案发时间:5.3至今
案发地点:  同事机器
案发经过:  估计是网游惹的祸,
案发症状: 同时发现 瑞星杀软和防火墙无法运行;

拯救过程:使用一些在线杀毒,查了几次,仍无法安装杀软;
                HIJACKTHIS也是今天可以运行;
日志
:
:日志文件: 趋势科技 HijackThis v2.0.0 (BETA)
保存时间: 12:16:59, on 2008-5-5
操作系统: Windows XP SP2 (WinNT 5.01.2600)
启动模式: 正常
正在运行的进程:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
D:\Program Files\暴风影音\stormliv.exe
C:\WINDOWS\system32\cliconfg.exe
D:\Program Files\3D\mentalray\satellite\raysat_3dsmax8server.exe
C:\WINDOWS\system32\nvsvc32.exe
D:\Program Files\UG3.0\UGNXFLEXlm\lmgrd.exe
C:\WINDOWS\system32\rundll32.exe
D:\Program Files\UG3.0\UGNXFLEXlm\uglmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\conime.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\TEMP\_qosec29.msi
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe
F:\ha_hijackthisv2_pp\HA_HijackThisv2_PP\HiJackThis_v2.exe
O2 - BHO: Thunder AtOnce - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\PDF\ActiveX\AcroIEHelper.dll
O2 - BHO: Info cache - {385AB8C6-FB22-4D17-8834-064E2BA0A6F0} - C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
O3 - 工具栏: QQToolbar - {29CF293A-1E7D-4069-9E11-E39698D0AF95} - C:\Program Files\Tencent\QQToolbar\IEBar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [fiosectc] C:\WINDOWS\fiosectc.exe
O4 - HKLM\..\Run: [dbhlp32] C:\WINDOWS\dbhlp32.exe
O4 - HKLM\..\Run: [WINSvr64] C:\WINDOWS\WINSvr64.exe
O4 - HKLM\..\Run: [huifitc] C:\WINDOWS\huifitc.exe
O4 - HKLM\..\Run: [fmbiost] C:\WINDOWS\fmbiost.exe
O4 - HKLM\..\Run: [ticisms] C:\WINDOWS\ticisms.exe
O4 - HKLM\..\Run: [cygipjfe] C:\WINDOWS\yijezfri.exe
O4 - HKLM\..\Run: [yuiabct] C:\WINDOWS\yuiabct.exe
O4 - HKLM\..\Run: [anistio] C:\WINDOWS\anistio.exE
O4 - HKLM\..\Run: [fmsjhif] C:\WINDOWS\fmsjhif.exe
O4 - HKLM\..\Run: [bincdwsa] C:\WINDOWS\bincdwsa.exe
O4 - HKLM\..\RunOnce: [Rav] "D:\Program Files\瑞星\Rising\Rav\Update\Setup.exe" /UNINSTALL /S /ONCE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - Startup: 8.bat
O4 - Startup: 信鸽unMSG(普及版).lnk = ?
O4 - Startup: 腾讯QQ.lnk = D:\Program Files\QQ\QQ.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - 扩展右键菜单项: 使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - 扩展右键菜单项: 使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - 扩展右键菜单项: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - 扩展右键菜单项: 添加到QQ表情 - D:\Program Files\QQ\AddEmotion.htm
O9 - Extra button: 知识库 - {06926B30-424E-4f1c-8EE3-543CD96573DC} - http://blank.la/?h (file missing)
O9 - Extra button: 启动迅雷5 - {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} - C:\Program Files\Thunder Network\Thunder\Thunder.exe
O9 - Extra 'Tools' menuitem: 启动迅雷5 - {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} - C:\Program Files\Thunder Network\Thunder\Thunder.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com.cn/webscanner/kavwebscan_unicode.cab
O16 - DPF: {6531D99C-0D0E-4293-B3CB-A3E1D0D41847} (AhnASP Control) - http://aspglobal.ahnlab.com/asp/cab/AhnASP.cab

O16 - DPF: {9FAFB576-6933-4CCC-AB3D-B988EC43D04E} (RavOnline Class) - http://download.rising.com.cn/rs2008/online/notvista/ravolctl.cab
O16 - DPF: {CA234A53-E68D-44D5-A07C-481C051D0C7A} (KVFileUpdate Class) - http://online1.jiangmin.com/kvbaidukillonline/OLDown.cab
O16 - DPF: {CA234A53-E68D-44D5-A07C-481C051D0C7B} (KVFileUpdate Class) - http://online1.jiangmin.com/kvonline/OLDown.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{ECBBF781-A834-4EE5-AF44-F9ACD307B6C4}: NameServer = 60.191.134.196
O20 - AppInit_DLLs: ghjdtry.dll,dgxsrr.dll,fdght.dll,rgghjj.dll,sefawe.dll,frntrn.dll,qrhhb.dll,drghszd.dll,fngn.dll,gjjte.dll,xgnfn.dll,xfgnhcgfm.dll,serger.dll,bnxnb.dll,fxgnfx.dll,jzijj.dll,xfgnfx.dll,serghjm.dll,thsddh.dll,xbcvxb.dll,zfdzb.dll,xdndn.dll,xdfntt.dll,hgfhk.dll,dnteh.dll,xfng.dll,njritc.dll,chmfcmh.dll,jwlah.dll,gmnait.dll,hfjg.dll,thurh.dll,mgmgmm.dll,oqrthc.dll,hktrre.dll,jyjlt.dll,ijatnaw.dll,sehhter.dll,fhjfg.dll,zdbdb.dll,ydgn.dll,dbfb.dll,fjnbv.dll,fghshj.dll,setrhes.dll,cdxbfxdb.dll,xfgnxfn.dll,gjkhj.dll,xdhdg.dll,rhs.dll,mrjhtjd.dll,zdbfbd.dll,fjyjy.dll,fxnfnh.dll,bjrvm.dll,ektvm.dll,rdthr.dll,rgfjj.dll,dscef.dll,crugd.dll,lariytrz.dll,hjaiq.dll,kduy.dll,hkfgh.dll,awef.dll,dfhsh.dll,ethsh.dll,stehs.dll,sthth.dll,wfhyt.dll,sperls.dll,
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Contrl Center of Storm Media (ccosm) - 北京暴风网际科技有限公司 - D:\Program Files\暴风影音\stormliv.exe
O23 - Service: clic onfg (cliconfg) - Unknown owner - C:\WINDOWS\system32\cliconfg.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallShield Licensing Service - Macrovision                                                    - C:\Program Files\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - D:\Program Files\3D\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: QTGame - Unknown owner - C:\WINDOWS\QTGame.exe (file missing)
O23 - Service: Rising Personal Firewall Service (RfwService) - Unknown owner - d:\program files\瑞星\rising\rfw\rfwsrv.exe (file missing)
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - D:\Program Files\瑞星\Rising\Rav\CCenter.exe
O23 - Service: Unigraphics License Server (uglmd) - Macrovision Corporation - D:\Program Files\UG3.0\UGNXFLEXlm\lmgrd.exe
--
文件结束 - 7165 字节

用户系统信息：Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) ; .NET CLR 1.1.4322; .NET CLR 2.0.50727; MAXTHON 2.0)

建议你看一下以下处理方法能否解决问题
http://zhidao.ikaka.com/Aspx/Html/StaticHtml/8184.html

1.用XDelBox勾选抑制再生后删除以下文件：(XDelBox1.7支持奥运版下载)
使用说明：删除时复制所有要删除文件的路径，在待删除文件列表里点击右键选择从剪贴板导入不检查路径，导入后在要删除文件上点击右键，选择立刻重启删除，电脑会重启进入DOS界面进行删除操作。运行xdelbox前最好卸载所有可移动存储介质（包括U盘，MP3，手机存储卡等）。

C:\WINDOWS\TEMP\_qosec29.msi
C:\WINDOWS\fiosectc.exe
C:\WINDOWS\dbhlp32.exe
C:\WINDOWS\WINSvr64.exe
C:\WINDOWS\huifitc.exe
C:\WINDOWS\fmbiost.exe
C:\WINDOWS\ticisms.exe
C:\WINDOWS\yijezfri.exe
C:\WINDOWS\yuiabct.exe
C:\WINDOWS\anistio.exE
C:\WINDOWS\fmsjhif.exe
C:\WINDOWS\bincdwsa.exe
C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll
C:\Program Files\Tencent\QQToolbar\IEBar.dll
C:\WINDOWS\system32\8.bat

修复以下：

O2 - BHO: Info cache - {385AB8C6-FB22-4D17-8834-064E2BA0A6F0} - C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll
O3 - 工具栏: QQToolbar - {29CF293A-1E7D-4069-9E11-E39698D0AF95} - C:\Program Files\Tencent\QQToolbar\IEBar.dll
O4 - HKLM\..\Run: [fiosectc] C:\WINDOWS\fiosectc.exe
O4 - HKLM\..\Run: [dbhlp32]  C:\WINDOWS\dbhlp32.exe
O4 - HKLM\..\Run: [WINSvr64] C:\WINDOWS\WINSvr64.exe
O4 - HKLM\..\Run: [huifitc]  C:\WINDOWS\huifitc.exe
O4 - HKLM\..\Run: [fmbiost]  C:\WINDOWS\fmbiost.exe
O4 - HKLM\..\Run: [ticisms]  C:\WINDOWS\ticisms.exe
O4 - HKLM\..\Run: [cygipjfe] C:\WINDOWS\yijezfri.exe
O4 - HKLM\..\Run: [yuiabct]  C:\WINDOWS\yuiabct.exe
O4 - HKLM\..\Run: [anistio]  C:\WINDOWS\anistio.exE
O4 - HKLM\..\Run: [fmsjhif]  C:\WINDOWS\fmsjhif.exe
O4 - HKLM\..\Run: [bincdwsa] C:\WINDOWS\bincdwsa.exe
O4 - Startup: 8.bat
O20 - AppInit_DLLs: ghjdtry.dll,dgxsrr.dll,fdght.dll,rgghjj.dll,sefawe.dll,frntrn.dll,qrhhb.dll,drghszd.dll,fngn.dll,gjjte.dll,xgnfn.dll,xfgnhcgfm.dll,serger.dll,bnxnb.dll,fxgnfx.dll,jzijj.dll,xfgnfx.dll,serghjm.dll,thsddh.dll,xbcvxb.dll,zfdzb.dll,xdndn.dll,xdfntt.dll,hgfhk.dll,dnteh.dll,xfng.dll,njritc.dll,chmfcmh.dll,jwlah.dll,gmnait.dll,hfjg.dll,thurh.dll,mgmgmm.dll,oqrthc.dll,hktrre.dll,jyjlt.dll,ijatnaw.dll,sehhter.dll,fhjfg.dll,zdbdb.dll,ydgn.dll,dbfb.dll,fjnbv.dll,fghshj.dll,setrhes.dll,cdxbfxdb.dll,xfgnxfn.dll,gjkhj.dll,xdhdg.dll,rhs.dll,mrjhtjd.dll,zdbfbd.dll,fjyjy.dll,fxnfnh.dll,bjrvm.dll,ektvm.dll,rdthr.dll,rgfjj.dll,dscef.dll,crugd.dll,lariytrz.dll,hjaiq.dll,kduy.dll,hkfgh.dll,awef.dll,dfhsh.dll,ethsh.dll,stehs.dll,sthth.dll,wfhyt.dll,sperls.dll,

做完下载以下软件 更新杀毒软件至最新 重起按F8选择进入安全模式清理并全盘扫描一次：

清理系统临时文件和IE临时文件夹
http://www.atribune.org/public-beta/ATF-Cleaner.exe
用金山清理专家清理恶意软件
http://www.duba.net/zt/ksc/down.shtml
下载 windows清理助手清理一遍
http://www.arswp.com/download/arswp2/arswp2.zip

先谢,偶正要扫个SREngLOG附件上传呢

最好在操作完成后再扫描SRE日志  比较全面点

恩,瑞星还是不能运行,System Repair Engineer在附件中;

点击下载雨林木风PE安装包进行安装以防止误操作删除系统文件无法进入系统时的修复,并在安装完成后重起一次确认可以正常进入PE系统后继续以下操作。

一定要做：安装完PE后进入PE，复制c:\windows\system32\dllcache\mfc40u.dll 粘贴到c:\windows\system32\文件夹内 替换掉该路径下的原文件

下载附件 解压后双击将注册表导入

1.用XDelBox勾选抑制再生后删除以下文件：(XDelBox1.7支持奥运版下载)
使用说明：删除时复制所有要删除文件的路径，在待删除文件列表里点击右键选择从剪贴板导入不检查路径，导入后在要删除文件上点击右键，选择立刻重启删除，电脑会重启进入DOS界面进行删除操作。运行xdelbox前最好卸载所有可移动存储介质（包括U盘，MP3，手机存储卡等）。

c:\windows\system32\dnteh.dll
c:\windows\system32\sperls.dll
c:\windows\system32\anistio.dll
c:\windows\system32\bgejnbxf.dll
c:\windows\system32\bincdwsa.dll
c:\windows\system32\dbhlp32.dll
c:\windows\system32\dqabcabc1031.dll
c:\windows\system32\dqbaibai1067.dll
c:\windows\system32\dqdabdab1071.dll
c:\windows\system32\dqdlqdlq1007.dll
c:\windows\system32\dqezzezz1056.dll
c:\windows\system32\dqsadsad1041.dll
c:\windows\system32\dqwlvwlv1014.dll
c:\windows\system32\fiosectc.dll
c:\windows\system32\fmbiost.dll
c:\windows\system32\fmsjhif.dll
c:\windows\system32\huifitc.dll
c:\windows\system32\ticisms.dll
c:\windows\system32\tthadhad1071.dll
c:\windows\system32\ttkafkaf1072.dll
c:\windows\system32\ttmysmys1053.dll
c:\windows\system32\ttnnbnnb1056.dll
c:\windows\system32\winsvr64.dll
c:\windows\system32\yuiabct.dll
c:\windows\system32\zuxsfvm.dll
c:\windows\system32\aferrer.ocx
c:\windows\cxiaqs.exe
c:\windows\ndmohw.exe
c:\windows\pcrlko.exe
c:\windows\sbhqby.exe
c:\windows\afrlyw.exe
c:\windows\xnagan.exe
c:\windows\cildrc.exe
c:\documents and settings\user\「开始」菜单\程序\启动\8.bat
c:\windows\qtgame.exe
c:\windows\system32\drivers\1h0s.sys
c:\windows\system32\drivers\acpidisk.sys
c:\windows\system32\drivers\zcfxxxuz.sys
c:\windows\system32\drivers\wnjid.sys
c:\windows\system32\drivers\ump7dkkp.sys
c:\windows\system32\drivers\t7qf.sys
c:\docume~1\user\locals~1\temp\tmpe5.tmp
c:\windows\system32\drivers\msosmsfpfis64.sys
c:\docume~1\user\locals~1\temp\tmpef.tmp
c:\windows\temp\tmp11.tmp
c:\windows\temp\tmp21.tmp
c:\docume~1\user\locals~1\temp\tmpe3.tmp
c:\docume~1\user\locals~1\temp\tmpf5.tmp
c:\windows\temp\~wxp2ins.734.tmp
c:\windows\system32\4131.dll
c:\windows\system32\asycfllt.cpl
c:\windows\system32\rtmpiloguabkl.dll
c:\windows\system32\beiwaotvwa.dll
c:\documents and settings\all users\application data\microsoft\pctools\pctools.dll

2.删除重启后使用SREng修复下面各项：

    启动项目 －－ 注册表之如下项删除：
[{a580305f-b902-4723-ac26-06e4cb4279a5}]   
[{b855ec1a-a8f8-4f59-ab45-08de1dae1ae2}]   
[{3cc67dc4-e953-4b2f-ae22-fcb4dcc3903a}]   
[{77f7e039-7181-4a6d-b1bb-8c81f81e833a}]   
[{67ba0720-e5a5-4b59-92cc-63faf4816f27}]   
[{9947e423-193f-4fc4-b38d-e76fdd799150}]   
[{1950369a-7bb1-4235-83a3-054b26f1943b}]   
[{86ba2ef4-3501-47cf-a71d-8759997a44d0}]   
[{3c0a13c5-4df0-4430-9718-bf99ff81334a}]   
[{44a07d49-1e80-46e3-b6b7-aaa9ca462377}]   
[{e1b85bd5-d0bd-4a39-953e-574d200a53b2}]   
注意该项[AppInit_DLLs]修改：把<ghjdtry.dll,dgxsrr.dll,fdght.dll,rgghjj.dll,sefawe.dll,frntrn.dll,qrhhb.dll,drghszd.dll,fngn.dll,gjjte.dll,xgnfn.dll,xfgnhcgfm.dll,serger.dll,bnxnb.dll,fxgnfx.dll,jzijj.dll,xfgnfx.dll,serghjm.dll,thsddh.dll,xbcvxb.dll,zfdzb.dll,xdndn.dll,xdfntt.dll,hgfhk.dll,dnteh.dll,xfng.dll,njritc.dll,chmfcmh.dll,jwlah.dll,gmnait.dll,hfjg.dll,thurh.dll,mgmgmm.dll,oqrthc.dll,hktrre.dll,jyjlt.dll,ijatnaw.dll,sehhter.dll,fhjfg.dll,zdbdb.dll,ydgn.dll,dbfb.dll,fjnbv.dll,fghshj.dll,setrhes.dll,cdxbfxdb.dll,xfgnxfn.dll,gjkhj.dll,xdhdg.dll,rhs.dll,mrjhtjd.dll,zdbfbd.dll,fjyjy.dll,fxnfnh.dll,bjrvm.dll,ektvm.dll,rdthr.dll,rgfjj.dll,dscef.dll,crugd.dll,lariytrz.dll,hjaiq.dll,kduy.dll,hkfgh.dll,awef.dll,dfhsh.dll,ethsh.dll,stehs.dll,sthth.dll,wfhyt.dll,sperls.dll,>修改为<>即清空
[fmbiost] 
[huifitc] 
[yuiabct] 
[WINSvr64] 
[bincdwsa] 
[ticisms] 
[fmsjhif] 
[dbhlp32] 
[cygipjfe] 
[fiosectc] 
[anistio] 

    启动项目 －－　启动文件夹之如下项删除：
[8]   

    启动项目 －－ 服务 －－ Win32服务应用程序之如下项删除：
[QTGame / QTGame] 

    启动项目 －－ 服务－－ 驱动程序之如下项删除：
[1h0 / 1h0s]         
[acpidisk / acpidisk]
[zcfxxxuz / zcfxxxuz]
[wnji / wnjid]   
[ump7dkk / ump7dkkp] 
[t7q / t7qf] 
[ping / ping] 
[msfpfis64 / msfpfis64]
[mnsf / mnsf]   
[mhfp / mhfp]   
[fmsq / fmsq]   
[dohs / dohs]   
[cqit / cqit]   
[Atixeve21937 / Atixeve21937]   

    系统修复－－　浏览器加载项之如下项删除：
[Invoke Class]    <C:\WINDOWS\system32\4131.dll>
[BBho Class]    <C:\WINDOWS\system32\asycfllt.cpl>
[]    <C:\WINDOWS\system32\rtmpiloguabkl.dll>
[]    <C:\WINDOWS\system32\beiwaotvwa.dll>
[Info cache]    <C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll>

下载以下软件，更新杀毒软件至最新重起进入安全模式清理一次并进行全盘扫描一次：

清理系统临时文件和IE临时文件夹
http://www.atribune.org/public-beta/ATF-Cleaner.exe
用金山清理专家清理恶意软件
http://www.duba.net/zt/ksc/down.shtml
下载 windows清理助手清理一遍
http://www.arswp.com/download/arswp2/arswp2.zip

惊动了WG,正用瑞星在线杀毒中,在下不好插手 ;

WG????

什么东西??

就是网管,
这家伙白痴一个,只知道重装系统,
从昨天下午捣鼓到今个早上,也没着,
正在重装呢;
我看到用的是1月8号的病毒库在杀;
晚上我那同事的QQ号都被偷了,还好及时激活了;


不过还是要多谢您!
又了解了不少病毒防治知识,下次再找你,哈哈


另外:一定要做：安装完PE后进入PE，?
PE怎么进?

我看了下,都是些工具,
不过硬盘分区多了4个;