刚抓鸽子[59AF0A]

显示全部楼层 · 发表于 2007-8-19 11:55:24

微点砍掉

显示全部楼层 · 发表于 2007-8-19 11:55:28

detected: Trojan program Backdoor.Win32.Hupigon.dto URL: http://bbs.kafan.cn/attachment.php?aid=115892/h.exe

显示全部楼层 · 发表于 2007-8-19 11:58:53

[0] Archive type: ZIP
--> h.exe
[DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs

显示全部楼层 · 发表于 2007-8-19 12:00:12

Begin scan in 'C:\Documents and Settings\dell\桌面\h.zip'
C:\Documents and Settings\dell\桌面\h.zip
  [0] Archive type: ZIP
  --> h.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
   [INFO]    The file was successfully wiped!
   [INFO]    The file was deleted!

显示全部楼层 · 发表于 2007-8-19 12:04:16

显示全部楼层 · 发表于 2007-8-19 12:04:18

NOD32,AVAST都过了

显示全部楼层 · 发表于 2007-8-19 12:06:29

gezi对nod32是小case..轻轻松松pass了.

显示全部楼层 · 发表于 2007-8-19 12:07:03

调用IE
鸽子？

显示全部楼层 · 发表于 2007-8-19 12:19:39

检测到一个潜在威胁的物理内存直接访问
Attempt to set new security descriptor for C:\Documents and Settings\Administrator\Application Data\SogouPY\env.ini
Attempt to set value AppData within the key HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\
Attempt to delete key HKLM\SOFTWARE\Microsoft\PCHealth\ErrorReporting\DW\

[ 本帖最后由 1688388728 于 2007-8-19 12:21 编辑 ]

[病毒样本] 刚抓鸽子[59AF0A]

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

浏览过的版块