打开程序都显示打开方式 然后还要自己选择,请高手帮忙看看什么问题?谢谢
HijackThis_815汉化版扫描日志 V1.99.1
保存于 20:47:18, 日期 2006-7-19
操作系统: Windows XP SP2 (WinNT 5.01.2600)
浏览器: Internet Explorer v6.00 SP2 (6.00.2900.2180)
当前运行的进程:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
F:\天网防火墙\Firewall\PFW.exe
F:\HijackThis汉华版\HijackThis1991zww.exe
R3 - URLSearchHook: Tencent SearchHook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\AdPlus\IEHelp.dll
O2 - BHO: Tencent Browser Helper - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\AdPlus\IEHelp.dll
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: 超级兔子上网精灵 - {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} - F:\魔法兔子\MAGICSET\haokanbar2.dll
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\xun lei\新建文件夹\ComDlls\XunLeiBHO_001.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - IE工具栏增项: 爱上啦音乐网 - {4E293A0B-70EC-4645-8418-28D48374B0D8} - C:\PROGRA~1\爱上啦~1\Toolbar.dll
O3 - IE工具栏增项: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - F:\魔法兔子\MAGICSET\haokanbar2.dll
O3 - IE工具栏增项: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - 启动项HKLM\\Run: [PHIME2002ASync> C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 启动项HKLM\\Run: [PHIME2002A> C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 启动项HKLM\\Run: [BigDog305> C:\WINDOWS\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 - 启动项HKLM\\Run: [TkBellExe> "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - 启动项HKLM\\Run: [C:\WINDOWS\svchost.exe > C:\WINDOWS\svchost.exe
O4 - 启动项HKLM\\Run: [Thunder> D:\xun lei\新建文件夹\Thunder.exe /s
O4 - 启动项HKLM\\Run: [KAVPersonal50> "F:\卡巴斯基\Kaspersky Anti-Virus Personal\kav.exe" /minimize
O4 - 启动项HKLM\\Run: [SKYNET Personal FireWall> F:\天网防~1\FIREWALL\pfw.exe
O4 - 启动项HKLM\\Run: [AddrPlus3> C:\PROGRA~1\TENCENT\AdPlus\Runner.exe C:\PROGRA~1\TENCENT\AdPlus\SSAddr.dll Rundll32
O4 - HKCU\..\Run: [ctfmon.exe> C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS> "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Super Rabbit IEPro> F:\魔法兔子\MagicSet\SRIECLI.EXE /LOAD
O4 - HKCU\..\Run: [Skype> "F:\SKYPE\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [sys1> Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run
O4 - Startup: 腾讯QQ.lnk = C:\Program Files\Tencent\QQ\QQ.exe
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - D:\xun lei\新建文件夹\Program\GetUrl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - D:\xun lei\新建文件夹\Program\GetAllUrl.htm
O8 - IE右键菜单中的新增项目: Google 搜索(&G) - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 反向链接 - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O8 - IE右键菜单中的新增项目: 类似网页 - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - IE右键菜单中的新增项目: 缓存的网页快照 - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - IE右键菜单中的新增项目: 翻译英文字词(&T) - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - 浏览器额外的按钮: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - 浏览器额外的“工具”菜单项: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - 浏览器额外的“工具”菜单项: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\upfdll.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\upfdll.dll
O11 - Options group: [TBH> 搜搜地址栏搜索
O17 - HKLM\System\CCS\Services\Tcpip\..\{4B0D8B2D-FF3F-426D-B306-082029EA7865}: NameServer = 202.101.10.10 202.96.209.133
O21 - SSODL: DLMon - {590498A3-4131-4D8F-BA4B-36791A0803B1} - C:\WINDOWS\system32\DLMain.dll (file missing)
O23 - NT 服务: kavsvc - Kaspersky Lab - F:\卡巴斯基\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - NT 服务: schosts (svchost) - Unknown owner - C:\WINDOWS\Hacker.com.cn.exe
原来的启动项 咔吧和天网都不启动了
O4 - 启动项HKLM\\Run: [C:\WINDOWS\svchost.exe > C:\WINDOWS\svchost.exe
O4 - HKCU\..\Run: [sys1> Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - IE工具栏增项: 爱上啦音乐网 - {4E293A0B-70EC-4645-8418-28D48374B0D8} - C:\PROGRA~1\爱上啦~1\Toolbar.dll
O3 - IE工具栏增项: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
R3 - URLSearchHook: Tencent SearchHook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\AdPlus\IEHelp.dll
O2 - BHO: Tencent Browser Helper - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\AdPlus\IEHelp.dll
O21 - SSODL: DLMon - {590498A3-4131-4D8F-BA4B-36791A0803B1} - C:\WINDOWS\system32\DLMain.dll (file missing)
O4 - 启动项HKLM\\Run: [AddrPlus3> C:\PROGRA~1\TENCENT\AdPlus\Runner.exe C:\PROGRA~1\TENCENT\AdPlus\SSAddr.dll Rundll32
O4 - HKCU\..\Run: [sys1> Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run
修复,删除相关的文件
O23 - NT 服务: schosts (svchost) - Unknown owner - C:\WINDOWS\Hacker.com.cn.exe
灰鸽子,修复删除,或参考:
这些处理完后看能不能解决,如不能请参考修复一下,再扫个日志!
HijackThis_815汉化版扫描日志 V1.99.1
保存于 21:22:22, 日期 2006-7-19
操作系统: Windows XP SP2 (WinNT 5.01.2600)
浏览器: Internet Explorer v6.00 SP2 (6.00.2900.2180)
当前运行的进程:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
F:\天网防火墙\Firewall\PFW.exe
C:\Program Files\Internet Explorer\iexplore.exe
F:\HijackThis汉华版\HijackThis1991zww.exe
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: 超级兔子上网精灵 - {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} - F:\魔法兔子\MAGICSET\haokanbar2.dll
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\xun lei\新建文件夹\ComDlls\XunLeiBHO_001.dll
O3 - IE工具栏增项: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - F:\魔法兔子\MAGICSET\haokanbar2.dll
O4 - 启动项HKLM\\Run: [PHIME2002ASync> C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 启动项HKLM\\Run: [PHIME2002A> C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 启动项HKLM\\Run: [BigDog305> C:\WINDOWS\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305)
O4 - 启动项HKLM\\Run: [TkBellExe> "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - 启动项HKLM\\Run: [Thunder> D:\xun lei\新建文件夹\Thunder.exe /s
O4 - 启动项HKLM\\Run: [KAVPersonal50> "F:\卡巴斯基\Kaspersky Anti-Virus Personal\kav.exe" /minimize
O4 - 启动项HKLM\\Run: [SKYNET Personal FireWall> F:\天网防~1\FIREWALL\pfw.exe
O4 - HKCU\..\Run: [ctfmon.exe> C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS> "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Super Rabbit IEPro> F:\魔法兔子\MagicSet\SRIECLI.EXE /LOAD
O4 - HKCU\..\Run: [Skype> "F:\SKYPE\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [sys1> Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run
O4 - Startup: 腾讯QQ.lnk = C:\Program Files\Tencent\QQ\QQ.exe
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - D:\xun lei\新建文件夹\Program\GetUrl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - D:\xun lei\新建文件夹\Program\GetAllUrl.htm
O8 - IE右键菜单中的新增项目: Google 搜索(&G) - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 反向链接 - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O8 - IE右键菜单中的新增项目: 类似网页 - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - IE右键菜单中的新增项目: 缓存的网页快照 - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - IE右键菜单中的新增项目: 翻译英文字词(&T) - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - 浏览器额外的按钮: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - 浏览器额外的“工具”菜单项: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - 浏览器额外的按钮: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - 浏览器额外的“工具”菜单项: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\upfdll.dll
O10 - 未知的文件在 Winsock LSP: c:\windows\system32\upfdll.dll
O11 - Options group: [TBH> 搜搜地址栏搜索
O17 - HKLM\System\CCS\Services\Tcpip\..\{4B0D8B2D-FF3F-426D-B306-082029EA7865}: NameServer = 202.101.10.10 202.96.209.133
O23 - NT 服务: kavsvc - Kaspersky Lab - F:\卡巴斯基\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - NT 服务: schosts (svchost) - Unknown owner - C:\WINDOWS\Hacker.com.cn.exe
灰鸽子 控制面板/性能和维护/管理工具/服务/查找 Gray_Pigeon_Server2.0 (GrayPigeonServer2.0) 右击/属性/启动类型/禁止/应用/停止/确定。 这个我找不到
关联错误,打不开文件解决方法 桌面新建了一个文本文档,然后把文件名改为*.vbb,双击运行 显示拒绝访问
原帖由 dalyzhan 于 2006-7-19 21:26 发表
灰鸽子 控制面板/性能和维护/管理工具/服务/查找 Gray_Pigeon_Server2.0 (GrayPigeonServer2.0) 右击/属性/启动类型/禁止/应用/停止/确定。 这个我找不到
关联错误,打不开文件解决方法 桌面新建了一个文本文 ...
查找 schosts
原帖由 dalyzhan 于 2006-7-19 21:26 发表
灰鸽子 控制面板/性能和维护/管理工具/服务/查找 Gray_Pigeon_Server2.0 (GrayPigeonServer2.0) 右击/属性/启动类型/禁止/应用/停止/确定。 这个我找不到
关联错误,打不开文件解决方法 桌面新建了一个文本文 ...
谢谢 灰鸽子的已经禁掉了
关联错误的还是不能弄
用SREng扫个日志上来吧~~下载见顶固贴!!
2006-07-19,21:44:57
System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (
Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run>
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation>
<MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background> [Microsoft Corporation>
<Super Rabbit IEPro><F:\魔法兔子\MagicSet\SRIECLI.EXE /LOAD> [Super Rabbit Soft>
<Skype><"F:\SKYPE\Phone\Skype.exe" /nosplash /minimized> [>
<sys1><Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run> [>
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows>
<load><> [>
<run><> [>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run>
<PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [Microsoft Corporation>
<PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [Microsoft Corporation>
<BigDog305><C:\WINDOWS\VM305_STI.EXE VIMICRO USB PC Camera (ZC0305)> [>
<TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.>
<Thunder><D:\xun lei\新建文件夹\Thunder.exe /s> [Thunder Networking Technologies,LTD>
<KAVPersonal50><"F:\卡巴斯基\Kaspersky Anti-Virus Personal\kav.exe" /minimize> [Kaspersky Lab>
<SKYNET Personal FireWall><F:\天网防~1\FIREWALL\pfw.exe> [广州众达天网技术有限公司>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon>
<shell><Explorer.exe> [Microsoft Corporation>
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows>
<AppInit_DLLs><> [>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon>
<UIHost><logonui.exe> [Microsoft Corporation>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run>
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [Microsoft Corporation>
<SoundMan><; SOUNDMAN.EXE> [Realtek Semiconductor Corp.>
<TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.>
==================================
启动文件夹
[腾讯QQ>
<C:\Documents and Settings\user\「开始」菜单\程序\启动\腾讯QQ.lnk><N>
==================================
服务
[kavsvc / kavsvc>
<"F:\卡巴斯基\Kaspersky Anti-Virus Personal\kavsvc.exe"><Kaspersky Lab>
==================================
浏览器加载项
[QQBrowserHelperObject Class>
{54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[超级兔子上网精灵>
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <F:\魔法兔子\MAGICSET\haokanbar2.dll, Xiang Feng Technology>
[Thunder Browser Helper>
{889D2FEB-5411-4565-8998-1DD2C5261283} <D:\xun lei\新建文件夹\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[QQ>
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class>
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Messenger>
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[超级兔子上网精灵>
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <F:\魔法兔子\MAGICSET\haokanbar2.dll, Xiang Feng Technology>
[Shockwave Flash Object>
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[Windows Media Player>
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google>
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[HTML Document>
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[XuZheng_Helper>
{29D83095-5469-48EA-9123-BC01DFAFE6DA} <C:\PROGRA~1\爱上啦~1\Helper.dll, N/A>
[HHCtrl Object>
{41B23C28-488E-4E5C-ACE2-BB0BBABE99E8} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[超级兔子上网精灵>
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <F:\魔法兔子\MAGICSET\haokanbar2.dll, Xiang Feng Technology>
[爱上啦音乐网>
{4E293A0B-70EC-4645-8418-28D48374B0D8} <C:\PROGRA~1\爱上啦~1\Toolbar.dll, N/A>
[QQBrowserHelperObject Class>
{54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Windows Media Player>
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[超级兔子上网精灵>
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <F:\魔法兔子\MAGICSET\haokanbar2.dll, Xiang Feng Technology>
[Microsoft Web 浏览器>
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Thunder Browser Helper>
{889D2FEB-5411-4565-8998-1DD2C5261283} <D:\xun lei\新建文件夹\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[RMGetLicense Class>
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[Microsoft Scriptlet Component>
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC>
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[AUDIO__MP3 Moniker Class>
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__MPEGURL Moniker Class>
{CD3AFA78-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class>
{CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class>
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class>
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[RealPlayer G2 Control>
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object>
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[VqqSpeedDlProxy Class>
{F138084D-84D7-48CD-BEA8-04772457516E} <C:\WINDOWS\vqqsdl.dll, Tencent>
[&使用迅雷下载>
<D:\xun lei\新建文件夹\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接>
<D:\xun lei\新建文件夹\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)>
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘>
<C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[反向链接>
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html, N/A>
[添加到QQ自定义面板>
<C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情>
<C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片>
<C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[类似网页>
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html, N/A>
[缓存的网页快照>
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html, N/A>
[翻译英文字词(&T)>
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html, N/A>
==================================
正在运行的进程
[PID: 568>[\SystemRoot\System32\smss.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 644>[\??\C:\WINDOWS\system32\csrss.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 668>[\??\C:\WINDOWS\system32\winlogon.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 712>[C:\WINDOWS\system32\services.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 724>[C:\WINDOWS\system32\lsass.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
[PID: 876>[C:\WINDOWS\system32\svchost.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 960>[C:\WINDOWS\system32\svchost.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
[PID: 1056>[C:\WINDOWS\System32\svchost.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
[PID: 1104>[C:\WINDOWS\system32\svchost.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
[PID: 1256>[C:\WINDOWS\system32\svchost.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
[PID: 1472>[C:\WINDOWS\system32\spoolsv.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1728>[C:\WINDOWS\Explorer.EXE> <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\xun lei\新建文件夹\ComDlls\XunLeiBHO_001.dll> <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\Program Files\WinRAR\rarext.dll> <N/A><N/A>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\shellex.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\scrchpg.dll> <Kaspersky Lab><5.0.1.18>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\scrch_ag.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\FSSync.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\pr_rmt.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\ccclient.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\klipc.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\KLUtil.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\rpt.dll> <Kaspersky Lab><5.0.372.2>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\CCIFACE.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\prloader.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\prkernel.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\prstring.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\pr_srv.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\pr_clnt.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\tempfile.ppl> <Kaspersky Lab><5.0.372.0>
[PID: 304>[C:\WINDOWS\system32\svchost.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 540>[C:\WINDOWS\system32\wdfmgr.exe> <Microsoft Corporation><5.2.3790.1230 built by: DNSRV(bld4act)>
[PID: 552>[C:\Program Files\Internet Explorer\IEXPLORE.EXE> <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1268>[C:\WINDOWS\System32\alg.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2228>[C:\WINDOWS\system32\ctfmon.exe> <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 3420>[F:\天网防火墙\Firewall\PFW.exe> <广州众达天网技术有限公司><2.7.7.1004>
[F:\天网防火墙\Firewall\SKYMISC.DLL> <N/A><N/A>
[F:\天网防火墙\Firewall\COMPRESSWRAP.DLL> <N/A><N/A>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\scrchpg.dll> <Kaspersky Lab><5.0.1.18>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\scrch_ag.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\FSSync.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\pr_rmt.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\ccclient.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\klipc.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\KLUtil.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\rpt.dll> <Kaspersky Lab><5.0.372.2>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\CCIFACE.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\prloader.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\prkernel.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\prstring.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\pr_srv.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\pr_clnt.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\tempfile.ppl> <Kaspersky Lab><5.0.372.0>
[PID: 1664>[C:\Program Files\Internet Explorer\iexplore.exe> <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Tencent\QQ\QQIEHelper.dll> <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
[F:\魔法兔子\MAGICSET\haokanbar2.dll> <Xiang Feng Technology><2, 1, 0, 1463>
[D:\xun lei\新建文件夹\ComDlls\XunLeiBHO_001.dll> <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\scrchpg.dll> <Kaspersky Lab><5.0.1.18>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\scrch_ag.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\FSSync.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\pr_rmt.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\ccclient.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\klipc.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\KLUtil.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\rpt.dll> <Kaspersky Lab><5.0.372.2>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\CCIFACE.dll> <Kaspersky Lab><5.0.372.1>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\prloader.dll> <Kaspersky Lab><5.0.372.0>
[F:\卡巴斯基\Kaspersky Anti-Virus Personal\prkernel.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\prstring.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\pr_srv.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\pr_clnt.ppl> <Kaspersky Lab><5.0.372.0>
[f:\卡巴斯基\kaspersky anti-virus personal\tempfile.ppl> <Kaspersky Lab><5.0.372.0>
[C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx> <Macromedia, Inc.><8,0,24,0>
[PID: 1828>[F:\HijackThis汉华版\HijackThis1991zww.exe> <Soeperman Enterprises Ltd.><1.99.0001>
[PID: 3440>[F:\sreng\SREng2\SREng.exe> <Smallfrogs Studio><2.0.21.505>
[C:\WINDOWS\system32\upfdll.dll> <N/A><N/A>
==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1>
.EXE Error. [winfiles>
.COM OK. ["%1" %*>
.PIF OK. ["%1" %*>
.REG OK. [regedit.exe "%1">
.BAT OK. ["%1" %*>
.SCR OK. ["%1" /S>
.CHM OK. ["C:\WINDOWS\hh.exe" %1>
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1>
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1>
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1>
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*>
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*>
.LNK OK. [{00021401-0000-0000-C000-000000000046}>
==================================
Winsock 提供者
==================================
SREng 真不错 我已经修复了关联错误的
谢谢ght2811和浪子版主的帮忙
希望ght2811帮忙看看刚刚扫描上来的日志有什么问题吗?
<sys1><Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run> [>
进入注册表搜索Upsrv.dll,删除它的所有注册表选项,并删除文件!!
文件关联错误有一处,你修复掉了吧!!
C:\PROGRA~1\爱上啦????????这是啥东东。。不爽就干掉!!
先下载置顶帖中的“lspfix”“WinsockXPFix”,进入控制面板-网络连接-本地连接(属性)-Internet 协议 (TCP/IP)(属性),如果这里的设置不是自动获得,把里面的所有设置记一下.重启进安全模式下,修复“<sys1><Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run> [>”启动项,再用“lspfix”修复“[C:\WINDOWS\system32\upfdll.dll>”,用KILLBOX强制删除“C:\WINDOWS\system32\Upsrv.dll”“C:\WINDOWS\system32\upfdll.dll”,再用“WinsockXPFix”修复一下系统!还原TCP/IP的设置重启
原帖由 ght2811 于 2006-7-19 22:04 发表
<sys1><Rundll32.exe C:\WINDOWS\system32\Upsrv.dll,Run> [>
进入注册表搜索Upsrv.dll,删除它的所有注册表选项,并删除文件!!
文件关联错误有一处,你修复掉了吧!!
C:\PROGRA~1\爱上啦 ...
文件关联已经修复
C:\PROGRA~1\爱上啦 ... 我也不知道是什么东东,这是堂弟的电脑
如果不是自己装的。。就卸掉~~ |
|
设为首页
加入收藏
联系我们
打印本文 
返回顶部 
加入收藏 
关闭窗口
