5个DLL[MD5: 0682D2 BB4E9D ED5664 0E0E22 FDAB67]

promised

woai_jolin

2007-8-30 21:44:41        Scanning Log
2007-8-30 21:44:41        Version of virus signature database: 2492 (20070830)
2007-8-30 21:44:41        Date: 30.8.2007  Time: 21:44:41
2007-8-30 21:44:41        Scanned disks, folders and files: F:\v\样本3.rar
2007-8-30 21:44:42        F:\v\样本3.rar » RAR » gwas.dll - Win32/Adware.Boran application
2007-8-30 21:44:42        F:\v\样本3.rar » RAR » jzdv.dll - Win32/Adware.Boran application
2007-8-30 21:44:42        F:\v\样本3.rar » RAR » lbfx.dll - Win32/Adware.Boran application
2007-8-30 21:44:42        F:\v\样本3.rar » RAR » oeia.dll - Win32/Adware.Boran application
2007-8-30 21:44:42        F:\v\样本3.rar » RAR » cswo.dll - Win32/Adware.Boran application
2007-8-30 21:44:42        Number of scanned files: 6
2007-8-30 21:44:42        Number of threats found: 5
2007-8-30 21:44:42        Time of completion: 21:44:42  Total scanning time: 1 sec (00:00:01)

tracydk

Starting the file scan:

Begin scan in 'F:\病毒样本\样本3.rar'
F:\病毒样本\样本3.rar
  [0] Archive type: RAR
  --> gwas.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AM
  --> jzdv.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> lbfx.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> oeia.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> cswo.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AM.1
      [INFO]      The file was deleted!

uhthn2002

C:\Documents and Settings\uhthn\Desktop\virus\gwas.dll : infected AdWare.Win32.Boran.am
C:\Documents and Settings\uhthn\Desktop\virus\jzdv.dll : infected AdWare.Win32.Boran.am
C:\Documents and Settings\uhthn\Desktop\virus\lbfx.dll : infected AdWare.Win32.Boran.am
C:\Documents and Settings\uhthn\Desktop\virus\oeia.dll : infected AdWare.Win32.Boran.am
C:\Documents and Settings\uhthn\Desktop\virus\cswo.dll : infected AdWare.Win32.Boran.am


Directories       : 0       Files in archives:      Files on disks:
Archives:                   - total       : 0       - total       : 5     
- scanned         : 0       -  scanned    : 0       - scanned     : 5     
- contain viruses : 0       -  infected   : 0       - infected    : 5     
- deleted         : 0       -  suspicious : 0       - suspicious  : 0     


Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Heuristics - OPEN
Scan in - C:\Documents and Settings\uhthn\Desktop\virus

C:\Documents and Settings\uhthn\Desktop\virus\gwas.dll - Suspicious files
C:\Documents and Settings\uhthn\Desktop\virus\jzdv.dll - Suspicious files
C:\Documents and Settings\uhthn\Desktop\virus\lbfx.dll - Suspicious files
C:\Documents and Settings\uhthn\Desktop\virus\oeia.dll - Suspicious files
C:\Documents and Settings\uhthn\Desktop\virus\cswo.dll - Suspicious files

5 Files scanned
0 Infected files found
5 Suspicious files found
0 Files cured
0 Files deleted

微点卫士

费尔5个

tiedan2

Ikarus:
30:08:2007 21:50:50 SEARCHTASK "USER_DEFINED" started...
scan item: C:\Documents and Settings\zhenjia\桌面\样本3
File scanned: C:\Documents and Settings\zhenjia\桌面\样本3\cswo.dll - SIGNATURE FOUND "Virus.Win32.Boran.N"
File scanned: C:\Documents and Settings\zhenjia\桌面\样本3\gwas.dll - SIGNATURE FOUND "not-a-virus:AdWare.Win32.Boran.am"
File scanned: C:\Documents and Settings\zhenjia\桌面\样本3\jzdv.dll - SIGNATURE FOUND "AdWare.Win32.Boran.i"
File scanned: C:\Documents and Settings\zhenjia\桌面\样本3\lbfx.dll - SIGNATURE FOUND "Virus.Win32.Boran.N"
File scanned: C:\Documents and Settings\zhenjia\桌面\样本3\oeia.dll - SIGNATURE FOUND "not-a-virus:AdWare.Win32.Boran.am"
30:08:2007 21:50:51 SEARCHTASK "USER_DEFINED" FINISHED...
----------------------------------------------------
Directories scanned: 1
Files scanned: 5
Virus found: 5
----------------------------------------------------

ssy275

Result: 5 malware found
AdWare.Win32.Boran.am (adware)
C:\Documents and Settings\ssy\×ÀÃæ\3.rar\gwas.dll
C:\Documents and Settings\ssy\×ÀÃæ\3.rar\jzdv.dll
C:\Documents and Settings\ssy\×ÀÃæ\3.rar\lbfx.dll
C:\Documents and Settings\ssy\×ÀÃæ\3.rar\oeia.dll
C:\Documents and Settings\ssy\×ÀÃæ\3.rar\cswo.dll

欠妳緈諨

aziok

Begin scan in \样本3.rar
  [0] Archive type: RAR
  --> gwas.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AM
  --> jzdv.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> lbfx.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> oeia.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> cswo.dll
      [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.AM.1

[ 本帖最后由 aziok 于 2007-8-30 22:29 编辑 ]

nosferatu

用户扫描
--------
已扫描:        7
已检测:        5
未清除:        0
开始时间:        2007-8-30 22:42:16
持续时间:        00:00:16
结束时间:        2007-8-30 22:42:32


已检测
------
状态        对象
----        ----
已删除: 广告程序 not-a-virus:AdWare.Win32.Boran.am        文件: C:\Documents and Settings\Administrator\桌面\样本3.rar\gwas.dll
已删除: 广告程序 not-a-virus:AdWare.Win32.Boran.am        文件: C:\Documents and Settings\Administrator\桌面\样本3.rar\jzdv.dll
已删除: 广告程序 not-a-virus:AdWare.Win32.Boran.am        文件: C:\Documents and Settings\Administrator\桌面\样本3.rar\lbfx.dll
已删除: 广告程序 not-a-virus:AdWare.Win32.Boran.am        文件: C:\Documents and Settings\Administrator\桌面\样本3.rar\oeia.dll
已删除: 广告程序 not-a-virus:AdWare.Win32.Boran.am        文件: C:\Documents and Settings\Administrator\桌面\样本3.rar\cswo.dll