andylina - 2008-8-5 14:00:00
中了病毒杀不掉
病毒名称
Trojan.DL.Win32.Undef.ahx用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727)附件:
SREngLOG.log
小狮子王辛巴 - 2008-8-5 14:16:00
瑞星杀特洛伊木马实在不怎么样,到百度搜超级巡警,杀特洛伊木马特别厉害,与任何杀毒软件都不发生冲突,最好与瑞星、卡巴一起用。由于我们家网速太慢,不能下载后上传附件给你,只好你自己去下载啦!
andylina - 2008-8-5 14:18:00
谢了。试试看,
玩家国度 - 2008-8-5 14:27:00
用SREng删除浏览器加载项:
[]
{25FD6584-698F-BCD2-602C-698745210352} <C:\WINDOWS\system32\rijxbkin.dll, N/A>
[]
{2A698452-C5D8-C584-C256-C264C987C5A2} <C:\WINDOWS\system32\ijdybpaw.dll, N/A>
[]
{32596546-2036-9451-6058-658402589723} <C:\WINDOWS\system32\opshcbty.dll, N/A>
[]
{38093456-9012-4568-9076-908765467183} <C:\WINDOWS\system32\tisqctyu.dll, N/A>
[]
{470165F1-9F65-569F-F895-F14F58F41074} <C:\WINDOWS\system32\lofsdjbo.dll, N/A>
[]
{52023698-6984-8541-9654-698745012525} <C:\WINDOWS\system32\skqnebib.dll, N/A>
[]
{5A069845-2036-6084-9054-6087502480A5} <C:\WINDOWS\system32\ozfyebyt.dll, N/A>
[]
{5D098345-6785-1098-5413-678067AE03D5} <C:\WINDOWS\system32\tysqbkol.dll, N/A>
[]
{87FD640A-158F-48AC-FD14-1597F14A9778} <C:\WINDOWS\system32\mndshsrv.dll, N/A>
[]
{B490415F-65F8-B5C5-D8BA-9405FB12054B} <C:\WINDOWS\system32\yzztlmsn.dll, N/A>
[]
{C490415F-65F8-B5C5-D8BA-9405FB12054C} <C:\WINDOWS\system32\yzztlmsn.dll, N/A>
[]
{25FD6584-698F-BCD2-602C-698745210352} <C:\WINDOWS\system32\rijxbkin.dll, N/A>
[]
{32596546-2036-9451-6058-658402589723} <C:\WINDOWS\system32\opshcbty.dll, N/A>
[]
{38093456-9012-4568-9076-908765467183} <C:\WINDOWS\system32\tisqctyu.dll, N/A>
[]
{470165F1-9F65-569F-F895-F14F58F41074} <C:\WINDOWS\system32\lofsdjbo.dll, N/A>
[]
{52023698-6984-8541-9654-698745012525} <C:\WINDOWS\system32\skqnebib.dll, N/A>
[]
{5A069845-2036-6084-9054-6087502480A5} <C:\WINDOWS\system32\ozfyebyt.dll, N/A>
[]
{5D098345-6785-1098-5413-678067AE03D5} <C:\WINDOWS\system32\tysqbkol.dll, N/A>
[]
{87FD640A-158F-48AC-FD14-1597F14A9778} <C:\WINDOWS\system32\mndshsrv.dll, N/A>
[]
{B490415F-65F8-B5C5-D8BA-9405FB12054B} <C:\WINDOWS\system32\yzztlmsn.dll, N/A>
[]
{C490415F-65F8-B5C5-D8BA-9405FB12054C} <C:\WINDOWS\system32\yzztlmsn.dll, N/A>
这两个驱动比较可疑,建议备份然后删除
[ALLOW-IO / ALLOW-IO][Running/Boot Start]
<\SystemRoot\system32\Drivers\ALLOW-IO.sys><N/A>
[NTGDT / NTGDT][Running/System Start]
<\??\C:\WINDOWS\system32\Drivers\NTGDT.SYS><N/A>
© 2000 - 2026 Rising Corp. Ltd.