[求助]请问，vdoing.com 210.83.79.32 这个是病毒吗？-付费问答-看雪-安全社区|安全招聘|kanxue.com

[旧帖] [求助]请问，vdoing.com 210.83.79.32 这个是病毒吗？ 0.00雪花

发表于: 2009-2-18 14:11 2721

[旧帖] [求助]请问，vdoing.com 210.83.79.32 这个是病毒吗？ 0.00雪花

ilovesys

2009-2-18 14:11

2721

用xhook(xfocus.net)
产生文件 1436.vmnat.simple.log 和 1436.vmnat.detail.log

google了一下， vdoing.com  是  210.83.79.32

哪位能帮我分析一下，谢谢。
C:\>type 1436.vmnat.simple.log
2009-02-18 13:50:22 UDP 0.0.0.0:0 <- 210.83.79.32:0  68 bytes (recvfrom)
2009-02-18 13:50:22 UDP 0.0.0.0:0 <- 210.83.79.32:0  0 bytes (recvfrom)
2009-02-18 13:50:22 UDP 0.0.0.0:0 <- 210.83.79.32:0  68 bytes (recvfrom)
2009-02-18 13:50:22 UDP 0.0.0.0:0 <- 210.83.79.32:0  0 bytes (recvfrom)
2009-02-18 13:50:22 UDP 0.0.0.0:0 <- 210.83.79.32:0  68 bytes (recvfrom)
2009-02-18 13:50:22 UDP 0.0.0.0:0 <- 210.83.79.32:0  0 bytes (recvfrom)
2009-02-18 13:50:26 UDP 0.0.0.0:0 <- 210.83.79.31:0  68 bytes (recvfrom)
2009-02-18 13:50:26 UDP 0.0.0.0:0 <- 210.83.79.31:0  0 bytes (recvfrom)
2009-02-18 14:03:44 UDP 0.0.0.0:0 <- 210.83.79.39:0  60 bytes (recvfrom)
2009-02-18 14:03:44 UDP 0.0.0.0:0 <- 210.83.79.39:0  0 bytes (recvfrom)
2009-02-18 14:03:45 UDP 0.0.0.0:0 <- 210.83.79.39:0  60 bytes (recvfrom)
2009-02-18 14:03:45 UDP 0.0.0.0:0 <- 210.83.79.39:0  0 bytes (recvfrom)
2009-02-18 14:03:46 UDP 0.0.0.0:0 <- 210.83.79.39:0  60 bytes (recvfrom)
2009-02-18 14:03:46 UDP 0.0.0.0:0 <- 210.83.79.39:0  0 bytes (recvfrom)
2009-02-18 14:03:47 UDP 0.0.0.0:0 <- 210.83.79.39:0  60 bytes (recvfrom)
2009-02-18 14:03:47 UDP 0.0.0.0:0 <- 210.83.79.39:0  0 bytes (recvfrom)
2009-02-18 14:04:16 UDP 0.0.0.0:0 <- 210.83.79.32:0  68 bytes (recvfrom)
2009-02-18 14:04:16 UDP 0.0.0.0:0 <- 210.83.79.32:0  0 bytes (recvfrom)
2009-02-18 14:04:17 UDP 0.0.0.0:0 <- 210.83.79.32:0  68 bytes (recvfrom)
2009-02-18 14:04:17 UDP 0.0.0.0:0 <- 210.83.79.32:0  0 bytes (recvfrom)
2009-02-18 14:04:18 UDP 0.0.0.0:0 <- 210.83.79.31:0  68 bytes (recvfrom)
2009-02-18 14:04:18 UDP 0.0.0.0:0 <- 210.83.79.31:0  0 bytes (recvfrom)
2009-02-18 14:04:43 UDP 0.0.0.0:0 <- 210.83.79.31:0  68 bytes (recvfrom)
2009-02-18 14:04:43 UDP 0.0.0.0:0 <- 210.83.79.31:0  0 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  68 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  0 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  68 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  0 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  68 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  0 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  68 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.36:0  0 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.31:0  68 bytes (recvfrom)
2009-02-18 14:05:44 UDP 0.0.0.0:0 <- 210.83.79.31:0  0 bytes (recvfrom)

[培训]内核驱动高级班，冲击BAT一流互联网大厂工作，每周日13:00-18:00直播授课

收藏・0

免费・0

支持