卡卡巡查
- 帖子:45933
- 注册:
2007-11-17
- 来自:蜀山仙剑派
|
发表于:
2008-11-15 15:08
|
只看楼主
短消息
资料
瑞星不报1个
AhnLab-V3 | 2008.11.14.3 | 2008.11.14 | Win-Trojan/Downloader.17920.IM | AntiVir | 7.9.0.31 | 2008.11.14 | BDS/Backdoor.Gen | Authentium | 5.1.0.4 | 2008.11.14 | - | Avast | 4.8.1281.0 | 2008.11.14 | Win32:Trojan-gen {Other} | AVG | 8.0.0.199 | 2008.11.14 | - | BitDefender | 7.2 | 2008.11.14 | Trojan.Agent.ALCG | CAT-QuickHeal | 10.00 | 2008.11.13 | - | ClamAV | 0.94.1 | 2008.11.14 | - | DrWeb | 4.44.0.09170 | 2008.11.14 | Trojan.DownLoad.12623 | eSafe | 7.0.17.0 | 2008.11.13 | - | eTrust-Vet | 31.6.6208 | 2008.11.13 | - | Ewido | 4.0 | 2008.11.13 | - | F-Prot | 4.4.4.56 | 2008.11.13 | - | F-Secure | 8.0.14332.0 | 2008.11.14 | - | Fortinet | 3.117.0.0 | 2008.11.14 | - | GData | 19 | 2008.11.14 | Trojan.Agent.ALCG | Ikarus | T3.1.1.45.0 | 2008.11.14 | Virus.Win32.Trojan | K7AntiVirus | 7.10.524 | 2008.11.13 | - | Kaspersky | 7.0.0.125 | 2008.11.14 | - | McAfee | 5433 | 2008.11.13 | - | Microsoft | 1.4104 | 2008.11.14 | - | NOD32 | 3613 | 2008.11.14 | Win32/Agent.OKM | Norman | 5.80.02 | 2008.11.14 | - | Panda | 9.0.0.4 | 2008.11.14 | Suspicious file | PCTools | 4.4.2.0 | 2008.11.13 | - | Prevx1 | V2 | 2008.11.14 | Worm | Rising | 21.03.42.00 | 2008.11.14 | - | SecureWeb-Gateway | 6.7.6 | 2008.11.14 | Trojan.Backdoor.Backdoor.Gen | Sophos | 4.35.0 | 2008.11.14 | - | Sunbelt | 3.1.1801.2 | 2008.11.14 | - | Symantec | 10 | 2008.11.14 | - | TheHacker | 6.3.1.1.152 | 2008.11.13 | - | TrendMicro | 8.700.0.1004 | 2008.11.14 | - | VBA32 | 3.12.8.9 | 2008.11.13 | - | ViRobot | 2008.11.14.1468 | 2008.11.14 | - | VirusBuster | 4.5.11.0 | 2008.11.13 | - |
附加信息 | File size: 17920 bytes | MD5...: 13faa74106deb3655e5918f898951bdb | SHA1..: 1c61f2542428b7c9dc5a0fef63605e57a93305de | SHA256: 99fbadb11267a7e25d1f6add4b5f9ab00a331e815fd87e45bfb5e3af157f7ecf | SHA512: c5b5c4137d2bf84328bfea7a8d9acbd417a92dd2ae8221def5b071768e79333d e773c920628d26a0ad227a7f3ac47fc50430c09f1537eb5c39cac77d4725b5cf | PEiD..: Armadillo v1.xx - v2.xx | TrID..: File type identification Win32 Executable Generic (42.3%) Win32 Dynamic Link Library (generic) (37.6%) Generic Win/DOS Executable (9.9%) DOS Executable Generic (9.9%) Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%) | PEInfo: PE Structure information
( base data ) entrypointaddress.: 0x6470437a timedatestamp.....: 0x490f2a28 (Mon Nov 03 16:43:20 2008) machinetype.......: 0x14c (I386)
( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x3420 0x3600 7.48 93d55b2fc7637c942589d45a048faf84 .rdata 0x5000 0x6a0 0x800 4.30 87354e7b70c46c7f473a1a7b74717b32 .data 0x6000 0x2d0 0x200 4.30 9296cac617cd411d04c63a518f1847eb .reloc 0x7000 0x21e 0x200 5.50 2db694e3494476a036af18c08beae8b4
( 5 imports ) >KERNEL32.dll: ConnectNamedPipe, CreateNamedPipeA, GetCurrentProcess,GetStartupInfoA, GetSystemDirectoryA, Process32Next, OpenProcess,Process32First, CreateToolhelp32Snapshot, Sleep, CreateThread,DisconnectNamedPipe, SetEvent, TerminateThread, WaitForSingleObject,CreateEventA, FreeConsole, DisableThreadLibraryCalls,GetModuleFileNameA, GetProcAddress, LoadLibraryA, FreeLibrary,ReadFile, GetTempPathA, CreateFileA, WriteFile, CloseHandle,CreateMutexA, DeleteFileA > ADVAPI32.dll: SetServiceStatus,CreateProcessAsUserA, OpenProcessToken, LookupPrivilegeValueA,AdjustTokenPrivileges, RegisterServiceCtrlHandlerA > urlmon.dll: URLDownloadToFileA > WININET.dll: InternetOpenA, InternetConnectA, HttpOpenRequestA, HttpSendRequestA, HttpQueryInfoA, InternetReadFile > MSVCRT.dll: wcstombs, _adjust_fdiv, malloc, _initterm, free, strrchr, sprintf, strncmp, _stricmp, strncpy
( 4 exports ) ServiceMain, SvchostPushServiceGlobals, TestCheckStatus, TestRunning | 用户系统信息:Mozilla/5.0 (Windows; U; Windows NT 5.1; zh-CN; rv:1.9.0.4) Gecko/2008102920 Firefox/3.0.4
附件:
您所在的用户组无法下载或查看附件
|