各位高手救命啊！！！！！！！！！！！！！！！！！！！

我今天发现打开搜狐网www.sohu.com时不断弹出这个网站来http://www.wxku.com/mms/chanel/c ... &advno=chanelx1



而且是不断地新开窗口直到电脑不能运行还在弹出。我用杀木马和病毒软件都杀过了杀了几个。现在还是这样。急救。咋办啊？

我今天用了不少杀木马和IE修复。杀病毒软件都不行。救命啊！！！！

以下是扫描的日志，



Logfile of HijackThis v1.99.1
Scan saved at 21:30:21, on 2006-04-09
Platform: Windows 2003 (WinNT 5.02.3790)
MSIE: Internet Explorer v6.00 (6.00.3790.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\svchost.exe
c:\program files\rising\rfw\rfwproxy.exe
c:\program files\rising\rfw\rfwsrv.exe
E:\Network Associates\Common Framework\FrameworkService.exe
E:\Network Associates\VirusScan\Mcshield.exe
E:\Network Associates\VirusScan\VsTskMgr.exe
C:\WINDOWS\system32\Dfssvc.exe
C:\WINDOWS\Explorer.EXE
E:\Network Associates\Common Framework\UpdaterUI.exe
C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe
C:\Program Files\Rising\Rfw\rfwmain.exe
E:\Network Associates\VirusScan\SHSTAT.EXE
C:\WINDOWS\System32\svchost.exe
E:\工具包\HijackThis\HijackThis.exe

O4 - HKLM\..\Run: [McAfeeUpdaterUI] "E:\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [Network Associates Error Reporting Service] "C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe"
O4 - HKLM\..\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [ShStatEXE] "E:\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - C:\Program Files\Symantec\pcAnywhere\awhost32.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: McAfee Framework 服务 (McAfeeFramework) - Network Associates, Inc. - E:\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: Network Associates McShield (McShield) - Network Associates, Inc. - E:\Network Associates\VirusScan\Mcshield.exe
O23 - Service: Network Associates Task Manager (McTaskManager) - Network Associates, Inc. - E:\Network Associates\VirusScan\VsTskMgr.exe
O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwsrv.exe
O23 - Service: Remote Administrator Service (r_server) - Realtek Semiconductor Corporation                                - (no file)




一打开搜狐和第二层页面就不停地弹出这个网来直到机子不响应

http://www.wxku.com/mms/chanel/c ... &advno=chanelx1

用了不少恶意清除软件和杀木马和病毒的软件都不行。




O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=

这两行在安全模式下无法修复

【回复“北信源”的帖子】

http://forum.ikaka.com/topic.asp?board=28&artid=6979213
下载System Repair Engineer 2.0.12.350
导出全部日志

2006-04-10,12:53:52

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  <ctfmon.exe><; C:\WINDOWS\system32\CTFMON.EXE>
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  <pbmini><C:\Program Files\pcast\PodcastbarMini\PodcastBarMiniStater.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <McAfeeUpdaterUI><"E:\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <Network Associates Error Reporting Service><"C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <ShStatEXE><"E:\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <ATIPTA><; C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <SoundMan><; SOUNDMAN.EXE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <Alitalk><E:\阿里巴巴\贸易通\AliTalk.EXE -hideframe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <迅雷4><C:\Program Files\Thunder Network\GameIssue\TDUpdate.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <Update><C:\Program Files\Common Files\UPDAT\Update.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <RichMedia><C:\WINDOWS\system32\Rundll32.exe  "C:\PROGRA~1\HBClient\hbhelper.dll",WaitWindows>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <supdate2.dll><RUNDLL32.EXE C:\WINDOWS\system32\supdate2.dll,Run>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  <ANetFox ADClean><"D:\Windows 流氓软件清理大师\clean.exe" /autokill:15,16>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  <supdate2.dll><REGSVR32.EXE /s C:\WINDOWS\system32\supdate2.dll>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  <shell><Explorer.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  <Userinit><C:\WINDOWS\system32\userinit.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <AGBMonitor><; D:\\Antiy Labs\AGB4\Monitor.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <ATIPTA><; C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe>
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <ctfmon.exe><; C:\WINDOWS\system32\CTFMON.EXE>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <ExFilter><; Rundll32.exe "C:\PROGRA~1\CNNIC\Cdn\cdnspie.dll,ExecFilter solo">
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <iparmor><; C:\Program Files\Iparmor\Iparmor.exe mini>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <KvMonXP><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <LoadQM><; loadqm.exe>
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <msnmsgr><; "C:\Program Files\MSN Messenger\msnmsgr.exe" /background>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <MyIM><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <NMGameX_AutoRun><; C:\WINDOWS\system32\Rundll32.exe NMGameX.dll,LiveProcess /aa>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <POPO2004><; D:\Program Files\Netease\popo2004\Start.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <ProxyThorn><; D:\Program Files\ProxyThorn\ProxyThorn.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <QuickTime Task><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <RaidTool><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <SKYNET Personal FireWall><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <Skype><; e:\sky\skype\Phone\Skype.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <SoundMan><; SOUNDMAN.EXE>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <thunder_mini><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <UserFaultCheck><; %systemroot%\system32\dumprep 0 -u>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <vmailmon><; >
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <vrvnet><; d:\Vrv\Client\vrvnet.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <WangWang><; "E:\淘宝旺旺\WangWang.EXE">
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  <Yahoo! Pager><; d:\Yahoo!\Messenger\ypager.exe -quiet>

==================================
启动文件夹
[播霸网络电视]
  <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\播霸网络电视.lnk><N>

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller]
  <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart]
  <C:\WINDOWS\system32\ati2sgag.exe><>
[pcAnywhere Host Service / awhost32]
  <C:\Program Files\Symantec\pcAnywhere\awhost32.exe><Symantec Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service]
  <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[McAfee Framework 服务 / McAfeeFramework]
  <E:\Network Associates\Common Framework\FrameworkService.exe /ServiceStart><Network Associates, Inc.>
[Network Associates McShield / McShield]
  <"E:\Network Associates\VirusScan\Mcshield.exe"><Network Associates, Inc.>
[Network Associates Task Manager / McTaskManager]
  <"E:\Network Associates\VirusScan\VsTskMgr.exe"><Network Associates, Inc.>
[Rising Proxy  Service / RfwProxySrv]
  <c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Remote Administrator Service / r_server]
  <><N/A>
[Shihua Http Proxy Service / SHPS]
  <><N/A>
[Intranet Messenger / MouTALS]
  <C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087><N/A>

==================================
浏览器加载项
[QuickBtn]
  {1A199C20-DE2B-4838-AE3F-B5257ECE2B7E} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[NewWebController Class]
  {9ACEEE30-143F-471A-AA45-72B061FE7D60} <C:\WINDOWS\system32\AdvSC.dll, N/A>
[HBObject Class]
  {AE22AFE5-1EF4-4D25-9E23-D2825FB17DA1} <C:\PROGRA~1\HBClient\hbhelper.dll, Shanghai Henbang Technology Co., Ltd>
[QuickBtn]
  {1D901067-2529-4A9B-9B6B-7A1DB3A44CB5} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\Tencent\qq\QQ.EXE, TENCENT>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <D:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[SnagIt]
  {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} <C:\Program Files\TechSmith\SnagIt 7\SnagItIEAddin.dll, N/A>
[Shockwave ActiveX Control]
  {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Macromed\Director\SwDir.dll, Macromedia, Inc.>
[EPUImageControl Class]
  {4C39376E-FA9D-4349-BACC-D305C1750EF3} <C:\WINDOWS\Downloaded Program Files\EPUWALcontrol.dll, N/A>
[MSN Photo Upload Tool]
  {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll, Microsoft? Corporation>
[InfoSecNetSign Class]
  {62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\system32\NetSign.dll, Infosec Technologies Co., Ltd.>
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\INPUTC~1.DLL, >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash.OCX, Macromedia, Inc.>
[CPasswordEditCtrl Object]
  {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32\qqedit\qqedit.dll, N/A>
[&使用迅雷下载]
  <D:\Program Files\Sandai Technologies Inc\Thunder\geturl.htm, N/A>
[&使用迅雷下载全部链接]
  <D:\Program Files\Sandai Technologies Inc\Thunder\getAllurl.htm, N/A>
[使用KuGoo3下载(&K)]
  <D:\KuGoo2\KuGoo3DownX.htm, N/A>
[使用网际快车下载]
  <D:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <D:\Program Files\FlashGet\jc_all.htm, N/A>
[添加到QQ自定义面板]
  <, N/A>
[添加到QQ表情]
  <, N/A>
[用QQ彩信发送该图片]
  <, N/A>

==================================
正在运行的进程
[PID: 576][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
[PID: 652][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
[PID: 676][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [C:\WINDOWS\system32\aetcsss1.dll]  <A.E.T. Europe B.V.><1.0.9.14>
    [C:\WINDOWS\system32\aetpkss1.dll]  <A.E.T. Europe B.V.><1.0.9.111>
[PID: 720][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 740][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 912][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 992][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 1024][C:\WINDOWS\system32\Ati2evxx.exe]  <ATI Technologies Inc.><6.14.10.4114>
    [C:\WINDOWS\system32\Ati2edxx.dll]  <ATI Technologies, Inc.><6, 14, 10, 2496>
[PID: 1120][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 1212][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 1328][c:\program files\rising\rfw\rfwproxy.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 7>
    [c:\program files\rising\rfw\RfwRule.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 11>
    [c:\program files\rising\rfw\MonMid.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 2>
[PID: 1364][c:\program files\rising\rfw\rfwsrv.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 29>
    [c:\program files\rising\rfw\RfwRule.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 11>
    [c:\program files\rising\rfw\rfwlog.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
    [c:\program files\rising\rfw\Rfwdrv.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 19>
    [c:\program files\rising\rfw\MonDrv.dll]  <rs><1, 0, 0, 4>
    [c:\program files\rising\rfw\ProcLib.dll]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1548][C:\WINDOWS\System32\SCardSvr.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
[PID: 1604][C:\WINDOWS\system32\msdtc.exe]  <Microsoft Corporation><2001.12.4720.0 (srv03_rtm.030324-2048)>
[PID: 1740][E:\Network Associates\Common Framework\FrameworkService.exe]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\nailog.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\naXML.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\naCmnLib.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\applib.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\0804\AgentRes.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\Logging.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\InternetManager.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\naInet.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\UserSpace.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\SecureFrameworkFactory.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\Management.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\cmalib.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\naPolicyManager.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\ScriptSubSys.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\UpdateSubSys.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\Scheduler.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\TCSubSys.dll]  <Network Associates, Inc.><3.5.0.412>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 1780][E:\NETWOR~1\COMMON~1\naPrdMgr.exe]  <Network Associates, Inc.><3.5.0.412>
    [E:\NETWOR~1\COMMON~1\nailog.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\NETWOR~1\COMMON~1\naCmnLib.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\NETWOR~1\COMMON~1\naXML.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\NETWOR~1\COMMON~1\0804\AgentRes.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\VirusScan\VsPlugin.dll]  <Network Associates, Inc.><8.0.0.912>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 1788][E:\Network Associates\VirusScan\Mcshield.exe]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\Res04\McShield.DLL]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\FTL.Dll]  <Network Associates, Inc.><8.0.0.135>
    [E:\Network Associates\VirusScan\naiann.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\mytilus.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\Common Framework\GenEvtInf.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\VirusScan\NaEventU.DLL]  <Network Associates, Inc.><8.0.0.342>
    [E:\Network Associates\VirusScan\Res04\naEvtRes.dll]  <Network Associates, Inc.><8.0.0.342>
    [E:\Network Associates\VirusScan\VSIDSvr.dll]  <Network Associates, Inc.><8.0.0.251>
    [C:\Program Files\Common Files\Network Associates\Engine\MCSCAN32.DLL]  <McAfee, Inc.><4.4.00>
    [E:\Network Associates\Common Framework\SecureFrameworkFactory.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\VirusScan\EntSrv.Dll]  <Network Associates, Inc><8.0.0.277>
[PID: 1892][E:\Network Associates\VirusScan\VsTskMgr.exe]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\SHUTIL.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\naiwmain.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\naicondl.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\RES04\VsTskMgr.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\MIDUtil.Dll]  <McAfee, Inc.><8.0.0.152>
[PID: 196][C:\WINDOWS\system32\Dfssvc.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
[PID: 472][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
    [D:\Antiy Labs\AGB4\AGBCM.dll]  <Antiy Labs><3, 0, 0, 0>
    [D:\Yahoo!\Common\ymmapi.dll]  <Yahoo! Inc.><2004, 11, 23, 1>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\bxymenu.dll]  <N/A><N/A>
    [E:\Network Associates\VirusScan\shext.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\RES04\ShExtRes.dll]  <Network Associates, Inc.><8.0.0.912>
    [D:\MyIM\MyIMSM.dll]  <N/A><N/A>
    [C:\Program Files\CoolWebsite\QuickLink.dll]  <Fengcent><1, 0, 0, 2>
    [C:\WINDOWS\system32\AdvSC.dll]  <N/A><N/A>
[PID: 1168][c:\program files\rising\rfw\RfwMain.exe]  <Beijing Rising Technology Co., Ltd.><4, 0, 0, 45>
    [c:\program files\rising\rfw\RsGuiLib.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
    [c:\program files\rising\rfw\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [c:\program files\rising\rfw\PngDll.dll]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
[PID: 1244][C:\WINDOWS\system32\wbem\wmiprvse.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
[PID: 1296][E:\Network Associates\Common Framework\UpdaterUI.exe]  <Network Associates, Inc.><3.5.0.412>

[E:\Network Associates\Common Framework\nailog.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\naCmnLib.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\naXML.dll]  <Network Associates, Inc.><3.5.0.474>
    [E:\Network Associates\Common Framework\0804\UpdRes.dll]  <Network Associates, Inc.><3.5.0.412>
    [E:\Network Associates\Common Framework\0804\AgentRes.dll]  <Network Associates, Inc.><3.5.0.412>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [E:\Network Associates\Common Framework\SecureFrameworkFactory.dll]  <Network Associates, Inc.><3.5.0.412>
[PID: 1304][C:\Program Files\Common Files\Network Associates\TalkBack\TBMon.exe]  <Network Associates, Inc.><2.0.275.0>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
[PID: 1228][E:\Network Associates\VirusScan\SHSTAT.EXE]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\SHUTIL.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\naiwmain.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\RES04\shstat.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\RES04\Product.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\RES04\McShield.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\RES04\Shutilrc.dll]  <Network Associates, Inc.><8.0.0.912>
    [E:\Network Associates\VirusScan\Graphics.dll]  <Network Associates, Inc.><8.0.0.912>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
[PID: 2120][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\WINDOWS\system32\EntApi.dll]  <Network Associates, Inc><8.0.0.277>
[PID: 3400][D:\淘宝旺旺\WangWang.exe]  <淘宝（中国）软件有限公司><1, 5, 5, 1226>
    [D:\淘宝旺旺\AliViewCtrl.dll]  <vline><1, 0, 0, 1>
    [D:\淘宝旺旺\VLNetwork.dll]  <><1, 0, 0, 6>
    [D:\淘宝旺旺\AliViewMedia.dll]  <vline><1, 0, 0, 1>
    [D:\淘宝旺旺\VideoCAP.dll]  <><1, 0, 0, 4>
    [D:\淘宝旺旺\VLAudio.dll]  <><1, 0, 0, 4>
    [D:\淘宝旺旺\JsmShow.dll]  <><1, 0, 0, 3>
    [D:\淘宝旺旺\Ali_Res.DLL]  <N/A><N/A>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [D:\淘宝旺旺\RichOne.dll]  <淘宝(中国)软件有限公司><1.0.0.1>
    [E:\Network Associates\VirusScan\scriptproxy.dll]  <Network Associates, Inc.><8.0.0.955>
    [E:\Network Associates\VirusScan\mytilus.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\Res04\McShield.dll]  <Network Associates, Inc.><8.0.0.251>
    [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]  <McAfee, Inc.><4.4.00>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [D:\淘宝旺旺\WangWangX.dll]  <><1, 0, 0, 1>
[PID: 3488][E:\淘宝旺旺\WangWang.exe]  <浙江淘宝网络有限公司><1, 5, 5, 1209>
    [E:\淘宝旺旺\AliViewCtrl.dll]  <vline><1, 0, 0, 1>
    [E:\淘宝旺旺\VLNetwork.dll]  <><1, 0, 0, 6>
    [E:\淘宝旺旺\AliViewMedia.dll]  <vline><1, 0, 0, 1>
    [E:\淘宝旺旺\VideoCAP.dll]  <><1, 0, 0, 4>
    [E:\淘宝旺旺\VLAudio.dll]  <><1, 0, 0, 4>
    [E:\淘宝旺旺\JsmShow.dll]  <><1, 0, 0, 3>
    [E:\淘宝旺旺\Ali_Res.DLL]  <N/A><N/A>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [E:\淘宝旺旺\RichOne.dll]  <淘宝（中国）软件有限公司><1.0.0.1>
    [E:\Network Associates\VirusScan\scriptproxy.dll]  <Network Associates, Inc.><8.0.0.955>
    [E:\Network Associates\VirusScan\mytilus.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\Res04\McShield.dll]  <Network Associates, Inc.><8.0.0.251>
    [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]  <McAfee, Inc.><4.4.00>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [E:\淘宝旺旺\WangWangX.dll]  <><1, 0, 0, 1>
[PID: 608][D:\Tencent\qq\QQ.exe]  <TENCENT><14, 45, 0, 110>
    [D:\Tencent\qq\CoralAssist.DLL]  <N/A><4.0.0 Build 20051112>
    [D:\Tencent\qq\CoralQQ.DLL]  <Coral Team><4.1.2 Build 20060106>
    [D:\Tencent\qq\IPSearcher.dll]  <><1.0.0.3>
    [D:\Tencent\qq\BasicCtrlDll.dll]  <Tencent><0, 3, 3, 6>
    [D:\Tencent\qq\QQBaseClassInDll.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\QQHelperDll.dll]  <><1, 0, 0, 1>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [D:\Tencent\qq\QQAPI.dll]  <><1, 0, 0, 1>
    [d:\Tencent\qq\TIMProxy.dll]  <tencent><0, 3, 2, 4>
    [D:\Tencent\qq\LoginCtrl.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\npkcntc.dll]  <INCA Internet Co., Ltd.><2005, 9, 1, 1>
    [D:\Tencent\qq\npkpdb.dll]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [D:\Tencent\qq\QQRes.dll]  <tencent><1, 0, 0, 1>
    [D:\Tencent\qq\QQMainFrame.dll]  <N/A><N/A>
    [D:\Tencent\qq\CQQApplication.dll]  <N/A><N/A>
    [D:\Tencent\qq\NewSkin.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\HostingMgr.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\MailSummary.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\QQSpace.dll]  <><1, 0, 0, 1>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [D:\Tencent\qq\LongConnection.dll]  <tencent><0, 3, 3, 8>
    [D:\Tencent\qq\QQPlugin.dll]  <N/A><N/A>
    [D:\Tencent\qq\ShareFiles.dll]  <N/A><N/A>
    [D:\Tencent\qq\QQGroupMng.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\QQAllInOne.dll]  <N/A><N/A>
    [D:\Tencent\qq\CameraDll.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\SCCore.dll]  <N/A><N/A>
    [D:\Tencent\qq\QQCustomFace.dll]  <N/A><N/A>
    [D:\Tencent\qq\GroupConnection.dll]  <Tencent><0, 3, 3, 5>
    [D:\Tencent\qq\QQAvatar.dll]  <N/A><N/A>
    [D:\Tencent\qq\FlashAvatarDll.dll]  <><1, 4, 0, 1>
    [D:\Tencent\qq\QQConfigPlugin.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\QQSysMsgMng.dll]  <N/A><N/A>
    [D:\Tencent\qq\QRingMng.dll]  <N/A><N/A>
    [D:\Tencent\qq\UserDefinedHead.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\BQQApplication.dll]  <N/A><N/A>
    [D:\Tencent\qq\CommercesMng.dll]  <><1, 0, 0, 1>
    [D:\Tencent\qq\PersonalDesktop.dll]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [D:\Tencent\qq\QQAddr.dll]  <深圳市腾讯计算机系统有限公司><4, 0, 200, 32>
    [C:\WINDOWS\system32\Macromed\Flash\Flash.OCX]  <Macromedia, Inc.><7,0,19,0>
    [D:\Tencent\qq\ImageOle.dll]  <TODO: <Company name>><1.0.0.1>
    [D:\Tencent\qq\QQPhoneHelper.dll]  <腾讯科技（深圳）有限公司><2, 0, 2, 21>
    [D:\Tencent\qq\QQZip.dll]  <tencent><0, 3, 2, 4>
    [D:\Tencent\qq\QQSceneMng.dll]  <N/A><N/A>
    [D:\Tencent\qq\QQFileTransfer.dll]  <Tencent><0, 3, 3, 5>
    [D:\Tencent\qq\QQMagicFace.dll]  <><1, 0, 0, 1>
    [E:\Network Associates\VirusScan\scriptproxy.dll]  <Network Associates, Inc.><8.0.0.955>
    [E:\Network Associates\VirusScan\mytilus.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\Res04\McShield.dll]  <Network Associates, Inc.><8.0.0.251>
    [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]  <McAfee, Inc.><4.4.00>
    [C:\WINDOWS\system32\Macromed\Common\SwSupport.dll]  <Macromedia, Inc.><10.1r11>
[PID: 1108][D:\Tencent\qq\TIMPlatform.exe]  <tencent><0, 3, 1, 8>
    [d:\Tencent\qq\TIMProxy.dll]  <tencent><0, 3, 2, 4>
[PID: 712][C:\WINDOWS\system32\Rundll32.exe]  <Microsoft Corporation><5.2.3790.0 (srv03_rtm.030324-2048)>
    [C:\PROGRA~1\HBClient\hbhelper.dll]  <Shanghai Henbang Technology Co., Ltd><1, 1, 3, 3>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
[PID: 3636][D:\Maxthon\maxthon.exe]  <Maxthon International Ltd.><1, 5, 2, 21>
    [D:\Maxthon\maxzlib.dll]  < ><1, 0, 0, 2>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
    [D:\Maxthon\Services\RealTime\real_time.dll]  <><1, 0, 0, 1>
    [E:\Network Associates\VirusScan\scriptproxy.dll]  <Network Associates, Inc.><8.0.0.955>
    [E:\Network Associates\VirusScan\mytilus.dll]  <Network Associates, Inc.><8.0.0.251>
    [E:\Network Associates\VirusScan\Res04\McShield.dll]  <Network Associates, Inc.><8.0.0.251>
    [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]  <McAfee, Inc.><4.4.00>
    [E:\淘宝旺旺\WangWangX.dll]  <><1, 0, 0, 1>
    [C:\WINDOWS\system32\Macromed\Flash\Flash.OCX]  <Macromedia, Inc.><7,0,19,0>
    [C:\WINDOWS\system32\Macromed\Common\SwSupport.dll]  <Macromedia, Inc.><10.1r11>
[PID: 3656][C:\Documents and Settings\Administrator\桌面\临时文件\Ad-Aware SE Professional 1.06\Ad-Aware SE Professional 1.06\Ad-Watch.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>
[PID: 3260][C:\Documents and Settings\Administrator\桌面\KeywordS\sreng\SREng.exe]  <Smallfrogs Studio><2.0.12.350>
    [C:\WINDOWS\system32\FREEWB.IME]  <Delphi Fan Studio><4.4>

==================================
文件关联
.TXT  Error. [notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  Error. [regedit.exe %1]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. [C:\WINDOWS\hh.exe %1]
.HLP  Error. [C:\WINDOWS\winhlp32.exe %1]
.INI  Error. [notepad.exe %1]
.INF  Error. [C:\WINDOWS\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

问题相同啊，这个问题能上报给瑞星吗？

请高手帮忙啊！！！！！！！

请高手帮忙啊！！！！！！！

请高手帮忙啊！！！！！！！