好心帮nod补充下病毒库

显示全部楼层 · 发表于 2007-4-7 08:08:24

下午帮人修好电脑，无聊，上网抓了8个下来，nod挂了4个。。

显示全部楼层 · 发表于 2007-4-7 08:28:14

红伞杀3个....

Starting the file scan:

Begin scan in 'C:\Documents and Settings\FEAR\My Documents\My Documents[1].part1.rar'
C:\Documents and Settings\FEAR\My Documents\My Documents[1].part1.rar
  [0] Archive type: RAR
  --> 4.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/GrayBird.KJ.8 Backdoor server programs
  --> 1.exe
   [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
  --> 2.exe
   [DETECTION] Is the Trojan horse TR/Spy.Agent.SK
   [INFO]    The file was moved to '4636e5dc.qua'!

显示全部楼层 · 发表于 2007-4-7 08:40:48

已上报
不过这种nod脱壳很久的东西
有可能运行会报的

显示全部楼层 · 发表于 2007-4-7 08:48:49

BD10
My Documents[1].part1.rar=>1.exe Infected: GenPack:Generic.Graybird.4430112D
My Documents[1].part1.rar=>2.exe Infected: Trojan.Spy.Agent.SK

显示全部楼层 · 发表于 2007-4-7 12:44:57

McAfee 已自動封鎖並移除特洛伊病毒。

詳細資料
偵測: BackDoor-ALC (特洛伊病毒), BackDoor-ALC (特洛伊病毒)
檔案路徑: C:\Documents and Settings\all.HOME-\桌面\1.exe

3.exe-New Malware.aq(特洛伊病毒)

显示全部楼层 · 发表于 2007-4-7 12:50:22

原帖由 风野胤 于 2007-4-7 10:10 发表
已上报
不过这种nod脱壳很久的东西
有可能运行会报的

静态扫描不报，运行时也自然不报，NOD32监控的脱壳能力又没有比静态扫描的强

显示全部楼层 · 发表于 2007-4-7 12:54:04

AVK通杀

显示全部楼层 · 发表于 2007-4-7 12:58:45

看看卡巴吧!

显示全部楼层 · 发表于 2007-4-7 14:11:45

PCC2007殺一隻

显示全部楼层 · 发表于 2007-4-7 14:22:58

不要只是扫描一个分卷, 要合成一个压缩包来扫...

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\My Documents.rar'
C:\Documents and Settings\Administrator\桌面\
  My Documents.rar
[0] Archive type: RAR
--> My Documents\1.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Hupigon.Gen Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
--> My Documents\2.exe
      [DETECTION] Is the Trojan horse TR/Spy.Agent.SK
      [WARNING] Infected files in archives cannot be repaired!
--> My Documents\3.exe
      [DETECTION] Is the Trojan horse TR/Delphi.Downloader.Gen
      [WARNING] Infected files in archives cannot be repaired!
--> My Documents\4.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/GrayBird.KJ.8 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
      [INFO]    The file was deleted!

[病毒样本] 好心帮nod补充下病毒库

本帖子中包含更多资源

本帖子中包含更多资源

回复 #2 KAV-Longhorn 的帖子