当前位置:首页>>软件教程>>病毒安全>>新闻内容  
教你如何摆脱139cn.com的纠缠
作者:icech 发布时间:2004-10-15 17:16:51 | 【字体:

  前两天fish在QQ群上问,为什么我上网易聊天室(chat.163.com)总是跑到139cn.com这个网站上去?一开始我以为是他们DNS解析错误,或者被人修改了,后来仔细一问并不是那么回事。fish也是一个比较懂得计算机的人,一般病毒应该能找到注册表或者进程什么的问题,但是却没发现,用3721助手也不好使,看样子不是修改了IE的问题。那么,能将域名转到其他页面问题又在哪里呢?icech想到了windows 2000下面的Hosts文件(在WindowsXP系统里面也有)!

  当用户在浏览器中输入某个网站的域名之后,计算机并不像我们所想象的那样直接连接到Internet上的域名服务器进行解析,它首先会在硬盘中的hosts文件中进行查找,若找不到相应域名才会向Internet上的域名服务器申请解析,若找到相应的域名,系统就会直接按照hosts文件的设置将域名转换为IP地址并进行访问。由此可见,hosts文件实际上就相当于一个本地的DNS域名服务器。

  那么难道是修改了Hosts文件?先找到Hosts文件(Windows 2000下的路径是:C:\WINNT\system32\drivers\etc;Windows XP下的路径是C:\WINDOWS\system32\drivers\etc\hosts),打开一看,天呐,竟然被修改成如下的样子:

  被病毒修改的Hosts文件内容:

127.0.0.1 localhost
219.129.20.148 bliao.com
219.129.20.148 asiafriendfinder.com
219.129.20.148 www.hao123.com
219.129.20.148 hao123.com
219.129.20.148 hao123.net
219.129.20.148 www.hao123.net
219.129.20.148 www.hao222.net
219.129.20.148 www.hao222.com
219.129.20.148 www.v111.com
219.129.20.148 music.v111.com
219.129.20.148 goto.17173.com
219.129.20.148 www.xicu.com
219.129.20.148 www.haodx.com
219.129.20.148 www.haohz.com
219.129.20.148 www.265.com
219.129.20.148 www.dj99.com
219.129.20.148 www.dj99.net
219.129.20.148 265.com
219.129.20.148 stat.t2t2.com
219.129.20.148 www.qq530.com
219.129.20.148 www.tt67.com
219.129.20.148 ad.t2t2.com
219.129.20.148 www.yexr.com
219.129.20.148 link.fan8.net
219.129.20.148 www.ok816.com
219.129.20.148 www.3399.net
219.129.20.148 www.ads8.com
219.129.20.148 www.5566.net
219.129.20.148 www.t2t2.com
219.129.20.148 popad.qq.com
219.129.20.148 v.jsdownload.com
219.129.20.148 www.linktoad.com
219.129.20.148 www.caishow.com
219.129.20.148 sms1.ctn.com.cn
219.129.20.148 sms2.ctn.com.cn
219.129.20.148 sms3.ctn.com.cn
219.129.20.148 www.331122.com
219.129.20.148 mmpic.uni.cc
219.129.20.148 www.love34.com
219.129.20.148 www.free-movie.org
219.129.20.148 www.skyhits.com
219.129.20.148 www.rd18.com
219.129.20.148 tadsweb.tencent.com
219.129.20.148 www.vlike.com
219.129.20.148 www.chinasee.net
219.129.20.148 www.japansky.net
219.129.20.148 www.225.com.cn
219.129.20.148 ads.china.com
219.129.20.148 www.yes521.com
219.129.20.148 www.today6.com
219.129.20.148 www.h2004.com
219.129.20.148 www.movie4.com
219.129.20.148 www.rm88.com
219.129.20.148 www.qq300.com
219.129.20.148 www.qq500.com
219.129.20.148 www.av126.com
219.129.20.148 www.kissmm.com
219.129.20.148 www.cn808.net
219.129.20.148 www.hao168.com
219.129.20.148 www.mm91.com
219.129.20.148 www.huole.com
219.129.20.148 www.kan69.com
219.129.20.148 ulinkdir.tom.com
219.129.20.148 cpc.sohu.com
219.129.20.148 images.sohu.com
219.129.20.148 adv.pconline.com.cn
219.129.20.148 goto.sohu.com
219.129.20.148 images2.sohu.com
219.129.20.148 www.sexy-books.com
219.129.20.148 www.xxbooks.com
219.129.20.148 www.18it.com
219.129.20.148 www.cnxxx.com
219.129.20.148 www.18-girl.net
219.129.20.148 ad.tom.com
219.129.20.148 ad4.sina.com.cn
219.129.20.148 sina.allyes.com
219.129.20.148 adtaobao.allyes.com
219.129.20.148 smarttrade.allyes.com
219.129.20.148 tom.allyes.com
219.129.20.148 szwindow.allyes.com
219.129.20.148 eachnetmember.allyes.com
219.129.20.148 iplus.allyes.com
219.129.20.148 sinatest.allyes.com
219.129.20.148 casting9.allyes.com
219.129.20.148 yinsha.allyes.com
219.129.20.148 stockstar.allyes.com
219.129.20.148 www.001x.com
219.129.20.148 www.hksexweb.com
219.129.20.148 www.99adultx.com
219.129.20.148 www2.xfreehosting.com
219.129.20.148 www1.xfreehosting.com
219.129.20.148 www.w555.net
219.129.20.148 www.excitecity.com
219.129.20.148 www.0xing.com
219.129.20.148 sba.3322.net
219.129.20.148 www.zgxl.net
219.129.20.148 www.qqpic.com
219.129.20.148 webspacecn.com
219.129.20.148 www.yeapple.com
219.129.20.148 manage.link8.com
219.129.20.148 www.web888.org
219.129.20.148 www.432.cn
219.129.20.148 www.kan123.com
219.129.20.148 www.3tom.com
219.129.20.148 www.sotop.com
219.129.20.148 www3.7789.com
219.129.20.148 www.66036.com
219.129.20.148 www1.66036.com
219.129.20.148 www2.66036.com
219.129.20.148 www3.66036.com
219.129.20.148 www4.66036.com
219.129.20.148 www5.66036.com
219.129.20.148 www6.66036.com
219.129.20.148 www7.66036.com
219.129.20.148 www8.66036.com
219.129.20.148 www9.66036.com
219.129.20.148 www10.66036.com
219.129.20.148 tj4.7789.com
219.129.20.148 tj5.7789.com
219.129.20.148 tj6.7789.com
219.129.20.148 tj7.7789.com
219.129.20.148 www.7789.com
219.129.20.148 count.zhao123.com
219.129.20.148 count1.zhao123.com
219.129.20.148 count2.zhao123.com
219.129.20.148 count3.zhao123.com
219.129.20.148 count4.zhaocount.com
219.129.20.148 count5.zhaocount.com
219.129.20.148 count6.zhaocount.com
219.129.20.148 count7.zhaocount.com
219.129.20.148 count8.zhaocount.com
219.129.20.148 count9.zhaocount.com
219.129.20.148 count10.zhaocount.com
219.129.20.148 count11.zhaocount.com
219.129.20.148 tj1.mytongji.com
219.129.20.148 count1.99count.com
219.129.20.148 www.99count.com
219.129.20.148 bar.baidu.com
219.129.20.148 www2.7789.com
219.129.20.148 www.guang.org
219.129.20.148 www.dlmovie.com
219.129.20.148 www.91look.com
219.129.20.148 www.kan51.com
219.129.20.148 www.mewo.com
219.129.20.148 coolsite21.com
219.129.20.148 www.t3j4.com
219.129.20.148 www.yun8.com
219.129.20.148 film.yun8.com
219.129.20.148 www.wo123.com
219.129.20.148 www.da123.com
219.129.20.148 www.huole.com
219.129.20.148 www.1ya.cn
219.129.20.148 www.sleazydream.com
219.129.20.148 www.easypic2.com
219.129.20.148 serv.sexushost.com
219.129.20.148 www.xfreehosting.com
219.129.20.148 www.888txt.com
219.129.20.148 asiafriendfinder.com
219.129.20.148 www3.cool168.com
219.129.20.148 www2.cool168.com
219.129.20.148 www1.cool168.com
219.129.20.148 www.happy8.cn
219.129.20.148 www.topsex2k.com
219.129.20.148 topxxx.sexushost.com
219.129.20.148 www.cool168.com
219.129.20.148 www.s6.cn
219.129.20.148 popme.163.com
219.129.20.148 adclient.163.com
219.129.20.148 fadama.com
219.129.20.148 www.66vv.com
219.129.20.148 www.qqee.com
219.129.20.148 www.sohu123.com
219.129.20.148 www.xgmm.com
219.129.20.148 www.7t7t.com
219.129.20.148 www.cnimg.com
219.129.20.148 www.love34.com
219.129.20.148 cdn2.cnnic.cn
219.129.20.148 cool.vv66.com
219.129.20.148 www.vv66.com
219.129.20.148 www.freepicturepage.com
219.129.20.148 www.snasty.com
219.129.20.148 www.yourcage.com
219.129.20.148 www.shagadelic.com
219.129.20.148 xxxnite.com
219.129.20.148 www.qq163.com
219.129.20.148 www.qq163.net
219.129.20.148 www.superdown.com
219.129.20.148 web.114.com.cn
219.129.20.148 www.114.com.cn
219.129.20.148 www.real2000.org
219.129.20.148 www.91f.cn
219.129.20.148 wwww.tthao.com
219.129.20.148 www.91f.org
219.129.20.148 www.v23.com
219.129.20.148 cn.yimg.com
219.129.20.148 auto.search.msn.com
219.129.20.148 x2.51link.com
219.129.20.148 x1.51link.com
219.129.20.148 www.textlink.cn
219.129.20.148 stat.textclick.com
219.129.20.148 www.easyhere.com
219.129.20.148 www.xxx168.com
219.129.20.148 ad.cn.doubleclick.net
219.129.20.148 www.xchina.com
219.129.20.148 www.sex.com
219.129.20.148 www.3xcn.com
219.129.20.148 www.20girl.com
219.129.20.148 www.x365x.com
219.129.20.148 chat.263.net
219.129.20.148 chat.yinsha.com
219.129.20.148 chat.tom.com
219.129.20.148 chat.xilu.com
219.129.20.148 www.aliao.com
219.129.20.148 chat.163.com
219.129.20.148 www.haoliao.com
219.129.20.148 www.liaoliao.com
219.129.20.148 www.haoliao.net
219.129.20.148 www.haoliao.cn
219.129.20.148 www.qqliao.com
219.129.20.148 qqliao.com
219.129.20.148 www.qliao.com
219.129.20.148 www.loveliao.com
219.129.20.148 www.mmliao.com
219.129.20.148 mmliao.com
219.129.20.148 aliao.com
219.129.20.148 liaoliao.com
219.129.20.148 chat.qq.com
219.129.20.148 vchat.xaonline.com
219.129.20.148 www.loveliao.net
219.129.20.148 loveliao.net
219.129.20.148 www.chinamp3.com
219.129.20.148 www.9sky.com
219.129.20.148 www.sogua.com
219.129.20.148 sogua.com
219.129.20.148 www.99music.net
219.129.20.148 www.yzskdj.com
219.129.20.148 loveliao.com
219.129.20.148 haoliao.com
219.129.20.148 music.feifa.com
219.129.20.148 www.aisex.com
219.129.20.148 www.movie-down.com
219.129.20.148 www2.movie-down.com
219.129.20.148 movie-down.com
219.129.20.148 www.qqchat.cn
219.129.20.148 www.tt90.com
219.129.20.148 mysms.flymms.com
219.129.20.148 www.sjliao.com
219.129.20.148 www.amsterdamsexxx.com


  可以肯定是Hosts文件捣乱了!可能是139cn.com网站为了提高访问量,在网站种上了病毒,修改访问者机器的Hosts文件,以达到一些目的。现在网站这样的能人太多了,实在是佩服的很很。

  修改一下,成默认的样子:

  正常的Hosts文件内容:

# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
#      102.54.94.97     rhino.acme.com          # source server
#       38.25.63.10     x.acme.com              # x client host

127.0.0.1       localhost


  修改成以上的样子就没问题了,顺便介绍一下Hosts文件里面标注方式和说明,以便我们在今后用到Hosts文件时了解:

  在hosts文件中,带“#”的内容均为注释,只有最后一行“127.0.0.1 localhost”才是真正的域名解释内容,其中localhost表示本机的域名,而127.0.0.1则是本地计算机的IP地址,广大用户只需将某个网站的IP地址和它所对应的域名添加到文件末尾即可达到在本地计算机上对域名进行解析的目的。
文章来源:西部E网,本站原创
·清除autorun.inf病毒的批处理文件代码
·三步手工查杀Javqhc病毒最新变种
·Windows安全模式下另类杀毒方法
·“磁碟机”与“熊猫烧香”病毒对比
·对硬盘进行病毒检测的四种方法
·ntfs.dll病毒ntfs.dll木马机器狗解决方案
·“机器狗木马”病毒专杀工具下载和解决方案
·必备知识:手机“病毒”分析及查杀
·Sxs.exe病毒完全清理的方法
·清除木马Dropper.Win32.Small.apl病毒的方法