瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 有的网页打不开 请高手帮我分析分析结果
xjtulzf - 2012-5-11 23:00:00
我有的网页打不开  我用HijackThis分析的结果如下,请高手帮我分析  怎么修理  谢谢
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:34:25, on 2012-5-11
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\360\360Safe\deepscan\zhudongfangyu.exe
C:\Program Files\Keniu\ConewRsc\conewrsc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\360\360Safe\safemon\360Tray.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\iResearch\iClick\iResearchiClick.exe
C:\Program Files\NetInsight\VolunteerPro\VolunteerPro.exe
C:\Program Files\360\360jishi\360js.exe
C:\Program Files\TTKN\CAJVD\CAJSHost.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\Tencent\QQ\Bin\QQ.exe
C:\Program Files\Tencent\QQ\Bin\QQ.exe
C:\Program Files\Tencent\QQ\Bin\TXPlatform.exe
C:\Program Files\Tencent\QQ\Bin\QQExternal.exe
C:\Program Files\Tencent\QQ\Bin\QQExternal.exe
C:\Program Files\Tencent\QQ\Bin\QQExternal.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\Tencent\QQ\Bin\QQExternal.exe
D:\截图教程\截图工具.exe
C:\Program Files\SogouExplorer\sogouexplorer.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

O2 - BHO: TeachingHandler - {31EBA2E2-58B2-4980-9C41-F12F5F1422C5} - C:\WINDOWS\system32

\TPHANDLE.dll
O4 - HKLM\..\Run: [360Safetray] "C:\Program Files\360\360Safe\safemon\360Tray.exe" /start
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide

/waitservice
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" 

-osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [iResearchiClick] "C:\iResearch\iClick\iResearchiClick.exe"  -d 30
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK

SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx

nLite.inf,C,,4,N (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx

nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx

nLite.inf,C,,4,N (User 'Default user')
O4 - Startup: 清研通网络调研.lnk = C:\Program Files\NetInsight\VolunteerPro\VolunteerPro.exe
O9 - Extra button: 信息检索 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1

\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network

Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -

C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\iclickpm.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\iclickpm.dll
O15 - Trusted Zone: http://www.cfca.com.cn
O15 - Trusted Zone: http://ebank.spdb.com.cn
O15 - Trusted Zone: http://www.cfca.com.cn
O15 - Trusted Zone: http://ebank.spdb.com.cn
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {0E48410F-D1B8-472A-85DB-27F3D77284CE} (UPEditorCtrl Class) -

https://unionpaysecure.com/upe/UPEditor.cab
O16 - DPF: {1A841E9A-E965-4425-B0CF-0BD38A99221D} (coSfEditCtl Class) -

https://img.99bill.com/seashell/website/js/pki/SF99BILL_11_v2.cab
O16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl Class) -

https://download.alipay.com/aliedit/aliedit/2401/aliedit.cab
O16 - DPF: {A3CD7F74-93C9-4BC4-B892-CCDF1514F714} (Submit Class) -

https://pbank.95559.com.cn/personbank/ocx/safe_bankcomm.cab
O16 - DPF: {BAEA0695-03A4-43BB-8495-C7025E1A8F42} (QQCertificateCtrl Class) -

https://www.tenpay.com/download/tenpaycert_xp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{57D6AE4D-DCE1-4377-A91E-7F56B5F56C7E}: NameServer =

202.117.0.20,202.117.0.21
O18 - Protocol: kuwo - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32

\mshtml.dll
O22 - SharedTaskScheduler: Browseui 预加载程序 - {438755C2-A8BA-11D1-B96B-00A0C90312E1} -

C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: 组件类别缓存程序 - {8C7461EF-2B13-11d2-BE35-3078302C2030} -

C:\WINDOWS\system32\browseui.dll
O23 - Service: 360电脑技师服务 (360js) - Unknown owner - C:\Program Files\360

\360jishi\360js.exe
O23 - Service: CAJ Service Host - Tongfang Knowledge Network Technology(Beijing) Co., Ltd. -

C:\Program Files\TTKN\CAJVD\CAJSHost.exe
O23 - Service: Contrl Center of Storm Media (ccosm) - 北京暴风网际科技有限公司 - C:\Program

Files\StormII\stormliv.exe
O23 - Service: Conew Rescue Service - Unknown owner - C:\Program

Files\Keniu\ConewRsc\conewrsc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart

Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart

Security\ekrn.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation -

C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: 主动防御 (ZhuDongFangYu) - 360.cn - C:\Program Files\360

\360Safe\deepscan\zhudongfangyu.exe

--
End of file - 6013 bytes


用户系统信息:Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; SE 2.X MetaSr 1.0)
networkedition - 2012-5-14 9:59:00
下载sreng工具扫描日志压缩发来。

http://www.kztechs.com/sreng/download.html
1
查看完整版本: 有的网页打不开 请高手帮我分析分析结果