史萊姆論壇 - 查看單個文章

plunderer · 2007-08-04, 06:18 AM

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL

O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL

O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL

O3 - Toolbar: My &Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL

O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=0

O4 - HKLM\..\Run: [SVCHOSTS.EXE] C:\WINDOWS\SYSTEM32\WindowsXP-KB838201-x86-CHS.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDWG32] LYLoadbr.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDCG32 ] LYLeador.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDOG32] LYLoador.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDSG32] LYLoadar.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDMG32] LYLoadmr.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDHG32] LYLoadhr.exe

O4 - HKLM\..\Policies\Explorer\Run: [MSDQG32] LYLoadqr.exe

O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbar...p=ZUxdm022YYTW

O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)

O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)

O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/noc...up1.0.0.15.cab

O16 - DPF: {2D7949BE-DCD1-44BD-B92B-51BCF9070DE8} (TWLauncherAX Control) - http://www.fsonline.com.tw/GS_Start/TWLauncherAX.cab

O16 - DPF: {81402E2F-73D7-441D-9992-2DBD07B00E21} (SunReportX Control) - http://www.soulultimatenation.com.tw...SunReportX.cab

O16 - DPF: {96D466AB-3121-4072-8570-BAE7871A4D96} (UJActiveXLauncher Control) - http://www.ujgame.com/ujcasual/game/...eXLauncher.ocx

O16 - DPF: {F2CB778F-D663-40F5-AED8-FDB7D1EBD5DF} (MLauncherNew Class) - http://hero.crazy.com.tw/game/hero/launcherherotw.cab

O20 - AppInit_DLLs: jzgpri.dll

O23 - Service: 6A536D28 - Unknown owner - C:\WINDOWS\system32\2F6CED70.EXE (file missing)

勾選並修復上述項目, 重新開機, 以安全模式登入windows, 刪除下列檔案:
C:\WINDOWS\SYSTEM32\WindowsXP-KB838201-x86-CHS.exe
下面這些檔案找不到就先搜尋, 找到再刪
LYLoadbr.exe
LYLeador.exe
LYLoador.exe
LYLoadar.exe
LYLoadmr.exe
LYLoadhr.exe
LYLoadqr.exe
jzgpri.dll

刪除或卸載 C:\Program Files\MyWebSearch 整個目錄, 包含其內檔案

P.S
你的問題出在瀏覽網頁時, 網站提示要安裝一些奇奇怪怪的玩意兒, 而你卻"照單全收".....
卡巴7.0 不錯, 但要懂得自己判斷, 若 KAV 跳出警告, 看不懂意思而一路放行, 那不如不裝

2007-08-04, 06:18 AM	#2 (permalink)
plunderer 長老會員榮譽勳章勳章總數8 UID - 74024 在線等級: 註冊日期: 2003-05-31 文章: 1399 精華: 0 現金: 507220 金幣資產: 608580 金幣	R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL O3 - Toolbar: My &Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=0 O4 - HKLM\..\Run: [SVCHOSTS.EXE] C:\WINDOWS\SYSTEM32\WindowsXP-KB838201-x86-CHS.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDWG32] LYLoadbr.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDCG32 ] LYLeador.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDOG32] LYLoador.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDSG32] LYLoadar.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDMG32] LYLoadmr.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDHG32] LYLoadhr.exe O4 - HKLM\..\Policies\Explorer\Run: [MSDQG32] LYLoadqr.exe O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbar...p=ZUxdm022YYTW O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing) O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing) O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/noc...up1.0.0.15.cab O16 - DPF: {2D7949BE-DCD1-44BD-B92B-51BCF9070DE8} (TWLauncherAX Control) - http://www.fsonline.com.tw/GS_Start/TWLauncherAX.cab O16 - DPF: {81402E2F-73D7-441D-9992-2DBD07B00E21} (SunReportX Control) - http://www.soulultimatenation.com.tw...SunReportX.cab O16 - DPF: {96D466AB-3121-4072-8570-BAE7871A4D96} (UJActiveXLauncher Control) - http://www.ujgame.com/ujcasual/game/...eXLauncher.ocx O16 - DPF: {F2CB778F-D663-40F5-AED8-FDB7D1EBD5DF} (MLauncherNew Class) - http://hero.crazy.com.tw/game/hero/launcherherotw.cab O20 - AppInit_DLLs: jzgpri.dll O23 - Service: 6A536D28 - Unknown owner - C:\WINDOWS\system32\2F6CED70.EXE (file missing) 勾選並修復上述項目, 重新開機, 以安全模式登入windows, 刪除下列檔案: C:\WINDOWS\SYSTEM32\WindowsXP-KB838201-x86-CHS.exe 下面這些檔案找不到就先搜尋, 找到再刪 LYLoadbr.exe LYLeador.exe LYLoador.exe LYLoadar.exe LYLoadmr.exe LYLoadhr.exe LYLoadqr.exe jzgpri.dll 刪除或卸載 C:\Program Files\MyWebSearch 整個目錄, 包含其內檔案 P.S 你的問題出在瀏覽網頁時, 網站提示要安裝一些奇奇怪怪的玩意兒, 而你卻"照單全收"..... 卡巴7.0 不錯, 但要懂得自己判斷, 若 KAV 跳出警告, 看不懂意思而一路放行, 那不如不裝
	__________________ 刑天舞干戚
	送花文章: 6, 收花文章: 575 篇, 收花: 1747 次