单独列出来吧 跟帖没人看...

挪威的冬天

第一包全挂

信息        2008-01-28  17:56:33        您此次查毒共查出3个病毒以及危险代码                       
信息        2008-01-28  17:56:33        您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件34个                       
信息        2008-01-28  17:56:33        金山毒霸主程序查毒过程结束，查毒方式：命令行查毒                       
病毒        2008-01-28  17:56:33        C:\Users\挪威的冬天\Desktop\collection2.rar\collection\xxx.exe        Worm.AutoRun.25908        跳过，未处理       
病毒        2008-01-28  17:56:33        C:\Users\挪威的冬天\Desktop\collection2.rar\collection\rl.exe        Win32.Troj.DropDown.vv.77824        跳过，未处理       
病毒        2008-01-28  17:56:33        C:\Users\挪威的冬天\Desktop\collection2.rar\collection\as.exe        Win32.Troj.DropDown.vv.77824        跳过，未处理

rasis

collection.rar
  [0] Archive type: RAR
  --> collection\1.gif
      [DETECTION] Contains suspicious code HEUR/Exploit.HTML
  --> collection\11.gif
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Psyme.GX.3
  --> collection\5.gif
      [DETECTION] Contains suspicious code HEUR/Exploit.HTML
  --> collection\real2.exe
      [DETECTION] Is the Trojan horse TR/PSW.OnlineGames.ppu

----------------------

collection2.rar
  [0] Archive type: RAR
  --> collection\as.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.YM
  --> collection\bb.js
      [DETECTION] Contains detection pattern of the HTML script virus HTML/Shellcode.Gen
  --> collection\down.exe
      [DETECTION] Is the Trojan horse TR/Dropper.Gen
  --> collection\foot.htm
      [DETECTION] Contains suspicious code HEUR/Exploit.HTML
  --> collection\lz.js
      [DETECTION] Contains detection pattern of the HTML script virus HTML/Shellcode.Gen
  --> collection\Ms06014.htm
      [DETECTION] Contains suspicious code HEUR/Exploit.HTML
  --> collection\nd.htm
      [DETECTION] Contains detection pattern of the HTML script virus HTML/Silly.Gen
  --> collection\ppp.js
      [DETECTION] Contains detection pattern of the HTML script virus HTML/Shellcode.Gen
  --> collection\Real.js
      [DETECTION] Contains detection pattern of the Java script virus JS/Agent.ES
  --> collection\rl.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.YM
  --> collection\rl.js
      [DETECTION] Contains detection pattern of the exploits EXP/RealPlay.W
  --> collection\web1.htm
      [DETECTION] Contains detection pattern of the Java script virus JS/Dldr.Agent.chc
  --> collection\xxx.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING]   The file was ignored!

鱼是一只我

kv2008～～～～～～

woai_jolin

Scan Log
Version of virus signature database: 2827 (20080128)
Date: 2008-1-28  Time: 18:17:05
Scanned disks, folders and files: G:\v\collection.rar
G:\v\collection.rar » RAR » collection\1.gif - is OK
G:\v\collection.rar » RAR » collection\11.gif - is OK
G:\v\collection.rar » RAR » collection\2.gif - is OK
G:\v\collection.rar » RAR » collection\3.gif - is OK
G:\v\collection.rar » RAR » collection\4.gif - is OK
G:\v\collection.rar » RAR » collection\5.gif - is OK
G:\v\collection.rar » RAR » collection\8.gif - is OK
G:\v\collection.rar » RAR » collection\ad.js - is OK
G:\v\collection.rar » RAR » collection\Cn8586.htm - is OK
G:\v\collection.rar » RAR » collection\index.html - is OK
G:\v\collection.rar » RAR » collection\real2.exe - probably a variant of Win32/TrojanDownloader.Small.NZK trojan - was a part of the deleted object
Number of scanned objects: 12
Number of threats found: 1
Time of completion: 18:17:05  Total scanning time: 0 sec (00:00:00)

qigang

34/2


瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Hack.Exploit.Script.RealExp.e
病毒： Malicious Code           

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.29.02

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.OnlineGames.GEN

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.29.02

sam.to

已刪除: 特洛伊木馬程式 Trojan-Downloader.JS.Agent.bbn        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\5.gif
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ode        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\as.exe//NSPack
已隔離: 病毒 Heur.AntiAV (修改)        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\down.exe//PE_Patch//UPack
已刪除: 惡意軟體 Exploit.JS.Agent.eh        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\pp.js
已刪除: 特洛伊木馬程式 Trojan-Downloader.JS.Agent.bbg        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\Real.js
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ppu        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\real2.exe//PE_Patch//UPack
已刪除: 特洛伊木馬程式 Trojan-PSW.Win32.OnLineGames.ode        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\rl.exe//NSPack
已刪除: 惡意軟體 Exploit.JS.RealPlr.bq        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\rl.htm
已刪除: 病毒 Worm.Win32.AutoRun.bkv        檔案: C:\Documents and Settings\kato9096\桌面\194985\collection\xxx.exe

9,32个不报,上报

sam.to

Hello,

0.htm - Exploit.JS.Agent.en,
014.js - Trojan-Downloader.JS.Psyme.za,
1.gif - Exploit.JS.Agent.ew,
11.gif - Exploit.JS.Agent.ex,
2.gif - Trojan-Downloader.JS.Psyme.zd,
3.gif - Exploit.JS.Agent.ey,
4.gif - Trojan-Downloader.JS.Agent.bbz,
8.gif - Exploit.JS.RealPlr.bu,
bb.js - Exploit.JS.Agent.eo,
bf.js - Exploit.JS.Agent.ep,
diao.htm - Trojan-Downloader.JS.Agent.bbx,
jh.htm - Trojan-Downloader.JS.Agent.bby,
lz.js - Exploit.JS.Agent.eq,
Ms06014.htm - Trojan-Downloader.VBS.Psyme.mi,
nb.htm - Exploit.JS.Agent.er,
nc.htm - Exploit.JS.RealPlr.bs,
nd.htm - Exploit.JS.Agent.es,
ppp.js - Exploit.JS.Agent.et,
rl.js - Exploit.JS.RealPlr.bt,
rr.htm - Exploit.JS.Agent.ev,
web1.htm - Exploit.JS.Agent.eu

New malicious software was found in these files. Detection will be included in the next update. Thank you for your help.

1.js - Trojan-Downloader.JS.Agent.bbt,
11.js - Trojan-Downloader.JS.Agent.avd,
2.htm - Exploit.JS.RealPlr.br,
3.htm - Exploit.JS.Agent.ek

These files are already detected. Please update your antivirus bases.

24.js, a.exe, ad.js, Cn8586.htm, foot.htm, index.html

No malicious code were found in these files.

pps(1).js, pps(2).js, pps.js

These files have 0 bytes length.

Please quote all when answering.

--
Best regards, Vyacheslav Zakorzhevsky
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

jimmyleo

avp响应速度实在淫荡 。。

sam.to

原来我忘记了上报down.exe,再上报