求助帮帮我吧 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛求助帮帮我吧

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

2 / 2 页

跳转页

求助帮帮我吧

xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:	发表于： 2007-02-21 16:02 \| 只看楼主短消息资料字号：小中大 11楼 [D:\qq2005b2\TIMProxy.dll] [tencent, 0, 3, 2, 4] [PID: 1720][D:\qq2005b2\QQ.exe] [TENCENT, 0, 0, 0, 0] [D:\qq2005b2\QQBaseClassInDll.dll] [, 1, 0, 0, 1] [D:\qq2005b2\QQHelperDll.dll] [, 1, 0, 0, 1] [D:\qq2005b2\BasicCtrlDll.dll] [Tencent, 6, 0, 200, 320] [D:\qq2005b2\QQAPI.dll] [, 1, 0, 0, 1] [D:\qq2005b2\TIMProxy.dll] [tencent, 0, 3, 2, 4] [C:\PROGRA~1\Rising\ANTISP~1\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5] [D:\qq2005b2\LoginCtrl.dll] [, 1, 0, 0, 1] [D:\qq2005b2\npkcntc.dll] [INCA Internet Co., Ltd., 2006, 6, 27, 1] [D:\qq2005b2\npkpdb.dll] [INCA Internet Co., Ltd., 2003, 10, 1, 1] [D:\qq2005b2\QQRes.dll] [tencent, 1, 0, 0, 1] [D:\qq2005b2\QQMainFrame.dll] [N/A, N/A] [D:\qq2005b2\CQQApplication.dll] [N/A, N/A] [D:\qq2005b2\NewSkin.dll] [, 1, 0, 0, 1] [D:\qq2005b2\HostingMgr.dll] [, 1, 0, 0, 1] [D:\qq2005b2\CameraDll.dll] [, 1, 0, 0, 1] [D:\qq2005b2\MailSummary.dll] [, 1, 0, 0, 1] [D:\qq2005b2\QQKnowledgeSearch.dll] [, 1, 0, 0, 1] [D:\qq2005b2\QQAllInOne.dll] [N/A, N/A] [D:\qq2005b2\GroupLive.dll] [N/A, N/A] [D:\qq2005b2\SCCore.dll] [TENCENT, 2, 0, 0, 1] [D:\qq2005b2\QQSpace.dll] [, 1, 0, 0, 1] [C:\WINDOWS\System32\msdmo.dll] [N/A, N/A] [D:\qq2005b2\QQGroupMng.dll] [, 1, 0, 0, 1] [D:\qq2005b2\QQSysMsgMng.dll] [N/A, N/A] [D:\qq2005b2\UserDefinedHead.dll] [, 1, 0, 0, 1] [D:\qq2005b2\QQPlugin.dll] [N/A, N/A] [D:\qq2005b2\QQConfigPlugin.dll] [, 1, 0, 0, 1] [C:\WINDOWS\System32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0] [D:\qq2005b2\QRingMng.dll] [N/A, N/A] [D:\qq2005b2\QQAvatar.dll] [N/A, N/A] [D:\qq2005b2\FlashAvatarDll.dll] [, 1, 4, 0, 1] [D:\qq2005b2\QQCustomFace.dll] [N/A, N/A] [D:\qq2005b2\QQPet.dll] [, 1, 0, 0, 1] [D:\qq2005b2\QQSceneMng.dll] [N/A, N/A] [D:\qq2005b2\LongConnection.dll] [tencent, 5, 0, 200, 160] [C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9] [D:\qq2005b2\PhoneAPI.dll] [, 1, 0, 0, 1] [D:\qq2005b2\DialerAllinOne.dll] [tencent, 1, 4, 0, 0] [D:\qq2005b2\BQQApplication.dll] [N/A, N/A] [D:\qq2005b2\GroupConnection.dll] [Tencent, 0, 3, 3, 5] [D:\qq2005b2\CommercesMng.dll] [, 1, 0, 0, 1] [D:\qq2005b2\PersonalDesktop.dll] [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2] [D:\qq2005b2\QQAddr.dll] [深圳市腾讯计算机系统有限公司, 5, 0, 101, 271]
xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:

xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:	发表于： 2007-02-21 16:02 \| 只看楼主短消息资料字号：小中大 12楼 [PID: 2936][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2888][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2824][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3064][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2880][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3228][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3152][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 196][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2480][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3204][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 4084][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3380][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2632][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 4092][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3832][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2772][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3820][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2444][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 1276][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3852][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3372][C:\WINDOWS\System32\net.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 2364][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3536][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 3044][C:\WINDOWS\System32\net1.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)] [PID: 4604][E:\单击\sreng2\SREng.EXE] [Smallfrogs Studio, 2.3.13.690] [C:\PROGRA~1\Rising\ANTISP~1\ieprot.dll] [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5] ==================================
xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:

xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:	发表于： 2007-02-21 16:03 \| 只看楼主短消息资料字号：小中大 13楼文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1] .EXE Error. [wuaucll.exe "%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf [D:\] [AutoRun] open=driver.exe [E:\] [AutoRun] open=driver.exe [F:\] [AutoRun] open=driver.exe ================================== HOSTS 文件 127.0.0.1 localhost ================================== API HOOK N/A ================================== [/CODE]
xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:

xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:	发表于： 2007-02-21 16:04 \| 只看楼主短消息资料字号：小中大 14楼好了,就这些了,我也看不懂,麻烦你帮忙看一下吧,谢谢~~~~
xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:

xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:	发表于： 2007-02-21 16:13 \| 只看楼主短消息资料字号：小中大 15楼再说声,新年快乐~~~~
xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:

大怪怪框框拙长孩提狮帖子:219 注册: 2006-11-08 来自:	发表于： 2007-02-21 16:27 \| 短消息资料字号：小中大 16楼用SREng编辑<shell><Explorer.exe wuaucll.exe> [N/A] 删掉后面的wuaucll.exe.不是整个删... 把这些进程全部结束掉： [PID: 1228][C:\WINDOWS\wuaucll.exe] [N/A, N/A] [PID: 1240][C:\WINDOWS\wuaucll.exe] [N/A, N/A] [PID: 1248][C:\WINDOWS\wuaucll.exe] [N/A, N/A] [PID: 1464][C:\WINDOWS\System32\driver.exe] [N/A, N/A] [PID: 1500][C:\WINDOWS\System32\driver.exe] [N/A, N/A] [PID: 1524][C:\WINDOWS\System32\driver.exe] [N/A, N/A] 接着删掉 C:\WINDOWS\wuaucll.exe C:\WINDOWS\System32\driver.exe 用冰刃删掉ＤE F盘下的driver.exe和Autorun.inf 这个病毒挺难删的...关联了.EXE，结束了进程不知道能不能修复还是等高手吧
大怪怪框框拙长孩提狮帖子:219 注册: 2006-11-08 来自:

有毒必问锋芒艾服狮帖子:1653 注册: 2005-02-13 来自:廣東	发表于： 2007-02-21 16:50 \| 短消息资料字号：小中大 17楼同意15楼
有毒必问锋芒艾服狮帖子:1653 注册: 2005-02-13 来自:廣東

xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:	发表于： 2007-02-21 17:40 \| 只看楼主短消息资料字号：小中大 18楼谢谢你们啊, 再问下, 那些东西在哪能删啊怎么删,什么是冰刃啊~~~~~
xiangni5028 初生襁褓狮帖子:44 注册: 2007-02-21 来自:

<<上一主题|下一主题>>

12

2 / 2 页

跳转页

页面顶部

Powered by Discuz!NT