【木馬】kavo 隨身碟病毒樣本



贊助商連結


頁 : [1] 2 3

kevinkom
2007-09-12, 05:34 AM
nod32:circle:
avast:D
江民:confused:

都防不到:rolleyes:
太毒啦:cry: :eye:

解壓縮密嗎
kavo

贊助商連結


ㄚ一
2007-09-12, 06:41 AM
BD
Infected: DeepScan:Generic.PWStealer.2.96530284

FIS
http://i126.photobucket.com/albums/p97/yanzilme/fis_dg_kavo.png

KAV
http://farm2.static.flickr.com/1433/1362057313_31087d6b52_o.png

iorittn
2007-09-12, 08:22 AM
為啥我解開後什麼都沒有@@?

baba_yu
2007-09-12, 08:43 AM
FS 的 DG 沒抓住行為 FD 寫檔進系統就報 FS 還需要多加油了


Object: kavo.exe
Path: C:\12\kavo
Status: Virus detected
Virus: DeepScan:Generic.PWStealer.2.96530284 (Engine B)



AhnLab-V3 2007.9.11.1 2007.09.11 -
AntiVir 7.6.0.5 2007.09.12 TR/Crypt.NSPM.Gen
Authentium 4.93.8 2007.09.11 -
Avast 4.7.1043.0 2007.09.11 -
AVG 7.5.0.485 2007.09.11 -
BitDefender 7.2 2007.09.12 DeepScan:Generic.PWStealer.2.96530284
CAT-QuickHeal 9.00 2007.09.11 (Suspicious) - DNAScan
ClamAV 0.91.2 2007.09.12 -
DrWeb 4.33 2007.09.11 -
eSafe 7.0.15.0 2007.09.11 suspicious Trojan/Worm
eTrust-Vet 31.1.5127 2007.09.12 Win32/NSAnti
Ewido 4.0 2007.09.11 -
FileAdvisor 1 2007.09.12 -
Fortinet 3.11.0.0 2007.09.12 -
F-Prot 4.3.2.48 2007.09.11 -
F-Secure 6.70.13030.0 2007.09.11 -
Ikarus T3.1.1.12 2007.09.12 Generic.PWStealer.2
Kaspersky 4.0.2.24 2007.09.12 -
McAfee 5117 2007.09.11 -
Microsoft 1.2803 2007.09.12 -
NOD32v2 2522 2007.09.11 -
Norman 5.80.02 2007.09.11 -
Panda 9.0.0.4 2007.09.11 Suspicious file
Prevx1 V2 2007.09.12 -
Rising 19.40.12.00 2007.09.11 -
Sophos 4.21.0 2007.09.11 -
Sunbelt 2.2.907.0 2007.09.12 -
Symantec 10 2007.09.12 -
TheHacker 6.1.10.184 2007.09.11 -
VBA32 3.12.2.4 2007.09.12 MalwareScope.Worm.Viking.3
VirusBuster 4.3.26:9 2007.09.11 -
Webwasher-Gateway 6.0.1 2007.09.12 Trojan.Crypt.NSPM.Gen

Roger
2007-09-12, 09:04 AM
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq1.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq2.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq3.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq4.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq5.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq6.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq7.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq8.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq9.png
http://i234.photobucket.com/albums/ee153/a256886572008/by/eq10.png

天氣預報
2007-09-12, 07:32 PM
為啥我解開後什麼都沒有@@?

我也是
從資料夾按內容才有看到

天氣預報
2007-09-12, 07:58 PM
怪的是vt的賽門鐵克是掃得到
可是我解壓縮是看不到的

天氣預報
2007-09-12, 09:12 PM
AhnLab-V3 2007.9.11.1 2007.09.12 -
AntiVir 7.6.0.5 2007.09.12 TR/Crypt.NSPM.Gen
Authentium 4.93.8 2007.09.12 -
Avast 4.7.1043.0 2007.09.11 -
AVG 7.5.0.485 2007.09.12 Obfustat.NYG
BitDefender 7.2 2007.09.12 DeepScan:Generic.PWStealer.2.96530284
CAT-QuickHeal 9.00 2007.09.11 (Suspicious) - DNAScan
ClamAV 0.91.2 2007.09.12 -
DrWeb 4.33 2007.09.12 -
eSafe 7.0.15.0 2007.09.11 suspicious Trojan/Worm
eTrust-Vet 31.1.5128 2007.09.12 Win32/NSAnti
Ewido 4.0 2007.09.12 -
FileAdvisor 1 2007.09.12 -
Fortinet 3.11.0.0 2007.09.12 -
F-Prot 4.3.2.48 2007.09.12 -
F-Secure 6.70.13030.0 2007.09.12 -
Ikarus T3.1.1.12 2007.09.12 Generic.PWStealer.2
Kaspersky 4.0.2.24 2007.09.12 -
McAfee 5117 2007.09.11 -
Microsoft 1.2803 2007.09.12 -
NOD32v2 2524 2007.09.12 -
Norman 5.80.02 2007.09.12 -
Panda 9.0.0.4 2007.09.11 Suspicious file
Prevx1 V2 2007.09.12 -
Rising 19.40.22.00 2007.09.12 -
Sophos 4.21.0 2007.09.12 -
Sunbelt 2.2.907.0 2007.09.12 -
Symantec 10 2007.09.12 Infostealer.Gampass
TheHacker 6.1.10.184 2007.09.11 -
VBA32 3.12.2.4 2007.09.12 MalwareScope.Worm.Viking.3
VirusBuster 4.3.26:9 2007.09.12 -
Webwasher-Gateway 6.0.1 2007.09.12 Trojan.Crypt.NSPM.Gen

majimmy
2007-09-12, 10:49 PM
我的 NOD32 有跳出警告視窗
但不能將他刪除 =.="

dxchen
2007-09-13, 04:12 PM
officescan 8.0

TSPY_LEGMIR.CCX


話說這病毒是透過什麼樣的路徑方式去感染的啊?? 像熊貓燒香那樣嗎?
:jump2: