345670即时网址发布系统



谁知道怎么卸啊，卡卡查不到

用超级兔子查过吗?

用360查过，版本3.0.1.3002

不行

打开监控和防火墙，升级查杀病毒，和流氓软件，都没发现的话，用卡卡看看进程管理，有没可疑的，自己不清楚的话，可以用HijackThis V1.99.1 汉化版把日志贴上来，别人帮忙看看。


==========

用卡卡和瑞星先试试看，不行的话在

用恶意软件清理助手 2.52 Build 可以试一试，再卸载

http://www.onlinedown.net/soft/42382.htm

和360安全卫士的删除恶意软件功能 www.360safe.com 可以试一试，（再卸载）

和兔子都试一试 再卸载
http://www.pctutu.com/soft/index.html

江民在线查毒
http://online.jiangmin.com/chadu.asp

金山在线查毒
http://shadu.duba.net/

开机时按F8安全模式

而且通过KAKA看看"进程管理"（通过发行者和时间)和系统启动项管理有没可疑的

--------------

建议去下载一个208 KB的HijackThis V1.99.1 汉化版软件，然后把日志贴上来（尤其看进程和，非常非常简单使用，像绿色版

HijackThis V1.99.1 汉化版
http://www.skycn.com/soft/15753.html

可参考
http://forum.ikaka.com/topic.asp?board=36&artid=8144360

Logfile of HijackThis v1.99.1
Scan saved at 10:29:10, on 2007-2-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Rising\Rav\CCenter.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Rising\Rav\Ravmond.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Rising\Rav\RavStub.exe
D:\Program Files\Yuguo\EAZClnt.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Rising\Rav\RavTask.exe
D:\Program Files\Rising\AntiSpyware\runiep.exe
C:\Program Files\360safe\safemon\360Tray.exe
D:\Program Files\Rising\Rav\Ravmon.exe
D:\WINDOWS\System32\svchost.exe
C:\Tencent\TT\TTraveler.exe
C:\Tencent\TM\TMDlls\TM.exe
c:\Tencent\TM\TMDlls\TIMPlatform.exe
D:\WINDOWS\system32\conime.exe
C:\proe2001\i486_nt\obj\xtop.exe
C:\proe2001\i486_nt\obj\pro_comm_msg.exe
C:\proe2001\i486_nt\obj\pglclock.exe
C:\Tencent\TT\TCPlus.exe
D:\Documents and Settings\hu\桌面\HijackThis.exe

R3 - Default URLSearchHook is missing
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - D:\WINDOWS\system32\KakaTool.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [RavTask] "D:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [runeip] D:\Program Files\Rising\AntiSpyware\runiep.exe
O4 - HKLM\..\Run: [360Safetray] C:\Program Files\360safe\safemon\360Tray.exe /start
O4 - HKLM\..\RunOnce: [360Safe] Rundll32.exe C:\PROGRA~1\360safe\AntiAdwa.dll,KillAdware
O4 - HKLM\..\RunOnce: [KKDelay] D:\Program Files\Rising\AntiSpyware\RunOnce.exe
O4 - Global Startup: AutoCAD 启动加速器.lnk = D:\Program Files\Common Files\Autodesk Shared\acstart16.exe
O8 - Extra context menu item: &使用迅雷下载 - c:\Program Files\Thunder\Program\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - c:\Program Files\Thunder\Program\getallurl.htm
O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) -
O16 - DPF: {22945A69-1191-4DCF-9E6F-409BDE94D101} (EModelNonVersionSpecificViewControl Class) -
O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine) -
O23 - Service: Autodesk Licensing Service - Autodesk - D:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: EAZClientService - Unknown owner - D:\Program Files\Yuguo\EAZClnt.exe
O23 - Service: WinPcap - Remote Packet Capture Protocol  (rpcapd) - Unknown owner - D:\WINDOWS\System32\rpcapd.exe" -d -f "D:\WINDOWS\System32\rpcapd.ini (file missing)
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - D:\Program Files\Rising\Rav\CCenter.exe
O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Technology Co., Ltd. - D:\Program Files\Rising\Rav\Ravmond.exe