微点交流论坛

标题: Trojan.JS.Wonka.a是什么 [打印本页]

作者: hh408408 时间: 2009-12-28 10:14 标题: Trojan.JS.Wonka.a是什么

2009/12/28 10:03:55 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6DS3IPM5\CAH861TJ.CZ2
2009/12/28 10:03:46 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6DS3IPM5\CAB20VND.CZ2>>CAB20VND
2009/12/28 10:03:13 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\Q7IV2HIF\CABB9SUP.CZ2
2009/12/28 10:03:10 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\Q7IV2HIF\CATK0Z5D.CZ2>>CATK0Z5D
2009/12/28 10:00:31 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\SXCRSZG3\CANIILZV.CZ2
2009/12/28 10:00:30 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\SXCRSZG3\CAHCCFTP.CZ2>>CAHCCFTP
2009/12/28 09:59:47 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\O9MBS9EF\CAUV85YR.FB1
2009/12/28 09:59:46 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\O9MBS9EF\CADKSJ5H.FB1>>CADKSJ5H
2009/12/28 09:51:58 Trojan.JS.Wonka.a 对象未找到 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\Q7IV2HIF\CAXOUH9Z>>[Content]
2009/12/28 09:51:58 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\O9MBS9EF\CAXOOB9T
2009/12/26 15:12:45 Trojan.Win32.Genetik.gi 删除成功 E:\恶意软件\RogueCleaner.zip>>RscCommon.dll
2009/12/26 15:12:13 Trojan-Clicker.JS.Iframe.b 删除成功 E:\qq\Users\4143768\Image\UHZP4`VU11GAI)CCRH1I5BK.gif
2009/12/26 15:12:13 Backdoor.Win32.Freeweb.a 删除成功 C:\WINDOWS\system32\TP4HOOK.dll
2009/12/26 15:12:39 Backdoor.Win32.Agent.djy 删除成功 C:\WINDOWS\Installer\13765.msi>>Binary.Z008Z>>minint\system32\svchost.exe
2009/12/26 15:12:39 Trojan.Win32.Genetik.bnb 删除成功 C:\WINDOWS\Installer\13765.msi>>Binary.Z008Z>>minint\system32\spoolsv.exe
2009/12/26 15:12:13 Worm.Win32.Agent.dej 删除成功 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
2009/12/26 21:12:57 Trojan.JS.Wonka.a 删除成功 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\FYQIJKCD\SHOW4[1]>>[Content]
2009/12/26 21:12:47 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\4NEPEDSN\SHOW4[1]
2009/12/26 21:12:43 Trojan-Downloader.Win32.Adload.byw 对象未找到 E:\SYSTEM VOLUME INFORMATION\_RESTORE{98074363-621C-4844-BC53-677F19C9B093}\RP180\A0018436.EXE
2009/12/26 21:12:43 Trojan-Downloader.Win32.Adload.byw 对象未找到 E:\SYSTEM VOLUME INFORMATION\_RESTORE{98074363-621C-4844-BC53-677F19C9B093}\RP145\A0012461.EXE
2009/12/26 21:04:12 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6U91HA3Q\CAOH2ZOL
2009/12/26 21:03:29 Trojan.JS.Wonka.a 对象未找到 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\FYQIJKCD\CAC1GHW7>>[Content]
2009/12/26 21:03:28 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\FYQIJKCD\CAI7MN2D
2009/12/26 20:27:24 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\4NEPEDSN\CACT8NGV
2009/12/26 20:27:23 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\4NEPEDSN\CAC1GLWR>>[Content]
2009/12/26 20:26:35 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6U91HA3Q\CAN6KVJP
2009/12/26 20:26:34 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6U91HA3Q\CAH0EPDJ>>[Content]
2009/12/26 20:23:52 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6U91HA3Q\CAIBY76D.CZ2
2009/12/26 20:23:50 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\6U91HA3Q\CAC5S107.CZ2>>CAC5S107
2009/12/26 20:20:49 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\4NEPEDSN\CAFUA57B.CZ2
2009/12/26 20:20:47 Trojan.JS.Wonka.a 删除失败 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\4NEPEDSN\CAYZCBTI.CZ2>>CAYZCBTI
2009/12/26 20:19:24 Trojan.JS.Wonka.a 对象未找到 C:\DOCUME~1\HH408\LOCALS~1\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\FYQIJKCD\CA3I83V5>>[Content]
2009/12/26 20:19:24 Trojan.JS.Wonka.a 删除成功 C:\DOCUMENTS AND SETTINGS\HH408\LOCAL SETTINGS\TEMP\TEMPORARY INTERNET FILES\CONTENT.IE5\4NEPEDSN\CA14AHHV

老是杀不掉啊，是什么东西啊

作者: bodoo 时间: 2009-12-28 10:25
那是电脑上网后在电脑缓存文件中留下的一个文件，现在微点官方正在分析

作者: LHQ0332 时间: 2009-12-28 10:32
Trojan是木马

作者: Legend 时间: 2009-12-28 10:39
感谢楼主的反馈。

请将报警文件导出（微点杀软主界面----隔离区----另存）发送到mpav@micropoint.com.cn 发送时请附带本贴链接，并请发送后，将发件邮箱以论坛短消息的形式发送给我们，以便我们后续跟踪您的问题。您的问题，我们将尽快分析后给您答复。

作者: 我心激扬 时间: 2009-12-30 10:15
未收到楼主反馈的邮件，建议您重新发送下相关邮件，随信请注明您的论坛id便于对您反馈的问题跟踪处理。

欢迎光临微点交流论坛 (http://bbs.micropoint.com.cn/)

bbs.micropoint.com.cn