網際論壇 - 寬頻使用 / 防毒防駭討論 - 〔防毒防駭〕開機搜尋不到dl.exe檔案
» 遊客:  註冊 | 登錄 | 會員 | 幫助
 

免費線上小說
動漫分類 : 最新上架熱門連載全本小說最新上架玄幻奇幻都市言情武俠仙俠軍事歷史網游競技科幻靈異 ... 更多小說

作者:
標題: 〔防毒防駭〕開機搜尋不到dl.exe檔案 上一主題 | 下一主題
  baolai
  VIP會員 
 


 
  積分 2747
  發文 164
  註冊 2006-9-5
  來自 Taipei
  狀態 離線
#1  〔防毒防駭〕開機搜尋不到dl.exe檔案

問題:

打開電腦 (開機) 出現了

Windows找不到檔案或項目C:\windows\system32\dl.exe 請檢查鍵入的檔案是否正確....

找不到dl.exe,該如何用才能把警告視窗取消不出現?

奇摩知識+搜尋dl.exe

=====================================================
需要去 "編輯登錄檔".. 搜尋 dl.exe 刪掉即可..
不過你仍需要去 C:\WINDOWS\system32 找已下東西刪掉..
nxrun.reg
rn.exe
dl.exe


證據如下 :




雖然這個方法治標不治本 ..
但是,也應該可以解決那個問題視窗的出現 ..

dl.exe

做法流程圖:

1.請先將隱藏檔名給顯示出來 ..



2.在桌面上新增一個「記事本」!




3.將檔名後面的「.txt」給去掉!!



4.接下來會出現對話視窗,直接選擇「是」!!



5.按該檔案右鍵 > 選擇「使用筆記本開啟」的選項!!



6.在該記事本內隨便打入幾個字,然後關閉(選擇是,儲存)!!





最後把該檔案剪下來,貼到問題視窗顯示的路徑內,應該就不會再出現該視窗了 ..


資料來源:http://www.twbbs.net.tw/1677423.html

=====================================================


Worm@W32.Bagz的介紹



Worm@W32.Bagz

Bagz駭蟲竄起,網路將會面臨大塞車,用戶需密切注意,不要隨意開啟來路不明的附加檔,以避免感染此病毒

Bagz駭蟲會利用已感染Bagz駭蟲的電腦內收集通訊錄位址,並利用本身的SMTP引擎進行散播傳染。

基本介紹

病毒名稱 [url=]Worm@W32.Bagz[/url]
病毒別名 I-Worm.Bagz [Kaspersky], W32/Bagz.gen@MM [McAfee],W32.Bagz@mm [Symantec]
病毒型態 Worm , E-Mail
病毒發現日期 2004/10/07
影響平台 Windows 95/98/ME , Windows NT/2000/XP/2003

風險評估

散播程度:中
破壞程度:低

Worm@W32.Bagz行為描述:

註:在Win95/98/me %System% 預設值為 C:\windows\System

在WinNT/2000/XP/2003 %System% 系統預設值為 C:\WinNT\System32

透過自己的SMTP大量發送病毒信件。

病毒執行後,在%System%產生

dl.exe
syslogin.exe

 

修改登錄檔,如此開機即會啟動駭蟲。

HKEY_LOCAL_MACHINE
\Software\Microsoft\Windows\CurrentVersion\Run

名稱=syslogin.exe 值=syslogin.exe

會關閉windows的firewall功能

下載並執行遠端檔案

安裝自已的網路driver以通過當地防火牆


Worm@W32.Bagz信件格式:

發信者: < 隨機 >

主旨: < 下列任一個 >
Re: User ID Update
Fwd: Your Funds are Eligible for Withdrawal
find a solution with this customer
No Subject
Re: Help Desk Registration
failure notice
Fwd: Password
when should i call you?
RE: Re: A question
Knowledge Base Article
Open Invoices
Returned mail: see transcript for details
building maintenance
[Fwd: Broken link]
WinXP
troubles are back again
Questions
Order Approval
units available
progress news
big announcements
Need help pls
You have recieved an eCard!
What is this ????
Deactivation Notice
Message recieved, please confirm
My funny stories
Cost Inquiry
Re: payment
referrences <
BR>Webmail Invite
RE: quote request
 

內文: < 下列任一個 >
Hello,
Sorry, I forgot to attach the new contact information.
Please view the attached (.pdf) contact sheet.
Sincerely,
User

Hello,
I resent this email as attachment because
it was previously blocked by your email filters.
Please read the attachment and respond.
Thanks,
User

Hello,
I was in a hurry and I forgot to attach an important
document. Please see attached.
Best Regards,
User

Hello,
Your email was received.
YOUR REPLY IS URGENT!
Please view the attached text file for instructions.
Regards,
User

Hello,
Your email was sent in an INVALID format.
To verify this email was sent from you,
simply open the attached email (.eml) file
and click yes in the sender options box.
Thank You,
User

Hello,
My PC crashed while I was sending that last email.
I have re-attached the document of yours that I discovered.
Plea
se read attached document and respond ASAP.
Sincerely,
User

Hello,
What version of windows you are using?
This last document I received from you came out weird.
Please see the attached word file and resend the file to me.
Many thanks,
User

***YOUR MESSAGE HAS BEEN RECOGNIZED AS SPAM***
Hello,
The previous email you sent has been recognized as spam.
This means your email was not delivered to your friend or client.
You must open the attached file to receive more information.
***YOUR MESSAGE HAS BEEN RECOGNIZED AS SPAM***

***ATTENTION: YOUR EMAIL IS NOT BEING DELIVERED!***
You are currently unable to send emails.
This may be a billing issue.
Please call the billing center.
The # for the billing office is located in the attached
contact list for your convenience.
***ATTENTION: YOUR EMAIL IS NOT BEING DELIVERED!***

***URGENT: SERVICE SHUTDOWN NOTICE***
Due to your failure to comply with our email
Rules and Regulations, your em
ail account has been
temporarily suspended for 24 hours unless we are contacted regarding
this situation.
You must read the attached document for further
instructions. Failure to comply will result in termination of your account.
Regards,
Net Operator
***URGENT: SERVICE SHUTDOWN NOTICE***

last request before refunding
 

附加檔案: < 下列任一個 >
Ctutorial.doc .exe
doc.doc .exe
documents.doc .exe
atach.doc .exe
file.doc .exe
read.doc .exe
readme.doc .exe
contact.doc .exe
mail.doc .exe
att.doc .exe
warning.doc .exe
db.doc .exe
msg.doc .exe
message.doc .exe
messages.doc .exe
archive.doc .exe
arch.doc .exe
support.doc .exe
account.doc .exe
doc.zip
documents.zip
atach.zip
file.zip
read.zip
readme.zip
contact.zip
mail.zip
att.zip
warning.zip
db.zip
msg.zip
message.zip
messages.zip
archive.zip
arch.zip
support.zip
account.zip

資料來源http://forum.palmislife.com/viewthread.php?tid=61394


[ Last edited by baolai on 2007-5-25 at 04:16 PM ]





歡迎光臨寶來的紅色天葵子部落格


2007-5-25 04:02 PM
查看資料  訪問主頁  發短消息   編輯文章  引用回覆
  samc3
  進階會員 
 


  積分 2239
  發文 542
  註冊 2006-2-18
  來自 台南市
  狀態 離線
#2  

有時電腦中毒後網路都塞爆了---此路不通
原來是  W32.Bagz  作怪

[ Last edited by samc3 on 2007-8-15 at 11:56 PM ]


2007-8-15 11:54 PM
查看資料  發送郵件  發短消息   編輯文章  引用回覆

可打印版本 | 推薦給朋友 | 訂閱主題 | 收藏主題

論壇跳轉選單: