再来7个[MD5: 2156E3 7A134C 65E43D 4FF0DE EB7423 AF71BC 23BCBC]

zane_xzz

[MD5: 2156E3 7A134C 65E43D 4FF0DE EB7423 AF71BC 23BCBC]

The EQs

Scan performed at: 2007-7-12 22:21:13
Scanning Log
NOD32 version 2395 (20070712) NT
Command line: C:\Documents and Settings\EQ2\桌面\样本.rar
Operating memory - is OK

Date: 12.7.2007  Time: 22:21:18
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\样本.rar
C:\Documents and Settings\EQ2\桌面\样本.rar ?RAR ?go.exe - a variant of Win32/TrojanDownloader.Delf.BHO trojan
C:\Documents and Settings\EQ2\桌面\样本.rar ?RAR ?come.exe - a variant of Win32/TrojanDownloader.Delf.BHO trojan
C:\Documents and Settings\EQ2\桌面\样本.rar ?RAR ?1.exe - Win32/Viking.LU virus - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\样本.rar ?RAR ?vip.exe - a variant of Win32/PSW.Delf.NHI trojan
Number of scanned files: 8
Number of threats found: 4
Number of files cleaned: 1
Time of completion: 22:21:19 Total scanning time: 1 sec (00:00:01)

wangjay1980

detected: Trojan program Trojan-Downloader.Win32.Delf.bko        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/go.exe
detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/come.exe//NSPack//PE_Patch.MaskPE
detected: virus Worm.Win32.Viking.lu        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/1.exe
detected: Trojan program Trojan-Spy.Win32.Delf.vr        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/Server.exe//UPX
detected: virus Heur.Downloader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/sms.exe
detected: Trojan program Trojan-Spy.Win32.Delf.vr        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/vip.exe//UPX
detected: virus Heur.Downloader (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/x.exe

欠妳緈諨

果然是NOD的兄弟，AVAST删除4个

电影结束了

扫描系统区域...
扫描所选择的目录和文件...
对象: go.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: BehavesLike:Win32.ExplorerHijack (BD 引擎)
对象: come.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: GenPack:Generic.Malware.WBdld.CDD0EAD9 (BD 引擎)
对象: 1.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: Win32.Worm.Viking.IZ (BD 引擎)
对象: Server.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: Generic.PWStealer.A9723036 (BD 引擎)
对象: sms.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: Generic.PWStealer.51463B6B (BD 引擎)
对象: vip.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: Generic.PWStealer.AE7E2824 (BD 引擎)
对象: x.exe
        在压缩档案里: C:\Documents and Settings\wangcheng\桌面\样本.rar
        Status: 已发现病毒
        病毒: Generic.PWStealer.51463B6B (BD 引擎)
对象: 样本.rar
        路径: C:\Documents and Settings\wangcheng\桌面
        Status: 已发现病毒
        病毒: BehavesLike:Win32.ExplorerHijack, GenPack:Generic.Malware.WBdld.CDD0EAD9, Win32.Worm.Viking.IZ, Generic.PWStealer.A9723036, Generic.PWStealer.51463B6B (2x), Generic.PWStealer.AE7E2824 (BD 引擎)
扫描完成: 2007-7-12 22:24
    已检查 1 个文件
    已发现 1 个染毒文件
    发现 0 个可疑文件
这ＢＤ还真的是个变态．．．．．

The EQs

搞不懂BD的报法。。。。

sb

在下载的时候咔吧基本就全报了

tracydk

Starting the file scan:

Begin scan in 'F:\病毒样本\样本.rar'
F:\病毒样本\样本.rar
  [0] Archive type: RAR
  --> go.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Delf.bko.4
  --> come.exe
      [DETECTION] Is the Trojan horse TR/Agent.20845
  --> 1.exe
      [DETECTION] Is the Trojan horse TR/PSW.Delf.AF.2
  --> Server.exe
      [DETECTION] Is the Trojan horse TR/PSW.Steal.27210
  --> sms.exe
      [DETECTION] Is the Trojan horse TR/PSW.Steal.27693
  --> vip.exe
      [DETECTION] Is the Trojan horse TR/Spy.Delf.VR.1
  --> x.exe
      [DETECTION] Is the Trojan horse TR/PSW.Steal.27693
      [INFO]      The file was deleted!

taitan001

F:\7.rar:<RAR>\go.exe : infected MalwareScope.Trojan-PSW.Game.14
F:\7.rar:<RAR>\go.exe : write access denied
F:\7.rar:<RAR>\come.exe : infected MalwareScope.Trojan-PSW.Game.14
F:\7.rar:<RAR>\come.exe : write access denied
F:\7.rar:<RAR>\1.exe : infected MalwareScope.Worm.Viking.5
F:\7.rar:<RAR>\1.exe : write access denied
F:\7.rar:<RAR>\Server.exe : infected MalwareScope.Trojan-PSW.Game.7
F:\7.rar:<RAR>\sms.exe : infected MalwareScope.Trojan-PSW.Game.7
F:\7.rar:<RAR>\vip.exe : infected MalwareScope.Trojan-PSW.Game.7
F:\7.rar:<RAR>\x.exe : infected MalwareScope.Trojan-PSW.Game.7
F:\7.rar : deleted

moonsilver

瑞星病毒查杀结果报告

清除病毒种类列表：
病毒： Trojan.DL.Win32.Delf.yqo
病毒： Trojan.DL.Win32.Agent.wme
病毒： Worm.Win32.Viking.viv   
病毒： Trojan.PSW.Win32.QQPass.qli
病毒： Trojan.PSW.Win32.Agent.qa
病毒： Trojan.PSW.Win32.QQPass.qld

用户来源：互联网

软件版本：19.31.32