-----------------------------SCAN REPORT-----------------------------
F-PROT Antivirus for Windows
Antivirus Scanning Engine version number: 4.4.2
Virus signature file from: 2007-12-29, 1:27
Scan name: [Custom Scan]
Path to scan: C:\样本 yangpizhi\1229
Normal scan
Also scan: Inside subfolders, Compressed files, Streams
Scan started: 2007-12-29, 20:41:02
---------------------------------------------------------------------
[Clean] C:\样本 yangpizhi\1229\aaa.exe
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\cq0619.exe
[Quarantined] C:\样本 yangpizhi\1229\cq0619.exe
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\cs0619.exe
[Quarantined] C:\样本 yangpizhi\1229\cs0619.exe
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\dh0616.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\dh0616.exe->(UPack)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\dh3.exe
[Quarantined] C:\样本 yangpizhi\1229\dh3.exe
[Found security risk] <W32/AutoRun.B.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\down.exe->(UPX)
[Quarantined] C:\样本 yangpizhi\1229\down.exe->(UPX)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\f2b4657b5568d072.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\f2b4657b5568d072.exe->(UPack)
[Found virus] <W32/Downloader.gen10> C:\样本 yangpizhi\1229\ff.exe
[Failed to disinfect] ff.exe
[Quarantined] C:\样本 yangpizhi\1229\ff.exe
[Clean] C:\样本 yangpizhi\1229\g.exe->(NSPack)->(PE_Patch)
[Found possible virus] <W32/Veil-MSBP-based!Maximus> C:\样本 yangpizhi\1229\InstallerN75New02.exe->(Cryptocrack)
[Failed to disinfect] InstallerN75New02.exe->(Cryptocrack)
[Quarantined] C:\样本 yangpizhi\1229\InstallerN75New02.exe->(Cryptocrack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\jh0619.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\jh0619.exe->(UPack)
[Found password stealer] <W32/Magania.RN (exact)> C:\样本 yangpizhi\1229\lin.exe
[Deleted] C:\样本 yangpizhi\1229\lin.exe
[Found possible security risk] <W32/Heuristic-114!Eldorado (damaged, not disinfectable)> C:\样本 yangpizhi\1229\mh0618.exe->(embedded)->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\mh0618.exe->(embedded)->(UPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\my0616.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\my0616.exe->(UPack)
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(UPX)
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->aliases.ini
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->control.ini
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->mirc.ico
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->nicks.txt
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->remote.ini
[Found virus] <BAT/Zapchast.S (exact, component, not disinfectable)> C:\样本 yangpizhi\1229\postcard.exe->(RAR)->sup.bat
[Found Trojan] <REG/Zapchast.G (exact, component, not disinfectable)> C:\样本 yangpizhi\1229\postcard.exe->(RAR)->sup.reg
[Found virus] <W32/Jeefo.A (exact, not disinfectable)> C:\样本 yangpizhi\1229\postcard.exe->(RAR)->svchost.exe
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->users.ini
[Clean] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->servers.ini
[Found backdoor] <IRC/Zapchast.Q (exact, not disinfectable)> C:\样本 yangpizhi\1229\postcard.exe->(RAR)->script.ini
[Found backdoor] <IRC/Zapchast.Q (exact, not disinfectable)> C:\样本 yangpizhi\1229\postcard.exe->(RAR)->mirc.ini
[Contains infected objects] C:\样本 yangpizhi\1229\postcard.exe
[Quarantined] C:\样本 yangpizhi\1229\postcard.exe->(RAR)->mirc.ini
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\qj0617.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\qj0617.exe->(UPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\qqhx.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\qqhx.exe->(UPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\qqhx0.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\qqhx0.exe->(UPack)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\qqsg.exe
[Quarantined] C:\样本 yangpizhi\1229\qqsg.exe
[Clean] C:\样本 yangpizhi\1229\rse.exe->(UPX)
[Found virus] <W32/Downloader.gen10> C:\样本 yangpizhi\1229\rse.exe
[Failed to disinfect] rse.exe
[Quarantined] C:\样本 yangpizhi\1229\rse.exe
[Clean] C:\样本 yangpizhi\1229\setup.exe->(UPX)
[Found security risk] <W32/BadBHO.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\setup.exe->(RAR)->Setup.exe->(UPX)
[Contains infected objects] C:\样本 yangpizhi\1229\setup.exe
[Quarantined] C:\样本 yangpizhi\1229\setup.exe->(RAR)->Setup.exe->(UPX)
[Clean] C:\样本 yangpizhi\1229\sms0s.exe->(UPX)
[Found possible virus] <W32/Document-disguised-based!Maximus> C:\样本 yangpizhi\1229\sms0s.exe
[Failed to disinfect] sms0s.exe
[Quarantined] C:\样本 yangpizhi\1229\sms0s.exe
[Found security risk] <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\sms3s.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\sms3s.exe->(UPack)
[Clean] C:\样本 yangpizhi\1229\sms6s.exe->(embedded)->(embedded)
[Clean] C:\样本 yangpizhi\1229\sms6s.exe->(embedded)->(embedded)
[Clean] C:\样本 yangpizhi\1229\sms6s.exe->(embedded)->(UPack)
[Clean] C:\样本 yangpizhi\1229\sms6s.exe->(UPack)
[Found security risk] <W32/OnlineGames.F.gen!GSA (not disinfectable, generic)> C:\样本 yangpizhi\1229\wd0618.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\wd0618.exe->(UPack)
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\wl0618.exe
[Quarantined] C:\样本 yangpizhi\1229\wl0618.exe
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\wow0617.exe->(UPack)
[Quarantined] C:\样本 yangpizhi\1229\wow0617.exe->(UPack)
[Found password stealer] <W32/Maran.ACJ (exact)> C:\样本 yangpizhi\1229\xiaogui.exe
[Deleted] C:\样本 yangpizhi\1229\xiaogui.exe
[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\样本 yangpizhi\1229\zt0616.exe
[Quarantined] C:\样本 yangpizhi\1229\zt0616.exe
---------------------------------------------------------------------
Scan ended: 2007-12-29, 20:41:28
Duration: 0:00:25
Scan result:
Scanned files: 29
Infected objects: 30
Disinfected objects: 2
Quarantined files: 24
--------------------------------------------------------------------- |