收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 安全区 国内杀毒软件 360 卡巴和360挂掉了
返回列表 发新帖
查看: 2983|回复: 4
收起左侧

卡巴和360挂掉了

[复制链接]
gaoxing1820
发表于 2007-5-31 00:21:43 | 显示全部楼层 |阅读模式
今天中了veckdld.exe和oduxyym.exe   当时卡巴  360安全卫士  SREng全都打不开了  都提示找不到文件




用360文件粉碎干掉病毒后仍然不能启动   现在重装了安全卫士  但不能开启实时保护   SREng.exe改成SREng.com后可以运行   但卡巴还是用不了。。。。 请大大帮忙解决





  1. 2007-05-31,00:08:05
  2. System Repair Engineer 2.4.12.806
  3. Smallfrogs (http://www.KZTechs.com)
  4. Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能
  5. 以下内容被选中:
  6.     所有的启动项目(包括注册表、启动文件夹、服务等)
  7.     浏览器加载项
  8.     正在运行的进程(包括进程模块信息)
  9.     文件关联
  10.     Winsock 提供者
  11.     Autorun.inf
  12.     HOSTS 文件

  14. 启动项目
  15. 注册表
  16. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  17.     <MSConfig><C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto>  [(Verified)Microsoft Windows Publisher]
  18. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  19.     <shell><Explorer.exe>  [(Verified)Microsoft Windows XP Publisher]
  20.     <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
  21.     <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
  22. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  23.     <{57B86673-276A-48B2-BAE7-C6DBB3020EB8}><C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll>  [Anti-Malware Development a.s.]
  24. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  25.     <360Safetray><; C:\Program Files\360safe\safemon\360Tray.exe /start>  [奇虎网]
  26. ==================================
  27. 启动文件夹
  28. [INTERNAT]
  29.   <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\INTERNAT.lnk --> C:\WINDOWS\system32\internat.exe [Microsoft Corporation]><N>
  30. ==================================
  31. 服务
  32. [Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
  33.   <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
  34. [Ati HotKey Poller / Ati HotKey Poller][Stopped/Disabled]
  35.   <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
  36. [ATI Smart / ATI Smart][Stopped/Disabled]
  37.   <C:\WINDOWS\system32\ati2sgag.exe><>
  38. [AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Running/Auto Start]
  39.   <C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe><Anti-Malware Development a.s.>
  40. [卡巴斯基反病毒6.0 / AVP][Stopped/Disabled]
  41.   <"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r><Kaspersky Lab>
  42. [DriveHealth / DriveHealth][Stopped/Auto Start]
  43.   <i:\Drive Health\dhcore.exe><N/A>
  44. [E15DE51E / E15DE51E][Stopped/Disabled]
  45.   <C:\WINDOWS\system32\E15DE51E.EXE -service><N/A>
  46. [Human Interface Device Access / HidServ][Stopped/Disabled]
  47.   <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
  48. [InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  49.   <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"><Macrovision Corporation>
  50. [License Management Service ESD / License Management Service ESD][Stopped/Manual Start]
  51.   <"C:\Program Files\Common Files\element5 Shared\Service\Licence Manager ESD.exe"><>
  52. [Maya 7.0 Documentation Server / maya70docserver][Running/Auto Start]
  53.   <"C:\Program Files\Alias\Maya7.0\docs\wrapper.exe" -s "C:\Program Files\Alias\Maya7.0\docs\Wrapper.conf"><N/A>
  54. [Win32 Debug Service / MSDebugsvc][Stopped/Auto Start]
  55.   <C:\WINDOWS\system32\rundll32.exe msdebug.dll,input><Microsoft Corporation>
  56. [Pdnstb0 / Pdnstb0][Stopped/Manual Start]
  57.   <><N/A>
  58. [Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
  59.   <"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"><N/A>
  60. [WMI Performance API / WMIApiSrv][Stopped/Auto Start]
  61.   <C:\WINDOWS\system32\rundll32.exe WMIApiSrv.dll,input><Microsoft Corporation>
  62. [Windows Driver Foundation - User-mode Driver Framework / WudfSvc][Stopped/Manual Start]
  63.   <C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup-->%SystemRoot%\System32\WUDFSvc.dll><Microsoft Corporation>
  64. [Wireless Service / WZCSRVC][Stopped/Auto Start]
  65.   <C:\WINDOWS\system32\rundll32.exe netsrvcs.dll,input><Microsoft Corporation>
  66. ==================================
  67. 驱动程序
  68. [21765 / 21765][Stopped/Manual Start]
  69.   <\??\C:\WINDOWS\system32\Drivers\21765.sys><Driver>
  70. [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  71.   <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
  72. [ati2mtag / ati2mtag][Running/Manual Start]
  73.   <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
  74. [AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start]
  75.   <System32\DRIVERS\AvgAsCln.sys><GRISOFT, s.r.o.>
  76. [CdaC15BA / CdaC15BA][Running/Auto Start]
  77.   <\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS><Macrovision Europe Ltd>
  78. [DS1410D / DS1410D][Stopped/Auto Start]
  79.   <\??\C:\WINDOWS\system32\drivers\ds1410d.sys><N/A>
  80. [Hardlock / Hardlock][Running/Auto Start]
  81.   <\??\C:\WINDOWS\system32\drivers\hardlock.sys><Aladdin Knowledge Systems Ltd.>
  82. [Haspnt / Haspnt][Running/Auto Start]
  83.   <\??\C:\WINDOWS\system32\drivers\Haspnt.sys><Aladdin Knowledge Systems>
  84. [kl1 / kl1][Running/Boot Start]
  85.   <\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
  86. [klif / klif][Running/System Start]
  87.   <\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
  88. [Netgroup Packet Filter / NPF][Stopped/Manual Start]
  89.   <system32\drivers\npf.sys><CACE Technologies>
  90. [npkcrypt / npkcrypt][Running/Auto Start]
  91.   <\??\I:\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
  92. [p2pfilter / p2pfilter][Stopped/Manual Start]
  93.   <\??\C:\Program Files\NetSoft\P2POver\p2pfilter.sys><N/A>
  94. [PortTalk / PortTalk][Stopped/Manual Start]
  95.   <System32\Drivers\PortTalk.sys><N/A>
  96. [StarForce Protection Environment Driver v6 / prodrv06][Running/System Start]
  97.   <\SystemRoot\System32\drivers\prodrv06.sys><Protection Technology>
  98. [StarForce Protection Helper Driver v2 / prohlp02][Running/Boot Start]
  99.   <\SystemRoot\System32\drivers\prohlp02.sys><Protection Technology>
  100. [StarForce Protection Synchronization Driver v1 / prosync1][Running/Boot Start]
  101.   <\SystemRoot\System32\drivers\prosync1.sys><Protection Technology>
  102. [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  103.   <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
  104. [PxHelp20 / PxHelp20][Running/Boot Start]
  105.   <\SystemRoot\system32\DRIVERS\PxHelp20.sys><Sonic Solutions>
  106. [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
  107.   <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
  108. [Secdrv / Secdrv][Stopped/Manual Start]
  109.   <system32\DRIVERS\secdrv.sys><N/A>
  110. [Sentinel / Sentinel][Running/Auto Start]
  111.   <\SystemRoot\System32\Drivers\SENTINEL.SYS><Rainbow Technologies, Inc.>
  112. [StarForce Protection Helper Driver / sfhlp01][Running/Boot Start]
  113.   <\SystemRoot\System32\drivers\sfhlp01.sys><Protection Technology>
  114. [Rainbow USB SuperPro / Sntnlusb][Stopped/Manual Start]
  115.   <system32\DRIVERS\SNTNLUSB.SYS><Rainbow Technologies Inc.>
  116. [sptd / sptd][Running/Boot Start]
  117.   <\SystemRoot\System32\Drivers\sptd.sys><N/A>
  118. [SVKP / SVKP][Running/Auto Start]
  119.   <\??\C:\WINDOWS\system32\SVKP.sys><AntiCracking>
  120. [TCP/IP Protocol Driver / Tcpip][Running/System Start]
  121.   <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
  122. [TSP / TSP][Stopped/Manual Start]
  123.   <\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
  124. [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  125.   <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
  126. [Windows Driver Foundation - User-mode Driver Framework Platform Driver / WudfPf][Stopped/Manual Start]
  127.   <system32\DRIVERS\WudfPf.sys><Microsoft Corporation>
  128. [Windows Driver Foundation - User-mode Driver Framework Reflector / WudfRd][Stopped/Manual Start]
  129.   <system32\DRIVERS\wudfrd.sys><Microsoft Corporation>
  130. [Teclast WE PC Camera / ZSMC301b][Stopped/Manual Start]
  131.   <System32\Drivers\usbVM31b.sys><VM>
  132. ==================================
  133. 浏览器加载项
  134. [ThunderIEHelper Class]
  135.   {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v8.dll, >
  136. [ThunderAtOnce Class]
  137.   {01443AEC-0FD1-40fd-9C87-E93D1494C233} <I:\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
  138. [Thunder Browser Helper]
  139.   {B69F34DC-F0F9-42DC-9EDD-957187DA688D} <I:\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
  140. [NavigatMon Class]
  141.   {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, >
  142. [浩方对战平台]
  143.   {0A155D3C-68E2-4215-A47A-E800A446447A} <H:\HFGameOPT\GameClient.exe, 上海浩方在线信息技术有限公司>
  144. [Web反病毒保护]
  145.   {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll, Kaspersky Lab>
  146. [Windows Genuine Advantage Validation Tool]
  147.   {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corp.>
  148. [AxSubmitControl Class]
  149.   {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\DOWNLO~1\SUBMIT~1.DLL, >
  150. [CPasswordEditCtrl Object]
  151.   {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32\qqedit\qqedit.dll, 腾讯科技(深圳)有限公司>
  152. [ThunderIEHelper Class]
  153.   {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v8.dll, >
  154. [ThunderAtOnce Class]
  155.   {01443AEC-0FD1-40FD-9C87-E93D1494C233} <I:\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
  156. [Thunder Browser Helper]
  157.   {B69F34DC-F0F9-42DC-9EDD-957187DA688D} <I:\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
  158. [NavigatMon Class]
  159.   {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, >
  160. [上传到QQ网络硬盘]
  161.   <I:\QQ\AddToNetDisk.htm, N/A>
  162. [使用迅雷下载]
  163.   <I:\Thunder\Program\geturl.htm, N/A>
  164. [添加到QQ自定义面板]
  165.   <I:\QQ\AddPanel.htm, N/A>
  166. [添加到QQ表情]
  167.   <I:\QQ\AddEmotion.htm, N/A>
  168. [用QQ彩信发送该图片]
  169.   <I:\QQ\SendMMS.htm, N/A>
  170. ==================================
  171. 正在运行的进程
  172. [PID: 564][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  173. [PID: 648][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  174. [PID: 676][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  175.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  176.     [C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4121]
  177.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  178. [PID: 720][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  179.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  180. [PID: 732][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  181.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  182. [PID: 888][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  183.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  184. [PID: 948][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  185.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  186. [PID: 1012][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  187.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  188. [PID: 1116][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  189.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  190. [PID: 1168][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  191.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  192. [PID: 1628][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2649 (xpsp.050406-1732)]
  193.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  194.     [C:\WINDOWS\system32\INDICDLL.dll]  [Microsoft Corporation, 5.00.2920.0000]
  195.     [C:\Program Files\Avpack\Haali\mmfinfo.dll]  [N/A, ]
  196.     [C:\Program Files\Avpack\Haali\mkunicode.dll]  [N/A, ]
  197.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  198.     [I:\QQ\qdshm.dll]  [, 1, 0, 101, 20]
  199.     [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
  200.     [C:\Program Files\ACDSee\picaview.dll]  [ACD Systems, Ltd., 2, 0, 0, 78]
  201.     [C:\Program Files\ACDSee\PlugIns\IDE_ACDStd.apl]  [ACD Systems, Ltd., 1, 3, 4, 22]
  202.     [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\shellex.dll]  [Kaspersky Lab, 6.0.0.299]
  203.     [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll]  [Anti-Malware Development a.s., 7, 5, 0, 49]
  204.     [C:\WINDOWS\system32\PortableDeviceApi.dll]  [Microsoft Corporation, 5.2.5358.4827 (WMP_11.060509-2009)]
  205.     [C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll]  [Anti-Malware Development a.s., 7, 5, 0, 47]
  206.     [C:\WINDOWS\system32\xunleibho_v8.dll]  [, 4, 5, 1, 33]
  207.     [I:\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 2, 17]
  208.     [C:\Program Files\360safe\safemon\safemon.dll]  [, 3, 4, 0, 1001]
  209. [PID: 1740][C:\WINDOWS\system32\internat.exe]  [Microsoft Corporation, 5.00.2920.0000]
  210.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  211.     [C:\WINDOWS\system32\INDICDLL.dll]  [Microsoft Corporation, 5.00.2920.0000]
  212. [PID: 1480][C:\Program Files\Maxthon\Maxthon.exe]  [MY Soft Technology, 1, 2, 5, 20]
  213.     [C:\Program Files\Maxthon\maxzlib.dll]  [ , 1, 0, 0, 2]
  214.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  215.     [C:\WINDOWS\system32\INDICDLL.dll]  [Microsoft Corporation, 5.00.2920.0000]
  216.     [I:\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 2, 17]
  217.     [C:\WINDOWS\system32\odbcbcp.dll]  [Microsoft Corporation, 2000.085.1117.00 (xpsp_sp2_rtm.040803-2158)]
  218.     [C:\Program Files\Maxthon\Services\RealTime\real_time.dll]  [, 1, 0, 0, 1]
  219.     [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scr_ch_pg.dll]  [Kaspersky Lab, 1.0.6.299]
  220.     [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\klscav.dll]  [Kaspersky Lab, 6.0.0.299]
  221.     [C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx]  [Adobe Systems, Inc., 9,0,28,0]
  222.     [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
  223.     [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\prloader.dll]  [Kaspersky Lab, 6.0.0.299]
  224.     [I:\SReng\SREng.com]  [Smallfrogs Studio, 2.4.12.806]
  225.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2523 (xpsp.040919-1030)]
  226.     [C:\WINDOWS\system32\INDICDLL.dll]  [Microsoft Corporation, 5.00.2920.0000]
  227.     [I:\SReng\Plugins\NWMON.SRE]  [Smallfrogs Studio, 1, 0, 0, 8]
  228. ==================================
  229. 文件关联
  230. .TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  231. .EXE  OK. ["%1" %*]
  232. .COM  OK. ["%1" %*]
  233. .PIF  OK. ["%1" %*]
  234. .REG  OK. [regedit.exe "%1"]
  235. .BAT  OK. ["%1" %*]
  236. .SCR  OK. ["%1" /S]
  237. .CHM  OK. ["C:\WINDOWS\hh.exe" %1]
  238. .HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
  239. .INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  240. .INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  241. .VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  242. .JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  243. .LNK  OK. [{00021401-0000-0000-C000-000000000046}]
  244. ==================================
  245. Winsock 提供者
  246. N/A
  247. ==================================
  248. Autorun.inf
  249. N/A
  250. ==================================
  251. HOSTS 文件
  252. N/A
  253. ==================================
  254. API HOOK
  255. RVA  错误: LoadLibraryA (危险等级: 一般,  被下面模块所HOOK: Dest Addr: 0xBAE15B25)
  256. RVA  错误: LoadLibraryExA (危险等级: 一般,  被下面模块所HOOK: Dest Addr: 0xBAE15D67)
  257. RVA  错误: LoadLibraryExW (危险等级: 一般,  被下面模块所HOOK: Dest Addr: 0xBAE15F0B)
  258. RVA  错误: LoadLibraryW (危险等级: 一般,  被下面模块所HOOK: Dest Addr: 0xBAE15C49)
  259. RVA  错误: GetProcAddress (危险等级: 高,  被下面模块所HOOK: Dest Addr: 0xBAE15E8F)
  260. ==================================
  261. 隐藏进程
  262. N/A
  263. ==================================
复制代码

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
回复

举报

gaoxing1820
 楼主| 发表于 2007-5-31 00:42:06 | 显示全部楼层
刚看到顶置帖里的冰刃 下载下来后和卡巴情况一样。。。找不到。。。
回复

举报

孤狐
发表于 2007-5-31 04:39:08 | 显示全部楼层
请看本版帖子:七、八位字母virus的清除方法&常用工具下载
不过我觉得那样比较麻烦
前几天给朋友中了那家伙
我就直接重新分区了
回复

举报

wangjay1980
发表于 2007-5-31 07:47:36 | 显示全部楼层
把冰刃改个名,如123.exe就可以启动了,然后用冰刃手工杀毒
回复

举报

gaoxing1820
 楼主| 发表于 2007-5-31 13:09:11 | 显示全部楼层
搞定了  3Q
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-12-22 11:58 , Processed in 0.123920 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表