瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 怎么游戏图标变的不正常,是不是中毒了啊,有LOG
绿光绿光 - 2006-12-18 19:59:00
好像是盗号的木马
日志如下:2006-12-18,20:01:56

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 1 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <Internat.exe><Internat.exe>  [Microsoft Corporation]
    <swg><C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5746\GoogleToolbarNotifier.exe>  [(Verified)Google Inc.]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><C:\WINDOWS\rundl132.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <wxClient><C:\WINDOWS\System32\Clsmn.exe>  []
    <rzt><C:\WINDOWS\Intel\rundll32.exe>  [N/A]
    <r><C:\WINDOWS\down\rundll32.exe>  [N/A]
    <ms><C:\Program Files\Microsoft\svhost32.exe>  [N/A]
    <xy><C:\WINDOWS\Download\svhost32.exe>  [N/A]
    <wl><C:\WINDOWS\Download\svhost32.exe>  [N/A]
    <Thunder><"C:\Program Files\Thunder Network\Thunder\Thunder.exe" /s>  [Thunder Networking Technologies,LTD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe C:\WINDOWS\System32\jvmlts.exe>  [N/A]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <GinaDLL><C:\WINDOWS\system32\LogUser.dll>  [N/A]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [Microsoft Corporation]
    <WebCheck><%SystemRoot%\System32\webcheck.dll>  [(Verified)Microsoft Corporation]
    <SysTray><C:\WINDOWS\System32\stobject.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\System32\browseui.dll>  [(Verified)Microsoft Corporation]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\System32\browseui.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <Gsp2k><; C:\Program Files\Richtech\GxpClient\AutoStar.EXE>  [N/A]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <MsnMsgr><; "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background>  [N/A]
绿光绿光 - 2006-12-18 20:00:00
==================================
启动文件夹
N/A

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller]
  <C:\WINDOWS\System32\Ati2evxx.exe><ATI Technologies Inc.>
[DF5Serv / DF5Serv]
  <C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe><Faronics Corporation>
[游戏共享精灵XP客户端服务 / GspClient]
  <C:\Program Files\Richtech\GxpClient\CltSrv.exe><N/A>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>

==================================
驱动程序
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[AMD Processor Driver / AmdK8]
  <System32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
[ati2mtag / ati2mtag]
  <System32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[DeepFrz / DeepFrz]
  <C:\WINDOWS\SYSTEM32\DRIVERS\DeepFrz.SYS><Faronics Corporation>
[EagleNT / EagleNT]
  <\??\C:\WINDOWS\System32\drivers\EagleNT.sys><N/A>
[GMSIPCI / GMSIPCI]
  <\??\F:\INSTALL\GMSIPCI.SYS><N/A>
[NetDisk / NetDisk]
  <C:\WINDOWS\SYSTEM32\DRIVERS\NetDisk.SYS><Shanghai Richtech Co.,Ltd>
[npkcrypt / npkcrypt]
  <\??\D:\Program Files\Tencent\QQ\npkcrypt.sys><N/A>
[NPPTNT2 / NPPTNT2]
  <\??\C:\WINDOWS\System32\npptNT2.sys><INCA Internet Co., Ltd.>
[NTACCESS / NTACCESS]
  <\??\F:\NTACCESS.sys><N/A>
[NVIDIA nForce Networking Controller Driver / NVENETFD]
  <System32\DRIVERS\NVENETFD.sys><NVIDIA Corporation>
[NVIDIA Network Bus Enumerator / nvnetbus]
  <System32\DRIVERS\nvnetbus.sys><NVIDIA Corporation>
[oreans32 / oreans32]
  <\??\C:\WINDOWS\system32\drivers\oreans32.sys><N/A>
[Direct Parallel Link Driver / Ptilink]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Secdrv / Secdrv]
  <System32\DRIVERS\secdrv.sys><N/A>
[SetupNTGLM7X / SetupNTGLM7X]
  <\??\F:\NTGLM7X.sys><N/A>
[si3112 / si3112]
  <C:\WINDOWS\SYSTEM32\DRIVERS\si3112.SYS><Silicon Image, Inc.>
[si3112r / si3112r]
  <C:\WINDOWS\SYSTEM32\DRIVERS\si3112r.SYS><Silicon Image, Inc.>
[si3114 / si3114]
  <C:\WINDOWS\SYSTEM32\DRIVERS\si3114.SYS><Silicon Image, Inc.>
[si3114r / si3114r]
  <C:\WINDOWS\SYSTEM32\DRIVERS\si3114r.SYS><Silicon Image, Inc>
[si3124 / si3124]
  <C:\WINDOWS\SYSTEM32\DRIVERS\si3124.SYS><Silicon Image, Inc.>
[si3124r / si3124r]
  <C:\WINDOWS\SYSTEM32\DRIVERS\si3124r.SYS><Silicon Image, Inc>

==================================
绿光绿光 - 2006-12-18 20:00:00
浏览器加载项
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_004.dll, Thunder Networking Technologies,LTD>
[Google Toolbar Helper]
  {AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[启动迅雷5]
  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <C:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[photo_uploader Control]
  {A984ED9F-E8DA-44E5-BC18-C14B9ABEF79D} <C:\WINDOWS\DOWNLO~1\PHOTO_~1.OCX, N/A>
[&使用迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>
[上传到QQ网络硬盘]
  <D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[导出到 Microsoft Excel(&x)]
  <res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 624][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 688][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 720][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
    [C:\WINDOWS\system32\LogUser.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4116]
[PID: 764][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 776][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 944][C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe]  [Faronics Corporation, 5,70,220,1426]
[PID: 976][C:\WINDOWS\System32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4116]
    [C:\WINDOWS\System32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2497]
[PID: 1016][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1168][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1356][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4116]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2497]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
[PID: 1448][C:\WINDOWS\Explorer.exe]  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\WINDOWS\Dll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_004.dll]  [Thunder Networking Technologies,LTD, 5, 0, 0, 3]
[PID: 1548][C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe]  [Faronics Corporation, 5,70,220,1426]
[PID: 1608][C:\WINDOWS\rundl132.exe]  [, 1.0.0.0]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 1664][C:\Program Files\Richtech\GxpClient\CltSrv.exe]  [N/A, N/A]
    [C:\Program Files\Richtech\GxpClient\CRYPT.DLL]  [Senselock, 2, 2, 0, 1]
[PID: 1876][C:\WINDOWS\System32\Clsmn.exe]  [, 16.3.12.598]
    [C:\WINDOWS\System32\RegCode.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 1888][C:\WINDOWS\Intel\rundll32.exe]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
[PID: 1900][C:\WINDOWS\down\rundll32.exe]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 1996][C:\Program Files\Microsoft\svhost32.exe]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 396][C:\WINDOWS\Download\svhost32.exe]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 544][C:\WINDOWS\Download\svhost32.exe]  [N/A, N/A]
[PID: 1080][C:\WINDOWS\System32\Internat.exe]  [Microsoft Corporation, 5.00.2920.0000]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 1440][C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5746\GoogleToolbarNotifier.exe]  [Google Inc., 1, 2, 908, 5746]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5746\res_zh-CN.dll]  [Google Inc., 1, 2, 908, 5746]
    [C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5746\swg.dll]  [Google Inc., 1, 2, 908, 5746]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 236][C:\WINDOWS\System32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
[PID: 1964][C:\WINDOWS\System32\cmd.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1240][C:\WINDOWS\Logo1_.exe]  [N/A, N/A]
[PID: 176][C:\WINDOWS\System32\conime.exe]  [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 1424][E:\魔兽世界\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]
[PID: 1604][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2800.1106 (xpsp1.020828-1920)]
    [C:\WINDOWS\System32\jvmlts.dll]  [N/A, N/A]
    [c:\program files\google\googletoolbar1.dll]  [Google Inc., 4, 0, 1019, 5266]
    [C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_004.dll]  [Thunder Networking Technologies,LTD, 5, 0, 0, 3]
    [C:\WINDOWS\System32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\rxdll.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\ztdll.dll]  [N/A, N/A]

==================================
绿光绿光 - 2006-12-18 20:00:00
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost
127.0.0.1  localhost
127.0.0.1      localhost
水树雨下 - 2006-12-18 20:05:00
又一个中威金的mizuki.ys168.com下载威金专杀,先更新再杀
建议版主把那个威金贴再次置顶,这几天威金又爆发了
红夜鬼1 - 2006-12-18 20:11:00
毒窝,汗,自己也给毒病倒了

C:\WINDOWS\System32\jvmlts.exe
参考
http://forum.ikaka.com/topic.asp?board=28&artid=8208573
UFOBOBO - 2006-12-18 20:12:00
引用:
【水树雨下的贴子】又一个中威金的mizuki.ys168.com下载威金专杀,先更新再杀
建议版主把那个威金贴再次置顶,这几天威金又爆发了
………………

肯定又是变种了 还是怎么的
唉 希望瑞星能解决掉啊
简简单单23 - 2006-12-18 20:50:00
晕4  VIKING怎么又出来了啊  去下农夫的专杀
1
查看完整版本: 怎么游戏图标变的不正常,是不是中毒了啊,有LOG
© 2000 - 2026 Rising Corp. Ltd.