搜索
12
返回列表 发新帖
楼主: tonger2003
收起左侧

[病毒样本] 两样本 卡巴 过~~`

[复制链接]
uhthn2002
发表于 2007-3-27 16:42:14 | 显示全部楼层
VBA32

C:\Documents and Settings\tomcheung\Desktop\pe.rar : ok
C:\Documents and Settings\tomcheung\Desktop\svchost.rar:<RAR>\svchost.exe : infected MalwareScope.Worm.Viking.3
promised
发表于 2007-3-27 16:58:44 | 显示全部楼层
原帖由 EQ2 于 2007-3-27 15:12 发表
nod32右键扫描只报了一个。。
Scan performed at: 2007-3-27 15:12:14
Scanning Log
NOD32 version 2146 (20070327) NT
Command line: C:\Documents and Settings\EQ2\桌面\pe.rar C:\Documents and Settin ...

Scan performed at: 2007-3-27 16:58:12
Scanning Log
NOD32 version 2146 (20070327) NT
Command line: E:\pe.rar
Operating memory - is OK

Date: 27.3.2007  Time: 16:58:20
Anti-Stealth technology is enabled.
Scanned disks, folders and files: E:\pe.rar
E:\pe.rar ?RAR ?pe.exe - a variant of Win32/Agent.NEO trojan
Number of scanned files: 2
Number of threats found: 1
Number of active threats: 1
Time of completion: 16:58:23 Total scanning time: 3 sec (00:00:03)

[ 本帖最后由 promised 于 2007-3-27 17:25 编辑 ]
KAV-Longhorn
发表于 2007-3-27 17:06:50 | 显示全部楼层
红伞全杀!!!
gggh
发表于 2007-3-27 17:35:54 | 显示全部楼层
卡巴不报警...
jlennon
头像被屏蔽
发表于 2007-3-28 08:10:17 | 显示全部楼层
-----------------------------SCAN REPORT-----------------------------
F-PROT Antivirus for Windows

Antivirus Scanning Engine version number: 4.3.1
Virus signature file from: 2007-3-28, 3:01

Scan name: [Custom Scan]
Path to scan: C:\Documents and Settings\Administrator\桌面\pe.rar|C:\Documents and Settings\Administrator\桌面\svchost.rar

Normal scan
Also scan: Inside subfolders, Compressed files, Streams

Scan started: 2007-3-28, 8:09:31
---------------------------------------------------------------------

[Found security risk]         <W32/Agent.BVB (exact, not disinfectable)>        C:\Documents and Settings\Administrator\桌面\pe.rar->pe.exe
[Contains infected objects]        C:\Documents and Settings\Administrator\桌面\pe.rar
[Quarantined]        C:\Documents and Settings\Administrator\桌面\pe.rar->pe.exe
[Found possible virus]         <W32/PWStealer.gen1 (not disinfectable)>        C:\Documents and Settings\Administrator\桌面\svchost.rar->svchost.exe
[Contains infected objects]        C:\Documents and Settings\Administrator\桌面\svchost.rar
[Quarantined]        C:\Documents and Settings\Administrator\桌面\svchost.rar->svchost.exe

---------------------------------------------------------------------
Scan ended:        2007-3-28, 8:09:33
Duration:        0:00:02

Scan result:

Scanned files:                 2
Infected objects:         2
Disinfected objects:         0
Quarantined files:         2
---------------------------------------------------------------------
solcroft
发表于 2007-3-28 09:12:13 | 显示全部楼层

Cyberhawk

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
Kakura
发表于 2007-3-28 09:25:12 | 显示全部楼层
Result: 2 malware found
Backdoor.Win32.Agent.ahj (virus)
  • F:\pe.rar\pe.exe
Worm.Win32.Viking.jv (virus)
  • F:\svchost.rar\svchost.exe
姜二少爷
发表于 2007-3-28 10:21:10 | 显示全部楼层
过驱逐舰,不过F-S7.0
jlennon
头像被屏蔽
发表于 2007-3-28 11:10:40 | 显示全部楼层
扫描报告
2007年3月28日 11:10:00 - 11:10:01
计算机名称: 0553A719C5644CE
扫描类型: 扫描目标
目标: C:\Documents and Settings\Administrator\桌面\pe.rar C:\Documents and Settings\Administrator\桌面\svchost.rar


--------------------------------------------------------------------------------

结果: 发现 2 恶意软件
Backdoor.Win32.Agent.ahj (病毒)
C:\Documents and Settings\Administrator\桌面\pe.rar\pe.exe
Worm.Win32.Viking.jv (病毒)
C:\Documents and Settings\Administrator\桌面\svchost.rar\svchost.exe




--------------------------------------------------------------------------------

统计信息
已扫描:
文件: 4
尚未扫描: 0
结果:
病毒: 2
间谍软件: 0
可疑项目: 0
危险软件: 0
操作:
已杀毒: 0
已重命名: 0
已删除邮件: 0
已隔离: 0
失败: 0
启动扇区:
已扫描: 0
已感染: 0
可疑项目: 0
已杀毒: 0


--------------------------------------------------------------------------------

选项
定义版本:
病毒: 2007-03-28_01
间谍软件: 2007-03-28_01
扫描引擎:
F-Secure AVP: 7.00.171, 2007-03-27
F-Secure Libra: 2.04.01, 2007-03-24
F-Secure Orion: 1.02.37, 2007-03-27
F-Secure Draco: 1.00.35, 2007-03-26
扫描选项:
扫描所有文件
扫描内部存档
操作:
病毒: 扫描后询问
间谍软件: 扫描后询问

--------------------------------------------------------------------------------

版权 &copy; 1998-2007 产品支持 | 发送病毒样本到 F-Secure
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛|卡饭乐购| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 苏ICP备07004770号 ) GMT+8, 2019-9-22 20:42 , Processed in 0.043986 second(s), 7 queries , MemCache On.

快速回复 返回顶部 返回列表