瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 〓来看看我的日志有什么不对的〓

1   1  /  1  页   跳转

〓来看看我的日志有什么不对的〓

收藏
叛逆々寒冰
头像
初生襁褓狮
  • 帖子:170
  • 注册: 2005-06-13
  • 来自:
发表于: 2006-03-16 14:28 | 只看楼主 短消息 资料
字号: 1楼

〓来看看我的日志有什么不对的〓

Logfile of HijackThis v1.99.1
Scan saved at 14:24:43, on 2006-3-16
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\SKYNET\FIREWALL\pfw.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Tencent\TT\TTraveler.exe
D:\工具\2006SP1 秋天绿色精简版\QQ2006\QQ.exe
D:\工具\248783200522382732\HijackThis.exe

O1 - Hosts: 61.153.247.78 xyq.17173.com
O1 - Hosts: 61.153.247.78 xyq.163.com
O1 - Hosts: 61.153.247.78 www.heima.com
O1 - Hosts: 61.153.247.78 www.4399.com
O1 - Hosts: 61.153.247.78 www.66mh.com
O1 - Hosts: 61.153.247.78 www.915mh.com
O1 - Hosts: 61.153.247.78 www.26652.com
O1 - Hosts: 61.153.247.78 www.98mh.com
O1 - Hosts: 61.153.247.78 www.5173.com
O1 - Hosts: 61.153.247.78 www.jy173.com
O1 - Hosts: 61.153.247.78 www.88jb.com
O1 - Hosts: 61.153.247.78 www.88jb.com
O1 - Hosts: 61.153.247.78 games.sina.com.cn
O1 - Hosts: 61.153.247.78 games.enet.com.cn
O1 - Hosts: 61.153.247.78 game.tyfo.com
O1 - Hosts: 61.153.247.78 www.hao123.com
O1 - Hosts: 61.153.247.78 club.heima.com
O1 - Hosts: 61.153.247.78 post.baidu.com
O1 - Hosts: 61.153.247.78 games.heima.com
O1 - Hosts: 61.153.247.78 www.sou1234.com
O1 - Hosts: 61.153.247.78 zhidao.baidu.com
O1 - Hosts: 61.153.247.78 www.16sf.cn
O1 - Hosts: 61.153.247.78 www.169wg.com
O1 - Hosts: 61.153.247.78 www.778mh.com
O1 - Hosts: 61.153.247.78 www.lawhome.net
O1 - Hosts: 61.153.247.78 fuwu.bcqx.com
O1 - Hosts: 61.153.247.78 sf.543.com.cn
O1 - Hosts: 61.153.247.78 mhxy66.bokee.com
O1 - Hosts: 61.153.247.78 xyq.hlgame.com
O1 - Hosts: 61.153.247.78 xyq.lcinfo.cn
O1 - Hosts: 61.153.247.78 xyq.cnbb.com.cn
O1 - Hosts: 61.153.247.78 xyq.yezizhu.com
O1 - Hosts: 61.153.247.78 xyq.tianya.net
O1 - Hosts: 61.153.247.78 xyq.92wy.com
O1 - Hosts: 61.153.247.78 xyq.yzvod.com
O1 - Hosts: 61.153.247.78 xyq.yzvod.com
O1 - Hosts: 61.153.247.78 www.sa20.com
O1 - Hosts: 61.153.247.78 xyq.daqing.net
O1 - Hosts: 61.153.247.78 games.52pk.net
O1 - Hosts: 61.153.247.78 xyq.gamevnet.com
O1 - Hosts: 61.153.247.78 xyq.373.cn
O1 - Hosts: 61.153.247.78 www.258cq.com
O1 - Hosts: 61.153.247.78 www.33mh.com
O1 - Hosts: 61.153.247.78 wtjy.hdt.net.cn
O1 - Hosts: 61.153.247.78 www.mir2.com.cn
O1 - Hosts: 61.153.247.78 www.wowchina.com
O1 - Hosts: 61.153.247.78 www.4399.com
O1 - Hosts: 61.153.247.78 www.taobao.com
O1 - Hosts: 61.153.247.78 www.haohx.com
O1 - Hosts: 61.153.247.78 www.ourgame.com
O1 - Hosts: 61.153.247.78 www.ngacn.com
O1 - Hosts: 61.153.247.78 www.chinagames.net
O1 - Hosts: 61.153.247.78 www.5617.com
O1 - Hosts: 61.153.247.78 www.5173.com
O1 - Hosts: 61.153.247.78 www1.cga.com.cn
O1 - Hosts: 61.153.247.78 www.ali213.net
O1 - Hosts: 61.153.247.78 www.1t1t.com
O1 - Hosts: 61.153.247.78 www.popsoft.com
O1 - Hosts: 61.153.247.78 www.1ting.com
O1 - Hosts: 61.153.247.78 www.666ccc.com
O1 - Hosts: 61.153.247.78 www.qq163.com
O1 - Hosts: 61.153.247.78 www.sogua.com
O1 - Hosts: 61.153.247.78 www.999mh.com
O1 - Hosts: 61.153.247.78 www.w100g.com
O1 - Hosts: 61.153.247.78 www.5460.net
O1 - Hosts: 61.153.247.78 www.wangyou.com
O1 - Hosts: 61.153.247.78 www.greedland.net
O1 - Hosts: 61.153.247.78 www.fzdm.com
O1 - Hosts: 61.153.247.78 www.verycd.com
O1 - Hosts: 61.153.247.78 www.mop.com
O1 - Hosts: 61.153.247.78 www.qq.com
O1 - Hosts: 61.153.247.78 www.265.com
O1 - Hosts: 61.153.247.78 www.17173.com
O1 - Hosts: 61.153.247.78 www.pcpop.com
O1 - Hosts: 61.153.247.78 www.hjsm.net
O1 - Hosts: 61.153.247.78 www.51yes.com
O1 - Hosts: 61.153.247.78 count.51yes.com
O1 - Hosts: 61.153.247.78 www.hc360.com
O1 - Hosts: 61.153.247.78 www.126.com
O1 - Hosts: 61.153.247.78 www.sohu.com
O1 - Hosts: 61.153.247.78 www.163888.net
O1 - Hosts: 61.153.247.78 www.7t7t.com
O1 - Hosts: 61.153.247.78 www.wo99.com
O1 - Hosts: 61.153.247.78 www.7xi.net
O1 - Hosts: 61.153.247.78 www.99music.net
O1 - Hosts: 61.153.247.78 www.haoting.com
O1 - Hosts: 61.153.247.78 www.a8.com
O1 - Hosts: 61.153.247.78 www.ydy.com
O1 - Hosts: 61.153.247.78 www.915cs.net
O1 - Hosts: 61.153.247.78 www.11y.cn
O1 - Hosts: 61.153.247.78 www.ezit.com.cn
O1 - Hosts: 61.153.247.78 www.wg999.com
O1 - Hosts: 61.153.247.78 www.uc999.com
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v4.dll
O2 - BHO: NewWeb Controller - {9ACEEE30-143F-471A-AA45-72B061FE7D60}? - (no file)
O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5}? - (no file)
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\kakatool.dll
O4 - HKLM\..\Run: [KAVPersonal50] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize
O4 - HKLM\..\Run: [SKYNET Personal FireWall] C:\PROGRA~1\SKYNET\FIREWALL\pfw.exe
O4 - HKLM\..\Run: [thunder_mini] E:\WinXP\Maxthon\Thundermini\ThunderMini.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [pbmini] C:\Program Files\pcast\PodcastbarMini\PodcastBarMiniStater.exe
O4 - Startup: 播霸网络电视.lnk = C:\Program Files\pcast\PodcastbarMini\PodcastBarMiniStarter.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &使用迷你迅雷下载 - E:\WinXP\Maxthon\Thundermini\geturl.htm
O9 - Extra button: 浩方对战平台 - {0A155D3C-68E2-4215-A47A-E800A446447A}? - E:\WinXP\浩方对战平台\GameClient.exe (file missing)
O9 - Extra button: 微软 - {6096E38F-5AC1-4391-8EC4-75DFA92FB32F}? - http://www.microsoft.com/china/index.htm (file missing)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O17 - HKLM\System\CCS\Services\Tcpip\..\{F4D46F28-F026-4EE7-82F4-ACEEA7CE04F7}: NameServer = 211.98.192.3 61.233.65.3
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Windows Management NetWork Service Extensions - Unknown owner - NetManager.exe (file missing)



我有时候打开一个网站,他自己却转向另一个网站,这个网站就是:http://www.xyq4f.com/
估计是中招了~~~~ 请问怎么解决~~
最后编辑2006-03-16 18:57:21
分享到:
gototop
 
不言放弃
头像
社区嘉宾
  • 帖子:30678
  • 注册: 2004-09-17
  • 来自:蓝色星球
发表于: 2006-03-16 14:42 | 短消息 资料
字号: 2楼

【回复“叛逆々寒冰”的帖子】
修复所有的01项和06项

进入注册表
搜索NetManager.exe
找到后全部删除
gototop
 
叛逆々寒冰
头像
初生襁褓狮
  • 帖子:170
  • 注册: 2005-06-13
  • 来自:
发表于: 2006-03-16 18:57 | 只看楼主 短消息 资料
字号: 3楼

非常的感谢~~
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT