黃易群俠傳M脫機外掛應用程式黃易神行
1219
1

[發問] 有誰能幫我看病毒

0936508920 發表於 2009-3-21 19:36:09 | 只看該作者 回帖獎勵 |倒序瀏覽 |
反病毒引擎 版本 最後更新 掃瞄結果
a-squared 4.0.0.101 2009.03.21 Trojan-Downloader.Win32.Bagle.jc!IK
AhnLab-V3 5.0.0.2 2009.03.21 -
AntiVir 7.9.0.120 2009.03.20 TR/PCK.Black.A.2512
Authentium 5.1.2.4 2009.03.21 W32/Heuristic-THX!Eldorado
Avast 4.8.1335.0 2009.03.20 -
AVG 8.5.0.283 2009.03.20 Win32/Themida
BitDefender 7.2 2009.03.21 Trojan.Generic.959058
CAT-QuickHeal 10.00 2009.03.21 -
ClamAV 0.94.1 2009.03.21 -
Comodo 1078 2009.03.21 -
DrWeb 4.44.0.09170 2009.03.21 Trojan.Packed.650
eSafe 7.0.17.0 2009.03.19 -
eTrust-Vet 31.6.6409 2009.03.20 -
F-Prot 4.4.4.56 2009.03.20 W32/Heuristic-THX!Eldorado
F-Secure 8.0.14470.0 2009.03.21 Packed.Win32.Black.a
Fortinet 3.117.0.0 2009.03.21 -
GData 19 2009.03.21 Trojan.Generic.959058
Ikarus T3.1.1.48.0 2009.03.21 Trojan-Downloader.Win32.Bagle.jc
K7AntiVirus 7.10.677 2009.03.20 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.03.21 Packed.Win32.Black.a
McAfee 5559 2009.03.20 Generic.dx
McAfee+Artemis 5559 2009.03.20 Generic.dx
McAfee-GW-Edition 6.7.6 2009.03.20 Trojan.PCK.Black.A.2512
Microsoft 1.4502 2009.03.21 -
NOD32 3953 2009.03.21 probably a variant of Win32/Obfuscated
Norman 6.00.06 2009.03.20 -
nProtect 2009.1.8.0 2009.03.21 -
Panda 10.0.0.10 2009.03.20 Suspicious file
PCTools 4.4.2.0 2009.03.20 -
Prevx1 V2 2009.03.21 Medium Risk Malware
Rising 21.21.52.00 2009.03.21 -
Sophos 4.39.0 2009.03.21 Mal/Behav-285
Sunbelt 3.2.1858.2 2009.03.20 -
Symantec 1.4.4.12 2009.03.21 -
TheHacker 6.3.3.1.287 2009.03.21 -
TrendMicro 8.700.0.1004 2009.03.20 -
VBA32 3.12.10.1 2009.03.20 Trojan.MulDrop.15025
ViRoBOT 2009.3.20.1658 2009.03.20 -
VirusBuster 4.6.5.0 2009.03.20 -
附加訊息
File size: 1935241 bytes
MD5...: 4801c6d598368fd4342ddaeacdf3c026
SHA1..: f9037ec8f7f3232f51ea947ceab8157d62a76408
SHA256: 1d1c74c21730250552aaddd2eb3c6d856ed5d74d82fd782396ec873ce146bd69
SHA512: cd1bf31e66d57228b91a0ec394ec9484cfd76d91b5555e7532fc371803a7c05b
92103694af00cbb17ab6887057f889a1404de211c42e2b9637aeadbd5a14181f
ssdeep: 49152:qCvSnRvL4A/IdEkdc+TqbhOIzHhn9DoZNybxc5u:xmL+T+OUHTDoKbxqu

PEiD..: -
TrID..: File type identification
WinRAR Self Extracting archive (96.2%)
Win32 Executable Generic (1.5%)
Win32 Dynamic Link Library (generic) (1.4%)
Generic Win/DOS Executable (0.3%)
DOS Executable Generic (0.3%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x465278a2 (Tue May 22 04:59:14 2007)
machinetype.......: 0x14c (I386)

( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x14000 0x13600 6.44 c5df2bcf4cb444a9ce3abf40dc2ae79f
.data 0x15000 0x7000 0xa00 4.92 fe3e541d125dbe299f892385c2f9e9c8
.idata 0x1c000 0x1000 0x1000 5.12 37eade5359d82bcd800d9cf089c501ff
.rsrc 0x1d000 0x5874 0x5a00 4.99 ae4986aae3b4771bb6c12c5d96fa9bef

( 8 imports )
> ADVAPI32.DLL: AdjustTokenPrivileges, LookupPrivilegeValueA, OpenProcessToken, RegCloseKey, RegCreateKeyExA, RegOpenKeyExA, RegQueryValueExA, RegSetValueExA, SetFileSecurityA, SetFileSecurityW
> KERNEL32.DLL: CloseHandle, CompareStringA, CreateDirectoryA, CreateDirectoryW, CreateFileA, CreateFileW, DeleteFileA, DeleteFileW, DosDateTimeToFileTime, ExitProcess, ExpandEnvironmentStringsA, FileTimeToLocalFileTime, FileTimeToSystemTime, FindClose, FindFirstFileA, FindFirstFileW, FindNextFileA, FindNextFileW, FindResourceA, FreeLibrary, GetCPInfo, GetCommandLineA, GetCurrentDirectoryA, GetCurrentProcess, GetDateFormatA, GetFileAttributesA, GetFileAttributesW, GetFileType, GetFullPathNameA, GetLastError, GetLocaleInfoA, GetModuleFileNameA, GetModuleHandleA, GetNumberFormatA, GetProcAddress, GetProcessHeap, GetStdHandle, GetTempPathA, GetTickCount, GetTimeFormatA, GetVersionExA, GlobalAlloc, HeapAlloc, HeapFree, HeapReAllo●CSOL木馬網站●Byte, LoadLibraryA, LocalFileTimeToFileTime, MoveFileA, MoveFileExA, MultiByteToWideChar, ReadFile, SetCurrentDirectoryA, SetEndOfFile, SetEnvironmentVariableA, SetFileAttributesA, SetFileAttributesW, SetFilePointer, SetFileTime, SetLastError, Sleep, SystemTimeToFileTime, WaitForSingleObject, WideCharToMultiByte, WriteFile, lstrcmpiA, lstrlenA
> COMCTL32.DLL: -
> COMDLG32.DLL: CommDlgExtendedError, GetOpenFileNameA, GetSaveFileNameA
> GDI32.DLL: DeleteObject
> SHELL32.DLL: SHBrowseForFolderA, SHChangeNotify, SHFileOperationA, SHGetFileInfoA, SHGetMalloc, SHGetSpecialFolderLocation, ShellExecuteExA, SHGetPathFromIDListA
> USER32.DLL: CharToOemA, CharToOemBuffA, CharUpperA, CopyRect, CreateWindowExA, DefWindowPro●CSOL木馬網站●estroyWindow, DialogBoxParamA, DispatchMessageA, EnableWindow, EndDialog, FindWindowExA, GetClassNameA, GetClientRect, GetDlgItem, GetDlgItemTextA, GetMessageA, GetParent, GetSysColor, GetSystemMetrics, GetWindow, GetWindowLongA, GetWindowRect, GetWindowTextA, IsWindow, IsWindowVisible, LoadBitmapA, LoadCursorA, LoadIconA, LoadStringA, MapWindowPoints, MessageBoxA, OemToCharA, OemToCharBuffA, PeekMessageA, PostMessageA, RegisterClassExA, SendDlgItemMessageA, SendMessageA, SetDlgItemTextA, SetFocus, SetMenu, SetWindowLongA, SetWindowPos, SetWindowTextA, ShowWindow, TranslateMessage, UpdateWindow, WaitForInputIdle, wsprintfA, wvsprintfA
> OLE32.DLL: CLSIDFromString, CoCreateInstance, CreateStreamOnHGlobal, OleInitialize, OleUninitialize

( 0 exports )

packers (Authentium): RAR, Themida
packers (F-Prot): RAR, Themida, UTF-8
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=6E0EC58D00ADF2D5121005D7E5AD96003E703A09' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=6E0EC58D00ADF2D5121005D7E5AD96003E703A09</a>
收藏收藏 分享分享 讚 幹 分享分享 FB分享
回覆

使用道具 舉報


bosslino1 當前離線
UID
18501
熱心
182 值
嘉獎
0 次
違規
0 次
在線時間
239 小時
經驗
136 點
積分
1167
精華
0
最後登錄
2018-8-1
閱讀權限
30
註冊時間
2006-8-7
論壇幣
576 幣
聯合幣
19 枚
幸運鑽
0 顆
招待卷
0 點
查看詳細資料
Rank: 4Rank: 4
bosslino1 2009-3-22 04:42:29
這為大大說的是那個程式 锕??
回覆

使用道具 舉報

您需要登錄後才可以回帖 登錄 | 註冊


手機版 | Archiver | 外掛聯合國

GMT+8, 2024-12-18 14:56 , Processed in 0.055745 second(s), 16 queries , Memcache On.

版權說明:
  本站不會製作、經銷、代理外掛程式。僅免費提供外掛程式下載前之掃毒及掃木馬等安全檢測驗證,協助會員遠離盜號危險程式。本站所有資料均來自網際網路收集整理,說明文字暨下載連結轉載自原程 式開發站。站上出現之公司名稱、遊戲名稱、程式等,商標及著作權,均歸各公司及程式原創所有,本站程式所有權歸外掛聯合國所有。本程式所有權歸外掛聯合國所有.......

回頂部
第二步?
第三步?