瑞星卡卡安全论坛技术交流区系统软件 高手帮忙:不能上网了(附扫描日志)

1   1  /  1  页   跳转

高手帮忙:不能上网了(附扫描日志)

高手帮忙:不能上网了(附扫描日志)

早晨还用的好好的。下午网络连接是成了空的,上午莫名其妙死过两次机。上午用瑞星防火墙扫描修补了漏洞。昨天用瑞星(病毒库最新)没有杀出毒来。之前网速比较慢,但是连接是没有问题的。
  
  Logfile of HijackThis v1.99.1
  Scan saved at 15:41:57, on 2006-11-14
  Platform: Windows XP SP2 (WinNT 5.01.2600)
  MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
  
  Running processes:
  C:\WINDOWS\System32\smss.exe
  C:\WINDOWS\system32\winlogon.exe
  C:\WINDOWS\system32\services.exe
  C:\WINDOWS\system32\lsass.exe
  C:\WINDOWS\system32\svchost.exe
  D:\ruanjian\瑞星\Rising\Rav\CCenter.exe
  C:\WINDOWS\System32\svchost.exe
  C:\WINDOWS\system32\spoolsv.exe
  C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
  D:\ruanjian\瑞星\Rising\Rav\RavMonD.exe
  C:\WINDOWS\Explorer.EXE
  D:\ruanjian\瑞星\Rising\Rav\RavTask.exe
  C:\WINDOWS\system32\ctfmon.exe
  C:\WINDOWS\system32\Tablet.exe
  D:\ruanjian\瑞星\Rising\Rav\RavStub.exe
  C:\WINDOWS\system32\wuauclt.exe
  D:\ruanjian\ha_hijackthis_1991\HijackThis.exe
  
  R3 - URLSearchHook: (no name) - {982CB676-38F0-4D9A-BB72-D9371ABE876E} - (no file)
  O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v4.dll
  O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
  O2 - BHO: PneAadcn Class - {0F49CCE6-6970-1742-6618-6572C67B78BE} - C:\WINDOWS\DOWNLO~1\qzsgwe.dll
  O2 - BHO: (no name) - {2E7D3330-EB94-4518-B0FE-E05379A5C1DA} - (no file)
  O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\ruanjian\新建文件夹\QQIEHelper.dll
  O2 - BHO: (no name) - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - (no file)
  O2 - BHO: std software - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - (no file)
  O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - (no file)
  O3 - Toolbar: (no name) - {2E7D3330-EB94-4518-B0FE-E05379A5C1DA} - (no file)
  O3 - Toolbar: 金山快译(&K) - {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} - D:\ruanjian\金山\快译\IEBand.dll (file missing)
  O4 - HKLM\..\Run: [RavTask] "D:\ruanjian\瑞星\Rising\Rav\RavTask.exe" -system
  O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
  O4 - HKLM\..\Run: [systray] c:\windows\system32\systray.exe
  O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
  O8 - Extra context menu item: >> 彩信发送 << - res://C:\Program Files\MMSAssist\Mmsass~1.dll/mms.htm
  O8 - Extra context menu item: &使用迅雷下载 - D:\ruanjian\thunder\geturl.htm
  O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\ruanjian\thunder\getAllurl.htm
  O8 - Extra context menu item: 上传到QQ网络硬盘 - D:\ruanjian\qq\AddToNetDisk.htm
  O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
  O8 - Extra context menu item: 添加到QQ自定义面板 - D:\ruanjian\qq\AddPanel.htm
  O8 - Extra context menu item: 添加到QQ表情 - D:\ruanjian\qq\AddEmotion.htm
  O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\ruanjian\qq\SendMMS.htm
  O9 - Extra button: Web反病毒保护 - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - D:\du\kav6.sch\scieplugin.dll (file missing)
  O9 - Extra button: TOL24 - {345ff7d8-2364-4ef7-889b-7d3c1d0bd342} - http://www.TOL24.com (file missing)
  O9 - Extra button: 常用网址 - {36B39F01-7B48-44AD-A165-5849CD8EF562} - C:\WINDOWS\system32\SHDOCVW.DLL
  O9 - Extra button: (no name) - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - C:\WINDOWS\system32\shdocvw.dll
  O9 - Extra 'Tools' menuitem: MMSAssist工具条设置 - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - C:\WINDOWS\system32\shdocvw.dll
  O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\ruanjian\qq\QQ.EXE (file missing)
  O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\ruanjian\qq\QQ.EXE (file missing)
  O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\ruanjian\新建文件夹\QQIEHelper.dll
  O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\ruanjian\新建文件夹\QQIEHelper.dll
  O10 - Unknown file in Winsock LSP: c:\windows\system32\cdnns.dll
  O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
  O16 - DPF: {737D14F8-4090-11D4-AE0E-0010830243BD} (SysVerChk Control) - file://C:\Program Files\AutoCAD 2002\SysVerChk.ocx
  O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (AcPreview 控件) - file://C:\Program Files\AutoCAD 2002\AcPreview.ocx
  O17 - HKLM\System\CCS\Services\Tcpip\..\{CF8A8010-94F4-4D6B-8A33-20FA02A472FA}: NameServer = 202.194.133.1
  O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = sdau.edu.cn
  O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = sdau.edu.cn
  O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
  O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll (file missing)
  O23 - Service: 卡巴斯基反病毒6.0 (AVP) - Unknown owner - D:\du\kav6.sch\avp.exe (file missing)
  O23 - Service: kavsvc - Unknown owner - D:\du\新建文件夹\Kaspersky Anti-Virus Personal\kavsvc.exe (file missing)
  O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - d:\ruanjian\瑞星\防火墙\rising\rfw\rfwproxy.exe
  O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - d:\ruanjian\瑞星\防火墙\rising\rfw\rfwsrv.exe
  O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - D:\ruanjian\瑞星\Rising\Rav\CCenter.exe
  O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Technology Co., Ltd. - D:\ruanjian\瑞星\Rising\Rav\RavMonD.exe
  O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe
最后编辑2006-11-17 11:07:06.123000000
分享到:
gototop
 

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\Tablet.exe
这两个面生
gototop
 

R3 - URLSearchHook: (no name) - {982CB676-38F0-4D9A-BB72-D9371ABE876E} - (no file)
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
  O2 - BHO: PneAadcn Class - {0F49CCE6-6970-1742-6618-6572C67B78BE} - C:\WINDOWS\DOWNLO~1\qzsgwe.dll
  O2 - BHO: (no name) - {2E7D3330-EB94-4518-B0FE-E05379A5C1DA} - (no file)
  O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\ruanjian\新建文件夹\QQIEHelper.dll
  O2 - BHO: (no name) - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - (no file)
  O2 - BHO: std software - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - (no file)
  O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - (no file)
  O3 - Toolbar: (no name) - {2E7D3330-EB94-4518-B0FE-E05379A5C1DA} - (no file)O4 - HKLM\..\Run: [systray] c:\windows\system32\systray.exe
O9 - Extra button: TOL24 - {345ff7d8-2364-4ef7-889b-7d3c1d0bd342} - http://www.TOL24.com (file missing)
  O9 - Extra button: 常用网址 - {36B39F01-7B48-44AD-A165-5849CD8EF562} - C:\WINDOWS\system32\SHDOCVW.DLL
  O9 - Extra button: (no name) - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - C:\WINDOWS\system32\shdocvw.dll
  O9 - Extra 'Tools' menuitem: MMSAssist工具条设置 - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - C:\WINDOWS\system32\shdocvw.dll
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll


修复上面各项!将卡巴卸载干净,修复安装瑞星杀软和防火墙
gototop
 

R3 - URLSearchHook: (no name) - {982CB676-38F0-4D9A-BB72-D9371ABE876E} - (no file)
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v4.dll
  O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: PneAadcn Class - {0F49CCE6-6970-1742-6618-6572C67B78BE} - C:\WINDOWS\DOWNLO~1\qzsgwe.dll
  O2 - BHO: (no name) - {2E7D3330-EB94-4518-B0FE-E05379A5C1DA} - (no file)
  O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\ruanjian\新建文件夹\QQIEHelper.dll
  O2 - BHO: (no name) - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - (no file)
  O2 - BHO: std software - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - (no file)
  O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - (no file)
  O3 - Toolbar: (no name) - {2E7D3330-EB94-4518-B0FE-E05379A5C1DA} - (no file)
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\ruanjian\新建文件夹\QQIEHelper.dll
  O10 - Unknown file in Winsock LSP: c:\windows\system32\cdnns.dll
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\Tablet.exe
修复上面的所有项目另外可以到我的“网络优盘”“专杀工具”目录下“修理010项目”里下载一个叫“修复Winsock LSP问题_LSPFix汉化版.exe”来修复010项目,自己找去吧
↑〖稳得起网络优盘〗↓
http://free.ys168.com/?zgrhcf
gototop
 

谢谢大家!可是按上面说的做了以后,我还是上不了网。T_T

本地连接不见了,不可以上网,有人说是网卡驱动丢了,可是我进到设务管理器-网络适配器里面并没有看到黄色问号,而且各个设备显现正常运转,不过被隐藏了(就是要选上"显示隐藏设备"才能看见,)不知道为什么会被隐藏。请问是怎么回事呢?

救救我吧!干瞪着屏幕不能上网,这感觉···唉
gototop
 

引用:
【flicker8的贴子】谢谢大家!可是按上面说的做了以后,我还是上不了网。T_T

本地连接不见了,不可以上网,有人说是网卡驱动丢了,可是我进到设务管理器-网络适配器里面并没有看到黄色问号,而且各个设备显现正常运转,不过被隐藏了(就是要选上"显示隐藏设备"才能看见,)不知道为什么会被隐藏。请问是怎么回事呢?

救救我吧!干瞪着屏幕不能上网,这感觉···唉
………………

那你现在是怎么上网的?
你要用超级兔子7.82或以上或者用用360安全卫士来清除CNNIC中文上网的这个流氓软件,用在我这里http://szcht.ys168.com系统工具里下载TCP/IP修复工具
gototop
 
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT