[病毒样本] 48

显示全部楼层 · 发表于 2007-10-2 17:14:06

里面一种病毒居然有十几个不同的版本号..汗..

http://exs.mail.foxmail.com/cgi-bin/downloadfilepart?svrid=4&fid=5dea56d4e4b1bc9955f2d8483d0c99c3cda367507cde9f92

提取码
ffae3821

显示全部楼层 · 发表于 2007-10-2 17:28:24

D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_6666_D21M0303NetInstaller.exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » FamilyKeyLogger-setup.exe » NSIS » ctfmon.exe - a variant of Win32/KeyLogger.FamilyKeyLogger application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » FamilyKeyLogger-setup.exe » NSIS » ctfmon.dll - a variant of Win32/KeyLogger.HomeKeyLogger application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » FamilyKeyLogger-setup.exe - multiple threats
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_0001_D19M1908NetInstaller(1).exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_0001_D19M1908NetInstaller.exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6U_0001_D19M1309NetInstaller.exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » barhelp24.0.dll - probably a variant of Win32/Adware.Agent application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » asm.exe - Win32/Adware.Altnet application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » iebar23.0.dll - Win32/Adware.Toolbar.IEBar application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » areslite.exe - a variant of Win32/Adware.WhenU.SaveNow application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » sex-dekoder.exe - a variant of Win32/Dialer.Erodial application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » porno.exe - a variant of Win32/Dialer.Erodial application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » WinATS.dll - Win32/Adware.Mirar application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » asmps.dll - Win32/Adware.Altnet application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » Install.exe - Win32/Adware.SpySheriff application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » fotomensagem-0449.exe - probably a variant of Win32/TrojanDownloader.Banload.ABN trojan
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » setup.exe - Win32/Hoax.Renos.HV application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERSM_0001_N68M1602NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERS_9999_N91S2507NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERSL_0001_N91M2407NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERSF_0001_N91M2607NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERSZ_0001_N91M2407NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7P_0001_N99M2908NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWAS7_0001_N99M3108NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERSM_9999_N91S2009NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PS_0001_N96M0206NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PK_0001_N96M0507NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PL_0001_N96M0806NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWAS6V_0001_N91M2606NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PZ_0001_N96M1007NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » USDR6_0001_D19M2108NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PM_0001_N96M0806NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PT_0001_N96M1007NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PV_0001_N96M0206NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UWA7PU_0001_N96M1007NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UERSY_0001_N91M2107NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » USDR6V_0001_N19M2604NetInstaller.exe - Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_2020_D21M1005NetInstaller.exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_0001_D22M1709NetInstaller.exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_4444_D21M0303NetInstaller.exe - a variant of Win32/Adware.WinFixer application
D:\Documents and Settings\EKINCHENG\桌面\cab.rar » RAR » UDC6_5555_D21M0303NetInstaller.exe - archive damaged
D:\Documents and Settings\EKINCHENG\桌面\cab.rar - multiple threats - deleted - quarantined

显示全部楼层 · 发表于 2007-10-2 17:30:09

Scan performed at: 2007-10-2 17:29:48
Scanning Log
NOD32 version 2564 (20071002) NT
Command line: C:\Documents and Settings\Don johnson\桌面\cab
Operating memory - is OK

Date: 2.10.2007 Time: 17:29:52
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\Don johnson\桌面\cab\
C:\Documents and Settings\Don johnson\桌面\cab\areslite.exe - a variant of Win32/Adware.WhenU.SaveNow application
C:\Documents and Settings\Don johnson\桌面\cab\asm.exe - Win32/Adware.Altnet application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\asmps.dll - Win32/Adware.Altnet application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\barhelp24.0.dll - probably a variant of Win32/Adware.Agent application
C:\Documents and Settings\Don johnson\桌面\cab\FamilyKeyLogger-setup.exe ?NSIS ?ctfmon.exe - a variant of Win32/KeyLogger.FamilyKeyLogger application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\cab\FamilyKeyLogger-setup.exe ?NSIS ?ctfmon.dll - a variant of Win32/KeyLogger.HomeKeyLogger application - was a part of the deleted object
C:\Documents and Settings\Don johnson\桌面\cab\fotomensagem-0449.exe - probably a variant of Win32/TrojanDownloader.Banload.ABN trojan
C:\Documents and Settings\Don johnson\桌面\cab\iebar23.0.dll - Win32/Adware.Toolbar.IEBar application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\Install.exe - Win32/Adware.SpySheriff application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\porno.exe - a variant of Win32/Dialer.Erodial application
C:\Documents and Settings\Don johnson\桌面\cab\setup.exe - Win32/Hoax.Renos.HV application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\sex-dekoder.exe - a variant of Win32/Dialer.Erodial application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6U_0001_D19M1309NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_0001_D19M1908NetInstaller(1).exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_0001_D19M1908NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_0001_D22M1709NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_2020_D21M1005NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_4444_D21M0303NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_5555_D21M0303NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UDC6_6666_D21M0303NetInstaller.exe - a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UERSF_0001_N91M2607NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UERSL_0001_N91M2407NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UERSM_0001_N68M1602NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UERSM_9999_N91S2009NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UERSY_0001_N91M2107NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UERSZ_0001_N91M2407NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UERS_9999_N91S2507NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\USDR6V_0001_N19M2604NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\USDR6_0001_D19M2108NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PK_0001_N96M0507NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PL_0001_N96M0806NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PM_0001_N96M0806NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PS_0001_N96M0206NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PT_0001_N96M1007NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PU_0001_N96M1007NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PV_0001_N96M0206NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7PZ_0001_N96M1007NetInstaller.exe - probably a variant of Win32/Adware.WinFixer application
C:\Documents and Settings\Don johnson\桌面\cab\UWA7P_0001_N99M2908NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UWAS6V_0001_N91M2606NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\UWAS7_0001_N99M3108NetInstaller.exe - Win32/Adware.WinFixer application - quarantined - unable to clean - deleted
C:\Documents and Settings\Don johnson\桌面\cab\WinATS.dll - Win32/Adware.Mirar application - quarantined - unable to clean - deleted
Number of scanned files: 154
Number of threats found: 41
Number of files cleaned: 40
Time of completion: 17:29:56 Total scanning time: 4 sec (00:00:04)

显示全部楼层 · 发表于 2007-10-2 17:30:19

43
detected: riskware not-a-virus:Downloader.Win32.WinFixer.m File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_6666_D21M0303NetInstaller.exe
detected: riskware not-a-virus:Monitor.Win32.FamilyKeyLogger.283 File: E:\ÏÂÔØ»ùµØ\cab.rar/FamilyKeyLogger-setup.exe//data0008
detected: riskware not-a-virus:Monitor.Win32.HomeKeyLogger.170 File: E:\ÏÂÔØ»ùµØ\cab.rar/FamilyKeyLogger-setup.exe//data0010
detected: riskware not-a-virus:Monitor.Win32.GoldenKeylogger.130 File: E:\ÏÂÔØ»ùµØ\cab.rar/FamilyKeyLogger-setup.exe//data0011
detected: riskware not-a-virus:Downloader.Win32.WinFixer.bb File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_0001_D19M1908NetInstaller(1).exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.bb File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_0001_D19M1908NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.bb File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6U_0001_D19M1309NetInstaller.exe
detected: adware not-a-virus:AdWare.Win32.Iebar.h File: E:\ÏÂÔØ»ùµØ\cab.rar/barhelp24.0.dll
detected: adware not-a-virus:AdWare.Win32.Altnet.l File: E:\ÏÂÔØ»ùµØ\cab.rar/asm.exe//Pex
detected: adware not-a-virus:AdWare.Win32.Iebar.m File: E:\ÏÂÔØ»ùµØ\cab.rar/iebar23.0.dll
detected: riskware not-a-virus:Monitor.Win32.DesktopSpy File: E:\ÏÂÔØ»ùµØ\cab.rar/PersonalDesktopSpy-v2.10-setup.exe//data0016
detected: riskware not-a-virus:AdTool.Win32.WhenU.a File: E:\ÏÂÔØ»ùµØ\cab.rar/areslite.exe//PE_Patch.UPX//UPX
detected: pornware not-a-virus:Porn-Dialer.Win32.Plsex File: E:\ÏÂÔØ»ùµØ\cab.rar/sex-dekoder.exe//UPX
detected: pornware not-a-virus:Porn-Dialer.Win32.Plsex File: E:\ÏÂÔØ»ùµØ\cab.rar/porno.exe//UPX
detected: adware not-a-virus:AdWare.Win32.Mirar.e File: E:\ÏÂÔØ»ùµØ\cab.rar/WinATS.dll
detected: adware not-a-virus:AdWare.Win32.Altnet.t File: E:\ÏÂÔØ»ùµØ\cab.rar/asmps.dll
detected: riskware not-a-virus:FraudTool.Win32.SpySheriff.a File: E:\ÏÂÔØ»ùµØ\cab.rar/Install.exe
detected: Trojan program Trojan-Downloader.Win32.Banload.bsm File: E:\ÏÂÔØ»ùµØ\cab.rar/fotomensagem-0449.exe//ASPack
detected: malware not-virus:Hoax.Win32.Renos.hv File: E:\ÏÂÔØ»ùµØ\cab.rar/setup.exe//PE_Patch.UPX//UPX
detected: riskware not-a-virus:Downloader.Win32.WinFixer.d File: E:\ÏÂÔØ»ùµØ\cab.rar/UERSM_0001_N68M1602NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UERS_9999_N91S2507NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UERSL_0001_N91M2407NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UERSF_0001_N91M2607NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UERSZ_0001_N91M2407NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7P_0001_N99M2908NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWAS7_0001_N99M3108NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UERSM_9999_N91S2009NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PS_0001_N96M0206NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PK_0001_N96M0507NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PL_0001_N96M0806NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWAS6V_0001_N91M2606NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PZ_0001_N96M1007NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.bb File: E:\ÏÂÔØ»ùµØ\cab.rar/USDR6_0001_D19M2108NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PM_0001_N96M0806NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PT_0001_N96M1007NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PV_0001_N96M0206NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UWA7PU_0001_N96M1007NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.o File: E:\ÏÂÔØ»ùµØ\cab.rar/UERSY_0001_N91M2107NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.bb File: E:\ÏÂÔØ»ùµØ\cab.rar/USDR6V_0001_N19M2604NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.m File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_2020_D21M1005NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.ai File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_0001_D22M1709NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.m File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_4444_D21M0303NetInstaller.exe
detected: riskware not-a-virus:Downloader.Win32.WinFixer.m File: E:\ÏÂÔØ»ùµØ\cab.rar/UDC6_5555_D21M0303NetInstaller.exe

显示全部楼层 · 发表于 2007-10-2 18:04:57

NIS 报30个

显示全部楼层 · 发表于 2007-10-2 18:11:12

===================================================================================================
On-demand scanner 7.0.0.9

NSE revision 5.91.07
nvcbin.def revision 5.90.00 of 2007/09/28 15:46:54 (967863 variants)
nvcmacro.def revision 5.90.00 of 2007/09/25 15:36:51 (20411 variants)
Total number of variants: 988274
===================================================================================================

   Time  Filename                                                    Virus name
---------------------------------------------------------------------------------------------------

- Scanning drive: G:\
- Scanning system areas of drive: G:\
- Scanning files in the directory: G:\v\
   16 ms G:\v\altinst1.dll : altinst1.dll                            Aggressive commersial Text/Altnet.A ()
- File G:\v\altinst1.dll quarantined.
* Could not open G:\v\altinst1.dll : altinst1.dll. Ncl: Function or interface version not supported.
      0 ms G:\v\altinst1.dll
      0 ms G:\v\altinst2.dll : altinst2.dll                            Aggressive commersial Text/Altnet.B ()
- File G:\v\altinst2.dll quarantined.
* Could not open G:\v\altinst2.dll : altinst2.dll. Ncl: Function or interface version not supported.
      0 ms G:\v\altinst2.dll
      0 ms G:\v\areslite.exe
   16 ms G:\v\asm.exe                                              Aggressive commersial W32/Altnet.L ()
- File G:\v\asm.exe quarantined.
- File G:\v\asm.exe deleted.
      0 ms G:\v\asmps.dll                                              Aggressive commersial W32/Altnet.B ()
- File G:\v\asmps.dll quarantined.
- File G:\v\asmps.dll deleted.
      0 ms G:\v\barhelp24.0.dll
   16 ms G:\v\FamilyKeyLogger-setup.exe                            Security Risk KeyLogger.NH ()
- File G:\v\FamilyKeyLogger-setup.exe quarantined.
- File G:\v\FamilyKeyLogger-setup.exe deleted.
      0 ms G:\v\fotomensagem-0449.exe                                  Trojan W32/DLoader.DAEK ()
- File G:\v\fotomensagem-0449.exe quarantined.
- File G:\v\fotomensagem-0449.exe deleted.
      0 ms G:\v\iebar23.0.dll                                        Aggressive commersial W32/Iebar.V ()
- File G:\v\iebar23.0.dll quarantined.
- File G:\v\iebar23.0.dll deleted.
   47 ms G:\v\Install.exe                                           Trojan W32/Spywad.ER ()
- File G:\v\Install.exe quarantined.
- File G:\v\Install.exe deleted.
   3203 ms G:\v\PersonalDesktopSpy-v2.10-setup.exe
   16 ms G:\v\porno.exe                                              Trojan W32/Dialer.AYAO ()
- File G:\v\porno.exe quarantined.
- File G:\v\porno.exe deleted.
   15 ms G:\v\setup.exe                                              Trojan W32/DLoader.CZAB ()
- File G:\v\setup.exe quarantined.
- File G:\v\setup.exe deleted.
      0 ms G:\v\sex-dekoder.exe                                        Trojan W32/Dialer.AYAV ()
- File G:\v\sex-dekoder.exe quarantined.
- File G:\v\sex-dekoder.exe deleted.
      0 ms G:\v\toolbar.bmp
      0 ms G:\v\UDC6U_0001_D19M1309NetInstaller.exe                   Aggressive commersial W32/WinFixer.ADU ()
- File G:\v\UDC6U_0001_D19M1309NetInstaller.exe quarantined.
- File G:\v\UDC6U_0001_D19M1309NetInstaller.exe deleted.
      0 ms G:\v\UDC6_0001_D19M1908NetInstaller(1).exe                Aggressive commersial W32/WinFixer.IN ()
- File G:\v\UDC6_0001_D19M1908NetInstaller(1).exe quarantined.
- File G:\v\UDC6_0001_D19M1908NetInstaller(1).exe deleted.
      0 ms G:\v\UDC6_0001_D19M1908NetInstaller.exe                   Aggressive commersial W32/WinFixer.IN ()
- File G:\v\UDC6_0001_D19M1908NetInstaller.exe quarantined.
- File G:\v\UDC6_0001_D19M1908NetInstaller.exe deleted.
   265 ms G:\v\UDC6_0001_D22M1709NetInstaller.exe
   16 ms G:\v\UDC6_2020_D21M1005NetInstaller.exe                   Aggressive commersial W32/WinFixer.PC ()
- File G:\v\UDC6_2020_D21M1005NetInstaller.exe quarantined.
- File G:\v\UDC6_2020_D21M1005NetInstaller.exe deleted.
      0 ms G:\v\UDC6_4444_D21M0303NetInstaller.exe                   Aggressive commersial W32/WinFixer.WJ ()
- File G:\v\UDC6_4444_D21M0303NetInstaller.exe quarantined.
- File G:\v\UDC6_4444_D21M0303NetInstaller.exe deleted.
   15 ms G:\v\UDC6_5555_D21M0303NetInstaller.exe                   Aggressive commersial W32/WinFixer.NV ()
- File G:\v\UDC6_5555_D21M0303NetInstaller.exe quarantined.
- File G:\v\UDC6_5555_D21M0303NetInstaller.exe deleted.
      0 ms G:\v\UDC6_6666_D21M0303NetInstaller.exe                   Aggressive commersial W32/WinFixer.NV ()
- File G:\v\UDC6_6666_D21M0303NetInstaller.exe quarantined.
- File G:\v\UDC6_6666_D21M0303NetInstaller.exe deleted.
      0 ms G:\v\UERSF_0001_N91M2607NetInstaller.exe                   Aggressive commersial W32/WinFixer.MU ()
- File G:\v\UERSF_0001_N91M2607NetInstaller.exe quarantined.
- File G:\v\UERSF_0001_N91M2607NetInstaller.exe deleted.
      0 ms G:\v\UERSL_0001_N91M2407NetInstaller.exe                   Aggressive commersial W32/WinFixer.HT ()
- File G:\v\UERSL_0001_N91M2407NetInstaller.exe quarantined.
- File G:\v\UERSL_0001_N91M2407NetInstaller.exe deleted.
      0 ms G:\v\UERSM_0001_N68M1602NetInstaller.exe                   Aggressive commersial W32/WinFixer.AI ()
- File G:\v\UERSM_0001_N68M1602NetInstaller.exe quarantined.
- File G:\v\UERSM_0001_N68M1602NetInstaller.exe deleted.
   15 ms G:\v\UERSM_9999_N91S2009NetInstaller.exe                   Aggressive commersial W32/WinFixer.IY ()
- File G:\v\UERSM_9999_N91S2009NetInstaller.exe quarantined.
- File G:\v\UERSM_9999_N91S2009NetInstaller.exe deleted.
      0 ms G:\v\UERSY_0001_N91M2107NetInstaller.exe                   Aggressive commersial W32/WinFixer.IA ()
- File G:\v\UERSY_0001_N91M2107NetInstaller.exe quarantined.
- File G:\v\UERSY_0001_N91M2107NetInstaller.exe deleted.
   375 ms G:\v\UERSZ_0001_N91M2407NetInstaller.exe
   375 ms G:\v\UERS_9999_N91S2507NetInstaller.exe
   32 ms G:\v\urlinfo.xml
      0 ms G:\v\USDR6V_0001_N19M2604NetInstaller.exe                   Aggressive commersial W32/WinFixer.NS ()
- File G:\v\USDR6V_0001_N19M2604NetInstaller.exe quarantined.
- File G:\v\USDR6V_0001_N19M2604NetInstaller.exe deleted.
   15 ms G:\v\USDR6_0001_D19M2108NetInstaller.exe                   Aggressive commersial W32/WinFixer.IJ ()
- File G:\v\USDR6_0001_D19M2108NetInstaller.exe quarantined.
- File G:\v\USDR6_0001_D19M2108NetInstaller.exe deleted.
   16 ms G:\v\UWA7PK_0001_N96M0507NetInstaller.exe                   Aggressive commersial W32/WinFixer.XH ()
- File G:\v\UWA7PK_0001_N96M0507NetInstaller.exe quarantined.
- File G:\v\UWA7PK_0001_N96M0507NetInstaller.exe deleted.
      0 ms G:\v\UWA7PL_0001_N96M0806NetInstaller.exe                   Aggressive commersial W32/WinFixer.XJ ()
- File G:\v\UWA7PL_0001_N96M0806NetInstaller.exe quarantined.
- File G:\v\UWA7PL_0001_N96M0806NetInstaller.exe deleted.
   375 ms G:\v\UWA7PM_0001_N96M0806NetInstaller.exe
   16 ms G:\v\UWA7PS_0001_N96M0206NetInstaller.exe                   Aggressive commersial W32/WinFixer.ADX ()
- File G:\v\UWA7PS_0001_N96M0206NetInstaller.exe quarantined.
- File G:\v\UWA7PS_0001_N96M0206NetInstaller.exe deleted.
   375 ms G:\v\UWA7PT_0001_N96M1007NetInstaller.exe
      0 ms G:\v\UWA7PU_0001_N96M1007NetInstaller.exe                   Aggressive commersial W32/WinFixer.XI ()
- File G:\v\UWA7PU_0001_N96M1007NetInstaller.exe quarantined.
- File G:\v\UWA7PU_0001_N96M1007NetInstaller.exe deleted.
      0 ms G:\v\UWA7PV_0001_N96M0206NetInstaller.exe                   Aggressive commersial W32/WinFixer.XK ()
- File G:\v\UWA7PV_0001_N96M0206NetInstaller.exe quarantined.
- File G:\v\UWA7PV_0001_N96M0206NetInstaller.exe deleted.
   390 ms G:\v\UWA7PZ_0001_N96M1007NetInstaller.exe
      0 ms G:\v\UWA7P_0001_N99M2908NetInstaller.exe                   Aggressive commersial W32/WinFixer.ZK ()
- File G:\v\UWA7P_0001_N99M2908NetInstaller.exe quarantined.
- File G:\v\UWA7P_0001_N99M2908NetInstaller.exe deleted.
   391 ms G:\v\UWAS6V_0001_N91M2606NetInstaller.exe
   31 ms G:\v\UWAS7_0001_N99M3108NetInstaller.exe                   Aggressive commersial W32/WinFixer.AAL ()
- File G:\v\UWAS7_0001_N99M3108NetInstaller.exe quarantined.
- File G:\v\UWAS7_0001_N99M3108NetInstaller.exe deleted.
      0 ms G:\v\WinATS.dll                                           Aggressive commersial W32/Mirar.G ()
- File G:\v\WinATS.dll quarantined.
- File G:\v\WinATS.dll deleted.
      0 ms G:\v\winio.dll
   94 ms G:\v\winio.sys
   16 ms G:\v\winio.vxd

===================================================================================================

The scanning started: 2007/10/02 18:10:54
            ended: 2007/10/02 18:11:01
Logged on as       : Administrator
on hostname       : C3EF58622174424

Scanning results:
Total number of files found..............................:    50
Number of files scanned..................................:    50
Number of files/directories skipped due to exclude list..:    0
Number of files that could not be opened.................:    0
Number of archive files unpacked.........................:    2
Number of archive files not unpacked.....................:    0
Number of infections.....................................:    33

Copyright (c) 1993-2005 Norman

显示全部楼层 · 发表于 2007-10-2 19:19:04

已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.m 文件: F:\10.2\cab.rar/UDC6_6666_D21M0303NetInstaller.exe
已删除：风险软件 not-a-virus:Monitor.Win32.FamilyKeyLogger.283 文件: F:\10.2\cab.rar/FamilyKeyLogger-setup.exe//data0008
已删除：风险软件 not-a-virus:Monitor.Win32.HomeKeyLogger.170 文件: F:\10.2\cab.rar/FamilyKeyLogger-setup.exe//data0010
已删除：风险软件 not-a-virus:Monitor.Win32.GoldenKeylogger.130 文件: F:\10.2\cab.rar/FamilyKeyLogger-setup.exe//data0011
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.bb 文件: F:\10.2\cab.rar/UDC6_0001_D19M1908NetInstaller(1).exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.bb 文件: F:\10.2\cab.rar/UDC6_0001_D19M1908NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.bb 文件: F:\10.2\cab.rar/UDC6U_0001_D19M1309NetInstaller.exe
已删除：广告程序 not-a-virus:AdWare.Win32.Iebar.h 文件: F:\10.2\cab.rar/barhelp24.0.dll
已删除：广告程序 not-a-virus:AdWare.Win32.Altnet.l 文件: F:\10.2\cab.rar/asm.exe//Pex
已删除：广告程序 not-a-virus:AdWare.Win32.Iebar.m 文件: F:\10.2\cab.rar/iebar23.0.dll
已删除：风险软件 not-a-virus:Monitor.Win32.DesktopSpy 文件: F:\10.2\cab.rar/PersonalDesktopSpy-v2.10-setup.exe//data0016
已删除：风险软件 not-a-virus:AdTool.Win32.WhenU.a 文件: F:\10.2\cab.rar/areslite.exe//PE_Patch.UPX//UPX
已删除：色情软件 not-a-virus:Porn-Dialer.Win32.Plsex 文件: F:\10.2\cab.rar/sex-dekoder.exe//UPX
已删除：色情软件 not-a-virus:Porn-Dialer.Win32.Plsex 文件: F:\10.2\cab.rar/porno.exe//UPX
已删除：广告程序 not-a-virus:AdWare.Win32.Mirar.e 文件: F:\10.2\cab.rar/WinATS.dll
已删除：广告程序 not-a-virus:AdWare.Win32.Altnet.t 文件: F:\10.2\cab.rar/asmps.dll
已删除：风险软件 not-a-virus:FraudTool.Win32.SpySheriff.a 文件: F:\10.2\cab.rar/Install.exe
已删除：木马程序 Trojan-Downloader.Win32.Banload.bsm 文件: F:\10.2\cab.rar/fotomensagem-0449.exe//ASPack
已删除：恶意程序 not-virus:Hoax.Win32.Renos.hv 文件: F:\10.2\cab.rar/setup.exe//PE_Patch.UPX//UPX
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.d 文件: F:\10.2\cab.rar/UERSM_0001_N68M1602NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UERS_9999_N91S2507NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UERSL_0001_N91M2407NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UERSF_0001_N91M2607NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UERSZ_0001_N91M2407NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7P_0001_N99M2908NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWAS7_0001_N99M3108NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UERSM_9999_N91S2009NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PS_0001_N96M0206NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PK_0001_N96M0507NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PL_0001_N96M0806NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWAS6V_0001_N91M2606NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PZ_0001_N96M1007NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.bb 文件: F:\10.2\cab.rar/USDR6_0001_D19M2108NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PM_0001_N96M0806NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PT_0001_N96M1007NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PV_0001_N96M0206NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UWA7PU_0001_N96M1007NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.o 文件: F:\10.2\cab.rar/UERSY_0001_N91M2107NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.bb 文件: F:\10.2\cab.rar/USDR6V_0001_N19M2604NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.m 文件: F:\10.2\cab.rar/UDC6_2020_D21M1005NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.ai 文件: F:\10.2\cab.rar/UDC6_0001_D22M1709NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.m 文件: F:\10.2\cab.rar/UDC6_4444_D21M0303NetInstaller.exe
已删除：风险软件 not-a-virus:Downloader.Win32.WinFixer.m 文件: F:\10.2\cab.rar/UDC6_5555_D21M0303NetInstaller.exe

显示全部楼层 · 发表于 2007-10-3 01:32:05

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 282
Paranoia Database - 6361
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder

C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_6666_D21M0303NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\FamilyKeyLogger-setup.exe - Suspicious of Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_0001_D19M1908NetInstaller(1).exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_0001_D19M1908NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6U_0001_D19M1309NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\barhelp24.0.dll - Infected with PDB:d7b Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\asm.exe - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\iebar23.0.dll - Infected with PDB:dbc Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\PersonalDesktopSpy-v2.10-setup.exe - Suspicious of Trojan-PSW.OnLineGames.3
C:\Documents and Settings\uhthn\Desktop\New Folder\areslite.exe - Suspicious of Win32.Trojan-Downloader.Zlob.1
C:\Documents and Settings\uhthn\Desktop\New Folder\winio.sys - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\winio.vxd - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\altinst1.dll - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\altinst2.dll - Suspicious file
C:\Documents and Settings\uhthn\Desktop\New Folder\toolbar.bmp - OK
C:\Documents and Settings\uhthn\Desktop\New Folder\sex-dekoder.exe - Infected with SDB:Trojan.vb.a - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\porno.exe - Infected with SDB:Trojan.vb.a - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\WinATS.dll - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\asmps.dll - Infected with SDB:Trojan.vb.a - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\winio.dll - Infected with PDB:616 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\Install.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\fotomensagem-0449.exe - Suspicious of Win32.Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder\setup.exe - Infected with SDB:Trojan-Downloader.Agent.7 - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\UERSM_0001_N68M1602NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UERS_9999_N91S2507NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UERSL_0001_N91M2407NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UERSF_0001_N91M2607NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UERSZ_0001_N91M2407NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7P_0001_N99M2908NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWAS7_0001_N99M3108NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UERSM_9999_N91S2009NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PS_0001_N96M0206NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PK_0001_N96M0507NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PL_0001_N96M0806NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWAS6V_0001_N91M2606NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PZ_0001_N96M1007NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\USDR6_0001_D19M2108NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PM_0001_N96M0806NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PT_0001_N96M1007NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PV_0001_N96M0206NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UWA7PU_0001_N96M1007NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\UERSY_0001_N91M2107NetInstaller.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder\USDR6V_0001_N19M2604NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\urlinfo.xml - Infected with SDB:Backdoor.Hupigon.o - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_2020_D21M1005NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_0001_D22M1709NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_4444_D21M0303NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1
C:\Documents and Settings\uhthn\Desktop\New Folder\UDC6_5555_D21M0303NetInstaller.exe - Suspicious of Trojan-Downloader.VB.1

48 Files scanned
8 Infected files found
39 Suspicious files found
0 Files cured
8 Files deleted

显示全部楼层 · 发表于 2007-10-3 06:29:17

Starting the file scan:

Begin scan in 'C:\Users\morgan\Documents\cab'
C:\Users\morgan\Documents\cab\
  altinst1.dll
[0] Archive type: CAB (Microsoft)
--> altinst1.dll
  altinst2.dll
[0] Archive type: CAB (Microsoft)
--> altinst2.dll
  areslite.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/AdSpy.Gen
   [INFO]    The file was deleted!
  asm.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Altnet.L
   [INFO]    The file was deleted!
  asmps.dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Altnet.B.1
   [INFO]    The file was deleted!
  barhelp24.0.dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/IEBar.N
   [INFO]    The file was deleted!
  FamilyKeyLogger-setup.exe
   [DETECTION] Contains detection pattern of the dropper DR/Spy.FamilyKeyLogger.283
   [INFO]    The file was deleted!
  fotomensagem-0449.exe
   [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
   [INFO]    The file was deleted!
  iebar23.0.dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/IEBar.M.1
   [INFO]    The file was deleted!
  Install.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Spysheriff.AB
   [INFO]    The file was deleted!
  PersonalDesktopSpy-v2.10-setup.exe
  porno.exe
   [DETECTION] Contains detection pattern of the dial-up program DIAL/28880.A
   [INFO]    The file was deleted!
  setup.exe
   [DETECTION] Is the Trojan horse TR/Renos.HW
   [INFO]    The file was deleted!
  sex-dekoder.exe
   [DETECTION] Contains detection pattern of the dial-up program DIAL/25016.A
   [INFO]    The file was deleted!
  toolbar.bmp
  UDC6U_0001_D19M1309NetInstaller.exe
   [DETECTION] Contains detection pattern of the application APPL/DriveCleaner.A
   [INFO]    The file was deleted!
  UDC6_0001_D19M1908NetInstaller(1).exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.M.9 program
   [INFO]    The file was deleted!
  UDC6_0001_D19M1908NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.M.9 program
   [INFO]    The file was deleted!
  UDC6_0001_D22M1709NetInstaller.exe
   [DETECTION] Contains detection pattern of the application APPL/DriveCleaner.A
   [INFO]    The file was deleted!
  UDC6_2020_D21M1005NetInstaller.exe
   [DETECTION] Contains detection pattern of the application APPL/DriveCleaner.A
   [INFO]    The file was deleted!
  UDC6_4444_D21M0303NetInstaller.exe
   [DETECTION] Contains detection pattern of the application APPL/DriveCleaner.A
   [INFO]    The file was deleted!
  UDC6_5555_D21M0303NetInstaller.exe
   [DETECTION] Contains detection pattern of the application APPL/DriveCleaner.A
   [INFO]    The file was deleted!
  UDC6_6666_D21M0303NetInstaller.exe
   [DETECTION] Contains detection pattern of the application APPL/DriveCleaner.A
   [INFO]    The file was deleted!
  UERSF_0001_N91M2607NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.103 program
   [INFO]    The file was deleted!
  UERSL_0001_N91M2407NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.49 program
   [INFO]    The file was deleted!
  UERSM_0001_N68M1602NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.f program
   [INFO]    The file was deleted!
  UERSM_9999_N91S2009NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.56 program
   [INFO]    The file was deleted!
  UERSY_0001_N91M2107NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.45 program
   [INFO]    The file was deleted!
  UERSZ_0001_N91M2407NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.130 program
   [INFO]    The file was deleted!
  UERS_9999_N91S2507NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.43 program
   [INFO]    The file was deleted!
  urlinfo.xml
  USDR6V_0001_N19M2604NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.Q.2 program
   [INFO]    The file was deleted!
  USDR6_0001_D19M2108NetInstaller.exe
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/WinFixer.E
   [INFO]    The file was deleted!
  UWA7PK_0001_N96M0507NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.144 program
   [INFO]    The file was deleted!
  UWA7PL_0001_N96M0806NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.146 program
   [INFO]    The file was deleted!
  UWA7PM_0001_N96M0806NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.DAR.5
   [INFO]    The file was deleted!
  UWA7PS_0001_N96M0206NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.DIE
   [INFO]    The file was deleted!
  UWA7PT_0001_N96M1007NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.DAR.6
   [INFO]    The file was deleted!
  UWA7PU_0001_N96M1007NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.145 program
   [INFO]    The file was deleted!
  UWA7PV_0001_N96M0206NetInstaller.exe
   [DETECTION] Contains detection pattern of the SPR/Dldr.WinFixer.O.147 program
   [INFO]    The file was deleted!
  UWA7PZ_0001_N96M1007NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.DAR.4
   [INFO]    The file was deleted!
  UWA7P_0001_N99M2908NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.WinFixer.Z.1
   [INFO]    The file was deleted!
  UWAS6V_0001_N91M2606NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.WinFixer.O.2
   [INFO]    The file was deleted!
  UWAS7_0001_N99M3108NetInstaller.exe
   [DETECTION] Is the Trojan horse TR/Dldr.WinFixer.Z
   [INFO]    The file was deleted!
  WinATS.dll
   [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Mirar.E
   [INFO]    The file was deleted!
  winio.dll
  winio.sys
  winio.vxd

End of the scan: 2007年10月2日  15:28
Used time: 00:06 min

The scan has been done completely.

   1 Scanning directories
   50 Files were scanned
   40 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   40 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   10 Files not concerned
   2 Archives were scanned
   0 Warnings
   0 Notes

显示全部楼层 · 发表于 2007-10-3 09:35:03

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.IEbar.c
病毒： Trojan.IEbar.b
病毒： Trojan.Dialer.euz
病毒： Trojan.Dialer.xbq
病毒： Adware.Win32.Agent.nwa
病毒： Trojan.Spy.Sheriff.e
病毒： Trojan.DL.Win32.Banload.bsm
病毒： Trojan.DL.Agent.bdq

用户来源：局域网

软件版本：20.12.10
金山30个

[病毒样本] 48

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块