|
|
|||||||
| 論壇說明 |
|
歡迎您來到『史萊姆論壇』 ^___^ 您目前正以訪客的身份瀏覽本論壇,訪客所擁有的權限將受到限制,您可以瀏覽本論壇大部份的版區與文章,但您將無法參與任何討論或是使用私人訊息與其他會員交流。若您希望擁有完整的使用權限,請註冊成為我們的一份子,註冊的程序十分簡單、快速,而且最重要的是--註冊是完全免費的! 請點擊這裡:『註冊成為我們的一份子!』 |
 |
|
|
主題工具 | 顯示模式 |
2009-09-17, 07:18 PM
|
#1 |
|
註冊會員
|
求助 - trojan-gen(OTHER)刪除後會增加
我的掃毒掃出了這個病毒,於安全模式刪除後,又會於正常模式中再生,而且會不斷的增加 如:trojan-gen trojan-gen2 trojan-gen3 trojan-gen4.........80.90. 還原已關閉,以下是我用過的掃毒 NOD32(用這個掃不到) AVAST a-squared Free Arovax AntiSpyware Arovax Shield....等等 下載區的免費軟體我幾乎都試過了,這樣真的很頭痛,請各位幫幫我 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 下午 07:06:54, on 2009/9/17 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe E:\box\Avast4\aswUpdSv.exe E:\box\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\RTHDCPL.EXE E:\box\Nero\Nero8\InCD\NBHGui.exe E:\box\Nero\Nero8\InCD\InCD.exe E:\box\NetLimiter\NetLimiter.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe E:\box\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\spoolsv.exe E:\box\Nero\Nero8\InCD\InCDsrv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe E:\box\Nero\Nero8\InCD\NBHRegInCDSrv.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe E:\box\Avast4\ashMaiSv.exe E:\box\Avast4\ashWebSv.exe C:\WINDOWS\system32\conime.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Administrator\桌面\HiJackThis.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live 登入小幫手 - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SafeIE Utility - {B5D4581D-ED6A-4905-A267-25BAF7BE79C1} - C:\WINDOWS\system32\SafeIE.dll (file missing) O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [SecurDisc] E:\box\Nero\Nero8\InCD\NBHGui.exe O4 - HKLM\..\Run: [InCD] E:\box\Nero\Nero8\InCD\InCD.exe O4 - HKLM\..\Run: [NetLimiter] E:\box\NetLimiter\NetLimiter.exe /s O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\box\Adbe8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [avast!] E:\box\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] ctfmon.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] ctfmon.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] ctfmon.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] ctfmon.exe (User 'Default user') O8 - Extra context menu item: Foxy 下載 - res://E:\box\Foxy\Foxy.exe/download.htm O8 - Extra context menu item: Foxy 搜尋 - res://E:\box\Foxy\Foxy.exe/search.htm O8 - Extra context menu item: 使用WellGet下載(&W) - E:\box\WellGet\nxcatch.htm O8 - Extra context menu item: 使用WellGet下載全部鏈結(&D) - E:\box\WellGet\nxall.htm O8 - Extra context menu item: 匯出至 Microsoft Excel(&X) - res://E:\box\Office10\EXCEL.EXE/3000 O9 - Extra button: WellGet - {35980F6E-A258-4E50-953D-813BB8556899} - E:\box\WellGet\WellGet.exe O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O14 - IERESET.INF: START_PAGE_URL=http://www.google.com.tw O16 - DPF: {076169AA-8C3D-4CFC-AC23-3ACA88FC21B5} (F-Secure Online Scanner Launcher) - http://download.sp.f-secure.com/ols/...fslauncher.cab O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab O16 - DPF: {A22B8FD2-4CAA-4EFB-82F7-680CD656D9B0} (NowStarter Control) - http://www.gogobox.com.tw/neo.fld/GNowStarter.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{62CFEF71-9E64-418A-8877-5591004333A4}: NameServer = 140.125.252.1,140.125.253.2 O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\box\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - E:\box\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - E:\box\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - E:\box\Avast4\ashWebSv.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: InCD Helper (InCDsrv) - Nero AG - E:\box\Nero\Nero8\InCD\InCDsrv.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Nero Registry InCD Service (NeroRegInCDSrv) - Nero AG - E:\box\Nero\Nero8\InCD\NBHRegInCDSrv.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Unknown owner - E:\box\Alcohol 120\StarWind\StarWindServiceAE.exe (file missing) -- End of file - 7054 bytes |
|
送花文章: 1,
|
|
向 siqeq 送花的會員:
|
|
2009-09-18, 01:41 PM
|
#4 (permalink) |
|
註冊會員
|
http://www.prevx.com/filenames/X1160...X1/73.SCR.html --> PREVX這個軟體要付費的才能清VIRUS
你要不要用 "Malwarebytes' Anti-Malware" 試試看? 之前我電腦發生過掃到病毒卻清不了的問題 (不是您的那個VIRUS, 也是用了很多軟體處理) 結果死馬當活馬醫, 用了 Malwarebytes' Anti-Malware 後就解決了.  |
|
|
送花文章: 208,
|
|
|
|
|
相似的主題
|
||||
| 主題 | 主題作者 | 討論區 | 回覆 | 最後發表 |
| alcohol真實刪除映像檔後,空間卻沒有增加~ | cuteman0725 | 軟體應用問題討論區 | 1 | 2003-05-25 11:31 PM |
| 請大家幫幫忙,病毒 IRC Trojan 要怎麼刪除? | klevin | 一般電腦疑難討論區 | 2 | 2003-05-09 08:27 PM |
| Sound Blaster Audio PCI 64V是啥?我刪除後電腦怪怪的 | look-me99 | 一般電腦疑難討論區 | 8 | 2003-03-17 04:54 PM |
| 如何增加或刪除光碟映像檔中的資料??? | pug | 一般電腦疑難討論區 | 6 | 2003-03-05 10:52 PM |
| 有沒好用的增加/刪除程式的軟體ㄚ? | latenight | 一般電腦疑難討論區 | 0 | 2003-01-19 04:14 PM |
平板模式
