应《网络安全法》要求,自2017年10月1日起,未进行实名认证将不得使用互联网跟帖服务。为保障您的帐号能够正常使用,请尽快对帐号进行手机号验证,感谢您的理解与支持!

24小时热门版块排行榜    

小木虫论坛-学术科研互动平台» 网络生活区» 有奖问答 » 有奖问答中转子版 » IE浏览器登陆某些帐号的问题(结束求助,电脑问题!请版主帮忙转金币)
212/3返回列表上一页123下一页
查看: 604  |  回复: 20
只看楼主 @他人 存档 新回复提醒 (忽略) 收藏    在APP中查看
当前主题已经存档。
【悬赏金币】回答本帖问题,作者cuizh2001将赠送您 5 个金币

yogasplendid

木虫 (著名写手)
用安全卫士360卸载恶意软件
一下 回复此楼
11楼2007-12-14 23:55:18
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

喜欢搞科研

木虫 (著名写手)
卡巴斯基杀毒
回复此楼
12楼2007-12-15 00:10:06
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

lml190

木虫 (正式写手)
可能除了重装系统,没有别的办法,我的一个小手提也一样,上不了邮箱,现在都没解决,但上面人家说的各种方法都试过了
一下 回复此楼
13楼2007-12-15 09:52:27
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

cuizh2001

金虫 (著名写手)
[CODE]

2007-12-14,13:35:28

System Repair Engineer 2.5.16.900
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
      [(Verified)Microsoft Windows Publisher]
    <"C:\Program Files\Messenger\msmsgs.exe" /background>  [N/A]
    <; D:\Program Files\DesktopSprite2\DesktopSprite.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Publisher]
      [(Verified)Microsoft Corporation]
      [Eset ]
      [(Verified)Microsoft Windows Publisher]
      [(Verified)Microsoft Windows Publisher]
    <; "d:\Program Files\DAEMON Tools\daemon.exe" -lang 2052>  [(Verified)DAEMON Tools Code Signing Services]
    <; C:\Program Files\hxupdate\hxgame-update.exe>  [N/A]
    <; "C:\Program Files\Tencent\QQLive\MiniQQLive.exe">  [N/A]
    <; "d:\Program Files\Rising\Rav\RavTask.exe" -system>  [N/A]
    <; "d:\Program Files\Storm Codec\StormSet.exe" /S /opti>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
      [(Verified)Microsoft Windows Component Publisher]
      [(Verified)Microsoft Windows Publisher]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
      [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
      [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
      [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [N/A]

==================================
启动文件夹
N/A

==================================
服务
[AVG Anti-Spyware Guard / AVG Anti-Spyware Guard][Stopped/Auto Start]
  
[Contrl Center of Storm Media / ccosm][Running/Auto Start]
  <北京暴风网际科技有限公司>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  %SystemRoot%\System32\hidserv.dll>
[MSC.Licensing 9.2 / MSC.Licensing 9.2][Running/Auto Start]
  
[NOD32 Kernel Service / NOD32krn][Running/Auto Start]
  
[Cluster Manager Service V2 / rcluma][Running/Auto Start]
  
[Rising Process Communication Center / RsCCenter][Stopped/Auto Start]
  <"d:\Program Files\Rising\Rav\CCenter.exe">
[Rising RealTime Monitor / RsRavMon][Stopped/Auto Start]
  <"D:\PROGRAM FILES\RISING\RAV\Ravmond.exe">
[Unigraphics License Server (uglmd) / Unigraphics License Server (uglmd)][Running/Auto Start]
  

==================================
驱动程序
[Service for Avance AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  
[amon / amon][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\amon.sys>
[ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter / AN983][Running/Manual Start]
  
[Apaidi / Apaidi][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\Apaidi.sys>
[AVG Anti-Spyware Driver / AVG Anti-Spyware Driver][Stopped/System Start]
  <\??\C:\Documents and Settings\cui\桌面\AVG Anti-Spyware 7.5\guard.sys>
[AVG Anti-Spyware Clean Driver / AvgAsCln][Running/System Start]
  
[Rising TDI Base Driver / BaseTDI][Running/Auto Start]
  
[C-Dilla / C-Dilla][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\CDANT.SYS>
[Measurement Computing DataAcq / CBUL32][Running/System Start]
  <>
[DS1410D / DS1410D][Stopped/Auto Start]
  
[ExpScaner / ExpScaner][Stopped/Auto Start]
  <\??\D:\PROGRAM FILES\RISING\RAV\ExpScan.sys>
[hardlock / hardlock][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\hardlock.sys>
[Haspnt / Haspnt][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\Haspnt.sys>
[HookCont / HookCont][Stopped/Auto Start]
  <\??\D:\PROGRAM FILES\RISING\RAV\HOOKCONT.sys>
[HookReg / HookReg][Stopped/Auto Start]
  <\??\D:\PROGRAM FILES\RISING\RAV\HookReg.sys>
[HookSys / HookSys][Stopped/Auto Start]
  <\??\D:\PROGRAM FILES\RISING\RAV\HookSys.sys>
[MEMSCAN / MEMSCAN][Stopped/Auto Start]
  <\??\D:\PROGRAM FILES\RISING\RAV\MEMSCAN.sys>
[nod32drv / nod32drv][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\nod32drv.sys>
[npkcrypt / npkcrypt][Stopped/Auto Start]
  <\??\D:\Program Files\QQ2006\npkcrypt.sys>
[nv / nv][Running/Manual Start]
  
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  
[RsNTGDI / RsNTGDI][Running/Boot Start]
  <\SystemRoot\system32\Drivers\RsNTGdi.sys>
[RSPPSYS / RSPPSYS][Stopped/Auto Start]
  <\??\D:\PROGRAM FILES\RISING\RAV\RSPPSYS.sys>
[scrcap / scrcap][Stopped/Manual Start]
  
[Secdrv / Secdrv][Stopped/Manual Start]
  
[shp0stjc0 / shp0stjc08][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\shp0stjc08.sys>
[sptd / sptd][Running/Boot Start]
  <\SystemRoot\System32\Drivers\sptd.sys>
[596843 / 596843][Running/System Start]
  <2 - 系统找不到指定的文件。
>

==================================
浏览器加载项
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233}
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
[BitComet Helper]
  {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[BitComet Button]
  {461CC20B-FB6E-4f16-8FE8-C29359DB100E}
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233}
[MMCPlayer Class]
  {05C1004E-2596-48E5-8E26-39362985EEB9}
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700}
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95}
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13}
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A}
[SSReaderPlug Control]
  {3359C0B1-2363-40B3-AFCA-1ABC799AC486}
[BitComet Helper]
  {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6}
[360SafeLive]
  {87515F61-A66C-4319-A0E0-D416CB8059E3}
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36}
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000}
[safeInput Class]
  {ECCBA953-80E5-11D3-9285-0080ADB811C5}
[&使用BitComet下载]
  
[&使用BitComet下载全部链接]
  
[&使用BitComet下载本页视频]
  
[使用Gigaget下载]
  
[使用Gigaget下载全部链接]
  
[导出到 Microsoft Office Excel(&X)]
  
[导出当前页到超星阅览器(&A)]
  
[导出选中部分到超星阅览器(&S)]
  
[添加到QQ表情]
  
[转换为 Adobe PDF]
  
[转换为现有 PDF]
  
[转换选定的链接为 Adobe PDF]
  
[转换选定的链接为现有 PDF]
  
[转换选项为 Adobe PDF]
  
[转换选项为现有 PDF]
  
[转换链接目标为 Adobe PDF]
  
[转换链接目标为现有 PDF]
  
一下 回复此楼
相互学习,共同进步!
14楼2007-12-16 11:25:30
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

cuizh2001

金虫 (著名写手)
正在运行的进程
[PID: 492 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 564 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 588 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\WgaLogon.dll]  [Microsoft Corporation, 1.7.0018.5]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 632 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 644 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 796 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 852 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 920 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
    [C:\WINDOWS\system32\wups2.dll]  [Microsoft Corporation, 7.0.6000.381 (winmain(wmbla).070730-1740)]
[PID: 964 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 1068 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 1228 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\WINDOWS\system32\AdobePDF.dll]  [Adobe Systems Incorporated., 7.0.0.00]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [D:\Program Files\Adobe\Acrobat 7.0\Distillr\AdistRes.CHS]  [, ]
    [C:\WINDOWS\system32\mdimon.dll]  [Microsoft Corporation, 11.3.2175.0]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.2175.0]
[PID: 1368 / SYSTEM][d:\Program Files\StormII\stormliv.exe]  [北京暴风网际科技有限公司, 3, 7, 12, 6]
    [d:\Program Files\StormII\MSVCP60.dll]  [Microsoft Corporation, 6.02.3104.0]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 1452 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll]  [Microsoft Corporation, 7.00.9466]
[PID: 1484 / SYSTEM][C:\MSC.Software\MSC.Licensing\9.2\lmgrd.exe]  [Macrovision Corporation, 9, 2, 0, 0]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 1648 / SYSTEM][C:\MSC.Software\MSC.Licensing\9.2\msc.exe]  [N/A, ]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 1900 / SYSTEM][d:\Program Files\ESET\nod32krn.exe]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\nod32krr.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\ps_amon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_amon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\ps_dmon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_dmon.dll]  [N/A, ]
    [d:\Program Files\ESET\ps_emon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_emon.dll]  [N/A, ]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
    [d:\Program Files\ESET\ps_nod32.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_nod32.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\ps_upd.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_upd.dll]  [N/A, ]
[PID: 1996 / SYSTEM][C:\WINDOWS\system32\rclumad.exe]  [N/A, ]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 260 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 436 / SYSTEM][D:\Program Files\UGS\License Servers\UGNXFLEXlm\lmgrd.exe]  [Macrovision Corporation, 9, 2, 2, 0]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 608 / cui][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.CHS]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.0.2004121400]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [d:\Program Files\Unlocker\UnlockerCOM.dll]  [N/A, ]
    [d:\Program Files\ESET\nodshex.dll]  [N/A, ]
    [d:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [D:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll]  [Adobe Systems Inc., 7.0.0.2004121400\0]
    [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [D:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.chs]  [Adobe Systems Inc., 7.0.0.2004121400\0]
    [d:\Program Files\360safe\safemon\safemon.dll]  [奇虎网, 3, 6, 4, 1001]
    [D:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
[PID: 368 / SYSTEM][d:\Program Files\UGS\License Servers\UGNXFLEXlm\uglmd.exe]  [N/A, ]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 232 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
[PID: 552 / cui][C:\WINDOWS\system32\WgaTray.exe]  [Microsoft Corporation, 1.7.0018.5]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
[PID: 1604 / cui][D:\Program Files\ESET\nod32kui.exe]  [Eset , 2, 70, 39 ]
    [D:\Program Files\ESET\nod32rui.dll]  [N/A, ]
    [d:\Program Files\ESET\pu_amon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_amon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pu_dmon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_dmon.dll]  [N/A, ]
    [d:\Program Files\ESET\pu_emon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_emon.dll]  [N/A, ]
    [d:\Program Files\ESET\pu_imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
回复此楼
相互学习,共同进步!
15楼2007-12-16 11:30:24
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

cuizh2001

金虫 (著名写手)
[d:\Program Files\ESET\pu_nod32.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_nod32.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pu_upd.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_upd.dll]  [N/A, ]
[PID: 1856 / cui][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2908 / cui][D:\Program Files\Tencent\QQ\QQ.exe]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\CoralAssist.dll]  [Coral Team, 5.0.0 build 20060829]
    [D:\Program Files\Tencent\QQ\CoralQQ.dll]  [Coral Team, 5.0.2 Build 20070716]
    [D:\Program Files\Tencent\QQ\kql.dll]  [Coral Team, 5.0.2 build 20070703]
    [D:\Program Files\Tencent\QQ\MSVCP80.dll]  [Microsoft Corporation, 8.00.50727.42]
    [D:\Program Files\Tencent\QQ\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.42]
    [D:\Program Files\Tencent\QQ\mfc42.dll]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [D:\Program Files\Tencent\QQ\ipsearcher.dll]  [, 1.0.0.5]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQHelperDll.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\BasicCtrlDll.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\NoDisturbFilter.cqx]  [Coral Team, 1.0]
    [D:\Program Files\Tencent\QQ\ConfigHotkey.cqx]  [Coral Team, 1.0]
    [D:\Program Files\Tencent\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [D:\Program Files\Tencent\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [D:\Program Files\Tencent\QQ\QQAPI.dll]  [TENCENT, 7,0,365,1701]
    [d:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [D:\Program Files\Tencent\QQ\AutoReconnect.cqx]  [Coral Team, 1.0.0]
    [D:\Program Files\Tencent\QQ\LoginCtrl.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\LoginCtrlRes.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQRes.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQMainFrame.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Tencent\QQ\CQQApplication.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [D:\Program Files\Tencent\QQ\NewSkin.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\HostingMgr.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\CameraDll.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\MailSummary.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\CoralHotkey.cqx]  [Coral Team, 1.0]
    [D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll]  [TENCENT, 7,0,365,1701]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\QQAllInOne.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\SCCore.dll]  [TENCENT, 1, 6, 0, 2]
    [D:\Program Files\Tencent\QQ\QQSpace.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [D:\Program Files\Tencent\QQ\QQGroupMng.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\UserDefinedHead.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQPlugin.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\QQConfigPlugin.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQAvatar.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\QQCustomFace.dll]  [N/A, ]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [D:\Program Files\Tencent\QQ\QRingMng.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\LongConnection.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\PhoneAPI.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\Program Files\Tencent\QQ\QQPet.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\BQQApplication.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [D:\Program Files\Tencent\QQ\CommercesMng.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 320]
    [D:\Program Files\Tencent\QQ\QQSettingCtrl.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQSceneMng.dll]  [N/A, ]
    [D:\Program Files\Tencent\QQ\AddrSearch.dll]  [腾讯科技(深圳)有限公司, 2, 1, 9, 97]
    [D:\Program Files\Tencent\QQ\QQLiveQMng.dll]  [TENCENT, 7,0,365,1701]
    [C:\WINDOWS\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5076]
    [D:\Program Files\Tencent\QQ\QQMagicFace.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\GroupConnection.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\ImageOle.dll]  [TENCENT, 7,0,365,1701]
    [D:\Program Files\Tencent\QQ\QQZip.dll]  [TENCENT, 7,0,365,1701]
[PID: 3072 / cui][d:\Program Files\Tencent\QQ\TIMPlatform.exe]  [TENCENT, 7,0,365,1701]
    [d:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 824 / cui][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\IEFRAME.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\IEUI.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\xmllite.dll]  [Microsoft Corporation, 1.00.1018.0]
    [C:\WINDOWS\system32\msfeeds.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [D:\Program Files\Microsoft Office\OFFICE11\msohev.dll]  [Microsoft Corporation, 11.0.5510]
    [C:\Program Files\Internet Explorer\ieproxy.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.0.2004121400]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [d:\Program Files\BitComet\tools\BitCometBHO_1.1.9.24.dll]  [BitComet, 20070924]
    [d:\Program Files\360safe\safemon\safemon.dll]  [奇虎网, 3, 6, 4, 1001]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
    [C:\WINDOWS\system32\ieapfltr.dll]  [Microsoft Corporation, 7.0.5825.0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5076]
[PID: 400 / cui][d:\Program Files\BitComet\BitComet.exe]  [www.BitComet.com, 0.96]
    [C:\WINDOWS\system32\ieframe.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3608 / cui][C:\Documents and Settings\cui\桌面\System Repair Engineer (sreng) V2.5.16.900 下载\SREngPS.EXE]  [Smallfrogs Studio, 2.5.16.900]
    [C:\WINDOWS\system32\Normaliz.dll]  [Microsoft Corporation, 6.0.5441.0 (winmain(wmbla).060628-1735)]
    [C:\WINDOWS\system32\iertutil.dll]  [Microsoft Corporation, 7.00.5730.13 (longhorn(wmbla).070711-1130)]
    [C:\Documents and Settings\cui\桌面\System Repair Engineer (sreng) V2.5.16.900 下载\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\WINDOWS\system32\imon.dll]  [Eset , 2, 70, 39 ]
    [d:\Program Files\ESET\pr_imon.dll]  [N/A, ]
    [C:\Documents and Settings\cui\桌面\System Repair Engineer (sreng) V2.5.16.900 下载\Plugins\NTFSTREAM.SRE]  [Smallfrogs Studio, 1, 0, 0, 5]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
NOD32 protected [MSAFD Tcpip [TCP/IP]]
    C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [MSAFD Tcpip [UDP/IP]]
    C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [MSAFD Tcpip [RAW/IP]]
    C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [RSVP UDP Service Provider]
    C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32 protected [RSVP TCP Service Provider]
    C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)
NOD32
    C:\WINDOWS\system32\imon.dll(Eset , NOD32 IMON - Internet scanning support)

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
N/A

==================================
进程特权扫描
特殊特权被允许: SeLoadDriverPrivilege [PID = 1604, D:\PROGRAM FILES\ESET\NOD32KUI.EXE]

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]
一下 回复此楼
相互学习,共同进步!
16楼2007-12-16 11:30:36
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

surpermen

银虫 (正式写手)
稍后在分析中。。。
回复此楼
X--信心 Y--勇气 Z--责任
17楼2007-12-16 20:09:15
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

surpermen

银虫 (正式写手)
先下载工具
windows清理助手 http://www.arswp.com/download.html


打开sreng2(也就是的扫描软件)
打开启动项目--注册表--删除以下项

   <; C:\Program Files\hxupdate\hxgame-update.exe>  [N/A]


打开sreng2(也就是的扫描软件)
打开启动项目--服务--win32 服务应用程序--勾选"隐藏己认证的微软项目"
分别选中以下项,选"删除服务",点"设置",在弹出窗口中点"否"(注意是"否"


[Cluster Manager Service V2 / rcluma]

打开sreng2(也就是的扫描软件)
打开启动项--服务--驱动程序--勾选"隐藏己认证的微软项目"
分别选中以下项,选"删除服务",点"设置",在弹出窗口中点"否"(注意是"否"


[Apaidi / Apaidi]
[shp0stjc0 / shp0stjc08]
[sptd / sptd]
[596843 / 596843]

然后用上面下的windows清理助手清理所有提示垃圾软件.
然后删除下面的文件

  <\SystemRoot\System32\DRIVERS\shp0stjc08.sys

  <\??\C:\WINDOWS\system32\drivers\Apaidi.sys
  
  <\SystemRoot\System32\Drivers\sptd.sys

重启电脑, 如有问题请详细描述后再扫日志贴上来.
一下 回复此楼
X--信心 Y--勇气 Z--责任
18楼2007-12-16 20:39:34
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

元小雪

木虫 (职业作家)
那你就重新下一个IE试一下!
一下 回复此楼
无聊的博士
19楼2007-12-16 21:43:13
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖

cuizh2001

金虫 (著名写手)
真是疯掉了
有时间重装一下
问题依旧
不过还是非常感谢各位的热心回答
一下 回复此楼
相互学习,共同进步!
20楼2007-12-18 08:36:33
已阅   回复此楼   关注TA 给TA发消息 送TA红花 TA的回帖
相关版块跳转 我要订阅楼主 cuizh2001 的主题更新
212/3返回列表上一页123下一页
不应助 确定回帖应助 (注意:应助才可能被奖励,但不允许灌水,必须填写15个字符以上)
普通表情
信息提示
关闭
请填处理意见
关闭