瑞星卡卡安全论坛

首页 » 技术交流区 » 系统软件 » 这两天机器老蓝屏,貌似中毒?跪求大神帮忙啊
无奈啊老中病毒 - 2012-5-23 21:02:00
Logfile of HijackThis v1.99.1
Scan saved at 20:52:59, on 2012-5-23
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\program files\kingsoft\kingsoft antivirus\kxescore.exe
C:\Program Files\KSafe\KSafeSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\program files\kingsoft\kingsoft antivirus\kxetray.exe
C:\Program Files\KSafe\KSafeTray.exe
C:\WINDOWS\system32\ctfmon.exe
D:\Windows.old\Program Files\Tencent\QQ\Bin\TXPlatform.exe
D:\Windows.old\Program Files\Tencent\QQ\Bin\QQ.exe
D:\Windows.old\Program Files\Tencent\QQ\Bin\QQExternal.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Tencent\QQDOWN~1\QQDownload.exe
D:\My Documents\HijackThis.exe
O2 - BHO: QQCycloneHelper - {00000000-12C9-4305-82F9-43058F20E8D2} - C:\PROGRA~1\Tencent\QQDOWN~1\QQIEHE~1.DLL
O2 - BHO: QMWSBho - {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} - D:\Windows.old\Program Files\Tencent\QQPCMgr\6.7.2230.202\TSWebMon.dat
O2 - BHO: XunleiBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.2.3188.dll
O4 - HKLM\..\Run: [kxesc] "c:\program files\kingsoft\kingsoft antivirus\kxetray.exe" -autorun
O4 - HKLM\..\Run: [KSafeTray] "C:\Program Files\KSafe\KSafeTray.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &使用&迅雷下载 - C:\Program Files\Thunder Network\Thunder\BHO\geturl.htm
O8 - Extra context menu item: &使用&迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\BHO\GetAllUrl.htm
O8 - Extra context menu item: &使用&迅雷离线下载 - C:\Program Files\Thunder Network\Thunder\BHO\OfflineDownload.htm
O8 - Extra context menu item: &使用QQ旋风下载 - C:\Program Files\Tencent\QQDownload\geturl.htm
O8 - Extra context menu item: &使用QQ旋风下载全部链接 - C:\Program Files\Tencent\QQDownload\getAllurl.htm
O8 - Extra context menu item: &使用QQ旋风离线下载 - C:\Program Files\Tencent\QQDownload\xfofflinedown.htm
O8 - Extra context menu item: 使用迅雷看看播放器播放 - C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\core\program\XmpIEMenu.htm
O9 - Extra button: 浩方电竞平台 - {0A155D3C-68E2-4215-A47A-E800A446447A} - (no file)
O9 - Extra button: 视频下载到手机 - {9A0B0581-B14C-4d09-A3C6-7142D9A2CACC} - C:\Program Files\WandouJia\openwdj.html
O9 - Extra 'Tools' menuitem: 视频下载到手机 - {9A0B0581-B14C-4d09-A3C6-7142D9A2CACC} - C:\Program Files\WandouJia\openwdj.html
O10 - Unknown file in Winsock LSP: c:\windows\system32\gamelsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\gamelsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\gamelsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\gamelsp.dll
O11 - Options group: [INTERNATIONAL] International
O16 - DPF: {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} (AxInputControl Class) - https://b2c.icbc.com.cn/icbc/newperbank/AxSafeControls.cab
O18 - Protocol: mbox - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: mboxflash - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: BrowserDataServices - Kingsoft Internet Security - C:\Program Files\Internet Explorer\BrowserDataServices.exe
O23 - Service: Display Desktop 32 Service - Unknown owner - C:\WINDOWS\system32\vdesk32.exe
O23 - Service: DTLService - 深圳市驱动人生软件技术有限公司 - C:\Program Files\DriveTheLife2012\DTLService.exe
O23 - Service: KSafe service (KSafeSvc) - Unknown owner - C:\Program Files\KSafe\KSafeSvc.exe" -svc (file missing)
O23 - Service: KU6媒体加速服务 - Unknown owner - C:\Program Files\Ku6_Booster\Ku6_Booster.exe
O23 - Service: Kingsoft Core Service (kxescore) - Unknown owner - c:\program files\kingsoft\kingsoft antivirus\kxescore.exe" /service kxescore (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: QQPCMgr RTP Service (QQPCRTP) - Unknown owner - D:\Program Files\Tencent\QQPCMgr\6.7.2230.202\QQPCRtp.exe (file missing)
O23 - Service: Rsd Service (RsMgrSvc) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\RSD\RsMgrSvc.exe
O23 - Service: SddSUpdate - Unknown owner - C:\Program Files\SddSUpdate\SddSUpdate.exe
O23 - Service: 盛大在线自动更新服务 (SdDUpdService) - Unknown owner - C:\Program Files\SdDUpdService\SdDUpdService.exe

用户系统信息:Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; QQDownload 691; .NET CLR 2.0.50727; KB974488)
ADL - 2012-5-23 23:38:00
建议用一个杀软 一个P2P下载软件
1
查看完整版本: 这两天机器老蓝屏,貌似中毒?跪求大神帮忙啊
© 2000 - 2024 Rising Corp. Ltd.