FM94.8

mox

http://www.fm948.com

jigong9898

费尔报毒……

深红的雪

有一些页面连不上，应该都是这个
http://www.gogo52o.com/my/test.exe
http://www.gogo52o.com/my/test.cab

[ 本帖最后由 rappar 于 2008-3-19 22:18 编辑 ]

Virus or unwanted program 'TR/Hijack.Explor.3292 [TR/Hijack.Explor.3292]'
detected in file 'D:\test.exe.tw!.
Action performed: Deny access

Starting the file scan:
Begin scan in 'D:\test.cab'
D:\test.cab
  [0] Archive type: CAB (Microsoft)
  --> test.exe
      [DETECTION] Is the Trojan horse TR/Dldr.Agent.laj.1
      [INFO]      The file was deleted!

[ 本帖最后由 Exia 于 2008-3-19 22:32 编辑 ]

spaceplane

已扫描的磁盘，文件夹及文件：E:\pic\_PICtemp\test.cab; E:\pic\_PICtemp\test.exe
E:\pic\_PICtemp\test.cab >>CAB >>test.exe - Win32/TrojanDownloader.Small.OAL 木马的变种
E:\pic\_PICtemp\test.exe - Win32/TrojanDownloader.Small.OAL 木马的变种
已扫描的文件数目：2
已发现的病毒数目：2
完成时间： 22:32:34 总扫描时间：1 秒 (00:00:01)

spaceplane

BD  全报
Generic.Malware.P!YdPk!g.74184F58

wangjay1980

deleted: Trojan program Trojan-Downloader.Win32.Agent.laj        File: E:\ÏÂÔØ»ùµØ\virus\test.exe//FSG
deleted: Trojan program Trojan-Downloader.Win32.Agent.laj        File: E:\ÏÂÔØ»ùµØ\virus\test.cab/test.exe//FSG

sjducker

Access to the data has been denied!
Warning: A virus or unwanted program has been found in the HTTP Data.

Requested URL:  http://www.fm948.com/
Information:  Contains detection pattern of the HTML script virus HTML/Infected.WebPage.Gen  


--------------------------------------------------------------------------------
Generated by AntiVir WebGuard 8.0.10.0, AVE 8.1.0.19, VDF 7.0.3.51

qigang

Log is generated by FreShow.
[wide]http://www.fm948.com
    [frame]http://www.fm948.com/play/index.htm
        [script]http://www.fm948.com/play/js/tban.js
        [script]http://www.fm948.com/play/js/set.js
        [script]http://www.fm948.com/play/js/player_class.js
        [script]http://www.fm948.com/play/js/com.js
        [script]http://www.fm948.com/play/js/poerror.js
    [script]http://www.fm948.com/news-pic.js
    [frame]http://www.fm948.com/toupiao/pollitem.asp?pid=2
    [frame]http://www.fm948.com/news/otype.asp?owen1=音乐资讯
    [frame]http://www.fm948.com/gdtp/01.html
    [script]http://www.fm948.com/guestbook/Dv_News.asp?GetName=hottopic
    [frame]http://www.gogo52o.com/my/003.htm
        [script]http://www.gogo52o.com/my/rl.js
            [object]http://www.gogo52o.com/my/test.exe
        [frame]http://www.gogo52o.com/my/cq.htm
            [frame]http://www.gogo52o.com/my/real.gif
            [frame]http://www.gogo52o.com/my/xpkk.gif
            [frame]http://www.gogo52o.com/my/xl.gif
            [frame]http://www.gogo52o.com/my/lz.gif
            [frame]http://www.gogo52o.com/my/bf.gif
            [frame]http://www.gogo52o.com/my/baidu.gif
        [frame]http://www.gogo52o.com/my/vod.htm
        [script]http://js.users.51.la/1704998.js
    [script]http://www.fm948.com/counter/count.asp?fy=1
        [script]http://www.fm948.com/counter/+url+
    [frame]http://www.hao654.cn
        [script]http://www.hao654.cn/include/javascript/common.js
        [script]http://www.hao654.cn/include/javascript/menu.js
        [script]http://www.hao654.cn/include/javascript/ajax.js
        [script]http://s117.cnzz.com/stat.php?id=813195&web_id=813195&online=2
        [script]http://a.alimama.cn/inf.js
            [frame]http://a.alimama.cn/
        [script]http://a06.insenz.com/adv?sid=21749&gid=&fid=0&tid=0&random=dM58
        [script]http://www.hao654.cn/include/javascript/floatadv.js

tanlimo

杀




[ 本帖最后由 tanlimo 于 2008-3-20 00:04 编辑 ]