HijackThis_815汉化版扫描日志 V1.99.1
保存于 19:46:24, 日期 2006-7-7
操作系统: Windows XP SP1 (WinNT 5.01.2600)
浏览器: Internet Explorer v6.00 SP1 (6.00.2800.1106)
当前运行的进程:
C:\WINDOWS\system32\rundll32.exe
D:\东方卫士\DFVSX\DFVSX.exe
C:\WINDOWS\System32\mssvcc.exe
C:\dfndrd_5.exe
C:\WINDOWS\System32\ctfmon.exe
D:\TT\TTraveler.exe
C:\WINDOWS\explorer.exe
D:\QQ\QQ.exe
D:\QQ\TIMPlatform.exe
E:\Hijackthis1991zww\HijackThis1991zww.exe
O3 - IE工具栏增项: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - IE工具栏增项: (no name) - {B580CF65-E151-49C3-B73F-70B13FCA8E86} - (no file)
O3 - IE工具栏增项: 东方卫士 - {A6790AA5-C6C7-4BCF-A46D-0FDAC4EA90EF} - C:\PROGRA~1\DFVSIE~1\DFVSIEBR.dll
O4 - 启动项HKLM\\Run: [dfvsx] "D:\东方卫士\DFVSX\DFVSX.exe" -Min
O4 - 启动项HKLM\\Run: [!ewido] "E:\060629ewido anti-spyware\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - 启动项HKLM\\Run: [helper.dll] C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32
O4 - 启动项HKLM\\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - 启动项HKLM\\Run: [msconfig38] mssvcc.exe
O4 - 启动项HKLM\\Run: [newname] c:\\nwnmd_5.exe
O4 - 启动项HKLM\\Run: [defender] C:\\dfndrd_5.exe
O4 - 启动项HKLM\\Run: [keyboard] c:\\kybrdd_5.exe
O4 - 启动项HKLM\\Run: [internat.exe] C:\WINDOWS\SYSTEM\internat.exe
O4 - 启动项HKLM\\Run: [winsystems25] winsystems.exe
O4 - 启动项HKLM\\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - 启动项HKLM\\RunServices: [msconfig38] mssvcc.exe
O4 - 启动项HKLM\\RunServices: [winsystems25] winsystems.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - D:\QQ\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - D:\QQ\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - D:\QQ\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 添加到雅虎收藏+ - http://myweb.cn.yahoo.com/post.html?F=D2_A
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - D:\QQ\SendMMS.htm
O9 - 浏览器额外的按钮: 豪杰超级解霸V8 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\Herosoft\HeroV8\STHSDVD.EXE
O9 - 浏览器额外的“工具”菜单项: 豪杰超级解霸V8 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\Herosoft\HeroV8\STHSDVD.EXE
O9 - 浏览器额外的按钮: 东方卫士 - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CE} - C:\PROGRA~1\DFVSIE~1\DFVSIEBR.dll
O9 - 浏览器额外的“工具”菜单项: 东方卫士工具条 - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CE} - C:\PROGRA~1\DFVSIE~1\DFVSIEBR.dll
O9 - 浏览器额外的按钮: 东方卫士2005下载版 - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9EE} - \DFVSX.exe (file missing)
O9 - 浏览器额外的“工具”菜单项: 东方卫士 - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9EE} - \DFVSX.exe (file missing)
O9 - 浏览器额外的按钮: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - 浏览器额外的“工具”菜单项: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O17 - HKLM\System\CCS\Services\Tcpip\..\{87CD0DB5-B4F3-4F78-9F14-F1109E1F07CA}: NameServer = 202.102.154.3 202.102.152.3
O20 - Winlogon Notify: CSCSettings - C:\WINDOWS\system32\mqnetobj.dll (file missing)
O20 - Winlogon Notify: Dynamic Directory - C:\WINDOWS\system32\j4p00e7meh.dll
O20 - Winlogon Notify: IntlRun - C:\WINDOWS\system32\moupgrd.dll (file missing)
O20 - Winlogon Notify: MS-DOS Emulation - C:\WINDOWS\system32\moupgrd.dll (file missing)
O20 - Winlogon Notify: ShellCompatibility - C:\WINDOWS\system32\dwspex.dll (file missing)
O20 - Winlogon Notify: ShellService
ObjectDelayLoad - C:\WINDOWS\system32\dwspex.dll (file missing)
O20 - Winlogon Notify: SMDEn - C:\WINDOWS\system32\mqnetobj.dll (file missing)
O20 - Winlogon Notify: Syncmgr - C:\WINDOWS\system32\dwspex.dll (file missing)
O20 - Winlogon Notify: WindowsUpdate - C:\WINDOWS\system32\moupgrd.dll (file missing)
O23 - NT 服务: Command Service (cmdService) - Unknown owner - C:\WINDOWS\QmlsbGdhdGVz\command.exe
O23 - NT 服务: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe
O23 - NT 服务: Win32 Kernel Update (Win32Kernel) - Unknown owner - C:\WINDOWS\win32host.exe (file missing)
O23 - NT 服务: Windows Download Manager - Unknown owner - C:\WINDOWS\system32\winws.exe
