HijackThis_zww汉化版扫描日志 V1.99.1
保存于      13:37:02, 日期 2006-12-16
操作系统：  Windows XP SP2 (WinNT 5.01.2600)
浏览器：    Internet Explorer v6.00 SP2 (6.00.2900.2180)

当前运行的进程：         
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\Program Files\Trojan Expert 2006\mmzj.exe
C:\PROGRA~1\Kuree\kpupdate.exe
C:\WINDOWS\system32\conime.exe
C:\PROGRA~1\Push\eMagUpdt.exe
C:\WINDOWS\system32\svchost.exe
D:\qq\QQ.exe
D:\qq\TIMPlatform.exe
C:\Documents and Settings\user\桌面\HijackThis1991zww.exe

R3 - URLSearchHook: (no name) - {DF41EA75-BF5A-433E-99A8-62E334556FDC} - C:\WINDOWS\system32\Lyfdsn.dll (file missing)
R3 - URLSearchHook: (no name) - {5C6F6BC6-A650-4A2E-92DF-61D9E2164EFB} - C:\WINDOWS\system32\Lgcb.dll (file missing)
R3 - URLSearchHook: (no name) - {52AC3EA1-06BE-463B-840E-DFE411A258BE} - C:\WINDOWS\system32\Pyiuyx.dll (file missing)
R3 - URLSearchHook: (no name) - {2649E9D3-BEF3-4DE2-A457-D93EB739143C} - C:\WINDOWS\system32\Cttgpd.dll (file missing)
R3 - URLSearchHook: (no name) - {3C9E8766-A2AB-4289-923D-2DE8069B5826} - C:\WINDOWS\system32\Mwtvx.dll (file missing)
R3 - URLSearchHook: (no name) - {2AEDBB43-6D7D-4E73-BC66-9C3EA71A27F5} - C:\WINDOWS\system32\Gpqrs.dll (file missing)
R3 - URLSearchHook: (no name) - {E35ADD3E-6ED3-44A7-8570-99BBF2CF9745} - C:\WINDOWS\system32\Aygnx.dll (file missing)
R3 - URLSearchHook: (no name) - {29F3FE8C-2A2E-483F-8CC0-71782E2203C2} - C:\WINDOWS\system32\Qnxw.dll (file missing)
R3 - URLSearchHook: (no name) - {FD99DAB3-293E-4271-B0A9-94DF29EB34E9} - C:\WINDOWS\system32\Rgrx.dll (file missing)
R3 - URLSearchHook: (no name) - {65373D26-21D5-4A16-BC03-CE82D7B97CC6} - C:\WINDOWS\system32\Ovlma.dll
R3 - URLSearchHook: (no name) - {0CB614EC-46F5-4F17-BED6-1177270F922C} - C:\WINDOWS\system32\Brzbn.dll
R3 - URLSearchHook: (no name) - {5803389C-F367-4E73-9A09-BF48A6EE5848} - C:\WINDOWS\system32\Meoj.dll
R3 - URLSearchHook: (no name) - {69330BB5-B74E-45DB-83E5-FD5A897E509A} - C:\WINDOWS\system32\Hkcn.dll
R3 - URLSearchHook: (no name) - {B52F5A69-6F19-4F26-8224-FDBCA631C900} - C:\WINDOWS\system32\Witgkw.dll
R3 - URLSearchHook: (no name) - {AC805512-CCB3-4B0A-A15B-A78B633C94E7} - C:\WINDOWS\system32\Tmwoyi.dll
R3 - URLSearchHook: (no name) - {39B0E846-924E-4881-B177-5F19FE54349F} - C:\WINDOWS\system32\Jelt.dll
R3 - URLSearchHook: (no name) - {B34F54D9-D243-458F-8230-358D5850B7F9} - C:\WINDOWS\system32\Uhrsod.dll
R3 - URLSearchHook: (no name) - {5A1FB226-08FD-41C5-B251-4B7CE601787B} - C:\WINDOWS\system32\Vaftx.dll
R3 - URLSearchHook: (no name) - {5963851E-D991-46CE-A44D-EE5FE8245CC2} - C:\WINDOWS\system32\Ilswgc.dll
R3 - URLSearchHook: (no name) - {3665209E-3117-4B9E-A7FB-1611F179C1FD} - C:\WINDOWS\system32\Dhtiyo.dll
R3 - URLSearchHook: (no name) - {7DCBEC52-0CE6-43D1-8EAF-87550D3AA40F} - C:\WINDOWS\system32\Cxaja.dll
R3 - URLSearchHook: (no name) - {765EE0F5-D766-4191-B0AC-21B965EC3AD1} - C:\WINDOWS\system32\Sqgkne.dll
R3 - URLSearchHook: (no name) - {DD479EE2-1123-4847-BE69-A17B84E8DA3F} - C:\WINDOWS\system32\Ulfw.dll
R3 - URLSearchHook: (no name) - {7B1D7FE1-7F87-41A5-9A95-FA9782C5ABBA} - C:\WINDOWS\system32\Ypayi.dll
R3 - URLSearchHook: (no name) - {877307F5-51DD-434D-A877-59AD722DA59A} - C:\WINDOWS\system32\Kxdx.dll
R3 - URLSearchHook: (no name) - {1CADBEA8-6EFB-4F01-9467-D3C75D8C29CF} - C:\WINDOWS\system32\Qgysdh.dll
R3 - URLSearchHook: (no name) - {BE7BFED0-D562-412C-B0DE-D01147E8BA8E} - C:\WINDOWS\system32\Wyxcj.dll
R3 - URLSearchHook: (no name) - {807ECA51-FCC6-419B-B164-0C22DCC78552} - C:\WINDOWS\system32\Qihxho.dll
R3 - URLSearchHook: (no name) - {D4278194-AE2B-46EE-8DB7-785AA31BFBD8} - C:\WINDOWS\system32\Ovzd.dll
R3 - URLSearchHook: (no name) - {EDDCA411-47C7-4603-BB71-F97453C9AED8} - C:\WINDOWS\system32\Togv.dll
R3 - URLSearchHook: (no name) - {FF0D2625-2AFE-48DD-8307-32C9512AD323} - C:\WINDOWS\system32\Mywuiu.dll
R3 - URLSearchHook: (no name) - {5227BE9A-7FDE-490A-871F-CE3952CD3F89} - C:\WINDOWS\system32\Xhxbbm.dll
R3 - URLSearchHook: (no name) - {70962E68-23A3-4BC9-A189-37E1EF79985F} - C:\WINDOWS\system32\Cctl.dll
R3 - URLSearchHook: (no name) - {51213D7C-3706-4243-9E64-21FCEAFD624B} - C:\WINDOWS\system32\Lwjx.dll
R3 - URLSearchHook: (no name) - {54C64C3D-99A6-4C4A-84FC-136ABFF9F0BC} - C:\WINDOWS\system32\Vugwpk.dll
R3 - URLSearchHook: (no name) - {DDF37948-EB0E-466C-8EAC-82A41AC66453} - C:\WINDOWS\system32\Uyfi.dll
R3 - URLSearchHook: (no name) - {D9430887-906D-42C4-9301-C7F6ADD7F27C} - C:\WINDOWS\system32\Knkyva.dll
R3 - URLSearchHook: (no name) - {B23675EE-DA5E-494E-861D-8D535C2DFAEE} - C:\WINDOWS\system32\Yxyzke.dll
R3 - URLSearchHook: (no name) - {8104FE6B-A101-47DE-8330-0362EF757D3B} - C:\WINDOWS\system32\Gwibkz.dll

R3 - URLSearchHook: (no name) - {39257A90-267A-495D-AC49-D8882EF3C9C7} - C:\WINDOWS\system32\Tdfcvk.dll
R3 - URLSearchHook: (no name) - {0BC2994A-7358-4F5A-9C01-3887638B43A0} - C:\WINDOWS\system32\Spnsr.dll
R3 - URLSearchHook: (no name) - {9A521D47-ACDA-4A88-A26C-588C2C7B8B57} - C:\WINDOWS\system32\Qtms.dll
R3 - URLSearchHook: (no name) - {66D80D93-5FC3-477C-952E-5D7D28BD1332} - C:\WINDOWS\system32\Cpls.dll
R3 - URLSearchHook: (no name) - {20DE26BF-9460-49B7-AB34-0953ACA63991} - C:\WINDOWS\system32\Wequbb.dll
R3 - URLSearchHook: (no name) - {9027C8D0-9923-47D1-B792-6743AAC8C905} - C:\WINDOWS\system32\Bqji.dll (file missing)
R3 - URLSearchHook: (no name) - {DE46D1AA-003D-448B-8EF9-690D0C7E5AD7} - C:\WINDOWS\system32\Xcphm.dll (file missing)
R3 - URLSearchHook: (no name) - {671283E5-9376-472D-8551-BC4AE4B7595A} - C:\WINDOWS\system32\Btdmy.dll (file missing)
R3 - URLSearchHook: (no name) - {7789F79F-F973-41FE-95E6-189039221AFB} - C:\WINDOWS\system32\Jvuh.dll (file missing)
R3 - URLSearchHook: (no name) - {D47CE253-F714-4E35-890C-CBC3DBCF82D3} - C:\WINDOWS\system32\Bbuh.dll (file missing)
R3 - URLSearchHook: (no name) - {C16F3BED-0070-442E-B501-A9003B357369} - C:\WINDOWS\system32\Favtlg.dll (file missing)
R3 - URLSearchHook: (no name) - {2A1E86B7-BCD9-4743-B6DA-933C438FA828} - C:\WINDOWS\system32\Hzzpko.dll (file missing)
R3 - URLSearchHook: (no name) - {13DFB012-9DE7-4517-BBAF-98A25AD40DE6} - C:\WINDOWS\system32\Dncwai.dll (file missing)
R3 - URLSearchHook: (no name) - {3E09DF4E-9545-4719-870D-55E87A85CB82} - C:\WINDOWS\system32\Nffnr.dll (file missing)
R3 - URLSearchHook: (no name) - {D2A25E9E-2867-4C7A-9132-C7EDD3447A8D} - C:\WINDOWS\system32\Jfvr.dll (file missing)
R3 - URLSearchHook: (no name) - {7B176326-BDC6-492C-BE8D-2C1D0777DE8A} - C:\WINDOWS\system32\Iekubb.dll (file missing)
R3 - URLSearchHook: (no name) - {05CEF6A6-2FB6-4E3E-B2B5-2883E9053999} - C:\WINDOWS\system32\Pomsgn.dll (file missing)
R3 - URLSearchHook: (no name) - {1DBE9E96-1E16-410E-B83C-F9B87D5C8BBF} - C:\WINDOWS\system32\Qpbm.dll (file missing)
R3 - URLSearchHook: (no name) - {076698B2-2CB3-4B26-B5E7-E75D6BFFAEAE} - C:\WINDOWS\system32\Raan.dll (file missing)
R3 - URLSearchHook: (no name) - {91DDAD0B-C862-4D3A-9AE1-5BACDC5719C7} - C:\WINDOWS\system32\Tvspex.dll (file missing)
R3 - URLSearchHook: (no name) - {EC4A4C56-8148-42DB-973C-FA51F503395C} - C:\WINDOWS\system32\Fbkf.dll (file missing)
R3 - URLSearchHook: (no name) - {CC6DF834-AD01-448E-9FC2-D88285D08016} - C:\WINDOWS\system32\Jmquru.dll (file missing)
R3 - URLSearchHook: (no name) - {708EA65D-6E78-4792-B857-97DE99227001} - C:\WINDOWS\system32\Sdmien.dll (file missing)
R3 - URLSearchHook: (no name) - {BDCCE1FC-0C41-4079-AB4B-B23CA7405A42} - C:\WINDOWS\system32\Rpvlj.dll (file missing)
R3 - URLSearchHook: (no name) - {BD60D9C2-F953-4E9A-9A13-9F0D3D49B71F} - C:\WINDOWS\system32\Tijxrv.dll (file missing)
R3 - URLSearchHook: (no name) - {66AFFDF5-0BA2-4690-83F5-2ECE609341F0} - C:\WINDOWS\system32\Zyolth.dll (file missing)
R3 - URLSearchHook: (no name) - {9761CC06-0DFF-47A8-BAB5-73DDC171BE84} - C:\WINDOWS\system32\Dltku.dll (file missing)
R3 - URLSearchHook: (no name) - {7FF31B39-F2FB-45E5-9F23-9CD0D4D0043A} - C:\WINDOWS\system32\Ecjnvx.dll (file missing)
R3 - URLSearchHook: (no name) - {DD81A957-6FD1-439B-9388-A38EC9CE5203} - C:\WINDOWS\system32\Zrhkm.dll (file missing)
R3 - URLSearchHook: (no name) - {F234F6CE-D5EF-45AD-9FFA-82DE010D7D7A} - C:\WINDOWS\system32\Yzbtv.dll (file missing)
R3 - URLSearchHook: (no name) - {863C581B-DA70-4A6D-8300-46FD3DA719BA} - C:\WINDOWS\system32\Stomu.dll (file missing)
R3 - URLSearchHook: (no name) - {C797B1E1-4072-427E-882E-FAF63BCC8611} - C:\WINDOWS\system32\Vcob.dll (file missing)
R3 - URLSearchHook: (no name) - {CA3850A5-3AB9-41B7-AE7B-D2ADDAC32B04} - C:\WINDOWS\system32\Vpezhg.dll (file missing)
R3 - URLSearchHook: (no name) - {CB3DD2E8-7BD7-4042-A015-DA6D0FDF0DD0} - C:\WINDOWS\system32\Bcshyo.dll (file missing)
R3 - URLSearchHook: (no name) - {1DBCBE4D-BDE4-4BFF-BEF7-D965A2B5481E} - C:\WINDOWS\system32\Dgjyec.dll (file missing)
R3 - URLSearchHook: (no name) - {3C857817-F5A8-4C1A-9491-3BF11455AAA7} - C:\WINDOWS\system32\Wreqth.dll (file missing)
R3 - URLSearchHook: (no name) - {9DEC1873-1DEE-47D6-90CA-1600C8925F12} - C:\WINDOWS\system32\Jykbr.dll (file missing)
R3 - URLSearchHook: (no name) - {FFFD6FF9-6A84-4346-9AB3-98CDDA9A55D3} - C:\WINDOWS\system32\Yeod.dll (file missing)
R3 - URLSearchHook: (no name) - {BCEEA173-9057-4332-8739-A420D27BDBF1} - C:\WINDOWS\system32\Hxwbw.dll (file missing)
R3 - URLSearchHook: (no name) - {D1C0FCBB-63A8-4EA8-96C3-043515C7D641} - C:\WINDOWS\system32\Bzenwp.dll (file missing)
R3 - URLSearchHook: (no name) - {CD592060-9421-4C30-865B-D2B1801AFB60} - C:\WINDOWS\system32\Vvoioe.dll (file missing)
R3 - URLSearchHook: (no name) - {EB7C734B-B43C-4446-8E31-0A5BC42859E2} - C:\WINDOWS\system32\Rmgwf.dll (file missing)
R3 - URLSearchHook: (no name) - {9F7066A4-0C24-41D8-88DC-9C175BA6BCE9} - C:\WINDOWS\system32\Cyqwo.dll (file missing)
R3 - URLSearchHook: (no name) - {1844FB20-5836-4EC1-8A0F-BA9D2AFEFB7A} - C:\WINDOWS\system32\Mvhrr.dll (file missing)
R3 - URLSearchHook: (no name) - {96785AF0-9E0A-4193-89F1-5605731FE051} - C:\WINDOWS\system32\Yttp.dll (file missing)
R3 - URLSearchHook: (no name) - {59C646D8-1EA5-466F-8BFA-B7CD706E065A} - C:\WINDOWS\system32\Gwlzjt.dll (file missing)
R3 - URLSearchHook: (no name) - {33BE8BF5-C65D-4A4D-953F-BC34F8E9858E} - C:\WINDOWS\system32\Pvxcs.dll (file missing)
R3 - URLSearchHook: (no name) - {38764A26-5AB0-4501-ADF5-5FF487434242} - C:\WINDOWS\system32\Txjmtg.dll (file missing)
R3 - URLSearchHook: (no name) - {F4EB51F3-EFE8-43FA-94B6-D91D5AF7FED4} - C:\WINDOWS\system32\Eswtg.dll (file missing)
R3 - URLSearchHook: (no name) - {B87640D7-6C96-45D4-912A-112D5600AC8B} - C:\WINDOWS\system32\Cwrpkm.dll (file missing)
R3 - URLSearchHook: (no name) - {959BF7E7-D954-4931-8801-2114FBF0B6FA} - C:\WINDOWS\system32\Gcfbkx.dll (file missing)
R3 - URLSearchHook: (no name) - {94B75B8D-D832-4599-9DCC-753FC62B12C0} - C:\WINDOWS\system32\Jeua.dll (file missing)
R3 - URLSearchHook: (no name) - {987292F0-8CE1-4DF2-918D-2BA0ACF20982} - C:\WINDOWS\system32\Tpxtv.dll (file missing)
R3 - URLSearchHook: (no name) - {DB6E2F21-73F4-4DCB-A42A-1785C0CF9EAC} - C:\WINDOWS\system32\Rdpeza.dll (file missing)
R3 - URLSearchHook: (no name) - {E33E57EA-5E07-44D9-BA1A-E23B63DF1D11} - C:\WINDOWS\system32\Syfa.dll (file missing)
R3 - URLSearchHook: (no name) - {0C4CEBFC-5F77-4EF1-886F-115B378C3ABA} - C:\WINDOWS\system32\Uatelg.dll (file missing)
R3 - URLSearchHook: (no name) - {1EDF042C-D38D-4B3F-9BE2-7A3FB756B219} - C:\WINDOWS\system32\Lfaxqt.dll (file missing)
R3 - URLSearchHook: (no name) - {6717DF94-6DAC-42C8-B420-CB938E4B5FD0} - C:\WINDOWS\system32\Bvbvtc.dll (file missing)
R3 - URLSearchHook: (no name) - {2F6D4119-7BEA-4033-9319-0E54A60C2862} - C:\WINDOWS\system32\Fywx.dll (file missing)
R3 - URLSearchHook: (no name) - {062A7B4D-1A97-48F3-A506-0F60E23A1F9D} - C:\WINDOWS\system32\Zelcsl.dll (file missing)
R3 - URLSearchHook: (no name) - {F530C1F7-AAAC-49EF-A835-C83CF64B2160} - C:\WINDOWS\system32\Svnre.dll (file missing)
R3 - URLSearchHook: (no name) - {1F6C9359-0AF3-4C1E-9460-80531E33824A} - C:\WINDOWS\system32\Inir.dll (file missing)
R3 - URLSearchHook: (no name) - {CCFD188D-FD5F-4B66-AAE6-4E52DC2E60A3} - C:\WINDOWS\system32\Omhsi.dll (file missing)
R3 - URLSearchHook: (no name) - {F256F005-4CC9-4F60-B00C-612ED5C791A8} - C:\WINDOWS\system32\Sntu.dll (file missing)
R3 - URLSearchHook: (no name) - {94A8F4F9-2204-41E9-BEEE-1C8A9B096165} - C:\WINDOWS\system32\Cqcxxd.dll (file missing)
R3 - URLSearchHook: Tencent SearchHook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: (no name) - {05CEF6A6-2FB6-4E3E-B2B5-2883E9053999} - C:\WINDOWS\system32\Pomsgn.dll (file missing)
O2 - BHO: (no name) - {062A7B4D-1A97-48F3-A506-0F60E23A1F9D} - C:\WINDOWS\system32\Zelcsl.dll (file missing)
O2 - BHO: (no name) - {076698B2-2CB3-4B26-B5E7-E75D6BFFAEAE} - C:\WINDOWS\system32\Raan.dll (file missing)
O2 - BHO: (no name) - {0BC2994A-7358-4F5A-9C01-3887638B43A0} - C:\WINDOWS\system32\Spnsr.dll
O2 - BHO: (no name) - {0C4CEBFC-5F77-4EF1-886F-115B378C3ABA} - C:\WINDOWS\system32\Uatelg.dll (file missing)
O2 - BHO: 中文搜搜 - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: (no name) - {0CB614EC-46F5-4F17-BED6-1177270F922C} - C:\WINDOWS\system32\Brzbn.dll
O2 - BHO: (no name) - {13DFB012-9DE7-4517-BBAF-98A25AD40DE6} - C:\WINDOWS\system32\Dncwai.dll (file missing)
O2 - BHO: (no name) - {1844FB20-5836-4EC1-8A0F-BA9D2AFEFB7A} - C:\WINDOWS\system32\Mvhrr.dll (file missing)
O2 - BHO: (no name) - {1CADBEA8-6EFB-4F01-9467-D3C75D8C29CF} - C:\WINDOWS\system32\Qgysdh.dll
O2 - BHO: SgfDcalz Class - {1D4C7434-9234-9DA1-548D-23770E5A384B} - C:\WINDOWS\DOWNLO~1\vlnislk.dll
O2 - BHO: (no name) - {1DBCBE4D-BDE4-4BFF-BEF7-D965A2B5481E} - C:\WINDOWS\system32\Dgjyec.dll (file missing)
O2 - BHO: (no name) - {1DBE9E96-1E16-410E-B83C-F9B87D5C8BBF} - C:\WINDOWS\system32\Qpbm.dll (file missing)
O2 - BHO: (no name) - {1EDF042C-D38D-4B3F-9BE2-7A3FB756B219} - C:\WINDOWS\system32\Lfaxqt.dll (file missing)
O2 - BHO: (no name) - {1F6C9359-0AF3-4C1E-9460-80531E33824A} - C:\WINDOWS\system32\Inir.dll (file missing)
O2 - BHO: (no name) - {20DE26BF-9460-49B7-AB34-0953ACA63991} - C:\WINDOWS\system32\Wequbb.dll
O2 - BHO: (no name) - {2649E9D3-BEF3-4DE2-A457-D93EB739143C} - C:\WINDOWS\system32\Cttgpd.dll (file missing)

O2 - BHO: (no name) - {29F3FE8C-2A2E-483F-8CC0-71782E2203C2} - C:\WINDOWS\system32\Qnxw.dll (file missing)
O2 - BHO: (no name) - {2A1E86B7-BCD9-4743-B6DA-933C438FA828} - C:\WINDOWS\system32\Hzzpko.dll (file missing)
O2 - BHO: (no name) - {2AEDBB43-6D7D-4E73-BC66-9C3EA71A27F5} - C:\WINDOWS\system32\Gpqrs.dll (file missing)
O2 - BHO: (no name) - {2F6D4119-7BEA-4033-9319-0E54A60C2862} - C:\WINDOWS\system32\Fywx.dll (file missing)
O2 - BHO: (no name) - {33BE8BF5-C65D-4A4D-953F-BC34F8E9858E} - C:\WINDOWS\system32\Pvxcs.dll (file missing)
O2 - BHO: (no name) - {3665209E-3117-4B9E-A7FB-1611F179C1FD} - C:\WINDOWS\system32\Dhtiyo.dll
O2 - BHO: (no name) - {38764A26-5AB0-4501-ADF5-5FF487434242} - C:\WINDOWS\system32\Txjmtg.dll (file missing)
O2 - BHO: (no name) - {39257A90-267A-495D-AC49-D8882EF3C9C7} - C:\WINDOWS\system32\Tdfcvk.dll
O2 - BHO: (no name) - {39B0E846-924E-4881-B177-5F19FE54349F} - C:\WINDOWS\system32\Jelt.dll
O2 - BHO: (no name) - {3C857817-F5A8-4C1A-9491-3BF11455AAA7} - C:\WINDOWS\system32\Wreqth.dll (file missing)
O2 - BHO: (no name) - {3C9E8766-A2AB-4289-923D-2DE8069B5826} - C:\WINDOWS\system32\Mwtvx.dll (file missing)
O2 - BHO: (no name) - {3E09DF4E-9545-4719-870D-55E87A85CB82} - C:\WINDOWS\system32\Nffnr.dll (file missing)
O2 - BHO: (no name) - {51213D7C-3706-4243-9E64-21FCEAFD624B} - C:\WINDOWS\system32\Lwjx.dll
O2 - BHO: (no name) - {5227BE9A-7FDE-490A-871F-CE3952CD3F89} - C:\WINDOWS\system32\Xhxbbm.dll
O2 - BHO: (no name) - {52AC3EA1-06BE-463B-840E-DFE411A258BE} - C:\WINDOWS\system32\Pyiuyx.dll (file missing)
O2 - BHO: (no name) - {54C64C3D-99A6-4C4A-84FC-136ABFF9F0BC} - C:\WINDOWS\system32\Vugwpk.dll
O2 - BHO: (no name) - {5803389C-F367-4E73-9A09-BF48A6EE5848} - C:\WINDOWS\system32\Meoj.dll
O2 - BHO: (no name) - {5963851E-D991-46CE-A44D-EE5FE8245CC2} - C:\WINDOWS\system32\Ilswgc.dll
O2 - BHO: (no name) - {59C646D8-1EA5-466F-8BFA-B7CD706E065A} - C:\WINDOWS\system32\Gwlzjt.dll (file missing)
O2 - BHO: (no name) - {5A1FB226-08FD-41C5-B251-4B7CE601787B} - C:\WINDOWS\system32\Vaftx.dll
O2 - BHO: (no name) - {5C6F6BC6-A650-4A2E-92DF-61D9E2164EFB} - C:\WINDOWS\system32\Lgcb.dll (file missing)
O2 - BHO: (no name) - {65373D26-21D5-4A16-BC03-CE82D7B97CC6} - C:\WINDOWS\system32\Ovlma.dll
O2 - BHO: (no name) - {669751ED-D558-49AE-B01A-3B374CC7910E} - C:\WINDOWS\system32\ssup.dll
O2 - BHO: (no name) - {66AFFDF5-0BA2-4690-83F5-2ECE609341F0} - C:\WINDOWS\system32\Zyolth.dll (file missing)
O2 - BHO: (no name) - {66D80D93-5FC3-477C-952E-5D7D28BD1332} - C:\WINDOWS\system32\Cpls.dll
O2 - BHO: (no name) - {671283E5-9376-472D-8551-BC4AE4B7595A} - C:\WINDOWS\system32\Btdmy.dll (file missing)
O2 - BHO: (no name) - {6717DF94-6DAC-42C8-B420-CB938E4B5FD0} - C:\WINDOWS\system32\Bvbvtc.dll (file missing)
O2 - BHO: (no name) - {69330BB5-B74E-45DB-83E5-FD5A897E509A} - C:\WINDOWS\system32\Hkcn.dll
O2 - BHO: (no name) - {708EA65D-6E78-4792-B857-97DE99227001} - C:\WINDOWS\system32\Sdmien.dll (file missing)
O2 - BHO: (no name) - {70962E68-23A3-4BC9-A189-37E1EF79985F} - C:\WINDOWS\system32\Cctl.dll
O2 - BHO: (no name) - {765EE0F5-D766-4191-B0AC-21B965EC3AD1} - C:\WINDOWS\system32\Sqgkne.dll
O2 - BHO: (no name) - {7789F79F-F973-41FE-95E6-189039221AFB} - C:\WINDOWS\system32\Jvuh.dll (file missing)
O2 - BHO: (no name) - {7B176326-BDC6-492C-BE8D-2C1D0777DE8A} - C:\WINDOWS\system32\Iekubb.dll (file missing)
O2 - BHO: (no name) - {7B1D7FE1-7F87-41A5-9A95-FA9782C5ABBA} - C:\WINDOWS\system32\Ypayi.dll
O2 - BHO: (no name) - {7DCBEC52-0CE6-43D1-8EAF-87550D3AA40F} - C:\WINDOWS\system32\Cxaja.dll
O2 - BHO: (no name) - {7FF31B39-F2FB-45E5-9F23-9CD0D4D0043A} - C:\WINDOWS\system32\Ecjnvx.dll (file missing)
O2 - BHO: (no name) - {807ECA51-FCC6-419B-B164-0C22DCC78552} - C:\WINDOWS\system32\Qihxho.dll
O2 - BHO: (no name) - {8104FE6B-A101-47DE-8330-0362EF757D3B} - C:\WINDOWS\system32\Gwibkz.dll
O2 - BHO: (no name) - {863C581B-DA70-4A6D-8300-46FD3DA719BA} - C:\WINDOWS\system32\Stomu.dll (file missing)
O2 - BHO: (no name) - {877307F5-51DD-434D-A877-59AD722DA59A} - C:\WINDOWS\system32\Kxdx.dll
O2 - BHO: (no name) - {9027C8D0-9923-47D1-B792-6743AAC8C905} - C:\WINDOWS\system32\Bqji.dll (file missing)
O2 - BHO: (no name) - {91DDAD0B-C862-4D3A-9AE1-5BACDC5719C7} - C:\WINDOWS\system32\Tvspex.dll (file missing)
O2 - BHO: (no name) - {94A8F4F9-2204-41E9-BEEE-1C8A9B096165} - C:\WINDOWS\system32\Cqcxxd.dll (file missing)
O2 - BHO: (no name) - {94B75B8D-D832-4599-9DCC-753FC62B12C0} - C:\WINDOWS\system32\Jeua.dll (file missing)
O2 - BHO: (no name) - {959BF7E7-D954-4931-8801-2114FBF0B6FA} - C:\WINDOWS\system32\Gcfbkx.dll (file missing)
O2 - BHO: (no name) - {96785AF0-9E0A-4193-89F1-5605731FE051} - C:\WINDOWS\system32\Yttp.dll (file missing)
O2 - BHO: (no name) - {9761CC06-0DFF-47A8-BAB5-73DDC171BE84} - C:\WINDOWS\system32\Dltku.dll (file missing)
O2 - BHO: (no name) - {987292F0-8CE1-4DF2-918D-2BA0ACF20982} - C:\WINDOWS\system32\Tpxtv.dll (file missing)
O2 - BHO: (no name) - {9A521D47-ACDA-4A88-A26C-588C2C7B8B57} - C:\WINDOWS\system32\Qtms.dll
O2 - BHO: (no name) - {9DEC1873-1DEE-47D6-90CA-1600C8925F12} - C:\WINDOWS\system32\Jykbr.dll (file missing)

O2 - BHO: (no name) - {9F7066A4-0C24-41D8-88DC-9C175BA6BCE9} - C:\WINDOWS\system32\Cyqwo.dll (file missing)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FLASHGET\jccatch.dll
O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX
O2 - BHO: (no name) - {AC805512-CCB3-4B0A-A15B-A78B633C94E7} - C:\WINDOWS\system32\Tmwoyi.dll
O2 - BHO: (no name) - {B23675EE-DA5E-494E-861D-8D535C2DFAEE} - C:\WINDOWS\system32\Yxyzke.dll
O2 - BHO: (no name) - {B34F54D9-D243-458F-8230-358D5850B7F9} - C:\WINDOWS\system32\Uhrsod.dll
O2 - BHO: (no name) - {B52F5A69-6F19-4F26-8224-FDBCA631C900} - C:\WINDOWS\system32\Witgkw.dll
O2 - BHO: (no name) - {B87640D7-6C96-45D4-912A-112D5600AC8B} - C:\WINDOWS\system32\Cwrpkm.dll (file missing)
O2 - BHO: (no name) - {BCEEA173-9057-4332-8739-A420D27BDBF1} - C:\WINDOWS\system32\Hxwbw.dll (file missing)
O2 - BHO: (no name) - {BD60D9C2-F953-4E9A-9A13-9F0D3D49B71F} - C:\WINDOWS\system32\Tijxrv.dll (file missing)
O2 - BHO: (no name) - {BDCCE1FC-0C41-4079-AB4B-B23CA7405A42} - C:\WINDOWS\system32\Rpvlj.dll (file missing)
O2 - BHO: (no name) - {BE7BFED0-D562-412C-B0DE-D01147E8BA8E} - C:\WINDOWS\system32\Wyxcj.dll
O2 - BHO: (no name) - {C16F3BED-0070-442E-B501-A9003B357369} - C:\WINDOWS\system32\Favtlg.dll (file missing)
O2 - BHO: (no name) - {C797B1E1-4072-427E-882E-FAF63BCC8611} - C:\WINDOWS\system32\Vcob.dll (file missing)
O2 - BHO: (no name) - {CA3850A5-3AB9-41B7-AE7B-D2ADDAC32B04} - C:\WINDOWS\system32\Vpezhg.dll (file missing)
O2 - BHO: (no name) - {CB3DD2E8-7BD7-4042-A015-DA6D0FDF0DD0} - C:\WINDOWS\system32\Bcshyo.dll (file missing)
O2 - BHO: (no name) - {CC6DF834-AD01-448E-9FC2-D88285D08016} - C:\WINDOWS\system32\Jmquru.dll (file missing)
O2 - BHO: (no name) - {CCFD188D-FD5F-4B66-AAE6-4E52DC2E60A3} - C:\WINDOWS\system32\Omhsi.dll (file missing)
O2 - BHO: (no name) - {CD592060-9421-4C30-865B-D2B1801AFB60} - C:\WINDOWS\system32\Vvoioe.dll (file missing)
O2 - BHO: (no name) - {D1C0FCBB-63A8-4EA8-96C3-043515C7D641} - C:\WINDOWS\system32\Bzenwp.dll (file missing)
O2 - BHO: (no name) - {D2A25E9E-2867-4C7A-9132-C7EDD3447A8D} - C:\WINDOWS\system32\Jfvr.dll (file missing)
O2 - BHO: (no name) - {D4278194-AE2B-46EE-8DB7-785AA31BFBD8} - C:\WINDOWS\system32\Ovzd.dll
O2 - BHO: (no name) - {D47CE253-F714-4E35-890C-CBC3DBCF82D3} - C:\WINDOWS\system32\Bbuh.dll (file missing)
O2 - BHO: (no name) - {D9430887-906D-42C4-9301-C7F6ADD7F27C} - C:\WINDOWS\system32\Knkyva.dll
O2 - BHO: (no name) - {DB6E2F21-73F4-4DCB-A42A-1785C0CF9EAC} - C:\WINDOWS\system32\Rdpeza.dll (file missing)
O2 - BHO: (no name) - {DD479EE2-1123-4847-BE69-A17B84E8DA3F} - C:\WINDOWS\system32\Ulfw.dll
O2 - BHO: (no name) - {DD81A957-6FD1-439B-9388-A38EC9CE5203} - C:\WINDOWS\system32\Zrhkm.dll (file missing)
O2 - BHO: (no name) - {DDF37948-EB0E-466C-8EAC-82A41AC66453} - C:\WINDOWS\system32\Uyfi.dll
O2 - BHO: (no name) - {DE46D1AA-003D-448B-8EF9-690D0C7E5AD7} - C:\WINDOWS\system32\Xcphm.dll (file missing)
O2 - BHO: (no name) - {DF41EA75-BF5A-433E-99A8-62E334556FDC} - C:\WINDOWS\system32\Lyfdsn.dll (file missing)
O2 - BHO: (no name) - {E33E57EA-5E07-44D9-BA1A-E23B63DF1D11} - C:\WINDOWS\system32\Syfa.dll (file missing)
O2 - BHO: (no name) - {E35ADD3E-6ED3-44A7-8570-99BBF2CF9745} - C:\WINDOWS\system32\Aygnx.dll (file missing)
O2 - BHO: (no name) - {EB7C734B-B43C-4446-8E31-0A5BC42859E2} - C:\WINDOWS\system32\Rmgwf.dll (file missing)
O2 - BHO: (no name) - {EC4A4C56-8148-42DB-973C-FA51F503395C} - C:\WINDOWS\system32\Fbkf.dll (file missing)
O2 - BHO: (no name) - {EDDCA411-47C7-4603-BB71-F97453C9AED8} - C:\WINDOWS\system32\Togv.dll
O2 - BHO: (no name) - {F234F6CE-D5EF-45AD-9FFA-82DE010D7D7A} - C:\WINDOWS\system32\Yzbtv.dll (file missing)
O2 - BHO: (no name) - {F256F005-4CC9-4F60-B00C-612ED5C791A8} - C:\WINDOWS\system32\Sntu.dll (file missing)
O2 - BHO: (no name) - {F4EB51F3-EFE8-43FA-94B6-D91D5AF7FED4} - C:\WINDOWS\system32\Eswtg.dll (file missing)
O2 - BHO: (no name) - {F530C1F7-AAAC-49EF-A835-C83CF64B2160} - C:\WINDOWS\system32\Svnre.dll (file missing)
O2 - BHO: (no name) - {FD99DAB3-293E-4271-B0A9-94DF29EB34E9} - C:\WINDOWS\system32\Rgrx.dll (file missing)
O2 - BHO: (no name) - {FF0D2625-2AFE-48DD-8307-32C9512AD323} - C:\WINDOWS\system32\Mywuiu.dll
O2 - BHO: (no name) - {FFFD6FF9-6A84-4346-9AB3-98CDDA9A55D3} - C:\WINDOWS\system32\Yeod.dll (file missing)
O3 - IE工具栏增项: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dll
O4 - 启动项HKLM\\Run: [stup.exe] C:\PROGRA~1\TENCENT\Adplus\stup.exe
O4 - 启动项HKLM\\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - 启动项HKLM\\RunOnce: [RavStub] "C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE
O4 - 启动项HKLM\\RunOnce: [KKDelay] C:\Program Files\Rising\AntiSpyware\RunOnce.exe
O8 - IE右键菜单中的新增项目:  >> 彩信发送 << - res://C:\PROGRA~1\MMSASS~1\Mmsass~1.dll/mms.htm
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - D:\qq\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 使用KuGoo3下载(&K) - C:\Program Files\KuGoo3\KuGoo3DownX.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - D:\qq\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - D:\qq\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - D:\qq\SendMMS.htm
O8 - IE右键菜单中的新增项目: 解霸实时播放 - C:\HEROSOFT\Hero3000\MPURLGET.HTM

O9 - 浏览器额外的按钮: 游一游 - {29269350-EC07-4274-821F-F2E0E2697149} - http://act.youyy.com/YoyyLink.html (file missing)
O9 - 浏览器额外的按钮: 解霸 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\HEROSOFT\Hero3000\MPLAYER.EXE
O9 - 浏览器额外的“工具”菜单项: 超级解霸 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\HEROSOFT\Hero3000\MPLAYER.EXE
O9 - 浏览器额外的按钮: 酷热影音 - {7D73FF86-05F1-39ed-C850-A423120EC338} - www.kuree.com/index.htm?id=00011001 (file missing)
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\qq\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\qq\QQ.EXE
O9 - 浏览器额外的按钮: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exe
O9 - 浏览器额外的“工具”菜单项: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exe
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - 浏览器额外的“工具”菜单项: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\cdnns.dll' missing
O11 - Options group: [TBH] 中文搜搜
O17 - HKLM\System\CCS\Services\Tcpip\..\{7F7AD12A-D78C-473D-A524-DF40A901DAA8}: NameServer = 202.101.224.69 202.101.226.68
O21 - SSODL: webwork - {4C611512-2C1D-44b2-A044-872AD2AD5A61} - C:\WINDOWS\webwork\webwork.dll (file missing)
O21 - SSODL: MediaCheck - {D1F73845-4BAB-4061-A46B-FCF7ECC19217} - C:\PROGRA~1\Kuree\MService.dll
O23 - NT 服务: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - NT 服务: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - NT 服务: eMagUpdt - Unknown owner - C:\PROGRA~1\Push\eMagUpdt.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe

删好 修复好了 拿瑞星助手清理完流氓软件了...





HijackThis_zww汉化版扫描日志 V1.99.1
保存于      14:25:17, 日期 2006-12-16
操作系统：  Windows XP SP2 (WinNT 5.01.2600)
浏览器：    Internet Explorer v6.00 SP2 (6.00.2900.2180)

当前运行的进程：         
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\WINDOWS\system32\svchost.exe
D:\qq\QQ.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\user\桌面\HijackThis1991zww.exe

O2 - BHO: 中文搜搜 - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\Adplus\SSAddr.dll (file missing)
O3 - IE工具栏增项: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dll
O4 - 启动项HKLM\\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - 启动项HKLM\\RunOnce: [RavStub] "C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE
O4 - 启动项HKLM\\RunOnce: [KKDelay] C:\Program Files\Rising\AntiSpyware\RunOnce.exe
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - D:\qq\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - IE右键菜单中的新增项目: 解霸实时播放 - C:\HEROSOFT\Hero3000\MPURLGET.HTM
O9 - 浏览器额外的按钮: 游一游 - {29269350-EC07-4274-821F-F2E0E2697149} - http://act.youyy.com/YoyyLink.html (file missing)
O9 - 浏览器额外的按钮: 解霸 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\HEROSOFT\Hero3000\MPLAYER.EXE
O9 - 浏览器额外的“工具”菜单项: 超级解霸 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\HEROSOFT\Hero3000\MPLAYER.EXE
O9 - 浏览器额外的按钮: 酷热影音 - {7D73FF86-05F1-39ed-C850-A423120EC338} - www.kuree.com/index.htm?id=00011001 (file missing)
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\qq\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\qq\QQ.EXE
O9 - 浏览器额外的按钮: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exe
O9 - 浏览器额外的“工具”菜单项: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\flashget.exe
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - 浏览器额外的“工具”菜单项: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\cdnns.dll' missing
O17 - HKLM\System\CCS\Services\Tcpip\..\{7F7AD12A-D78C-473D-A524-DF40A901DAA8}: NameServer = 202.101.224.69 202.101.226.68
O21 - SSODL: webwork - {4C611512-2C1D-44b2-A044-872AD2AD5A61} - C:\WINDOWS\webwork\webwork.dll (file missing)
O21 - SSODL: MediaCheck - {D1F73845-4BAB-4061-A46B-FCF7ECC19217} - C:\PROGRA~1\Kuree\MService.dll
O23 - NT 服务: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - NT 服务: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe