一下载者及几个DLL[MD5: FFF594 9BFB01 C24069 4BF01C 1BF02E 107F20]

timhas266

Starting the file scan:

Begin scan in 'C:\Documents and Settings\tim\桌面\fotomensagem.rar'
C:\Documents and Settings\tim\桌面\fotomensagem.rar
  [0] Archive type: RAR
  --> FotoMensagem.scr
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> lbfx.dll
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> oeia.dll
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Boran.XSS.2
  --> jzdv.dll
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/Boran.XSS.2
      [INFO]      A backup was created as '47776422.qua'  ( QUARANTINE )
      [INFO]      The file was deleted!

king6808

已删除：木马程序 Trojan-Spy.Win32.Banker.bbb        文件: F:\10.3\fotomensagem.rar/FotoMensagem.scr
已删除：广告程序 not-a-virus:AdWare.Win32.Boran.bj        文件: F:\10.3\fotomensagem.rar/lbfx.dll
已删除：广告程序 not-a-virus:AdWare.Win32.Boran.bi        文件: F:\10.3\fotomensagem.rar/gwas.dll
已删除：广告程序 not-a-virus:AdWare.Win32.Boran.bh        文件: F:\10.3\fotomensagem.rar/jzdv.dll

uhthn2002

亂報了
Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 289
Paranoia Database - 6697
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder

C:\Documents and Settings\uhthn\Desktop\New Folder\FotoMensagem.scr - Suspected Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder\lbfx.dll - Suspected Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder\oeia.dll - Suspected Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\cswo.dll - Suspected Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\gwas.dll - Suspected Trojan-Downloader.Agent.1
C:\Documents and Settings\uhthn\Desktop\New Folder\jzdv.dll - Suspected Trojan-Downloader.Agent.1

6 Files scanned
0 Infected files found
6 Suspicious files found
0 Files cured
0 Files deleted

[ 本帖最后由 uhthn2002 于 2007-10-3 19:00 编辑 ]

woai_jolin

扫描报告
2007年10月4日 8:26:02 - 8:26:02
计算机名称: C3EF58622174424
扫描类型: 扫描目标
目标: G:\v\fotomensagem.rar


--------------------------------------------------------------------------------

结果: 找到 4 恶意软件
Trojan-Spy.Win32.Banker.bbb (病毒)
G:\v\fotomensagem.rar\FotoMensagem.scr
AdWare.Win32.Boran.bj (adware)
G:\v\fotomensagem.rar\lbfx.dll
AdWare.Win32.Boran.bi (adware)
G:\v\fotomensagem.rar\gwas.dll
AdWare.Win32.Boran.bh (adware)
G:\v\fotomensagem.rar\jzdv.dll




--------------------------------------------------------------------------------

统计信息
已扫描:
文件: 7
未扫描: 0
结果:
病毒: 1
间谍软件: 3
可疑项目: 0
危险软件: 0
操作:
已杀毒: 0
已重命名: 0
删除: 0
已隔离: 0
失败: 0
启动扇区:
已扫描: 0
受感染: 0
可疑项目: 0
已杀毒: 0


--------------------------------------------------------------------------------

选项
定义版本:
病毒: 2007-10-03_03
间谍软件: 2007-10-03_03
扫描引擎:
F-Secure AVP: 7.00.171, 2007-10-03
F-Secure Libra: 2.04.01, 2007-10-03
F-Secure Orion: 1.02.37, 2007-10-03
F-Secure Draco: 1.00.35, 2007-09-17
扫描选项:
扫描所有文件
扫描内部存档
操作:
病毒: 扫描后询问
间谍软件: 扫描后询问

29159011

大蜘蛛报了两个