这几个病毒删除不掉 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛这几个病毒删除不掉

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

这几个病毒删除不掉

BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	发表于： 2007-02-12 14:41 \| 显示全部短消息资料字号：小中大 1楼这几个病毒删除不掉这几个病毒提示说重新启动后删除,但是重新启动后却还在,怎么都杀不掉,安全模式也杀不掉附件: 文件名:8430272007212143206.jpg 下载次数:322 文件类型:image/pjpeg 文件大小: 上传时间:2007-2-12 14:41:28 描述: 2007-02-12 15:01:42
BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	分享到：

BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	发表于： 2007-02-12 14:47 \| 显示全部短消息资料字号：小中大 2楼关了,还是不行
BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:

BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	发表于： 2007-02-12 15:08 \| 显示全部短消息资料字号：小中大 3楼 2007-02-12,14:50:45 System Repair Engineer 2.3.13.690 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] (ctfmon.exe)(C:\WINDOWS\system32\ctfmon.exe) [(Verified)Microsoft Corporation] (Super Rabbit IEPro)(; C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD) [Super Rabbit Soft] (MsnMsgr)("C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background) [(Verified)Microsoft Corporation] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce] (FlashPlayerUpdate)(C:\WINDOWS\system32\Macromed\Flash\GetFlash.exe) [(Verified)Adobe Systems, Inc.] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] (load)() [N/A] (run)() [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] (runeip)(C:\Program Files\Rising\AntiSpyware\runiep.exe) [Beijing Rising Technology Co., Ltd.] (RavTask)("C:\Program Files\Rising\Rav\RavTask.exe" -system) [Beijing Rising Technology Co., Ltd.] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (shell)(Explorer.exe) [(Verified)Microsoft Corporation] (Userinit)(C:\WINDOWS\system32\userinit.exe,) [(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] (AppInit_DLLs)() [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] (UIHost)(logonui.exe) [(Verified)Microsoft Corporation] -------------------------------------------------------------------------------- 启动文件夹 [Microsoft Office] (C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk --) C:\PROGRA~1\MICROS~2\Office\OSA9.EXE [Microsoft Corporation])(H) [腾讯QQ珊瑚虫版] (C:\Documents and Settings\BFHG\「开始」菜单\程序\启动\腾讯QQ珊瑚虫版.lnk --) C:\PROGRA~1\Tencent\QQ\CoralQQ.exe [珊瑚虫工作室])(H)
BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:

BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	发表于： 2007-02-12 15:08 \| 显示全部短消息资料字号：小中大 4楼服务 [Human Interface Device Access / HidServ][Stopped/Disabled] (C:\WINDOWS\System32\svchost.exe -k netsvcs--)%SystemRoot%\System32\hidserv.dll)(N/A) [Rising Process Communication Center / RsCCenter][Running/Auto Start] ("C:\Program Files\Rising\Rav\CCenter.exe")(Beijing Rising Technology Co., Ltd.) [Rising RealTime Monitor / RsRavMon][Running/Auto Start] ("C:\Program Files\Rising\Rav\Ravmond.exe")(Beijing Rising Technology Co., Ltd.) -------------------------------------------------------------------------------- 驱动程序 [BaseTDI / BaseTDI][Running/Auto Start] (\??\C:\WINDOWS\system32\drivers\basetdi.sys)(Beijing Rising Technology Co., Ltd.) [ExpScaner / ExpScaner][Running/Auto Start] (\??\C:\Program Files\Rising\Rav\ExpScan.sys)() [hibcro24 / hibcro24][Stopped/Boot Start] (\SystemRoot\system32\drivers\hibcro24.sys)(N/A) [HookCont / HookCont][Running/Auto Start] (\??\C:\Program Files\Rising\Rav\HOOKCONT.sys)(Rising) [HookReg / HookReg][Running/Auto Start] (\??\C:\Program Files\Rising\Rav\HookReg.sys)() [HookSys / HookSys][Running/Auto Start] (\??\C:\Program Files\Rising\Rav\HookSys.sys)(Rising) [iillckb / iillckbk][Running/Boot Start] (\SystemRoot\System32\DRIVERS\iillckbk.sys)(N/A) [mefewa8 / mefewa82][Running/Boot Start] (\SystemRoot\System32\DRIVERS\mefewa82.sys)(N/A) [MEMSCAN / MEMSCAN][Running/Auto Start] (\??\C:\Program Files\Rising\Rav\MEMSCAN.sys)(瑞星软件有限公司) [npkcrypt / npkcrypt][Running/Auto Start] (\??\C:\Program Files\Tencent\QQ\npkcrypt.sys)(INCA Internet Co., Ltd.) [npkycryp / npkycryp][Stopped/Manual Start] (\??\C:\Program Files\Tencent\QQ\npkycryp.sys)(N/A) [PnpWmkDrv / PnpWmkDrv][Running/System Start] (\??\C:\WINDOWS\system32\drivers\PnpWmkDrv.sys)(N/A) [Direct Parallel Link Driver / Ptilink][Running/Manual Start] (system32\DRIVERS\ptilink.sys)(Parallel Technologies, Inc.) [RsNTGDI / RsNTGDI][Running/Boot Start] (\SystemRoot\system32\Drivers\RsNTGdi.sys)(Beijing Rising Technology Co., Ltd.) [RSPPSYS / RSPPSYS][Running/Auto Start] (\??\C:\Program Files\Rising\Rav\RSPPSYS.sys)(Rising) [TL-WN321G 1.0 USB Wireless Adapter / RT73][Running/Manual Start] (system32\DRIVERS\rt73.sys)(Ralink Technology, Corp.) [Secdrv / Secdrv][Stopped/Manual Start] (system32\DRIVERS\secdrv.sys)(N/A) [SiS300i / SiS300i][Stopped/Manual Start] (system32\DRIVERS\sis300ip.sys)(Silicon Integrated Systems Corporation) [SiS630 / SiS630][Running/Manual Start] (system32\DRIVERS\sis630p.sys)(Silicon Integrated Systems Corporation) [Service for AC'97 Sample Driver (WDM) / SiS7018][Running/Manual Start] (system32\drivers\ac97sis.sys)(Silicon Integrated Systems Corp.) [SIS AGP Bus Filter / sisagp][Running/Boot Start] (\SystemRoot\system32\DRIVERS\sisagp.sys)(Silicon Integrated Systems Corporation) [SiS PCI Fast Ethernet Adapter Driver / SISNIC][Running/Manual Start] (system32\DRIVERS\sisnic.sys)(SiS Corporation) [tlekmz2 / tlekmz21][Running/Boot Start] (\SystemRoot\System32\DRIVERS\tlekmz21.sys)(N/A)
BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:

BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	发表于： 2007-02-12 15:09 \| 显示全部短消息资料字号：小中大 5楼浏览器加载项 [Thunder Browser Helper] {39F7E361-828A-4B5A-BCAF-5B79BFDFEA60} (C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_007.dll, Thunder Networking Technologies,LTD) [BitComet Helper] {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} (C:\Program Files\BitComet\tools\BitCometBHO.dll, BitComet) [超级兔子上网精灵] {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} (C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology) [启动迅雷5] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} (C:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD) [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} (C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT) [QQIEFloatBarCfgCmd Class] {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} (C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司) [超级兔子上网精灵] {43869BB3-22FD-4F15-9B46-238106BA2F4E} (C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology) [Edit Class] {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (C:\WINDOWS\system32\CMBEdit.dll, ) [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} (C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.) [DHTML Edit Control Safe for Scripting for IE5] {2D360201-FFF5-11D1-8D03-00A0C959BC0A} (C:\WINDOWS\system32\dllcache\dhtmled.ocx, Microsoft Corporation) [Thunder Browser Helper] {39F7E361-828A-4B5A-BCAF-5B79BFDFEA60} (C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_007.dll, Thunder Networking Technologies,LTD) [BitComet Helper] {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} (C:\Program Files\BitComet\tools\BitCometBHO.dll, BitComet) [超级兔子上网精灵] {43869BB3-22FD-4F15-9B46-238106BA2F4E} (C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology) [Shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} (%SystemRoot%\system32\shdocvw.dll, N/A) [超级兔子上网精灵] {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} (C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology) [Microsoft Web 浏览器] {8856F961-340A-11D0-A96B-00C04FD705A2} (C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation) [相关搜索] {A29F7F71-DCDB-412D-B19A-2002DC966E33} (C:\Program Files\yok\relband.dll, N/A) [SearchAssistantOC] {B45FF030-4447-11D2-85DE-00C04FA35C89} (%SystemRoot%\system32\shdocvw.dll, N/A) [AUDIO__MP3 Moniker Class] {CD3AFA76-B84F-48F0-9393-7EDC34128127} (C:\WINDOWS\system32\wmp.dll, Microsoft Corporation) [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} (C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.) [&使用迅雷下载] (C:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A) [&使用迅雷下载全部链接] (C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A)
BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:

BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:	发表于： 2007-02-12 15:11 \| 显示全部短消息资料字号：小中大 6楼文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\system32\winhlp32.exe %1] .INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] -------------------------------------------------------------------------------- Winsock 提供者 N/A -------------------------------------------------------------------------------- Autorun.inf N/A -------------------------------------------------------------------------------- HOSTS 文件 127.0.0.1 localhost -------------------------------------------------------------------------------- API HOOK N/A --------------------------------------------------------------------------------
BFHG 初生襁褓狮帖子:8 注册: 2007-02-12 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT