版主和各位大侠们救救我吧！！，电脑每隔一段时间就会有一些广告网站弹出来
（商城、小说网之类的），而且反应越来越慢了，不知道是不是中毒了，用SRE扫描
的日志如下，请版主和各位大侠们帮帮分析一下，感激不尽！！
[CODE]

2007-03-13,17:42:05

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows 2000 Professional Service Pack 3 (Build 2195) - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <internat.exe><; internat.exe>  [(Verified)Microsoft Windows 2000 Publisher]
    <xbz><C:\WINNT\iexpl0ra.exe>  [N/A]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <Synchronization Manager><mobsync.exe /logon>  [(Verified)Microsoft Windows 2000 Publisher]
    <SoundMan><SOUNDMAN.EXE>  [Avance Logic, Inc.]
    <OfficeScanNT Monitor><"C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow>  [Trend Micro Inc.]
    <hp 1000 firmware><C:\Program Files\hp LaserJet 1000\fwdl.exe>  [Zenographics]
    <SysExplr><; C:\Herosoft\HeroV8\SysExplr.EXE>  []
    <OrderReminder><C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe>  [Hewlett-Packard]
    <Message><C:\Program Files\WindowsUpdate\1.exe>  []
    <adx.exe><C:\Program Files\adx\adx.exe>  [AD.Com]
    <Device Detector><; "C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe" -autorun>  [ACD Systems, Ltd.]
    <upxdnd><; C:\DOCUME~1\hanhl\LOCALS~1\Temp\upxdnd.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows 2000 Publisher]
    <Userinit><C:\WINNT\system32\userinit.exe,>  [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><(无)>  [N/A]

==================================
启动文件夹
N/A

==================================
服务
[900124DA / 900124DA][Stopped/Auto Start]
  <C:\WINNT\System32\900124DA.EXE -service><N/A>
[C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
  <C:\WINNT\System32\drivers\CDAC11BA.EXE><Macrovision>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
  <C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[OfficeScanNT 实时扫描 / ntrtscan][Running/Auto Start]
  <"C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe"><Trend Micro Inc.>
[OfficeScanNT 个人防火墙 / OfcPfwSvc][Running/Auto Start]
  <"C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe"><Trend Micro Inc.>
[P4P Service / P4P Service][Stopped/Disabled]
  <C:\Program Files\Common Files\Sogou PXP\p2psvr.exe><Sohu.com Inc.>
[Std ppgv Service / ppgv][Stopped/Disabled]
  <C:\WINNT\System32\rundll32.exe C:\PROGRA~1\COMMON~1\hhyn\uulx.dll,Service -s><Microsoft Corporation>
[OfficeScanNT 侦听程序 / tmlisten][Running/Auto Start]
  <"C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe"><Trend Micro Inc.>
[Vsn vvpb Service / vvpb][Running/Manual Start]
  <C:\WINNT\System32\rundll32.exe C:\PROGRA~1\bbvh\iiso.dll,Service><Microsoft Corporation>

==================================
驱动程序
[Service for Avance AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  <system32\drivers\ALCXWDM.SYS><Avance Logic, Inc.>
[CdaC15BA / CdaC15BA][Running/Auto Start]
  <\??\C:\WINNT\System32\drivers\CDAC15BA.SYS><Macrovision Europe Ltd>
[dmboot / dmboot][Stopped/Disabled]
  <System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
  <\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Running/Boot Start]
  <\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[Kingsun KS-959 USB Infrared Adapter / KS-959][Stopped/Manual Start]
  <System32\DRIVERS\KS-959.sys><Kingsun Corporation>
[nv4 / nv4][Running/Manual Start]
  <System32\DRIVERS\nv4.sys><NVIDIA Corporation>
[Padus ASPI Shell / pfc][Running/Manual Start]
  <system32\drivers\pfc.sys><Padus, Inc.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
  <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Sony Memory Stick Driver(SONYPVM1) / SONYPVM1][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\SONYPVM1.SYS><Sony Corporation>
[Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start]
  <System32\DRIVERS\SONYPVU1.SYS><Sony Corporation>
[Trend Micro Filter / TmFilter][Running/Auto Start]
  <\??\C:\Program Files\Trend Micro\OfficeScan Client\TmFilter.sys><Trend Micro Inc.>
[Common Firewall Driver / TM_CFW][Running/Auto Start]
  <\??\C:\Program Files\Trend Micro\OfficeScan Client\tm_cfw.sys><Trend Micro Inc.>
[TYKeeper / TYKeeper][Running/Boot Start]
  <\SystemRoot\System32\drivers\TYKeeper.sys><TY.Com>
[Trend Micro VSAPI NT / VSApiNt][Running/Auto Start]
  <\??\C:\Program Files\Trend Micro\OfficeScan Client\VSApiNt.sys><Trend Micro Inc.>

==================================
浏览器加载项
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[BHOHelper Class]
  {67A90DD5-128D-43AB-B97C-565D2DD42A28} <C:\PROGRA~1\adx\atloader.dll, AD.Com>
[AcroIEToolbarHelper Class]
  {AE7CD045-E861-484f-8273-0445EE161910} <C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll, N/A>
[vvmy]
  {BE2475D0-D07D-4381-BF49-8A88C6B515E5} <C:\PROGRA~1\bbvh\ffwl.dll, >
[QQHelper Class]
  {BF182DBF-1283-4BD3-86EE-D3239228770C} <C:\Program Files\Internet Explorer\Connection Wizard\QQZoneHelper.dll, 深圳市腾讯计算机系统有限公司>
[豪杰超级解霸V8]
  {367E0A21-8601-4986-9C9A-153BF5ACA118} <C:\Herosoft\HeroV8\STHSDVD.EXE, N/A>
[金山词霸]
  {9A687CA6-D585-4947-9ED9-BE96071F5CD9} <C:\PROGRA~1\Kingsoft\POWERW~1\XDictExB.dll, 金山软件股份有限公司>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll, N/A>
[MMCPlayer Class]
  {05C1004E-2596-48E5-8E26-39362985EEB9} <C:\WINNT\Downloaded Program Files\MMCShell.dll, Sohu.com Inc.>
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINNT\DOWNLO~1\INPUTC~1.DLL, >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINNT\System32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[ADXAutoLive]
  {E5212436-921F-44a3-8865-11C0B9BA4AF2} <C:\Program Files\adx\autolive.dll, AD.Com>
[百度mp3搜索]
  <res://C:\WINNT\DOWNLO~1\BaiDuBar.dll/BAIDUMP3.HTM, N/A>
[百度搜索]
  <res://C:\WINNT\DOWNLO~1\BaiDuBar.dll/BAIDUSEARCH.HTM, N/A>

=================================
正在运行的进程
[PID: 136][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.00.2195.5382]
[PID: 160][\??\C:\WINNT\system32\csrss.exe]  [Microsoft Corporation, 5.00.2195.5265]
[PID: 180][\??\C:\WINNT\system32\winlogon.exe]  [Microsoft Corporation, 5.00.2195.5386]
    [C:\WINNT\system32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.3649]
    [C:\WINNT\system32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
[PID: 212][C:\WINNT\system32\services.exe]  [Microsoft Corporation, 5.00.2195.3940]
    [C:\WINNT\system32\dmserver.dll]  [VERITAS Software Corp., 2195.3649.297.3]
[PID: 224][C:\WINNT\system32\lsass.exe]  [Microsoft Corporation, 5.00.2195.5430]
[PID: 364][C:\WINNT\system32\svchost.exe]  [Microsoft Corporation, 5.00.2134.1]
[PID: 424][C:\WINNT\System32\svchost.exe]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\System32\unimdm.tsp]  [Microsoft Corporation, 5.00.2195.4280]
    [C:\WINNT\System32\kmddsp.tsp]  [Microsoft Corporation, 5.00.2150.1]
    [C:\WINNT\System32\ndptsp.tsp]  [Microsoft Corporation, 5.00.2143.1]
    [C:\WINNT\System32\ipconf.tsp]  [Microsoft Corporation, 5.00.2143.1]
    [C:\WINNT\System32\h323.tsp]  [Microsoft Corporation, 5.00.2195.3866]
[PID: 468][C:\WINNT\system32\spoolsv.exe]  [Microsoft Corporation, 5.00.2195.4299]
    [C:\WINNT\System32\AdobePDF.dll]  [Adobe Systems Incorporated., 6.0.000]
    [C:\Program Files\Adobe\Acrobat 6.0\Distillr\AdistRes.CHS]  [, ]
    [C:\WINNT\system32\ZLhp1020.DLL]  [Zenographics, Inc., 5, 53, 3723, 0]
    [C:\WINNT\system32\ZLM.dll]  [Zenographics, Inc., 5, 50, 1416, 0]
    [C:\WINNT\system32\ZLMhp1.DLL]  [Zenographics, 1, 0, 63902, 1]
    [C:\WINNT\system32\ZPJL.dll]  [Zenographics, Inc., 1, 0, 1410, 1]
    [C:\WINNT\system32\ZSPOOL.dll]  [Zenographics, Inc., 5, 51, 709, 0]
    [C:\WINNT\System32\spool\PRTPROCS\W32X86\IMFPrint.DLL]  [Zenographics, Inc., 5, 54, 330, 0]
    [C:\WINNT\system32\Imf32.dll]  [Zenographics, Inc., 5, 60, 1204, 0]
    [C:\WINNT\system32\ZTAG32.dll]  [Zenographics, Inc., 5, 60, 1210, 0]
    [C:\WINNT\System32\spool\PRTPROCS\W32X86\ZPPPCL.DLL]  [Zenographics, Inc., 5, 51, 710, 0]
    [C:\WINNT\system32\ZPP.dll]  [Zenographics, Inc., 5, 51, 709, 0]
    [C:\WINNT\system32\ZGDI32.dll]  [Zenographics, Inc., 5, 51, 628, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SDNT5UI.DLL]  [Zenographics, Inc., 5.60.709.0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SDDM32.DLL]  [Zenographics, Inc., 5, 60, 2629, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SDDMUI.DLL]  [Zenographics, Inc., 6, 1, 524, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SR32.dll]  [Zenographics, Inc., 6, 1, 520, 1]
[PID: 536][C:\WINNT\System32\drivers\CDAC11BA.EXE]  [Macrovision, 4.20.020]
[PID: 580][C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcDog.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInAPI.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\TimeString.dll]  [N/A, ]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPIPC.dll]  [N/A, ]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInMain.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInTray.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\tmdbg20.dll]  [trend_company_name, 1, 0, 0, 1]
[PID: 624][C:\WINNT\system32\regsvc.exe]  [Microsoft Corporation, 5.00.2195.3649]
[PID: 644][C:\WINNT\system32\MSTask.exe]  [Microsoft Corporation, 4.71.2195.1]
[PID: 1068][C:\WINNT\Explorer.EXE]  [Microsoft Corporation, 5.00.3502.5321]
    [C:\WINNT\AppPatch\AcLayers.DLL]  [Microsoft Corporation, 5.00.2195.5308]
    [C:\WINNT\System32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.0.0.86]
    [C:\Program Files\adx\adx.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\Program Files\adx\bhomgr.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\Program Files\adx\urlcatch.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\Program Files\adx\atloader.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\Program Files\adx\protect.dll]  [TY.Com, 3, 0, 0, 1001]
    [C:\WINNT\System32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.3649]
    [C:\Program Files\adx\autolive.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\WINNT\System32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 6.0.1.2003110300]
    [C:\WINNT\System32\msadp32.acm]  [Microsoft Corporation, 5.00.2134.1]
    [C:\Program Files\Adobe\Acrobat 6.0\Acrobat Elements\ContextMenu.chs]  [Adobe Systems Inc., 6.0.0.2003110300\0]
    [C:\WINNT\System32\WINWB86.IME]  [Microsoft Corporation, 4.00.950]
    [C:\PROGRA~1\bbvh\ffwl.dll]  [, 1, 2, 0, 8]
[PID: 1088][C:\WINNT\SOUNDMAN.EXE]  [Avance Logic, Inc., 5.0.02]
[PID: 1160][C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\loadhttp.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\Pwd.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInAPI.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPIPC.dll]  [N/A, ]
    [C:\Program Files\Trend Micro\OfficeScan Client\TimeString.dll]  [N/A, ]
    [C:\Program Files\Trend Micro\OfficeScan Client\ntmonres.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInMain.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInTray.dll]  [Trend Micro Inc., 7.3.0.1028]
    [C:\Program Files\Trend Micro\OfficeScan Client\tmdbg20.dll]  [trend_company_name, 1, 0, 0, 1]
    [C:\Program Files\adx\bhomgr.dll]  [AD.Com, 3, 0, 0, 1001]
[PID: 1188][C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe]  [Hewlett-Packard, 2, 0, 1, 26]
[PID: 1196][C:\Program Files\WindowsUpdate\1.exe]  [N/A, ]
[PID: 1216][C:\WINNT\System32\zstatus.exe]  [Zenographics, 1, 0, 50501, 1]
    [C:\WINNT\System32\zshp1000.dll]  [Zenographics, 1, 0, 62701, 0]
[PID: 1552][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2600.0000]
    [C:\Program Files\adx\bhomgr.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\WINNT\System32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 6.0.1.2003110300]
    [C:\PROGRA~1\adx\atloader.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll]  [N/A, ]
    [C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ATL.DLL]  [Microsoft Corporation, 3.00.8449]
    [C:\WINNT\System32\MSVCP60.dll]  [Microsoft Corporation, 6.00.8972.0]
    [C:\PROGRA~1\bbvh\ffwl.dll]  [, 1, 2, 0, 8]
    [C:\Program Files\Internet Explorer\Connection Wizard\QQZoneHelper.dll]  [深圳市腾讯计算机系统有限公司, 1.1.0.1016]
    [C:\WINNT\System32\msxml3.dll]  [Microsoft Corporation, 8.40.9419.0]
    [C:\Program Files\adx\urlcatch.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\WINNT\System32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.3649]
    [C:\WINNT\System32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\System32\msadp32.acm]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\System32\Macromed\Flash\Flash9b.ocx]  [Adobe Systems, Inc., 9,0,28,0]
    [C:\WINNT\System32\msratelc.dll]  [Microsoft Corporation, 6.00.2600.0000]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.0.0.86]
    [C:\WINNT\System32\WINWB86.IME]  [Microsoft Corporation, 4.00.950]
[PID: 880][C:\Program Files\Microsoft Office\Office\WINWORD.EXE]  [Microsoft Corporation, 9.0.2823]
    [C:\Program Files\Microsoft Office\Office\MSO9.DLL]  [Microsoft Corporation, 9.0.2812]
    [C:\Program Files\adx\bhomgr.dll]  [AD.Com, 3, 0, 0, 1001]
    [C:\Program Files\Kingsoft\Powerword 2003\PWOffice2.dll]  [Kingsoft Co, Ltd., 6, 0, 0, 0]
    [C:\WINNT\System32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SDNT5UI.DLL]  [Zenographics, Inc., 5.60.709.0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SDDM32.DLL]  [Zenographics, Inc., 5, 60, 2629, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\ZSPOOL.dll]  [Zenographics, Inc., 5, 51, 709, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\ZGDI32.dll]  [Zenographics, Inc., 5, 60, 709, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\ZTAG32.dll]  [Zenographics, Inc., 5, 60, 1210, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SDDMUI.DLL]  [Zenographics, Inc., 6, 1, 524, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\SR32.dll]  [Zenographics, Inc., 6, 1, 520, 1]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\IMFNT5.DLL]  [Zenographics, Inc., 0, 3, 3508, 0]
    [C:\WINNT\System32\spool\DRIVERS\W32X86\3\Imf32.dll]  [Zenographics, Inc., 5, 60, 1204, 0]
    [C:\Program Files\Common Files\Microsoft Shared\Proof\mslid.dll]  [Microsoft Corporation, 1.0.2305]
    [C:\Program Files\Common Files\Microsoft Shared\Proof\MSSPELL3.DLL]  [Microsoft Corporation, 1.0.2217]
    [C:\Program Files\Common Files\Microsoft Shared\Proof\wdbrkchs.dll]  [Microsoft Corporation, 1.0]
    [C:\Program Files\Common Files\Microsoft Shared\Proof\2052\MSGR2SC.DLL]  [Microsoft Corporation, 1.0]
[PID: 948][D:\lzq\电脑\sreng2\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
    [C:\Program Files\adx\bhomgr.dll]  [AD.Com, 3, 0, 0, 1001]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINNT\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[C:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe
[D:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe
[E:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe
[F:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

趋势科技显示：
最近发现的病毒：TSPY_ONLINEG.AQ(自C:\WINNT\iexpl0re.exe）
这是什么？？

注册表启动项里面的这一条正不正常？
<adx.exe><C:\Program Files\adx\adx.exe>  [AD.Com]

<xbz><C:\WINNT\iexpl0ra.exe> [N/A]
没怎么看
阁下中毒了,建议升级杀毒软件杀毒先.
然后使用恶意软件清理助手+360安全助手清理流氓软件

按照我说的处理先,若还有问题,那么扫描新日志发上来

【回复“姑苏残月”的帖子】
无奈没有好的杀毒软件，我用趋势科技，杀了N多次了，杀完了广告网页照样弹出来，请问恶意软件清理助手+360安全助手清理流氓软件在哪里可以下到？？