瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 那个大哥帮我看下我的日志我刚装的系统!!!

1   1  /  1  页   跳转

那个大哥帮我看下我的日志我刚装的系统!!!

收藏
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 12:47 | 显示全部 短消息 资料
字号: 1楼

那个大哥帮我看下我的日志我刚装的系统!!!

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><G:\WINDOWS\System32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <MSMSGS><"G:\Program Files\Messenger\msmsgs.exe" /background>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><G:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
    <PHIME2002ASync><G:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Corporation]
    <PHIME2002A><G:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Corporation]
    <ATIModeChange><Ati2mdxx.exe>  [(Verified)ATI Technologies, Inc.]
    <ATIPTA><G:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe>  [ATI Technologies, Inc.]
    <load><G:\WINDOWS\uninstall\rundl132.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <twin><G:\WINDOWS\System32\twunk32.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe wuaucll.exe>  [N/A]
    <Userinit><G:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]

==================================
启动文件夹
[restart_vs]
  <G:\Documents and Settings\lt\「开始」菜单\程序\启动\restart_vs.lnk --> H:\Viewsonic.exe [N/A]><N>

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
  <G:\WINDOWS\System32\Ati2evxx.exe><N/A>
[ATI Smart / ATI Smart][Stopped/Auto Start]
  <G:\WINDOWS\system32\ati2sgag.exe><>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <G:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[IMAPI CD-Burning COM Service / ImapiService][Stopped/Manual Start]
  <G:\WINDOWS\System32\imapi.exe><Microsoft Corporation>
[Win32 Display Driver / Win32DDS][Stopped/Auto Start]
  <G:\WINDOWS\System32\\rundll32.exe windds32.dll,input><Microsoft Corporation>

==================================
驱动程序
[ati2mtag / ati2mtag][Running/Manual Start]
  <System32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[npkcrypt / npkcrypt][Running/Auto Start]
  <\??\F:\qq\npkcrypt.sys><INCA Internet Co., Ltd.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
  <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <System32\DRIVERS\secdrv.sys><N/A>

==================================
浏览器加载项
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <G:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <G:\WINDOWS\System32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[上传到QQ网络硬盘]
  <F:\qq\AddToNetDisk.htm, N/A>
[添加到QQ自定义面板]
  <F:\qq\AddPanel.htm, N/A>
[添加到QQ表情]
  <F:\qq\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <F:\qq\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 428][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 492][\??\G:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 516][\??\G:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 560][G:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 572][G:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 752][G:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 804][G:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 884][G:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 956][G:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1144][G:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
[PID: 1264][G:\WINDOWS\Explorer.exe]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\qqs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mhs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mss0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\rxs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\zts0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\wls0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mys0.dll]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
    [G:\WINDOWS\System32\windds32.dll]  [N/A, N/A]
[PID: 1520][G:\WINDOWS\wuaucll.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1528][G:\WINDOWS\wuaucll.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1536][G:\WINDOWS\wuaucll.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1592][G:\WINDOWS\wuaucll.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1616][G:\PROGRA~1\ATITEC~1\ATICON~1\atiptaxx.exe]  [ATI Technologies, Inc., 6.14.10.4000]
    [G:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS]  [ATI Technologies, Inc., 6.14.10.4000]
    [G:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll]  [ATI Technologies, Inc., 6.14.10.4000]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1672][G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDM.exe]  [ATI Technologies Inc., 3.10.00.1011]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraHlp.dll]  [ATI Technologies Inc., 3.10.00.1011]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraZhs.dll]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\qqs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mhs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mss0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\rxs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\zts0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\wls0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mys0.dll]  [N/A, N/A]
[PID: 1712][G:\WINDOWS\zts3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\zts0.dll]  [N/A, N/A]
[PID: 1744][G:\WINDOWS\mss3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mss0.dll]  [N/A, N/A]
[PID: 1760][G:\WINDOWS\System32\driver.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1764][G:\WINDOWS\rxs3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\rxs0.dll]  [N/A, N/A]
[PID: 1776][G:\WINDOWS\System32\driver.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1780][G:\WINDOWS\System32\driver.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1812][G:\WINDOWS\wls3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\wls0.dll]  [N/A, N/A]
[PID: 1824][G:\WINDOWS\mhs3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mhs0.dll]  [N/A, N/A]
[PID: 1828][G:\WINDOWS\System32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1836][G:\WINDOWS\System32\driver.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1860][G:\WINDOWS\mys3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mys0.dll]  [N/A, N/A]
[PID: 1864][G:\WINDOWS\qqs3.exe]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\qqs0.dll]  [N/A, N/A]
[PID: 1884][G:\PROGRA~1\MESSEN~1\msmsgs.exe]  [Microsoft Corporation, 4.0.0155]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 1956][G:\WINDOWS\System32\conime.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 908][G:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 968][G:\WINDOWS\System32\Ati2evxx.exe]  [N/A, N/A]
[PID: 1508][G:\WINDOWS\wuaucll.exe]  [N/A, N/A]
最后编辑2007-02-02 16:07:48
分享到:
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 12:48 | 显示全部 短消息 资料
字号: 2楼

[PID: 2212][G:\WINDOWS\System32\driver.exe]  [N/A, N/A]
[PID: 2232][G:\WINDOWS\System32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3388][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\WINDOWS\System32\macromed\flash\swflash.ocx]  [Macromedia, Inc., 5,0,42,0]
[PID: 480][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\WINDOWS\System32\macromed\flash\swflash.ocx]  [Macromedia, Inc., 5,0,42,0]
[PID: 2992][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\WINDOWS\System32\macromed\flash\swflash.ocx]  [Macromedia, Inc., 5,0,42,0]
[PID: 4004][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\WINDOWS\System32\macromed\flash\swflash.ocx]  [Macromedia, Inc., 5,0,42,0]
[PID: 2624][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\WINDOWS\System32\macromed\flash\swflash.ocx]  [Macromedia, Inc., 5,0,42,0]
[PID: 2648][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2652][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2660][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2664][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2800][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2808][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2828][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2868][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1372][G:\WINDOWS\Logo1_.exe]  [N/A, N/A]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
[PID: 3336][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3376][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3832][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
[PID: 1380][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 380][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 692][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2096][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2180][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3068][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3608][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 4012][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2932][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2984][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3152][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3736][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3168][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3748][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3884][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3888][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1880][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2952][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 612][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3652][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
[PID: 2412][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3260][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2556][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2772][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 4052][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 2584][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3480][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3596][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1464][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3464][G:\WINDOWS\System32\net.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3028][G:\WINDOWS\System32\net1.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3120][F:\骑士\SRENG2~1\SREng.EXE]  [Smallfrogs Studio, 2.3.13.690]
    [G:\PROGRA~1\ATITEC~1\HYDRAV~1\HydraDMH.dll]  [ATI Technologies Inc., 3.10.00.1011]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\qqs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mhs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mss0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\rxs0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\zts0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\wls0.dll]  [N/A, N/A]
    [G:\DOCUME~1\lt\LOCALS~1\Temp\mys0.dll]  [N/A, N/A]
[PID: 1548][G:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [G:\WINDOWS\System32\macromed\flash\swflash.ocx]  [Macromedia, Inc., 5,0,42,0]

==================================
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 12:49 | 显示全部 短消息 资料
字号: 3楼

文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  Error. [wuaucll.exe "%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["G:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[E:\]
[AutoRun]
open=update.exe
[F:\]
[AutoRun]
open=update.exe

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================


[/CODE]
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 12:50 | 显示全部 短消息 资料
字号: 4楼

我刚装的系统一开始玩游戏就出现自动弹出的垃圾网页求那位大哥帮忙看下贴
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 13:04 | 显示全部 短消息 资料
字号: 5楼

4楼的朋友还的从装系统吗???
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 13:07 | 显示全部 短消息 资料
字号: 6楼

把所有的硬盘都格式了还用杀毒吗??/
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 13:12 | 显示全部 短消息 资料
字号: 7楼

能不能把注册表修改一下呀!!我没移动硬盘,电脑里的东西有些很重要
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 13:15 | 显示全部 短消息 资料
字号: 8楼

http://mm.dymm8.net/就这个垃圾网站老是自动弹出
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 13:28 | 显示全部 短消息 资料
字号: 9楼

大哥别生气.我是问最好别从装了有很重要的东西大哥想想别的办法
gototop
 
我是超级电脑盲
头像
初生襁褓狮
  • 帖子:39
  • 注册: 2007-01-27
  • 来自:
发表于: 2007-02-02 16:17 | 显示全部 短消息 资料
字号: 10楼

我把别的区的东西考下来按他的方法做完能不能在考回去?
之后有还有病毒吗???
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT