HijackThis@Qoo的扫描日志  V1.97.7
Scan saved at 8:55:22, on 2005-10-21
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!

Running processes:
C:\WINDOWS.0\System32\smss.exe
C:\WINDOWS.0\system32\winlogon.exe
C:\WINDOWS.0\system32\services.exe
C:\WINDOWS.0\system32\lsass.exe
C:\WINDOWS.0\system32\svchost.exe
C:\WINDOWS.0\System32\svchost.exe
C:\PROGRAM FILES\RISING\RAV\Ravmond.exe
c:\program files\rising\rfw\rfwsrv.exe
C:\PROGRAM FILES\RISING\RAV\RavStub.exe
C:\WINDOWS.0\system32\spoolsv.exe
C:\WINDOWS.0\Explorer.EXE
c:\program files\rising\rfw\RfwMain.exe
C:\WINDOWS.0\System32\drivers\CDAC11BA.EXE
C:\WINDOWS.0\System32\nvsvc32.exe
C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
C:\WINDOWS.0\System32\svchost.exe
C:\WINDOWS.0\system32\rundll32.exe
D:\D-Tools\daemon.exe
C:\WINDOWS.0\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Rising\Rav\RavMon.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\rising\rfw\RfwCfg.exe
D:\download\daemon344\1111\新建文件夹\hijackthis1.97_qoo\HijackThis.exe

R3 - URLSearchHook: (no name) - {BB936323-19FA-4521-BA29-ECA6A121BC78} - (no file)
R3 - URLSearchHook:
O1 - Hosts: 61.152.241.124 www.5460.net
O1 - Hosts: 61.152.241.124 5460.net
O1 - Hosts: 61.152.241.124 www.btchina.net
O1 - Hosts: 61.152.241.124 btchina.net
O1 - Hosts: 61.152.241.124 www.cnbb.com.cn
O1 - Hosts: 61.152.241.124 cnbb.com.cn
O1 - Hosts: 61.152.241.124 www.bdchina.com
O1 - Hosts: 61.152.241.124 bdchina.com
O1 - Hosts: 61.152.241.124 www.951059.com
O1 - Hosts: 61.152.241.124 951059.com
O1 - Hosts: 61.152.241.124 www.greedland.net
O1 - Hosts: 61.152.241.124 greedland.net
O1 - Hosts: 61.152.241.124 www.114.com.cn
O1 - Hosts: 61.152.241.124 114.com.cn
O1 - Hosts: 61.152.241.124 www.2000y.net
O1 - Hosts: 61.152.241.124 2000y.net
O1 - Hosts: 61.152.241.124 www.bbvod.net
O1 - Hosts: 61.152.241.124 bbvod.net
O1 - Hosts: 61.152.241.124 www.qq530.com
O1 - Hosts: 61.152.241.124 qq530.com
O1 - Hosts: 61.152.241.124 www.7gg.net
O1 - Hosts: 61.152.241.124 7gg.net
O1 - Hosts: 61.152.241.124 www.92wy.com
O1 - Hosts: 61.152.241.124 92wy.com
O1 - Hosts: 61.152.241.124 www.vv66.com
O1 - Hosts: 61.152.241.124 vv66.com
O1 - Hosts: 61.152.241.124 www.feifa.com
O1 - Hosts: 61.152.241.124 feifa.com
O1 - Hosts: 61.152.241.124 www.9sky.com
O1 - Hosts: 61.152.241.124 9sky.com
O1 - Hosts: 61.152.241.124 www.cococ.com
O1 - Hosts: 61.152.241.124 cococ.com
O1 - Hosts: 61.152.241.124 www.real2000.org
O1 - Hosts: 61.152.241.124 real2000.org
O1 - Hosts: 61.152.241.124 www.xialala.com
O1 - Hosts: 61.152.241.124 xialala.com
O1 - Hosts: 61.152.241.124 www.chinanewmusic.com
O1 - Hosts: 61.152.241.124 chinanewmusic.com
O1 - Hosts: 61.152.241.124 www.91f.cn
O1 - Hosts: 61.152.241.124 91f.cn
O1 - Hosts: 61.152.241.124 www.6ccc.com
O1 - Hosts: 61.152.241.124 6ccc.com
O1 - Hosts: 61.152.241.124 www.mtvtop.net
O1 - Hosts: 61.152.241.124 mtvtop.net
O1 - Hosts: 61.152.241.124 www.9tt.cn
O1 - Hosts: 61.152.241.124 9tt.cn
O1 - Hosts: 61.152.241.124 www.moviez88.com
O1 - Hosts: 61.152.241.124 moviez88.com
O1 - Hosts: 61.152.241.124 www.vv77.com
O1 - Hosts: 61.152.241.124 vv77.com
O1 - Hosts: 61.152.241.124 www.powervod.com
O1 - Hosts: 61.152.241.124 powervod.com
O1 - Hosts: 61.152.241.124 www.yaotou.com
O1 - Hosts: 61.152.241.124 yaotou.com
O1 - Hosts: 61.152.241.124 www.k666.com
O1 - Hosts: 61.152.241.124 k666.com
O1 - Hosts: 61.152.241.124 www.gameabc.com
O1 - Hosts: 61.152.241.124 gameabc.com
O1 - Hosts: 61.152.241.124 www.pp365.com
O1 - Hosts: 61.152.241.124 pp365.com
O1 - Hosts: 61.152.241.124 www.6flash.com
O1 - Hosts: 61.152.241.124 6flash.com
O1 - Hosts: 61.152.241.124 www.acwind.com
O1 - Hosts: 61.152.241.124 acwind.com
O1 - Hosts: 61.152.241.124 www.withfun.com
O1 - Hosts: 61.152.241.124 withfun.com
O1 - Hosts: 61.152.241.124 www.3320.net
O1 - Hosts: 61.152.241.124 3320.net
O1 - Hosts: 61.152.241.124 www.54118.com
O1 - Hosts: 61.152.241.124 54118.com
O1 - Hosts: 61.152.241.124 www.54114.com
O1 - Hosts: 61.152.241.124 54114.com
O1 - Hosts: 61.152.241.124 www.oklink.net
O1 - Hosts: 61.152.241.124 oklink.net
O1 - Hosts: 61.152.241.124 www.haha168.com
O1 - Hosts: 61.152.241.124 haha168.com
O1 - Hosts: 61.152.241.124 www.joke.qz.fj.cn
O1 - Hosts: 61.152.241.124 joke.qz.fj.cn
O1 - Hosts: 61.152.241.124 www.jokescn.net
O1 - Hosts: 61.152.241.124 jokescn.net
O1 - Hosts: 61.152.241.124 www.showji.com
O1 - Hosts: 61.152.241.124 showji.com
O1 - Hosts: 61.152.241.124 www.mobilesky.com.cn
O1 - Hosts: 61.152.241.124 mobilesky.com.cn
O1 - Hosts: 61.152.241.124 www.116.com.cn
O1 - Hosts: 61.152.241.124 116.com.cn
O1 - Hosts: 61.152.241.124 www.cnmaya.com
O1 - Hosts: 61.152.241.124 cnmaya.com
O1 - Hosts: 61.152.241.124 www.8825.com
O1 - Hosts: 61.152.241.124 8825.com
O1 - Hosts: 61.152.241.124 www.cqzgbbs.net
O1 - Hosts: 61.152.241.124 cqzgbbs.net
O1 - Hosts: 61.152.241.124 www.nowok.net
O1 - Hosts: 61.152.241.124 nowok.net
O1 - Hosts: 61.152.241.124 www.boxup.com
O1 - Hosts: 61.152.241.124 boxup.com
O1 - Hosts: 61.152.241.124 www.tt78.com
O1 - Hosts: 61.152.241.124 tt78.com
O1 - Hosts: 61.152.241.124 www.9ting.com
O1 - Hosts: 61.152.241.124 9ting.com
O1 - Hosts: 61.152.241.124 www.cncast.com
O2 - BHO: (no name) - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS.0\System32\xunleibho_v8.dll
O2 - BHO: MMSAssist - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - C:\PROGRA~1\MMSASS~1\MMSASS~1.DLL
O2 - BHO: (no name) - {850B69E4-90DB-4F45-8621-891BF35A5B53} - c:\windows.0\system32\alitb\__new\bar.dll
O2 - BHO:
O2 - BHO: IE - {D157330A-9EF3-49F8-9A67-4141AC41ADD4} - C:\WINDOWS.0\DOWNLO~1\CnsHook.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: ????? - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS.0\System32\msdxm.ocx
O3 - Toolbar: ????? - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS.0\System32\kakatool.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS.0\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [helper.dll] C:\WINDOWS.0\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32
O4 - HKLM\..\Run: [CnsMin] Rundll32.exe C:\WINDOWS.0\DOWNLO~1\CnsMin.dll,Rundll32
O4 - HKLM\..\Run: [KnightIII] @?
O4 - HKLM\..\Run: [DAEMON Tools-1033] "D:\D-Tools\daemon.exe"  -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS.0\System32\ctfmon.exe
O4 - HKCU\..\Run: [cnmail] regedit -s  C:\$NtUninstallQ5926809$\spcust0m.dll
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item:  >> 彩信发送 << - res://C:\PROGRA~1\MMSASS~1\MMSASS~1.DLL/mms.htm
O8 - Extra context menu item: &使用迅雷下载 - D:\download\daemon344\1111\Thunder\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\download\daemon344\1111\Thunder\getAllurl.htm
O8 - Extra context menu item: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O11 - Options group: [!CNS] 
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} (Rising Web Scan Object) - http://download.rising.com.cn/register/pcver/autoupgradepad/Ver2005/OL2005.cab
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - %SystemRoot%\System32\mshtml.dll

日志不全啊！