网站有好几个，隔一会弹一个，高手帮忙看看日志，谢谢！
Logfile of Kaka v2. 0. 0. 8 Scan Module v2. 0. 0. 1
Scan saved at 18:33:22, on 2006-03-09
Platform: Microsoft Windows XP Personal Service Pack 2 (Build 2600)
MSIE: Internet Explorer v6.00 SP2; (6.00.2900.2180 (xpsp_sp2_rtm.040803-2158))


Running processes:
[smss.exe]
CommandLine =

[csrss.exe]
CommandLine = C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16

[winlogon.exe]
CommandLine = winlogon.exe

[SERVICES.EXE]
CommandLine = C:\WINDOWS\system32\services.exe

[LSASS.EXE]
CommandLine = C:\WINDOWS\system32\lsass.exe

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost -k DcomLaunch

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost -k rpcss

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\System32\svchost.exe -k netsvcs

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\System32\svchost.exe -k NetworkService

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\System32\svchost.exe -k LocalService

[LEXBCES.EXE]
CommandLine = C:\WINDOWS\system32\LEXBCES.EXE

[spoolsv.exe]
CommandLine = C:\WINDOWS\system32\spoolsv.exe

[LEXPPS.EXE]
CommandLine = LEXPPS.EXE

[ccProxy.exe]
CommandLine = "C:\Program Files\Common Files\Symantec Shared\ccProxy.exe"

[ccSetMgr.exe]
CommandLine = "C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"

[navapsvc.exe]
CommandLine = "C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe"

[nvsvc32.exe]
CommandLine = C:\WINDOWS\system32\nvsvc32.exe

[SAVScan.exe]
CommandLine = "C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe"

[SNDSrvc.exe]
CommandLine = "C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\System32\svchost.exe -k imgsvc

[wdfmgr.exe]
CommandLine = C:\WINDOWS\System32\wdfmgr.exe

[ccEvtMgr.exe]
CommandLine = "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"

[SymWSC.exe]
CommandLine = "C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe"

[alg.exe]
CommandLine = C:\WINDOWS\System32\alg.exe

[EXPLORER.EXE]
CommandLine = C:\WINDOWS\Explorer.EXE

[ccApp.exe]
CommandLine = "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"

[ctfmon.exe]
CommandLine = "C:\WINDOWS\system32\ctfmon.exe"

[QQ.exe]
CommandLine = "D:\Tencent\QQ.exe"

[TIMPlatform.exe]
CommandLine = D:\Tencent\TIMPlatform.exe -Embedding

[iexplore.exe]
CommandLine = "C:\Program Files\Internet Explorer\iexplore.exe"

[iexplore.exe]
CommandLine = "C:\Program Files\Internet Explorer\IEXPLORE.EXE" www.58.com

[KkScan.exe]
CommandLine = "d:\Rising\KakaToolBar\KkScan.exe"

[msmsgs.exe]
CommandLine = "C:\Program Files\Messenger\msmsgs.exe" -Embedding

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.google.com/ig?hl=zh-CN
O1 - Hosts: 127.0.0.1      localhost
O1 - Hosts: 127.0.0.1 www.cctv8.net
O1 - Hosts: 127.0.0.1 www.kuliao.com
O1 - Hosts: 127.0.0.1 www.yyqy.com
O1 - Hosts: 127.0.0.1 winzheng.126.com
O1 - Hosts: 127.0.0.1 www.sunvod.com
O1 - Hosts: 127.0.0.1 www.t168.com
O1 - Hosts: 127.0.0.1 www.boliwo.com
O1 - Hosts: 127.0.0.1 www.coolcdrom.com
O1 - Hosts: 127.0.0.1 www.zhengdian.com
O1 - Hosts: 127.0.0.1 girlchinese.com
O1 - Hosts: 127.0.0.1 www.yibinren.com
O1 - Hosts: 127.0.0.1 www.mtv51.com
O1 - Hosts: 127.0.0.1 www.163[1].com
O1 - Hosts: 127.0.0.1 www.37021.com
O1 - Hosts: 127.0.0.1 www.cnqb.net
O1 - Hosts: 127.0.0.1 www.qq3344.com
O1 - Hosts: 127.0.0.1 www.qq3344.net
O1 - Hosts: 127.0.0.1 youlove.3322.net
O1 - Hosts: 127.0.0.1 www.58589.com
O1 - Hosts: 127.0.0.1 www.ftlink.net
O1 - Hosts: 127.0.0.1 home.kimo.com.tw/avnvyou520/
O1 - Hosts: 127.0.0.1 www.pixpox.com
O1 - Hosts: 127.0.0.1 www.k163.com
O1 - Hosts: 127.0.0.1 www.pk.com
O1 - Hosts: 127.0.0.1 www.xxx.com
O1 - Hosts: 127.0.0.1 204.177.92.68/rotate/r3.jhtml
O1 - Hosts: 127.0.0.1 www.fassia.net/wmed/index1.html
O1 - Hosts: 127.0.0.1 www.ehomeday.com
O1 - Hosts: 127.0.0.1 www.jinpin.net
O1 - Hosts: 127.0.0.1 www.cnqb.net
O1 - Hosts: 127.0.0.1 www.myxq.net
O1 - Hosts: 127.0.0.1 www.5dsoft.com
O1 - Hosts: 127.0.0.1 www.wokoo.net
O1 - Hosts: 127.0.0.1 movie.sx.zj.cn
O1 - Hosts: 127.0.0.1 h444.net
O1 - Hosts: 127.0.0.1 www.dj3344.com
O1 - Hosts: 127.0.0.1 www.qq168.net
O1 - Hosts: 127.0.0.1 www.777888.com
O1 - Hosts: 127.0.0.1 www.5dsoft.com
O1 - Hosts: 127.0.0.1 www.wokoo.net
O1 - Hosts: 127.0.0.1 movie.sx.zj.cn
O1 - Hosts: 127.0.0.1 yeaple.com
O1 - Hosts: 127.0.0.1 xyxy68.8u8.net
O1 - Hosts: 127.0.0.1 www.youmiss.com
O1 - Hosts: 127.0.0.1 young-erotic.com
O1 - Hosts: 127.0.0.1 aifind.info
O1 - Hosts: 127.0.0.1 80pictures.com
O1 - Hosts: 127.0.0.1 www.88dvd.com
O1 - Hosts: 127.0.0.1 www.sex591.com
O1 - Hosts: 127.0.0.1 www.qq3344.com
O1 - Hosts: 127.0.0.1 www.dj3344.com
O1 - Hosts: 127.0.0.1 www.yysky.net
O1 - Hosts: 127.0.0.1 www.qq168.net
O1 - Hosts: 127.0.0.1 www.777888.com
O1 - Hosts: 127.0.0.1 www.5dsoft.com
O1 - Hosts: 127.0.0.1 www.wokoo.net
O1 - Hosts: 127.0.0.1 movie.sx.zj.cn
O1 - Hosts: 127.0.0.1 yeapple.com
O1 - Hosts: 127.0.0.1 xyxy68.8u8.net
O1 - Hosts: 127.0.0.1 www.youmiss.com
O1 - Hosts: 127.0.0.1 www.cctv8.net
O1 - Hosts: 127.0.0.1 www.kuliao.com
O1 - Hosts: 127.0.0.1 www.yyqy.com
O1 - Hosts: 127.0.0.1 winzheng.126.com
O1 - Hosts: 127.0.0.1 www.sunvod.com
O1 - Hosts: 127.0.0.1 www.t168.com
O1 - Hosts: 127.0.0.1 www.boliwo.com
O1 - Hosts: 127.0.0.1 www.coolcdrom.com
O1 - Hosts: 127.0.0.1 www.zhengdian.comoe
O1 - Hosts: 127.0.0.1 www.zhengdian.com
O1 - Hosts: 127.0.0.1 girlchinese.comie
O1 - Hosts: 127.0.0.1 girlchinese.com
O1 - Hosts: 127.0.0.1 www.yibinren.com
O1 - Hosts: 127.0.0.1 www.mtv51.com
O1 - Hosts: 127.0.0.1 www.163[1].com
O1 - Hosts: 127.0.0.1 www.37021.com
O1 - Hosts: 127.0.0.1 www.cnqb.net
O1 - Hosts: 127.0.0.1 www.qq3344.net
O1 - Hosts: 127.0.0.1 youlove.3322.net/picture.exe
O1 - Hosts: 127.0.0.1 youlove.3322.net
O1 - Hosts: 127.0.0.1 www.58589.com
O1 - Hosts: 127.0.0.1 tty.yyun.net
O1 - Hosts: 127.0.0.1 www.ftlink.net
O1 - Hosts: 127.0.0.1 home.kimo.com.tw/avnvyou520/
O1 - Hosts: 127.0.0.1 home.kimo.com.tw
O1 - Hosts: 127.0.0.1 www.pixpox.com
O1 - Hosts: 127.0.0.1 www.k163.com
O1 - Hosts: 127.0.0.1 www.pk.com
O1 - Hosts: 127.0.0.1 www.xxx.com
O1 - Hosts: 127.0.0.1 204.177.92.68/rotate/r3.jhtml
O1 - Hosts: 127.0.0.1 204.177.92.68
O1 - Hosts: 127.0.0.1 www.fassia.net/wmed/index1.html
O1 - Hosts: 127.0.0.1 www.fassia.net/wmed
O1 - Hosts: 127.0.0.1 www.fassia.net
O1 - Hosts: 127.0.0.1 www.ehomeday.com
O1 - Hosts: 127.0.0.1 www.jinpin.net
O1 - Hosts: 127.0.0.1 hothack.home.chinaren.com
O1 - Hosts: 127.0.0.1 www.777888.com
O1 - Hosts: 127.0.0.1 xyxy68.8u8.net
O1 - Hosts: 127.0.0.1 www.t168.com
O1 - Hosts: 127.0.0.1 www.wokoo.net
O1 - Hosts: 127.0.0.1 www.coolcdrom.com
O1 - Hosts: 127.0.0.1 www.zhengdian.com
O1 - Hosts: 127.0.0.1 girlchinese.com
O1 - Hosts: 127.0.0.1 www.girl008.com
O1 - Hosts: 127.0.0.1 xajh.15888.ne
O1 - Hosts: 127.0.0.1 www.51bug.com
O1 - Hosts: 127.0.0.1 www.wplune.com
O1 - Hosts: 127.0.0.1 www.777888.net
O1 - Hosts: 127.0.0.1 pollen.my001.net
O1 - Hosts: 127.0.0.1 www.yule21.com
O1 - Hosts: 127.0.0.1 www.fish3000.com
O1 - Hosts: 127.0.0.1 www.kuliao.com
O1 - Hosts: 127.0.0.1 www.666e.com
O1 - Hosts: 127.0.0.1 qm.8ok.com
O1 - Hosts: 127.0.0.1 www.guosir.ccoo.com
O1 - Hosts: 127.0.0.1 www.163mm.com
O1 - Hosts: 127.0.0.1 www.cnooo.com
O1 - Hosts: 127.0.0.1 www.es158.com
O1 - Hosts: 127.0.0.1 www.aisa-girl.net
O1 - Hosts: 127.0.0.1 www.boliwu.com
O1 - Hosts: 127.0.0.1 www.cctv1.net
O1 - Hosts: 127.0.0.1 www.play.cn.gs
O1 - Hosts: 127.0.0.1 newyouth.3322.net
O1 - Hosts: 127.0.0.1 newyouth.3322.net
O1 - Hosts: 127.0.0.1 chinabdkx.363.net
O1 - Hosts: 127.0.0.1 www.zknew.com/
O1 - Hosts: 127.0.0.1 www.dhchao.com/
O1 - Hosts: 127.0.0.1 www.top666.net
O1 - Hosts: 127.0.0.1 www.amoisonic.com/
O1 - Hosts: 127.0.0.1 www.markguide.com
O1 - Hosts: 127.0.0.1 www.xyxc.ccoo.com
O1 - Hosts: 127.0.0.1 www.flyingwalk.com
O1 - Hosts: 127.0.0.1 www.yezine.net
O1 - Hosts: 127.0.0.1 www.mmgirls.com
O1 - Hosts: 127.0.0.1 www.net5w.com
O1 - Hosts: 127.0.0.1 www.fbstu.com
O1 - Hosts: 127.0.0.1 www.qlwl.com
O1 - Hosts: 127.0.0.1 www.yibinren.com
O1 - Hosts: 127.0.0.1 www.yinshang.com
O1 - Hosts: 127.0.0.1 www.ncunet.com
O1 - Hosts: 127.0.0.1 www.555666.net
O1 - Hosts: 127.0.0.1 www.fm1058.cc/

O1 - Hosts: 127.0.0.1 meim.y365.com
O1 - Hosts: 127.0.0.1 meim.y365.cn
O1 - Hosts: 127.0.0.1 www.qq520.net
O1 - Hosts: 127.0.0.1 jjkafei.longcity.net
O1 - Hosts: 127.0.0.1 jjkafei.longcity.net
O1 - Hosts: 127.0.0.1 chow.yesky.net
O1 - Hosts: 127.0.0.1 oicq.hk.st
O1 - Hosts: 127.0.0.1 www.my288.com
O1 - Hosts: 127.0.0.1 www.youmiss.com
O1 - Hosts: 127.0.0.1 www.laws-online.net
O1 - Hosts: 127.0.0.1 www.hj168.net
O1 - Hosts: 127.0.0.1 16888.6to23.com
O1 - Hosts: 127.0.0.1 www.love520.net
O1 - Hosts: 127.0.0.1 www.qq520.com
O1 - Hosts: 127.0.0.1 www.ezhgc.com
O1 - Hosts: 127.0.0.1 www.eastedu.com.cn
O1 - Hosts: 127.0.0.1 www.435000.com
O1 - Hosts: 127.0.0.1 sdik.8ok.net
O1 - Hosts: 127.0.0.1 feiying.coolwww.net
O1 - Hosts: 127.0.0.1 feiying.coolwww.net
O1 - Hosts: 127.0.0.1 zhongxuesheng.myrice.com
O1 - Hosts: 127.0.0.1 yes9999.com
O1 - Hosts: 127.0.0.1 yes9999.com.cn
O1 - Hosts: 127.0.0.1 www.nnptt.com/tv/
O1 - Hosts: 127.0.0.1 www.nnptt.com
O1 - Hosts: 127.0.0.1 vod.hengshui.com/
O1 - Hosts: 127.0.0.1 vod.hengshui.cn/
O1 - Hosts: 127.0.0.1 tv.megajoy.com/video/movies/
O1 - Hosts: 127.0.0.1 tv.megajoy.com/video/movies/
O1 - Hosts: 127.0.0.1 tv.megajoy.com/video
O1 - Hosts: 127.0.0.1 tv.megajoy.com/
O1 - Hosts: 127.0.0.1 h444.net/
O1 - Hosts: 127.0.0.1 update.myxq.com/ads.htm
O1 - Hosts: 127.0.0.1 update.myxq.com
O1 - Hosts: 127.0.0.1 www.happy666.net
O1 - Hosts: 127.0.0.1 www.myxq.com
O1 - Hosts: 127.0.0.1 bbs.ccjz.com
O1 - Hosts: 127.0.0.1 91mm.net/join.php
O1 - Hosts: 127.0.0.1 91mm.net
O1 - Hosts: 127.0.0.1 www.film888.com/film.asp
O1 - Hosts: 127.0.0.1 www.film888.com
O1 - Hosts: 127.0.0.1 vod.52en.com/index.asp
O1 - Hosts: 127.0.0.1 vod.52en.com
O1 - Hosts: 127.0.0.1 www.6mb.net/movie/
O1 - Hosts: 127.0.0.1 www.6mb.net
O1 - Hosts: 127.0.0.1 www.nic2000.com/?huyantao
O1 - Hosts: 127.0.0.1 www.nic2000.com
O1 - Hosts: 127.0.0.1 www.getfreedomain.biz/index.php
O1 - Hosts: 127.0.0.1 www.getfreedomain.biz
O1 - Hosts: 127.0.0.1 chinaour.com
O1 - Hosts: 127.0.0.1 chinaour.com/
O1 - Hosts: 127.0.0.1 www.ttjj.com/index.php
O1 - Hosts: 127.0.0.1 hao123.com
O1 - Hosts: 127.0.0.1 www.tom.com
O1 - Hosts: 127.0.0.1 www.okww.net
O1 - Hosts: 127.0.0.1 www.ttlook.com
O1 - Hosts: 127.0.0.1 www.ent8.com
O1 - Hosts: 127.0.0.1 my518@jining.info
O1 - Hosts: 127.0.0.1 cnlove.bl.am
O1 - Hosts: 127.0.0.1 lingaonbvm.myrice.com/cnlove.htm
O1 - Hosts: 127.0.0.1 lingaonbvm.myrice.com/logo.jpg
O1 - Hosts: 127.0.0.1 lingaonbvm.myrice.com
O1 - Hosts: 127.0.0.1 xyz8848@jining.info
O1 - Hosts: 127.0.0.1 QQ6ss.126.com
O1 - Hosts: 127.0.0.1 epzj.1m.cn/
O1 - Hosts: 127.0.0.1 www.hahabus.com
O1 - Hosts: 127.0.0.1 www.eliao.com
O1 - Hosts: 127.0.0.1 wacky.nease.net
O1 - Hosts: 127.0.0.1 www.QQ588.com
O1 - Hosts: 127.0.0.1 www.qq988.com
O1 - Hosts: 127.0.0.1 www.ktv530.com
O1 - Hosts: 127.0.0.1 user.netomia.com
O1 - Hosts: 127.0.0.1 www.eliao.net
O1 - Hosts: 127.0.0.1 182838.com
O1 - Hosts: 127.0.0.1 www.365ww.com
O1 - Hosts: 127.0.0.1 music.94xp.com
O1 - Hosts: 127.0.0.1 www.ok530.com
O1 - Hosts: 127.0.0.1 nicex.126.com
O1 - Hosts: 127.0.0.1 www.dj33344.com
O1 - Hosts: 127.0.0.1 www.film3344.com
O1 - Hosts: 127.0.0.1 www.mmqm.com
O1 - Hosts: 127.0.0.1 www.hao3344.com
O1 - Hosts: 127.0.0.1 www.mtv365.com
O1 - Hosts: 127.0.0.1 www.mtvxp.com
O1 - Hosts: 127.0.0.1 www.88music.com
O1 - Hosts: 127.0.0.1 ye99.com/2/
O1 - Hosts: 127.0.0.1 ye99.com
O1 - Hosts: 127.0.0.1 www.xgmm.com
O1 - Hosts: 127.0.0.1 www.xxx.xom
O1 - Hosts: 127.0.0.1 www.163z.com
O1 - Hosts: 127.0.0.1 www.qq886.com
O1 - Hosts: 127.0.0.1 www.haohz.com
O1 - Hosts: 127.0.0.1 www.qq250.com
O1 - Hosts: 127.0.0.1 www.youxika.net/bbs/topic
O1 - Hosts: 127.0.0.1 www.youxika.net/
O1 - Hosts: 127.0.0.1 asqin123.51.net/down/dhwg.rar
O1 - Hosts: 127.0.0.1 asqin123.51.net/
O1 - Hosts: 127.0.0.1 xywaigua.126.com
O1 - Hosts: 127.0.0.1 dxy.9126.com
O1 - Hosts: 127.0.0.1 63581.yeah.net/
O1 - Hosts: 127.0.0.1 maomao363.126.com
O1 - Hosts: 127.0.0.1 www.mucopy.com/dh/
O1 - Hosts: 127.0.0.1 www.mucopy.com/
O1 - Hosts: 127.0.0.1 www.sa25.y365.com/index.htm
O1 - Hosts: 127.0.0.1 www.sa25.y365.com/
O1 - Hosts: 127.0.0.1 dahau2.7u7.net
O1 - Hosts: 127.0.0.1 www.websamba.com/dujianpeng
O1 - Hosts: 127.0.0.1 www.websamba.com/
O1 - Hosts: 127.0.0.1 126gzs.yeah.net
O1 - Hosts: 127.0.0.1 www.mmm123.com
O1 - Hosts: 127.0.0.1 young-erotic.com
O1 - Hosts: 127.0.0.1 aifind.info
O1 - Hosts: 127.0.0.1 80pictures.com
O1 - Hosts: 127.0.0.1 www.88dvd.com
O1 - Hosts: 127.0.0.1 www.sex591.com
O1 - Hosts: 127.0.0.1 www.coolsearch.biz/
O1 - Hosts: 127.0.0.1 www.wo365.com/
O1 - Hosts: 127.0.0.1 www.mp3.funcn.net
O1 - Hosts: 127.0.0.1 muiscmov.xx.to
O1 - Hosts: 127.0.0.1 www.freepicturepage.com
O1 - Hosts: 127.0.0.1 www.ie136.com
O1 - Hosts: 127.0.0.1 www.18rc.com
O1 - Hosts: 127.0.0.1 www.feyes.com/index.asp
O1 - Hosts: 127.0.0.1 mp3.funcn.net
O1 - Hosts: 127.0.0.1 mov.hy256.com
O1 - Hosts: 127.0.0.1 www.qyw520.net
O1 - Hosts: 127.0.0.1 www.6m6.net
O1 - Hosts: 127.0.0.1 www.tiansha.net
O1 - Hosts: 127.0.0.1 www.jsing.net
O1 - Hosts: 127.0.0.1 www.mydj2005.com
O1 - Hosts: 127.0.0.1 www.52down.com
O1 - Hosts: 127.0.0.1 www.94qq.com
O1 - Hosts: 127.0.0.1 www.3wei.com
O1 - Hosts: 127.0.0.1 www.qq158.com
O1 - Hosts: 127.0.0.1 www.99123.com
O1 - Hosts: 127.0.0.1 www.game186.com
O1 - Hosts: 127.0.0.1 zz.ent8.com
O1 - Hosts: 127.0.0.1 www.six8.net
O1 - Hosts: 127.0.0.1 www.bymx.com
O1 - Hosts: 127.0.0.1 www.7yyy.com
O1 - Hosts: 127.0.0.1 www.cnww.net
O1 - Hosts: 127.0.0.1 www.53900.com
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v8.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - d:\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: MacroMediapd - {B8CCDD47-38E4-4CD2-B7FA-3B4B690F74BD} - C:\WINDOWS\system32\microapmddt.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - D:\下略载毓工ぞ具運\FLASHGET\fgiebar.dll (file missing)

O3 - Toolbar: Web 助手 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\kakatool.dll
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] ; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - Startup: desktop.ini =
O4 - Global Startup: desktop.ini =
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &使用迅雷下载 - D:\下载工具\Sandai Technologies Inc\Thunder\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\下载工具\Sandai Technologies Inc\Thunder\getallurl.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - D:\Tencent\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - D:\下载工具\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - D:\下载工具\FlashGet\jc_all.htm
O8 - Extra context menu item: 导入当前页到超星阅览器(&A) - D:\SSREADER36\ss_all.htm
O8 - Extra context menu item: 导入选中部分到超星阅览器(&S) - D:\SSREADER36\ss_select.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\Tencent\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\Tencent\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\Tencent\SendMMS.htm
O9 - Extra Button: 浩方对战平台 - {0A155D3C-68E2-4215-A47A-E800A446447A} - D:\浩方对战平台\Gameclient.exe
O9 - Extra Button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Tencent\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Tencent\QQ.EXE
O14 - IERESET.INF: START_PAGE_URL=http://www.fm365.com
O16 - DPF: {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (Edit Class) - https://www.sz1.cmbchina.com/download/CMBEdit.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://www-secure.symantec.com/techsupp/asa/LSSupCtl.cab
O16 - DPF: {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} (AxInputControl Class) - https://mybank.icbc.com.cn/icbc/perbank/AxSafeControls.cab
O16 - DPF: {7A97B026-F3BB-49F6-BEAC-75021AD45B4E} (SLAProbe Control) - http://xnjc.jsinfo.net:81/sla/SLAProbe/SLAProbe.ocx
O16 - DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} (AxSubmitControl Class) - https://mybank.icbc.com.cn/icbc/perbank/AxSafeControls.cab
O16 - DPF: {9675ABBF-8D0B-4956-868C-934B5A7928D4} (Npv Control) - https://nprotect.lineage2.com.cn/nprotect/nprotect2004/ncsoft/npv.cab
O16 - DPF: {99888952-AC62-437C-AFC6-7B5CF05A7F2F} (IEDown Class) - http://download.ourgame.com/IEDown.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/SymAData.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} (NPKCX Control) - https://nprotect.lineage2.com.cn/nprotect/keycrypt/npkcx.cab
O16 - DPF: {EC53936E-6D4A-4307-9092-A2FC48EAFC56} - http://service.qq.com/web800.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{F0E0F0A4-3868-4264-B4EC-488BF137D768}: NameServer = 61.147.37.1 61.177.7.1
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll
O18 - Protocol: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\System32\itss.dll
O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll
O18 - Protocol: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} - C:\WINDOWS\System32\msvidctl.dll
O18 - Protocol: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll
O18 - Protocol: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\System32\inetcomm.dll
O18 - Protocol: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\System32\itss.dll
O18 - Protocol: msdaipp - (no CLSID) - (no file)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll"
O18 - Protocol: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll
O18 - Protocol: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\System32\mshtml.dll
O18 - Protocol: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\System32\mshtml.dll
O18 - Protocol: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\System32\wiascr.dll
O20 - AppInit_DLLs: APIHookDll.dll
O20 - Winlogon Notify: skwinlogon
O23 - Service: Application Management (AppMgmt) -  - C:\WINDOWS\system32\svchost.exe -k netsvcs
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - "C:\Program Files\Common Files\Symantec Shared\ccProxy.exe"
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - "C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - "C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"
O23 - Service: ewido security suite control (ewido security suite control) - ewido networks - d:\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard (ewido security suite guard) - ewido networks - d:\ewido\security suite\ewidoguard.exe
O23 - Service: Human Interface Device Access (HidServ) -  - C:\WINDOWS\system32\svchost.exe -k netsvcs
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\lexbces.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - "C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe"
O23 - Service: npkcsvc (npkcsvc) - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - "C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: User Privilege Service (usprserv) - Microsoft Corporation - C:\WINDOWS\system32\svchost.exe -k netsvcs