来几个（20号）

流清泉

http://www.w3389.com/ly.rar
http://biyima.12mf.cn/data/wg.rar
http://cbcb.138.tofor.com/b/abc.exe
http://www.qiannao.com/servlet/FileDownload?filename=//wangbaoqiang/Setup.exe
http://ceshi1.w1.shendata.com/qq.rar
http://o.99081.com/gaoge/QQ.rar

wangjay1980

发完没？

tanlimo

ESS漏一个

wangjay1980

detected: Trojan program Trojan-Downloader.Win32.Delf.epw        File: E:\ÏÂÔØ»ùµØ\virus\abc.exe
detected: riskware not-a-virus:PSWTool.Win32.QQPass.b        File: E:\ÏÂÔØ»ùµØ\virus\ly.rar/qqview.exe//UPack
detected: Trojan program Backdoor.Win32.Delf.dgt        File: E:\ÏÂÔØ»ùµØ\virus\ly.rar/DAT\dat.dat
detected: Trojan program Backdoor.Win32.Hupigon.dsx        File: E:\ÏÂÔØ»ùµØ\virus\qq.rar/qq\ÕßQQ´óµÁ.exe//data0000.cab/y.exe


TO KL

[ 本帖最后由 wangjay1980 于 2008-3-20 15:56 编辑 ]

挪威的冬天

信息        2008-03-20  15:55:34        您此次查毒清除了3个病毒                       
信息        2008-03-20  15:55:34        您此次查毒共查出3个病毒以及危险代码                       
信息        2008-03-20  15:55:34        您此次查毒共查了内存模块0个，磁盘引导扇区0个，文件33个                       
信息        2008-03-20  15:55:34        金山毒霸主程序查毒过程结束，查毒方式：命令行查毒                       
风险程序        2008-03-20  15:55:34        D:\Desktop\abc.exe        Win32.RiskWare.AgentT.m.98304        隔离成功       
病毒        2008-03-20  15:55:33        D:\Desktop\ly.rar\DAT\dat.dat        Win32.Troj.DelfT.dt.389787        清除成功       
病毒        2008-03-20  15:55:33        D:\Desktop\ly.rar\qqview.exe        Win32.Troj.QQViewer.a.691200        清除成功       


病毒        2008-03-20  15:48:02        病毒在文件D:\Temporary Internet Files\Internet 临时文件\Content.IE5\IO3WCCLS\Setup[1].exe中        Win32.Hack.Huigezi2007.761856        拦截成功（文件被禁止访问）

mofunzone

Starting the file scan:

Begin scan in 'C:\TDDOWNLOAD\wg.rar'
C:\TDDOWNLOAD\
  wg.rar
    [0] Archive type: RAR
    --> wg.exe
    --> data.exe
    --> sn.txt
Begin scan in 'C:\TDDOWNLOAD\abc.exe'
C:\TDDOWNLOAD\
  abc.exe
    [0] Archive type: RSRC
    --> Object
        [DETECTION] Is the Trojan horse TR/Dldr.Delf.epw.1
      [NOTE]      The file was deleted!
Begin scan in 'C:\TDDOWNLOAD\ly.rar'
C:\TDDOWNLOAD\
  ly.rar
    [0] Archive type: RAR
      --> ￁ￔￓﾥￗﾨￒﾵﾰ￦.exe
        [1] Archive type: Runtime Packed
        --> Object
          [2] Archive type: RSRC
          --> Object
            [3] Archive type: Runtime Packed
            --> Object
    --> qqview.exe
        [DETECTION] Contains detection pattern of the SPR/PSW.QQpass.B.6 program
发表帖    --> ￁ￔￓﾥￔﾶ﾿￘ﾹ￙ﾷﾽￍ?ￕﾾ.url
    --> DAT\dat.dat
        [DETECTION] Is the Trojan horse TR/Agent.389758
    --> ￗﾢﾲ￡.reg
    --> ￖ￘ￒﾪ.txt
      [NOTE]      The file was deleted!
Begin scan in 'C:\TDDOWNLOAD\qq.rar'
C:\TDDOWNLOAD\
  qq.rar
    [0] Archive type: RAR
    --> qq\qq.asp
    --> qq\read.txt
子[完成后可按 Ctrl+E    --> qq\ￕ￟QQﾴ?ﾵ￁.exe
Begin scan in 'C:\TDDOWNLOAD\QQ(1).rar'
C:\TDDOWNLOAD\
  QQ(1).rar
    [0] Archive type: RAR
    --> mfQQgj\demo.gif
    --> mfQQgj\LiteIM.ini
nter 发布]  预览帖子    --> mfQQgj\￉ￏￍ?ﾲﾻﾻ￡ￖ￐ﾶﾾﾵￄﾳﾬￇ﾿￤ﾯ￀￀ￆ?ﾣﾡ.URL
  恢复数据  清空内    --> mfQQgj\ﾱ￘﾿ﾴￋﾵￃ?.htm
容 默认表情    --> mfQQgj\ﾱ￈ACDSEEﾻﾹￇ﾿ﾵￄￍﾼￏ?￈￭ﾼ?ﾣﾡ.URL
    --> mfQQgj\ﾺￓￔﾴￏￂￔ￘ￕﾾ.url
    --> mfQQgj\ﾺￓￔﾴￏￂￔ￘ￕﾾCngr.cnￋﾵￃ?.txt
    --> mfQQgj\ￂￌ￉ﾫ￈￭ﾼ?ￕﾾ.txt
1    --> mfQQgj\ￂￌ￉ﾫ￈￭ﾼ?ￕﾾ.url
    --> mfQQgj\ￌￚ￑ﾶQQ.exe
23456    --> mfQQgj\ￋﾵￃ?.txt
Begin scan in 'C:\TDDOWNLOAD\Setup.exe'
C:\TDDOWNLOAD\
  Setup.exe
      [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
      [NOTE]      The file was deleted!


End of the scan: 2008年3月20日  01:02
Used time: 00:04 min

The scan has been done completely.

      0 Scanning directories
     29 Files were scanned
      4 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      3 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     25 Files not concerned
      4 Archives were scanned
      0 Warnings
      3 Notes

mofunzone

又见antivir托不掉的自解压，运行后
Virus or unwanted program 'TR/Hook.Shell.551 [trojan]'
detected in file 'C:\Sandbox\Administrator\DefaultBox\user\current\Local Settings\Temp\IXP000.TMP\挺进者QQ大盗.exe.
Action performed: Delete file


Virus or unwanted program 'BDS/Hupigon.Gen [backdoor]'
detected in file 'C:\Sandbox\Administrator\DefaultBox\user\current\Local Settings\Temp\IXP000.TMP\腾讯QQ免费开业务工具.exe.
Action performed: Delete file


剩下的没反应的，和这几个没脱掉的，都上报了

capsshift

这就是红伞的缺点了.

said411f

avast 4.8.1137

http://www.w3389.com/ly.rar\轂茈蚳珛唳.exe\[UPX]
Win32:Bifrose-AJ [Trj]
特洛伊木馬

http://biyima.12mf.cn/data/wg.rar\data.exe\[RLPack]\[Embedded#40b0]
Win32:Keylogger-AY [Trj]
特洛伊木馬

http://cbcb.138.tofor.com/b/abc.exe
Win32:Delf-IOR [Trj]
特洛伊木馬

http://www.qiannao.com/servlet/F ... gbaoqiang/Setup.exe
Win32:Hupigon-EKT [Trj]
特洛伊木馬

http://ceshi1.w1.shendata.com/qq.rar\qq\氪QQ湮聒.exe\穻輛氪QQ湮聒.exe
Win32:OnLineGames-BSI [Trj]
特洛伊木馬

http://o.99081.com/gaoge/QQ.rar\mfQQgj\枆捅QQ.exe\枆捅QQ轎煤羲珛昢馱撿.exe
Win32:Hupigon-EKT [Trj]
特洛伊木馬

qigang

瑞星病毒查杀结果报告

清除病毒种类列表：

病毒： Trojan.DL.Win32.Direct.me
病毒： Backdoor.Win32.Gpigeon.2007.gf

MAC 地址：00:11:5B:F3:6D:69

用户来源：互联网

软件版本：20.36.32