Weak current College】 【common dangerous file list.

<br> <BR> <BR> CnsHook.dll <BR> file description: CnsHook.dll is the network name associated client file for Hook address bar message. .<BR> Belongs Software: 3721 Internet real-name <BR> removal method: Use the top of the rogue software removal tool to remove <BR> <BR> SPTED.dll <BR> File Description: This is a PE Trojan virus, not yet .clear what software is installed to bring the <BR> removal method: After entering Safe Mode to delete. .<BR> <BR> IRJIT.dll <BR> File Description: This is the 9991.com with a rogue software on the installation of the QQ <BR> after a lot of expression, it will automatically installed this software, please note; now more .Home anti-virus software definition of this file into virus. <BR> removal method: Use F8 to enter safe mode, delete <BR> <BR> update.exe <BR> File Description: This is a rogue on 9991.com .<BR> directory software is often C: \ ProgramFiles \ CommonFiles \ UPDATE \ <BR> removal method: Use F8 to enter safe mode, delete <BR> <BR> wc98pp.dll <BR> File Description: Network Protocol .Processor - e-book compiler tools WebCompiler related. .<BR> Wc98pp.dll file itself does not affect that many computers have this file, but when explorer.exe goes wrong, delete this file can resolve the problem, then delete the registry key in the search-related. .usign.dll, was mentioned in this document and wc98pp.dll similar two files, delete these two files can clear out a small ad IE constantly. .<BR> <BR> Stdup.dll <BR> File Description: super boring malicious adware; difficult to completely remove. <BR> 1: Safe Mode <BR> 2: Remove the system all the stdup.dll <BR .> 3: Registry Search stdup.dll, all deleted <BR> addition stdup.dll, there is a similar named stdsver.dll, should be deleted. .<BR> <BR> Also note that if there is a target.dll, is a rogue plug-in. .<BR> <BR> Res.exe <BR> Description: Downloader.win32.Sma (Trojan) <BR> the virus modifies the registry to achieve self-starting, to download other viruses or change your home page to 9991.com, etc., and .may cause the computer shuts down slow, can not even shutdown. .<BR> <BR> Yasbar.dll <BR> File Description: The installation of the Yahoo Toolbar as resulting from the document. .Is rogue software, and strongly recommend the use of top of the rogue software removal tool removed. .<BR> <BR> BDSrHook.dll <BR> File Description: This is because the plug-in installed, Baidu generated files, are also rogue software, because the system has a bdguard.sys in the protection of this file, <BR> so .is very difficult to use ordinary delete this file, we strongly recommend using the top of the rogue software removal tool removal. <BR> <BR> cdnns.dll <BR> File Description: Internet access installed in 3721 after the Chinese have this junk files ., is rogue software, Internet will not succeed often found, and ultimately found that because the file causing the problem. .<BR> Strongly recommend the use of top of the rogue software removal tool remove <BR> <BR> advsc.dll <BR> file description: advsc.dll is Adware.Win32.Newweb.c Trojan-related documents, proposed to delete. .<BR> <BR> HelperService.dll <BR> file description: HelperService.dll is Adware.Win32.Delf.g Trojan-related documents, proposed to delete. .<BR> <BR> Cdnup.exe <BR> file description: cdnup.exe is produced CNNIC China Internet Network Information Center Chinese Chinese domain name and e-mail client, recommend to the Add / Remove Programs to remove. .<BR> <BR> Hbhelper.dll <BR> file description: hbhelper.dll Secretary of adware is a great little documentation, the software bundled with some software, recommended for immediate deletion. .<BR> <BR> Lup.dll <BR> file description: lup.dll advertising program files is recommended to use anti-spyware scan or delete it. .<BR> <BR> Miniserver.exe <BR> Program Name: QQ video Trojan or Trojan-Downloader.Win32.Delf.ca <BR> program purposes: Trojan viruses for theft 32-bit Windows virus that can in all 32 .the Windows platform for infection. .<BR> <BR> MMSASS ~ 1.dll <BR> file description: MMSASS ~ 1.dll is an adware related program, recommended for immediate deletion. .<BR> <BR> Msdc32.dll <BR> file description: msdc32.dll is a Trojan Trojan-Downloader.Win32.Small.crw documents, recommended for immediate deletion. .<BR> <BR> Obwbkya.dll <BR> file description: obwbkya.dll Adware Adware is a domestic-related documents, recommended for immediate deletion. .<BR> <BR> Service.exe <BR> File Description: Trojan virus, Service.exe dozens of worms, Trojan horses for the harm are different. .Most of the theft of password-based, a malicious attacker to remotely control. .<BR> <BR> Usrinit.exe <BR> Program Name: W32.Kedebe.E @ mm or W32.Maddis.B <BR> program uses: Trojans destroy the systems, procedures <BR> Process Analysis: with a specific .extensions to collect email addresses to send itself to collect a copy of the address. .Trying to terminate the process with some text and delete the relevant files to reduce the security settings. .Add entries to the hosts file to prevent some security-related Web sites. .Remove some of the security program files. .Virus randomly open a port, use HTTP and SOCKS proxy protocol. .Virus will also scan LAN, spread through network shares. <BR> <BR> Win32bootcfg.exe <BR> Program Name: Troj_ADWARE.cku <BR> program uses: Trojan <BR> process analysis: virus modifies the registry to achieve self-starting ., starts to run C: \ iexplorer.exe. .This is a Trojan horse to download viruses or advertising purposes, which may be downloaded when the user of other viruses and online display ads. .Should be removed immediately. .<BR> <BR> Winscntrl.exe <BR> file description: <BR> Backdoor / AimBot the latest variant of the worm can spread using a variety of loopholes in the system. .<BR> <BR> Wmpdrm.dll <BR> file description: <BR> wmpdrm.dll is Trojan.DL.Small.ibr Trojan documents, recommended for immediate deletion. .<BR> <BR> Syssmss.exe <BR> Program Name: QQRobber variant n "(Troj.QQRobber.n) <BR> virus signature: This is a QQ number and password stealing Trojan. <BR> Attack symptoms .: First release of the virus file to the following directory: C: \ ProgramFiles \ InternetExplorer \ syssmss.exe, and added the registry key, so booting from the start. The virus QQ by searching the currently open windows, read sensitive information, then the Pirates .access sensitive information is sent to the specified mailbox or submitted to the designated web page, will also close a lot of security software, the user will significantly affect the system security. <BR> <BR> cnsminkp.sys <BR> file description: cnsminkp.sys is .3721 relevant documents. <BR> <BR> vfp02.exe <BR> Program Name: Troj_Backdoor.msService <BR> program uses: backdoor virus virus, monitoring and remote control. <BR> process analysis: the virus is modified up .Table implementation from the start, the virus runs and opened the port, a malicious attacker eavesdropping and remote control. <BR> <BR> win.exe <BR> Program Name: W32/Sdbot-QI <BR> program uses: worms, including .backdoor remote control. <BR> Process Analysis: The virus modifies the registry service to create win-xp system to achieve self-starting win.exe, at the same time create a system to modify the registry service COM + System to achieve self-injection of the virus module SystemVolumeInformationer.dll, virus .use of computer networks and the use of weak passwords spread of the shared folder that contains backdoor Trojan functionality, allowing remote control of the illegal invaders. The virus will attempt to delete network shares, to participate in Dos attacks, theft of computer information to download and manage files, and may steal passwords .. <BR> <BR> system.exe <BR> file description: system.exe is netcontroller Trojan generated files, appear in the c: \ windows directory, it is recommended to remove it. but the system distinguish between system processes .. <BR> <BR> msinfo.exe <BR> file description: msinfo.exe is the Gator adware. This process monitors your browsing habits and data back to the server for analysis. This program also .window will pop-up ads, it is recommended to immediately remove. <BR> <BR> SVKP.sys <BR> Program Name: W32/Spybot-FB <BR> program uses: p2p worm, IRC backdoor remote control. <BR> process .Analysis: The virus creates SVKP system service implementation from the start, running a IRC server connection open the door for a malicious attacker to provide remote control. <BR> <BR> KakaTool.dll <BR> file description: KakaTool.dll Kaka .Toolbar Helper software security procedures. <BR> <BR> ntdhcp.exe <BR> Process File: ntdhcp or ntdhcp.exe <BR> Process Name: Trojan-PSW.Win32.QQRob.218 <BR> file description: ntdhcp .. exe is a Trojan Trojan-PSW.Win32.QQRob.218 procedures, it is recommended to immediately remove. <BR> <BR> pp6.dll <BR> DLL files: pp6 or pp6.dll <BR> DLL name: Trojan.PWS. .Gamania <BR> file description: pp6.dll is Trojan.PWS.Gamania Trojan related files, it is recommended to immediately remove. <BR> <BR> obwbkya.dll <BR> file description: obwbkya.dll Adware Adware is a domestic-related documents ., the proposed 936 posts immediately removed <BR> UID172491 essence of a coin 2182 Points 1615 Reading Access 60-hyun from vietnam time of 120 hours of up time online last login 2006-12-13 view details <BR> 2009-5-25 reference to use props .report back TOP <BR> <BR>.