Encounter _ unixsys08.sys/Trojan-PSW.Win32.QQPass.cdw, Trojan-PSW.Win32.OnLineGames, etc. 2

Encounter _ unixsys08.sys/Trojan-PSW.Win32.QQPass.cdw, Trojan-PSW.Win32.OnLineGames, etc. 2
Original endurer 2008-07-02 1st
Download fileinfo and bat_do to the http://purpleendurer.ys168.com.
Use fileinfo to extract the information of the red files in the pe_xscan log. Use bat_do to package the backup, delete the files in a delayed manner, change the selected file name, and delete the files in a delayed manner.
Although there is a Kingsoft kis installed on the computer, the virus is still in, so I still download drweb cureit! To scan and kill viruses.
Download and install the Security Assistant of rising star, switch to [advanced functions]-> [plug-in management and uninstallation], and uninstall items O2, o21, and o24.
Switch to [advanced functions]-> [system startup Item Management]
Click [Application initialization dynamic Connection Library] on the left, find the item corresponding to the file name marked in red in o20 on the right, right-click, and choose delete from the pop-up menu.
Click [service items] and [Driver] on the left, find the corresponding items in the o23 group, right-click, and choose delete from the pop-up menu.
Click [Application hijacking items] on the left, find the O26 items on the right, right-click, and choose delete from the pop-up menu.
Use WinRAR to delete windows temporary folders, ie temporary folders, and files that can be deleted in C:/Windows/prefetch.
Restart your computer ~
The computer is working properly now.
Some malicious file information is attached:
File Description: C:/program files/Internet Explorer/plugins/unixsys08.sys attribute: ash-Digital Signature: No PE file: failed to get the file version information! Creation Time: 8:27:17 modification time: 8:27:18 size: 44661 bytes 43.629 kbmd5: 1e30c8879cd4dbc91458bce725ab78fesha1: 5E: f2484a25
Kaspersky daily for Trojan-PSW.Win32.QQPass.cdw
File Description: C:/program files/Internet Explorer/plugins/unixsys32.jmp attributes: A --- Digital Signature: No PE file: no creation time: 8:27:17 modification time: 8:27:20 size: 30837 bytes 30.117 kbmd5: 01cb7144c7bc7db5c71359b8d51a60bbsha1: 5cc0452ede72273a0cf4b13cb81ebc0759999186crc32: 1e7647d3
File Description: C:/Windows/system32/ozfyebyt. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:12 modification time: 8:24:14 size: 534024 bytes 521.520 kbmd5: 6a4e6a70dfa3f081f2ed0fbaa99cf08asha1: pushed: 8e0e5fbf
File Description: C:/Windows/system32/rfdswc. dll attributes: A-H-Digital Signature: No PE file: Is to get the file version information size failed! Creation Time: 8:24:14 modification time: 8:24:16 size: 258048 bytes 252.0 kbmd5: 2e0044cad437ee3217f5ec52517b0dc7sha1: 5E: f176fb9a
File Description: C:/Windows/system32/mpwdeapi. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:19 modification time: 8:24:20 size: 538120 bytes 525.520 kbmd5: 0cbce4767211fcecca68bb9dd4ffb314sha1: hour: 475d8af3
File Description: C:/Windows/system32/pedadt. dll property: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:24:30 modification time: 8:24:32 size: 229376 bytes 224.0 kbmd5: 3f0946ac62ce64ae616d4dfdbf3fa80bsha1: 5E: 98ab9fff
File Description: C:/Windows/system32/apzhctde. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:36 modification time: 8:24:38 size: 538120 bytes 525.520 kbmd5: 870115f4e20c36fc3d42d9000059cdc9dsha1: pushed: 315bb340
File Description: C:/Windows/system32/zxmsdwin. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:25:44 modification time: 8:25:46 size: 536584 bytes 524.8 kbmd5: def7e2e36b392188a16a1b2506125108sha1: 3c3d644b
File Description: C:/Windows/system32/cedafb. dll attributes: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:25:44 modification time: 8:25:46 size: 229376 bytes 224.0 kbmd5: f99a342d53a3292bb12d339e1cfaba76sha1: pushed: 0727ef6b
File Description: C:/Windows/system32/hdf453d. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:25:52 modification time: 8:25:54 size: 538632 bytes 526.8 kbmd5: 3ff52bbc76fe08e94fce271be109f071sha1: pushed: dd9e8672
File Description: C:/Windows/system32/rijxbkin. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:25:55 modification time: 8:25:56 size: 536584 bytes 524.8 kbmd5: 1307910948a848fa361d6bf093e62b56sha1: 5E: 443ee474
File Description: C:/Windows/system32/mmhadpqg1097.dll attribute: A --- Digital Signature: No PE file: failed to get file version information size! Creation Time: modification time: Size: 10384 bytes 10.144 kbmd5: d9b67f649d74aad71384804f5e118bc9sha1: 5E: d14848f5
File Description: C:/Windows/system32/mndshsrv. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: modification time: Size: 534024 bytes 521.520 kbmd5: 62e53a33a5e1218cee9f14790b8f86basha1: pushed: 52a3b6de
File Description: C:/Windows/system32/tdffdl. dll property: A-H-Digital Signature: No PE file: Is to get the file version information size failed! Creation Time: modification time: Size: 225792 bytes 220.512 kbmd5: 0e2bfdc585e01797497ed52e8690bdf6sha1: 6fbb6387
File Description: C:/Windows/system32/apsggjba. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:26:12 modification time: 8:26:14 size: 537608 bytes 525.8 kbmd5: 18e4ff5e24d4df2ac0659071bd92d621sha1: Signature: bf91ce2e
File Description: C:/Windows/system32/pjjxedwd. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:26:17 modification time: 8:26:18 size: 535560 bytes 523.8 kbmd5: fb6e8abdfc9e9d98542ca599bde2a41asha1: Signature: 90338d23
File Description: C:/Windows/system32/catsrvwl. dll attribute: A --- Digital Signature: No PE file: failed to get file version information! Creation Time: 8:26:16 modification time: 8:26:18 size: 830752 bytes 811.288 kbmd5: 29884f6a2ab6884ff6f024f3f8a33f8bsha1: Signature: 5fbafc54
File Description: C:/Windows/system32/yxcschlp. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:26:19 modification time: 8:26:20 size: 534024 bytes 521.520 kbmd5: a24fbc1666db42c02d5bda42bfc5d573sha1: pushed: dfea5b5b
File Description: C:/Windows/system32/mtewdh. dll property: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:26:26 modification time: 8:26:28 size: 279552 bytes 273.0 kbmd5: fac436c76e16b06a734eed212300a903sha1: pushed: 3d27100f
File Description: C:/Windows/system32/kbdswjr. dll attribute: A --- Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:26:35 modification time: 8:26:36 size: 966944 bytes 944.288 kbmd5: c18fce85d9bacd81d1444be6b8682948sha1: Authorization: 4b97cff2
File Description: C:/Windows/system32/oswxdttb. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:26:37 modification time: 8:26:38 size: 535560 bytes 523.8 kbmd5: 2f66067cf7d9f5b93d4b8b8e7f94e96bsha1: 9df17bde
File Description: C:/Windows/system32/sgdewg. dll property: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:26:40 modification time: 8:26:44 size: 222208 bytes 217.0 kbmd5: 87696da8ea242e509f4e6eb6510db967sha1: 5E: c1fd3e15
File Description: C:/Windows/system32/zptlcsys. dll attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:26:49 modification time: 8:26:50 size: 536072 bytes 523.520 kbmd5: 0bbf0846ddbb34b8dbfc2f2687446663sha1: 5E: 2c4d2adf
File Description: C:/Windows/system32/jfdses. dll attributes: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:26:52 modification time: 8:26:54 size: 218624 bytes 213.512 kbmd5: 4054b0505b8849631566f6e82db099b2sha1: pushed: b3b406d3
File Description: C:/Windows/system32/jhfrxz. dll property: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:26:59 modification time: Size: 222208 bytes 217.0 kbmd5: 17a1ae17aa1787467f7bd27b0cf71bf5sha1: pushed: e3371bbb
File Description: C:/Windows/system32/rasdlgcq. dll attribute: A --- Digital Signature: No PE file: failed to get file version information! Creation Time: 8:27:10 size: 690836 bytes 674.660 kbmd5: f09d5bb6a68c942aa200d6d8bee0db8csha1: pushed: 3634729f
File Description: C:/Windows/system32/wklsdd. dll property: A-H-Digital Signature: No PE file: Is to get file version information size failed! Creation Time: 8:27:10 modification time: 8:27:12 size: 236544 bytes 231.0 kbmd5: 011f52bca1134b1bc22c6b4a3d43401dsha1: 5E: c7718a6d
File Description: C:/Windows/system32/qbgt1.exe attribute: A --- Digital Signature: No PE file: failed to get file version information! Creation Time: 8:23:17 modification time: 8:23:18 size: 20107 bytes 19.651 kbmd5: 4fc3b7d9782599604c1f2dda-f0444dfsha1: 5E: aa9a772a
Kaspersky daily for Trojan-PSW.Win32.OnLineGames.arpk
File Description: C:/Windows/system32/tjfyabyt.exe attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:12 modification time: 8:24:14 size: 15129 bytes 14.793 kbmd5: 8db652c0de2b785785d5f69844e6b6d5sha1: Fingerprint: f2398233
Kaspersky daily for Trojan-PSW.Win32.OnLineGames.aqeh
File Description: C:/Windows/system32/siwdaapi.exe attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:19 modification time: 8:24:20 size: 16933 bytes 16.549 kbmd5: ae52cb7c0ef3c5075ec81720c12d9bc2sha1: 5E: 01fd9bec
Kaspersky daily for Trojan-PSW.Win32.OnLineGames.apms
File Description: C:/Windows/system32/zaztamsn.exe attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:23 modification time: 8:24:24 size: 17037 bytes 16.653 kbmd5: 763aed502fefd3d27dd6ca228a93203csha1: pushed: 41815ce4
Kaspersky daily for Trojan-GameThief.Win32.OnLineGames.asbu
File Description: C:/Windows/system32/lpzhatde.exe attribute:-sh-Digital Signature: No PE file: failed to get file version information size! Creation Time: 8:24:36 modification time: 8:24:38 size: 17228 bytes 16.844 kbmd5: 0a2c8d2fe2a58f3335dc446d75f50decsha1: pushed: 8e6e0752
Kaspersky daily for Trojan-PSW.Win32.OnLineGames.rxpf
File Description: C:/Windows/system32/dqzd9.exe attribute: A --- Digital Signature: No PE file: failed to get file version information! Creation Time: 8:24:24 modification time: 8:24:26 size: 10420 bytes 10.180 kbmd5: 04d4d3d387760a80143a1b17bfe1cdebsha1: 5E: 2127d210
Kaspersky reported Trojan. win32.small. bcz
File Description: C:/Windows/system32/ysad30.exe attribute: A --- Digital Signature: No PE file: failed to get file version information! Creation Time: 8:26:39 modification time: 8:26:40 size: 19503 bytes 19.47 kbmd5: 81691d4c2d34488ad02de04ab9c186dfsha1: 5E: d28ef98f
Kaspersky daily for Trojan-GameThief.Win32.OnLineGames.rxwr
File Description: C:/Windows/system32/msqtvcap. dat attribute: A --- Digital Signature: No PE file: no creation time: 9:46:40 modification time: 15:42:42 size: 9288 bytes 9.72 kbmd5: 0fa6be9577039b850f6c9ea22d2e9fe2sha1: 22d8a6d7