1   1  /  1  页   跳转

一个假的 explorer.exe

一个假的 explorer.exe

解压密码:virus


 附件: 您所在的用户组无法下载或查看附件

文件 explorer.exe 接收于 2008.06.14 11:01:29 (CET)
反病毒引擎版本最后更新扫描结果
AhnLab-V32008.6.13.12008.06.13-
AntiVir7.8.0.552008.06.14TR/Dldr.Agent.Mts.1
Authentium5.1.0.42008.06.14W32/Heuristic-210!Eldorado
Avast4.8.1195.02008.06.14-
AVG7.5.0.5162008.06.13Downloader.Agent.AHGG
BitDefender7.22008.06.14Trojan.Crypt.DJ
CAT-QuickHeal9.502008.06.13TrojanDownloader.Agent.rjq
ClamAV0.92.12008.06.14PUA.Packed.UPack-2
DrWeb4.44.0.091702008.06.14DLOADER.Trojan
eSafe7.0.15.02008.06.12Win32.Agent.rjq
eTrust-Vet31.6.58732008.06.14-
Ewido4.02008.06.14-
F-Prot4.4.4.562008.06.12W32/Heuristic-210!Eldorado
F-Secure6.70.13260.02008.06.13W32/Suspicious_U.gen
Fortinet3.14.0.02008.06.14W32/Agent.RJQ!tr.dldr
GData2.0.7306.10232008.06.14Trojan-Downloader.Win32.Agent.rjq
IkarusT3.1.1.26.02008.06.14Trojan-Downloader.Win32.Agent.rjq
Kaspersky7.0.0.1252008.06.14Trojan-Downloader.Win32.Agent.rjq
McAfee53172008.06.13New Malware.aj
Microsoft1.36042008.06.14-
NOD32v231862008.06.13probably a variant of Win32/Genetik
Norman5.80.022008.06.13W32/Suspicious_U.gen
Panda9.0.0.42008.06.13Suspicious file
Prevx1V22008.06.14-
Rising20.48.50.002008.06.14-
Sophos4.30.02008.06.14Mal/Heuri-E
Sunbelt3.0.1145.12008.06.05VIPRE.Suspicious
Symantec102008.06.14-
TheHacker6.2.92.3492008.06.13Trojan/Downloader.Agent.rjq
VBA323.12.6.72008.06.14Trojan-Downloader.Win32.Agent.rjq
VirusBuster4.3.26:92008.06.12Packed/Upack
Webwasher-Gateway6.6.22008.06.14Trojan.Dldr.Agent.Mts.1

附加信息
File size: 977920 bytes
MD5...: 939c19ccc1f5290cef910c1f2ca44c6e
SHA1..: d8f304991111f81b34d129be02b303d0e3c17499
SHA256: 1174bbb4f898927de91267da3f5368c6c274fa955abf0f8c28e6e5d34996da3d
SHA512: 580fe1dcf3737d7633ff7e1187736d59b965b7fc0729adcc4ef7e88874ad6b47<BR>2c76aaa4be639eac37aa0cb38e0fa6418943eaa5df9033fc1f14f639a6f9ccca
PEiD..: -
PEInfo: PE Structure information<BR><BR>( base data )<BR>entrypointaddress.: 0x401018<BR>timedatestamp.....: 0x4011b0be (Fri Jan 23 23:39:42 2004)<BR>machinetype.......: 0x14c (I386)<BR><BR>( 3 sections )<BR>name viradd virsiz rawdsiz ntrpy md5<BR>PS 0x1000 0x6000 0x1f0 5.07 95006123443017c8c217606f00480d5c<BR>@@ 0x7000 0x9000 0x14f0 7.96 8da67a3d529e788b35eb64c7c12b730e<BR>d@@ 0x10000 0x1000 0x1f0 5.07 95006123443017c8c217606f00480d5c<BR><BR>( 0 imports ) <BR><BR>( 0 exports ) <BR>
packers (Kaspersky): PE_Patch, UPack
packers (F-Prot): UPack
packers (Authentium): UPack


用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)
http://blog.csdn.net/purpleendurer

宠辱不惊,笑看堂前花开花落; 去留无意,漫随天外云卷云舒。
分享到:
gototop
 

回复:一个假的 explorer.exe

瑞星还没收呀?
http://blog.csdn.net/purpleendurer

宠辱不惊,笑看堂前花开花落; 去留无意,漫随天外云卷云舒。
gototop
 
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT