瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 求救!在打开网页时,总是每隔一段时间,自动弹出乱七百造德网站!

12   1  /  2  页   跳转

求救!在打开网页时,总是每隔一段时间,自动弹出乱七百造德网站!

收藏
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 19:35 | 只看楼主 短消息 资料
字号: 1楼

求救!在打开网页时,总是每隔一段时间,自动弹出乱七百造德网站!

2007-06-05,19:07:34

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <bgswitch><C:\WINDOWS\system32\bgswitch.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <NVMixerTray><"C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe">  [NVIDIA Corporation]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot>  [RealNetworks, Inc.]
    <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [Microsoft Corporation]
    <NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [NVIDIA Corporation]
    <nwiz><nwiz.exe /install>  []
    <NvMediaCenter><RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit>  [NVIDIA Corporation]
    <StormCodec_Helper><"d:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti>  []
    <CdnCtr><C:\Program Files\CNNIC\Cdn\cdnup.exe>  []
    <RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup>  [Beijing Rising Technology Co., Ltd.]
    <ZSSnp211><C:\WINDOWS\ZSSnp211.exe>  [ZSMCSNAP]
    <Domino><C:\WINDOWS\Domino.exe>  []
    <IESAddr><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    <RavStub><"C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [Beijing Rising Technology Co., Ltd.]

==================================
启动文件夹
[Kunbang]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Kunbang.exe><N>

==================================
服务
[Adobe LM Service / Adobe LM Service]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[ieatnh / ieatnh]
  <C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\COMMON~1\veatth\veatth.dll,Service -s><N/A>
[NVIDIA Display Driver Service / NVSvc]
  <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[P4P Service / P4P Service]
  <C:\Program Files\Common Files\Sogou PXP\p2psvr.exe><Sohu.com Inc.>
[Rising Proxy  Service / RfwProxySrv]
  <c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon]
  <"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[Vsn vysk Service / vysk]
  <C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\befq\ilmx.dll,Service><N/A>

==================================
浏览器加载项
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
  {06849E9E-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[vvwh]
  {180A2FBB-8CCA-42A5-8442-D50E702DC5CC} <C:\PROGRA~1\befq\fiju.dll, >
[IEhelper Class]
  {55FE8157-23FA-43C6-91A1-3E4094E9A38D} <E:\HCIEPL~1.DLL, N/A>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[BandIE Class]
  {77FEF28E-EB96-44FF-B511-3185DEA48697} <C:\Program Files\Baidu\bar\BaiDuBar.dll, Baidu.com, Inc.>
[MacroMediapd]
  {B8CCDD47-38E4-4CD2-B7FA-3B4B690F74BD} <C:\WINDOWS\system32\microapmddt.dll, MacroMedia>
[WMHlprObj Class]
  {F5824EFB-728A-4726-A5A5-85A68B20EDC3} <C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll, CNNIC>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[番茄花园]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.tomatolei.com, N/A>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[百度超级搜霸]
  {B580CF65-E151-49C3-B73F-70B13FCA8E86} <C:\Program Files\Baidu\bar\BaiDuBar.dll, Baidu.com, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx, Adobe Systems, Inc.>
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
  {06849E9E-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[vvwh]
  {180A2FBB-8CCA-42A5-8442-D50E702DC5CC} <C:\PROGRA~1\befq\fiju.dll, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[Tabular Data Control]
  {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
[BitComet Helper]
  {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <D:\Program Files\BitComet\tools\BitCometBHO_1.1.3.28.dll, N/A>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, N/A>
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[IEhelper Class]
  {55FE8157-23FA-43C6-91A1-3E4094E9A38D} <E:\HCIEPL~1.DLL, N/A>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[BandIE Class]
  {77FEF28E-EB96-44FF-B511-3185DEA48697} <C:\Program Files\Baidu\bar\BaiDuBar.dll, Baidu.com, Inc.>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Tool Class]
  {A7F05EE4-0426-454F-8013-C41E3596E9E9} <C:\Program Files\Baidu\bar\BaiDuBar.dll, Baidu.com, Inc.>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[百度超级搜霸]
  {B580CF65-E151-49C3-B73F-70B13FCA8E86} <C:\Program Files\Baidu\bar\BaiDuBar.dll, Baidu.com, Inc.>
[MacroMediapd]
  {B8CCDD47-38E4-4CD2-B7FA-3B4B690F74BD} <C:\WINDOWS\system32\microapmddt.dll, MacroMedia>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx, Adobe Systems, Inc.>
最后编辑2007-06-05 21:01:08
分享到:
gototop
 
asdhjhjq
头像
初生襁褓狮
  • 帖子:214
  • 注册: 2007-03-13
  • 来自:
发表于: 2007-06-05 19:37 | 短消息 资料
字号: 2楼

去下个超级兔子或者瑞星卡卡助手 进修IE修复
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 19:39 | 只看楼主 短消息 资料
字号: 3楼

[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[UpdateC2 Control]
  {DC7094C6-8F61-42ED-AECE-63F5EEF647C5} <d:\PROGRA~1\uusee\updateC2.ocx, uusee.com>
[WMHlprObj Class]
  {F5824EFB-728A-4726-A5A5-85A68B20EDC3} <C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll, CNNIC>
[上传到QQ网络硬盘]
  <D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用迅雷下载]
  <D:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <D:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://D:\PROGRA~1\office\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 492][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 552][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 576][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\WgaLogon.dll]  <Microsoft Corporation><1.5.0540.0>
[PID: 620][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 632][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 792][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 840][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
[PID: 936][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
[PID: 1008][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1116][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1564][C:\WINDOWS\system32\WgaTray.exe]  <Microsoft Corporation><1.5.0540.0>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
[PID: 1576][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
[PID: 1632][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\Program Files\Baidu\bar\BaiDuBar.dll]  <Baidu.com, Inc.><2, 0, 2, 141>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><19, 0, 0, 9>
[PID: 1764][C:\Program Files\Rising\Rav\RavStub.exe]  <Beijing Rising Technology Co., Ltd.><19, 0, 0, 4>
    [C:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><19, 0, 0, 5>
[PID: 1916][c:\program files\rising\rfw\RfwMain.exe]  <Beijing Rising Technology Co., Ltd.><5, 0, 0, 47>
    [c:\program files\rising\rfw\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><19, 0, 0, 33>
    [c:\program files\rising\rfw\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><19, 0, 0, 5>
    [c:\program files\rising\rfw\RfwCtrl.dll]  <Beijing Rising Technology Co., Ltd.><5, 0, 0, 11>
    [c:\program files\rising\rfw\RsXML.dll]  <Beijing Rising Technology Co., Ltd.><19, 0, 0, 2>
    [c:\program files\rising\rfw\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
[PID: 2032][C:\WINDOWS\system32\rundll32.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\PROGRA~1\COMMON~1\veatth\veatth.dll]  < ><3, 8, 0, 4>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
[PID: 212][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  <Microsoft Corporation><7.00.9466>
[PID: 288][C:\WINDOWS\system32\nvsvc32.exe]  <NVIDIA Corporation><6.14.10.8132>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
[PID: 384][C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe]  <NVIDIA Corporation><1.0.451>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\Program Files\NVIDIA Corporation\NvMixer\NvMixerZHC.dll]  <NVIDIA Corporation><1.0.451>
    [C:\Program Files\Common Files\NVIDIA Shared\Audio\NVAudioMod.dll]  <NVIDIA Corporation><1.0.451>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
[PID: 392][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  <RealNetworks, Inc.><0.1.0.1622>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
[PID: 544][C:\Program Files\Common Files\Sogou PXP\p2psvr.exe]  <Sohu.com Inc.><2, 0, 0, 32>
    [C:\Program Files\Sogou PXP\vodsvr.dll]  <Sohu.com Inc.><2, 4, 3, 1>
    [C:\Program Files\Sogou PXP\pxpnet.dll]  <Sohu.com Inc.><2, 0, 0, 18>
    [C:\Program Files\Sogou PXP\p2pclient.dll]  <Sohu.com Inc.><2, 9, 1, 9>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
[PID: 896][C:\Program Files\CNNIC\Cdn\cdnup.exe]  <><2, 3, 0, 9>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\cdntdns.dll]  <CNNIC><2, 2, 0, 3>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
[PID: 992][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [c:\progra~1\know\uxyg.dll]  < ><4, 1, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [c:\progra~1\know\zcdl.dll]  < ><1, 0, 0, 6>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
[PID: 1112][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 19:42 | 只看楼主 短消息 资料
字号: 4楼

[C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [D:\Program Files\Thunder Network\Thunder\Program\TaskManager.dll]  <Thunder Networking Technologies,LTD><1, 1, 0, 20>
    [D:\Program Files\Thunder Network\Thunder\Program\download_interface.dll]  <Thunder Networking Technologies,LTD><2, 14, 2, 77>
    [D:\Program Files\Thunder Network\Thunder\Program\stlport_vc646.dll]  <STLport Consulting, Inc.><4.6.2003.1031>
    [D:\Program Files\Thunder Network\Thunder\Program\asyn_dns.dll]  <Thunder Networking Technologies,LTD><2, 14, 2, 77>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [D:\Program Files\Thunder Network\Thunder\Program\BHOStub.dll]  <Thunder Networking Technologies,LTD><1, 1, 0, 8>
    [D:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\DownAndPlay.dll]  <><1, 0, 0, 2>
    [D:\Program Files\Thunder Network\Thunder\Program\iTargetAD.dll]  <Thunder Networking Technologies,LTD><1, 0, 2, 26>
    [C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx]  <Adobe Systems, Inc.><9,0,45,0>
    [D:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbedShell.dll]  < ><1, 0, 0, 17>
    [D:\Program Files\Thunder Network\Thunder\Components\Community\XLCommunity.dll]  <Thunder Networking Technologies,LTD><1, 0, 8, 30>
    [D:\Program Files\Thunder Network\Thunder\Program\LiveUpdate.dll]  <Thunder Networking Technologies,LTD><1, 1, 1, 20>
    [D:\Program Files\Thunder Network\Thunder\Components\Search\XLSearch.dll]  <Thunder Networking Technologies,LTD><1, 1, 1, 10>
    [D:\Program Files\Thunder Network\Thunder\Components\P4PClient\P4PClient.dll]  <Thunder Networking Technologies,LTD><2, 2, 1, 46>
    [D:\Program Files\Thunder Network\Thunder\Components\DiagnoseHelper\DiagnoseHelper.dll]  <Thunder Networking Technologies,LTD><1, 1, 1, 16>
    [D:\Program Files\Thunder Network\Thunder\Components\ExplorerHelper\ExplorerHelper.dll]  <Thunder Networking Technologies,LTD><1, 0, 4, 15>
    [D:\Program Files\Thunder Network\Thunder\Components\Tips\TipsClient.dll]  <Thunder Networking Technologies,LTD><2, 1, 3, 58>
    [D:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VPSHELL.dll]  <XunLei><1, 2, 0, 8>
    [D:\Program Files\Thunder Network\Thunder\Components\UserExperience\UserExperience.dll]  <Thunder Networking Technologies,LTD><1, 0, 0, 1>
    [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsXlCom.dll]  <Thunder Networking Technologies,LTD><1, 0, 0, 4>
    [D:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbed09.dll]  < ><3, 3, 0, 80>
    [D:\Program Files\Thunder Network\Thunder\Program\RegisterDll.dll]  <Thunder Networking Technologies,LTD><2, 13, 2, 61>
    [D:\Program Files\Thunder Network\Thunder\Program\XLNet.Dll]  <Xunlei><1, 1, 0, 6>
    [D:\Program Files\Thunder Network\Thunder\Plugins\BhoAdv\bho_adv.dll]  <深圳市迅雷网络技术有限公司><1.0.1.0>
    [D:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\ThunderKAV.dll]  <深圳市迅雷网络技术有限公司><1.0.1.17>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll]  <Thunder Networking Technologies,LTD><5, 0, 2, 17>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  <Thunder Networking Technologies,LTD><5, 0, 2, 17>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  <Thunder Networking Technologies,LTD><1.0.0.4>
    [D:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VideoPicture.dll]  <XunLei><1, 2, 0, 9>
    [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor.dll]  <Thunder Networking Technologies,LTD><1, 0, 0, 1>
    [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\MediaWorker.dll]  <Thunder Networking Technologies,LTD><1, 2, 0, 8>
    [d:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\ikave.dll]  <><5, 0, 0, 62>
    [d:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\kave.dll]  <Kaspersky Lab.><5, 0, 0, 62>
[PID: 2708][d:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\ScanningProcess.exe]  <N/A><N/A>
    [d:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\prloader.dll]  <Kaspersky Lab><6.0.1.305>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [d:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\prkernel.ppl]  <Kaspersky Lab><6.0.1.305>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\prefetch.ppl]  <Kaspersky Labs><1, 0, 0, 56>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\avpmgr.ppl]  <Kaspersky Lab><6.0.1.305>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\wdiskio.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\nfio.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\avlib.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\dtreg.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\prutil.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\avp1.ppl]  <Kaspersky Lab><6.0.0.299>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\l_llio.ppl]  <Kaspersky Labs><6.0.9.75>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\ichstrms.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\hashcont.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\hccmp.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\uniarc.ppl]  <Kaspersky Lab><6.0.0.16>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\minizip.ppl]  <Kaspersky Lab><6.0.0.16>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\prseqio.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\hashmd5.ppl]  <Kaspersky Lab><6.0.0.276>
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 19:43 | 只看楼主 短消息 资料
字号: 5楼

[d:\program files\thunder network\thunder\plugins\thunderkav\bin\inflate.ppl]  <Kaspersky Lab><6.0.0.16>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\tempfile.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\cab.ppl]  <Kaspersky Lab><6.0.0.16>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\arj.ppl]  <Kaspersky Lab><6.0.0.16>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\rar.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\mdb.ppl]  <Kaspersky Lab><6.0.0.300>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\msoe.ppl]  <Kaspersky Lab><6.0.0.276>
    [d:\program files\thunder network\thunder\plugins\thunderkav\bin\iwgen.ppl]  <Kaspersky Lab><6.0.0.276>
[PID: 3652][C:\Program Files\WinRAR\WinRAR.exe]  <N/A><N/A>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
[PID: 312][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.141\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.141\SREng2\Plugins\SREngPluginDemo.SRE]  <Smallfrogs Studio><1, 1, 1, 0>
[PID: 3492][C:\PROGRA~1\INTERN~1\IEXPLORE.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\Program Files\Baidu\bar\BaiDuBar.dll]  <Baidu.com, Inc.><2, 0, 2, 141>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  <Thunder Networking Technologies,LTD><1.0.0.4>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  <Thunder Networking Technologies,LTD><5, 0, 2, 17>
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  <Adobe Systems Incorporated><7.0.7.2006011200>
    [C:\PROGRA~1\befq\fiju.dll]  <><1, 2, 0, 8>
    [C:\WINDOWS\system32\microapmddt.dll]  <MacroMedia><1, 1, 0, 0>
    [C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll]  <CNNIC><1, 1, 0, 0>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx]  <Adobe Systems, Inc.><9,0,45,0>
[PID: 176][C:\PROGRA~1\INTERN~1\IEXPLORE.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\CNNIC\Cdn\cdnspie.dll]  <><2, 1, 0, 4>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><1, 0, 0, 11>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 2, 0, 4>
    [c:\progra~1\know\xabj.dll]  <><1, 0, 0, 6>
    [c:\progra~1\know\cfgo.dll]  < ><1, 0, 0, 6>
    [C:\PROGRA~1\COMMON~1\veatth\wcsbvg.nls]  <><3, 6, 0, 5>
    [C:\Program Files\Baidu\bar\BaiDuBar.dll]  <Baidu.com, Inc.><2, 0, 2, 141>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  <Thunder Networking Technologies,LTD><1.0.0.4>
    [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  <Thunder Networking Technologies,LTD><5, 0, 2, 17>
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  <Adobe Systems Incorporated><7.0.7.2006011200>
    [C:\PROGRA~1\befq\fiju.dll]  <><1, 2, 0, 8>
    [C:\WINDOWS\system32\microapmddt.dll]  <MacroMedia><1, 1, 0, 0>
    [C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll]  <CNNIC><1, 1, 0, 0>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 19:44 | 只看楼主 短消息 资料
字号: 6楼

去下个超级兔子或者瑞星卡卡助手 进修IE修复
修复过了,没有作用。我将系统还原了,但是过不了一天又出现这种情况
gototop
 
asdhjhjq
头像
初生襁褓狮
  • 帖子:214
  • 注册: 2007-03-13
  • 来自:
发表于: 2007-06-05 19:45 | 短消息 资料
字号: 7楼

乱跳网页吗
都是跳出哪几个网页 ?
还是只有一个固定一直跳
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 20:00 | 只看楼主 短消息 资料
字号: 8楼

不止一个
http://10.166.cn/text/text_newshop.htm
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 20:02 | 只看楼主 短消息 资料
字号: 9楼

不是固定德网页
gototop
 
老张老张
头像
初生襁褓狮
  • 帖子:12
  • 注册: 2007-06-05
  • 来自:
发表于: 2007-06-05 20:09 | 只看楼主 短消息 资料
字号: 10楼

而且电脑每次重新启动后
瑞星软件总是发现病毒C:\WINDOWS\TEMP\insshell4106\insshell.exe
病毒名为 Dropper.agent.nmj
gototop
 
<<上一主题|下一主题>>
12   1  /  2  页   跳转
页面顶部
Powered by Discuz!NT