eabaohp.exe（卡巴瞎了?）

luxey

autorun.inf里内容
[AutoRun]
open=eabaohp.exe
shell\open=打开(&O)
shell\open\Command=eabaohp.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=eabaohp.exe

密码 123

wangjay1980

detected: virus Heur.AntiAV (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\eabaohp.rar/eabaohp.exe//hmimys//PE_Patch.MaskPE

The EQs

Scan performed at: 2007-9-29 16:21:35
Scanning Log
NOD32 version 2559 (20070929) NT
Command line: C:\Documents and Settings\Don johnson\桌面\eabaohp
Operating memory - is OK

Date: 29.9.2007  Time: 16:21:39
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\Don johnson\桌面\eabaohp\
C:\Documents and Settings\Don johnson\桌面\eabaohp\eabaohp.exe - a variant of Win32/Delf.NDF worm
Number of scanned files: 1
Number of threats found: 1
Number of files cleaned: 1
Time of completion: 16:21:39 Total scanning time: 0 sec (00:00:00)

luxey

我卡巴 怎么没发现！？ 汗

啊弥陀佛

微点砍掉

FBAV

MicroVita AntiSpyware  
_____________________________________________
                                          
             风暴微塔反间谍
[强力查杀各种Win32位的病毒,木马,蠕虫,恶意软件]                  
                   http://221.10.254.214/
----------------------------------------------
开始扫描……


正在检查启动……
[C:\Documents and Settings\Administrator\桌面\Virus\密码 123\eabaohp.exe]
                    …………发现Spy！报告: [4] [1]
文件信息:  大小:23020  MD5:43ecc42ba6a77b5d7261439bfdff61d3


文件数:1   病毒数:1  比重:1
OK  扫描完毕！

  ***日志解释
[4] 集中有害分析引擎
[3] 全局系统判断引擎   
[2] 文件特征码引擎
[1] 文件启发式引擎

solcroft

红心王子

Win32:Delf-ERE [Wrm]

king6808

AhnLab-V3 2007.9.29.0 2007.09.28 -
AntiVir 7.6.0.18 2007.09.28 TR/Crypt.NSPM.Gen
Authentium 4.93.8 2007.09.29 Possibly a new variant of W32/NewMalware-BLP-based!Maximus
Avast 4.7.1043.0 2007.09.29 Win32:Delf-ERE
AVG 7.5.0.488 2007.09.28 Delf.QA
BitDefender 7.2 2007.09.29 Generic.Malware.SP!dldPk!g.B21CDBDF
CAT-QuickHeal 9.00 2007.09.29 (Suspicious) - DNAScan
ClamAV 0.91.2 2007.09.29 -
DrWeb 4.33 2007.09.29 Win32.HLLW.Autoruner.424
eSafe 7.0.15.0 2007.09.29 Win32.Packed.18
eTrust-Vet 31.2.5169 2007.09.27 -
Ewido 4.0 2007.09.29 Heuristic.Win32.AVKiller
FileAdvisor 1 2007.09.29 -
Fortinet 3.11.0.0 2007.09.29 -
F-Prot 4.3.2.48 2007.09.29 W32/NewMalware-BLP-based!Maximus
F-Secure 6.70.13030.0 2007.09.29 Suspicious_H.gen
Ikarus T3.1.1.12 2007.09.29 MalwareScope.Backdoor.Hupigon.3
Kaspersky 7.0.0.125 2007.09.29 -
McAfee 5130 2007.09.28 -
Microsoft 1.2803 2007.09.29 Worm:Win32/Emerleox.gen!C
NOD32v2 2559 2007.09.29 a variant of Win32/Delf.NDF
Norman 5.80.02 2007.09.28 -
Panda 9.0.0.4 2007.09.29 Generic Malware
Prevx1 V2 2007.09.29 -
Rising 19.42.50.00 2007.09.29 Worm.Win32.AVKiller.c
Sophos 4.21.0 2007.09.29 Mal/EncPk-AT
Sunbelt 2.2.907.0 2007.09.28 Trojan.Packed.18
Symantec 10 2007.09.29 W32.Dotex
TheHacker 6.2.6.073 2007.09.28 -
VBA32 3.12.2.4 2007.09.29 Win32.HLLW.Autoruner.424
VirusBuster 4.3.26:9 2007.09.28 Packed/hmimys
Webwasher-Gateway 6.0.1 2007.09.28 Trojan.Crypt.NSPM.Gen

capsshift

解压红伞C报。
Virus or unwanted program 'TR/Crypt.NSPM.Gen [TR/Crypt.NSPM.Gen]'
detected in file 'C:\Documents and Settings\****\桌面\eabaohp\eabaohp.exe.
Action performed: Deny access