瑞星20.43不报毒~~

病毒运行貌似不完全~~

SRENG日志中不正常的只有
  <{8ccdf465-f6db-4ba5-b338-7cb13b339a0d}><C:\WINDOWS\system32\dqMHXMHX1035.dll>  [N/A]
    <{28766E1C-74B0-4417-8C75-F12AE309EF35}><C:\WINDOWS\system32\wzcfsw.dll>  [N/A]
    <{df14157d-3ce2-4d9b-b0cc-7f47e3e31fdb}><C:\WINDOWS\system32\ttKAFKAF1074.dll>  [N/A]
    <{8C41B7F7-3168-400D-A702-0E7EFE0BA304}><C:\WINDOWS\system32\sgrefg.dll>  [N/A]
    <{9947e423-193f-4fc4-b38d-e76fdd799150}><C:\WINDOWS\system32\ttMYSMYS1053.dll>  [N/A]
    <{9ed93b14-8d71-45cb-970b-0b8a22449f48}><C:\WINDOWS\system32\ttBAIBAI1069.dll>  [N/A]
    <{67ba0720-e5a5-4b59-92cc-63faf4816f27}><C:\WINDOWS\system32\dqWLVWLV1014.dll>  [N/A]
    <{2795a41a-41a3-46a6-8b43-876500e74240}><C:\WINDOWS\system32\ttSHYSHY1056.dll>  [N/A]
    <{F99DEFDD-200B-4410-B572-E90883D527D2}><C:\WINDOWS\system32\wrqszl.dll>  [N/A]
    <{2ea73613-b34c-4d57-af8b-08cdeab6bbd2}><C:\WINDOWS\system32\ttSADSAD1044.dll>  [N/A]
    <{1e6f56a1-8610-460b-842c-0ca6d19611b1}><C:\WINDOWS\system32\ttFKKFKK1064.dll>  [N/A]
    <{cd261631-9220-451c-903f-95bbbf541387}><C:\WINDOWS\system32\ttRJRRJR1029.dll>  [N/A]
    <{45AADFAA-DD36-42AB-83AD-0521BBF58C24}><C:\WINDOWS\system32\zjydcx.dll>  [N/A]
    <{09FDFB4A-009C-49CC-A106-13FCC61548AA}><C:\WINDOWS\system32\zakedy.dll>  [N/A]
    <{0007d651-3da0-4bf2-8a54-2800c772e37c}><C:\WINDOWS\system32\ttABCABC1034.dll>  [N/A]
    <{5fd0c12b-da0b-4446-82fd-b8041a46492b}><C:\WINDOWS\system32\ttDXYDXY1014.dll>  [N/A]
    <{a5ae39e5-13dd-4383-81cf-e229e5950186}><C:\WINDOWS\system32\ttDLQDLQ1009.dll>  [N/A]
    <{875E07B1-0614-43D9-A76E-D76A28AB3D7B}><C:\WINDOWS\system32\tfsdmz.dll>  [N/A]
    <{e8de6929-0ca2-435b-aa19-b84df50bc500}><C:\WINDOWS\system32\ttDABDAB1073.dll>  [N/A]


但文件不存在~~

感觉是样本运行不完全

但发现C：\WINDOWS\EXPLORER.EXE被感染~~

后来发现上网成了问题,找不出毛病,就是PING不通网关,上不了网了

用户系统信息：Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)