NOD32 Found probably a variant of Win32/Genetik

显示全部楼层 · 发表于 2007-4-30 19:30:48

这只修改注册表异常勤快，我点得手都酸了。。。。。。

File:  flash.rar
Status:  INFECTED/MALWARE
MD5  41ab2f70318b76e0ebfb279d6c175c0a
Packers detected:  -

Scanner results
Scan taken on 30 Apr 2007 11:16:36 (GMT)
A-Squared  Found nothing
AntiVir  Found HEUR/Crypted
ArcaVir  Found nothing
Avast  Found Win32:Maran
AVG Antivirus  Found nothing
BitDefender  Found GenPack:Generic.PWS.Maran.D2A0FE75
ClamAV  Found Trojan.Spy-4085
Dr.Web  Found Trojan.PWS.Maran
F-Prot Antivirus  Found nothing
F-Secure Anti-Virus  Found nothing
Fortinet  Found nothing
Kaspersky Anti-Virus  Found nothing
NOD32  Found probably a variant of Win32/Genetik (probable variant)
Norman Virus Control  Found nothing
Panda Antivirus  Found nothing
Rising Antivirus  Found nothing
VirusBuster  Found nothing
VBA32  Found Trojan.PWS.Maran

显示全部楼层 · 发表于 2007-4-30 19:33:50

SSM的AD虽然是麻烦了点，事后还要自己去打扫战场
但也真是够强的

显示全部楼层 · 发表于 2007-4-30 19:34:22

卡7没反应[:27:]
上报去

显示全部楼层 · 发表于 2007-4-30 19:36:01

tarting the file scan:

Begin scan in 'F:\样本\flash.rar'
F:\样本\flash.rar
  [0] Archive type: RAR
  --> flash.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [INFO]    The file was deleted!

显示全部楼层 · 发表于 2007-4-30 20:54:45

显示全部楼层 · 发表于 2007-4-30 20:57:55

显示全部楼层 · 发表于 2007-4-30 21:07:19

没想到这么快就修正了。。。
AhnLab-V3 2007.4.30.1 04.30.2007  no virus found
AntiVir 7.4.0.15 04.30.2007 TR/Drop.Maran.C.3
Authentium 4.93.8 04.27.2007 could be a corrupted executable file
Avast 4.7.981.0 04.30.2007 Win32:Lineage-406
AVG 7.5.0.467 04.30.2007  no virus found
BitDefender 7.2 04.30.2007 GenPack:Generic.PWS.Maran.D2A0FE75
CAT-QuickHeal 9.00 04.30.2007  no virus found
ClamAV devel-20070416 04.30.2007 Trojan.Spy-4085
DrWeb 4.33 04.30.2007 Trojan.PWS.Maran
eSafe 7.0.15.0 04.29.2007  no virus found
eTrust-Vet 30.7.3606 04.30.2007  no virus found
Ewido 4.0 04.30.2007  no virus found
FileAdvisor 1 04.30.2007  no virus found
Fortinet 2.85.0.0 04.30.2007 suspicious
F-Prot 4.3.2.48 04.27.2007  no virus found
F-Secure 6.70.13030.0 04.30.2007  no virus found
Ikarus T3.1.1.5 04.30.2007 Generic.PWS.Maran
Kaspersky 4.0.2.24 04.30.2007  no virus found
McAfee 5019 04.27.2007 New Malware.bl
Microsoft 1.2405 04.30.2007 TrojanSpy:Win32/Maran.gen!A
NOD32v2 2231 04.30.2007 probably a variant of Win32/Genetik

显示全部楼层 · 发表于 2007-4-30 21:07:33

NIS 2007能发现，但不能删除RAR中的文件~也不能直接删除压缩包

显示全部楼层 · 发表于 2007-4-30 21:11:34

显示全部楼层 · 发表于 2007-4-30 21:15:46

……CA又挂了……

[病毒样本] NOD32 Found probably a variant of Win32/Genetik

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源

本帖子中包含更多资源