重启安装错误

jimsshom

1 最近系统出了点问题：每次装软件需要重启，关机就没有反应，但窗口站已经关了。每次都是如此。
2 组策略打不开，跳出来一个选择软件启动，好像扩展名没注册一样
3 设备管理器也打不开

之前装了vista风格包3.5不知有无影响

请各位大大帮忙看看
Logfile of HijackThis v1.99.1
Scan saved at 12:49:52, on 2007-2-2
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ISS\BlackICE\blackd.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Rising\AntiSpyware\runiep.exe
C:\Program Files\Eset\nod32kui.exe
C:\Vistadrive\vsdrvrt.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ISS\BlackICE\blackice.exe
C:\Program Files\ChinaNet\VnetClient.exe
C:\Program Files\Soft4Ever\looknstop\looknstop.exe
C:\Program Files\Tencent\QQ\QQ.exe
C:\Program Files\Tencent\QQ\TIMPlatform.exe
C:\Program Files\GreenBrowser\GreenBrowser.exe
F:\反木马\HijackThis.exe

R3 - URLSearchHook: 全能助手广告拦截专家 - {ED51E9A3-16C5-4236-99E0-9F093B021433} - C:\PROGRA~1\TWEAKA~1\AssistIEBar.dll
O3 - Toolbar: 全能助手广告拦截专家 - {ED51E9A3-16C5-4236-99E0-9F093B021433} - C:\PROGRA~1\TWEAKA~1\AssistIEBar.dll
O3 - Toolbar: BitComet工具栏 - {3F1ABCDB-A875-46c1-8345-B72A4567E486} - F:\BitComet\BitCometBar\BitCometBar0.6.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\KakaTool.dll
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [runeip] C:\Program Files\Rising\AntiSpyware\runiep.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [Look 'n' Stop] "C:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto
O4 - HKLM\..\Run: [Vistadrvrt] C:\Vistadrive\vsdrvrt.exe
O4 - HKLM\..\Run: [Vistadrv] C:\WINDOWS\Vista\vip\VistaDrv\vsdrv.exe
O4 - HKLM\..\Run: [GlassRun] C:\WINDOWS\Vista\startmenu\glassrun.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: BlackICE PC Protection.lnk = C:\Program Files\ISS\BlackICE\blackice.exe
O8 - Extra context menu item: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O9 - Extra button: 浩方对战平台 - {0A155D3C-68E2-4215-A47A-E800A446447A} - F:\浩方对战平台\GameClient.exe
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra button: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.tomatolei.com
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com.cn/webscanner/kavwebscan_unicode.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) -
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} -
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} -
O16 - DPF: {A96C48EA-AA88-4BBD-B58C-7B41146A6EAC} (Qzone Media Tools) -
O16 - DPF: {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{A24C4316-F733-41CB-9C6A-98A2D1C68B59}: NameServer = 202.109.14.5 202.96.209.133
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: System Safety Monitor - C:\WINDOWS\SYSTEM32\SSMWinlogonEx.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlackICE - Internet Security Systems, Inc. - C:\Program Files\ISS\BlackICE\blackd.exe
O23 - Service: COM+ System Application (COMSysApp) - Unknown owner - C:\WINDOWS\system32\dllhost.exe (file missing)
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: RapApp - Internet Security Systems, Inc. - C:\Program Files\ISS\BlackICE\rapapp.exe
O23 - Service: MS Software Shadow Copy Provider (SwPrv) - Unknown owner - C:\WINDOWS\system32\dllhost.exe (file missing)

听雨醉

看了几遍，没发现什么异常，（你的安全意识不错。）

设备管理器打不开的解决方法：
重新注册下相关DLL文件
具体做法这样：
开始——运行——输入regsvr32 msxml3.dll /s  回车
再次运行regsvr32 msxml4.dll /s    回车

或：
运行 输入cmd 回车在命令提示符下输入
for %1 in (%windir%\system32\*.dll) do regsvr32.exe /s %1
将system32下的所有dll文件注册下试试看

wangjay1980

你也太猛了，这么多安全软件，估计是软件冲突，最好用SRE扫描一下，这个信息太少，不过中毒的可能性不大

jimsshom

忘说了，dll注册了没用.还有设备管理器是说找不到mmc.exe
软件冲突也不会，因为装了以后没事，还有因为lns规则不太好，所以才用black弥补一下。ssm平时也不开的。
我怀疑的是vista的风格包，我的是3.5的，不知是否有问题？
最后就是我下了sre扫描时停在那里，好像卡住了。。。用了杀毒伴侣扫了一下，不知有无帮助。


新情况，刚发现mmc.exe被作为木马屏蔽。。。
问下是否会染毒？如不会我就解开了，如果的确染毒该怎么办？是不是用一个mmc.exe代替就可以了？

[ 本帖最后由 jimsshom 于 2007-2-2 15:28 编辑 ]

jimsshom

|   <智能杀毒伴侣 Version 1.0.0.8> 自动安全分析报告 |
|            [ --2007 年2 月2 日15 时22 分25 秒 --]|
|            [ ----- Microsoft Windows XP  ----- ]|
|                  [ --- IE浏览器插件 --- ]|
浩方对战平台|F:\浩方对战平台\GameClient.exe|{0A155D3C-68E2-4215-A47A-E800A446447A}
QQ|C:\Program Files\Tencent\QQ\QQ.EXE|{c95fe080-8f5d-11d2-a20b-00aa003c157b}
QQ炫彩工具条设置|{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}|{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}
全能助手广告拦截专家|C:\PROGRA~1\TWEAKA~1\AssistIEBar.dll|{ED51E9A3-16C5-4236-99E0-9F093B021433}
Microsoft Url 搜索挂接|%SystemRoot%\system32\shdocvw.dll|{CFBFAE00-17A6-11D0-99CB-00C04FD64497}
全能助手广告拦截专家|C:\PROGRA~1\TWEAKA~1\AssistIEBar.dll|{ED51E9A3-16C5-4236-99E0-9F093B021433}
BitComet工具栏|F:\BitComet\BitCometBar\BitCometBar0.6.dll|{3F1ABCDB-A875-46c1-8345-B72A4567E486}
FlashGet Bar|C:\PROGRA~1\FlashGet\fgiebar.dll|{E0E899AB-F487-11D5-8D29-0050BA6940E3}
卡卡上网安全助手|C:\WINDOWS\system32\KakaTool.dll|{DB9ECD4F-FB8F-4311-B3CE-90B976C2707C}
|                  [ --- 系统网络连接 --- ]|
0.0.0.0 : 0|C:\WINDOWS\system32\svchost.exe|[ 监听 ]
0.0.0.0 : 0|C:\WINDOWS\System32\alg.exe|[ 监听 ]
*.*.*.* : *|C:\WINDOWS\system32\lsass.exe|
*.*.*.* : *|C:\WINDOWS\system32\svchost.exe|
*.*.*.* : *|C:\WINDOWS\system32\svchost.exe|
*.*.*.* : *|C:\WINDOWS\system32\svchost.exe|
*.*.*.* : *|C:\WINDOWS\system32\lsass.exe|
|                  [ --- 系统自动启动 --- ]|
UnlockerAssistant|c:\program files\unlocker\unlockerassistant.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
NvCplDaemon|c:\windows\system32\nvcpl.dll|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
runeip|c:\program files\rising\antispyware\runiep.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
nod32kui|c:\program files\eset\nod32kui.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Look 'n' Stop|c:\program files\soft4ever\looknstop\looknstop.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Vistadrvrt|c:\vistadrive\vsdrvrt.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Vistadrv|c:\windows\vista\vip\vistadrv\vsdrv.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
GlassRun|c:\windows\vista\startmenu\glassrun.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
!AVG Anti-Spyware|c:\program files\grisoft\avg anti-spyware 7.5\avgas.exe|HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ctfmon.exe|c:\windows\system32\ctfmon.exe|HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
BlackICE PC Protection.lnk|C:\Program Files\ISS\BlackICE\blackice.exe|
|                  [ --- 未知进程模块 --- ]|
smartassistant.exe|F:\反木马\smartassistant\smartassistant.exe|斯玛特科技 陈维嘉
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
USERENV.dll|System|
klogon.dll|C:\WINDOWS\system32\klogon.dll|Kaspersky Lab
SSMWinlogonEx.dll|C:\WINDOWS\system32\SSMWinlogonEx.dll|System Safety Limited
msacm32.drv|C:\WINDOWS\system32\msacm32.drv|Microsoft Corporation
AcAdProc.dll|C:\WINDOWS\AppPatch\AcAdProc.dll|Microsoft Corporation
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
xpsp2res.dll|guard.exe|
WPDShServiceObj.dll|C:\WINDOWS\system32\WPDShServiceObj.dll|Microsoft Corporation
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
PortableDeviceTypes.dll|C:\WINDOWS\system32\PortableDeviceTypes.dll|Microsoft Corporation
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
PortableDeviceApi.dll|C:\WINDOWS\system32\PortableDeviceApi.dll|Microsoft Corporation
msacm32.drv|C:\WINDOWS\system32\msacm32.drv|Microsoft Corporation
rarext.dll|C:\Program Files\WinRAR\rarext.dll|
UnlockerCOM.dll|C:\Program Files\Unlocker\UnlockerCOM.dll|
ContextBG.dll|C:\WINDOWS\Vista\Rtback\ContextBG.dll|Grigri
SCCtxMenu.dll|F:\证券之星\StockStar4AD\SCCtxMenu.dll|
nodshex.dll|C:\Program Files\Eset\nodshex.dll|
context.dll|C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll|Anti-Malware Development a.s.
wpdshext.dll|C:\WINDOWS\system32\wpdshext.dll|Microsoft Corporation
Audiodev.dll|C:\WINDOWS\system32\Audiodev.dll|Microsoft Corporation
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
AssistIEBar.dll|C:\PROGRA~1\TWEAKA~1\AssistIEBar.dll|全能助手工作室
Flash9b.ocx|C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx|Adobe Systems, Inc.
msohev.dll|C:\Program Files\Word 2003\msohev.dll|Microsoft Corporation
blackd.exe|C:\Program Files\ISS\BlackICE\blackd.exe|Internet Security Systems, Inc.
blackdll.dll|C:\WINDOWS\system32\blackdll.dll|Internet Security Systems, Inc.
RapAd.dll|C:\Program Files\ISS\BlackICE\RapAd.dll|Internet Security Systems, Inc.
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
iss-pam1.dll|C:\Program Files\ISS\BlackICE\iss-pam1.dll|Internet Security Systems
nod32krn.exe|C:\Program Files\Eset\nod32krn.exe|Eset
nod32krr.dll|C:\Program Files\Eset\nod32krr.dll|
ps_amon.dll|C:\Program Files\Eset\ps_amon.dll|Eset
pr_amon.dll|C:\Program Files\Eset\pr_amon.dll|
ps_dmon.dll|C:\Program Files\Eset\ps_dmon.dll|Eset
pr_dmon.dll|C:\Program Files\Eset\pr_dmon.dll|
ps_emon.dll|C:\Program Files\Eset\ps_emon.dll|Eset
pr_emon.dll|C:\Program Files\Eset\pr_emon.dll|
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
ps_nod32.dll|C:\Program Files\Eset\ps_nod32.dll|Eset
pr_nod32.dll|C:\Program Files\Eset\pr_nod32.dll|
ps_upd.dll|C:\Program Files\Eset\ps_upd.dll|Eset
pr_upd.dll|C:\Program Files\Eset\pr_upd.dll|
nvsvc32.exe|C:\WINDOWS\system32\nvsvc32.exe|NVIDIA Corporation
oodag.exe|C:\WINDOWS\system32\oodag.exe|O&O Software GmbH
OODAGRS.DLL|C:\WINDOWS\system32\OODAGRS.DLL|O&O Software GmbH
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
UnlockerAssistant.exe|C:\Program Files\Unlocker\UnlockerAssistant.exe|
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
runiep.exe|C:\Program Files\Rising\AntiSpyware\runiep.exe|Beijing Rising Technology Co., Ltd.
iep_ctrl.dll|C:\Program Files\Rising\AntiSpyware\iep_ctrl.dll|Beijing Rising Technology Co., Ltd.
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
nod32kui.exe|C:\Program Files\Eset\nod32kui.exe|Eset
nod32rui.dll|C:\Program Files\Eset\nod32rui.dll|
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
pu_amon.dll|C:\Program Files\Eset\pu_amon.dll|Eset
pr_amon.dll|C:\Program Files\Eset\pr_amon.dll|
pu_dmon.dll|C:\Program Files\Eset\pu_dmon.dll|Eset
pr_dmon.dll|C:\Program Files\Eset\pr_dmon.dll|
pu_emon.dll|C:\Program Files\Eset\pu_emon.dll|Eset
pr_emon.dll|C:\Program Files\Eset\pr_emon.dll|
pu_imon.dll|C:\Program Files\Eset\pu_imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
pu_nod32.dll|C:\Program Files\Eset\pu_nod32.dll|Eset
pr_nod32.dll|C:\Program Files\Eset\pr_nod32.dll|
pu_upd.dll|C:\Program Files\Eset\pu_upd.dll|Eset
pr_upd.dll|C:\Program Files\Eset\pr_upd.dll|
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
vsdrvrt.exe|C:\Vistadrive\vsdrvrt.exe|
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
avgas.exe|C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe|Anti-Malware Development a.s.
engine.dll|C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\engine.dll|Anti-Malware Development a.s.
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
blackice.exe|C:\Program Files\ISS\BlackICE\blackice.exe|Internet Security Systems, Inc.
FileSec.dll|C:\Program Files\ISS\BlackICE\FileSec.dll|Internet Security Systems, Inc.
MFC42.DLL|C:\Program Files\ISS\BlackICE\MFC42.DLL|Microsoft Corporation
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
VnetClient.exe|C:\Program Files\ChinaNet\VnetClient.exe|
Communicate.dll|C:\Program Files\ChinaNet\Communicate.dll|0
DialModule.dll|C:\Program Files\ChinaNet\DialModule.dll|GDCN
MFC42.DLL|C:\Program Files\ChinaNet\MFC42.DLL|Microsoft Corporation
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
CLIENT~1.DLL|C:\PROGRA~1\ChinaNet\CLIENT~1.DLL|
PLUGIN~1.OCX|C:\PROGRA~1\ChinaNet\PLUGIN~1.OCX|
sign.dll|C:\PROGRA~1\ChinaNet\sign.dll|0
PostPlug.dll|C:\PROGRA~1\ChinaNet\PostPlug.dll|
ADVERT~1.OCX|C:\PROGRA~1\ChinaNet\ADVERT~1.OCX|
VnetBs.ocx|C:\PROGRA~1\ChinaNet\VnetBs.ocx|
ACCOUN~2.DLL|C:\PROGRA~1\ChinaNet\ACCOUN~2.DLL|
AccountMgr.dll|C:\PROGRA~1\ChinaNet\AccountMgr.dll|
VnetSkin.ocx|C:\PROGRA~1\ChinaNet\VnetSkin.ocx|GDDC
DialogStyle.dll|C:\PROGRA~1\ChinaNet\DialogStyle.dll|
Timer.ocx|C:\PROGRA~1\ChinaNet\Timer.ocx|
PLUGIN~2.OCX|C:\PROGRA~1\ChinaNet\PLUGIN~2.OCX|
NEWMES~1.DLL|C:\PROGRA~1\ChinaNet\NEWMES~1.DLL|
PassCtrl.dll|C:\PROGRA~1\ChinaNet\PassCtrl.dll|
wpcap.dll|C:\WINDOWS\system32\wpcap.dll|Politecnico di Torino
pthreadVC.dll|C:\WINDOWS\system32\pthreadVC.dll|
packet.dll|C:\WINDOWS\system32\packet.dll|Politecnico di Torino
PlugPush.dll|C:\PROGRA~1\ChinaNet\PlugPush.dll|
ALLINT~1.DLL|C:\PROGRA~1\ChinaNet\ALLINT~1.DLL|
VNetLog.ocx|C:\PROGRA~1\ChinaNet\VNetLog.ocx|
StatNum.dll|C:\PROGRA~1\ChinaNet\StatNum.dll|
VNETON~1.OCX|C:\PROGRA~1\ChinaNet\VNETON~1.OCX|
ALLFUN~1.DLL|C:\PROGRA~1\ChinaNet\ALLFUN~1.DLL|GDCN
VnetOptLog.dll|C:\PROGRA~1\ChinaNet\VnetOptLog.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
msacm32.drv|C:\WINDOWS\system32\msacm32.drv|Microsoft Corporation
DlgSkin.ocx|C:\PROGRA~1\ChinaNet\DlgSkin.ocx|
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
Flash9b.ocx|C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx|Adobe Systems, Inc.
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
looknstop.exe|C:\Program Files\Soft4Ever\looknstop\looknstop.exe|Soft4Ever
fwapi.dll|C:\WINDOWS\system32\fwapi.dll|Soft4Ever
plugin_language.dll|C:\Program Files\Soft4Ever\looknstop\plugin_language.dll|
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
QQ.exe|C:\Program Files\Tencent\QQ\QQ.exe|TENCENT
QQBaseClassInDll.dll|C:\Program Files\Tencent\QQ\QQBaseClassInDll.dll|
QQHelperDll.dll|C:\Program Files\Tencent\QQ\QQHelperDll.dll|
BasicCtrlDll.dll|C:\Program Files\Tencent\QQ\BasicCtrlDll.dll|Tencent
MFC42.DLL|C:\Program Files\Tencent\QQ\MFC42.DLL|Microsoft Corporation
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
RICHED32.DLL|C:\Program Files\Tencent\QQ\RICHED32.DLL|Microsoft Corporation
RICHED20.dll|C:\Program Files\Tencent\QQ\RICHED20.dll|Microsoft Corporation
QQAPI.dll|C:\Program Files\Tencent\QQ\QQAPI.dll|
TIMProxy.dll|C:\Program Files\Tencent\QQ\TIMProxy.dll|tencent
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
LoginCtrl.dll|C:\Program Files\Tencent\QQ\LoginCtrl.dll|
npkcntc.dll|C:\Program Files\Tencent\QQ\npkcntc.dll|INCA Internet Co., Ltd.
npkpdb.dll|C:\Program Files\Tencent\QQ\npkpdb.dll|INCA Internet Co., Ltd.
QQRes.dll|C:\Program Files\Tencent\QQ\QQRes.dll|tencent
QQMainFrame.dll|C:\Program Files\Tencent\QQ\QQMainFrame.dll|
CQQApplication.dll|C:\Program Files\Tencent\QQ\CQQApplication.dll|
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
NewSkin.dll|C:\Program Files\Tencent\QQ\NewSkin.dll|
HostingMgr.dll|C:\Program Files\Tencent\QQ\HostingMgr.dll|
CameraDll.dll|C:\Program Files\Tencent\QQ\CameraDll.dll|
MailSummary.dll|C:\Program Files\Tencent\QQ\MailSummary.dll|
QQSpace.dll|C:\Program Files\Tencent\QQ\QQSpace.dll|
vbscript.dll|C:\Program Files\Tencent\QQ\vbscript.dll|Microsoft Corporation
QQGroupMng.dll|C:\Program Files\Tencent\QQ\QQGroupMng.dll|
GroupLive.dll|C:\Program Files\Tencent\QQ\GroupLive.dll|
UserDefinedHead.dll|C:\Program Files\Tencent\QQ\UserDefinedHead.dll|
QQPlugin.dll|C:\Program Files\Tencent\QQ\QQPlugin.dll|
QQConfigPlugin.dll|C:\Program Files\Tencent\QQ\QQConfigPlugin.dll|
QQSysMsgMng.dll|C:\Program Files\Tencent\QQ\QQSysMsgMng.dll|
msacm32.drv|C:\WINDOWS\system32\msacm32.drv|Microsoft Corporation
QRingMng.dll|C:\Program Files\Tencent\QQ\QRingMng.dll|
PhoneAPI.dll|C:\Program Files\Tencent\QQ\PhoneAPI.dll|
DialerAllinOne.dll|C:\Program Files\Tencent\QQ\DialerAllinOne.dll|tencent
QQAllInOne.dll|C:\Program Files\Tencent\QQ\QQAllInOne.dll|
SCCore.dll|C:\Program Files\Tencent\QQ\SCCore.dll|
QQPet.dll|C:\Program Files\Tencent\QQ\QQPet.dll|
LongConnection.dll|C:\Program Files\Tencent\QQ\LongConnection.dll|tencent
QQAvatar.dll|C:\Program Files\Tencent\QQ\QQAvatar.dll|
FlashAvatarDll.dll|C:\Program Files\Tencent\QQ\FlashAvatarDll.dll|
BQQApplication.dll|C:\Program Files\Tencent\QQ\BQQApplication.dll|
CommercesMng.dll|C:\Program Files\Tencent\QQ\CommercesMng.dll|
PersonalDesktop.dll|C:\Program Files\Tencent\QQ\PersonalDesktop.dll|深圳市腾讯计算机系统公司QQ工作小组
QQAddr.dll|C:\Program Files\Tencent\QQ\QQAddr.dll|深圳市腾讯计算机系统有限公司
QQSceneMng.dll|C:\Program Files\Tencent\QQ\QQSceneMng.dll|
QQPhoneHelper.dll|C:\Program Files\Tencent\QQ\QQPhoneHelper.dll|腾讯科技（深圳）有限公司
GameLogCore.Dll|C:\Program Files\Tencent\QQGame\GameLogCore.Dll|
Core.dll|C:\Program Files\Tencent\QQGame\Core.dll|é??úêDìú???????ú?μí3óD?T1???
NetCenter.dll|C:\Program Files\Tencent\QQGame\NetCenter.dll|é??úêDìú???????ú?μí3óD?T1???
CmdCenter.dll|C:\Program Files\Tencent\QQGame\CmdCenter.dll|深圳市腾讯计算机系统有限公司
HelpDll.dll|C:\Program Files\Tencent\QQGame\HelpDll.dll|
ResEx.dll|C:\Program Files\Tencent\QQGame\ResEx.dll|深圳市腾讯计算机系统有限公司
GameLogAidMgr.dll|C:\Program Files\Tencent\QQGame\GameLogAidMgr.dll|
COMToolKit.dll|C:\Program Files\Tencent\QQGame\COMToolKit.dll|
QQGameAvatar.dll|C:\Program Files\Tencent\QQGame\QQGameAvatar.dll|深圳市腾讯计算机系统有限公司                                    Tencent Computer System Ltd.
GamePublic.dll|C:\Program Files\Tencent\QQGame\GamePublic.dll|
QQMsgFriendMng.dll|C:\Program Files\Tencent\QQ\QQMsgFriendMng.dll|
QQZip.dll|C:\Program Files\Tencent\QQ\QQZip.dll|tencent
QQCustomFace.dll|C:\Program Files\Tencent\QQ\QQCustomFace.dll|
gdiplus.dll|C:\Program Files\Tencent\QQ\gdiplus.dll|Microsoft Corporation
ImageOle.dll|C:\Program Files\Tencent\QQ\ImageOle.dll|TODO: <Company name>
videodevice.dll|C:\Program Files\Tencent\QQ\videodevice.dll|Tencent
inplus.dll|C:\Program Files\Tencent\QQ\inplus.dll|Tencent
l3codeca.acm|C:\WINDOWS\system32\l3codeca.acm|Fraunhofer Institut Integrierte Schaltungen IIS
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
TIMPlatform.exe|C:\Program Files\Tencent\QQ\TIMPlatform.exe|tencent
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
TIMProxy.dll|C:\Program Files\Tencent\QQ\TIMProxy.dll|tencent
GreenBrowser.exe|C:\Program Files\GreenBrowser\GreenBrowser.exe|MoreQuick
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
UNISPIM5.IME|C:\WINDOWS\system32\UNISPIM5.IME|北京紫光华宇软件股份有限公司
msacm32.drv|C:\WINDOWS\system32\msacm32.drv|Microsoft Corporation
Flash9b.ocx|C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx|Adobe Systems, Inc.
AssistIEBar.dll|C:\PROGRA~1\TWEAKA~1\AssistIEBar.dll|全能助手工作室
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
msxml4.dll|C:\WINDOWS\system32\msxml4.dll|Microsoft Corporation
gapa.exe|D:\Cs1.6中文版(esai)\亮度调整\gapa.exe|Tomasz Porosiński
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
TTPlayer.exe|C:\Program Files\TTPlayer\TTPlayer.exe|Alen Soft
ttpcomm.dll|C:\Program Files\TTPlayer\ttpcomm.dll|
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
ttpres.dll|C:\Program Files\TTPlayer\ttpres.dll|Alen Soft
msdmo.dll|C:\Program Files\TTPlayer\msdmo.dll|Microsoft Corporation
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
mp3PRO.dll|C:\Program Files\TTPlayer\mp3PRO.dll|Coding Technologies GmbH
msacm32.drv|C:\WINDOWS\system32\msacm32.drv|Microsoft Corporation
smartassistant.exe|F:\反木马\smartassistant\smartassistant.exe|斯玛特科技 陈维嘉
imon.dll|C:\WINDOWS\system32\imon.dll|Eset
pr_imon.dll|C:\Program Files\Eset\pr_imon.dll|Eset
UnlockerHook.dll|C:\Program Files\Unlocker\UnlockerHook.dll|
dsp_enh.dll|C:\Program Files\TTPlayer\Plugins\dsp_enh.dll|Iosif Adrian
ieprot.dll|C:\Program Files\Rising\AntiSpyware\ieprot.dll|Beijing Rising Technology Co., Ltd.

jimsshom

字数限制。。。接上
|                  [ --- 未知系统服务 --- ]|
AVG Anti-Spyware Guard|C:\Program Files\Grisoft\AVG Anti-Spyware 7.exe|
BlackICE|C:\Program Files\ISS\BlackICE\blackd.exe|Internet Security Systems, Inc.
NOD32krn|C:\Program Files\Eset\nod32krn.exe|Eset
NVSvc|C:\WINDOWS\system32\nvsvc32.exe|NVIDIA Corporation
O&O Defrag|C:\WINDOWS\system32\oodag.exe|O&O Software GmbH
RapApp|C:\Program Files\ISS\BlackICE\rapapp.exe|Internet Security Systems, Inc.
VIPTray|.exe|
WMPNetworkSvc|C:\Program Files\Windows Media Player\WMPNetwk.exe|Microsoft Corporation
|                  [ --- 未知内核驱动 --- ]|
sptd.sys|C:\WINDOWS\system32\drivers\sptd.sys|
d346bus.sys|C:\WINDOWS\system32\drivers\d346bus.sys|
sfsync04.sys|C:\WINDOWS\system32\drivers\sfsync04.sys|Protection Technology (StarForce)
safemon.sys|C:\WINDOWS\system32\drivers\safemon.sys|System Safety Limited
d346prt.sys|C:\WINDOWS\system32\drivers\d346prt.sys|
sfvfs02.sys|C:\WINDOWS\system32\drivers\sfvfs02.sys|Protection Technology (StarForce)
sfhlp02.sys|C:\WINDOWS\system32\drivers\sfhlp02.sys|Protection Technology (StarForce)
sfhlp01.sys|C:\WINDOWS\system32\drivers\sfhlp01.sys|Protection Technology
sfdrv01a.sys|C:\WINDOWS\system32\drivers\sfdrv01a.sys|Protection Technology (StarForce)
prosync1.sys|C:\WINDOWS\system32\drivers\prosync1.sys|Protection Technology
prohlp02.sys|C:\WINDOWS\system32\drivers\prohlp02.sys|Protection Technology
ALCXWDM.SYS|C:\WINDOWS\system32\drivers\ALCXWDM.SYS|Realtek Semiconductor Corp.
ALCXSENS.SYS|C:\WINDOWS\system32\drivers\ALCXSENS.SYS|Sensaura
dtscsi.sys|C:\WINDOWS\System32\Drivers\dtscsi.sys|
vcdvnic.sys|C:\WINDOWS\system32\DRIVERS\vcdvnic.sys|VNN B.J.
lnsfw.sys|C:\WINDOWS\system32\DRIVERS\lnsfw.sys|Soft4Ever
AvgAsCln.sys|C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys|GRISOFT, s.r.o.
lnsfw1.sys|C:\WINDOWS\system32\drivers\lnsfw1.sys|Soft4Ever
prodrv06.sys|C:\WINDOWS\System32\drivers\prodrv06.sys|Protection Technology
nod32drv.sys|C:\WINDOWS\system32\drivers\nod32drv.sys|
guard.sys|C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys|
amon.sys|C:\WINDOWS\system32\drivers\amon.sys|Eset
npkcrypt.sys|C:\Program Files\Tencent\QQ\npkcrypt.sys|INCA Internet Co., Ltd.
secdrv.sys|C:\WINDOWS\system32\DRIVERS\secdrv.sys|Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.
SmartAVS.sys|C:\WINDOWS\system32\drivers\SmartAVS.sys|All-In-Smart [CWJ]
BlackDrv.sys|C:\WINDOWS\System32\drivers\BlackDrv.sys|Internet Security Systems, Inc.
|                  [ --- 未知安全 SPI --- ]|
FDF9EFB3-05B9-41F3-A683-B76C2A66486F|C:\WINDOWS\system32\imon.dll|Eset
549F2040-E0DB-4F4A-8C5A-918E1B3B90C7|C:\WINDOWS\system32\imon.dll|Eset
89B7B482-74ED-47FD-A15E-E7F7BDB43D05|C:\WINDOWS\system32\imon.dll|Eset
CDD6CA8D-9B0E-40DD-9795-83548AB6E2BE|C:\WINDOWS\system32\imon.dll|Eset
A41E5D33-3CB2-43F2-99C5-56DA4C5F3B9E|C:\WINDOWS\system32\imon.dll|Eset
28A4D8DA-E908-4C6F-A926-A66CC7AD3224|C:\WINDOWS\system32\imon.dll|Eset
|                  [ --- 重要文件关联 --- ]|
|                  [ --- 闪电杀毒报告 --- ]|
Autorun.inf|C:\autorun.inf|在您的硬盘中发现了自动播放的文件,极度可疑
|                  [ --- 重要安全状态 --- ]|
Windows Update相关状态|[启用]----您已经启用了 Windows Update 智能补丁升级 (状态安全)|
Win XP简单文件共享状态|[禁用]----您已经关闭了 Windows XP系统 简单共享功能 (状态安全)|
Windows NT系统文件保护|[启用]----Windows 系统已经成功[启动]了系统文件保护 (状态安全)|
终端服务(TermSrv) 信息|[启用]----TS 远程终端服务 ,监听端口为 TCP [ 3389 ] <注意安全>|
TCP/IP网络端口筛选状态|[启用]----如果您"手动"设置网卡的TCP/IP端口过虑功能 (状态安全)|
启用CD-ROM光盘自动播放|[启用]----当CD-ROM光盘放入光驱中系统将自动播放光盘 <系统默认>|
Windows 系统IPC$空连接|[禁用]----已经禁用 Windows NT 远程共享命名管道IPC$ (状态安全)|
Windows 系统ADMIN$共享|[禁用]----已经禁用了 Windows NT远程管理共享 Admin$ (状态安全)|
Windows 系统隐藏$ 共享|[禁用]----已经禁用了 Windows NT隐藏共享如 C$ D$ E$ (状态安全)|

wangjay1980

为什么卡住了，mmc.exe这么重要的程序没了，你从安装盘里考一个

wangjay1980

你的C\为什么 会有autorun.inf，你用记事本打开看看

jimsshom

有点晕了，在确定mmc是误杀后我解掉了，但设备管理器那里还是显示找不到mmc
还有我试着把组策略与mmc（控制台）关联，结果打开了，但显示脚本错误url:res://C:\WINDOWS\System32\mmcndmgr.dll/views.htm
至于那个autorun.inf，是每个盘都有的，应该是防autorun.inf病毒的，是个空文件。至于为什么卡住了，我也不知道，不知道这个程序扫描时间是不是特长，我等了很长时间也没反应，我就关了。

wangjay1980

我晕，你的预防措施可真到位。SRE扫描很快的，不会超过10秒的，我大概看了下，实在太乱了。没有什么可疑的。你还是先解决MMC.EXE吧