瑞星卡卡安全论坛

Logfile of HijackThis v1.99.1 Scan saved at 8:20:19, on 2006-8-3 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE E:\完美\完美卸载V2006\AntiVirusWmSrv.exe
C:\WINDOWS\system32\vfp02.exe
C:\WINDOWS\system32\downs.exe
C:\WINDOWS\system32\downfile.exe
C:\Program Files\MiniPPGou\MiniPPGou.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\KVFW\kvfw.exe
C:\WINDOWS\mcUpdate.exe
C:\PROGRA~1\KV2005\KVSrvXP.exe
C:\Program Files\KV2005\kvwsc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe H:\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
R3 - URLSearchHook: (no name) - {982CB676-38F0-4D9A-BB72-D9371ABE876E} - (no file)
R3 - URLSearchHook: (no name) - {BAB1AC41-6FF7-4F2E-A04E-5C592CCFEA7D} - (no file)
O2 - BHO: (no name) - {00014B58-338A-45F2-81E2-6A86F27399B7} - C:\PROGRA~1\INTERN~1\PLUGINS\BOBOHE~1.DLL
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v14.dll
O2 - BHO: internet explorer helper - {02C9B9AB-6372-46C5-B356-773FAF3B6B1E} -C:\WINDOWS\fonts\msshapi.dll
O2 - BHO: (no name) - {046167AA-53C2-4576-B362-291D9E852269} - C:\WINDOWS\system32\BBDown.dll
O2 - BHO: MonitorURL Class - {08A312BB-5409-49FC-9347-54BB7D069AC6} - C:\PROGRA~1\DESKAD~1\deskipn.dll (file missing)
O2 - BHO: RichSoft Internet Explorer Helper - {0E2F5DD8-5B0D-438F-A618-B0403F62636A} -C:\WINDOWS\system32\reshtm.dll
O2 - BHO: IE Address Browser Helper - {2A0176FE-008B-4706-90F5-BBA532A49731}-C:\Program Files\SearchNet\SNHpr.dll
O2 - BHO: Adobe-Plugins Manager - {2AFA7CEC-26D9-4256-AF57-497A13180BA5} - C:\WINDOWS\System32\Agm.dll (file missing)
O2 - BHO: CAISHOW TOOLBAR - {3AF40CB8-B3BA-4E2D-8968-4BF8DB172997} -C:\Program Files\CaiShow Tech\CaiShow\BrowerHelper.dll (file missing)
O2 - BHO: Deliverer Class - {3E290290-1728-4C1E-863A-AA12526333F6} - C:\WINDOWS\system32\ControlPanel.{21EC2020-3AEA-1069-A2DD-08002B30309d}\ControlPanel\Addeliverer.dll
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - (no file)
O2 - BHO: BHOImp Class - {70AFF2CB-9DA2-499C-8D15-900729FCE83D} - C:\WINDOWS\system32\YHBO.dll
O2 - BHO: MSHlper Class - {721E6521-4CAD-4A8D-A7F1-4E230B31EF19} -C:\WINDOWS\system32\MSHLP.DLL
O2 - BHO: CpapView Class - {77962960-536E-47EC-9DDB-52651519705F} -C:\WINDOWS\system32\Rundl132.dll
O2 - BHO: BrowseHelper Class - {80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} -C:\Program Files\KV2005\KvShell.dll
O2 - BHO: AlxTBK - {832C0563-0820-4fef-83D8-418261DBC233} - c:\WINDOWS\system32\popkiller.dll
O2 - BHO: Router Video 40 - {8465D755-AFE0-40ef-BC5E-2290D2C1F31F} -C:\WINDOWS\System32\rv40.dll (file missing)
O2 - BHO: Mini PPGou BHO - {92FB5F8F-8254-4978-9C50-03D9B0405062} - C:\PROGRA~1\MINIPP~1\MINIPP~1.DLL
O2 - BHO: (no name) - {944864A5-3916-46E2-96A9-A2E84F3F1208} - (no file)
O2 - BHO: (no name) - {9593496E-F7B8-49D5-ABD2-74A71335D26E} - C:\PROGRA~1\MYAPPL~1\IEBHO.dll
O2 - BHO: NewWeb Controller - {9ACEEE31-1440-471B-AA46-72B061FE7D61} - (no file)
O2 - BHO: IEhlprObj Class - {A3803141-3CF5-4D66-B7EA-8D2674FE152C} - C:\WINDOWS\stdie.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: OsbornTech Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} -C:\WINDOWS\system32\mshlp.dll
O2 - BHO: IEHlprObj Class - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - C:\WINDOWS\system32\mshlp.dll
O2 - BHO: QuickBtn - {D1BB7CF4-4463-4e91-88D7-ECC3CE0A13B7} -C:\Program Files\CoolWebsite\QuickLink.dll (file missing)
O2 - BHO: XcfYogra Class - {D99A97A0-A4B9-A542-B1AD-76707CEA4198} - (no file)
O2 - BHO: IwvZrswr Class - {DEB576E1-0A7C-4935-CA35-A1087DF1321D} - (no file)
O2 - BHO: internet explorer helper - {F7911E65-B01C-4A58-AEC7-53085ECA70A5} -C:\WINDOWS\system32\mshlink.dll
O3 - Toolbar: 金山毒霸 - {A9BE2902-C447-420A-BB7F-A5DE921E6138} - C:\KAV2003\KAIEPlus.DLL
O3 - Toolbar: 江民杀毒工具栏 - {B5A34A93-D538-43A7-8371-864CB6148D12} - C:\Program Files\KV2005\KvShell.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: (no name) - {B580CF65-E151-49C3-B73F-70B13FCA8E86} - (no file)
O3 - Toolbar: Alexa - {3CEFF6CD-6F08-4e4d-BCCD-FF7415288C3B} - C:\WINDOWS\system32\SHDOCVW.DLL
O4 - HKLM\..\Run: [IMJPMIG8.1] ; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [miniserver] C:\WINDOWS\system32\com\miniserver.exe
O4 - HKLM\..\Run: [MSService_v1.0] C:\WINDOWS\system32\vfp02.exe
O4 - HKLM\..\Run: [hcd4wm] RunDll32 "C:\WINDOWS\Downlo~1\zdkofo.dll",Run
O4 - HKLM\..\Run: [Winrun] C:\WINDOWS\bqq.exe
O4 - HKLM\..\Run: [rundll32] C:\WINDOWS\system32\IEXPLORER.EXE
O4 - HKLM\..\Run: [downs] C:\WINDOWS\system32\downs.exe
O4 - HKLM\..\Run: [CnsMHlp.exe] C:\WINDOWS\Downloaded Program files\CnsMHlp.exe O4 - HKLM\..\Run: [downfile] C:\WINDOWS\system32\downfile.exe
O4 - HKLM\..\Run: [MiniPPGou.exe] C:\Program Files\MiniPPGou\MiniPPGou.exe
O4 - HKLM\..\Run: [PowerOnScan] E:\完美\完美卸载V2006\CleanTips.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [KVFW] C:\Program Files\KVFW\kvfw.exe -silent
O4 - HKCU\..\Run: [KvXP] C:\Program Files\KV2005\KvXP.kxp /ScanBoot
O4 - HKCU\..\Run: [caishowmanage]C:\Program Files\CaiShow Tech\CaiShow\UpdateManager.EXE
O4 - HKCU\..\Run: [msq] C:\Program Files\Internet Explorer\PLUGINS\101344.exe
O4 - HKCU\..\Run: [LetsCool] C:\Program Files\LetsCool\LetsCool.exe
O4 - HKCU\..\Run: [MyShares] c:\program Files\易虎\MyShares.exe /tray
O4 - HKCU\..\Run: [msnnt]C:\WINDOWS\mcUpdate.exe
O4 - Startup: 地址栏搜索.lnk = C:\Documents and Settings\klhyyyyj\Local Settings\Temp\ebe.exe
O4 - Startup: 腾讯QQ.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &RSDN Search - res://C:\Program Files\ScanToolbar\ScanBar.dll/GoRSDN.dll.htm
O8 - Extra context menu item: &使用迅雷下载 - D:\我的文档\孙兴涛\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\我的文档\孙兴涛\getallurl.htm
O8 - Extra context menu item: &使用迷你屁屁狗[PPGou]加速下载 - C:\Program Files\MiniPPGou\geturl.htm
O8 - Extra context menu item: >>彩信发送<< - res://C:\Program Files\MMSAssist\Mmsass~1.dll/mms.htm
O8 - Extra context menu item: Google 搜索(&G) - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm O8 - E

【回复“天蝎豆豆”的帖子】

日志怎么会这么乱  偶眼睛本来就不好 

好了``

O4 - HKLM\..\Run: [miniserver] C:\WINDOWS\system32\com\miniserver.exe
O4 - HKLM\..\Run: [MSService_v1.0] C:\WINDOWS\system32\vfp02.exe
O4 - HKLM\..\Run: [hcd4wm] RunDll32 "C:\WINDOWS\Downlo~1\zdkofo.dll",Run
O4 - HKLM\..\Run: [Winrun] C:\WINDOWS\bqq.exe
O4 - HKLM\..\Run: [rundll32] C:\WINDOWS\system32\IEXPLORER.EXE
O4 - HKLM\..\Run: [downs] C:\WINDOWS\system32\downs.exe
O4 - HKLM\..\Run: [CnsMHlp.exe] C:\WINDOWS\Downloaded Program files\CnsMHlp.exe
O4 - HKLM\..\Run: [downfile] C:\WINDOWS\system32\downfile.exe
O4 - HKCU\..\Run: [msq] C:\Program Files\Internet Explorer\PLUGINS\101344.exe
O4 - Startup: 地址栏搜索.lnk = C:\Documents and Settings\klhyyyyj\Local Settings\Temp\ebe.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
修复
删除
C:\WINDOWS\system32\com\miniserver.exe
C:\WINDOWS\system32\vfp02.exe
C:\WINDOWS\Downlo~1\zdkofo.dll
C:\WINDOWS\bqq.exe
C:\WINDOWS\system32\IEXPLORER.EXE
C:\WINDOWS\system32\downs.exe
C:\WINDOWS\Downloaded Program files\CnsMHlp.exe
C:\WINDOWS\system32\downfile.exe
C:\Program Files\Internet Explorer\PLUGINS\101344.exe
C:\Documents and Settings\klhyyyyj\Local Settings\Temp\ebe.exe


把所有02项的都修复后删除


这个日志比较汗

清空internet临时文件 升级杀软（怎么还用江民2005） 进入安全模式扫读


日志不全  还有一部分呢

不是我用的```汗```

谢谢了``
一会她就会帖出来了``

下半部分先贴出来 偶要下了 等下看有没有人回 没人回偶明天帮你看

好的谢了```

有劳个位了！！！
Logfile of HijackThis v1.99.1
Scan saved at 8:20:19, on 2006-8-3
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
E:\完美\完美卸载V2006\AntiVirusWmSrv.exe
C:\WINDOWS\system32\vfp02.exe
C:\WINDOWS\system32\downs.exe
C:\WINDOWS\system32\downfile.exe
C:\Program Files\MiniPPGou\MiniPPGou.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\KVFW\kvfw.exe
C:\WINDOWS\mcUpdate.exe
C:\PROGRA~1\KV2005\KVSrvXP.exe
C:\Program Files\KV2005\kvwsc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
H:\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R3 - URLSearchHook: (no name) - {982CB676-38F0-4D9A-BB72-D9371ABE876E} - (no file)
R3 - URLSearchHook: (no name) - {BAB1AC41-6FF7-4F2E-A04E-5C592CCFEA7D} - (no file)
O2 - BHO: (no name) - {00014B58-338A-45F2-81E2-6A86F27399B7} - C:\PROGRA~1\INTERN~1\PLUGINS\BOBOHE~1.DLL
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v14.dll
O2 - BHO: internet explorer helper - {02C9B9AB-6372-46C5-B356-773FAF3B6B1E} - C:\WINDOWS\fonts\msshapi.dll
O2 - BHO: (no name) - {046167AA-53C2-4576-B362-291D9E852269} - C:\WINDOWS\system32\BBDown.dll
O2 - BHO: MonitorURL Class - {08A312BB-5409-49FC-9347-54BB7D069AC6} - C:\PROGRA~1\DESKAD~1\deskipn.dll (file missing)
O2 - BHO: RichSoft Internet Explorer Helper - {0E2F5DD8-5B0D-438F-A618-B0403F62636A} - C:\WINDOWS\system32\reshtm.dll
O2 - BHO: IE Address Browser Helper - {2A0176FE-008B-4706-90F5-BBA532A49731} - C:\Program Files\SearchNet\SNHpr.dll
O2 - BHO: Adobe-Plugins Manager - {2AFA7CEC-26D9-4256-AF57-497A13180BA5} - C:\WINDOWS\System32\Agm.dll (file missing)
O2 - BHO: CAISHOW TOOLBAR - {3AF40CB8-B3BA-4E2D-8968-4BF8DB172997} - C:\Program Files\CaiShow Tech\CaiShow\BrowerHelper.dll (file missing)
O2 - BHO: Deliverer Class - {3E290290-1728-4C1E-863A-AA12526333F6} - C:\WINDOWS\system32\ControlPanel.{21EC2020-3AEA-1069-A2DD-08002B30309d}\ControlPanel\Addeliverer.dll
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - (no file)
O2 - BHO: BHOImp Class - {70AFF2CB-9DA2-499C-8D15-900729FCE83D} - C:\WINDOWS\system32\YHBO.dll
O2 - BHO: MSHlper Class - {721E6521-4CAD-4A8D-A7F1-4E230B31EF19} - C:\WINDOWS\system32\MSHLP.DLL
O2 - BHO: CpapView Class - {77962960-536E-47EC-9DDB-52651519705F} - C:\WINDOWS\system32\Rundl132.dll
O2 - BHO: BrowseHelper Class - {80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} - C:\Program Files\KV2005\KvShell.dll
O2 - BHO: AlxTBK - {832C0563-0820-4fef-83D8-418261DBC233} - C:\WINDOWS\system32\popkiller.dll
O2 - BHO: Router Video 40 - {8465D755-AFE0-40ef-BC5E-2290D2C1F31F} - C:\WINDOWS\System32\rv40.dll (file missing)
O2 - BHO: Mini PPGou BHO - {92FB5F8F-8254-4978-9C50-03D9B0405062} - C:\PROGRA~1\MINIPP~1\MINIPP~1.DLL
O2 - BHO: (no name) - {944864A5-3916-46E2-96A9-A2E84F3F1208} - (no file)
O2 - BHO: (no name) - {9593496E-F7B8-49D5-ABD2-74A71335D26E} - C:\PROGRA~1\MYAPPL~1\IEBHO.dll
O2 - BHO: NewWeb Controller - {9ACEEE31-1440-471B-AA46-72B061FE7D61} - (no file)
O2 - BHO: IEhlprObj Class - {A3803141-3CF5-4D66-B7EA-8D2674FE152C} - C:\WINDOWS\stdie.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: OsbornTech Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - C:\WINDOWS\system32\mshlp.dll
O2 - BHO: IEHlprObj Class - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - C:\WINDOWS\system32\mshlp.dll
O2 - BHO: QuickBtn - {D1BB7CF4-4463-4e91-88D7-ECC3CE0A13B7} - C:\Program Files\CoolWebsite\QuickLink.dll (file missing)
O2 - BHO: XcfYogra Class - {D99A97A0-A4B9-A542-B1AD-76707CEA4198} - (no file)
O2 - BHO: IwvZrswr Class - {DEB576E1-0A7C-4935-CA35-A1087DF1321D} - (no file)
O2 - BHO: internet explorer helper - {F7911E65-B01C-4A58-AEC7-53085ECA70A5} - C:\WINDOWS\system32\mshlink.dll
O3 - Toolbar: 金山毒霸 - {A9BE2902-C447-420A-BB7F-A5DE921E6138} - C:\KAV2003\KAIEPlus.DLL
O3 - Toolbar: 江民杀毒工具栏 - {B5A34A93-D538-43A7-8371-864CB6148D12} - C:\Program Files\KV2005\KvShell.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: (no name) - {B580CF65-E151-49C3-B73F-70B13FCA8E86} - (no file)
O3 - Toolbar: Alexa - {3CEFF6CD-6F08-4e4d-BCCD-FF7415288C3B} - C:\WINDOWS\system32\SHDOCVW.DLL
O4 - HKLM\..\Run: [IMJPMIG8.1] ; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [miniserver] C:\WINDOWS\system32\com\miniserver.exe
O4 - HKLM\..\Run: [MSService_v1.0] C:\WINDOWS\system32\vfp02.exe
O4 - HKLM\..\Run: [hcd4wm] RunDll32 "C:\WINDOWS\Downlo~1\zdkofo.dll",Run
O4 - HKLM\..\Run: [Winrun] C:\WINDOWS\bqq.exe
O4 - HKLM\..\Run: [rundll32] C:\WINDOWS\system32\IEXPLORER.EXE
O4 - HKLM\..\Run: [downs] C:\WINDOWS\system32\downs.exe
O4 - HKLM\..\Run: [CnsMHlp.exe] C:\WINDOWS\Downloaded Program files\CnsMHlp.exe
O4 - HKLM\..\Run: [downfile] C:\WINDOWS\system32\downfile.exe
O4 - HKLM\..\Run: [MiniPPGou.exe] C:\Program Files\MiniPPGou\MiniPPGou.exe
O4 - HKLM\..\Run: [PowerOnScan] E:\完美\完美卸载V2006\CleanTips.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [KVFW] C:\Program Files\KVFW\kvfw.exe -silent
O4 - HKCU\..\Run: [KvXP] C:\Program Files\KV2005\KvXP.kxp /ScanBoot
O4 - HKCU\..\Run: [caishowmanage] C:\Program Files\CaiShow Tech\CaiShow\UpdateManager.EXE
O4 - HKCU\..\Run: [msq] C:\Program Files\Internet Explorer\PLUGINS\101344.exe
O4 - HKCU\..\Run: [LetsCool] C:\Program Files\LetsCool\LetsCool.exe
O4 - HKCU\..\Run: [MyShares] c:\program Files\易虎\MyShares.exe /tray
O4 - HKCU\..\Run: [msnnt] C:\WINDOWS\mcUpdate.exe
O4 - Startup: 地址栏搜索.lnk = C:\Documents and Settings\klhyyyyj\Local Settings\Temp\ebe.exe
O4 - Startup: 腾讯QQ.lnk = ?
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &RSDN Search - res://C:\Program Files\ScanToolbar\ScanBar.dll/GoRSDN.dll.htm
O8 - Extra context menu item: &使用迅雷下载 - D:\我的文档\孙兴涛\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\我的文档\孙兴涛\getallurl.htm
O8 - Extra context menu item: &使用迷你屁屁狗[PPGou]加速下载 - C:\Program Files\MiniPPGou\geturl.htm
O8 - Extra context menu item: >>彩信发送<< - res://C:\Program Files\MMSAssist\Mmsass~1.dll/mms.htm
O8 - Extra context menu item: Google 搜索(&G) - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 反向链接 - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 添加到雅虎订阅(&Y) - res://C:\Program Files\Yahoo!\Assistant\Assist\yrss.dll/YRSSMENUEXT
O8 - Extra context menu item: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O8 - Extra context menu item: 用炫彩图铃发送该图片 - C:\Program Files\CaiShow Tech\CaiShow\SendMMS.htm
O8 - Extra context menu item: 类似网页 - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: 缓存的网页快照 - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: 翻译英文字词(&T) - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: 雅虎搜索 - res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246
O9 - Extra button: 金山毒霸网站 - {1ff190e7-38ab-423e-b59c-4d166c2ea5f1} - url:http://www.duba.net (file missing)
O9 - Extra button: kele8 - {84920E5F-3788-49cd-A274-E365578DF174} - http://www.kele8.com/ (file missing)
O9 - Extra 'Tools' menuitem: kele8 - {84920E5F-3788-49cd-A274-E365578DF174} - http://www.kele8.com/ (file missing)
O9 - Extra button: 金山卓越 - {8DE0FCD4-5EB5-11D3-AD25-00002100131B} - url:http://www.joyo.com (file missing)
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE (file missing)
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE (file missing)
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\upfdll.dll' missing
O16 - DPF: {5932517A-3326-4439-A708-1C98EDB5C549} (Downloader Class) - file://C:\Documents and Settings\All Users\Application Data\Share Helper\Cast\GGS\d439fb414a\js\iMopDl.cab
O16 - DPF: {68B1C2FF-CF42-45F9-ADAC-9710F28C965D} (DVSFlash Class) - http://www.imhero.com/cabs/DVSFlash.CAB
O21 - SSODL: SysTime - {724C75F1-B757-408D-A50A-4CF99DA35D73} - C:\PROGRA~1\winkld\winkld.dll (file missing)
O21 - SSODL: stdup - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - (no file)
O21 - SSODL: Vision - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - (no file)
O23 - Service: AntiVirusWmSrv - Unknown owner - E:\完美\完美卸载V2006\AntiVirusWmSrv.exe (file missing)
O23 - Service: KVSrvXP - JiangMin New Tech Ltd. - C:\PROGRA~1\KV2005\KVSrvXP.exe
O23 - Service: KVWSC - Jiangmin Co - C:\Program Files\KV2005\kvwsc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Windows Audio Server - Unknown owner - C:\WINDOWS\system32\drwatsn.exe

修复：O4 - HKCU\..\Run: [msnnt] C:\WINDOWS\mcUpdate.exe
重启删除：C:\WINDOWS\mcUpdate.exe


请下载LSPFix和WinsockXPFix这两个软件，详细看置版
用ispfix修复该项后,电脑无法打开网页,QQ也出现登陆问题,最后用winsockxpfix进行修复...