收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 站务管理专区 会员服务 木马超多,无法杀除,亟盼赐教(2)!
返回列表 发新帖
查看: 1734|回复: 1
收起左侧

木马超多,无法杀除,亟盼赐教(2)!

[复制链接]
carolgy
发表于 2007-4-3 11:20:36 | 显示全部楼层 |阅读模式
[金山毒霸在线杀毒]

{577A1997-6FD0-4972-B234-885DA583F9CE} <C:\PROGRA~1\KOS\KOSClean.OCX, 金山软件股份有限公司>
[DragSearch BHO]

{62EED7C6-9F02-42F9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~2.DLL, yahoo! china>
[Windows Media Player]

{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Microsoft Web 浏览器]

{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Google Toolbar Helper]

{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, Google Inc.>
[Microsoft Scriptlet Component]

{AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]

{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]

{BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[AUDIO__MID Moniker Class]

{CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__MP3 Moniker Class]

{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class]

{CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]

{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]

{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[UpdateC2 Control]

{DC7094C6-8F61-42ED-AECE-63F5EEF647C5} <C:\PROGRA~1\UUSee\updateC2.ocx, uusee.com>
[金山毒霸在线产品升级]

{E847C78C-C210-4195-8799-FBF3BF89797D} <C:\PROGRA~1\KOS\KOSInit.OCX, 金山软件股份有限公司>
[BoBoControl Class]

{EC0978ED-24E3-403C-AB7A-060E388553E6} <C:\WINDOWS\system32\BoBo_ActiveX_V3.ocx, 广州易播信息科技有限公司>
[FlashGet GetFlash Class]

{F156768E-81EF-470C-9057-481BA8380DBA} <C:\Program Files\FlashGet\getflash.dll, www.flashget.com>
[FGCatchUrl]

{FB5DA724-162B-11D3-8B9B-AA70B4B0B524} <C:\Program Files\FlashGet\jccatch.dll, www.flashget.com>
[assist]

{FE3ECAE7-0A37-4506-8A7D-3CC9A04D2CA8} <C:\PROGRA~1\Yahoo!\ASSIST~1\assist\yassist.dll, Yahoo! China>
[pCastPanel Class]

{FEE1002D-90A5-4A5D-AABE-01803FFBCF7A} <C:\Program Files\mop\p2p\pcastctl.dll, >
[&使用快车(FlashGet)下载]

<C:\Program Files\FlashGet\jc_link.htm, N/A>
[&使用快车(FlashGet)下载全部链接]

<C:\Program Files\FlashGet\jc_all.htm, N/A>
[上传到QQ网络硬盘]

<C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[导出到 Microsoft Excel(&X)]

<res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]

<C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]

<C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[添加到雅虎订阅(&Y)]

<res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT, N/A>
[QQ彩信发送该图片]

<C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[雅虎搜索]

<res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar0.dll/203, N/A>

==================================
正在运行的进程
[PID: 628][\SystemRoot\System32\smss.exe]
[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 700][\??\C:\WINDOWS\system32\csrss.exe]
[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1696][C:\WINDOWS\Explorer.EXE]
[Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]

[c:\progra~1\yahoo!\assist~1\jeurtntz.dll]
[N/A, ]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\upxdnd.dll]
[N/A, ]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\WINDOWS\system32\cmdbcs.dll]
[N/A, ]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\Qqzo0.dll]
[N/A, ]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\Rav20.dll]
[N/A, ]

[C:\WINDOWS\system32\windhcp.ocx]
[N/A, ]

[C:\PROGRA~1\Yahoo!\Assistant\yClickOn.dll]
[YAHOO Corporation Limited, 3, 0, 3, 1004]

[C:\PROGRA~1\Yahoo!\ASSIST~1\yaLive.dll]
[yahoo! china, 3, 5, 9, 1111]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]
[Yahoo! China, 3, 0, 2, 1011]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar0.dll]
[yahoo! china, 3, 3, 4, 1104]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\ysearch.dll]
[Yahoo! China, 3, 1, 9, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasnoad.dll]
[yahoo! china, 3, 0, 3, 1005]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yzsNetProto.dll]
[Yahoo! China, 3, 0, 2, 1003]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll]
[Yahoo! China, 3, 0, 8, 1010]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yaswiper.dll]
[Yahoo! China, 3, 0, 5, 1005]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasiesec.dll]
[Yahoo! China, 3, 0, 5, 1005]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YSETTI~2.DLL]
[yahoo! china, 3, 1, 5, 1026]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\ymailp.dll]
[Yahoo! China, 3, 0, 5, 1011]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~2.DLL]
[yahoo! china, 3, 0, 4, 1006]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\yassist.dll]
[Yahoo! China, 3, 1, 6, 1021]
[PID: 1984][C:\WINDOWS\system32\tp4mon.exe]
[IBM Corporation, 6.03 (xpsp_sp2_rtm.040803-2158)]

[C:\WINDOWS\system32\tp4res.dll]
[IBM Corporation, 6.03 (XPClient.010817-1148)]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]
[PID: 148][C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe]
[Yahoo! China, 3, 2, 1, 1027]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\yaLive.dll]
[yahoo! china, 3, 5, 9, 1111]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]
[Yahoo! China, 3, 0, 2, 1011]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]

[C:\PROGRA~1\Yahoo!\ASSIST~1\ynotifier.dll]
[yahoo! china, 3, 0, 2, 1002]
[PID: 220][C:\Downloads\AVG Anti-Spyware_7.5\AVG Anti-Spyware 7.5\avgas.exe]
[Anti-Malware Development a.s., 7, 5, 0, 50]

[C:\Downloads\AVG Anti-Spyware_7.5\AVG Anti-Spyware 7.5\engine.dll]
[Anti-Malware Development a.s., 4, 2, 0, 15]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]
[PID: 252][C:\Syswm1h\svchost.exe]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]
[PID: 296][C:\WINDOWS\system32\ctfmon.exe]
[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]
[PID: 328][C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe]
[Google Inc., 1, 2, 1128, 5462]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\res_zh-CN.dll]
[Google Inc., 1, 2, 1128, 5462]

[C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\swg.dll]
[Google Inc., 1, 2, 1128, 5462]

[C:\Syswm1h\Ghook.dll]
[N/A, ]
[PID: 352][C:\Program Files\MSN Messenger\MsnMsgr.Exe]
[Microsoft Corporation, 8.1.0178.00]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]

[C:\WINDOWS\system32\msdmo.dll]
[, ]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\Rav20.dll]
[N/A, ]

[C:\WINDOWS\system32\cmdbcs.dll]
[N/A, ]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\Qqzo0.dll]
[N/A, ]
[PID: 3444][C:\WINDOWS\system32\wscntfy.exe]
[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]
[PID: 3692][C:\Program Files\FlashGet\flashget.exe]
[FlashGet.com, 1, 8, 2, 1001]

[C:\Program Files\FlashGet\FGBTCORE.dll]
[, 1, 0, 0, 36]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]

[C:\Syswm1h\Ghook.dll]
[N/A, ]

[C:\Program Files\FlashGet\fgupdate.dll]
[www.flashget.com, 1, 8, 1, 1002]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\Rav20.dll]
[N/A, ]

[C:\WINDOWS\system32\cmdbcs.dll]
[N/A, ]

[C:\DOCUME~1\t16633\LOCALS~1\Temp\Qqzo0.dll]
[N/A, ]

[C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]
[Kaspersky Lab, 1.0.6.299]

[C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]
[Kaspersky Lab, 6.0.0.299]
[PID: 2600][C:\WINDOWS\system32\wuauclt.exe]
[Microsoft Corporation, 5.8.0.2469 built by: lab01_n(wmbla)]

[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[Yahoo! China, 3, 0, 1, 1019]

[C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ykern.dll]
[Yahoo! China, 3, 2, 1, 1027]

[C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys]
[N/A, ]
回复

举报

libozibo
头像被屏蔽
发表于 2007-4-3 11:58:39 | 显示全部楼层
???怎么不用卡巴杀杀
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-19 02:04 , Processed in 0.125569 second(s), 17 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表