磁碟机更新

显示全部楼层 · 发表于 2008-3-15 01:57:11

费尔开高启发报！这段时间病毒肆虐建议大家都把杀毒软件开到高启发··

显示全部楼层 · 发表于 2008-3-15 02:02:42

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\My Documents\C.rar'
C:\Documents and Settings\Administrator\My Documents\
  C.rar
[0] Archive type: RAR
--> C\037589.log
      [DETECTION] Is the Trojan horse TR/Drop.Xorer.C
--> C\AUTORUN.INF
      [DETECTION] Is the Trojan horse TR/Harnig.WA
--> C\Documents and Settings\Administrator\Cookies\index.dat
--> C\Documents and Settings\Administrator\Local Settings\History\History.IE5\index.dat
--> C\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\index.dat
--> C\pagefile.pif
      [DETECTION] Is the Trojan horse TR/Drop.Xorer.C
--> C\WINDOWS\system32\446751.log
      [DETECTION] Is the Trojan horse TR/Drop.Xorer.C
--> C\WINDOWS\system32\com\comadmin.dll
--> C\WINDOWS\system32\com\comempty.dat
--> C\WINDOWS\system32\com\comexp.msc
--> C\WINDOWS\system32\com\comrepl.exe
--> C\WINDOWS\system32\com\comrereg.exe
--> C\WINDOWS\system32\com\lsass.exe
      [DETECTION] Is the Trojan horse TR/Drop.Xorer.C
--> C\WINDOWS\system32\com\mtsadmin.tlb
--> C\WINDOWS\system32\com\netcfg.000
      [DETECTION] Is the Trojan horse TR/Xorer.A.1
--> C\WINDOWS\system32\com\netcfg.dll
      [DETECTION] Is the Trojan horse TR/Xorer.A.1
--> C\WINDOWS\system32\com\smss.exe
      [DETECTION] Is the Trojan horse TR/Xorer.DR.40960
   --> C\WINDOWS\system32\dnsq.dll
      [1] Archive type: Runtime Packed
      --> Object
   [NOTE]    The file was deleted!

End of the scan: 2008年3月14日  11:02
Used time: 00:04 min

The scan has been done completely.

   0 Scanning directories
   19 Files were scanned
   9 viruses and/or unwanted programs were found
   0 Files were classified as suspicious:
   1 files were deleted
   0 files were repaired
   0 files were moved to quarantine
   0 files were renamed
   0 Files cannot be scanned
   10 Files not concerned
   1 Archives were scanned
   0 Warnings
   1 Notes

显示全部楼层 · 发表于 2008-3-15 07:21:24

nod32:Win32/Xore

显示全部楼层 · 发表于 2008-3-15 07:27:37

程序:
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\DATA.EXE
是否删除木马程序及其衍生物?

显示全部楼层 · 发表于 2008-3-15 10:03:48

Hello,

Setup.exe_ - Virus.Win32.Xorer.eu

New malicious software was found in this file. It's detection will be included in the next update. Thank you for your help.
3月15日凌晨3点44分。

显示全部楼层 · 发表于 2008-3-15 17:41:04

好好的一个病毒，就这么被你们强奸了。

显示全部楼层 · 发表于 2008-3-15 17:43:19

原帖由 竹木刀 于 2008-3-15 17:41 发表
好好的一个病毒，就这么被你们强奸了。

你不强奸他，他就会强奸你的机子

显示全部楼层 · 发表于 2008-3-15 18:07:52

卡巴砍杀

显示全部楼层 · 发表于 2008-3-15 18:16:26

===================================================================================================
On-demand scanner 7.0.0.10

NSE revision 5.91.10
nvcbin.def revision 5.90.00 of 2008/03/14 20:27:37 (1423371 variants)
nvcmacro.def revision 5.90.00 of 2008/03/10 04:41:40 (20430 variants)
Total number of variants: 1443801
===================================================================================================

   Time  Filename                                                    Virus name
---------------------------------------------------------------------------------------------------

- Scanning drive: G:\
- Scanning system areas of drive: G:\
- Scanning files matching: G:\v\data.zip
      2 ms G:\v\data.zip : data.exe                                  Trojan W32/Smalltroj.DJXD ()
- File G:\v\data.zip quarantined.
      1 ms G:\v\data.zip
      1 ms G:\v\data.zip:Zone.Identifier

===================================================================================================

The scanning started: 2008/03/15 18:16:12
            ended: 2008/03/15 18:16:12
Logged on as       : Jason
on hostname       : JASON-PC

Scanning results:
Total number of files found..............................:    3
Number of files scanned..................................:    3
Number of files/directories skipped due to exclude list..:    0
Number of files that could not be opened.................:    0
Number of archive files unpacked.........................:    1
Number of archive files not unpacked.....................:    0
Number of infections.....................................:    1

Copyright (c) 1993-2007 Norman ASA.

显示全部楼层 · 发表于 2008-3-15 18:17:04

2008-3-15 18:15:07 SYSTEM 264 Sign of "Win32:Xorer-J" has been found in "C:\Documents and Settings\gho\桌面\data.exe\[UPX]" file.

[病毒样本] 磁碟机更新

本帖子中包含更多资源