关于RootKit.CallGate.l，付日志，帮忙 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛关于RootKit.CallGate.l，付日志，帮忙

	瑞星ESM助力北京石龙医院筑牢安全防线		瑞星恶意代码管理系统助金华电力提升防御能力		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		助力国家网络安全瑞星获病毒应急处理中心感谢信
	实力拉满瑞星第四十四次通过VB100测评		瑞星发布2024年六大网络安全趋势		瑞星携手中国农业大学共筑网络安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

关于RootKit.CallGate.l，付日志，帮忙

dzsq 初生襁褓狮帖子:2 注册: 2007-02-19 来自:	发表于： 2007-02-21 17:22 \| 只看楼主短消息资料字号：小中大 1楼关于RootKit.CallGate.l，付日志，帮忙 RootKit.CallGate.l删除不了，说什么重起删除，或者已经删除，但是下次开机还有，高手帮帮忙 C:\WINDOWS\system32\rundll32.exe HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN Start Page about:blank 2007-02-04 17:46 修改同意修改 C:\Program Files\Internet Explorer\iexplore.exe HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN Start Page http://www.baidu.com/ 2007-02-04 19:40 修改同意修改 C:\Program Files\Messenger\msmsgs.exe HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN MSMSGS "C:\Program Files\Messenger\msmsgs.exe" /backgroun 2007-02-04 20:06 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:21 修改同意修改 HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:29 修改同意修改 C:\WINDOWS\amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:29 修改同意修改 C:\WINDOWS\Amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:29 修改同意修改 C:\WINDOWS\Amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:33 修改同意修改 C:\WINDOWS\Amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:39 修改同意修改 C:\WINDOWS\Amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 09:57 修改同意修改 C:\WINDOWS\amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 10:34 修改同意修改 C:\WINDOWS\Amcap.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-05 10:51 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-06 10:36 修改同意修改 HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-06 10:36 修改同意修改 HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN BigDog303 C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC 2007-02-08 19:35 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE CCDECODE0 rundll32.exe streamci,StreamingDeviceSetup {562370 2007-02-05 09:21 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE MSPCLOCK rundll32.exe streamci,StreamingDeviceSetup {97ebaa 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE MSPQM rundll32.exe streamci,StreamingDeviceSetup {DDF435 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE MSKSSRV rundll32.exe streamci,StreamingDeviceSetup {96E080 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE CCDECODE0 rundll32.exe streamci,StreamingDeviceSetup {562370 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE nabtsfec0 rundll32.exe streamci,StreamingDeviceSetup {07DAD6 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE WSTCODEC0 rundll32.exe streamci,StreamingDeviceSetup {70BC06 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE SLIP0 rundll32.exe streamci,StreamingDeviceSetup {03884C 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE STREAMIP0 rundll32.exe streamci,StreamingDeviceSetup {D84D44 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE NDISIP0 rundll32.exe streamci,StreamingDeviceSetup {489264 2007-02-05 09:29 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE MSPCLOCK rundll32.exe streamci,StreamingDeviceSetup {97ebaa 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE MSPQM rundll32.exe streamci,StreamingDeviceSetup {DDF435 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE MSKSSRV rundll32.exe streamci,StreamingDeviceSetup {96E080 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE CCDECODE0 rundll32.exe streamci,StreamingDeviceSetup {562370 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE nabtsfec0 rundll32.exe streamci,StreamingDeviceSetup {07DAD6 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE WSTCODEC0 rundll32.exe streamci,StreamingDeviceSetup {70BC06 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE SLIP0 rundll32.exe streamci,StreamingDeviceSetup {03884C 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE STREAMIP0 rundll32.exe streamci,StreamingDeviceSetup {D84D44 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE NDISIP0 rundll32.exe streamci,StreamingDeviceSetup {489264 2007-02-06 10:36 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-12 16:57 修改同意修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-13 11:44 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-13 13:07 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-13 19:37 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-14 11:37 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-14 18:14 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-14 20:16 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-17 14:31 修改拒绝修改 C:\WINDOWS\system32\rundll32.exe HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE GrpConv grpconv -o 2007-02-21 15:58 修改拒绝修改 2007-02-21 17:22:37.623000000
dzsq 初生襁褓狮帖子:2 注册: 2007-02-19 来自:	分享到：

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT