[求救] 不定時自動重開機的毒

看板AntiVirus (防毒)作者hihieveryone (想念你..)時間16年前 (2010/07/07 09:31)推噓1(1推 0噓 7→)

留言8則, 4人參與討論串1/1

1. 敘述問題：它就是會不定時自動開機掃也掃不到毒硬體也是去年暑假新買的 2. 系統資料：使用的作業系統（Windows XP）使用的防毒軟體 Trend 3. 分析報告： Combofix報告：http://sun.cis.scu.edu.tw/~92a39/upload/39943.txt Hijackthis ：http://sun.cis.scu.edu.tw/~92a39/upload/39944.txt SRENG ：http://sun.cis.scu.edu.tw/~92a39/upload/39945.txt 請各位大大幫我看一下這個系統目前該怎麼處理比較好呢? thx hal.dll hal.dll+2a00 0x806e5000 0x80705d00 0x00020d00 0x4802517f ntoskrnl.exe ntoskrnl.exe+74fcb 0x804d8000 0x806e5000 0x0020d000 0x4a784394 win32k.sys win32k.sys+2b0f 0xbf800000 0xbf9c3b80 0x001c3b80 0x4a8564c7 kdcom.dll 0xb85a8000 0xb85a9b80 0x00001b80 0x3b7d8346 BOOTVID.dll 0xb84b8000 0xb84bb000 0x00003000 0x3b7d8345 ACPI.sys 0xb7f79000 0xb7fa6500 0x0002d500 0x480252b1 WMILIB.SYS 0xb85aa000 0xb85ab100 0x00001100 0x3b7d878b pci.sys 0xb7f68000 0xb7f78600 0x00010600 0x480252bb isapnp.sys 0xb80a8000 0xb80b0e00 0x00008e00 0x480252b8 pciide.sys 0xb8670000 0xb8670d00 0x00000d00 0x3b7d83e5 PCIIDEX.SYS 0xb8328000 0xb832e180 0x00006180 0x4802539d MountMgr.sys 0xb80b8000 0xb80c2580 0x0000a580 0x48025371 ftdisk.sys 0xb7f49000 0xb7f67880 0x0001e880 0x3b7d8419 dmload.sys 0xb85ac000 0xb85ad700 0x00001700 0x3b7d8567 dmio.sys 0xb7f23000 0xb7f48100 0x00025100 0x4802549d PartMgr.sys 0xb8330000 0xb8334d00 0x00004d00 0x480253b0 VolSnap.sys 0xb80c8000 0xb80d4000 0x0000c000 0x480253bc atapi.sys 0xb7f0b000 0xb7f22900 0x00017900 0x4802539d iaStor.sys 0xb7e31000 0xb7f0b000 0x000da000 0x4a287809 disk.sys 0xb80d8000 0xb80e0e00 0x00008e00 0x480253ae CLASSPNP.SYS 0xb80e8000 0xb80f4180 0x0000c180 0x48025c05 fltMgr.sys 0xb7e11000 0xb7e30b00 0x0001fb00 0x480251da KSecDD.sys 0xb7dfa000 0xb7e10b00 0x00016b00 0x4a420b90 Ntfs.sys 0xb7d6d000 0xb7df9600 0x0008c600 0x48025be5 NDIS.sys 0xb7d40000 0xb7d6c980 0x0002c980 0x48025d03 Mup.sys 0xb7d26000 0xb7d3fb80 0x00019b80 0x48025c31 intelppm.sys 0xb8278000 0xb8281900 0x00009900 0x48025183 nv4_mini.sys 0xb3e94000 0xb4857040 0x009c3040 0x4b076341 VIDEOPRT.SYS 0xb3e80000 0xb3e93f00 0x00013f00 0x48025497 usbuhci.sys 0xb62f4000 0xb62f9080 0x00005080 0x480254ce USBPORT.SYS 0xb3e5c000 0xb3e7f200 0x00023200 0x480254ce usbehci.sys 0xb62ec000 0xb62f3600 0x00007600 0x480254ce HDAudBus.sys 0xb3e34000 0xb3e5c000 0x00028000 0x4295ef55 imapi.sys 0xb8318000 0xb8322480 0x0000a480 0x480253b9 cdrom.sys 0xb8118000 0xb8127600 0x0000f600 0x480253ad redbook.sys 0xb8128000 0xb8135780 0x0000d780 0x4802539b ks.sys 0xb3e11000 0xb3e33700 0x00022700 0x48025c12 Rtenicxp.sys 0xb3df4000 0xb3e10c80 0x0001cc80 0x4909b32c serial.sys 0xb8138000 0xb8146900 0x0000e900 0x48025be0 serenum.sys 0xb7cca000 0xb7ccdd80 0x00003d80 0x4802538c parport.sys 0xb3de0000 0xb3df3580 0x00013580 0x48025389 i8042prt.sys 0xb8148000 0xb8153980 0x0000b980 0x48025c67 kbdclass.sys 0xb83d8000 0xb83ddb00 0x00005b00 0x48025372 fsvga.sys 0xb7cc6000 0xb7cc8f80 0x00002f80 0x3b7d8531 audstub.sys 0xb87f0000 0xb87f0c00 0x00000c00 0x3b7d85bc rasl2tp.sys 0xb8158000 0xb8164880 0x0000c880 0x48025ccf ndistapi.sys 0xb7cc2000 0xb7cc4780 0x00002780 0x48025797 ndiswan.sys 0xb3dc9000 0xb3ddf580 0x00016580 0x48025d09 raspppoe.sys 0xb8168000 0xb8172200 0x0000a200 0x4802579b raspptp.sys 0xb7a1b000 0xb7a26d00 0x0000bd00 0x48025cd3 TDI.SYS 0xb83e0000 0xb83e4a80 0x00004a80 0x48025834 psched.sys 0xb3db8000 0xb3dc8e00 0x00010e00 0x48025764 msgpc.sys 0xb7a0b000 0xb7a13900 0x00008900 0x48025760 ptilink.sys 0xb83e8000 0xb83ec580 0x00004580 0x3b7d8371 raspti.sys 0xb83f0000 0xb83f4080 0x00004080 0x3b7d84c4 rdpdr.sys 0xb3d88000 0xb3db7e80 0x0002fe80 0x480251d2 termdd.sys 0xb79fb000 0xb7a04f00 0x00009f00 0x4802532c mouclass.sys 0xb83f8000 0xb83fd500 0x00005500 0x48025373 swenum.sys 0xb8642000 0xb8643100 0x00001100 0x48025378 update.sys 0xb3d2a000 0xb3d87f00 0x0005df00 0x48025372 mssmbios.sys 0xb7bcf000 0xb7bd2c80 0x00003c80 0x480252bd TM_CFW.sys 0xb3b72000 0xb3d2a000 0x001b8000 0x4a5da275 NDProxy.SYS 0xb79db000 0xb79e4e80 0x00009e80 0x48025798 usbhub.sys 0xb79bb000 0xb79c9880 0x0000e880 0x480254d0 USBD.SYS 0xb864e000 0xb864f280 0x00001280 0x3b7d8682 RtkHDAud.sys 0xb149a000 0xb1a72000 0x005d8000 0x4af01651 portcls.sys 0xb1476000 0xb1499a80 0x00023a80 0x48025ccc drmk.sys 0xb79ab000 0xb79b9b00 0x0000eb00 0x480254b8 Fs_Rec.SYS 0xb8658000 0xb8659f00 0x00001f00 0x3b7d8361 Null.SYS 0xb86d5000 0xb86d5b80 0x00000b80 0x3b7d82eb Beep.SYS 0xb865a000 0xb865b080 0x00001080 0x3b7d82e5 HIDPARSE.SYS 0xb8440000 0xb8446180 0x00006180 0x480254c2 vga.sys 0xb8448000 0xb844d200 0x00005200 0x48025498 mnmdd.SYS 0xb865c000 0xb865d080 0x00001080 0x3b7d8538 RDPCDD.sys 0xb865e000 0xb865f080 0x00001080 0x3b7d82c0 Msfs.SYS 0xb8450000 0xb8454a80 0x00004a80 0x480251c6 Npfs.SYS 0xb8458000 0xb845f880 0x00007880 0x480251c6 rasacd.sys 0xb7cd2000 0xb7cd4280 0x00002280 0x3b7d84cb ipsec.sys 0xb1443000 0xb1455600 0x00012600 0x48025cce tcpip.sys 0xb13ea000 0xb1442480 0x00058480 0x485b99ad netbt.sys 0xb13c2000 0xb13e9c00 0x00027c00 0x48025d1b ipnat.sys 0xb139c000 0xb13c1500 0x00025500 0x48025786 wanarp.sys 0xb799b000 0xb79a3700 0x00008700 0x48025790 afd.sys 0xb137a000 0xb139bd00 0x00021d00 0x48a40333 netbios.sys 0xb798b000 0xb7993780 0x00008780 0x48025741 tmtdi.sys 0xb1365000 0xb1379500 0x00014500 0x4a5da2f8 rdbss.sys 0xb133a000 0xb1364e80 0x0002ae80 0x48025ee6 mrxsmb.sys 0xb12a2000 0xb1311280 0x0006f280 0x4901afa3 Fips.SYS 0xb8178000 0xb8182d80 0x0000ad80 0x480251f7 hidusb.sys 0xb8594000 0xb8596880 0x00002880 0x480254c7 HIDCLASS.SYS 0xb81a8000 0xb81b1000 0x00009000 0x480254c5 mouhid.sys 0xb8598000 0xb859af80 0x00002f80 0x3b7d82fd Cdfs.SYS 0xb81b8000 0xb81c7900 0x0000f900 0x48025b8d dump_iaStor.sys 0xb11c8000 0xb12a2000 0x000da000 0x4a287809 Dxapi.sys 0xb721a000 0xb721c900 0x00002900 0x3b7d843f watchdog.sys 0xb84b0000 0xb84b4500 0x00004500 0x480254ab dxg.sys 0xbd000000 0xbd011600 0x00011600 0x48025323 dxgthk.sys 0xb873e000 0xb873ed00 0x00000d00 0x3b7d8438 nv4_disp.dll 0xbd012000 0xbd60fe00 0x005fde00 0x4b0762f0 tmpreflt.sys 0xb8298000 0xb82a5000 0x0000d000 0x4b18ca46 vsapint.sys 0xb083b000 0xb097c460 0x00141460 0x4b18c263 ATMFD.DLL 0xbffa0000 0xbffe5c00 0x00045c00 0x480385ae tmxpflt.sys 0xb07ca000 0xb0813000 0x00049000 0x4b18ca4a ndisuio.sys 0xb0817000 0xb081a900 0x00003900 0x4802573d wdmaud.sys 0xb0495000 0xb04a9480 0x00014480 0x48025c3e sysaudio.sys 0xb61da000 0xb61e8d80 0x0000ed80 0x48025beb mrxdav.sys 0xb0210000 0xb023c180 0x0002c180 0x480251ca ParVdm.SYS 0xb85e6000 0xb85e7a80 0x00001a80 0x3b7d836d tmcomm.sys 0xb01e4000 0xb0210000 0x0002c000 0x4a519551 srv.sys 0xb0052000 0xb00a3880 0x00051880 0x4940f203 HTTP.sys 0xafca1000 0xafce1e00 0x00040e00 0x4adde33f tmevtmgr.sys 0xb0124000 0xb0133000 0x0000f000 0x4a519554 tmactmon.sys 0xaf87b000 0xaf891000 0x00016000 0x4a519558 kmixer.sys 0xaf4b5000 0xaf4df180 0x0002a180 0x480254b3 -- 嗨嗨每個人我的專長:迅速解毒當機處理資料救援取回帳號系統規劃資訊整合系統規劃:經濟,高效能,低污染,節約能源,(降低噪音震動,電磁波,廢熱,積塵,輻射) 省空間,使用舒適感佳,溫暖的鍵盤與滑鼠 (抗手冰冷) 鄉民說收卡是為了培養EQ -- ※ 發信站: 批踢踢實業坊(ptt.cc) ◆ From: 219.70.211.14