网页的

显示全部楼层 · 发表于 2007-12-25 12:35:07

...............

显示全部楼层 · 发表于 2007-12-25 12:38:23

10个
Starting the file scan:
Begin scan in 'E:\My Documents.rar'
E:\My Documents.rar
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Dldr.Iframe.Y
   [WARNING] The file was ignored!
E:\My Documents.rar
  [0] Archive type: RAR
  --> My Documents\boc.sbb22[1].htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Dldr.Iframe.AA
  --> My Documents\dm[1].htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Dldr.Agent.YC
  --> My Documents\IENoRun[1].htm
   [DETECTION] Contains detection pattern of the VBS script virus VBS/Dldr.ADODB.C
  --> My Documents\in[1].htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/Dldr.Iframe.Y
  --> My Documents\new280[1].htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/IFrame.FA.1
  --> My Documents\new82[1].htm
   [DETECTION] Contains detection pattern of the HTML script virus HTML/IFrame.FA.1
  --> My Documents\new[1].js
   [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Psyme.FO
  --> My Documents\re[2].htm
   [DETECTION] Contains suspicious code HEUR/Exploit.HTML
  --> My Documents\shan[2].htm
   [DETECTION] Is the Trojan horse TR/IFrame.BA
   [WARNING] The file was ignored!

End of the scan: 2007年12月25日  12:41
Used time: 00:14 min
The scan has been done completely.
   0 Scanning directories
   10 Files were scanned
   9 viruses and/or unwanted programs were found
   1 Files were classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   1 Archives were scanned
   1 Warnings
   0 Notes

[ 本帖最后由 Graybird 于 2007-12-25 12:40 编辑 ]

显示全部楼层 · 发表于 2007-12-25 12:44:59

nis2008
扫描统计:
扫描时间: 0秒
扫描选项:
扫描目标: E:\My_Documents.rar
计数:
扫描的项目总数: 11
- 文件和目录: 11
- 注册表项: 0
- 进程和启动项: 0
- 网络和浏览器项目: 0
- 其他: 0

检测到的安全风险总数: 1
已解决的项目总数: 0
需要注意的项目总数: 1

已解决的风险:

未解决的风险:
Downloader
病毒 ID: 26637
类型: 已压缩
风险: 高 (高隐蔽性，高清除可能，高性能，高隐私)
类别: 病毒
状态: 删除失败
-----------
1 文件
[dm[1].htm] 位于[e:\my_documents.rar] - 已感染

显示全部楼层 · 发表于 2007-12-25 14:37:30

ESET一个都不报

显示全部楼层 · 发表于 2007-12-25 17:33:52

avast一个也没报。

显示全部楼层 · 发表于 2007-12-25 17:52:58

-----------------------------SCAN REPORT-------------------

----------
F-PROT Antivirus for Windows

Antivirus Scanning Engine version number: 4.4.2
Virus signature file from: 25/12/2007, 4:20

Scan name: test
Path to scan: C:\Documents and Settings\Owner\桌面

\My_Documents.rar

Thorough scan
Also scan: Inside subfolders, Compressed files, Streams

Scan started: 25/12/2007, 17:50:10
-------------------------------------------------------------------

--

[Found exploit] <HTML/IFrame (exact, not

disinfectable)> C:\Documents and Settings\Owner\

桌面\My_Documents.rar->My Documents\boc.sbb22

[1].htm
[Clean] C:\Documents and Settings\Owner\桌面

\My_Documents.rar->My Documents\dm[1].htm
[Clean] C:\Documents and Settings\Owner\桌面

\My_Documents.rar->My Documents\IENoRun[1].htm
[Found exploit] <HTML/IFrame (exact, not

disinfectable)> C:\Documents and Settings\Owner\

桌面\My_Documents.rar->My Documents\in[1].htm
[Found exploit] <HTML/IFrame (exact, not

disinfectable)> C:\Documents and Settings\Owner\

桌面\My_Documents.rar->My Documents\new280[1].htm
[Found exploit] <HTML/IFrame (exact, not

disinfectable)> C:\Documents and Settings\Owner\

桌面\My_Documents.rar->My Documents\new82[1].htm
[Found Trojan] <JS/Agent.BN (exact, not

disinfectable)> C:\Documents and Settings\Owner\

桌面\My_Documents.rar->My Documents\new[1].js
[Clean] C:\Documents and Settings\Owner\桌面

\My_Documents.rar->My Documents\re[2].htm
[Found exploit] <HTML/IFrame (exact, not

disinfectable)> C:\Documents and Settings\Owner\

桌面\My_Documents.rar->My Documents\shan[2].htm

-------------------------------------------------------------------

--
Scan ended: 25/12/2007, 17:51:19
Duration: 0:00:01

Scan result:

Scanned files:    1
Infected objects:    6
Disinfected objects:    0
Quarantined files:    0
-------------------------------------------------------------------

显示全部楼层 · 发表于 2007-12-25 18:22:30

扫描系统区域...
扫描所选择的目录和文件...
对象: My Documents dm[1].htm
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan-Downloader.JS.Psyme.wl (KAV 引擎)
对象: My Documents new82[1].htm
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan-Clicker.HTML.IFrame.fl (KAV 引擎)
对象: My Documents new[1].js
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan-Downloader.JS.Agent.alp (KAV 引擎)
对象: My Documents re[2].htm
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Exploit.JS.Agent.dc (KAV 引擎)
对象: My Documents\dm[1].htm
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan.JS.Obsq.M (BD 引擎)
对象: My Documents\new[1].js
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan.Downloader.Js.Small.NAJ (BD 引擎)
对象: My Documents\re[2].htm
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan.JS.Obsq.M (BD 引擎)
对象: My Documents\shan[2].htm
在压缩档案里: C:\Documents and Settings\wangcheng\桌面\My_Documents.rar
Status: 已发现病毒
病毒: Trojan.IFrame.BA (BD 引擎)
对象: My_Documents.rar
路径: C:\Documents and Settings\wangcheng\桌面
Status: 已发现病毒
病毒: Trojan-Downloader.JS.Psyme.wl, Trojan-Clicker.HTML.IFrame.fl, Trojan-Downloader.JS.Agent.alp, Exploit.JS.Agent.dc (KAV 引擎), Trojan.JS.Obsq.M (2x), Trojan.Downloader.Js.Small.NAJ, Trojan.IFrame.BA (BD 引擎)
扫描完成: 2007-12-25 18:22
已检查 1 个文件
已发现 1 个染毒文件

显示全部楼层 · 发表于 2007-12-25 18:57:33

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.DL.Script.VBS.Agent.xlg
病毒： Trojan.DL.Script.JS.Agent.lst
病毒： Trojan.DL.Script.JS.Agent.lvo

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.24.12

[病毒样本] 网页的

本帖子中包含更多资源

10/4