2

sam.to

卡巴不报


应该不是毒

http://virscan.org/report/379bf420c578574940691f6b81221d75.html

上报到卡巴．．．

Hello.
No malicious software was found in the attached file.

Please quote all when answering. Do not forget to include you registration data.
-----------------
Regards, Vyacheslav Zakorzhevsky
Virus Analyst, Kaspersky Lab.

Ph.: +7(095) 797-8700
E-mail: newvirus@kaspersky.com
http://www.kaspersky.com   http://www.viruslist.com

[ 本帖最后由 kato9096 于 2008-1-21 12:51 编辑 ]

醉一生爱妍

NOD不杀

两个同一生成物，应该是同一病毒

醉一生爱妍

看报告好像不是，但是这个东西确实有可疑行为，而且还偷偷连接到某IP

剑书

红伞不报

The scan has been done completely.

      2 Scanning directories
     13 Files were scanned
      0 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
     13 Files not concerned
      0 Archives were scanned
      0 Warnings
      0 Notes

mofunzone

antivir全miss
分出来一堆

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\����'
C:\Documents and Settings\Administrator\My Documents\����\
  rsc.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
  rsn.exe
    [0] Archive type: Runtime Packed
      --> Object
        [1] Archive type: RSRC
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object
        --> Object


End of the scan: 2008年1月19日  09:17
Used time: 00:01 min

The scan has been done completely.

      1 Scanning directories
      2 Files were scanned
      0 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      2 Files not concerned
      2 Archives were scanned
      0 Warnings
      0 Notes

醉一生爱妍

KB结果出来了没有？？LZ？

saga3721

微点杀了rsn
程序:
C:\DOCUMENTS AND SETTINGS\XT\桌面\RSN.EXE
是否阻止该进程继续运行?

程序:
C:\DOCUMENTS AND SETTINGS\XT\桌面\RSN.EXE
木马程序生成以下文件:
1) C:\WINDOWS\SYSTEM32\IME\SDCLINET.DLL
2) C:\WINDOWS\SYSTEM32\IME\SDERROR.DLL
3) C:\WINDOWS\SYSTEM32\IME\SDNET.DLL
4) C:\WINDOWS\SYSTEM32\IME\USRSS.EXE
5) C:\WINDOWS\SYSTEM32\IME\MSDAT.EXE
6) C:\WINDOWS\SYSTEM32\IME\WX_HP.SYS
是否删除病毒程序及其衍生物?

[ 本帖最后由 saga3721 于 2008-1-20 01:55 编辑 ]

qigang

Rising20.27.60未杀！

qigang

两个一样的东西，Rising20.27.60一个未查到！

ballakay

Scanning Report
20 January 2008 15:09:31 - 15:09:32
Computer name: PUMA-PC
Scanning type: Scan target
Target: C:\Users\Administrator\Desktop\Desktop.rar


--------------------------------------------------------------------------------

Result
No malware found




--------------------------------------------------------------------------------

Statistics
Scanned:
Files: 3
Not scanned: 0
Result:
Viruses: 0
Spyware: 0
Suspicious items: 0
Riskware: 0
Actions:
Disinfected: 0
Renamed: 0
Deleted: 0
Quarantined: 0
Failed: 0
Boot Sectors:
Scanned: 0
Infected: 0
Suspicious items: 0
Disinfected: 0


--------------------------------------------------------------------------------

Options
Definitions version:
Viruses: 2008-01-19_02
Spyware: 2008-01-19_01
Scanning Engines:
F-Secure AVP: 7.00.171, 2008-01-19
F-Secure Libra: 2.04.01, 2008-01-18
F-Secure Orion: 1.02.37, 2008-01-19
F-Secure Draco: 1.00.35, 2007-11-28
Scanning options:
Scan all files
Scan inside archives
Actions:
Viruses: Delete infected files
Spyware: Delete infected files
FS 飘! [已上报]