回复: 怎么杀?每天杀毒都跳
异常项目如下:
==================================
启动项目
注册表
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Soltek><C:\WINDOWS\system32\autorun.exe> []
<sdafdsafds><C:\WINDOWS\temp\sd153.exe> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{8C8D1401-A58D-A81C-CD24-A5915C4517C8}><C:\WINDOWS\system32\mnmhhsrv.dll> [File is missing]
<{DC3D30AE-0380-4151-8934-EE98A34B0370}><C:\WINDOWS\system32\mfdesy.dll> [File is missing]
<{17DFD111-BF3A-4CB4-ADB0-88FCBFE69821}><> [N/A]
<{28EB3777-3E23-4E72-8449-A992D09D24C3}><C:\WINDOWS\system32\zefdst.dll> [File is missing]
<{A9895933-6636-4281-BC58-EE6DE2AF96E3}><C:\WINDOWS\system32\ddserh.dll> [File is missing]
<{45AADFAA-DD36-42AB-83AD-0521BBF58C24}><> [N/A]
<{90AF1289-F140-A140-D012-C1458759FC09}><C:\WINDOWS\system32\ypcqhhlp.dll> [File is missing]
<{E8A3B193-77E3-4FB3-986D-F4FA4828BAFC}><C:\WINDOWS\system32\wklsdd.dll> [File is missing]
<{5E907A48-400E-4EA8-9792-FFAE052D59E9}><C:\WINDOWS\system32\pedadt.dll> [File is missing]
<{4D698451-2015-6358-9871-2015987452D4}><C:\WINDOWS\system32\apzhdtde.dll> [File is missing]
<{00030003-0003-0003-0003-00030003BB15}><C:\WINDOWS\system32\bootvidgj.dll> [File is missing]
<{AA59145F-315D-BC23-AC1F-145DF81A34AA}><C:\WINDOWS\system32\zyzxjime.dll> [File is missing]
<{84143967-B645-4BFF-B873-DA1DC886E9A7}><C:\WINDOWS\system32\cedafb.dll> [File is missing]
<{8A041F13-A111-12A3-B0CF-F99818AA68A8}><C:\WINDOWS\system32\zxmsewin.dll> [File is missing]
<{C629FF4F-ACDB-5C90-A098-FACB3456A26C}><C:\WINDOWS\system32\hdf453d1.dll> [File is missing]
<{0B846B26-BFE6-4E8E-A948-1DB17B77B483}><C:\WINDOWS\system32\tdfhex.dll> [File is missing]
<{2A698452-C5D8-C584-C256-C264C987C5A2}><C:\WINDOWS\system32\ijdybpaw.dll> [File is missing]
<{189F087F-4378-405F-85FA-37D955AD7A8C}><C:\WINDOWS\system32\mtewdh.dll> [File is missing]
<{97FD640A-158F-48AC-FD14-1597F14A9779}><C:\WINDOWS\system32\mndsisrv.dll> [File is missing]
<{C0595A7E-2E2F-4B34-A83A-019270A0A464}><C:\WINDOWS\system32\tdffdl.dll> [File is missing]
<{8FD45A54-9875-698F-E56E-65102358FDF8}><C:\WINDOWS\system32\apsghjba.dll> [File is missing]
<{F99DEFDD-200B-4410-B572-E90883D527D2}><C:\WINDOWS\system32\wrqszl.dll> [File is missing]
<{64FAE856-AD58-20CB-A025-CD4895FA6E46}><C:\WINDOWS\system32\pjjxfdwd.dll> [File is missing]
<{841529CB-7F77-4B99-A895-B5441E0D302F}><C:\WINDOWS\system32\jfrwdh.dll> [File is missing]
<{A1954FAC-1023-154F-895A-1458258AD81A}><C:\WINDOWS\system32\ypdjhbmp.dll> [File is missing]
<{00120012-0012-0012-0012-00120012BB15}><C:\WINDOWS\system32\kbdswjr.dll> [File is missing]
<{6E6CA8A1-81BC-4707-A54C-F4903DD70BAD}><> [N/A]
<{8C41B7F7-3168-400D-A702-0E7EFE0BA304}><C:\WINDOWS\system32\sgdewg.dll> [File is missing]
<{60940F85-F015-14F1-A05F-F69858AC6D06}><C:\WINDOWS\system32\zptldsys.dll> [File is missing]
<{81AF1CF6-D1C9-4C6A-AC01-EDE54E71945B}><C:\WINDOWS\system32\jfdses.dll> [File is missing]
<{55694105-5108-9405-3695-954187462155}><C:\WINDOWS\system32\mpwdeapi.dll> [File is missing]
<{47AC9076-C898-B098-D098-A18319080974}><C:\WINDOWS\system32\nhmxdjkl.dll> [File is missing]
<{259BF3CF-194D-4FE6-9ADB-DE6544B098B6}><C:\WINDOWS\system32\dndsaf.dll> [File is missing]
<{28766E1C-74B0-4417-8C75-F12AE309EF35}><C:\WINDOWS\system32\wzcfsw.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<bootvidgj.dll><C:\WINDOWS\system32\bootvidgj.dll> [File is missing]
<kbdswjr.dll><C:\WINDOWS\system32\kbdswjr.dll> [File is missing]
==================================
服务
[Portable Equipment Service / AtHome][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\spted.dll><N/A>
[d3dim32 / d3dim32][Stopped/Auto Start]
<C:\WINDOWS\system32\system32\dllcache\d3dimv32.exe><IniCom Networks, Inc.>
[fydbac / fydbac][Stopped/Auto Start]
<C:\WINDOWS\system32\SVCHOST.EXE -k fydbac-->%SystemRoot%\System32\ynzays.dll><N/A>
[Windows puou RunThem / puou][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\PROGRA~1\kpjp\uztz.dll><N/A>
[Security Control / seictrl][Stopped/Auto Start]
<c:\windows\system32\rundll32.exe dbi100.dll,scan><Microsoft Corporation>
[Windows svcs RunThem / svcs][Stopped/Auto Start]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\PROGRA~1\winp\snet.dll><N/A>
[Print Manager / WIDETS][Stopped/Auto Start]
<C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL,Export 1087><(File is missing)>
==================================
驱动程序
[fkrwcq0 / fkrwcq00][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\fkrwcq00.sys><N/A>
[TSKSP / TSKSP][Stopped/Manual Start]
<\??\D:\Tencent\QQDoctor\TSKSP.sys><N/A>
[yydbacxt / yydbacxt][Stopped/Auto Start]
<\??\C:\WINDOWS\system32\drivers\ynzays.sys><N/A>
==================================
浏览器加载项
[]
{47AC9076-C898-B098-D098-A18319080974} <C:\WINDOWS\system32\nhmxdjkl.dll, N/A>
[]
{98836B5F-4E24-4207-952D-A5EA63C7A645} <C:\WINDOWS\system32\hseelrfudrdtq.dll, N/A>
[Spocx Class]
{8135EF31-FE8C-4C6E-A18A-F59944C3A488} <C:\WINDOWS\Downloaded Program Files\dddspocx.dll, N/A>
[IEDown Class]
{D0A29C6C-AA71-4423-8C4A-5998B774C448} <C:\WINDOWS\system32\GLIEDown2.dll, N/A>
[Hbact.HbactObject]
{EF248BC9-F17D-4024-8868-71A5D22C667C} <C:\WINDOWS\DOWNLO~1\hbact.dll, >
[Msp Class]
{EF9F1C48-1A63-495A-9317-B7B71B34A9CF} <C:\WINDOWS\Downloaded Program Files\dddmsp.dll, >
[]
{47AC9076-C898-B098-D098-A18319080974} <C:\WINDOWS\system32\nhmxdjkl.dll, N/A>
[]
{98836B5F-4E24-4207-952D-A5EA63C7A645} <C:\WINDOWS\system32\hseelrfudrdtq.dll, N/A>
==================================
注意:红色可疑,其他病毒
