打印

[求助] 这是什么病毒！！！

djw

新兵

积分: 9
威望: 19
元宝: 0
铜钱: 13

1楼大中小发表于 2008-6-30 21:46 只看该作者

这是什么病毒！！！

这是什么病毒！！？？机器慢死了，总是蹦出来一些莫名其妙的连接............我的电脑里出现了一种病毒，它专门把硬盘里的文件夹隐藏起来，它本身也是隐藏的文件，它的文件名是：Thumbs 我用金山杀毒却查不出、也杀不掉，你就是把它删除了，可是，马上它就又回来了。请各位大虾指教，怎样才能清除该病毒！！！

TOP

vistalong

爱毒霸社区缉毒队

积分: 4292
威望: 9098
元宝: 16
铜钱: 5695

安全精英安全之星勋章周刊评论员

2楼大中小发表于 2008-6-30 21:58 只看该作者

金山清理专家
－>恶意软件查杀
-->在线系统诊断-->导出诊断报告-->勾选隐藏所有已知安全的项＋全选-->导出报告
全选，复制，贴报告

TOP

djw

新兵

积分: 9
威望: 19
元宝: 0
铜钱: 13

3楼大中小发表于 2008-7-1 12:46 只看该作者

这是什么病毒！！！

==============================================================
      金山清理专家系统诊断报告

该诊断报告由金山清理专家提供 http://www.duba.net
==============================================================

诊断时间:          2008-07-01, 12:43
诊断平台:          Windows XP [5.1.2600] Service Pack 2
IE版本:             Internet Explorer V6.0.2180.2900
计算机物理内存:    255(MB)
当前可用内存:       51(MB)
硬盘总大小:       74(GB)
硬盘可用空间:       41(GB)
清理专家版本:       2008.06.13.404
恶意软件库版本:    2008.06.30.1
漏洞库版本:       2008.06.26.1

==============================================================
      常规启动项
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

      [racer]             <C:\Program Files\racer-ccn-racerpc-ha\racer.exe>
      文件路径: C:\Program Files\racer-ccn-racerpc-ha\racer.exe [分析中]

--------------------------------------------------------------
该项来源: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

      [QQDownload]       <"D:\腾讯QQ\QQ珊瑚虫\QQDownload\QQDownload.exe" autostart>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQDownload\QQDownload.exe [分析中]

==============================================================
      登陆加载项
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

      [Shell]          <Explorer.exe>
      文件路径: C:\WINDOWS\Explorer.exe  [分析中]

==============================================================
      启动文件夹位置
==============================================================

Common Startup:    C:\Documents and Settings\All Users\「开始」菜单\程序\启动
Startup:          C:\Documents and Settings\Administrator\「开始」菜单\程序\启动
Common Startup:    %ALLUSERSPROFILE%\「开始」菜单\程序\启动

==============================================================
      系统服务
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

      [ccosm] [已启用]             <C:\Program Files\StormII\stormliv.exe /asservice>
      文件路径: C:\Program Files\StormII\stormliv.exe  [分析中]

      [DcomLaunch] [已启用]       <%SystemRoot%\system32\rpcss.dll>
      文件路径: C:\WINDOWS\system32\rpcss.dll [分析中]

      [Dhcp] [已启用]             <%SystemRoot%\System32\dhcpcsvc.dll>
      文件路径: C:\WINDOWS\System32\dhcpcsvc.dll [分析中]

      [EventSystem] [已启用]       <C:\WINDOWS\system32\es.dll>
      文件路径: C:\WINDOWS\system32\es.dll [分析中]

      [FastUserSwitchingCompatibility] [已启用] <%SystemRoot%\System32\shsvcs.dll>
      文件路径: C:\WINDOWS\System32\shsvcs.dll [分析中]

      [HidServ] [已禁用]          <%SystemRoot%\System32\hidserv.dll>

      [lanmanworkstation] [已启用] <%SystemRoot%\System32\wkssvc.dll>
      文件路径: C:\WINDOWS\System32\wkssvc.dll [分析中]

      [Netman] [已启用]             <%SystemRoot%\System32\netman.dll>
      文件路径: C:\WINDOWS\System32\netman.dll [分析中]

      [RpcSs] [已启用]             <%SystemRoot%\system32\rpcss.dll>
      文件路径: C:\WINDOWS\system32\rpcss.dll [分析中]

      [ShellHWDetection] [已启用] <%SystemRoot%\System32\shsvcs.dll>
      文件路径: C:\WINDOWS\System32\shsvcs.dll [分析中]

      [stisvc] [已启用]             <%SystemRoot%\system32\wiaservc.dll>
      文件路径: C:\WINDOWS\system32\wiaservc.dll [分析中]

      [Themes] [已启用]             <%SystemRoot%\System32\shsvcs.dll>
      文件路径: C:\WINDOWS\System32\shsvcs.dll [分析中]

      [upnphost] [已启用]          <%SystemRoot%\System32\upnphost.dll>
      文件路径: C:\WINDOWS\System32\upnphost.dll [分析中]

      [WebClient] [已启用]          <%SystemRoot%\System32\webclnt.dll>
      文件路径: C:\WINDOWS\System32\webclnt.dll [分析中]

==============================================================
      驱动程序
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

      [aec] [已启用]                <system32\drivers\aec.sys>
      文件路径: C:\WINDOWS\system32\drivers\aec.sys [分析中]

      [ATSpy] [已启用]             <\??\C:\WINDOWS\system32\ATSpy.sys>

      [ENUS_NDIS_DRIVER] [已启用] <system32\enusndis.sys>
      文件路径: C:\WINDOWS\system32\enusndis.sys [分析中]

      [HTTP] [已启用]             <System32\Drivers\HTTP.sys>
      文件路径: C:\WINDOWS\system32\Drivers\HTTP.sys [分析中]

      [NPF] [已启用]                <system32\drivers\npf.sys>
      文件路径: C:\WINDOWS\system32\drivers\npf.sys [分析中]

      [Rdbss] [已启用]             <system32\DRIVERS\rdbss.sys>
      文件路径: C:\WINDOWS\system32\DRIVERS\rdbss.sys [分析中]

      [splitter] [已启用]          <system32\drivers\splitter.sys>
      文件路径: C:\WINDOWS\system32\drivers\splitter.sys [分析中]

      [Srv] [已启用]                <system32\DRIVERS\srv.sys>
      文件路径: C:\WINDOWS\system32\DRIVERS\srv.sys [分析中]

      [Update] [已启用]             <system32\DRIVERS\update.sys>
      文件路径: C:\WINDOWS\system32\DRIVERS\update.sys [分析中]

==============================================================
      当前进程
==============================================================

名称:    Explorer.EXE  [已启用]
文件路径: C:\WINDOWS\Explorer.EXE  [分析中]             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ntdll.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\BROWSEUI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ole32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHDOCVW.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSASN1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPTUI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINTRUST.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMAGEHLP.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NETAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WININET.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WLDAP32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\UxTheme.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ShimEng.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\AppPatch\AcGenral.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINMM.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSACM32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USERENV.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\comctl32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msctfime.ime             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\appHelp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\cscui.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\CSCDLL.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\themeui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSIMG32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\xpsp2res.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\actxprxy.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msutb.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSCTF.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SAMLIB.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ntshrui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ATL.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LINKINFO.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\urlmon.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINSTA.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\webcheck.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WSOCK32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2_32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2HELP.dll             (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\KMailOEBand.DLL (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\kis.dll (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MFC80U.DLL (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCR80.dll (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCP80.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\MFC80CHS.DLL (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\stobject.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\BatMeter.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\POWRPROF.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WTSAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\wdmaud.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rsaenh.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msacm32.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\midimap.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NETSHELL.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rtutils.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\credui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\iphlpapi.dll             (Microsoft Corporation)
模块文件: C:\Program Files\全能音频转换通\ShellEx.dll
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\KAVEXT.DLL (Kingsoft Corporation)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll (Nero AG)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\MFC71U.DLL (Microsoft Corporation)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\MSVCR71.dll (Microsoft Corporation)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\MSVCP71.dll (Microsoft Corporation)
模块文件: C:\Program Files\WinRAR\rarext.dll
模块文件: C:\WINDOWS\system32\MPR.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\drprov.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\ntlanman.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\NETUI0.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\NETUI1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\NETRAP.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\davclnt.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\browselc.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEACC.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSVCP60.dll             (Microsoft Corporation)
模块文件: C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll (Thunder Networking Technologies.LTD)
模块文件: C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll
模块文件: C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_00.dll (Thunder Networking Technologies.LTD)
模块文件: C:\WINDOWS\system32\SXS.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mswsock.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DNSAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSGINA.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ODBC32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\comdlg32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\odbcint.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DUSER.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasadhlp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\sti.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CFGMGR32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MLANG.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\dskquoui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\dskquota.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\shdoclc.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mydocs.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mscms.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINSPOOL.DRV             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NTMARTA.DLL             (Microsoft Corporation)

名称:    racer.exe  [已启用]
命令行: "C:\Program Files\racer-ccn-racerpc-ha\racer.exe"
文件路径: C:\Program Files\racer-ccn-racerpc-ha\racer.exe  [分析中] (Putian Runway)
模块文件: C:\WINDOWS\system32\ntdll.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\rwxre.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nspr4.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\WSOCK32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2_32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2HELP.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\xpcom_core.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\plc4.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\plds4.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ole32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nss3.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\softokn3.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\js3250.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\gkgfx.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\xpcom_compat.dll (Mozilla Foundation)
模块文件: C:\WINDOWS\system32\comdlg32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\COMCTL32.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINSPOOL.DRV             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\smime3.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\ssl3.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\MSCTF.dll                (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\KMailOEBand.DLL (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\kis.dll (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MFC80U.DLL (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCR80.dll (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCP80.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\MFC80CHS.DLL (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msctfime.ime             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mswsock.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\hnetcfg.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\wshtcpip.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\jar50.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_base_comp.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\racer_base.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\kbdhook.dll (Putian Runway)
模块文件: C:\WINDOWS\system32\HID.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msimtf.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\gklayout.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nssckbi.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\xpsp2res.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\uxtheme.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_ad_comp.dll (Putian Runway)
模块文件: C:\WINDOWS\system32\WINTRUST.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSASN1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMAGEHLP.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msimg32.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_access_pppoe.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\pppoe.dll (北京润汇科技有限公司)
模块文件: C:\WINDOWS\system32\iphlpapi.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RASAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasman.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NETAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\TAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rtutils.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINMM.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msv1_0.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USERENV.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Apphelp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DNSAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\winrnr.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WLDAP32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rsaenh.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasadhlp.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_nss4_comp.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nss4.dll (北京润汇科技有限公司)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\wpcap.dll (CACE Technologies)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\packet.dll (CACE Technologies)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\WanPacket.dll (CACE Technologies)
模块文件: C:\WINDOWS\system32\NPPTools.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42u.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42LOC.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\npp\ndisnpp.dll          (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\plugins\NPSWF32.dll
模块文件: C:\WINDOWS\system32\WININET.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mlang.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\wdmaud.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msacm32.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSACM32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\midimap.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\schannel.dll             (Microsoft Corporation)

名称:    stormliv.exe  [已启用]
命令行: "C:\Program Files\StormII\stormliv.exe" /asservice
文件路径: C:\Program Files\StormII\stormliv.exe  [分析中]  (北京暴风网际科技有限公司)
模块文件: C:\WINDOWS\system32\ntdll.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2_32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2HELP.dll             (Microsoft Corporation)
模块文件: C:\Program Files\StormII\MSVCP60.dll       (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\comdlg32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\COMCTL32.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ole32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WININET.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSASN1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42LOC.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\xpsp2res.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mswsock.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\hnetcfg.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\wshtcpip.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DNSAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msxml3.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\iphlpapi.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\winrnr.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WLDAP32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasadhlp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rsaenh.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\cryptdll.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\urlmon.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mlang.dll                (Microsoft Corporation)

==============================================================
      协议
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter

      <text/xml>                   <C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL>

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler

      <mhtml>                      <C:\WINDOWS\system32\inetcomm.dll>
      文件路径: C:\WINDOWS\system32\inetcomm.dll [分析中]

      <ms-help>                      <C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll>

==============================================================
      IE扩展按钮
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions

      [启动迅雷5]
      <{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}> <C:\Program Files\Thunder Network\Thunder\Thunder.exe>
      文件路径: C:\Program Files\Thunder Network\Thunder\Thunder.exe [分析中]

==============================================================
      IE扩展菜单
==============================================================

该项来源: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt

      <&使用超级旋风下载>       <D:\腾讯QQ\QQ珊瑚虫\QQDownload\geturl.htm>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQDownload\geturl.htm [分析中]

      <&使用超级旋风下载全部链接>       <D:\腾讯QQ\QQ珊瑚虫\QQDownload\getAllurl.htm>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQDownload\getAllurl.htm [分析中]

      <使用迅雷下载>       <C:\Program Files\Thunder Network\Thunder\Program\geturl.htm>
      文件路径: C:\Program Files\Thunder Network\Thunder\Program\geturl.htm [分析中]

      <使用迅雷下载全部链接>       <C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm>
      文件路径: C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm [分析中]

      <添加到QQ表情>       <D:\腾讯QQ\QQ珊瑚虫\QQ\AddEmotion.htm>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQ\AddEmotion.htm [分析中]

==============================================================
      ActiveX控件
==============================================================

该项来源: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats

      [DHTML Edit Control Safe for Scripting for IE5]
      <{2D360201-FFF5-11D1-8D03-00A0C959BC0A}>       <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx>
      文件路径: C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx [分析中]

      [XML Document]
      <{48123BC4-99D9-11D1-A6B3-00C04FD91555}>       <C:\WINDOWS\system32\msxml3.dll>
      文件路径: C:\WINDOWS\system32\msxml3.dll [分析中]

      [Thunder Agent Class]
      <{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}>       <C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll>
      文件路径: C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll [分析中]

      [XMP Class]
      <{6483F145-A768-4C41-AACC-52D4D7845851}>       <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>
      文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work [分析中]

      [XDRM]
      <{693571CB-54A3-4E90-9D52-EEAE1334E2D3}>       <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work>
      文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work [分析中]

      [MediaComm Class]
      <{7670648D-461B-42AF-BDFE-46D26AF5EFF2}>       <C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin15.dll>
      文件路径: C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin15.dll [分析中]

      [RDS.DataSpace]
      <{BD96C556-65A3-11D0-983A-00C04FC29E36}>       <C:\Program Files\Common Files\System\msadc\msadco.dll>
      文件路径: C:\Program Files\Common Files\System\msadc\msadco.dll [分析中]

      [XPPlayer Class]
      <{F3E70CEA-956E-49CC-B444-73AFE593AD7F}>       <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\pplayer.dll_1_work>
      文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\pplayer.dll_1_work [分析中]

      [IEDown Class]
      <{F917534D-535B-416B-8E8F-0C04756C31A8}>       <C:\WINDOWS\system32\GLIEDown2.dll>
      文件路径: C:\WINDOWS\system32\GLIEDown2.dll [分析中]

==============================================================
      其他安全区域
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

      [显示摇曳 CPL 扩展]       <deskpan.dll>

      [Microsoft Office Metadata Handler] <C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll>

      [Microsoft Office Thumbnail Handler] <C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll>

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs

      [kernel32]          <kernel32.dll>
      文件路径: C:\WINDOWS\system32\kernel32.dll [分析中]

      [ole32]             <ole32.dll>
      文件路径: C:\WINDOWS\system32\ole32.dll [分析中]

      [olecli32]          <olecli32.dll>
      文件路径: C:\WINDOWS\system32\olecli32.dll [分析中]

      [olecnv32]          <olecnv32.dll>
      文件路径: C:\WINDOWS\system32\olecnv32.dll [分析中]

      [rpcrt4]             <rpcrt4.dll>
      文件路径: C:\WINDOWS\system32\rpcrt4.dll [分析中]

      [user32]             <user32.dll>
      文件路径: C:\WINDOWS\system32\user32.dll [分析中]

TOP

djw

新兵

积分: 9
威望: 19
元宝: 0
铜钱: 13

4楼大中小发表于 2008-7-1 12:52 只看该作者

这是什么病毒！！！

=这是什么病毒！！？？机器慢死了，总是蹦出来一些莫名其妙的连接............我的电脑里出现了一种病毒，它专门把硬盘里的文件夹隐藏起来，它本身也是隐藏的文件，它的文件名是：Thumbs 我用金山杀毒却查不出、也杀不掉，你就是把它删除了，可是，马上它就又回来了。请各位大虾指教，怎样才能清除该病毒！！！=============================================================
      金山清理专家系统诊断报告

该诊断报告由金山清理专家提供 http://www.duba.net
==============================================================

诊断时间:          2008-07-01, 12:43
诊断平台:          Windows XP [5.1.2600] Service Pack 2
IE版本:             Internet Explorer V6.0.2180.2900
计算机物理内存:    255(MB)
当前可用内存:       51(MB)
硬盘总大小:       74(GB)
硬盘可用空间:       41(GB)
清理专家版本:       2008.06.13.404
恶意软件库版本:    2008.06.30.1
漏洞库版本:       2008.06.26.1

==============================================================
      常规启动项
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

      [racer]             <C:\Program Files\racer-ccn-racerpc-ha\racer.exe>
      文件路径: C:\Program Files\racer-ccn-racerpc-ha\racer.exe [分析中]

--------------------------------------------------------------
该项来源: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

      [QQDownload]       <"D:\腾讯QQ\QQ珊瑚虫\QQDownload\QQDownload.exe" autostart>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQDownload\QQDownload.exe [分析中]

==============================================================
      登陆加载项
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

      [Shell]          <Explorer.exe>
      文件路径: C:\WINDOWS\Explorer.exe  [分析中]

==============================================================
      启动文件夹位置
==============================================================

Common Startup:    C:\Documents and Settings\All Users\「开始」菜单\程序\启动
Startup:          C:\Documents and Settings\Administrator\「开始」菜单\程序\启动
Common Startup:    %ALLUSERSPROFILE%\「开始」菜单\程序\启动

==============================================================
      系统服务
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

      [ccosm] [已启用]             <C:\Program Files\StormII\stormliv.exe /asservice>
      文件路径: C:\Program Files\StormII\stormliv.exe  [分析中]

      [DcomLaunch] [已启用]       <%SystemRoot%\system32\rpcss.dll>
      文件路径: C:\WINDOWS\system32\rpcss.dll [分析中]

      [Dhcp] [已启用]             <%SystemRoot%\System32\dhcpcsvc.dll>
      文件路径: C:\WINDOWS\System32\dhcpcsvc.dll [分析中]

      [EventSystem] [已启用]       <C:\WINDOWS\system32\es.dll>
      文件路径: C:\WINDOWS\system32\es.dll [分析中]

      [FastUserSwitchingCompatibility] [已启用] <%SystemRoot%\System32\shsvcs.dll>
      文件路径: C:\WINDOWS\System32\shsvcs.dll [分析中]

      [HidServ] [已禁用]          <%SystemRoot%\System32\hidserv.dll>

      [lanmanworkstation] [已启用] <%SystemRoot%\System32\wkssvc.dll>
      文件路径: C:\WINDOWS\System32\wkssvc.dll [分析中]

      [Netman] [已启用]             <%SystemRoot%\System32\netman.dll>
      文件路径: C:\WINDOWS\System32\netman.dll [分析中]

      [RpcSs] [已启用]             <%SystemRoot%\system32\rpcss.dll>
      文件路径: C:\WINDOWS\system32\rpcss.dll [分析中]

      [ShellHWDetection] [已启用] <%SystemRoot%\System32\shsvcs.dll>
      文件路径: C:\WINDOWS\System32\shsvcs.dll [分析中]

      [stisvc] [已启用]             <%SystemRoot%\system32\wiaservc.dll>
      文件路径: C:\WINDOWS\system32\wiaservc.dll [分析中]

      [Themes] [已启用]             <%SystemRoot%\System32\shsvcs.dll>
      文件路径: C:\WINDOWS\System32\shsvcs.dll [分析中]

      [upnphost] [已启用]          <%SystemRoot%\System32\upnphost.dll>
      文件路径: C:\WINDOWS\System32\upnphost.dll [分析中]

      [WebClient] [已启用]          <%SystemRoot%\System32\webclnt.dll>
      文件路径: C:\WINDOWS\System32\webclnt.dll [分析中]

==============================================================
      驱动程序
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

      [aec] [已启用]                <system32\drivers\aec.sys>
      文件路径: C:\WINDOWS\system32\drivers\aec.sys [分析中]

      [ATSpy] [已启用]             <\??\C:\WINDOWS\system32\ATSpy.sys>

      [ENUS_NDIS_DRIVER] [已启用] <system32\enusndis.sys>
      文件路径: C:\WINDOWS\system32\enusndis.sys [分析中]

      [HTTP] [已启用]             <System32\Drivers\HTTP.sys>
      文件路径: C:\WINDOWS\system32\Drivers\HTTP.sys [分析中]

      [NPF] [已启用]                <system32\drivers\npf.sys>
      文件路径: C:\WINDOWS\system32\drivers\npf.sys [分析中]

      [Rdbss] [已启用]             <system32\DRIVERS\rdbss.sys>
      文件路径: C:\WINDOWS\system32\DRIVERS\rdbss.sys [分析中]

      [splitter] [已启用]          <system32\drivers\splitter.sys>
      文件路径: C:\WINDOWS\system32\drivers\splitter.sys [分析中]

      [Srv] [已启用]                <system32\DRIVERS\srv.sys>
      文件路径: C:\WINDOWS\system32\DRIVERS\srv.sys [分析中]

      [Update] [已启用]             <system32\DRIVERS\update.sys>
      文件路径: C:\WINDOWS\system32\DRIVERS\update.sys [分析中]

==============================================================
      当前进程
==============================================================

名称:    Explorer.EXE  [已启用]
文件路径: C:\WINDOWS\Explorer.EXE  [分析中]             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ntdll.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\BROWSEUI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ole32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHDOCVW.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSASN1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPTUI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINTRUST.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMAGEHLP.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NETAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WININET.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WLDAP32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\UxTheme.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ShimEng.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\AppPatch\AcGenral.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINMM.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSACM32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USERENV.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\comctl32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msctfime.ime             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\appHelp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\cscui.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\CSCDLL.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\themeui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSIMG32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\xpsp2res.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\actxprxy.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msutb.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSCTF.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SAMLIB.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ntshrui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ATL.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LINKINFO.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\urlmon.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINSTA.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\webcheck.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WSOCK32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2_32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2HELP.dll             (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\KMailOEBand.DLL (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\kis.dll (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MFC80U.DLL (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCR80.dll (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCP80.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\MFC80CHS.DLL (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\stobject.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\BatMeter.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\POWRPROF.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WTSAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\wdmaud.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rsaenh.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msacm32.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\midimap.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NETSHELL.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rtutils.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\credui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\iphlpapi.dll             (Microsoft Corporation)
模块文件: C:\Program Files\全能音频转换通\ShellEx.dll
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\KAVEXT.DLL (Kingsoft Corporation)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll (Nero AG)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\MFC71U.DLL (Microsoft Corporation)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\MSVCR71.dll (Microsoft Corporation)
模块文件: C:\Program Files\Nero\Nero 7\Nero BackItUp\MSVCP71.dll (Microsoft Corporation)
模块文件: C:\Program Files\WinRAR\rarext.dll
模块文件: C:\WINDOWS\system32\MPR.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\drprov.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\ntlanman.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\NETUI0.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\NETUI1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\NETRAP.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\davclnt.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\browselc.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEACC.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSVCP60.dll             (Microsoft Corporation)
模块文件: C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll (Thunder Networking Technologies.LTD)
模块文件: C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll
模块文件: C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_00.dll (Thunder Networking Technologies.LTD)
模块文件: C:\WINDOWS\system32\SXS.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mswsock.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DNSAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSGINA.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ODBC32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\comdlg32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\odbcint.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DUSER.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasadhlp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\sti.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CFGMGR32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MLANG.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\dskquoui.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\dskquota.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\shdoclc.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mydocs.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mscms.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINSPOOL.DRV             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NTMARTA.DLL             (Microsoft Corporation)

名称:    racer.exe  [已启用]
命令行: "C:\Program Files\racer-ccn-racerpc-ha\racer.exe"
文件路径: C:\Program Files\racer-ccn-racerpc-ha\racer.exe  [分析中] (Putian Runway)
模块文件: C:\WINDOWS\system32\ntdll.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\rwxre.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nspr4.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\WSOCK32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2_32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2HELP.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\xpcom_core.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\plc4.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\plds4.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ole32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nss3.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\softokn3.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\js3250.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\gkgfx.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\xpcom_compat.dll (Mozilla Foundation)
模块文件: C:\WINDOWS\system32\comdlg32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\COMCTL32.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINSPOOL.DRV             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\smime3.dll (Netscape Communications Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\ssl3.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\MSCTF.dll                (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\KMailOEBand.DLL (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\kis.dll (Kingsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MFC80U.DLL (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCR80.dll (Microsoft Corporation)
模块文件: D:\金山毒霸\Kingsoft Internet Security 2008\MSVCP80.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\MFC80CHS.DLL (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msctfime.ime             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mswsock.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\hnetcfg.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\wshtcpip.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\jar50.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_base_comp.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\racer_base.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\kbdhook.dll (Putian Runway)
模块文件: C:\WINDOWS\system32\HID.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msimtf.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\gklayout.dll (Mozilla Foundation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nssckbi.dll (Netscape Communications Corporation)
模块文件: C:\WINDOWS\system32\xpsp2res.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\uxtheme.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_ad_comp.dll (Putian Runway)
模块文件: C:\WINDOWS\system32\WINTRUST.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSASN1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMAGEHLP.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msimg32.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_access_pppoe.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\pppoe.dll (北京润汇科技有限公司)
模块文件: C:\WINDOWS\system32\iphlpapi.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RASAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasman.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\NETAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\TAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rtutils.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WINMM.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msv1_0.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USERENV.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Apphelp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DNSAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\winrnr.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WLDAP32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rsaenh.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasadhlp.dll             (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\components\racer_nss4_comp.dll (Putian Runway)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\nss4.dll (北京润汇科技有限公司)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\wpcap.dll (CACE Technologies)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\packet.dll (CACE Technologies)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\WanPacket.dll (CACE Technologies)
模块文件: C:\WINDOWS\system32\NPPTools.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42u.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42LOC.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\npp\ndisnpp.dll          (Microsoft Corporation)
模块文件: C:\Program Files\racer-ccn-racerpc-ha\plugins\NPSWF32.dll
模块文件: C:\WINDOWS\system32\WININET.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mlang.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\wdmaud.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msacm32.drv             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSACM32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\midimap.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\schannel.dll             (Microsoft Corporation)

名称:    stormliv.exe  [已启用]
命令行: "C:\Program Files\StormII\stormliv.exe" /asservice
文件路径: C:\Program Files\StormII\stormliv.exe  [分析中]  (北京暴风网际科技有限公司)
模块文件: C:\WINDOWS\system32\ntdll.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2_32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WS2HELP.dll             (Microsoft Corporation)
模块文件: C:\Program Files\StormII\MSVCP60.dll       (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\comdlg32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\COMCTL32.dll (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ole32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WININET.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CRYPT32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSASN1.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MFC42LOC.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\xpsp2res.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mswsock.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\hnetcfg.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\wshtcpip.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\DNSAPI.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msxml3.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\iphlpapi.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\System32\winrnr.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\WLDAP32.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rasadhlp.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\rsaenh.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\cryptdll.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\urlmon.dll             (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\mlang.dll                (Microsoft Corporation)

==============================================================
      协议
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter

      <text/xml>                   <C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL>

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler

      <mhtml>                      <C:\WINDOWS\system32\inetcomm.dll>
      文件路径: C:\WINDOWS\system32\inetcomm.dll [分析中]

      <ms-help>                      <C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll>

==============================================================
      IE扩展按钮
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions

      [启动迅雷5]
      <{09BA8F6D-CB54-424B-839C-C2A6C8E6B436}> <C:\Program Files\Thunder Network\Thunder\Thunder.exe>
      文件路径: C:\Program Files\Thunder Network\Thunder\Thunder.exe [分析中]

==============================================================
      IE扩展菜单
==============================================================

该项来源: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt

      <&使用超级旋风下载>       <D:\腾讯QQ\QQ珊瑚虫\QQDownload\geturl.htm>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQDownload\geturl.htm [分析中]

      <&使用超级旋风下载全部链接>       <D:\腾讯QQ\QQ珊瑚虫\QQDownload\getAllurl.htm>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQDownload\getAllurl.htm [分析中]

      <使用迅雷下载>       <C:\Program Files\Thunder Network\Thunder\Program\geturl.htm>
      文件路径: C:\Program Files\Thunder Network\Thunder\Program\geturl.htm [分析中]

      <使用迅雷下载全部链接>       <C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm>
      文件路径: C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm [分析中]

      <添加到QQ表情>       <D:\腾讯QQ\QQ珊瑚虫\QQ\AddEmotion.htm>
      文件路径: D:\腾讯QQ\QQ珊瑚虫\QQ\AddEmotion.htm [分析中]

==============================================================
      ActiveX控件
==============================================================

该项来源: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats

      [DHTML Edit Control Safe for Scripting for IE5]
      <{2D360201-FFF5-11D1-8D03-00A0C959BC0A}>       <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx>
      文件路径: C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx [分析中]

      [XML Document]
      <{48123BC4-99D9-11D1-A6B3-00C04FD91555}>       <C:\WINDOWS\system32\msxml3.dll>
      文件路径: C:\WINDOWS\system32\msxml3.dll [分析中]

      [Thunder Agent Class]
      <{485463B7-8FB2-4B3B-B29B-8B919B0EACCE}>       <C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll>
      文件路径: C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll [分析中]

      [XMP Class]
      <{6483F145-A768-4C41-AACC-52D4D7845851}>       <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work>
      文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work [分析中]

      [XDRM]
      <{693571CB-54A3-4E90-9D52-EEAE1334E2D3}>       <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work>
      文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work [分析中]

      [MediaComm Class]
      <{7670648D-461B-42AF-BDFE-46D26AF5EFF2}>       <C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin15.dll>
      文件路径: C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin15.dll [分析中]

      [RDS.DataSpace]
      <{BD96C556-65A3-11D0-983A-00C04FC29E36}>       <C:\Program Files\Common Files\System\msadc\msadco.dll>
      文件路径: C:\Program Files\Common Files\System\msadc\msadco.dll [分析中]

      [XPPlayer Class]
      <{F3E70CEA-956E-49CC-B444-73AFE593AD7F}>       <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\pplayer.dll_1_work>
      文件路径: C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\pplayer.dll_1_work [分析中]

      [IEDown Class]
      <{F917534D-535B-416B-8E8F-0C04756C31A8}>       <C:\WINDOWS\system32\GLIEDown2.dll>
      文件路径: C:\WINDOWS\system32\GLIEDown2.dll [分析中]

==============================================================
      其他安全区域
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

      [显示摇曳 CPL 扩展]       <deskpan.dll>

      [Microsoft Office Metadata Handler] <C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll>

      [Microsoft Office Thumbnail Handler] <C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\msoshext.dll>

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs

      [kernel32]          <kernel32.dll>
      文件路径: C:\WINDOWS\system32\kernel32.dll [分析中]

      [ole32]             <ole32.dll>
      文件路径: C:\WINDOWS\system32\ole32.dll [分析中]

      [olecli32]          <olecli32.dll>
      文件路径: C:\WINDOWS\system32\olecli32.dll [分析中]

      [olecnv32]          <olecnv32.dll>
      文件路径: C:\WINDOWS\system32\olecnv32.dll [分析中]

      [rpcrt4]             <rpcrt4.dll>
      文件路径: C:\WINDOWS\system32\rpcrt4.dll [分析中]

      [user32]             <user32.dll>
      文件路径: C:\WINDOWS\system32\user32.dll [分析中]

请高手指教怎样清除这个病毒！！！！！

TOP

djw

新兵

积分: 9
威望: 19
元宝: 0
铜钱: 13

5楼大中小发表于 2008-7-3 10:35 只看该作者

回复 2楼的帖子

这是什么病毒！！！
=这是什么病毒！！？？机器慢死了，总是蹦出来一些莫名其妙的连接............我的电脑里出现了一种病毒，它专门把硬盘里的文件夹隐藏起来，它本身也是隐藏的文件，它的文件名是：Thumbs&n

[求助] 这是什么病毒！！！

这是什么病毒！！！

这是什么病毒！！！

这是什么病毒！！！

回复 2楼 的帖子

回复 2楼的帖子