杀不掉的Backdoor.GPigeon.uac,怎么办,扫描日志也查不到它? - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛杀不掉的Backdoor.GPigeon.uac,怎么办,扫描日志也查不到它?

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

2 / 2 页

跳转页

杀不掉的Backdoor.GPigeon.uac,怎么办,扫描日志也查不到它?

dzhxzh 初生襁褓狮帖子:75 注册: 2006-02-01 来自:	发表于： 2006-09-01 21:32 \| 只看楼主短消息资料字号：小中大 11楼 [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [C:\WINDOWS\system32\SynTPFcs.dll] <Synaptics, Inc.><7.12.3 08Oct04> [PID: 1644][C:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [PID: 3188][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)> [C:\WINDOWS\system32\SynTPFcs.dll] <Synaptics, Inc.><7.12.3 08Oct04> [C:\WINDOWS\system32\KakaTool.dll] <Beijing Rising Technology Co., Ltd.><2, 0, 0, 9> [C:\WINDOWS\system32\xunleibho_v14.dll] <Thunder Networking Technologies,LTD><4, 6, 0, 62> [E:\Program Files\Tencent\QQ\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5> [C:\WINDOWS\system32\dla\tfswshx.dll] <Sonic Solutions><1.04.08a> [C:\WINDOWS\system32\tfswapi.dll] <Sonic Solutions><1.04.08a> [C:\WINDOWS\system32\dla\tfswcres.dll] <Sonic Solutions><1.04.08a> [e:\Program Files\Thunder Network1\Thunder\ComDlls\XunLeiBHO_002.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 2> [C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0> [e:\Program Files\Thunder Network1\Thunder\ComDlls\ThunderAgent_003.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 10> [PID: 2952][e:\Program Files\Thunder Network1\Thunder\Program\Thunder5.exe] <Thunder Networking Technologies,LTD><5.3.0.220> [e:\Program Files\Thunder Network1\Thunder\Program\UpdateDownload.dll] <Thunder Networking Technologies,LTD><1, 0, 1, 8> [e:\Program Files\Thunder Network1\Thunder\Program\download_interface.dll] <Thunder Networking Technologies,LTD><1, 0, 4, 71> [e:\Program Files\Thunder Network1\Thunder\Program\log4cplus.dll] <><1, 0, 2, 1> [e:\Program Files\Thunder Network1\Thunder\Program\stlport_vc646.dll] <STLport Consulting, Inc.><4.6.2003.1031> [e:\Program Files\Thunder Network1\Thunder\Program\asyn_dns.dll] <N/A><N/A> [e:\Program Files\Thunder Network1\Thunder\Program\msgmanage.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 15> [e:\Program Files\Thunder Network1\Thunder\Program\historyinfo_manage.dll] <Thunder Networking Technologies,LTD><5, 2, 0, 148> [C:\WINDOWS\system32\SynTPFcs.dll] <Synaptics, Inc.><7.12.3 08Oct04> [e:\Program Files\Thunder Network1\Thunder\Program\RegisterDll.dll] <Thunder Networking Technologies,LTD><2, 1, 0, 18> [e:\Program Files\Thunder Network1\Thunder\Program\FloatBar.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 2> [e:\Program Files\Thunder Network1\Thunder\Plugins\TingTing\TingTing.dll] <Thunder Networking Technologies,LTD><1, 1, 1, 9> [e:\Program Files\Thunder Network1\Thunder\Components\InMedia\iEmbedShell.dll] <　><1, 0, 0, 11> [e:\Program Files\Thunder Network1\Thunder\Components\InMedia\iEmbed04.dll] <　><2, 3, 0, 37> [e:\Program Files\Thunder Network1\Thunder\Components\P4PClient\P4PClient.dll] <Thunder Networking Technologies,LTD><1, 0, 3, 8> [C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21> [e:\Program Files\Thunder Network1\Thunder\Program\iTargetAd.dll] <Thunder Networking Technologies,LTD><1, 0, 1, 55> [C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0> [C:\WINDOWS\system32\socul.dll] <><1, 0, 1, 2> [C:\WINDOWS\system32\msdmo.dll] <N/A><N/A> [PID: 2212][C:\DOCUME~1\吕建钊~1.TOS\LOCALS~1\Temp\Rar$EX00.844\SREng.exe] <Smallfrogs Studio><2.0.21.505> [C:\WINDOWS\system32\SynTPFcs.dll] <Synaptics, Inc.><7.12.3 08Oct04> ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS Error. ["e:\Program Files\Macromedia\Dreamweaver MX 2004\Dreamweaver.exe" "%1"] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 ==================================
dzhxzh 初生襁褓狮帖子:75 注册: 2006-02-01 来自:

轩辕小聪卡卡技术团队帖子:8368 注册: 2006-01-09 来自:	发表于： 2006-09-01 21:40 \| 短消息资料字号：小中大 12楼 .JS Error. ["e:\Program Files\Macromedia\Dreamweaver MX 2004\Dreamweaver.exe" "%1"] 这个修复一下。汗，还是没看出来，病毒文件名称与具体路径？
轩辕小聪卡卡技术团队帖子:8368 注册: 2006-01-09 来自:

dzhxzh 初生襁褓狮帖子:75 注册: 2006-02-01 来自:	发表于： 2006-09-01 21:54 \| 只看楼主短消息资料字号：小中大 13楼 C:\Documents and Settings\吕建钊.TOSHIBA-61F7952\桌面\未命名.bmp
dzhxzh 初生襁褓狮帖子:75 注册: 2006-02-01 来自:

dzhxzh 初生襁褓狮帖子:75 注册: 2006-02-01 来自:	发表于： 2006-09-01 21:59 \| 只看楼主短消息资料字号：小中大 14楼文件A0029680.exe>>NspackUpx 路径c:\system volume information\_restore{ECA131EO-4B49-4303-9BB9-547B53F7b79d}\rp50 这病毒昨天我用最新的瑞星杀了,不过今天又扫描又有了
dzhxzh 初生襁褓狮帖子:75 注册: 2006-02-01 来自:

<<上一主题|下一主题>>

12

2 / 2 页

跳转页

页面顶部

Powered by Discuz!NT