最近电脑不知中了什么病毒.一开机就弹出一块蓝屏,上面写满英文.
还有什么0*80000004 0*00000000等等的数字串.
重装系统已经很多次了.可惜还是没用.

    还扫描了这些东西!

HijackThis_zww汉化版扫描日志 V1.99.1
保存于      13:10:51, 日期 2007-1-7
操作系统：  Windows XP SP2 (WinNT 5.01.2600)
浏览器：    Internet Explorer v6.00 SP2 (6.00.2900.2180)

当前运行的进程：         
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\drivers\spoclsv.exe
C:\Documents and Settings\new\桌面\ravolusrfree.exe
C:\DOCUME~1\new\LOCALS~1\Temp\RavTmp\setup.exe
C:\WINDOWS\system32\wuauclt.exe
F:\QQ2006\QQ.exe
F:\QQ2006\TIMPlatfrom.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\new\LOCALS~1\Temp\Rar$EX00.506\HijackThis1991zww.exe
C:\WINDOWS\system32\ywuksw.exe
C:\WINDOWS\system32\devgt.exe
C:\WINDOWS\TEMP\exp1orer.exe
C:\Program Files\Internet Explorer\iexplore.exe

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,devgt.exe
O4 - 启动项HKLM\\Run: [qdoxjq] C:\WINDOWS\system32\ywuksw.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - F:\QQ2006\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - F:\QQ2006\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - F:\QQ2006\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - F:\QQ2006\SendMMS.htm
O18 - 列举现有的协议: ipp - (no CLSID) - (no file)
O18 - 列举现有的协议: msdaipp - (no CLSID) - (no file)

    谁能帮帮忙!! 谢谢.

  http://www.kztechs.com/sreng/sreng2.zip

    上不了!

  我的电脑有个“熊猫烧香”的图案。
文件名是GameSetup.exe

[CODE]

2007-01-07,14:14:47

System Repair Engineer 2.3.13.690
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <svcshare><C:\WINDOWS\system32\drivers\spoclsv.exe>  [N/A]
    <Syzmy3><C:\DOCUME~1\new\LOCALS~1\Temp\exp1orer.exe>  [N/A]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <qdoxjq><C:\WINDOWS\system32\ywuksw.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <twin><C:\WINDOWS\system32\twunk32.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,devgt.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]

==================================
启动文件夹
N/A

==================================
服务
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Windows DHCP Service / WinDHCPsvc][Stopped/Auto Start]
  <C:\WINDOWS\system32\rundll32.exe windhcp.ocx,start><Microsoft Corporation>
[WinXP DHCP Service / WinXPDHCPsvc][Stopped/Auto Start]
  <C:\WINDOWS\system32\rundll32.exe xpdhcp.dll,start><Microsoft Corporation>

==================================
驱动程序
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]
  <system32\drivers\ac97intc.sys><Intel Corporation>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Stopped/Manual Start]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[AliIde / AliIde][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\aliide.sys><N/A>
[CmdIde / CmdIde][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[C-Media WDM Audio Interface / cmuda][Running/Manual Start]
  <system32\drivers\cmuda.sys><C-Media Inc>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
  <system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[HWiNFO32 Kernel Driver / HWiNFO32][Running/Auto Start]
  <\??\C:\Program Files\HWiNFO32\HWiNFO32.SYS><REALiX(tm)>
[MegaIDE / MegaIDE][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\MegaIDE.sys><LSI Logic Corporation.>
[nv / nv][Stopped/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtlnicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
[SiS315 / SiS315][Running/Manual Start]
  <system32\DRIVERS\sisgrp.sys><Silicon Integrated Systems Corporation>
[Service for AC'97 Sample Driver (WDM) / SiS7012][Stopped/Manual Start]
  <system32\drivers\sis7012.sys><Silicon Integrated Systems Corporation>
[SIS AGP Bus Filter / sisagp][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[SiSkp / SiSkp][Running/System Start]
  <system32\DRIVERS\srvkp.sys><Silicon Integrated Systems Corporation>

==================================
浏览器加载项
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\flash.ocx, Macromedia, Inc.>
[上传到QQ网络硬盘]
  <F:\QQ2006\AddToNetDisk.htm, N/A>
[添加到QQ自定义面板]
  <F:\QQ2006\AddPanel.htm, N/A>
[添加到QQ表情]
  <F:\QQ2006\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <F:\QQ2006\SendMMS.htm, N/A>

正在运行的进程
[PID: 424][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 484][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 508][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 552][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 564][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 716][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
[PID: 776][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 860][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 960][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1040][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1200][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[PID: 1388][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
[PID: 1628][C:\WINDOWS\system32\wdfmgr.exe]  [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)]
[PID: 1368][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 672][C:\WINDOWS\system32\drivers\spoclsv.exe]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
[PID: 352][C:\Documents and Settings\new\桌面\ravolusrfree.exe]  [Beijing Rising Technology Co., Ltd., 19.4.41.0]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
[PID: 2420][C:\DOCUME~1\new\LOCALS~1\Temp\RavTmp\setup.exe]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 44]
    [C:\DOCUME~1\new\LOCALS~1\Temp\RavTmp\RsCommx.dll]  [rising, 18, 0, 0, 1]
    [C:\DOCUME~1\new\LOCALS~1\Temp\RavTmp\Setup.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 11]
    [C:\DOCUME~1\new\LOCALS~1\Temp\RavTmp\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]
[PID: 6676][C:\WINDOWS\system32\wuauclt.exe]  [Microsoft Corporation, 5.8.0.2469 built by: lab01_n(wmbla)]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
[PID: 7544][F:\QQ2006\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [F:\QQ2006\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 160]
    [F:\QQ2006\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 3, 2, 1]
    [F:\QQ2006\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [F:\QQ2006\QQAPI.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [F:\QQ2006\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [F:\QQ2006\QQMainFrame.dll]  [N/A, N/A]
    [F:\QQ2006\CQQApplication.dll]  [N/A, N/A]
    [F:\QQ2006\NewSkin.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\HostingMgr.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\CameraDll.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\MailSummary.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\QQSpace.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [F:\QQ2006\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\GroupLive.dll]  [N/A, N/A]
    [F:\QQ2006\QQSysMsgMng.dll]  [N/A, N/A]
    [F:\QQ2006\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\QQPlugin.dll]  [N/A, N/A]
    [F:\QQ2006\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\QRingMng.dll]  [N/A, N/A]
    [F:\QQ2006\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [F:\QQ2006\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [F:\QQ2006\QQAvatar.dll]  [N/A, N/A]
    [F:\QQ2006\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [F:\QQ2006\QQPet.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\BQQApplication.dll]  [N/A, N/A]
    [F:\QQ2006\CommercesMng.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [F:\QQ2006\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 200]
    [F:\QQ2006\QQSceneMng.dll]  [N/A, N/A]
    [F:\QQ2006\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 1, 2, 23]
    [F:\QQ2006\QQAllInOne.dll]  [N/A, N/A]
    [F:\QQ2006\SCCore.dll]  [N/A, N/A]
    [F:\QQGame\GameLogCore.Dll]  [, 0, 10, 106, 13]
    [F:\QQGame\Core.dll]  [é??úêDìú???????ú?μí3óD?T1???, 0, 10, 0, 0]
    [F:\QQGame\NetCenter.dll]  [é??úêDìú???????ú?μí3óD?T1???, 0, 10, 0, 0]
    [F:\QQGame\CmdCenter.dll]  [深圳市腾讯计算机系统有限公司, 0, 10, 0, 0]
    [F:\QQGame\HelpDll.dll]  [, 1, 0, 0, 1]
    [F:\QQGame\ResEx.dll]  [深圳市腾讯计算机系统有限公司, 0, 10, 0, 0]
    [F:\QQGame\GameLogAidMgr.dll]  [, 1, 0, 0, 1]
    [F:\QQGame\COMToolKit.dll]  [, 1, 0, 0, 3]
    [F:\QQGame\QQGameAvatar.dll]  [深圳市腾讯计算机系统有限公司                                    Tencent Computer System Ltd., 0, 10, 0, 0]
    [F:\QQGame\GamePublic.dll]  [, 1, 0, 0, 1]
    [F:\QQ2006\QQSettingCtrl.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\flash.ocx]  [Macromedia, Inc., 7,0,14,0]
    [F:\QQ2006\QQCustomFace.dll]  [N/A, N/A]
    [F:\QQ2006\QQMagicFace.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [F:\QQ2006\GroupConnection.dll]  [Tencent, 5, 0, 202, 170]
    [F:\QQ2006\QQMsgFriendMng.dll]  [N/A, N/A]
    [F:\QQ2006\QQZip.dll]  [tencent, 0, 3, 2, 4]
    [F:\QQ2006\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
    [F:\QQ2006\QQFileTransfer.dll]  [Tencent, 5, 0, 202, 180]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]
[PID: 6788][F:\QQ2006\TIMPlatfrom.exe]  [tencent, 0, 3, 1, 8]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [F:\QQ2006\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 9300][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
[PID: 12132][C:\WINDOWS\system32\ywuksw.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
[PID: 14724][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\flash.ocx]  [Macromedia, Inc., 7,0,14,0]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]
[PID: 17076][C:\WINDOWS\system32\drivers\spoclsv.exe]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
[PID: 20764][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
[PID: 21252][C:\WINDOWS\system32\drivers\spoclsv.exe]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
[PID: 39104][C:\WINDOWS\system32\drivers\spoclsv.exe]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
[PID: 52624][C:\WINDOWS\TEMP\exp1orer.exe]  [N/A, N/A]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]
[PID: 66492][C:\WINDOWS\system32\devgt.exe]  [Microsoft Corporation, 5.01.2600]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
[PID: 75612][C:\Program Files\WinRAR\WinRAR.exe]  [N/A, N/A]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]
[PID: 73844][C:\DOCUME~1\new\LOCALS~1\Temp\Rar$EX00.544\SREng.EXE]  [Smallfrogs Studio, 2.3.13.690]
    [C:\WINDOWS\system32\windhcp.ocx]  [N/A, N/A]
    [C:\WINDOWS\system32\xpdhcp.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\ywuksw.dll]  [N/A, N/A]
    [C:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 5]
    [C:\WINDOWS\TEMP\LgSyz.dll]  [N/A, N/A]

文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[C:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe
[D:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe
[E:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe
[F:\]
[AutoRun]
OPEN=setup.exe
shellexecute=setup.exe
shell\Auto\command=setup.exe

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================


[/CODE]

哪位高手帮帮忙吧!!!!!!