我的电脑总是自动吊线 重器就好了 我的瑞星也不能升级 最后一次是8-13日更新的 用了橙色八月杀没有毒 用HijackThis检测如下 请高手指点
日志文件: 趋势科技 HijackThis v2.0.0 (BETA)
保存时间: 7:09:46, on 2007-8-16
操作系统: Windows XP SP2 (WinNT 5.01.2600)
启动模式: 正常
正在运行的进程:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\Rising\Rav\CCenter.exe
E:\WINDOWS\System32\svchost.exe
E:\Rising\Rav\Ravmond.exe
e:\rising\rfw\rfwsrv.exe
E:\WINDOWS\system32\spoolsv.exe
E:\Rising\Rav\RavStub.exe
E:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
E:\Program Files\Lenovo\IGRS\IGRS.exe
E:\WINDOWS\System32\IgrsSvcs.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\lenovo\IGRS Profiles\File Profile\IgrsFile.exe
E:\Program Files\Lenovo\IGRS EasyShare\FileShare.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\AGRSMMSG.exe
E:\WINDOWS\vsnp2uvc.exe
E:\PROGRA~1\EzButton\EzButton.EXE
E:\Program Files\Lenovo\EnergyCut\utilty.exe
E:\Program Files\Lenovo\EnergyCut\EnergyCut.exe
E:\Program Files\Apoint2K\Apoint.exe
E:\Program Files\Lenovo\VeriFace\PManage.exe
E:\Program Files\Lenovo\IGRS EasyShare\IncTray.exe
E:\Program Files\Lenovo\IGRS EasyShare\IgrsPortal.exe
E:\Program Files\Apoint2K\Apntex.exe
E:\Rising\Rav\RavTask.exe
E:\WINDOWS\system32\conime.exe
E:\Rising\Rav\Ravmon.exe
C:\工具\unlocker1.8.5\Unlocker\UnlockerAssistant.exe
C:\Program Files a\iTunes\iTunesHelper.exe
E:\Program Files\Common Files\Real\Update_OB\realsched.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Program Files\Messenger\msmsgs.exe
E:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
E:\Program Files\iPod\bin\iPodService.exe
C:\TDDownload\ShareRacerBx\racer.exe
E:\WINDOWS\system32\taskmgr.exe
C:\Tencent\TT\TTraveler.exe
E:\WINDOWS\system32\wuauclt.exe
E:\Rising\Rfw\rfwmain.exe
E:\Documents and Settings\Owner\桌面\瑞星橙色8月专杀\瑞星橙色8月专杀.com
E:\Rising\Rav\Rav.exe
E:\Documents and Settings\Owner\桌面\MagistrKiller.exe
E:\WINDOWS\notepad.exe
E:\Documents and Settings\Owner\桌面\ha_hijackthisv2_pp\HA_HijackThisv2_PP\HiJackThis_v2.exe
O2 - BHO: WebThunder Browser Helper - {00000AAA-A363-466E-BEF5-9BB68697AA7F} - c:\Program Files 1\Thunder Network1\WebThunder\WebThunderBHO_Now.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Thunder Browser Helper - {889D2FEB-5411-4565-8998-1DD2C5261283} - c:\Program Files 1\Thunder Network\Thunder\ComDlls\XunLeiBHO_007.dll
O3 - 工具栏: 闪联任意通 - {0C9B3AB9-DEDF-11D8-A2D4-0050FC464B19} - E:\Program Files\Lenovo\IGRS EasyShare\IgrsAnywhere.dll
O3 - 工具栏: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - E:\WINDOWS\system32\kakatool.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "E:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [snp2uvc] E:\WINDOWS\vsnp2uvc.exe
O4 - HKLM\..\Run: [EzButton] E:\PROGRA~1\EzButton\EzButton.EXE
O4 - HKLM\..\Run: [EnergyUtility] E:\Program Files\Lenovo\EnergyCut\utilty.exe
O4 - HKLM\..\Run: [EnergyCut] E:\Program Files\Lenovo\EnergyCut\EnergyCut.exe
O4 - HKLM\..\Run: [Apoint] E:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [VeriFacePassManager] E:\Program Files\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [AnyComm_IncTray] "E:\Program Files\Lenovo\IGRS EasyShare\IncTray.exe"
O4 - HKLM\..\Run: [IgrsPortal] "E:\Program Files\Lenovo\IGRS EasyShare\IgrsPortal.exe"
O4 - HKLM\..\Run: [RavTask] "E:\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [runeip] "E:\Program Files\Rising\AntiSpyware\runiep.exe" /startup
O4 - HKLM\..\Run: [RfwMain] "E:\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\工具\unlocker1.8.5\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [racer] E:\Program Files\racer-henan-cnc\racer.exe
O4 - HKLM\..\Run: [NetpasAcc] c:\bapima_netpas\Netpas_Acc.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Platinum Stream\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files a\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "E:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] E:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Power2GoExpress] "E:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe" /Startup
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files d\DAEMON Tools\daemon.exe" -lang 2052
O4 - HKCU\..\Run: [MSMSGS] "E:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "E:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] E:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] E:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] E:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - 扩展右键菜单项: &使用迅雷下载 - c:\Program Files 1\Thunder Network\Thunder\Program\GetUrl.htm
O8 - 扩展右键菜单项: &使用迅雷下载全部链接 - c:\Program Files 1\Thunder Network\Thunder\Program\GetAllUrl.htm
O8 - 扩展右键菜单项: 上传到QQ网络硬盘 - C:\Tencent\AddToNetDisk.htm
O8 - 扩展右键菜单项: 使用Web迅雷下载 - c:\Program Files 1\Thunder Network1\WebThunder\GetUrl.htm
O8 - 扩展右键菜单项: 使用Web迅雷下载全部链接 - c:\Program Files 1\Thunder Network1\WebThunder\GetAllUrl.htm
O8 - 扩展右键菜单项: 添加到QQ自定义面板 - C:\Tencent\AddPanel.htm
O8 - 扩展右键菜单项: 添加到QQ表情 - C:\Tencent\AddEmotion.htm
O8 - 扩展右键菜单项: 用QQ彩信发送该图片 - C:\Tencent\SendMMS.htm
O9 - Extra button: 启动迅雷5 - {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} - c:\Program Files 1\Thunder Network\Thunder\Thunder.exe
O9 - Extra 'Tools' menuitem: 启动迅雷5 - {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} - c:\Program Files 1\Thunder Network\Thunder\Thunder.exe
O9 - Extra button: 联想 - {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} - http://www.lenovo.com (file missing)
O9 - Extra button: 启动Web迅雷 - {962EFB8E-2683-42d4-AC74-AAA4C759B9C6} - http://my.xunlei.com (file missing)
O9 - Extra 'Tools' menuitem: 启动Web迅雷 - {962EFB8E-2683-42d4-AC74-AAA4C759B9C6} - http://my.xunlei.com (file missing)
O9 - Extra button: 密码管理箱 - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - E:\Program Files\Lenovo\VeriFace\OpenWnd.exe
O9 - Extra 'Tools' menuitem: 密码管理箱 - {A26ABCF0-1C8F-46e7-A67C-0489DC21B9CC} - E:\Program Files\Lenovo\VeriFace\OpenWnd.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.lenovo.com
O15 - Trusted Zone: easyabc.95599.cn
O15 - Trusted Zone: www.95599.cn
O16 - DPF: {2BD1FE34-9D76-4DA8-BDEB-7A78531F4EB4} (RecVoice Control) - http://61.163.253.199/RecVoice.ocx
O20 - Winlogon Notify: PicNotify - E:\WINDOWS\SYSTEM32\PicNotify.dll
O22 - SharedTaskScheduler: Browseui 预加载程序 - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: 组件类别缓存程序 - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - E:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: IGRS - 联想集团有限公司 - E:\Program Files\Lenovo\IGRS\IGRS.exe
O23 - Service: IGRSFILE - Lenovo Group Limited - E:\Program Files\lenovo\IGRS Profiles\File Profile\IgrsFile.exe
O23 - Service: IgrsFileShare - 联想集团有限公司 - E:\Program Files\Lenovo\IGRS EasyShare\FileShare.exe
O23 - Service: iPod 服务 (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - e:\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - e:\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - E:\Rising\Rav\CCenter.exe
O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Technology Co., Ltd. - E:\Rising\Rav\Ravmond.exe
--
文件结束 - 8787 字节
[用户系统信息]Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; TencentTraveler )
