我是个新手，电脑出现故障！请老师们指导！ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛我是个新手，电脑出现故障！请老师们指导！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

12

1 / 2 页

跳转页

我是个新手，电脑出现故障！请老师们指导！

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-15 16:42 \| 只看楼主短消息资料字号：小中大 1楼我是个新手，电脑出现故障！请老师们指导！故障现象：1、部分网页的超级连接打不开 2、网络邻居里显示0个对象 3、控制面板里的排列异常，重要的项目：添加/删除程序等打不开，或者打开窗口里没有任何东西，另外设备管理器里的所有设备都显示未知道设备。这是我暂时发现的异常，我想可能是病毒，我做过的操作有：用卡巴斯基查毒没有，在安全模式下查杀也没有发现，然后通过在网上白度查找了相关信息，也制作了ie.bat文件，IE修复文件，本来想重装系统，可是想如果有好的办法能解决的话，能有一定的进步！如果系统已经到了无法挽回的余地，也请告知我！ 2007-06-18 15:46:49
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	分享到：

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-15 17:02 \| 只看楼主短消息资料字号：小中大 2楼是我描述的不够详细吗？还是有什么问题，请求解答，在线等待！
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:

HOSTのS 飘泊而立狮帖子:784 注册: 2007-06-10 来自:	发表于： 2007-06-15 17:03 \| 短消息资料字号：小中大 3楼 http://www.kztechs.com/sreng/sreng2.zip 下载System Repair Engineer 1 解压缩sreng2.zip 2 运行SREng.exe 3 智能扫描=》扫描=》保存报告 4 把日志中的报告完整拷贝贴上来，不要修改 5 扫日志的时候尽量把不必要的软件关闭添加/删除程序等打不开，或者打开窗口里没有任何东西如QQ TM等曾经碰到过但怎么弄好的忘了.... 汗
HOSTのS 飘泊而立狮帖子:784 注册: 2007-06-10 来自:

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-15 17:25 \| 只看楼主短消息资料字号：小中大 4楼 [CODE] 2007-06-15,17:01:39 System Repair Engineer 2.4.12.806 Smallfrogs (http://www.KZTechs.com) Windows 2000 Server Service Pack 4 (Build 2195) - 管理权限用户 - 完整功能以下内容被选中：所有的启动项目（包括注册表、启动文件夹、服务等）浏览器加载项正在运行的进程（包括进程模块信息）文件关联 Winsock 提供者 Autorun.inf HOSTS 文件启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <load><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <HotKeysCmds><D:\WINNT\System32\hkcmd.exe> [(Verified)Microsoft Windows 2000 Publisher] <IgfxTray><D:\WINNT\System32\igfxtray.exe> [(Verified)Microsoft Windows 2000 Publisher] <vptray><D:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe> [Symantec Corporation] <MS-4011 Memory Patch><D:\Documents and Settings\Administrator\桌面\RavSasser.exe -Patch> [N/A] <stup.exe><Rundll32.exe D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll,Rundll32 R> [TENCENT] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Windows 2000 Publisher] <Userinit><D:\WINNT\system32\userinit.exe,> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><> [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] <Network.ConnectionTray><D:\WINNT\system32\NETSHELL.dll> [(Verified)Microsoft Windows 2000 Publisher] <WebCheck><%SystemRoot%\system32\webcheck.dll> [(Verified)Microsoft Windows 2000 Publisher] <SysTray><stobject.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] <WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] <WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] <WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon] <WinlogonNotify: NavLogon><D:\WINNT\system32\NavLogon.dll> [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] <WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] <WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] <WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wzcnotif] <WinlogonNotify: wzcnotif><wzcdlg.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] <自定义浏览器><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6A5110B5-E14B-4268-A065-EF89FF33C325}] <EnableRevocation><regsvr32.exe /s /n /i:"S 2 true 3 true 4 true 5 true 6 true 7 true" initpki.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows 2000 Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe> [(Verified)Microsoft Windows Component Publisher] [HKEY_CURRENT_USER\Control Panel\Desktop] <SCRNSAVE.EXE><D:\WINNT\system32\ssstars.scr> [(Verified)Microsoft Windows 2000 Publisher] ================================== 启动文件夹 [服务管理器] <D:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk --> D:\PROGRA~1\MICROS~3\80\Tools\Binn\sqlmangr.exe [Microsoft Corporation]><N> [腾讯QQ] <D:\Documents and Settings\Administrator\「开始」菜单\程序\启动\腾讯QQ.lnk --> D:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]><N> ================================== 服务 [DefWatch / DefWatch][Running/Auto Start] <D:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe><Symantec Corporation> [Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start] <D:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.> [i830M Power Management / ialmpa][Running/Auto Start] <D:\WINNT\System32\pmsvc.exe><Intel Corporation> [MSSQL$ZZZZ / MSSQL$ZZZZ][Running/Auto Start] <D:\PROGRA~1\MICROS~3\MSSQL$~1\binn\sqlservr.exe -sZZZZ><Microsoft Corporation> [MSSQLSERVER / MSSQLSERVER][Stopped/Manual Start] <D:\PROGRA~1\MICROS~3\MSSQL\binn\sqlservr.exe><Microsoft Corporation> [Symantec AntiVirus Client / Norton AntiVirus Server][Running/Auto Start] <D:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe><Symantec Corporation> [Copyright (C) 2001-2005 S3 Graphics, Inc. / S3 Graphics, Inc.][Stopped/Auto Start] <"D:\WINNT\VTTimer.exe"><N/A> [SQLAgent$ZZZZ / SQLAgent$ZZZZ][Stopped/Manual Start] <D:\PROGRA~1\MICROS~3\MSSQL$~1\binn\sqlagent.exe -i ZZZZ><Microsoft Corporation>
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-15 17:25 \| 只看楼主短消息资料字号：小中大 5楼 ================================== 驱动程序 [aeaudio / aeaudio][Running/Manual Start] <system32\drivers\aeaudio.sys><Andrea Electronics Corporation> [dmboot / dmboot][Stopped/Disabled] <System32\drivers\dmboot.sys><VERITAS Software Corp.> [Logical Disk Manager Driver / dmio][Running/Boot Start] <\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.> [dmload / dmload][Running/Boot Start] <\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.> [Intel(R) PRO Adapter Driver / E100B][Stopped/Manual Start] <System32\DRIVERS\e100bnt5.sys><N/A> [ialm / ialm][Running/Manual Start] <System32\DRIVERS\ialmnt5.sys><Intel Corporation> [ialmp / ialmp][Running/System Start] <System32\DRIVERS\pmaware.sys><Intel Corporation> [NAVAP / NAVAP][Running/Manual Start] <\??\D:\PROGRA~1\SYMANT~1\SYMANT~1\NAVAP.sys><Symantec Corporation> [NAVAPEL / NAVAPEL][Running/Auto Start] <\??\D:\Program Files\Symantec_Client_Security\Symantec AntiVirus\NAVAPEL.SYS><Symantec Corporation> [NAVENG / NAVENG][Running/Manual Start] <\??\D:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070610.006\NAVENG.sys><Symantec Corporation> [NAVEX15 / NAVEX15][Running/Manual Start] <\??\D:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070610.006\NAVEX15.sys><Symantec Corporation> [npkcrypt / npkcrypt][Running/Auto Start] <\??\D:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.> [Direct Parallel Link Driver / Ptilink][Running/Manual Start] <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [smwdm / smwdm][Running/Manual Start] <system32\drivers\smwdm.sys><Analog Devices, Inc.> [SymEvent / SymEvent][Running/Manual Start] <\??\D:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation> [{02FCD261-7775-11D5-81D0-0008C76212F8} / {02FCD261-7775-11D5-81D0-0008C76212F8}][Stopped/Manual Start] <System32\Drivers\a309.sys><Intel Corporation> [{24050028-D1E3-49FA-88A4-2B7F41AB023C} / {24050028-D1E3-49FA-88A4-2B7F41AB023C}][Stopped/Manual Start] <System32\Drivers\a304.sys><Intel Corporation> [{40867A83-9E92-474c-A921-20AA73EAE42F} / {40867A83-9E92-474c-A921-20AA73EAE42F}][Stopped/Manual Start] <System32\Drivers\a303.sys><Intel Corporation> [{5C8B2B62-A385-11d5-A78B-00104B672758} / {5C8B2B62-A385-11d5-A78B-00104B672758}][Stopped/Manual Start] <System32\Drivers\a311.sys><Intel Corporation> [{5C8B2B65-A385-11d5-A78B-00104B672758} / {5C8B2B65-A385-11d5-A78B-00104B672758}][Stopped/Manual Start] <System32\Drivers\a310.sys><Intel Corporation> [Intel(R) Graphics Platform (SoftBIOS) Driver / {6080A529-897E-4629-A488-ABA0C29B635E}][Running/System Start] <system32\drivers\ialmsbw.sys><Intel Corporation> [{69F517A1-B8FA-11d5-99B7-00B0D0800CD5} / {69F517A1-B8FA-11d5-99B7-00B0D0800CD5}][Stopped/Manual Start] <System32\Drivers\a312.sys><Intel Corporation> [{6D08DE66-D457-4d38-A7F5-D88CCB81EE00} / {6D08DE66-D457-4d38-A7F5-D88CCB81EE00}][Stopped/Manual Start] <System32\Drivers\a305.sys><Intel Corporation> [{6D08DE67-D457-4d38-A7F5-D88CCB81EE00} / {6D08DE67-D457-4d38-A7F5-D88CCB81EE00}][Stopped/Manual Start] <System32\Drivers\a306.sys><Intel Corporation> [{A7E39B01-B403-11d4-BD18-00D0B7A1821E} / {A7E39B01-B403-11d4-BD18-00D0B7A1821E}][Stopped/Manual Start] <System32\Drivers\Vch.sys><Intel Corporation> [{BAEE00C0-028A-11d5-8222-000347433250} / {BAEE00C0-028A-11d5-8222-000347433250}][Stopped/Manual Start] <System32\Drivers\a307.sys><Intel Corporation> [Intel(R) Graphics Chipset (KCH) Driver / {D31A0762-0CEB-444e-ACFF-B049A1F6FE91}][Running/Manual Start] <system32\drivers\ialmkchw.sys><Intel Corporation> [{E2B953A6-195A-44F9-9BA3-3D5F4E32BB55} / {E2B953A6-195A-44F9-9BA3-3D5F4E32BB55}][Stopped/Manual Start] <System32\Drivers\a301.sys><Intel Corporation> [{E2B953A7-195A-44F9-9BA3-3D5F4E32BB55} / {E2B953A7-195A-44F9-9BA3-3D5F4E32BB55}][Stopped/Manual Start] <System32\Drivers\a301.sys><Intel Corporation> [{E6759E0C-470B-44DC-A4A1-627E68BB3A85} / {E6759E0C-470B-44DC-A4A1-627E68BB3A85}][Stopped/Manual Start] <System32\Drivers\a302.sys><Intel Corporation> [{FE3AC900-723B-11d5-A8DE-000002005D88} / {FE3AC900-723B-11d5-A8DE-000002005D88}][Stopped/Manual Start] <System32\Drivers\a308.sys><Intel Corporation> ================================== 浏览器加载项 [QQCycloneHelper Class] {00000000-12C9-4305-82F9-43058F20E8D2} <D:\Program Files\Tencent\QQDownload\QQIEHelper01.dll, 腾讯公司> [AcroIEHlprObj Class] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx, > [Tencent Browser Helper] {0C7C23EF-A848-485B-873C-0ED954731014} <D:\Program Files\TENCENT\SSPlus\SAddr.dll, Tencent> [@shdoclc.dll,-866] {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A> [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\Program Files\Tencent\QQ\QQ.EXE, TENCENT> [电台(&R)] {8E718888-423F-11D2-876E-00A0C9082467} <D:\WINNT\system32\msdxm.ocx, Microsoft Corporation> [WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} <D:\WINNT\system32\wuweb.dll, Microsoft Corporation> [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINNT\system32\Macromed\Flash\Flash9c.ocx, Adobe Systems, Inc.> [&使用超级旋风下载] <D:\Program Files\Tencent\QQDownload\geturl.htm, N/A> [&使用超级旋风下载全部链接] <D:\Program Files\Tencent\QQDownload\getAllurl.htm, N/A> [上传到QQ网络硬盘] <D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A> [添加到QQ自定义面板] <D:\Program Files\Tencent\QQ\AddPanel.htm, N/A> [添加到QQ表情] <D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A> [用QQ彩信发送该图片] <D:\Program Files\Tencent\QQ\SendMMS.htm, N/A> ================================== 正在运行的进程 [PID: 184][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.00.2195.6601] [PID: 208][\??\D:\WINNT\system32\csrss.exe] [Microsoft Corporation, 5.00.2195.6601] [PID: 916][D:\WINNT\Explorer.EXE] [Microsoft Corporation, 5.00.3700.6690] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [D:\Program Files\TENCENT\SSPlus\SAddr.dll] [Tencent, 5, 0, 1, 17] [D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx] [, 1, 0, 0, 1] [D:\Program Files\WinRAR\rarext.dll] [N/A, ] [PID: 1084][D:\WINNT\System32\hkcmd.exe] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\hccutils.DLL] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\igfxdev.dll] [Intel Corporation, 3,0,0,1773] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [D:\WINNT\System32\igfxsrvc.dll] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\igfxhk.dll] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\igfxres.dll] [Intel Corporation, 3,0,0,1773] [PID: 1092][D:\WINNT\System32\igfxtray.exe] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\hccutils.DLL] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\igfxdev.dll] [Intel Corporation, 3,0,0,1773] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [D:\WINNT\System32\igfxsrvc.dll] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\igfxres.dll] [Intel Corporation, 3,0,0,1773] [D:\WINNT\System32\igfxress.dll] [Intel Corporation, 3,0,0,1773] [PID: 1104][D:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe] [Symantec Corporation, 8.1.0.821] [D:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Cliproxy.dll] [Symantec Corporation, 8.1.0.821] [D:\PROGRA~1\SYMANT~1\SYMANT~1\NAVNTUTL.DLL] [Symantec/Peter Norton Group, 1, 0, 0, 1] [D:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Cliscan.dll] [Symantec Corporation, 8.1.0.821] [D:\WINNT\system32\SFC.DLL] [Microsoft Corporation, 5.00.2195.6673] [PID: 1116][D:\WINNT\system32\Rundll32.exe] [Microsoft Corporation, 5.00.2134.1] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [PID: 1140][D:\WINNT\notepad.exe] [Microsoft Corporation, 5.00.2140.1] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [PID: 1184][D:\Program Files\WinRAR\WinRAR.exe] [N/A, ] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [PID: 1152][D:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.703\SREng.EXE] [Smallfrogs Studio, 2.4.12.806] [D:\PROGRA~1\TENCENT\SSPlus\SPlus.dll] [TENCENT, 5, 0, 1, 17] [D:\WINNT\system32\sfc.dll] [Microsoft Corporation, 5.00.2195.6673] ================================== 文件关联 .TXT Error. [D:\WINNT\notepad.exe %1] .EXE OK. ["%1" %] .COM OK. ["%1" %] .PIF OK. ["%1" %] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %] .SCR OK. ["%1" /S] .CHM OK. ["D:\WINNT\hh.exe" %1] .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI Error. [D:\WINNT\System32\NOTEPAD.EXE %1] .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-15 17:48 \| 只看楼主短消息资料字号：小中大 6楼是由于我的水平太低吗？论坛里那么多的老师都不愿意帮助我吗?真的是很郁闷!在线等待!
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:

newcenturymoon 社区嘉宾帖子:15158 注册: 2005-08-03 来自:	发表于： 2007-06-15 18:05 \| 短消息资料字号：小中大 7楼把下列文字复制到记事本中然后重命名为1.bat运行之 rundll32.exe /s advpack.dll /DelNodeRunDLL32 %systemroot%\System32\dacui.dll rundll32.exe /s advpack.dll /DelNodeRunDLL32 %systemroot%\Catroot\icatalog.mdb regsvr32 /s setupwbv.dll regsvr32 /s wininet.dll regsvr32 /s comcat.dll regsvr32 /s shdoc401.dll regsvr32 /s shdoc401.dll /i regsvr32 /s asctrls.ocx regsvr32 /s oleaut32.dll regsvr32 /s shdocvw.dll /I regsvr32 /s shdocvw.dll regsvr32 /s browseui.dll regsvr32 /s browseui.dll /I regsvr32 /s msrating.dll regsvr32 /s mlang.dll regsvr32 /s hlink.dll regsvr32 /s mshtml.dll regsvr32 /s mshtmled.dll regsvr32 /s urlmon.dll regsvr32 /s plugin.ocx regsvr32 /s sendmail.dll regsvr32 /s comctl32.dll /i regsvr32 /s inetcpl.cpl /i regsvr32 /s mshtml.dll /i regsvr32 /s scrobj.dll regsvr32 /s mmefxe.ocx regsvr32 /s proctexe.ocx mshta.exe /register regsvr32 /s corpol.dll regsvr32 /s jscript.dll regsvr32 /s msxml.dll regsvr32 /s imgutil.dll regsvr32 /s thumbvw.dll regsvr32 /s cryptext.dll regsvr32 /s rsabase.dll regsvr32 /s triedit.dll regsvr32 /s dhtmled.ocx regsvr32 /s inseng.dll regsvr32 /s iesetup.dll /i regsvr32 /s hmmapi.dll regsvr32 /s cryptdlg.dll regsvr32 /s actxprxy.dll regsvr32 /s dispex.dll regsvr32 /s occache.dll regsvr32 /s occache.dll /i regsvr32 /s iepeers.dll regsvr32 /s wininet.dll /i regsvr32 /s urlmon.dll /i regsvr32 /s digest.dll /i regsvr32 /s cdfview.dll regsvr32 /s webcheck.dll regsvr32 /s mobsync.dll regsvr32 /s pngfilt.dll regsvr32 /s licmgr10.dll regsvr32 /s icmfilter.dll regsvr32 /s hhctrl.ocx regsvr32 /s inetcfg.dll regsvr32 /s trialoc.dll regsvr32 /s tdc.ocx regsvr32 /s MSR2C.DLL regsvr32 /s msident.dll regsvr32 /s msieftp.dll regsvr32 /s xmsconf.ocx regsvr32 /s ils.dll regsvr32 /s msoeacct.dll regsvr32 /s wab32.dll regsvr32 /s wabimp.dll regsvr32 /s wabfind.dll regsvr32 /s oemiglib.dll regsvr32 /s directdb.dll regsvr32 /s inetcomm.dll regsvr32 /s msoe.dll regsvr32 /s oeimport.dll regsvr32 /s msdxm.ocx regsvr32 /s dxmasf.dll regsvr32 /s laprxy.dll regsvr32 /s l3codecx.ax regsvr32 /s acelpdec.ax regsvr32 /s mpg4ds32.ax regsvr32 /s voxmsdec.ax regsvr32 /s danim.dll regsvr32 /s Daxctle.ocx regsvr32 /s lmrt.dll regsvr32 /s datime.dll regsvr32 /s dxtrans.dll regsvr32 /s dxtmsft.dll regsvr32 /s vgx.dll regsvr32 /s WEBPOST.DLL regsvr32 /s WPWIZDLL.DLL regsvr32 /s POSTWPP.DLL regsvr32 /s CRSWPP.DLL regsvr32 /s FTPWPP.DLL regsvr32 /s FPWPP.DLL regsvr32 /s FLUPL.OCX regsvr32 /s wshom.ocx regsvr32 /s wshext.dll regsvr32 /s vbscript.dll regsvr32 /s wupdinfo.dll regsvr32 /s shimgvw.dll regsvr32 /s wmpdxm.dll regsvr32 /s appwiz.cpl regsvr32 /s msi.dll regsvr32 /s /i shell32.dll regsvr32 /s scrrun.dll mstinit.exe /setup regsvr32 /s msnsspc.dll /SspcCreateSspiReg regsvr32 /s msapsspc.dll /SspcCreateSspiReg
newcenturymoon 社区嘉宾帖子:15158 注册: 2005-08-03 来自:

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-15 18:18 \| 只看楼主短消息资料字号：小中大 8楼我自己已经制作了ie.bat文件，并且运行它，可是丝毫没有任何作用！我想问，您是看过我的日志报告得出的结论吗？
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:

happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:	发表于： 2007-06-18 09:34 \| 只看楼主短消息资料字号：小中大 9楼按照上述方法不行啊，请看是怎么回事，运行时出现提示对话框，RUNDLL advpack.dll出错，丢失条目:/DelNodeRunDll32
happygirl123 初生襁褓狮帖子:9 注册: 2007-06-15 来自:

一点爱心初生襁褓狮帖子:7 注册: 2007-06-18 来自:	发表于： 2007-06-18 10:23 \| 短消息资料字号：小中大 10楼怎么没作系统还原呢没看看有什么可疑进程吗?
一点爱心初生襁褓狮帖子:7 注册: 2007-06-18 来自:

<<上一主题|下一主题>>

12

1 / 2 页

跳转页

页面顶部

Powered by Discuz!NT