微点不杀。12/31

wcj20236

如题。        解压密码：virus

schumi小粉

Begin scan in 'C:\Documents and Settings\Administrator\桌面\新建文件夹\081018-1-4'
C:\Documents and Settings\Administrator\桌面\新建文件夹\081018-1-4\081018-1-4.exe
    [DETECTION] Contains recognition pattern of the DR/Agent.hgz dropper
    [NOTE]      A backup was created as '498c4757.qua'  ( QUARANTINE )
    [NOTE]      The file was deleted!

红伞杀，kis miss ，to kill~

dreams521

红伞可以啊,入库挺快啊

hj5abc

Contains recognition pattern of the DR/Agent.hgz dropper

drop了4个东西。

The file 'G:\081018-1-4\081018-1-4\5\File1.exe'
contained a virus or unwanted program 'TR/Dldr.Agent.akyq' [trojan]
Action(s) taken:The file was deleted!

The file 'G:\081018-1-4\081018-1-4\5\Executor.exe'
contained a virus or unwanted program 'TR/Dldr.VB.htd' [trojan]
Action(s) taken:The file was deleted!

还有一个貌似是该主页 还有一个会伪造键盘输入 估计是keylog。







[ 本帖最后由 hj5abc 于 2008-12-31 18:39 编辑 ]

dreams521

微点连未知也没报

schumi小粉

Hello.

New malicious software was found in the attached file. Its detection will be included in the next update.
Thank you for your help.
Trojan-Downloader.Win32.Delf.pga

>
>
Regards, Tatarinov Ivan
Virus Analyst

gomu887

a-squared Anti-Malware - 版本 4.0
上次更新: 2008-12-31 17:14:35

扫描设置:

对象: C:\Documents and Settings\Administrator\桌面\081018-1-4
扫描文件: 开
启发式扫描: 开
ADS 扫描: 开

扫描开始于:        2008-12-31 19:03:34

C:\Documents and Settings\Administrator\桌面\081018-1-4\081018-1-4.exe/5.exe         已检测: Downloader.Agent!IK

已扫描

文件:         2
跟踪记录:         0
Cookies:         0
进程:         0

已发现

文件:         1
跟踪记录:         0
Cookies:         0
进程:         0
注册表键:         0

扫描结束于:        2008-12-31 19:03:34
扫描用时:        0:00:00

woai_jolin

2008/12/31 19:24:08        Real-time file system protection        file        G:\v\081018-1-4.exe        multiple threats        deleted - quarantined        Jason-PC\Jason        Event occurred on a new file created by the application: C:\Program Files\WinRAR\WinRAR.exe.

521HDL

费尔报一个！！！！！！！！！！！！

hum

Panda miss
上报