one

曲中求

2008-10-9 21:23:10 已由访问保护规则禁止  MICROSOF-89847B\曲中求 F:\电影\setup.exe C:\Program Files\snav\Snav.dll 通用最大保护:禁止在 Program Files 文件夹中创建新的可执行文件 已阻止的操作: 创建

从咖啡的规则看像广告之类的东西，分享一下。

aerbeisi

BING126

File Snav.dll received on 10.09.2008 15:31:01 (CET)

Antivirus	Version	Last Update	Result
AhnLab-V3	2008.10.9.3	2008.10.09	-
AntiVir	7.8.1.34	2008.10.09	ADSPY/Bho.aer
Authentium	5.1.0.4	2008.10.09	-
Avast	4.8.1248.0	2008.10.09	Win32:Adware-gen
AVG	8.0.0.161	2008.10.09	Generic11.MOS
BitDefender	7.2	2008.10.09	-
CAT-QuickHeal	9.50	2008.10.08	-
ClamAV	0.93.1	2008.10.09	-
DrWeb	4.44.0.09170	2008.10.09	-
eSafe	7.0.17.0	2008.10.08	-
eTrust-Vet	31.6.6137	2008.10.09	-
Ewido	4.0	2008.10.09	-
F-Prot	4.4.4.56	2008.10.08	-
F-Secure	8.0.14332.0	2008.10.09	AdWare.Win32.BHO.dbk
Fortinet	3.113.0.0	2008.10.09	-
GData	19	2008.10.09	Win32:Adware-gen
Ikarus	T3.1.1.34.0	2008.10.09	AdWare.BHO.aer
K7AntiVirus	7.10.489	2008.10.09	Trojan.Win32.Malware.1
Kaspersky	7.0.0.125	2008.10.09	not-a-virus:AdWare.Win32.BHO.dbk
McAfee	5401	2008.10.09	potentially unwanted program Generic PUP
Microsoft	1.4005	2008.10.09	-
NOD32	3506	2008.10.09	-
Norman	5.80.02	2008.10.08	W32/BHO.FAN
Panda	9.0.0.4	2008.10.09	Suspicious file
PCTools	4.4.2.0	2008.10.09	-
Prevx1	V2	2008.10.09	Worm
Rising	20.65.32.00	2008.10.09	-
SecureWeb-Gateway	6.7.6	2008.10.09	Ad-Spyware.Bho.aer
Sophos	4.34.0	2008.10.09	-
Sunbelt	3.1.1708.1	2008.10.09	AdWare.Win32.BHO.dbk
Symantec	10	2008.10.09	-
TheHacker	6.3.1.0.103	2008.10.07	-
TrendMicro	8.700.0.1004	2008.10.09	-
VBA32	3.12.8.6	2008.10.09	AdWare.Win32.BHO.dbk
ViRobot	2008.10.9.1414	2008.10.09	Adware.BHO.303222
VirusBuster	4.5.11.0	2008.10.08	-

wangjay1980

2008-10-9 JAY21:35:02        Detected        Adware        not-a-virus:AdWare.Win32.BHO.dbk        Medium        Exact        C:\Documents and Settings\Owner\桌面\setup.exe/data0002

Kitman

Requested URL:        http://bbs.kafan.cn/attachment.p ... 65&t=1223561930
Information:        Is the TR/Drop.Agent.apd Trojan
Generated by AntiVir WebGuard 8.0.15.0, AVE 8.1.1.35, VDF 7.0.7.19

Palkia

诺顿 0

kingmuro

kis2009

not-a-virus:AdWare.Win32.BHO.dbk

328397663

Start of the scan: 2008年10月9日  23:19

Starting the file scan:

Begin scan in 'C:\Documents and Settings\Administrator\桌面\setup.rar'
C:\Documents and Settings\Administrator\桌面\setup.rar
    [0] Archive type: RAR
    --> setup.exe
      [DETECTION] Is the TR/Drop.Agent.apd Trojan
    [NOTE]      The file was successfully wiped!
    [NOTE]      The file was deleted!

wrq

Access to the data has been denied!
Warning: A virus or unwanted program has been found in the HTTP Data.

Requested URL:  http://bbs.kafan.cn/attachment.p ... b0&t=1223565677
Information:  Is the TR/Drop.Agent.apd Trojan  


--------------------------------------------------------------------------------
Generated by AntiVir WebGuard 8.0.15.0, AVE 8.1.1.35, VDF 7.0.6.243