aaccbbdd - 2009-6-14 9:46:00
附件:
您所在的用户组无法下载或查看附件用户系统信息:Opera/9.64 (Windows NT 5.1; U; Edition IBIS; zh-cn) Presto/2.1.1瑞星工程师19:您提交的样本不是病毒
瑞星工程师19 - 2009-6-14 9:50:00
1、文件名:10.exe
不是病毒
aaccbbdd - 2009-6-21 17:58:00
:kaka11:
是不是再重新分析下
smallyou93 - 2009-6-21 20:30:00
C:\Program Files\Internet Explorer\IETimber
C:\Program Files\Internet Explorer\IETimber\IETimber.dll
C:\Program Files\Internet Explorer\IETimber\IP.dat
C:\Program Files\Internet Explorer\IETimber\Uninstall.exe
C:\Program Files\Internet Explorer\IETimber\uISGRLFile.dat
HKLM\SOFTWARE\IETimber
HKLM\SOFTWARE\IETimber\\Install_Dir
HKLM\SOFTWARE\IETimber\\ToolBarVer
HKLM\SOFTWARE\IETimber\\TM
HKLM\SOFTWARE\IETimber\\AgentID
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\BrowseNewProcess
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\BrowseNewProcess\\BrowseNewProcess
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IETimber
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IETimber\\ie
HKCR\Toolbar_bho.IeToolbar.1
HKCR\Toolbar_bho.IeToolbar.1\\
HKCR\Toolbar_bho.IeToolbar.1\CLSID
HKCR\Toolbar_bho.IeToolbar.1\CLSID\\
HKCR\Toolbar_bho.IeToolbar
HKCR\Toolbar_bho.IeToolbar\\
HKCR\Toolbar_bho.IeToolbar\CLSID
HKCR\Toolbar_bho.IeToolbar\CLSID\\
HKCR\Toolbar_bho.IeToolbar\CurVer
HKCR\Toolbar_bho.IeToolbar\CurVer\\
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\\
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\ProgID
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\ProgID\\
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\VersionIndependentProgID
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\VersionIndependentProgID\\
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\Programmable
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\InprocServer32
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\InprocServer32\\
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\InprocServer32\\ThreadingModel
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\TypeLib
HKCR\CLSID\{489873CE-F3E1-44A3-8E89-04BE26BE4446}\TypeLib\\
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{489873CE-F3E1-44A3-8E89-04BE26BE4446}
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\\
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\FLAGS
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\FLAGS\\
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\0
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\0\win32
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\0\win32\\
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\HELPDIR
HKCR\TypeLib\{065683C4-C71A-47F1-830B-7D9309D3913D}\1.0\HELPDIR\\
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\\
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\ProxyStubClsid
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\ProxyStubClsid\\
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\ProxyStubClsid32
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\ProxyStubClsid32\\
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\TypeLib
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\TypeLib\\
HKCR\Interface\{8FF78EFD-0213-4A73-AC23-6A489190DBFB}\TypeLib\\Version
算流氓插件吧..
DoctorLc - 2009-6-23 6:35:00
流氓插件就不入库了吗?:kaka6: 这么囧的啊
© 2000 - 2025 Rising Corp. Ltd.