瑞星杀了几十遍都杀不干净的病毒,有SRE日志,求助高人! - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛瑞星杀了几十遍都杀不干净的病毒,有SRE日志,求助高人!

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

瑞星杀了几十遍都杀不干净的病毒,有SRE日志,求助高人!

黄金搭档12 初生襁褓狮帖子:80 注册: 2006-11-13 来自:	发表于： 2008-01-11 13:38 \| 只看楼主短消息资料字号：小中大 1楼瑞星杀了几十遍都杀不干净的病毒,有SRE日志,求助高人! 每天更新瑞星病毒库,每天都全盘杀毒,但仍然每天都能杀出5-10个毒,(我顶多上上新浪和淘宝网,不算什么违禁网站吧?)上网时,总是莫名其妙的乱跳网页(交友网,电影网,购物网之类)出来,IE的主页也经常被改.最近两天IE更是经常自动关闭.求助高手,该怎么办?瑞星杀毒软件拿这些病毒根本没有办法! [用户系统信息]Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Alexa Toolbar) 附件: 文件名:7837502008111132721.txt 下载次数:98 文件类型:application/octet-stream 文件大小: 上传时间:2008-1-11 13:38:52 描述: 2008-01-11 13:46:59
黄金搭档12 初生襁褓狮帖子:80 注册: 2006-11-13 来自:	分享到：

silences 健康舞勺狮帖子:235 注册: 2008-01-10 来自:	发表于： 2008-01-11 13:50 \| 短消息资料字号：小中大 2楼毒窝..... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\1.exe] <IFEO[1.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\10.exe] <IFEO[10.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\11.exe] <IFEO[11.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\12.exe] <IFEO[12.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\13.exe] <IFEO[13.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\14.exe] <IFEO[14.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\15.exe] <IFEO[15.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\16.exe] <IFEO[16.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\17.exe] <IFEO[17.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\18.exe] <IFEO[18.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\19.exe] <IFEO[19.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\2.exe] <IFEO[2.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\20.exe] <IFEO[20.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\21.exe] <IFEO[21.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\22.exe] <IFEO[22.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\3.exe] <IFEO[3.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\4.exe] <IFEO[4.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\5.exe] <IFEO[5.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\6.exe] <IFEO[6.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\7.exe] <IFEO[7.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\8.exe] <IFEO[8.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\9.exe] <IFEO[9.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\aa.exe] <IFEO[aa.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cmdbcs.exe] <IFEO[cmdbcs.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\comrepl32.exe] <IFEO[comrepl32.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dbghlp32.exe] <IFEO[dbghlp32.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FuckJacks.exe] <IFEO[FuckJacks.exe]><egomoo.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hh.exe] <IFEO[hh.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\igm.exe] <IFEO[igm.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\igw.exe] <IFEO[igw.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Logo1_.exe] <IFEO[Logo1_.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\logo_1.exe] <IFEO[logo_1.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NVDispDrv.exe] <IFEO[NVDispDrv.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\OSO.exe] <IFEO[OSO.exe]><egomoo.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\racvsvc.exe] <IFEO[racvsvc.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rundl132.exe] <IFEO[rundl132.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rundl133.exe] <IFEO[rundl133.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sach0st.exe] <IFEO[sach0st.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sedrsvedt.exe] <IFEO[sedrsvedt.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\spoclsv.exe] <IFEO[spoclsv.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SVCH0ST.exe] <IFEO[SVCH0ST.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\svcos.exe] <IFEO[svcos.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\svohost.exe] <IFEO[svohost.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\swghost.exe] <IFEO[swghost.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sxs.exe] <IFEO[sxs.exe]><debugfile.exe> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\upxdnd.exe] <IFEO[upxdnd.exe]><debugfile.exe> [N/A] 服务 [cpfzxu / cpfzxu][Stopped/Auto Start] <C:\WINDOWS\system32\svchost.exe -k cpfzxu-->%SystemRoot%\System32\cpfzxu.dll><N/A> [Event System / Event System][Stopped/Auto Start] <C:\Program Files\Common Files\Microsoft Shared\MSInfo\Server.exe><N/A> [操作系统内部进程 / netservice][Stopped/Disabled] <C:\Documents and Settings\All Users\Favorites\netservice.exe><N/A> [Network Connections Manage / Network Connections Manage ][Stopped/Auto Start] <C:\WINDOWS\lsuss.exe><N/A> [Provisioning Transaction Service / pangupan][Stopped/Disabled] <C:\WINDOWS\system32\aa.exe><N/A> [pihnre / pihnre][Stopped/Auto Start] <C:\WINDOWS\system32\svchost.exe -k pihnre-->%SystemRoot%\System32\pihnre.dll><N/A> [Terminal Services / TermService][Running/Auto Start] <C:\WINDOWS\System32\svchost -k DComLaunch-->C:\WINDOWS\System32\termsrvgmm.dll><Microsoft Corporation> [WebPrint / WebPrint][Stopped/Disabled] <c:\windows\system32\webprint.exe><N/A> 驱动 [079mzx / 079mzxg][Stopped/Disabled] <\SystemRoot\System32\DRIVERS\079mzxg.sys><N/A> [3pwp / 3pwp][Stopped/Disabled] <\??\C:\WINDOWS\system32\drivers\3pwp.sys><N/A> [acpidisk / acpidisk][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\acpidisk.sys><N/A> [mxdispdr / mxdispdr][Stopped/Disabled] <\??\C:\WINDOWS\system32\drivers\mxdispdr.sys><N/A> [xBlock3 / xBlock3][Stopped/Manual Start] <\??\C:\WINDOWS\system32\Drivers\xBlock3.sys><N/A> [xProc / xProc][Stopped/System Start] <\??\C:\WINDOWS\system32\Drivers\xProc.sys><N/A> [ygkzknyx / ygkzknyx][Running/Auto Start] <\??\C:\WINDOWS\system32\drivers\rgkzkn.sys><N/A> [ymuylfiu / ymuylfiu][Stopped/Disabled] <\??\C:\WINDOWS\system32\drivers\amuylf.sys><N/A> [ypfzxuiu / ypfzxuiu][Stopped/Disabled] <\??\C:\WINDOWS\system32\drivers\cpfzxu.sys><N/A> 道行不深浏览器加载项不敢多说....
silences 健康舞勺狮帖子:235 注册: 2008-01-10 来自:

黄金搭档12 初生襁褓狮帖子:80 注册: 2006-11-13 来自:	发表于： 2008-01-11 13:52 \| 只看楼主短消息资料字号：小中大 3楼晕!!那该怎么处理呢???
黄金搭档12 初生襁褓狮帖子:80 注册: 2006-11-13 来自:

silences 健康舞勺狮帖子:235 注册: 2008-01-10 来自:	发表于： 2008-01-11 13:58 \| 短消息资料字号：小中大 4楼全部删除删除服务后要把相对应的文件也干掉 SRE使用方法 http://forum.ikaka.com/topic.asp?board=28&artid=8270267&page=1
silences 健康舞勺狮帖子:235 注册: 2008-01-10 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT