我的电脑只要一启动就自动安装4-5个程序,在安全模式下卸了,然后把注册表清理了也没用,只要一开机就从新自动安装,并且速度很慢,但是只要把网线拔了就没问题.
我查看事件,"应用程序"来源都是  UfMsgGhost
该怎么办啊,请高手解救啊

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 1 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe>  [Microsoft Corporation]
    <Skype><"D:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized>  []
    <msnnt><C:\WINDOWS\Updatec.exe>  []
    <svc><C:\WINDOWS\svchost.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <MSPY2002><C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC>  []
    <PHIME2002ASync><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <IMEKRMIG6.1><C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE>  [Microsoft Corporation]
    <IgfxTray><C:\WINDOWS\System32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\System32\hkcmd.exe>  [Intel Corporation]
    <system><C:\WINDOWS\System32\svchosv.exe>  []
    <UfServer><C:\WINDOWS\System32\UfServer.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
    <><C:\WINDOWS\System32\intenat.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <KernelFaultCheck><C:\WINDOWS\System32\mswdm.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\System32\userinit.exe,C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\gnnmkk.exe>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><KB684745M.LOG>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{3FDEB171-8F86-4669-B664-69B8DB553683}><C:\NTLDR.DLL>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <DVDBurn><C:\WINDOWS\Downloaded Program Files\AfxEdit.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
    <WinlogonNotify: NavLogon><C:\WINDOWS\System32\NavLogon.dll>  []

==================================
启动文件夹
[Microsoft Office]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk><N>

==================================
服务
[DameWare Mini Remote Control / DWMRCS]
  <C:\WINDOWS\SYSTEM32\DWRCS.EXE -service><DameWare Development LLC>
[OracleOraHome90ClientCache / OracleOraHome90ClientCache]
  <c:\oracle\ora90\BIN\ONRSD.EXE><N/A>
[UfAutoLoadService / UfAutoLoadService]
  <C:\WINDOWS\System32\UfAutoLoadService.exe><>
[UfMsgGhost / UfMsgGhost]
  <C:\WINDOWS\System32\MsgGhost.exe><>

==================================
浏览器加载项
[internet explorer helper]
  {02C9B9AB-6372-46C5-B356-773FAF3B6B1E} <C:\WINDOWS\fonts\msshapi.dll, >
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx, >
[MonitorURL Class]
  {08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, N/A>
[Shockwave Flash Object]
  {14A21378-5BB1-4BC4-95D5-5D3F51527F6F} <C:\WINDOWS\system32\smflash.ocx, Macromedia, Inc.>
[MyIEHelper Class]
  {16A770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4767.dll, Microsoft Corporation>
[FltSetUp Class]
  {1D49D58D-5C84-4B50-8359-D9809BEB2B32} <C:\Program Files\Internet Explorer\Connection Wizard\icwuti1.dll, Microsoft Corporation>
[Deliverer Class]
  {3E290290-1728-4C1E-863A-AA12526333F6} <C:\WINDOWS\System32\ADDeliverer.dll, N/A>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[IEYHlprObj Class]
  {5C761D09-377E-4EAC-ADA1-C9CDE39B5674} <C:\WINDOWS\IEYHelper.dll, Eastday Corporation>
[JMX.JmxCenter]
  {63859236-76BF-493C-A587-DF479EBA2D4B} <C:\WINDOWS\System32\EJMX.dll, 广州盛行网络有限公司>
[ActiveBHO Class]
  {63C55A7F-6E29-8D4F-5C76-4F850F28D13A} <C:\Progra~1\DoDoorRSSFinder\ActiveBandObject.dll, >
[Status Class]
  {7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} <C:\Program Files\baigoo\BGooBHO.dll, N/A>
[Schedule Class]
  {8B316DA1-9950-4926-B9EA-1AEC124AFA45} <C:\WINDOWS\System32\sscli.dll, >
[WinSC Class]
  {9ACEEE31-1440-471B-AA46-72B061FE7D61} <C:\WINDOWS\system32\WinSC32.dll, N/A>
[estAliveObj Class]
  {A2B7A0F0-B697-4A71-8D91-43443F57D7BB} <C:\WINDOWS\estAlive.dll, Eastday Corporation>
[Yahoo Bar]
  {A697BC46-BC93-4833-93F5-1E365011E88A} <C:\WINDOWS\DBINT.dll, N/A>
[WAB Importer/Exporter]
  {AA158CA5-93B4-4cd4-8D8C-BB6F9F515213} <C:\WINDOWS\System32\wabimp.dll, WAB Co.>
[Webacc Class]
  {CAC068F3-A608-406B-8581-458788A67694} <C:\WINDOWS\System32\svchost.dll, >
[IEHlprObj Class]
  {D424FE4E-CAF9-4fdd-BC5F-E6E6B91D53BF} <C:\Progra~1\NetMeeting\nmview.dll, Microsoft Corporation>
[Letscool System Helper]
  {F0C15012-7DBD-4068-95A2-0A82DB03AC35} <C:\WINDOWS\System32\CoolBho.dll, LETSCOOL Network Technology>
[CdnForIE Class]
  {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[金山词霸]
  {9A687CA6-D585-4947-9ED9-BE96071F5CD9} <C:\PROGRA~1\Kingsoft\POWERW~1\XDictExB.dll, 金山软件股份有限公司>
[比较购物搜索(&C)]
  {A36ABCF0-1C8F-46e7-A67C-0489DC21B9CC} <C:\WINDOWS\YayaBands.dll, Eastday Corporation>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[YOK超级搜索]
  {F869BB38-FFEF-4589-B986-610B7AD0ADA2} <http://www.yok.com, N/A>
[电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation>
[IE标准栏]
  {954F618B-0DEC-4D1A-9317-E0FC96F87865} <C:\WINDOWS\system32\amstreamxb.dll, >
[Zango Toolbar]
  {EA0D26BD-9029-431A-86E0-83152D67828A} <C:\Program Files\Zango Programs\Zango Toolbar\ZangoTB.dll, N/A>
[Update Class]
  {9F1C11AA-197B-4942-BA54-47A8489BB47F} <C:\WINDOWS\System32\iuctl.dll, Microsoft Corporation>
[]
  {ed54a7b0-6c1c-11d5-b63d-00c04faedb18} <C:\Program Files\Oracle\JInitiator 1.1.8.13\bin\beans.ocx, Oracle Corporation>
[访问通用网址]
  <C:\Program Files\CNNIC\Cdn\cnnic.htm, N/A>

启动
<msnnt><C:\WINDOWS\Updatec.exe> []
<svc><C:\WINDOWS\svchost.exe> []
<WinlogonNotify: NavLogon><C:\WINDOWS\System32\NavLogon.dll> []
<{3FDEB171-8F86-4669-B664-69B8DB553683}><C:\NTLDR.DLL> []
<AppInit_DLLs><KB684745M.LOG> []
<UfServer><C:\WINDOWS\System32\UfServer.exe> []
<><C:\WINDOWS\System32\intenat.exe> []
<KernelFaultCheck><C:\WINDOWS\System32\mswdm.exe> []

关闭或删除服务
<C:\WINDOWS\SYSTEM32\DWRCS.EXE -service><DameWare Development LLC>
<C:\WINDOWS\System32\MsgGhost.exe><>
<c:\oracle\ora90\BIN\ONRSD.EXE><N/A> 关闭
<C:\WINDOWS\System32\UfAutoLoadService.exe><>

【回复“飞天老猪”的帖子】
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<msnnt><C:\WINDOWS\Updatec.exe> []
<svc><C:\WINDOWS\svchost.exe> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<system><C:\WINDOWS\System32\svchosv.exe> []
<UfServer><C:\WINDOWS\System32\UfServer.exe> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<KernelFaultCheck><C:\WINDOWS\System32\mswdm.exe> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{3FDEB171-8F86-4669-B664-69B8DB553683}><C:\NTLDR.DLL> []
服务
[DameWare Mini Remote Control / DWMRCS]
<C:\WINDOWS\SYSTEM32\DWRCS.EXE -service><DameWare Development LLC>
[OracleOraHome90ClientCache / OracleOraHome90ClientCache]
<c:\oracle\ora90\BIN\ONRSD.EXE><N/A>
[UfAutoLoadService / UfAutoLoadService]
<C:\WINDOWS\System32\UfAutoLoadService.exe><>
[UfMsgGhost / UfMsgGhost]
<C:\WINDOWS\System32\MsgGhost.exe><>
关闭所有应用程序。
删除以上启动项。
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<Userinit><C:\WINDOWS\System32\userinit.exe,C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\gnnmkk.exe> []
将这个启动项改为：<Userinit><C:\WINDOWS\System32\userinit.exe,

重启系统。
删除相应文件。

浏览器加载项
[internet explorer helper]
{02C9B9AB-6372-46C5-B356-773FAF3B6B1E} <C:\WINDOWS\fonts\msshapi.dll, >
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, N/A>
[Deliverer Class]
{3E290290-1728-4C1E-863A-AA12526333F6} <C:\WINDOWS\System32\ADDeliverer.dll, N/A>
[Status Class]
{7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} <C:\Program Files\baigoo\BGooBHO.dll, N/A>

[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[Webacc Class]
{CAC068F3-A608-406B-8581-458788A67694} <C:\WINDOWS\System32\svchost.dll, >

你这楼猪,PC这么多毛病

各位大大,这个机器我感觉也是毛病超多,就是我滴水平太菜,只会用软件来杀毒.呵呵,刚把以上几楼说的弄完,现在好多了,不会出现自动安装程序的问题了,呵呵,THANKS
别的问题我在看,哎呀,浪个多哦,头都大了

建议你到安全模式下再杀一遍