我爱的人在天堂 - 2008-4-1 1:28:00
我的电脑今天非常的慢,CPU显示100%,其中,有2个文件显示有2个,一个是IEXPLORE.EXE
还有一个是SVCHOST.EXE。超级兔子提示我中了磁碟机病毒。麻烦各位高手指点指点,具体收集结果见附件:
[用户系统信息]Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)附件:
103406520084111623.txt
天月来了 - 2008-4-1 10:39:00
==================================
服务
[CCVO / CCVOCServer][Stopped/Auto Start]
<C:\WINNT\CCVO.exe><Microsoft Corporation>
[Computer Management / Computer Management][Running/Auto Start]
<C:\WINNT\system32\34503592572.exe><N/A>
[csnas67cce_build1129 / csnas6][Running/Auto Start]
<C:\WINNT\system32\csnas><N/A>
[iis Admin / iis Admin][Stopped/Auto Start]
<C:\WINNT\system32\inetlnfo.exe><N/A>
[microsoft frontpage / microsoft frontpage][Running/Auto Start]
<C:\Program Files\Internet Explorer\Custom\custom.exe><N/A>
[Rem Procedure Call (RPCS) / RpcServe][Running/Auto Start]
<C:\WINNT\system32\SVCHOST.EXE -k RpcServe-->%SystemRoot%\System32\sabunu.dll><N/A>
[Software Licensing Service / Slsvc][Stopped/Auto Start]
<C:\WINNT\system32\slsvc.exe><N/A>
[StremII Service / StremII][Stopped/Auto Start]
<C:\WINNT\system32\zh-sc\smss.exe><N/A>
[User Privilage Service / UPService][Stopped/Auto Start]
<C:\WINNT\system32\drivers\zh-en\smss.exe><N/A>
[web和ftp创建网络连接 / web和ftp创建网络连接][Stopped/Auto Start]
<C:\WINNT\system32\webgin.exe><N/A>
[Windows he1p / Windows he1p ][Stopped/Auto Start]
<><N/A>
[Windows heIp / Windows heIp ][Stopped/Auto Start]
<><N/A>
[Windows help / Windows help ][Stopped/Auto Start]
<><N/A>
[netsr / Windows Mangent Instruments][Stopped/Auto Start]
<C:\WINNT\pntuer.exe><N/A>
==================================
驱动程序
[yguhswwl / yguhswwl][Running/Auto Start]
<\??\C:\WINNT\system32\DRIVERS\kslfug.SYS><N/A>
==================================
正在运行的进程
[PID: 624 / SYSTEM][C:\WINNT\system32\34503592572.exe] [N/A, ]
[c:\winnt\system32\sabunu.dll] [N/A, ]
==================================
隐藏进程
[668] C:\WINNT\system32\svchos
[788] C:\Program Files\Internet Explorer\Custom\custom.exe
© 2000 - 2026 Rising Corp. Ltd.