打印

[求助] Google Chrome 中毒 (附 Hijackthis)

Google Chrome 中毒 (附 Hijackthis) E-mail 此主題給朋友

[隱藏]
中毒 (附 Hijackthis)

[隱藏]


我用 google chrome 時,不停自動去左一個網站: http://ad31.nettravel.com/
好煩,請師兄幫幫忙!

Logfile of HijackThis v1.98.0
Scan saved at 21:34:28, on 18/1/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\AnalogDevices\SoundMAX\Smax4.exe
C:\Program Files\AnalogDevices\Core\smax4pnp.exe
C:\Program Files\ATITechnologies\ATI.ACE\Core-Static\MOM.exe
C:\ProgramFiles\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
C:\ProgramFiles\CyberLink\PowerDVD11\PDVD11Serv.exe
C:\Program Files\Common Files\Java\JavaUpdate\jusched.exe
C:\ProgramFiles\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
C:\Program Files\AVG SecureSearch\vprot.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\ProgramFiles\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Bywifi\bywifi.exe
C:\Program Files\PDF24\pdf24.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\ATITechnologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Alcohol Soft\Alcohol120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
C:\Program Files\Common Files\AVG SecureSearch\vToolbarUpdater\9.0.1\ToolbarUpdater.exe
C:\ProgramFiles\AVG\AVG2012\AVGIDSAgent.exe
C:\ProgramFiles\TeamViewer\Version7\TeamViewer.exe
C:\ProgramFiles\TeamViewer\Version7\tv_w32.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\abc\LocalSettings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\abc\LocalSettings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\abc\Local Settings\ApplicationData\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\abc\LocalSettings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\MicrosoftOffice\OFFICE11\WINWORD.EXE
C:\Documents and Settings\abc\Local Settings\ApplicationData\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\abc\LocalSettings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\abc\LocalSettings\Application Data\Google\Chrome\Application\chrome.exe
D:\RINGO\COMPUTER\hijackthis 1.98.0.exe

R3 - Default URLSearchHook is missing
O1 - Hosts: 178.162.171.49google-analytics.com
O1 - Hosts: 178.162.171.49 www.google-analytics.com
O1 - Hosts: 178.162.171.49google-analytics.com
O1 - Hosts: 178.162.171.49www.google-analytics.com
O2 - BHO: btorbit.com -{000123B4-9B42-4900-B3F7-F4B073EFC214}- C:\Program Files\Orbitdownloader\orbitcth.dll
O2 - BHO: &Yahoo! Toolbar Helper -{02478D38-C3F9-4efb-9B51-7695ECA05670}- C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

[ 本帖最後由 toughdick 於 2012-1-18 09:36 PM 編輯 ]



實用相關搜尋: Spa Server Java Microsoft email google yahoo

TOP

O2 - BHO: WormRadar.comIESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}- C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Windows Live 登入小幫手 - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\9.0.0.22\AVGSecure Search_toolbar.dll
O2 - BHO: BywifiBHO - {C4743D3E-20D7-4B52-84F2-5E4E277B2D82} - C:\ProgramFiles\Bywifi\bywifiie.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper -{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\ProgramFiles\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SMTTB2009 -{FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HyperCamToolbar\tbcore3.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Grab Pro -{C55BBCD6-41AD-48AD-9953-3609C48EACC7}- C:\Program Files\Orbitdownloader\GrabPro.dll
O3 - Toolbar: Yahoo! 工具列 - {EF99BD32-C1FB-11D2-892F-0090271D4F88} -C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829}- (no file)
O3 - Toolbar: HyperCam Toolbar -{338B4DFE-2E2C-4338-9E41-E176D497299E}- C:\Program Files\HyperCam Toolbar\tbcore3.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\9.0.0.22\AVGSecure Search_toolbar.dll
O4 - HKLM\..\Run: [AVG_TRAY]"C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [Adobe Reader SpeedLauncher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM]"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [nwiz] C:\ProgramFiles\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [StartCCC]"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"MSRun
O4 - HKLM\..\Run: [CJIMETIPSYNC] C:\ProgramFiles\Common Files\Microsoft Shared\IME\IMTC65\CHANGJIE\CINTLCFG.EXE/CJIMETIPSync
O4 - HKLM\..\Run: [PHIMETIPSYNC] C:\ProgramFiles\Common Files\Microsoft Shared\IME\IMTC65\PHONETIC\TINTLCFG.EXE/PHIMETIPSync
O4 - HKLM\..\Run: [SoundMAX]"C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SoundMAXPnP] C:\ProgramFiles\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [RemoteControl11]C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched]"C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [vProt] "C:\ProgramFiles\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [bywifi] "C:\ProgramFiles\Bywifi\bywifi.exe" "-silent"
O4 - HKLM\..\Run: [PDFPrint] C:\ProgramFiles\PDF24\pdf24.exe
O4 - HKCU\..\Run: [ctfmon.exe]C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\ProgramFiles\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AlcoholAutomount]"C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe"-automount
O4 - HKCU\..\Run: [bywifi] "C:\ProgramFiles\Bywifi\bywifi.exe" "-silent"
O8 - Extra context menu item: &Downloadby Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grabvideo by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnloadselected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&loadall by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: 匯出至 Microsoft Office Excel(&X) -res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Bywifi: 網路視頻下載器 - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\ProgramFiles\Bywifi\bywifici.exe
O9 - Extra 'Tools' menuitem: Bywifi: 網路視頻下載器 - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\Program Files\Bywifi\bywifici.exe
O9 - Extra button: 參考資料 - {92780B25-18CC-41C8-B9BE-3C9C571A8263}- C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) -{e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\NetworkDiagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitemxpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -%windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683}- C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: WindowsMessenger - {FB5F1910-F110-11d2-BB9E-00C04F795683}- C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Bywifi: 網路視頻下載器 - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\ProgramFiles\Bywifi\bywifici.exe (HKCU)
O9 - Extra 'Tools' menuitem: Bywifi: 網路視頻下載器 - {09E90109-A9AA-4980-BCEF-76F8D924E902} - C:\ProgramFiles\Bywifi\bywifici.exe (HKCU)
O11 - Options group: [INTERNATIONAL]International
O16 - DPF:{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -http://fpdownload2.macromedia.co ... s/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\ProgramFiles\AVG\AVG2012\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\ProgramFiles\Common Files\AVG Secure Search\ViProtocolInstaller\9.0.1\ViProtocol.dll

[ 本帖最後由 toughdick 於 2012-1-18 09:37 PM 編輯 ]



實用相關搜尋: Spa Java Microsoft yahoo

TOP

先重新安裝 Google Chrome,看看能否解決。





TOP

引用:
原帖由 anlth2010 於 2012-1-19 01:05 AM 發表
先重新安裝 Google Chrome,看看能否解決。
試過安裝 Google Chrome,不能解決問題。



實用相關搜尋: Spa google

TOP

[隱藏]
好像不是有害的網站才對


實用相關搜尋: Spa

TOP

伸延閱讀
 提示:支持鍵盤翻頁 ←左 右→ 發新話題發佈投票

重要聲明:本討論區是以即時上載留言的方式運作,香港討論區對所有留言的真實性、完整性及立場等,不負任何法律責任。而一切留言之言論只代表留言者個人意 見,並非本網站之立場,讀者及用戶不應信賴內容,並應自行判斷內容之真實性。於有關情形下,讀者及用戶應尋求專業意見(如涉及醫療、法律或投資等問題)。 由於本討論區受到「即時上載留言」運作方式所規限,故不能完全監察所有留言,若讀者及用戶發現有留言出現問題,請聯絡我們。香港討論區有權刪除任何留言及拒絕任何人士上載留言 (刪除前或不會作事先警告及通知 ), 同時亦有不刪除留言的權利,如有任何爭議,管理員擁有最終的詮釋權 。用戶切勿撰寫粗言穢語、誹謗、渲染色情暴力或人身攻擊的言論,敬請自律。本網站保留一切法律權利。


Copyright©2003- Discuss.com.hk Limited. All Right Reserved.
版權所有,不得轉載。

10.0.1.3