帮忙看看我的信息有没有问题谢谢在线等 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛帮忙看看我的信息有没有问题谢谢在线等

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

帮忙看看我的信息有没有问题谢谢在线等

jACKIEJO 初生襁褓狮帖子:13 注册: 2006-09-06 来自:	发表于： 2006-09-08 15:22 \| 只看楼主短消息资料字号：小中大 1楼帮忙看看我的信息有没有问题谢谢在线等最近受传奇那病毒影响，我杀了很多次现在没有瑞星提示有病毒了，但我现在还是有Trojan.PSW.ZHENGTU 启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] (ctfmon.exe)(C:\WINDOWS\System32\ctfmon.exe) [Microsoft Corporation] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] (load)() [] (run)() [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] (IMJPMIG8.1)("C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32) [Microsoft Corporation] (PHIME2002ASync)(C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC) [Microsoft Corporation] (PHIME2002A)(C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName) [Microsoft Corporation] (Cmaudio)(RunDll32 cmicnfg.cpl,CMICtrlWnd) [] (ATIPTA)(C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe) [ATI Technologies, Inc.] (TkBellExe)("C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot) [RealNetworks, Inc.] (RfwMain)("C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup) [Beijing Rising Technology Co., Ltd.] (RavTask)("D:\Program Files\Rising\Rav\RavTask.exe" -system) [Beijing Rising Technology Co., Ltd.] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (shell)(EXPLORER.EXE) [Microsoft Corporation] (Userinit)(C:\WINDOWS\system32\userinit.exe,C:\TODAYNEWKG\IEXPLORE.com) [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] (AppInit_DLLs)() [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (UIHost)(logonui.exe) [Microsoft Corporation] 正在运行的进程 [PID: 484][\SystemRoot\System32\smss.exe] (Microsoft Corporation)(5.1.2600.1106 (xpsp1.020828-1920)) [PID: 540][\??\C:\WINDOWS\system32\csrss.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 564][\??\C:\WINDOWS\system32\winlogon.exe] (Microsoft Corporation)(5.1.2600.1106 (xpsp1.020828-1920)) [PID: 616][C:\WINDOWS\system32\services.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 628][C:\WINDOWS\system32\lsass.exe] (Microsoft Corporation)(5.1.2600.1106 (xpsp1.020828-1920)) [PID: 784][C:\WINDOWS\System32\Ati2evxx.exe] (N/A)(N/A) [PID: 812][C:\WINDOWS\system32\svchost.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 900][D:\Program Files\Rising\Rav\CCenter.exe] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 3) [PID: 916][C:\WINDOWS\System32\svchost.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 1044][C:\WINDOWS\System32\svchost.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 1140][D:\Program Files\Rising\Rav\Ravmond.exe] (Beijing Rising Technology Co., Ltd.)(18, 0, 1, 35) [D:\Program Files\Rising\Rav\BWList.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 19) [D:\Program Files\Rising\Rav\RsCommX.dll] (rising)(18, 0, 0, 1) [D:\Program Files\Rising\Rav\RSAPPMGR.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 2) [D:\Program Files\Rising\Rav\CfgDll.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 11) [D:\Program Files\Rising\Rav\RSCOMMON.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [D:\Program Files\Rising\Rav\RsLog.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 20) [D:\Program Files\Rising\Rav\HOOKSYS.dll] (Beijing Rising Technology Co., Ltd.)(18, 1, 0, 11) [D:\Program Files\Rising\Rav\Scanner.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 32) [D:\Program Files\Rising\Rav\libload.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 10) [D:\Program Files\Rising\Rav\VirusLib.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 12) [D:\Program Files\Rising\Rav\regmon.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 6) [D:\Program Files\Rising\Rav\HookWeb.dll] (rising)(18, 0, 0, 2) [D:\Program Files\Rising\Rav\MemMon.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 10) [D:\Program Files\Rising\Rav\expscan.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [D:\Program Files\Rising\Rav\mPorts.dll] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 3) [D:\Program Files\Rising\Rav\MailMon.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 5) [D:\Program Files\Rising\Rav\SpamEng.dll] (N/A)(18, 0, 0, 6) [D:\Program Files\Rising\Rav\engine.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 34) [D:\Program Files\Rising\Rav\PostTrt.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 15) [D:\Program Files\Rising\Rav\UnExe.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 11) [D:\Program Files\Rising\Rav\ScanExec.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 11) [D:\Program Files\Rising\Rav\ScanEx.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 20) [D:\Program Files\Rising\Rav\RSUnpack.dll] (Beijing Rising Technology Co., Ltd.)(1, 0, 0, 13) [D:\Program Files\Rising\Rav\NvFile.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 7) [D:\Program Files\Rising\Rav\ScanMac.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 9) [D:\Program Files\Rising\Rav\ScanSct.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 18) [D:\Program Files\Rising\Rav\Unpacker.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [D:\Program Files\Rising\Rav\ExtOLE.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 6) [PID: 1260][C:\WINDOWS\Explorer.EXE] (Microsoft Corporation)(6.00.2800.1221 (xpsp2.030511-1403)) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [C:\Program Files\WinRAR\rarext.dll] (N/A)(N/A) [C:\WINDOWS\system32\RavExt.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 21) [D:\Program Files\Rising\Rav\RSCOMMON.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [PID: 1376][c:\program files\rising\rfw\rfwsrv.exe] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 32) [c:\program files\rising\rfw\RfwRule.dll] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 13) [c:\program files\rising\rfw\rfwlog.dll] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 6) [c:\program files\rising\rfw\Rfwdrv.dll] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 21) [c:\program files\rising\rfw\MonDrv.dll] (rs)(1, 0, 0, 4) [c:\program files\rising\rfw\ProcLib.dll] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 9) [PID: 1496][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe] (ATI Technologies, Inc.)(6.14.10.5062) [C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll] (ATI Technologies, Inc.)(6.14.10.5062) [C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS] (ATI Technologies, Inc.)(6.14.10.5062) [C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll] (ATI Technologies, Inc.)(6.14.10.5062) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 1504][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] (RealNetworks, Inc.)(0.1.0.1622) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 1540][C:\Program Files\Rising\Rfw\rfwmain.exe] (Beijing Rising Technology Co., Ltd.)(4, 0, 0, 52) [C:\Program Files\Rising\Rfw\RsGuiLib.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 23) [C:\Program Files\Rising\Rfw\RSCOMMON.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [C:\Program Files\Rising\Rfw\PngDll.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 5) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 1548][D:\Program Files\Rising\Rav\RavTask.exe] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 22) [D:\Program Files\Rising\Rav\RSCOMMON.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [D:\Program Files\Rising\Rav\RSAPPMGR.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 2) [D:\Program Files\Rising\Rav\CfgDll.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 11) [D:\Program Files\Rising\Rav\RsCommX.dll] (rising)(18, 0, 0, 1) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 1560][C:\WINDOWS\System32\ctfmon.exe] (Microsoft Corporation)(5.1.2600.1106 (xpsp1.020828-1920)) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 1616][D:\Program Files\Rising\Rav\Ravmon.exe] (Beijing Rising Technology Co., Ltd.)(18, 0, 1, 33) [D:\Program Files\Rising\Rav\RsGuiLib.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 26) [D:\Program Files\Rising\Rav\BWList.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 19) [D:\Program Files\Rising\Rav\RSAPPMGR.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 2) [D:\Program Files\Rising\Rav\CfgDll.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 11) [D:\Program Files\Rising\Rav\RSCOMMON.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [D:\Program Files\Rising\Rav\RsCommX.dll] (rising)(18, 0, 0, 1) [D:\Program Files\Rising\Rav\PngDll.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 5) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 1668][C:\WINDOWS\system32\spoolsv.exe] (Microsoft Corporation)(5.1.2600.0 (XPClient.010817-1148)) [PID: 1912][D:\Program Files\Rising\Rav\RavStub.exe] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 16) [D:\Program Files\Rising\Rav\RsCommX.dll] (rising)(18, 0, 0, 1) [D:\Program Files\Rising\Rav\RSCOMMON.DLL] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [PID: 884][C:\WINDOWS\System32\svchost.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 976][C:\WINDOWS\System32\alg.exe] (Microsoft Corporation)(5.1.2600.1106 (xpsp1.020828-1920)) [PID: 1128][C:\WINDOWS\System32\svchost.exe] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [PID: 1484][C:\Program Files\Internet Explorer\IEXPLORE.EXE] (Microsoft Corporation)(6.00.2800.1106 (xpsp1.020828-1920)) [PID: 2160][C:\Program Files\Internet Explorer\IEXPLORE.EXE] (Microsoft Corporation)(6.00.2800.1106 (xpsp1.020828-1920)) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [D:\Program Files\Rising\Rav\RavScrCh.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [C:\WINDOWS\System32\Macromed\Flash\Flash8.ocx] (Macromedia, Inc.)(8,0,22,0) [PID: 3464][C:\Program Files\Internet Explorer\IEXPLORE.EXE] (Microsoft Corporation)(6.00.2800.1106 (xpsp1.020828-1920)) [D:\C盘\QQ2003III丐丐版\QQ\QQIEHelper.dll] (深圳市腾讯计算机系统有限公司)(1, 1, 0, 5) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [D:\Program Files\Rising\Rav\RavScrCh.dll] (Beijing Rising Technology Co., Ltd.)(18, 0, 0, 4) [C:\WINDOWS\System32\Macromed\Flash\Flash8.ocx] (Macromedia, Inc.)(8,0,22,0) [C:\WINDOWS\System32\msdmo.dll] (N/A)(N/A) [PID: 2460][C:\WINDOWS\system32\NOTEPAD.EXE] (Microsoft Corporation)(5.1.2600.0 (xpclient.010817-1148)) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) [PID: 3648][C:\sreng2\SREng2\SREng.exe] (Smallfrogs Studio)(2.0.21.505) [C:\TODAYNEWKG\IEXPLORE.DLL] (N/A)(N/A) 2006-09-08 15:34:06
jACKIEJO 初生襁褓狮帖子:13 注册: 2006-09-06 来自:	分享到：

baohe 大版主帖子:72578 注册: 2003-04-10 来自:	发表于： 2006-09-08 15:28 \| 短消息资料字号：小中大 2楼【回复“jACKIEJO”的帖子】 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (Userinit)(C:\WINDOWS\system32\userinit.exe,C:\TODAYNEWKG\IEXPLORE.com) [] 用SREng编辑一下这个加载项（去掉C:\WINDOWS\system32\userinit.exe后面的C:\TODAYNEWKG\IEXPLORE.com）。重启系统。显示隐藏文件。删除：C:\TODAYNEWKG\IEXPLORE.com。
baohe 大版主帖子:72578 注册: 2003-04-10 来自:

jACKIEJO 初生襁褓狮帖子:13 注册: 2006-09-06 来自:	发表于： 2006-09-08 15:42 \| 只看楼主短消息资料字号：小中大 3楼谢谢楼上，能具体说下在哪里编辑么，没有找到啊，谢谢
jACKIEJO 初生襁褓狮帖子:13 注册: 2006-09-06 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT