来个包，红伞未杀的

显示全部楼层 · 发表于 2008-8-30 19:40:59

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GameOL.nvb

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.59.52

显示全部楼层 · 发表于 2008-8-30 19:53:56

[发现可能安全风险：] <W32/Heuristic-MU2!Eldorado (损坏, not disinfectable)> C:\Download Files\bingdu.rar->6972984.exe
[发现可能安全风险：] <W32/Heuristic-MU2!Eldorado (损坏, not disinfectable)> C:\Download Files\bingdu.rar->7028468.exe
[发现可能安全风险：] <W32/Heuristic-FSG!Eldorado (not disinfectable)> C:\Download Files\bingdu.rar->7070796.exe
[发现可能安全风险：] <W32/Heuristic-CSU!Eldorado (损坏, not disinfectable)> C:\Download Files\bingdu.rar->a.exe
[发现可能安全风险：] <W32/Heuristic-MU2!Eldorado (损坏, not disinfectable)> C:\Download Files\bingdu.rar->6809640.exe
[发现可能安全风险：] <W32/Heuristic-MU2!Eldorado (损坏, not disinfectable)> C:\Download Files\bingdu.rar->6822078.exe

---------------------------------------------------------------------
扫描已结束: 2008-8-30, 19:53:08
用时: 0:00:07

扫描结果:

已扫描的文件:    6
已感染的对象:    6
已清除的对象:    0
已隔离的文件:    0
---------------------------------------------------------------------

显示全部楼层 · 发表于 2008-8-30 19:54:44

显示全部楼层 · 发表于 2008-8-31 03:05:26

2008/8/31 3:05:01 已清除病毒 Worm.Win32.Downloader.pu G:\Temp\Virus\bingdu.rar/a.exe//PE_Patch//UPack

显示全部楼层 · 发表于 2008-8-31 09:00:30

红伞果然被miss了。。。上报看看

显示全部楼层 · 发表于 2008-8-31 09:07:05

在 C:\Documents and Settings\Administrator\桌面\bingdu.rar->a.exe 中发现 Worm/Downloader.kd 病毒, 已删除

显示全部楼层 · 发表于 2008-8-31 10:10:15

nod32 miss

显示全部楼层 · 发表于 2008-8-31 10:13:53

NODTON也不报呢

显示全部楼层 · 发表于 2008-8-31 10:23:28

楼主的东西。。。

Multi Command-Line Scanner Report

-------------------------------------------
D:\Desk\Samples\Collect\MCLS\6809640.exe
MD5 Hash: 92853909332A8C069DA6447ABC9E7C85

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-MU2!Eldorado
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Trojan W32/OnLineGames.BJFK
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\6822078.exe
MD5 Hash: 89AF9B33FC1B5346B50A14F485F8EA87

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-MU2!Eldorado
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Trojan W32/Lmir.NBG
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\6972984.exe
MD5 Hash: 0BA2DA85EFA7EED6F3B0B2BB83114A8B

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-MU2!Eldorado
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Trojan W32/OnLineGames.BFZR
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\7028468.exe
MD5 Hash: 24025CDF78192292855F358EC6F436E0

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-MU2!Eldorado
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Trojan W32/OnLineGames.BFUC
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\7070796.exe
MD5 Hash: 2F67052A50F5FBB66F4B7AE36DA27FCF

A-squared ----- Nothing
Avast ----- Win32:Trojan-gen {Other}
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-FSG!Eldorado
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Win32.Troj.OnlineGameT.by.10166
Mcafee ----- Generic PWS.y
Norman ----- Trojan Suspicious_F.gen
Panda ----- Nothing
Sophos ----- Sus/UnkPacker
Trend Micro ----- PACKER-GEN.008
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\a.exe
MD5 Hash: 005A46E5372B1F2DC20101B2C0D9A109

A-squared ----- Worm.Win32.Downloader.pu
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-CSU!Eldorado
Kaspersky ----- Worm.Win32.Downloader.pu
Ikarus ----- Worm.Win32.Downloader.pu
Kingsoft ----- Win32.Troj.DownLoaderT.hu.147456
Mcafee ----- Generic.dx
Norman ----- Trojan W32/Suspicious_U.gen
Panda ----- Nothing
Sophos ----- Sus/ComPack-K
Trend Micro ----- AP_MALPK-2
Vba32 ----- Worm.Win32.Downloader.pu
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\devcon.exe
MD5 Hash: C4B470269324517EE838789C7CF5E606

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- Nothing
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\generic.exe
MD5 Hash: AC02CF51DCC71E97D1B602EE651518DB

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- Nothing
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\mmvem.exe
MD5 Hash: 6CF000C43180C3E433CA02AF9D862B97

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- W32/Heuristic-400!Eldorado
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\next[1].ani
MD5 Hash: 88CA9203047E737D1E1026D79F1CDBC8

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- Nothing
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\pre[1].ani
MD5 Hash: 6BAEBDC8AA745141BD22C230BC2CC41A

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- Nothing
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\rmvpeye.exe
MD5 Hash: 353230866631B0789304749B3F7A2058

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- Nothing
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------
D:\Desk\Samples\Collect\MCLS\setup_wm.exe
MD5 Hash: 71B701B7B686A0A74CCF180D7E14C8DD

A-squared ----- Nothing
Avast ----- Nothing
AntiVir ----- Nothing
BitDefender ----- Nothing
Dr.web ----- Nothing
Eset NOD32 ----- Nothing
F-prot ----- Nothing
Kaspersky ----- Nothing
Ikarus ----- Nothing
Kingsoft ----- Nothing
Mcafee ----- Nothing
Norman ----- Nothing
Panda ----- Nothing
Sophos ----- Nothing
Trend Micro ----- Nothing
Vba32 ----- Nothing
-------------------------------------------

Task done @ 2008/08/31 日 10:47:37.72

坚挺的F-prot

[ 本帖最后由 will 于 2008-8-31 10:52 编辑 ]

[病毒样本] 来个包，红伞未杀的

14/1

F-Prot 4.4.4

Norman Virus Control 5.99