16只毒网产物

promised

1

promised

C:\ABC\1(1).exe - 特征码 'Backdoor.Klj' 被发现
C:\ABC\11(1).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\12(1).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\14(1).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\15(1).exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现
C:\ABC\17.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\18.exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现
C:\ABC\19(1).exe - 特征码 'Trojan-PWS.Win32.OnLineGames.dm' 被发现
C:\ABC\20(1).exe - 特征码 'BehavesLikeWin32.Malware' 被发现
C:\ABC\3(1).exe - 特征码 'Trojan-PWS.Win32.OnLineGames.cft' 被发现
C:\ABC\4.exe - 特征码 'Generic.PWStealer' 被发现
C:\ABC\5.exe - 特征码 'Trojan-PWS.Win32.OnLineGames.wp' 被发现
C:\ABC\6(1).exe - 特征码 'Virus.Win32.AutoRun.bs' 被发现
C:\ABC\7(1).exe - 特征码 'Generic.PWS.Games.2' 被发现
C:\ABC\8(1).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\9(1).exe - 特征码 'Trojan-Spy.Win32.Bancos.ha' 被发现

红心王子

2007-9-14        18:20:19        1189765219        Administrator        2764        Sign of "Win32:Agent-LLK [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\18.exe\[Upack]\[Embedded#MUSIC]" file.  
2007-9-14        18:20:21        1189765221        Administrator        2764        Sign of "Win32:Delf-FVM [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\11(1).exe\[Upack]\[Embedded#MUSIC]" file.  
2007-9-14        18:20:23        1189765223        Administrator        2764        Sign of "Win32:Onlinegames-BBG [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\12(1).exe\[Upack]\[Embedded#9060]\[Upack]" file.  
2007-9-14        18:20:25        1189765225        Administrator        2764        Sign of "Win32:OnLineGames-ST [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\3(1).exe\[Embedded#0c80]\[Upack]\[Embedded#5158]\[Upack]" file.  
2007-9-14        18:20:26        1189765226        Administrator        2764        Sign of "Win32:OnLineGames-SR [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\3(1).exe" file.  
2007-9-14        18:20:27        1189765227        Administrator        2764        Sign of "Win32:Onlinegames-ALS [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\19(1).exe\[ASPack]\[Embedded#ABCDE]" file.  
2007-9-14        18:20:28        1189765228        Administrator        2764        Sign of "Win32:Onlinegames-AUU [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\14(1).exe\[Upack]\[Embedded#6060]\[Upack]" file.  
2007-9-14        18:20:29        1189765229        Administrator        2764        Sign of "Win32:Delf-DXA [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\20(1).exe\[FSG]\[MaskPE]\[Embedded#EXE]" file.  
2007-9-14        18:20:30        1189765230        Administrator        2764        Sign of "Win32:Onlinegames-BBV [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\5.exe\[UPX]" file.  
2007-9-14        18:20:32        1189765232        Administrator        2764        Sign of "Win32:Agent-LLL [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\9(1).exe\[Upack]" file.  
2007-9-14        18:20:33        1189765233        Administrator        2764        Sign of "Win32:Autorun-BS [Wrm]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\6.exe\[UPX]\[Embedded#060f8]" file.  
2007-9-14        18:20:34        1189765234        Administrator        2764        Sign of "Win32:Onlinegames-BBH [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\8.exe\[Upack]\[Embedded#5060]\[Upack]" file.  
2007-9-14        18:20:35        1189765235        Administrator        2764        Sign of "Win32:Small-DJC [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\1(1).exe" file.  
2007-9-14        18:20:36        1189765236        Administrator        2764        Sign of "Win32:Onlinegames-BBR [Trj]" has been found in "C:\Documents and Settings\Administrator\桌面\ABC.rar\17.exe\[UPX]\[Embedded#1e60]" file.  

小A 14个

kp2006

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.PSW.Win32.ZeroOnline.ao
病毒： Trojan.PSW.Win32.OnlineGames.ykp
病毒： Trojan.PSW.Win32.RocOnline.du
病毒： Dropper.Win32.OnlineGames.az
病毒： Trojan.PSW.Win32.OnlineGames.yqc
病毒： Trojan.PSW.Win32.OnlineGames.yqf
病毒： Trojan.PSW.Win32.ZhengTu.yjx
病毒： Backdoor.Win32.Agent.yfe
病毒： Trojan.PSW.Win32.OnlineGames.yji
病毒： Trojan.PSW.Win32.OnlineGames.yii
病毒： Trojan.PSW.Win32.OnlineGames.yhi

MAC 地址：00:0A:E6:5B:8F:44

用户来源：互联网

软件版本：20.09.42



瑞星2008主动防御

[ 本帖最后由 kp2006 于 2007-9-14 18:31 编辑 ]

欠妳緈諨

王子，AVAST应该是13个，以删除数目为准，因为AVAST有时会把一个文件解开报几个毒

红心王子

谢谢幸福兄的提醒，知道了

风野胤

Scanning Log
NOD32 version 2529 (20070913) NT
Command line: R:\ABC.rar
Checking CRC of NOD32.EXE: Status OK
Scanning memory: Not performed (option disabled)
Error occurred while scanning MBR sector of the 2.  ?
?physical disk. Error reading sector.
Date: 14.9.2007  Time: 18:26:16
Anti-Stealth technology is enabled.
Scanned disks, folders and files: R:\ABC.rar
R:\ABC.rar ?RAR ?18.exe - probably a variant of  ?
?Win32/Genetik trojan
R:\ABC.rar ?RAR ?11(1).exe - probably a variant of  ?
?Win32/Genetik trojan
R:\ABC.rar ?RAR ?12(1).exe - probably a variant of  ?
?Win32/PSW.OnLineGames.NEP trojan
R:\ABC.rar ?RAR ?3(1).exe - a variant of Win32/PSW.Agent. ?
?NEC trojan
R:\ABC.rar ?RAR ?7(1).exe - probably a variant of  ?
?Win32/Genetik trojan
R:\ABC.rar ?RAR ?19(1).exe - a variant of Win32/PSW. ?
?Legendmir.NEP trojan
R:\ABC.rar ?RAR ?4.exe - probably a variant of  ?
?Win32/Genetik trojan
R:\ABC.rar ?RAR ?14(1).exe - probably a variant of  ?
?Win32/PSW.OnLineGames.NEP trojan
R:\ABC.rar ?RAR ?15(1).exe - probably a variant of  ?
?Win32/PSW.OnLineGames.NEN trojan
R:\ABC.rar ?RAR ?20(1).exe - probably unknown NewHeur_PE  ?
?virus [7]
R:\ABC.rar ?RAR ?5.exe - a variant of Win32/PSW. ?
?OnLineGames.YA trojan
R:\ABC.rar ?RAR ?9(1).exe - probably a variant of  ?
?Win32/Genetik trojan
R:\ABC.rar ?RAR ?6.exe - probably a variant of  ?
?Win32/AutoRun.Q worm
R:\ABC.rar ?RAR ?8.exe - probably a variant of Win32/PSW. ?
?OnLineGames.NEP trojan
R:\ABC.rar ?RAR ?17.exe - a variant of Win32/PSW. ?
?OnLineGames.YA trojan
Number of scanned files: 16
Number of threats found: 15
Time of completion: 18:26:19 Total scanning time: 3 sec  ?
?(00:00:03)
Notes:
[7] File is probably infected with an unknown virus.

jimmyleo

pro ik更新过了 不知道有什么改进~

风野胤

原帖由 promised 于 2007-9-14 18:18 发表
C:\ABC\1(1).exe - 特征码 'Backdoor.Klj' 被发现
C:\ABC\11(1).exe - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
C:\ABC\12(1).exe - 特征码 'Trojan-Downloader.Win32.Zlob.and' 被发现
C:\ABC\14(1).exe ...

promised啊
1（1）exe不就是上次我说的那个弹lingoes设置窗口的那个么
看了一下
果然是改了系统时间
nod始终不认为这个是毒。。。。。。。。

promised

发这个邮箱去问问  
BONO.M@ikarus.at