8 ge

显示全部楼层 · 发表于 2007-10-15 14:50:59

扫描开始时间: 2007-10-15 14:50:35
扫描日志
NOD32 版本 2591 (20071014) NT
命令行: C:\Documents and Settings\Administrator\桌面\onlinegame.rar

日期: 2007年10月15日时间: 14:50:36
反 Rookits 技术已启用。
已扫描磁盘、文件夹和文件: C:\Documents and Settings\Administrator\桌面\onlinegame.rar
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?7.exe<病毒 - Win32/PSW.OnLineGames.NFN 木马变种>
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?2.exe<病毒 - Win32/PSW.OnLineGames.NFL 木马变种>
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?3.exe<病毒 - 可能是 Win32/Genetik 木马变种>
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?4.exe<病毒 - Win32/PSW.OnLineGames.NFL 木马变种>
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?5.exe<病毒 - 可能是 Win32/Genetik 木马变种>
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?6.exe<病毒 - Win32/PSW.OnLineGames.NFN 木马变种>
C:\Documents and Settings\Administrator\桌面\onlinegame.rar ?RAR ?1.exe<病毒 - 可能是 Win32/Genetik 木马变种>
已扫描文件数量: 8
已发现病毒数量: 7
完成时间: 14:50:38 总共扫描时间: 2 秒 (00:00:02)

显示全部楼层 · 发表于 2007-10-15 14:51:23

已检测到: 木马程序 Trojan-PSW.Win32.OnLineGames.eos 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/7.exe//UPX
已检测到: 木马程序 Trojan-PSW.Win32.OnLineGames.fdd 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/2.exe//PE_Patch.UPX//UPX
已检测到: 木马程序 Trojan-PSW.Win32.OnLineGames.eqt 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/3.exe//UPack
已检测到: 木马程序 Trojan-PSW.Win32.OnLineGames.fed 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/4.exe//PE_Patch.UPX//UPX
已检测到: 木马程序 Trojan-PSW.Win32.WOW.zu 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/5.exe//UPack
已检测到: 木马程序 Trojan-PSW.Win32.OnLineGames.fee 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/6.exe//UPX
已检测到: 木马程序 Trojan-PSW.Win32.OnLineGames.fbi 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/1.exe//UPack
已检测到: 木马程序 Trojan-Spy.Win32.Delf.ang 文件: C:\Documents and Settings\Redevil\桌面\onlinegame.rar/8.EXe//UPack

显示全部楼层 · 发表于 2007-10-15 14:52:38

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\onlinegame.rar'
C:\Documents and Settings\Administrator\桌面\onlinegame.rar
  [0] Archive type: RAR
  --> 7.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.ddm.1
  --> 2.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 3.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.eqt.1
  --> 4.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> 5.exe
   [DETECTION] Is the Trojan horse TR/Drop.Agen.26778.A
  --> 6.exe
   [DETECTION] Is the Trojan horse TR/PSW.Online.ddm.1
  --> 1.exe
   [DETECTION] Is the Trojan horse TR/FWDisable.20576.2
  --> 8.EXe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
   [INFO]    The file was deleted!

End of the scan: 星期一 2007年10月15日  14:52
Used time: 00:20 min

The scan has been done completely.

   0 Scanning directories
   10 Files were scanned
   8 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   2 Files not concerned
   1 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-10-15 15:28:47

detected: Trojan program Trojan-PSW.Win32.OnLineGames.eos URL: http://bbs.kafan.cn/attachment.php?aid=139839//7.exe//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.fdd URL: http://bbs.kafan.cn/attachment.p ... //PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.fde URL: http://bbs.kafan.cn/attachment.p ... xe//PE_Patch.UPX//#
detected: virus Heur.Invader (modification) URL: http://bbs.kafan.cn/attachment.p ... 2.exe//PE_Patch.UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqt URL: http://bbs.kafan.cn/attachment.php?aid=139839//3.exe//UPack
detected: Trojan program Trojan-PSW.Win32.OnLineGames.eqt URL: http://bbs.kafan.cn/attachment.php?aid=139839//3.exe//UPack//#
detected: Trojan program Trojan-PSW.Win32.OnLineGames.fed URL: http://bbs.kafan.cn/attachment.p ... //PE_Patch.UPX//UPX
detected: Trojan program Trojan-PSW.Win32.OnLineGames.fed URL: http://bbs.kafan.cn/attachment.p ... xe//PE_Patch.UPX//#

显示全部楼层 · 发表于 2007-10-15 15:59:14

结果: 发现5个恶意软件
Trojan-PSW.Win32.OnLineGames.eos (病毒)
F:\du\onlinegame.rar\7.exe
Trojan-PSW.Win32.OnLineGames.fdd (病毒)
F:\du\onlinegame.rar\2.exe
Trojan-PSW.Win32.OnLineGames.eqt (病毒)
F:\du\onlinegame.rar\3.exe
Trojan-PSW.Win32.WOW.zu (病毒)
F:\du\onlinegame.rar\5.exe
Trojan-PSW.Win32.OnLineGames.fbi (病毒)
F:\du\onlinegame.rar\1.exe

显示全部楼层 · 发表于 2007-10-15 18:48:14

漏掉3个

2007-10-15 18:46:55 onlinegame.rar C:\Documents and Settings\l\桌面 3
3.exe Trojan.PWS.Gamania.5094
4.exe Trojan.PWS.Wsgame.1705
5.exe Trojan.PWS.Gamania.5078
6.exe Trojan.PWS.Wsgame.1653
1.exe Trojan.PWS.Gamania.5186

显示全部楼层 · 发表于 2007-10-15 19:46:38

NOD32 version 2591 (20071014) NT
Command line: E:\download\onlinegame.rar

Date: 15.10.2007 Time: 19:44:50
Anti-Stealth technology is enabled.
Scanned disks, folders and files: E:\download\onlinegame.rar
E:\download\onlinegame.rar ?RAR ?7.exe - a variant of Win32/PSW.OnLineGames.NFN trojan
E:\download\onlinegame.rar ?RAR ?2.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\download\onlinegame.rar ?RAR ?3.exe - probably a variant of Win32/Genetik trojan
E:\download\onlinegame.rar ?RAR ?4.exe - a variant of Win32/PSW.OnLineGames.NFL trojan
E:\download\onlinegame.rar ?RAR ?5.exe - probably a variant of Win32/Genetik trojan
E:\download\onlinegame.rar ?RAR ?6.exe - a variant of Win32/PSW.OnLineGames.NFN trojan
E:\download\onlinegame.rar ?RAR ?1.exe - probably a variant of Win32/Genetik trojan
Number of scanned files: 9
Number of threats found: 7
Number of files cleaned: 1

显示全部楼层 · 发表于 2007-10-15 20:46:31

紅傘P版表現出色。。全殺掉。8只。

显示全部楼层 · 发表于 2007-10-15 20:48:52

Result: 5 malware found
Trojan-PSW.Win32.OnLineGames.eos (virus)
C:\Users\Administrator\Desktop\onlinegame.rar\7.exe
Trojan-PSW.Win32.OnLineGames.fdd (virus)
C:\Users\Administrator\Desktop\onlinegame.rar\2.exe
Trojan-PSW.Win32.OnLineGames.eqt (virus)
C:\Users\Administrator\Desktop\onlinegame.rar\3.exe
Trojan-PSW.Win32.WOW.zu (virus)
C:\Users\Administrator\Desktop\onlinegame.rar\5.exe
Trojan-PSW.Win32.OnLineGames.fbi (virus)
C:\Users\Administrator\Desktop\onlinegame.rar\1.exe

[病毒样本] 8 ge

本帖子中包含更多资源

浏览过的版块