瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 [求助] 有那位高手可以帮帮我?给「踫踫追星」劫持了…

1   1  /  1  页   跳转

[求助] 有那位高手可以帮帮我?给「踫踫追星」劫持了…

收藏
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:16 | 显示全部 短消息 资料
字号: 1楼

[求助] 有那位高手可以帮帮我?给「踫踫追星」劫持了…

情况︰
1.一个"碰碰追星"网,自动加载到收藏那里,删掉一会又有
2.开机并连接到网络后,IE每隔一段时间会自动开启一个网页[http://61.145.116.78/index1.jsp],关闭网页后在工作管理员里会多了一个iexplore.exe,所以隔了一段时间,工作管理员便有很多个iexplore.exe
3.工作管理员中多了sthu1.exe及alexa.exe的程序令到计算机无法正常关机

用norton antivirus 2005找不到病毒,超级兔子也无办法解决……有那位高手可以帮帮我?hijackthis LOG及SREngLOG如下。THANKS!!!

P.S. 计算机是繁体中文版,所以用不到金山及瑞星等软件
最后编辑2006-10-27 21:58:50
分享到:
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:16 | 显示全部 短消息 资料
字号: 2楼

Logfile of HijackThis v1.99.1
Scan saved at 20:32:39, on 27/10/2006
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\PCI Audio Applications\Mixer.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Super Rabbit\magicset\srshut.EXE
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Super Rabbit\magicset\memdef.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Messenger\msmsgs.exe
C:\program files\advanced system optimizer\memtuneup.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Serv-U\ServUTray.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\System32\sthu1.exe
C:\Program Files\Winamp\winamp.exe
C:\WINDOWS\System32\alexa.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Cecilia S.T. Lo\桌面\hijackthis\HijackThis.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: 超级兔子上网精灵 - {FEDF637B-F631-4583-A210-33CC828D42DB} - C:\PROGRA~1\SUPERR~1\magicset\HAOKAN~2.DLL
O3 - Toolbar: Dr.eye WebPage Translation - {92B255FE-94E2-4BCA-958D-3926CE38913F} - C:\Program Files\Inventec\Dreye\DreyeMT\DreyeIEBar.dll
O3 - Toolbar: 收音机(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: UltraEdit Toolbar - {4E7BD74F-2B8D-469E-85AA-FD60BB9AAE22} - C:\PROGRA~1\UE_TOO~1\UE_TOO~1.DLL
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll (file missing)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (file missing)
O3 - Toolbar: 超级兔子上网精灵 - {FEDF637B-F631-4583-A210-33CC828D42DB} - C:\PROGRA~1\SUPERR~1\magicset\HAOKAN~2.DLL
O4 - HKLM\..\Run: [IMJPMIG8.1] ; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [CJIMETIPSYNC] C:\Program Files\Common Files\Microsoft Shared\IME\IMTC65\CHANGJIE\CINTLCFG.EXE /CJIMETIPSync
O4 - HKLM\..\Run: [PHIMETIPSYNC] ; C:\Program Files\Common Files\Microsoft Shared\IME\IMTC65\PHONETIC\TINTLCFG.EXE /PHIMETIPSync
O4 - HKLM\..\Run: [C-Media Mixer] C:\Program Files\PCI Audio Applications\Mixer.exe /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] ; C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [Super Rabbit Shutdown] C:\Program Files\Super Rabbit\magicset\srshut.EXE /LOAD
O4 - HKLM\..\Run: [QuickTime Task] ; "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [Super Rabbit Memory] C:\Program Files\Super Rabbit\magicset\memdef.EXE /LOAD
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Systweak Memory Optimizer] c:\program files\advanced system optimizer\memtuneup.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ServUTrayIcon] C:\Program Files\Serv-U\ServUTray.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: 使用 FlashGet 下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: 全部使用 FlashGet 下载 - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: 汇出至 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O17 - HKLM\System\CCS\Services\Tcpip\..\{9FC05E70-557D-4DB9-B717-02C80BA9CE5D}: NameServer = 203.198.23.208 205.252.144.126
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:21 | 显示全部 短消息 资料
字号: 3楼

2006-10-27,20:35:26

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition  (Build 2600)
- Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Runing Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background>  [(Verified)Microsoft Corporation]
    <Systweak Memory Optimizer><c:\program files\advanced system optimizer\memtuneup.exe>  [Systweak Inc]
    <swg><C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe>  [(Verified)Google Inc.]
    <ServUTrayIcon><C:\Program Files\Serv-U\ServUTray.exe>  [Cat Soft]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
    <CJIMETIPSYNC><C:\Program Files\Common Files\Microsoft Shared\IME\IMTC65\CHANGJIE\CINTLCFG.EXE /CJIMETIPSync>  [(Verified)Microsoft Corp.]
    <PHIMETIPSYNC><; C:\Program Files\Common Files\Microsoft Shared\IME\IMTC65\PHONETIC\TINTLCFG.EXE /PHIMETIPSync>  [(Verified)Microsoft Corp.]
    <C-Media Mixer><C:\Program Files\PCI Audio Applications\Mixer.exe /startup>  [C-Media Electronic Inc.]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [RealNetworks, Inc.]
    <SunJavaUpdateSched><C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe>  [Sun Microsystems, Inc.]
    <NeroFilterCheck><; C:\WINDOWS\system32\NeroCheck.exe>  [Ahead Software Gmbh]
    <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe">  [(Verified)Symantec Corporation]
    <SSC_UserPrompt><C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe>  [(Verified)Symantec Corporation]
    <Symantec NetDriver Monitor><C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer>  [(Verified)Symantec Corporation]
    <NWEReboot><>  [N/A]
    <Super Rabbit Shutdown><C:\Program Files\Super Rabbit\magicset\srshut.EXE /LOAD>  [Super Rabbit Soft]
    <QuickTime Task><; "C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Computer, Inc.]
    <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  [N/A]
    <Acrobat Assistant 7.0><"C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe">  [Adobe Systems Inc.]
    <Super Rabbit Memory><C:\Program Files\Super Rabbit\magicset\memdef.EXE /LOAD>  [Super Rabbit Software]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <Ver><2006.10.13>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\System32\WINTER~1.SCR>  [N/A]

==================================
Startup Folders
[Adobe Acrobat Speed Launcher]
  <C:\Documents and Settings\All Users\「开始」菜单\程序集\启动\Adobe Acrobat Speed Launcher.lnk --> C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000002}\SC_Acrobat.exe [N/A]><N>
[Adobe Reader Speed Launch]
  <C:\Documents and Settings\All Users\「开始」菜单\程序集\启动\Adobe Reader Speed Launch.lnk --> C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [Adobe Systems Incorporated]><N>

==================================
Services
[5F3ED548 / 5F3ED548]
  <C:\WINDOWS\System32\5F3ED548.EXE -service><Microsoft Corporation>
[Adobe LM Service / Adobe LM Service]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[Application Management / AppMgmt]
  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[Automatic LiveUpdate Scheduler / Automatic LiveUpdate Scheduler]
  <"C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe"><Symantec Corporation>
[Symantec Event Manager / ccEvtMgr]
  <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Network Proxy / ccProxy]
  <"C:\Program Files\Common Files\Symantec Shared\ccProxy.exe"><Symantec Corporation>
[Symantec Password Validation / ccPwdSvc]
  <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr]
  <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT]
  <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[ISSVC / ISSVC]
  <"C:\Program Files\Norton Internet Security\ISSVC.exe"><Symantec Corporation>
[LiveUpdate / LiveUpdate]
  <"C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE"><Symantec Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service]
  <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[Norton AntiVirus Auto-Protect Service / navapsvc]
  <"C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe"><Symantec Corporation>
[rdrmkaud / rdrmkaud]
  <><N/A>
[SAVScan / SAVScan]
  <"C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe"><Symantec Corporation>
[ScriptBlocking Service / SBService]
  <C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe><Symantec Corporation>
[Symantec Network Drivers Service / SNDSrvc]
  <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[StarWind iSCSI Service / StarWindService]
  <C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe><Rocket Division Software>
[Symantec Core LC / Symantec Core LC]
  <C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe><Symantec Corporation>

==================================
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:22 | 显示全部 短消息 资料
字号: 4楼

Drivers
[C-Media PCI Audio Driver (WDM) / cmpci]
  <system32\drivers\cmpci.sys><C-Media Inc>
[3Com EtherLink XL 90XB/C Adapter Driver / EL90XBC]
  <System32\DRIVERS\el90xbc5.sys><3Com Corporation>
[Edisonsoft ES-620 USB Infrared Adapter / ES-620]
  <System32\DRIVERS\ES-620.sys><Mobile Action Tech. Inc.>
[NAVENG / NAVENG]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061025.039\NAVENG.Sys><Symantec Corporation>
[NAVEX15 / NAVEX15]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061025.039\NavEx15.Sys><Symantec Corporation>
[nv4 / nv4]
  <System32\DRIVERS\nv4.sys><NVIDIA Corporation>
[Padus ASPI Shell / pfc]
  <system32\drivers\pfc.sys><Padus, Inc.>
[直接平行连接埠连结驱动程序 / Ptilink]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
  <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[SAVRT / SAVRT]
  <\??\C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS><Symantec Corporation>
[SAVRTPEL / SAVRTPEL]
  <\??\C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS><Symantec Corporation>
[Secdrv / Secdrv]
  <System32\DRIVERS\secdrv.sys><N/A>
[SYMDNS / SYMDNS]
  <\SystemRoot\System32\Drivers\SYMDNS.SYS><Symantec Corporation>
[SymEvent / SymEvent]
  <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
[SYMFW / SYMFW]
  <\SystemRoot\System32\Drivers\SYMFW.SYS><Symantec Corporation>
[SYMIDS / SYMIDS]
  <\SystemRoot\System32\Drivers\SYMIDS.SYS><Symantec Corporation>
[SYMIDSCO / SYMIDSCO]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20061025.029\symidsco.sys><Symantec Corporation>
[symlcbrd / symlcbrd]
  <\??\C:\WINDOWS\System32\drivers\symlcbrd.sys><Symantec Corporation>
[SYMNDIS / SYMNDIS]
  <\SystemRoot\System32\Drivers\SYMNDIS.SYS><Symantec Corporation>
[SYMREDRV / SYMREDRV]
  <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
[SYMTDI / SYMTDI]
  <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>
[Vax347b / Vax347b]
  <\SystemRoot\System32\DRIVERS\Vax347b.sys><>
[Vax347s / Vax347s]
  <\SystemRoot\System32\Drivers\Vax347s.sys><>

==================================
Browser Add-ons
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Adobe PDF Conversion Toolbar Helper]
  {AE7CD045-E861-484f-8273-0445EE161910} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
[超级兔子上网精灵]
  {FEDF637B-F631-4583-A210-33CC828D42DB} <C:\PROGRA~1\SUPERR~1\magicset\HAOKAN~2.DLL, 超?兔子>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[Dr.eye WebPage Translation]
  {92B255FE-94E2-4BCA-958D-3926CE38913F} <C:\Program Files\Inventec\Dreye\DreyeMT\DreyeIEBar.dll, >
[收音机(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[UltraEdit Toolbar]
  {4E7BD74F-2B8D-469E-85AA-FD60BB9AAE22} <C:\PROGRA~1\UE_TOO~1\UE_TOO~1.DLL, IDM Computer Solutions>
[Norton Internet Security]
  {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} <C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll, N/A>
[Norton AntiVirus]
  {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} <C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll, Symantec Corporation>
[Windows Live Toolbar]
  {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <C:\Program Files\Windows Live Toolbar\msntb.dll, N/A>
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
  {FEDF637B-F631-4583-A210-33CC828D42DB} <C:\PROGRA~1\SUPERR~1\magicset\HAOKAN~2.DLL, 超?兔子>
[Java Plug-in]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, N/A>
[Java Plug-in]
  {CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, N/A>
[Java Plug-in]
  {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[Convert link target to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[Convert link target to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[Convert selected links to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A>
[Convert selected links to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A>
[Convert selection to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[Convert selection to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[Convert to Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[Convert to existing PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[使用 FlashGet 下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[全部使用 FlashGet 下载]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[汇出至 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>

==================================
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:28 | 显示全部 短消息 资料
字号: 5楼

Running Processes
[PID: 496][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 552][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 580][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 624][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 636][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 800][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 864][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 940][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 952][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1124][C:\Program Files\Common Files\Symantec Shared\ccProxy.exe]  [Symantec Corporation, 103.0.8.2]
    [C:\WINDOWS\system32\SYMREDIR.dll]  [Symantec Corporation, 5.5.1.6]
    [C:\WINDOWS\system32\SymNeti.DLL]  [Symantec Corporation, 5.5.1.6]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccSet.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\DPHTML.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Common Files\Symantec Shared\DPJS.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Common Files\Symantec Shared\DPVBS.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Common Files\Symantec Shared\PFPriv.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Common Files\Symantec Shared\PFRes.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Norton Internet Security\SYMURL.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Norton Internet Security\NISRES.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Common Files\Symantec Shared\ccProSub.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\PFSec.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Common Files\Symantec Shared\PFAdBlk.dll]  [Symantec Corporation, 103.0.1.26]
    [C:\Program Files\Common Files\Symantec Shared\PFMisc.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Common Files\Symantec Shared\PxyHTTP.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Common Files\Symantec Shared\DPHTTP.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Common Files\Symantec Shared\PxyIM.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Common Files\Symantec Shared\PxyNNTP.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Common Files\Symantec Shared\ccPxyEvt.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Common Files\Symantec Shared\ccLogin.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccCharCv.dll]  [Symantec Corporation, 103.0.8.2]
[PID: 1184][C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 103.0.7.2]
[PID: 1196][C:\Program Files\Norton Internet Security\ISSVC.exe]  [Symantec Corporation, 8.0.5.14]
    [C:\WINDOWS\system32\SymNeti.DLL]  [Symantec Corporation, 5.5.1.6]
    [C:\Program Files\Norton Internet Security\NISRES.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Norton Internet Security\ObrkData.dll]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Common Files\Symantec Shared\ccSet.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccProSub.dll]  [Symantec Corporation, 103.0.7.2]
[PID: 1208][C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe]  [Symantec Corporation, 5.5.1.6]
    [C:\WINDOWS\system32\SymNeti.DLL]  [Symantec Corporation, 5.5.1.6]
[PID: 1416][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\scrauth.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\ScrBlock.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\Illustrate\dBpowerAMP\dBShell.dll]  [, 6, 4, 0, 1]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.7.2006011200]
    [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll]  [Adobe Systems Inc., 7.0.7.2006011200\0]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\ADIST32.dll]  [Adobe Systems Incorporated., 7.0.7.0]
[PID: 1412][C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\ASSPMEVT.DLL]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCLOGIN.DLL]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCPXYEVT.DLL]  [Symantec Corporation, 103.0.8.2]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETEVT.DLL]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\NAVEVENT.DLL]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\ccSet.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\WINDOWS\SYSTEM32\SYMNETI.DLL]  [Symantec Corporation, 5.5.1.6]
[PID: 1744][C:\Program Files\PCI Audio Applications\Mixer.exe]  [C-Media Electronic Inc., 1.26g]
[PID: 1756][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.0.3427]
[PID: 1764][C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe]  [Sun Microsystems, Inc., 5.0.60.5]
[PID: 1776][C:\Program Files\Common Files\Symantec Shared\ccApp.exe]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\ASADIPLG.DLL]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\ASAEMSCN.DLL]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\ASLOADER.DLL]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\Common Files\Symantec Shared\AntiSpam\asSetHlp.dll]  [Symantec Corporation, 2005.1.02.12]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\NORTON~1\ISLALERT.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\PROGRA~1\NORTON~1\NISRES.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Common Files\Symantec Shared\AntiSpam\asAuAdIm.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\NORTON~1\NISPROD.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Common Files\Symantec Shared\ccSet.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\NORTON~1\NISTRAY.DLL]  [Symantec Corporation, 8.0.0.64]
    [C:\PROGRA~1\NORTON~1\NISALERT.DLL]  [Symantec Corporation, 8.0.7.1]
    [C:\WINDOWS\System32\SymNeti.DLL]  [Symantec Corporation, 5.5.1.6]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\WINDOWS\System32\SYMREDIR.DLL]  [Symantec Corporation, 5.5.1.6]
    [C:\PROGRA~1\NORTON~1\NORTON~1\CCIMSCAN.DLL]  [Symantec Corporation, 103.0.3.8]
    [C:\PROGRA~1\NORTON~1\NORTON~1\DEFALERT.DLL]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\ccProSub.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\NAVAPW32.DLL]  [Symantec Corporation, 11.0.16.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\apwutil.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\SAVRT32.DLL]  [Symantec Corporation, 9.4.2.1]
    [C:\PROGRA~1\NORTON~1\NORTON~1\NAVOPTRF.DLL]  [Symantec Corporation, 11.0.2.4]
    [C:\Program Files\Common Files\Symantec Shared\ccLogin.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\STATUSHP.DLL]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Symantec\LiveUpdate\NetDetectController_3_0.DLL]  [Symantec Corporation, 3.0.0.171]
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:29 | 显示全部 短消息 资料
字号: 6楼

[C:\Program Files\Norton Internet Security\NISLCOM.dll]  [Symantec Corporation, 8.0.0.64]
    [C:\PROGRA~1\NORTON~1\NORTON~1\NAVTasks.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVError.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\AntiSpam\asFilter.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\apwcmdnt.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\AntiSpam\asUniPlg.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\Common Files\Symantec Shared\AntiSpam\asRes.dll]  [Symantec Corporation, 2005.1.00.163]
    [C:\Program Files\Common Files\Symantec Shared\AntiSpam\asSpmEvt.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\Norton Internet Security\ObrkData.dll]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Norton Internet Security\ObrkAV.dll]  [Symantec Corporation, 8.0.0.64]
    [C:\PROGRA~1\NORTON~1\NORTON~1\NAVSTATS.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\ccAVMail.dll]  [Symantec Corporation, 103.0.3.8]
    [C:\Program Files\Norton Internet Security\ccEmlflt.dll]  [Symantec Corporation, 103.0.2.10]
    [C:\Program Files\Common Files\Symantec Shared\ccPxyEvt.dll]  [Symantec Corporation, 103.0.8.2]
    [C:\Program Files\Norton Internet Security\ObrkIDS.dll]  [Symantec Corporation, 8.0.0.64]
    [C:\Program Files\Norton Internet Security\SymFWAgt.dll]  [Symantec Corporation, 103.0.6.5]
    [C:\Program Files\Norton Internet Security\SFWAlert.dll]  [Symantec Corporation, 8.0.7.1]
    [C:\Program Files\Norton Internet Security\ccFWSetg.dll]  [Symantec Corporation, 103.0.6.5]
    [C:\Program Files\Norton Internet Security\TLevel.dll]  [Symantec Corporation, 103.0.6.5]
    [C:\PROGRA~1\NORTON~1\NORTON~1\NAVOpts.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\N32Exclu.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\PROGRA~1\NORTON~1\NORTON~1\S32NAVO.DLL]  [Symantec Corporation, 5.3.0.182]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\NAVAPSCR.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Symantec\LiveUpdate\ProductRegCom_3_0.DLL]  [Symantec Corporation, 3.0.0.171]
    [C:\Program Files\Symantec\LiveUpdate\LuComServerPS_3_0.DLL]  [Symantec Corporation, 3.0.0.171]
[PID: 1820][C:\Program Files\Super Rabbit\magicset\srshut.EXE]  [Super Rabbit Soft, 3.80]
[PID: 1836][C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe]  [Adobe Systems Inc., 7.0.7.2006011200]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\AcroTray.DEU]  [N/A, N/A]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\AcroTray.FRA]  [N/A, N/A]
[PID: 1860][C:\Program Files\Super Rabbit\magicset\memdef.EXE]  [Super Rabbit Software, 3.00]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
[PID: 1912][C:\WINDOWS\System32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1924][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\System32\AdobePDF.dll]  [Adobe Systems Incorporated., 7.0.0.00]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\adistres.dll]  [Adobe Systems Incorporated., 7.0.7.2006011200]
[PID: 1976][C:\Program Files\Messenger\msmsgs.exe]  [Microsoft Corporation, 5.1.0701]
    [C:\WINDOWS\System32\msdmo.dll]  [N/A, N/A]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
[PID: 2004][C:\program files\advanced system optimizer\memtuneup.exe]  [Systweak Inc, 1, 0, 1, 2]
    [C:\program files\advanced system optimizer\codedll.dll]  [Systweak Inc, 1, 0, 1, 2]
    [C:\program files\advanced system optimizer\XTP9100Lib.dll]  [Codejock Software, 9, 1, 0, 0]
    [C:\program files\advanced system optimizer\resdll.dll]  [Systweak Inc, 1, 0, 1, 2]
    [C:\program files\advanced system optimizer\resNewSkin.dll]  [Systweak Inc, 1, 0, 1, 2]
    [C:\program files\advanced system optimizer\QHTM.dll]  [Systweak Inc., N/A]
    [C:\program files\advanced system optimizer\systweak.dll]  [Systweak Inc, 1, 0, 1, 1]
[PID: 2016][C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe]  [Google Inc., 1, 2, 908, 5008]
    [C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\res_en.dll]  [Google Inc., 1, 2, 908, 5008]
    [C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\swg.dll]  [Google Inc., 1, 2, 908, 5008]
[PID: 2024][C:\Program Files\Serv-U\ServUTray.exe]  [Cat Soft, 6.1.0.1]
[PID: 1036][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1736][C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe]  [Symantec Corporation, 3.0.0.171]
[PID: 204][C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT32.DLL]  [Symantec Corporation, 9.4.2.1]
[PID: 384][C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe]  [Rocket Division Software, 2.6.1 Build 0x20050401]
[PID: 520][C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe]  [Symantec Corporation, 1, 8, 54, 478]
    [C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcnet.dll]  [Symantec Corporation, 1, 8, 54, 478]
[PID: 276][C:\WINDOWS\System32\wdfmgr.exe]  [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)]
[PID: 2288][C:\WINDOWS\System32\sthu1.exe]  [N/A, N/A]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\DOCUME~1\CECILI~1.LO\LOCALS~1\Temp\nsgC.tmp\InstallOptions.dll]  [N/A, N/A]
[PID: 1456][C:\Program Files\Winamp\winamp.exe]  [Nullsoft, 5,2,1,497]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\Winamp\System\aacPlusDecoder.w5s]  [N/A, N/A]
    [C:\Program Files\Winamp\System\jnetlib.w5s]  [N/A, N/A]
    [C:\Program Files\Winamp\System\png.w5s]  [N/A, N/A]
    [C:\Program Files\Winamp\System\tagz.w5s]  [N/A, N/A]
    [C:\Program Files\Winamp\System\xml.w5s]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_cdda.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_dshow.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_linein.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_midi.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\read_file.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_mod.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_mp3.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_mp4.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\libmp4v2.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_nsv.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_vorbis.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_wave.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\libsndfile.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\in_wm.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\out_disk.dll]  [Nullsoft, 5,2,1,497]
    [C:\Program Files\Winamp\Plugins\out_ds.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\out_wave.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\gen_ff.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\freeform\wacs\jpgload\jpgload.wac]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\gen_hotkeys.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\gen_jumpex.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\gen_ml.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\icm32.dll]  [Microsoft Corporation, 5.00]
    [C:\Program Files\Winamp\pxsdkpls.dll]  [Sonic Solutions, 2.2.50.500]
    [C:\WINDOWS\System32\PX.dll]  [Sonic Solutions, 2.2.50.500]
    [C:\WINDOWS\System32\PXDRV.DLL]  [Sonic Solutions, 1.01.42a]
    [C:\WINDOWS\System32\PXMAS.DLL]  [Sonic Solutions, 2.2.50.500]
    [C:\WINDOWS\System32\PXWAVE.DLL]  [Sonic Solutions, 2.2.50.500]
    [C:\Program Files\Winamp\Plugins\ml_online.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\ml_pmp.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\pmp_ipod.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\pmp_njb.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\pmp_p4s.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\ml_wire.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\ml_xpdxs.dll]  [N/A, N/A]
    [C:\Program Files\Winamp\Plugins\gen_tray.dll]  [N/A, N/A]
[PID: 1608][C:\WINDOWS\System32\alexa.exe]  [N/A, N/A]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\DOCUME~1\CECILI~1.LO\LOCALS~1\Temp\nsz691.tmp\InstallOptions.dll]  [N/A, N/A]
[PID: 1616][C:\PROGRA~1\MOZILL~1\FIREFOX.EXE]  [Mozilla Corporation, 1.8.1: 2006101023]
    [C:\PROGRA~1\MOZILL~1\js3250.dll]  [Netscape Communications Corporation, 4.0]
    [C:\PROGRA~1\MOZILL~1\nspr4.dll]  [Netscape Communications Corporation, 4.6.3]
    [C:\PROGRA~1\MOZILL~1\xpcom_core.dll]  [Mozilla Foundation, 1.8.1: 2006101023]
    [C:\PROGRA~1\MOZILL~1\plc4.dll]  [Netscape Communications Corporation, 4.6.3]
    [C:\PROGRA~1\MOZILL~1\plds4.dll]  [Netscape Communications Corporation, 4.6.3]
    [C:\PROGRA~1\MOZILL~1\smime3.dll]  [Mozilla Foundation, 3.11.3 Basic ECC]
    [C:\PROGRA~1\MOZILL~1\nss3.dll]  [Mozilla Foundation, 3.11.3 Basic ECC]
    [C:\PROGRA~1\MOZILL~1\softokn3.dll]  [Mozilla Foundation, 3.11.3 Basic ECC]
    [C:\PROGRA~1\MOZILL~1\ssl3.dll]  [Mozilla Foundation, 3.11.3 Basic ECC]
    [C:\PROGRA~1\MOZILL~1\xpcom_compat.dll]  [Mozilla Foundation, 1.8.1: 2006101023]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\MOZILL~1\components\myspell.dll]  [Mozilla Foundation, 1.8.1: 2006101023]
    [C:\PROGRA~1\MOZILL~1\components\jar50.dll]  [Mozilla Foundation, 1.8.1: 2006101023]
    [C:\PROGRA~1\MOZILL~1\freebl3.dll]  [Mozilla Foundation, 3.11.3 Basic ECC]
    [C:\Program Files\Mozilla Firefox\nssckbi.dll]  [Mozilla Foundation, 1.62]
    [C:\PROGRA~1\MOZILL~1\components\spellchk.dll]  [Mozilla Foundation, 1.8.1: 2006101023]
[PID: 3844][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\PROGRA~1\FlashGet\fgiebar.dll]  [Amaze Soft, 1, 2, 0, 0]
    [C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll]  [Adobe Systems Incorporated, 7.0.5.2005092300]
    [C:\PROGRA~1\SUPERR~1\magicset\HAOKAN~2.DLL]  [超?兔子, 1.0.7.7]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.7.2006011200]
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\scrauth.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\ScrBlock.dll]  [Symantec Corporation, 11.0.16.2]
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 21:29 | 显示全部 短消息 资料
字号: 7楼

[C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.0.7.2]
[PID: 1452][C:\Documents and Settings\Cecilia S.T. Lo\桌面\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
[PID: 3916][C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE]  [Microsoft Corporation, 11.0.6568]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\ANTISPAM\asOEHook.dll]  [Symantec Corporation, 2005.1.02.6]
    [C:\Program Files\Norton Internet Security\Norton AntiVirus\OfficeAV.dll]  [Symantec Corporation, 103.0.3.8]
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  [Symantec Corporation, 103.0.7.2]
    [C:\Program Files\Inventec\Dreye\DreyeMT\DreyeWdAddin.dll]  [, 1, 0, 0, 2]
    [C:\Program Files\Inventec\Dreye\DreyeMT\DreyeMT.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\DrEyeAPI.dll]  [INVENTEC, 1, 0, 3, 0]
    [C:\Program Files\Inventec\Dreye\DreyeMT\DrMTCP.dll]  [N/A, N/A]
    [C:\Program Files\Inventec\Dreye\DreyeMT\DrMTPC.dll]  [N/A, N/A]
    [C:\Program Files\Inventec\Dreye\DreyeMT\DrHJMT.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\DictInfo.dll]  [N/A, N/A]
    [C:\Program Files\Adobe\Acrobat 7.0\PDFMaker\Office\PDFMOfficeAddin.dll]  [Adobe Systems Incorporated, 7.0.8.0]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\adist32.dll]  [Adobe Systems Incorporated., 7.0.7.0]
    [C:\Program Files\Adobe\Acrobat 7.0\PDFMaker\Common\AdobePDFMakerX.dll]  [N/A, N/A]
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\ScrBlock.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\scrauth.dll]  [Symantec Corporation, 11.0.16.2]
    [C:\PROGRA~1\MICROS~2\OFFICE11\BLNMGRPS.DLL]  [N/A, N/A]
    [C:\Program Files\Common Files\Microsoft Shared\PROOF\TCSMRLEX.DLL]  [MSTC, 4, 0, 0, 1908]
    [C:\Program Files\Common Files\Microsoft Shared\PROOF\TCNAME.DLL]  [MSTC, 4, 0, 0, 2925]
    [C:\Program Files\Common Files\Microsoft Shared\PROOF\TCPARSER.DLL]  [MSTC, 4, 0, 0, 2925]
    [C:\Program Files\Common Files\Microsoft Shared\PROOF\TCWBCore.DLL]  [MSTC, 4, 0, 0, 2925]
[PID: 1640][C:\WINDOWS\System32\msiexec.exe]  [Microsoft Corporation, 3.1.4000.1823]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1      localhost

==================================
gototop
 
lstcecilia
头像
初生襁褓狮
  • 帖子:50
  • 注册: 2006-10-27
  • 来自:
发表于: 2006-10-27 22:07 | 显示全部 短消息 资料
字号: 8楼

哗!看似再没有广告网页弹出了!
神奇哦!感谢秋日里的蓝天~~~

p.s. 在windows\system32的目录下我还找到5F3ED548.DLL及5F3ED548T.EXE,这两个要删除吗?
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT