17个毒网产物更新？

显示全部楼层 · 发表于 2007-8-23 15:30:16

[MD5: B0F1A2 B0FE17 AE58D5 97A34D E5A8D8 235786 A26C81 E644C4 397A45 B36E90 CE7195 B563A4 A69053 19F8D1 DC894A 3EA932 4163C5]

显示全部楼层 · 发表于 2007-8-23 15:32:43

Scan performed at: 2007-8-23 15:31:26
Scanning Log
NOD32 version 2477 (20070823) NT
Command line: C:\Documents and Settings\Don johnson\桌面\样本2.rar
Operating memory - is OK

Date: 23.8.2007 Time: 15:31:31
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\Don johnson\桌面\样本2.rar
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?3.exe - a variant of Win32/PSW.Agent.NEC trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?4.exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?6.exe - a variant of Win32/AutoRun.Q worm
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?7.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?8.exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?9.exe - a variant of Win32/PSW.OnLineGames.NEP trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?10.exe - probably unknown NewHeur_PE virus [7]
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?11.exe - Win32/PSW.OnLineGames.NEP trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?12.exe - a variant of Win32/PSW.OnLineGames.YA trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?13.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?14.exe - Win32/Delf.NFD trojan - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?15.exe - probably a variant of Win32/Genetik trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?16.exe - a variant of Win32/PSW.OnLineGames.NEP trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?17.exe - a variant of Win32/PSW.OnLineGames.NEN trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?19.exe - a variant of Win32/PSW.Legendmir.NEP trojan
C:\Documents and Settings\Don johnson\桌面\样本2.rar ?RAR ?20.exe - a variant of Win32/PSW.OnLineGames.NEP trojan
Number of scanned files: 18
Number of threats found: 16
Number of files cleaned: 1
Time of completion: 15:31:34 Total scanning time: 3 sec (00:00:03)

Notes:
[7] File is probably infected with an unknown virus.

显示全部楼层 · 发表于 2007-8-23 15:33:31

江民杀毒软件报告文件

北京江民新科技术有限公司

扫描引擎 11.00.700
病毒库日期 2007-08-22
更新日期 2007-08-23

扫描目标 C:\Documents and Settings\Administrator\桌面\样本2.rar

开始时间 2007-08-23 15:33:00

在 C:\Documents and Settings\Administrator\桌面\样本2.rar->4.exe 中发现 Trojan/PSW.GamePass.wyq 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\样本2.rar->7.exe 中发现 Trojan/PSW.GamePass.wdv 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\样本2.rar->9.exe 中发现 TrojanDownloader.Small.ltv 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\样本2.rar->11.exe 中发现 TrojanDropper.Delf.aix 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\样本2.rar->15.exe 中发现 TrojanDownloader.Agent.nvx 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\样本2.rar->16.exe 中发现 Trojan/PSW.GamePass.xem 病毒, 已删除
在 C:\Documents and Settings\Administrator\桌面\样本2.rar->19.exe 中发现 Trojan/PSW.OnLineGames.etv 病毒, 已删除
正常结束。

扫描结果:
               文件数 :475                               病毒体 :7
               删除 :7                                  解毒 :0
扫描速度(千字节/秒) :11295                            扫描时间 :00:00:11
扫描文件速度(个/秒) :43

显示全部楼层 · 发表于 2007-8-23 15:34:49

detected: Trojan program Trojan-PSW.Win32.WOW.ro File: E:\Ñù±¾\bingdu\2007Äê8ÔÂ22ÈÕ17Ê±54·Ö21Ãësys12.exe//UPack
detected: Trojan program Trojan-Downloader.Win32.Flux.c File: E:\Ñù±¾\bingdu\2007Äê8ÔÂ22ÈÕ17Ê±54·Ö21Ãësys18.exe
detected: virus Heur.StartPage (modification) File: E:\Ñù±¾\bingdu\1.exe//PEPatch
detected: Trojan program Trojan-PSW.Win32.OnLineGames.aih File: E:\Ñù±¾\bingdu\3.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.aii File: E:\Ñù±¾\bingdu\4.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.agq File: E:\Ñù±¾\bingdu\7.exe//PE_Patch.UPX//UPX
detected: Trojan program Trojan-Downloader.Win32.Small.bdb File: E:\Ñù±¾\bingdu\9.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.ahj File: E:\Ñù±¾\bingdu\11.exe
detected: Trojan program Trojan-PSW.Win32.OnLineGames.adm File: E:\Ñù±¾\bingdu\12.exe//#
detected: Trojan program Trojan.Win32.Agent.axh File: E:\Ñù±¾\bingdu\13.exe//PE_Patch//UPack
detected: Trojan program Backdoor.Win32.Delf.awy File: E:\Ñù±¾\bingdu\14.exe
detected: Trojan program Trojan-PSW.Win32.Lmir.amj File: E:\Ñù±¾\bingdu\15.exe//UPack
detected: virus Heur.Trojan.Generic (modification) File: E:\Ñù±¾\bingdu\16.exe//PE_Patch//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.adn File: E:\Ñù±¾\bingdu\19.exe//ASPack

显示全部楼层 · 发表于 2007-8-23 15:35:05

----------
[凝逸反毒] (http://hi.baidu.com/503165656)
[凝逸.扫描病毒引擎-日志] 2007.8.23 15:33:32
文件:F:\070823\样本2\3.exe | 感染:virus [708>20070822_ny0010.axx]3(1.1)
操作:删除文件
文件:F:\070823\样本2\4.exe | 感染:Win32.Virut.5 [129>20070822_ny0010.axx]3(2.2)
操作:删除文件
文件:F:\070823\样本2\7.exe | 感染:Trojan.PWS.Gamania.3421 [49>20070820_ny0009.axx]3(1.1)
操作:删除文件
文件:F:\070823\样本2\9.exe | 感染:BACKDOOR.Trojan [51>20070820_ny0009.axx]3(1.1)
操作:删除文件
文件:F:\070823\样本2\11.exe | 感染:Trojan.DownLoader.30290 [43>20070820_ny0009.axx]3(2.2)
操作:删除文件
文件:F:\070823\样本2\13.exe | 感染:Trojan.DownLoader.30259 [45>20070820_ny0009.axx]3(1.1)
操作:删除文件
文件:F:\070823\样本2\14.exe | 感染:virus [184>20070822_ny0010.axx]3(1.1)
操作:删除文件
文件:F:\070823\样本2\15.exe | 感染:virus [652>20070822_ny0010.axx]3(3.3)
操作:删除文件
文件:F:\070823\样本2\19.exe | 感染:virus [105>20070820_ny0009.axx]3(2.2)
操作:删除文件
扫描完成|病毒:9 文件:17|耗时:5338
----------

显示全部楼层 · 发表于 2007-8-23 15:39:33

为PC护航风暴微塔
_____________________________________________

         风暴微塔反间谋
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
                        [内测版]
               http://www.v0day.com/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\virus\样本2\1.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.PeM.A
[C:\Documents and Settings\Administrator\桌面\virus\样本2\4.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\样本2\4.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\9.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\样本2\9.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\10.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\样本2\10.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\12.exe]
                  …………引擎[3]发现Suspicious file
[C:\Documents and Settings\Administrator\桌面\virus\样本2\13.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\样本2\13.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\15.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\16.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\17.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
[C:\Documents and Settings\Administrator\桌面\virus\样本2\19.exe]
                  …………特征码引擎[1]发现病毒
[C:\Documents and Settings\Administrator\桌面\virus\样本2\20.exe]
                  …………引擎[2]发现病毒:Win32.Unknow
文件数:17 病毒数:15  比重:0.8823529411765
OK  扫描完毕！

[ 本帖最后由 FBAV 于 2007-8-23 15:46 编辑 ]

显示全部楼层 · 发表于 2007-8-23 15:46:01

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.PSW.Win32.XYOnline.ft
病毒： Trojan.PSW.Win32.OnlineGames.xtw
病毒： Trojan.PSW.Win32.OnlineGames.xqr
病毒： Trojan.PSW.Win32.WoWar.up
病毒： Trojan.PSW.Win32.XYOnline.fn
病毒： Trojan.PSW.Win32.OnlineGames.xsq
病毒： Trojan.PSW.Win32.OnlineGames.xwr
病毒： Trojan.Win32.Agent.vqx
病毒： Trojan.PSW.Win32.OnlineGames.xwa
病毒： Trojan.Win32.Agent.vsg
病毒： Trojan.PSW.Win32.LMir.lyc

显示全部楼层 · 发表于 2007-8-23 15:47:02

显示全部楼层 · 发表于 2007-8-23 15:56:44

tarting the file scan:

Begin scan in 'C:\Documents and Settings\dell\桌面\样本2.rar'
C:\Documents and Settings\dell\桌面\样本2.rar
  [0] Archive type: RAR
  --> 1.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
  --> 3.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLine.agb.2
  --> 4.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
  --> 6.exe
   [DETECTION] Contains signature of the dropper DR/Delphi.Gen
  --> 7.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGame.YF
  --> 8.exe
   [DETECTION] Contains signature of the dropper DR/Delphi.Gen
  --> 9.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineG.MI.1
  --> 10.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
  --> 11.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineG.MI.1
  --> 12.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> 13.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
  --> 14.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> 15.exe
   [DETECTION] Is the Trojan horse TR/Agent.12475
  --> 16.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineG.MI.1
  --> 17.exe
   [DETECTION] Contains suspicious code HEUR/Malware
  --> 19.exe
   [DETECTION] Contains signature of the dropper DR/Delphi.Gen
  --> 20.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [WARNING] The file was ignored!

End of the scan: 2007年8月23日  15:56
Used time: 01:12 min

The scan has been done completely.

   0 Scanning directories
   19 Files were scanned
   17 viruses and/or unwanted programs were found
   2 classified as suspicious:

显示全部楼层 · 发表于 2007-8-23 16:04:10

江民瑞星都来了，我贴个金山的

[病毒样本] 17个毒网产物更新？

本帖子中包含更多资源

nod32还是一样，16个

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源