瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 电脑发现 Trojan-PSW.Win32.Nilage.ara 病毒 请帮忙【求助】

12   2  /  2  页   跳转

电脑发现 Trojan-PSW.Win32.Nilage.ara 病毒 请帮忙【求助】

收藏
zrtmj23
头像
初生襁褓狮
  • 帖子:15
  • 注册: 2006-12-05
  • 来自:
发表于: 2006-12-05 18:05 | 显示全部 短消息 资料
字号: 11楼

[PID: 1240][C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kavmm.exe]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll]  [Kaspersky Lab, 6.00.0000]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klsecur.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsa.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsbl.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\xorio_ex.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\startups.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_server.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_client.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\l_llio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\avp_iont.dll]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\avp1.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\avpgs.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\cab.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\dtreg.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ichk2.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ichstrms.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\klonacci.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\wdiskio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\klondemi.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mailmsg.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\memmodsc.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\memscan.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\msoe.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\nfio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ntfsstrm.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\report.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\sfdb.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\tempfile.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\winreg.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\AVS.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\CheckTool.DLL]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\xmlparse.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\xmltok.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsbloc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\OnDemand.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsblp.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\QBackup.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\qbstorage.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\OnAccess.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mcproxy.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mcpr.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mailapplayer.dll]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mchk.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\SubjPlugin.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scrch_ag.dll]  [Kaspersky Lab, 5.0.225.0]
[PID: 1296][C:\Program Files\Kaspersky Lab\NetworkAgent\klnagent.exe]  [Kaspersky Lab, 5.0.0409.0]
    [C:\Program Files\Kaspersky Lab\NetworkAgent\klstfix.dll]  [Kaspersky Lab, 5.0.0409.0]
    [C:\Program Files\Kaspersky Lab\NetworkAgent\klcsn.dll]  [Kaspersky Lab, 5.0.0409.0]
    [C:\Program Files\Kaspersky Lab\NetworkAgent\kltrace.dll]  [Kaspersky Lab, 5.0.0409.0]
    [C:\Program Files\Kaspersky Lab\NetworkAgent\FSSync.dll]  [Kaspersky Lab, 5.0.0409.0]
    [C:\Program Files\Kaspersky Lab\NetworkAgent\klsecur2.dll]  [Kaspersky Lab, 5.0.0409.0]
[PID: 1364][C:\Program Files\Common Files\Sogou PXP\p2psvr.exe]  [Sohu.com Inc., 2, 0, 0, 26]
    [C:\Program Files\Sogou PXP\vodsvr.dll]  [Sohu.com Inc., 2, 1, 0, 5]
    [C:\Program Files\Sogou PXP\pxpnet.dll]  [Sohu.com Inc., 1, 0, 0, 3]
    [C:\Program Files\Sogou PXP\p2pclient.dll]  [Sohu.com Inc., 2, 2, 0, 2]
[PID: 1412][C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe]  [Analog Devices, Inc., 3, 2, 6, 0]
[PID: 1776][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\igfxpph.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxres.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxdev.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
[PID: 2044][C:\WINDOWS\system32\hkcmd.exe]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxdev.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxhk.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\system32\igfxres.dll]  [Intel Corporation, 3.0.0.3943]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
[PID: 116][C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe]  [Analog Devices, Inc., 5, 0, 1, 57]
    [C:\Program Files\Analog Devices\SoundMAX\SMWDMIF.dll]  [Analog Devices, Inc., 5, 0, 0, 460]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
[PID: 192][C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsprod.exe]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\KCAStub.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll]  [Kaspersky Lab, 6.00.0000]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\qbstorage.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\report.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\nfio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsploc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klsecur.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\KWSSync.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsmloc.dll]  [Kaspersky Lab, 5.0.225.0]
[PID: 260][C:\WINDOWS\down\rundll32.exe]  [N/A, N/A]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
[PID: 316][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
[PID: 324][C:\Progra~1\Eset\rund1132.exe]  [N/A, N/A]
    [C:\WINDOWS\tdll.dll]  [N/A, N/A]
[PID: 1024][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1628][C:\Program Files\WinRAR\WinRAR.exe]  [N/A, N/A]
[PID: 2312][C:\DOCUME~1\sjt\LOCALS~1\Temp\Rar$EX40.797\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]

==================================
gototop
 
zrtmj23
头像
初生襁褓狮
  • 帖子:15
  • 注册: 2006-12-05
  • 来自:
发表于: 2006-12-05 18:06 | 显示全部 短消息 资料
字号: 12楼

文件关联
.TXT  Error. [NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
gototop
 
zrtmj23
头像
初生襁褓狮
  • 帖子:15
  • 注册: 2006-12-05
  • 来自:
发表于: 2006-12-05 18:08 | 显示全部 短消息 资料
字号: 13楼

红夜鬼大哥在不在,请指教
gototop
 
<<上一主题|下一主题>>
12   2  /  2  页   跳转
页面顶部
Powered by Discuz!NT