微点交流论坛

标题: 微点报windows defender文件下的可疑文件？ [打印本页]

作者: mycctv3652006 时间: 2009-12-28 20:09 标题: 微点报windows defender文件下的可疑文件？

2009/12/26 16:49:51 Trojan-Downloader.HTML.IFrame.vl 删除失败 C:\USERS\ADMINISTRATOR\APPDATA\LOCAL\MICROSOFT\WINDOWS\TEMPORARY INTERNET FILES\CONTENT.IE5\3FI9K5RC\110728[1].HTM
2009/12/28 19:01:36 Worm.Win32.AutoRun.lw 删除成功 C:\PROGRAMDATA\MICROSOFT\WINDOWS DEFENDER\LOCALCOPY\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WOPTIFREE.EXE
2009/12/28 19:01:29 Worm.Win32.AutoRun.lw 删除成功 C:\PROGRAMDATA\MICROSOFT\WINDOWS DEFENDER\LOCALCOPY\{25D34BCE-764D-ACCB-F881-440FBE246621}-BUNDLE.EXE
2009/12/28 19:01:25 Worm.Win32.AutoRun.lw 删除成功 C:\PROGRAMDATA\MICROSOFT\WINDOWS DEFENDER\LOCALCOPY\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WOPTIUTILITIES_CN.EXE
2009/12/28 18:58:56 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:58:56 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:58:56 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:58:27 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:58:27 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:58:27 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:57:57 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:57:57 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:57:57 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:57:27 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:57:27 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:57:27 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:56:56 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:56:56 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:56:56 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:56:26 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:56:26 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:56:26 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:55:54 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:55:54 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:55:54 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:55:23 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{D775AB6E-3B7E-231C-69B8-67B32272F383}-WoptiFree.exe
2009/12/28 18:55:23 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{5D66D973-4A66-E4FD-2CB2-A65AD74E5FEE}-WoptiUtilities_CN.exe
2009/12/28 18:55:23 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe
2009/12/28 18:54:49 Worm.Win32.AutoRun.lw 未处理 C:\Documents and Settings\All Users\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows Defender\LocalCopy\{25D34BCE-764D-ACCB-F881-440FBE246621}-bundle.exe

作者: Legend 时间: 2009-12-28 20:23
感谢您反馈的这个情况！希望您能协助我们，将这些被报警的文件都复制一份（已被处理的可以到微点杀毒软件的隔离区另存为出来）压缩后，发送到mpav@micropoint.com.cn我们帮您分析处理。

请在来信的内容中写上这个帖子的网址，方便我们帮您查收处理，谢谢。

作者: 我心激扬 时间: 2009-12-30 10:16
未收到楼主反馈的邮件，建议您重新发送下相关邮件，随信请注明您的论坛id便于对您反馈的问题跟踪处理。

作者: HONEY0806 时间: 2009-12-30 10:29
观望中

作者: mycctv3652006 时间: 2010-1-1 23:10

Quote:

Originally posted by 我心激扬 at 2009-12-30 10:16:
未收到楼主反馈的邮件，建议您重新发送下相关邮件，随信请注明您的论坛id便于对您反馈的问题跟踪处理。

不好意思病毒样本被我清除了没了。。

欢迎光临微点交流论坛 (http://bbs.micropoint.com.cn/)

bbs.micropoint.com.cn