进了毒窟，25个，sorry MD5实在太多，内详

wangjay1980

12ge

detected: virus Heur.Downloader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/12[2].exe
detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/15[1].exe//NSPack
detected: Trojan program Trojan-Downloader.Win32.Small.czl        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/1633[1].exe//UPack//#//PE-Crypt.XorPE
detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/163a[1].exe//PE_Patch.UPX
detected: virus Heur.Invader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/2[2].exe
detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/5[1].exe//PE_Patch//UPack
detected: virus Heur.Invader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/6[1].exe
detected: virus Heur.Invader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/7[2].exe
detected: virus Heur.Downloader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/888[1].exe
detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/9[1].exe//PE_Patch.UPX
detected: virus Heur.Trojan.Generic        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/down[1].exe//NSPack
detected: virus Heur.Invader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\virus25.zip/exe[1].exe

The EQs

Scan performed at: 2007-6-27 10:41:56
Scanning Log
NOD32 version 2356 (20070627) NT
Command line: C:\Documents and Settings\EQ2\桌面\virus.rar
Operating memory - is OK

Date: 27.6.2007  Time: 10:42:02
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\virus.rar
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?11[2].exe - a variant of Win32/PSW.Legendmir.NEP trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?12[2].exe - probably a variant of Win32/PSW.QQPass.VD trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?1633[1].exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?163a[1].exe - a variant of Win32/PSW.Agent.NEW trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?2[2].exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?5[1].exe - a variant of Win32/PSW.OnLineGames.RC trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?6[1].exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?7[2].exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?8[2].exe - a variant of Win32/Agent.NIK trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?888[1].exe - a variant of Win32/PSW.Delf.NHI trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?9[1].exe - a variant of Win32/PSW.Agent.NEW trojan
C:\Documents and Settings\EQ2\桌面\virus.rar ?RAR ?down[1].exe - a variant of Win32/TrojanDownloader.Delf.NSA trojan
Number of scanned files: 26
Number of threats found: 12
Number of files cleaned: 1
Time of completion: 10:42:04 Total scanning time: 2 sec (00:00:02)

yashoo

咖啡报了13个，呵呵，不错呀

蓝色牛仔裤

蜘蛛16个。。 货真价实。

tonger2003

卡巴稍逊色了点~~~

傻猪猪米走鸡

IKARUS很多不是报毒的……

1688388728

以 AntiVirusKit 掃瞄病毒
版本 17.0.6353
病毒特徵碼 6/27/2007
開始時間: 6/27/2007 11:51
引擎: 引擎 A (AVK 17.5678), 引擎 B (AVKB 17.275)
啟發式: 開啟
壓縮檔: 開啟
系統區域: 開啟

掃瞄系統區域...
掃瞄所選的目錄及檔案...
物件: 15[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Small-AMI [Trj] (引擎 B)
物件: [Upack]
        壓縮檔中: E:\病毒库\virus\1633[1].exe
        狀態: 偵測到病毒
        病毒: Win32:Small-EKC [Trj] (引擎 B)
物件: 1633[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Small-EKC [Trj] (引擎 B)
物件: [UPX]
        壓縮檔中: E:\病毒库\virus\163a[1].exe
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACS [Trj] (引擎 B)
物件: 163a[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACS [Trj] (引擎 B)
物件: 2[2].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACD [Trj] (引擎 B)
物件: [Upack]
        壓縮檔中: E:\病毒库\virus\5[1].exe
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACS [Trj] (引擎 B)
物件: 5[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACS [Trj] (引擎 B)
物件: 6[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACD [Trj] (引擎 B)
物件: 7[2].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACD [Trj] (引擎 B)
物件: [UPX]
        壓縮檔中: E:\病毒库\virus\888[1].exe
        狀態: 偵測到病毒
        病毒: Win32:Delf-EWR [Trj] (引擎 B)
物件: 888[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Delf-EWR [Trj] (引擎 B)
物件: [UPX]
        壓縮檔中: E:\病毒库\virus\9[1].exe
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACS [Trj] (引擎 B)
物件: 9[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Onlinegames-ACS [Trj] (引擎 B)
物件: down[1].exe
        路徑: E:\病毒库\virus
        狀態: 偵測到病毒
        病毒: Win32:Small-AMI [Trj] (引擎 B)
分析完成: 6/27/2007 11:51
    已掃瞄 25 檔案
    偵測到 10 已感染的檔案
    偵測到 0 可疑的檔案

wangjay1980

Hello,

11[1].exe_,
12[1].exe_,
14[2].exe_,
2[1].exe_,
3[1].exe_,
4[2].exe_,
6[2].exe_,
7[1].exe_,
9[2].exe_

No malicious code were found in these files.

11[2].exe_ - Trojan-PSW.Win32.OnLineGames.zi,

12[2].exe_ - Trojan-PSW.Win32.QQPass.wm,

15[1].exe_,
down[1].exe_ - Trojan-Downloader.Win32.Delf.bni,

1633[1].exe_ - Trojan-Downloader.Win32.Small.czl,

163a[1].exe_ - Trojan-PSW.Win32.Nilage.bkn,

1[1].exe_ - Trojan.BAT.Agent.ah,

2[2].exe_ - Trojan-PSW.Win32.OnLineGames.zj,

5[1].exe_ - Trojan-PSW.Win32.Nilage.bko,

6[1].exe_ - Trojan-PSW.Win32.OnLineGames.zk,

7[2].exe_ - Trojan-PSW.Win32.OnLineGames.zl,

888[1].exe_ - Trojan-PSW.Win32.Delf.qc,

8[1].exe_,
8[2].exe_ - Trojan.Win32.Agent.abf,

9[1].exe_ - Trojan-PSW.Win32.Nilage.bkp,

exe[1].exe_ - Trojan-PSW.Win32.OnLineGames.zm

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

Please quote all when answering.

--
Best regards, Dmitry Shvetsov
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.



> Attachment: virus25.zip

woai_jolin

2007/6/27 13:14:25        Scanning Log
2007/6/27 13:14:25        Version of virus signature database: 2356 (20070627)
2007/6/27 13:14:25        Date: 27.6.2007  Time: 13:14:24
2007/6/27 13:14:25        Scanned disks, folders and files: D:\peid\
2007/6/27 13:14:28        D:\peid\11[2].exe - a variant of Win32/PSW.Legendmir.NEP trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:29        D:\peid\12[2].exe - probably a variant of Win32/PSW.QQPass.VD trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:31        D:\peid\1633[1].exe - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:32        D:\peid\163a[1].exe - a variant of Win32/PSW.Agent.NEW trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:33        D:\peid\2[2].exe - a variant of Win32/PSW.OnLineGames.YA trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:34        D:\peid\5[1].exe - a variant of Win32/PSW.OnLineGames.RC trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:35        D:\peid\6[1].exe - a variant of Win32/PSW.OnLineGames.YA trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:36        D:\peid\7[2].exe - a variant of Win32/PSW.OnLineGames.YA trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:37        D:\peid\888[1].exe - a variant of Win32/PSW.Delf.NHI trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:38        D:\peid\8[2].exe - a variant of Win32/Agent.NIK trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:39        D:\peid\9[1].exe - a variant of Win32/PSW.Agent.NEW trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:40        D:\peid\down[1].exe - a variant of Win32/TrojanDownloader.Delf.NSA trojan - cleaned by deleting - quarantined [1]
2007/6/27 13:14:40        Number of scanned files: 25
2007/6/27 13:14:40        Number of threats found: 12
2007/6/27 13:14:40        Time of completion: 13:14:40  Total scanning time: 16 sec (00:00:16)
2007/6/27 13:14:40        Notes:
2007/6/27 13:14:40        [1] File has been deleted as it contained only the virus body.

remind_me

不知道LZ从哪里弄来这么多。。。难道LZ的电脑是杀毒厂商故意上网招惹病毒的机器？