Win the bid for the Windows Vista system?

Win the bid for the Windows Vista system?

EndurerOriginal
1Version

At noon, a netizen said that the Kabbah report on his computer found a virus. Please try QQ remotely to check it again.

The computers used by netizens are from Tsinghua Tongfang, while OS is actually win Vista.

Download pe_xscan and try it. It runs properly. Scan logs and analyze the logs and find the following suspicious items:

/=
Pe_xscan 07-08-30 by Purple endurer

Windows unknow (6.0.6000)
Administrator user group

F2-Reg: system. ini: userinit = C:/Windows/system32/userinit.exe

O4-HKLM/../run: [unamon] wscript.exe // B C:/users/MHb/appdata/local/temp/unamon. vbs

O23-service: blbdrive ()-C:/Windows/system32/Drivers/blbdrive. sys (disabled)

O23-service: winio (winio)-C:/users/MHb/appdata/local/temp/RAR $ ex05.344/afeisg243/winio. sys (manual)
===/

However, none of the corresponding files are available.

Delete the corresponding project in the registry.