1 ge

显示全部楼层 · 发表于 2008-6-16 17:47:19

我想肯定关不了kv的监控

显示全部楼层 · 发表于 2008-6-16 18:01:19

发现可疑程序，试图修改可执行文件
05.PIF
被修改文件:
C:\WINDOWS\SYSTEM32\DRIVERS\BEEP.SYS
是否阻止文件被修改?

显示全部楼层 · 发表于 2008-6-16 19:24:22

mm.exe
路径: F:\virus
Status: 已发现病毒
病毒: GenPack:Generic.Malware.SP!VdldPk!g.3BE066BF (BD 引擎)

显示全部楼层 · 发表于 2008-6-16 19:43:13

上报卡巴,红傘,pc security labs

Starting the file scan:

Begin scan in 'C:\Documents and Settings\kato9096\桌面\index.gif3'
Begin scan in 'C:\Documents and Settings\kato9096\桌面\mm.exe2'
C:\Documents and Settings\kato9096\桌面\mm.exe2
[DETECTION] Is the Trojan horse TR/ATRAPS.Gen
[NOTE] The file was deleted!

The file 'index.gif4' has been determined to be 'UNDER ANALYSIS'.

[ 本帖最后由 kato9096 于 2008-6-16 19:45 编辑 ]

显示全部楼层 · 发表于 2008-6-16 20:06:42

to symantec

显示全部楼层 · 发表于 2008-6-16 20:20:06

RS20.49.02未杀！

显示全部楼层 · 发表于 2008-6-16 20:22:03

[Found security risk] <W32/Injector.A.gen!Eldorado (not disinfectable, generic)> C:\Documents and Settings\All Users\Documents\Test\mm.exe

---------------------------------------------------------------------
Scan ended: 2008-6-16, 20:21:51
Duration: 0:00:06

Scan result:

Scanned files:    6
Infected objects:    1
Disinfected objects:    0
Quarantined files:    0
---------------------------------------------------------------------

显示全部楼层 · 发表于 2008-6-16 23:01:42

Hello,

index.gifk

No malicious code was found in this file.

显示全部楼层 · 发表于 2008-6-17 09:15:32

无法识别的..都已上传卡巴~~!!

显示全部楼层 · 发表于 2008-6-17 18:59:34

Filename Result
index.gif4 MALWARE

The file 'index.gif4' has been determined to be 'MALWARE'. Our analysts named the threat TR/Dldr.Agent.OX.6. The term "TR/" denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection is added to our virus definition file (VDF) starting with version 7.00.04.205. Please note that Avira's proactive heuristic detection module AHeAD detected this threat up front without the latest VDF update as: HEUR/HTML.Malware.

[已鉴定] 1 ge

2/0

F-Prot 4.4.4