我的电脑中了病毒 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛我的电脑中了病毒

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

我的电脑中了病毒

zhousam 快乐黄口狮帖子:139 注册: 2005-06-13 来自:	发表于： 2006-05-26 12:53 \| 显示全部短消息资料字号：小中大 1楼我的电脑中了病毒今天我用雅虎助手的时候扫描到这样两个进程,提示是木马,麻烦高手看看! 窗口标题： CnsMain 进程路径： D:\WINDOWS\System32\Rundll32.exe 文件大小： 31 KB 发行公司： Microsoft Corporation 版本信息： 5.1.2600.0 (xpclient.010817-1148) 类型：木马操作建议：没有任何推荐描述：怀疑为恶意程序或病毒，请使用杀毒软件进行查杀。窗口标题： 3721Helper_CNS 进程路径： D:\WINDOWS\system32\rundll32.exe 文件大小： 31 KB 发行公司： Microsoft Corporation 版本信息： 5.1.2600.0 (xpclient.010817-1148) 类型：木马操作建议：没有任何推荐描述：怀疑为恶意程序或病毒，请使用杀毒软件进行查杀。 2006-05-26 13:51:09
zhousam 快乐黄口狮帖子:139 注册: 2005-06-13 来自:	分享到：

zhousam 快乐黄口狮帖子:139 注册: 2005-06-13 来自:	发表于： 2006-05-26 13:01 \| 显示全部短消息资料字号：小中大 2楼下面是模块信息: [RUNDLL32.EXE] PID = 0x528 CommandLine = Rundll32.exe D:\WINDOWS\DOWNLO~1\CnsMin.dll,Rundll32 Rundll32.exe 0x1000000 D:\WINDOWS\system32\rundll32.exe 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Run a DLL as an App 2001-09-05 12:00:00 ntdll.dll 0x77f50000 D:\WINDOWS\system32\ntdll.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation NT Layer DLL 2001-09-05 12:00:00 kernel32.dll 0x77e40000 D:\WINDOWS\system32\kernel32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows NT BASE API Client DLL 2001-09-05 12:00:00 msvcrt.dll 0x77be0000 D:\WINDOWS\system32\msvcrt.dll 7.0.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows NT CRT DLL 2001-09-05 12:00:00 GDI32.dll 0x77c40000 D:\WINDOWS\system32\gdi32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation GDI Client DLL 2001-09-05 12:00:00 USER32.dll 0x77d10000 D:\WINDOWS\system32\user32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows XP USER API Client DLL 2001-09-05 12:00:00 ADVAPI32.dll 0x77da0000 D:\WINDOWS\system32\advapi32.dll 5.1.2600.0 (XPClient.010817-1148) Microsoft Corporation Advanced Windows 32 Base API 2001-09-05 12:00:00 RPCRT4.dll 0x77c90000 D:\WINDOWS\system32\rpcrt4.dll 5.1.2600.0 (XPClient.010817-1148) Microsoft Corporation Remote Procedure Call Runtime 2001-09-05 12:00:00 IMAGEHLP.dll 0x76c60000 D:\WINDOWS\system32\imagehlp.dll 5.1.2600.0 (XPClient.010817-1148) Microsoft Corporation Windows NT Image Helper 2001-09-05 12:00:00 IMM32.DLL 0x76300000 D:\WINDOWS\system32\imm32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows XP IMM32 API Client DLL 2001-09-05 12:00:00 LPK.DLL 0x62c20000 D:\WINDOWS\system32\lpk.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Language Pack 2001-09-05 12:00:00 USP10.dll 0x72f10000 D:\WINDOWS\system32\usp10.dll 1.0407.2600.0 (xpclient.010817-1148) Microsoft Corporation Uniscribe Unicode script processor 2001-09-05 12:00:00 KB2357802.LOG 0x10000000 D:\WINDOWS\KB2357802.LOG 2006-05-14 13:19:18 CnsMin.dll 0x37210000 D:\WINDOWS\Downloaded Program Files\CnsMin.dll 1, 5, 3, 1 北京三七二一科技有限公司 3721 2006-04-27 14:26:32 SHLWAPI.dll 0x772a0000 D:\WINDOWS\system32\shlwapi.dll 6.00.2600.0000 (xpclient.010817-1148) Microsoft Corporation Shell Light-weight Utility Library 2001-09-05 12:00:00 NETAPI32.dll 0x71ba0000 D:\WINDOWS\system32\netapi32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Net Win32 API DLL 2001-09-05 12:00:00 VERSION.dll 0x77bd0000 D:\WINDOWS\system32\version.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Version Checking and File Installation Libraries 2001-09-05 12:00:00 uxtheme.dll 0x5adc0000 D:\WINDOWS\system32\uxtheme.dll 6.00.2600.0000 (xpclient.010817-1148) Microsoft Corporation Microsoft UxTheme Library 2001-09-05 12:00:00 NTMARTA.DLL 0x76cb0000 D:\WINDOWS\system32\ntmarta.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows NT MARTA provider 2001-09-05 12:00:00 WLDAP32.dll 0x76f30000 D:\WINDOWS\system32\wldap32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Win32 LDAP API DLL 2001-09-05 12:00:00 ole32.dll 0x77180000 D:\WINDOWS\system32\ole32.dll 5.1.2600.0 (XPClient.010817-1148) Microsoft Corporation Microsoft OLE for Windows 2001-09-05 12:00:00 comctl32.dll 0x71950000 D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll 6.0 (xpclient.010817-1148) Microsoft Corporation User Experience Controls Library 2001-09-05 20:00:00 CnsMinIO.dll 0x9d0000 D:\WINDOWS\Downloaded Program Files\CnsMinIO.dll 1, 0, 3, 6 北京三七二一科技有限公司 CnsMinIO 2006-04-21 09:28:28 cnsio.dll 0xa20000 D:\WINDOWS\Downloaded Program Files\cnsio.dll 1, 0, 2, 7 北京三七二一科技有限公司 cnsio 2006-04-21 09:28:30 COMCTL32.dll 0x77310000 D:\WINDOWS\system32\comctl32.dll 5.82 (xpclient.010817-1148) Microsoft Corporation Common Controls Library 2001-09-05 12:00:00 MSCTF.dll 0x74680000 D:\WINDOWS\system32\MSCTF.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation MSCTF Server DLL 2001-09-05 12:00:00 urlmon.dll 0x76060000 D:\WINDOWS\system32\urlmon.dll 6.00.2600.0000 (xpclient.010817-1148) Microsoft Corporation OLE32 Extensions for Win32 2001-09-05 12:00:00 Yhelper.dll 0x53000000 D:\Program Files\Yahoo!\Assistant\yhelper.dll 2, 0, 0, 1013 Helper Module 2005-12-20 13:23:04 helper.dll 0xb20000 D:\Program Files\3721\helper.dll 1, 0, 9, 1324 Helper Module 2006-01-23 21:32:10 OLEAUT32.dll 0x770f0000 D:\WINDOWS\system32\oleaut32.dll 3.50.5014.0 Microsoft Corporation Microsoft OLE 3.50 for Windows NT(TM) and Windows 95(TM) Operating Systems 2001-09-05 12:00:00 WININET.dll 0x76170000 D:\WINDOWS\system32\wininet.dll 6.00.2600.0000 (xpclient.010817-1148) Microsoft Corporation Internet Extensions for Win32 2001-09-05 12:00:00 CRYPT32.dll 0x76230000 D:\WINDOWS\system32\crypt32.dll 5.131.2600.0 (xpclient.010817-1148) Microsoft Corporation Crypto API32 2001-09-05 12:00:00 MSASN1.dll 0x76210000 D:\WINDOWS\system32\msasn1.dll 5.1.2600.0 (XPClient.010817-1148) Microsoft Corporation ASN.1 Runtime APIs 2001-09-05 12:00:00 mlang.dll 0x746d0000 D:\WINDOWS\system32\mlang.dll 6.00.2600.0000 (xpclient.010817-1148) Microsoft Corporation Multi Language Support DLL 2001-09-05 12:00:00 Secur32.dll 0x76f60000 D:\WINDOWS\system32\secur32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Security Support Provider Interface 2001-09-05 12:00:00 shell32.dll 0x773a0000 D:\WINDOWS\system32\shell32.dll 6.00.2600.0000 (xpclient.010817-1148) Microsoft Corporation Windows Shell Common Dll 2001-09-05 12:00:00 wsock32.dll 0x71a40000 D:\WINDOWS\system32\wsock32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows Socket 32-Bit DLL 2001-09-05 12:00:00 WS2_32.dll 0xb70000 D:\WINDOWS\system32\ws2_32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows Socket 2.0 32-Bit DLL 2001-09-05 12:00:00 WS2HELP.dll 0xcf0000 D:\WINDOWS\system32\ws2help.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows Socket 2.0 Helper for Windows NT 2001-09-05 12:00:00 mswsock.dll 0xd80000 D:\WINDOWS\system32\mswsock.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Microsoft Windows Sockets 2.0 Service Provider 2001-09-05 12:00:00 wshtcpip.dll 0xdc0000 D:\WINDOWS\system32\wshtcpip.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows Sockets Helper DLL 2001-09-05 12:00:00 RASAPI32.DLL 0x76eb0000 D:\WINDOWS\system32\rasapi32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Remote Access API 2001-09-05 12:00:00 rasman.dll 0x76e60000 D:\WINDOWS\system32\rasman.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Remote Access Connection Manager 2001-09-05 12:00:00 TAPI32.dll 0x76e80000 D:\WINDOWS\system32\tapi32.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Microsoft(R) Windows(TM) Telephony API Client DLL 2001-09-05 12:00:00 rtutils.dll 0x76e50000 D:\WINDOWS\system32\rtutils.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Routing Utilities 2001-09-05 12:00:00 WINMM.dll 0x76b10000 D:\WINDOWS\system32\winmm.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation MCI API DLL 2001-09-05 12:00:00 SYNCOR11.DLL 0x6bd00000 D:\WINDOWS\system32\Syncor11.dll 1.2.3 SoundMAX SynthCore R2.0 Midi Interface Driver 2002-11-06 20:00:38 sensapi.dll 0x72240000 D:\WINDOWS\system32\sensapi.dll 5.1.2600.0 (XPClient.010817-1148) Microsoft Corporation SENS Connectivity API DLL 2001-09-05 12:00:00 USERENV.dll 0x759d0000 D:\WINDOWS\system32\userenv.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Userenv 2001-09-05 12:00:00 DNSAPI.dll 0x76ef0000 D:\WINDOWS\system32\dnsapi.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation DNS Client API DLL 2001-09-05 12:00:00 winrnr.dll 0x76f80000 D:\WINDOWS\system32\winrnr.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation LDAP RnR Provider DLL 2001-09-05 12:00:00 rasadhlp.dll 0x76f90000 D:\WINDOWS\system32\rasadhlp.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Remote Access AutoDial Helper 2001-09-05 12:00:00 CnsMinEx.dll 0xf10000 D:\WINDOWS\Downloaded Program Files\CnsMinEx.dll 1, 0, 3, 1 国风因特软件(北京)有限公司 CnsMinEx 2006-04-29 17:10:26 SETUPAPI.dll 0x765e0000 D:\WINDOWS\system32\setupapi.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows Setup API 2001-09-05 12:00:00
zhousam 快乐黄口狮帖子:139 注册: 2005-06-13 来自:

zhousam 快乐黄口狮帖子:139 注册: 2005-06-13 来自:	发表于： 2006-05-26 13:04 \| 显示全部短消息资料字号：小中大 3楼 [SMSS.EXE] PID = 0x1ac CommandLine = smss.exe 0x48580000 D:\WINDOWS\system32\smss.exe 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation Windows NT Session Manager 2001-09-05 12:00:00 ntdll.dll 0x77f50000 D:\WINDOWS\system32\ntdll.dll 5.1.2600.0 (xpclient.010817-1148) Microsoft Corporation NT Layer DLL 2001-09-05 12:00:00
zhousam 快乐黄口狮帖子:139 注册: 2005-06-13 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT