Boot.Stonedbootkit
昨天BlackHat USA 2009大会上的一个bootkit ,感染MBR,劫持内核,攻击TrueCrypt,目前入库的不多。谨慎实机运行!
软件名称 | 引擎版本
| 病毒库版本
| 病毒库时间
| 扫描结果
| 时间
|
| a-squared | 4.5.0.3 | 20090730050112 | 2009-07-30 | -
| 0.352 |
| AntiVir | 8.2.0.236 | 7.1.5.53 | 2009-07-30 | TR/Rootkit.Gen
| 0.105 |
| Arcavir | 2009 | 200907301839 | 2009-07-30 | -
| 0.083 |
| Authentium | 5.1.1 | 200907302235 | 2009-07-30 | -
| 1.448 |
| AVAST! | 4.7.4 | 090730-0 | 2009-07-30 | Win32:MBRoot [Rtk]
| 0.026 |
| AVG | 8.5.288 | 270.13.37/2273 | 2009-07-31 | -
| 0.346 |
| BitDefender | 7.81008.3869731 | 7.26903 | 2009-07-31 | -
| 3.407 |
| CA (VET) | 9.0.0.143 | 31.6.6647 | 2009-07-30 | -
| 3.942 |
| ClamAV | 0.95.2 | 9632 | 2009-07-29 | -
| 0.070 |
| Comodo | 3.10 | 1818 | 2009-07-31 | -
| 0.741 |
| CP Secure | 1.1.0.715 | 2009.07.30 | 2009-07-30 | -
| 11.602 |
| Dr.Web | 4.44.0.9170 | 2009.07.30 | 2009-07-30 | -
| 5.131 |
| F-Prot | 4.4.4.56 | 20090730 | 2009-07-30 | -
| 1.356 |
| F-Secure | 7.02.73807 | 2009.07.29.10 | 2009-07-29 | -
| 6.142 |
| GData | 19.6780/19.419 | 20090731 | 2009-07-31 | Win32:MBRoot [Rtk] [Engine:B]
| 5.577 |
| Ikarus | T3.1.01.64 | 2009.07.31.73133 | 2009-07-31 | Possible-Threat.Bootkit.Stoned
| 3.980 |
| Microsoft | 1.4903 | 2009.07.31 | 2009-07-31 | -
| 4.981 |
| Norman | 6.01.09 | 6.01.00 | 2009-07-30 | -
| 4.007 |
| nProtect | 20090728.01 | 4951926 | 2009-07-28 | -
| 6.573 |
| Quick Heal | 10.00 | 2009.07.30 | 2009-07-30 | -
| 1.514 |
| Sophos | 2.89.1 | 4.44 | 2009-07-31 | -
| 2.751 |
| Sunbelt | 5301 | 5301 | 2009-07-30 | -
| 1.067 |
| The Hacker | 6.3.4.3 | v00374 | 2009-07-30 | -
| 1.121 |
| VBA32 | 3.12.10.9 | 20090730.1435 | 2009-07-30 | -
| 2.243 |
| ViRobot | 20090730 | 2009.07.30 | 2009-07-30 | -
| 0.602 |
| VirusBuster | 4.5.11.10 | 10.109.17/1825081 | 2009-07-30 | -
| 2.475 |
| 卡巴斯基 | 5.5.10 | 2009.07.31 | 2009-07-31 | -
| 0.085 |
| 安博士V3 | 2009.07.31.00 | 2009.07.31 | 2009-07-31 | -
| 1.175 |
| 安天 | 2.0.18 | 20090729.2652900 | 2009-07-29 | -
| 0.120 |
| 江民杀毒 | 11.0.800 | 2009.07.29 | 2009-07-29 | -
| 6.206 |
| 熊猫卫士 | 9.05.01 | 2009.07.30 | 2009-07-30 | -
| 1.939 |
| 瑞星 | 20.0 | 21.40.34.00 | 2009-07-30 | -
| 1.147 |
| 赛门铁克 | 1.3.0.24 | 20090730.007 | 2009-07-30 | Boot.Stonedbootkit
| 0.050 |
| 趋势科技 | 8.700-1004 | 6.334.01 | 2009-07-30 | -
| 0.059 |
| 迈克菲 | 5.3.00 | 5693 | 2009-07-30 | -
| 3.103 |
| 金山毒霸 | 2009.2.5.15 | 2009.7.31.7 | 2009-07-31 | Heur.Win32.Generic.m
| 0.478 |
| 飞塔 | 2.81-3.120 | 10.662 | 2009-07-30 | -
| 0.231 |
附件:
您所在的用户组无法下载或查看附件用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; CNCDialer; .NET CLR 2.0.50727; MAXTHON 2.0)
