MS AntiSpyware 有給予提示。這個檔案會放到 %windir% 下,每次開機都會執行。
gtr.exe?嗯~為何不改為 86.exe?
@@"...愣住,看不懂樓上在講啥=.=|||...原來是談車子...呵呵
我把掃描調成最敏感,在下載中時 NOD32 說是未知病毒,建議你把這個檔案處理一下吧作者:oldtu
Kaspersky 線上掃描沒發現異常
Scanned file: gtr6tq.zip
gtr6tq.zip/gtr.exe/EXE-file - OK
gtr6tq.zip/gtr.exe - OK
gtr6tq.zip/gtr.exe - OK
gtr6tq.zip - OK
常駐本版的 Kaspersky 代表要不要回報一下
剛剛順便用 McAfee 的 AVERT WebImmune 回報了。畢竟我是 McAfee 的愛好者 。
收到 McAfee 的回覆了:
A.V.E.R.T. Sample Analysis
Issue Number: 1642918
File name: gtr.exe.vir
Virus Research Analyst: L. Clark
Identified: Generic BackDoor.h
Kaspersky 也已經可以偵測到:gtr6tq.zip/gtr.exe - infected by Backdoor.Win32.BlackHole.2004.b
已經確定是不好的東西了,趕快處理掉吧。
Kaspersky 的速度真的是很快。剛剛試了 Panda 和 趨勢的還是沒辦法掃到。
經過漫長的等待賽門鐵克終於回報了
Below is a status update on your virus submission:
Date: February 10, 2005
We have analyzed your submission. The following is a report of our
findings for each file you have submitted:
filename: C:\Documents and Settings\Administrator\®à±\gtr.exe
machine:
result: This file is infected with Backdoor.Singu
Developer notes:
C:\Documents and Settings\Administrator\®à±\gtr.exe is non-repairable threat. Please delete this file and replace it if necessary. Please follow the instruction at the end of this email message to install the latest rapidrelease definitions.
書籤