瑞星卡卡安全论坛技术交流区系统软件 【求助】问题好象很严重啊.高手帮忙看看呀.

1   1  /  1  页   跳转

【求助】问题好象很严重啊.高手帮忙看看呀.

【求助】问题好象很严重啊.高手帮忙看看呀.

最近我家有一台电脑无论打开什么应用程序都无法打开...比如我打开一个QQ然后就跳出来一个对话框问我选什么应用程序来打开这个文件.无论什么应用程序都是这样....我想重装系统..谁知道连装系统都不行..它跳出来一个对话框说.The operating system denied access to the specified file.请问要怎么弄啊。 .谁教教我呢...郁闷....
最后编辑2006-09-29 22:02:05
分享到:
gototop
 

现在修复了一下注册表可以点打开了..但是每次点一个应用程序就会跳出对话框说什么应用程序错误..还是只要是连接网络的话那电脑就会自动打开IE然后进如一个网站..然后就开始下载什么文件..感觉有点见鬼了...吓人..然后把网络拔掉就不动了....会不会被人远程操控啊???扫了一下日志希望有人帮忙看一下。问题出哪了....怕怕....一身冷汗啊.....
gototop
 

2006-09-29,20:26:19

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <{2C4718F1-02EA-2052-1230-990301000056}><"C:\Program Files\Common Files\{2C4718F1-02EA-2052-1230-990301000056}\Update.exe" te-110-12-0000040>  []
    <zz><C:\WINDOWS\system32\intenet.exe>  []
    <wow><C:\WINDOWS\system32\Launcher.exe>  []
    <rx><C:\WINDOWS\system32\explore.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <Torjan Program><C:\WINDOWS\WINLOGON.EXE>  []
    <KAVPersonal50><C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe /minimize>  [Kaspersky Lab]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
    <Torjan Program><C:\WINDOWS\WINLOGON.EXE>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <9><C:\WINDOWS\system32\Ravdm.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><EXPLORER.EXE>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\Userinit.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{EFAE7B4A-FA39-4818-ACAC-6B6D851CEFF4}><C:\Program Files\Internet Explorer\WinHook.sys>  []
    <{9A0CFC58-5A6F-41ba-9FFE-4320F4F62FB1}><C:\WINDOWS\system32\cnscheck.dll>  []
    <{9A0CFC58-5A6F-41ba-9FFE-4320F4F62111}><C:\WINDOWS\system32\cnscheck.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <DelayRun><C:\WINDOWS\system\4fdde550.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Extensions]
    <WinlogonNotify: Extensions><C:\WINDOWS\system32\s288lclu1fq8.dll>  []

==================================
启动文件夹
服务
[Command Service / cmdService]
  <C:\WINDOWS\Kg\command.exe><N/A>
[kavsvc / kavsvc]
  <C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe><Kaspersky Lab>
[Network Monitor / Network Monitor]
  <C:\Program Files\Network Monitor\netmon.exe service><N/A>
[Update Service For Windows / SoftUpdate]
  <C:\WINDOWS\SoftUpdate.exe><N/A>
[Registry Protector / WalALET]
  <C:\WINDOWS\SYSTEM32\RUNDLL.EXE C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL,Export 1087><N/A>

==================================
浏览器加载项
[google bar]
  {607E95A1-8F89-4343-B9BC-2EFC2B291BB4} <C:\WINDOWS\system32\googlebar.dll, N/A>
[豪杰超级解霸V8]
  {367E0A21-8601-4986-9C9A-153BF5ACA118} <C:\Herosoft\HeroV8\STHSDVD.EXE, N/A>
[CHINANOG]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.chinanog.org, N/A>
[QQIEFloatBarCfgCmd Class]
  {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[ToolBar888]
  {CBCC61FA-0221-4ccc-B409-CEE865CACA3A} <C:\Program Files\ToolBar888\MyToolBar.dll, N/A>
[5940bar]
  {1A45F0FB-9586-4742-8343-8732C7AAFB88} <C:\WINDOWS\system32\CN5940~1.DLL, >
[Google Script Object]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar1.dll, N/A>
[ShowBarEx Class]
  {15953528-6C01-481A-8DB4-01888FB85B7D} <C:\WINDOWS\system32\CN5940~1.DLL, >
[MyIEHelper Class]
  {16B770A0-0E87-4278-B748-2460D64A8386} <, N/A>
[5940bar]
  {1A45F0FB-9586-4742-8343-8732C7AAFB88} <C:\WINDOWS\system32\CN5940~1.DLL, >
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[51网址导航]
  {23AB87A9-8D32-4266-AAAD-0EA93DABD7DB} <C:\WINDOWS\system32\advdsapi32.dll, N/A>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[QQBrowserHelperObject Class]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[google bar]
  {607E95A1-8F89-4343-B9BC-2EFC2B291BB4} <C:\WINDOWS\system32\googlebar.dll, N/A>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD>
[ThunderMini Browser Helper]
  {8E6C1C49-F9CE-4311-9FB4-D70E8B0AEAEB} <, N/A>
[Spoolsv Class]
  {9C363D55-07D7-433D-A13E-D9C105202F6F} <, N/A>
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[XBTP03129 Class]
  {B07D1F6B-6B8C-4904-8EE8-5E5A2B4624B3} <C:\PROGRA~1\MICRSO~1\tbu05344\SEARCH~1.DLL, IE Toolbar>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[ToolBar888]
  {CBCC61FA-0221-4CCC-B409-CEE865CACA3A} <C:\Program Files\ToolBar888\MyToolBar.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\flash.ocx, Macromedia, Inc.>
[]
  {D3931E9E-AE61-46B1-99BA-91C438A2C855} <C:\WINDOWS\system32\wp237217.dll, 3721公司<推荐使用>>
[&使用迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)]
  <res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
  <C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[反向链接]
  <res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html, N/A>
[添加到QQ自定义面板]
  <C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[类似网页]
  <res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html, N/A>
[缓存的网页快照]
  <res://c:\program files\google\GoogleToolbar1.dll/cmcache.html, N/A>
[翻译英文字词(&T)]
  <res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html, N/A>

==================================
gototop
 

正在运行的进程
[PID: 580][C:\WINDOWS\explorer.exe]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\Kg\asappsrv.dll]  <><2.1.3.466>
    [C:\WINDOWS\system32\wwhcon.dll]  <N/A><N/A>
    [C:\WINDOWS\system\4fdde550.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\wshcon32.dll]  <><4, 1, 0, 0>
    [C:\WINDOWS\system32\cnscheck.dll]  <N/A><N/A>
[PID: 1968][C:\WINDOWS\system32\rundll32.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\Kg\asappsrv.dll]  <><2.1.3.466>
    [C:\DOCUME~1\MERCYK~1\TEMPLA~1\5946a03\1.dll]  <千橡互联><3, 0, 2, 0>
    [C:\DOCUME~1\MERCYK~1\TEMPLA~1\5946a03\3.dll]  <千橡互联><3, 0, 2, 8>
    [C:\DOCUME~1\MERCYK~1\TEMPLA~1\5946a03\4.dll]  <千橡互联><3, 0, 2, 8>
    [C:\WINDOWS\system32\wshcon32.dll]  <><4, 1, 0, 0>
    [C:\WINDOWS\system32\cnscheck.dll]  <N/A><N/A>
[PID: 2560][C:\WINDOWS\system32\alexa.exe]  <N/A><N/A>
    [C:\WINDOWS\Kg\asappsrv.dll]  <><2.1.3.466>
    [C:\DOCUME~1\MERCYK~1\LOCALS~1\Temp\nsr12.tmp\InstallOptions.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\cnscheck.dll]  <N/A><N/A>
[PID: 3252][D:\优化工具\sreng2\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [C:\WINDOWS\Kg\asappsrv.dll]  <><2.1.3.466>
    [C:\WINDOWS\system32\cnscheck.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\wshcon32.dll]  <><4, 1, 0, 0>

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================
gototop
 
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT