6个

显示全部楼层 · 发表于 2007-9-6 14:58:58

-squared	3.0.0.123	2007.09.05	2007-09-05	-	4.112
Arcavir	1.0.4	200709051809	2007-09-05	-	1.333
AVAST	1.0.8	000773-0	2007-09-05	-	3.041
AVG	7.5.48.442	269.13.6/991	2007-09-05	-	2.043
BitDefender	7.60825.862078	7.14639	2007-09-06	Generic.PWS.Games.4.D8F59EF2	3.462
CA (VET)	8.4.0.24	31.1.5113	2007-09-06	-	0.996
ClamAV	0.91.1	4169	2007-09-06	-	0.096
Comodo	2.11	2.0.0.275	2007-09-05	-	1.282
ewido	4.0.0.2	2007.09.05	2007-09-05	-	3.335
F-SECURE	5.51.6100	2007.09.05.08	2007-09-05	-	3.027
IKARUS	T3.1.1.12	2007.09.06.69456	2007-09-06	Packed.Win32.Klone.af	1.400
MKS_VIR	2.01	2007.09.05	2007-09-05	-	2.463
NOD32	2.70.8	2508	2007-09-06	a variant of Win32/PSW.OnLineGames.YA trojan	4.757
nProtect	2007-09-06.00	43495	2007-09-06	Generic.PWS.Games.4.D8F59EF2	14.089
QuickHeal	9.00	2007.09.05	2007-09-05	Suspicious - DNAScan	2.555
SOPHOS	2.49.1	4.21	2007-09-06	Mal/Packer	2.985
The Hacker	6.1.9	v00178	2007-09-05	-	1.827
VBA32	3.12.2.4	20070906.0441	2007-09-06	MalwareScope.Trojan-PSW.Game.3	3.144
VirusBuster	4.3.19:9	9.101.2/11.0	2007-09-05	Packed/NSPack	1.336
冰岛杀毒	3.16.16	2007.09.06	2007-09-06	W32/Threat-HLLIN-Slipper-based!Maximus	11.134
卡巴斯基	5.5.10	2007.09.06	2007-09-06	Trojan-PSW.Win32.OnLineGames.caz	0.449
大蜘蛛	4.33	2007.09.05	2007-09-05	Trojan.DownLoader.4293	4.916
小红伞	7.6.0.5	6.39.1.95	2007-09-06	TR/Crypt.XPACK.Gen	2.531
江民杀毒	10.00.650	2007.09.04	2007-09-04	Backdoor/Agent.qnt	1.053
熊猫卫士	9.04.03.0001	2007.09.05	2007-09-05	Suspicious file	5.082
瑞星	19.0	19.39.31.00	2007-09-06	Trojan.DL.Win32.Agent.bds	2.108
诺曼	5.91.07	5.90	2007-09-05	W32/Hupigon.gen154	3.870
赛门铁克	1.3.0.24	20070905.023	2007-09-05	Trojan.Packed.16	1.035
趋势	8.500-1001	4.695.00	2007-09-04	-	0.061
迈克菲	5.2.00	5113	2007-09-05	New Malware.aq	5.096
金山毒霸	2007.6.20.249	2007.9.6	2007-09-06	Win32.Troj.Downloader.hg.4154	1.270

[ 本帖最后由 promised 于 2007-9-6 16:14 编辑 ]

显示全部楼层 · 发表于 2007-9-6 15:03:11

里面6个样本，大多数杀软都只能侦测到1个

[ 本帖最后由绅博周幸于 2007-9-6 15:05 编辑 ]

显示全部楼层 · 发表于 2007-9-6 15:06:06

伞mm TR/Crypt.XPACK.Gen

显示全部楼层 · 发表于 2007-9-6 15:06:28

驱逐舰6个全部搞了

显示全部楼层 · 发表于 2007-9-6 15:07:47

病毒名称都是一样的,看来只是加了不同的壳?

显示全部楼层 · 发表于 2007-9-6 15:09:42

Begin scan in 'C:\Documents and Settings\dell\桌面\g.rar'
C:\Documents and Settings\dell\桌面\g.rar
  [0] Archive type: RAR
  --> 6.exe.out.exe
   [DETECTION] Contains detection pattern of the HEUR-DBLEXT/Crypted virus
  --> 2.exe.out.exe
   [DETECTION] Contains detection pattern of the HEUR-DBLEXT/Crypted virus
  --> 3.exe.out.exe
   [DETECTION] Contains detection pattern of the HEUR-DBLEXT/Crypted virus
  --> 4.exe.out.exe
   [DETECTION] Contains detection pattern of the HEUR-DBLEXT/Crypted virus
  --> 5.exe.out.exe
   [DETECTION] Contains detection pattern of the HEUR-DBLEXT/Crypted virus
  --> 1.exe.out.exe
   [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
   [WARNING] The file was ignored!

显示全部楼层 · 发表于 2007-9-6 15:10:01

已删除：木马程序 Trojan-PSW.Win32.OnLineGames.cbd 文件　: C:\Documents and Settings\Administrator\桌面\g.rar/6.exe.out.exe//NSPack//NakedPack
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.caz 文件　: C:\Documents and Settings\Administrator\桌面\g.rar/2.exe.out.exe//NSPack//NakedPack//PE_Patch.UPX//UPX
已删除：病毒 Virus.Win32.AutoRun.jj 文件　: C:\Documents and Settings\Administrator\桌面\g.rar/3.exe.out.exe//NSPack//NakedPack//PE_Patch.UPX//UPX
已删除：木马程序 Trojan-PSW.Win32.Delf.aak 文件　: C:\Documents and Settings\Administrator\桌面\g.rar/4.exe.out.exe//NSPack//NakedPack//UPX
已删除：木马程序 Trojan-PSW.Win32.OnLineGames.cbc 文件　: C:\Documents and Settings\Administrator\桌面\g.rar/5.exe.out.exe//NSPack//NakedPack

显示全部楼层 · 发表于 2007-9-6 15:11:45

微点：
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\G\2.EXE.OUT.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\CMDBCS.EXE
2) C:\WINDOWS.0\SYSTEM32\CMDBCS.DLL
是否删除木马程序及其衍生物?
木马名称:未知间谍软件

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\G\2.EXE.OUT.EXE
是木马程序!
已成功阻止其运行,是否要删除此文件?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\G\3.EXE.OUT.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\SYSTEM32\SERVET.EXE
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\G\5.EXE.OUT.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\MPPDS.EXE
2) C:\WINDOWS.0\SYSTEM32\MPPDS.DLL
是否删除木马程序及其衍生物?
程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\G\6.EXE.OUT.EXE
木马程序生成以下文件:
1) C:\WINDOWS.0\UPXDND.EXE
2) C:\WINDOWS.0\SYSTEM32\UPXDND.DLL
是否删除木马程序及其衍生物?

1和4运行即退出

显示全部楼层 · 发表于 2007-9-6 15:19:33

MicroVita AntiSpyware 100 C
_____________________________________________

         风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]
               http://221.10.254.214/
----------------------------------------------
开始扫描……

正在检查启动……
[C:\Documents and Settings\Administrator\桌面\virus\NSPack\6.exe.out.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\NSPack\2.exe.out.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\NSPack\3.exe.out.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\NSPack\4.exe.out.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\NSPack\5.exe.out.exe]
                  …………引擎[2]发现病毒:Win32.NkHack.BDX.A
[C:\Documents and Settings\Administrator\桌面\virus\NSPack\1.exe.out.exe]
                  …………引擎[2]发现病毒:Win32.Nop .nsp
文件数:6 病毒数:6  比重:1

OK 扫描完毕！

显示全部楼层 · 发表于 2007-9-6 15:53:57

6个

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块