Tool.ASEye.2是病毒嗎?
會有其他人幫助妳的
18209880反病毒地帶1<群滿>
18412494反病毒地帶2
高手如雲
回答者:翰林文聖 - 舉人 四級 9-14 20:47
您覺得最佳答案好不好? 目前有 145個人評價
HijackThis_zww漢化版掃描日誌 V1.99.1
保存於 13:13:42, 日期 2006-08-11
操作系統: Windows XP SP1 (WinNT 5.01.2600)
瀏覽器: Internet Explorer v6.00 SP1 (6.00.2800.1106)
當前運行的進程:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\UAService7.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\HijackThis1991漢化版\HijackThis1991zww.exe
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: VnetCookie Class - {4E83D567-4697-4F7B-B1F0-A513B01DB89A} - c:\PROGRA~1\chinanet\VNETTR~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - IE工具欄增項: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - IE工具欄增項: 電臺(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - IE工具欄增項: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - IE工具欄增項: Dr.eye WebPage Translation - {92B255FE-94E2-4BCA-958D-3926CE38913F} - d:\PROGRA~1\Inventec\Dreye\DreyeMT\DREYEI~1.DLL
O3 - IE工具欄增項: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - 啟動項HKLM\\Run: [IMJPMIG8.1] ; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 啟動項HKLM\\Run: [PHIME2002ASync] ; C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 啟動項HKLM\\Run: [PHIME2002A] ; C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 啟動項HKLM\\Run: [NvCplDaemon] ; RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - 啟動項HKLM\\Run: [nwiz] nwiz.exe /install
O4 - 啟動項HKLM\\Run: [SoundMan] ; SOUNDMAN.EXE
O4 - 啟動項HKLM\\Run: [KAVPersonal50] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize
O4 - 啟動項HKLM\\Run: [NvMediaCenter] ; RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - 啟動項HKLM\\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray
O4 - 啟動項HKLM\\Run: [KAVRUN] ; J:\KAV4U\KAVRUN.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - Startup: desktop.ini
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: desktop.ini
O8 - IE右鍵菜單中的新增項目: Google 搜索(&G) - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - IE右鍵菜單中的新增項目: 使用網際快車下載 - C:\Program Files\FlashGet\jc_link.htm
O8 - IE右鍵菜單中的新增項目: 使用網際快車下載全部鏈接 - C:\Program Files\FlashGet\jc_all.htm
O8 - IE右鍵菜單中的新增項目: 導出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - IE右鍵菜單中的新增項目: 用比特精靈下載(&B) - C:\Program Files\BitSpirit\bsurl.htm
O9 - 瀏覽器額外的按鈕: 相關站點 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - 瀏覽器額外的“工具”菜單項: 相關站點 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O16 - DPF: Yahoo! Chat 1.3 - .yahoo.com/c174/chat.cab
O16 - DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} (NowStarter Control) - /cab/avlPing.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - /download/share.cab
O16 - DPF: {39044F32-421E-4CE0-A595-EF66D42C363C} (PptvPlayer Class) - .com/rmdownload/d...oy/21cnPptv.cab
O16 - DPF: {3D8F74EE-8692-4F8F-B8D2-7522E732519E} (WebActivater Control) - /icbc/perbank/AxSafeControls.cab
O16 - DPF: {79E0C1C0-316D-11D5-A72A-006097BFA1AC} (EPSON Web Printer-SelfTest Control Class) - /selftest/selftest/Prg/ESTPTest.cab
O16 - DPF: {8123E390-5EF7-11D5-A72E-006097BFA1AC} (EPSON Driver Auto-Install Control Class) - /update/prg/estdinst.cab
O16 - DPF: {88734439-46D0-42C0-A13F-7E881EE550CF} (Filetran Control) - /download/blueskyvoice_27.cab
O16 - DPF: {F2EB8999-766E-4BF6-AAAD-188D398C0D0B} (PBActiveX40 Control) - /download/pb45.cab
O23 - NT 服務: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - NT 服務: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - NT 服務: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - NT 服務: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - NT 服務: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\System32\UAService7.exe
超新星
超級版主
會員等級: 超級版主
發帖數量: 4,382
精華數量: 0
所持現金: 4598金幣
銀行狀態: 尚未開戶
用戶積分: 14
註冊日期: 2004-07-17
# 12 2006-08-11 13:40
HijackThis的掃描報告沒發現什麽問題
可以下載Dr.Web CureIT! 免費掃描器,包含最新病毒庫,可以檢測清除病毒,不和已裝殺毒軟件沖突
直接下載地址: ftp://ftp.drweb.com/pub/drweb/cureit/cureit.exe
自解壓格式,下載後直接運行cureit.exe,或者鼠標右鍵,解壓到目標文件夾,然後運行該文件夾裏面的“_start.exe”殺毒
先按“確定”進行“Start Express Scan”快速殺毒,先會自動掃描內存進程和啟動項,等快速掃描結束後,再用鼠標左鍵選中硬盤分區的圖標,被選中的分區上會出現紅點標記,再次殺毒.Dr.Web界面左下角的5個按鈕分別是"全選" "清除" "重命名" "隔離" "刪除"
最後把殺毒報告發上來,開始->運行 %USERPROFILE%\DoctorWeb\CureIt.log
希望大家向周圍的朋友多多宣傳PCSOS,讓更多受電腦問題困擾的朋友得到幫助
qqkk_000
註冊會員
會員等級: 新手上路
發帖數量: 18
精華數量: 0
所持現金: 20金幣
銀行狀態: 尚未開戶
用戶積分: 0
註冊日期: 2006-08-05
# 13 2006-08-11 17:22
版主請看,請問查到的病毒如何刪除最好呀,謝謝。
=============================================================================
Dr.Web(R) Scanner for Windows v4.33.2 (4.33.2.06080)
Copyright ? Igor Daniloff, 1992-2006
Log generated on: 2006-08-11, 14:21:48 [yangzw]
Command-line: "C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cureit.exe" /lng /ini:cureit_XP.ini
Operating system:Windows XP Professional x86 (Build 2600), Service Pack 1
=============================================================================
Engine version: 4.33 (4.33.4.07270)
Engine API version: 2.01
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crwtoday.cdb - 849 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43347.cdb - 707 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43346.cdb - 1429 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43345.cdb - 1358 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43344.cdb - 694 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43343.cdb - 1186 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43342.cdb - 744 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43341.cdb - 841 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43340.cdb - 822 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43339.cdb - 1071 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43338.cdb - 989 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43337.cdb - 855 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43336.cdb - 1297 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43335.cdb - 1195 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43334.cdb - 900 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43333.cdb - 1381 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43332.cdb - 1340 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43331.cdb - 2735 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43330.cdb - 2078 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43329.cdb - 2490 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43328.cdb - 743 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43327.cdb - 958 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43326.cdb - 793 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43325.cdb - 713 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43324.cdb - 655 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43323.cdb - 655 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43322.cdb - 778 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43321.cdb - 846 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43320.cdb - 808 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43319.cdb - 764 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43318.cdb - 838 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43317.cdb - 363 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43316.cdb - 730 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43315.cdb - 627 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43314.cdb - 824 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43313.cdb - 842 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43312.cdb - 830 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43311.cdb - 862 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43310.cdb - 853 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43309.cdb - 733 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43308.cdb - 708 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43307.cdb - 839 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43306.cdb - 930 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43305.cdb - 759 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43304.cdb - 721 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43303.cdb - 638 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43302.cdb - 806 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43301.cdb - 504 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crw43300.cdb - 24 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crwebase.cdb - 78674 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cwrtoday.cdb - 210 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cwr43301.cdb - 697 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crwrisky.cdb - 1271 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cwntoday.cdb - 716 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cwn43303.cdb - 766 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cwn43302.cdb - 850 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cwn43301.cdb - 773 virus records
[Virus base] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\crwnasty.cdb - 4867 virus records
Total virus records: 134929
Key file: C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cureit.key
License key number: 0000000010
Registered to: Dr.Web CureIt Project
License key activates: 2005-03-05
License key expires: 2007-03-05
-----------------------------------------------------------------------------
Scan statistics
-----------------------------------------------------------------------------
Objects scanned: 0
Infected objects found: 0
Objects with modifications found: 0
Suspicious objects found: 0
Adware programs found: 0
Dialer programs found: 0
Joke programs found: 0
Riskware programs found: 0
Hacktool programs found: 0
Objects cured: 0
Objects deleted: 0
Objects renamed: 0
Objects moved: 0
Objects ignored: 0
Scan speed: 0 Kb/s
Scan time: 00:00:00
-----------------------------------------------------------------------------
[Scan path] C:\WINDOWS\System32\smss.exe
[Scan path] C:\WINDOWS\system32\csrss.exe
[Scan path] C:\WINDOWS\system32\winlogon.exe
[Scan path] C:\WINDOWS\system32\services.exe
[Scan path] C:\WINDOWS\system32\lsass.exe
[Scan path] C:\WINDOWS\system32\svchost.exe
[Scan path] C:\WINDOWS\Explorer.EXE
[Scan path] C:\WINDOWS\system32\spoolsv.exe
[Scan path] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
[Scan path] C:\WINDOWS\System32\ctfmon.exe
[Scan path] C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
[Scan path] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
[Scan path] C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
[Scan path] C:\WINDOWS\System32\alg.exe
[Scan path] C:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exe
[Scan path] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
[Scan path] C:\WINDOWS\System32\nvsvc32.exe
[Scan path] C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
[Scan path] C:\WINDOWS\System32\wdfmgr.exe
[Scan path] C:\WINDOWS\System32\UAService7.exe
[Scan path] C:\Program Files\ChinaNet\VnetClient.exe
[Scan path] C:\Program Files\Internet Explorer\IEXPLORE.EXE
[Scan path] C:\Program Files\BitSpirit\BitSpirit.exe
[Scan path] C:\Program Files\Common Files\Real\Update_OB\realsched.exe
[Scan path] C:\Program Files\Common Files\Real\Update_OB\rnathchk.exe
[Scan path] C:\WINDOWS\system32\NOTEPAD.EXE
[Scan path] G:\電視錄像\cureit.exe
[Scan path] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\_start.exe
[Scan path] C:\DOCUME~1\yangzw\LOCALS~1\Temp\RarSFX0\cureit.exe
[Scan path] C:\WINDOWS\System32\nwiz.exe
[Scan path] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe
[Scan path] c:\progra~1\nokia\nokiap~1\launch~1.exe
[Scan path] c:\program files\nokia\nokia pc suite 6\pcsync2.exe
[Scan path] C:\Documents and Settings\yangzw\「開始」菜單\程序\啟動\desktop.ini
[Scan path] C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
[Scan path] C:\Documents and Settings\All Users\「開始」菜單\程序\啟動\desktop.ini
[Scan path] C:\WINDOWS\System32\wshext.dll
[Scan path] C:\WINDOWS\System32\browseui.dll
[Scan path] C:\WINDOWS\System32\shdocvw.dll
[Scan path] C:\WINDOWS\System32\sendmail.dll
[Scan path] C:\WINDOWS\System32\webcheck.dll
[Scan path] C:\WINDOWS\System32\occache.dll
[Scan path] C:\WINDOWS\System32\msieftp.dll
[Scan path] C:\PROGRA~1\TAGREN~1\TRshell.dll
[Scan path] C:\WINDOWS\System32\nvshell.dll
[Scan path] C:\WINDOWS\System32\nvcpl.dll
[Scan path] C:\Program Files\Microsoft Office\OFFICE11\msohev.dll
[Scan path] C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
[Scan path] C:\WINDOWS\System32\wmpshell.dll
[Scan path] C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
[Scan path] C:\Program Files\Nokia\Nokia PC Suite 6\MessageView.dll
[Scan path] C:\Program Files\WinRAR\rarext.dll
[Scan path] C:\PROGRA~1\ALCOHO~1\ALCOHO~1\axshlex.dll
[Scan path] C:\WINDOWS\System32\cryptext.dll
[Scan path] C:\WINDOWS\System32\cdfview.dll
[Scan path] C:\WINDOWS\System32\wuaucpl.cpl
[Scan path] c:\PROGRA~1\chinanet\VNETTR~1.DLL
[Scan path] c:\program files\google\googletoolbar1.dll
[Scan path] C:\WINDOWS\system32\SHELL32.dll
[Scan path] C:\WINDOWS\System32\stobject.dll
[Scan path] C:\WINDOWS\System32\crypt32.dll
[Scan path] C:\WINDOWS\System32\cryptnet.dll
[Scan path] C:\WINDOWS\System32\cscdll.dll
[Scan path] C:\WINDOWS\System32\wlnotify.dll
[Scan path] C:\WINDOWS\System32\sclgntfy.dll
[Scan path] C:\WINDOWS\System32\DRIVERS\ACPI.sys
[Scan path] C:\WINDOWS\system32\drivers\aec.sys
[Scan path] C:\WINDOWS\System32\drivers\afd.sys
[Scan path] C:\WINDOWS\system32\drivers\ALCXSENS.SYS
[Scan path] C:\WINDOWS\system32\drivers\ALCXWDM.SYS
[Scan path] c:\windows\system32\svchost.exe
[Scan path] C:\WINDOWS\System32\DRIVERS\amdk7.sys
[Scan path] C:\DOCUME~1\yangzw\LOCALS~1\Temp\asbp2poa.sys
C:\DOCUME~1\yangzw\LOCALS~1\Temp\asbp2poa.sys infected with Trojan.NtRootKit.138 - deleted
[Scan path] C:\WINDOWS\System32\DRIVERS\asyncmac.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\atapi.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\atmarpc.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\audstub.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\Cap7134.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\CCDECODE.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\cdrom.sys
[Scan path] C:\WINDOWS\system32\cisvc.exe
[Scan path] C:\WINDOWS\system32\clipsrv.exe
[Scan path] c:\windows\system32\dllhost.exe
[Scan path] C:\WINDOWS\System32\DRIVERS\disk.sys
[Scan path] c:\windows\system32\dmadmin.exe
[Scan path] C:\WINDOWS\System32\drivers\dmboot.sys
[Scan path] C:\WINDOWS\System32\drivers\dmio.sys
[Scan path] C:\WINDOWS\System32\drivers\dmload.sys
[Scan path] C:\WINDOWS\system32\drivers\DMusic.sys
[Scan path] C:\WINDOWS\system32\drivers\drmkaud.sys
[Scan path] C:\PROGRA~1\DScaler\DSDrv4.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\enodpl.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\fdc.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\fetnd5.sys
[Scan path] C:\WINDOWS\System32\DRIVERS\flpydisk.sys
[Scan pa