可能是fake anti virus

显示全部楼层 · 发表于 2009-2-2 12:10:28

avast！ miss～～～～～

显示全部楼层 · 发表于 2009-2-2 16:28:49

C:\Documents and Settings\Administrator\桌面\install.rar>>install.exe3 Rootkit.TDSS.eyj.wxso 木马还未处理

显示全部楼层 · 发表于 2009-2-2 21:04:09

to symantec

显示全部楼层 · 发表于 2009-2-2 21:08:08

Dear tracydk tracydk,

We have analyzed your submission.  The following is a report of our
findings for each file you have submitted:

filename:  D:\\install.rar
machine: Machine
result: See the developer notes

filename: install.exe3
machine: Machine
result: This file is detected as Packed.Generic.200.

Customer notes:

Developer notes:
D:\\install.rar is an infected container file of type  RAR
install.exe3 applies to the 20 current Bloodhound detections in the engine This file is contained by D:\\install.rar

Should you have any questions about your submission, please contact
your regional technical support from the Symantec website and give them
the tracking number in the subject of this message.

-----------------------------------------------------------------------
This message was generated by Symantec Security Response automation.

For USA:
For electronic support options, Symantec provides On-Line Services at
http://www.symantec.com/techsupp/

显示全部楼层 · 发表于 2009-2-2 21:10:49

老铁居然1分钟就给我回复了

显示全部楼层 · 发表于 2009-2-4 21:58:16

kanakn

显示全部楼层 · 发表于 2009-2-4 22:18:28

D:\download\install.rar>>install.exe3 Rootkit.TDSS.eyj.wxso 木马还未处理

显示全部楼层 · 发表于 2009-2-4 22:20:47

原帖由 maozi778631 于 2009-2-2 12:10 发表
一运行在下东西，原来下的是病毒
程序：
C:\DOCUMENTS AND SETTINGS\CJ\桌面\INSTALL.EXE
木马程序生成以下文件：
1) C:\PROGRAM FILES\COMMON FILES\FILE.EXE
2) C:\PROGRAM FILES\COMMON FILES\INTERNETANTIV ...

CRAZY
什么你都敢用微点运行？

[ 本帖最后由 henmy168 于 2009-2-4 22:48 编辑 ]

[病毒样本] 可能是fake anti virus