瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】 我的浏览器好像被劫持了,请大家帮我看看

12   2  /  2  页   跳转

【求助】 我的浏览器好像被劫持了,请大家帮我看看

收藏
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:39 | 显示全部 短消息 资料
字号: 11楼

[PID: 6012][C:\Program Files\Tencent\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [C:\Program Files\Tencent\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [C:\Program Files\Tencent\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQMainFrame.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\CQQApplication.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\GroupLive.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQPlugin.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QRingMng.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [C:\Program Files\Tencent\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [C:\Program Files\Tencent\QQ\QQAvatar.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [C:\Program Files\Tencent\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [C:\Program Files\Tencent\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\QQSettingCtrl.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\BQQApplication.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\OEMApplication.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQAllInOne.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQCustomFace.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\Program Files\Tencent\QQ\QQSceneMng.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\FOURIER_M1.IME]  [北京紫光华宇软件股份有限公司, 4.0.0.5001]
    [C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\Tencent\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [C:\Program Files\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [C:\Program Files\Tencent\QQ\QQPhoneHelper.dll]  [腾讯科技(深圳)有限公司, 2, 0, 6, 60]
    [C:\Program Files\Tencent\QQ\QQMagicFace.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [C:\Program Files\Tencent\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
[PID: 676][D:\tools\FlashFXP-v3.40\FlashFXP.exe]  [IniCom Networks, Inc., 3.4.0.1145]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [D:\tools\FlashFXP-v3.40\libeay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8a]
    [D:\tools\FlashFXP-v3.40\ssleay32.dll]  [The OpenSSL Project, http://www.openssl.org/, 0.9.8a]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
[PID: 4856][C:\Program Files\Maxthon\Maxthon.exe]  [Maxthon International Ltd., 1, 5, 8, 120]
    [C:\Program Files\Maxthon\maxzlib.dll]  [ , 1, 0, 0, 2]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
    [C:\Program Files\CyberArticle\CAExp.dll]  [Wizissoft, 1.0.0.1]
    [C:\Program Files\CyberArticle\CyberArticleAPI.DLL]  [Wizissoft, 4.3.2005.819]
    [C:\Program Files\CyberArticle\HTMLParser.DLL]  [N/A, N/A]
    [C:\Program Files\Maxthon\Services\RealTime\real_time.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\pr_remote.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prkernel.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\params.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\pxstub.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\tempfile.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\nfio.ppl]  [Kaspersky Lab, 6.0.0.299]
    [c:\program files\kaspersky lab\kaspersky anti-virus 6.0\fsdrvplgn.ppl]  [Kaspersky Lab, 6.0.0.299]
    [C:\Program Files\ThinkPad\Bluetooth Software\btkeyind.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\FOURIER_M1.IME]  [北京紫光华宇软件股份有限公司, 4.0.0.5001]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
    [C:\WINDOWS\system32\ffdshow.ax]  [N/A, 1.0.2.2028]
    [C:\Program Files\Ringz Studio\Storm Codec\Codecs\VSFilter.dll]  [Gabest, 1, 0, 1, 3]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\Program Files\Ringz Studio\Storm Codec\Codecs\PmpSplt.ax]  [cooleyes, 1, 0, 0, 8]
    [C:\Program Files\Ringz Studio\Storm Codec\Codecs\RMSplt.ax]  [Gabest, 1, 0, 1, 1]
[PID: 5132][C:\Documents and Settings\nichunhua\桌面\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 5400][D:\tools\Messenger_81beta_zh-cn.exe]  [Microsoft Corporation, 8.1.0106.00_ClientV8.1]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 4588][C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\IXP000.TMP\bootstrap.exe]  [Microsoft Corporation, 8.1.0106.00_ClientV8.1]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\IXP000.TMP\bootstrap.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\PROCHLP.DLL]  [Lenovo Group Limited, 1, 0, 0, 0]
    [C:\DOCUME~1\NICHUN~1\LOCALS~1\Temp\11.jpg]  [N/A, N/A]
[PID: 512][C:\WINDOWS\system32\msiexec.exe]  [Microsoft Corporation, 3.0.3790.2180]
[PID: 4364][C:\WINDOWS\system32\MsiExec.exe]  [Microsoft Corporation, 3.0.3790.2180]
gototop
 
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:39 | 显示全部 短消息 资料
字号: 12楼








==================================
文件关联
.TXT  Error. [emeditor.txt]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
61.141.31.11 www.kzdh.com
61.141.31.11 www.7255.com
61.141.31.11 www.7322.com
61.141.31.11 www.7939.com
61.141.31.11 www.piaoxue.com
61.141.31.11 www.feixu.net
61.141.31.11 www.6781.com
61.141.31.11 www.7b.com.cn
61.141.31.11 7b.com.cn
61.141.31.11 www.918188.com
61.141.31.11 hao.allxue.com
61.141.31.11 good.allxue.com
61.141.31.11 baby.allxue.com
61.141.31.11 www.allxue.com
61.141.31.11 about.lank.la
61.141.31.11 www.x114x.com
61.141.31.11 www.37ss.com
61.141.31.11 www.7k.cc
61.141.31.11 www.73ss.com
125.91.14.230 www.hao123.com
61.141.31.11 www.81915.com
61.141.31.11 222.88.90.22
61.141.31.11 www.9991.com
61.141.31.11 www.my123.com
61.141.31.11 www.haokan123.com
61.141.31.11 www.5566.net
61.141.31.11 www.gjj.cc
61.141.31.11 www.2345.com
61.141.31.11 dl.hao318.com
61.141.31.11 www.123wa.com
61.141.31.11 www.ku886.com
61.141.31.11 www.5icrack.com
61.141.31.11 www.jjol.cn

==================================
gototop
 
北京泥人
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2006-11-22
  • 来自:
发表于: 2006-11-22 18:40 | 显示全部 短消息 资料
字号: 13楼

上传完毕
gototop
 
<<上一主题|下一主题>>
12   2  /  2  页   跳转
页面顶部
Powered by Discuz!NT