一包29个，AVAST全过

显示全部楼层 · 发表于 2007-7-14 07:12:05

6个

========================================================
Norman Message [2007/07/14 07:06:05]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/Malware.AATG'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/netdde32.exe
Virus repaired:
Virus name: 'W32/Malware.AATG'

========================================================
Norman Message [2007/07/14 07:06:06]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'Smalltroj.gen3'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/hacker.com.cn.exe
Virus repaired:
Virus name: 'Smalltroj.gen3'

========================================================
Norman Message [2007/07/14 07:06:08]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/AutoRun.CZ'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/s168.exe
Virus repaired:
Virus name: 'W32/AutoRun.CZ'

========================================================
Norman Message [2007/07/14 07:06:10]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/Spybot.BMWW'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/test.exe
Virus repaired:
Virus name: 'W32/Spybot.BMWW'

========================================================
Norman Message [2007/07/14 07:06:12]
--------------------------------------------------------
Application: NVC Cats Claw
Node address: 192.168.0.5
--------------------------------------------------------

ALARM:
Virus infected:
Virus name: 'W32/Suspicious_U.gen'
Login information: User 'Jason' on host 'JASON-PC'.
File infected: d:/virus/v/11[1].exe
Virus repaired:
Virus name: 'W32/Suspicious_U.gen'

显示全部楼层 · 发表于 2007-7-14 08:34:36

deleted: adware not-a-virus:AdWare.Win32.Agent.ck       File: E:\Ñù±¾\bingdu\203631.exe
deleted: Trojan program Backdoor.Win32.Rizo.b       File: E:\Ñù±¾\bingdu\a.exe
deleted: virus Packed.Win32.PolyCrypt.b       File: E:\Ñù±¾\bingdu\Hacker.com.cn.exe//RPCrypt
deleted: virus Packed.Win32.PePatch.hx       File: E:\Ñù±¾\bingdu\JavaM.exe
deleted: Trojan program Backdoor.Win32.Agent.apy       File: E:\Ñù±¾\bingdu\MSCONF.EXE//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-Downloader.Win32.Agent.byn       File: E:\Ñù±¾\bingdu\NETDDE32.EXE//PE_Patch.Upolyx
deleted: virus Virus.Win32.AutoRun.bk       File: E:\Ñù±¾\bingdu\S168.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-Downloader.Win32.QQHelper.wt       File: E:\Ñù±¾\bingdu\syssbyou1.exe
deleted: adware not-a-virus:AdWare.Win32.Virtumonde.bq       File: E:\Ñù±¾\bingdu\system_safety_monitor_keygen.exe//data.rar/crack.exe
deleted: Trojan program Trojan.Win32.Dialer.qn       File: E:\Ñù±¾\bingdu\system_safety_monitor_keygen.exe//data.rar/serial.exe
deleted: Trojan program Trojan-PSW.Win32.Agent.mi       File: E:\Ñù±¾\bingdu\SysWin64.Sys
deleted: Trojan program Backdoor.Win32.Rizo.b       File: E:\Ñù±¾\bingdu\u[1].exe
deleted: adware not-a-virus:AdWare.Win32.Agent.ck       File: E:\Ñù±¾\bingdu\291.zip/203631.exe
deleted: Trojan program Backdoor.Win32.Rizo.b       File: E:\Ñù±¾\bingdu\291.zip/a.exe

其他的都是死的，尸体

[ 本帖最后由 wangjay1980 于 2007-7-14 12:33 编辑 ]

显示全部楼层 · 发表于 2007-7-14 10:58:12

金山毒霸0个,我晕

显示全部楼层 · 发表于 2007-7-14 12:07:08

203631.exe
   [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
   [WARNING] The file was ignored!
291.rar
  [0] Archive type: RAR
  --> 7[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
  --> 203631.exe
   [DETECTION] Contains signature of the dropper DR/Agent.BZ.7
  --> a.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Rizo.B.12 Backdoor server programs
  --> A0001838.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Baido
  --> A0002179.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Baido
  --> 2[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
  --> 3[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
  --> 4[2].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
  --> 6[2].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
2[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
3[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
4[2].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
6[2].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
7[1].exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
   [WARNING] The file was ignored!
a.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Rizo.B.12 Backdoor server programs
   [WARNING] The file was ignored!
A0001838.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Baido
   [WARNING] The file was ignored!
A0002179.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Baido
   [WARNING] The file was ignored!
Hacker.com.cn.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
   [WARNING] The file was ignored!
JavaM.exe
   [DETECTION] Is the Trojan horse TR/PePatch.HX.1
   [WARNING] The file was ignored!
MSCONF.EXE
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.apy.4 Backdoor server programs
   [WARNING] The file was ignored!
NETDDE32.EXE
   [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
   [WARNING] The file was ignored!
S168.exe
   [DETECTION] Is the Trojan horse TR/Autorun.BK
   [WARNING] The file was ignored!
syssbyou1.exe
   [DETECTION] Is the Trojan horse TR/Dldr.Harnig.5
   [WARNING] The file was ignored!
system_safety_monitor_keygen.exe
  [0] Archive type: RAR SFX (self extracting)
  --> crack.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> serial.exe
   [DETECTION] Is the Trojan horse TR/Dialer.QN.258
   [WARNING] The file was ignored!
SysWin64.Sys
   [DETECTION] Is the Trojan horse TR/Drop.Age.32873.C
   [WARNING] The file was ignored!
update.exe
   [DETECTION] Is the Trojan horse TR/PSW.Wow.MM.20
   [WARNING] The file was ignored!
u[1].exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Rizo.B.13 Backdoor server programs
   [WARNING] The file was ignored!

End of the scan: 2007年7月14日  12:06
Used time: 00:12 min

The scan has been done completely.

   1 Scanning directories
   47 Files were scanned
   29 viruses and/or unwanted programs were found
   0 classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   18 Files not concerned
   2 Archives were scanned
   20 Warnings
   0 Notes
   0 Hidden objects were found

显示全部楼层 · 发表于 2007-7-14 12:34:22

红伞居然连对文件的基本判断都不做

显示全部楼层 · 发表于 2007-7-14 15:18:41

大蜘蛛杀了11个..

显示全部楼层 · 发表于 2007-7-14 17:12:04

安铁诺全杀

显示全部楼层 · 发表于 2007-7-14 18:02:04

费尔爆爆爆

显示全部楼层 · 发表于 2007-7-14 20:15:55

LZ上报了没有?

显示全部楼层 · 发表于 2007-7-14 21:55:08

12.

Scan performed at: 2007-7-14 21:51:48
Scanning Log
NOD32 version 2399 (20070714) NT
Command line: F:\临时解压[1]
Operating memory - is OK

Date: 14.7.2007 Time: 21:51:51
Anti-Stealth technology is enabled.
Scanned disks, folders and files: F:\临时解压[1]\
F:\临时解压[1]\203631.exe - Win32/TrojanDropper.Delf.NEY trojan
F:\临时解压[1]\291.rar ?RAR ?203631.exe - Win32/TrojanDropper.Delf.NEY trojan
F:\临时解压[1]\291.rar ?RAR ?a.exe - probably unknown NewHeur_PE virus [7]
F:\临时解压[1]\a.exe - probably unknown NewHeur_PE virus [7]
F:\临时解压[1]\JavaM.exe - Win32/Rbot trojan
F:\临时解压[1]\MSCONF.EXE - Win32/Delf.NFT trojan
F:\临时解压[1]\NETDDE32.EXE - probably unknown NewHeur_PE virus [7]
F:\临时解压[1]\S168.exe - a variant of Win32/PSW.OnLineGames.NBR trojan
F:\临时解压[1]\syssbyou1.exe - a variant of Win32/TrojanDownloader.QQHelper.NCO trojan
F:\临时解压[1]\system_safety_monitor_keygen.exe ?RAR ?crack.exe - Win32/Adware.Virtumonde application
F:\临时解压[1]\system_safety_monitor_keygen.exe ?RAR ?serial.exe - Win32/Agent.QT trojan
F:\临时解压[1]\u[1].exe - probably unknown NewHeur_PE virus [7]
Number of scanned files: 47
Number of threats found: 12
Number of files cleaned: 10
Time of completion: 21:52:17 Total scanning time: 26 sec (00:00:26)

[ 本帖最后由 hj5abc 于 2007-7-14 21:56 编辑 ]

[病毒样本] 一包29个，AVAST全过

本帖子中包含更多资源