onlinegame无尽.....56个

显示全部楼层 · 发表于 2008-6-29 17:29:53

原帖由 hj5abc 于 2008-6-29 17:20 发表
估计antivir又是一片TR/Spy.Gen

試試看

显示全部楼层 · 发表于 2008-6-29 17:34:55

Start of the scan: Sunday,29 June 2008  17:34

Starting the file scan:

Begin scan in 'C:\Documents and Settings\kato9096\桌面\vir'
C:\Documents and Settings\kato9096\桌面\vir\vir\1.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\10.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\11.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.aoiq.75
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\12.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\13.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\14.exe
   [DETECTION] Is the Trojan horse TR/Agent.qsa
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\15.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.aoiq.75
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\16.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\17.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\18.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\19.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\2.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\20.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\21.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\22.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\23.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\24.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\25.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\26.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\27.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\3.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\4.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\5.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\6.exe
   [DETECTION] Is the Trojan horse TR/Agent.1068320
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\7.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\8.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\9.exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\a.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\adsntzt.dll
   [DETECTION] Is the Trojan horse TR/Dldr.BHO.AM
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\akjsdkaq.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\apsggjba.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\d32dx9.sys
   [DETECTION] Is the Trojan horse TR/Spy.KeySpy.U
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\dispexcb.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.aoiq.75
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\kcoin32.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\midimapzx.dll
   [DETECTION] Is the Trojan horse TR/PSW.OnLi.aoiq.75
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\mndhfdwd.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\mnmhgsrv.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\rijxbkin.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\tisqbtyu.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\x(1).exe
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\x.exe
   [DETECTION] Is the Trojan horse TR/Hijacker.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\ypcqghlp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\ypdjgbmp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\yxcschlp.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\zxmsdwin.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\zxptejpg.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!
C:\Documents and Settings\kato9096\桌面\vir\vir\zywlcime.dll
   [DETECTION] Is the Trojan horse TR/Spy.Gen
   [NOTE]    The file was deleted!

End of the scan: Sunday,29 June 2008  17:34
Used time: 00:11 min

The scan has been done completely.

   2 Scanning directories
   56 Files were scanned
   47 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   47 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   9 Files not concerned
   0 Archives were scanned
   0 Warnings
   47 Notes

9个不报,已上报.

File ID    Filename    Size (Byte) Result
25061028    bootvidgj.dll    672.78 KB    UNDER ANALYSIS
25061029    dpvvoxmh.dll    576.64 KB    UNDER ANALYSIS
25061030    kbdgrms.dll    998.64 KB    UNDER ANALYSIS
25061031    kbdswjr.dll    970.28 KB    UNDER ANALYSIS
25061032    ksuserfy.dll    857.78 KB    UNDER ANALYSIS
25061033    msobjstl.dll    884.28 KB    UNDER ANALYSIS
25061034    mstimewd.dll    702.14 KB    UNDER ANALYSIS
25061035    tscfgwmijxsj.dll    923.28 KB    UNDER ANALYSIS
25061036    wmpuiqhx.dll    649.28 KB    UNDER ANALYSIS

[ 本帖最后由 kato9096 于 2008-6-29 17:42 编辑 ]

显示全部楼层 · 发表于 2008-6-29 17:37:51

已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.ryqo 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\10.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apzd 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\11.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.arum 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\12.exe//NSPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aqfs 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\13.exe//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.rzv 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\14.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Inject.dbt 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\15.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aphm 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\16.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxz 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\17.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Agent.nr 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\2.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apjn 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\20.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Agent.nr 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\22.exe
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxi 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\23.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyk 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\24.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyp 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\25.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxj 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\26.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxqe 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\27.exe//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.sla 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\4.exe
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.Agent.nr 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\6.exe
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxp 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\7.exe//UPack
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxwy 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\9.exe//UPack
已刪除: 特洛伊木馬程式 Trojan.Win32.Agent.qnv 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\a.exe//PE_Patch.UPX//UPX
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxql 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\akjsdkaq.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyq 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\apsggjba.dll
已刪除: 特洛伊木馬程式 Trojan-Spy.Win32.KeySpy.u 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\d32dx9.sys
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.asft 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\kcoin32.dll//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.aoiq 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\midimapzx.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apkc 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\mndhfdwd.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxl 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\mnmhgsrv.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apug 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\rijxbkin.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\tisqbtyu.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rytv 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\ypcqghlp.dll
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.apzy 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\ypdjgbmp.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxya 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\yxcschlp.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxv 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\zxmsdwin.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxyo 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\zxptejpg.dll
已刪除: 特洛伊木馬程式 Trojan-GameThief.Win32.OnLineGames.rxxh 檔案: C:\Documents and Settings\kato9096\桌面\vir\vir\zywlcime.dll

36,已上报.

显示全部楼层 · 发表于 2008-6-29 17:38:40

对onlinegames dropper.gen和spy.gen总是轮着报...

显示全部楼层 · 发表于 2008-6-29 18:09:08

我有种预感 pro回来啦~~~~~~

显示全部楼层 · 发表于 2008-6-29 18:10:23

应该休息结束了

显示全部楼层 · 发表于 2008-6-29 18:11:12

spy.gen以前是没的加了之后感觉便宜了c版的众生....

显示全部楼层 · 发表于 2008-6-29 18:12:57

dropper.gen 比较喜欢报vb写的释放器..有时倒未必准确...下载器有时也报这个...

显示全部楼层 · 发表于 2008-6-29 18:33:35

金山MISS 3

显示全部楼层 · 发表于 2008-6-29 18:49:47

费尔58~

[病毒样本] onlinegame无尽.....56个

回复 15楼 jimmyleo 的帖子