两样本 卡巴 过~~`

alexliu

nod杀第二个!!

uhthn2002

VBA32

C:\Documents and Settings\tomcheung\Desktop\pe.rar : ok
C:\Documents and Settings\tomcheung\Desktop\svchost.rar:<RAR>\svchost.exe : infected MalwareScope.Worm.Viking.3

promised

原帖由 EQ2 于 2007-3-27 15:12 发表
nod32右键扫描只报了一个。。
Scan performed at: 2007-3-27 15:12:14
Scanning Log
NOD32 version 2146 (20070327) NT
Command line: C:\Documents and Settings\EQ2\桌面\pe.rar C:\Documents and Settin ...

Scan performed at: 2007-3-27 16:58:12
Scanning Log
NOD32 version 2146 (20070327) NT
Command line: E:\pe.rar
Operating memory - is OK

Date: 27.3.2007  Time: 16:58:20
Anti-Stealth technology is enabled.
Scanned disks, folders and files: E:\pe.rar
E:\pe.rar ?RAR ?pe.exe - a variant of Win32/Agent.NEO trojan
Number of scanned files: 2
Number of threats found: 1
Number of active threats: 1
Time of completion: 16:58:23 Total scanning time: 3 sec (00:00:03)

[ 本帖最后由 promised 于 2007-3-27 17:25 编辑 ]

KAV-Longhorn

红伞全杀!!!

gggh

卡巴不报警...

jlennon

-----------------------------SCAN REPORT-----------------------------
F-PROT Antivirus for Windows

Antivirus Scanning Engine version number: 4.3.1
Virus signature file from: 2007-3-28, 3:01

Scan name: [Custom Scan]
Path to scan: C:\Documents and Settings\Administrator\桌面\pe.rar|C:\Documents and Settings\Administrator\桌面\svchost.rar

Normal scan
Also scan: Inside subfolders, Compressed files, Streams

Scan started: 2007-3-28, 8:09:31
---------------------------------------------------------------------

[Found security risk]         <W32/Agent.BVB (exact, not disinfectable)>        C:\Documents and Settings\Administrator\桌面\pe.rar->pe.exe
[Contains infected objects]        C:\Documents and Settings\Administrator\桌面\pe.rar
[Quarantined]        C:\Documents and Settings\Administrator\桌面\pe.rar->pe.exe
[Found possible virus]         <W32/PWStealer.gen1 (not disinfectable)>        C:\Documents and Settings\Administrator\桌面\svchost.rar->svchost.exe
[Contains infected objects]        C:\Documents and Settings\Administrator\桌面\svchost.rar
[Quarantined]        C:\Documents and Settings\Administrator\桌面\svchost.rar->svchost.exe

---------------------------------------------------------------------
Scan ended:        2007-3-28, 8:09:33
Duration:        0:00:02

Scan result:

Scanned files:                 2
Infected objects:         2
Disinfected objects:         0
Quarantined files:         2
---------------------------------------------------------------------

solcroft

Kakura

Result: 2 malware found
Backdoor.Win32.Agent.ahj (virus)

• F:\pe.rar\pe.exe

Worm.Win32.Viking.jv (virus)

• F:\svchost.rar\svchost.exe

姜二少爷

过驱逐舰,不过F-S7.0

jlennon

扫描报告
2007年3月28日 11:10:00 - 11:10:01
计算机名称: 0553A719C5644CE
扫描类型: 扫描目标
目标: C:\Documents and Settings\Administrator\桌面\pe.rar C:\Documents and Settings\Administrator\桌面\svchost.rar


--------------------------------------------------------------------------------

结果: 发现 2 恶意软件
Backdoor.Win32.Agent.ahj (病毒)
C:\Documents and Settings\Administrator\桌面\pe.rar\pe.exe
Worm.Win32.Viking.jv (病毒)
C:\Documents and Settings\Administrator\桌面\svchost.rar\svchost.exe




--------------------------------------------------------------------------------

统计信息
已扫描:
文件: 4
尚未扫描: 0
结果:
病毒: 2
间谍软件: 0
可疑项目: 0
危险软件: 0
操作:
已杀毒: 0
已重命名: 0
已删除邮件: 0
已隔离: 0
失败: 0
启动扇区:
已扫描: 0
已感染: 0
可疑项目: 0
已杀毒: 0


--------------------------------------------------------------------------------

选项
定义版本:
病毒: 2007-03-28_01
间谍软件: 2007-03-28_01
扫描引擎:
F-Secure AVP: 7.00.171, 2007-03-27
F-Secure Libra: 2.04.01, 2007-03-24
F-Secure Orion: 1.02.37, 2007-03-27
F-Secure Draco: 1.00.35, 2007-03-26
扫描选项:
扫描所有文件
扫描内部存档
操作:
病毒: 扫描后询问
间谍软件: 扫描后询问

--------------------------------------------------------------------------------

版权 &copy; 1998-2007 产品支持 | 发送病毒样本到 F-Secure