1-6，瑞星杀1个

绅博周幸

红伞6个全灭 ，火力够强的

The EQs

Scan performed at: 2007-3-30 14:18:39
Scanning Log
NOD32 version 2156 (20070330) NT
Command line: C:\Documents and Settings\EQ2\桌面\1-6.rar
Operating memory - is OK

Date: 30.3.2007  Time: 14:18:43
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\1-6.rar
C:\Documents and Settings\EQ2\桌面\1-6.rar ?RAR ?1.EXE - a variant of Win32/Agent.NEO trojan
C:\Documents and Settings\EQ2\桌面\1-6.rar ?RAR ?4.dll - probably a variant of Win32/Adware.Boran application
Number of scanned files: 7
Number of threats found: 2
Number of files cleaned: 1
Time of completion: 14:18:44 Total scanning time: 1 sec (00:00:01)

mofunzone

Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\1-6.rar'
C:\Documents and Settings\morgan\My Documents\
  1-6.rar
    [0] Archive type: RAR
    --> 6.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Boran.40960
        [WARNING]   Infected files in archives cannot be repaired!
    --> 2.dll
        [DETECTION] Is the Trojan horse TR/Dldr.Borlander
        [WARNING]   Infected files in archives cannot be repaired!
    --> 3.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Bor.X.19.C.2
        [WARNING]   Infected files in archives cannot be repaired!
    --> 1.EXE
        [DETECTION] Is the Trojan horse TR/Agent.NTO
        [WARNING]   Infected files in archives cannot be repaired!
    --> 4.dll
        [DETECTION] Contains signature of the Ad- or Spyware ADSPY/Borlander.L.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> 5.exe
        [DETECTION] Contains signature of the SPR/Tool.Reboot.E program
        [WARNING]   Infected files in archives cannot be repaired!
        [INFO]      The file was deleted!

solcroft

5.exe=僵尸一个，运行一闪便退出

bridgewr

微点杀2（已知的），其他的4个3个dll文件，一个5。exe（运行就退出了，啥事都没有做）

soul20010

FS7.0
Result: 5 malware found
AdWare.Win32.Boran.w (adware)
C:\Documents and Settings\ÉÙÁÖ\×ÀÃæ\1-6.rar\6.dll
C:\Documents and Settings\ÉÙÁÖ\×ÀÃæ\1-6.rar\2.dll
C:\Documents and Settings\ÉÙÁÖ\×ÀÃæ\1-6.rar\3.dll
Backdoor.Win32.Agent.ahj (virus)
C:\Documents and Settings\ÉÙÁÖ\×ÀÃæ\1-6.rar\1.EXE
AdWare.Win32.Boran.z (adware)
C:\Documents and Settings\ÉÙÁÖ\×ÀÃæ\1-6.rar\4.dll
Riskware found
RiskTool.Win32.Reboot.e (riskware)
C:\Documents and Settings\ÉÙÁÖ\×ÀÃæ\1-6.rar\5.exe

aribeth199

咖啡，报四个

zzh161

NIS杀了3个，费尔能从剩下的再杀一个

jlennon

-----------------------------SCAN REPORT-----------------------------
F-PROT Antivirus for Windows

Antivirus Scanning Engine version number: 4.3.1
Virus signature file from: 2007-3-30, 6:08

Scan name: [Custom Scan]
Path to scan: C:\Documents and Settings\Administrator\桌面\1-6.rar

Normal scan
Also scan: Inside subfolders, Compressed files, Streams

Scan started: 2007-3-30, 16:24:27
---------------------------------------------------------------------

[Found security risk]         <W32/Agent (exact, not disinfectable)>        C:\Documents and Settings\Administrator\桌面\1-6.rar->1.EXE
[Contains infected objects]        C:\Documents and Settings\Administrator\桌面\1-6.rar
[Quarantined]        C:\Documents and Settings\Administrator\桌面\1-6.rar->5.exe

---------------------------------------------------------------------
Scan ended:        2007-3-30, 16:24:32
Duration:        0:00:05

Scan result:

Scanned files:                 1
Infected objects:         1
Disinfected objects:         0
Quarantined files:         1
---------------------------------------------------------------------

jlj383940

扫描报告
30 March 2007 18:06:00 - 18:06:01
电脑名称: JLJ
扫描类型: 扫描指定目标
目标: E:\下载\1-6.rar


--------------------------------------------------------------------------------

结果: 发现 5 个恶意程序
AdWare.Win32.Boran.w (adware)
E:\下载\1-6.rar\6.dll
E:\下载\1-6.rar\2.dll
E:\下载\1-6.rar\3.dll
Backdoor.Win32.Agent.ahj (病毒)
E:\下载\1-6.rar\1.EXE
AdWare.Win32.Boran.z (adware)
E:\下载\1-6.rar\4.dll



--------------------------------------------------------------------------------

发现风险软件
RiskTool.Win32.Reboot.e (riskware)
E:\下载\1-6.rar\5.exe


--------------------------------------------------------------------------------

统计
已扫描:
文件: 7
未扫描: 0
结果:
病毒: 1
间谍程序: 4
可疑对象: 0
风险软件: 1
操作:
已杀毒: 0
已重命名: 0
已删除: 0
已隔离: 0
失败: 0
引导区:
已扫描: 0
已感染: 0
可疑对象: 0
已杀毒: 0


--------------------------------------------------------------------------------

选项
病毒库版本:
病毒: 2007-03-30_05
间谍程序: 2007-03-30_05
扫描引擎：
F-Secure AVP: 7.00.171, 2007-03-30
F-Secure Libra: 2.04.01, 2007-03-28
F-Secure Orion: 1.02.37, 2007-03-30
F-Secure Draco: 1.00.35, 2007-03-05
扫描选项：
扫描所有文件
扫描压缩包內部
操作:
病毒: 对染毒文件杀毒
间谍程序: 隔离和删除

--------------------------------------------------------------------------------

版权所有 &copy; 1998-2006 产品支持 | 发送病毒样本到 F-Secure