瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 高手帮我看下日志,电脑关机都成问题!谢了【求助】
灰飞 - 2006-6-9 12:54:00
Logfile of HijackThis v1.99.1
Scan saved at 11:30:42, on 2006-6-9
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
D:\Program Files\Rising\Rav\Ravmond.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
D:\Program Files\Rising\Rav\RavStub.exe
D:\新建文件夹 (3)\security suite\ewidoctrl.exe
D:\新建文件夹 (3)\security suite\ewidoguard.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\CNNIC\Cdn\cdnup.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe
D:\Program Files\Rising\Rav\RavTask.exe
D:\Program Files\Rising\Rav\Ravmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Tencent\QQ\QQ.exe
C:\Program Files\Tencent\QQ\TIMPlatform.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\svchost.exe
D:\卡卡\HijackThis.exe

R3 - URLSearchHook: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
R3 - URLSearchHook: (no name) - {B0A6E7D9-FABE-442E-A9D9-59C40EFC345B} - C:\WINDOWS\system32\Rssnrc.dll
R3 - URLSearchHook: (no name) - {55A97235-1DE9-43B5-A362-B791B3BDEACA} - C:\WINDOWS\system32\Nfleu.dll
R3 - URLSearchHook: (no name) - {0A7306C3-B34C-4C76-8383-C6DAC114C66B} - C:\WINDOWS\system32\Ipuhf.dll
R3 - URLSearchHook: (no name) - {4528003C-371E-4E1A-902B-5A4BA7FC8BDB} - C:\WINDOWS\system32\Jlvj.dll
R3 - URLSearchHook: (no name) - {16CF9218-4ADA-4427-BA85-7A422F1CA685} - C:\WINDOWS\system32\Gjfckn.dll
R3 - URLSearchHook: (no name) - {F3983F04-D017-49B6-B51F-A865895AA714} - C:\WINDOWS\system32\Uaatr.dll
R3 - URLSearchHook: (no name) - {3AAB2CBE-A50A-4B81-BA8E-CF2467C5D6AE} - C:\WINDOWS\system32\Kvhafi.dll
R3 - URLSearchHook: (no name) - {4D796A59-5672-4A1F-9F30-A1668A080336} - C:\WINDOWS\system32\Nagak.dll
R3 - URLSearchHook: (no name) - {3181A574-AA97-4037-BE17-CF3ABF0734D1} - C:\WINDOWS\system32\Uplfek.dll
R3 - URLSearchHook: (no name) - {082AE995-C7DA-4806-A657-A6458E633E9B} - C:\WINDOWS\system32\Cbpj.dll
R3 - URLSearchHook: (no name) - {216A4199-86AD-4005-911A-EB0C39001DFD} - C:\WINDOWS\system32\Uumjdt.dll
R3 - URLSearchHook: (no name) - {B99FDB10-F55B-43FE-9D3F-3A6528F274CD} - C:\WINDOWS\system32\Tysr.dll
R3 - URLSearchHook: (no name) - {4DD6D93F-7DFD-43E5-BDFF-21AB98B0B811} - C:\WINDOWS\system32\Gjyen.dll
R3 - URLSearchHook: (no name) - {30547303-F992-457B-A8AB-DE785658A53A} - C:\WINDOWS\system32\Qiqwiv.dll
R3 - URLSearchHook: (no name) - {1AB30814-0D61-4D24-A56C-6D7E625B97D0} - C:\WINDOWS\system32\Qkrzv.dll
R3 - URLSearchHook: (no name) - {C737F48B-6B46-4B9D-AC91-B876D0218836} - C:\WINDOWS\system32\Gadlqq.dll
R3 - URLSearchHook: (no name) - {B76DC1F1-D233-4541-8E0D-F905424BA6F9} - C:\WINDOWS\system32\Vxaev.dll
R3 - URLSearchHook: (no name) - {C2990D4F-9E50-4BCC-A1C7-38FE4332DE3C} - C:\WINDOWS\system32\Jfmtgh.dll
R3 - URLSearchHook: (no name) - {1085F9AF-7427-4ADE-A54A-BAED1FDD9B57} - C:\WINDOWS\system32\Uqovz.dll
R3 - URLSearchHook: (no name) - {6EE552B3-E008-4E05-A59F-9C4EF773A58A} - C:\WINDOWS\system32\Nnzbi.dll
R3 - URLSearchHook: Tencent SearchHook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
R3 - URLSearchHook: (no name) - {F450B828-9F9A-411A-A3A9-77EA99691CD8} - C:\WINDOWS\system32\Dyacve.dll
R3 - URLSearchHook: (no name) - {653E5CE4-3A31-443E-9832-E7F7234E3601} - C:\WINDOWS\system32\Bmxusb.dll
R3 - URLSearchHook: (no name) - {5BB02FB7-340B-406C-A031-2B519DDA86D8} - C:\WINDOWS\system32\Tgwdkv.dll
R3 - URLSearchHook: (no name) - {1E2EC18B-676E-4A0B-8674-D54FD092CF00} - C:\WINDOWS\system32\Eiwwq.dll
R3 - URLSearchHook: (no name) - {4B12882F-E404-4FB4-B4C5-2BBF02C05E8E} - C:\WINDOWS\system32\Hrjh.dll
R3 - URLSearchHook: (no name) - {E8A1EBF8-F350-458A-A6C0-8A4D4AB0557A} - C:\WINDOWS\system32\Anxrk.dll
R3 - URLSearchHook: (no name) - {06897D11-D341-4667-B024-916549CAEBB9} - C:\WINDOWS\system32\Jzhf.dll
R3 - URLSearchHook: (no name) - {B554DE46-58CD-4113-9FB2-AB465F96B3DB} - C:\WINDOWS\system32\Vrgsa.dll
R3 - URLSearchHook: (no name) - {FDC1104A-27B1-43C4-B29A-03A196403DEA} - C:\WINDOWS\system32\Uxdyj.dll
R3 - URLSearchHook: (no name) - {FA04B870-1AED-41D7-A0A9-266928D56837} - C:\WINDOWS\system32\Hmfctv.dll
R3 - URLSearchHook: (no name) - {F0A05497-8A62-4446-B402-15885421E69B} - C:\WINDOWS\system32\Opassi.dll
R3 - URLSearchHook: (no name) - {14B1092B-4829-4B8A-8130-08E62909BBB7} - C:\WINDOWS\system32\Ycdjsw.dll
R3 - URLSearchHook: (no name) - {4A360DE3-181F-426F-B5FD-3B34DC37F736} - C:\WINDOWS\system32\Fvos.dll
R3 - URLSearchHook: (no name) - {1B81B79D-D380-41CA-B8FE-AE58BF02FDE4} - C:\WINDOWS\system32\Upwm.dll
R3 - URLSearchHook: (no name) - {891F7DA3-9C90-45AB-90C5-6A644350663D} - C:\WINDOWS\system32\Hsizn.dll
R3 - URLSearchHook: (no name) - {94E9065E-C5C4-4A5A-A5D8-58CFBB4AC17F} - C:\WINDOWS\system32\Ifpdrx.dll
R3 - URLSearchHook: (no name) - {E75E2340-1992-4F1B-BEB6-A4DF2F08D453} - C:\WINDOWS\system32\Rtruiv.dll
R3 - URLSearchHook: (no name) - {7AFD46F2-78B2-491E-B9A8-63A7272B2332} - C:\WINDOWS\system32\Sgjpq.dll
R3 - URLSearchHook: (no name) - {96FF93B2-E82B-4288-9E1A-CF8582D21F08} - C:\WINDOWS\system32\Yxlbm.dll
R3 - URLSearchHook: (no name) - {852B127F-4250-4A71-9718-2C21E62EFAD4} - C:\WINDOWS\system32\Qwapk.dll
R3 - URLSearchHook: (no name) - {E4669581-714D-4C92-BB77-E0B13580667C} - C:\WINDOWS\system32\Lrqyzs.dll
R3 - URLSearchHook: (no name) - {8F2532CD-946B-4C45-9656-B6DAA6D9121F} - C:\WINDOWS\system32\Eahk.dll
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: (no name) - {06897D11-D341-4667-B024-916549CAEBB9} - C:\WINDOWS\system32\Jzhf.dll
O2 - BHO: (no name) - {082AE995-C7DA-4806-A657-A6458E633E9B} - C:\WINDOWS\system32\Cbpj.dll
O2 - BHO: (no name) - {0A7306C3-B34C-4C76-8383-C6DAC114C66B} - C:\WINDOWS\system32\Ipuhf.dll
O2 - BHO: Tencent Browser Helper - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: (no name) - {1085F9AF-7427-4ADE-A54A-BAED1FDD9B57} - C:\WINDOWS\system32\Uqovz.dll
O2 - BHO: (no name) - {14B1092B-4829-4B8A-8130-08E62909BBB7} - C:\WINDOWS\system32\Ycdjsw.dll
O2 - BHO: (no name) - {16CF9218-4ADA-4427-BA85-7A422F1CA685} - C:\WINDOWS\system32\Gjfckn.dll
O2 - BHO: (no name) - {1AB30814-0D61-4D24-A56C-6D7E625B97D0} - C:\WINDOWS\system32\Qkrzv.dll
O2 - BHO: (no name) - {1B81B79D-D380-41CA-B8FE-AE58BF02FDE4} - C:\WINDOWS\system32\Upwm.dll
O2 - BHO: (no name) - {1E2EC18B-676E-4A0B-8674-D54FD092CF00} - C:\WINDOWS\system32\Eiwwq.dll
O2 - BHO: (no name) - {216A4199-86AD-4005-911A-EB0C39001DFD} - C:\WINDOWS\system32\Uumjdt.dll
O2 - BHO: XqgCgukr Class - {2EC5B8AD-B0E0-0266-535A-59D999400226} - C:\WINDOWS\DOWNLO~1\kdbyw.dll
O2 - BHO: (no name) - {30547303-F992-457B-A8AB-DE785658A53A} - C:\WINDOWS\system32\Qiqwiv.dll
O2 - BHO: (no name) - {3181A574-AA97-4037-BE17-CF3ABF0734D1} - C:\WINDOWS\system32\Uplfek.dll
O2 - BHO: Yahoo!Photo - {33BBE430-0E42-4f12-B075-8D21ACB10DCB} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll
O2 - BHO: Anti Fish - {38928D50-8A48-44C2-945F-D2F23F771410} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll
O2 - BHO: (no name) - {3AAB2CBE-A50A-4B81-BA8E-CF2467C5D6AE} - C:\WINDOWS\system32\Kvhafi.dll
O2 - BHO: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O2 - BHO: (no name) - {4528003C-371E-4E1A-902B-5A4BA7FC8BDB} - C:\WINDOWS\system32\Jlvj.dll
O2 - BHO: (no name) - {4A360DE3-181F-426F-B5FD-3B34DC37F736} - C:\WINDOWS\system32\Fvos.dll
O2 - BHO: (no name) - {4B12882F-E404-4FB4-B4C5-2BBF02C05E8E} - C:\WINDOWS\system32\Hrjh.dll
O2 - BHO: (no name) - {4D796A59-5672-4A1F-9F30-A1668A080336} - C:\WINDOWS\system32\Nagak.dll
O2 - BHO: (no name) - {4DD6D93F-7DFD-43E5-BDFF-21AB98B0B811} - C:\WINDOWS\system32\Gjyen.dll
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: (no name) - {55A97235-1DE9-43B5-A362-B791B3BDEACA} - C:\WINDOWS\system32\Nfleu.dll
O2 - BHO: (no name) - {5BB02FB7-340B-406C-A031-2B519DDA86D8} - C:\WINDOWS\system32\Tgwdkv.dll
O2 - BHO: CdnForIE Class - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
O2 - BHO: (no name) - {653E5CE4-3A31-443E-9832-E7F7234E3601} - C:\WINDOWS\system32\Bmxusb.dll
O2 - BHO: MMSAssist - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - C:\PROGRA~1\MMSASS~1\Mmsass~1.dll (file missing)
O2 - BHO: stdup - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - C:\WINDOWS\SYSTEM32\stdup.dll
O2 - BHO: (no name) - {6EE552B3-E008-4E05-A59F-9C4EF773A58A} - C:\WINDOWS\system32\Nnzbi.dll
O2 - BHO: BandIE Class - {77FEF28E-EB96-44FF-B511-3185DEA48697} - C:\PROGRA~1\baidu\bar\baidubar.dll
O2 - BHO: (no name) - {7AFD46F2-78B2-491E-B9A8-63A7272B2332} - C:\WINDOWS\system32\Sgjpq.dll
O2 - BHO: (no name) - {852B127F-4250-4A71-9718-2C21E62EFAD4} - C:\WINDOWS\system32\Qwapk.dll
O2 - BHO: (no name) - {891F7DA3-9C90-45AB-90C5-6A644350663D} - C:\WINDOWS\system32\Hsizn.dll
O2 - BHO: (no name) - {8F2532CD-946B-4C45-9656-B6DAA6D9121F} - C:\WINDOWS\system32\Eahk.dll
O2 - BHO: (no name) - {94E9065E-C5C4-4A5A-A5D8-58CFBB4AC17F} - C:\WINDOWS
1
查看完整版本: 高手帮我看下日志,电脑关机都成问题!谢了【求助】
© 2000 - 2025 Rising Corp. Ltd.