HijackThis_815汉化版扫描日志 V1.99.1
保存于 20:11:37 汤芹, 日期 2006-8-19
操作系统: Windows XP SP2 (WinNT 5.01.2600)
浏览器: Internet Explorer v6.00 SP2 (6.00.2900.2180)
当前运行的进程:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
d:\program files\rising\rfw\rfwsrv.exe
E:\xp\瑞星杀毒\RavStub.exe
d:\program files\rising\rfw\RfwMain.exe
D:\WINDOWS\system32\svchost.exe
E:\xp\瑞星杀毒\RavTask.exe
E:\xp\瑞星杀毒\Ravmon.exe
D:\WINDOWS\system32\ctfmon.exe
E:\xp\泡泡\popo.exe
E:\xp\泡泡\popo.exe
E:\xp\eMule\emule.exe
D:\WINDOWS\explorer.exe
E:\xp\瑞星杀毒\Ravmond.exe
E:\Xp\qq 狂人\QQ.exe
D:\WINDOWS\system32\wuauclt.exe
E:\xp\TT\TTraveler.exe
D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
D:\WINDOWS\system32\taskmgr.exe
D:\WINDOWS\system32\wuauclt.exe
E:\xp\Hijackthis1991zww\HijackThis1991zww.exe
R3 - URLSearchHook: SrchHook Class - {EED92A43-CFCE-4548-BD73-B0A405470ED5} - D:\PROGRA~1\CNNIC\Cdn\iesrch.dll (file missing)
O2 - BHO: QQBrowserHelper
Object Class - {54EBD53A-9BC1-480B-966A-843A333CA162} - E:\xp\qq 狂人\QQIEHelper.dll
O2 - BHO: 超级兔子上网精灵 - {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} - E:\xp\超级兔~1\haokanbar.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: (no name) - {B6125673-3340-4B8D-9452-AD673121A8E3} - (no file)
O2 - BHO: QuickBtn - {D1BB7CF4-4463-4e91-88D7-ECC3CE0A13B7} - D:\Program Files\CoolWebsite\QuickLink.dll
O3 - IE工具栏增项: 金山快译(&K) - {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} - E:\xp\金山快译\IEBand.dll
O3 - IE工具栏增项: MSN 工具栏 - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\MSN Toolbar\01.01.2607.0\zh-cn\msntb.dll
O3 - IE工具栏增项: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - E:\xp\超级兔~1\haokanbar.dll
O4 - 启动项HKLM\\Run: [RfwMain] "D:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - 启动项HKLM\\Run: [RavTask] "E:\xp\瑞星杀毒\RavTask.exe" -system
O4 - 启动项HKLM\\Run: [HPDJ Taskbar Utility] D:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - 启动项HKLM\\Run: [RavScanBD] "E:\xp\瑞星杀毒\ScanBD.exe" /INST
O4 - 启动项HKLM\\RunOnce: [RavStub] "E:\xp\瑞星杀毒\ravstub.exe" /RUNONCE
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - IE右键菜单中的新增项目: >> 彩信发送 << - res://D:\PROGRA~1\MMSASS~1\Mmsass~1.dll/mms.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - E:\xp\Thunder\geturl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - E:\xp\Thunder\getallurl.htm
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - E:\xp\qq 狂人\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 下载页面上的ED2(&K)链接 - E:\xp\eMule\ed2k.html
O8 - IE右键菜单中的新增项目: 使用网际快车下载 - E:\xp\网络快车\jc_link.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载全部链接 - E:\xp\网络快车\jc_all.htm
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - E:\xp\qq 狂人\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - E:\xp\qq 狂人\AddEmotion.htm
O9 - 浏览器额外的按钮: 实用网址导航 - {1D901067-2529-4A9B-9B6B-7A1DB3A44CB5} - D:\Program Files\CoolWebsite\QuickLink.dll
O9 - 浏览器额外的“工具”菜单项: 实用网址导航 - {1D901067-2529-4A9B-9B6B-7A1DB3A44CB5} - D:\Program Files\CoolWebsite\QuickLink.dll
O9 - 浏览器额外的按钮: MMSAssist工具条设置 - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - D:\WINDOWS\system32\shdocvw.dll
O9 - 浏览器额外的“工具”菜单项: MMSAssist工具条设置 - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - D:\WINDOWS\system32\shdocvw.dll
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\WINDOWS\system32\shdocvw.dll
O9 - 浏览器额外的“工具”菜单项: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\WINDOWS\system32\shdocvw.dll
O9 - 浏览器额外的按钮: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - E:\xp\qq 狂人\QQIEHelper.dll
O9 - 浏览器额外的“工具”菜单项: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - E:\xp\qq 狂人\QQIEHelper.dll
O16 - DPF: {038318E8-0C2D-4DF5-A7AF-B4FB373F501E} - http://download.henbang.net/download/updatelist/helper.cab
O16 - DPF: {339C1EE2-1029-46B8-81F1-360217F26FC4} (VGAPlayer Control) - http://www.chem.pku.edu.cn/wuji/video/yaogq/VGAPlayer.cab
O16 - DPF: {7A38130D-BEB7-4D60-BE7A-4C4AB6A85CD1} - http://bar.souhuu.com/vcbar1.cab
O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zango/ie/bridge-c356.cab?3d78641c35c285f0b5af11442c6472c051b3f64c8f7f5822a4301327b3f9141d5c15113deef26ab072e4b9823d59ace9d9365ca936542977b3ec2c642b:d65dcad4d7f23d81ea8a8b93e75306fe
O16 - DPF: {F917534D-535B-416B-8E8F-0C04756C31A8} (IEDown Class) - http://download.ourgame.com/IEDown5.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{70072DAF-918D-4EE6-B6E9-8607803572B8}: NameServer = 122.48.63.100 61.232.206.103
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0DCA92B-7315-41EA-AA4A-648EEF2F3CF6}: NameServer = 211.98.4.1,211.167.251.189
O18 - 列举现有的协议: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O21 - SSODL: webwork - {4C611512-2C1D-44b2-A044-872AD2AD5A61} - D:\WINDOWS\webwork\webwork.dll
O23 - NT 服务: hpdj3600 - Unknown owner - (no file)
O23 - NT 服务: Macromedia Licensing Service - Unknown owner - D:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - NT 服务: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - d:\program files\rising\rfw\rfwproxy.exe
O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - d:\program files\rising\rfw\rfwsrv.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - E:\XP\瑞星杀毒\CCENTER.EXE
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - E:\xp\瑞星杀毒\Ravmond.exe
O23 - NT 服务: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - D:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - NT 服务: WinWrCup - MsWinCup - D:\WINDOWS\wincup\wincup.exe
哪位高手给我看哈,有啥问题没有?????
这是我重启之后,已经关闭几个不用的启动程序之后的
