Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:36:06, on 2010-11-9
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\QvodPlayer\QvodTerminal.exe
C:\Program Files\360\360sd\360sd.exe
C:\Program Files\360\360sd\360rp.exe
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\WINDOWS\system32\svchost.exe
E:\安装文件\qqnczs\SogouInput\5.1.1.4845\ImeUtil.exe
C:\WINDOWS\system32\conime.exe
E:\HiJackThis\HijackThis.exe
O2 - BHO: BHOApp Class - {CE7C3CEF-4B15-11D1-ABED-FA4C0C0931ED} - C:\WINDOWS\system32\bhoexe.dll (file missing)
O4 - HKLM\..\Run: [360Safetray] "C:\Program Files\360\360safe\safemon\360tray.exe" /start
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [360sd] "C:\Program Files\360\360sd\360sdrun.exe"
O4 - HKCU\..\Run: [EPSON ME 300 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDC.EXE /FU "C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\E_S9F.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [QvodPlayer] C:\Program Files\QvodPlayer\QvodTerminal.exe
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O16 - DPF: {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (Edit Class) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{6071730D-606B-4EFC-9AFB-6801BE055033}: NameServer = 202.103.96.112
O18 - Protocol: KuGoo - (no CLSID) - (no file)
O18 - Protocol: KuGoo3 - (no CLSID) - (no file)
O23 - Service: 360 杀毒实时防护服务 (360rp) - 360.cn - C:\Program Files\360\360sd\360rp.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: Google 更新服务 (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Windows Help System (WinHelp32) - Unknown owner - C:\WINDOWS\system32\WinHelp32.exe (file missing)
O23 - Service: 主动防御 (ZhuDongFangYu) - 360.cn - C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe
--
End of file - 3144 bytes
用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; QQPinyin 689; GTB6.5; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)