以下是问题项目,主要是中了流氓软件(CNNIC等)导致,也有一个病毒添加的浏览器加载项(红色):
===========================
驱动程序
[ahdgaiha / ahdgaiha][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\ahdgaiha.sys><N/A>
[aifhifah / aifhifah][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\aifhifah.sys><N/A>
[bhcebcef / bhcebcef][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\bhcebcef.sys><N/A>
[bihbjfdj / bihbjfdj][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\bihbjfdj.sys><N/A>
[cbiigcfi / cbiigcfi][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\cbiigcfi.sys><N/A>
[cdnprot / cdnprot][Running/Boot Start]
<\SystemRoot\system32\drivers\cdnprot.sys><中国互联网络信息中心(CNNIC)>
[ecgeagjb / ecgeagjb][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\ecgeagjb.sys><N/A>
[efichggb / efichggb][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\efichggb.sys><N/A>
[fbdahagj / fbdahagj][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\fbdahagj.sys><N/A>
[fcbfajef / fcbfajef][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\fcbfajef.sys><N/A>
[fdfaghac / fdfaghac][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\fdfaghac.sys><N/A>
[gbgjcfcc / gbgjcfcc][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\gbgjcfcc.sys><N/A>
[gdfjacjc / gdfjacjc][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\gdfjacjc.sys><N/A>
[gedefddc / gedefddc][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\gedefddc.sys><N/A>
[ggfjbeef / ggfjbeef][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\ggfjbeef.sys><N/A>
[hcchifde / hcchifde][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\hcchifde.sys><N/A>
[hgiidbac / hgiidbac][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\hgiidbac.sys><N/A>
[hhgfgaci / hhgfgaci][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\hhgfgaci.sys><N/A>
[ibecaehe / ibecaehe][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\ibecaehe.sys><N/A>
[idgfedjc / idgfedjc][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\idgfedjc.sys><N/A>
[jgfibhfc / jgfibhfc][Stopped/System Start]
<\??\C:\WINDOWS\system32\drivers\jgfibhfc.sys><N/A>
[SVKP / SVKP][Running/Auto Start]
<\??\C:\WINDOWS\system32\SVKP.sys><AntiCracking>
====================================
浏览器加载项
[BdSearchHook Class]
{02496EBD-8455-48db-B3C7-5DAC97D9F5A7} <C:\Program Files\Baidu\iexp\BDSrHook.dll, N/A>
[]
{2A1DC8D2-BCE7-46AB-AB29-B283CE94A7E7} <C:\WINDOWS\system32\yzdknuggejbcs.dll, N/A>
[网站排名工具条BHO]
{489873CE-F3E1-44A3-8E89-04BE26BE4446} <C:\Program Files\zzToolBar\Toolbar_bho.dll, N/A>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[网站排名工具条]
{0A1230F1-EB52-4CA3-9D34-DE2ABC2EED35} <C:\Program Files\zzToolBar\ToolBand.dll, N/A>
[BdSearchHook Class]
{02496EBD-8455-48DB-B3C7-5DAC97D9F5A7} <C:\Program Files\Baidu\iexp\BDSrHook.dll, N/A>
[网站排名工具条]
{0A1230F1-EB52-4CA3-9D34-DE2ABC2EED35} <C:\Program Files\zzToolBar\ToolBand.dll, N/A>
[]
{2A1DC8D2-BCE7-46AB-AB29-B283CE94A7E7} <C:\WINDOWS\system32\yzdknuggejbcs.dll, N/A>
[网站排名工具条BHO]
{489873CE-F3E1-44A3-8E89-04BE26BE4446} <C:\Program Files\zzToolBar\Toolbar_bho.dll, N/A>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[使用UUSee下载]
<C:\Program Files\uusee\geturltodown.htm, N/A>
[使用UUSee加速播放]
<C:\Program Files\uusee\geturltoplay.htm, N/A>
[使用迷你快车下载]
<C:\Program Files\FlashGet Network\FlashGet Mini\GetUrl.htm, N/A>
[使用迷你快车下载全部链接]
<C:\Program Files\FlashGet Network\FlashGet Mini\GetAllUrl.htm, N/A>
[使用迷你快车下载该网页FLV]
<C:\Program Files\FlashGet Network\FlashGet Mini\FlashGetFlvdetector.htm, N/A>
==================================
个人建议:1、到
http://www.arswp.com下载WINDOWS清理助手;
2、关闭IE,拔掉网线;
3、控制面板中卸载“中文上网”、“UUSEE”及“迷你快车(FLASHGET MINI)”这三个流氓软件;
4、运行WINDOWS清理助手,快速扫描,对红色项目(高危项目)执行清理;
5、重新扫描SRENG日志上传,看看是否有遗漏。
