程序全打不开了，帮我看看好吗。。（附上扫描）

地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	发表于： 2006-09-05 17:12 \| 只看楼主短消息资料字号：小中大 1楼程序全打不开了，帮我看看好吗。。（附上扫描）昨晚用橙色8月杀了毒后。。。。今天一开机就出现问题一点应用程序就出现“遇到问题需要关闭。。。” 但是不点确定又可以继续用，我现在就是但奇怪的是有几个程序就没问题象什么“WINDOWS优化大师” 而其他BT EMULE 千千静听 FLASHGET统统要提示关闭这个是我截的图瑞星，木马杀手还有橙色8月什么的杀软我都用过了，但找不到问题。。。。。。 2006-09-05 19:25:13.263000000
地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	分享到：

地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	发表于： 2006-09-05 17:27 \| 只看楼主短消息资料字号：小中大 2楼正在运行的进程 [PID: 568][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 640][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 664][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 708][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 720][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 888][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 992][C:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 1016][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 1116][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 1136][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 1212][C:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 35> [C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20> [C:\Program Files\Rising\Rav\HOOKSYS.dll] <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11> [C:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32> [C:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [C:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12> [C:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [C:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 2> [C:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10> [C:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3> [C:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [C:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6> [C:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 34> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [C:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13> [C:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11> [C:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11> [C:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20> [C:\Program Files\Rising\Rav\RSUnpack.dll] <Beijing Rising Technology Co., Ltd.><1, 0, 0, 13> [C:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7> [C:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9> [C:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18> [C:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6> [C:\Program Files\Rising\Rav\RsStore.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [PID: 1316][C:\Program Files\Rising\Rfw\rfwsrv.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:

地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	发表于： 2006-09-05 17:27 \| 只看楼主短消息资料字号：小中大 3楼 [C:\Program Files\Rising\Rfw\RfwRule.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13> [C:\Program Files\Rising\Rfw\rfwlog.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6> [C:\Program Files\Rising\Rfw\Rfwdrv.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21> [C:\Program Files\Rising\Rfw\MonDrv.dll] <rs><1, 0, 0, 4> [C:\Program Files\Rising\Rfw\ProcLib.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [C:\Program Files\Rising\Rfw\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3> [PID: 1608][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.0 (XPClient.010817-1148)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 1696][C:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [PID: 380][C:\WINDOWS\System32\nvsvc32.exe] <NVIDIA Corporation><6.14.10.5664> [PID: 936][C:\WINDOWS\system32\pctspk.exe] <PCtel, Inc.><4.00> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 980][C:\WINDOWS\System32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)> [PID: 1332][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2800.1106 (xpsp1.020828-1920)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] <Adobe Systems, Inc.><7.0.0.0> [C:\WINDOWS\System32\nvcpl.dll] <NVIDIA Corporation><6.14.10.5664> [C:\WINDOWS\System32\nvshell.dll] <NVIDIA Corporation><6.14.10.5664> [C:\WINDOWS\System32\NVWRSZHC.DLL] <NVIDIA Corporation><6.14.10.5664> [C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 2> [C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\PROGRA~1\Nokia\NOKIAP~1\Lang\ConnectionManager_chi-sc.nlr] <Nokia><6, 81, 46, 1> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\WinRAR\rarext.dll] <N/A><N/A> [C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21> [C:\WINDOWS\System32\xunleibho_v8.dll] <><4, 5, 1, 33> [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200> [C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX] <N/A><N/A> [C:\Documents and Settings\HASEE\Application Data\Foxy\LinkMaker.dll] <N/A><1, 0, 9, 0> [PID: 1864][C:\Program Files\Rising\Rfw\RfwMain.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 52> [C:\Program Files\Rising\Rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23> [C:\Program Files\Rising\Rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rfw\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 1324][C:\PROGRA~1\RISING\RAV\RAVMON.EXE] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33> [C:\PROGRA~1\RISING\RAV\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 25> [C:\PROGRA~1\RISING\RAV\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19> [C:\PROGRA~1\RISING\RAV\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\PROGRA~1\RISING\RAV\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11> [C:\PROGRA~1\RISING\RAV\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\PROGRA~1\RISING\RAV\RsCommX.dll] <rising><18, 0, 0, 1> [C:\PROGRA~1\RISING\RAV\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 252][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22> [C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2> [C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11> [C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 1156][C:\WINDOWS\System32\ctfmon.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 2616][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 2464][C:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2800.1106 (xpsp1.020828-1920)> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [c:\program files\google\googletoolbar1.dll] <Google Inc.><4, 0, 917, 1454> [C:\WINDOWS\System32\xunleibho_v8.dll] <><4, 5, 1, 33> [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200> [C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 2> [C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX] <N/A><N/A> [C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4> [C:\WINDOWS\System32\PNCRT.dll] <Real Networks, Inc><6.0.0.0> [C:\Program Files\Common Files\Real\Common\pnrs3260.dll] <RealNetworks, Inc.><6.0.9.4068> [C:\WINDOWS\System32\Macromed\Flash\Flash9.ocx] <Adobe Systems, Inc.><9,0,16,0> [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] <Adobe Systems, Inc.><7.0.0.0> [PID: 1984][C:\WINDOWS\System32\dwwin.exe] <Microsoft Corporation><10.0.4024> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [PID: 3140][C:\Program Files\Real\RealOne Player\RealPlay.exe] <RealNetworks, Inc.><6.0.12.1483> [C:\WINDOWS\System32\PNCRT.dll] <Real Networks, Inc><6.0.0.0> [C:\WINDOWS\System32\cn_spiEx.dll] <N/A><N/A> [C:\Program Files\Common Files\Real\Common\objb3201.dll] <RealNetworks, Inc.><0.1.0.6391> [C:\Program Files\Real\RealOne Player\rpplugins\rpap3260.dll] <RealNetworks, Inc.><6.0.9.3039> [C:\Program Files\Common Files\Real\Common\pnrs3260.dll] <RealNetworks, Inc.><6.0.9.4068> [C:\Program Files\Real\RealOne Player\lang\cdplay_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\dbcomp_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\embed_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\gemctl_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\pngui_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\pdgenxfer_cn.dll] <N/A><N/A> [C:\Program Files\Real\RealOne Player\lang\rjctl_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\rjeq_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\rjres_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\rjskin_cn.dll] <RealNetworks, Inc.><6.0.12.298> [C:\Program Files\Real\RealOne Player\lang\rjviz_cn.dll] <RealNetworks, Inc.><6.0.12.298>
地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:

地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	发表于： 2006-09-05 18:50 \| 只看楼主短消息资料字号：小中大 4楼帮帮忙。。。
地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:

taylor05771 社区嘉宾帖子:7232 注册: 2003-12-24 来自:	发表于： 2006-09-05 18:59 \| 短消息资料字号：小中大 5楼 hijackthis日志
taylor05771 社区嘉宾帖子:7232 注册: 2003-12-24 来自:

永不断の弦飘泊而立狮帖子:587 注册: 2006-06-30 来自:	发表于： 2006-09-05 19:05 \| 短消息资料字号：小中大 6楼 SRENG日志看的头昏...
永不断の弦飘泊而立狮帖子:587 注册: 2006-06-30 来自:

初生襁褓狮

帖子:11
注册: 2006-04-18
来自:

发表于： 2006-09-05 19:07 | 只看楼主 短消息资料

字号：小中大 7楼

引用:

【taylor05771的贴子】hijackthis日志
………………

好的
一定帮帮我看看

操作系统： Windows XP SP1 (WinNT 5.01.2600)
浏览器： Internet Explorer v6.00 SP1 (6.00.2800.1106)
当前运行的进程：
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
C:\Program Files\Rising\Rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Rising\Rfw\RfwMain.exe
C:\PROGRA~1\RISING\RAV\RAVMON.EXE
C:\Program Files\Rising\Rav\RavTask.exe
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\System32\dwwin.exe
C:\Program Files\Real\RealOne Player\RealPlay.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\dwwin.exe
C:\WINDOWS\System32\dwwin.exe
C:\Documents and Settings\HASEE\桌面\HijackThis1991zww.exe

R3 - URLSearchHook: (no name) - {BAB1AC41-6FF7-4F2E-A04E-5C592CCFEA7D} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\System32\xunleibho_v8.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - IE工具栏增项: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dll
O3 - IE工具栏增项: 东方快车 - {3EA85E14-887D-4E2F-91E2-3158CE58ED62} - C:\Program Files\!Sunv\DFKC2003\IEBand.DLL
O3 - IE工具栏增项: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - IE工具栏增项: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - 启动项HKLM\\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 启动项HKLM\\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 启动项HKLM\\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 启动项HKLM\\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - 启动项HKLM\\Run: [nwiz] nwiz.exe /install
O4 - 启动项HKLM\\Run: [StormCodec_Helper] "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti
O4 - 启动项HKLM\\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - 启动项HKLM\\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - 启动项HKLM\\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - 启动项HKLM\\Run: [RavMon] C:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM
O4 - 启动项HKLM\\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - 启动项HKLM\\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - E:\QQ\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 东方快车-保存翻译后的网页 - C:\Program Files\!Sunv\DFKC2003\ExtSave.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - E:\QQ\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - E:\QQ\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - E:\QQ\SendMMS.htm
O9 - 浏览器额外的按钮: 启动迅雷 - {0062C9BD-B349-40DE-91A0-755F37ACD559} - C:\Program Files\Thunder Network\Thunder\Thunder.exe
O9 - 浏览器额外的“工具”菜单项: 启动迅雷 - {0062C9BD-B349-40DE-91A0-755F37ACD559} - C:\Program Files\Thunder Network\Thunder\Thunder.exe
O9 - 浏览器额外的按钮: 浩方对战平台 - {0A155D3C-68E2-4215-A47A-E800A446447A} - C:\Program Files\浩方对战平台\GameClient.exe
O9 - 浏览器额外的按钮: 东方快车 - {0B66EBA4-5F53-40e4-B17B-A0E9BC1E8D50} - C:\Program Files\!Sunv\DFKC2003\IEBand.DLL
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - E:\QQ\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - E:\QQ\QQ.EXE
O9 - 浏览器额外的按钮: 易趣购物 - {DE60714F-AC17-427e-861A-FD60CBDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=1 (file missing)
O9 - 浏览器额外的“工具”菜单项: 易趣购物 - {DE60714F-AC17-427e-861A-FD60CBDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=1 (file missing)
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
O16 - DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} - http://www.clubbox.co.kr/neo.fld/NowStarter.cab
O16 - DPF: {20C2C286-BDE8-441B-B73D-AFA22D914DA5} (PowerList Control) - http://www.ppstream.com/bin/powerplayer.cab
O16 - DPF: {30348281-949B-4E9F-8A99-44EC423EB66D} (MoxtvUploadX Control) - http://u91.mofile.com/cn/upload/MoxtvFX.CAB
O16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (CEditCtrl Object) - https://img.alipay.com/download/aliedit.cab
O16 - DPF: {575594D5-8974-4AFE-9919-8FE4AA687DEF} (Nhnplayer Control) - http://wowccm.net/nhnplayerx.cab
O16 - DPF: {5DAEF053-DEF0-4752-A963-CCE9B49B0B79} (Gogs Class) - http://bridge.item2.naver.com/music/cab/nbgm.cab
O16 - DPF: {7260569F-1D40-4E7F-B95B-2E68D35668B9} (MofileUploadX Control) - http://www.mofile.com/activex/UploadFX.CAB
O16 - DPF: {72C73565-4297-4835-9306-E750A2B0DDA4} (AlbumBatchUpload Control) - http://app1.tom.com/upload/AlbumBatchUpload.ocx
O16 - DPF: {8AD85876-8DE9-4154-8C3D-8B33270309F7} (AxOutlookAdd Control) - http://img.365ren.com/planet_images/cab/BuddyInvite.cab
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0,0,10
O16 - DPF: {A984ED9F-E8DA-44E5-BC18-C14B9ABEF79D} (photo_uploader Control) - http://upload.photo.163.com/photoup.cab
O16 - DPF: {C14D003A-DA41-4FEE-8204-62A94EAA29D1} (GLWebAvt Control) - http://bbs.ourgame.com/image/GLWebAvt.cab
O16 - DPF: {D0A29C6C-AA71-4423-8C4A-5998B774C448} - http://download.ourgame.com/IEDown4.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8AD4A6A8-DDD6-4968-9C2E-427464523574}: NameServer = 85.255.116.39,85.255.112.105
O17 - HKLM\System\CCS\Services\Tcpip\..\{99DD1A7F-22D8-4298-BEAC-A0D528568615}: NameServer = 85.255.116.39 85.255.112.105
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.39 85.255.112.105
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 85.255.116.39 85.255.112.105
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.39 85.255.112.105
O21 - SSODL: DLMon - {590498A3-4131-4D8F-BA4B-36791A0803B1} - C:\WINDOWS\System32\DLMain.dll (file missing)
O21 - SSODL: DVDBurn - {790448C3-4239-45AF-C98B-367991A8B103} - C:\WINDOWS\Downloaded Program Files\AfxEdit.dll (file missing)
O21 - SSODL: DelayRun - {5A6F2F95-3191-433B-8533-EB0B596A7BAC} - C:\WINDOWS\System32\327d7cd0.dll (file missing)
O23 - NT 服务: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - NT 服务: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rfw\rfwsrv.exe
O23 - NT 服务: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe
O23 - NT 服务: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe

轩辕小聪卡卡技术团队帖子:8368 注册: 2006-01-09 来自:	发表于： 2006-09-05 19:10 \| 短消息资料字号：小中大 8楼 O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll 参考http://forum.ikaka.com/topic.asp?board=28&artid=7259392中关于HijackThis日志中的O10项的处理方法。
轩辕小聪卡卡技术团队帖子:8368 注册: 2006-01-09 来自:

初生襁褓狮

帖子:11
注册: 2006-04-18
来自:

发表于： 2006-09-05 19:25 | 只看楼主 短消息资料

字号：小中大 9楼

引用:

【轩辕小聪的贴子】O10 - 未知的文件在 Winsock LSP: c:\windows\system32\cn_spiex.dll
参考http://forum.ikaka.com/topic.asp?board=28&artid=7259392中关于HijackThis日志中的O10项的处理方法。
………………

谢谢你们了
我用LSP好象解决了问题呵呵

终于放心了

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	发表于： 2006-09-05 17:12 \| 只看楼主短消息资料字号：小中大 1楼程序全打不开了，帮我看看好吗。。（附上扫描）昨晚用橙色8月杀了毒后。。。。今天一开机就出现问题一点应用程序就出现“遇到问题需要关闭。。。” 但是不点确定又可以继续用，我现在就是但奇怪的是有几个程序就没问题象什么“WINDOWS优化大师” 而其他BT EMULE 千千静听 FLASHGET统统要提示关闭这个是我截的图瑞星，木马杀手还有橙色8月什么的杀软我都用过了，但找不到问题。。。。。。 2006-09-05 19:25:13.263000000
地区性1 初生襁褓狮帖子:11 注册: 2006-04-18 来自:	分享到：

瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 程序全打不开了，帮我看看好吗。。（附上扫描）

程序全打不开了，帮我看看好吗。。（附上扫描）

程序全打不开了，帮我看看好吗。。（附上扫描）

瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛程序全打不开了，帮我看看好吗。。（附上扫描）