-
Linabbs's blog- website redirect and anti-virus won?t run
- Can?t update AVG or go to Windows update page
- Cannot access anti-virus websites
- [Active] Sinowal.Trojan and a few Others
- [Resolved] newly file added to pendrive keep continue being deleted
- [InActive] Does Anyone know what foxcglm.exe is?
- IE and Firefox will not Start after Virus Removal
- [Active] IE and Firefox not running apparent virus / malware issue
- [ACTIVE]Slow Running Computer
- [Active] Microsoft download blocked Google links hijacked.
Dec
26
Trojan-Downloader.Win32.Delf.axu
Filed Under Virus |
用卡巴扫描日志如下:
C:\WINDOWS\system\conime.exe/FSG: 检测到 木马程序 Trojan-Downloader.Win32.Delf.axu
文件 C:\Program Files\WinRAR\WinRAR.exe.tmp/FSG: 检测到 木马程序 Trojan-Downloader.Win32.Delf.axu
请问各位大侠,我到底中了什么木马啊?需要怎么才能杀掉啊?
卡巴删除之后,再一检测,一会又出现检测出这种病毒提示信息.
进入安全模式下,卡巴检测提示:未发现威胁!
以前用NOD32查杀,也是只能检测不能杀除啊.
高手们,到底该怎么查杀啊?
急.希望大侠能够抽出一点时间研究一下哈!
多谢了!
问题补充:我就是选择了显示所有文件夹的选项,还显示了所有的系统文件.和所有文件的扩展名,但是查杀的时候,照常可以杀掉,但过不了多久,卡巴又会检测到那个原来有病毒的文件夹下出现了原来的那个病毒!而且注册表RUN下,和boot.ini下,没有任何发现.到底怎么回事,高手赐招啊!不胜感激!
好多人让我重做系统或者彻底格盘,如果那样的话,我又何必来问你们呢?
老大们,给想个实用的方法!
(2) 删除病毒文件
%Program Files%\War3Monitor\War3Monitor.EXE
(3) 恢复病毒修改的注册表项目,删除病毒添加的注册表项
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft
\Windows\CurrentVersion\Run
键值: 字串: “War3Monitor”=”C:\Program Files
\War3Monitor\War3Monitor.EXE”
这是我分析Trojan-Downloader.Win32.Delf.bzf的。
Related Posts:
Comments
Leave a Reply
You must be logged in to post a comment.