版主，我扫描了，满烦你看看，^_^ - 瑞星卡卡安全论坛bbs.ikaka.com

瑞星卡卡安全论坛技术交流区 反病毒/反流氓软件论坛版主，我扫描了，满烦你看看，^_^

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

1

1 / 1 页

跳转页

版主，我扫描了，满烦你看看，^_^

HappyYear 初生襁褓狮帖子:3 注册: 2005-10-15 来自:	发表于： 2005-10-15 17:16 \| 只看楼主短消息资料字号：小中大 1楼版主，我扫描了，满烦你看看，^_^ Logfile of HijackThis v1.99.1 Scan saved at 17:27:03, on 2005-10-15 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINNT\System32\smss.exe C:\WINNT\system32\csrss.exe C:\WINNT\system32\winlogon.exe C:\WINNT\system32\services.exe C:\WINNT\system32\lsass.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\spoolsv.exe C:\WINNT\system32\msdtc.exe C:\Program Files\NavNT\defwatch.exe C:\WINNT\system32\svchost.exe C:\WINNT\System32\llssrv.exe C:\Program Files\NavNT\rtvscan.exe C:\oracle\ora81\bin\dbsnmp.exe C:\oracle\ora81\bin\vppdc.exe C:\oracle\ora81\Apache\Apache\Apache.exe C:\oracle\ora81\BIN\TNSLSNR.exe C:\WINNT\system32\MSTask.exe C:\oracle\ora81\Apache\jdk\bin\java.exe C:\oracle\ora81\Apache\Apache\Apache.exe C:\WINNT\System32\WBEM\WinMgmt.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\Dfssvc.exe C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\MsgSys.EXE C:\WINNT\Explorer.EXE C:\WINNT\system32\mdm.exe C:\WINNT\System32\svchost.exe C:\Program Files\EditPlus 2\editplus.exe C:\WINNT\system32\cmd.exe C:\WINNT\system32\conime.exe C:\bea\JDK142~1\bin\java.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Tencent\RTX\rtxc.exe C:\Program Files\Tencent\QQ\QQ.exe C:\Program Files\Tencent\QQ\TIMPlatform.exe C:\Program Files\Tsinghua InfoTech\XiDevSetup\XiDev.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Sandai Technologies Inc\Thunder\Thunder.exe C:\Program Files\Sandai Technologies Inc\Thunder\MediaIssue\Issue.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\software\WinRAR\WinRAR.exe E:\tools\setup\248783200522382732\HijackThis.exe F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file) O2 - BHO: IE - {D157330A-9EF3-49F8-9A67-4141AC41ADD4} - (no file) O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O14 - IERESET.INF: START_PAGE_URL=about:blank O14 - IERESET.INF: MS_START_PAGE_URL=about:blank O17 - HKLM\System\CCS\Services\Tcpip\..\{E3B73943-1C4B-4082-8DDD-DEA9E033A060}: NameServer = 166.111.8.28,166.111.8.29 O20 - Winlogon Notify: NavLogon - C:\WINNT\system32\NavLogon.dll O23 - Service: Background Service (Background Transfer Service) - Unknown owner - C:\WINNT\chtbrkr.exe O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe O23 - Service: OracleOraHome81Agent - Oracle Corporation - C:\oracle\ora81\bin\dbsnmp.exe O23 - Service: OracleOraHome81ClientCache - Unknown owner - C:\oracle\ora81\BIN\ONRSD.EXE O23 - Service: OracleOraHome81DataGatherer - Oracle Corporation - C:\oracle\ora81\bin\vppdc.exe O23 - Service: OracleOraHome81HTTPServer - Unknown owner - C:\oracle\ora81\Apache\Apache\Apache.exe O23 - Service: OracleOraHome81PagingServer - Unknown owner - C:\oracle\ora81/bin/pagntsrv.exe O23 - Service: OracleOraHome81TNSListener - Unknown owner - C:\oracle\ora81\BIN\TNSLSNR.exe O23 - Service: OracleServiceORACLE - Oracle Corporation - c:\oracle\ora81\bin\ORACLE.EXE O23 - Service: Smart Card Helper (SCardDrv) - Unknown owner - C:\WINNT\system32\scardsvr32.exe (file missing) O23 - Service: Apache Tomcat (Tomcat5) - Unknown owner - C:\software\Tomcat 5.0\bin\tomcat5.exe" //RS//Tomcat5 (file missing) O23 - Service: Windows Audio Services (winAudSer) - Unknown owner - C:\WINNT\system32\Winms.exe 2005-10-15 18:33:55
HappyYear 初生襁褓狮帖子:3 注册: 2005-10-15 来自:	分享到：

花落花又开社区嘉宾帖子:6782 注册: 2005-04-16 来自:	发表于： 2005-10-15 17:35 \| 短消息资料字号：小中大 2楼【回复“HappyYear”的帖子】用hijackthis修复: O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O14 - IERESET.INF: START_PAGE_URL=about:blank O14 - IERESET.INF: MS_START_PAGE_URL=about:blank O23 - Service: Background Service (Background Transfer Service) - Unknown owner - C:\WINNT\chtbrkr.exe 停止Background Service服务:开始--控制面版--管理工具--服务--找到Background Service属性--改成已禁用显示所有文件,找到以下删除: C:\WINNT\chtbrkr.exe ---------------- 关于O23 - Service: Windows Audio Services (winAudSer) - Unknown owner - C:\WINNT\system32\Winms.exe请参考: http://forum.ikaka.com/topic.asp?board=67&artid=7300311
花落花又开社区嘉宾帖子:6782 注册: 2005-04-16 来自:

HappyYear 初生襁褓狮帖子:3 注册: 2005-10-15 来自:	发表于： 2005-10-15 18:33 \| 只看楼主短消息资料字号：小中大 3楼谢谢版主，搞定了～～～你太可爱了，^_^
HappyYear 初生襁褓狮帖子:3 注册: 2005-10-15 来自:

<<上一主题|下一主题>>

1

1 / 1 页

跳转页

页面顶部

Powered by Discuz!NT