我经常用电脑尝试以下内容
我经常上QQ
下BT 电驴

我用正版瑞星2005 查卡巴斯基都有 特洛依木马
这是我的具体状况
看进程

我的hijackthis扫描的东西






Logfile of HijackThis v1.99.1
Scan saved at 16:52:44, on 2005-10-8
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

运行进程:           
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
d:\program files\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\VM_STI.EXE
C:\WINDOWS\system32\RUNDLL32.exe
C:\WINDOWS\system32\rundll32.exe
D:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
D:\PROGRA~1\RISING\RAV\RAVMON.EXE
C:\PROGRA~1\3721\assistse.exe
C:\WINDOWS\system32\ctfmon.exe
d:\program files\rising\rfw\RfwMain.exe
D:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
D:\PROGRAM FILES\RISING\RAV\Ravmond.exe
C:\WINDOWS\System32\svchost.exe
D:\PROGRAM FILES\RISING\RAV\RavStub.exe
D:\Program Files\qq\QQ.exe
D:\Program Files\qq\TIMPlatform.exe
D:\Program Files\Maxthon\Maxthon.exe
C:\WINDOWS\Explorer.exe
D:\Program Files\qq\BugReport.exe
C:\Program Files\JJOL\IME\JJSvr.EXE
D:\Program Files\qq\QQ.exe
E:\木马专杀\HijackThis.exe

R3 - URLSearchHook: bho Class - {ED8DFC5C-10EF-45AB-9DC2-0639AFF5A270} - C:\PROGRA~1\COMMON~1\Wnwb\wnwbio.dll
O2 - BHO: ThunderIEHelper Class - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v5.dll
O2 - BHO: EyeOnBrowser Class - {1272F701-349D-4DB3-BBCD-10CBDCD049FE} - C:\WINDOWS\Downlo~1\_IS_0518\_IS_WEBH.dll
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\Program Files\qq\QQIEHelper.dll
O2 - BHO: ShowBarObject Class - {850B69E4-90DB-4F45-8621-891BF35A5B53} - C:\WINDOWS\system32\alitb\bar.dll
O2 - BHO: Accoona Search Assistant - {944864A5-3916-46E2-96A9-A2E84F3F1208} - C:\Program Files\Accoona\ASearchAssist.dll
O2 - BHO: AssistII - {BB936323-19FA-4521-BA29-ECA6A121BC78} - C:\Program Files\3721\Assist\asbar.dll
O2 - BHO: update wnwb - {ED8DFC5C-10EF-45AB-9DC2-0639AFF5A270} - C:\PROGRA~1\COMMON~1\Wnwb\wnwbio.dll
O3 - Toolbar: 博采 - {4DA2EE61-6399-4C39-AEB9-0D990E610D29} - C:\WINDOWS\system32\BOCAIT~1.DLL
O3 - Toolbar: BitCometBar - {3F1ABCDB-A875-46c1-8345-B72A4567E486} - D:\Program Files\BitComet\BitCometBar\BitCometBar0.1.dll
O3 - Toolbar: 完美网译通 - {F43BD772-ABDD-43b7-A96A-3E9E61946EC0} - C:\WINDOWS\WORLD2\TOOLBAR\hmtoolbar.dll
O3 - Toolbar: 上网助手 - {BB936323-19FA-4521-BA29-ECA6A121BC78} - C:\Program Files\3721\Assist\asbar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE ZSMC USB PC Camera
O4 - HKLM\..\Run: [DAEMON Tools-1033] "D:\Program Files\daemon.exe"  -lang 1033
O4 - HKLM\..\Run: [advapi32] RUNDLL32 C:\WINDOWS\Downlo~1\_IS_0518\_IS_ISC.DLL,isc
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [CnsMin] Rundll32.exe C:\WINDOWS\DOWNLO~1\CnsMin.dll,Rundll32
O4 - HKLM\..\Run: [helper.dll] C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32
O4 - HKLM\..\Run: [RavTimer] D:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
O4 - HKLM\..\Run: [RavMon] D:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM
O4 - HKLM\..\Run: [StormCodec_Helper] "E:\BT\Storm Codec\StormSet.exe" /S /opti
O4 - HKLM\..\Run: [IMSCMig] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - HKLM\..\Run: [assistse] "C:\PROGRA~1\3721\assistse.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &使用迅雷下载 - E:\哥哥\Thunder\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - E:\哥哥\Thunder\getAllurl.htm
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://D:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\Program Files\qq\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\Program Files\qq\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\Program Files\qq\SendMMS.htm
O9 - Extra button: 商机直通车 - {13b0c05c-ef05-4bf6-b0ea-f6111af25544} - C:\WINDOWS\system32\alitb\bar.dll
O9 - Extra button: 信息检索 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Program Files\qq\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Program Files\qq\QQ.EXE
O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\Program Files\qq\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\Program Files\qq\QQIEHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [!CNS]  网络实名
O16 - DPF: {3D8F74EE-8692-4F8F-B8D2-7522E732519E} (WebActivater Control) - http://game.qq.com/QQGame2.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1122515685187
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1122526347531
O17 - HKLM\System\CCS\Services\Tcpip\..\{EB9926CC-57C3-4C43-A31D-1C6B6E07E833}: NameServer = 61.139.2.69 202.96.128.68
O20 - AppInit_DLLs: APIHookDll.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll

ystem Information Collect Tool - Designed By Smallfrogs


20051008-17:01
Windows XP Service Pack 2
Internet Explorer: 6.0.2900.2180


*****************************************************************
      Runing Processes information
*****************************************************************
=====================================================
PROCESS NAME:  System
-----------------------------------------------------
  Process ID  = 0x00000004
  Thread count= 64
  Parent process ID = 0
  Priority Class    = 32


Modules:
------------------------------------


=====================================================
PROCESS NAME:  smss.exe
-----------------------------------------------------
  Process ID  = 0x00000260
  Thread count= 2
  Parent process ID = 4
  Priority Class    = 32


Modules:
------------------------------------
\SystemRoot\System32\smss.exe (0x48580000)

C:\WINDOWS\system32\ntdll.dll (0x7C920000)



=====================================================
PROCESS NAME:  csrss.exe
-----------------------------------------------------
    WARNING: OpenProcess failed with error 5 ()
  Process ID  = 0x000002a0
  Thread count= 11
  Parent process ID = 608


Modules:
------------------------------------


=====================================================
PROCESS NAME:  winlogon.exe
-----------------------------------------------------
  Process ID  = 0x000002b8
  Thread count= 18
  Parent process ID = 608
  Priority Class    = 128


Modules:
------------------------------------
\??\C:\WINDOWS\system32\winlogon.exe (0x01000000)

C:\WINDOWS\system32\ntdll.dll (0x7C920000)

C:\WINDOWS\system32\kernel32.dll (0x7C800000)

C:\WINDOWS\system32\ADVAPI32.dll (0x77DA0000)

C:\WINDOWS\system32\RPCRT4.dll (0x77E50000)

C:\WINDOWS\system32\AUTHZ.dll (0x77FE0000)

C:\WINDOWS\system32\msvcrt.dll (0x77BE0000)

C:\WINDOWS\system32\CRYPT32.dll (0x765E0000)

C:\WINDOWS\system32\USER32.dll (0x77D10000)

C:\WINDOWS\system32\GDI32.dll (0x77EF0000)

C:\WINDOWS\system32\MSASN1.dll (0x76DB0000)

C:\WINDOWS\system32\NDdeApi.dll (0x758A0000)

C:\WINDOWS\system32\PROFMAP.dll (0x75890000)

C:\WINDOWS\system32\NETAPI32.dll (0x5FDD0000)

C:\WINDOWS\system32\USERENV.dll (0x759D0000)

C:\WINDOWS\system32\PSAPI.DLL (0x76BC0000)

C:\WINDOWS\system32\REGAPI.dll (0x76B90000)

C:\WINDOWS\system32\Secur32.dll (0x77FC0000)

C:\WINDOWS\system32\SETUPAPI.dll (0x76060000)

C:\WINDOWS\system32\VERSION.dll (0x77BD0000)

C:\WINDOWS\system32\WINSTA.dll (0x762D0000)

C:\WINDOWS\system32\WINTRUST.dll (0x76C00000)

C:\WINDOWS\system32\IMAGEHLP.dll (0x76C60000)

C:\WINDOWS\system32\WS2_32.dll (0x71A20000)

C:\WINDOWS\system32\WS2HELP.dll (0x71A10000)

C:\WINDOWS\system32\IMM32.DLL (0x76300000)

C:\WINDOWS\system32\LPK.DLL (0x62C20000)

C:\WINDOWS\system32\USP10.dll (0x73FA0000)

C:\WINDOWS\system32\MSGINA.dll (0x758D0000)

C:\WINDOWS\system32\SHELL32.dll (0x7D590000)

C:\WINDOWS\system32\SHLWAPI.dll (0x77F40000)

C:\WINDOWS\system32\COMCTL32.dll (0x5D170000)

C:\WINDOWS\system32\ODBC32.dll (0x73540000)

C:\WINDOWS\system32\comdlg32.dll (0x76320000)

C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (0x77180000)

C:\WINDOWS\system32\odbcint.dll (0x20000000)

C:\WINDOWS\system32\SHSVCS.dll (0x76E10000)

C:\WINDOWS\system32\sfc.dll (0x76B80000)

C:\WINDOWS\system32\sfc_os.dll (0x76C30000)

C:\WINDOWS\system32\ole32.dll (0x76990000)

C:\WINDOWS\system32\Apphelp.dll (0x76D70000)

C:\WINDOWS\system32\msctfime.ime (0x73640000)

C:\WINDOWS\system32\WINSCARD.DLL (0x72360000)

C:\WINDOWS\system32\WTSAPI32.dll (0x76F20000)

C:\WINDOWS\system32\sxs.dll (0x75E00000)

C:\WINDOWS\system32\uxtheme.dll (0x5ADC0000)

C:\WINDOWS\system32\WINMM.dll (0x76B10000)

C:\WINDOWS\system32\rsaenh.dll (0x0FFD0000)

C:\WINDOWS\system32\cscdll.dll (0x76570000)

C:\WINDOWS\system32\WlNotify.dll (0x758B0000)

C:\WINDOWS\system32\WINSPOOL.DRV (0x72F70000)

C:\WINDOWS\system32\MPR.dll (0x71A90000)

C:\WINDOWS\system32\SAMLIB.dll (0x71B70000)

C:\WINDOWS\system32\msv1_0.dll (0x77C40000)

C:\WINDOWS\system32\iphlpapi.dll (0x76D30000)

C:\WINDOWS\system32\cscui.dll (0x76590000)

C:\WINDOWS\system32\MPRAPI.dll (0x76D10000)

C:\WINDOWS\system32\ACTIVEDS.dll (0x77C90000)

C:\WINDOWS\system32\adsldpc.dll (0x76DE0000)

C:\WINDOWS\system32\WLDAP32.dll (0x76F30000)

C:\WINDOWS\system32\ATL.DLL (0x76AF0000)

C:\WINDOWS\system32\OLEAUT32.dll (0x770F0000)

C:\WINDOWS\system32\rtutils.dll (0x76E50000)

C:\WINDOWS\system32\xpsp2res.dll (0x013B0000)

C:\WINDOWS\system32\NTMARTA.DLL (0x76CB0000)

C:\WINDOWS\system32\wdmaud.drv (0x72C90000)

C:\WINDOWS\system32\msacm32.drv (0x72C80000)

C:\WINDOWS\system32\MSACM32.dll (0x77BB0000)

C:\WINDOWS\system32\midimap.dll (0x77BA0000)

C:\WINDOWS\system32\COMRes.dll (0x77020000)

C:\WINDOWS\system32\CLBCATQ.DLL (0x76FA0000)

C:\WINDOWS\System32\wbem\wbemprox.dll (0x74E50000)

C:\WINDOWS\System32\wbem\wbemcomn.dll (0x751F0000)

C:\WINDOWS\System32\wbem\wbemsvc.dll (0x74E30000)

C:\WINDOWS\System32\wbem\fastprox.dll (0x755F0000)

C:\WINDOWS\system32\MSVCP60.dll (0x75FF0000)

C:\WINDOWS\system32\NTDSAPI.dll (0x76770000)

C:\WINDOWS\system32\DNSAPI.dll (0x76EF0000)

我的IE经常弹出广告
它的路径是
res://C:\WINDOWS\System32\shdoclc.dll/dnserror.htm#http://www.chaxun.com/out/ayqll02.htm?mmid=0&vendor=css07000&guid=068190D8-834F-4ed8-91BA-809454B346EB&wow=1

我的鼠标也有问题
我电1下东西
它执行2次
郁闷