12   1  /  2  页   跳转

麻烦处理下

收藏
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 12:59 | 只看楼主 短消息 资料
字号: 1楼

麻烦处理下

麻烦处理下,个人认为是病毒,如果不是病毒的话,是否可以查下这个程序关联哪几个程序

用户系统信息:Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.103 Safari/537.36

附件附件:

您所在的用户组无法下载或查看附件

分享到:
gototop
 
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 13:02 | 只看楼主 短消息 资料
字号: 2楼

回复:麻烦处理下



[复制到剪贴板]
CODE:
2014-11-26,13:00:02

System Repair Engineer 2..6..12..1018
Smallfrogs ([url]http://www.KZTechs.com[/url])

Windows Server 2003 Enterprise Edition Service Pack 2 (Build 3790) -

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
    <360sd><"C:\Program Files\360\360sd\360sd.exe" /autorun>  [(Verified)Qihoo 360 Software (Beijing) Company Limited]
    <ctfmon><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Component Publisher]
    <IMEKRMIG6.1><C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE>  [(Verified)Microsoft Windows Component Publisher]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Windows Component Publisher]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Windows Component Publisher]
    <MtxHotPlugService><C:\WINDOWS\system32\MtxHotPlugService.exe v>  [File is missing]
    <MessageNotification><E:\T6SOFT\Desktop\MessageNotification.exe>  [(Verified)"ChangJieTong Software Co.,Ltd"]
    <HLCMD><C:\WINDOWS\system32\HLCMD.exe>  [(Verified)"HongZhi Security Technology Co.,Ltd"]
    <360Safetray><"C:\Program Files\360\360safe\safemon\360Tray.exe" /start>  [(Verified)Qihoo 360 Software (Beijing) Company Limited]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\HLCMD.EXE>  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><%SystemRoot%\system32\logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [Microsoft Corporation]

==================================
启动文件夹
[T6管理服务]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\T6管理服务.lnk --> E:\T6SOFT\DESKTOP\UfSvrMgr.exe [畅捷通软件有限公司]><N>
[服务管理器]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\服务管理器.lnk --> C:\PROGRA~1\MICROS~1\80\Tools\Binn\sqlmangr.exe [Microsoft Corporation]><N>

==================================
服务
[360 杀毒实时防护加载服务 / 360rp][Running/Auto Start]
  <"C:\Program Files\360\360sd\360rps.exe"><360.cn>
[Microsoft Search / MSSEARCH][Running/Auto Start]
  <"C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe"><Microsoft Corporation>
[MSSQLSERVER / MSSQLSERVER][Running/Auto Start]
  <e:\PROGRA~1\MICROS~1\MSSQL\binn\sqlservr.exe><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
  <C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[MySQL / MySQL][Running/Auto Start]
  <"C:\Program Files\Asahisoft KYW-Server\MySQL\bin\mysqld-nt.exe" MySQL><N/A>
[Sogou OmniAddr Update Service / OmniAddrService][Running/Auto Start]
  <"C:\Program Files\SogouInput\Components\AddressSearch\OmniAddr\OmniAddrService.exe" /Service><Sogou.com Inc>
[SmartFssCli / SmartFssCli][Stopped/Auto Start]
  <C:\WINDOWS\system32\SmartFssCli.exe><N/A>
[SmartFssSrv / SmartFssSrv][Running/Auto Start]
  <C:\Program Files\Asahisoft KYW-Server\SmartFssSrv.exe><N/A>
[SogouUpdate / SogouUpdate][Stopped/Manual Start]
  <"C:\Program Files\SogouInput\7.4.0.4348\SogouUpdate.exe"><Sogou.com Inc.>
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
  <e:\Program Files\Microsoft SQL Server\MSSQL\binn\sqlagent.exe -i MSSQLSERVER><Microsoft Corporation>
[UFSoft SMS Platform / U8SmsSrv][Running/Auto Start]
  <C:\WINDOWS\system32\U8SMSSrv.exe><N/A>
[T6预警调度服务 / UFALERTSERVICE][Running/Auto Start]
  <C:\WINDOWS\system32\AlertService.exe><N/A>
[T6-企业管理软件 / UFNet][Running/Auto Start]
  <e:\T6SOFT\DESKTOP\ServerNT.exe><N/A>
[主动防御 / ZhuDongFangYu][Running/Auto Start]
  <"C:\Program Files\360\360safe\deepscan\ZhuDongFangYu.exe"><360.cn>

==================================
驱动程序
[360AvFlt mini-filter driver / 360AvFlt][Running/Manual Start]
  <system32\DRIVERS\360AvFlt.sys><360.cn>
[360Safe Camera Filter Service / 360Camera][Stopped/Manual Start]
  <System32\Drivers\360Camera.sys><360.cn>
[360netmon / 360netmon][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\360netmon.sys><360.cn>
[Broadcom NetXtreme II VBD / b06bdrv][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\bxvbdx.sys><Broadcom Corporation>
[BAPIDRV / BAPIDRV][Running/System Start]
  <system32\DRIVERS\BAPIDRV.sys><360.cn>
[Dell PERC S100 S300 Configuration Device [storport] / bccfg][Running/Manual Start]
  <system32\drivers\bccfg.sys><Dell Inc.>
[bcraid / bcraid][Running/Boot Start]
  <\SystemRoot\system32\drivers\bcraid.sys><Dell Inc.>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><360安全中心>
[G200ew / G200ew][Running/Manual Start]
  <system32\DRIVERS\g200ewm.sys><Matrox Graphics Inc.>
[HookShadowSSDT / HookShadowSSDT][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\HookShadowSSDT.sys><<company name here>>
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
  <system32\DRIVERS\ipinip.sys><N/A>
[Broadcom NetXtreme II BXND / l2nd][Running/Manual Start]
  <system32\DRIVERS\bxnd52x.sys><Broadcom Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[Sense3 / Sense3][Stopped/Auto Start]
  <System32\drivers\sense3.sys><Beijing Senselock>
[Superk53 / Superk53][Running/Auto Start]
  <\SystemRoot\System32\drivers\superk53.sys><Microsoft Corporation>
[Senselock USB Lock driver / USBLOCK][Stopped/Auto Start]
  <System32\Drivers\usblock.sys><Beijing Senselock>

==================================
浏览器加载项
[360sdbho Class]
  {0F4BF955-A127-41B7-A998-369904AA2578} <C:\Program Files\360\360sd\360sdbho.dll, (Signed) 360.cn>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360\360safe\safemon\safemon.dll, (Signed) 360.cn>
[QQMiniDL Helper Class]
  {C9C7334B-5657-41e1-8F79-F6AACECA05F4} <C:\Program Files\Common Files\Tencent\QQMiniDL\60\Browser\QQIEHelper01.dll, (Signed) Tencent Technology (Shenzhen) Company Limited>
[AccountProtectBHO Class]
  {DDD362CF-523B-4BC9-8FDC-58F93B6BC945} <C:\Documents and Settings\Administrator\Application Data\Tencent\QQ\QQAntiPhishing\AccountProtect.dll, (Signed) Tencent>
[NetIp Control]
  {1DF1CC8F-E284-47D2-A3BE-336AD25A0E81} <C:\WINDOWS\system32\NetIp.ocx, (Signed) ufida>
[Update1.M86ClientWrap]
  {3175913E-3A48-4C76-91A8-90AA04F5D020} <C:\WINDOWS\Downloaded Program Files\Update1.dll, (Signed) ufsoft>
[NetIp Control]
  {1DF1CC8F-E284-47D2-A3BE-336AD25A0E81} <C:\WINDOWS\system32\NetIp.ocx, (Signed) ufida>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, (Signed) N/A>
[Update1.M86ClientWrap]
  {3175913E-3A48-4C76-91A8-90AA04F5D020} <C:\WINDOWS\Downloaded Program Files\Update1.dll, (Signed) ufsoft>
[应用宝一键安装插件]
  {50F4150A-48B2-417A-BE4C-C83F580FB904} <C:\Program Files\Common Files\Tencent\OpenPlatform\3.0.0.3201\npQPMWebGamePlugin.dll, (Signed) 腾讯公司>
[360SafeLive]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <C:\Program Files\360\360safe\Safelive.dll, (Signed) 360.cn>
[]
  {98F22D0A-B97F-4AF4-8E4C-A6596C8CDD4C} <, >
[PlayerCtrl Class]
  {E05BC2A3-9A46-4a32-80C9-023A473F5B23} <C:\Program Files\Tencent\QQMusic\QzoneMusic\QzoneMusic.dll, (Signed) Tencent>
[TimwpCheck Class]
  {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} <C:\Program Files\Tencent\QQ\bin\Timwp.dll, (Signed) Tencent>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[腾讯开放平台微端游戏插件]
  {F47EE1CA-AA94-48A3-B9C9-CBB0037AB7BC} <C:\Program Files\Common Files\Tencent\OpenPlatform\3.0.0.3201\npQPMWebGamePlugin.dll, (Signed) 腾讯公司>
[XML HTTP 3.0]
  {F5078F35-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[使用QQ下载助手下载]
  <C:\Program Files\Common Files\Tencent\QQMiniDL\60\Browser\xfgeturl.htm, N/A>
gototop
 
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 13:06 | 只看楼主 短消息 资料
字号: 3楼

回复:麻烦处理下



[复制到剪贴板]
CODE:
[code]==================================
正在运行的进程
[PID: 296 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 344 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 368 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 416 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 428 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 588 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 668 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 744 / SYSTEM][C:\Program Files\360\360sd\360rps.exe]  [360.cn, 5, 0, 0, 5061]
[PID: 760 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 808 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 824 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 852 / SYSTEM][C:\Program Files\360\360safe\deepscan\ZhuDongFangYu.exe]  [360.cn, 3, 2, 2, 2041]
    [C:\Program Files\360\360safe\360base.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\360util.dll]  [360.cn, 1, 0, 0, 1207]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360safe\360leakfixplugin.dll]  [360.cn, 1, 0, 0, 1011]
    [C:\Program Files\360\360safe\deepscan\cloudcom2.dll]  [360.cn, 3, 3, 10, 1008]
    [C:\Program Files\360\360safe\SoftMgr\360SoftMgrS.dll]  [360.cn, 2, 1, 6, 1470]
    [C:\Program Files\360\360safe\deepscan\qutmload.dll]  [360.cn, 7, 2, 1, 1089]
    [C:\Program Files\360\360safe\sweeper\CleanSoft.dll]  [360.cn, 9, 0, 0, 1120]
    [C:\Program Files\360\360safe\sweeper\CleanSoftEng.dll]  [360.cn, 9, 0, 0, 1110]
[PID: 972 / SYSTEM][C:\PROGRA~1\SOGOUI~1\SogouExe\SogouExe.exe]  [Sogou.com Inc., 7.4.0.4348]
[PID: 1012 / SYSTEM][C:\PROGRA~1\SOGOUI~1\740~1.434\SGTool.exe]  [Sogou.com Inc., 7.4.0.4348]
    [C:\PROGRA~1\SOGOUI~1\740~1.434\HWSignature.dll]  [Sogou.com Inc., 7.4.0.4348]
[PID: 1072 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.2.3790.4759 (srv03_sp2_gdr.100817-0343)]
    [C:\WINDOWS\system32\EBPMON2.DLL]  [SEIKO EPSON CORPORATION, 3, 11, 0, 0]
[PID: 1096 / NETWORK SERVICE][C:\WINDOWS\system32\msdtc.exe]  [Microsoft Corporation, 2001.12.4720.4340 (srv03_sp2_gdr.080723-1210)]
[PID: 1252 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1328 / SYSTEM][e:\PROGRA~1\MICROS~1\MSSQL\binn\sqlservr.exe]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [e:\PROGRA~1\MICROS~1\MSSQL\binn\opends60.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\PROGRA~1\MICROS~1\MSSQL\binn\sqlsort.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\PROGRA~1\MICROS~1\MSSQL\binn\ums.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\PROGRA~1\MICROS~1\MSSQL\binn\Resources\2052\sqlevn70.RLL]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\Program Files\Microsoft SQL Server\MSSQL\binn\SSNETLIB.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\PROGRA~1\MICROS~1\MSSQL\binn\SSmsLPCn.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\PROGRA~1\MICROS~1\MSSQL\binn\SSnmPN70.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [e:\Program Files\Microsoft SQL Server\MSSQL\binn\SQLFTQRY.DLL]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\Program Files\Common Files\System\XXXB\sqlXXXb.dll]  [Microsoft Corporation, 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)]
[PID: 1380 / SYSTEM][C:\Program Files\Asahisoft KYW-Server\MySQL\bin\mysqld-nt.exe]  [N/A, ]
[PID: 1408 / SYSTEM][C:\Program Files\SogouInput\Components\AddressSearch\OmniAddr\OmniAddrService.exe]  [Sogou.com Inc, 2.0.1.3]
[PID: 1444 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1492 / SYSTEM][C:\Program Files\Asahisoft KYW-Server\SmartFssSrv.exe]  [N/A, ]
[PID: 1572 / SYSTEM][C:\WINDOWS\System32\snmp.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [e:\Program Files\Microsoft SQL Server\MSSQL\BINN\sqlsnmp.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
[PID: 1624 / SYSTEM][C:\WINDOWS\system32\U8SMSSrv.exe]  [N/A, ]
[PID: 1644 / SYSTEM][C:\Program Files\Asahisoft KYW-Server\FssServer.exe]  [管理中心, 1, 0, 0, 8]
    [C:\Program Files\Asahisoft KYW-Server\MW64KEKEY.dll]  [N/A, ]
    [C:\Program Files\Asahisoft KYW-Server\MwUsbD.dll]  [N/A, ]
    [C:\Program Files\Asahisoft KYW-Server\HTUsbD.dll]  [N/A, ]
    [C:\Program Files\Asahisoft KYW-Server\HKAPI.dll]  [HaitaiFangyuan, 1, 1, 1, 1119]
    [C:\Program Files\Asahisoft KYW-Server\HKCommand.dll]  [Haitaifangyuan, 4, 1, 7, 1105]
    [C:\Program Files\Asahisoft KYW-Server\CryptoDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Asahisoft KYW-Server\LoadString.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Asahisoft KYW-Server\SmartMySqlLib.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Asahisoft KYW-Server\LIBMYSQL.dll]  [N/A, ]
[PID: 1676 / SYSTEM][e:\T6SOFT\DESKTOP\ServerNT.exe]  [N/A, ]
    [e:\T6SOFT\DESKTOP\UMiscell.dll]  [, 1, 0, 0, 1]
    [e:\T6SOFT\DESKTOP\US80SGV.dll]  [, 8, 2, 0, 1]
    [C:\WINDOWS\system32\SecuComm.dll]  [N/A, ]
    [C:\Program Files\Common Files\System\XXXB\sqlXXXb.dll]  [Microsoft Corporation, 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\DBNETLIB.DLL]  [Microsoft Corporation, 2000.086.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\DBmsLPCn.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\System\XXXB\SQLXXXB.RLL]  [Microsoft Corporation, 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)]
[PID: 1764 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1824 / SYSTEM][C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe]  [Microsoft Corporation, 9.107.8320.9]
    [C:\Program Files\Common Files\System\MSSearch\Bin\mssws.dll]  [Microsoft Corporation, 9.107.8320.9]
    [C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\mssrch.dll]  [Microsoft Corporation, 9.107.8320.9]
    [C:\Program Files\Common Files\System\MSSearch\Bin\tquery.dll]  [Microsoft Corporation, 9.107.8320.9]
    [C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\propdefs.dll]  [Microsoft Corporation, 9.107.8320.9]
    [C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\srchidx.dll]  [Microsoft Corporation, 9.107.8320.9]
[PID: 1904 / SYSTEM][C:\WINDOWS\system32\AlertService.exe]  [N/A, ]
    [C:\WINDOWS\system32\AlertDispatcher.dll]  [, 1, 0, 0, 1]
[PID: 2272 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 2356 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 2392 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 2628 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 2656 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\imaadp32.acm]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\system32\msadp32.acm]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\system32\msg711.acm]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\system32\msgsm32.acm]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
    [C:\WINDOWS\system32\tssoft32.acm]  [DSP GROUP, INC., 1.01]
    [C:\WINDOWS\system32\tsd32.dll]  [, ]
    [C:\WINDOWS\system32\msg723.acm]  [Microsoft Corporation, 5.2.3790.3959]
    [C:\WINDOWS\system32\msaud32.acm]  [Microsoft Corporation, 8.00.00.4502]
    [C:\WINDOWS\system32\sl_anet.acm]  [Sipro Lab Telecom Inc., 3.02]
    [C:\WINDOWS\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0306]
[PID: 2836 / Administrator][C:\WINDOWS\system32\rdpclip.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 2908 / Administrator][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\Program Files\360\360sd\ShellIco.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360safe\safemon\360UDiskGuard.dll]  [360.cn, 2, 0, 0, 1091]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]
    [C:\Program Files\360\360safe\safemon\iNetSafe.dll]  [360.cn, 1, 0, 2, 1420]
    [C:\Program Files\360\360safe\safemon\wdexhelper.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\safemon\Safehmpg.dll]  [360.cn, 1, 0, 0, 2120]
[PID: 3048 / Administrator][C:\WINDOWS\system32\MtxHotPlugService.exe]  [N/A, ]
[PID: 3072 / Administrator][E:\T6SOFT\Desktop\MessageNotification.exe]  [微软中国, 1.00]
    [C:\WINDOWS\system32\MSVBVM60.DLL]  [Microsoft Corporation, 6.00.9782]
    [C:\WINDOWS\system32\vb6chs.dll]  [Microsoft Corporation, 6.00.8988]
    [C:\Program Files\Common Files\System\XXXB\sqlXXXb.dll]  [Microsoft Corporation, 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\DBNETLIB.DLL]  [Microsoft Corporation, 2000.086.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\DBmsLPCn.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\System\XXXB\SQLXXXB.RLL]  [Microsoft Corporation, 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]
[PID: 3092 / Administrator][C:\Program Files\360\360safe\safemon\360Tray.exe]  [360.cn, 7, 7, 3, 1151]
gototop
 
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 13:06 | 只看楼主 短消息 资料
字号: 4楼

回复:麻烦处理下



[复制到剪贴板]
CODE:
    [C:\Program Files\360\360safe\360base.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\360util.dll]  [360.cn, 1, 0, 0, 1207]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360safe\360common.dll]  [360.cn, 7, 3, 0, 3100]
    [C:\Program Files\360\360safe\safemon\360compro.dll]  [360.cn, 7, 2, 2, 1181]
    [C:\Program Files\360\360safe\ipc\ipcservice.dll]  [360.CN, 7, 1, 2, 1171]
    [C:\Program Files\360\360safe\ipc\yhregd.dll]  [360.cn, 7, 2, 0, 1341]
    [C:\Program Files\360\360safe\ipc\appd.dll]  [360.cn, 7, 3, 6, 1551]
    [C:\Program Files\360\360safe\ipc\netdefender.dll]  [360.cn, 1, 0, 0, 1103]
    [C:\Program Files\360\360safe\safemon\360traylive.dll]  [360.cn, 8, 0, 1, 1009]
    [C:\Program Files\360\360safe\safemon\SelfProtectAPI2.dll]  [360.CN, 7, 1, 1, 1009]
    [C:\Program Files\360\360safe\safemon\360bsmon.tpi]  [360.cn, 6, 8, 0, 1161]
    [C:\Program Files\360\360safe\safemon\360dfsopt.tpi]  [360.cn, 1, 0, 0, 1045]
    [C:\Program Files\360\360safe\safemon\SMLStarter.tpi]  [360.cn, 2, 0, 0, 1080]
    [C:\Program Files\360\360safe\safemon\360safemonpro.tpi]  [360.cn, 3, 1, 1, 1720]
    [C:\Program Files\360\360safe\safemon\netmon.tpi]  [360.cn, 5, 1, 1, 3091]
    [C:\Program Files\360\360safe\safemon\Netm.tpi]  [360.cn, 7, 2, 10, 2070]
    [C:\Program Files\360\360safe\safemon\BootLeakFixer.tpi]  [360.cn, 1, 0, 0, 1010]
    [C:\Program Files\360\360safe\safemon\obtracer.tpi]  [360.cn, 6, 8, 0, 1501]
    [C:\Program Files\360\360safe\ipc\qutmipc.dll]  [360.cn, 7, 3, 0, 1065]
    [C:\Program Files\360\360safe\SoftMgr\SomAdvUtils.dll]  [360.cn, 3, 1, 1, 1600]
    [C:\Program Files\360\360safe\SoftMgr\somkernl.dll]  [360.cn, 2, 1, 0, 1110]
    [C:\Program Files\360\360safe\360netbase.dll]  [360.cn, 7, 25, 0, 40]
    [C:\Program Files\360\360safe\ipc\sbmon.dll]  [360互联网安全中心, 3, 0, 0, 1014]
    [C:\Program Files\360\360safe\ipc\appdext.dll]  [360.cn, 1, 0, 0, 1191]
    [C:\Program Files\360\360safe\deepscan\qutmload.dll]  [360.cn, 7, 2, 1, 1089]
    [C:\Program Files\360\360safe\ipc\360Box.dll]  [360安全中心, 2, 0, 0, 1008]
    [C:\Program Files\360\360safe\safemon\WDRecord.dll]  [360.cn, 1, 0, 1, 1090]
    [C:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 9, 9]
    [C:\Program Files\360\360safe\deepscan\jcloudscan.dll]  [360.cn, 1, 0, 0, 1007]
    [C:\Program Files\360\360safe\MiniUI.dll]  [360.cn, 9, 0, 0, 3110]
    [C:\Program Files\360\360safe\sites.dll]  [360.cn, 9, 0, 0, 2551]
    [C:\Program Files\360\360safe\Utils\SiteUIProxy.dll]  [360.cn, 9, 0, 0, 2050]
    [C:\Program Files\360\360safe\safemon\360UDiskGuard.dll]  [360.cn, 2, 0, 0, 1091]
    [C:\Program Files\360\360safe\netmon\360WebIdentify.dll]  [360.cn, 1, 0, 1, 1063]
    [C:\Program Files\360\360safe\SafeLive.dll]  [360.cn, 3, 0, 0, 3050]
    [C:\Program Files\360\360safe\pdown.dll]  [360.cn, 1, 3, 0, 1234]
    [C:\Program Files\360\360safe\safemon\SomProxy.dll]  [360.cn, 1, 0, 0, 1760]
    [C:\Program Files\360\360safe\safemon\360GuardBase.dll]  [360.cn, 3, 1, 0, 1010]
    [C:\Program Files\360\360safe\safemon\urlproc.dll]  [360.cn, 2, 9, 5, 1100]
    [C:\Program Files\360\360safe\safemon\safemonhlp.dll]  [360.cn, 1, 0, 0, 1250]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]
    [C:\Program Files\360\360safe\deepscan\Cloudcom2.dll]  [360.cn, 3, 3, 10, 1008]
    [C:\Program Files\360\360safe\netmon\360netctrl.dll]  [360.cn, 5, 3, 15, 2138]
    [C:\Program Files\360\360safe\netmon\360wvmon.dll]  [360.cn, 1, 0, 1, 1120]
    [C:\Program Files\360\360safe\netmon\3GIdentify.dll]  [360.cn, 1, 0, 2, 1135]
    [C:\Program Files\360\360safe\netmon\360netmisc.dll]  [360.cn, 1, 0, 1, 1090]
    [C:\Program Files\360\360safe\netmon\360NMConnection.dll]  [360.cn, 1, 0, 1, 1060]
    [C:\Program Files\360\360safe\netmon\360nmvui.dll]  [360.cn, 1, 0, 2, 1190]
    [C:\Program Files\360\360safe\netmon\360nmdata.dll]  [360.cn, 1, 0, 1, 1033]
    [C:\Program Files\360\360safe\360Verify.dll]  [360互联网安全中心, 2, 0, 0, 1005]
    [C:\Program Files\360\360safe\netmon\Netgm.dll]  [360.cn, 2, 1, 2, 1170]
    [C:\Program Files\360\360safe\netmon\360gameidentify.dll]  [360.cn, 1, 0, 1, 1040]
    [C:\Program Files\360\360safe\netmon\360PerfOptm2.dll]  [360.cn, 1, 0, 3, 1260]
    [C:\Program Files\360\360safe\netmon\netmpgame.dll]  [360.cn, 1, 0, 3, 3045]
    [C:\Program Files\360\360safe\safemon\SdAdBlock.tpi]  [360.cn, 5, 0, 0, 5071]
    [C:\Program Files\360\360sd\360Base.dll]  [360.cn, 1, 0, 0, 1041]
    [C:\Program Files\360\360safe\deepscan\bapi.dll]  [360.cn, 2.0.0.1053]
    [C:\Program Files\360\360safe\safemon\360TrayLogin.tpi]  [360.cn, 9, 0, 3, 1064]
    [C:\Program Files\360\360safe\safemon\DsTpi.tpi]  [360.cn, 1, 0, 0, 3020]
    [C:\Program Files\360\360safe\LiveUpd360.dll]  [360.cn, 1, 3, 0, 1234]
    [C:\Program Files\360\360safe\360net.dll]  [360.cn, 1, 2, 0, 1130]
    [C:\Program Files\360\360safe\360P2SP.dll]  [360.cn, 1, 3, 0, 1310]
    [C:\Program Files\360\360safe\combineext.dll]  [360.cn, 1, 0, 0, 1007]
[PID: 3104 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 3116 / Administrator][C:\Program Files\360\360sd\360sd.exe]  [360.cn, 5, 0, 0, 5083]
    [C:\Program Files\360\360sd\360Base.dll]  [360.cn, 1, 0, 0, 1041]
    [C:\Program Files\360\360sd\360Util.dll]  [360.cn, 1, 0, 0, 1200]
    [C:\Program Files\360\360sd\CrashReport.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\360Conf.dll]  [360.cn, 1, 0, 0, 1016]
[PID: 3152 / Administrator][E:\T6SOFT\DESKTOP\UfSvrMgr.exe]  [畅捷通软件有限公司, 1, 0, 0, 1]
[PID: 3164 / Administrator][C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\SQLUNIRL.dll]  [Microsoft Corporation, 2000.080.0728.00]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\W95SCM.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLSVC.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\WINDOWS\system32\odbcbcp.dll]  [Microsoft Corporation, 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\SQLRESLD.dll]  [Microsoft Corporation, 2000.080.2039.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\SQLSVC.RLL]  [Microsoft Corporation, 2000.080.0194.00]
    [C:\Program Files\Microsoft SQL Server\80\Tools\Binn\Resources\2052\sqlmangr.RLL]  [Microsoft Corporation, 2000.080.0194.00]
[PID: 3480 / Administrator][C:\Program Files\360\360safe\360safe.exe]  [, 9, 0, 1, 1001]
    [C:\Program Files\360\360safe\360Util.dll]  [360.cn, 1, 0, 0, 1207]
    [C:\Program Files\360\360safe\360Base.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]
    [C:\Program Files\360\360safe\sites.dll]  [360.cn, 9, 0, 0, 2551]
    [C:\Program Files\360\360safe\Utils\SiteUIProxy.dll]  [360.cn, 9, 0, 0, 2050]
    [C:\Program Files\360\360safe\MiniUI.dll]  [360.cn, 9, 0, 0, 3110]
    [C:\Program Files\360\360safe\360Common.dll]  [360.cn, 7, 3, 0, 3100]
    [C:\Program Files\360\360safe\safemon\wdefence.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\safemon\safe505.dll]  [360.cn, 1, 0, 0, 1070]
    [C:\Program Files\360\360safe\360NetBase.dll]  [360.cn, 7, 25, 0, 40]
    [C:\Program Files\360\360safe\Utils\360ExamineUIEx.dll]  [, 9, 0, 0, 2202]
    [C:\Program Files\360\360safe\360ExamineEx.DLL]  [360.cn, 9, 0, 0, 2011]
    [C:\Program Files\360\360safe\safemon\360xpfix.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360safe\Utils\360Protect.dll]  [, 9, 0, 0, 2118]
    [C:\Program Files\360\360safe\safemon\360compro.dll]  [360.cn, 7, 2, 2, 1181]
    [C:\Program Files\360\360safe\safemon\360GuardBase.dll]  [360.cn, 3, 1, 0, 1010]
    [C:\Program Files\360\360safe\Utils\AdvToolsEx.dll]  [, 9, 0, 0, 3030]
    [C:\Program Files\360\360safe\360UCenter.dll]  [360.cn, 9, 0, 3, 1062]
    [C:\Program Files\360\360safe\360NetUL.dll]  [360.cn, 1, 0, 0, 1033]
    [C:\Program Files\360\360safe\utils\360ExpData.dll]  [360.cn, 1, 0, 3, 1062]
    [C:\Program Files\360\360safe\utils\360ExpClient.dll]  [360.cn, 1, 0, 3, 1062]
    [C:\Program Files\360\360safe\utils\360ExpLogin.dll]  [360.cn, 1, 0, 3, 1067]
    [C:\Program Files\360\360safe\360Login.dll]  [360.cn, 1, 0, 0, 1266]
    [C:\Program Files\360\360safe\SafeLive.dll]  [360.cn, 3, 0, 0, 3050]
    [C:\Program Files\360\360safe\Deepscan\cloudcom2.dll]  [360.cn, 3, 3, 10, 1008]
    [C:\Program Files\360\360safe\360ver.dll]  [360.cn, 9, 7, 0, 2001]
    [C:\Program Files\360\360safe\Utils\360MedalWall.dll]  [360.cn, 3, 0, 0, 3045]
    [C:\Program Files\360\360safe\360UData.dll]  [360.cn, 9, 0, 3, 1041]
    [C:\Program Files\360\360safe\SoftMgr\SoftMgrExt.dll]  [360.cn, 1, 1, 0, 1021]
    [C:\Program Files\360\360safe\AntiAdwa.dll]  [360互联网安全中心, 6, 7, 0, 1076]
    [C:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 9, 9]
    [C:\Program Files\360\360safe\dynlenv.dll]  [360.cn, 1, 1, 0, 1016]
    [C:\Program Files\360\360safe\CrashReport.dll]  [360.cn, 5, 0, 0, 5044]
    [c:\program files\360\360safe\safemon\DiagScanTips.tpi]  [360互联网安全中心, 1, 0, 0, 1023]
    [c:\program files\360\360safe\dynlbase.dll]  [360互联网安全中心, 1, 1, 0, 1055]
    [c:\program files\360\360safe\deepscan\bapi.dll]  [360.cn, 2.0.0.1053]
    [C:\Program Files\360\360safe\deepscan\DsSysRepair.dll]  [360.cn, 1, 0, 0, 1060]
    [C:\Program Files\360\360safe\Sweeper\SysSweeper.dll]  [360.cn, 1, 1, 0, 280]
    [C:\Program Files\360\360safe\CheckAutorun.dll]  [360.cn, 3, 1, 2, 1035]
    [C:\Program Files\360\360safe\SoftMgr\somkernl.dll]  [360.cn, 2, 1, 0, 1110]
    [C:\Program Files\360\360safe\SoftMgr\SomAdvUtils.dll]  [360.cn, 3, 1, 1, 1600]
    [C:\Program Files\360\360safe\Sweeper\CleanSoft.dll]  [360.cn, 9, 0, 0, 1120]
    [C:\Program Files\360\360safe\BaseExamine.dll]  [, 9, 0, 0, 2110]
    [C:\Program Files\360\360safe\safemon\SomProxy.dll]  [360.cn, 1, 0, 0, 1760]
    [C:\Program Files\360\360safe\modules\StartSD.dll]  [360.cn, 5, 0, 0, 5044]
    [C:\Program Files\360\360safe\leakrepair.dll]  [360.cn, 2, 0, 0, 1030]
    [C:\Program Files\360\360safe\360net.dll]  [360.cn, 1, 2, 0, 1130]
    [C:\Program Files\360\360safe\pdown.dll]  [360.cn, 1, 3, 0, 1234]
    [C:\Program Files\360\360safe\deepscan\CloudEngine.dll]  [360.cn, 8, 0, 0, 1090]
    [C:\Program Files\360\360safe\deepscan\cloudsec3.dll]  [360.cn, 3, 3, 0, 1150]
    [C:\Program Files\360\360safe\deepscan\deepscan.dll]  [360.cn, 3, 3, 0, 1150]
    [C:\Program Files\360\360safe\Sweeper\CleanSoftEngExam.dll]  [360.cn, 9, 0, 0, 1110]
    [C:\Program Files\360\360safe\safemon\PayInsureExamin.dll]  [360.cn, 1, 0, 0, 1080]
    [C:\Program Files\360\360safe\SoftMgr\lockkrnl.dll]  [360.CN, 1, 0, 0, 1101]
    [C:\Program Files\360\360safe\SoftMgr\SoftUpdate.dll]  [360.cn, 2, 6, 0, 1005]
    [C:\Program Files\360\360safe\deepscan\360Quarant.dll]  [360.cn, 1, 0, 0, 1035]
    [C:\Program Files\360\360safe\deepscan\360Quarantplugin.dll]  [360.cn, 1, 0, 0, 1013]
    [C:\Program Files\360\360safe\deepscan\CQhCltHttpW.dll]  [360.cn, 1, 3, 0, 1040]
    [C:\Program Files\360\360safe\SoftMgr\360Opt.dll]  [360.cn, 3, 1, 1, 1362]
    [C:\Program Files\360\360safe\SoftMgr\SpeedUp.dll]  [360.cn, 1, 0, 0, 1040]
    [C:\Program Files\360\360safe\deepscan\DsExtend.dll]  [360.cn, 1, 0, 0, 2014]
    [C:\Program Files\360\360safe\deepscan\AVE\AVEI.dll]  [360.cn, 1, 0, 0, 1018]
    [C:\Program Files\360\360safe\deepscan\AVE\AVEngine.dll]  [360.cn, 1, 0, 0, 1020]
    [C:\Program Files\360\360safe\deepscan\jCloudScan.dll]  [360.cn, 1, 0, 0, 1007]
    [C:\Program Files\360\360safe\deepscan\qex\QEX.dll]  [360.cn, 4.1.2.3231]
    [C:\Program Files\360\360safe\deepscan\ImAVEng.dll]  [360.cn, 1, 0, 0, 1019]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\savapi3.dll]  [Avira Operations GmbH & Co. KG, 1.4.0.11]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\MSVCR90.dll]  [Microsoft Corporation, 9.00.30729.1]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aecore.dll]  [Avira Operations GmbH & Co. KG, 8.3.2.6]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aevdf.dll]  [Avira Operations GmbH & Co. KG, 8.3.1.6]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aescript.dll]  [Avira Operations GmbH & Co. KG, 8.2.0.22]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aescn.dll]  [Avira Operations GmbH & Co. KG, 8.3.2.2]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aesbx.dll]  [Avira Operations GmbH & Co. KG, 8.2.20.24]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aerdl.dll]  [Avira Operations GmbH & Co. KG, 8.2.0.138]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aepack.dll]  [Avira Operations GmbH & Co. KG, 8.4.0.50]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aeoffice.dll]  [Avira Operations GmbH & Co. KG, 8.3.0.24]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aeheur.dll]  [Avira Operations GmbH & Co. KG, 8.1.4.1282]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aehelp.dll]  [Avira Operations GmbH & Co. KG, 8.3.1.0]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aegen.dll]  [Avira Operations GmbH & Co. KG, 8.1.7.28]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aeexp.dll]  [Avira Operations GmbH & Co. KG, 8.4.2.32]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aeemu.dll]  [Avira Operations GmbH & Co. KG, 8.1.3.4]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aedroid.dll]  [Avira Operations GmbH & Co. KG, 8.4.2.24]
    [C:\Program Files\360\360safe\deepscan\SDEng\savapi\aebb.dll]  [Avira Operations GmbH & Co. KG, 8.1.2.0]
    [C:\Program Files\360\360safe\Safemon\7z.dll]  [Igor Pavlov, 9.20.0.1085]
    [C:\Program Files\360\360safe\deepscan\QVM\360qvm.dll]  [360.cn, 5.0.1.1004]
    [C:\Program Files\360\360safe\deepscan\qutmload.dll]  [360.cn, 7, 2, 1, 1089]
[PID: 3720 / NETWORK SERVICE][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 3900 / Administrator][C:\Program Files\360\360sd\360rp.exe]  [360.cn, 5, 0, 0, 5075]
    [C:\Program Files\360\360sd\360Base.dll]  [360.cn, 1, 0, 0, 1041]
    [C:\Program Files\360\360sd\360Util.dll]  [360.cn, 1, 0, 0, 1200]
    [C:\Program Files\360\360sd\360rp.dll]  [360.cn, 5, 0, 0, 5083]
    [C:\Program Files\360\360sd\CrashReport.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\WhiteCache.dll]  [360.cn, 5, 0, 0, 5044]
    [C:\Program Files\360\360sd\360AvFlt.dll]  [360.cn, 1.1.0.1025]
    [C:\Program Files\360\360sd\FsrMgr.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]
    [C:\Program Files\360\360sd\360conf.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360sd\AVEI.dll]  [360.cn, 1, 0, 0, 1018]
    [C:\Program Files\360\360sd\SDPlugin\AntiDel.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\AVEngine.dll]  [360.cn, 1, 0, 0, 1020]
    [C:\Program Files\360\360sd\pluginmgr.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\immplugin\AntiInstall.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\immplugin\BrowserAdBlocker.dll]  [360.cn, 5, 0, 0, 5071]
    [C:\Program Files\360\360safe\deepscan\cloudcom2.dll]  [360.cn, 3, 3, 10, 1008]
    [C:\Program Files\360\360sd\SoftMgr\Module.dll]  [360.cn, 5, 0, 0, 5052]
    [C:\Program Files\360\360sd\SoftMgr\sqlite3.dll]  [360.cn, 1, 0, 0, 1003]
    [C:\Program Files\360\360safe\360base.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360sd\SoftMgr\BlackCache.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360safe\360NetBase.dll]  [360.cn, 7, 25, 0, 40]
    [C:\Program Files\360\360safe\deepscan\bapi.dll]  [360.cn, 2.0.0.1053]
    [C:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 9, 9]
    [C:\Program Files\360\360sd\immplugin\Dllhijack.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\immplugin\OfficeMacro.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\immplugin\ProcTip.dll]  [360.cn, 5, 0, 0, 5073]
    [C:\Program Files\360\360sd\SDPlugin\AdPopWnd.dll]  [360.cn, 5, 0, 0, 5075]
    [C:\Program Files\360\360sd\SDPlugin\BlackDns.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\SDPlugin\BundSoft.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\SDPlugin\DiskErr.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\SDPlugin\DisStartup.dll]  [360.cn, 5, 0, 0, 5062]
    [C:\Program Files\360\360sd\SDPlugin\QMachine.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\SDPlugin\SyncTime.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\SDPlugin\SysDump.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\SDPlugin\VolSpace.dll]  [360.cn, 5, 0, 0, 5061]
    [C:\Program Files\360\360sd\QEX.dll]  [360.cn, 4.1.2.3223]
    [C:\Program Files\360\360safe\deepscan\CQhCltHttpW.dll]  [360.cn, 1, 3, 0, 1040]
    [C:\Program Files\360\360safe\deepscan\cloudsec3.dll]  [360.cn, 3, 3, 0, 1150]
    [C:\Program Files\360\360sd\360qvm.dll]  [360.cn, 5.0.0.1001]
    [C:\Program Files\360\360safe\netmon\360netctrl.dll]  [360.cn, 5, 3, 15, 2138]
[PID: 636 / Administrator][C:\Program Files\360\360safe\LiveUpdate360.exe]  [360.cn, 1, 3, 0, 1234]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]
    [C:\Program Files\360\360safe\360Util.dll]  [360.cn, 1, 0, 0, 1207]
    [C:\Program Files\360\360safe\360base.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1016]
    [C:\Program Files\360\360safe\Utils\SiteUIProxy.dll]  [360.cn, 9, 0, 0, 2050]
    [C:\Program Files\360\360safe\LiveUpd360.dll]  [360.cn, 1, 3, 0, 1234]
    [C:\Program Files\360\360safe\360NetBase.dll]  [360.cn, 7, 25, 0, 40]
    [C:\Program Files\360\360safe\360net.dll]  [360.cn, 1, 2, 0, 1130]
    [C:\Program Files\360\360safe\360P2SP.dll]  [360.cn, 1, 3, 0, 1310]
    [C:\Program Files\360\360safe\MiniUI.dll]  [360.cn, 9, 0, 0, 3110]
    [C:\Program Files\360\360safe\sites.dll]  [360.cn, 9, 0, 0, 2551]
[PID: 3396 / Administrator][C:\Documents and Settings\Administrator\桌面\SREng老版本2.6.12.1018.EXE]  [1111, 2..6..12..1018]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 5, 0, 1175]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
进程特权扫描
N/A

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================
gototop
 
瑞星工程师20
头像
在线技术支持工程师
  • 帖子:9594
  • 注册: 2008-09-08
  • 来自:
发表于: 2014-11-26 13:20 | 短消息 资料
字号: 5楼

回复:麻烦处理下

样本已收集。
gototop
 
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 13:41 | 只看楼主 短消息 资料
字号: 6楼

回复: 麻烦处理下


 附件: 您所在的用户组无法下载或查看附件
gototop
 
瑞星工程师20
头像
在线技术支持工程师
  • 帖子:9594
  • 注册: 2008-09-08
  • 来自:
发表于: 2014-11-26 16:56 | 短消息 资料
字号: 7楼

回复:麻烦处理下

您好,经分析,HLCMD.exe文件不是病毒。
gototop
 
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 17:05 | 只看楼主 短消息 资料
字号: 8楼

回复:麻烦处理下

但是始终删除不了,请问能否QQ远程帮我处理,这个文件到底关联着其他什么文件?我这网络问题严重
gototop
 
瑞星工程师20
头像
在线技术支持工程师
  • 帖子:9594
  • 注册: 2008-09-08
  • 来自:
发表于: 2014-11-26 17:08 | 短消息 资料
字号: 9楼

回复 8F girl78979 的帖子

安全模式下删除试试。开机时按F8,选择安全模式。
gototop
 
girl78979
头像
拙长孩提狮
  • 帖子:115
  • 注册: 2005-02-20
  • 来自:
发表于: 2014-11-26 22:06 | 只看楼主 短消息 资料
字号: 10楼

回复:麻烦处理下

删除后,重新启动自动添加这个文件。而且关键是这个文件还打着HongZhi Security Technology旗号

说了很多次了,这个绝对是病毒,但是你们却说不是,删除文件后,重新启动又有了。
gototop
 
<<上一主题|下一主题>>
12   1  /  2  页   跳转
页面顶部
Powered by Discuz!NT