再来18个,md5自己去查

显示全部楼层 · 发表于 2007-6-22 11:28:51

咖啡6 个

显示全部楼层 · 发表于 2007-6-22 11:47:41

AVAST报20，实际删除病毒个数16

显示全部楼层 · 发表于 2007-6-22 11:48:02

deleted: Trojan program Trojan-PSW.Win32.OnLineGames.mk File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/201.exe//PE_Patch//UPack
deleted: Trojan program Trojan-Proxy.Win32.Small.du File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/202.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.ql File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/203.exe//PE_Patch//UPack
deleted: Trojan program Trojan-Downloader.Win32.Small.czl File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/204.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.nn File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/205.exe
deleted: Trojan program Trojan-Dropper.Win32.Small.axt File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/206.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rc File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/207.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.Nilage.bki File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/208.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.yn File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/209.exe
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.rc File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/210.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.Nilage.bjp File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/211.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sl File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/212.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.sc File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/213.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.Delf.vd File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/214.exe//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qw File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/215.exe//PE_Patch//UPack
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.qw File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/216.exe//PE_Patch//UPack
deleted: Trojan program Trojan.Win32.Agent.adr File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/217.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-PSW.Win32.OnLineGames.es File: C:\Users\KAV-Longhorn\Documents\Downloads\Compressed\Downloads.rar/218.exe//UPack

显示全部楼层 · 发表于 2007-6-22 11:48:38

Begin scan in 'D:\Documents and Settings\dell\桌面\Downloads.rar'
D:\Documents and Settings\dell\桌面\
D:\Documents and Settings\dell\桌面\Downloads.rar
  [0] Archive type: RAR
  --> 201.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [WARNING] Infected files in archives cannot be repaired!
  --> 202.exe
   [DETECTION] Is the Trojan horse TR/Agent.22016.B
   [WARNING] Infected files in archives cannot be repaired!
  --> 203.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 204.exe
   [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen
   [WARNING] Infected files in archives cannot be repaired!
  --> 205.exe
   [DETECTION] Contains suspicious code HEUR/Malware
   [WARNING] Infected files in archives cannot be repaired!
  --> 206.exe
   [DETECTION] Is the Trojan horse TR/Agent.abf.827
   [WARNING] Infected files in archives cannot be repaired!
  --> 207.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 208.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 209.exe
   [DETECTION] Is the Trojan horse TR/Dropper.Gen
   [WARNING] Infected files in archives cannot be repaired!
  --> 210.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 211.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 212.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 213.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 215.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 216.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGam.QW
   [WARNING] Infected files in archives cannot be repaired!
  --> 217.exe
   [DETECTION] Is the Trojan horse TR/Hijack.A.12800.A
   [WARNING] Infected files in archives cannot be repaired!
  --> 218.exe
   [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.ES.2908
   [WARNING] Infected files in archives cannot be repaired!
   [WARNING] The file was ignored!

End of the scan: 2007年6月22日  11:50
Used time: 00:31 min

The scan has been done completely.

   0 Scanning directories
   20 Files were scanned
   17 viruses and/or unwanted programs were found

显示全部楼层 · 发表于 2007-6-22 11:58:24

214。EXE确认为木马

显示全部楼层 · 发表于 2007-6-22 13:18:46

赛门铁克14个

显示全部楼层 · 发表于 2007-6-22 13:20:40

2007/6/22 13:16:02 Scanning Log
2007/6/22 13:16:02 Version of virus signature database: 2343 (20070621)
2007/6/22 13:16:02 Date: 22.6.2007 Time: 13:16:02
2007/6/22 13:16:02 Scanned disks, folders and files: D:\病毒\
2007/6/22 13:16:06 D:\病毒\Downloads.rar - multiple threats - deleted - quarantined
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 201.exe - a variant of Win32/PSW.Legendmir.NEP trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 202.exe - a variant of Win32/Agent.NIK trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 203.exe - a variant of Win32/PSW.Agent.NEW trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 204.exe - probably a variant of Win32/Genetik trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 205.exe - a variant of Win32/PSW.Agent.NEC trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 206.exe - Win32/Agent.NIK trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 210.exe - a variant of Win32/PSW.Agent.NEW trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 212.exe - a variant of Win32/PSW.Agent.NEW trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 215.exe - a variant of Win32/PSW.Agent.NEW trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 217.exe - Win32/Delf.NEY trojan
2007/6/22 13:16:06 D:\病毒\Downloads.rar » RAR » 218.exe - Win32/TrojanDropper.Delf.NES trojan
2007/6/22 13:16:07 Number of scanned files: 19
2007/6/22 13:16:07 Number of threats found: 11
2007/6/22 13:16:07 Time of completion: 13:16:07 Total scanning time: 5 sec (00:00:05)

显示全部楼层 · 发表于 2007-6-22 13:25:53

kis6.0.0.307最老实发现18个清除18个

显示全部楼层 · 发表于 2007-6-22 15:50:00

已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.mk 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/201.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-Proxy.Win32.Small.du 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/202.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.ql 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/203.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-Downloader.Win32.Small.czl 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/204.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.nn 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/205.exe
已删除: 木马程序 Trojan-Dropper.Win32.Small.axt 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/206.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.rc 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/207.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.Nilage.bki 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/208.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.yn 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/209.exe
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.rc 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/210.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.Nilage.bjp 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/211.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.sl 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/212.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.sc 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/213.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.Delf.vd 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/214.exe//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.qw 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/215.exe//PE_Patch//UPack
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.qw 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/216.exe//PE_Patch//UPack
已删除: 木马程序 Trojan.Win32.Agent.adr 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/217.exe//PE_Patch.UPX//UPX
已删除: 木马程序 Trojan-PSW.Win32.OnLineGames.es 文件: C:\Documents and Settings\Deric Yeoh\桌面\Downloads.rar/218.exe//UPack

杀得干干净净

显示全部楼层 · 发表于 2007-6-22 17:24:12

[病毒样本] 再来18个,md5自己去查

本帖子中包含更多资源

本帖子中包含更多资源

默认设置报17个，一个启发，一个报壳

14ge

本帖子中包含更多资源

本帖子中包含更多资源