再来三个[MD5: 9469CD E6EF50 7C2BEC]

显示全部楼层 · 发表于 2007-7-15 20:33:36

[MD5: 9469CD E6EF50 7C2BEC]

显示全部楼层 · 发表于 2007-7-15 20:35:56

C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\样本1[1].rar\711.exe - infected with BackDoor.Pigeon.4602
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\样本1[1].rar\UpNet.exe - infected with BackDoor.Qqt
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\EGMKN5N4\样本1[1].rar\WIN710.EXE - infected with BackDoor.Qqt

Archive contains 3 infected items

显示全部楼层 · 发表于 2007-7-15 20:36:18

deleted: Trojan program Trojan.Win32.Agent.ast File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾1.rar/711.exe
deleted: Trojan program Backdoor.Win32.Udps.10.a File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾1.rar/UpNet.exe
deleted: Trojan program Trojan.Win32.Agent.ast File: C:\Documents and Settings\Owner\×ÀÃæ\Ñù±¾1.rar/WIN710.EXE

显示全部楼层 · 发表于 2007-7-15 20:36:38

nod pass

显示全部楼层 · 发表于 2007-7-15 20:36:56

C:\ABC\样本1\711.exe - 特征码 'Backdoor.Pigeon.805' 被发现
C:\ABC\样本1\UpNet.exe - 特征码 'Backdoor.Win32.Udps.10.A' 被发现
C:\ABC\样本1\WIN710.EXE - 特征码 'Trojan.Win32.Agent.ast' 被发现

3 个文件被扫描
(0 个压缩档 0 个文件)
3 个特征码被侦测
0 个可疑代码段被发现
耗时: 0:00.078

显示全部楼层 · 发表于 2007-7-15 21:20:13

Starting the file scan:

Begin scan in 'F:\病毒样本\样本1.rar'
F:\病毒样本\样本1.rar
  [0] Archive type: RAR
  --> 711.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
  --> UpNet.exe
   [DETECTION] Is the Trojan horse TR/Click.Age.192512
  --> WIN710.EXE
   [DETECTION] Is the Trojan horse TR/Drop.Ag.172032.C
   [INFO]    The file was deleted!

显示全部楼层 · 发表于 2007-7-15 21:34:16

[Scan path] C:\Documents and Settings\Administrator\桌面\样本1.rar
>>>C:\Documents and Settings\Administrator\桌面\样本1.rar\711.exe infected with BackDoor.Pigeon.4602
>C:\Documents and Settings\Administrator\桌面\样本1.rar\UpNet.exe infected with BackDoor.Qqt
>>C:\Documents and Settings\Administrator\桌面\样本1.rar\WIN710.EXE infected with BackDoor.Qqt
C:\Documents and Settings\Administrator\桌面\样本1.rar - archive contains infected objects

-----------------------------------------------------------------------------
Scan statistics
-----------------------------------------------------------------------------
Objects scanned: 5
Infected objects found: 3
Objects with modifications found: 0
Suspicious objects found: 0
Adware programs found: 0
Dialer programs found: 0
Joke programs found: 0
Riskware programs found: 0
Hacktool programs found: 0
Objects cured: 0
Objects deleted: 0
Objects renamed: 0
Objects moved: 0
Objects ignored: 0
Scan speed: 628 Kb/s
Scan time: 00:00:01

显示全部楼层 · 发表于 2007-7-15 22:31:56

C:\Documents and Settings\Administrator\桌面\样本
1.rar>>711.exe>>Aspack212r       Backdoor.Win32.Gpigeon.zxu
C:\Documents and Settings\Administrator\桌面\样本
1.rar>>UpNet.exe                         Trojan.DL.Win32.Agent.wvn
C:\Documents and Settings\Administrator\桌面\样本
1.rar>>WIN710.EXE>>upx_c             Trojan.QQMSG.Win32.MsgSender.b

显示全部楼层 · 发表于 2007-7-16 00:12:59

avast飘过……

显示全部楼层 · 发表于 2007-7-16 05:39:30

Kaspersky Anti-Virus 6.0

The requested URL http://bbs.kafan.cn/attachment.php?aid=101304 is infected with Trojan.Win32.Agent.ast virus

[病毒样本] 再来三个[MD5: 9469CD E6EF50 7C2BEC]

本帖子中包含更多资源