Board logo

标题: 准备系统了,往死里冲! [打印本页]
作者: lenovo88     时间: 2008-6-16 00:04    标题: 准备系统了,往死里冲!

还是觉得微软工程师的话有用:“不行,就重装呗”。


时间        处理结果        木马名称        木马进程名        木马文件创建者
2008-06-15 23:48:55        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:48:20        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:47:20        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:21:27        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:20:44        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:20:21        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:20:09        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:19:55        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:19:42        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:19:31        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:18:50        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:18:38        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:16:47        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:16:28        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:16:15        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:15:40        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:15:21        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:15:01        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:14:43        处理成功        未知木马        C:\WINDOWS\SYSTEM32\UPDATE.EXE        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE
2008-06-15 23:14:43        处理成功        未知木马        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-11 21:43:49        用户取消,并永远有效        未知后门程序        C:\WINDOWS\INSTALLER\MSIBE.TMP        C:\WINDOWS\INSTALLER\85EA23.MSI
作者: lenovo88     时间: 2008-6-16 00:07
已经在有害程序隔离区里上报了。
作者: Legend     时间: 2008-6-16 00:08
感谢楼主的反馈,请您ORZ.EXE程序连同技术支持信息,(微点主界面-->辅助功能-->生成技术支持信息)发送到support@micropoint.com.cn邮箱我们将做进一步的测试分析,请附上本贴链接,以便我们进行深入测试,跟踪解决您的问题。

[ Last edited by Legend on 2008-6-16 at 00:09 ]
作者: lenovo88     时间: 2008-6-16 00:13
时间        处理结果        蠕虫名称        蠕虫进程名        蠕虫文件创建者
2008-06-16 00:12:30        处理成功        Worm.Win32.Downloader.adh        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-16 00:12:30        延时删除        Worm.Win32.Downloader.adh        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\M8DFFE17\F[1].EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:58:36        处理成功        Worm.Win32.Downloader.adh        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:58:34        延时删除        Worm.Win32.Downloader.adh        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\7PB013BS\F[1].EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:53:58        处理成功        Worm.Win32.Downloader.adh        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\ORZ.EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
2008-06-15 23:53:58        延时删除        Worm.Win32.Downloader.adh        C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\WPINS5YF\F[1].EXE        C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
作者: lenovo88     时间: 2008-6-16 00:15
ORZ.EXE程序.生成不啊。说文件错误。
咦?我输入法图标怎么不见了呢?

[ Last edited by lenovo88 on 2008-6-16 at 00:35 ]
附件 1: N-1.jpg (2008-6-16 00:35, 20.17 K,下载次数: 90)






欢迎光临 微点交流论坛 (http://bbs.micropoint.com.cn/) bbs.micropoint.com.cn