此鸽子好象过红伞[f5beb4]

显示全部楼层 · 发表于 2007-6-5 20:21:59

已上报卡巴

显示全部楼层 · 发表于 2007-6-5 20:26:24

显示全部楼层 · 发表于 2007-6-5 20:27:56

?          Copyright (c) 1993-2007 by VBA Ltd.          ?
酝屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯屯?
License expired
License #000000119 Valid till 2006-12-31
Demo mode
Command line options:
/r=susp.rpt /ha=3 /collect_suspects /nc /af+ /ar+ /bt- /mr- /ml+ /rw+ /as-
Ctrl-C will terminate program execution

*:
C:\
C:\ABC\1.rar:<RAR>\1.exe : infected MalwareScope.Backdoor.Hupigon.1
Program execution terminated by user

Directories    : 3    Files in archives:    Files on disks:
Archives:                - total    : 1    - total    : 11
- scanned       : 1    -  scanned : 1    - scanned    : 11
- contain viruses : 1    -  infected : 1    - infected : 1
- deleted       : 0    -  suspicious : 0    - suspicious  : 0

Startup : 20:28:53 05-06-2007
End       : 20:29:00 05-06-2007
Total time : 00:00:07
终止批处理操作吗(Y/N)?

显示全部楼层 · 发表于 2007-6-5 20:32:54

Scan performed at: 2007-6-5 20:33:30
Scanning Log
NOD32 version 2309 (20070605) NT
Command line: C:\Documents and Settings\wangcheng\桌面\1.rar
C:\Program Files\Eset\nod32.exe - is OK
Operating memory - is OK
MBR sector of the 1. physical disk - is OK
Active boot sector of the 1. physical disk - is OK - Error reading disk sectorError reading disk sectorError reading disk sector

Date: 5.6.2007 Time: 20:33:40
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\wangcheng\桌面\1.rar
C:\Documents and Settings\wangcheng\桌面\1.rar ?RAR ?1.exe - a variant of Win32/Hupigon trojan
Number of scanned files: 2
Number of threats found: 1
Number of active threats: 1
Time of completion: 20:33:48 Total scanning time: 8 sec (00:00:08)

显示全部楼层 · 发表于 2007-6-5 20:35:44

显示全部楼层 · 发表于 2007-6-5 20:39:25

呵呵，没过小红伞
Start of the scan: 2007年6月5日  20:40

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\1.rar'
C:\Documents and Settings\Administrator\桌面\1.rar
  [0] Archive type: RAR
  --> 1.exe
   [DETECTION] Contains suspicious code HEUR/Crypted
   [INFO]    A backup was created as '46d759f7.qua'  ( QUARANTINE )
   [INFO]    The file was deleted!

显示全部楼层 · 发表于 2007-6-5 20:41:16

又是报壳....真是壳王啊

显示全部楼层 · 发表于 2007-6-5 20:42:49

原帖由 tracydk 于 2007-6-5 20:41 发表
又是报壳....真是壳王啊

穿山甲就认不出

显示全部楼层 · 发表于 2007-6-5 22:11:46

原帖由 promised 于 2007-6-5 20:42 发表

穿山甲就认不出

所以说红伞聪明费儿更聪明 ..不但报壳可选而且能力不在伞王下

你这个加了什么 NOD32能拖应该不猛??

显示全部楼层 · 发表于 2007-6-5 23:06:28

蜘蛛挂了。。
上报。。。

[病毒样本] 此鸽子好象过红伞[f5beb4]

本帖子中包含更多资源

评分

AVK

本帖子中包含更多资源

本帖子中包含更多资源

回复 #6 test163660 的帖子