[efd16b 5fc6dc 472036 a0eefa]

http://bbs.kafan.cn/viewthread.php?tid=108751&extra=page%3D1下回来的

promised

我已经下回来了
你还漏了个鸽子

红心王子

Trojan.PSW.QQPass.tlc
重复了。。。

1688388728

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\qqdownload[1].rar\qqdownload\ser.exe - infected with Trojan.PWS.Gamania.2870
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\qqdownload[1].rar\qqdownload\vv[1].exe - infected with Trojan.PWS.Gamania.2870
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\9ZJO5KCR\qqdownload[1].rar\qqdownload\wdfmgr32.exe - infected with Trojan.DownLoader.15732

Archive contains 3 infected items

woai_jolin

===================================================================================================
NVCOD On Demand Scanner 5.80.02

NSE revision 5.91.02
nvcbin.def revision 5.90.00 of 2007/07/13 18:54:26 (807131 variants)
nvcmacro.def revision 5.90.00 of 2007/06/29 06:32:19 (20341 variants)
Total number of variants: 827472
Command line: "@C:\Users\Jason\AppData\Local\Temp\~ODBE75.tmp"
===================================================================================================

       Time  Filename                                                     Virus name
---------------------------------------------------------------------------------------------------
- Scanning files in the directory: D:\virus\qqdownload\
       15 ms D:\virus\qqdownload\PRO17E.tmp.htm                          
       31 ms D:\virus\qqdownload\ser.exe                                  Trojan W32/Malware.UMI ()
       16 ms D:\virus\qqdownload\vv[1].exe                                Trojan W32/Malware.UMI ()
      734 ms D:\virus\qqdownload\wdfmgr32.exe                           
- File D:\virus\qqdownload\ser.exe quarantined.
- File D:\virus\qqdownload\ser.exe deleted.
- File D:\virus\qqdownload\vv[1].exe quarantined.
- File D:\virus\qqdownload\vv[1].exe deleted.

===================================================================================================

The scanning started: 2007/07/16 15:21:11
               ended: 2007/07/16 15:21:13
Logged on as        : Jason
on hostname         : JASON-PC

Scanning results:
   Total number of files found..............................:       4
   Number of files scanned..................................:       4
   Number of files/directories skipped due to exclude list..:       0
   Number of files that could not be opened.................:       0
   Number of archive files unpacked.........................:       0
   Number of archive files not unpacked.....................:       0
   Number of infections.....................................:       2

Copyright (c) 1993-2005 Norman ASA.

l784588

avast拦截了.

yym1988520

NIS 1

The EQs

Scan performed at: 2007-7-16 16:55:29
Scanning Log
NOD32 version 2399 (20070714) NT
Command line: C:\Documents and Settings\EQ2\桌面\qqdownload.rar
Operating memory - is OK

Date: 16.7.2007  Time: 16:55:36
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\qqdownload.rar
C:\Documents and Settings\EQ2\桌面\qqdownload.rar ?RAR ?qqdownload\ser.exe - probably a variant of Win32/PSW.QQShou trojan
C:\Documents and Settings\EQ2\桌面\qqdownload.rar ?RAR ?qqdownload\vv[1].exe - probably a variant of Win32/PSW.QQShou trojan
C:\Documents and Settings\EQ2\桌面\qqdownload.rar ?RAR ?qqdownload\wdfmgr32.exe - a variant of Win32/TrojanDownloader.VB.APY trojan
Number of scanned files: 5
Number of threats found: 3
Number of files cleaned: 1
Time of completion: 16:55:36 Total scanning time: 0 sec (00:00:00)

tracydk

Starting the file scan:

Begin scan in 'F:\病毒样本\qqdownload.rar'
F:\病毒样本\qqdownload.rar
  [0] Archive type: RAR
  --> qqdownload\vv[1].exe
      [DETECTION] Is the Trojan horse TR/PSW.52403
  --> qqdownload\wdfmgr32.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
      [INFO]      The file was deleted!

liyukun97065

kis 阻挡了