07.29 100x

Ray1112

红伞的回复……
25099443          1A3534AD          75.54 KB          CLEAN
25095525          F5B4110B          11.96 KB          CLEAN

woai_jolin

Scan Log
Version of virus signature database: 3305 (20080729)
Date: 2008-7-29  Time: 17:59:31
Scanned disks, folders and files: G:\v\v
G:\v\v\11F521CB - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\157F32E8 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\1714BB21 - is OK
G:\v\v\18D93861 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\1A2C3169 - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\1A3534AD » NSIS » Entries.bin - is OK
G:\v\v\1A3534AD » NSIS » Strings.txt - is OK
G:\v\v\1A3534AD » NSIS » InstallOptions.dll - is OK
G:\v\v\1A3534AD » NSIS » ioSpecial.ini - is OK
G:\v\v\1A3534AD » NSIS » modern-wizard.bmp - is OK
G:\v\v\1A3534AD » NSIS » MachineKey.dll - is OK
G:\v\v\1A3534AD » NSIS » KillProcDLL.dll - is OK
G:\v\v\1ACF79A0 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\1C557D86 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\20C8AC39 - Win32/TrojanDownloader.FakeAlert.EH trojan - cleaned by deleting - quarantined [1]
G:\v\v\2665DCB7 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\26FD05BC - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\2B3A2799 - is OK
G:\v\v\3258A3F6 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\337D518B - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\33BAD9FF - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\34878CAC - is OK
G:\v\v\348DE74C - probably unknown NewHeur_PE virus [7] - deleted - quarantined
G:\v\v\39CEDB37 - Win32/PSW.OnLineGames.NPM trojan - cleaned by deleting - quarantined [1]
G:\v\v\3CAE5625 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\3D4419E4 - probably unknown NewHeur_PE virus [7] - deleted - quarantined
G:\v\v\3EE1DE16 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\42950686 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\4430A1FB - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\46258AF7 - Win32/TrojanClicker.Agent.BCI trojan - cleaned by deleting - quarantined [1]
G:\v\v\48BFE9C4 - is OK
G:\v\v\48F602DB » ASPack v2.12 - is OK
G:\v\v\4A0344AA - Win32/TrojanDownloader.Agent.OAQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\4F056A5 - Win32/TrojanDownloader.FakeAlert.EH trojan - cleaned by deleting - quarantined [1]
G:\v\v\57674CC4 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\5D37A06C - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\629680E3 - is OK
G:\v\v\65C37252 - Win32/PSW.Agent.NIC trojan - cleaned by deleting - quarantined [1]
G:\v\v\694AA1D0 - Win32/TrojanDownloader.FakeAlert.EH trojan - cleaned by deleting - quarantined [1]
G:\v\v\6E81529F - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\6EF7E774 - a variant of Win32/PSW.OnLineGames.MUG trojan - cleaned by deleting - quarantined [1]
G:\v\v\739DC071 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\73FB31CD - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\7758F870 - is OK
G:\v\v\7F332315 - probably a variant of Win32/Genetik trojan - cleaned by deleting - quarantined [1]
G:\v\v\81A95E66 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\81C31777 - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\85500B40 - is OK
G:\v\v\86017E7B - is OK
G:\v\v\863575FA - Win32/PSW.QQPass.NDM trojan - cleaned by deleting - quarantined [1]
G:\v\v\86747961 - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\8702092E - is OK
G:\v\v\898B59A8 - a variant of Win32/Rbot trojan - cleaned by deleting - quarantined [1]
G:\v\v\8CDD799A - Win32/Adware.WinFixer application - cleaned by deleting - quarantined [1]
G:\v\v\8D82DA44 - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\929670E5 - is OK
G:\v\v\95C5ECE2 - is OK
G:\v\v\98681C6D - is OK
G:\v\v\9C9CD318 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\9CE8ED67 - is OK
G:\v\v\9D2D4DCD - is OK
G:\v\v\A0AFCC65 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\A8F380EA - is OK
G:\v\v\AA68B7F7 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\AA6CC59A - is OK
G:\v\v\AA85D6B9 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\ABD1D1C1 - is OK
G:\v\v\AE13EC53 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\B224C3C8 - is OK
G:\v\v\B8B95E40 - is OK
G:\v\v\B8D92C8 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\B9D28CBF - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\BA86BD96 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\BB27C48E - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\C1394A8B - is OK
G:\v\v\C7A3AA56 - probably unknown NewHeur_PE virus [7] - deleted - quarantined
G:\v\v\C940F95D - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\CE4FA283 - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\D0AB5411 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\D3BB8E71 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\D50ABE85 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\D516DBD9 - is OK
G:\v\v\D6D266C6 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\D705FB78 - is OK
G:\v\v\D87996B2 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\D8D8338C - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\DDB8B952 - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\DF9CF944 - is OK
G:\v\v\E3EE5B9 - a variant of Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\E4FF96F4 - Win32/Rootkit.Agent.NFJ trojan - cleaned by deleting - quarantined [1]
G:\v\v\E9991E1 - is OK
G:\v\v\EE3AAF41 - probably a variant of Win32/PSW.OnLineGames.OAF trojan - cleaned by deleting - quarantined [1]
G:\v\v\EEA619FF - probably a variant of Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\EFE529E - is OK
G:\v\v\EFF468 - a variant of Win32/Adware.Vapsup.AP application - cleaned by deleting - quarantined [1]
G:\v\v\F0637CCE - a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\F3096011 - is OK
G:\v\v\F5B4110B - is OK
G:\v\v\F78ACAB - probably a variant of Win32/PSW.Agent.NHQ trojan - cleaned by deleting - quarantined [1]
G:\v\v\F8AFB07C - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\F959FFAF - a variant of Win32/PSW.QQPass.NCZ trojan - cleaned by deleting - quarantined [1]
G:\v\v\FB30DD99 - Win32/PSW.OnLineGames.NML trojan - cleaned by deleting - quarantined [1]
G:\v\v\FBC0CEC - is OK
G:\v\v\FBCA81D1 - Win32/PSW.OnLineGames.NXI trojan - cleaned by deleting - quarantined [1]
G:\v\v\FDD3E0AB - probably a variant of Win32/Agent trojan - cleaned by deleting - quarantined [1]
G:\v\v\FF668F71 - is OK
Number of scanned objects: 106
Number of threats found: 69
Number of cleaned objects: 69
Time of completion: 17:59:46  Total scanning time: 15 sec (00:00:15)

Notes:
[1] Object has been deleted as it only contained the virus body.
[7] Object is probably infected with an unknown virus.

woai_jolin

2008-7-29 18:36:45        Kernel        File  'G:\v\0729\FBC0CEC' was sent to ESET for analysis.       
2008-7-29 18:36:09        Kernel        File  'G:\v\0729\EFE529E' was sent to ESET for analysis.       
2008-7-29 18:08:04        Kernel        File  'G:\v\0729\DF9CF944' was sent to ESET for analysis.       
2008-7-29 18:07:49        Kernel        File  'G:\v\0729\D705FB78' was sent to ESET for analysis.       
2008-7-29 18:02:38        Kernel        File  'G:\v\0729\A8F380EA' was sent to ESET for analysis.       
2008-7-29 18:02:26        Kernel        File  'G:\v\0729\9D2D4DCD' was sent to ESET for analysis.       
2008-7-29 18:02:15        Kernel        File  'G:\v\0729\9CE8ED67' was sent to ESET for analysis.       
2008-7-29 18:02:01        Kernel        File  'G:\v\0729\98681C6D' was sent to ESET for analysis.       
2008-7-29 18:01:50        Kernel        File  'G:\v\0729\95C5ECE2' was sent to ESET for analysis.       
2008-7-29 18:00:54        Kernel        File  'G:\v\0729\7758F870' was sent to ESET for analysis.       
2008-7-29 18:00:38        Kernel        File  'G:\v\0729\34878CAC' was sent to ESET for analysis.       
2008-7-29 18:00:28        Kernel        File  'G:\v\0729\1A3534AD' was sent to ESET for analysis.       
2008-7-29 18:00:13        Kernel        File  'G:\v\0729\1714BB21' was sent to ESET for analysis.

allinwonderi

---------------------
扫描已结束:        2008-7-29, 21:00:46
用时:        0:01:00

扫描结果:

已扫描的文件:                 105
已感染的对象:         45
已清除的对象:         0
已隔离的文件:         0
---------------------------------------------------------------------

allinwonderi

allinwonderi

[Scanning : C:\Download Files]


C:\Download Files\0729\11F521CB <- Trojan.Gamethief.Onlinegames.Shhw : Delete
C:\Download Files\0729\157F32E8 <- Trojan.Gamethief.Onlinegames.Shhw : Delete
C:\Download Files\0729\1A2C3169 <- Trojan.Gamethief.Onlinegames.Sife : Delete
C:\Download Files\0729\1C557D86 <- Trojan.Gamethief.Onlinegames.Shhv : Delete
C:\Download Files\0729\20C8AC39 <- Heur.W32 : Delete
C:\Download Files\0729\2B3A2799 <- Heur.W32 : Delete
C:\Download Files\0729\3258A3F6<UPX>:3258A3F6<DLLRES>:res0.exe <- Trojan.Psw.Games.Onlinegames.Shmu : Delete
C:\Download Files\0729\337D518B <- Trojan.Gamethief.Onlinegames.Sgvv : Delete
C:\Download Files\0729\348DE74C <- Trojan.Gaobot.Dcom : Delete
C:\Download Files\0729\3D4419E4 <- Trojan.Dsbot.oh : Delete
C:\Download Files\0729\3EE1DE16<UPX>:3EE1DE16<DLLRES>:res0.exe <- Trojan.Gamethief.Onlinegames.Siyp : Delete
C:\Download Files\0729\42950686 <- Trojan.Gamethief.Onlinegames.Shhv : Delete
C:\Download Files\0729\48F602DB <- Trojan.Downloader.Agent.Xru : Delete
C:\Download Files\0729\4A0344AA <- Trojan.Psw.Agent.Nr : Delete
C:\Download Files\0729\4F056A5 <- Heur.W32 : Delete
C:\Download Files\0729\629680E3 <- Trojan.Agent.Ttx : Delete
C:\Download Files\0729\65C37252<UPack>:65C37252 <- Trojan.Gamethief.Onlinegames.Sbjg : Delete
C:\Download Files\0729\694AA1D0 <- Heur.W32 : Delete
C:\Download Files\0729\6E81529F <- Trojan.Gamethief.Onlinegames.Sife : Delete
C:\Download Files\0729\6EF7E774<FSG>:6EF7E774<DLLRES>:res0.exe<DLLRES>:res0.exe <- Trojan.Gamethief.Onlinegames.Scig : Delete
C:\Download Files\0729\7F332315<UPX>:7F332315 <- Trojan.Spy.Delf.Apm : Delete
C:\Download Files\0729\81C31777 <- Trojan.Gamethief.Onlinegames.Shss : Delete
C:\Download Files\0729\85500B40 <- Heur.W32 : Delete
C:\Download Files\0729\86017E7B <- Heur.W32 : Delete
C:\Download Files\0729\863575FA<UPX>:863575FA <- Trojan.Psw.Qqpass.Bx1 : Delete
C:\Download Files\0729\8702092E <- Heur.W32 : Delete
C:\Download Files\0729\898B59A8 <- Trojan.Rbot.Azrail : Delete
C:\Download Files\0729\8CDD799A <- Trojan.Downloader.Agent.Ki : Delete
C:\Download Files\0729\929670E5 <- Heur.W32 : Delete
C:\Download Files\0729\95C5ECE2 <- Heur.W32 : Delete
C:\Download Files\0729\98681C6D <- Trojan.Downloader.Agent.Xkz : Delete
C:\Download Files\0729\9CE8ED67 <- Heur.W32 : Delete
C:\Download Files\0729\A0AFCC65 <- Trojan.Gamethief.Onlinegames.Siyn : Delete
C:\Download Files\0729\A8F380EA <- Heur.W32 : Delete
C:\Download Files\0729\AA6CC59A <- Heur.W32 : Delete
C:\Download Files\0729\ABD1D1C1 <- Heur.W32 : Delete
C:\Download Files\0729\B224C3C8 <- Heur.W32 : Delete
C:\Download Files\0729\B8B95E40 <- Trojan.Downloader.Fraudload.Vanm : Delete
C:\Download Files\0729\C1394A8B <- Trojan.Downloader.Agent.Ki : Delete
C:\Download Files\0729\CE4FA283 <- Trojan.Gamethief.Onlinegames.Siwi : Delete
C:\Download Files\0729\D0AB5411 <- Trojan.Agent.Sav : Delete
C:\Download Files\0729\D3BB8E71 <- Trojan.Gamethief.Onlinegames.Siwu : Delete
C:\Download Files\0729\D50ABE85 <- Trojan.Gamethief.Onlinegames.Shie : Delete
C:\Download Files\0729\D516DBD9 <- Trojan.Downloader.Small.Zdo : Delete
C:\Download Files\0729\D6D266C6 <- Trojan.Agent.Sav : Delete
C:\Download Files\0729\D705FB78 <- Heur.W32 : Delete
C:\Download Files\0729\D8D8338C <- Trojan.Gamethief.Onlinegames.Sife : Delete
C:\Download Files\0729\DF9CF944 <- Heur.W32 : Delete
C:\Download Files\0729\E3EE5B9<UPX>:E3EE5B9<DLLRES>:res0.exe <- Trojan.Agent.Von : Delete
C:\Download Files\0729\E4FF96F4 <- Trojan.Rbot.Byt : Delete
C:\Download Files\0729\E9991E1 <- Heur.W32 : Delete
C:\Download Files\0729\EE3AAF41 <- Trojan.Gamethief.Onlinegames.Sasz : Delete
C:\Download Files\0729\EFE529E <- Heur.W32 : Delete
C:\Download Files\0729\EFF468 <- Trojan.Vapsup.Jay : Delete
C:\Download Files\0729\F0637CCE <- Trojan.Gamethief.Onlinegames.Shnn : Delete
C:\Download Files\0729\F3096011 <- Heur.W32 : Delete
C:\Download Files\0729\F8AFB07C <- Trojan.Gamethief.Onlinegames.Shhv : Delete
C:\Download Files\0729\F959FFAF <- Trojan.Psw.Qqpass.Crn : Delete
C:\Download Files\0729\FBC0CEC <- Heur.W32 : Delete
C:\Download Files\0729\FBCA81D1<UPX>:FBCA81D1<DLLRES>:res0.exe <- Trojan.Agent.Von : Delete
C:\Download Files\0729\FDD3E0AB<UPX>:FDD3E0AB <- Trojan.Spy.Banker.Ckw : Delete
C:\Download Files\0729\FF668F71 <- Heur.W32 : Delete



Scanned objects : 161

Infected objects : 62

斯太尔

小A

斯太尔

360安全卫士，比某些专业杀毒软件侦测率还大

斯太尔

看看专门扫广告的

斯太尔

曾经的杀马之王？