来给大家测试一下那个电脑是用咖啡的企业版开机进去后就不停的删除然后病毒又不停的生成不知道怎么删除蓝屏了两次后放弃

显示全部楼层 · 发表于 2008-6-29 15:25:38

deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxg File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\akjsdkaq.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyq File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\apsggjba.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyp File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\apzhctde.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxzp File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\dsdyapaw.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.ryxn File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\erxybloe.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.ryta File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\fd233ds4f3.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxww File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\fmcvxy.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aphm File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\ghwxattb.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxu File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\hdf453d.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxwb File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\hhrdxd.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.ryxd File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\ietzcpaq.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxo File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\ijdyapaw.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxwy File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\isdsasrv.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyp File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\ismhasrv.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.arzc File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\jdsaex.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aqem File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\jkhxaklo.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.arum File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\kcoin32.exe//NSPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyr File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\lassaplo.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aplq File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\lkssaplo.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxi File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\lpmxajkl.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rxpu File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\lpsgajba.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxwy File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\lpzhatde.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.apkc File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\mndhfdwd.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyv File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\mndshsrv.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxl File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\mnmhgsrv.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aprv File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\mpwdeapi.dll
deleted: Trojan program Trojan-Downloader.Win32.Agent.udi File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\NBA.exe//PE_Patch//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxh File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\nhmxejkl.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyb File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\oltzapaq.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.ascn File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\onjzalit.exe//UPack
deleted: Trojan program Trojan-Downloader.Win32.Small.xpd File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\orz.exe
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyn File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\oswxdttb.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxm File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\ozfyebyt.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxi File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\posqatyu.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.apoo File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\pqzfajke.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.ryay File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\ptjhehlp.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxn File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\rijxbkin.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxqi File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\simyaapi.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxqk File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\skqncbib.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.apms File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\spjhahlp.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxh File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\tisqbtyu.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aqeh File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\tjfyabyt.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxqm File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\tysqbkol.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.blh File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\windg.exe
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxya File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\yxcschlp.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxo File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\yzztkmsn.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rxrd File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zptlcsys.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.aqna File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zxcsahlp.exe//UPack
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxv File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zxmsdwin.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxyo File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zxptejpg.dll
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.apjc File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zycbdime.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxxh File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zywlcime.dll
deleted: Trojan program Trojan-GameThief.Win32.OnLineGames.rxys File: C:\Documents and Settings\kato9096\®à±\6.28all\6.28all\zyzxjime.dll

53,有43不报.

因数量太多,待红傘回了后才決定上报多少到卡巴

[ 本帖最后由 kato9096 于 2008-6-29 15:28 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:26:21

End of the scan: Sunday,29 June 2008  15:26
Used time: 00:08 min

The scan has been done completely.

   2 Scanning directories
   96 Files were scanned
   61 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   61 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   35 Files not concerned
   0 Archives were scanned
   0 Warnings
   61 Notes

有35不报,已上报.

[ 本帖最后由 kato9096 于 2008-6-29 15:27 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:30:02

病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zyzxjime.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zywlcime.dll Win32.Troj.OnlineGames.u.538120 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zycbdime.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zxptejpg.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zxmsdwin.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zxcsahlp.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zptlcsys.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zefdst.dll Win32.Troj.OnlienGamesT.ny.254464 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\zaztamsn.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\yzztkmsn.dll Win32.Troj.OnlineGamesT.cf.41984 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\yxcschlp.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\tysqbkol.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\tjfyabyt.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\tisqbtyu.dll Win32.Troj.OnlineGamesT.fy.534788 清除成功
病毒 2008-06-29  15:29:45 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\stjxakin.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\spjhahlp.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\skqncbib.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\siwdaapi.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\simyaapi.exe Win32.Troj.OnlineGamesT.ea.119304 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\rijxbkin.dll Win32.Troj.OnlineGamesT.fy.534788 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\pusqakol.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\ptjhehlp.dll Win32.Troj.OnlineGames.u.535560 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\pqzfajke.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\posqatyu.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\pldhadwd.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\ozfyebyt.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\oswxdttb.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\orz.exe Win32.Troj.DownLoaderT.dk.57344 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\oltzapaq.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\nhmxejkl.dll Win32.Troj.OnlineGamesT.fy.534788 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\NBA.exe Win32.TrojDownloader.Agent.86016 清除成功
病毒 2008-06-29  15:29:44 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\mpwdeapi.dll Win32.Troj.OnlineGameT.fy.536072 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\mnmhgsrv.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\mndshsrv.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\mndhfdwd.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\mkjsakaq.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\mkjraler.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\lpzhatde.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\lpsgajba.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\lpmxajkl.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\lkssaplo.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\lassaplo.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\jkhxaklo.dll Win32.Troj.OnlineGameT.fy.536072 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\jdsaex.dll Win32.Troj.OnlienGamesT.ny.254464 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\ismhasrv.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\isdsasrv.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\ijdyapaw.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\ietzcpaq.dll Win32.Troj.OnlineGamesT.fy.534788 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\hhrdxd.dll Win32.Troj.OnlienGamesT.ny.254464 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\ghwxattb.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\fmcvxy.dll Win32.Troj.OnlienGamesT.ny.254464 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\fd233ds4f3.dll Win32.Troj.OnlineGames.u.538120 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\erxybloe.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\dsdyapaw.exe Win32.Troj.OnlineGamesT.ny.102456 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\arjrgler.dll Win32.PSWTroj.GameOL.536072 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\apzhctde.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\apsggjba.dll Win32.Troj.OnlineGameT.uv.91648 清除成功
病毒 2008-06-29  15:29:43 C:\Documents and Settings\Administrator\桌面\6.28all\6.28all\akjsdkaq.dll Win32.Troj.OnlineGameT.uv.91648 清除成功

显示全部楼层 · 发表于 2008-6-29 15:30:49

avast 60.

antivir xe的gen.

Begin scan in 'F:\6.28all'
F:\6.28all\akjsdkaq.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\apsggjba.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\apzhctde.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\arjrgler.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\dsdyapaw.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\erxybloe.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\fd233ds4f3.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\fmcvxy.dll
   [DETECTION] Is the Trojan horse TR/Crypt.Delf.F.359
   [NOTE]    The file was deleted!
F:\6.28all\ghwxattb.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\hdf453d.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\hhrdxd.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\ietzcpaq.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\ijdyapaw.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\isdsasrv.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\ismhasrv.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\jdsaex.dll
   [DETECTION] Is the Trojan horse TR/Crypt.Delf.F.172
   [NOTE]    The file was deleted!
F:\6.28all\jkhxaklo.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\kcoin32.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
F:\6.28all\lassaplo.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\lkssaplo.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\lpmxajkl.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\lpsgajba.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\lpzhatde.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\mkjraler.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\mkjsakaq.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\mndhfdwd.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\mndshsrv.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\mnmhgsrv.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\mpwdeapi.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\nhmxejkl.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\oltzapaq.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\onjzalit.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\orz.exe
   [DETECTION] Is the Trojan horse TR/Agent.4608.243
   [NOTE]    The file was deleted!
F:\6.28all\oswxdttb.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\ozfyebyt.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\pldhadwd.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\posqatyu.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\pqzfajke.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\ptjhehlp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\pusqakol.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\rijxbkin.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\simyaapi.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\siwdaapi.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\skqncbib.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\spjhahlp.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\stjxakin.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\tisqbtyu.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\tjfyabyt.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\tysqbkol.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\windg.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [NOTE]    The file was deleted!
F:\6.28all\yxcschlp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\yzztkmsn.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zaztamsn.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zefdst.dll
   [DETECTION] Is the Trojan horse TR/Crypt.Delf.F.264
   [NOTE]    The file was deleted!
F:\6.28all\zptlcsys.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zxcsahlp.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zxmsdwin.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zxptejpg.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zycbdime.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zywlcime.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
F:\6.28all\zyzxjime.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!

[ 本帖最后由 hj5abc 于 2008-6-29 15:32 编辑 ]

显示全部楼层 · 发表于 2008-6-29 15:31:58

怎么卡巴和红傘这么少

显示全部楼层 · 发表于 2008-6-29 15:34:18

nba.exe和orz.exe是downloader,所以正在分析

http://www.threatexpert.com/repo ... 800d536b2017c3aa5d5

http://www.threatexpert.com/repo ... 02edb071175d70f54b1

[ 本帖最后由 kato9096 于 2008-6-29 15:37 编辑 ]

显示全部楼层 · 发表于 2008-6-29 18:55:26

费尔62

显示全部楼层 · 发表于 2008-6-29 20:53:27

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GameOL.okz
病毒： Trojan.PSW.Win32.GameOL.oeh
病毒： Trojan.DL.Win32.Undef.ua
病毒： Trojan.PSW.Win32.GameOL.olu
病毒： Trojan.PSW.Win32.GameOL.ofz
病毒： Trojan.PSW.Win32.GameOL.olx
病毒： Trojan.PSW.Win32.GameOL.oci
病毒： Trojan.PSW.Win32.GameOL.olw
病毒： Trojan.PSW.Win32.GameOL.ocu
病毒： Trojan.PSW.Win32.ZhuXian.hx
病毒： Trojan.PSW.Win32.GameOL.odt
病毒： Trojan.DL.Win32.Mnless.ala
病毒： Trojan.PSW.Win32.ZeroOnline.dv
病毒： Trojan.PSW.Win32.GameOL.ogc
病毒： Trojan.PSW.Win32.GameOL.oly

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.50.62

显示全部楼层 · 发表于 2008-7-2 16:19:13

已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxg 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\akjsdkaq.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyq 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\apsggjba.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyp 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\apzhctde.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rzer 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\arjrgler.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxzp 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\dsdyapaw.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryxn 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\erxybloe.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryta 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\fd233ds4f3.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxww 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\fmcvxy.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aphm 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\ghwxattb.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxu 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\hdf453d.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxwb 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\hhrdxd.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryxd 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\ietzcpaq.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxo 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\ijdyapaw.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxwy 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\isdsasrv.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyp 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\ismhasrv.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.arzc 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\jdsaex.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aqem 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\jkhxaklo.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.arum 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\kcoin32.exe//NSPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyr 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\lassaplo.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aplq 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\lkssaplo.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxi 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\lpmxajkl.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rxpu 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\lpsgajba.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxwy 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\lpzhatde.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rzer 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\mkjraler.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxqe 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\mkjsakaq.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apkc 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\mndhfdwd.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyv 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\mndshsrv.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxl 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\mnmhgsrv.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aprv 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\mpwdeapi.dll
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Agent.udi 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\NBA.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\nhmxejkl.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyb 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\oltzapaq.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ascn 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\onjzalit.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Small.xpd 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\orz.exe
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyn 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\oswxdttb.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxm 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\ozfyebyt.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aqfs 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\pldhadwd.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxi 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\posqatyu.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apoo 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\pqzfajke.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryay 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\ptjhehlp.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxqg 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\pusqakol.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxn 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\rijxbkin.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxqi 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\simyaapi.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apms 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\siwdaapi.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxqk 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\skqncbib.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apms 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\spjhahlp.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aphm 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\stjxakin.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\tisqbtyu.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aqeh 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\tjfyabyt.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxqm 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\tysqbkol.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.blh 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\windg.exe
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxya 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\yxcschlp.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxo 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\yzztkmsn.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.asbu 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zaztamsn.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rzfy 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zefdst.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.rxrd 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zptlcsys.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aqna 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zxcsahlp.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxv 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zxmsdwin.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyo 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zxptejpg.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apjc 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zycbdime.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zywlcime.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxys 檔案: C:\Documents and Settings\kato9096\桌面\6.28all\6.28all\zyzxjime.dll

今天报62

[病毒样本] 在办公室电脑提取的

本帖子中包含更多资源

58

121/61