还有14个

promised

[MD5: E7A0B3 238A84 D4C89F 2BA7FB 899654 DC8A0E A87EF6 93AC49 E34B21 EF131C 6232BE 694458 FA76D5 B0C906]

残缺的唯美

nod32 汗  10个
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » exeA22.exe - a variant of Win32/TrojanDownloader.Small.NUS trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » exeA3E.exe - Win32/TrojanDownloader.Small.NWH trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » 805~.exe - probably a variant of Win32/Agent.NEO trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » 805~~.exe - probably a variant of Win32/Agent.NEO trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » wr-1-403.exe - probably a variant of Win32/TrojanDownloader.Small.EQN trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » explorer4.exe - Win32/TrojanDownloader.Small.DXM trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » explorer3.exe - Win32/Nuwar.Gen worm
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » explorer2.exe - probably a variant of Win32/Genetik trojan
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » explorer1.exe - probably a variant of Win32/Nuwar worm
D:\Documents and Settings\EKINCHENG\桌面\样本.rar - multiple threats - deleted - quarantined
D:\Documents and Settings\EKINCHENG\桌面\样本.rar » RAR » explorer5.exe - a variant of Win32/TrojanDownloader.Busky trojan

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.DL.Win32.Agent.yjs
病毒： Trojan.Win32.Agent.iqs   
病毒： Trojan.DL.Win32.Agent.xam
病毒： Trojan.IMMSG.Win32.TBMSG.ik
病毒： AdWare.Win32.AdMoke.eg   
病毒： Trojan.DL.Win32.Agent.yjo
病毒： Trojan.DL.Win32.Mnless.apu
病毒： Trojan.DL.Win32.LoadAdv.h
病毒： Trojan.DL.Win32.Tibs.jdn
病毒： Trojan.DL.Win32.Agent.xet
病毒： Trojan.DL.Obfuscated.gs  

MAC地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：19.41.12

hahacomcn

C:\Documents and Settings\Administrator\桌面\样本.rar
  [0] Archive type: RAR
  --> wr-1-403.exe
      [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen
  --> pv0009.exe
      [DETECTION] Contains detection pattern of the Ad- or Spyware ADSPY/AdMoke.BA
  --> 805.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 805~~.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.ahj.791 Backdoor server programs
  --> 603.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
  --> 805~.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.ahj.791 Backdoor server programs
  --> load59.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.13312
  --> exeA3E.exe
      [DETECTION] Is the Trojan horse TR/Agent.3749
  --> exeA22.exe
      [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
  --> explorer1.exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.Gen
  --> explorer2.exe
      [DETECTION] Is the Trojan horse TR/Agent.14336.17
  --> explorer3.exe
      [DETECTION] Contains detection pattern of the worm WORM/Zhelatin.IR.41
  --> explorer4.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Small.dxm.4
  --> explorer5.exe
      [DETECTION] Is the Trojan horse TR/Small.Crypted.Gen


End of the scan: 2007年9月18日  21:23
Used time: 00:07 min

The scan has been done completely.

      0 Scanning directories
     16 Files were scanned
     14 viruses and/or unwanted programs were found

wangjay1980

14
detected: Trojan program Trojan-Downloader.Win32.Small.fox        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/wr-1-403.exe//PE_Patch.Upolyx//PE_Patch.UPX//UPX
detected: adware not-a-virus:AdWare.Win32.AdMoke.ba        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/pv0009.exe//PE_Patch//UPack
detected: Trojan program Trojan-Downloader.Win32.Delf.byc        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/805.exe
detected: Trojan program Backdoor.Win32.Agent.ahj        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/805~~.exe
detected: adware not-a-virus:AdWare.Win32.AdMoke.ba        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/603.exe//ASPack
detected: Trojan program Backdoor.Win32.Agent.ahj        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/805~.exe
detected: Trojan program Backdoor.Win32.Delf.bto        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/load59.exe
detected: Trojan program Trojan-Dropper.Win32.Small.ayg        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/exeA3E.exe
detected: Trojan program Trojan-Downloader.Win32.LoadAdv.gen        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/exeA22.exe//PE_Patch.UPX//UPX
detected: virus Packed.Win32.Tibs.br        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/explorer1.exe
detected: Trojan program Trojan.Win32.LowZones.ek        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/explorer2.exe//PE_Patch.UPX//UPX
detected: virus Email-Worm.Win32.Zhelatin.ir        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/explorer3.exe
detected: Trojan program Trojan-Downloader.Win32.Small.fgr        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/explorer4.exe
detected: Trojan program Trojan-Downloader.Win32.Obfuscated.n        File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾.rar/explorer5.exe

qqq000@qq.com

----------
              [凝逸反毒] (http://hi.baidu.com/503165656)

       [凝逸.扫描病毒引擎-日志]       2007.9.18 21:31:36

文件:F:\070918\样本\wr-1-403.exe | 感染:Trojan.DownLoader.32554 [76>20070911_ny0016.axx]2(1.3)
操作:删除文件
文件:F:\070918\样本\pv0009.exe | 感染:Trojan.Resun [118>20070916_ny0019.axx]3(1.1)
操作:删除文件
文件:F:\070918\样本\805~~.exe | 感染:Trojan.Popwin [117>20070916_ny0019.axx]3(4.4)
操作:删除文件
文件:F:\070918\样本\603.exe | 感染:Adware.Clicker.bwd [619>20070916_ny0019.axx]3(2.2)
操作:删除文件
文件:F:\070918\样本\load59.exe | 感染:Win32.Virut.f [648>20070916_ny0019.axx]3(1.1)
操作:删除文件
文件:F:\070918\样本\exeA3E.exe | 感染:Trojan.Popuper.4983 [5300>20070726_dw0001.axx]2(1.3)
操作:删除文件
文件:F:\070918\样本\explorer4.exe | 感染:Trojan.DownLoader.18400 [5304>20070726_dw0001.axx]2(1.3)
操作:删除文件
文件:F:\070918\样本\explorer5.exe | 感染:Trojan.DownLoader.based [5305>20070726_dw0001.axx]3(1.1)
操作:删除文件

扫描完成|病毒:8 文件:14|耗时:6860
----------

uhthn2002

Uhthn Anti-Spyware V3 Alpha
Version - 3.0.0
Standard Database - 87
Paranoia Database - 5289
Heuristics Analysis - Excessive
Scan in - C:\Documents and Settings\uhthn\Desktop\New Folder (2)

C:\Documents and Settings\uhthn\Desktop\New Folder (2)\wr-1-403.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\pv0009.exe - Suspicious of Trojan-PSW.OnLineGames.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\805.exe - Suspicious of Win32.Backdoor.Hupigon.5
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\805~~.exe - Suspicious of MalwareSpy.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\603.exe - Suspicious of Win32.Trojan-PSW.Game.8
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\805~.exe - Suspicious of MalwareSpy.Trojan-Downloader.Delf.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\load59.exe - Infected with PDB:1a0 Malware program - Deleted
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\exeA3E.exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\exeA22.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\explorer1.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\explorer2.exe - Suspicious of Trojan-PSW.Game.1
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\explorer3.exe - Suspicious of Trojan-Downloader.Small.2
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\explorer4.exe - OK
C:\Documents and Settings\uhthn\Desktop\New Folder (2)\explorer5.exe - OK

14 Files scanned
1 Infected files found
10 Suspicious files found
0 Files cured
1 Files deleted

欠妳緈諨

AVAST杀12

rest1min

KV2007杀掉10个。

yurius

铁壳11个

SecurityRisk.Downldr,不操作,1,explorer5.exe,文件; 压缩的文件; 安全风险（打开）
Trojan.Adclicker,不操作,1,explorer4.exe,文件; 压缩的文件
Trojan.Packed.13,不操作,1,explorer3.exe,文件; 压缩的文件
Trojan.KillAV,不操作,1,explorer2.exe,文件; 压缩的文件
Trojan.Packed.13,不操作,1,explorer1.exe,文件; 压缩的文件
Downloader,不操作,1,exeA22.exe,文件; 压缩的文件
Downloader,不操作,1,exeA3E.exe,文件; 压缩的文件
W32.Popwin,不操作,1,805~.exe,文件; 压缩的文件
Downloader,不操作,1,603.exe,文件; 压缩的文件
W32.Popwin,不操作,1,805~~.exe,文件; 压缩的文件
Downloader,不操作,1,805.exe,文件; 压缩的文件