电脑总是到晚上的时候断网,然后系统卡住,系统资源库不足。机箱声音很响。不知道是电信的线路老化还是电脑的问题。请大家帮我看看。
HijackThis_zww汉化版扫描日志 V1.99.1
保存于 23:39:51, 日期 2013-8-26
操作系统: Windows XP SP3 (WinNT 5.01.2600)
浏览器: Internet Explorer v8.00 (8.00.6001.18702)
当前运行的进程:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\RSD\RsMgrSvc.exe
C:\Program Files\Rising\Rav\RavMonD.exe
C:\Program Files\Rising\RFW\RavMonD.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\360\360safe\safemon\360Tray.exe
C:\Program Files\Rising\Rav\RSTRAY.EXE
C:\Program Files\Rising\RFW\RSTRAY.EXE
C:\Program Files\360Safebox\safeboxTray.exe
C:\Program Files\ICBCEbankTools\Gemplus\GemSafe Libraries\BIN\RRMSVR.exe
C:\Program Files\ICBCEbankTools\Gemplus\GemSafe Libraries\BIN\RegTool.exe
D:\BOSH IBS Security Suite 2.4 For Personal\hengbao\bosh_keyDriver01.exe
C:\Program Files\bosh_feitian\certd_bosh.exe
C:\WINDOWS\system32\D4Svr_ICBC.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\360\360Desktop\Bin\360Desktop.exe
C:\Documents and Settings\Administrator\Application Data\360bizhi\360wpsrv.exe
C:\Program Files\360\360WangPan\360WangPan.exe
C:\Program Files\360\360jishi\360js.exe
d:\MyDrivers\DriverGenius2013\DgService.exe
C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe
C:\WINDOWS\system32\D4Ser_ICBC.exe
C:\WINDOWS\system32\D4Ser_ICBC.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\RSD\popwndexe.exe
C:\Program Files\360\360safe\SoftMgr\360AppCore.exe
C:\Documents and Settings\Administrator\Application Data\360Notify\Bin\360seNotify.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
d:\SogouInput\Components\SogouFlash\1.0.0.48\SogouFlash.exe
d:\SogouInput\6.7.0.0163\SogouCloud.exe
C:\Program Files\Rising\Rav\rsmain.exe
C:\Program Files\Rising\Rav\RsAgent.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
E:\硬盘检查工具\HijackThis1991\HijackThis1991zww.exe
O2 - BHO: VideoUrlSniffer - {00000ADA-7E0D-47C1-986C-F017D09C4304} - C:\Program Files\Common Files\Thunder Network\KanKan\VideoUrlSniffer.2.0.1.99.(576).dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: 如意淘BHO - {876D0712-C780-4347-B56D-C30C520033C5} - C:\Program Files\ShoppingAssistant\ruyitao\3.5.5.2\ShoppingAssistant.dll
O2 - BHO: XunleiBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll
O2 - BHO: QvodExtend - {A8502600-B272-4F68-A67B-A0305D46D297} - d:\QvodPlayer\QvodExtend\5.0.83.0\QvodExtend.dll
O2 - BHO: SafeMon Class - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} - C:\Program Files\360\360safe\safemon\safemon.dll
O2 - BHO: 中国工商银行BHO - {BB4491A2-D11A-4c6b-91C0-B53246A3122B} - C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\Icbc_AntiPhishing.dll
O2 - BHO: CITICS ProcessProtect Class - {C37F9D60-975D-41f2-A745-4DC934D319AA} - C:\WINDOWS\system32\CITICSPP.dll
O2 - BHO: CITICS Antiphishing Class - {C8CBC109-B04A-4dda-956E-BFFE0360DADD} - C:\WINDOWS\system32\CITICAP.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - 启动项HKLM\\Run: [360Safetray] "C:\Program Files\360\360safe\safemon\360Tray.exe" /start
O4 - 启动项HKLM\\Run: [RavTRAY] "C:\Program Files\Rising\Rav\RSTRAY.EXE" -system
O4 - 启动项HKLM\\Run: [RFWTRAY] "C:\Program Files\Rising\RFW\RSTRAY.EXE" -system
O4 - 启动项HKLM\\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - 启动项HKLM\\Run: [360Safebox] "C:\Program Files\360Safebox\safeboxTray.exe" /r
O4 - 启动项HKLM\\Run: [Gemplus Reader Resource Manager] C:\Program Files\ICBCEbankTools\Gemplus\GemSafe Libraries\BIN\RRMSVR.exe
O4 - 启动项HKLM\\Run: [RegTool] C:\Program Files\ICBCEbankTools\Gemplus\GemSafe Libraries\BIN\RegTool.exe
O4 - 启动项HKLM\\Run: [gemstrmw] C:\WINDOWS\system32\gemstrmw.exe /r
O4 - 启动项HKLM\\Run: [HengBao UranuSafe CSP V3.0 For SHBANK[bosh_keyDriver01]] D:\BOSH IBS Security Suite 2.4 For Personal\hengbao\bosh_keyDriver01.exe
O4 - 启动项HKLM\\Run: [bosh_certd] C:\Program Files\bosh_feitian\certd_bosh.exe
O4 - 启动项HKLM\\Run: [D4Svr_ICBC.exe] D4Svr_ICBC.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [360DeskTop] "C:\Program Files\360\360Desktop\Bin\360Desktop.exe" /autorun
O4 - HKCU\..\Run: [360WallPaper] "C:\Documents and Settings\Administrator\Application Data\360bizhi\360wpsrv.exe"
O4 - HKCU\..\Run: [360cloud] "C:\Program Files\360\360WangPan\360WangPan.exe" /autostart
O8 - IE右键菜单中的新增项目: 使用迅雷看看播放器播放 - C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEMenu.htm
O8 - IE右键菜单中的新增项目: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - IE右键菜单中的新增项目: 添加为阿里旺旺表情 - D:\AliWangWang\7.20.01C\AddNewEmotion.htm
O8 - IE右键菜单中的新增项目: 添加网址到360安全桌面 - C:\Program Files\360\360Desktop\Bin\addapp.html
O9 - 浏览器额外的按钮: 假冒网站检测控件设置 - {00B03C7D-93A4-4814-98A9-66351ADEDF84} - res://CITICAP.dll/ConfigByHotIcon (file missing)
O9 - 浏览器额外的“工具”菜单项: 假冒网站检测控件设置 - {00B03C7D-93A4-4814-98A9-66351ADEDF84} - res://CITICAP.dll/ConfigByHotIcon (file missing)
O9 - 浏览器额外的按钮: (no name) - {14c1d00e-0b92-4379-880b-444fa2d740dd} - C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEToolMenu.htm
O9 - 浏览器额外的“工具”菜单项: 启动迅雷看看播放器 - {14c1d00e-0b92-4379-880b-444fa2d740dd} - C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEToolMenu.htm
O9 - 浏览器额外的按钮: 启动迅雷看看播放器 - {24c1d00e-0b92-4379-880b-444fa2d740dd} - C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEToolBar.htm
O9 - 浏览器额外的按钮: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - 浏览器额外的按钮: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - 浏览器额外的“工具”菜单项: 创建移动收藏... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - 浏览器额外的按钮: 迅雷看看 - {5D578929-E74E-46A2-A810-4F33D011DC52} - C:\Program Files\Common Files\Thunder Network\Kankan\XLStartKankan.exe
O9 - 浏览器额外的按钮: PPLive - {95B3F550-91C4-4627-BCC4-521288C52977} - d:\PPLive\PPTV\PPLive.exe
O9 - 浏览器额外的“工具”菜单项: PPLive - {95B3F550-91C4-4627-BCC4-521288C52977} - d:\PPLive\PPTV\PPLive.exe
O9 - 浏览器额外的按钮: 如意淘 - {A5A1BF2A-36DA-4241-B8A9-D1C51CA06FF5} - C:\Program Files\ShoppingAssistant\ruyitao\3.5.5.2\ShoppingAssistant.dll
O9 - 浏览器额外的按钮: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - 浏览器额外的“工具”菜单项: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - 浏览器额外的“工具”菜单项: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International
O15 - “受信任的站点”中添加项: http://*.ecitic.com
O15 - “受信任的站点”中添加项: http://*.pingan.com
O16 - DPF: {04A39EFC-FDF5-4819-98C9-BBC864DB2F90} (ClientBindingCtrl Class) -
https://mybank.icbc.com.cn/icbc/ClientBinding.cabO16 - DPF: {060CA154-DF25-4F03-98AA-FBCDE9D27382} (TDRDV Class) -
https://mybank.icbc.com.cn/icbc/ICBC_TDRDV.cabO16 - DPF: {36C9539B-49D2-01C7-9C6D-10DACDFEA59C} (Axcleanctrl Class) -
https://b2c.icbc.com.cn/icbc/newperbank/icbcclean.cabO16 - DPF: {3AA9CF07-DF20-48FF-98BE-DED276E40146} (GDGetTokenInfo Class) -
https://mybank.icbc.com.cn/icbc/GDReadPub.cabO16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl Class) -
https://download.alipay.com/aliedit/aliedit/2302/aliedit.cabO16 - DPF: {7978461C-CC22-48F2-BC69-02220D3E101D} (CertEnroll Class) -
https://download.alipay.com/itrusenroll.cabO16 - DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} (AxSubmitControl Class) -
https://mybank.icbc.com.cn/icbc/newperbank/AxSafeControls.cabO16 - DPF: {93E730CA-32AA-4C56-B5FB-65932E954CFE} (IEKeyControl Class) -
https://mybank.icbc.com.cn/icbc/ ... _IE_FULL_SCREEN.CABO16 - DPF: {A3CD7F74-93C9-4BC4-B892-CCDF1514F714} (Submit Class) -
https://pbank.95559.com.cn/personbank/ocx/safe_bankcomm.cabO16 - DPF: {B1FBC1AD-5644-4084-882A-0F8BA85E7506} (InfoSecICBCNetSign Class) -
https://mybank.icbc.com.cn/icbc/ICBC_NetSign.dllO16 - DPF: {B3D433B8-F0D2-4D58-9DC0-09C62B7B8EAD} (AxAssistComm Class) -
https://pbank.95559.com.cn/personbank/cab/BocomAssistComm.cabO16 - DPF: {C391E12A-EAF1-45F1-8425-6E513C0D553C} (BOCOM AxSubmitCtrl Class) -
https://pbank.95559.com.cn/personbank/ocx/x32.cabO16 - DPF: {C7EC0B9B-074B-40FE-BF29-B135FB4F57D7} (Icbc_gemplus2006dv Control) -
https://b2c.icbc.com.cn/icbc/icbc_gemplus2006dv.dllO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.co ... s/flash/swflash.cabO16 - DPF: {DD5BF6D1-6663-47E0-9DFA-5C343CAF178E} (xoliimpl Class) -
http://xmp.down.sandai.net/kankan/xinstaller.cabO16 - DPF: {E787FD25-8D7C-4693-AE67-9406BC6E22DF} (QQPasswordCtrl Class) -
https://www.tenpay.com/download/tenpaycert_xp.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{A53BD338-B76D-4473-B6D9-E3DC3BB5C5C3}: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.8
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - NT 服务: 360电脑技师服务 (360js) - Unknown owner - C:\Program Files\360\360jishi\360js.exe" /service (file missing)
O23 - NT 服务: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - NT 服务: DriverGenius PNP Service (DGPNPSEV) - MyDrivers.com - d:\MyDrivers\DriverGenius2013\DgService.exe
O23 - NT 服务: Google 更新服务 (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /svc (file missing)
O23 - NT 服务: Google 更新服务 (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc (file missing)
O23 - NT 服务: ICBC Daemon Service - Unknown owner - C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe
O23 - NT 服务: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - NT 服务: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - NT 服务: OnKey Service _ICBC - Tendyron Corporation - C:\WINDOWS\system32\D4Ser_ICBC.exe
O23 - NT 服务: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - NT 服务: Rsd Service (RsMgrSvc) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\RSD\RsMgrSvc.exe
O23 - NT 服务: Rav Service (RsRavMon) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\Rav\RavMonD.exe
O23 - NT 服务: RFW Service (RsRFWMon) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\RFW\RavMonD.exe
O23 - NT 服务: webboost - Unknown owner - C:\Program Files\Rising\RSE\webboost.exe (file missing)
O23 - NT 服务: 主动防御 (ZhuDongFangYu) - 360.cn - C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe
用户系统信息:Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/29.0.1547.57 Safari/537.36