ai123 - 2006-9-18 11:57:00
http://www.1000wsf.com//sohu.htm老是弹相互这个网站 用网上的方法不管用 从装了IE 删了注册表文件 用了黄山IE修复 都没效果
扫描结果:
Logfile of HijackThis v1.99.1
Scan saved at 11:27:28, on 2006-9-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
D:\杀毒\avp.exe
c:\windows\system\conime.exe
D:\杀毒\avp.exe
F:\网络\QQ\QQ\QQ.exe
F:\网络\QQ\QQ\TIMPlatform.exe
D:\酷狗\KuGoo3\KuGoo.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.641\HijackThis.exe
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
O3 - Toolbar: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - (no file)
O4 - HKLM\..\Run: [kis] "D:\杀毒\avp.exe"
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: 上传到QQ网络硬盘 - F:\网络\QQ\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用迅雷下载 - D:\迅雷\Thunder\Program\GetUrl.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - F:\网络\QQ\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - F:\网络\QQ\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - F:\网络\QQ\QQ\SendMMS.htm
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O23 - Service: 卡巴斯基互联网安全套装 6.0 (AVP) - Kaspersky Lab - D:\杀毒\avp.exe
O23 - Service: Distributed Link Tracking Clientlm7 (Servicelm7) - Unknown owner - c:\windows\system\conime.exe
newcenturymoon - 2006-9-18 12:07:00
修复O23 - Service: Distributed Link Tracking Clientlm7 (Servicelm7) - Unknown owner - c:\windows\system\conime.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=userinit.exe,
重启后删除c:\windows\system\conime.exe
ai123 - 2006-9-18 12:59:00
按步骤做了 但没用 还是弹
新的扫描日志
ogfile of HijackThis v1.99.1
Scan saved at 12:49:52, on 2006-9-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
D:\杀毒\avp.exe
c:\windows\system\conime.exe
D:\杀毒\avp.exe
F:\网络\QQ\QQ\QQ.exe
F:\网络\QQ\QQ\TIMPlatform.exe
C:\Program Files\Maxthon\Maxthon.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.531\HijackThis.exe
O4 - HKLM\..\Run: [kis] "D:\杀毒\avp.exe"
O8 - Extra context menu item: 上传到QQ网络硬盘 - F:\网络\QQ\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - F:\网络\QQ\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - F:\网络\QQ\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - F:\网络\QQ\QQ\SendMMS.htm
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O23 - Service: 卡巴斯基互联网安全套装 6.0 (AVP) - Kaspersky Lab - D:\杀毒\avp.exe
O23 - Service: Distributed Link Tracking Clientlm7 (Servicelm7) - Unknown owner - c:\windows\system\conime.exe
deadmanzj - 2006-9-18 13:02:00
结束c:\windows\system\conime.exe
O23 - Service: Distributed Link Tracking Clientlm7 (Servicelm7) - Unknown owner - c:\windows\system\conime.exe
鸽子,安全模式...打开注册表编辑器,展开:HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
搜索Servicelm7删除
删除c:\windows\system\conime.exe
RX销售员 - 2006-9-18 13:04:00
c:\windows\system\conime.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
avp.exe,你看下任务管理器里有两个avp.exe。用户名为User那个是图形界面,System那个是杀毒软件的核心,楼主查看下。
O23 - Service: Distributed Link Tracking Clientlm7 (Servicelm7) - Unknown owner - c:\windows\system\conime.exe
ai123 - 2006-9-18 13:27:00
| 引用: |
【RX销售员的贴子】c:\windows\system\conime.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
avp.exe,你看下任务管理器里有两个avp.exe。用户名为User那个是图形界面,System那个是杀毒软件的核心,楼主查看下。
O23 - Service: Distributed Link Tracking Clientlm7 (Servicelm7) - Unknown owner - c:\windows\system\conime.exe
……………… |
那2个avp的问题怎么解决???
deadmanzj - 2006-9-18 13:29:00
avp是卡巴的。。。你把那鸽子搞掉就行了
http://www.pctutu.com/srmsdown.asp
下载超级兔子..用超级兔子清理王卸载流氓软件...(安全模式...)
© 2000 - 2026 Rising Corp. Ltd.