瑞星显示是的  官方的显示没有  灰鸽子中了之后迹象明明有  打不开东西  高手帮忙检查一下呀

[用户系统信息]Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)

刚看了你的日志,你中的是机器狗,不是灰鸽子

注册表
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<pdryzafou><pdryzafou.exe> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{F859245F-345D-BC13-AC4F-145D47DA34FF}><C:\WINDOWS\Fonts\avzxomn.dll> [N/A]
<{6598FF45-DA60-F48A-BC43-10AC47853D56}><C:\WINDOWS\Fonts\rarjfpi.dll> [N/A]
<{45AADFAA-DD36-42AB-83AD-0521BBF58C24}><C:\WINDOWS\system32\zjydcx.dll> []
<{17DFD111-BF3A-4CB4-ADB0-88FCBFE69821}><C:\WINDOWS\system32\hhrdxd.dll> []
<{7914E0AA-ECCB-4311-B584-C49538227824}><C:\WINDOWS\system32\jhfrxz.dll> []
<{8C41B7F7-3168-400D-A702-0E7EFE0BA304}><C:\WINDOWS\system32\sgrefg.dll> []
<{CAED0F3B-DF8B-4DBF-BB20-8DFBC3199068}><C:\WINDOWS\system32\jhrcar.dll> []
<{1DB3C525-5271-46F7-887A-D4E1ADAA7632}><C:\WINDOWS\system32\hfrdzx.dll> []
驱动程
[msskye / msskye][Running/Auto Start]
<system32\drivers\msaclue.sys><N/A>
[ATI2HDDSRV / ATI2HDDSRV][Running/Manual Start]
<\??\C:\WINDOWS\system32\drivers\ati32srv.sys><N/A>
[msertk / msertk][Running/Auto Start]
<system32\drivers\msyecp.sys><N/A>
[msepion / msepion][Running/Manual Start]
<\??\C:\WINDOWS\system32\msepion.sys><N/A>
[DH3 / DH3][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp58.tmp><N/A>
[ZX / ZX][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp5D.tmp><N/A>
[GJ / GJ][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp65.tmp><N/A>
[CQ / CQ][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp76.tmp><N/A>
[MS / MS][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp9D.tmp><N/A>
[WL / WL][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmpA2.tmp><N/A>
[CQSJ / CQSJ][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmpB0.tmp><N/A>
[MH / MH][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmpBF.tmp><N/A>
[C:\WINDOWS\system32\winsrv32.dll] [N/A, ]
[C:\WINDOWS\system32\MsIMMs32.dll] [N/A, ]
[C:\WINDOWS\system32\upxdnd.dll] [N/A, ]
[C:\WINDOWS\system32\WSockDrv32.dll] [N/A, ]
[C:\WINDOWS\system32\zjydcx.dll] [N/A, ]
[C:\WINDOWS\system32\hhrdxd.dll] [N/A, ]
[C:\WINDOWS\system32\jhfrxz.dll] [N/A, ]
[C:\WINDOWS\system32\sgrefg.dll] [N/A, ]
[C:\WINDOWS\system32\jhrcar.dll] [N/A, ]
[C:\WINDOWS\system32\hfrdzx.dll] [N/A, ]
[C:\WINDOWS\system32\jhrcar.dll] [N/A, ]

[C:\WINDOWS\system32\cuhad.dll] [N/A, ]
[C:\WINDOWS\system32\bauhgnem.dll] [N/A, ]
[C:\WINDOWS\system32\eohsom.dll] [N/A, ]
[C:\WINDOWS\system32\sauhad.dll] [N/A, ]
[C:\WINDOWS\system32\ijougiemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\tsqc.dll] [N/A, ]
[C:\WINDOWS\system32\hjiq.dll] [N/A, ]
[C:\WINDOWS\system32\kiluw.dll] [N/A, ]
[C:\WINDOWS\system32\jemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\laixuhz.dll] [N/A, ]
[C:\WINDOWS\system32\oqnauhc.dll] [N/A, ]
[C:\WINDOWS\system32\xjxr.dll] [N/A, ]
[C:\WINDOWS\system32\gnolnait.dll] [N/A, ]
[C:\WINDOWS\system32\naijoad.dll] [N/A, ]
[C:\WINDOWS\system32\ijougiemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\naijoad.dll] [N/A, ]
[C:\WINDOWS\system32\gnolnait.dll] [N/A, ]
[C:\WINDOWS\system32\sauhad.dll] [N/A, ]
[C:\WINDOWS\system32\xjxr.dll] [N/A, ]
[C:\WINDOWS\system32\laixuhz.dll] [N/A, ]
[C:\WINDOWS\system32\jemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\oqnauhc.dll] [N/A, ]
[C:\WINDOWS\system32\eohsom.dll] [N/A, ]
[C:\WINDOWS\system32\hjiq.dll] [N/A, ]
[C:\WINDOWS\system32\tsqc.dll] [N/A, ]
[C:\WINDOWS\system32\bauhgnem.dll] [N/A, ]
[C:\WINDOWS\system32\cuhad.dll] [N/A, ]
[C:\WINDOWS\system32\kiluw.dll] [N/A, ]
这些全是
你下个专杀试试

谢谢

没用呀

高手再搞下  不知道怎么才能彻底杀掉?  我用的是正版瑞星

Xdelbox：下载地址http://www.dodudou.com/down/里面的原创软件文件夹下
C:\WINDOWS\system32\winsrv32.dll
C:\WINDOWS\system32\MsIMMs32.dll
C:\WINDOWS\system32\upxdnd.dll
C:\WINDOWS\system32\WSockDrv32.dll
[C:\WINDOWS\system32\zjydcx.dll] [N/A, ]
[C:\WINDOWS\system32\hhrdxd.dll] [N/A, ]
[C:\WINDOWS\system32\jhfrxz.dll] [N/A, ]
[C:\WINDOWS\system32\sgrefg.dll] [N/A, ]
[C:\WINDOWS\system32\jhrcar.dll] [N/A, ]
[C:\WINDOWS\system32\hfrdzx.dll] [N/A, ]
[C:\WINDOWS\system32\jhrcar.dll] [N/A, ]

[C:\WINDOWS\system32\cuhad.dll] [N/A, ]
[C:\WINDOWS\system32\bauhgnem.dll] [N/A, ]
[C:\WINDOWS\system32\eohsom.dll] [N/A, ]
[C:\WINDOWS\system32\sauhad.dll] [N/A, ]
[C:\WINDOWS\system32\ijougiemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\tsqc.dll] [N/A, ]
[C:\WINDOWS\system32\hjiq.dll] [N/A, ]
[C:\WINDOWS\system32\kiluw.dll] [N/A, ]
[C:\WINDOWS\system32\jemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\laixuhz.dll] [N/A, ]
[C:\WINDOWS\system32\oqnauhc.dll] [N/A, ]
[C:\WINDOWS\system32\xjxr.dll] [N/A, ]
[C:\WINDOWS\system32\gnolnait.dll] [N/A, ]
[C:\WINDOWS\system32\naijoad.dll] [N/A, ]
[C:\WINDOWS\system32\ijougiemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\naijoad.dll] [N/A, ]
[C:\WINDOWS\system32\gnolnait.dll] [N/A, ]
[C:\WINDOWS\system32\sauhad.dll] [N/A, ]
[C:\WINDOWS\system32\xjxr.dll] [N/A, ]
[C:\WINDOWS\system32\laixuhz.dll] [N/A, ]
[C:\WINDOWS\system32\jemnaw.dll] [N/A, ]
[C:\WINDOWS\system32\oqnauhc.dll] [N/A, ]
[C:\WINDOWS\system32\eohsom.dll] [N/A, ]
[C:\WINDOWS\system32\hjiq.dll] [N/A, ]
[C:\WINDOWS\system32\tsqc.dll] [N/A, ]
[C:\WINDOWS\system32\bauhgnem.dll] [N/A, ]
[C:\WINDOWS\system32\cuhad.dll] [N/A, ]
[C:\WINDOWS\system32\kiluw.dll] [N/A, ]
复制这些文件括号里的到剪贴板
右键“剪贴板导入不检查路径”
然后右键“立即重启执行删除”
然后你就等,直到进入你的系统
再然后复制C:\Windows\system32\dllcache\userinit.exe 到C:\Windows\system32覆盖已有文件
再再然后就用你刚才下载的软件
启动项目->注册表删除
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
<pdryzafou><pdryzafou.exe> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{F859245F-345D-BC13-AC4F-145D47DA34FF}><C:\WINDOWS\Fonts\avzxomn.dll> [N/A]
<{6598FF45-DA60-F48A-BC43-10AC47853D56}><C:\WINDOWS\Fonts\rarjfpi.dll> [N/A]
<{45AADFAA-DD36-42AB-83AD-0521BBF58C24}><C:\WINDOWS\system32\zjydcx.dll> []
<{17DFD111-BF3A-4CB4-ADB0-88FCBFE69821}><C:\WINDOWS\system32\hhrdxd.dll> []
<{7914E0AA-ECCB-4311-B584-C49538227824}><C:\WINDOWS\system32\jhfrxz.dll> []
<{8C41B7F7-3168-400D-A702-0E7EFE0BA304}><C:\WINDOWS\system32\sgrefg.dll> []
<{CAED0F3B-DF8B-4DBF-BB20-8DFBC3199068}><C:\WINDOWS\system32\jhrcar.dll> []
<{1DB3C525-5271-46F7-887A-D4E1ADAA7632}><C:\WINDOWS\system32\hfrdzx.dll> []
启动项目->服务->驱动程序删除
[msskye / msskye][Running/Auto Start]
<system32\drivers\msaclue.sys><N/A>
[ATI2HDDSRV / ATI2HDDSRV][Running/Manual Start]
<\??\C:\WINDOWS\system32\drivers\ati32srv.sys><N/A>
[msertk / msertk][Running/Auto Start]
<system32\drivers\msyecp.sys><N/A>
[msepion / msepion][Running/Manual Start]
<\??\C:\WINDOWS\system32\msepion.sys><N/A>
[DH3 / DH3][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp58.tmp><N/A>
[ZX / ZX][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp5D.tmp><N/A>
[GJ / GJ][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp65.tmp><N/A>
[CQ / CQ][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp76.tmp><N/A>
[MS / MS][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmp9D.tmp><N/A>
[WL / WL][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmpA2.tmp><N/A>
[CQSJ / CQSJ][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmpB0.tmp><N/A>
[MH / MH][Stopped/Disabled]
<\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\tmpBF.tmp><N/A>

剪贴板在哪哦?