|
||
|
New Member
加入日期: Mar 2005
文章: 6
|
救命阿~我中了PWSteal.Lineage~
我昨天上網找有關的相關資料~看一看他們的狀況都根我不太一樣~
想來這邊看看有沒有高手幫我解答 我中毒的檔是C:\WINDOWS\System32\linage.dll 網路上都寫著~開啟安全模式去掃毒 小妹也很想這樣做 不過我開啟安全模式都無法執行掃毒的動作 也就是無法打開防毒程式 請問這怎麼辦?我已經快要花轟了  |
|||||||
2005-05-13, 08:03 AM
#1
|
|
|
Senior Member
 
加入日期: Feb 2004 您的住址: 五指山下
文章: 1,073
|
引用:
抓這軟體SpySweeper去掃或是用CCleaner 下面還有一個辦法我是國外網站找的 This trojan steals the account information for the game called "Lineage II" from the victim's machine. There are several variants of the trojan. The description is a general guide. Newer variants require the latest DAT files for detection and cleaning. When run, it drops itself to the Windows system directory, typically :\WINDOWS\System32? It also drops the dll under the same directory. This dll is used for monitoring the keystrokes and the mouse movements. The dll is detected as "PWS-Lineage.dll". It also adds the registry entry under HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\ CurrentVersion\Run Then this trojan monitors the user's activity to logon the game called "Lineage II" and steals accounts information. It also sends the information to the author via http or smtp.
__________________
|
|||
|
2005-05-13, 09:39 AM
#2
|
|
|
Power Member
加入日期: Nov 2001 您的住址: Texas
文章: 660
|
我前幾天才中!
諾頓沒有用!pccillin線上掃毒沒用!Spybot也沒用! 把那個檔砍掉之後又出來!用這個吧!Ad-Aware SE Personal! 不過我的是在nsvc不過也是dll! 試試!我沒玩game也會中這種毒!真好笑!
__________________
When the Nazis came for the communists, I remained silent; I was not a communist. When they locked up the social democrats, I remained silent; I was not a social democrat. When they came for the trade unionists, I did not speak out; I was not a trade unionist. When they came for the Jews, I remained silent; I was not a Jew. When they came for me, there was no one left to speak out. Martin Niemöller (1892-1984) |
|
2005-05-13, 09:55 AM
#3
|
|
|
Golden Member
加入日期: Aug 2002
文章: 2,806
|
引用:
沒什麼好笑的啊! 這種木馬通常是入侵一些知名網站然後附在網站上的..... IE沒更新就連上去,大概就中了 |
|
|
2005-05-13, 11:38 AM
#4
|
|
|
*停權中*
加入日期: Mar 2003 您的住址: 樹林家樂福對面
文章: 1,652
|
 沒有用 無法解除,還有誰有好辦法 |
|
2005-05-14, 05:12 AM
#5
|
|
|
Power Member
加入日期: Nov 2001 您的住址: Texas
文章: 660
|
引用:
我記得那天是我電腦開著不動! 忽然去開即時通!該死的諾頓就警告了! 我還想!想偷就去偷!結果諾頓的警告就是停不了! 關掉也一樣!
__________________
When the Nazis came for the communists, I remained silent; I was not a communist. When they locked up the social democrats, I remained silent; I was not a social democrat. When they came for the trade unionists, I did not speak out; I was not a trade unionist. When they came for the Jews, I remained silent; I was not a Jew. When they came for me, there was no one left to speak out. Martin Niemöller (1892-1984) |
|
|
2005-05-14, 08:09 AM
#6
|
|
|
Basic Member
加入日期: Apr 2005
文章: 24
|
防毒軟體真的很重要,換卡巴斯基個人專業版試試看,
或者用KILLBOX這個專殺病毒檔的軟體 再不行可到這個討論串看看 http://www.ck101.com/forums/forumdisplay.php?fid=315 |
|
2005-05-14, 05:05 PM
#7
|
|
|
*停權中*
加入日期: Mar 2003 您的住址: 樹林家樂福對面
文章: 1,652
|
 已解除,但發現此目馬寄生於rundll32.exe檔中,就在除去病毒的同時也把rundll32.exe刪除了, 請使用sfc將檔案解回吧!  |
|
2005-05-14, 08:07 PM
#8
|
|
