【回复“段飞龙”的帖子】以前用时就一直很好，自从升完级就不能用，拔条内存就可以用，怎么解释？硬盘全格了，系统重装的，也没查出病毒，怎么解释？ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

我的机器是今天晚上升级以后"绿伞"就变"黄伞"了
请楼主打救一下
下面是我的扫描记录ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

Logfile of HijackThis v1.99.1
Scan saved at 23:59:09, on 2006-7-21
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\rising\rfw\RfwMain.exe
C:\BlueSoleil\BTNtService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Rising\Rav\CCenter.exe
C:\Rising\Rav\RavTask.exe
C:\Rising\Rav\RavMon.exe
C:\Rising\Rav\Ravmond.exe
C:\Rising\Rav\RavStub.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe
C:\WINDOWS\system32\capp.exe
C:\Program Files\VVSN\VVSN.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\tools\WinRAR\WinRAR.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.907\HijackThis.exeÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

R3 - URLSearchHook: (no name) - {BB936323-19FA-4521-BA29-ECA6A121BC78} - (no file)
R3 - URLSearchHook: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
R3 - URLSearchHook: QQ Search Hook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\AdPlus\IEHelp.dll (file missing)
R3 - URLSearchHook: (no name) - {1AD860A7-68E6-425D-B2D7-469A80865FEA} - C:\WINDOWS\system32\Cgiwp.dll (file missing)
R3 - URLSearchHook: (no name) - {A9FC3AD8-6B4B-4775-ABC7-4696AA900593} - C:\WINDOWS\system32\Usvuf.dll (file missing)
R3 - URLSearchHook: (no name) - {674F6ACA-2811-4DCF-A96A-FBBD1201301B} - C:\WINDOWS\system32\Obcrq.dll (file missing)
R3 - URLSearchHook: (no name) - {FC464433-746B-45EB-8ED2-5037388C20A2} - C:\WINDOWS\system32\Uunna.dll (file missing)
R3 - URLSearchHook: (no name) - {225A955A-94AF-4591-8046-5048C9B74FB9} - C:\WINDOWS\system32\Gnvqv.dll (file missing)
R3 - URLSearchHook: (no name) - {9E426C3A-F198-481E-BEBD-8AF89B95CC8C} - C:\WINDOWS\system32\Tbnf.dll (file missing)
R3 - URLSearchHook: (no name) - {A8AA4B12-97D5-4C38-A4A0-3E9230018929} - C:\WINDOWS\system32\Ngrsr.dll (file missing)
R3 - URLSearchHook: (no name) - {3D460063-586B-4F8C-876B-2CC338275961} - C:\WINDOWS\system32\Skscl.dll (file missing)
R3 - URLSearchHook: (no name) - {887CCF33-8996-401C-9C23-574DBED7BF53} - C:\WINDOWS\system32\Qqglwd.dll (file missing)
R3 - URLSearchHook: (no name) - {D4E1D6AD-8C51-4047-B43E-49DEAB01AD5B} - C:\WINDOWS\system32\Dmnh.dll (file missing)
R3 - URLSearchHook: (no name) - {0FF9D078-5AD0-435B-8D91-4420B3BBF70A} - C:\WINDOWS\system32\Vswvxv.dll (file missing)
R3 - URLSearchHook: (no name) - {2E69842B-BAFE-46AA-B27C-5A551698F5A4} - C:\WINDOWS\system32\Ojfc.dll (file missing)
R3 - URLSearchHook: (no name) - {4F6A5C27-5A46-4C89-B8ED-B45AA509DAF9} - C:\WINDOWS\system32\Leuvh.dll (file missing)
R3 - URLSearchHook: (no name) - {802CC551-D86A-4C77-8614-C4645FF4B7E5} - C:\WINDOWS\system32\Wisdpa.dll (file missing)
R3 - URLSearchHook: (no name) - {9C66F6E6-38F0-4B70-9DBA-933F158127B6} - C:\WINDOWS\system32\Axknsu.dll (file missing)
R3 - URLSearchHook: (no name) - {966ED621-90EB-4781-9870-BFEF98878522} - C:\WINDOWS\system32\Ujubxw.dll
R3 - URLSearchHook: (no name) - {B948A26C-84B5-47C4-A59B-585E3AA2C280} - C:\WINDOWS\system32\Kgti.dll
R3 - URLSearchHook: (no name) - {8E420F6D-071F-4460-A483-8E583679C988} - C:\WINDOWS\system32\Fpfc.dll
R3 - URLSearchHook: (no name) - {9B1241A3-97BB-4CBE-B5B4-BF848E40F34C} - C:\WINDOWS\system32\Cfnp.dll
R3 - URLSearchHook: (no name) - {0ED1C148-7526-42CD-AA70-F6875EC22679} - C:\WINDOWS\system32\Okwf.dll
R3 - URLSearchHook: (no name) - {0C20ACA8-98BF-4199-95F0-82E7EA6D4D13} - C:\WINDOWS\system32\Ezrdf.dll
R3 - URLSearchHook: (no name) - {5F6830EF-D21F-48A1-870A-8179140FF662} - C:\WINDOWS\system32\Qjsqw.dll
R3 - URLSearchHook: (no name) - {97C2E337-5373-4D31-9341-A0E849A74CE8} - C:\WINDOWS\system32\Vixx.dll
R3 - URLSearchHook: (no name) - {55B02B5C-44A6-42D9-8791-8E85B3700359} - C:\WINDOWS\system32\Lodqhl.dll
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v5.dll
O2 - BHO: (no name) - {0C20ACA8-98BF-4199-95F0-82E7EA6D4D13} - C:\WINDOWS\system32\Ezrdf.dll
O2 - BHO: Tencent Browser Helper - {0C7C23EF-A848-485B-873C-0ED954731014} - (no file)
O2 - BHO: (no name) - {0ED1C148-7526-42CD-AA70-F6875EC22679} - C:\WINDOWS\system32\Okwf.dll
O2 - BHO: (no name) - {0FF9D078-5AD0-435B-8D91-4420B3BBF70A} - C:\WINDOWS\system32\Vswvxv.dll (file missing)
O2 - BHO: (no name) - {1AD860A7-68E6-425D-B2D7-469A80865FEA} - C:\WINDOWS\system32\Cgiwp.dll (file missing)
O2 - BHO: (no name) - {225A955A-94AF-4591-8046-5048C9B74FB9} - C:\WINDOWS\system32\Gnvqv.dll (file missing)
O2 - BHO: (no name) - {2E69842B-BAFE-46AA-B27C-5A551698F5A4} - C:\WINDOWS\system32\Ojfc.dll (file missing)
O2 - BHO: CNNIC_IDN - {35980F6E-A137-4E50-953D-813BB8556899} - C:\WINDOWS\system32\CdnIEHlp.dll
O2 - BHO: (no name) - {3D460063-586B-4F8C-876B-2CC338275961} - C:\WINDOWS\system32\Skscl.dll (file missing)
O2 - BHO: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O2 - BHO: (no name) - {4F6A5C27-5A46-4C89-B8ED-B45AA509DAF9} - C:\WINDOWS\system32\Leuvh.dll (file missing)
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - C:\tools\QQ\QQIEHelper.dll
O2 - BHO: (no name) - {55B02B5C-44A6-42D9-8791-8E85B3700359} - C:\WINDOWS\system32\Lodqhl.dll
O2 - BHO: (no name) - {5F6830EF-D21F-48A1-870A-8179140FF662} - C:\WINDOWS\system32\Qjsqw.dll
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
O2 - BHO: (no name) - {669751ED-D558-49AE-B01A-3B374CC7910E} - C:\WINDOWS\system32\ssup.dll
O2 - BHO: (no name) - {674F6ACA-2811-4DCF-A96A-FBBD1201301B} - C:\WINDOWS\system32\Obcrq.dll (file missing)
O2 - BHO: (no name) - {802CC551-D86A-4C77-8614-C4645FF4B7E5} - C:\WINDOWS\system32\Wisdpa.dll (file missing)
O2 - BHO: (no name) - {887CCF33-8996-401C-9C23-574DBED7BF53} - C:\WINDOWS\system32\Qqglwd.dll (file missing)
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\tools\Thunder\ComDlls\XunLeiBHO_001.dll
O2 - BHO: (no name) - {8E420F6D-071F-4460-A483-8E583679C988} - C:\WINDOWS\system32\Fpfc.dll
O2 - BHO: (no name) - {966ED621-90EB-4781-9870-BFEF98878522} - C:\WINDOWS\system32\Ujubxw.dll
O2 - BHO: (no name) - {97C2E337-5373-4D31-9341-A0E849A74CE8} - C:\WINDOWS\system32\Vixx.dll
O2 - BHO: (no name) - {9B1241A3-97BB-4CBE-B5B4-BF848E40F34C} - C:\WINDOWS\system32\Cfnp.dll
O2 - BHO: (no name) - {9C66F6E6-38F0-4B70-9DBA-933F158127B6} - C:\WINDOWS\system32\Axknsu.dll (file missing)
O2 - BHO: (no name) - {9E426C3A-F198-481E-BEBD-8AF89B95CC8C} - C:\WINDOWS\system32\Tbnf.dll (file missing)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\tools\FLASHGET\jccatch.dll
O2 - BHO: (no name) - {A8AA4B12-97D5-4C38-A4A0-3E9230018929} - C:\WINDOWS\system32\Ngrsr.dll (file missing)
O2 - BHO: (no name) - {A9FC3AD8-6B4B-4775-ABC7-4696AA900593} - C:\WINDOWS\system32\Usvuf.dll (file missing)
O2 - BHO: (no name) - {B948A26C-84B5-47C4-A59B-585E3AA2C280} - C:\WINDOWS\system32\Kgti.dll
O2 - BHO: IE - {D157330A-9EF3-49F8-9A67-4141AC41ADD4} - (no file)
O2 - BHO: (no name) - {D4E1D6AD-8C51-4047-B43E-49DEAB01AD5B} - C:\WINDOWS\system32\Dmnh.dll (file missing)
O2 - BHO: YiSou - {EF1D17A9-089F-40cc-8D64-7324CDEBA0DB} - C:\PROGRA~1\yisou\yisoub.dll
O2 - BHO: (no name) - {FC464433-746B-45EB-8ED2-5037388C20A2} - C:\WINDOWS\system32\Uunna.dll (file missing)
O3 - Toolbar: 一搜工具条 - {115F6E46-FCBC-41ed-B3B5-3BDDD4AAB5E5} - C:\Program Files\yisou\yisou.dll
O3 - Toolbar: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O3 - Toolbar: BitCometBar - {3F1ABCDB-A875-46c1-8345-B72A4567E486} - C:\tools\BitComet\BitCometBar\BitCometBar0.1.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\tools\FLASHGET\fgiebar.dll
O3 - Toolbar: 东方网译 - {AB6BEAD2-325B-4729-BB13-DB24509EFA54} - C:\tools\SUNV3000\DFWYBand.dll
O3 - Toolbar: 铭泰在线词语解释 - {CAEEE31B-6844-479C-ADAA-73B6D482E782} - C:\tools\SUNV3000\WebCBand.dllÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [yassistse] "C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe"
O4 - HKLM\..\Run: [IMSCMig] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - HKLM\..\Run: [TkBellExe] ; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [CApp] C:\WINDOWS\system32\capp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Super Rabbit SRRestore] C:\tools\SUPERR\SRRest.exe /autosave
O4 - HKLM\..\Run: [RfwMain] "C:\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [DAEMON Tools] "C:\tools\DAEMON Tools\daemon.exe" -lang 1033 -noicon
O4 - HKLM\..\Run: [VVSN] C:\Program Files\VVSN\VVSN.exe
O4 - HKLM\..\Run: [stup.exe] C:\PROGRA~1\TENCENT\Adplus\stup.exe
O4 - HKLM\..\Run: [RavTask] "C:\Rising\Rav\RavTask.exe" -system
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O8 - Extra context menu item: !搜一搜 - res://C:\WINDOWS\DOWNLO~1\CnsMinEx.dll/1003
O8 - Extra context menu item: !搜一搜(&S) - res://C:\Program Files\yisou\yisou.dll/232
O8 - Extra context menu item: &使用迅雷下载 - C:\tools\Thunder\Program\GetUrl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - C:\tools\Thunder\Program\GetAllUrl.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - C:\tools\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - C:\tools\FLASHGET\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\tools\FLASHGET\jc_all.htm
O8 - Extra context menu item: 使用超级解霸播放 - C:\tools\Hero 9\MPURLGET.HTM
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\tools\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - C:\tools\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - C:\tools\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - C:\tools\QQ\SendMMS.htm
O9 - Extra button: 手机短信 - {00000000-0000-0001-0001-596BAEDD1289} - http://sms.3721.com/ie/index.htm?pid=U_herozh_129663 (file missing)
O9 - Extra button: 中文域名 - {35980F6E-A137-4E50-953D-813BB8556899} - C:\WINDOWS\system32\CdnIEHlp.dll
O9 - Extra 'Tools' menuitem: 中文域名 - {35980F6E-A137-4E50-953D-813BB8556899} - C:\WINDOWS\system32\CdnIEHlp.dll
O9 - Extra button: 豪杰超级解霸9 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\tools\Hero 9\STHSDVD.EXE
O9 - Extra 'Tools' menuitem: 豪杰超级解霸9 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\tools\Hero 9\STHSDVD.EXE
O9 - Extra button: Yahoo 1G电邮 - {507F9113-CD77-4866-BA92-0E86DA3D0B97} - http://cn.mail.yahoo.com/promo/rd1 (file missing)
O9 - Extra button: 寻宝乐趣多 - {59BC54A2-56B3-44a0-93E5-432D58746E26} - http://adtaobao.allyes.com/main/adfclick?db=adtaobao&bid=138,140,18&cid=816,8,1&sid=5042&show=ignore&url=?allyesPara=816 (file missing)
O9 - Extra button: 雅虎助手 - {5D73EE86-05F1-49ed-B850-E423120EC338} - http://cn.zs.yahoo.com/?source=Cns (file missing)
O9 - Extra button: 网上点点 - {63A96E48-1CD6-4346-B1EE-F2CA91642FF8} - C:\tools\SUNV3000\WebCBand.dll
O9 - Extra button: 信息检索 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\tools\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\tools\QQ\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\tools\QQ\QQ.EXE
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\tools\FLASHGET\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\tools\FLASHGET\flashget.exe
O9 - Extra button: 易趣购物 - {DE607142-AC19-422e-868A-8D70ABDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=5 (file missing)
O9 - Extra 'Tools' menuitem: 易趣购物 - {DE607142-AC19-422e-868A-8D70ABDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=5 (file missing)
O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\tools\QQ\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\tools\QQ\QQIEHelper.dll
O9 - Extra button: 翻译 - {E1CC05A7-50AD-4A1A-8C5E-50145D933731} - C:\tools\SUNV3000\DFWYBand.dll
O9 - Extra button: 情景聊天 - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - http://cn.rd.yahoo.com/home/messenger/bjk/clientbtn/?http://cn.messenger.yahoo.com/ (file missing)
O9 - Extra button: (no name) - {ECF2E268-F28C-48d2-9AB7-8F69C11CCB71} - http://assistant.3721.com/security1.htm?fb=Cns (file missing)
O9 - Extra 'Tools' menuitem: 修复浏览器 - {ECF2E268-F28C-48d2-9AB7-8F69C11CCB71} - http://assistant.3721.com/security1.htm?fb=Cns (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {FD00D911-7529-4084-9946-A29F1BDF4FE5} - http://assistant.3721.com/clean1.htm?fb=Cns (file missing)
O9 - Extra 'Tools' menuitem: 清理上网记录 - {FD00D911-7529-4084-9946-A29F1BDF4FE5} - http://assistant.3721.com/clean1.htm?fb=Cns (file missing)
O11 - Options group: [!CNS]  上网助手-地址栏搜索
O11 - Options group: [TBH]  QQ地址栏搜索插件
O17 - HKLM\System\CCS\Services\Tcpip\..\{AD16059C-8F43-4893-AD7B-46DC2D133518}: NameServer = 211.95.193.97
O17 - HKLM\System\CCS\Services\Tcpip\..\{BC7C4423-D112-437C-A236-1A1C29CC0F74}: NameServer = 202.96.128.86 202.96.128.166
O18 - Filter: text/html - {E9A8FCBA-6DCC-4D23-B4A6-5AEC882139E3} - C:\tools\SUNV3000\pIEDataHook.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\BlueSoleil\BTNtService.exe
O23 - Service: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - c:\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Rising\Rav\CCenter.exe
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Rising\Rav\Ravmond.exeÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

升级了一下瑞星防火墙就成这样了。。。。

电脑配置：
HP dv4013AP 笔记本
celeron M 1.5G (Dotha)
40G(4200转)
金士顿 1代DDR333 512M*2=1G
Windows XP


扫描结果：

Logfile of HijackThis v1.99.1
Scan saved at 11:02:03, on 2006-7-22
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\Rising\Rav\RsAgent.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\Program Files\Rising\Rav\RavMon.exe
C:\Program Files\Huawei-3Com\H3C 802.1X 客户端\Dot1XClient.exe
C:\Program Files\Rising\Rfw\rfwmain.exe
C:\Program Files\Rising\Rav\Rav.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\IDM Computer Solutions\UltraEdit-32\uedit32.exe
E:\HijackThis.exe

R3 - URLSearchHook: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
R3 - URLSearchHook: Tencent SearchHook - {DB8B2393-7A6C-4C76-88CE-6B1F6FF6FFE9} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: 搜搜地址栏搜索 - {0C7C23EF-A848-485B-873C-0ED954731014} - C:\Program Files\TENCENT\Adplus\SSAddr.dll
O2 - BHO: yPhtb - {33BBE430-0E42-4f12-B075-8D21ACB10DCB} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll
O2 - BHO: CNNIC_IDN - {35980F6E-A137-4E50-953D-813BB8556899} - C:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O2 - BHO: Anti Fish - {38928D50-8A48-44C2-945F-D2F23F771410} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll
O2 - BHO: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - d:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
O2 - BHO: (no name) - {669751ED-D558-49AE-B01A-3B374CC7910E} - C:\WINDOWS\system32\ssup.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - D:\PROGRA~1\FlashGet\jccatch.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - D:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [stup.exe] C:\PROGRA~1\TENCENT\Adplus\stup.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [IMSCMig] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [YLive.exe] C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: 上传到QQ网络硬盘 - D:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - D:\PROGRA~1\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - D:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 添加到雅虎订阅(&Y) - res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\Program Files\Tencent\QQ\SendMMS.htm
O8 - Extra context menu item: 雅虎搜索 - res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Sun Java 控制台 - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: 中文上网 - {35980F6E-A137-4E50-953D-813BB8556899} - C:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O9 - Extra 'Tools' menuitem: 中文上网 - {35980F6E-A137-4E50-953D-813BB8556899} - C:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O9 - Extra button: 信息检索 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - d:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - d:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - d:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - d:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra button: 易趣购物 - {EE60714F-AC17-427e-861A-FD60CBDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=86 (file missing)
O9 - Extra 'Tools' menuitem: 易趣购物 - {EE60714F-AC17-427e-861A-FD60CBDF119A} - http://click2.ad4all.net/url2/urlmanage/url.asp?id=86 (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\cdnns.dll
O11 - Options group: [CDNCLIENT]  中文上网
O11 - Options group: [TBH] 搜搜地址栏搜索
O16 - DPF: {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (Edit Class) - https://www.sz1.cmbchina.com/download/CMBEdit.cab
O16 - DPF: {1513CEF2-AB40-4321-B4CE-8F4237E5563B} (SerialCommCtl Class) - http://10.110.0.200:9999/ocx/serialComm.cab
O16 - DPF: {20C2C286-BDE8-441B-B73D-AFA22D914DA5} (PowerList Control) - http://download.ppstream.com/bin/powerplayer.cab
O16 - DPF: {28EE9D9D-1A80-4BFF-B464-0E6B69E26B05} (Printer Class) - http://10.110.0.200:9999/ocx/printatl.dll
O16 - DPF: {3359C0B1-2363-40B3-AFCA-1ABC799AC486} (SSReaderPlug Control) - http://reg.ssreader.com/SSReaderPlug.cab
O16 - DPF: {3D8F74EE-8692-4F8F-B8D2-7522E732519E} (WebActivater Control) - http://game.qq.com/QQGame2.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CA42D5A2-15B5-4B73-B282-71ABC01778AB}: NameServer = 211.136.17.107
O18 - Protocol: qrev - {9DE24BAC-FC3C-42C4-9FC4-76B3FAFDBD90} - D:\PROGRA~1\QUESTS~1\TOADFO~1\RNetPin.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

谢谢啊！...可以启动了ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

我的也是升级后就变成黄伞了~我是个超级小白~还有啊~楼主,那个工具我是用不了~能不能教个更简单的解决办法?ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

谢谢楼主，把搜搜地址栏卸掉以后就能使用内存监控了。ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰

我也是在昨天晚上升级完以后就不能使用内存监控了，重装了一下还是不行，今天按楼主说的方法试了一下就好了，非常感谢！ÌJv|b¿±TÒ¨bbs.ikaka.comÆãE­%šùžà‰