蜘蛛报Adware，不知道是否误报？

显示全部楼层 · 发表于 2008-9-3 13:13:56

应该不是

程序资源段可以伪造

显示全部楼层 · 发表于 2008-9-3 13:14:08

你用鱼鱼桌面秀了？自从鱼鱼桌面升级到2.11 build901版本后，就开始不停的弹出100du网站的窗口，而且在C:\WINDOWS\system32目录下生成了rgshell.dll的文件。自己看着办吧！！

显示全部楼层 · 发表于 2008-9-3 13:17:41

就是这样，昨晚升级的，我还以为IE被劫持了呢。。

显示全部楼层 · 发表于 2008-9-3 13:22:16

Requested URL: http://bbs.kafan.cn/attachment.p ... 64&t=1220419309
Information: Contains recognition pattern of the ADSPY/BDSearch.1.139 adware or spyware

Generated by AntiVir WebGuard 8.0.15.0, AVE 8.1.1.23, VDF 7.0.6.106

显示全部楼层 · 发表于 2008-9-3 15:43:17

Win32:Agent-GRW [Trj]

显示全部楼层 · 发表于 2008-9-3 16:33:40

卡巴不报,上报~~~

显示全部楼层 · 发表于 2008-9-3 17:18:03

Hello,

rgshell.dll - not-a-virus:AdWare.Win32.BHO.ctp

This file is an Advertizing Tool, It's detection will be included in the next
update of extended databases set. See more info about
extended databases here: http://www.kaspersky.com/extraavupdates

Please quote all when answering.

--
Best regards, Namestnikov Yury
Virus analyst, Kaspersky Lab.
e-mail: newvirus@kaspersky.com
http://www.kaspersky.com/

http://www.kaspersky.com/virusscanner - free online virus scanner.
http://www.kaspersky.com/helpdesk.html - technical support.

显示全部楼层 · 发表于 2008-9-3 18:41:59

Complete scanning result of "rgshell.rar", processed in VirusTotal at 09/03/2008 12:15:05 (CET).

[ file data ]
* name..: rgshell.rar
* size..: 217698
* md5...: f944f562174343372d9cb8ee89238c9a
* sha1..: 062cb295cb448e4b23c70ac87d2b1ec5e4240960
* peid..: -

[ scan result ]
AhnLab-V3 2008.9.3.0/20080903 found nothing
AntiVir 7.8.1.23/20080902 found [ADSPY/BDSearch.1.139]
Authentium 5.1.0.4/20080903 found nothing
Avast 4.8.1195.0/20080902 found [Win32:Agent-GRW]
AVG 8.0.0.161/20080903 found nothing
BitDefender 7.2/20080903 found [Adware.BDSearch.1]
CAT-QuickHeal 9.50/20080902 found nothing
ClamAV 0.93.1/20080903 found nothing
DrWeb 4.44.0.09170/20080902 found [Adware.Sogou.origin]
eSafe 7.0.17.0/20080902 found nothing
eTrust-Vet 31.6.6064/20080902 found nothing
Ewido 4.0/20080902 found nothing
F-Prot 4.4.4.56/20080903 found nothing
F-Secure 8.0.14332.0/20080902 found nothing
Fortinet 3.14.0.0/20080903 found nothing
GData 19/20080903 found [Win32:Agent-GRW]
Ikarus T3.1.1.34.0/20080903 found [Virus.Win32.Agent.GRW]
K7AntiVirus 7.10.437/20080902 found nothing
Kaspersky 7.0.0.125/20080903 found nothing
McAfee 5375/20080902 found nothing
Microsoft 1.3903/20080903 found [Adware:Win32/Rugo]
NOD32v2 3409/20080902 found nothing
Norman 5.80.02/20080902 found nothing
Panda 9.0.0.4/20080902 found nothing
PCTools 4.4.2.0/20080902 found nothing
Prevx1 V2/20080903 found nothing
Rising 20.60.21.00/20080903 found nothing
Sophos 4.33.0/20080903 found nothing
Sunbelt 3.1.1582.1/20080902 found nothing
TheHacker 6.3.0.8.070/20080902 found nothing
TrendMicro 8.700.0.1004/20080903 found nothing
VBA32 3.12.8.4/20080903 found nothing
ViRobot 2008.9.2.1361/20080903 found nothing
VirusBuster 4.5.11.0/20080902 found nothing
Webwasher-Gateway 6.6.2/20080903 found [Ad-Spyware.BDSearch.1.139]

显示全部楼层 · 发表于 2008-9-4 09:40:32

小红伞也报了..

[误报文件] 蜘蛛报Adware，不知道是否误报？

回复 3楼上海一哥的帖子

[误报文件] 蜘蛛报Adware，不知道是否误报？

回复 3楼 上海一哥 的帖子

回复 3楼上海一哥的帖子