瑞星卡卡安全论坛

我的电脑被这个病毒浸入，现在卡卡无法将其杀除，请问卡卡真就杀不了了？应该怎么处理呢？请帮忙，谢谢！

下载 System Repair Engineer，
http://www.kztechs.com/sreng/sreng2.zip
1 解压缩sreng2.zip
2 运行SREng.exe
3 智能扫描=》扫描=》保存报告
4 把日志中的报告完整拷贝贴上来，不要修改

谢谢～！不过，最后一句，贴上来？贴上来论坛这里？？还是？？不好意思。。。

2006-12-20,18:43:10

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional  (Build 2600)
- Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Runing Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File

Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <msnmsgr><"C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [(Verified)Microsoft Corporation]
    <Skype><"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized>  [(Verified)N/A]
    <Spyware Doctor><"C:\Program Files\Spyware Doctor\swdoctor.exe" /Q>  [(Verified)PC Tools Research Pty Ltd]
    <Mozilla Quick Launch><"C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo>  [Mozilla, Netscape]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Corporation]
    <imjpmig><C:\Program Files\Common Files\Microsoft Shared\IME\IMJP\imjpmig.exe /RemAdvDef /AIMEREG /Migration /SetPreload>  [Microsoft Corporation]
    <MsmqIntCert><regsvr32 /s mqrt.dll>  [N/A]
    <NAV Agent><C:\Program Files\Norton SystemWorks\Norton AntiVirus\NAVAPW32.exe>  [Symantec Corporation]
    <csrss><C:\WINDOWS\SYSTEM32\dllcache\csrss.exe>  [(Verified)Microsoft Corporation]
    <Symantec NetDriver Monitor><C:\PROGRA~1\SYMNET~1\SNDMon.exe>  [(Verified)Symantec Corporation]
    <ccApp><C:\Program Files\Common Files\Symantec Shared\ccApp.exe>  [(Verified)Symantec Corporation]
    <ccRegVfy><C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe>  [(Verified)Symantec Corporation]
    <GhostStartTrayApp><C:\Program Files\Norton SystemWorks\Norton Ghost\GhostStartTrayApp.exe>  [Symantec Corporation]
    <Picasa Media Detector><C:\Program Files\Picasa2\PicasaMediaDetector.exe>  [Google Inc.]
    <SSC_UserPrompt><C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe>  [(Verified)Symantec Corporation]
    <IntelliPoint><"C:\Program Files\Microsoft IntelliPoint\point32.exe">  [Microsoft Corporation]
    <Google Desktop Search><"C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup>  [Google]
    <SystemTray><SysTray.Exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL>  [Google]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\System32\僒僀僄~1.SCR>  [Microsoft Corporation]

==================================
Startup Folders
[ATOK14娐嫬堏峴巟墖掳賋
  <C:\WINDOWS\All Users\嚼澳 移\踢鄹拮裓嚼澳悲踢\ATOK14娐嫬堏峴巟墖掳?LNK --> C:\JUST\ATOK14\ATOK14PC.EXE [姅幃夛幮僕儍僗僩僔僗僥儉]><N>
[Microsoft Office]
  <C:\WINDOWS\All Users\嚼澳 移\踢鄹拮裓嚼澳悲踢\Microsoft Office.lnk --> C:\PROGRA~1\MICROS~1\Office10\OSA.EXE [Microsoft Corporation]><N>
[JS覆话撂Р?帺摦峏怴]
  <C:\WINDOWS\All Users\嚼澳 移\踢鄹拮裓嚼澳悲踢\JS覆话撂Р?帺摦峏怴.LNK --> C:\JUST\JSLIB32\JSQSF32.EXE [姅幃夛幮僕儍僗僩僔僗僥儉]><N>
[JS覆纵羃
  <C:\WINDOWS\All Users\嚼澳 移\踢鄹拮裓嚼澳悲踢\JS覆纵?LNK --> C:\JUST\JSLIB32\JSQLNCH.EXE [姅幃夛幮僕儍僗僩僔僗僥儉]><N>
[QuickShelf]
  <C:\WINDOWS\All Users\嚼澳 移\踢鄹拮裓嚼澳悲踢\QuickShelf.lnk --> C:\PROGRA~1\MICROS~2\MICROS~1.0\qshelf.exe [Microsoft Corporation]><N>
[Adobe Reader Speed Launch]
  <C:\WINDOWS\All Users\嚼澳 移\踢鄹拮裓嚼澳悲踢\Adobe Reader Speed Launch.lnk --> C:\PROGRA~1\Adobe\ACROBA~2.0\Reader\READER~1.EXE [Adobe Systems Incorporated]><N>
[QuickShelf]
  <C:\WINDOWS\嚼澳 移\踢鄹拮裓嚼澳悲踢\QuickShelf.lnk --> C:\PROGRA~1\MICROS~2\MICROS~1.0\qshelf.exe [Microsoft Corporation]><N>

==================================
Services
[ASP.NET State Service / aspnet_state]
  <C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Symantec Event Manager / ccEvtMgr]
  <C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe><Symantec Corporation>
[Symantec Password Validation Service / ccPwdSvc]
  <C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe><Symantec Corporation>
[GhostStartService / GhostStartService]
  <C:\PROGRA~1\NORTON~1\NORTON~2\GHOSTS~2.EXE><Symantec Corporation>
[Norton AntiVirus Auto Protect Service / navapsvc]
  <"C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe"><Symantec Corporation>
[Norton Unerase Protection / NProtectService]
  <"C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE"><Symantec Corporation>
[ScriptBlocking Service / SBService]
  <C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe><Symantec Corporation>
[PC Tools Spyware Doctor / SDhelper]
  <C:\Program Files\Spyware Doctor\sdhelp.exe><PC Tools Research Pty Ltd>
[Symantec Network Drivers Service / SNDSrvc]
  <C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe><N/A>
[Speed Disk service / Speed Disk service]
  <C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe><Symantec Corporation>
[SymWMI Service / SymWSC]
  <C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe><Symantec Corporation>

==================================
Drivers
[ESS Allegro Audio Driver (WDM) / allegro]
  <system32\drivers\es198x.sys><ESS Technology, Inc.>
[Aspi32 / Aspi32]
  <C:\WINDOWS\SYSTEM32\DRIVERS\Aspi32.SYS><Adaptec>
[DDC/CI Monitor / DDCCI]
  <System32\DRIVERS\iodddcci.sys><I-O DATA DEVICE,INC.>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS]
  <System32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[GhostPciScanner / GhPciScan]
  <\??\C:\Program Files\Norton SystemWorks\Norton Ghost\ghpciscan.sys><Symantec Corporation>
[File Security Kernel Anti-Spyware Driver / ikhfile]
  <system32\drivers\ikhfile.sys><PCTools Research Pty Ltd.>
[Kernel Anti-Spyware Driver / ikhlayer]
  <system32\drivers\ikhlayer.sys><PCTools Research Pty Ltd.>
[Logitech USB Receiver device driver / LHidUsb]
  <system32\drivers\LHidUsb.Sys><Logitech, Inc.>
[NAVENG / NAVENG]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061213.022\NAVENG.Sys><Symantec Corporation>
[NAVEX15 / NAVEX15]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061213.022\NavEx15.Sys><Symantec Corporation>
[Norton Unerase Protection Driver / NPDriver]
  <\??\C:\WINDOWS\System32\Drivers\NPDRIVER.SYS><Symantec Corporation>
[nv4 / nv4]
  <System32\DRIVERS\nv4.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[RAWESR / RAWESR]
  <\??\E:\Release\RAWESR.SYS><N/A>
[Realtek RTL8029(AS)-based PCI Ethernet Adapter NT Driver / rtl8029]
  <System32\DRIVERS\RTL8029.SYS><Realtek Semiconductor Corporation>
[SAVRT / SAVRT]
  <\??\C:\WINDOWS\System32\Drivers\SAVRT.SYS><Symantec Corporation>
[SAVRTPEL / SAVRTPEL]
  <\??\C:\WINDOWS\System32\Drivers\SAVRTPEL.SYS><Symantec Corporation>
[Secdrv / Secdrv]
  <System32\DRIVERS\secdrv.sys><N/A>
[SiSV / SiSV]
  <System32\DRIVERS\SiSV.sys><Silicon Integrated Systems Corporation>
[symc8xx / symc8xx]
  <\SystemRoot\System32\DRIVERS\symc8xx.sys><LSI Logic>
[SYMDNS / SYMDNS]
  <\??\C:\WINDOWS\System32\Drivers\SYMDNS.SYS><Symantec Corporation>
[SymEvent / SymEvent]
  <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
[SYMFW / SYMFW]
  <\??\C:\WINDOWS\System32\Drivers\SYMFW.SYS><Symantec Corporation>
[SYMIDS / SYMIDS]
  <\??\C:\WINDOWS\System32\Drivers\SYMIDS.SYS><Symantec Corporation>
[SYMIDSCO / SYMIDSCO]
  <\??\C:\WINDOWS\System32\Drivers\SYMIDSCO.SYS><Symantec Corporation>
[SYMNDIS / SYMNDIS]
  <\??\C:\WINDOWS\System32\Drivers\SYMNDIS.SYS><Symantec Corporation>
[SYMREDRV / SYMREDRV]
  <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
[SYMTDI / SYMTDI]
  <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>