终于抓住了这个邪恶的病毒！

显示全部楼层 · 发表于 2008-11-9 15:24:19

Multi Command-Line Scanner Report
-------------------------------------------------------------------------
D:\Desk\Samples\Collect\MCLS\jcznjst.exe
Type: Win32 Executable Generic / Extension: .EXE
MD5 Hash: ACF49451DEE2CB2697D23EF039EA780E

A-squared ----- Packer.RLPack.D!IK
Avast ----- Win32:Virut
Avg ----- BackDoor.RBot.KB
Antivir ----- W32/Virut.Gen
BitDefender ----- Win32.Virtob.3.Gen
ClamWin ----- W32.Virut.di
Dr.Web ----- Win32.Virut.5
Eset ----- probably a variant of Win32/Virut.Gen virus
Ikarus ----- Packer.RLPack.D
Jiangmin ----- Net-Worm.Kolabc.jb
Kaspersky ----- Backdoor.Win32.VanBot.wv
Kingsoft ----- Win32.Virut.n.2600
Vba32 ----- Net-Worm.Win32.Kolabc.bsb

*** 13/13 antivirus engines found virus in this file ***
-------------------------------------------------------------------------

Task done @ 2008/11/09 日 15:23:55.51

显示全部楼层 · 发表于 2008-11-9 15:35:57

显示全部楼层 · 发表于 2008-11-9 15:45:07

文件 jcznjst.rar 接收于 2008.11.09 07:24:27 (CET)
当前状态: 完成

结果: 27/36 (75.00%)
格式化文本打印结果
反病毒引擎版本最后更新扫描结果
AhnLab-V3 2008.11.7.1 2008.11.09 -
AntiVir 7.9.0.26 2008.11.07 W32/Virut.Gen
Authentium 5.1.0.4 2008.11.08 -
Avast 4.8.1248.0 2008.11.08 Win32:Virut
AVG 8.0.0.161 2008.11.08 BackDoor.RBot.KB
BitDefender 7.2 2008.11.09 Win32.Virtob.3.Gen
CAT-QuickHeal 9.50 2008.11.08 W32.Virut.D
ClamAV 0.94.1 2008.11.09 W32.Virut.di
DrWeb 4.44.0.09170 2008.11.09 Win32.Virut.5
eSafe 7.0.17.0 2008.11.06 Suspicious File
eTrust-Vet 31.6.6198 2008.11.07 -
Ewido 4.0 2008.11.08 -
F-Prot 4.4.4.56 2008.11.08 -
F-Secure 8.0.14332.0 2008.11.09 Backdoor.Win32.VanBot.wv
Fortinet 3.117.0.0 2008.11.08 W32/MetaCrypt.7
GData 19 2008.11.09 Win32.Virtob.3.Gen
Ikarus T3.1.1.45.0 2008.11.09 Packer.RLPack.D
K7AntiVirus 7.10.520 2008.11.08 Virus.Win32.Virut.Generic
Kaspersky 7.0.0.125 2008.11.09 Backdoor.Win32.VanBot.wv
McAfee 5428 2008.11.08 -
Microsoft 1.4104 2008.11.09 Virus:Win32/Virut.AK
NOD32 3597 2008.11.08 probably a variant of Win32/Virut.Gen
Norman 5.80.02 2008.11.07 W32/Virut.D
Panda 9.0.0.4 2008.11.08 W32/Virutas.G.dam
PCTools 4.4.2.0 2008.11.08 Win32.Virut.Gen
Prevx1 V2 2008.11.09 Suspicious
Rising 21.02.60.00 2008.11.09 Backdoor.Win32.IRCbot.wwt
SecureWeb-Gateway 6.7.6 2008.11.09 Win32.Virut.Gen
Sophos 4.35.0 2008.11.08 Sus/UnkPacker
Sunbelt 3.1.1785.2 2008.11.08 -
Symantec 10 2008.11.09 W32.Virut.B
TheHacker 6.3.1.1.146 2008.11.08 -
TrendMicro 8.700.0.1004 2008.11.07 Cryp_Virut-4
VBA32 3.12.8.9 2008.11.09 Net-Worm.Win32.Kolabc.bsb
ViRobot 2008.11.7.1457 2008.11.07 -
VirusBuster 4.5.11.0 2008.11.08 Backdoor.VanBot.MG
附加信息
File size: 73326 bytes
MD5...: 42d30ad3bad7fb4484ea4c002848668a
SHA1..: bb349eeefcd746435ab864148a8c1c33e7a7f414
SHA256: 6f3468f34f1fb16c83cb57113fdbd357c82aa46f9dbad00985a00a1cb343219e
SHA512: 45354f9d39b665911cd487eecc6749fd86f7b6bc5c1f7e8bded8384b80cc9aa3
37b24622aaa933a3ed19165eb58aca2c4e1545e11cc81c225908af24448141de
PEiD..: -
TrID..: File type identification
RAR Archive (83.3%)
REALbasic Project (16.6%)
PEInfo: -
Prevx info: http://info.prevx.com/aboutprogr ... 16E76334B00173CC3A7

显示全部楼层 · 发表于 2008-11-9 16:01:46

弄下来测试

显示全部楼层 · 发表于 2008-11-9 16:16:07

FS ko

显示全部楼层 · 发表于 2008-11-9 16:27:02

解压缩没反应，双击运行大约2秒微点报警

显示全部楼层 · 发表于 2008-11-9 18:09:10

下下来解压一看，里面是空的，原来我的红伞默认是自动删除

显示全部楼层 · 发表于 2008-11-9 18:26:24

avast 11-9 杀掉！

显示全部楼层 · 发表于 2008-11-9 20:26:35

McAfee miss

显示全部楼层 · 发表于 2008-11-9 20:53:33

[localimg=399,396]1[/localimg]

VirSCAN.org Scanned Report :
Scanned time : 2008/11/09 16:27:37 (CST)
Scanner results: 64%的杀软(25/39)报告发现病毒
File Name    : jcznjst.rar
File Size    : 73326 byte
File Type    : RAR archive data, v1d, os
MD5          : 42d30ad3bad7fb4484ea4c002848668a
SHA1          : bb349eeefcd746435ab864148a8c1c33e7a7f414
Online report  : http://virscan.org/report/7b3b6813b261123b4e5236ec246c7174.html
Scanner       Engine Ver    Sig Ver          Sig Date Time Scan result
a-squared    4.0.0.23       2008.11.03       2008-11-03  1.55 Net-Worm.Win32.Kolabc.dgx!A2
安博士V3    2008.11.09.01 2008.11.09       2008-11-09  0.96 -
AntiVir       7.9.0.29       7.1.0.55       2008-11-07  1.52 W32/Virut.Gen
安天          2.0.18       20081108.1564159  2008-11-08  0.12 -
Arcavir       1.0.5          200811061144    2008-11-06  1.22 W32.Virut.E
Authentium    5.1.1          200811081650    2008-11-08  4.25 -
AVAST!       3.0.1          081108-0       2008-11-08  0.01 Win32:Virut
AVG          7.5.52.442    270.9.0/1776    2008-11-08  1.75 -
BitDefender 7.60825.2089389 7.21764          2008-11-09  3.37 Win32.Virtob.3.Gen
CA (VET)    9.0.0.143    31.6.6199       2008-11-07  6.26 Win32/Virut.9276 virus.
ClamAV       0.94          8594             2008-11-09  0.01 W32.Virut.di
Comodo       2.11          2.0.0.701       2008-11-08  0.42 -
CP Secure    1.1.0.715    2008.11.08       2008-11-08  6.46 W32.Virut.F
Dr.Web       4.44.0.9170    2008.11.09       2008-11-09  3.46 Win32.Virut.5
ewido       4.0.0.2       2008.11.08       2008-11-08  3.88 -
F-Prot       4.4.4.56       20081108       2008-11-08  4.01 -
F-Secure    5.51.6100    2008.11.08.02    2008-11-08  3.65 Backdoor.Win32.VanBot.wv [AVP]
飞塔          2.81-3.117    9.698          2008-11-08  0.21 W32/MetaCrypt.7
GData       19.1442/19.96 20081109       2008-11-09  2.88 Backdoor.Win32.VanBot.wv [Engine:A]
ViRobot       20081107       2008.11.07       2008-11-07  0.40 Backdoor.Win32.VanBot.71168
Ikarus       T3.1.01.45    2008.11.09.71821  2008-11-09  3.39 -
江民杀毒    11.0.706       2008.11.09       2008-11-09  1.31 Net-Worm.Kolabc.jb
卡巴斯基    5.5.10       2008.11.09       2008-11-09  0.01 Backdoor.Win32.VanBot.wv
金山毒霸    2008.9.8.18    2008.11.8.22    2008-11-08  0.67 Win32.Virut.n.2600
迈克菲       5.3.00       5428             2008-11-08  5.72 -
Microsoft    1.4104       2008.11.09       2008-11-09  4.04 Virus:Win32/Virut.AK
mks_vir       2.01          2008.11.09       2008-11-09  2.79 -
Norman       5.93.01       5.93.00          2008-11-07  5.47 W32/Virut.D
熊猫卫士    9.05.01       2008.11.08       2008-11-08  2.43 W32/Virutas.G.dam
趋势科技    8.700-1004    5.644.35       2008-11-08  0.03 Cryp_Virut-4
Quick Heal    9.50          2008.11.08       2008-11-08  2.89 W32.Virut.D
瑞星          20.0          21.02.61.00    2008-11-09  0.88 Backdoor.Win32.IRCbot.wwt
Sophos       2.80.0       4.35             2008-11-09  1.92 -
Sunbelt       3.1.1785.2    4374             2008-11-04  0.54 -
赛门铁克    1.3.0.24       20081108.004    2008-11-08  0.17 W32.Virut.B
nProtect    2008-11-07.00 2383957          2008-11-07  5.82 -
The Hacker    6.3.1.1       v00146          2008-11-08  0.46 -
VBA32       3.12.8.9       20081108.2115    2008-11-08  1.49 Net-Worm.Win32.Kolabc.bsb
VirusBuster 4.5.11.10    10.92.1/671342 2008-11-08  1.02 Backdoor.VanBot.MG

[病毒样本] 终于抓住了这个邪恶的病毒！

本帖子中包含更多资源

微点报“未知木马”

本帖子中包含更多资源