1.exe无法彻底删除 - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛 1.exe无法彻底删除

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

1.exe无法彻底删除

pepsibluescx 初生襁褓狮帖子:3 注册: 2006-05-02 来自:	发表于： 2006-09-05 19:31 \| 只看楼主短消息资料字号：小中大 1楼 1.exe无法彻底删除病毒会出现在这2个地方 C:/DOCUME~1\James23o\LOCALS~1\Temp\1.exe 这个文件，不管是安全模式，还是正常模式下杀掉之后，几分钟又会出现另一个 C:\Program Files\Internet Explorer\PLUGINS\system32.sys 这个文件是每次开机后出现，删掉后就不出现，直到下一次开机请高手帮忙解答 2006-09-05 19:27:51
pepsibluescx 初生襁褓狮帖子:3 注册: 2006-05-02 来自:	分享到：

pepsibluescx 初生襁褓狮帖子:3 注册: 2006-05-02 来自:	发表于： 2006-09-05 19:35 \| 只看楼主短消息资料字号：小中大 2楼我自己扫描的如下 Logfile of HijackThis v1.99.1 Scan saved at ◇ 19:25:27, on 2006-9-5 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe d:\瑞星个人防火墙\rising\rfw\rfwsrv.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe C:\WINDOWS\system32\crypserv.exe D:\江民杀毒06\KV2006\KVSrvXP.exe C:\WINDOWS\Explorer.EXE D:\江民杀毒06\KV2006\kvwsc.exe C:\WINDOWS\system32\nvsvc32.exe d:\瑞星个人防火墙\rising\rfw\RfwMain.exe C:\Program Files\Common Files\Sogou PXP\p2psvr.exe E:\ToOl\虚拟光驱\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\system32\svchost.exe E:\网络连接\VPN\SoftEther VPN Client 2.0\vpnclient.exe C:\WINDOWS\SOUNDMAN.EXE D:\江民杀毒06\KV2006\KVMonXP.kxp C:\WINDOWS\system32\CSMContext.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Iarsn\TaskInfo 6.x\TaskInfo.exe C:\Program Files\Stardock\ObjectDock\ObjectDock.exe C:\WINDOWS\system32\wscntfy.exe E:\系统文件\浏览器\Maxthon\Maxthon\Maxthon.exe D:\江民杀毒06\KV2006\UIHost.exe C:\WINDOWS\system32\conime.exe E:\Winamp5\Winamp\Winamp.exe D:\木马杀客\ha_hijackthis_1991\HijackThis.exe
pepsibluescx 初生襁褓狮帖子:3 注册: 2006-05-02 来自:

pepsibluescx 初生襁褓狮帖子:3 注册: 2006-05-02 来自:	发表于： 2006-09-05 19:35 \| 只看楼主短消息资料字号：小中大 3楼 O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\idman\Internet Download Manager\IDMIECC.dll O2 - BHO: FiltrateWebObj Class - {42AFACEE-2A77-41EB-9EE2-D9F8AF827F90} - D:\江民杀毒06\KV2006\KVBHO.dll O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\QQ\Tencnet\QQIEHelper.dll O2 - BHO: KPBHO Class - {7C7DE9B8-CAA6-4B31-BC09-45AFC6B90FDE} - C:\WINDOWS\system32\iesense.dll O2 - BHO: BrowseHelper Class - {80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} - D:\江民杀毒06\KV2006\KvShell.dll O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\迅雷\Thunder\ComDlls\XunLeiBHO_002.dll O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - D:\KuGoo\KuGoo3\KuGoo3DownXControl.ocx O3 - Toolbar: 江民杀毒工具栏 - {B5A34A93-D538-43A7-8371-864CB6148D12} - D:\江民杀毒06\KV2006\KvShell.dll O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\KakaTool.dll O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [KvMonXP] "D:\江民杀毒06\KV2006\KVMonXP.kxp" /auto O4 - HKLM\..\Run: [RfwMain] "D:\瑞星个人防火墙\Rising\Rfw\rfwmain.exe" -Startup O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [CSMContext] C:\WINDOWS\system32\CSMContext.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [TaskInfo.exe] "C:\Program Files\Iarsn\TaskInfo 6.x\TaskInfo.exe" O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe O8 - Extra context menu item: Download All Links with IDM - D:\idman\Internet Download Manager\IEGetAll.htm O8 - Extra context menu item: Download with IDM - D:\idman\Internet Download Manager\IEExt.htm O8 - Extra context menu item: 使用KuGoo3下载(&K) - D:\KuGoo\KuGoo3\KuGoo3DownX.htm O8 - Extra context menu item: 使用迅雷下载 - D:\迅雷\Thunder\Program\GetUrl.htm O8 - Extra context menu item: 使用迅雷下载全部链接 - D:\迅雷\Thunder\Program\GetAllUrl.htm O8 - Extra context menu item: 用比特精灵下载(&B) - D:\比特精灵\BitSpirit\bsurl.htm O9 - Extra button: 番茄花园 - {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} - http://www.tomatolei.com (file missing) O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\QQ\Tencnet\QQIEHelper.dll O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\QQ\Tencnet\QQIEHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: 访问瑞星网站 - {FF2DE7A6-ECB1-4CBC-9C0E-D92A9E66E444} - http://www.rising.com.cn/?u=RSTB (file missing) O9 - Extra button: 访问卡卡社区 - {FF2DE7A6-ECB1-4CBC-9C0E-D92A9E66E445} - http://www.ikaka.com/?u=RSTB (file missing) O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\cn_spiex.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{C2B36756-83D5-44DA-BC7C-DEC7689C61DF}: NameServer = 211.155.27.88 61.144.56.100 O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe O23 - Service: KVSrvXP - Jiangmin Co. Ltd - D:\江民杀毒06\KV2006\KVSrvXP.exe O23 - Service: KVWSC - Jiangmin Co.Ltd - D:\江民杀毒06\KV2006\kvwsc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: P4P Service - Sohu.com Inc. - C:\Program Files\Common Files\Sogou PXP\p2psvr.exe O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - d:\瑞星个人防火墙\rising\rfw\rfwproxy.exe O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - d:\瑞星个人防火墙\rising\rfw\rfwsrv.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - E:\ToOl\虚拟光驱\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe O23 - Service: SoftEther VPN Client 2.0 (vpnclient) - Unknown owner - E:\网络连接\VPN\SoftEther VPN Client 2.0\vpnclient.exe" /service (file missing)
pepsibluescx 初生襁褓狮帖子:3 注册: 2006-05-02 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT