TRẠM CẤP CỨU: CẢNH BÁO ! (hết tầng 1) - Còn Giải đáp cuối cùng cho bạn DavidCoperfield

Nhà tôi mới lắp Vnn1269 khi dùng Yahoo Mess bản 6.0 thỉng thoảng nó bị đơ và không chát được nữa là sao vậy? Ai có phần mềm nào hay chương trình chống Virut cho Yahoo Messenger ko
Scan type: Auto-Protect Scan
Event: Threat Found!
Threat: Download.Trojan
File: C:System Volume Information\_restore{9AF8F285-2D15-43BD-88BD-A0F8276F0743}RP15A0000324.pif
Location: C:System Volume Information\_restore{9AF8F285-2D15-43BD-88BD-A0F8276F0743}RP15
Computer: SERVERNET
User: server net
Action taken: Clean failed : Quarantine failed : Delete succeeded : Access denied
Date found: Monday, November 01, 2004 12:59:13 PM
Tôi đã dùng Bkav mới nhất quét nó báo như vậy ====>>>Symaster Clinet Fillware
Ad-aware.6.Pro.Built.181 <=== Khi dùng con này quét nó báo có 3 con Đây là Show list đây
Lavasoft Ad-aware Professional Build 6.181
Logfile created on :Monday, November 01, 2004 2:17:41 PM
Using reference-file :1R200 12.07.2003
______________________________________________________
Reffile status:
=========================
Reference file loaded:
Reference Number : 1R200 12.07.2003
Internal build : 17
File location : Crogram FilesLavasoftAd-aware 6
eflist.ref
Total size : 432159 Bytes
Signature data size : 423356 Bytes
Reference data size : 8739 Bytes
Signatures total : 9938
Target categories : 10
Target families : 202
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium IV
Memory available:31 %
Total physical memory:122352 kb
Available physical memory:37620 kb
Total page file size:295008 kb
Available on page file:120416 kb
Total virtual memory:2097024 kb
Available virtual memory:2059880 kb
OS:
Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Move deleted files to recycle bin
Set : Safe mode (always request confirmation)
Set : Skip non executable files
Set : Skip files larger than 4096 KB
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file
11-1-2004 2:17:41 PM - Scan started. (Custom mode)
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : SystemRootSystem32 ThreadCreationTime : 11-1-2004 1:59:15 AM
BasePriority : Normal
#:2 [winlogon.exe]
FilePath : ??C:WINDOWSsystem32 ThreadCreationTime : 11-1-2004 1:59:19 AM
BasePriority : High
#:3 [services.exe]
FilePath : C:WINDOWSsystem32 ThreadCreationTime : 11-1-2004 1:59:20 AM
BasePriority : Normal
FileSize : 99 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Microsoft
Created on : 8/18/2001 12:00:00 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/18/2001 12:00:00 PM
#:4 [lsass.exe]
FilePath : C:WINDOWSsystem32 ThreadCreationTime : 11-1-2004 1:59:20 AM
BasePriority : Normal
FileSize : 11 KB
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
OriginalFilename : lsass.exe
ProductName : Microsoft
Created on : 8/28/2002 8:41:26 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/28/2002 8:41:26 PM
#:5 [svchost.exe]
FilePath : C:WINDOWSsystem32 ThreadCreationTime : 11-1-2004 1:59:21 AM
BasePriority : Normal
FileSize : 12 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft
Created on : 8/18/2001 12:00:00 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/18/2001 12:00:00 PM
#:6 [svchost.exe]
FilePath : C:WINDOWSSystem32 ThreadCreationTime : 11-1-2004 1:59:21 AM
BasePriority : Normal
FileSize : 12 KB
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft
Created on : 8/18/2001 12:00:00 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/18/2001 12:00:00 PM
#:7 [ccsetmgr.exe]
FilePath : Crogram FilesCommon FilesSymantec Shared ThreadCreationTime : 11-1-2004 1:59:26 AM
BasePriority : Normal
FileSize : 237 KB
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
OriginalFilename : ccSetMgr.exe
ProductName : Common Client
Created on : 2/29/2004 9:44:54 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 2/29/2004 9:44:54 AM
#:8 [explorer.exe]
FilePath : C:WINDOWS ThreadCreationTime : 11-1-2004 1:59:28 AM
BasePriority : Normal
FileSize : 980 KB
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft
Created on : 8/28/2002 8:41:24 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/28/2002 8:41:24 PM
#:9 [ccevtmgr.exe]
FilePath : Crogram FilesCommon FilesSymantec Shared ThreadCreationTime : 11-1-2004 1:59:29 AM
BasePriority : Normal
FileSize : 249 KB
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Common Client
Created on : 2/29/2004 9:44:48 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 2/29/2004 9:44:48 AM
#:10 [ccapp.exe]
FilePath : Crogram FilesCommon FilesSymantec Shared ThreadCreationTime : 11-1-2004 1:59:32 AM
BasePriority : Normal
FileSize : 65 KB
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 2/29/2004 9:44:46 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 2/29/2004 9:44:46 AM
#:11 [vptray.exe]
FilePath : CROGRA~1SYMANT~1SYMANT~2 ThreadCreationTime : 11-1-2004 1:59:33 AM
BasePriority : Normal
FileSize : 121 KB
FileVersion : 9.0.0.338
ProductVersion : 9.0.0.338
Copyright : Copyright 1991 - 2004 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus
ProductName : Symantec AntiVirus
Created on : 3/12/2004 8:18:32 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 3/12/2004 8:18:32 AM
#:12 [spoolsv.exe]
FilePath : C:WINDOWSsystem32 ThreadCreationTime : 11-1-2004 1:59:40 AM
BasePriority : Normal
FileSize : 50 KB
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
OriginalFilename : spoolsv.exe
ProductName : Microsoft
Created on : 8/18/2001 12:00:00 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/18/2001 12:00:00 PM
#:13 [ccproxy.exe]
FilePath : Crogram FilesCommon FilesSymantec Shared ThreadCreationTime : 11-1-2004 1:59:49 AM
BasePriority : Normal
FileSize : 285 KB
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Network Proxy Service
InternalName : ccProxy
OriginalFilename : ccProxy.exe
ProductName : Common Client
Created on : 2/29/2004 9:44:52 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 2/29/2004 9:44:52 AM
#:14 [defwatch.exe]
FilePath : Crogram FilesSymantec Client SecuritySymantec AntiVirus ThreadCreationTime : 11-1-2004 1:59:50 AM
BasePriority : Normal
FileSize : 29 KB
FileVersion : 9.0.0.338
ProductVersion : 9.0.0.338
Copyright : Copyright 1998 - 2004 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Virus Definition Daemon
InternalName : DefWatch
OriginalFilename : DefWatch.exe
ProductName : Symantec AntiVirus
Created on : 3/12/2004 8:17:10 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 3/12/2004 8:17:10 AM
#:15 [sndsrvc.exe]
FilePath : Crogram FilesCommon FilesSymantec Shared ThreadCreationTime : 11-1-2004 1:59:52 AM
BasePriority : Normal
FileSize : 189 KB
FileVersion : 5.3.0.46
ProductVersion : 5.3
Copyright : Copyright 2002, 2003 Symantec Corporation
CompanyName : Symantec Corporation
FileDescription : Network Driver Service
InternalName : SndSrvc
OriginalFilename : SndSrvc.exe
ProductName : Symantec Security Drivers
Created on : 3/11/2004 7:58:32 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 3/11/2004 7:58:32 AM
#:16 [rtvscan.exe]
FilePath : Crogram FilesSymantec Client SecuritySymantec AntiVirus ThreadCreationTime : 11-1-2004 1:59:54 AM
BasePriority : Normal
FileSize : 1193 KB
FileVersion : 9.0.0.338
ProductVersion : 9.0.0.338
Copyright : Copyright 1991 - 2004 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus
ProductName : Symantec AntiVirus
Created on : 3/12/2004 8:17:46 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 3/12/2004 8:17:46 AM
#:17 [symsport.exe]
FilePath : Crogram FilesSymantec Client SecuritySymantec Client Firewall ThreadCreationTime : 11-1-2004 2:00:01 AM
BasePriority : Normal
FileSize : 217 KB
FileVersion : 7.1.0.98
ProductVersion : 7.1
Copyright : Copyright (c) 2004 Symantec Corporation
CompanyName : Symantec Corporation
FileDescription : SymSPort.exe
ProductName : Symantec Client Firewall
Created on : 3/5/2004 5:08:46 AM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 3/5/2004 5:08:46 AM
#:18 [iexplore.exe]
FilePath : Crogram FilesInternet Explorer ThreadCreationTime : 11-1-2004 6:57:26 AM
BasePriority : Normal
FileSize : 89 KB
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Microsoft
Created on : 10/31/2004 3:08:41 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 8/29/2002 3:41:26 AM
#:19 [ypager.exe]
FilePath : Crogram FilesYahoo!Messenger ThreadCreationTime : 11-1-2004 7:04:52 AM
BasePriority : Normal
FileSize : 2440 KB
Created on : 10/31/2004 4:00:42 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 5/21/2004 5:49:52 AM
#:20 [ad-aware.exe]
FilePath : Crogram FilesLavasoftAd-aware 6 ThreadCreationTime : 11-1-2004 7:16:48 AM
BasePriority : Normal
FileSize : 724 KB
FileVersion : 6.0.1.183
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 10/31/2004 4:00:04 PM
Last accessed : 10/31/2004 5:00:00 PM
Last modified : 7/12/2003 3:01:58 PM
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Cydoor Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : softwarecydoor
Cydoor Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SoftwareCydoor
Cydoor Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : softwarecydoor services
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 3
Objects found so far: 3
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 3
Deep scanning and examining files (C
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for C:¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 3
Scanning Hosts file(C:WINDOWSSystem32driversetchosts)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Hosts file scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
1 entries scanned.
New objects :0
Objects found so far: 3
Performing con***ional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Con***ional scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 3
2:18:36 PM Scan complete
Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:00:54:859
Objects scanned :28709
Objects identified :3
Objects ignored :0
New objects :3

To boy_galang812003:
Bạn tắt system restore rồi khởi động vào safe mode và quét bằng ad-aware. Chắc là sẽ được.
Bạn nên dùng Ad-aware SE, nó có khả năng nhớ các virus/file đã detect được và diệt trong lần khởi động sau. Bạn nên làm ngay điều đó nếu được hỏi.

To boy_galang812003:
Bạn tắt system restore rồi khởi động vào safe mode và quét bằng ad-aware. Chắc là sẽ được.
Bạn nên dùng Ad-aware SE, nó có khả năng nhớ các virus/file đã detect được và diệt trong lần khởi động sau. Bạn nên làm ngay điều đó nếu được hỏi.

Đã Cài lại Win và dùng kiểu kia để làm nhưng chỉ vào được Internet còn Yahoo Messenger chỉ có máy được máy ko
Dùng cả phần mềm Truy tìm Trojan nữa

<====== Nó báo như thế này là sao

Đã Cài lại Win và dùng kiểu kia để làm nhưng chỉ vào được Internet còn Yahoo Messenger chỉ có máy được máy ko
Dùng cả phần mềm Truy tìm Trojan nữa

<====== Nó báo như thế này là sao

Đây là hình mình chụp lên mình cũng nghi do nhiễm Virut mà các bạn chú ý nhé có cả Tên những loại phần mềm diệt Virut rồi đấy nhưng Ym thì có máy vào được máy ko vào được và nó là như Hình mình đưa lên

Đây là hình mình chụp lên mình cũng nghi do nhiễm Virut mà các bạn chú ý nhé có cả Tên những loại phần mềm diệt Virut rồi đấy nhưng Ym thì có máy vào được máy ko vào được và nó là như Hình mình đưa lên

Các anh ơi, máy của em mấy hôm nay toàn bị dính virus thôi, vừa giờ nó bảo là tìm được con này:
Scan type: Realtime Protection ScanrnEvent: Virus Found!rnVirus name: W32.Explet.A@mmrnFile: C:WINDOWSsystem32supu.exernLocation: QuarantinernComputer: VIETrnUser: SYSTEMrnAction taken: Clean failed : Quarantine succeeded : Access denied
Em chẳng biết nó có gây tác hại gì không nữa. Anh nào biết thì chỉ cho bé với, nhé!

Các anh ơi, máy của em mấy hôm nay toàn bị dính virus thôi, vừa giờ nó bảo là tìm được con này:
Scan type: Realtime Protection ScanrnEvent: Virus Found!rnVirus name: W32.Explet.A@mmrnFile: C:WINDOWSsystem32supu.exernLocation: QuarantinernComputer: VIETrnUser: SYSTEMrnAction taken: Clean failed : Quarantine succeeded : Access denied
Em chẳng biết nó có gây tác hại gì không nữa. Anh nào biết thì chỉ cho bé với, nhé!

Tôi đaf nhi?n rất rof nhưfng chương tri?nh diệt virus cu?a bạn, nhưng có ve? như hiện tượng này không liên quan gì đến virus mà lại có nguồn gốc từ card mạng của bạn. Bạn thử thay card mạng khác vào rồi thử lại xem. Đó là những gì mà topic dưới đây gợi ý (vì không thấy nạn nhân phản hồi nên không biết kết quả thế nào):
http://www.chat-help.co.uk/forums/lofiversion/index.php/t1623.html