本帖最后由 jon112233 于 2011-12-29 19:41 编辑
借此帖希望那位大大出来做个教程!
下载地址:http://www.sunbeltsoftware.com/E ... IPRERescue11316.exe
VIPRE Rescue uses our latest engine versions (so rootkit scanning should now also work on 64-bit systems). It also has the ability to do custom scans as well as unquarantine items. Here's a brief overview of some of the most recent changes to VIPRE Rescue.
An important change is that the scanner will do a deep scan with logging enabled by default (even without running the .bat file). This means that some of the commands needed to be changed as well. Here is a list of all the new commands: Current Version: viprerescue11316.exe
Note: VIPRE Rescue is updated very regularly with the latest definitions. When you need VIPRE Rescue, always first come to this site and download the latest version. You can check the version number (e.g. viprerescue11316.exe) which will be incrementing with each update.
Download VIPRE Rescue
C:\VIPRERESCUE>viprerescuescanner /help
VIPRE Rescue Scanner v4.0.10.0
Copyright (c) 2011 Sunbelt Software. All rights reserved.
Usage: VIPRERescueScanner.exe [options]
/quick - Perform a quick scan (default is deep scan)
/nolog - Disable logging (default is enabled)
/norootkit - Disable rootkit engine (default is enabled)
/path - Scan a specific path
/qlist - List quarantined items
/restore - Restore quarantined items
C:\VIPRERESCUE>
The first three options are obvious but it would be good to know how to use the last three. For the /path option allows you to do a custom scan of a specific location. You just need to type:
C:\VIPRERESCUE>Viprerescuescanner.exe /path C:\examplefolder
The /qlist option will display a list of all items that are in quarantine and assign a number next to them; 1, 2, 3, etc.
The /restore option allows you to restore the files that are in quarantine. You will need to specify the number of the item in quarantine you want to restore. Example:
C:\VIPRERESCUE>Viprerescuescanner.exe /restore 2
--------------------------------------------------------------------------------
Directions for Windows
If you are able, download the rescue program to the infected computer, otherwise download the VIPRE Rescue Program onto a USB drive or some other removable media.
Plug the media into the infected computer.
Navigate to the directory that contains the VIPRE Rescue Program.
Double-click on viprerescue11316.exe
At the prompt, "Do you wish to extract the VIPRE Rescue Scanner to your computer?" click Yes.
You will be prompted for a destination folder to unzip to. Keep the default (C:\VIPRERESCUE) or enter a new folder, then click Unzip. Make sure the checkbox for "When done unzipping open: .\deep_scan.bat" is checked.
The VIPRE Rescue Program will download the files into the destination folder. Click OK at the prompt.
The VIPRE Rescue Program will open a command line window and run a deep scan.
Directions for Command Line:
Boot the computer in "Safe Mode with Command Prompt" (press F8 when the computer starts to boot. When the boot screen appears, use the down arrow to highlight the selection).
When the command line appears, navigate to the directory or removable media that contains the VIPRE Rescue Program (viprerescue11316.exe).
Type "viprerescue11316.exe" at the command prompt.
At the prompt, "Do you wish to extract the VIPRE Rescue Scanner to your computer?" click Yes.
You will be prompted for a destination folder to unzip to. Keep the default (C:\VIPRERESCUE) or enter a new folder, then click Unzip. Make sure the checkbox for "When done unzipping open: .\deep_scan.bat" is checked.
The VIPRE Rescue Program will download the files into the destination folder. Click OK at the prompt.
The VIPRE Rescue Program will open a command line window and run a deep scan.
Performing Additional Scans:
Navigate to C:\VIPRERESCUE (or the directory VIPRE Rescue Program was installed into).
At the command prompt, enter: "VIPRERescueScanner"
Use one or more of the following command line options:
No command line option: Deep Scan with Rootkit and logging enabled
/quick - Perform a quick scan (default is deep scan)
/nolog - Disable logging (default is enabled)
/norootkit - Disable rootkit engine (default is enabled)
/path - Scan a specific path
/qlist - List quarantined items
/restore - Restore quarantined items
If logging is enabled, results can be found in the C:\VIPRERESCUE directory and are stored in an .xml file. The program files can remain on your computer, and will not interfere with the normal operation of VIPRE. The computer must be able to boot before you can run this program.
|
发表于 2011-12-29 18:57:12
楼主
最后一枚