这个启动项在一般性求助贴里只要有,就必须干掉,
==================================
启动文件夹
[腾讯QQ]
<C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\腾讯QQ.lnk --> C:\PROGRA~1\Tencent\QQ\QQ.exe [TENCENT]><N>
——————————————————————————————————————————————————
下面显示的很清楚嘛
==================================
正在运行的进程
[PID: 960][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[C:\Program Files\Tencent\QQ\jeeysd.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\WSOCK32.DLL] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\cugsoul.dll] [N/A, ]
[PID: 1204][C:\WINDOWS\system32\VBoxService.exe] [innotek GmbH, 1.5.6.28296]
[C:\WINDOWS\system32\cugsoul.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\jeeysd.dll] [N/A, ]
[PID: 1212][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[C:\WINDOWS\system32\cugsoul.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\jeeysd.dll] [N/A, ]
[PID: 1832][C:\Documents and Settings\Administrator\桌面\SRE9d2c65c3(1)\修改的2.4版SREng.EXE] [1111, 2..4]
[C:\WINDOWS\system32\cugsoul.dll] [N/A, ]
[C:\Program Files\Tencent\QQ\jeeysd.dll] [N/A, ]
==================================
API HOOK
入口点错误:RegEnumValueA (危险等级: 高, 被下面模块所HOOK: C:\WINDOWS\system32\cugsoul.dll)
入口点错误:RegEnumValueW (危险等级: 高, 被下面模块所HOOK: C:\WINDOWS\system32\cugsoul.dll)
入口点错误:RegOpenKeyExA (危险等级: 高, 被下面模块所HOOK: C:\WINDOWS\system32\cugsoul.dll)
入口点错误:CreateFileA (危险等级: 高, 被下面模块所HOOK: C:\WINDOWS\system32\cugsoul.dll)
入口点错误:CreateFileW (危险等级: 高, 被下面模块所HOOK: C:\WINDOWS\system32\cugsoul.dll)
