10个

显示全部楼层 · 发表于 2008-2-29 18:19:51

FS全砍!

Scanning Report
29 February 2008 18:18:43 - 18:19:14
Computer name: PUMA-PC
Scanning type: Scan target
Target: C:\Users\Administrator\Desktop\Data29.rar

--------------------------------------------------------------------------------

Result: 10 malware found
Trojan-PSW.Win32.OnLineGames.ryh (virus)
C:\Users\Administrator\Desktop\Data29.rar\001.exe
Trojan-PSW.Win32.OnLineGames.rmj (virus)
C:\Users\Administrator\Desktop\Data29.rar\002.exe
Trojan-PSW.Win32.OnLineGames.sdq (virus)
C:\Users\Administrator\Desktop\Data29.rar\003.exe
C:\Users\Administrator\Desktop\Data29.rar\006.exe
Trojan.Win32.Vaklik.mn (virus)
C:\Users\Administrator\Desktop\Data29.rar\004.exe
Trojan-PSW.Win32.OnLineGames.sff (virus)
C:\Users\Administrator\Desktop\Data29.rar\005.exe
Trojan-PSW.Win32.OnLineGames.rwu (virus)
C:\Users\Administrator\Desktop\Data29.rar\007.exe
Trojan-PSW.Win32.OnLineGames.rxs (virus)
C:\Users\Administrator\Desktop\Data29.rar\008.exe
Trojan-PSW.Win32.OnLineGames.ryp (virus)
C:\Users\Administrator\Desktop\Data29.rar\009.exe
Trojan-PSW.Win32.OnLineGames.qpf (virus)
C:\Users\Administrator\Desktop\Data29.rar\010.exe

--------------------------------------------------------------------------------

Statistics
Scanned:
Files: 11
Not scanned: 0
Result:
Viruses: 10
Spyware: 0
Suspicious items: 0
Riskware: 0
Actions:
Disinfected: 0
Renamed: 0
Deleted: 0
Quarantined: 0
Failed: 0
Boot Sectors:
Scanned: 0
Infected: 0
Suspicious items: 0
Disinfected: 0

--------------------------------------------------------------------------------

Options
Definitions version:
Viruses: 2008-02-29_02
Spyware: 2008-02-29_02
Scanning Engines:
F-Secure AVP: 7.00.171, 2008-02-29
F-Secure Libra: 2.04.01, 2008-02-28
F-Secure Orion: 1.02.38, 2008-02-29
F-Secure Draco: 1.00.35, 2008-02-13
Scanning options:
Scan all files
Scan inside archives
Actions:
Viruses: Quarantine and delete
Spyware: Quarantine and delete

显示全部楼层 · 发表于 2008-2-29 19:42:23

[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\Virus\Data29.rar->001.exe->(embedded)->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Virus\Data29.rar->002.exe
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\Virus\Data29.rar->003.exe->(UPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\Virus\Data29.rar->004.exe->(UPack)
[Found possible security risk] <W32/Heuristic-245!Eldorado (damaged, not disinfectable)> C:\Virus\Data29.rar->005.exe->exefile->(UPack)
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\Virus\Data29.rar->006.exe->(UPack)
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\Virus\Data29.rar->007.exe->(UPack)
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\Virus\Data29.rar->009.exe->(UPack)
[Found security risk] <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Virus\Data29.rar->010.exe->exefile->(UPack)

---------------------------------------------------------------------
Scan ended: 2008-2-29, 19:41:12
Duration: 0:00:04

显示全部楼层 · 发表于 2008-2-29 19:42:48

[Scanning : C:\Virus]

C:\Virus\Data29.rar<RAR>:001.exe <- Trojan.Psw.Onlinegames.Aa : No action
C:\Virus\Data29.rar<RAR>:002.exe <- Trojan.Psw.Onlinegames.Rmj : No action
C:\Virus\Data29.rar<RAR>:003.exe <- Heur.Win32.I : No action
C:\Virus\Data29.rar<RAR>:004.exe <- Trojan.Vaklik.Mn : No action
C:\Virus\Data29.rar<RAR>:005.exe <- Heur.Win32.I : No action
C:\Virus\Data29.rar<RAR>:006.exe <- Heur.Win32.I : No action
C:\Virus\Data29.rar<RAR>:007.exe <- Trojan.Psw.Onlinegames.Rwu : No action
C:\Virus\Data29.rar<RAR>:008.exe<UPack>:008.exe<DLLRES>:res0.exe <- Trojan.Psw.Onlinegames.Rxt : No action
C:\Virus\Data29.rar<RAR>:009.exe <- Heur.Win32.I : No action
C:\Virus\Data29.rar<RAR>:010.exe <- Heur.Win32.I : No action

Scanned objects : 24

Infected objects : 10

显示全部楼层 · 发表于 2008-2-29 20:14:42

检测到：木马程序 Trojan-PSW.Win32.OnLineGames.ryh URL: http://bbs.kafan.cn/attachment.p ... xe//PE_Patch//UPack
检测到：木马程序 Rootkit.Win32.Agent.abq URL: http://bbs.kafan.cn/attachment.p ... /PE_Patch//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.rzf URL: http://bbs.kafan.cn/attachment.p ... ch//UPack//#//UPack
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.ryh URL: http://bbs.kafan.cn/attachment.p ... xe//PE_Patch//UPack
检测到：木马程序 Rootkit.Win32.Agent.abq URL: http://bbs.kafan.cn/attachment.p ... /PE_Patch//UPack//#
检测到：木马程序 Trojan-PSW.Win32.OnLineGames.rzf URL: http://bbs.kafan.cn/attachment.p ... ch//UPack//#//UPack

显示全部楼层 · 发表于 2008-2-29 20:18:09

C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 001.exe - 可能是 Win32/Genetik 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 002.exe - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 003.exe - Win32/PSW.OnLineGames.PBQ 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 004.exe - Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 005.exe - Win32/PSW.OnLineGames.PBQ 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 006.exe - Win32/PSW.OnLineGames.PBQ 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 007.exe - Win32/PSW.OnLineGames.PBQ 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 008.exe - 可能是 Win32/PSW.OnLineGames.NFL 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 009.exe - Win32/PSW.OnLineGames.PBQ 特洛伊木马的变种
C:\Documents and Settings\Administrator\桌面\Data29.rar > RAR > 010.exe - Win32/PSW.OnLineGames.PBQ 特洛伊木马的变种

显示全部楼层 · 发表于 2008-2-29 20:20:59

瑞星病毒查杀结果报告

清除病毒种类列表：8
病毒： Trojan.PSW.Win32.GamesOnline.oe
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.GamesOnline.ok
病毒： Trojan.PSW.Win32.GameOL.mdj
病毒： Trojan.PSW.Win32.GamesOnline.pb
病毒： Trojan.PSW.Win32.GameOL.lvq

MAC 地址：00:0F:EA:6C:08:F1

用户来源：局域网

软件版本：20.33.42

显示全部楼层 · 发表于 2008-2-29 21:45:27

10
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ryh File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/001.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rmj File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/002.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sdq File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/003.exe//PE_Patch//UPack
deleted: Trojan program Trojan.Win32.Vaklik.mn File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/004.exe//UPack//PE_Patch
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sff File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/005.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sdq File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/006.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rwu File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/007.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rxs File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/008.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ryp File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/009.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qpf File: C:\Documents and Settings\Owner\×ÀÃæ\Data29.rar/010.exe//PE_Patch//UPack

显示全部楼层 · 发表于 2008-2-29 21:57:03

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GamesOnline.oe
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.PSW.Win32.GamesOnline.ok
病毒： Trojan.PSW.Win32.GameOL.mdj
病毒： Trojan.PSW.Win32.GamesOnline.pb
病毒： Trojan.PSW.Win32.GameOL.lvq

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.33.42

显示全部楼层 · 发表于 2008-2-29 22:01:08

我的AVAST杀一个

显示全部楼层 · 发表于 2008-2-29 22:02:48

换了个引擎全灭

[病毒样本] 10个

10

21/8

回复 9楼 1314520aaa 的帖子

本帖子中包含更多资源

本帖子中包含更多资源