继续发

显示全部楼层 · 发表于 2008-6-5 01:05:03

3
D:\病毒测试\临时解压\桌面.rar:\A17-tmpaASI.exe - 特征码 'Trojan.Win32.Delflob.I' 被发现
D:\病毒测试\临时解压\桌面.rar:\jkill.exe - 特征码 'Application.Win32.AdWare.TopMoxie' 被发现
D:\病毒测试\临时解压\桌面.rar:\djtopr1150.exe - 特征码 'not-a-virus:AdWare.Win32.WebRebates.g' 被发现
D:\病毒测试\临时解压\桌面.rar:\A13-tmp
D:\病毒测试\临时解压\桌面.rar

5 文件被扫描
(1 压缩档 4 文件)
3 特征码被侦测
0 可疑代码段被发现
耗时: 0:00.881

显示全部楼层 · 发表于 2008-6-5 08:26:58

原帖由 小邪邪 于 2008-6-4 20:11 发表
278612

瑞星过

显示全部楼层 · 发表于 2008-6-5 09:07:12

原帖由 kato9096 于 2008-6-5 00:50 发表

已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Peregar.cg 檔案: C:\Documents and Settings\kato9096\桌面\桌面.rar/A17-tmpaASI.exe//PE_Patch.UPX//UPX
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.WebReba ...

素P版滴~

显示全部楼层 · 发表于 2008-6-5 09:18:52

C:\Documents and Settings\Administrator\桌面\桌面.rar » RAR » A17-tmpaASI.exe - Win32/Adware.IeDefender.NDH application - was a part of the deleted object
C:\Documents and Settings\Administrator\桌面\桌面.rar » RAR » jkill.exe - Win32/ProcKill application - was a part of the deleted object
C:\Documents and Settings\Administrator\桌面\桌面.rar » RAR » djtopr1150.exe - Win32/Adware.TopRebates.A application - was a part of the deleted object
C:\Documents and Settings\Administrator\桌面\桌面.rar » RAR » A13-tmp - Win32/Adware.IeDefender.NEX application - was a part of the deleted object

显示全部楼层 · 发表于 2008-6-5 19:01:49

原帖由 kato9096 于 2008-6-5 00:50 发表

已刪除: 特洛伊木馬程式 Trojan-Downloader.Win32.Peregar.cg 檔案: C:\Documents and Settings\kato9096\桌面\桌面.rar/A17-tmpaASI.exe//PE_Patch.UPX//UPX
已刪除: 廣告軟體 not-a-virus:AdWare.Win32.WebReba ...

Hello,

jkill.exe_

No malicious code was found in this file.

Please quote all when answering.

--
Best regards, Namestnikov Yury
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

显示全部楼层 · 发表于 2008-6-5 20:14:05

[Scanning : C:\Documents and Settings\All Users\Documents\Test]

C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A17-tmpaASI.exe <- Trojan.Agent.Ai : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A17-tmpaASI.exe<DLLRES>:file0.exe <- Trojan.Agent.Ai : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A17-tmpaASI.exe<DLLRES>:file0.exe<UPX>:file0.exe <- Downloader.Peregar.cg : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A17-tmpaASI.exe<UPX>:A17-tmpaASI.exe <- Downloader.Peregar.cg : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A17-tmpaASI.exe<UPX>:A17-tmpaASI.exe<DLLRES>:file0.exe <- Trojan.Agent.Ai : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A17-tmpaASI.exe<UPX>:A17-tmpaASI.exe<DLLRES>:file0.exe<UPX>:file0.exe <- Downloader.Peregar.cg : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:jkill.exe <- Adware.Ia : No action
C:\Documents and Settings\All Users\Documents\Test\桌面.rar<RAR>:A13-tmp <- Trojan.Agent.Ki : No action

Scanned objects : 11

Infected objects : 8

显示全部楼层 · 发表于 2008-6-5 20:14:43

[Found downloader] <W32/Downldr2.BXCO (exact, not disinfectable)> C:\Documents and Settings\All Users\Documents\Test\桌面.rar->A17-tmpaASI.exe->exefile

---------------------------------------------------------------------
Scan ended: 2008-6-5, 20:14:33
Duration: 0:00:00

Scan result:

Scanned files:    6
Infected objects:    1
Disinfected objects:    0
Quarantined files:    0
---------------------------------------------------------------------

[病毒样本] 继续发

本帖子中包含更多资源

ArcaVir2008

F-Prot 4.4.4