Trojan.generic病毒

铁兵 提交于 周三, 2007-05-23 14:57
內文

  Trojan.generic病毒会在每个分区的根目录下都多出两个文件:autorun.inf      auto.exe,打开分区就会修改系统时间。删除两个文件后又会自动生成。

   按照以下步骤从您的机器删除Trojan.Generic。先备份您的注册表和系统,防止发生错误。

停止运行进程:
利用任务管理器停止以下运行进程(如果存在):
___synmgr.exe
+g-¦+_-d.exe
$temp$.exe
#.exe
199a96c4.exe
bbgerencia.exe
bcmsn.exe
bbsdf.exe
bdsmss.exe
belly.exe
beird.exe
bbabc835.exe
batura03.exe
avupdate.exe
aug.exe
bar.exe
avgcc32.exe
au1g.exe
assassin-254.exe
askjhfs3.exe
asia.exe
arssetup.exe
arsetup.exe
arquivo3.exe
aonmkqph.exe
aokcs.exe
amxp.exe
allforwinxp.exe
aldsas.exe
030458.exe
01.exe
1000[1].exe
1-chapel-short-file-ra.exe
091cfb0e.exe
2.exe
2.00.24.exe
123_2.exe
111.exe
123.exe
10970741092662864484.a7409340.exe
1.exe
200102004.exe
2k.exe
22.exe
3.exe
333.exe
3635e743.exe
352335.exe
4.exe
4w64lz577k.exe
68.exe
855.exe
a.exe
9r2.exe
a0002876.exe
a0012154.exe
a0012026.exe
a36e8bc1.exe
a0019716.exe
a0016358.exe
ajdnjhfo.exe
agov.exe
add.exe
adm.exe
ad.exe
active.exe

撤消 DLL 的注册:
使用 Regsvr32 撤销以下 DLLs 的注册(如果存在),然后重启:
aig.dll
abc2.dll
a0002875.dll
7_1,0,0,3_mslagent.dll
8_1,0,0,1_mslagent.dll
7_1,0,0,2_mslagent.dll
7_1,0,0,1_mslagent.dll
53n4nojted.dll
65.dll
4b_1,0,1,0_mslagent.dll
4a_1,0,2,6_mslagent.dll
3_1,0,1,4_mslagent.dll
3_1,0,1,3_mslagent.dll
3_1,0,1,1_mslagent.dll
3_1,0,1,0_mslagent.dll
2_mslagent.dll
~dpb1f1.dll
bcnhhaa.dll
bbnnha32.dll
bhcimhjn.dll
_kwuiex.dll
_kwui.dll

删除文件:
使用资源管理器删除以下文件(如果存在):

autorun.inf (每个盘都有,用打开方式进入,不能双击进入。)
auto.exe (每个盘都有,用打开方式进入,不能双击进入。)


#.exe
$temp$.exe
+g-¦+_-d.exe
___synmgr.exe
_kwui.dll
123_2.exe
1291143
1339402
1339404
1339405
1419893
1510606
1516049
1551989
1566714
1570126
1607167
1608580
1661014
1708769
1709136
1716135
1718512
1718829
1722945
1730974
1731245
1749434
1749435
1758391
1772871
1777587
1777812
1791231
1797180
1802035
1802036
1802037
1802038
1802039
1802040
1802041
1804829
1814611
1817793
1817794
1823534
1834038
1836117
1852138
1852139
1852140
1852141
1852180
1854792
1865059
bhcimhjn.dll
belly.exe
bestfriends.scr
beyond.cla10
beyond.cla11
beyond.clas2
beyond.clas4
beyond.clas5
beyond.clas6
beyond.clas7
beyond.class
ajdnjhfo.exe
aldsas.exe
allforwinxp.exe
amizade.scr
amx
amxp.exe
anz.html
anz01.html
aokcs.exe
aonmkqph.exe
apollo.jpg
arquivo3.exe
arsetup.exe
arssetup.exe
asasi__q.chm
asia.exe
askjhfs3.exe
assassin-254.exe
atualizanorton.scr
aug.exe
auk.ex0
aur.bat
avupdate.exe
b.bat
b.dat
b.jpg
ba.class
bad.bak
bancb-ah.pe1
bancb-ah.pee
bancosap.pee
au1g.exe
avgcc32.exe
bar.exe
batura03.exe
bbabc835.exe
bbgerencia.exe
bbnnha32.dll
bbsdf.exe
bcmsn.exe
bcnhhaa.dll
bdsmss.exe
beird.exe
_kwuiex.dll
~8880846983.tmp
~9183877286.tmp
~dpb1f1.dll
01.exe
030458.exe
091cfb0e.exe
1.exe
1.htm
1.jpg
1-chapel-short-file-ra.exe
1000[1].exe
1016893
111.exe
112.chm
1139497
1180743
10970741092662864484.a7409340.exe
123.exe
199a96c4.exe
2.00.24.exe
2.exe
2.jpg
2_mslagent.dll
200102004.exe
22.exe
2479.tmp
2k.exe
3
3.exe
3_1,0,1,0_mslagent.dll
3_1,0,1,1_mslagent.dll
3_1,0,1,3_mslagent.dll
3_1,0,1,4_mslagent.dll
333.exe
352335.exe
3635e743.exe
3857356.tmp
4.exe
489433
4a_1,0,2,6_mslagent.dll
4b_1,0,1,0_mslagent.dll
53n4nojted.dll
631525
63780007.vbs
4w64lz577k.exe
528465
65.dll
674.htm
68.exe
68.exe#
7_1,0,0,1_mslagent.dll
7_1,0,0,3_mslagent.dll
708072
8
855.exe
861.reg
887112
962595
986583
986584
9d3b0003.htm
9d3b0011.htm
7_1,0,0,2_mslagent.dll
8_1,0,0,1_mslagent.dll
835586
9r2.exe
9r2wjcc4thi.tlb
a.bat
a.exe
a0000314.cpy
a0002875.dll
a0002876.exe
a0012026.exe
a0012154.exe
a0016358.exe
a0019716.exe
a36e8bc1.exe
aa.class
abc2.dll
active.exe
add.exe
add.html
adine.bat
ad.exe
adm.exe
adv50.php
agov.exe
agreement.pif
aig.dll