瑞星卡卡安全论坛

有瑞星和HijackThis还有木马克星都杀过
  但是还是开机后过了不到10秒就自动重起
希望有人可以告诉我怎么会这样

日志发上来

HijackThis@Qoo的扫描日志  V1.97.7
Scan saved at 9:37:52, on 2006-5-13
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\Program Files\DuDu\DddClient\dudupros.exe
D:\iparmor\HijackThis.exe
C:\Program Files\Rising\Rav\RsAgent.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\Program Files\Rising\Rav\Rav.exe
C:\Program Files\Internet Explorer\iexplore.exe

O2 - BHO:
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - Startup: NTUSER.DAT
O4 - Startup: ntuser.dat.LOG
O4 - Startup: ntuser.ini
O4 - Startup: sys_log_15860112.upt
O4 - Startup: 桌面.lnk
O4 - Startup: sys_log_1314520.upt
O4 - Startup: sys_log_111111.upt
O4 - Startup: sys_log_118475935.upt
O4 - Global Startup: ntuser.dat
O4 - Global Startup: ntuser.dat.LOG
O10 - Unknown file in Winsock LSP: c:\windows\system32\espi11.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\espi11.dll
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - %SystemRoot%\system32\mshtml.dll

日志不全
建议卸载DUDU加速器和修复O10 - Unknown file in Winsock LSP: c:\windows\system32\espi11.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\espi11.dllO4 - Startup: NTUSER.DAT
O4 - Startup: ntuser.dat.LOG
O4 - Startup: ntuser.ini
O4 - Startup: sys_log_15860112.upt
O4 - Startup: 桌面.lnk
O4 - Startup: sys_log_1314520.upt
O4 - Startup: sys_log_111111.upt
O4 - Startup: sys_log_118475935.upt
O4 - Global Startup: ntuser.dat
O4 - Global Startup: ntuser.dat.LOG

如果还有情况
请再次扫描日志发上来

HijackThis@Qoo的扫描日志 V1.97.7版本有点低

HijackThis@Qoo的扫描日志  V1.97.7
Scan saved at 9:50:05, on 2006-5-13
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\Program Files\DuDu\DddClient\DuDuAcc.exe
C:\Program Files\DuDu\DddClient\dudupros.exe
C:\WINDOWS\system32\wuauclt.exe
D:\iparmor\HijackThis.exe

O2 - BHO:
O2 - BHO: DuDu.com - {6BDE1669-B490-48E3-B668-456314F2D6C3} - (no file)
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\RunOnce: [RavStub] "C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE
O4 - Startup: NTUSER.DAT
O4 - Startup: ntuser.dat.LOG
O4 - Startup: ntuser.ini
O4 - Startup: sys_log_15860112.upt
O4 - Startup: 桌面.lnk
O4 - Startup: sys_log_1314520.upt
O4 - Startup: sys_log_111111.upt
O4 - Startup: sys_log_118475935.upt
O4 - Global Startup: ntuser.dat
O4 - Global Startup: ntuser.dat.LOG
O10 - Unknown file in Winsock LSP: c:\windows\system32\espi11.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\espi11.dll
O11 - Options group: [!CNS] 
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2B7803FB-41ED-4D81-95B8-622DDC8AEE4D}: NameServer = 202.103.44.150 202.103.0.68
O17 - HKLM\System\CS1\Services\Tcpip\..\{2B7803FB-41ED-4D81-95B8-622DDC8AEE4D}: NameServer = 202.103.44.150 202.103.0.68



那里有高的版本下啊