瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 中了VBS病毒
ShinBug - 2008-8-21 0:44:00
中了病毒,杀毒软件报了,但是杀了以后说已更名不能删除,后来查毒也没再查出来,帮忙看看还在不在

下面是报告,谢谢

用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727)

附件: SREngLOG.log
ShinBug - 2008-8-21 1:27:00
3  2008-08-20  22:16:55+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\UCU7U62O\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


4  2008-08-20  22:16:56+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\900EHALU\HAPPY2[1].HTM.

感染: JS/Psyme.BT


5  2008-08-20  22:16:56+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\QOFCF3DA\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


6  2008-08-20  22:16:57+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\QOFCF3DA\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


7  2008-08-20  22:16:57+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\900EHALU\HAPPY2[1].HTM.

感染: JS/Psyme.BT


8  2008-08-20  22:16:58+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\RHYGR50V\HAPPY2[1].HTM.

感染: JS/Psyme.BT


9  2008-08-20  22:16:58+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\RHYGR50V\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


10  2008-08-20  22:16:58+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


11  2008-08-20  22:16:58+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\HAPPY2[1].HTM.

感染: JS/Psyme.BT


12  2008-08-20  22:16:58+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\NJRKDBIT\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


13  2008-08-20  22:16:59+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


14  2008-08-20  22:17:00+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\HAPPY2[1].HTM.

感染: JS/Psyme.BT


15  2008-08-20  22:17:00+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\NJRKDBIT\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


16  2008-08-20  22:17:00+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


17  2008-08-20  22:17:00+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\HAPPY2[1].HTM.

感染: JS/Psyme.BT


18  2008-08-20  22:17:00+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\NJRKDBIT\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


19  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\MV7HX9I5\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


20  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


21  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY2[1].HTM.

感染: JS/Psyme.BT


22  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


23  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY1[2].HTM.

感染: VBS/Psyme.DI


24  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY2[2].HTM.

感染: JS/Psyme.BT


25  2008-08-20  22:17:06+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\322U1ABN\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


26  2008-08-20  22:17:07+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY1[2].HTM.

感染: VBS/Psyme.DI


27  2008-08-20  22:17:07+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\2R9111SD\HAPPY2[2].HTM.

感染: JS/Psyme.BT


28  2008-08-20  22:17:07+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\322U1ABN\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


29  2008-08-20  22:17:08+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\71B4TJKW\HAPPY1[1].HTM.

感染: VBS/Psyme.DI


30  2008-08-20  22:17:08+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\71B4TJKW\HAPPY2[1].HTM.

感染: Trojan-Downloader.JS.Agent.bw


31  2008-08-20  22:17:09+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\71B4TJKW\HAPPY3[1].HTM.

感染: VBS/Psyme.ES


32  2008-08-20  22:17:09+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\71B4TJKW\HAPPY2[1].HTM.

感染: JS/Psyme.BT


33  2008-08-20  22:28:51+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\F[3].HTM.

感染: could be a mass-mailing worm


34  2008-08-20  22:31:26+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\DT17XJL0\F[3].HTM.

感染: could be a mass-mailing worm


35  2008-08-20  22:31:26+08:00  4b0a7cb9cba840d  4B0A7CB9CBA840D\Administrator  F-Secure Anti-Virus  1.3.6.1.4.1.2213.11.1.12
发现恶意代码在文件 C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\LOCAL SETTINGS\TEMPORARY INTERNET FILES\CONTENT.IE5\MV7HX9I5\F[2].HTM.

感染: could be a mass-mailing worm


找到杀毒软件的日志了,问题是怎么杀
玩家国度 - 2008-8-21 9:15:00
日志没有病毒痕迹
networkedition - 2008-8-21 10:00:00
清空临时文件
happysunday2003 - 2008-8-21 13:26:00
可能是浏览什么网站造成的。
1
查看完整版本: 中了VBS病毒
© 2000 - 2026 Rising Corp. Ltd.