06.30 100x

显示全部楼层 · 发表于 2008-6-30 19:40:26

Scan Log
Version of virus signature database: 3226 (20080630)
Date: 2008-6-30 Time: 19:40:12
Scanned disks, folders and files: G:\v\l
G:\v\l\1244222A - a variant of Win32/PSW.OnLineGames.NOA trojan
G:\v\l\14C6F1B9 - is OK
G:\v\l\14F4C717 - is OK
G:\v\l\15985739 - a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\16C2557 - is OK
G:\v\l\1A7D6D43 » UPX v12_m5 - is OK
G:\v\l\22D66AEB - Win32/PSW.OnLineGames.NJC trojan
G:\v\l\2537F547 - is OK
G:\v\l\2AD98989 - a variant of Win32/PSW.OnLineGames.NOA trojan
G:\v\l\32DD9D3B - Win32/Virut.5127 virus
G:\v\l\33F98313 - is OK
G:\v\l\3DE33160 - Win32/BHO.NCC trojan
G:\v\l\40A558A3 - a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\412D75B4 - is OK
G:\v\l\41FA36CC - is OK
G:\v\l\4389B379 - is OK
G:\v\l\4411EAC9 - Win32/Virut.Gen virus
G:\v\l\4AAADE76 - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\4E65FE8F - is OK
G:\v\l\4EF616B1 - is OK
G:\v\l\563CB5D3 - a variant of Win32/PSW.OnLineGames.OAF trojan
G:\v\l\5759899C - is OK
G:\v\l\58AC2736 - a variant of Win32/PSW.OnLineGames.OAF trojan
G:\v\l\5C188710 - is OK
G:\v\l\62F2DB18 - is OK
G:\v\l\650924FD - is OK
G:\v\l\6BF08502 - probably unknown NewHeur_PE virus [7]
G:\v\l\6E1B312A - is OK
G:\v\l\6E1F0178 - is OK
G:\v\l\71787E8F - Win32/Adware.BetterInternet application
G:\v\l\7362B8C5 - is OK
G:\v\l\752D19F0 - Win32/Inject.NBE trojan
G:\v\l\75ED13AE - is OK
G:\v\l\763771A2 - Win32/Virut.NAB virus
G:\v\l\77604E1C - is OK
G:\v\l\7925A280 - Win32/TrojanDownloader.Zlob.CAR trojan
G:\v\l\795008F9 - is OK
G:\v\l\7976DA09 - is OK
G:\v\l\797F1AF7 - is OK
G:\v\l\7C16CD4A - is OK
G:\v\l\7CBB5B5D - is OK
G:\v\l\7CDA83F8 - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\7F8B6EBB - is OK
G:\v\l\803E5637 - probably a variant of Win32/Genetik trojan
G:\v\l\806DABB7 - is OK
G:\v\l\827BF15D - is OK
G:\v\l\83146856 - Win32/PSW.OnLineGames.FDY trojan
G:\v\l\834E3A04 - is OK
G:\v\l\83A12D4A - a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\8A0F0165 - a variant of Win32/Inject.NBE trojan
G:\v\l\8D91B339 - is OK
G:\v\l\90003E44 - is OK
G:\v\l\924BF952 - a variant of Win32/PcClient trojan
G:\v\l\9520D3C0 - Win32/TrojanDownloader.Zlob.CAB trojan
G:\v\l\95EE83B4 » UPX v12_m2_dll - is OK
G:\v\l\9FE7F077 - a variant of Win32/Adware.Vapsup.AK application
G:\v\l\A064C96B - Win32/Sality.NAC virus
G:\v\l\A0E70B93 - is OK
G:\v\l\A27B531A » UPX v12_m2_dll - is OK
G:\v\l\A2A72C24 - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\A46EA20D - Win32/BHO.NEP trojan
G:\v\l\AA6BE28A - Win32/Virut.NAB virus
G:\v\l\AC8B3DE7 - is OK
G:\v\l\B0B8DF88 - Win32/AutoRun.PT worm
G:\v\l\B1C2F0E1 - is OK
G:\v\l\B27C5823 - is OK
G:\v\l\B4EA4A78 - Win32/Inject.NBE trojan
G:\v\l\B7D1EF87 - Win32/Nuwar.Gen worm
G:\v\l\B80122DB - is OK
G:\v\l\B96023A3 - Win32/Virut.5127 virus
G:\v\l\BF8096B0 - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\BFE3F74F - is OK
G:\v\l\C1829DE » UPX v12_m2_dll - is OK
G:\v\l\C19DF1FA - a variant of Win32/PSW.Agent.NHQ trojan
G:\v\l\C6BE40A7 - is OK
G:\v\l\CE981B22 - Win32/VB.VH trojan
G:\v\l\CF8FBCA3 - Win32/TrojanDownloader.Delf.OEN trojan
G:\v\l\CFA2E27D - probably a variant of Win32/PSW.OnLineGames.OBE trojan
G:\v\l\D2AC51E3 - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\DA9C0CD4 - a variant of Win32/Small.BB trojan
G:\v\l\DE8CFE46 - is OK
G:\v\l\E172C097 - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\E31C2342 - is OK
G:\v\l\E39E1536 - is OK
G:\v\l\E4248D32 - a variant of Win32/PSW.OnLineGames.MUG trojan
G:\v\l\E44B860 - is OK
G:\v\l\E6A4BC2 - is OK
G:\v\l\E952AF81 - is OK
G:\v\l\E967C282 » UPX v12_m2_dll - is OK
G:\v\l\EB3CB0CD - is OK
G:\v\l\EB6C3C47 - Win32/Agent.NLI trojan
G:\v\l\EBBC53B1 - is OK
G:\v\l\EBF4D650 - is OK
G:\v\l\F10BE0C0 - is OK
G:\v\l\F835D1A8 - Win32/Adware.Virtumonde application
G:\v\l\F85AB9AF - a variant of Win32/PSW.OnLineGames.NHF trojan
G:\v\l\FA82E4AA - probably a variant of Win32/PSW.OnLineGames.FDY trojan
G:\v\l\FA907B72 » UPX v12_m2_dll - is OK
G:\v\l\FCB2D99D - is OK
G:\v\l\FFA0FE98 - is OK
Number of scanned objects: 100
Number of threats found: 45
Number of cleaned objects: 0
Time of completion: 19:40:33 Total scanning time: 21 sec (00:00:21)

Notes:
[7] Object is probably infected with an unknown virus.

显示全部楼层 · 发表于 2008-6-30 19:44:19

norman 41个

显示全部楼层 · 发表于 2008-6-30 19:44:47

30:06:2008 19:44:42 SEARCHTASK "USER_DEFINED" started...
scan item: G:\v\l
File scanned: G:\v\l\1244222A - SIGNATURE FOUND "Trojan.Win32.Tilcun.B"
File scanned: G:\v\l\14C6F1B9 - SIGNATURE FOUND "Trojan-Dropper.Win32.Agent.ane"
File scanned: G:\v\l\14F4C717 - SIGNATURE FOUND "Trojan.Win32.KillAV.ko"
File scanned: G:\v\l\15985739 - SIGNATURE FOUND "BehavesLikeTrojan.WUDisable"
File scanned: G:\v\l\1A7D6D43 - SIGNATURE FOUND "Generic.Win32.Malware.WinSpywareProtect"
File scanned: G:\v\l\22D66AEB - SIGNATURE FOUND "Trojan-PWS.Win32.OnLineGames.ivl"
File scanned: G:\v\l\2537F547 - SIGNATURE FOUND "Virus.Trojan.Win32.Monder"
File scanned: G:\v\l\2AD98989 - SIGNATURE FOUND "Trojan.Win32.Tilcun.B"
File scanned: G:\v\l\32DD9D3B - SIGNATURE FOUND "Virus.Win32.Virut.a"
File scanned: G:\v\l\33F98313 - SIGNATURE FOUND "Application.Win32.AdWare.Cdn"
File scanned: G:\v\l\3DE33160 - SIGNATURE FOUND "not-a-virus:AdWare.Win32.Virtumonde"
File scanned: G:\v\l\40A558A3 - SIGNATURE FOUND "BehavesLike.Trojan.ShellHook"
File scanned: G:\v\l\41FA36CC - SIGNATURE FOUND "Trojan-PWS.Win32.Small.br"
File scanned: G:\v\l\4389B379 - SIGNATURE FOUND "Backdoor.Win32.PcClient.LH"
File scanned: G:\v\l\4411EAC9 - SIGNATURE FOUND "Virus.Win32.Virut.q"
File scanned: G:\v\l\4AAADE76 - SIGNATURE FOUND "BehavesLike.Trojan.ShellHook"
File scanned: G:\v\l\4E65FE8F - SIGNATURE FOUND "Trojan-Downloader.Win32.Injecter.zi"
File scanned: G:\v\l\563CB5D3 - SIGNATURE FOUND "Trojan-Dropper.Win32.Agent.ane"
File scanned: G:\v\l\5759899C - SIGNATURE FOUND "Win32.Rigel.6468"
File scanned: G:\v\l\58AC2736 - SIGNATURE FOUND "Trojan-Dropper.Win32.Agent.ane"
File scanned: G:\v\l\650924FD - SIGNATURE FOUND "Win32.Rigel.6468"
File scanned: G:\v\l\71787E8F - SIGNATURE FOUND "not-a-virus:AdWare.Win32.BetterInternet.b"
File scanned: G:\v\l\7362B8C5 - SIGNATURE FOUND "Virus.Exploit.Win32.Jpedrop.i"
File scanned: G:\v\l\752D19F0 - SIGNATURE FOUND "Trojan.Win32.Dogrobot.I"
File scanned: G:\v\l\763771A2 - SIGNATURE FOUND "Virus.Win32.Virut.d"
File scanned: G:\v\l\77604E1C - SIGNATURE FOUND "Win32.SuspectCrc"
File scanned: G:\v\l\7925A280 - SIGNATURE FOUND "Trojan-Downloader.Win32.Zlob.AW"
File scanned: G:\v\l\7C16CD4A - SIGNATURE FOUND "AdWare.Cinmus"
File scanned: G:\v\l\7CDA83F8 - SIGNATURE FOUND "BehavesLike.Trojan.ShellHook"
File scanned: G:\v\l\803E5637 - SIGNATURE FOUND "Trojan.Crypt.DJ"
File scanned: G:\v\l\827BF15D - SIGNATURE FOUND "Win32.Rigel.6468"
File scanned: G:\v\l\83146856 - SIGNATURE FOUND "BehavesLikeTrojan.WUDisable"
File scanned: G:\v\l\834E3A04 - SIGNATURE FOUND "Trojan.Win32.VB.ACK"
File scanned: G:\v\l\83A12D4A - SIGNATURE FOUND "BehavesLike.Trojan.ShellHook"
File scanned: G:\v\l\8A0F0165 - SIGNATURE FOUND "Trojan.Win32.Dogrobot.I"
File scanned: G:\v\l\8D91B339 - SIGNATURE FOUND "Trojan-Downloader.Win32.Agent.uai"
File scanned: G:\v\l\924BF952 - SIGNATURE FOUND "Backdoor.Win32.PcClient.yw"
File scanned: G:\v\l\9520D3C0 - SIGNATURE FOUND "Trojan-Downloader.Zlob.ABRP"
File scanned: G:\v\l\95EE83B4 - SIGNATURE FOUND "BHO.Win32.CNNIC"
File scanned: G:\v\l\9FE7F077 - SIGNATURE FOUND "Trojan-Downloader.Zlob"
File scanned: G:\v\l\A27B531A - SIGNATURE FOUND "BHO.Win32.CNNIC"
File scanned: G:\v\l\A2A72C24 - SIGNATURE FOUND "Virus.Win32.OnLineGames.EAT"
File scanned: G:\v\l\A46EA20D - SIGNATURE FOUND "Trojan.BHO.OAW"
File scanned: G:\v\l\AA6BE28A - SIGNATURE FOUND "Virus.Win32.Virut.n"
File scanned: G:\v\l\AC8B3DE7 - SIGNATURE FOUND "Rootkit.Agent.XD"
File scanned: G:\v\l\B0B8DF88 - SIGNATURE FOUND "Trojan-Proxy.Win32.Ranky"
File scanned: G:\v\l\B27C5823 - SIGNATURE FOUND "Win32.Rigel.6468"
File scanned: G:\v\l\B4EA4A78 - SIGNATURE FOUND "Trojan.Win32.Dogrobot.I"
File scanned: G:\v\l\B7D1EF87 - SIGNATURE FOUND "Worm.Zhelatin"
File scanned: G:\v\l\B80122DB - SIGNATURE FOUND "Virus.Win32.Agent.JZN"
File scanned: G:\v\l\B96023A3 - SIGNATURE FOUND "Virus.Win32.Virut.a"
File scanned: G:\v\l\BF8096B0 - SIGNATURE FOUND "BehavesLike.Trojan.ShellHook"
File scanned: G:\v\l\C19DF1FA - SIGNATURE FOUND "Trojan-PWS.Lmir.UMK"
File scanned: G:\v\l\CE981B22 - SIGNATURE FOUND "Backdoor.Win32.VB.VH"
File scanned: G:\v\l\CF8FBCA3 - SIGNATURE FOUND "Trojan-Downloader.Winlagons.QX"
File scanned: G:\v\l\CFA2E27D - SIGNATURE FOUND "Trojan-Dropper.Win32.Agent.ane"
File scanned: G:\v\l\D2AC51E3 - SIGNATURE FOUND "Virus.Win32.OnLineGames.BGD"
File scanned: G:\v\l\DA9C0CD4 - SIGNATURE FOUND "Trojan.Crypt.Morphine"
File scanned: G:\v\l\DE8CFE46 - SIGNATURE FOUND "Backdoor.Win32.Bifrose.ago"
File scanned: G:\v\l\E172C097 - SIGNATURE FOUND "Trojan-Spy.Win32.Delf.uv"
File scanned: G:\v\l\E31C2342 - SIGNATURE FOUND "Trojan.Win32.Obfuscated.dnn"
File scanned: G:\v\l\E6A4BC2 - SIGNATURE FOUND "Virus.Trojan.Win32.Monder"
File scanned: G:\v\l\E967C282 - SIGNATURE FOUND "BHO.Win32.CNNIC"
File scanned: G:\v\l\EB3CB0CD - SIGNATURE FOUND "Trojan.Fakealert.TE"
File scanned: G:\v\l\EB6C3C47 - SIGNATURE FOUND "Virus.Trojan.Win32.Agent.qnv"
File scanned: G:\v\l\EBF4D650 - SIGNATURE FOUND "Backdoor.Win32.PcClient.LH"
File scanned: G:\v\l\F10BE0C0 - SIGNATURE FOUND "Backdoor.Win32.PcClient.LH"
File scanned: G:\v\l\F835D1A8 - SIGNATURE FOUND "Win32.Rigel.6468"
File scanned: G:\v\l\F85AB9AF - SIGNATURE FOUND "Trojan-Dropper.Win32.Agent.ane"
File scanned: G:\v\l\FA82E4AA - SIGNATURE FOUND "Virus.Win32.OnLineGames.BGD"
File scanned: G:\v\l\FA907B72 - SIGNATURE FOUND "BHO.Win32.CNNIC"
File scanned: G:\v\l\FCB2D99D - SIGNATURE FOUND "Trojan.Fakealert.SZ"
30:06:2008 19:44:45 SEARCHTASK "USER_DEFINED" FINISHED...
----------------------------------------------------
Directories scanned: 1
Files scanned: 100
Virus found: 72
----------------------------------------------------

显示全部楼层 · 发表于 2008-6-30 19:47:51

[Found possible security risk]    <W32/Heuristic-257!Eldorado (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->DA9C0CD4->(UPX)
[Found backdoor]    <W32/Backdoor.AQA (exact, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->CE981B22
[Found security risk]    <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->71787E8F
[Found possible security risk]    <W32/Heuristic-210!Eldorado (damaged, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->CFA2E27D->(UPack)
[Found security risk]    <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->58AC2736->(UPack)
[Found security risk]    <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->563CB5D3->(UPack)
[Found security risk]    <W32/OnlineGames.AI.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->E4248D32->(UPX)
[Found possible security risk]    <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->752D19F0->(UPX)
[Found possible security risk]    <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->B4EA4A78->(UPX)
[Found possible security risk]    <W32/Heuristic-KPP!Eldorado (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->8A0F0165->(UPX)
[Found security risk]    <W32/FakeAlert.O.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->9520D3C0
[Found security risk]    <W32/OnlineGames.B.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->C19DF1FA
[Found security risk]    <W32/Agent.L.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->F85AB9AF
[Found downloader]    <W32/Downloader.F.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->B0B8DF88->(MEW)
[Found security risk]    <W32/Tibs.V.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->CF8FBCA3
[Found possible security risk]    <W32/Heuristic-210!Eldorado (damaged, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->14C6F1B9->(UPack)
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->83146856
[Found virus]    <W32/Virut.4960 (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->32DD9D3B
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->83A12D4A
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->40A558A3
[Found backdoor]    <W32/PcClient.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->F10BE0C0
[Found Trojan]    <W32/Trojan2.ORF (exact, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->22D66AEB->rsrcPE
[Found virus]    <W32/Virut.4960 (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->B96023A3
[Found virus]    <W32/Sality.J (exact, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->A064C96B
[Found virus]    <W32/Virut.8639 (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->AA6BE28A
[Found backdoor]    <W32/PcClient.C.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->EBF4D650
[Found backdoor]    <W32/PcClient.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->4389B379
[Found virus]    <W32/Virut.10640.A (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->4411EAC9
[Found virus]    <W32/Virut.8639 (not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part1.rar->763771A2
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->15985739
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->A2A72C24
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->7CDA83F8
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->D2AC51E3
[Found security risk]    <W32/Agent.I.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->41FA36CC
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->BF8096B0
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->4AAADE76
[Found security risk]    <W32/Virtumonde.T.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->6E1F0178
[Found backdoor]    <W32/PcClient.C.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->924BF952
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->E172C097
[Found security risk]    <W32/OnlineGames.A.gen!GSA (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->FA82E4AA
[Found security risk]    <W32/Virtumonde.T.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->E6A4BC2
[Found possible security risk]    <W32/Heuristic-210!Eldorado (damaged, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\06-28.part2.rar->803E5637->(UPack)
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part3.rar->77604E1C
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part3.rar->4EF616B1
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part3.rar->795008F9
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part3.rar->4E65FE8F
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part3.rar->B1C2F0E1
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part4.rar->FFA0FE98
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part4.rar->412D75B4
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part4.rar->806DABB7
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part4.rar->797F1AF7
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part4.rar->E31C2342
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part5.rar->BFE3F74F
[Found security risk]    <W32/Swizzor.D.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part5.rar->6E1B312A
[Found security risk]    <W32/Tibs.X.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\06-28.part5.rar->B7D1EF87

---------------------------------------------------------------------
Scan ended: 2008-6-30, 19:48:51
Duration: 0:01:10

Scan result:

Scanned files:       10
Infected objects:    55
Disinfected objects:    0
Quarantined files:    0
---------------------------------------------------------------------

[ 本帖最后由 allinwonderi 于 2008-6-30 19:49 编辑 ]

显示全部楼层 · 发表于 2008-6-30 19:51:07

K

[ 本帖最后由 allinwonderi 于 2008-6-30 19:53 编辑 ]

显示全部楼层 · 发表于 2008-6-30 21:14:03

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.PSW.Win32.GameOL.ocu
病毒： AdWare.Win32.Dodolook.hb
病毒： AdWare.Win32.Agent.zud
病毒： Adware.Win32.Agent.nxh
病毒： Trojan.PSW.Win32.GamesOnline.tv
病毒： Trojan.PSW.Win32.GameOL.oeh
病毒： Backdoor.Win32.PcClient.ekt
病毒： Trojan.PSW.Win32.GameOL.GEN
病毒： Trojan.Win32.Undef.emn
病毒： Trojan.PSW.Win32.GameOL.omb
病毒： Dropper.Win32.Agent.gdv
病毒： Worm.Mail.Win32.Zhelatin.wy

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.51.02

显示全部楼层 · 发表于 2008-7-1 00:00:43

IKARUS 72
D:\病毒测试\临时解压\1244222A - 特征码 'Trojan.Win32.Tilcun.B' 被发现
D:\病毒测试\临时解压\14C6F1B9 - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
D:\病毒测试\临时解压\14F4C717 - 特征码 'Trojan.Win32.KillAV.ko' 被发现
D:\病毒测试\临时解压\15985739 - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
D:\病毒测试\临时解压\16C2557
D:\病毒测试\临时解压\1A7D6D43 - 特征码 'Generic.Win32.Malware.WinSpywareProtect' 被发现
D:\病毒测试\临时解压\22D66AEB - 特征码 'Trojan-PWS.Win32.OnLineGames.ivl' 被发现
D:\病毒测试\临时解压\2537F547 - 特征码 'Virus.Trojan.Win32.Monder' 被发现
D:\病毒测试\临时解压\2AD98989 - 特征码 'Trojan.Win32.Tilcun.B' 被发现
D:\病毒测试\临时解压\32DD9D3B - 特征码 'Virus.Win32.Virut.a' 被发现
D:\病毒测试\临时解压\33F98313 - 特征码 'Application.Win32.AdWare.Cdn' 被发现
D:\病毒测试\临时解压\3DE33160 - 特征码 'not-a-virus:AdWare.Win32.Virtumonde' 被发现
D:\病毒测试\临时解压\40A558A3 - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
D:\病毒测试\临时解压\412D75B4
D:\病毒测试\临时解压\41FA36CC - 特征码 'Trojan-PWS.Win32.Small.br' 被发现
D:\病毒测试\临时解压\4389B379 - 特征码 'Backdoor.Win32.PcClient.LH' 被发现
D:\病毒测试\临时解压\4411EAC9 - 特征码 'Virus.Win32.Virut.q' 被发现
D:\病毒测试\临时解压\4AAADE76 - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
D:\病毒测试\临时解压\4E65FE8F - 特征码 'Trojan-Downloader.Win32.Injecter.zi' 被发现
D:\病毒测试\临时解压\4EF616B1
D:\病毒测试\临时解压\563CB5D3 - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
D:\病毒测试\临时解压\5759899C - 特征码 'Win32.Rigel.6468' 被发现
D:\病毒测试\临时解压\58AC2736 - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
D:\病毒测试\临时解压\5C188710
D:\病毒测试\临时解压\62F2DB18
D:\病毒测试\临时解压\650924FD - 特征码 'Win32.Rigel.6468' 被发现
D:\病毒测试\临时解压\6BF08502
D:\病毒测试\临时解压\6E1B312A
D:\病毒测试\临时解压\6E1F0178
D:\病毒测试\临时解压\71787E8F - 特征码 'not-a-virus:AdWare.Win32.BetterInternet.b' 被发现
D:\病毒测试\临时解压\7362B8C5 - 特征码 'Virus.Exploit.Win32.Jpedrop.i' 被发现
D:\病毒测试\临时解压\752D19F0 - 特征码 'Trojan.Win32.Dogrobot.I' 被发现
D:\病毒测试\临时解压\75ED13AE
D:\病毒测试\临时解压\763771A2 - 特征码 'Virus.Win32.Virut.d' 被发现
D:\病毒测试\临时解压\77604E1C - 特征码 'Win32.SuspectCrc' 被发现
D:\病毒测试\临时解压\7925A280 - 特征码 'Trojan-Downloader.Win32.Zlob.AW' 被发现
D:\病毒测试\临时解压\795008F9
D:\病毒测试\临时解压\7976DA09
D:\病毒测试\临时解压\797F1AF7
D:\病毒测试\临时解压\7C16CD4A - 特征码 'AdWare.Cinmus' 被发现
D:\病毒测试\临时解压\7CBB5B5D
D:\病毒测试\临时解压\7CDA83F8 - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
D:\病毒测试\临时解压\7F8B6EBB
D:\病毒测试\临时解压\803E5637 - 特征码 'Trojan.Crypt.DJ' 被发现
D:\病毒测试\临时解压\806DABB7
D:\病毒测试\临时解压\827BF15D - 特征码 'Win32.Rigel.6468' 被发现
D:\病毒测试\临时解压\83146856 - 特征码 'BehavesLikeTrojan.WUDisable' 被发现
D:\病毒测试\临时解压\834E3A04 - 特征码 'Trojan.Win32.VB.ACK' 被发现
D:\病毒测试\临时解压\83A12D4A - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
D:\病毒测试\临时解压\8A0F0165 - 特征码 'Trojan.Win32.Dogrobot.I' 被发现
D:\病毒测试\临时解压\8D91B339 - 特征码 'Trojan-Downloader.Win32.Agent.uai' 被发现
D:\病毒测试\临时解压\90003E44
D:\病毒测试\临时解压\924BF952 - 特征码 'Backdoor.Win32.PcClient.yw' 被发现
D:\病毒测试\临时解压\9520D3C0 - 特征码 'Trojan-Downloader.Zlob.ABRP' 被发现
D:\病毒测试\临时解压\95EE83B4 - 特征码 'BHO.Win32.CNNIC' 被发现
D:\病毒测试\临时解压\9FE7F077 - 特征码 'Trojan-Downloader.Zlob' 被发现
D:\病毒测试\临时解压\A064C96B
D:\病毒测试\临时解压\A0E70B93
D:\病毒测试\临时解压\A27B531A - 特征码 'BHO.Win32.CNNIC' 被发现
D:\病毒测试\临时解压\A2A72C24 - 特征码 'Virus.Win32.OnLineGames.EAT' 被发现
D:\病毒测试\临时解压\A46EA20D - 特征码 'Trojan.BHO.OAW' 被发现
D:\病毒测试\临时解压\AA6BE28A - 特征码 'Virus.Win32.Virut.n' 被发现
D:\病毒测试\临时解压\AC8B3DE7 - 特征码 'Rootkit.Agent.XD' 被发现
D:\病毒测试\临时解压\B0B8DF88 - 特征码 'Trojan-Proxy.Win32.Ranky' 被发现
D:\病毒测试\临时解压\B1C2F0E1
D:\病毒测试\临时解压\B27C5823 - 特征码 'Win32.Rigel.6468' 被发现
D:\病毒测试\临时解压\B4EA4A78 - 特征码 'Trojan.Win32.Dogrobot.I' 被发现
D:\病毒测试\临时解压\B7D1EF87 - 特征码 'Worm.Zhelatin' 被发现
D:\病毒测试\临时解压\B80122DB - 特征码 'Virus.Win32.Agent.JZN' 被发现
D:\病毒测试\临时解压\B96023A3 - 特征码 'Virus.Win32.Virut.a' 被发现
D:\病毒测试\临时解压\BF8096B0 - 特征码 'BehavesLike.Trojan.ShellHook' 被发现
D:\病毒测试\临时解压\BFE3F74F
D:\病毒测试\临时解压\C1829DE
D:\病毒测试\临时解压\C19DF1FA - 特征码 'Trojan-PWS.Lmir.UMK' 被发现
D:\病毒测试\临时解压\C6BE40A7
D:\病毒测试\临时解压\CE981B22 - 特征码 'Backdoor.Win32.VB.VH' 被发现
D:\病毒测试\临时解压\CF8FBCA3 - 特征码 'Trojan-Downloader.Winlagons.QX' 被发现
D:\病毒测试\临时解压\CFA2E27D - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
D:\病毒测试\临时解压\D2AC51E3 - 特征码 'Virus.Win32.OnLineGames.BGD' 被发现
D:\病毒测试\临时解压\DA9C0CD4 - 特征码 'Trojan.Crypt.Morphine' 被发现
D:\病毒测试\临时解压\DE8CFE46 - 特征码 'Backdoor.Win32.Bifrose.ago' 被发现
D:\病毒测试\临时解压\E172C097 - 特征码 'Trojan-Spy.Win32.Delf.uv' 被发现
D:\病毒测试\临时解压\E31C2342 - 特征码 'Trojan.Win32.Obfuscated.dnn' 被发现
D:\病毒测试\临时解压\E39E1536
D:\病毒测试\临时解压\E4248D32
D:\病毒测试\临时解压\E44B860
D:\病毒测试\临时解压\E6A4BC2 - 特征码 'Virus.Trojan.Win32.Monder' 被发现
D:\病毒测试\临时解压\E952AF81
D:\病毒测试\临时解压\E967C282 - 特征码 'BHO.Win32.CNNIC' 被发现
D:\病毒测试\临时解压\EB3CB0CD - 特征码 'Trojan.Fakealert.TE' 被发现
D:\病毒测试\临时解压\EB6C3C47 - 特征码 'Virus.Trojan.Win32.Agent.qnv' 被发现
D:\病毒测试\临时解压\EBBC53B1
D:\病毒测试\临时解压\EBF4D650 - 特征码 'Backdoor.Win32.PcClient.LH' 被发现
D:\病毒测试\临时解压\F10BE0C0 - 特征码 'Backdoor.Win32.PcClient.LH' 被发现
D:\病毒测试\临时解压\F835D1A8 - 特征码 'Win32.Rigel.6468' 被发现
D:\病毒测试\临时解压\F85AB9AF - 特征码 'Trojan-Dropper.Win32.Agent.ane' 被发现
D:\病毒测试\临时解压\FA82E4AA - 特征码 'Virus.Win32.OnLineGames.BGD' 被发现
D:\病毒测试\临时解压\FA907B72 - 特征码 'BHO.Win32.CNNIC' 被发现
D:\病毒测试\临时解压\FCB2D99D - 特征码 'Trojan.Fakealert.SZ' 被发现
D:\病毒测试\临时解压\FFA0FE98

100 文件被扫描
(0 压缩档 0 文件)
72 特征码被侦测
0 可疑代码段被发现
耗时: 0:13.329

显示全部楼层 · 发表于 2008-7-1 00:10:57

AVK

KAV+AVAST 77

KAV+BD 78

显示全部楼层 · 发表于 2008-7-1 00:23:10

avira P 杀完了剩下17个

显示全部楼层 · 发表于 2008-7-1 00:34:31

这是红伞杀剩下的17个的在线扫描报告(jotti)
File:  06-28.rar
Status:  INFECTED/MALWARE
MD5:  537f6ff5cd624380ba76744cd126645d
Packers detected:  PE_PATCH
Scanner results
Scan taken on 30 Jun 2008 16:26:59 (GMT)
A-Squared  Found nothing
AntiVir  Found nothing
ArcaVir  Found nothing
Avast  Found Win32:Agent-JZN
AVG Antivirus  Found nothing
BitDefender  Found Adware.Generic.1917
ClamAV  Found nothing
CPsecure  Found Troj.PSW.W32.OnLineGames.aqlo
Dr.Web  Found Trojan.DownLoader.65509, Trojan.Swizzor.based, Adware.Tencent
F-Prot Antivirus  Found nothing
F-Secure Anti-Virus  Found Trojan-PSW.Win32.OnLineGames.aqlo
Fortinet  Found nothing
Ikarus  Found Virus.Win32.Agent.JZN
Kaspersky Anti-Virus  Found Trojan-PSW.Win32.OnLineGames.aqlo
NOD32  Found nothing
Norman Virus Control  Found nothing
Panda Antivirus  Found nothing
Sophos Antivirus  Found Sus/Emogen-X, Mal/Swizzor-B (probable variant)
VirusBuster  Found nothing
VBA32  Found Trojan-PSW.Win32.OnLineGames.aqlo

Dr.Web胜出

[病毒样本] 06.30 100x

F-Prot 4.4.4

Virus Chaser 5.0a

本帖子中包含更多资源

50/21

本帖子中包含更多资源