瑞星卡卡安全论坛

这是我的查毒报告！怎么杀都杀不掉！急死我了


完美杀毒伴侣 查毒报告
---------------------
查毒日期:2005年11月22日16时9分
查毒结果:
文件:        C:\WINDOWS\system32\svchost.exe,病毒名称:Gezi.05090206.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004580.dll,病毒名称:ActiveKeyLoger.hook.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004603.sys,病毒名称:Rookit.07191.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004604.sys,病毒名称:Rookit.07191.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004607.exe,病毒名称:UnknownId.0115.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004608.dll,病毒名称:ActiveKeyLoger.hook.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004609.sys,病毒名称:Rookit.07191.Trojan,状态:失败!
文件:C:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004610.exe,病毒名称:UnknownId.0115.Trojan,状态:失败!
文件:            E:\Recycled\De1\ARCSETUP.EXE,病毒名称:CHMExploit.Setup.Trojan,状态:失败!
文件:E:\System Volume Information\_restore{D7CF3D9E-189B-4FD5-AB28-4C52C51EE0EE}\RP22\A0004614.exe,病毒名称:Band.ZC2005.Trojan,状态:失败!

用Autoruns保存一个日志发上来
日志保存方法:选择File->Save菜单项
保存日志时注意选择Options->Hide Microsoft Entries菜单项(设置了这项后点工具栏的刷新按钮)

工具的下载、使用参考http://forum.ikaka.com/topic.asp?board=28&artid=7318038第14楼

多谢楼主，现将日志传上来！
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

+ BaiduXFile not found: ;

+ DAEMON Tools-1033File not found: ;

+ IMJPMIG8.1File not found: ;

+ MoveSearchFile not found: ;

+ MSPY2002c:\windows\system32\ime\pintlgnt\imscinst.exe

+ SKYNET Personal FireWall天网防火墙个人版sky.net.cnc:\program files\skynet\firewall\pfw.exe

+ twisterFile not found: ;

+ Windows木马防火墙Windows木马清道夫-木马防火墙风云谷c:\program files\ftc\trojanwall.exe

HKLM\System\CurrentControlSet\Services

+ Ati HotKey Pollerc:\windows\system32\ati2evxx.exe

+ ATI SmartATI Smartc:\windows\system32\ati2sgag.exe

+ C-DillaSrvC-Dilla RTS ServiceC-Dilla Ltdc:\windows\system32\drivers\cdantsrv.exe

+ SoundMAX Agent Service (default)SoundMAX service agent componentAnalog Devices, Inc.c:\program files\analog devices\soundmax\smagent.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

+ 7-Zip Shell Extensionc:\program files\7-zip\7-zipn.dll

+ Display Panning CPL ExtensionFile not found: deskpan.dll

+ HyperTerminal Icon ExtHyperTerminal Applet LibraryHilgraeve, Inc.c:\windows\system32\hticons.dll

+ Microsoft Outlook Custom Icon HandlerFile not found: CLSID\{0006F045-0000-0000-C000-000000000046}\InprocServer32

+ ScriptDropShellExtRoboEnhancer ScriptDropShellExt Modulec:\program files\acd systems\roboenhancer\scriptdropshellext.dll

+ TrojanHunter Menu Shell Extensionc:\program files\trojanhunter 4.0\contmenu.dll

+ WinRAR shell extensionc:\program files\winrar\rarext.dll

+ Yahoo Trojan Cleannerc:\program files\3721\ske\contmenu.dll

+ 好看123上网精灵超级兔子上网精灵超级兔子c:\program files\super rabbit\magicset\haokanbar.dll

+ 用户(&P)...File not found: CLSID\{32714800-2E5F-11d0-8B85-00AA0044F941}\InprocServer32

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

+ CNNIC_IDNCndnIEHelper Modulec:\program files\cnnic\cdn\cdniehlp.dll

+ IeCatch2 Classjccatch ModuleAmaze Softc:\program files\flashget\jccatch.dll

+ NTIECatcher ClassNet Transport IE Helper ModuleXic:\program files\xi\nettransport 2\ntiehelper.dll

+ 超级兔子上网精灵超级兔子上网精灵超级兔子c:\program files\super rabbit\magicset\haokanbar.dll

HKLM\Software\Microsoft\Internet Explorer\Toolbar

+ FlashGet BarFlashGet IE BarAmaze Softc:\program files\flashget\fgiebar.dll

+ 超级兔子上网精灵超级兔子上网精灵超级兔子c:\program files\super rabbit\magicset\haokanbar.dll

HKLM\Software\Microsoft\Internet Explorer\Extensions

+ @shdoclc.dll,-864c:\windows\web\related.htm

关闭XP系统还原再杀毒试试

楼主能否说的详细一点？我不懂啊，最好是说一下操作步骤。难为你了，谢谢

http://forum.ikaka.com/topic.asp?board=28&artid=7445273十楼