|
查看: 600|回复: 1
|
[病毒:求助] downloader.trojan
[复制链接]
|
|
|
跟着norton的方法把这个trojan 除去后, IE开始有问题了..
不能run 每个page 尤其是mail 和 华文的网页..
请问各位有试中过吗? 或其他方法解救吗? |
|
|
|
|
|
|
|
|
|
|
|
楼主 |
发表于 5-8-2004 12:40 AM
|
显示全部楼层
我尝试用 HijacktThis 来解决,以下是那些file..
Logfile of HijackThis v1.98.1
Scan saved at 12:33:04 AM, on 08/05/2004
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\WINDOWS\System32\igfxtray.exe
D:\WINDOWS\System32\hkcmd.exe
D:\Program Files\Winamp\winampa.exe
D:\PROGRA~1\NORTON~1\navapw32.exe
C:\sp.exe
D:\Program Files\Norton AntiVirus\navapsvc.exe
D:\Program Files\Norton Personal Firewall\NISUM.EXE
D:\WINDOWS\System32\NMSSvc.exe
D:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
D:\Program Files\Norton Personal Firewall\SymProxySvc.exe
D:\Program Files\Norton Personal Firewall\NISSERV.EXE
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Norton Personal Firewall\IAMAPP.EXE
D:\Program Files\Norton Personal Firewall\ATRACK.EXE
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\Winamp\winamp.exe
D:\WINDOWS\explorer.exe
D:\PROGRA~1\SPYDOC~1\SpyDoctor.exe
D:\Program Files\SpyDoctor\SpyDoctor.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Documents and Settings\CooL^Qi^Er\Desktop\HijackThis.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - D:\PROGRA~1\FLASHGET\jccatch.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - D:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - D:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [IgfxTray] D:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] D:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [WinampAgent] D:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [NeroCheck] D:\WINDOWS\System32\NeroCheck.exe
O4 - HKLM\..\Run: [NAV Agent] D:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [Advanced Tools Check] D:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [iamapp] D:\Program Files\Norton Personal Firewall\IAMAPP.EXE
O4 - HKLM\..\Run: [SpyDoctor] D:\Program Files\SpyDoctor\SpyDoctor.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [sp] C:\sp.exe
O8 - Extra context menu item: Download All by FlashGet - D:\PROGRA~1\FLASHGET\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - D:\PROGRA~1\FLASHGET\jc_link.htm
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\PROGRA~1\FLASHGET\JETCAR.EXE
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\PROGRA~1\FLASHGET\JETCAR.EXE
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll |
|
|
|
|
|
|
|
|
|
| |
 本周最热论坛帖子
|
发表于 5-8-2004 12:08 AM
变色卡
千斤顶
2432 
34
