瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 我都要疯了 上次贴的方法不好使啊~~~~

1   1  /  1  页   跳转

[求助] 我都要疯了 上次贴的方法不好使啊~~~~

我都要疯了 上次贴的方法不好使啊~~~~

助手 360 SRE 瑞星 卡卡 我都用了 还是管不了发送发送都快到10000W了 接收才200W字节 就看着他传 我一点办法都没有 哭死了
救命啊~~~~~

用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; MAXTHON 2.0)

附件附件:

文件名:SREngLOG.log
下载次数:131
文件类型:application/octet-stream
文件大小:
上传时间:2008-9-18 23:12:54
描述:log

分享到:
gototop
 

回复:我都要疯了 上次贴的方法不好使啊~~~~

关键问题是 我什么程序都没开 求求各位高手了
gototop
 

回复:我都要疯了 上次贴的方法不好使啊~~~~

附上jacke的扫描记录:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:44:26, on 2008-9-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRAM FILES\RISING\RAV\ravmond.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRAM FILES\RISING\RAV\RavStub.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\GridService\peer.exe
C:\PROGRAM FILES\RISING\RAV\RavMon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SogouInput\OlympicNews.exe
D:\Program Files\nEO iMAGING\nEOWizard.exe
D:\Program Files\Maxthon2\Maxthon.exe
G:\tool\HijackThis.exe

O2 - BHO: Thunder AtOnce - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll (file missing)
O2 - BHO: 卡卡上网安全助手 - {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} - C:\WINDOWS\system32\urlFilter.dll
O2 - BHO: SafeMon Class - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} - D:\Program Files\360safe\safemon\safemon.dll
O4 - HKLM\..\Run: [NvCplDaemon] ; RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [SKYNET Personal FireWall] ;
O4 - HKLM\..\Run: [搜狐彩电网页版] ; C:\Program Files\sohutv_web\SysTrayIcon.exe "C:\Program Files\sohutv_web" "4233816bb1168343bbdf34897e049e84" "1.0.0.4" ""
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [Grid Service] "C:\Program Files\GridService\peer.exe" -n Grid
O4 - HKLM\..\Run: [runeip] ; "d:\Program Files\Rising\AntiSpyware\runiep.exe" /startup
O4 - HKLM\..\Run: [360Safetray] ; D:\Program Files\360safe\safemon\360Tray.exe /start
O4 - HKLM\..\Run: [NvMediaCenter] ; RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [switch] ; c:\windows\system32\壁纸自动换.exe
O4 - HKLM\..\RunOnce: [KKDelay] C:\Program Files\Rising\AntiSpyware\RunOnce.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OlympicExpress] "C:\Program Files\SogouInput\OlympicNews.exe"
O4 - HKCU\..\Run: [WangWang] ; "C:\Program Files\Alisoft\WangWang\WangWang.exe"
O4 - HKCU\..\Run: [nEOwizard] d:\Program Files\nEO iMAGING\nEOWizard.exe %1
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: QQ游戏启动加速程序.lnk = F:\QQGAME\Accel.exe
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - d:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - d:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - d:\Program Files\Tencent\QQ\SendMMS.htm
O16 - DPF: {05C1004E-2596-48E5-8E26-39362985EEB9} (MMCPlayer Class) - http://p3p.sogou.com/MMCShell.cab
O16 - DPF: {1E0DFFCF-27FF-4574-849B-55007349FEDA} (iTrusPTA Class) - https://img.alipay.com/download/1101/aliedit.cab
O16 - DPF: {2375BEE5-F175-4F1C-81EC-8E4E2E72E2DD} (PhotoDraw Class) - http://imgcache.qq.com/qzone/client/photo/pages/QQPhotoDrawSetup.exe
O16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl Class) - https://img.alipay.com/download/2121/aliedit.cab
O16 - DPF: {75B75D86-D88B-4BEA-BC59-BFD9D7300518} (Videohelp Control) - http://download.bluesky.cn/download/bluesky_webinstall.cab
O16 - DPF: {9FAFB576-6933-4CCC-AB3D-B988EC43D04E} (RavOnline Class) - http://download.rising.com.cn/rs2008/online/notvista/ravolctl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{739D7E62-3603-4868-8053-8446C36DD6DD}: NameServer = 202.96.69.38 202.96.64.68
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: msdaipp - (no CLSID) - (no file)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Information Technology Co., Ltd. - C:\PROGRAM FILES\RISING\RAV\Ravmond.exe

--
End of file - 4966 bytes
gototop
 

回复:我都要疯了 上次贴的方法不好使啊~~~~

开着fs2you,不上传就怪了

关闭fs2you即可



如果右下角fs2you的图标已经没有了

那么打开任务管理器

选择“进程”选项卡

结束“peer.exe”即可
最后编辑太一 最后编辑于 2008-09-19 08:19:41
gototop
 

回复:我都要疯了 上次贴的方法不好使啊~~~~

关闭fs2you即可
然后在用瑞星在安全在查一下毒
gototop
 
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT