某贴挖 *33

电影结束了

玩玩吧~

edwardcl

最近喜欢测测杀软，eset  扫33

欠妳緈諨

用AntiVirusKit扫描病毒
版本 16.0.7
病毒库签名 2008-10-30
开始时间: 2008-10-31 9:38
引擎: KAV 引擎 (AVK 19.1269), BD  引擎 (BD 19.1126)
启发式: 打开
压缩文件: 打开
系统区域: 关闭

扫描所选择的目录和文件...
对象: 2008-10-31___109924.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: data0000
        在压缩档案里: S:\webdown\2008-10-31___1114321.exe
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.aiyb (KAV 引擎)
对象: 2008-10-31___1114321.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.aiyb (KAV 引擎)
对象: data0000
        在压缩档案里: S:\webdown\2008-10-31___113623.exe
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.aiyo (KAV 引擎)
对象: 2008-10-31___113623.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.aiyo (KAV 引擎)
对象: 2008-10-31___1505611.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___1563679.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___1617536.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: data0000
        在压缩档案里: S:\webdown\2008-10-31___1712139.exe
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎)
对象: 2008-10-31___1712139.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.gen (KAV 引擎)
对象: 2008-10-31___1775429.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___1878881.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqly (KAV 引擎), Trojan.PWS.Agent.SGC (BD  引擎)
对象: 2008-10-31___1948583.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan.PWS.Agent.SGC (BD  引擎)
对象: 2008-10-31___1961387.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: data0000
        在压缩档案里: S:\webdown\2008-10-31___2022680.exe
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqrz (KAV 引擎)
对象: 2008-10-31___2022680.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqrz (KAV 引擎)
对象: 2008-10-31___2135640.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2214768.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2222512.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2295387.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2325708.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2616596.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Worm.Win32.AutoRun.rje (KAV 引擎), Dropped:Trojan.Agent.AKVG (BD  引擎)
对象: 2008-10-31___2630916.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-Downloader.Win32.Agent.amom (KAV 引擎)
对象: 2008-10-31___2668031.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan.Win32.Agent.airl (KAV 引擎), Trojan.PWS.OnlineGames.AACP (BD  引擎)
对象: data0000
        在压缩档案里: S:\webdown\2008-10-31___268378.exe
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.aiya (KAV 引擎)
对象: 2008-10-31___268378.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.aiya (KAV 引擎)
对象: 2008-10-31___2719504.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2753827.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqly (KAV 引擎), Trojan.PWS.Agent.SGC (BD  引擎)
对象: 2008-10-31___2783664.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___2886188.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___391740.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-Spy.Win32.Delf.epu (KAV 引擎), Generic.PWStealer.0BFF131C (BD  引擎)
对象: 2008-10-31___40894.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___58817.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.toyp (KAV 引擎), Trojan.PWS.OnlineGames.AABK (BD  引擎)
对象: 2008-10-31___787890.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan.Win32.Agent.ahzz (KAV 引擎)
对象: 2008-10-31___823433.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqly (KAV 引擎), Trojan.PWS.Agent.SGC (BD  引擎)
对象: 2008-10-31___866262.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.OnLineGames.tqsa (KAV 引擎)
对象: 2008-10-31___1020781.exe
        路径: S:\webdown
        Status: 已发现病毒
        病毒: Trojan-GameThief.Win32.Magania.afzm (KAV 引擎), Trojan.PWS.Agent.SGC (BD  引擎)
分析完毕: 2008-10-31 9:38
    已检查 33 个文件
    已发现 32 个染毒文件
    发现 0 个可疑文件

欠妳緈諨

S:\webdown\2008-10-31___109924.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1114321.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___113623.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1505611.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1563679.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1617536.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1712139.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1775429.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1878881.exe - 特征码 'Trojan-PWS.Win32.Agent.hf' 被发现
S:\webdown\2008-10-31___1948583.exe - 特征码 'Trojan-PWS.Win32.Agent.hf' 被发现
S:\webdown\2008-10-31___1961387.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2022680.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2089489.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2135640.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2214768.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2222512.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2295387.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2325708.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2616596.exe - 特征码 'Trojan.Flystudio.AI' 被发现
S:\webdown\2008-10-31___2630916.exe - 可疑代码段 被发现 (Level: 80)
S:\webdown\2008-10-31___2668031.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___268378.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2719504.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2753827.exe - 特征码 'Trojan-PWS.Win32.Agent.hf' 被发现
S:\webdown\2008-10-31___2783664.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___2886188.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___391740.exe - 特征码 'Trojan.Copiet.B.1' 被发现
S:\webdown\2008-10-31___40894.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___58817.exe - 特征码 'Trojan-PWS.Win32.Agent.hf' 被发现
S:\webdown\2008-10-31___787890.exe - 特征码 'Backdoor.Win32.Hupigon' 被发现
S:\webdown\2008-10-31___823433.exe - 特征码 'Trojan-PWS.Win32.Agent.hf' 被发现
S:\webdown\2008-10-31___866262.exe - 特征码 'Trojan-Ransom.Win32.Hexzone.cv' 被发现
S:\webdown\2008-10-31___1020781.exe - 特征码 'Trojan-PWS.Win32.Agent.hf' 被发现

        33 文件被扫描
          (0 压缩档 0 文件)
        32 特征码被侦测
        1 可疑代码段被发现
        耗时: 0:00.094

bjfhj

病毒: Win32:Spyware-gen [Trj] (Engine B)
文件: webdown[1].rar
目录: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\FANVJ3UI
进程: iexplore.exe

mofunzone

空
Starting the file scan:

Begin scan in 'C:\Users\morgan\Desktop\webdown'
C:\Users\morgan\Desktop\webdown\
  2008-10-31___1020781.exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___109924.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1114321.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___113623.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1505611.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1563679.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1617536.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1712139.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1775429.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1878881.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.MultiFirst.R Trojan
          [WARNING]   Infected files in archives cannot be repaired!
        --> Object
    [NOTE]      The file was deleted!
  2008-10-31___1948583.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
        --> Object
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___1961387.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2022680.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2089489.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2135640.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2214768.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2222512.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2295387.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2325708.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2616596.exe
    [0] Archive type: Runtime Packed
    --> Object
    [NOTE]      The file was deleted!
  2008-10-31___2630916.exe
    [0] Archive type: Runtime Packed
    --> Object
    [NOTE]      The file was deleted!
  2008-10-31___2668031.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/Thief.Magania.ainu Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___268378.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2719504.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2753827.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.MultiFirst.R Trojan
          [WARNING]   Infected files in archives cannot be repaired!
        --> Object
          [DETECTION] Is the TR/Thief.Wow.chz.1 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [NOTE]      The file was deleted!
  2008-10-31___2783664.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___2886188.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___391740.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
    [DETECTION] Is the TR/ATRAPS.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___40894.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___58817.exe
    [DETECTION] Is the TR/Dropper.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___787890.exe
    [DETECTION] Is the TR/Crypt.CFI.Gen Trojan
    [NOTE]      The file was deleted!
  2008-10-31___823433.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.MultiFirst.R Trojan
          [WARNING]   Infected files in archives cannot be repaired!
        --> Object
          [DETECTION] Is the TR/Agent.16384.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [NOTE]      The file was deleted!
  2008-10-31___866262.exe
    [0] Archive type: OVL
      --> Object
        [1] Archive type: Runtime Packed
        --> Object
      --> Object
        [1] Archive type: RSRC
        --> Object
          [DETECTION] Is the TR/PSW.OnlineGames.ZWI.3 Trojan
          [WARNING]   Infected files in archives cannot be repaired!
    [DETECTION] Is the TR/Spy.Gen Trojan
    [NOTE]      The file was deleted!


End of the scan: 2008年10月30日  18:47
Used time: 00:07 Minute(s)

The scan has been done completely.

      1 Scanning directories
     33 Files were scanned
     57 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
     33 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
    -24 Files not concerned
      0 Archives were scanned
     27 Warnings
     33 Notes

kingmuro

诺顿10.1

无尽藏海

Scan Stats:
  Scan Time: 4 seconds
  Scan Options:
  Scan Targets: D:\Virus\webdown.zip
  Counts:
   Total items scanned: 34
   - Files & Directories: 34
   - Registry Entries: 0
   - Processes & Start-up Items: 0
   - Network & Browser Items: 0
   - Other: 0
   - Trusted Files: 0
   - Skipped Files: 0

   Total security risks detected: 33
   Total items resolved: 33
   Total items that require attention: 0

will

Multi Command-Line Scanner Report
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1020781.exe   
MD5 Hash: 750CBDDF7743D30E00E6007DC269872D   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BEHH     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.MulDrop.20110    
NOD32 ----- Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.fbd    
Kaspersky ----- Trojan-GameThief.Win32.Magania.afzm    
Kingsoft ----- Win32.Troj.OnlineGamesT.ty.110709    
Vba32 ----- Win32.PSW.OnLineGames.NRF    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___109924.exe   
MD5 Hash: 692A25EDDE7A21E44D8F5DD3294DC825   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1114321.exe   
MD5 Hash: 8D3C09F199D663B890DB9CCEB28E272A   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- Nothing   
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiyb    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___113623.exe   
MD5 Hash: EE5BDDD2734B645C484BA7724EDF4914   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- Nothing   
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiyo    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1505611.exe   
MD5 Hash: 5AC441444FC1C5199798233061BE08C3   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1563679.exe   
MD5 Hash: E752C9B926CB10F05751D5B80F89AD54   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1617536.exe   
MD5 Hash: 335C721CF9DB11472235A1FBF8D874CA   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1712139.exe   
MD5 Hash: 7F9D5C0590FBCCC8E32724780B9B4374   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Nothing   
Avg ----- Nothing   
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.Magania.gen    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1775429.exe   
MD5 Hash: BA77F21718E3BB09146D214C1E59D6C3   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1878881.exe   
MD5 Hash: F9AF8E79024205FE871882262093BB5C   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.Generic6.ANPF     
Antivir ----- TR/PSW.MultiFirst.R    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.PWS.Wsgame.8235    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.fbd    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqly    
Kingsoft ----- Win32.Troj.OnlineGames.fd.118845    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqly    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1948583.exe   
MD5 Hash: 974569BA9A863D86ECADB82AB6846912   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.Generic6.ALZW     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Nothing   
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- Nothing   
Kaspersky ----- Heur.Trojan.Generic    
Kingsoft ----- Nothing   
Vba32 ----- Nothing   

*** 9/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___1961387.exe   
MD5 Hash: A12C5EF86CA0DBDF185C367EC152ABCB   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2022680.exe   
MD5 Hash: 3A788A2198C76CF358476FA4DA46DFFB   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- Nothing   
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqrz    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2089489.exe   
MD5 Hash: 1B1C3F844ABD6DE66D8D90C770497C2A   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Nothing   
Avg ----- Nothing   
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Nothing   
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Nothing   
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 8/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2135640.exe   
MD5 Hash: 95047FA55D0A91A002D78D0027C30F5B   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2214768.exe   
MD5 Hash: AEE26B5EDD2FC8B82A5C6F2BBF9A113C   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2222512.exe   
MD5 Hash: 229F1894C3867E1C22DDC9C18B8EEB9B   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2295387.exe   
MD5 Hash: F793476429F1F45529C34C7D7824F43B   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2325708.exe   
MD5 Hash: BDE842A88DEDE7248EE8C61058CFD403   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2616596.exe   
MD5 Hash: A682069E33E73E6C27BCC39C83451089   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Trojan.Flystudio.AI!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.Ldpinch.11.BQ     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADB    
ClamWin ----- PUA.Packed.NPack-2    
Dr.Web ----- Trojan.MulDrop.21156    
NOD32 ----- a variant of Win32/PSW.Legendmir.NGG trojan    
Ikarus ----- Trojan.Flystudio.AI    
Jiangmin ----- Worm/AutoRun.duh    
Kaspersky ----- Worm.Win32.AutoRun.rje    
Kingsoft ----- Win32.Troj.DownLaoder.se.69632    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2630916.exe   
MD5 Hash: CBF68A7AE5AD55A57C6635BFAC3F15B9   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Nothing   
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- Agent.AIAI     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.Downloader.JLEA    
ClamWin ----- Nothing   
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- Win32/Agent.OJG trojan    
Ikarus ----- Nothing   
Jiangmin ----- Trojan/PSW.OnLineGames.jxt    
Kaspersky ----- Trojan-Downloader.Win32.Agent.amom    
Kingsoft ----- Win32.Troj.DropRootKit.a.73728    
Vba32 ----- Nothing   

*** 9/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2668031.exe   
MD5 Hash: F0F6C134D61E4440D85D98FC4EB2FE31   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Rootkit-gen [Rtk]    
Avg ----- PSW.OnlineGames.BEKY     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AACR    
ClamWin ----- Trojan.Mono-9    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- Trojan/Agent.bnxn    
Kaspersky ----- Trojan.Win32.Agent.airl    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tptl    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___268378.exe   
MD5 Hash: A84DBB2F2978406AF2E86984E99B4F72   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- Nothing   
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.Magania.aiya    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2719504.exe   
MD5 Hash: 5987D45642748D81041E2D472E4199DC   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2753827.exe   
MD5 Hash: 33F099569045F3455AA383E75D095915   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.Generic6.ANCI     
Antivir ----- TR/Thief.Wow.chz.1    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.PWS.Wsgame.8235    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.jdm    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqly    
Kingsoft ----- Win32.Troj.OnlineGames.fd.126993    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqly    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2783664.exe   
MD5 Hash: C0E9DFCECD2A06CC4F1E6464C9D92454   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___2886188.exe   
MD5 Hash: B23E93B063FE2DAE6E46830477545814   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___391740.exe   
MD5 Hash: C80F87289C1D6FE588B25C3A6245EA5B   
Type: UPX compressed Win32 Executable / Extension: .EXE   

A-squared ----- Trojan.Copiet.B.1!IK    
Avast ----- Win32:Delf-FZG [Trj]    
Avg ----- PSW.Delf.CDI     
Antivir ----- TR/ATRAPS.Gen    
BitDefender ----- Generic.PWStealer.0BFF131C    
ClamWin ----- Nothing   
Dr.Web ----- Trojan.PWS.Lineage.5632    
NOD32 ----- Win32/PSW.Delf.NLZ trojan    
Ikarus ----- Trojan.Copiet.B.1    
Jiangmin ----- TrojanSpy.Delf.ddq    
Kaspersky ----- Trojan-Spy.Win32.Delf.epu    
Kingsoft ----- Win32.Troj.QQPswT.bs.116858    
Vba32 ----- Trojan-Spy.Win32.Delf.epu    

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___40894.exe   
MD5 Hash: FD6B3213E1DD2B6C60E0C9346936AB0C   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- Trojan.PWS.Gamania.15176    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___58817.exe   
MD5 Hash: 391B668E28968934F4B3C6BB4914508D   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BEMN     
Antivir ----- TR/Dropper.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AABK    
ClamWin ----- Trojan.Magania-7860    
Dr.Web ----- Trojan.MulDrop.20368    
NOD32 ----- Win32/TrojanDropper.Agent.NMA trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- TrojanSpy.OnLineGames.inr    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.toyp    
Kingsoft ----- Win32.Troj.DownLoader.dr.98304    
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.toyp    

*** 13/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___787890.exe   
MD5 Hash: EA680DD61B57C7C24DA5579580A2488A   
Type: Win32 Executable Generic / Extension: .EXE   

A-squared ----- Backdoor.Win32.Hupigon!IK    
Avast ----- Nothing   
Avg ----- Agent.AIAV     
Antivir ----- TR/Crypt.CFI.Gen    
BitDefender ----- Trojan.Agent.AKWX    
ClamWin ----- PUA.Packed.NPack-3    
Dr.Web ----- Nothing   
NOD32 ----- a variant of Win32/PSW.Delf.NMX trojan    
Ikarus ----- Backdoor.Win32.Hupigon    
Jiangmin ----- Trojan/PSW.OnLineGames.jxu    
Kaspersky ----- Trojan.Win32.Agent.ahzz    
Kingsoft ----- Win32.Troj.Agent.495616    
Vba32 ----- Nothing   

*** 10/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___823433.exe   
MD5 Hash: B29A9E55D46E9E468AAE946CDD915D84   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Trojan-PWS.Win32.Agent.hf!IK    
Avast ----- Win32:Trojan-gen {Other}    
Avg ----- PSW.OnlineGames.BFGO     
Antivir ----- TR/PSW.MultiFirst.R    
BitDefender ----- Trojan.PWS.Agent.SGC    
ClamWin ----- Trojan.Starter-12    
Dr.Web ----- Trojan.PWS.Wsgame.8235    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRF trojan    
Ikarus ----- Trojan-PWS.Win32.Agent.hf    
Jiangmin ----- Nothing   
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqly    
Kingsoft ----- Nothing   
Vba32 ----- Trojan-GameThief.Win32.OnLineGames.tqly    

*** 11/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   
D:\Desk\Samples\Collect\MCLS\2008-10-31___866262.exe   
MD5 Hash: 3F7EBB80AF3F95360AD8BFABC01F3728   
Type: DOS Executable Generic / Extension: .EXE   

A-squared ----- Win32.SuspectCrc!IK    
Avast ----- Win32:Spyware-gen [Trj]    
Avg ----- PSW.OnlineGames.BFEK     
Antivir ----- TR/Spy.Gen    
BitDefender ----- Trojan.PWS.OnlineGames.AADA    
ClamWin ----- Trojan.Spy-54879    
Dr.Web ----- MULDROP.Trojan    
NOD32 ----- a variant of Win32/PSW.OnLineGames.NRD trojan    
Ikarus ----- Win32.SuspectCrc    
Jiangmin ----- TrojanSpy.OnLineGames.euu    
Kaspersky ----- Trojan-GameThief.Win32.OnLineGames.tqsa    
Kingsoft ----- Win32.Troj.OnlineGamesT.vy.90588    
Vba32 ----- Nothing   

*** 12/13 antivirus engines found virus in this file ***   
-------------------------------------------------------------------------   

Task done @ 2008/10/31 五 10:30:04.06   

啊弥陀佛

微点拦截


木马名称:Trojan-PSW.Win32.OnLineGames.cvar
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___58817.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

木马名称:Trojan-PSW.Win32.Magania.dsl
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1020781.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___113623.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\22D75360.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___268378.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\4BF9CBA3.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___787890.EXE
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___866262.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\8566F82E.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1114321.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\3474A8C2.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1505611.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\66AFCB56.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1563679.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\DFEC5CB7.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1617536.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\122B901E.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1712139.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\2EF0D734.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1775429.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\9F684DE8.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___1961387.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\9CA963CA.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2022680.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\E3367679.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2089489.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\CA99D57.SYS
2) C:\WINDOWS\SYSTEM32\BA7EDF54.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2135640.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\F65BDEC7.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2214768.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\E0D39066.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2222512.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\3D144530.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2295387.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\B3721C07.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2325708.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\E4814792.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2719504.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\08223B03.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2783664.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\DA63E650.DLL
是否删除木马程序及其衍生物?

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\WEBDOWN\2008-10-31___2886188.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\43ACDCC5.DLL
是否删除木马程序及其衍生物?

[ 本帖最后由 啊弥陀佛 于 2008-10-31 11:03 编辑 ]