网上找系统补丁，竟然是个随机8位数。

一派胡言

这个就是下下来的所谓的补丁，各位可双击运行测一下，看看产生什么。


















下面的就是我运行后产生的随机8位数和一些释放的文件，有相当一部分让江民的监控给杀了，这些是没杀的。







[ 本帖最后由 一派胡言 于 2007-7-7 09:51 编辑 ]

The EQs

Scan performed at: 2007-7-7 9:47:04
Scanning Log
NOD32 version 2383 (20070706) NT
Command line: C:\Documents and Settings\EQ2\桌面\Install\Install.exe
Operating memory - is OK

Date: 7.7.2007  Time: 09:47:10
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\Install\Install.exe
C:\Documents and Settings\EQ2\桌面\Install\Install.exe ?RAR ?skyepe.exe - a variant of Win32/Delf.CC worm - was a part of the deleted object
Number of scanned files: 179
Number of threats found: 1
Number of files cleaned: 1
Time of completion: 09:47:20 Total scanning time: 10 sec (00:00:10)

baidu9833

楼主原本是要下什么补丁的呀?

坐在墙头

不需要运行就可以看出是流氓，直接winRAR解压缩就行了
跟我昨天下载诛仙8的小说遇见的差不多的东西，不过还没有我那个东西多

[ 本帖最后由 坐在墙头 于 2007-7-7 09:54 编辑 ]

一派胡言

找最新的XP sp2的补丁。[:26:]

The EQs

Scan performed at: 2007-7-7 9:53:45
Scanning Log
NOD32 version 2383 (20070706) NT
Command line: C:\Documents and Settings\EQ2\桌面\4F249C9D
Operating memory - is OK
Date: 7.7.2007  Time: 09:53:50
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\4F249C9D\
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\16891.txt - Win32/Adware.WSearch application - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\2ae21.exe - Win32/Adware.WSearch application - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\4F249C9D.exe - a variant of Win32/Delf.CC worm
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl1.exe ?RAR ?yswm613.exe - Win32/PSW.Delf.NIJ trojan - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl1.exe ?RAR ?ysgj613.exe - Win32/PSW.OnLineGames.NBN trojan - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl1.exe ?RAR ?yswl613.exe - probably unknown NewHeur_PE virus [7] - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl1.exe ?RAR ?626rxys.exe - probably unknown NewHeur_PE virus [7] - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl1.exe ?RAR ?gf.exe - probably unknown NewHeur_PE virus [7] - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl2.exe ?RAR ?ad1309.exe ?NSIS ?cpush.dll - Win32/Adware.BHO.AV application - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl2.exe ?RAR ?bind_50437.exe - Win32/TrojanDownloader.QQHelper.NCO trojan - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl2.exe ?RAR ?boolan60.exe - Win32/TrojanDownloader.Adload.NEA trojan - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl2.exe ?RAR ?fc01.exe - probably a variant of Win32/PSW.QQShou.EP trojan - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\dl2.exe ?RAR ?dodolook379.exe ?NSIS ?1195.exe ?NSIS ?acpidisk.sys - a variant of Win32/Adware.Cinmus application - was a part of the deleted object
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\kulionwl.dll - probably a variant of Win32/PSW.Delf.NDI trojan
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\kulionwm.dll - Win32/PSW.Delf.NIJ trojan - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\ser.exe - Win32/Adware.WSearch application - quarantined - unable to clean - deleted
C:\Documents and Settings\EQ2\桌面\4F249C9D\4F249C9D\video.dll - Win32/PSW.OnLineGames.NBN trojan - quarantined - unable to clean - deleted
Number of scanned files: 41
Number of threats found: 17
Number of files cleaned: 9
Time of completion: 09:53:58 Total scanning time: 8 sec (00:00:08)
Notes:
[7] File is probably infected with an unknown virus.

baidu9833

直接用打补丁软件下不就可以了吗?  自己找多麻烦?

The EQs

偶都是用算号器。然后到微软官方下补丁。。。。

wangjay1980

detected: virus Heur.Trojan.Generic (modification)        File: C:\Documents and Settings\Owner\×ÀÃæ\Install.exe/UUSEE_dazhong1_Setup_72.exe//data0025//ASPack
detected: virus Worm.Win32.Delf.cc        File: C:\Documents and Settings\Owner\×ÀÃæ\Install.exe/skyepe.exe

wangjay1980

detected: Trojan program Trojan-PSW.Win32.Lmir.yw        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\video.dll
detected: Trojan program Trojan-Spy.Win32.Delf.uh        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\kulionwl.dll
detected: Trojan program Trojan-Spy.Win32.Delf.uh        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\kulionrx.dll
detected: Trojan program Trojan-Spy.Win32.Delf.uh        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\kulionwm.dll
detected: Trojan program Trojan-Spy.Win32.Delf.uh        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\dl1.exe/yswm613.exe//UPack
detected: Trojan program Trojan-PSW.Win32.Lmir.yw        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\dl1.exe/ysgj613.exe//UPack
detected: Trojan program Trojan-Spy.Win32.Delf.uh        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\dl1.exe/yswl613.exe//UPack
detected: Trojan program Trojan-Spy.Win32.Delf.uh        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\dl1.exe/626rxys.exe//UPack
detected: adware not-a-virus:AdWare.Win32.BHO.av        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\dl2.exe/ad1309.exe//stream//data0001
detected: Trojan program Trojan-PSW.Win32.QQPass.pf        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\dl2.exe/fc01.exe//UPack
detected: virus Worm.Win32.Delf.cc        File: C:\Documents and Settings\Owner\×ÀÃæ\4F249C9D\4F249C9D.exe