瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】 我的浏览器好像被劫持了,请大家帮我看看

12   2  /  2  页   跳转

【求助】 我的浏览器好像被劫持了,请大家帮我看看

收藏
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:38 | 只看楼主 短消息 资料
字号: 11楼

[C:\WINDOWS\system32\vct3216.acm]  [Voxware, Inc., 1.6.0.17]
    [C:\WINDOWS\system32\vct3216.dll]  [Voxware, Inc., 1.6.0.12]
    [C:\WINDOWS\system32\msms001.vwp]  [Voxware, Inc., 2.0.2.61]
    [C:\WINDOWS\system32\mvoice.vwp]  [Voxware, Inc., 2.0.0.12.01]
    [C:\Program Files\Tencent\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [C:\Program Files\Tencent\QQ\QQAllInOne.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQCustomFace.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQAvatar.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [C:\Program Files\Tencent\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\WINDOWS\system32\btncopy.dll]  [Broadcom Corporation., 4.0.1.3000]
    [C:\Program Files\Tencent\QQ\QQSceneMng.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\pr_remote.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\BQQApplication.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\FOURIER_M1.IME]  [北京紫光华宇软件股份有限公司, 4.0.0.5001]
    [C:\Program Files\Tencent\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [C:\Program Files\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [C:\Program Files\Tencent\QQ\QQPhoneHelper.dll]  [腾讯科技(深圳)有限公司, 2, 0, 6, 60]
    [C:\Program Files\Tencent\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Tencent\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQMagicFace.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQZip.dll]  [tencent, 0, 3, 2, 4]
    [C:\Program Files\Tencent\QQ\ShareFiles.dll]  [N/A, N/A]
[PID: 216][C:\Program Files\Tencent\QQ\TIMPlatform.exe]  [tencent, 0, 3, 1, 8]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 2548][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
[PID: 1708][C:\Program Files\EditPlus 2\editplus.exe]  [ES-Computing, 2, 1, 2, 147]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
[PID: 2644][C:\Program Files\ewido anti-spyware 4.0\ewido.exe]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\ewido anti-spyware 4.0\engine.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
[PID: 3432][C:\Program Files\lotus\notes\NLNOTES.EXE]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nnotesws.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nnotes.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nxmlproc.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\js32.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\NLSCCSTR.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\ndgts.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\LTOUIN22.dll]  [Lotus Development Corporation., 2.2.0.8911]
    [C:\Program Files\lotus\notes\nplugins.dll]  [IBM Corp, 7.0.00.5226]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\lotus\notes\NSTRINGS.DLL]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\namhook.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nNETBIOS.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nstclientu.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nimuiu.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
    [C:\Program Files\lotus\notes\mui\zh-CN\nimuires.dll.mui]  [, 3, 1, 0, 1]
    [C:\Program Files\lotus\notes\nNTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nlsxbe.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nDBnotes.DLL]  [IBM Corp, 7.0.00.5226]
[PID: 4844][C:\Program Files\lotus\notes\ntaskldr.EXE]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nnotes.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nxmlproc.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\js32.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\NLSCCSTR.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\ndgts.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\NSTRINGS.DLL]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nhkdaemn.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nwrdaemndll.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nNETBIOS.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nhldaemn.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\namhook.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nNTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 4576][D:\bt\mmsk1120\木马杀客\mmsk.exe]  [木马杀客, 2,0,0,7]
    [D:\bt\mmsk1120\木马杀客\krnln.fnr]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\HYExtLib.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\TrayIcon.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\iext2.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\iext.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\HtmlView.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\iext3.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\xplib.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\mmskskin.dll]  [, 2, 0, 0, 6]
    [D:\bt\mmsk1120\木马杀客\SkinPPWTL.dll]  [http://www.skinplusplus.com, 2, 1, 0, 0]
    [D:\bt\mmsk1120\木马杀客\shell.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\EThread.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\dp1.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\eAPI.fne]  [, 1, 0, 0, 1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\pr_remote.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
gototop
 
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:38 | 只看楼主 短消息 资料
字号: 12楼

[C:\WINDOWS\system32\vct3216.acm]  [Voxware, Inc., 1.6.0.17]
    [C:\WINDOWS\system32\vct3216.dll]  [Voxware, Inc., 1.6.0.12]
    [C:\WINDOWS\system32\msms001.vwp]  [Voxware, Inc., 2.0.2.61]
    [C:\WINDOWS\system32\mvoice.vwp]  [Voxware, Inc., 2.0.0.12.01]
    [C:\Program Files\Tencent\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [C:\Program Files\Tencent\QQ\QQAllInOne.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQCustomFace.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQAvatar.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [C:\Program Files\Tencent\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\WINDOWS\system32\btncopy.dll]  [Broadcom Corporation., 4.0.1.3000]
    [C:\Program Files\Tencent\QQ\QQSceneMng.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\pr_remote.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\BQQApplication.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\FOURIER_M1.IME]  [北京紫光华宇软件股份有限公司, 4.0.0.5001]
    [C:\Program Files\Tencent\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [C:\Program Files\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [C:\Program Files\Tencent\QQ\QQPhoneHelper.dll]  [腾讯科技(深圳)有限公司, 2, 0, 6, 60]
    [C:\Program Files\Tencent\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Tencent\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQMagicFace.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQZip.dll]  [tencent, 0, 3, 2, 4]
    [C:\Program Files\Tencent\QQ\ShareFiles.dll]  [N/A, N/A]
[PID: 216][C:\Program Files\Tencent\QQ\TIMPlatform.exe]  [tencent, 0, 3, 1, 8]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 2548][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
[PID: 1708][C:\Program Files\EditPlus 2\editplus.exe]  [ES-Computing, 2, 1, 2, 147]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
[PID: 2644][C:\Program Files\ewido anti-spyware 4.0\ewido.exe]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\ewido anti-spyware 4.0\engine.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
[PID: 3432][C:\Program Files\lotus\notes\NLNOTES.EXE]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nnotesws.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nnotes.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nxmlproc.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\js32.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\NLSCCSTR.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\ndgts.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\LTOUIN22.dll]  [Lotus Development Corporation., 2.2.0.8911]
    [C:\Program Files\lotus\notes\nplugins.dll]  [IBM Corp, 7.0.00.5226]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\lotus\notes\NSTRINGS.DLL]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\namhook.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nNETBIOS.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nstclientu.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nimuiu.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
    [C:\Program Files\lotus\notes\mui\zh-CN\nimuires.dll.mui]  [, 3, 1, 0, 1]
    [C:\Program Files\lotus\notes\nNTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nlsxbe.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nDBnotes.DLL]  [IBM Corp, 7.0.00.5226]
[PID: 4844][C:\Program Files\lotus\notes\ntaskldr.EXE]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nnotes.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nxmlproc.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\js32.dll]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\NLSCCSTR.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\ndgts.dll]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\NSTRINGS.DLL]  [IBM Corp, 7.0.00.5229]
    [C:\Program Files\lotus\notes\nhkdaemn.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nwrdaemndll.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nNETBIOS.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nhldaemn.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\namhook.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\Program Files\lotus\notes\nNTCP.DLL]  [IBM Corp, 7.0.00.5226]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 4576][D:\bt\mmsk1120\木马杀客\mmsk.exe]  [木马杀客, 2,0,0,7]
    [D:\bt\mmsk1120\木马杀客\krnln.fnr]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\HYExtLib.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\TrayIcon.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\iext2.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\iext.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\HtmlView.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\iext3.fne]  [, 1, 0, 0, 1]
    [D:\bt\mmsk1120\木马杀客\xplib.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\mmskskin.dll]  [, 2, 0, 0, 6]
    [D:\bt\mmsk1120\木马杀客\SkinPPWTL.dll]  [http://www.skinplusplus.com, 2, 1, 0, 0]
    [D:\bt\mmsk1120\木马杀客\shell.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\EThread.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\dp1.fne]  [N/A, N/A]
    [D:\bt\mmsk1120\木马杀客\eAPI.fne]  [, 1, 0, 0, 1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\pr_remote.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
gototop
 
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:39 | 只看楼主 短消息 资料
字号: 13楼

[PID: 6012][C:\Program Files\Tencent\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [C:\Program Files\Tencent\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [C:\Program Files\Tencent\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQMainFrame.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\CQQApplication.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\GroupLive.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQPlugin.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QRingMng.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [C:\Program Files\Tencent\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [C:\Program Files\Tencent\QQ\QQAvatar.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [C:\Program Files\Tencent\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [C:\Program Files\Tencent\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQSettingCtrl.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\BQQApplication.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\OEMApplication.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQAllInOne.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQCustomFace.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\Program Files\Tencent\QQ\QQSceneMng.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\FOURIER_M1.IME]  [北京紫光华宇软件股份有限公司, 4.0.0.5001]
    [C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\Tencent\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [C:\Program Files\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [C:\Program Files\Tencent\QQ\QQPhoneHelper.dll]  [腾讯科技(深圳)有限公司, 2, 0, 6, 60]
    [C:\Program Files\Tencent\QQ\QQMagicFace.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [C:\Program Files\Tencent\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
[PID: 676][D:\tools\FlashFXP-v3.40\FlashFXP.exe]  [IniCom Networks, Inc., 3.4.0.1145]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [D:\tools\FlashFXP-v3.40\libeay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8a]
    [D:\tools\FlashFXP-v3.40\ssleay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8a]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
[PID: 4856][C:\Program Files\Maxthon\Maxthon.exe]  [Maxthon International Ltd., 1, 5, 8, 120]
    [C:\Program Files\Maxthon\maxzlib.dll]  [ , 1, 0, 0, 2]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\CyberArticle\CAExp.dll]  [Wizissoft, 1.0.0.1]
    [C:\Program Files\CyberArticle\CyberArticleAPI.DLL]  [Wizissoft, 4.3.2005.819]
    [C:\Program Files\CyberArticle\HTMLParser.DLL]  [N/A, N/A]
    [C:\Program Files\Maxthon\Services\RealTime\real_time.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\pr_remote.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\FOURIER_M1.IME]  [北京紫光华宇软件股份有限公司, 4.0.0.5001]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
    [C:\WINDOWS\system32\ffdshow.ax]  [N/A, 1.0.2.2028]
    [C:\Program Files\Ringz Studio\Storm Codec\Codecs\VSFilter.dll]  [Gabest, 1, 0, 1, 3]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\Program Files\Ringz Studio\Storm Codec\Codecs\PmpSplt.ax]  [cooleyes, 1, 0, 0, 8]
    [C:\Program Files\Ringz Studio\Storm Codec\Codecs\RMSplt.ax]  [Gabest, 1, 0, 1, 1]
[PID: 5132][C:\Documents and Settings\nichunhua\桌面\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 5400][D:\tools\Messenger_81beta_zh-cn.exe]  [Microsoft Corporation, 8.1.0106.00_ClientV8.1]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 4588][C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\IXP000.TMP\bootstrap.exe]  [Microsoft Corporation, 8.1.0106.00_ClientV8.1]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\IXP000.TMP\bootstrap.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 512][C:\WINDOWS\system32\msiexec.exe]  [Microsoft Corporation, 3.0.3790.2180]
[PID: 4364][C:\WINDOWS\system32\MsiExec.exe]  [Microsoft Corporation, 3.0.3790.2180]
gototop
 
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:39 | 只看楼主 短消息 资料
字号: 14楼








==================================
文件关联
.TXT  Error. [emeditor.txt]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
61.141.31.11 www.kzdh.com
61.141.31.11 www.7255.com
61.141.31.11 www.7322.com
61.141.31.11 www.7939.com
61.141.31.11 www.piaoxue.com
61.141.31.11 www.feixu.net
61.141.31.11 www.6781.com
61.141.31.11 www.7b.com.cn
61.141.31.11 7b.com.cn
61.141.31.11 www.918188.com
61.141.31.11 hao.allxue.com
61.141.31.11 good.allxue.com
61.141.31.11 baby.allxue.com
61.141.31.11 www.allxue.com
61.141.31.11 about.lank.la
61.141.31.11 www.x114x.com
61.141.31.11 www.37ss.com
61.141.31.11 www.7k.cc
61.141.31.11 www.73ss.com
125.91.14.230 www.hao123.com
61.141.31.11 www.81915.com
61.141.31.11 222.88.90.22
61.141.31.11 www.9991.com
61.141.31.11 www.my123.com
61.141.31.11 www.haokan123.com
61.141.31.11 www.5566.net
61.141.31.11 www.gjj.cc
61.141.31.11 www.2345.com
61.141.31.11 dl.hao318.com
61.141.31.11 www.123wa.com
61.141.31.11 www.ku886.com
61.141.31.11 www.5icrack.com
61.141.31.11 www.jjol.cn

==================================
gototop
 
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:40 | 只看楼主 短消息 资料
字号: 15楼

上传完毕
gototop
 
红夜鬼1
头像
横据古稀狮
  • 帖子:8602
  • 注册: 2006-10-18
  • 来自:
发表于: 2006-11-22 18:42 | 短消息 资料
字号: 16楼

C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\安全模式下清空文件夹

查找HOSTS文件,用记事打开,清除里面的
只留这一项:127.0.0.1
gototop
 
<<上一主题|下一主题>>
12   2  /  2  页   跳转
页面顶部
Powered by Discuz!NT