卡巴报Backdoor.Win32.Sinowal.ky

显示全部楼层 · 发表于 2008-8-1 15:24:01

Backdoor.Win32.Sinowal.ky

显示全部楼层 · 发表于 2008-8-1 15:25:27

index.exe New Win32.g4 (病毒)

显示全部楼层 · 发表于 2008-8-1 15:29:55

原帖由 小邪邪 于 2008-8-1 15:25 发表
index.exe New Win32.g4 (病毒)

怎么看这些样本是否发过？

显示全部楼层 · 发表于 2008-8-1 15:30:38

Scan Log
Version of virus signature database: 3316 (20080731)
Date: 2008-8-1 Time: 15:30:41
Scanned disks, folders and files: G:\v\5.zip
G:\v\5.zip » ZIP » index.exe - a variant of Win32/Mebroot.N trojan - was a part of the deleted object
Number of scanned objects: 1
Number of threats found: 1
Number of cleaned objects: 1
Time of completion: 15:30:41 Total scanning time: 0 sec (00:00:00)

显示全部楼层 · 发表于 2008-8-1 16:39:37

McAfee這個啟發式名稱已經報過2次了~

显示全部楼层 · 发表于 2008-8-1 16:41:53

這知應該報XCore才對~
會低階磁盤操作

显示全部楼层 · 发表于 2008-8-1 16:56:14

The file 'index.exe' has been determined to be 'MALWARE'. Our analysts named the threat BDS/Sinowal.IJ. The term "BDS/" denotes a Backdoor-Server program. Backdoor-Server programs are used to spy out, modify or delete data.Detection will be added to our virus definition file (VDF) with one of the next updates.

[病毒样本] 卡巴报Backdoor.Win32.Sinowal.ky

又是发过的？