用木马克星，说有可能有鸽子2病毒~，这几天也的确有一点不正常。用ewido和卡巴斯基查不出~日志HijackThis_zww汉化版扫描日志 V1.99.1保存于 16:22:09, 日期 2006-5-17操作系统： Windows XP SP1 (WinNT 5.01.2600)浏览器： Internet Explorer v6.00 SP1 (6.00.2800.1106)当前运行的进程： C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\System32\ctfmon.exeC:\Program Files\BitComet\BitComet.exeD:\Program Files\eMule\emule.exeC:\WINDOWS\System32\mdm.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Documents and Settings\zxc\桌面\HijackThis1991【teyqiu】.exeR3 - URLSearchHook: (no name) - {BAB1AC41-6FF7-4F2E-A04E-5C592CCFEA7D} - (no file)R3 - URLSearchHook: (no name) - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - (no file)O2 - BHO: BandIE Class - {77FEF28E-EB96-44FF-B511-3185DEA48697} - C:\PROGRA~1\baidu\bar\baidubar.dll (file missing)O3 - IE工具栏增项: 百度超级搜霸 - {B580CF65-E151-49C3-B73F-70B13FCA8E86} - C:\PROGRA~1\baidu\bar\baidubar.dll (file missing)O3 - IE工具栏增项: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO4 - 启动项HKLM\\Run: [StormCodec_Helper] "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /optiO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exeO4 - Startup: BitComet.lnk = C:\Program Files\BitComet\BitComet.exeO6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions presentO8 - IE右键菜单中的新增项目: &使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\geturl.htmO8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\getallurl.htmO8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - D:\Program Files\Tencent\QQ\AddToNetDisk.htmO8 - IE右键菜单中的新增项目: 加入POCO网摘(&K) - http://my.poco.cn/fav/rightClick.phpO8 - IE右键菜单中的新增项目: 我的POCO网摘(&O) - http://my.poco.cn/fav/open_myfav.phpO8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - D:\Program Files\Tencent\QQ\AddPanel.htmO8 - IE右键菜单中的新增项目: 添加到QQ表情 - D:\Program Files\Tencent\QQ\AddEmotion.htmO8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - D:\Program Files\Tencent\QQ\SendMMS.htmO9 - 浏览器额外的按钮: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\Program Files\Tencent\QQ\QQIEHelper.dll (file missing)O9 - 浏览器额外的“工具”菜单项: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\Program Files\Tencent\QQ\QQIEHelper.dll (file missing)O9 - 浏览器额外的按钮: 百万图库 - {6713E8D2-850A-101B-AFC0-4210102A8DA7} - http://www.26-3.com/star (file missing) (HKCU)O9 - 浏览器额外的按钮: 铃声图片下载 - {7713E8D2-850A-101B-AFC0-4210102A8DA7} - http://www.26-3.com/sms/index.htm (file missing) (HKCU)O10 - Broken Internet access because of
LSP
provider 'c:\windows\system32\cdnns.dll' missingO16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/games/clients/y/potg_x.cabO18 - 列举现有的协议: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)O20 - Winlogon Notify: gdiwxp - gdiwxp.dll (file missing)O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dllO20 - Winlogon Notify: klogon - C:\WINDOWS\System32\klogon.dllO23 - NT 服务: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exeO23 - NT 服务: Autodesk Licensing Service - Unknown owner - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exeO23 - NT 服务: AVP - Unknown owner - (no file)O23 - NT 服务: ck_Server (ckServer_2006) - Unknown owner - C:\WINDOWS\System32\ck_Server.exe (file missing)O23 - NT 服务: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exeO23 - NT 服务: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - NT 服务: Kingsoft Personal Firewall Service (KPfwSvc) - Unknown owner - D:\KAV2006\KPfwSvc.EXE (file missing)O23 - NT 服务: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exeO23 - NT 服务: MazeSvr - Unknown owner - (no file)

参考　http://post.baidu.com/f?kz=88395508　修复以下项目O20 - Winlogon Notify: gdiwxp - gdiwxp.dll (file missing) O20 - Winlogon Notify: klogon - C:\WINDOWS\System32\klogon.dll O23 - NT 服务: AVP - Unknown owner - (no file) O23 - NT 服务: ck_Server (ckServer_2006) - Unknown owner - C:\WINDOWS\System32\ck_Server.exe (file missing)O23 - NT 服务: MazeSvr - Unknown owner - (no file)

并建议参考　http://post.baidu.com/f?kz=100420887　４楼

O20 - Winlogon Notify: gdiwxp - gdiwxp.dll (file missing) O20 - Winlogon Notify: klogon - C:\WINDOWS\System32\klogon.dll O23 - NT 服务: AVP - Unknown owner - (no file) O23 - NT 服务: ck_Server (ckServer_2006) - Unknown owner - C:\WINDOWS\System32\ck_Server.exe (file missing) O23 - NT 服务: MazeSvr - Unknown owner - (no file) 这些怎么修复？

参考　http://post.baidu.com/f?kz=88395508　修复以下项目 O20 - Winlogon Notify: gdiwxp - gdiwxp.dll (file missing) O20 - Winlogon Notify: klogon - C:\WINDOWS\System32\klogon.dll O23 - NT 服务: AVP - Unknown owner - (no file) O23 - NT 服务: ck_Server (ckServer_2006) - Unknown owner - C:\WINDOWS\System32\ck_Server.exe (file missing) O23 - NT 服务: MazeSvr - Unknown owner - (no file)