瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 我不知道到底有什么问题!!!!!!!请帮帮我吧

1   1  /  1  页   跳转

我不知道到底有什么问题!!!!!!!请帮帮我吧

收藏
1111雨叶11
头像
初生襁褓狮
  • 帖子:16
  • 注册: 2006-07-26
  • 来自:
发表于: 2006-08-14 16:07 | 只看楼主 短消息 资料
字号: 1楼

我不知道到底有什么问题!!!!!!!请帮帮我吧

请问我用spybot检查结果是这样的,有什么问题呀,下面还有我的日志,不知道到底有什么问题呢
CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CnsHelper.CH

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CnsHelper.CH.1

CnsMin: 班级身份证 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{B83FC273-3522-4CC6-92EC-75CC86678DA4}

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CnsMinHK.CnsHook

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CnsMinHK.CnsHook.1

CnsMin: 全球的设定 (注册表键, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\3721

CnsMin: 全球的设定 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\3721

CnsMin: IE extension (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AdvancedOptions\!CNS

CnsMin: Settings (注册表值, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Internet Explorer\Main\CNSEnable

CnsMin: Settings (注册表值, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Internet Explorer\Main\CNSHint

CnsMin: Settings (注册表值, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Internet Explorer\Main\CNSList

CnsMin: Settings (注册表值, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Internet Explorer\Main\CNSMenu

CnsMin: Settings (注册表值, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Internet Explorer\Main\CNSReset

CnsMin: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{DF692509-D9EF-48A0-9CD0-3AA5B81F6F68}

CnsMin: 类型图书馆 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\TypeLib\{AAB6BCE3-1DF6-4930-9B14-9CA79DC8C267}

CnsMin:  Library (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\CnsMinEx.cab

CnsMin:  Library (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\CnsMinHK.cab

CnsMin:  Library (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\CnsMinIO.cab

CnsMin:  Library (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\CnsMinUp.cab

Baigoo.a: IE extension (注册表键, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7BDAF75A-0D6F-4F50-AFE9-333D08DF4005}

Baigoo.a: application Id (注册表键, nothing done)
  HKEY_CLASSES_ROOT\AppID\{40EF7CCC-71FE-4615-A0CA-D373F8C2AC88}

Baigoo.a: application Id (注册表键, nothing done)
  HKEY_CLASSES_ROOT\AppID\MtSrv.EXE

Baigoo.a: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\BGooSrv.HtmlPaser

Baigoo.a: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\BGooSrv.HtmlPaser.1

Baigoo.a: 班级身份证 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{18439A22-67A7-4A82-ABB6-82977555AC9B}

Baigoo.a: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{18439A22-67A7-4A82-ABB6-82977555AC9B}

Baigoo.a: 类型图书馆 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\TypeLib\{6B01A4AF-1AB1-47FE-BF1B-1D1583D2B2C0}

Tencent: Settings (注册表键, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Tencent

Tencent: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{0C7C23EF-A848-485B-873C-0ED954731014}

Tencent: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{90B1ECB2-FC3B-49AE-A6BD-F5F11BF5C4AD}

Tencent: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9}

Tencent: Settings (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Tencent

Tencent: Browser 帮忙者物体 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0C7C23EF-A848-485B-873C-0ED954731014}

Tencent: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\TCtrl.TWeb

Tencent: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\TCtrl.TWeb.1

Tencent: 班级身份证 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{90B1ECB2-FC3B-49AE-A6BD-F5F11BF5C4AD}

Tencent: 类型图书馆 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\TypeLib\{B1A7C2CF-BF40-4597-8142-7615D74D0CC3}

Tencent: Program directory (文件夹, nothing done)
  C:\Program Files\TENCENT\Adplus\

Windows Security Center.AntiVirusOverride: Settings (注册表改动, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusOverride!=dword:0

007 Spy Software: Program directory (文件夹, nothing done)
  C:\Program Files\System32\

Caishow: Settings (注册表键, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0C7C23EF-A848-485B-873C-0ED954731014}

IEHelper.e: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{A57E074F-56D8-4A33-8112-AAC9693AA909}

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\AutoLive.Live

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\AutoLive.Live.1

CnsMin: 班级身份证 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{7CA83CF1-3AEA-42D0-A4E3-1594FC6E48B2}

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CoolBar.CoolBarObj

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\YahooAssistBar.AssistBarObj.1

CnsMin: 班级身份证 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{406F94F0-504F-4a40-8DFD-58B0666ABEBD}

CnsMin: 根班级 (注册表键, nothing done)
  HKEY_LOCAL_MACHINE\Software\Classes\CoolBar.CoolBarObj.1

CnsMin: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{924F5B3A-7A27-484A-B873-E855C9708667}

CnsMin: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{BE08F6BC-C3E6-4149-BEB1-CB449E1B372E}

CnsMin: 类型图书馆 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\TypeLib\{4158DB95-DE71-41FF-BEA1-2C3D1C679DF1}

CnsMin: user setting (注册表值, nothing done)
  HKEY_USERS\S-1-5-21-3781686318-530550238-825336730-1005\Software\Microsoft\Internet Explorer\Main\CNSAutoUpdate

CnsMin: Program directory (文件夹, nothing done)
  C:\Program Files\3721\

CnsMin:  Data (文件, nothing done)
  C:\Program Files\3721\CNSMIN.DAT

CnsMin: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{1BB0ABBE-2D95-4847-B9D8-6F90DE3714C1}

CnsMin: 类型图书馆 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\TypeLib\{A5ADEAE7-A8B4-4F94-9128-BF8D8DB5E927}

CnsMin:  照片 (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\assis.ico

CnsMin:  Data (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\CnsPlus.cab

CnsMin:  Library (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\cnsplus.dll

CnsMin:  Data (文件, nothing done)
  C:\WINDOWS\Downloaded Program Files\cns02.dat

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{2DD8D482-8F1C-4180-AA8E-9D5819E5F2EA}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{411F83B1-A0EC-4155-AF99-0137F5EFB270}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{4E3645AF-7A81-4F83-9B8C-1E4F930D873F}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{61032A65-2371-4C89-B5BB-DF73090FB5EA}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{66189AF2-7726-46E8-8628-0F95AB854792}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{7A2F6251-6C99-4DA5-9827-954EB45DCB82}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{82C6C396-DD7B-4CE5-B668-C0087D1F3A1F}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{853E0D78-F4C2-47CB-A3F5-A774DA60DFCD}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{94786C47-EB3F-4BD5-A66B-0D49E2C90541}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{9989A9BC-9828-467E-AF06-E3B279E6E97B}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{B2B3702A-5425-489E-A3AF-EDCCAFEBA019}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{C1C56112-2B2E-4D3C-8CFC-7E10C77FACEF}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{D01D4AAB-22C5-427F-A941-C4B65A3D8A23}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{DDB0D689-FAE0-4165-9F7C-877602F9DD66}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{E5AD5BD5-C710-45E0-ABD3-E770FE85DAE8}

SpyQuake2: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{EB5CA3AF-26C1-467B-9A55-2820E0451AAB}

SpyQuake2: 类型图书馆 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\TypeLib\{5E05EA9F-1EA7-4D0B-A09B-D5E29EC758B9}

SpyQuake2: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{ee2975b6-e8d5-405e-8448-8fe9590f6cfb}

SpyQuake2: Settings (注册表值, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\cholecyst

SpyQuake2: Settings (注册表值, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\cholecyst

SpyQuake2:  Library (文件, nothing done)
  C:\WINDOWS\system32\mzoeut.dll

SpywareQuake: 班级身份证 (注册表键, nothing done)
  HKEY_CLASSES_ROOT\CLSID\{5B55C4E3-C179-BA0B-B4FD-F2DB862D6202}

Yahoo.YiSouBar: Interface (注册表键, nothing done)
  HKEY_CLASSES_ROOT\Interface\{C43273A6-9085-41CF-8A84-3881363A7EB9}

CnsMin: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

SpywareQuake: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

SpyGuard: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

HitBox: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

PestTrap: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

MediaPlex: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

CoreMetrics: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

Avenue A, Inc.: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

DoubleClick: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 

HitBox: 追踪饼干 (Internet Explorer: wangjianguo) (Cookie, nothing done)
 


--- Spybot - Search & Destroy version: 1.4 RC2 (build: 20050427) ---

最后编辑2006-08-14 16:00:32
分享到:
gototop
 
1111雨叶11
头像
初生襁褓狮
  • 帖子:16
  • 注册: 2006-07-26
  • 来自:
发表于: 2006-08-14 16:07 | 只看楼主 短消息 资料
字号: 2楼

接着上面的
2006-08-14 unins000.exe (51.34.0.0)
2005-04-27 blindman.exe (1.0.0.1)
2005-04-28 SpybotSD.exe (1.4.0.2)
2005-04-28 TeaTimer.exe (1.4.0.1)
2005-04-27 Update.exe (1.4.0.0)
2005-04-27 aports.dll (2.0.0.0)
2005-04-27 borlndmm.dll (7.0.4.453)
2005-04-27 delphimm.dll (7.0.4.453)
2005-04-27 SDHelper.dll (1.4.0.0)
2005-04-27 Tools.dll (2.0.0.1)
2005-04-27 UnzDll.dll (1.73.1.1)
2005-04-27 ZipDll.dll (1.73.2.0)
2006-02-06 advcheck.dll (1.0.2.0)
2006-08-11 Includes\Cookies.sbi (*)
2006-08-11 Includes\Dialer.sbi (*)
2006-08-11 Includes\Hijackers.sbi (*)
2006-08-11 Includes\Keyloggers.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2006-08-11 Includes\Malware.sbi (*)
2006-08-11 Includes\PUPS.sbi (*)
2006-08-11 Includes\Revision.sbi (*)
2006-08-11 Includes\Security.sbi (*)
2006-08-11 Includes\Spybots.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-08-11 Includes\Trojans.sbi (*)
gototop
 
1111雨叶11
头像
初生襁褓狮
  • 帖子:16
  • 注册: 2006-07-26
  • 来自:
发表于: 2006-08-14 16:08 | 只看楼主 短消息 资料
字号: 3楼

我的日志为
HijackThis_zww汉化版扫描日志 V1.99.1
保存于      15:55:11, 日期 2006-8-14
操作系统:  Windows XP SP2 (WinNT 5.01.2600)
浏览器:    Internet Explorer v6.00 SP2 (6.00.2900.2180)

当前运行的进程:         
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
c:\program files\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\WINDOWS\Explorer.EXE
c:\program files\rising\rfw\RfwMain.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\LHotkey.exe
C:\Program Files\MALATA\MAE-301U\CnxDslTb.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Thunder Network\Thunder\Thunder.exe
C:\Program Files\Tencent\QQ\QQ.exe
C:\Program Files\Tencent\QQ\TIMPlatform.exe
C:\Program Files\Tencent\QQ\QQ.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Acrobatchs\Reader\AcroRd32.exe
C:\Program Files\Tencent\QQGame\QQGame.exe
C:\Program Files\Rising\Rav\RsAgent.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\ylive.exe
C:\Program Files\木马杀客\mmsk.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Documents and Settings\wangjianguo\My Documents\106170419\HijackThis1991zww\HijackThis1991zww.exe

R3 - URLSearchHook: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
R3 - URLSearchHook: Tencent SearchHook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: 搜搜地址栏搜索 - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: (no name) - {3D898C55-74CC-4B7C-B5F1-45913F368388} - C:\WINDOWS\system32\bdhelper.dll
O2 - BHO: CdnForIE Class - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O2 - BHO: (no name) - {669751ED-D558-49AE-B01A-3B374CC7910E} - C:\WINDOWS\system32\ssup.dll
O2 - BHO: WMHlprObj Class - {F5824EFB-728A-4726-A5A5-85A68B20EDC3} - C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll
O2 - BHO: (no name) - {F79B2338-A6E7-46D4-9202-422AA6E74F43} - C:\WINDOWS\EagleFlt.dll (file missing)
O3 - IE工具栏增项: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O3 - IE工具栏增项: 系统标准按钮(&E) - {6B2455FD-3669-4555-8DF8-69FD5BC846F8} - C:\WINDOWS\system32\SystemToolbar.dll (file missing)
O4 - 启动项HKLM\\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 启动项HKLM\\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 启动项HKLM\\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 启动项HKLM\\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - 启动项HKLM\\Run: [nwiz] nwiz.exe /install
O4 - 启动项HKLM\\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - 启动项HKLM\\Run: [SoundMan] SOUNDMAN.EXE
O4 - 启动项HKLM\\Run: [LHotkey] LHotkey.exe
O4 - 启动项HKLM\\Run: [EagleEye] C:\Program Files\Lenovo\网络爸爸\Eaglesvr.exe
O4 - 启动项HKLM\\Run: [CnxDslTaskBar] "C:\Program Files\MALATA\MAE-301U\CnxDslTb.exe" "MALATA\MAE-301U"
O4 - 启动项HKLM\\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - 启动项HKLM\\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
O4 - 启动项HKLM\\Run: [IMSCMig] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - 启动项HKLM\\Run: [MYPC] MYPC.EXE
O4 - 启动项HKLM\\Run: [Thunder] "C:\Program Files\Thunder Network\Thunder\ThunderShell.exe" /s
O4 - 启动项HKLM\\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - 启动项HKLM\\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - 启动项HKLM\\Run: [stup.exe] C:\PROGRA~1\TENCENT\Adplus\stup.exe
O4 - 启动项HKLM\\Run: [PC最优化] C:\Program Files\optimizescn\optimizeupdscn.exe -update
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: 腾讯QQ.lnk = C:\Program Files\Tencent\QQ\QQ.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Acrobatchs\Reader\reader_sl.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\geturl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\getallurl.htm
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O8 - IE右键菜单中的新增项目: 访问通用网址 - C:\Program Files\CNNIC\Cdn\cnnic.htm
O9 - 浏览器额外的按钮: 中文上网 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - 浏览器额外的“工具”菜单项: 中文上网 - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O9 - 浏览器额外的按钮: 信息检索 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - 浏览器额外的按钮: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - 浏览器额外的“工具”菜单项: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - 浏览器额外的“工具”菜单项: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\cdnns.dll' missing
O11 - Options group: [!CNS]  网络实名
O11 - Options group: [CDNCLIENT]  中文上网
O11 - Options group: [TBH] 搜搜地址栏搜索
O14 - IERESET.INF: START_PAGE_URL=http://www.lenovo.com
O16 - DPF: {5932517A-3326-4439-A708-1C98EDB5C549} (Downloader Class) - file://C:\Documents and Settings\All Users\Application Data\Share Helper\Cast\GGS\d9fd1b214a\js\iMopDl.cab
O16 - DPF: {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} (Rising Web Scan Object) - http://download.rising.com.cn/register/pcver/autoupgradepad/pcver2006new/OL2006.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D9F800D6-6A04-4149-948F-7A8197DAE99A}: NameServer = 202.99.192.66 202.97.132.100
O18 - Filter: text/html - {F79B2338-A6E7-46D4-9201-422AA6E74F43} - C:\WINDOWS\EagleFlt.dll
O21 - SSODL: cholecyst - {ee2975b6-e8d5-405e-8448-8fe9590f6cfb} - C:\WINDOWS\system32\mzoeut.dll
O23 - NT 服务: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - NT 服务: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwproxy.exe
O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwsrv.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT