小弟前一天电脑中毒了，第二天续费后点升级可总是说ＩＤ错误（新，旧ＩＤ都不行）便去点杀毒，可一杀毒机子便重起．小弟想卸载了重新安，可是下载后安装不上，总是跳掉（重起按Ｆ８　第一次进行到自动查毒时跳掉了　重复试了几次后便跟先前没按Ｆ８时一样了）　现在连超级兔子也是一打开就跳掉了
　　哪位大侠救救小弟呀５５５５５５５５５５

附：hijackthis下载地址 http://forum.ikaka.com/topic.asp?board=28&artid=8105899  扫出全部日志

Hijackthis1991zww.rar 拒绝访问怎办

2006-10-06,00:01:20

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <svc><C:\WINDOWS\svchost.exe>  [N/A]
    <updatereal><C:\WINDOWS\realupdate.exe other>  [N/A]
    <msnnt><C:\WINDOWS\winampc.exe>  []
    <Xplus_spy><"C:\Documents and Settings\hgy\桌面\Q素材\新建文件夹\xvcclip.exe" /min>  [N/A]
    <Google Desktop Search><; "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup>  [N/A]
    <MSMSGS><; "C:\Program Files\Messenger\msmsgs.exe" /background>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <{FCFB4D75-0A70-2052-0930-030309120056}><"C:\Program Files\Common Files\{FCFB4D75-0A70-2052-0930-030309120056}\Update.exe" te-110-12-0000001>  [N/A]
    <zz><C:\WINDOWS\system32\intenet.exe>  [N/A]
    <rx><C:\WINDOWS\system32\explore.exe>  [N/A]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><C:\WINDOWS\rundl132.exe>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon><ctfmon.exe>  [(Verified)Microsoft Corporation]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [RealNetworks, Inc.]
    <supdate2.dll><RUNDLL32.EXE C:\WINDOWS\system32\supdate2.dll,Run>  [N/A]
    <Desktop><C:\WINDOWS\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll>  [N/A]
    <RichMedia><C:\WINDOWS\system32\Rundll32.exe  "C:\PROGRA~1\pcast\hbcast.dll",WaitWindows>  [Shanghai Henbang Technology Co., Ltd]
    <svc><C:\WINDOWS\svchost.exe>  [N/A]
    <spoolsv><C:\WINDOWS\system32\spoolsv\spoolsv.exe -printer>  [广州傲讯信息科技有限公司]
    <SoundMam><C:\WINDOWS\system32\SVOHOST.exe>  [N/A]
    <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  [N/A]
    <Update><C:\Program Files\Common Files\UPDATE2\Update.exe>  [N/A]
    <realtpsk><C:\WINDOWS\system\realsched.exe>  [N/A]
    <IntelFile><C:\WINDOWS\system32\IntelFile.exe>  [N/A]
    <5476721><C:\WINDOWS\system32\5476721.exe>  [N/A]
    <-249901><C:\WINDOWS\system32\-249901.exe>  [N/A]
    <helper.dll><; C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32>  []
    <Cmaudio><; RunDll32 cmicnfg.cpl,CMICtrlWnd>  [N/A]
    <RfwMain><; C:\Program Files\Rising\Rfw\rfwmain.exe>  [N/A]
    <SoundMan><; SOUNDMAN.EXE>  [(Verified)Realtek Semiconductor Corp.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <kokv><C:\WINDOWS\system\122i580.exe>  [N/A]
    <DTService><rundll32.exe C:\WINDOWS\system32\soundmix.dll,Load>  []
    <CONFIGURATION><rundll32.exe C:\WINDOWS\system32\tapidef.dll,Start>  []
    <DEFAULT><rundll32.exe C:\WINDOWS\system32\SYSPOL~1.DLL,Start>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><C:\WINDOWS\system32\SoDAHK.DLL>  [Sogou.com Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{D157330A-9EF3-49F8-9A67-4141AC41ADD4}><C:\WINDOWS\DOWNLO~1\CnsHook.dll>  [北京三七二一科技有限公司]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <DelayRun><C:\WINDOWS\122d5800.dll>  [N/A]

==================================
启动文件夹
[-50639]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\-50639.lnk --> C:\WINDOWS\system32\-50639.exe [N/A]><N>
[-67416]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\-67416.lnk --> C:\WINDOWS\system32\-67416.exe [N/A]><N>
[IE-Bar]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\IE-Bar.lnk --> C:\PROGRA~1\COMMON~1\IE-Bar\iebar.exe [N/A]><N>
[腾讯QQ]
  <C:\Documents and Settings\hgy\「开始」菜单\程序\启动\腾讯QQ.lnk --> C:\PROGRA~1\TENCENT\QQ\qqCfg.exe [Microsoft Corporation. All rights reserved.]><N>

==================================
服务
[ASP.NET Work State Service / aspwstate]
  <C:\WINDOWS\System32\svchost.exe -k aspwstate-->c:\windows\system32\aspwswin.dll><Microsoft Corporation>
[Network IPSEC Connections / BKMARKS]
  <C:\WINDOWS\SYSTEM32\RUNDLL.EXE C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL,Export 1087><Microsoft Corporation>
[Network Engine / Hardware]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\mssapi.dll><Microsoft Corporation>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Spectrum24 Events Monitor / IPRIP]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\acss.dll><LINKMEDIA Tech>
[Network Logons / NetWorkLogons]
  <rundll32.exe KB27861001.log,start><Microsoft Corporation>
[NetFrame Wireless Configuration / NFSWZCSVC]
  <C:\WINDOWS\System32\svchost.exe -k NFSWZCSVC-->c:\windows\system32\nfswzwin32.dll><Microsoft Corporation>
[NetMeeting Remote Desktop Agent / Nwsapagent]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\Nwsapagent.dll><LINKMEDIA Tech>
[P4P Service / P4P Service]
  <C:\Program Files\Common Files\Sogou PXP\p2psvr.exe><Sohu.com Inc.>
[Rising Personal Firewall Service / RfwService]
  <c:\program files\rising\rfw\rfwsrv.exe><N/A>
[Rising Process Communication Center / RsCCenter]
  <"C:\我的下载\瑞兴杀毒\Rising\Rav\CCenter.exe"><N/A>
[RsRavMon Service / RsRavMon]
  <"C:\我的下载\瑞兴杀毒\Rising\Rav\Ravmond.exe"><N/A>
[Logical Disk Manager Amdinistrative Service / Service27332]
  <c:\windows\system\taskmgr.exe><>
[System / System]
  <C:\WINDOWS\System.exe><N/A>

驱动程序
[00 / 00]
  <\SystemRoot\\SystemRoot\System32\drivers\129738906.sys><N/A>
[4306296 / 4306296]
  <\SystemRoot\System32\drivers\4306296.sys><N/A>
[9 / 9]
  <\SystemRoot\system32\drivers\boot00.sys><>
[99 / 99]
  <\SystemRoot\system32\drivers\boot00.sys><>
[a0 / a0]
  <\SystemRoot\\SystemRoot\System32\drivers\4306296.sys><N/A>
[ADProt / ADProt]
  <\SystemRoot\system32\drivers\ADProt.sys><N/A>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[ati2mtag / ati2mtag]
  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[Rising TDI Base Driver / BaseTDI]
  <System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[C-Media WDM Audio Interface / cmuda]
  <system32\drivers\cmuda.sys><C-Media Inc>
[CnsMinKP / CnsMinKP]
  <\SystemRoot\system32\drivers\CnsMinKP.sys><Copyright (C) 3721 Corporation.>
[ExpScaner / ExpScaner]
  <\??\C:\我的下载\瑞兴杀毒\Rising\Rav\ExpScan.sys><N/A>
[FwDrv / FwDrv]
  <\??\c:\program files\rising\rfw\FwDrv.sys><Rising>
[HookCont / HookCont]
  <\??\C:\我的下载\瑞兴杀毒\Rising\Rav\HOOKCONT.sys><N/A>
[HookReg / HookReg]
  <\??\C:\我的下载\瑞兴杀毒\Rising\Rav\HookReg.sys><N/A>
[HookSys / HookSys]
  <\??\C:\我的下载\瑞兴杀毒\Rising\Rav\HookSys.sys><N/A>
[HSFHWBS2 / HSFHWBS2]
  <system32\DRIVERS\HSFBS2S2.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP]
  <system32\DRIVERS\HSFDPSP2.sys><Conexant Systems, Inc.>
[mdmxsdk / mdmxsdk]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[MEMSCAN / MEMSCAN]
  <\??\C:\我的下载\瑞兴杀毒\Rising\Rav\MEMSCAN.sys><N/A>
[Netgroup Packet Filter / NPF]
  <system32\DRIVERS\npf.sys><N/A>
[npkcrypt / npkcrypt]
  <\??\C:\Program Files\TENCENT\QQ\npkcrypt.sys><N/A>
[npkycryp / npkycryp]
  <\??\C:\Program Files\TENCENT\QQ\npkycryp.sys><N/A>
[nwlnksipx / nwlnksipx]
  <\??\C:\WINDOWS\system32\drivers\nwlnksipx.sys><Microsoft Corporation>
[Direct Parallel Link Driver / Ptilink]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RGWatch / RGWatch]
  <\SystemRoot\system32\DRIVERS\RGWatch.sys><Windows (R) Server 2003 DDK provider>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
  <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv]
  <system32\DRIVERS\secdrv.sys><N/A>
[SIS AGP Bus Filter / sisagp]
  <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>

毒窝啊  毒太多了 重装吧

- -!