服务器中招了( >﹏<。)～呜呜呜

heishen2010

哪个缺德的！

zh01801

金山

jiaobaoyun51

pal家族

1. amd.dll
Scan result        File is infected
Found threats        HEUR:Trojan.Win32.Generic
File size        15.77KB
File type        PE32/DLL
Date of scan        2016-09-18 20:17:00
Bases release date        2016-09-18 11:58:20 UTC
MD5        f8d1e5274de567e1b98c6d3d90eb6a3f
SHA1        770ac5321ad4ed0989b280710697fb32a7c5ac14
SHA256
db7b3950f4cee620168bb1a69e54433862d40bec0d7c9fa3c9da6a3fd1e1c328

2. lpk.dll
Scan result        File is infected
Found threats        Rootkit.Win32.Lapka.an
File size        7.50KB
File type        PE32/DLL
Date of scan        2016-09-18 20:17:00
Bases release date        2016-09-18 11:58:20 UTC
MD5        a044fbe60d8393f4a7652d669bc12065
SHA1        bcd5bb2a8f5d245e06cd37305ff6219c47025040
SHA256
e6b8090a4c6e1f301ac041209aba9376e8bbb0f734a2e2244a84e55852f9bb0a

。。。。。。略一部分

哟。。好多种类

Eset小粉絲

AVIRA

[mw_shl_code=css,true]Start of the scan: Sunday, 18 September, 2016  20:18

Starting the file scan:

Begin scan in 'C:\Users\User\Downloads\amd'
C:\Users\User\Downloads\amd\amd.dll
  [DETECTION] Is the TR/Downloader.Gen Trojan
C:\Users\User\Downloads\amd\lpk.dll
  [DETECTION] Contains recognition pattern of the WORM/Rbot.Gen worm

Starting the file scan:

Begin scan in 'C:\Users\User\Downloads\exp'
C:\Users\User\Downloads\exp\exp1.exe
  [DETECTION] Contains recognition pattern of the EXP/CVE-2015-0311.gbss exploit
C:\Users\User\Downloads\exp\exp2.exe
  [DETECTION] Contains recognition pattern of the EXP/CVE-2015-1701.ewsd exploit
C:\Users\User\Downloads\exp\lpk.dll
  [DETECTION] Contains recognition pattern of the WORM/Rbot.Gen worm
C:\Users\User\Downloads\exp\tan.exe
  [DETECTION] Is the TR/Agent.33812 Trojan
C:\Users\User\Downloads\exp\y.exe
  [DETECTION] Contains a recognition pattern of the (harmful) BDS/Farfli.tzug back-door program[/mw_shl_code]

heishen2010

pal家族 发表于 2016-9-18 20:18
1. amd.dll
Scan result        File is infected
Found threats        HEUR:Trojan.Win32.Generic

害的我又重新装系统又要重新配置环境，哎！

fireherman

ESET 下载 kill

[mw_shl_code=css,true]2016-9-18 21:38:44        文件系统实时防护        文件        C:\DOCUME~1\Raymond\LOCALS~1\Temp\GMaWyaRs.zip.part        多个威胁        已删除        RAYMOND-9B1A7AC\Raymond        在被应用程序修改的文件上发生事件: C:\Program Files\Mozilla Firefox\firefox.exe.               
2016-9-18 21:38:08        文件系统实时防护        文件        C:\DOCUME~1\Raymond\LOCALS~1\Temp\Avn1YwUM.zip.part        多个威胁        已删除        RAYMOND-9B1A7AC\Raymond        在被应用程序修改的文件上发生事件: C:\Program Files\Mozilla Firefox\firefox.exe.[/mw_shl_code]

540923555

AMD里面的被WD全歼，EXP里面的tan.exe，tan1.exe，exp.exe漏掉了

540923555

jiaobaoyun51 发表于 2016-9-18 19:57

关掉监控，下完再扫，这样不准，有可能是链接被拉黑

蓝天二号

AVG

第一个拦截下载



第二个