瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 svchost.exe应用程序错误,掉线上不上网的问题(有日志)

1   1  /  1  页   跳转

[求助] svchost.exe应用程序错误,掉线上不上网的问题(有日志)

收藏
中毒是我
头像
健康舞勺狮
  • 帖子:187
  • 注册: 2005-09-02
  • 来自:
发表于: 2008-12-24 21:35 | 只看楼主 短消息 资料
字号: 1楼

svchost.exe应用程序错误,掉线上不上网的问题(有日志)

vchost.exe应用程序错误,掉线上不上网,重启就可以了,可是一会又出现这个问题
Logfile of HijackThis v1.99.1
Scan saved at 21:33:32, on 2008-12-24
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
D:\软件3\360safe_newhua\360safe\safemon\360tray.exe
C:\Program Files\racer-ccn-racerpc-ha\racer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\GridService\peeradapter.exe
C:\Program Files\GridService\peer.exe
C:\Program Files\360Safebox\safeboxtray.exe
D:\软件2\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
D:\软件2\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
D:\工具\ha_hijackthis_1991\HijackThis.exe
R3 - Default URLSearchHook is missing
O1 - Hosts: ------fs2you patch by vadera@pdahd.cn------
O1 - Hosts: 59.63.157.25 www.fs2you.com
O1 - Hosts: 222.169.230.101 dyn.www.fs2you.com
O1 - Hosts: 59.32.232.195 file1.fs2you.com
O1 - Hosts: 222.169.230.98 file2.fs2you.com
O1 - Hosts: 221.204.246.79 file3.fs2you.com
O1 - Hosts: 61.150.85.80 file4.fs2you.com
O1 - Hosts: 60.2.139.27 file5.fs2you.com
O1 - Hosts: 61.184.189.10 file6.fs2you.com
O1 - Hosts: 61.174.62.132 file7.fs2you.com
O1 - Hosts: 58.211.75.49 file8.fs2you.com
O1 - Hosts: 61.134.84.238 file9.fs2you.com
O1 - Hosts: 61.156.40.181 file10.fs2you.com
O1 - Hosts: 218.75.151.4 file11.fs2you.com
O1 - Hosts: 58.211.75.31 file12.fs2you.com
O1 - Hosts: 124.94.101.133 file13.fs2you.com
O1 - Hosts: 221.204.246.115 file14.fs2you.com
O1 - Hosts: 218.75.151.10 file15.fs2you.com
O1 - Hosts: 58.218.209.126 file16.fs2you.com
O1 - Hosts: 61.157.152.173 file17.fs2you.com
O1 - Hosts: 125.46.41.27 file18.fs2you.com
O1 - Hosts: 125.91.11.223 file19.fs2you.com
O1 - Hosts: 59.53.48.134 file20.fs2you.com
O1 - Hosts: 59.53.48.136 file21.fs2you.com
O1 - Hosts: 59.53.48.144 file22.fs2you.com
O1 - Hosts: 61.139.106.204 file23.fs2you.com
O1 - Hosts: 59.53.48.172 file24.fs2you.com
O1 - Hosts: 124.94.101.146 file25.fs2you.com
O1 - Hosts: 61.166.111.227 file26.fs2you.com
O1 - Hosts: 59.32.232.195 cachefile1.fs2you.com
O1 - Hosts: 222.169.230.98 cachefile2.fs2you.com
O1 - Hosts: 221.204.246.79 cachefile3.fs2you.com
O1 - Hosts: 61.150.85.80 cachefile4.fs2you.com
O1 - Hosts: 60.2.139.27 cachefile5.fs2you.com
O1 - Hosts: 61.184.189.10 cachefile6.fs2you.com
O1 - Hosts: 61.174.62.132 cachefile7.fs2you.com
O1 - Hosts: 58.211.75.49 cachefile8.fs2you.com
O1 - Hosts: 61.134.84.238 cachefile9.fs2you.com
O1 - Hosts: 61.156.40.181 cachefile10.fs2you.com
O1 - Hosts: 218.75.151.4 cachefile11.fs2you.com
O1 - Hosts: 58.211.75.31 cachefile12.fs2you.com
O1 - Hosts: 124.94.101.133 cachefile13.fs2you.com
O1 - Hosts: 221.204.246.115 cachefile14.fs2you.com
O1 - Hosts: 218.75.151.10 cachefile15.fs2you.com
O1 - Hosts: 58.218.209.126 cachefile16.fs2you.com
O1 - Hosts: 61.157.152.173 cachefile17.fs2you.com
O1 - Hosts: 125.46.41.27 cachefile18.fs2you.com
O1 - Hosts: 125.91.11.223 cachefile19.fs2you.com
O1 - Hosts: 59.53.48.134 cachefile20.fs2you.com
O1 - Hosts: 59.53.48.136 cachefile21.fs2you.com
O1 - Hosts: 59.53.48.144 cachefile22.fs2you.com
O1 - Hosts: 61.139.106.204 cachefile23.fs2you.com
O1 - Hosts: 59.53.48.172 cachefile24.fs2you.com
O1 - Hosts: 124.94.101.146 cachefile25.fs2you.com
O1 - Hosts: 61.166.111.227 cachefile26.fs2you.com
O1 - Hosts: ------fs2you patch end------
O2 - BHO: Thunder AtOnce - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll
O2 - BHO: ThunderBHO - {B69F34DC-F0F9-42DC-9EDD-957187DA688D} - C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll
O2 - BHO: SafeMon Class - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} - D:\软件3\360safe_newhua\360safe\safemon\safemon.dll
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\kakatool.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [360Safetray] D:\软件3\360safe_newhua\360safe\safemon\360tray.exe /start
O4 - HKLM\..\Run: [runeip] "D:\软件3\Rising\AntiSpyware\runiep.exe" /startup
O4 - HKLM\..\Run: [AVP] "D:\软件2\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [racer] C:\Program Files\racer-ccn-racerpc-ha\racer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &U使用纳米机器人下载并收藏 - D:\软件\NamiRobot\Data\du.html
O8 - Extra context menu item: 使用迅雷下载 - C:\Program Files\Thunder\Program\geturl.htm
O8 - Extra context menu item: 使用迅雷下载全部链接 - C:\Program Files\Thunder\Program\getallurl.htm
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 用比特精灵下载(&B) - D:\软件\BitSpirit\bsurl.htm
O9 - Extra button: Web反病毒统计 - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - D:\软件2\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: 访问瑞星网站 - {FF2DE7A6-ECB1-4CBC-9C0E-D92A9E66E444} - http://www.rising.com.cn/?u=RSTB (file missing)
O9 - Extra button: 访问卡卡社区 - {FF2DE7A6-ECB1-4CBC-9C0E-D92A9E66E445} - http://www.ikaka.com/?u=RSTB (file missing)
O15 - Trusted Zone: http://*.221.208.242.29
O15 - Trusted Zone: http://*.221.208.250.138
O15 - Trusted Zone: http://*.cncmax.cn
O15 - Trusted Zone: http://*.cncmax.hl.cn
O15 - Trusted Zone: http://*.cncmax.tj.cn
O15 - Trusted Zone: http://*.passport.cncmax.cn
O17 - HKLM\System\CCS\Services\Tcpip\..\{819498AD-A82D-4936-87BA-E3D60A02D5AC}: NameServer = 202.102.224.68 202.102.227.68
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: 卡巴斯基反病毒6.0个人版 (AVP) - Unknown owner - D:\软件2\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing)
O23 - Service: Contrl Center of Storm Media (ccosm) - 北京暴风网际科技有限公司 - D:\软件2\Storm3-tiank\StormII\stormliv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; CNCDialer)
分享到:
gototop
 
sytu_sj1988
头像
自信弱冠狮
  • 帖子:349
  • 注册: 2008-12-23
  • 来自:
发表于: 2008-12-24 21:48 | 短消息 资料
字号: 2楼

回复:svchost.exe应用程序错误,掉线上不上网的问题(有日志)

用工具打好系统补丁,可以用360打,打好就没事了
与病毒无关,远程攻击
gototop
 
晕4
头像
叱咤花甲狮
  • 帖子:5398
  • 注册: 2008-08-10
  • 来自:
发表于: 2008-12-24 22:55 | 短消息 资料
字号: 3楼

回复:svchost.exe应用程序错误,掉线上不上网的问题(有日志)

参考此帖http://bbs.ikaka.com/showtopic-8563235.aspx
打好补丁

之后
扫SRENG日志到这论坛

下载System Repair Engineer(Sreng)
http://www.kztechs.com/sreng/download.html

运行SRengLdr.exe→智能扫描→扫描

等扫描完成,保存日志(LOG格式)

日志以附件上传

(点击我回的贴的右下角的“引用”或比较大的“回复”,然后就应该知道怎么以附件发了)
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT