没有解决的问题!!Trojan.Plauger谁知道这个东西到底是什么?急急!! - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛没有解决的问题!!Trojan.Plauger谁知道这个东西到底是什么?急急!!

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

2 / 2 页

跳转页

没有解决的问题!!Trojan.Plauger谁知道这个东西到底是什么?急急!!

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 01:06 \| 显示全部短消息资料字号：小中大 11楼 ================================== 正在运行的进程 [PID: 452][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 520][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 544][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.1557 (xpsp2_gdr.040517-1325)> [C:\WINDOWS\System32\awvvw.dll] <N/A><N/A> [PID: 588][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 600][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 772][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 824][G:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3> [PID: 840][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 960][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 1056][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 1080][G:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 6> [G:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16> [G:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [G:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [G:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [G:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [G:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18> [G:\Program Files\Rising\Rav\HOOKSYS.dll] <Rising><18, 1, 0, 9> [G:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 28> [G:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [G:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [G:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [G:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 1> [G:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 8> [G:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [G:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3> [G:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [G:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 4> [G:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23> [G:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [G:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [G:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [G:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [G:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7> [G:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7> [G:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [G:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3> [PID: 1292][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2800.1106 (xpsp1.020828-1920)> [C:\WINDOWS\System32\awvvw.dll] <N/A><N/A> [C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 60> [C:\PROGRA~1\FlashGet\jccatch.dll] <Amaze Soft><1, 1, 4, 0> [C:\WINDOWS\System32\nvcpl.dll] <NVIDIA Corporation><6.14.10.6766> [C:\WINDOWS\System32\NVRSZHC.DLL] <NVIDIA Corporation><6.14.10.6766> [C:\WINDOWS\System32\nvshell.dll] <NVIDIA Corporation><6.14.10.6766> [C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13> [C:\Program Files\WinRAR\rarext.dll] <N/A><N/A> [C:\PROGRA~1\Kingsoft\KnightV\Tools\KVD\kscdrush.dll] <金山软件股份有限公司><5, 0, 0, 0> [D:\BT文件\HA_WhoLockMe104-YF\WhoLockMe.dll] <Bitmind><1, 0, 3, 0> [PID: 1300][c:\program files\rising\rfw\rfwsrv.exe] <Beijing Rising Technology Corporation Limited><3, 1, 0, 36> [c:\program files\rising\rfw\Rfwdrv.dll] <Beijing Rising Technology Corporation Limited><3, 0, 1, 5> [c:\program files\rising\rfw\rfwrule.dll] <Beijing Rising Technology Corporation Limited><3, 1, 0, 0> [c:\program files\rising\rfw\rfwlog.dll] <Beijing Rising Technology Corporation Limited><3, 1, 0, 2> [PID: 1488][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.0 (XPClient.010817-1148)> [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\vprproc.dll] <Windows (R) 2000 DDK provider><5.00.2195.1620> [PID: 1580][G:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12> [G:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [G:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [PID: 1724][c:\program files\rising\rfw\RfwMain.exe] <Beijing Rising Technology Corporation Limited><3, 1, 0, 19> [c:\program files\rising\rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><17, 0, 0, 40> [c:\program files\rising\rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><17, 0, 0, 17> [c:\program files\rising\rfw\PngDll.dll] <Rising><17, 0, 0, 2> [PID: 1884][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 1952][C:\WINDOWS\System32\nvsvc32.exe] <NVIDIA Corporation><6.14.10.6766> [C:\WINDOWS\System32\NVRSZHC.DLL] <NVIDIA Corporation><6.14.10.6766> [PID: 132][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 272][C:\WINDOWS\System32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)> [PID: 372][C:\Program Files\D-Tools\daemon.exe] <DAEMON'S HOME><3.44.0.0> [C:\WINDOWS\daemon.dll] <N/A><3.44.0.0> [C:\Program Files\D-Tools\PFCTOC.DLL] <Padus(R), Inc.><1, 0, 0, 12> [C:\Program Files\D-Tools\Plugins\Images\bw5mount.dll] <N/A><1.0.1.0> [C:\Program Files\D-Tools\Plugins\Images\ccdmount.dll] <GENERIC><1.02.0.0> [C:\Program Files\D-Tools\Plugins\Images\mdsmount.dll] <GENERIC><1.01.0.0> [C:\Program Files\D-Tools\Plugins\Images\nrgmount.dll] <GENERIC><1.02.0.0> [C:\Program Files\D-Tools\Plugins\Images\pdimount.dll] <GENERIC><1.01.0.0> [PID: 512][C:\WINDOWS\SOUNDMAN.EXE] <Avance Logic, Inc.><5.0.05> [PID: 328][C:\WINDOWS\VM_STI.EXE] <VM.><4.2.610.4> [C:\WINDOWS\System32\msdmo.dll] <N/A><N/A> [PID: 888][C:\WINDOWS\System32\RUNDLL32.EXE] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\WINDOWS\System32\NvMcTray.dll] <NVIDIA Corporation><6.14.10.6766> [C:\WINDOWS\System32\NVRSZHC.DLL] <NVIDIA Corporation><6.14.10.6766> [PID: 880][C:\PROGRA~1\MAGICW~1\MulMouse.exe] <><1, 0, 0, 1> [C:\PROGRA~1\MAGICW~1\Function\Function.dll] <><1, 0, 0, 1> [PID: 924][G:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22> [G:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [G:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [G:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [G:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [PID: 988][G:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 99> [G:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22> [G:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16> [G:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [G:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [G:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [G:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [G:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [PID: 1048][C:\WINDOWS\System32\ctfmon.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 2420][C:\Program Files\Maxthon\Maxthon.exe] <MY Soft Technology><1, 0, 0, 250> [C:\Program Files\Maxthon\zlib.dll] <N/A><N/A> [C:\Program Files\Maxthon\Plugin\ViewSource\ViewSrc.dll] <><1, 0, 0, 1> [C:\Program Files\Maxthon\Services\RealTime\real_time.dll] <><1, 0, 0, 1> [G:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3> [C:\WINDOWS\System32\macromed\flash\Flash.ocx] <Macromedia, Inc.><7,0,19,0> [PID: 2824][D:\BitSpirit\BitSpirit.exe] <LANSPIRIT.NET><3.1.0.77> [D:\BitSpirit\plugin\peerid.dll] <N/A><N/A> [D:\BitSpirit\plugin\tracker.dll] <N/A><N/A> [PID: 1008][D:\BT文件\sreng2\SREng.exe] <Smallfrogs Studio><2.0.12.350> ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 ==================================
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 01:08 \| 显示全部短消息资料字号：小中大 12楼 MulMouse.exe 那个是一个鼠标的驱动,BENQ上下的,应该没什么问题吧
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 01:25 \| 显示全部短消息资料字号：小中大 13楼不言任务进程里没有awvvw.dll这个任务,只在system32里有并且这个任务是被winlogon所调用的我已经下了KILL了
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 01:38 \| 显示全部短消息资料字号：小中大 14楼在用这个方法之前,我想先确定下,这个awvvw.dll是个什么东西?是不是个木马,如果是关联的系统的话会不会让系统瘫痪因为明天还要用机子做东西,况且现在手头没有XP盘
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 01:49 \| 显示全部短消息资料字号：小中大 15楼不能强制解除,解除后回蓝屏,提示错误具体说的什么忘记看了,然后重启.
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 01:53 \| 显示全部短消息资料字号：小中大 16楼我现在有个疑问,有没有可能是瑞星误报的我感觉要是病毒的话它不可能直接关系到系统的运行可我强制解除后,出现了系统错误.并且蓝屏
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 02:00 \| 显示全部短消息资料字号：小中大 17楼呵呵~~我当然不愿意让它留在上面不过速度的影响是当我开了瑞星监控以后,瑞星不断尝试删除它的时候我现在就关着监控,速度还可以,好象比以前还快在DOS下我还真没用过, 把具体方法说下
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 02:00 \| 显示全部短消息资料字号：小中大 18楼卸除也是一样,蓝屏
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:	发表于： 2006-01-04 02:21 \| 显示全部短消息资料字号：小中大 19楼在安全下还是提示被占用今天学了不少东西,也非常感谢你们这么晚还在帮我想办法不言从下午就开始帮整这个,谢谢你了玉面也够可以的了,非常感谢你们!!!! 今天还要去上班,我先去休息了,你们也早点休息吧回来我再用最原始的方法再把系统做了~~ 顺便说句,吗的我恨病毒!!!更恨做病毒的人也祝你们新年快乐哈,以后有什么问题我还会来麻烦你们的
tutu911 初生襁褓狮帖子:22 注册: 2006-01-03 来自:

<<上一主题|下一主题>>

12

2 / 2 页

跳转页

页面顶部

Powered by Discuz!NT