一例典型的IFEO劫持/症状表现为某些EXE文件打不开

>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll, Adobe Systems Incorporated>
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll, Adobe Systems Incorporated>
[IeCatch2 Class]
  {A5366673-E8CA-11D3-9CD9-0090271D075B} <C:PROGRA~1FLASHGETjccatch.dll, Amaze Soft>
[AcroIEToolbarHelper Class]
  {AE7CD045-E861-484F-8273-0445EE161910} <C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll, Adobe Systems Incorporated>
[NavigatMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:PROGRA~1360safesafemonsafemon.dll, >
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:PROGRA~1FLASHGETfgiebar.dll, Amaze Soft>
[使用网际快车下载]
  <C:Program FilesFlashGetjc_link.htm, N/A>
[使用网际快车下载全部链接]
  <C:Program FilesFlashGetjc_all.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:PROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000, N/A>
[导出当前页到超星阅览器(&A)]
  <C:Program FilesSSREADER36ss_all.htm, N/A>
[导出选中部分到超星阅览器(&S)]
  <C:Program FilesSSREADER36ss_select.htm, N/A>
[转换为 Adobe PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换为现有 PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppend.html, N/A>
[转换选定的链接为 Adobe PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A>
[转换选定的链接为现有 PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A>
[转换选项为 Adobe PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换选项为现有 PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppend.html, N/A>
[转换链接目标为 Adobe PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换链接目标为现有 PDF]
  <res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIEAppend.html, N/A>
==================================
正在运行的进程
[PID: 604][SystemRootSystem32smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 664][??C:WINDOWSsystem32csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 688][??C:WINDOWSsystem32winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:WINDOWSsystem32msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 732][C:WINDOWSsystem32services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 744][C:WINDOWSsystem32lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 896][C:WINDOWSsystem32svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 956][C:WINDOWSsystem32svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1020][C:WINDOWSSystem32svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1104][C:WINDOWSsystem32svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1168][C:WINDOWSsystem32svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1408][C:WINDOWSsystem32spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:WINDOWSsystem32AdobePDF.dll]  [Adobe Systems Incorporated., 7.0.0.00]
    [C:WINDOWSsystem32MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:Program FilesAdobeAcrobat 7.0DistillrAdistRes.CHS]  [, ]
    [C:WINDOWSsystem32mdimon.dll]  [Microsoft Corporation, 11.3.1897.0]
    [C:WINDOWSSystem32spoolPRTPROCSW32X86mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
[PID: 1644][C:WINDOWSExplorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:WINDOWSsystem32msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.0.2004121400]
    [C:WINDOWSsystem32MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:PROGRA~1FLASHGETjccatch.dll]  [Amaze Soft, 1, 1, 4, 0]
    [C:Program FilesAdobeAcrobat 7.0ActiveXPDFShell.CHS]  [Adobe Systems, Inc., 7.0.0.0]
    [C:Program FilesMicrosoft OfficeOFFICE11msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:WINDOWSsystem32mp3infp.dll]  [win32lab.com, 2.44.3.0]
    [C:Program FilesAdobeAcrobat 7.0ActiveXPDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:PROGRA~1360safesafemonsafemon.dll]  [, 3, 2, 0, 1001]
    [C:Program FilesUnlockerUnlockerCOM.dll]  [N/A, ]
    [C:Program FilesWinRARrarext.dll]  [N/A, ]
    [C:Program FilesIDM Computer SolutionsUltraEdit-32ue32ctmn.dll]  [, 1, 0, 0, 2]
    [C:Program FilesKaspersky LabKaspersky Anti-Virus 6.0shellex.dll]  [Kaspersky Lab, 6.0.0.299]
    [C:Program FilesAdobeAcrobat 7.0Acrobat ElementsContextMenu.dll]  [Adobe Systems Inc., 7.0.0.2004121400]
    [C:WINDOWSsystem32MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:WINDOWSsystem32MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:WINDOWSsystem32MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:Program FilesAdobeAcrobat 7.0Acrobat ElementsContextMenu.chs]  [Adobe Systems Inc., 7.0.0.2004121400]
[PID: 1760][C:WINDOWSsystem32igfxtray.exe]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32hccutils.DLL]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32igfxsrvc.dll]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32igfxres.dll]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32igfxress.dll]  [Intel Corporation, 3.0.0.4704]
[PID: 1768][C:WINDOWSsystem32hkcmd.exe]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32hccutils.DLL]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32igfxsrvc.dll]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32igfxres.dll]  [Intel Corporation, 3.0.0.4704]
[PID: 1776][C:WINDOWSsystem32igfxpers.exe]  [Intel Corporation, 3.0.0.4704]
    [C:WINDOWSsystem32igfxsrvc.dll]  [Intel Corporation, 3.0.0.4704]
[PID: 1836][C:WINDOWSRTHDCPL.EXE]  [Realtek Semiconductor Corp., 2.0.9.8]
    [C:WINDOWSsystem32msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1920][C:Program FilesAdobeAcrobat 7.0DistillrAcrotray.exe]  [Adobe Systems Inc., 6.0.1.2004121400]
    [C:Program FilesAdobeAcrobat 7.0DistillrAcrotray.chs]  [Adobe Systems Inc., 6.0.0.0]
[PID: 1928][C:WINDOWSsystem32ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1976][C:Program FilesRainlendarRainlendar.exe]  [N/A, ]
    [C:Program FilesRainlendarRainlendar.dll]  [, 0, 19, 3, 0]
    [C:WINDOWSsystem32MAPI32.dll]  [Microsoft Corporation, 1.0.2536.0 (XPClient.010817-1148)]
[PID: 660][C:WINDOWSsystem32nutsrv4.exe]  [DataFocus, Inc., 4.50.0000]
    [C:WINDOWSsystem32nutmsg4.dll]  [DataFocus, Inc., 4.50.0000]
[PID: 1460][C:Program FileslotusnotesNLNOTES.EXE]  [IBM Corp, 6.5.30.4258]
    [C:Program Fileslotusnotesnnotesws.dll]  [IBM Corp, 6.5.30.4258]
    [C:Program Fileslotusnotesnnotes.dll]  [IBM Corp, 6.5.30.4258]
    [C:Program Fileslotusnotesnxmlpar.dll]  [IBM Corp, 6.5.30.4258]
    [C:Program Fileslotusnotesnxmlcommon.dll]  [IBM Corp, 6.5.30.4258]
    [C:Program Fileslotusnotesjs32.dll]  [IBM Corp, 6.5.30.4258]
    [C:Program FileslotusnotesNLSCCSTR.DLL]  [IBM Corp, 6.5.30.4258]
    [C:Program Fileslotusnotesndgts.dll]  [IBM Corp, 6.5.30.4258]
    [C:Program FileslotusnotesLTOUIN22.dll]  [Lotus Development Corporation., 2.2.0.8911]
    [C:Program Fileslotusnotesnplugins.dll]  [IBM Corp, 6.5.30.

分页：1 [2] 3