Logfile of HijackThis v1.99.1
Scan saved at 21:26:32, on 2007-3-6
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\KAV2006\KWatch.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Rundll32.exe
C:\KAV2006\KPfwSvc.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\VM303_STI.EXE
C:\KAV2006\KAVStart.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe
C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\MSNShell\BIN\MSNShell.exe
C:\KAV2006\KPFW32.EXE
C:\KAV2006\KMailMon.EXE
C:\Program Files\ChinaNet\VnetClient.exe
C:\Program Files\QQ2006\QQ.exe
C:\Program Files\QQ2006\TIMPlatform.exe
C:\Program Files\QQ2006\QQ.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Internet Explorer\iexplore.exe
F:\新建文件夹\新建文件夹\非主流\WinRAR.exe
C:\DOCUME~1\new\LOCALS~1\Temp\Rar$EX53.766\HijackThis.exe
參考答案:唔,没事,唯一可以算作“病毒”的,就是雅虎助手了。自己下个专杀工具让它滚蛋吧^o^
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe
C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe
(其中有雅虎著名的双Rundll32保护,即结束任意一个另一个会将其自动开启)
用360修复即可(360是雅虎的前任头头“从良”后制作的(⌒o⌒))
