瑞星卡卡安全论坛

无法关闭，关闭就关机，请问是病毒嘛

请下载 System Repair Engineer，使用“智能扫描”，按下“扫描”按钮进行扫描，扫描完成后按下“保存报告”按钮保存报告日志文件（SREng.LOG），把保存的报告日志文件内容复制-粘贴上来
下载网址
http://www.kztechs.com/sreng/sreng2.zip
http://forum.ikaka.com/topic.asp?board=67&artid=5188931
日志一次粘不完，分次粘完，请不要修改。

启动项目
注册表
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <internat.exe><internat.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <ScanRegistry><C:\WINDOWS\scanregw.exe /autorun>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <SystemTray><SysTray.Exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <LoadPowerProfile><Rundll32.exe powrprof.dll,LoadCurrentPwrScheme>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <IgfxTray><C:\WINDOWS\SYSTEM\igfxtray.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <HotKeysCmds><C:\WINDOWS\SYSTEM\hkcmd.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <OmgStartup><C:\Program Files\Common Files\Sony Shared\OpenMG\OmgStartup.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <YOKAssiant><Rundll32.exe C:\PROGRA~1\YOK.COM\SUPERS~1\YOK_SuperSearch.dll,YOKAssiant>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  <regsvr32 /s C:\PROGRA~1\baidu\bar\BaiduBar.dll><regsvr32 /s C:\PROGRA~1\baidu\bar\BaiduBar.dll>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
  <NSIS.Library.RegTool.v2><"C:\Program Files\MMSAssist\NSIS.Library.RegTool.v2.0.exe" /S>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
  <Hidserv><Hidserv.exe run>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
  <LoadPowerProfile><Rundll32.exe powrprof.dll,LoadCurrentPwrScheme>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
  <KB891711><C:\WINDOWS\SYSTEM\KB891711\KB891711.EXE>

==================================
启动文件夹
服务

==================================
浏览器加载项
[IeCatch2 Class]
  {A5366673-E8CA-11D3-9CD9-0090271D075B} <D:\PROGRAM FILES\FLASHGET\JCCATCH.DLL, Amaze Soft>
[MyIEHelper Class]
  {16A770A0-0E87-4278-B748-2460D64A8386} <C:\WINDOWS\SYSTEM\IEHELPER_8900.DLL, Microsoft Corporation>
[MMSAssist BHO]
  {6671A431-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\MMSASS~1.DLL,  >
[MDEobject Class]
  {4136C3F6-7636-49bf-A122-D4DA53B1ADDF} <C:\WINDOWS\SYSTEM\SHWASOBJ.DLL, 北京兴华基业软件技术有限公司>
[NaviHelperObj Class]
  {3E422F49-1566-40D3-B43D-077EF739AC32} <C:\WINDOWS\SYSTEM\NAVIHELPER.DLL, TODO: <公司名>>
[比特精灵工具栏]
  {B580CF65-E151-49C3-B73F-70B13FCA8E86} <C:\PROGRAM FILES\BAIDU\BAR\BAIDUBAR.DLL, $>
[珊瑚虫工具栏]
  {75FE2B5A-D3A4-4EFA-AC11-ADC9C9459688} <C:\PROGRAM FILES\YOK.COM\SUPERSEARCH\YOK_SUPERSEARCH.DLL, www.yok.com>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[FlashGet]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <D:\PROGRAM FILES\FLASHGET\FLASHGET.EXE, Amaze Soft>
[MMSAssistMenu]
  {6671A433-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\MMSASS~1.DLL,  >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\SYSTEM\MACROMED\FLASH\FLASH8.OCX, Macromedia, Inc.>
[Update Class]
  {9F1C11AA-197B-4942-BA54-47A8489BB47F} <C:\WINDOWS\SYSTEM\IUCTL.DLL, Microsoft Corporation>
[使用网际快车下载]
  <D:\PROGRAM FILES\FLASHGET\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <D:\PROGRAM FILES\FLASHGET\jc_all.htm, N/A>
[用比特精灵下载(&B)]
  <D:\PROGRAM FILES\BITSPIRIT\bsurl.htm, N/A>
[  >> 彩信发送 <<]
  <res://C:\PROGRAM FILES\MMSASSIST\MMSASS~1.DLL/mms.htm, N/A>
[珊瑚虫搜索]
  <C:\PROGRAM FILES\YOK.COM\SUPERSEARCH\yoksch.htm, N/A>

正在运行的进程
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294964805][C:\WINDOWS\SYSTEM\MPREXE.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294869509][C:\WINDOWS\SYSTEM\HIDSERV.EXE]  <Microsoft Corporation><4.10.2222>
    [C:\PROGRAM FILES\MMSASSIST\MMSASS~1.DLL]  < ><1, 2, 0, 2>
    [C:\PROGRAM FILES\YOK.COM\SUPERSEARCH\YOK_SUPERSEARCH.DLL]  <www.yok.com><2.0.1.5>
    [C:\WINDOWS\SYSTEM\DHCPCSVC.DLL]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294859529][C:\WINDOWS\EXPLORER.EXE]  <Microsoft Corporation><4.72.3110.1>
[PID: 4294893049][C:\WINDOWS\SYSTEM\INTERNAT.EXE]  <Microsoft Corporation><4.10.2222>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294783069][C:\WINDOWS\SYSTEM\SYSTRAY.EXE]  <Microsoft Corporation><4.10.2222>
    [C:\WINDOWS\SYSTEM\IGFXRES.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\IGFXSRVC.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\IGFXDEV.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294783357][C:\WINDOWS\SYSTEM\IGFXTRAY.EXE]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\HCCUTILS.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\IGFXRES.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\IGFXHK.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\IGFXSRVC.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\IGFXDEV.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294797493][C:\WINDOWS\SYSTEM\HKCMD.EXE]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\HCCUTILS.DLL]  <Intel Corporation><3,0,0,1757>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294790465][C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE]  <RealNetworks, Inc.><0.1.0.3427>
    [C:\WINDOWS\SYSTEM\I81XDD.DLL]  <Intel(R) Corporation><4.13.01.3196 >
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294827129][C:\WINDOWS\SYSTEM\DDHELP.EXE]  <Microsoft Corporation><4.09.00.0900>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294772085][C:\WINDOWS\SYSTEM\WMIEXE.EXE]  <Microsoft Corporation><5.00.1755.1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQSYSMSGMNG.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQADDR.DLL]  <深圳市腾讯计算机系统有限公司><5, 0, 101, 200>
    [D:\PROGRAM FILES\TENCENT\QQ\PERSONALDESKTOP.DLL]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [D:\PROGRAM FILES\TENCENT\QQ\COMMERCESMNG.DLL]  <(><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\CONTENTTAB.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQSETTINGCTRL.DLL]  <(><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQPHONEHELPER.DLL]  <腾讯科技（深圳）有限公司><2, 0, 3, 30>
    [D:\PROGRAM FILES\TENCENT\QQ\BQQAPPLICATION.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQFILETRANSFER.DLL]  <Tencent><5, 0, 202, 180>
    [D:\PROGRAM FILES\TENCENT\QQ\QQAVATAR.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\IMAGEOLE.DLL]  <TODO: <Company name>><1.0.0.1>
    [D:\PROGRAM FILES\TENCENT\QQ\DIALERALLINONE.DLL]  <tencent><1, 4, 0, 0>
    [D:\PROGRAM FILES\TENCENT\QQ\PHONEAPI.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\GROUPCONNECTION.DLL]  <Tencent><5, 0, 202, 170>
    [D:\PROGRAM FILES\TENCENT\QQ\QRINGMNG.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQSCENEMNG.DLL]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\MACROMED\FLASH\FLASH8.OCX]  <Macromedia, Inc.><8,0,22,0>
    [D:\PROGRAM FILES\TENCENT\QQ\FLASHAVATARDLL.DLL]  <(><1, 4, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQCONFIGPLUGIN.DLL]  <(><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\USERDEFINEDHEAD.DLL]  <(><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQPET.DLL]  < ><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQCUSTOMFACE.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQALLINONE.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\SCCORE.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQZIP.DLL]  <tencent><0, 3, 2, 4>
    [D:\PROGRAM FILES\TENCENT\QQ\SHAREFILES.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQPLUGIN.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\LONGCONNECTION.DLL]  <tencent><5, 0, 200, 160>
    [D:\PROGRAM FILES\TENCENT\QQ\QQGROUPMNG.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\GROUPLIVE.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQSPACE.DLL]  < ><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\MAILSUMMARY.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\HOSTINGMGR.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\CAMERADLL.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\NEWSKIN.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\CQQAPPLICATION.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQMAINFRAME.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQRES.DLL]  <tencent><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\LOGINCTRL.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\NPKCNTC.DLL]  <INCA Internet Co., Ltd.><2006, 3, 2, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\NPKPDB.DLL]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\TIMPROXY.DLL]  <tencent><0, 3, 2, 4>
    [D:\PROGRAM FILES\TENCENT\QQ\QQAPI.DLL]  <(><1, 0, 0, 1>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294781921][D:\PROGRAM FILES\TENCENT\QQ\QQ.EXE]  <TENCENT><0, 0, 0, 0>
    [D:\PROGRAM FILES\TENCENT\QQ\PYKER.DLL]  <飘云 http://www.pyqq.cn><飘云>
    [D:\PROGRAM FILES\TENCENT\QQ\IPSEARCHER.DLL]  <$><1.0.0.3>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\QQBASECLASSINDLL.DLL]  <,><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\QQHELPERDLL.DLL]  <$><1, 0, 0, 1>
    [D:\PROGRAM FILES\TENCENT\QQ\BASICCTRLDLL.DLL]  <Tencent><5, 0, 200, 160>
    [C:\WINDOWS\SYSTEM\DCIMAN32.DLL]  <Intel(R) Corp., Microsoft Corp.><4.03.1998>
    [C:\WINDOWS\SYSTEM\MACROMED\FLASH\FLASH8.OCX]  <Macromedia, Inc.><8,0,22,0>
    [D:\PROGRAM FILES\MAXTHON\SERVICES\REALTIME\REAL_TIME.DLL]  <$><1, 0, 0, 1>
    [C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WEB 文件夹\MSONSEXT.DLL]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294769617][D:\PROGRAM FILES\MAXTHON\MAXTHON.EXE]  <Maxthon International Ltd.><1, 5, 1, 39>
    [D:\PROGRAM FILES\MAXTHON\MAXZLIB.DLL]  < ><1, 0, 0, 2>
    [C:\WINDOWS\SYSTEM\DHCPCSVC.DLL]  <N/A><N/A>
    [D:\PROGRAM FILES\TENCENT\QQ\TIMPROXY.DLL]  <tencent><0, 3, 2, 4>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294657525][D:\PROGRAM FILES\TENCENT\QQ\TIMPLATFORM.EXE]  <tencent><0, 3, 1, 8>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
    [C:\PROGRAM FILES\EFFICIENT NETWORKS\ENTERNET 300\APP\RESENU.DLL]  <Efficient Networks, Inc.><1, 6, 0, 7>
[PID: 4294686577][C:\PROGRAM FILES\EFFICIENT NETWORKS\ENTERNET 300\APP\ENTERNET.EXE]  <N/A><N/A>
    [C:\PROGRAM FILES\EFFICIENT NETWORKS\ENTERNET 300\APP\DSLAPI32.DLL]  <Efficient Networks Inc.><1, 6, 0, 7>
    [C:\PROGRAM FILES\EFFICIENT NETWORKS\ENTERNET 300\APP\PACKETLOG.DLL]  <Efficient Networks, Inc.><1, 6, 0, 7>
    [C:\PROGRAM FILES\EFFICIENT NETWORKS\ENTERNET 300\APP\RESMSGENU.DLL]  <Efficient Networks, Inc.><1, 6, 0, 7>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
    [C:\PROGRAM FILES\MMSASSIST\MMSASS~1.DLL]  < ><1, 2, 0, 2>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294368841][C:\WINDOWS\RUNDLL32.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294289861][D:\PROGRAM FILES\TENCENT\QQ\QZONE\QZONE.EXE]  <腾讯公司><1, 1, 101, 25>
[PID: 4294247193][C:\WINDOWS\TEMP\MUM1\MUM1.EXE]  <N/A><N/A>
[PID: 4294304061][C:\WINDOWS\SYSTEM\PSTORES.EXE]  <Microsoft Corporation><5.00.1877.3>
    [C:\WINDOWS\SYSTEM\WNASPI32.DLL]  <Adaptec><1, 0, 0, 0>
    [C:\WINDOWS\SYSTEM\DCIMAN32.DLL]  <Intel(R) Corp., Microsoft Corp.><4.03.1998>
    [C:\WINDOWS\SYSTEM\MACROMED\FLASH\FLASH8.OCX]  <Macromedia, Inc.><8,0,22,0>
    [C:\WINDOWS\SYSTEM\NAVIHELPER.DLL]  <TODO: <公司名>><1.0.0.1>
    [C:\WINDOWS\SYSTEM\SHWASOBJ.DLL]  <北京兴华基业软件技术有限公司><1, 2, 0, 0>
    [C:\PROGRAM FILES\MMSASSIST\MMSASS~1.DLL]  < ><1, 2, 0, 2>
    [C:\WINDOWS\SYSTEM\IEHELPER_8900.DLL]  <Microsoft Corporation><1, 1, 0, 0>
    [D:\PROGRAM FILES\FLASHGET\JCCATCH.DLL]  <Amaze Soft><1, 1, 4, 0>
    [C:\PROGRAM FILES\YOK.COM\SUPERSEARCH\YOK_SUPERSEARCH.DLL]  <www.yok.com><2.0.1.5>
    [C:\WINDOWS\SYSTEM\DHCPCSVC.DLL]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\BAIDU\BAR\BAIDUBAR.DLL]  <$><2, 0, 2, 18>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294432897][C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE]  <Microsoft Corporation><6.00.2800.1106>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294281693][C:\PROGRAM FILES\WINRAR\WINRAR.EXE]  <N/A><N/A>
    [C:\WINDOWS\SYSTEM\WINABC.IME]  <PKUETI><5.22.216>
[PID: 4294235901][C:\WINDOWS\TEMP\RAR$EX00.041\SRENG.EXE]  <Smallfrogs Studio><2.0.12.350>

==================================
文件关联
.TXT  OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [C:\WINDOWS\winhlp32.exe %1]
.INI  OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.INF  OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.VBS  OK. [C:\WINDOWS\WScript.exe "%1" %*]
.JS  OK. [C:\WINDOWS\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

完毕

顶。。。。。。。。。。。。。。。。

楼主是98的机子吧，你把日志修改了，害我好找。
进入控制面版的添加删除程序中卸载MMSASS~1彩信
关闭所有浏览窗口以及一些不必要的程序
运行System Repair Engineer，使用“系统修复，浏览器加载项”来删除以下选项。
MMSAssist BHO]
{6671A431-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\MMSASS~1\MMSASS~1.DLL, >
MDEobject Class]
{4136C3F6-7636-49bf-A122-D4DA53B1ADDF} <C:\WINDOWS\SYSTEM\SHWASOBJ.DLL, 北京兴华基业软件技术有限公司>
NaviHelperObj Class]
{3E422F49-1566-40D3-B43D-077EF739AC32} <C:\WINDOWS\SYSTEM\NAVIHELPER.DLL, TODO: <公司名>>
运行System Repair Engineer，使用“启动项目，注册表”来删除以下选项。
（如果在注册表里无法识别那一下，可以选中一项后，点“编辑”这样会有很明细的路径）
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<NSIS.Library.RegTool.v2><"C:\Program Files\MMSAssist\NSIS.Library.RegTool.v2.0.exe" /S>
双击我的电脑--工具---文件夹选项--查看--单击选取"显示隐藏文件或文件夹"清除"隐藏受保护的操作系统文件（推荐）"复选框。在提示您确定更改时，单击“是”
删除
<C:\WINDOWS\SYSTEM\NAVIHELPER.DLL
C:\WINDOWS\SYSTEM\SHWASOBJ.DLL
C:\Program Files\MMSAssist