微点交流论坛

标题: 江民移动杀毒里怎么会有木马啊~~ [打印本页]

作者: fcl8399 时间: 2007-7-5 09:36 标题: 江民移动杀毒里怎么会有木马啊~~

我昨天下了个移动杀毒在我U盘里,别人要用的,今天我试着在查毒,C盘没扫描完呢,MP突然提示有木马,我点不删除处理后程序就没了,后来查看日志就是发现有木马,那现在我不冤了嘛`~~~~~~~~~

时间处理结果木马名称木马进程名木马文件创建者
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00052.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00051.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00038.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00036.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00037.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00032.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00021.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00018.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00019.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00020.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00015.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00016.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00017.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00014.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00013.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00012.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00011.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00010.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00009.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00008.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00006.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00005.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00004.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00003.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\DOCUMENTS AND SETTINGS\FCL\LOCAL SETTINGS\TEMP\~KW00001.TMP H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 H:\JM\KVSCANSJ\KVENHP.DLL H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 H:\JM\KVSCANSJ\KVENHM.DLL H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 C:\WINDOWS\SYSTEM32\ACTSKN43.OCX H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-05 08:48:48 用户取消未知木马 H:\JM\KVSCANSJ\KVUSCAN.EXE
2007-07-03 09:44:26 处理成功未知木马 C:\TMP\变速齿轮SETUP~.EXE E:\TOOL\变速齿轮SETUP.EXE
2007-07-03 09:44:25 处理成功未知木马 E:\TOOL\变速齿轮SETUP.EXE

现在该怎么处理呢

作者: Legend 时间: 2007-7-5 09:45
楼主请问您的微点版本（辅助功能--关于）和操作系统版本是多少？
请将您的江民移动杀毒的安装文件或者下载链接和微点目录下的MP6文件夹复制到桌面压缩发support@micropoint.com.cn，我们分析一下，随信附带本帖链接，谢谢。

作者: fcl8399 时间: 2007-7-5 09:48
我发给在线技术支持吧,文件快30M了

微点主动防御软件预升级
程序版本： 1.2.10570.0156
特征版本： 1.6.373.070704
更新时间： 2007-07-04 14:52:11

附件 1: 未命名.jpg (2007-7-5 09:48, 17.53 K,下载次数： 71)

作者: Legend 时间: 2007-7-5 10:08
好的，谢谢您的反馈，我们具体分析一下。

欢迎光临微点交流论坛 (http://bbs.micropoint.com.cn/)

bbs.micropoint.com.cn