新手【求助】哪位高手帮忙看看，有啥问题 bbs.ikaka.com

pirateship711 - 2006-5-16 17:43:00

双击文件夹打不开，右键也打不开，机子启动时还特慢，是中病毒了吗？

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background>
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<igfxtray><C:\WINDOWS\system32\igfxtray.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<igfxhkcmd><C:\WINDOWS\system32\hkcmd.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<igfxpers><C:\WINDOWS\system32\igfxpers.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<High Definition Audio Property Page Shortcut><CHDAudPropShortcut.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<DetectorApp><C:\Program Files\Sonic\DigitalMedia Plus v7\MyDVD Plus\DetectorApp.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<hpWirelessAssistant><C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<HP Software Update><C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<QPService><"C:\Program Files\HP\QuickPlay\QPService.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<eabconfg.cpl><C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Cpqset><C:\Program Files\HPQ\Default Settings\cpqset.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RecGuard><C:\Windows\SMINST\RecGuard.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SunJavaUpdateSched><C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ISUSPM Startup><C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ISUSScheduler><"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SearchNet_Up><"C:\Program Files\SearchNet\ServeUp.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<MoveSearch><C:\Program Files\HuaCi\huaci\zsearch.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<YLive.exe><C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IESAddr><Null>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<KillTrojanMaster><C:\Program Files\木马专杀大师\木马专杀大师.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<mscfs><RUNDLL32 C:\WINDOWS\system32\msibm\cfsys.DLL,cfs>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Desktop><C:\WINDOWS\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CdnCtr><>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<stup.exe><C:\PROGRA~1\TENCENT\Adplus\stup.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<q404uzfu><RunDll32 "C:\WINDOWS\Downlo~1\q404uzfu.dll",Boot>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<Userinit><C:\WINDOWS\system32\userinit.exe,>

pirateship711 - 2006-5-16 17:45:00

【回复“pirateship711”的帖子】
启动文件夹
[Adobe Reader Speed Launch]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Reader Speed Launch.lnk><N>

==================================
服务
[HP WMI Interface / hpqwmi]
<C:\Program Files\HPQ\Shared\hpqwmi.exe><Hewlett-Packard Development Company, L.P.>
[hpqwmiex / hpqwmiex]
<C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe><Hewlett-Packard Development Company, L.P.>
[LightScribeService Direct Disc Labeling Service / LightScribeService]
<"C:\Program Files\Common Files\LightScribe\LSSrvc.exe"><Hewlett-Packard Company>
[Security Machine Manager / MOBILL]
<C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087><N/A>
[Remote Log / Remote Log]
<system32\ServeHost.exe><北京中搜在线软件有限公司>
[Rising Personal Firewall Service / RfwService]
<c:\program files\rising\rfw\rfwsrv.exe><N/A>
[Rising Process Communication Center / RsCCenter]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[StdService / StdService]
<C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\STDSVER.DLL,Service><N/A>
[USBDeviceService / USBDeviceService]
<C:\Program Files\Sonic\DigitalMedia Plus v7\MyDVD Plus\USBDeviceService.exe><>

pirateship711 - 2006-5-16 17:46:00

【回复“pirateship711”的帖子】
浏览器加载项
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[CPub Object]
{0CA51D02-7739-43EA-8D9A-1E8AD4327B03} <C:\Program Files\P4P\sodaie.dll, N/A>
[MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll, Microsoft Corporation>
[QuickBtn]
{1A199C20-DE2B-4838-AE3F-B5257ECE2B7E} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[Zhongsou Browser Helper]
{2A0176FE-008B-4706-90F5-BBA532A49731} <C:\Program Files\SearchNet\SNHpr.dll, Beijing Zhongsou Online Software>
[Yahoo!Photo]
{33BBE430-0E42-4f12-B075-8D21ACB10DCB} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll, N/A>
[AntiFish Class]
{38928D50-8A48-44C2-945F-D2F23F771410} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll, Yahoo.>
[IE Browser Helper]
{3CE496D1-1746-41CD-9489-3C0B93DF10E2} <C:\WINDOWS\Downlo~1\nvlxt.dll, 中搜在线软件有限公司>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, N/A>
[DragSearch BHO]
{62EED7C6-9F02-42f9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL, N/A>
[MMSAssist BHO]
{6671A431-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\Mmsass~1.dll, >
[std software]
{6A512BF7-EC78-4e8d-9841-6C02E8FA9838} <C:\WINDOWS\SYSTEM32\stdup.dll, MStdup Co Ltd.>
[Helper Class]
{6E28339B-7A2A-47B6-AEB2-197004272379} <C:\WINDOWS\vchelper.dll, >
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[CpapView Class]
{77962960-536E-47EC-9DDB-52651519705F} <C:\WINDOWS\system32\cpap.dll, >
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <C:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[CBHelper Object]
{8A4280AD-9B37-4922-A51D-73F3C3A32AF7} <C:\WINDOWS\system32\msibm\cfsbho.dll, N/A>
[win32core Class]
{A297EEAE-A541-496B-B2AE-554AD0153B72} <C:\WINDOWS\system32\win32help02.dll, >
[IEhlprObj Class]
{A3803141-3CF5-4D66-B7EA-8D2674FE152C} <C:\WINDOWS\stdie.dll, >
[DragSearch BHO]
{EF1D17A9-089F-40cc-8D64-7324CDEBA0DB} <C:\PROGRA~1\YiSou\yisoub.dll, >
[Java Plug-in]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[QuickBtn]
{1D901067-2529-4A9B-9B6B-7A1DB3A44CB5} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[MMSAssistMenu]
{6671A433-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\Mmsass~1.dll, >
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <F:\工具软件\QQ\QQ.EXE, N/A>
[易趣购物]
{EE60714F-AC17-427e-861A-FD60CBDF119A} <http://click2.ad4all.net/url2/urlmanage/url.asp?id=86, N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, N/A>
[一搜工具条]
{115F6E46-FCBC-41ed-B3B5-3BDDD4AAB5E5} <C:\Program Files\YiSou\yisou.dll, 3721>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <C:\Program Files\Kingsoft\FastAIT 2006\IEBand.dll, 金山软件股份有限公司>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, N/A>
[Java Plug-in]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in]
{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_06]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[CPub Object]
{0CA51D02-7739-43EA-8D9A-1E8AD4327B03} <C:\Program Files\P4P\sodaie.dll, N/A>
[一搜工具条]
{115F6E46-FCBC-41ED-B3B5-3BDDD4AAB5E5} <C:\Program Files\YiSou\yisou.dll, 3721>
[MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll, Microsoft Corporation>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corp.>
[QuickBtn]
{1A199C20-DE2B-4838-AE3F-B5257ECE2B7E} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[BJCASecClt Control]
{1BFD2B7F-AAED-4319-8776-C5A0F2698249} <C:\WINDOWS\system32\BJCASE~1.OCX, CAPINFO>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[Zhongsou Browser Helper]
{2A0176FE-008B-4706-90F5-BBA532A49731} <C:\Program Files\SearchNet\SNHpr.dll, Beijing Zhongsou Online Software>
[Yahoo!Photo]
{33BBE430-0E42-4F12-B075-8D21ACB10DCB} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll, N/A>
[AntiFish Class]
{38928D50-8A48-44C2-945F-D2F23F771410} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll, Yahoo.>
[IE Browser Helper]
{3CE496D1-1746-41CD-9489-3C0B93DF10E2} <C:\WINDOWS\Downlo~1\nvlxt.dll, 中搜在线软件有限公司>
[NaviHelperObj Class]
{3E422F49-1566-40D3-B43D-077EF739AC32} <C:\WINDOWS\system32\NaviHelper.dll, N/A>
[雅虎助手]
{406F94F0-504F-4A40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, N/A>
[Search Class]
{594BE7B2-23B0-4FAE-A2B9-0C21CC1417CE} <C:\PROGRA~1\HuaCi\huaci\searchm.dll, >
[DragSearch BHO]
{62EED7C6-9F02-42F9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL, N/A>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[MMSAssist BHO]
{6671A431-5C3D-463D-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\Mmsass~1.dll, >
[std software]
{6A512BF7-EC78-4E8D-9841-6C02E8FA9838} <C:\WINDOWS\SYSTEM32\stdup.dll, MStdup Co Ltd.>
[金山快译(&K)]
{6C3797D2-3FEF-4CD4-B654-D3AE55B4128C} <C:\Program Files\Kingsoft\FastAIT 2006\IEBand.dll, 金山软件股份有限公司>
[Helper Class]
{6E28339B-7A2A-47B6-AEB2-197004272379} <C:\WINDOWS\vchelper.dll, >
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[CpapView Class]
{77962960-536E-47EC-9DDB-52651519705F} <C:\WINDOWS\system32\cpap.dll, >
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <C:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[CBHelper Object]
{8A4280AD-9B37-4922-A51D-73F3C3A32AF7} <C:\WINDOWS\system32\msibm\cfsbho.dll, N/A>
[win32core Class]
{A297EEAE-A541-496B-B2AE-554AD0153B72} <C:\WINDOWS\system32\win32help02.dll, >
[IEhlprObj Class]
{A3803141-3CF5-4D66-B7EA-8D2674FE152C} <C:\WINDOWS\stdie.dll, >
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[AUDIO__WAV Moniker Class]
{CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[DragSearch BHO]
{EF1D17A9-089F-40CC-8D64-7324CDEBA0DB} <C:\PROGRA~1\YiSou\yisoub.dll, >
[ >> 彩信发送 <<]
<res://C:\PROGRA~1\MMSASS~1\Mmsass~1.dll/mms.htm, N/A>
[!搜一搜]
<res://C:\Program Files\YiSou\yisou.dll/232, N/A>
[>>彩信发送<<]
<res://C:\Program Files\MMSAssist\Mmsass~1.dll/mms.htm, N/A>
[上传到QQ网络硬盘]
<C:\Program Files\QQ2006\AddToNetDisk.htm, N/A>
[使用迅雷下载]
<C:\Program Files\Thunder\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
<C:\Program Files\Thunder\Program\GetAllUrl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ表情]
<C:\Program Files\QQ2006\AddEmotion.htm, N/A>
[添加到雅虎订阅(&Y)]
<res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT, N/A>
[百度--MP3搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUMP3.HTM, N/A>
[百度--图片搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUIMG.HTM, N/A>
[百度--新闻搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUNEWS.HTM, N/A>
[百度--歌词搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDULYRIC.HTM, N/A>
[百度--网页搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUSEARCH.HTM, N/A>
[百度--词典搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDU_DIC.HTM, N/A>
[百度--贴吧搜索]
<RES://C:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUPOST.HTM, N/A>
[雅虎搜索]
<res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246, N/A>

pirateship711 - 2006-5-16 17:47:00

【回复“pirateship711”的帖子】
正在运行的进程
[PID: 784][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 856][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 880][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 924][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 936][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1076][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\msibm\cfsupd.dll] <N/A><N/A>
[PID: 1156][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1192][C:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1212][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1268][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1376][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1448][C:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 19>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[C:\Program Files\Rising\Rav\HOOKSYS.dll] <Rising><18, 1, 0, 9>
[C:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 28>
[C:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 8>
[C:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
[C:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
[C:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[C:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13>
[C:\Program Files\Rising\Rav\ExtFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 17>
[C:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Rising\Rav\ScanNet.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[PID: 1872][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[PID: 152][C:\Program Files\Common Files\LightScribe\LSSrvc.exe] <Hewlett-Packard Company><1.4.52.1>
[PID: 692][C:\WINDOWS\system32\ServeHost.exe] <北京中搜在线软件有限公司><1, 0, 2, 4>
[PID: 732][C:\WINDOWS\system32\rundll32.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\System32\STDSVER.DLL] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\system32\msibm\cfsupd.dll] <N/A><N/A>
[PID: 752][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 768][C:\WINDOWS\system32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 836][C:\Program Files\Sonic\DigitalMedia Plus v7\MyDVD Plus\USBDeviceService.exe] <><1, 0, 0, 1>
[PID: 844][C:\Program Files\SearchNet\SearchNet.exe] <中搜在线><1, 0, 2, 4>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[PID: 1104][C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe] <Hewlett-Packard Development Company, L.P.><2, 0, 1, 2>
[PID: 1504][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\msibm\cfsupd.dll] <N/A><N/A>
[PID: 356][C:\WINDOWS\system32\hkcmd.exe] <Intel Corporation><3.0.0.4421>
[C:\WINDOWS\system32\hccutils.DLL] <Intel Corporation><3.0.0.4421>
[C:\WINDOWS\system32\igfxsrvc.dll] <Intel Corporation><3.0.0.4421>
[C:\WINDOWS\system32\igfxres.dll] <Intel Corporation><3.0.0.4421>
[PID: 416][C:\WINDOWS\system32\igfxpers.exe] <Intel Corporation><3.0.0.4421>
[C:\WINDOWS\system32\igfxsrvc.dll] <Intel Corporation><3.0.0.4421>
[PID: 500][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] <Synaptics, Inc.><8.2.4 10Nov05>
[C:\WINDOWS\system32\SynCOM.dll] <Synaptics, Inc.><8.2.4 10Nov05>
[C:\WINDOWS\system32\SynTPAPI.dll] <Synaptics, Inc.><8.2.4 10Nov05>
[PID: 548][C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe] <Hewlett-Packard Development Company, L.P.><2, 0, 2, 2>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[PID: 640][C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe] <Hewlett-Packard Co.><50.0.146.000>
[PID: 1516][C:\WINDOWS\system32\wbem\wmiprvse.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1316][C:\Program Files\HP\QuickPlay\QPService.exe] <CyberLink Corp.><4.5.0.0000>
[C:\Program Files\HP\QuickPlay\helper.dll] <CyberLink Corp.><3.00.3301 >
[C:\Program Files\HP\QuickPlay\Kernel\common\CLDataSync.dll] <><1, 0, 0, 1>
[PID: 1568][C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe] <Hewlett-Packard ><5, 20, 6, 2>
[C:\Program Files\HPQ\Quick Launch Buttons\CPQINFO.DLL] <Hewlett-Packard ><5, 20, 6, 2>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[PID: 1364][C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe] <InstallShield Software Corporation><3, 20, 100, 1123>
[PID: 1412][C:\Program Files\HuaCi\huaci\zsearch.exe] <中搜在线><1, 0, 0, 1>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[PID: 1552][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[PID: 1468][C:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 17>
[C:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 24>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[PID: 1808][C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe] < ><2, 0, 0, 1002>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>

阿杜QQ - 2006-5-16 17:49:00

汉，楼主电脑流氓软件仓库，基本都有

pirateship711 - 2006-5-16 17:50:00

【回复“pirateship711”的帖子】

[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1636][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 1, 1000>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200>
[C:\PROGRA~1\DESKAD~1\deskipn.dll] <><1, 0, 0, 1>
[C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll] <Microsoft Corporation><1, 2, 2, 0>
[C:\Program Files\CoolWebsite\QuickLink.dll] <Fengcent><1, 0, 0, 2>
[C:\Program Files\SearchNet\SNHpr.dll] <Beijing Zhongsou Online Software><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\WINDOWS\Downlo~1\nvlxt.dll] <中搜在线软件有限公司><2, 0, 2, 5>
[C:\PROGRA~1\MMSASS~1\Mmsass~1.dll] <><1, 2, 0, 3>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\vchelper.dll] <><1, 0, 0, 1>
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] <Sun Microsystems, Inc.><5.0.60.5>
[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[C:\Program Files\HPQ\Quick Launch Buttons\CPQINFO.DLL] <Hewlett-Packard ><5, 20, 6, 2>

pirateship711 - 2006-5-16 17:50:00

【回复“pirateship711”的帖子】
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\VSFilter.dll] <Gabest><1, 0, 1, 3>
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\empgdmx.ax] <Elecard Ltd.><1, 0, 19, 51017>
[C:\Program Files\Nero7\DSFilter\NeSplitter.ax] <Nero AG><4,2,4,8>
[C:\Program Files\Common Files\muvee Technologies\MainConcept\mcspmpeg.ax] <MainConcept AG><1, 0, 0, 58>
[C:\Program Files\Common Files\muvee Technologies\MainConcept\mpegin.dll] <MainConcept AG><official release build>
[C:\WINDOWS\system32\ac3filter.cpl] <><0.68b>
[C:\WINDOWS\system32\msdmo.dll] <N/A><N/A>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13>
[PID: 2492][C:\WINDOWS\explorer.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[PID: 1444][C:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 1, 1000>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200>
[C:\PROGRA~1\DESKAD~1\deskipn.dll] <><1, 0, 0, 1>
[C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll] <Microsoft Corporation><1, 2, 2, 0>
[C:\Program Files\CoolWebsite\QuickLink.dll] <Fengcent><1, 0, 0, 2>
[C:\Program Files\SearchNet\SNHpr.dll] <Beijing Zhongsou Online Software><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\WINDOWS\Downlo~1\nvlxt.dll] <中搜在线软件有限公司><2, 0, 2, 5>
[C:\PROGRA~1\MMSASS~1\Mmsass~1.dll] <><1, 2, 0, 3>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\vchelper.dll] <><1, 0, 0, 1>
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] <Sun Microsystems, Inc.><5.0.60.5>
[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>

pirateship711 - 2006-5-16 17:51:00

【回复“pirateship711”的帖子】
[PID: 1068][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 1, 1000>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200>
[C:\PROGRA~1\DESKAD~1\deskipn.dll] <><1, 0, 0, 1>
[C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll] <Microsoft Corporation><1, 2, 2, 0>
[C:\Program Files\CoolWebsite\QuickLink.dll] <Fengcent><1, 0, 0, 2>
[C:\Program Files\SearchNet\SNHpr.dll] <Beijing Zhongsou Online Software><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\WINDOWS\Downlo~1\nvlxt.dll] <中搜在线软件有限公司><2, 0, 2, 5>
[C:\PROGRA~1\MMSASS~1\Mmsass~1.dll] <><1, 2, 0, 3>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\vchelper.dll] <><1, 0, 0, 1>
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] <Sun Microsystems, Inc.><5.0.60.5>
[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 2696][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 1, 1000>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200>
[C:\PROGRA~1\DESKAD~1\deskipn.dll] <><1, 0, 0, 1>
[C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll] <Microsoft Corporation><1, 2, 2, 0>
[C:\Program Files\CoolWebsite\QuickLink.dll] <Fengcent><1, 0, 0, 2>
[C:\Program Files\SearchNet\SNHpr.dll] <Beijing Zhongsou Online Software><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\WINDOWS\Downlo~1\nvlxt.dll] <中搜在线软件有限公司><2, 0, 2, 5>

pirateship711 - 2006-5-16 17:52:00

【回复“pirateship711”的帖子】
[C:\PROGRA~1\MMSASS~1\Mmsass~1.dll] <><1, 2, 0, 3>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\vchelper.dll] <><1, 0, 0, 1>
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] <Sun Microsystems, Inc.><5.0.60.5>
[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13>
[PID: 3356][C:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 1, 1000>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200>
[C:\PROGRA~1\DESKAD~1\deskipn.dll] <><1, 0, 0, 1>
[C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll] <Microsoft Corporation><1, 2, 2, 0>
[C:\Program Files\CoolWebsite\QuickLink.dll] <Fengcent><1, 0, 0, 2>
[C:\Program Files\SearchNet\SNHpr.dll] <Beijing Zhongsou Online Software><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\WINDOWS\Downlo~1\nvlxt.dll] <中搜在线软件有限公司><2, 0, 2, 5>
[C:\PROGRA~1\MMSASS~1\Mmsass~1.dll] <><1, 2, 0, 3>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\vchelper.dll] <><1, 0, 0, 1>
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] <Sun Microsystems, Inc.><5.0.60.5>
[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1440][C:\Program Files\QQ2006\QQ.exe] <TENCENT><0, 0, 0, 0>
[C:\Program Files\QQ2006\QQBaseClassInDll.dll] <><1, 0, 0, 1>

pirateship711 - 2006-5-16 17:52:00

【回复“pirateship711”的帖子】
[C:\Program Files\QQ2006\QQHelperDll.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\BasicCtrlDll.dll] <Tencent><5, 0, 200, 14>
[C:\Program Files\QQ2006\PYKer.dll] <飘云 http://www.pyqq.cn><飘云>
[C:\Program Files\QQ2006\ipsearcher.dll] <><1.0.0.3>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\Program Files\QQ2006\QQAPI.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\TIMProxy.dll] <tencent><0, 3, 2, 4>
[C:\Program Files\QQ2006\LoginCtrl.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\npkcntc.dll] <INCA Internet Co., Ltd.><2005, 9, 1, 1>
[C:\Program Files\QQ2006\npkpdb.dll] <INCA Internet Co., Ltd.><2003, 10, 1, 1>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[C:\Program Files\HPQ\Quick Launch Buttons\CPQINFO.DLL] <Hewlett-Packard ><5, 20, 6, 2>
[C:\Program Files\QQ2006\QQRes.dll] <tencent><1, 0, 0, 1>
[C:\Program Files\QQ2006\QQMainFrame.dll] <N/A><N/A>
[C:\Program Files\QQ2006\CQQApplication.dll] <N/A><N/A>
[C:\Program Files\QQ2006\NewSkin.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\HostingMgr.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\CameraDll.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\MailSummary.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\QQSpace.dll] <><1, 0, 0, 1>
[C:\WINDOWS\system32\msdmo.dll] <N/A><N/A>
[C:\Program Files\QQ2006\QQGroupMng.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\QQSysMsgMng.dll] <N/A><N/A>
[C:\Program Files\QQ2006\UserDefinedHead.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\QQPlugin.dll] <N/A><N/A>
[C:\Program Files\QQ2006\QQConfigPlugin.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\QRingMng.dll] <N/A><N/A>
[C:\Program Files\QQ2006\PhoneAPI.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\DialerAllinOne.dll] <tencent><1, 4, 0, 0>
[C:\Program Files\QQ2006\QQAvatar.dll] <N/A><N/A>
[C:\Program Files\QQ2006\FlashAvatarDll.dll] <><1, 4, 0, 1>
[C:\Program Files\QQ2006\QQAllInOne.dll] <N/A><N/A>
[C:\Program Files\QQ2006\SCCore.dll] <N/A><N/A>
[C:\Program Files\QQ2006\QQCustomFace.dll] <N/A><N/A>
[C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[C:\Program Files\QQ2006\LongConnection.dll] <tencent><5, 0, 201, 14>
[C:\Program Files\QQ2006\QQSceneMng.dll] <N/A><N/A>
[C:\Program Files\QQ2006\QQPet.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\VqqModule.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\ImageOle.dll] <TODO: <Company name>><1.0.0.1>
[C:\Program Files\QQ2006\VqqAllInOne.dll] <Tencent><1, 5, 0, 2>
[C:\Program Files\QQ2006\tencent-proto1.dll] <Tencent><1.5.0.0>
[C:\Program Files\QQ2006\tencent-comlib.dll] <Tencent><1.5.0.0>
[C:\Program Files\QQ2006\tencent-proto2.dll] <Tencent><1.5.0.0>
[C:\Program Files\QQ2006\audioengine.dll] <TENCENT><1, 4, 0, 2>
[C:\Program Files\QQ2006\GIPSVoiceEngineDLL.dll] <Global IP Sound><2, 0, 2, 1>
[C:\Program Files\QQ2006\QQMagicFace.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\BQQApplication.dll] <N/A><N/A>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13>
[C:\Program Files\QQ2006\CommercesMng.dll] <><1, 0, 0, 1>
[C:\Program Files\QQ2006\PersonalDesktop.dll] <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
[C:\Program Files\QQ2006\QQAddr.dll] <深圳市腾讯计算机系统有限公司><5, 0, 101, 140>
[C:\Program Files\QQ2006\QQPhoneHelper.dll] <腾讯科技（深圳）有限公司><2, 0, 2, 21>
[PID: 1556][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 1, 1000>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 5, 1031>
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><7.0.7.2006011200>
[C:\PROGRA~1\DESKAD~1\deskipn.dll] <><1, 0, 0, 1>
[C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll] <Microsoft Corporation><1, 2, 2, 0>
[C:\Program Files\CoolWebsite\QuickLink.dll] <Fengcent><1, 0, 0, 2>
[C:\Program Files\SearchNet\SNHpr.dll] <Beijing Zhongsou Online Software><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\WINDOWS\Downlo~1\nvlxt.dll] <中搜在线软件有限公司><2, 0, 2, 5>
[C:\PROGRA~1\MMSASS~1\Mmsass~1.dll] <><1, 2, 0, 3>
[C:\WINDOWS\SYSTEM32\stdup.dll] <MStdup Co Ltd.><3, 2, 1, 6>
[C:\WINDOWS\vchelper.dll] <><1, 0, 0, 1>
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] <Sun Microsystems, Inc.><5.0.60.5>
[C:\WINDOWS\system32\cpap.dll] <><1, 0, 1, 0>
[C:\WINDOWS\system32\HttpReq.dll] <N/A><N/A>
[C:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 76>
[C:\Program Files\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[C:\WINDOWS\system32\msibm\cfsbho.dll] <N/A><1.0.0.1>
[C:\WINDOWS\system32\win32help02.dll] <><1, 0, 0, 1>
[C:\WINDOWS\stdie.dll] <><1, 0, 0, 1>
[C:\PROGRA~1\YiSou\yisoub.dll] <><1, 2, 5, 1005>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[C:\Program Files\Thunder\ComDlls\ThunderAgent_001.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 8>
[PID: 1764][C:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[PID: 3284][C:\Program Files\WinRAR\WinRAR.exe] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>
[PID: 3308][C:\DOCUME~1\n\LOCALS~1\Temp\Rar$EX01.078\SREng.exe] <Smallfrogs Studio><2.0.12.350>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[C:\Program Files\HuaCi\huaci\Mouse1.dll] <中搜在线><1, 0, 0, 1>
[C:\Program Files\SearchNet\SrvNet32.dll] <中搜在线><1, 0, 2, 7>

pirateship711 - 2006-5-16 17:53:00

【回复“pirateship711”的帖子】
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

pirateship711 - 2006-5-16 17:55:00

【回复“阿杜QQ”的帖子】
那我怎摸办？

轩辕小聪 - 2006-5-16 18:01:00

楼主的流氓软件真的成堆了……
要一一搞定的话，光编辑方法就要花大半个小时。
打不开文件夹，是打不开什么文件夹，还是所有文件夹都打不开（要是后者，恐怕你也扫不出日志来）？

pirateship711 - 2006-5-16 18:07:00

【回复“轩辕小聪”的帖子】
现在能打开了

pirateship711 - 2006-5-16 18:08:00

那现在怎摸删除那些流氓软件？
那可是新买的笔记本
谢谢大家了

pirateship711 - 2006-5-16 18:28:00

【回复“pirateship711”的帖子】
大家帮帮忙啊，还是实在不行重装系统？

轩辕小聪 - 2006-5-16 22:08:00

处理建议：

用SREng在“启动项目”-“注册表”中删除以下项目：
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<MoveSearch><C:\Program Files\HuaCi\huaci\zsearch.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Desktop><C:\WINDOWS\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<q404uzfu><RunDll32 "C:\WINDOWS\Downlo~1\q404uzfu.dll",Boot>

在“系统修复”-“浏览器加载项”中删除以下项目：
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll, Microsoft Corporation>
[QuickBtn]
{1A199C20-DE2B-4838-AE3F-B5257ECE2B7E} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[MMSAssist BHO]
{6671A431-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\Mmsass~1.dll, >
[Helper Class]
{6E28339B-7A2A-47B6-AEB2-197004272379} <C:\WINDOWS\vchelper.dll, >
[CpapView Class]
{77962960-536E-47EC-9DDB-52651519705F} <C:\WINDOWS\system32\cpap.dll, >
[win32core Class]
{A297EEAE-A541-496B-B2AE-554AD0153B72} <C:\WINDOWS\system32\win32help02.dll, >
[IEhlprObj Class]
{A3803141-3CF5-4D66-B7EA-8D2674FE152C} <C:\WINDOWS\stdie.dll, >
[QuickBtn]
{1D901067-2529-4A9B-9B6B-7A1DB3A44CB5} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[MMSAssistMenu]
{6671A433-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\Mmsass~1.dll, >
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll, Microsoft Corporation>
[QuickBtn]
{1A199C20-DE2B-4838-AE3F-B5257ECE2B7E} <C:\Program Files\CoolWebsite\QuickLink.dll, Fengcent>
[NaviHelperObj Class]
{3E422F49-1566-40D3-B43D-077EF739AC32} <C:\WINDOWS\system32\NaviHelper.dll, N/A>
[Search Class]
{594BE7B2-23B0-4FAE-A2B9-0C21CC1417CE} <C:\PROGRA~1\HuaCi\huaci\searchm.dll, >
[MMSAssist BHO]
{6671A431-5C3D-463D-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\Mmsass~1.dll, >
[Helper Class]
{6E28339B-7A2A-47B6-AEB2-197004272379} <C:\WINDOWS\vchelper.dll, >
[CpapView Class]
{77962960-536E-47EC-9DDB-52651519705F} <C:\WINDOWS\system32\cpap.dll, >
[win32core Class]
{A297EEAE-A541-496B-B2AE-554AD0153B72} <C:\WINDOWS\system32\win32help02.dll, >
[ >> 彩信发送 <<]
<res://C:\PROGRA~1\MMSASS~1\Mmsass~1.dll/mms.htm, N/A>
[>>彩信发送<<]
<res://C:\Program Files\MMSAssist\Mmsass~1.dll/mms.htm, N/A>

卸载：
C:\Program Files\HuaCi\
C:\Program Files\DeskAdTop\
C:\Program Files\CoolWebsite\
C:\PROGRA~1\MMSASS~1\

重启后删除：
C:\Program Files\HuaCi\（表示文件夹，下同）
C:\Program Files\DeskAdTop\
C:\Program Files\CoolWebsite\
C:\PROGRA~1\MMSASS~1\
C:\WINDOWS\Downlo~1\q404uzfu.dll
C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200651_8888.dll
C:\WINDOWS\vchelper.dll
C:\WINDOWS\system32\cpap.dll
C:\WINDOWS\system32\win32help02.dll
C:\WINDOWS\stdie.dll
C:\WINDOWS\system32\NaviHelper.dll

除此之外：

在SREng的“启动项目”-“服务”中的这一项：
[Security Machine Manager / MOBILL]
<C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087><N/A>
处理方法参考http://forum.ikaka.com/topic.asp?board=28&artid=7946351

“注册表”中
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SearchNet_Up><"C:\Program Files\SearchNet\ServeUp.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CdnCtr><>
“浏览器加载项”中
[Remote Log / Remote Log]
<system32\ServeHost.exe><北京中搜在线软件有限公司>
[Zhongsou Browser Helper]
{2A0176FE-008B-4706-90F5-BBA532A49731} <C:\Program Files\SearchNet\SNHpr.dll, Beijing Zhongsou Online Software>
[Zhongsou Browser Helper]
{2A0176FE-008B-4706-90F5-BBA532A49731} <C:\Program Files\SearchNet\SNHpr.dll, Beijing Zhongsou Online Software>
[IE Browser Helper]
{3CE496D1-1746-41CD-9489-3C0B93DF10E2} <C:\WINDOWS\Downlo~1\nvlxt.dll, 中搜在线软件有限公司>
这些项目的详细处理参考http://forum.ikaka.com/topic.asp?board=28&artid=8049319

“服务”中的：
[StdService / StdService]
<C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\STDSVER.DLL,Service><N/A>
“浏览器加载项”中的：
[std software]
{6A512BF7-EC78-4e8d-9841-6C02E8FA9838} <C:\WINDOWS\SYSTEM32\stdup.dll, MStdup Co Ltd.>
[std software]
{6A512BF7-EC78-4E8D-9841-6C02E8FA9838} <C:\WINDOWS\SYSTEM32\stdup.dll, MStdup Co Ltd.>
这些项目的详细处理参考http://forum.ikaka.com/topic.asp?board=28&artid=7971417

“注册表”中的：
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<mscfs><RUNDLL32 C:\WINDOWS\system32\msibm\cfsys.DLL,cfs>
“浏览器加载项”中的：
[CBHelper Object]
{8A4280AD-9B37-4922-A51D-73F3C3A32AF7} <C:\WINDOWS\system32\msibm\cfsbho.dll, N/A>
[CBHelper Object]
{8A4280AD-9B37-4922-A51D-73F3C3A32AF7} <C:\WINDOWS\system32\msibm\cfsbho.dll, N/A>
这些项目的详细处理参考http://forum.ikaka.com/topic.asp?board=28&artid=7948848

以上有参考帖子的项目，由于参考的帖子中的方法已讲得很详细，在此不再赘述，请楼主仔细参考那些帖子。

总结：楼主的机子的确成了以上流氓软件和广告插件的安乐窝了……

瑞星卡卡安全论坛