【求助】电脑同时有了 BACKDOOR TROJAN ROOTKIT bbs.ikaka.com

淡淡淡淡淡 - 2007-4-18 21:27:00

这是我的扫描日记请帮我看看好吗？感激

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<msnmsgr><"C:\Program Files\MSN Messenger\msnmsgr.exe" /background> [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher]
<PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Windows Publisher]
<PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Windows Publisher]
<Apoint><C:\Program Files\Apoint\Apoint.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<SonyPowerCfg><C:\Program Files\Sony\VAIO Power Management\SPMgr.exe> [Sony Corporation]
<ISBMgr.exe><C:\Program Files\Sony\ISB Utility\ISBMgr.exe> [Sony Corporation]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [(Verified)Microsoft Windows Publisher]
<IMEKRMIG6.1><C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE> [(Verified)Microsoft Windows Publisher]
<MSPY2002><C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC> [(Verified)Microsoft Windows Publisher]
<Switcher.exe><C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe> [Sony Corporation]
<VAIOCameraUtility><"C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe"> [Sony Corporation]
<VAIO Update 2><"C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" /Stationary> [Sony Corporation]
<RavTask><"D:\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<cm09><D:\Program Files\飞鱼\cm\cmtp.exe> [N/A]
<KuGoo3><D:\Program Files\KuGoo3\KuGoo.exe> []
<WebThunder><C:\Program Files\Thunder Network\WebThunder\WebThunder.exe> [(Verified)ShenZhen Thunder Networking Technologies Ltd.]
<WangWang><"D:\Program Files\Alisoft\WangWang\WangWang.EXE"> [阿里软件（中国）有限公司]
<CdnCtr><C:\Program Files\CNNIC\Cdn\cdnup.exe> [CNNIC]
<REGSHAVE><C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN> [FUJI PHOTO FILM CO., LTD.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<WinAutoUp><C:\WINDOWS\AutoUp.exe> []
<adsnt><C:\WINDOWS\AdsNT.exe> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{7C3E3EA0-F318-43FB-952E-74736B2F6789}><C:\Program Files\SysInfo.wmp> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
<WinlogonNotify: VESWinlogon><VESWinlogon.dll> [Sony Corporation]

==================================
启动文件夹
[Bluetooth Manager]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Bluetooth Manager.lnk --> C:\PROGRA~1\Toshiba\BLUETO~1\TOSBTM~1.EXE [N/A]><N>
[Exif Launcher]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Exif Launcher.lnk --> D:\PROGRA~1\FINEPI~1\QuickDCF.exe [FUJI PHOTO FILM CO., LTD.]><N>
[Adobe Gamma]
<C:\Documents and Settings\www\「开始」菜单\程序\启动\Adobe Gamma.lnk --> C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.]><N>

淡淡淡淡淡 - 2007-4-18 21:30:00

==================================
服务
[Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
<"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[Application Management / AppMgmt][Stopped/Manual Start]
<C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
<C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Performance Moniter / BNESS][Stopped/Auto Start]
<C:\WINDOWS\SYSTEM32\RUNDLL2000.EXE C:\WINDOWS\SYSTEM32\WBEM\SRSOV.DLL,Export 1087><Microsoft Corporation>
[Intel(R) PROSet/Wireless Event Log / EvtEng][Running/Auto Start]
<C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>
[Human Interface Device Access / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Image Converter video recording monitor for VAIO Entertainment / Image Converter video recording monitor for VAIO Entertainment][Stopped/Manual Start]
<C:\Program Files\Sony\Image Converter 2\IcVzMon.exe><Sony Corporation>
[MSCSPTISRV / MSCSPTISRV][Stopped/Manual Start]
<"C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe"><Sony Corporation>
[MSSQL$VAIO_VEDB / MSSQL$VAIO_VEDB][Running/Auto Start]
<C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
<C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[Navoct / Navoct][Running/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\Program Files\iesnap\navoct.dll>< >
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[PACSPTISVR / PACSPTISVR][Stopped/Manual Start]
<"C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe"><Sony Corporation>
[Intel(R) PROSet/Wireless Registry Service / RegSrvc][Running/Auto Start]
<C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>
[Rising Process Communication Center / RsCCenter][Running/Auto Start]
<"D:\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon][Running/Auto Start]
<"D:\RISING\RAV\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[Intel(R) PROSet/Wireless Service / S24EventMonitor][Running/Auto Start]
<C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>
[System Security / Scripts][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\frbsx.dll><N/A>
[Std sooh Service / sooh][Running/Auto Start]
<C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\kggc\xttm.dll,Service -s><Microsoft Corporation>
[Sony SPTI Service / SPTISRV][Stopped/Manual Start]
<"C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe"><Sony Corporation>
[SQLAgent$VAIO_VEDB / SQLAgent$VAIO_VEDB][Stopped/Manual Start]
<C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB><Microsoft Corporation>
[SonicStage SCSI Service / SSScsiSV][Stopped/Manual Start]
<C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe><Sony Corporation>
[VAIO Entertainment Aggregation and Control Service / VAIO Entertainment Aggregation and Control Service][Running/Manual Start]
<"C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe"><Sony Corporation>
[VAIO Entertainment Task Scheduler / VAIO Entertainment Task Scheduler][Stopped/Manual Start]
<"C:\Program Files\Sony\VAIO Entertainment\VzTaskScheduler.exe"><Sony Corporation>
[VAIO Entertainment TV Device Arbitration Service / VAIO Entertainment TV Device Arbitration Service][Stopped/Manual Start]
<"C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe"><Sony Corporation>
[VAIO Event Service / VAIO Event Service][Running/Auto Start]
<C:\Program Files\Sony\VAIO Event Service\VESMgr.exe><Sony Corporation>
[VAIO Media Integrated Server / VAIOMediaPlatform-IntegratedServer-AppServer][Stopped/Manual Start]
<C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe><Sony Corporation>
[VAIO Media Integrated Server (HTTP) / VAIOMediaPlatform-IntegratedServer-HTTP][Stopped/Manual Start]
<"C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP"><Sony Corporation>
[VAIO Media Integrated Server (UPnP) / VAIOMediaPlatform-IntegratedServer-UPnP][Stopped/Manual Start]
<C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe><Sony Corporation>
[VAIO Media Gateway Server / VAIOMediaPlatform-Mobile-Gateway][Stopped/Manual Start]
<"C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server"><Sony Corporation>
[VAIO Entertainment UPnP Client Adapter / Vcsw][Running/Manual Start]
<C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -RunBySCM><Sony Corporation>
[VAIO Entertainment Database Service / VzCdbSvc][Running/Auto Start]
<"C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe"><Sony Corporation>
[VAIO Entertainment File Import Service / VzFw][Running/Auto Start]
<C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe><Sony Corporation>
[Windows / Windows][Stopped/Auto Start]
<C:\WINDOWS\Windows.exe><N/A>
[Windows CreaterDown / WindowsDown][Stopped/Auto Start]
<C:\WINDOWS\system32\servet.exe><N/A>
[Gentad / Gentad][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\Struts.dll><>

淡淡淡淡淡 - 2007-4-18 21:30:00

==================================
驱动程序
[acpidisk / acpidisk][Running/Auto Start]
<\??\C:\WINDOWS\system32\drivers\acpidisk.sys><N/A>
[AEGIS Protocol (IEEE 802.1x) v3.4.9.0 / AegisP][Running/Auto Start]
<system32\DRIVERS\AegisP.sys><Meetinghouse Data Communications>
[Alps Pointing-device Filter Driver / ApfiltrService][Running/Manual Start]
<system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[bojjva04 / bojjva04][Stopped/Boot Start]
<\SystemRoot\system32\\drivers\\system32\\drivers\\%s.sys.sys><N/A>
[cdnprot / cdnprot][Running/Boot Start]
<\SystemRoot\system32\drivers\cdnprot.sys><中国互联网络信息中心(CNNIC)>
[cdntran / cdntran][Running/Auto Start]
<system32\drivers\cdntran.sys><CNNIC>
[cwvual0 / cwvual05][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\cwvual05.sys><N/A>
[Sony DMI Call service / DMICall][Running/System Start]
<system32\DRIVERS\DMICall.sys><Sony Corporation>
[dyuinj1 / dyuinj14][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\dyuinj14.sys><N/A>
[Intel(R) PRO Network Connection Driver / E100B][Running/Manual Start]
<system32\DRIVERS\e100b325.sys><Intel Corporation>
[Intel(R) PRO/1000 PCI Express Network Connection Driver / e1express][Stopped/Manual Start]
<system32\DRIVERS\e1e5132.sys><Intel Corporation>
[ExpScaner / ExpScaner][Running/Auto Start]
<\??\D:\RISING\RAV\ExpScan.sys><>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HookCont / HookCont][Running/Auto Start]
<\??\D:\RISING\RAV\HOOKCONT.sys><Rising>
[HookReg / HookReg][Running/Auto Start]
<\??\D:\RISING\RAV\HookReg.sys><>
[HookSys / HookSys][Running/Auto Start]
<\??\D:\RISING\RAV\HookSys.sys><Rising>
[HSFHWAZL / HSFHWAZL][Running/Manual Start]
<system32\DRIVERS\HSFHWAZL.sys><Conexant Systems, Inc.>
[HSF_DPV / HSF_DPV][Running/Manual Start]
<system32\DRIVERS\HSF_DPV.sys><Conexant Systems, Inc.>
[isqv / isqvr][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\isqvr.sys><N/A>
[mdmxsdk / mdmxsdk][Running/Auto Start]
<system32\DRIVERS\mdmxsdk.sys><Conexant>
[MEMSCAN / MEMSCAN][Running/Auto Start]
<\??\D:\RISING\RAV\MEMSCAN.sys><瑞星软件有限公司>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[patswe82 / patswe82][Stopped/Boot Start]
<\SystemRoot\system32\\drivers\\system32\\drivers\\%s.sys.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[RsNTGDI / RsNTGDI][Running/Boot Start]
<\SystemRoot\system32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS][Running/Auto Start]
<\??\D:\RISING\RAV\RSPPSYS.sys><Rising>
[rxqmzj1 / rxqmzj10][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\rxqmzj10.sys><N/A>
[WLAN 传输 / s24trans][Running/Auto Start]
<system32\DRIVERS\s24trans.sys><Intel Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><N/A>
[SiI-3132 SATALink Controller / SI3132][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\SI3132.sys><Silicon Image, Inc.>
[SATALink driver accelerator / SiFilter][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\SiWinAcc.sys><Silicon Image, Inc.>
[SATALink External Device Filter / SiRemFil][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\SiRemFil.sys><Silicon Image, Inc.>
[Sony Notebook Control Device / SNC][Running/Manual Start]
<System32\Drivers\SonyNC.sys><Sony Corporation>
[Sony Image Conversion Filter Driver / SonyImgF][Running/Manual Start]
<system32\DRIVERS\SonyImgF.sys><Sony Corporation>
[SigmaTel High Definition Audio CODEC / STHDA][Running/Manual Start]
<system32\drivers\sthda.sys><SigmaTel, Inc.>
[SVKP / SVKP][Running/Auto Start]
<\??\C:\WINDOWS\system32\SVKP.sys><AntiCracking>
[ti21sony / ti21sony][Running/Manual Start]
<system32\drivers\ti21sony.sys><Texas Instruments>
[TOSHIBA Bluetooth HID port driver / toshidpt][Stopped/Manual Start]
<system32\drivers\Toshidpt.sys><TOSHIBA Corporation.>
[Bluetooth Port Driver from Toshiba / tosporte][Running/Manual Start]
<system32\DRIVERS\tosporte.sys><TOSHIBA Corporation>
[Bluetooth RFBUS from TOSHIBA / Tosrfbd][Stopped/Manual Start]
<System32\Drivers\tosrfbd.sys><TOSHIBA CORPORATION>
[Bluetooth RFBNEP from TOSHIBA / Tosrfbnp][Stopped/Manual Start]
<System32\Drivers\tosrfbnp.sys><TOSHIBA Corporation>
[Bluetooth RFCOMM from TOSHIBA / Tosrfcom][Running/System Start]
<System32\Drivers\tosrfcom.sys><TOSHIBA Corporation>
[Bluetooth RFHID from TOSHIBA / Tosrfhid][Stopped/Manual Start]
<system32\DRIVERS\Tosrfhid.sys><TOSHIBA Corporation.>
[Bluetooth Personal Area Network from TOSHIBA / tosrfnds][Stopped/Manual Start]
<system32\DRIVERS\tosrfnds.sys><TOSHIBA Corporation.>
[Bluetooth Audio Device (WDM) from TOSHIBA / TosRfSnd][Stopped/Manual Start]
<system32\drivers\TosRfSnd.sys><TOSHIBA Corporation>
[Bluetooth USB Controller / Tosrfusb][Stopped/Manual Start]
<System32\Drivers\tosrfusb.sys><TOSHIBA CORPORATION>
[ucsvtb7 / ucsvtb73][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\ucsvtb73.sys><N/A>
[Sony Visual Communication Camera VGP-VCC1 / usbvm321][Running/Manual Start]
<System32\Drivers\usbvm321.sys><Vimicro Corporation>
[Intel(R) PRO/Wireless 3945ABG Adapter Driver / w39n51][Running/Manual Start]
<system32\DRIVERS\w39n51.sys><Intel? Corporation>
[winachsf / winachsf][Running/Manual Start]
<system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
<system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[xrtlta4 / xrtlta48][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\xrtlta48.sys><N/A>
[ynsmze3 / ynsmze34][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\ynsmze34.sys><N/A>

淡淡淡淡淡 - 2007-4-18 21:32:00

==================================
浏览器加载项
[WebThunder Browser Helper]
{00000AAA-A363-466E-BEF5-9BB68697AA7F} <C:\Program Files\Thunder Network\WebThunder\WebThunderBHO_016.dll, Thunder Networking Technologies,LTD>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v11.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[CAdLogic Object]
{11F09AFD-75AD-4E51-AB43-E09E9351CE16} <C:\Program Files\Common Files\CPUSH\cpush0.dll, >
[Cbho Object]
{352E3B3A-CAB5-4DBC-B940-C7F84D0447D8} <C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll, CNNIC>
[Info cache]
{385AB8C6-FB22-4D17-8834-064E2BA0A6F0} <C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll, 金泰丰(广州)科技有限公司>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[实用搜索]
{6CFD436C-7AAD-4e50-992F-C0C87A94CAD2} <C:\Program Files\superutilbar\superutilbar.dll, www.shiyongsousuo.com>
[ChinaBuy Class]
{85FAEA13-9C62-4917-8571-B35C563A1943} <C:\WINDOWS\system32\buyunion.dll, N/A>
[ToolBarPos00 Class]
{CCCD2E2C-8929-4B08-BDE3-4D2A04E9F73D} <C:\WINDOWS\IETOOL~1\IETOOL~1.DLL, IE Toolbar>
[FavHook Class]
{CD8BFE70-5809-4C73-9EEE-E5672C2B79D7} <C:\Program Files\Deepdo\DeepdoBar\Favorite\FavBlock.dll, Deepdo.com, Inc.>
[WMHlprObj Class]
{F5824EFB-728A-4726-A5A5-85A68B20EDC3} <C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll, CNNIC>
[WinMyFavor Class]
{F7F49040-389C-4f1f-A825-06D5328EAE59} <C:\WINDOWS\system32\MyFavor.dll, N/A>
[Java Plug-in 1.5.0_05]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[启动Web迅雷]
{962EFB8E-2683-42d4-AC74-AAA4C759B9C6} <http://my.xunlei.com, N/A>
[Micosoft IE Toolbar]
{B8D4F481-DC79-34C6-B458-D8C203837D6D} <C:\WINDOWS\IE Toolbar\IeToolbar.dll, IE Toolbar>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\Program Files\qq2007\QQ.EXE, TENCENT>
[Yahoo! Messenger]
{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} <C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe, N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[实用搜索工具条2.0]
{03465FF5-00AE-411a-9C34-960ED566EC03} <C:\Program Files\superutilbar\superutilbar.dll, www.shiyongsousuo.com>
[Micosoft IE Toolbar]
{B8D4F481-DC79-34C6-B458-D8C203837D6D} <C:\WINDOWS\IE Toolbar\IeToolbar.dll, IE Toolbar>
[PowerPlr Control]
{2354A44B-3CEB-4829-9940-545B03103538} <C:\WINDOWS\DOWNLO~1\PowerPlr.ocx, 创智数码科技股份有限公司>
[Java Plug-in 1.5.0_05]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_05]
{CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[WebThunder Browser Helper]
{00000AAA-A363-466E-BEF5-9BB68697AA7F} <C:\Program Files\Thunder Network\WebThunder\WebThunderBHO_016.dll, Thunder Networking Technologies,LTD>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v11.dll, Thunder Networking Technologies,LTD>
[实用搜索工具条2.0]
{03465FF5-00AE-411A-9C34-960ED566EC03} <C:\Program Files\superutilbar\superutilbar.dll, www.shiyongsousuo.com>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[CAdLogic Object]
{11F09AFD-75AD-4E51-AB43-E09E9351CE16} <C:\Program Files\Common Files\CPUSH\cpush0.dll, >
[Cbho Object]
{352E3B3A-CAB5-4DBC-B940-C7F84D0447D8} <C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll, CNNIC>
[Info cache]
{385AB8C6-FB22-4D17-8834-064E2BA0A6F0} <C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll, 金泰丰(广州)科技有限公司>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[实用搜索]
{6CFD436C-7AAD-4E50-992F-C0C87A94CAD2} <C:\Program Files\superutilbar\superutilbar.dll, www.shiyongsousuo.com>
[WangWangObj Class]
{6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <D:\Program Files\Alisoft\WangWang\WangWangX4.dll, 阿里软件（中国）有限公司>
[ChinaBuy Class]
{85FAEA13-9C62-4917-8571-B35C563A1943} <C:\WINDOWS\system32\buyunion.dll, N/A>
[Micosoft IE Toolbar]
{B8D4F481-DC79-34C6-B458-D8C203837D6D} <C:\WINDOWS\IE Toolbar\IeToolbar.dll, IE Toolbar>
[ToolBarPos00 Class]
{CCCD2E2C-8929-4B08-BDE3-4D2A04E9F73D} <C:\WINDOWS\IETOOL~1\IETOOL~1.DLL, IE Toolbar>
[FavHook Class]
{CD8BFE70-5809-4C73-9EEE-E5672C2B79D7} <C:\Program Files\Deepdo\DeepdoBar\Favorite\FavBlock.dll, Deepdo.com, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[卡卡上网安全助手]
{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[WMHlprObj Class]
{F5824EFB-728A-4726-A5A5-85A68B20EDC3} <C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll, CNNIC>
[WinMyFavor Class]
{F7F49040-389C-4F1F-A825-06D5328EAE59} <C:\WINDOWS\system32\MyFavor.dll, N/A>
[上传到QQ网络硬盘]
<D:\Program Files\qq2007\AddToNetDisk.htm, N/A>
[使用Web迅雷下载]
<C:\Program Files\Thunder Network\WebThunder\GetUrl.htm, N/A>
[使用Web迅雷下载全部链接]
<C:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm, N/A>
[添加到QQ自定义面板]
<D:\Program Files\qq2007\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\Program Files\qq2007\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\Program Files\qq2007\SendMMS.htm, N/A>
[访问通用网址]
<C:\Program Files\CNNIC\Cdn\cnnic.htm, N/A>

淡淡淡淡淡 - 2007-4-18 21:39:00

正在运行的进程
[PID: 780][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 864][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1896][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\txhqn.dll] [N/A, ]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[C:\WINDOWS\system32\nvcpl.dll] [NVIDIA Corporation, 6.14.10.8302]
[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.8302]
[C:\PROGRA~1\Sony\IMAGEC~1\CtxMenu.dll] [ , 1, 4, 0, 07130]
[D:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\WINDOWS\system32\RavExt.dll] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
[D:\Rising\Rav\RSCOMMON.DLL] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
[PID: 668][C:\Program Files\CNNIC\Cdn\cdnup.exe] [CNNIC, 2, 5, 0, 8]
[C:\Program Files\CNNIC\Cdn\cdnuplib.dll] [CNNIC, 2, 5, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdnprh.dll] [CNNIC, 2, 4, 0, 7]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdntdns.dll] [CNNIC, 2, 2, 0, 3]
[PID: 1544][C:\WINDOWS\AdsNT.exe] [, 1, 0, 0, 1]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[PID: 1608][C:\Program Files\Apoint\Apoint.exe] [Alps Electric Co., Ltd., 5.5.7.139]
[C:\WINDOWS\system32\VXDIF.DLL] [Alps Electric Co., Ltd., 6.0.3.4]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\Program Files\Apoint\ApWheel.dll] [ALPS ELECTRIC CO., LTD., 4.2.0.9]
[C:\Program Files\Apoint\Apoint.DLL] [Alps Electric Co., Ltd., 5.5.6.187]
[C:\Program Files\Apoint\ApRes.dll] [Alps Electric Co., Ltd., 5.5.6.18]
[C:\Program Files\Apoint\EzAuto.dll] [Alps Electric Co., Ltd., 5.5.1.85]
[C:\Program Files\Apoint\EzLaunch.DLL] [Alps Electric Co., Ltd., 5.5.1.66]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 1616][C:\Program Files\Sony\VAIO Power Management\SPMgr.exe] [Sony Corporation, 1.8.00.11280]
[C:\Program Files\Sony\VAIO Power Management\MFC70U.DLL] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Sony\VAIO Power Management\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Sony\VAIO Power Management\MSVCP70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Sony\VAIO Power Management\SPMDAM.dll] [Sony Corporation, 1.0.00.08250]
[C:\Program Files\Sony\VAIO Power Management\SPMRes.dll] [Sony Corporation, 1.8.00.11180]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\Program Files\Sony\VAIO Power Management\SPMDrv.dll] [Sony Corporation, 1.8.00.11190]
[C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 6, 3, 0, 10120]
[C:\Program Files\Common Files\Sony Shared\SXBIOS\sxbios.dll] [Sony Corporation, 4.02.8170]
[C:\WINDOWS\system32\NvCpl.dll] [NVIDIA Corporation, 6.14.10.8302]
[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.8302]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 1652][C:\Program Files\Sony\ISB Utility\ISBMgr.exe] [Sony Corporation, 1, 0, 0, 2180]
[C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 6, 3, 0, 10120]
[C:\WINDOWS\system32\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Common Files\Sony Shared\SXBIOS\sxbios.dll] [Sony Corporation, 4.02.8170]
[C:\WINDOWS\system32\NvCpl.dll] [NVIDIA Corporation, 6.14.10.8302]
[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.8302]
[C:\Program Files\Sony\ISB Utility\ISBRes.dll] [Sony Corporation, 1, 0, 1, 9290]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[PID: 1696][C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe] [Sony Corporation, 3.2.0.11240]
[C:\Program Files\Sony\Wireless Switch Setting Utility\Frn.dll] [Sony Corporation, 1, 1, 0, 10050]
[C:\Program Files\Sony\Wireless Switch Setting Utility\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Sony\Wireless Switch Setting Utility\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Sony\Wireless Switch Setting Utility\SwitcherLocale.dll] [Sony Corporation, 3.1.0.01170]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\Program Files\Sony\Wireless Switch Setting Utility\WissuIF.dll] [Sony Corporation, 1.0.01.10110]
[C:\Program Files\Common Files\Sony Shared\Sony Utilities\SnyUtils.dll] [Sony Corporation, 6, 3, 0, 10120]
[C:\WINDOWS\system32\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
[C:\Program Files\Common Files\Sony Shared\SXBIOS\sxbios.dll] [Sony Corporation, 4.02.8170]
[C:\WINDOWS\system32\NvCpl.dll] [NVIDIA Corporation, 6.14.10.8302]
[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.8302]
[C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll] [Intel Corporation, 10, 1, 0, 1]
[C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 10, 1, 0, 2]
[C:\Program Files\Intel\Wireless\Bin\TraceAPI.dll] [Intel Corporation, 10, 1, 0, 5]
[C:\Program Files\Intel\Wireless\Bin\PfMgrAPI.dll] [Intel Corporation, 10, 1, 0, 46]
[C:\Program Files\Intel\Wireless\Bin\DbEngine.dll] [Intel Corporation, 10, 1, 0, 13]
[C:\Program Files\Intel\Wireless\Bin\LIBEAY32.dll] [N/A, ]
[C:\Program Files\Intel\Wireless\Bin\IntStngs.dll] [, 10, 1, 0, 2]
[C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll] [Intel Corporation, 10, 1, 0, 31]
[C:\Program Files\Intel\Wireless\Bin\C8021CHS.dll] [Intel Corporation, 10, 1, 0, 31]
[C:\Program Files\Intel\Wireless\Bin\MurocApi.dll] [Intel Corporation, 10, 1, 0, 37]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 1644][C:\Program Files\Sony\VAIO Camera Utility\VCUServe.exe] [Sony Corporation, 1.0.0.12270]
[C:\Program Files\Sony\VAIO Camera Utility\VCULib.dll] [N/A, ]
[C:\WINDOWS\system32\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Sony\VAIO Camera Utility\VCULocale.dll] [Sony Corporation, 1.0.00.11170]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[PID: 1780][C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe] [Sony Corporation, 2.1.04.10110]
[C:\Program Files\Sony\VAIO Update 2\Frn.dll] [Sony Corporation, 1, 1, 0, 15030]
[C:\Program Files\Sony\VAIO Update 2\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Sony\VAIO Update 2\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\Program Files\Sony\VAIO Update 2\VURes.dll] [Sony Corporation, 2, 1, 1, 9290]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 1888][C:\Program Files\Apoint\Apntex.exe] [Alps Electric Co., Ltd., 5.5.1.19]
[C:\WINDOWS\system32\VXDIF.DLL] [Alps Electric Co., Ltd., 6.0.3.4]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[PID: 1932][C:\WINDOWS\system32\conime.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]

淡淡淡淡淡 - 2007-4-18 21:40:00

[PID: 1960][D:\Program Files\KuGoo3\KuGoo.exe] [, 3.2.0.99]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[D:\Program Files\KuGoo3\mp3lib.dll] [N/A, ]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[D:\Program Files\KuGoo3\RandomShuffle.dll] [Microsoft Corporation, 6.0.3790.2662]
[PID: 1996][C:\Program Files\Thunder Network\WebThunder\WebThunder.exe] [深圳市迅雷网络技术有限公司, 1, 7, 1, 99]
[C:\Program Files\Thunder Network\WebThunder\taskmanage.dll] [Thunder Networking Technologies,LTD, 1, 6, 0, 87]
[C:\Program Files\Thunder Network\WebThunder\download_interface.dll] [Thunder Networking Technologies,LTD, 2, 12, 3, 56]
[C:\Program Files\Thunder Network\WebThunder\asyn_dns.dll] [Thunder Networking Technologies,LTD, 2, 12, 3, 56]
[C:\Program Files\Thunder Network\WebThunder\RegisterDll.dll] [Thunder Networking Technologies,LTD, 2, 13, 4, 52]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[C:\Program Files\Thunder Network\WebThunder\historyinfo_manage.dll] [Thunder Networking Technologies,LTD, 5, 3, 0, 228]
[C:\Program Files\Thunder Network\WebThunder\iEmbedShell.dll] [　, 1, 0, 0, 17]
[C:\Program Files\Thunder Network\WebThunder\iEmbed09.dll] [　, 3, 3, 0, 78]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[D:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 2028][D:\Rising\Rav\RsAgent.exe] [Beijing Rising Technology Co., Ltd., 19, 0, 0, 12]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[D:\Rising\Rav\RsCommX.dll] [rising, 18, 0, 0, 1]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[PID: 596][D:\Program Files\Alisoft\WangWang\WangWang.EXE] [阿里软件（中国）有限公司, 5, 1, 0, 7]
[D:\Program Files\Alisoft\WangWang\MFC80.DLL] [Microsoft Corporation, 8.00.50727.42]
[D:\Program Files\Alisoft\WangWang\MFC80CHS.DLL] [Microsoft Corporation, 8.00.50727.42]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[D:\Program Files\Alisoft\WangWang\AliSkin.dll] [阿里软件（中国）有限公司, 1.0.0.1]
[D:\Program Files\Alisoft\WangWang\zlib.dll] [, 1.2.3]
[D:\Program Files\Alisoft\WangWang\Ali_Res.DLL] [N/A, ]
[D:\Program Files\Alisoft\WangWang\WangWangX4.dll] [阿里软件（中国）有限公司, 1, 0, 0, 1]
[D:\Program Files\Alisoft\WangWang\RichOne.dll] [阿里软件(中国)有限公司, 1.0.0.1]
[D:\Program Files\Alisoft\WangWang\TBProgress.dll] [阿里软件(中国)有限公司, 1.0.0.1]
[D:\Program Files\Alisoft\WangWang\MessageNotify.dll] [, 1, 0, 0, 1]
[D:\Program Files\Alisoft\WangWang\ww_network.dll] [, 1, 0, 1, 23]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[D:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[D:\Program Files\Alisoft\WangWang\AliViewMedia.dll] [阿里软件（中国）有限公司, 1, 0, 0, 2]
[D:\Program Files\Alisoft\WangWang\VLNetwork.dll] [阿里软件（中国）有限公司, 1, 0, 0, 6]
[D:\Program Files\Alisoft\WangWang\VideoCap.dll] [, 1, 0, 0, 4]
[D:\Program Files\Alisoft\WangWang\VLAudio.dll] [阿里软件（中国）有限公司, 1, 0, 0, 5]
[D:\Program Files\Alisoft\WangWang\JsmShow.dll] [阿里软件（中国）有限公司, 1, 0, 0, 4]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[PID: 600][C:\WINDOWS\msagent\AgentSvr.exe] [Microsoft Corporation, 2.00.0.3424]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[PID: 1476][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]

淡淡淡淡淡 - 2007-4-18 21:40:00

[PID: 1320][C:\Program Files\MSN Messenger\msnmsgr.exe] [Microsoft Corporation, 8.1.0178.00]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[C:\WINDOWS\system32\VMctrl321.ax] [Vimicro Corporation, 3, 0, 810, 3]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[C:\Program Files\MSN Messenger\custsat.dll] [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
[D:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 748][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe] [N/A, ]
[C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosCpsAPI.dll] [TOSHIBA CORPORATION., 3.01.5520.0]
[C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMngHelp.dll] [TOSHIBA CORPORATION., 4.00.5x11.ALL]
[C:\WINDOWS\system32\TosAvAPI.dll] [TOSHIBA CORPORATION., 4.00.5817.0]
[C:\WINDOWS\system32\TosBtSDDB.dll] [TOSHIBA CORPORATION., 4.00.5x11.0]
[C:\WINDOWS\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 3, 3, 1, 0]
[C:\WINDOWS\system32\TosCommAPI.dll] [N/A, ]
[C:\WINDOWS\system32\TosLaneAPI.dll] [TOSHIBA CORPORATION., 1, 0, 3, 0]
[C:\WINDOWS\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 4.00.5x11.0]
[C:\WINDOWS\system32\LCWizard.dll] [东芝公司, 4.00.05.CHS]
[C:\WINDOWS\system32\TosHidAPI.dll] [TOSHIBA CORPORATION., 3, 0, 0, 1]
[C:\WINDOWS\system32\TosGnsAPI.dll] [TOSHIBA CORPORATION., 1, 0, 0, 2]
[C:\WINDOWS\system32\TosAcpiAPI.dll] [TOSHIBA CORPORATION., 1, 0, 3, 0]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtLoad.dll] [TOSHIBA, 4, 0, 0, 1]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 828][D:\Program Files\FinePixViewer\QuickDCF.exe] [FUJI PHOTO FILM CO., LTD., 5, 0, 0, 2]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 2416][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe] [东芝公司., 4.00.5817.CHS]
[C:\WINDOWS\system32\TosBtECCAPI.dll] [TOSHIBA CORPORATION., 3.00.4520.0]
[C:\WINDOWS\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 4.00.5x11.0]
[C:\WINDOWS\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 3, 3, 1, 0]
[C:\WINDOWS\system32\TosAvdtAPI.dll] [TOSHIBA CORPORATION., 4.00.5817.0]
[C:\WINDOWS\system32\TosSndAPI.dll] [TOSHIBA CORPORATION., 3.00.3707.0]
[C:\WINDOWS\system32\TosSndPlug.dll] [东芝公司, 4.00.5811.CHS]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[PID: 2432][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe] [TOSHIBA CORPORATION., 4, 0, 804, 0]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[PID: 2448][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe] [TOSHIBA CORPORATION., 4.00.01.5818]
[C:\WINDOWS\system32\TosBtECCAPI.dll] [TOSHIBA CORPORATION., 3.00.4520.0]
[C:\WINDOWS\system32\TosBtAPI.dll] [TOSHIBA CORPORATION., 4.00.5x11.0]
[C:\WINDOWS\system32\TosBdAPI.dll] [TOSHIBA CORPORATION., 3, 3, 1, 0]
[C:\WINDOWS\system32\LCWizard.dll] [东芝公司, 4.00.05.CHS]
[C:\WINDOWS\system32\TosSndAPI.dll] [TOSHIBA CORPORATION., 3.00.3707.0]
[C:\WINDOWS\system32\TosSndPlug.dll] [东芝公司, 4.00.5811.CHS]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[PID: 3560][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdnuplib.dll] [CNNIC, 2, 5, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\WINDOWS\system32\kakatool.dll] [Beijing Rising Technology Co., Ltd., 2, 0, 0, 1]
[C:\Program Files\superutilbar\superutilbar.dll] [www.shiyongsousuo.com, 2, 1, 8, 24]
[C:\WINDOWS\IE Toolbar\IeToolbar.dll] [IE Toolbar, 1, 0, 0, 4]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]
[C:\Program Files\Thunder Network\WebThunder\WebThunderBHO_016.dll] [Thunder Networking Technologies,LTD, 6, 0, 0, 5]
[C:\WINDOWS\system32\xunleibho_v11.dll] [Thunder Networking Technologies,LTD, 4, 6, 0, 48]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.0.2004121400]
[C:\Program Files\Common Files\CPUSH\cpush0.dll] [, 1.0.2.9]
[C:\PROGRA~1\CNNIC\Cdn\cdndrag.dll] [CNNIC, 1.0.0.7]
[C:\Program Files\Deepdo\DeepdoBar\Favorite\FavBlock.dll] [Deepdo.com, Inc., 1, 0, 0, 1]
[C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll] [CNNIC, 1, 1, 0, 0]
[C:\WINDOWS\system32\MyFavor.dll] [N/A, ]
[c:\PROGRA~1\iesnap\navpref.dll] [, 1, 0, 1, 1]
[c:\PROGRA~1\iesnap\navseg.dll] [, 1, 0, 1, 1]
[c:\PROGRA~1\iesnap\navneg.dll] [, 1, 0, 1, 1]
[D:\Rising\Rav\RavScrCh.dll] [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll] [金泰丰(广州)科技有限公司, 2, 3, 0, 0]
[PID: 1740][c:\PROGRA~1\iesnap\navplay.exe] [, 1, 0, 1, 1]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 208][D:\Program Files\WinRAR\WinRAR.exe] [Alexander Roshal, 3.51]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[PID: 5032][C:\DOCUME~1\www\LOCALS~1\Temp\Rar$EX01.703\SREng.EXE] [Smallfrogs Studio, 2.4.12.806]
[C:\Program Files\CNNIC\Cdn\imaoe.dll] [CNNIC, 2, 2, 0, 1]
[C:\Program Files\CNNIC\Cdn\cdnforie.dll] [CNNIC, 2, 1, 0, 11]
[C:\Program Files\CNNIC\Cdn\cdndet.dll] [CNNIC, 2, 5, 0, 0]
[C:\PROGRA~1\kggc\xwwp.dll] [, 1, 0, 0, 6]
[C:\PROGRA~1\kggc\cyyu.dll] [ , 1, 0, 0, 6]
[c:\PROGRA~1\iesnap\navstub.dll] [, 1, 0, 1, 1]
[C:\WINDOWS\system32\cdnns.dll] [CNNIC, 2, 0, 0, 0]

淡淡淡淡淡 - 2007-4-18 21:41:00

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1 localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================

[/CODE]

枫笑九洲 - 2007-4-18 22:01:00

下载ICESWORD：http://www.onlinedown.net/soft/4523.htm
下载Winsockfix：http://www.onlinedown.net/soft/35272.htm

如下项目：
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<WinAutoUp><C:\WINDOWS\AutoUp.exe> []
<adsnt><C:\WINDOWS\AdsNT.exe> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{7C3E3EA0-F318-43FB-952E-74736B2F6789}><C:\Program Files\SysInfo.wmp> [N/A]

在sreng的启动项目里可以删

==========================================================================================
在SERng中点启动项目 --> 服务 --> 驱动程序或者服务进入后（勾选隐藏已认证的微软项目），用

鼠标左键在对应要修复的项上单击然后点“设置” 按钮即可（注意到最后弹出的窗口中要点 “NO 否”

才是确认删除驱动。）
删除如下项目：
[Navoct / Navoct][Running/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\Program Files\iesnap\navoct.dll>< >
[System Security / Scripts][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\frbsx.dll><N/A>
[Std sooh Service / sooh][Running/Auto Start]
<C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\kggc\xttm.dll,Service -s><Microsoft Corporation>
[Windows / Windows][Stopped/Auto Start]
<C:\WINDOWS\Windows.exe><N/A>
[Windows CreaterDown / WindowsDown][Stopped/Auto Start]
<C:\WINDOWS\system32\servet.exe><N/A>
[Gentad / Gentad][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\Struts.dll><>
[bojjva04 / bojjva04][Stopped/Boot Start]
<\SystemRoot\system32\\drivers\\system32\\drivers\\%s.sys.sys><N/A>
[dyuinj1 / dyuinj14][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\dyuinj14.sys><N/A>
[isqv / isqvr][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\isqvr.sys><N/A>
[patswe82 / patswe82][Stopped/Boot Start]
<\SystemRoot\system32\\drivers\\system32\\drivers\\%s.sys.sys><N/A>
[rxqmzj1 / rxqmzj10][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\rxqmzj10.sys><N/A>
[ucsvtb7 / ucsvtb73][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\ucsvtb73.sys><N/A>
[ynsmze3 / ynsmze34][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\ynsmze34.sys><N/A>

==========================================================================================
用冰刃强制删除以下文件:
C:\Program Files\iesnap\navoct.dll
C:\WINDOWS\system32\frbsx.dll
C:\PROGRA~1\kggc\xttm.dll
C:\WINDOWS\Windows.exe
C:\WINDOWS\system32\servet.exe
C:\WINDOWS\system32\Struts.dll
C:\WINDOWS\System32\DRIVERS\dyuinj14.sys
C:\WINDOWS\System32\DRIVERS\isqvr.sys
C:\WINDOWS\System32\DRIVERS\rxqmzj10.sys
C:\WINDOWS\System32\DRIVERS\ucsvtb73.sys
C:\WINDOWS\System32\DRIVERS\ynsmze34.sys
C:\WINDOWS\system32\txhqn.dll

==========================================================================================
在注册表里搜索Navoct,frbsx,xttm,Windows.exe,servet,Struts,dyuinj14,isqvr,rxqmzj10,ucsvtb73,ynsmze34找到的所有项删,删不掉的用冰刃
==========================================================================================

清空临时文件夹里面的所有东西，包括
C:\Documents and Settings\<用户名>\Local Settings\Temp
C:\WINDOWS\TEMP
Internet临时文件夹（控制面板--〉“Internet选项”---〉“删除文件”---〉勾选“包括临时文件夹”

--〉确定）
==========================================================================================
如果发现无法上网请用刚才下载的WINSOCKFIX修复

瑞星卡卡安全论坛