upside
 
   
  
 反病毒 反诈骗 反虐犬
|
分享:
▲
▼
嗯 被注入了相当多的生成物档案 看来大都是木马之类的
要全部清除 可能需要花一些时间
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{40117B96-998D-4D80-8F89-5E9DBD9F3460}><C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys> []
<{22311A42-AC1B-158F-FD32-5674345F23A2}><C:\WINDOWS\System32\dhbpri.dll> [N/A]
<{26368135-64FA-BC34-DA32-DCF4FD431C92}><C:\WINDOWS\System32\qhbpri.dll> [N/A]
<{0EA66AD2-CF26-2E23-532B-B292E22F3266}><C:\Program Files\Internet Explorer\PLUGINS\NewTemp.dll> [N/A]
<{813AF41A-21B1-131B-1BFC-D2A90DF4A2B8}><C:\WINDOWS\System32\xygpri.dll> [N/A]
<{C51C4AFB-8A3A-6C1E-BA41-C10F02940731}><C:\WINDOWS\System32\sys15.dll> []
<{7A65498A-7653-9801-1647-987114AB7F47}><C:\WINDOWS\System32\zxgpri.dll> [N/A]
<{4562452F-FA36-BA4F-892A-FF5FBBAC5314}><C:\WINDOWS\System32\mydpri.dll> []
<{32311A42-AC1B-158F-FD32-5674345F23A3}><C:\WINDOWS\System32\dhcpri.dll> [N/A]
<{2F12545B-1212-1314-5679-4512ACEF8902}><C:\WINDOWS\System32\wdbpri.dll> [N/A]
<{759AFD5B-159F-ACD8-954C-ACD545FA6587}><C:\WINDOWS\System32\jzgpri.dll> []
<{D1351752-5628-1547-FFAB-BADC13512AFD}><C:\WINDOWS\System32\ztmpri.dll> []
<{913AF41A-21B1-131B-1BFC-D2A90DF4A2B9}><C:\WINDOWS\System32\xyhpri.dll> []
<{36368135-64FA-BC34-DA32-DCF4FD431C93}><C:\WINDOWS\System32\qhcpri.dll> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<MSDEG32><LYLoader.exe> [N/A]
<MSDWG32><LYLoadbr.exe> [N/A]
<MSDCG32 ><LYLeador.exe> [N/A]
<MSDOG32><LYLoador.exe> [N/A]
<MSDSG32><LYLoadar.exe> [N/A]
<MSDMG32><LYLoadmr.exe> []
<MSDHG32><LYLoadhr.exe> [N/A]
<MSDQG32><LYLoadqr.exe> [N/A]
[C:\WINDOWS\System32\qhcpri.dll] [N/A, ]
[C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys] [N/A, ]
[C:\WINDOWS\System32\sys15.dll] [N/A, ]
[C:\WINDOWS\System32\AVPSrv.dll] [N/A, ]
[C:\WINDOWS\System32\upxdnd.dll] [N/A, ]
[C:\DOCUME~1\BLACKD~1\LOCALS~1\Temp\rxso0.dll] [N/A, ]
[C:\DOCUME~1\BLACKD~1\LOCALS~1\Temp\mhso0.dll] [N/A, ]
[C:\DOCUME~1\BLACKD~1\LOCALS~1\Temp\wgso0.dll] [N/A, ]
[C:\WINDOWS\System32\xyhpri.dll] [N/A, ]
[C:\WINDOWS\System32\jzgpri.dll] [N/A, ]
[C:\WINDOWS\System32\ztmpri.dll] [N/A, ]
[C:\WINDOWS\System32\mydpri.dll] [N/A, ]
[C:\WINDOWS\System32\isapir.dll] [N/A, ]
|
