×î½üÁ½Ì죬Åöµ½Ò»¸öÁ÷Ã¥ÍøÕ¾£¬½Ðʲô¡°ÌôÌô¼ð¼ð¡±£¬ÀÏ°ÑÎÒµÄÖ÷Ò³¸Ä³ÉËü¡£ÒѾÔÚ×¢²á±íÀïɾ³ýÁË¡°ttjj¡±µÄÏà¹Ø¼üÖµ£¬µ«ÖØпª»úºóÓÖ»ØÀ´ÁË£¬Çë¸ßÊÖÖ¸µã£¬Ð»Ð»£¡¡¡
¸½ÉÏHijackThisɨÃèÈÕÖ¾£¬Çë°ïæ¿´¿´£º¡¡
HijackThis_815ºº»¯°æɨÃèÈÕÖ¾ V1.99.1¡¡
±£´æÓÚ ¡¡ ¡¡ 1:24:21, ÈÕÆÚ 2005-12-11¡¡
²Ù×÷ϵͳ£º Windows XP SP2 (WinNT 5.01.2600)¡¡
ä¯ÀÀÆ÷£º ¡¡ Internet Explorer v6.00 SP2 (6.00.2900.2180)¡¡
µ±Ç°ÔËÐеĽø³Ì£º ¡¡ ¡¡ ¡¡ ¡¡
C:\WINDOWS\System32\smss.exe¡¡
C:\WINDOWS\system32\winlogon.exe¡¡
C:\WINDOWS\system32\services.exe¡¡
C:\WINDOWS\system32\lsass.exe¡¡
C:\WINDOWS\system32\svchost.exe¡¡
C:\WINDOWS\System32\svchost.exe¡¡
C:\WINDOWS\system32\spoolsv.exe¡¡
C:\WINDOWS\system32\oodag.exe¡¡
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe¡¡
C:\WINDOWS\System32\svchost.exe¡¡
E:\Program Files\VMware\VMware Workstation\vmware-authd.exe¡¡
C:\WINDOWS\system32\vmnat.exe¡¡
C:\WINDOWS\system32\vmnetdhcp.exe¡¡
C:\WINDOWS\Explorer.EXE¡¡
C:\WINDOWS\system32\ctfmon.exe¡¡
E:\Program Files\HA_Pentium4 MagicSpeed_Xlong\HA_Pentium4 MagicSpeed_Xlong.exe¡¡
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe¡¡
E:\Program Files\TheWorld\TheWorld.exe¡¡
E:\Program Files\HijackThis1991ºº»¯°æ\HijackThis1991zww.exe¡¡
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v8.dll¡¡
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\QQ ÊÀ½ç\QQ\Tencent\QQIEHelper.dll¡¡
O2 - BHO: NXIECatcher Class - {83B80A9C-D91A-4F22-8DCF-EA7204039F79} - E:\Program Files\Xi\NetXfer\NXIEHelper.dll¡¡
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - D:\Program Files\FlashGet\jccatch.dll¡¡
O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} - D:\PROGRA~1\kugoo\KUGOO3~1.OCX¡¡
O2 - BHO: Infofo ¹¤¾ßÀ¸ - {D74EC18E-3DDD-4174-B1B1-949FE3B8366D} - C:\Program Files\Infofo Bar\infofobar.dll¡¡
O3 - IE¹¤¾ßÀ¸ÔöÏî: Infofo ¹¤¾ßÀ¸ - {D74EC18E-3DDD-4174-B1B1-949FE3B8366D} - C:\Program Files\Infofo Bar\infofobar.dll¡¡
O4 - Æô¶¯ÏîHKLM\\Run: [KAVPersonal50] £¢C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\kav.exe£¢ /minimize¡¡
O4 - Æô¶¯ÏîHKLM\\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k¡¡
O4 - Æô¶¯ÏîHKLM\\Run: [×Ô¶¯µ÷½ÚCPU] E:\Program Files\HA_Pentium4 MagicSpeed_Xlong\HA_Pentium4 MagicSpeed_Xlong.exe¡¡
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe¡¡
O4 - Global Startup: ¿¨°Í˹»ù·´ºÚ¿Í.lnk = C:\Program Files\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: £¦Ê¹ÓÃѸÀ×ÏÂÔØ - D:\Program Files\Thunder\geturl.htm¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: £¦Ê¹ÓÃѸÀ×ÏÂÔØÈ«²¿Á´½Ó - D:\Program Files\Thunder\getallurl.htm¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: ʹÓÃKuGoo3ÏÂÔØ(£¦K) - D:\Program Files\kugoo\KuGoo3DownX.htm¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: ʹÓÃÍøÂç´«ËÍ´øÏÂÔØ - E:\Program Files\Xi\NetXfer\NXAddLink.html¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: ʹÓÃÍøÂç´«ËÍ´øÏÂÔØÈ«²¿Á´½Ó - E:\Program Files\Xi\NetXfer\NXAddList.html¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: ʹÓÃÍø¼Ê¿ì³µÏÂÔØ - D:\Program Files\FlashGet\jc_link.htm¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: ʹÓÃÍø¼Ê¿ì³µÏÂÔØÈ«²¿Á´½Ó - D:\Program Files\FlashGet\jc_all.htm¡¡
O8 - IEÓÒ¼ü²Ëµ¥ÖеÄÐÂÔöÏîÄ¿: µ¼³öµ½ Microsoft Office Excel(£¦X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ°´Å¥: Infofo ¹¤¾ßÀ¸ - {8507326C-B5C1-4559-BB91-0919E753836F} - C:\Program Files\Infofo Bar\infofobar.dll¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ¡°¹¤¾ß¡±²Ëµ¥Ïî: Infofo ¹¤¾ßÀ¸ - {8507326C-B5C1-4559-BB91-0919E753836F} - C:\Program Files\Infofo Bar\infofobar.dll¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ°´Å¥: ÐÅÏ¢¼ìË÷ - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\System32\shdocvw.dll¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ°´Å¥: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Program Files\FlashGet\flashget.exe¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ¡°¹¤¾ß¡±²Ëµ¥Ïî: £¦FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Program Files\FlashGet\flashget.exe¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ°´Å¥: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\QQ ÊÀ½ç\QQ\Tencent\QQIEHelper.dll¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ¡°¹¤¾ß¡±²Ëµ¥Ïî: QQìŲʹ¤¾ßÌõÉèÖà - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\QQ ÊÀ½ç\QQ\Tencent\QQIEHelper.dll¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ°´Å¥: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll¡¡
O9 - ä¯ÀÀÆ÷¶îÍâµÄ¡°¹¤¾ß¡±²Ëµ¥Ïî: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll¡¡
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab£¿1127663034404¡¡
O17 - HKLM\System\CCS\Services\Tcpip\..\{D0CE0E71-82E9-4C0F-9433-B55702B1DC29}: NameServer = 211.92.144.161,211.92.33.193¡¡
O23 - NT ·þÎñ: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\kavsvc.exe¡¡
O23 - NT ·þÎñ: O£¦O Defrag - O£¦O Software GmbH - C:\WINDOWS\system32\oodag.exe¡¡
O23 - NT ·þÎñ: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe¡¡
O23 - NT ·þÎñ: VMware Authorization Service (VMAuthdService) - VMware, Inc. - E:\Program Files\VMware\VMware Workstation\vmware-authd.exe¡¡
O23 - NT ·þÎñ: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe¡¡
O23 - NT ·þÎñ: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe