瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】最近电脑反应好慢,总有一些网页弹出来.该如何办?

1   1  /  1  页   跳转

【求助】最近电脑反应好慢,总有一些网页弹出来.该如何办?

收藏
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 09:57 | 显示全部 短消息 资料
字号: 1楼

【求助】最近电脑反应好慢,总有一些网页弹出来.该如何办?

最近电脑反应好慢,总有一些网页弹出来.该如何办?好象是中了病毒.

据瑞星全球反病毒监测网介绍,今日有两个病毒特别值得注意,它们是:“代理点击器变种AHY(Trojan.Clicker.Agent.ahy)”和“赌注间谍变种KCP(Trojan.Spy.Bancos.kcp)”病毒。“代理点击器变种AHY”病毒会在后台频繁点击广告页面,可能造成用户计算机运行速度缓慢。“赌注间谍变种KCP”是间谍软件,会窃取网上银行的帐号和密码,给用户带来经济损失。

各位朋友帮忙看看是不是中了这种病毒,如何解决它?
最后编辑2006-09-24 15:09:24
分享到:
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 10:06 | 显示全部 短消息 资料
字号: 2楼

【回复“oo123oo3”的帖子】
瑞星杀毒软件上有智能扫描吗

我正在试着用瑞星杀毒,杀得好慢!
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 11:24 | 显示全部 短消息 资料
字号: 3楼

【回复“jxfengwu”的帖子】

2006-09-24,11:03:15

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <msnmsgr><"C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  []
    <MSNShell><D:\下载夹\MSNShell\BIN\MSNShell.exe autorun>  []
    <Realplayer.exe><C:\WINDOWS\system32\Realplayer.exe>  []
    <shell><"C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00003.exe">  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <{385B11EE-0833-2052-0331-040916200056}><"C:\Program Files\Common Files\{385B11EE-0833-2052-0331-040916200056}\Update.exe" >  []
    <{385B11EE-0834-2052-0331-040916200056}><"C:\Program Files\Common Files\{385B11EE-0834-2052-0331-040916200056}\Update.exe" >  []
    <zz><C:\WINDOWS\system32\intenet.exe>  []
    <wow><C:\WINDOWS\system32\Launcher.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><C:\WINDOWS\rundl132.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <SoundMan><SOUNDMAN.EXE>  [Realtek Semiconductor Corp.]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe>  [Intel Corporation]
    <SysExplr><C:\Herosoft\HeroV8\SysExplr.EXE>  []
    <Realplayer.exe><C:\WINDOWS\system32\Realplayer.exe>  []
    <NMGameX_AutoRun><C:\WINDOWS\system32\Rundll32.exe NMGameX.dll,LiveProcess /aa>  [NMGameX]
    <Torjan Program><C:\WINDOWS\WINLOGON.EXE>  [UtnuWK3cJFeZfBLizdIH]
    <Tray><C:\WINDOWS\command\rundll32.exe>  []
    <zt><C:\WINDOWS\Intel\rundll32.exe>  []
    <ms><C:\Program Files\Microsoft\svhost32.exe>  []
    <winla><c:\winla\winla.exe>  []
    <SoundMam><C:\WINDOWS\system32\SVOHOST.exe>  []
    <RichMedia><C:\WINDOWS\system32\Rundll32.exe  "C:\PROGRA~1\pcast\hbcast.dll",WaitWindows>  [Shanghai Henbang Technology Co., Ltd]
    <System><C:\WINDOWS\TEMP\\setup.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <CheckFaultKernel><C:\WINDOWS\system32\mswdm.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [Beijing Rising Technology Co., Ltd.]
    <{F3D0D422-CE6D-47B3-9CE6-C54DD63F1ADB}><C:\Program Files\Internet Explorer\PLUGINS\new123.sys>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DateTime]
    <WinlogonNotify: DateTime><C:\WINDOWS\system32\ir8ql5l51.dll>  []
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 11:27 | 显示全部 短消息 资料
字号: 4楼

=================================
正在运行的进程
[PID: 120][C:\WINDOWS\Explorer.exe]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\WINDOWS\system32\Rsvtub.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\myrx.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\mywow.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00003.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\ywiper.dll]  <N/A><1, 0, 1, 1014>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [D:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <><2, 0, 5, 1031>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  < ><2, 0, 1, 1007>
[PID: 232][C:\Program Files\CNNIC\Cdn\cdnup.exe]  <><2, 4, 0, 8>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdntdns.dll]  <CNNIC><2, 2, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
[PID: 340][C:\WINDOWS\system32\conime.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
[PID: 1292][C:\WINDOWS\system32\Call.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
[PID: 1372][C:\WINDOWS\SOUNDMAN.EXE]  <Realtek Semiconductor Corp.><5.1.0.28>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
[PID: 1444][C:\WINDOWS\system32\igfxtray.exe]  <Intel Corporation><3.0.0.3847>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3847>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3847>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3847>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3847>
    [C:\WINDOWS\system32\igfxress.dll]  <Intel Corporation><3.0.0.3847>
[PID: 1520][C:\WINDOWS\system32\hkcmd.exe]  <Intel Corporation><3.0.0.3847>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3847>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3847>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3847>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\igfxhk.dll]  <Intel Corporation><3.0.0.3847>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3847>
[PID: 1508][C:\Herosoft\HeroV8\SysExplr.EXE]  <N/A><N/A>
    [C:\Herosoft\HeroV8\HttpReq.dll]  <N/A><N/A>
    [C:\Herosoft\HeroV8\CoolMenu.dll]  <N/A><N/A>
    [C:\Herosoft\HeroV8\httphlp.dll]  <N/A><N/A>
    [C:\Herosoft\HeroV8\AVCDROM.dll]  <N/A><N/A>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\Herosoft\HeroV8\Sys936.DLL]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
[PID: 1764][C:\WINDOWS\system32\Realplayer.exe]  <N/A><N/A>
[PID: 1932][C:\WINDOWS\WINLOGON.EXE]  <UtnuWK3cJFeZfBLizdIH><0.00.0110>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 11:29 | 显示全部 短消息 资料
字号: 5楼

[PID: 1872][C:\WINDOWS\command\rundll32.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
[PID: 2000][C:\WINDOWS\Intel\rundll32.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
[PID: 608][C:\Program Files\Microsoft\svhost32.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
[PID: 332][C:\Program Files\Common Files\UPDATE2\Update.exe]  <N/A><N/A>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
[PID: 348][C:\winla\winla.exe]  <><1, 0, 0, 1>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
[PID: 260][C:\WINDOWS\system32\SVOHOST.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
[PID: 532][C:\WINDOWS\system32\Rundll32.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\PROGRA~1\pcast\hbcast.dll]  <Shanghai Henbang Technology Co., Ltd><1, 1, 3, 8>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
[PID: 1800][C:\WINDOWS\TEMP\setup.exe]  <><1, 0, 0, 1>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
[PID: 1196][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
[PID: 652][D:\下载夹\MSNShell\BIN\MSNShell.exe]  <N/A><N/A>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 11:40 | 显示全部 短消息 资料
字号: 6楼

[PID: 1124][C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yascenter.exe]  <Yahoo><1, 0, 1, 1001>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasiesec.dll]  <Yahoo><1, 0, 2, 1003>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasierres.dll]  <yahoo!china><1, 0, 2, 1000>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [D:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <><2, 0, 5, 1031>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yassist.dll]  <Yahoo!><2, 0, 6, 1004>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasfsks.dll]  <3721.com><2, 1, 1, 87>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  < ><2, 0, 1, 1007>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
[PID: 2792][D:\Program Files\Rising\Rav\Rav.exe]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 75>
    [D:\Program Files\Rising\Rav\PlugIn\RsPgScan.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 17>
    [D:\Program Files\Rising\Rav\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [D:\Program Files\Rising\Rav\CfgDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [D:\Program Files\Rising\Rav\RsCommX.dll]  <rising><18, 0, 0, 1>
    [D:\Program Files\Rising\Rav\RavUI.Dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 65>
    [D:\Program Files\Rising\Rav\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
    [D:\Program Files\Rising\Rav\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [D:\Program Files\Rising\Rav\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [D:\Program Files\Rising\Rav\Scanner.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32>
    [D:\Program Files\Rising\Rav\BWList.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [D:\Program Files\Rising\Rav\RavUIMsg.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
    [D:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 3128][C:\Program Files\Internet Explorer\iexplore.exe]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll]  <Yahoo!><2, 1, 8, 1048>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yaswiper.dll]  <Yahoo><1, 0, 1, 1004>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasiesec.dll]  <Yahoo><1, 0, 2, 1003>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasnoad.dll]  <><1, 1, 4, 1006>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yzsNetProto.dll]  <Yahoo><1, 0, 0, 1>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll]  <Yahoo! China><1, 1, 3, 1035>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll]  <Yahoo! China><1, 0, 1, 1015>
    [C:\WINDOWS\system32\RavExt.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\Program Files\Micrsoft SearchBar\SearchBar.dll]  <IE Toolbar><1, 0, 0, 4>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll]  <Yahoo><1, 0, 2, 1002>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <><2, 0, 5, 1031>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  < ><2, 0, 1, 1007>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\PROGRA~1\pcast\hbcast.dll]  <Shanghai Henbang Technology Co., Ltd><1, 1, 3, 8>
    [c:\WINDOWS\system32\FlashPlayer8OCX.dll]  <N/A><N/A>
    [D:\Program Files\Rising\Rav\RavScrCh.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\WINDOWS\system32\Macromed\Flash\Flash8a.ocx]  <Macromedia, Inc.><8,0,24,0>
    [c:\WINDOWS\system32\urlmons32.dll]  <N/A><N/A>
    [C:\WINDOWS\Dll.dll]  <N/A><N/A>
[PID: 3204][C:\PROGRA~1\Yahoo!\ASSIST~1\ylive.exe]  < ><2, 0, 0, 1002>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <><2, 0, 5, 1031>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  < ><2, 0, 1, 1007>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\ynotifier.dll]  <><1, 0, 0, 5>
[PID: 2132][C:\WINDOWS\Logo1_.exe]  <><1.0.0.0>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
[PID: 3280][D:\下载夹\sreng2\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [D:\下载夹\MSNShell\BIN\ShellDll.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <><2, 0, 7, 1024>
    [C:\Program Files\CNNIC\Cdn\imaoe.dll]  <CNNIC><2, 2, 0, 1>
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  <CNNIC><2, 0, 0, 6>
    [C:\Program Files\CNNIC\Cdn\cdndet.dll]  <CNNIC><2, 4, 0, 3>
    [C:\WINDOWS\system32\winscok.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\RChook.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cdnns.dll]  <CNNIC><2, 0, 0, 0>
    [C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00004.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\msdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\ztdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\tdll.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\quartz32.dll]  <><4, 1, 0, 0>
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 15:01 | 显示全部 短消息 资料
字号: 7楼

下面我再传HT的扫描日志下来
gototop
 
jxfengwu
头像
初生襁褓狮
  • 帖子:24
  • 注册: 2006-09-24
  • 来自:
发表于: 2006-09-24 15:01 | 显示全部 短消息 资料
字号: 8楼

Logfile of HijackThis v1.99.1
Scan saved at 14:44:50, on 2006-09-24
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\windows\system32\wbem\smss.exe
C:\Program Files\CNNIC\Cdn\cdnup.exe
C:\WINDOWS\system32\Call.exe
C:\WINDOWS\WINLOGON.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\conime.exe
C:\Herosoft\HeroV8\SysExplr.EXE
C:\WINDOWS\Intel\rundll32.exe
C:\Program Files\Microsoft\svhost32.exe
C:\winla\winla.exe
C:\WINDOWS\system32\SVOHOST.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\TEMP\setup.exe
C:\WINDOWS\system32\ctfmon.exe
D:\下载夹\MSNShell\BIN\MSNShell.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\ylive.exe
C:\Program Files\Internet Explorer\0Sy.exe
D:\Program Files\TENCENT\QQ\QQ.exe
D:\Program Files\TENCENT\QQ\TMDlls\TIMPlatform.exe
C:\WINDOWS\explorer.exe
D:\Program Files\TENCENT\QQ\QQ.exe
D:\下载夹\HijackThis\ha_hijackthis_1991\HijackThis.exe

R3 - URLSearchHook: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
R3 - URLSearchHook: Micrsoft SearchBar - {6D53ADB7-6AD5-4A59-BFE4-7B57D2F4AA89} - C:\Program Files\Micrsoft SearchBar\SearchBar.dll
F2 - REG:system.ini: Shell=Explorer.exe 1
F3 - REG:win.ini: load=C:\WINDOWS\rundl132.exe
O1 - Hosts: 59.34.148.98 www.hao123.com
O2 - BHO: MyIEHelper Class - {16B770A0-0E87-4278-B748-2460D64A8386} - C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_5010.dll (file missing)
O2 - BHO: CdnForIE Class - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O2 - BHO: isObject Class - {BE0B5843-553A-48C2-9A42-258A1D791AFC} - C:\PROGRA~1\pcast\hbcast.dll
O2 - BHO: Macromedia. Flash8 Object - {C61A70F3-505E-4B90-916F-627A8706B4BC} - c:\WINDOWS\system32\FlashPlayer8OCX.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dll
O3 - Toolbar: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O3 - Toolbar: Micrsoft SearchBar - {6D53ADB7-6AD5-4A59-BFE4-7B57D2F4AA89} - C:\Program Files\Micrsoft SearchBar\SearchBar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SysExplr] C:\Herosoft\HeroV8\SysExplr.EXE
O4 - HKLM\..\Run: [Realplayer.exe] C:\WINDOWS\system32\Realplayer.exe
O4 - HKLM\..\Run: [NMGameX_AutoRun] C:\WINDOWS\system32\Rundll32.exe NMGameX.dll,LiveProcess /aa
O4 - HKLM\..\Run: [Torjan Program] C:\WINDOWS\WINLOGON.EXE
O4 - HKLM\..\Run: [Tray] C:\WINDOWS\command\rundll32.exe
O4 - HKLM\..\Run: [zt] C:\WINDOWS\Intel\rundll32.exe
O4 - HKLM\..\Run: [ms] C:\Program Files\Microsoft\svhost32.exe
O4 - HKLM\..\Run: [winla] c:\winla\winla.exe
O4 - HKLM\..\Run: [SoundMam] C:\WINDOWS\system32\SVOHOST.exe
O4 - HKLM\..\Run: [RichMedia] C:\WINDOWS\system32\Rundll32.exe  "C:\PROGRA~1\pcast\hbcast.dll",WaitWindows
O4 - HKLM\..\Run: [System] C:\WINDOWS\TEMP\\setup.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSNShell] D:\下载夹\MSNShell\BIN\MSNShell.exe autorun
O4 - HKCU\..\Run: [Realplayer.exe] C:\WINDOWS\system32\Realplayer.exe
O4 - HKCU\..\Run: [shell] "C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00003.exe"
O4 - Startup: 腾讯QQ.lnk = D:\Program Files\TENCENT\QQ\QQ.exe
O8 - Extra context menu item: 上传到QQ网络硬盘 - D:\Program Files\TENCENT\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - C:\PROGRA~1\FLASHGET\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\PROGRA~1\FLASHGET\jc_all.htm
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\Program Files\TENCENT\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\Program Files\TENCENT\QQ\AddEmotion.htm
O8 - Extra context menu item: 添加到雅虎订阅(&Y) - res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\Program Files\TENCENT\QQ\SendMMS.htm
O8 - Extra context menu item: 访问通用网址 - C:\Program Files\CNNIC\Cdn\cnnic.htm
O8 - Extra context menu item: 豪杰超级解霸V8实时播放 - C:\Herosoft\HeroV8\MPURLGET.HTM
O8 - Extra context menu item: 雅虎搜索 - res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246
O9 - Extra button: 新浪UC - {2253922F-1B26-4C74-8B57-E3AEE748DBB8} - d:\Program Files\sina\UC\uc.exe (file missing)
O9 - Extra button: 豪杰超级解霸V8 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\Herosoft\HeroV8\STHSDVD.EXE
O9 - Extra 'Tools' menuitem: 豪杰超级解霸V8 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\Herosoft\HeroV8\STHSDVD.EXE
O9 - Extra button: 中文上网 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - Extra 'Tools' menuitem: 中文上网 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - d:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - d:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\cdnns.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\quartz32.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\quartz32.dll
O14 - IERESET.INF: START_PAGE_URL=about:blank
O16 - DPF: {5932517A-3326-4439-A708-1C98EDB5C549} (Downloader Class) - file://C:\Documents and Settings\All Users\Application Data\Share Helper\Cast\GGS\d349d514a\js\iMopDl.cab
O16 - DPF: {A984ED9F-E8DA-44E5-BC18-C14B9ABEF79D} (photo_uploader Control) - http://upload.photo.163.com/photoup.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C661F36D-DF85-4EF4-83C7-E107B83D04B1} (WebActivater Control) - http://dl_dir.qq.com/3dshow/3DShowVM.cab
O16 - DPF: {DA984A6D-508E-11D6-AA49-0050FF3C628D} (Ravonline) - http://download.rising.com.cn/QQ/QQkill/rsonline.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AEA0E665-04A2-44B3-8424-A7C2AE262EA5}: NameServer = 202.101.224.69
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: DateTime - C:\WINDOWS\system32\ir8ql5l51.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT