昨天搜集的……

显示全部楼层 · 发表于 2007-4-30 09:35:23

昨天维护一台电脑的时候发现居然中了1970病毒（更改时间的那种），提取出来几个文件（反正之后系统就正常了）……
大蜘蛛查杀的结果

后面的Win32.Besso在网上查了一下没有查到什么有用信息。
还请各位朋友帮帮忙，看看这到底是什么
密码是virus

显示全部楼层 · 发表于 2007-4-30 09:37:31

附件文件不存在或无法读入，请与管理员联系

显示全部楼层 · 发表于 2007-4-30 09:38:48

我可以正常下载啊……

显示全部楼层 · 发表于 2007-4-30 09:55:06

附件文件不存在或无法读入，请与管理员联系。

显示全部楼层 · 发表于 2007-4-30 09:55:16

lz以后请用bbs.kafan.cn访问论坛，谢谢

Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\未知20070429.rar'
C:\Documents and Settings\morgan\My Documents\
  未知20070429.rar
[0] Archive type: RAR
--> Î´Öª20070429\295F53DB.DLL
      [DETECTION] Is the Trojan horse TR/Dldr.Small.ele.2
      [WARNING] Infected files in archives cannot be repaired!
--> Î´Öª20070429\295F53DB.EXE
      [DETECTION] Is the Trojan horse TR/Dldr.Small.ejw.9
      [WARNING] Infected files in archives cannot be repaired!
--> Î´Öª20070429\DDDF0A12.exe
      [DETECTION] Contains a signature of the (dangerous) backdoor program BDS/Agent.ahj.296 Backdoor server programs
      [WARNING] Infected files in archives cannot be repaired!
      [WARNING] The file was ignored!

End of the scan: 2007年4月29日  18:53
Used time: 00:10 min

The scan has been done completely.

   0 Scanning directories
   4 Files were scanned
   3 viruses and/or unwanted programs were found
   0 classified as suspicious:
   0 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   1 Files not concerned
   1 Archives were scanned
   4 Warnings
   0 Notes
   0 Hidden objects were found

File: 未知20070429.rar
Status: INFECTED/MALWARE
MD5 43c2beac20dde7acbdf8512859b08e4b
Packers detected: -

Scanner results
Scan taken on 30 Apr 2007 01:53:27 (GMT)
A-Squared Found nothing
AntiVir Found TR/Dldr.Small.ele.2, TR/Dldr.Small.ejw.9, BDS/Agent.ahj.296
ArcaVir Found Trojan.Agent.Ahj
Avast Found Win32:Small-EXB
AVG Antivirus Found Downloader.Generic4.GMG
BitDefender Found MemScan:Trojan.Downloader.Agent.BEC, GenPack:Trojan.Downloader.Agent.BEC
ClamAV Found Trojan.Agent-3017
Dr.Web Found Trojan.Popwin, Win32.Besso
F-Prot Antivirus Found Possibly a new variant of W32/PWStealer1!Generic
F-Secure Anti-Virus Found Trojan-Downloader.Win32.Small.ele, Backdoor.Win32.Agent.ahj
Fortinet Found W32/Small.ELE!tr.dldr
Kaspersky Anti-Virus Found Trojan-Downloader.Win32.Small.ele, Backdoor.Win32.Agent.ahj
NOD32 Found probably a variant of Win32/Agent.NEO, a variant of Win32/Agent.NEO (probable variant)
Norman Virus Control Found nothing
Panda Antivirus Found Trj/Harnig.EI, Trj/Agent.FBI
Rising Antivirus Found nothing
VirusBuster Found nothing
VBA32 Found Trojan.Popwin, Backdoor.Win32.Agent.ahj

显示全部楼层 · 发表于 2007-4-30 10:02:17

http://securityresponse.symantec ... 0646-99&tabid=3

显示全部楼层 · 发表于 2007-4-30 10:04:34

怎么还有这么多人不知道新网址

显示全部楼层 · 发表于 2007-4-30 10:04:50

symantec漏一个。。

显示全部楼层 · 发表于 2007-4-30 11:05:17

D:\2 area\xjlFont-kittydown.com\295F53DB.DLL - infected with Trojan.Popwin
D:\2 area\xjlFont-kittydown.com\295F53DB.EXE - infected with Trojan.Popwin
D:\2 area\xjlFont-kittydown.com\DDDF0A12.exe - infected with Trojan

总算明白蜘蛛的杀毒怎么用了

显示全部楼层 · 发表于 2007-4-30 11:08:08

原帖由 wangjay1980 于 2007-4-30 10:04 发表
怎么还有这么多人不知道新网址

直接在旧域名上面加跳转吧

昨天搜集的……

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源