本人不再更新，病毒还会更新，有兴趣的自行跟踪

显示全部楼层 · 发表于 2008-11-27 14:19:26

我刚用诺顿360测了一把，解压后直接被删，连图标都没看到

显示全部楼层 · 发表于 2008-11-27 14:23:43

这个用eq很易防，一条规则就可以了。
http://bbs.kafan.cn/thread-321363-1-2.html
里面的这个图

显示全部楼层 · 发表于 2008-11-27 14:42:33

诺顿真让我欣慰

显示全部楼层 · 发表于 2008-11-27 14:50:02

扫描类型: 扫描指定目标
目标: C:\net2.rar

--------------------------------------------------------------------------------

结果: 发现 1 个恶意软件
Trojan-Downloader.Win32.Banload.yin (病毒)
C:\net2.rar\net1.ex3e

net3扫描过了。运行在沙盘中报错。没有实机运行。。

显示全部楼层 · 发表于 2008-11-27 14:55:01

Microsoft Windows [版本 5.2.3790]
(C) 版权所有 1985-2003 Microsoft Corp.

C:\Documents and Settings\Administrator>scan c:\downloads\net1.rar
McAfee VirusScan for Win32 v5.30.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832  LICENSED COPY - Jun 16 2008

Scan engine v5.3.00 for Win32.
Virus data file v5446 created Nov 26 2008
Scanning for 476943 viruses, trojans and variants.

Scanning C: []
Scanning C:\DOWNLOADS\NET1.RAR

Summary report on C:\DOWNLOADS\NET1.RAR
File(s)
      Total files: ...........    1
      Clean: .................    1
      Not scanned: ...........    0
      Possibly Infected: .....    0

Time: 00:00.01

C:\Documents and Settings\Administrator>scan c:\downloads\net2.rar
McAfee VirusScan for Win32 v5.30.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832  LICENSED COPY - Jun 16 2008

Scan engine v5.3.00 for Win32.
Virus data file v5446 created Nov 26 2008
Scanning for 476943 viruses, trojans and variants.

Scanning C: []
Scanning C:\DOWNLOADS\NET2.RAR

Summary report on C:\DOWNLOADS\NET2.RAR
File(s)
      Total files: ...........    1
      Clean: .................    1
      Not scanned: ...........    0
      Possibly Infected: .....    0

Time: 00:00.01

C:\Documents and Settings\Administrator>scan c:\downloads\net3.rar
McAfee VirusScan for Win32 v5.30.0
Copyright (c) 1992-2008 McAfee, Inc. All rights reserved.
(408) 988-3832  LICENSED COPY - Jun 16 2008

Scan engine v5.3.00 for Win32.
Virus data file v5446 created Nov 26 2008
Scanning for 476943 viruses, trojans and variants.

Scanning C: []
Scanning C:\DOWNLOADS\NET3.RAR

Summary report on C:\DOWNLOADS\NET3.RAR
File(s)
      Total files: ...........    1
      Clean: .................    1
      Not scanned: ...........    0
      Possibly Infected: .....    0

Time: 00:00.00

C:\Documents and Settings\Administrator>

显示全部楼层 · 发表于 2008-11-27 15:06:31

微点只拦截了一个，我在沙盘里进行，就是第一个，2和3微点无视。。。。。。。

显示全部楼层 · 发表于 2008-11-27 16:07:15

试了一下

显示全部楼层 · 发表于 2008-11-27 17:33:32

原帖由 wcj20236 于 2008-11-27 15:06 发表
微点只拦截了一个，我在沙盘里进行，就是第一个，2和3微点无视。。。。。。。

我测试的2个微点都拦截了！

显示全部楼层 · 发表于 2008-11-27 18:33:36

实时跟踪....................................

显示全部楼层 · 发表于 2008-11-27 19:17:57

Rising
To KL

[病毒样本] 本人不再更新，病毒还会更新，有兴趣的自行跟踪

本帖子中包含更多资源

本帖子中包含更多资源