删除了病毒，机子运行更慢了！！！还发现 Win32/Malum.EUC，是个什么DD！ bbs.ikaka.com

ttywei - 2006-6-5 22:58:00

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><D:\WINDOWS\system32\ctfmon.exe>
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002ASync><D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002A><D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvCplDaemon><RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<nwiz><nwiz.exe /install>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvMediaCenter><RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NVIDIA nTune><"D:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SoundMan><SOUNDMAN.EXE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CaAvTray><"E:\TOOL\eTrust EZ Antivirus\CAVTray.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CAVRID><"E:\TOOL\eTrust EZ Antivirus\CAVRID.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Logitech Utility><Logi_MwX.Exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SKYNET Personal FireWall><E:\TOOL\SKYNET\FIREWALL\pfw.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<TkBellExe><"D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<YLive.exe><D:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<StormCodec_Helper><"F:\电视剧\宫特辑版\影音风暴\Storm Codec\StormSet.exe" /S /opti>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Servicest><D:\WINDOWS\system32\Servicest.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<bgoomain.exe><D:\PROGRA~1\baigoo\bgoomain.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CdnCtr><D:\Program Files\CNNIC\Cdn\cdnup.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<Rav><"G:\shadu\Rising\新建文件夹\Rising\Update\Setup.exe" /UNINSTALL /S /ONCE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<Userinit><D:\WINDOWS\system32\userinit.exe,>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><KB919331M.LOG>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<IMSCMig><; D:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<qcsszjcz><; c:\chenhu2\chenqxms.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<Super Rabbit SRRestore><; E:\TOOL\MagicSet\srrest.exe /autosave>

ttywei - 2006-6-5 22:59:00

==================================
启动文件夹
[电信宽带]
<D:\Documents and Settings\BigWorld\「开始」菜单\程序\启动\电信宽带.lnk><N>

==================================
服务
[CAISafe / CAISafe]
<E:\TOOL\eTrust EZ Antivirus\ISafe.exe><Computer Associates International, Inc.>
[NVIDIA Display Driver Service / NVSvc]
<D:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[VET Message Service / VETMSGNT]
<E:\TOOL\eTrust EZ Antivirus\VetMsg.exe><Computer Associates International, Inc.>

==================================
浏览器加载项
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <D:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <D:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4585.dll, Microsoft Corporation>
[CNNIC_IDN]
{35980F6E-A137-4E50-953D-813BB8556899} <D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll, >
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Status Class]
{7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} <D:\Program Files\baigoo\BGooBHO.dll, >
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[浩方对战平台]
{0A155D3C-68E2-4215-A47A-E800A446447A} <E:\TOOL\TEST\浩方对战平台\GameClient.exe, 上海浩方在线信息技术有限公司>
[CNNIC_IDN]
{35980F6E-A137-4E50-953D-813BB8556899} <D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll, >
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <E:\TOOL\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[易趣购物]
{DE607142-AC19-422e-868A-8D70ABDF119A} <http://click2.ad4all.net/url2/urlmanage/url.asp?id=5, N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <D:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[PowerPlr Control]
{2354A44B-3CEB-4829-9940-545B03103538} <F:\TOOL\real\REAL2A~1\PowerPlr.ocx, Powerise Digital>
[CEditCtrl Object]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <D:\WINDOWS\system32\aliedit\AliEdit.dll, www.alipay.com>
[CMCBooter Object]
{53AF6E02-F18F-4228-AC13-3E79773FBE50} <D:\WINDOWS\system32\Booter.ocx, 北京高维视讯科技有限公司>
[LiveMediaOcx Control]
{9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} <E:\TOOL\QQLIVE~1\QQLive.ocx, Tencent>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <D:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <D:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
[Google Script Object]
{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[ActiveMovieControl Object]
{05589FA1-C356-11CE-BF01-00AA0055595A} <D:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <D:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4585.dll, Microsoft Corporation>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <D:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[PowerPlr Control]
{2354A44B-3CEB-4829-9940-545B03103538} <F:\TOOL\real\REAL2A~1\PowerPlr.ocx, Powerise Digital>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[CNNIC_IDN]
{35980F6E-A137-4E50-953D-813BB8556899} <D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll, >
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <D:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation>
[雅虎助手]
{406F94F0-504F-4A40-8DFD-58B0666ABEBD} <D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[CEditCtrl Object]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <D:\WINDOWS\system32\aliedit\AliEdit.dll, www.alipay.com>
[CMCBooter Object]
{53AF6E02-F18F-4228-AC13-3E79773FBE50} <D:\WINDOWS\system32\Booter.ocx, 北京高维视讯科技有限公司>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <D:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[CMCLoader Object]
{779769CA-82F1-4973-BBA7-515E6C7BFD0E} <D:\Program Files\GAOV\Mysee2\MycLive.dll, 北京高维视讯科技有限公司>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Status Class]
{7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} <D:\Program Files\baigoo\BGooBHO.dll, >
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <D:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[LiveMediaOcx Control]
{9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} <E:\TOOL\QQLIVE~1\QQLive.ocx, Tencent>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <D:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[OWSClientMiscApis Class]
{BDEADE3F-C265-11D0-BCED-00A0C90AB50F} <E:\TOOL\MICROS~2\OFFICE11\OWSCLT.DLL, Microsoft Corporation>
[OWSBrowserUI Class]
{BDEADE43-C265-11D0-BCED-00A0C90AB50F} <E:\TOOL\MICROS~2\OFFICE11\OWSCLT.DLL, Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <D:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <D:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[!搜一搜]
<res://D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246, N/A>
[&使用迅雷下载]
<e:\tool\test\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<e:\tool\test\Thunder\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)]
<res://d:\program files\google\GoogleToolbar2.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
<E:\TOOL\qq\AddToNetDisk.htm, N/A>
[反向链接]
<res://d:\program files\google\GoogleToolbar2.dll/cmbacklinks.html, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://E:\TOOL\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<E:\TOOL\qq\AddPanel.htm, N/A>
[添加到QQ表情]
<E:\TOOL\qq\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<E:\TOOL\qq\SendMMS.htm, N/A>

ttywei - 2006-6-5 23:01:00

[百度--MP3搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUMP3.HTM, N/A>
[百度--图片搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUIMG.HTM, N/A>
[百度--新闻搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUNEWS.HTM, N/A>
[百度--歌词搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDULYRIC.HTM, N/A>
[百度--网页搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUSEARCH.HTM, N/A>
[百度--词典搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDU_DIC.HTM, N/A>
[百度--贴吧搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUPOST.HTM, N/A>
[类似网页]
<res://d:\program files\google\GoogleToolbar2.dll/cmsimilar.html, N/A>
[缓存的网页快照]
<res://d:\program files\google\GoogleToolbar2.dll/cmcache.html, N/A>
[翻译英文字词(&T)]
<res://d:\program files\google\GoogleToolbar2.dll/cmwordtrans.html, N/A>

==================================
正在运行的进程
[PID: 644][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 708][\??\D:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 836][\??\D:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\NavLogon.dll] <N/A><N/A>
[PID: 880][D:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 900][D:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1076][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1124][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 1228][D:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 1356][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1436][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1592][D:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\WINDOWS\system32\nvcpl.dll] <NVIDIA Corporation><6.14.10.8194>
[D:\WINDOWS\system32\NVRSZHC.DLL] <NVIDIA Corporation><6.14.10.8194>
[D:\WINDOWS\system32\nvshell.dll] <N/A><N/A>
[D:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 3, 1028>
[D:\WINDOWS\system32\xunleibho_v14.dll] <Thunder Networking Technologies,LTD><4, 6, 0, 62>
[E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[D:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 78>
[e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[e:\tool\test\WinRAR\rarext.dll] <N/A><N/A>
[D:\WINDOWS\avshlext.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\CmdLineExt03.dll] <N/A><N/A>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll] <Yahoo!><2, 0, 1, 1015>
[D:\Program Files\baigoo\BGooBHO.dll] <><1, 0, 0, 1>
[PID: 1756][D:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 296][E:\TOOL\eTrust EZ Antivirus\ISafe.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\Arclib.dll] <Computer Associates International, Inc.><7.2.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\ISafeEngine.dll] <Computer Associates International, Inc.><Version 12.4.1.0>
[PID: 360][D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE] <Microsoft Corporation><7.00.9466>
[PID: 564][D:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[d:\program files\gaov\mysee2\runtime.dll] <北京高维视讯科技有限公司><1, 0, 0, 3>
[D:\WINDOWS\system32\MycAce551vc71.dll] <N/A><5.5.1>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 740][E:\TOOL\eTrust EZ Antivirus\VetMsg.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\DriverIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\VetNtMsg.dll] <N/A><N/A>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1320][D:\WINDOWS\SOUNDMAN.EXE] <Realtek Semiconductor Corp.><5, 1, 0, 50>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 1324][E:\TOOL\eTrust EZ Antivirus\CAVTray.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVScan.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\DriverIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVFrm.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\EZAVLic.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVres.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 1384][E:\TOOL\eTrust EZ Antivirus\CAVRID.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVFrm.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVres.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[PID: 1464][E:\TOOL\SKYNET\FIREWALL\pfw.exe] <广州众达天网技术有限公司><2.7.6.1005>
[E:\TOOL\SKYNET\FIREWALL\SKYMISC.DLL] <N/A><N/A>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 1444][D:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3510>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>

ttywei - 2006-6-5 23:02:00

[PID: 1472][D:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe] < ><2, 0, 0, 1001>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 3, 1028>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1564][D:\PROGRA~1\baigoo\bgoomain.exe] <BGoo><1, 0, 0, 1005>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\baigoo\bgooex.dll] <><1, 0, 0, 1006>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1636][D:\Program Files\CNNIC\Cdn\cdnup.exe] <><2, 1, 0, 5>
[D:\Program Files\CNNIC\Cdn\cdnglo.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\cdntdns.dll] <CNNIC><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 1840][D:\Program Files\Logitech\MouseWare\system\em_exec.exe] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\EVENTEX.dll] <Logitech Inc.><9.80.019>
[D:\WINDOWS\system32\COMNCTR.dll] <Logitech Inc.><9.80.019>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Logitech\MouseWare\system\ccresrce.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Logitech\MouseWare\system\GlbResLt.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\devices.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccstmglb.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccustom.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccmsghk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 1244][D:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 988][F:\淘宝网\淘宝旺旺\WangWang.exe] <淘宝（中国）软件有限公司><1, 5, 5, 1226>
[F:\淘宝网\淘宝旺旺\AliViewCtrl.dll] <vline><1, 0, 0, 1>
[F:\淘宝网\淘宝旺旺\VLNetwork.dll] <><1, 0, 0, 6>
[F:\淘宝网\淘宝旺旺\AliViewMedia.dll] <vline><1, 0, 0, 1>
[F:\淘宝网\淘宝旺旺\VideoCAP.dll] <><1, 0, 0, 4>
[F:\淘宝网\淘宝旺旺\VLAudio.dll] <><1, 0, 0, 4>
[F:\淘宝网\淘宝旺旺\JsmShow.dll] <><1, 0, 0, 3>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[F:\淘宝网\淘宝旺旺\Ali_Res.DLL] <N/A><N/A>
[F:\淘宝网\淘宝旺旺\RichOne.dll] <淘宝(中国)软件有限公司><1.0.0.1>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[G:\shadu\Rising\新建文件夹\Rising\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\WINDOWS\system32\msdmo.dll] <N/A><N/A>
[F:\淘宝网\淘宝旺旺\WangWangX.dll] <><1, 0, 0, 1>
[D:\WINDOWS\system32\CHENHU4.IME] <chenhu><5.7>
[PID: 3840][D:\WINDOWS\system32\notepad.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>

ttywei - 2006-6-5 23:03:00

[PID: 1816][E:\TOOL\qq\QQ.exe] <TENCENT><0, 0, 0, 0>
[E:\TOOL\qq\CoralAssist.DLL] <N/A><4.0.0 Build 20051112>
[E:\TOOL\qq\CoralQQ.DLL] <Coral Team><4.2.1 Build 20060127>
[E:\TOOL\qq\IPSearcher.dll] <N/A><1.0.0.4>
[E:\TOOL\qq\QQBaseClassInDll.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\QQHelperDll.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\BasicCtrlDll.dll] <Tencent><5, 0, 200, 14>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[E:\TOOL\qq\QQAPI.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\TIMProxy.dll] <tencent><0, 3, 2, 4>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[E:\TOOL\qq\LoginCtrl.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\npkcntc.dll] <INCA Internet Co., Ltd.><2005, 9, 1, 1>
[E:\TOOL\qq\npkpdb.dll] <INCA Internet Co., Ltd.><2003, 10, 1, 1>
[E:\TOOL\qq\QQRes.dll] <tencent><1, 0, 0, 1>
[E:\TOOL\qq\QQMainFrame.dll] <N/A><N/A>
[E:\TOOL\qq\CQQApplication.dll] <N/A><N/A>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[E:\TOOL\qq\NewSkin.dll] <><1, 0, 0, 1>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\qq\HostingMgr.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\CameraDll.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\MailSummary.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\QQSpace.dll] <><1, 0, 0, 1>
[D:\WINDOWS\system32\msdmo.dll] <N/A><N/A>
[E:\TOOL\qq\QQGroupMng.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\QQConfigPlugin.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\UserDefinedHead.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\QQSysMsgMng.dll] <N/A><N/A>
[E:\TOOL\qq\QQAvatar.dll] <N/A><N/A>
[E:\TOOL\qq\FlashAvatarDll.dll] <><1, 4, 0, 1>
[E:\TOOL\qq\QRingMng.dll] <N/A><N/A>
[E:\TOOL\qq\PhoneAPI.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\DialerAllinOne.dll] <tencent><1, 4, 0, 0>
[E:\TOOL\qq\QQAllInOne.dll] <N/A><N/A>
[E:\TOOL\qq\SCCore.dll] <N/A><N/A>
[E:\TOOL\qq\QQCustomFace.dll] <N/A><N/A>
[E:\TOOL\qq\GroupConnection.dll] <Tencent><5, 0, 202, 30>
[E:\TOOL\qq\LongConnection.dll] <tencent><0, 3, 3, 8>
[E:\TOOL\qq\QQPet.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\QQPlugin.dll] <N/A><N/A>
[D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[E:\TOOL\qq\QQSceneMng.dll] <N/A><N/A>
[E:\TOOL\qq\BQQApplication.dll] <N/A><N/A>
[E:\TOOL\qq\ImageOle.dll] <TODO: <Company name>><1.0.0.1>
[E:\TOOL\qq\QQZip.dll] <tencent><0, 3, 2, 4>
[D:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[E:\TOOL\qq\CommercesMng.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\PersonalDesktop.dll] <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
[E:\TOOL\qq\QQUdpGetFileLib.dll] <tencent><0, 2, 2, 3>
[E:\TOOL\qq\QQAddr.dll] <深圳市腾讯计算机系统有限公司><5, 0, 101, 141>
[E:\TOOL\qq\QQPhoneHelper.dll] <腾讯科技（深圳）有限公司><2, 0, 3, 30>
[E:\TOOL\qq\ShareFiles.dll] <N/A><N/A>
[E:\TOOL\qq\QQMagicFace.dll] <><1, 0, 0, 1>
[E:\TOOL\qq\QQFileTransfer.dll] <Tencent><5, 0, 202, 40>
[E:\TOOL\qq\VqqModule.dll] <><1, 0, 0, 1>
[PID: 1800][E:\TOOL\qq\TIMPlatform.exe] <tencent><0, 3, 1, 8>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[E:\TOOL\qq\TIMProxy.dll] <tencent><0, 3, 2, 4>
[PID: 2584][D:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 3, 1028>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll] <Yahoo!><2, 0, 1, 1015>
[D:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 78>
[d:\program files\google\googletoolbar2.dll] <Google Inc.><3, 0, 131, 0>
[D:\WINDOWS\system32\xunleibho_v14.dll] <Thunder Networking Technologies,LTD><4, 6, 0, 62>
[E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[D:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4585.dll] <Microsoft Corporation><1, 2, 3, 0>
[D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll] <><2, 0, 0, 6>
[D:\Program Files\baigoo\BGooBHO.dll] <><1, 0, 0, 1>
[e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\PROGRA~1\baigoo\bgook.dll] <BAIGOO.COM><1, 0, 0, 1005>
[D:\PROGRA~1\baigoo\plugin\bgoobar\bgoobar.dll] <BAIGOO><1, 0, 0, 1006>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[D:\WINDOWS\system32\msdmo.dll] <N/A><N/A>
[D:\WINDOWS\system32\ffdshow.ax] <N/A><1.0.2.1997>
[F:\电视剧\宫特辑版\影音风暴\Storm Codec\Codecs\VSFilter.dll] <Gabest><1, 0, 0, 9>
[D:\WINDOWS\system32\CHENHU4.IME] <chenhu><5.7>
[PID: 3556][e:\tool\test\Thunder\Program\Thunder5.exe] <Thunder Networking Technologies,LTD><5.1.6.198>
[e:\tool\test\Thunder\Program\UpdateDownload.dll] <Thunder Networking Technologies,LTD><1, 0, 1, 3>
[e:\tool\test\Thunder\Program\download_interface.dll] <Thunder Networking Technologies,LTD><1, 0, 2, 69>
[e:\tool\test\Thunder\Program\log4cplus.dll] <><1, 0, 2, 1>
[e:\tool\test\Thunder\Program\stlport_vc646.dll] <STLport Consulting, Inc.><4.6.2003.1031>
[e:\tool\test\Thunder\Program\asyn_dns.dll] <N/A><N/A>
[e:\tool\test\Thunder\Program\msgmanage.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 15>
[e:\tool\test\Thunder\Program\historyinfo_manage.dll] <Thunder Networking Technologies,LTD><5, 2, 0, 148>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[e:\tool\test\Thunder\Program\RegisterDll.dll] <Thunder Networking Technologies,LTD><1, 2, 0, 7>
[e:\tool\test\Thunder\Program\FloatBar.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 2>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[e:\tool\test\Thunder\Components\InMedia\iEmbedShell.dll] <　><1, 0, 0, 5>
[e:\tool\test\Thunder\Components\InMedia\iEmbed.dll] <　><2, 1, 0, 29>
[e:\tool\test\Thunder\Components\P4PClient\P4PClient.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 4>
[e:\tool\test\Thunder\Program\iTargetAd.dll] <Thunder Networking Technologies,LTD><1, 0, 0, 60>
[D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx] <Macromedia, Inc.><8,0,24,0>
[PID: 3072][G:\shadu\Rising\sreng2\SREng.exe] <Smallfrogs Studio><2.0.12.350>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>

ttywei - 2006-6-5 23:04:00

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP Error. [winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS Error. [超级解霸]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
CA ISafe LSP over [MSAFD Tcpip [TCP/IP]]
D:\WINDOWS\system32\VetRedir.dll(Computer Associates International, Inc., ISafe LSP)
CA ISafe LSP
D:\WINDOWS\system32\VetRedir.dll(Computer Associates International, Inc., ISafe LSP)

==================================
好了，谢谢你帮帮我啊呵呵

我无邪 - 2006-6-5 23:29:00

运行System Repair Engineer，使用“系统修复，文件关联，勾选“全选”点“修复”使所有扩展名都恢复正常
ALT+CTRL+DELETE调出任务管理器,终止Servicest.exe的进程，如果有的话。
运行System Repair Engineer，使用“启动项目，注册表”来删除以下选项。
（如果在注册表里无法识别那一下，可以选中一项后，点“编辑”这样会有很明细的路径）
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Servicest><D:\WINDOWS\system32\Servicest.exe>
运行System Repair Engineer，使用“启动项目，注册表”选中要修复的项，
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><KB919331M.LOG>
点“编辑”在“值”里删除KB919331M.LOG
关闭所有浏览窗口以及一些不必要的程序
运行System Repair Engineer，使用“系统修复，浏览器加载项”来删除以下选项
MyIEHelper Class]
{16A770A0-0E87-4278-B748-2460D64A8386} <D:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4585.dll, Microsoft Corporation>
双击我的电脑--工具---文件夹选项--查看--单击选取"显示隐藏文件或文件夹"清除"隐藏受保护的操作系统文件（推荐）"复选框。在提示您确定更改时，单击“是”
删除
D:\WINDOWS\system32\Servicest.exe
KB919331M.LOG应该在D:\WINDOWS\system32里。
D:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4585.dll

ttywei - 2006-6-6 0:00:00

D:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper_4585.dll
这个删不了，显示：无法删除IEHelper_4585：访问被拒绝。
请确定磁盘未满或未被写保护，而且文件未被使用
KB919331M.LOG这个找不到，我今天手动删除过它一次的，是不是已经没有了呢

我无邪 - 2006-6-6 12:51:00

烦再扫份报告粘上来。

ttywei - 2006-6-6 15:46:00

2006-06-05,13:41:58

System Repair Engineer 2.0.12.350 (2.0 RC 1)
Windows XP Professional Service Pack 2 - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><D:\WINDOWS\system32\ctfmon.exe>
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002ASync><D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002A><D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvCplDaemon><RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<nwiz><nwiz.exe /install>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvMediaCenter><RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NVIDIA nTune><"D:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SoundMan><SOUNDMAN.EXE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CaAvTray><"E:\TOOL\eTrust EZ Antivirus\CAVTray.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CAVRID><"E:\TOOL\eTrust EZ Antivirus\CAVRID.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Logitech Utility><Logi_MwX.Exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SKYNET Personal FireWall><E:\TOOL\SKYNET\FIREWALL\pfw.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<TkBellExe><"D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<YLive.exe><D:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<StormCodec_Helper><"F:\电视剧\宫特辑版\影音风暴\Storm Codec\StormSet.exe" /S /opti>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<bgoomain.exe><D:\PROGRA~1\baigoo\bgoomain.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CdnCtr><D:\Program Files\CNNIC\Cdn\cdnup.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMSCMig><; D:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<qcsszjcz><; c:\chenhu2\chenqxms.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Super Rabbit SRRestore><; E:\TOOL\MagicSet\srrest.exe /autosave>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ToP><D:\WINDOWS\LSASS.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<TProgram><D:\WINDOWS\SMSS.EXE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe 1>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<Userinit><D:\WINDOWS\system32\userinit.exe,>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><>

==================================

ttywei - 2006-6-6 15:48:00

启动文件夹
[电信宽带]
<D:\Documents and Settings\BigWorld\「开始」菜单\程序\启动\电信宽带.lnk><N>

==================================
服务
[CAISafe / CAISafe]
<E:\TOOL\eTrust EZ Antivirus\ISafe.exe><Computer Associates International, Inc.>
[NVIDIA Display Driver Service / NVSvc]
<D:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[VET Message Service / VETMSGNT]
<E:\TOOL\eTrust EZ Antivirus\VetMsg.exe><Computer Associates International, Inc.>

==================================
浏览器加载项
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <D:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[CNNIC_IDN]
{35980F6E-A137-4E50-953D-813BB8556899} <D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll, >
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Status Class]
{7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} <D:\Program Files\baigoo\BGooBHO.dll, >
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[浩方对战平台]
{0A155D3C-68E2-4215-A47A-E800A446447A} <E:\TOOL\TEST\浩方对战平台\GameClient.exe, 上海浩方在线信息技术有限公司>
[CNNIC_IDN]
{35980F6E-A137-4E50-953D-813BB8556899} <D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll, >
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <E:\TOOL\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[易趣购物]
{DE607142-AC19-422e-868A-8D70ABDF119A} <http://click2.ad4all.net/url2/urlmanage/url.asp?id=5, N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <D:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[PowerPlr Control]
{2354A44B-3CEB-4829-9940-545B03103538} <F:\TOOL\real\REAL2A~1\PowerPlr.ocx, Powerise Digital>
[CEditCtrl Object]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <D:\WINDOWS\system32\aliedit\AliEdit.dll, www.alipay.com>
[CMCBooter Object]
{53AF6E02-F18F-4228-AC13-3E79773FBE50} <D:\WINDOWS\system32\Booter.ocx, 北京高维视讯科技有限公司>
[LiveMediaOcx Control]
{9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} <E:\TOOL\QQLIVE~1\QQLive.ocx, Tencent>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <D:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <D:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
[Google Script Object]
{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[ActiveMovieControl Object]
{05589FA1-C356-11CE-BF01-00AA0055595A} <D:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <D:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[PowerPlr Control]
{2354A44B-3CEB-4829-9940-545B03103538} <F:\TOOL\real\REAL2A~1\PowerPlr.ocx, Powerise Digital>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[CNNIC_IDN]
{35980F6E-A137-4E50-953D-813BB8556899} <D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll, >
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <D:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation>
[雅虎助手]
{406F94F0-504F-4A40-8DFD-58B0666ABEBD} <D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, Yahoo!>
[CEditCtrl Object]
{488A4255-3236-44B3-8F27-FA1AECAA8844} <D:\WINDOWS\system32\aliedit\AliEdit.dll, www.alipay.com>
[CMCBooter Object]
{53AF6E02-F18F-4228-AC13-3E79773FBE50} <D:\WINDOWS\system32\Booter.ocx, 北京高维视讯科技有限公司>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <D:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[CMCLoader Object]
{779769CA-82F1-4973-BBA7-515E6C7BFD0E} <D:\Program Files\GAOV\Mysee2\MycLive.dll, 北京高维视讯科技有限公司>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Status Class]
{7BDAF75A-0D6F-4F50-AFE9-333D08DF4005} <D:\Program Files\baigoo\BGooBHO.dll, >
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <D:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll, Thunder Networking Technologies,LTD>
[LiveMediaOcx Control]
{9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} <E:\TOOL\QQLIVE~1\QQLive.ocx, Tencent>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <d:\program files\google\googletoolbar2.dll, Google Inc.>
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <D:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[OWSClientMiscApis Class]
{BDEADE3F-C265-11D0-BCED-00A0C90AB50F} <E:\TOOL\MICROS~2\OFFICE11\OWSCLT.DLL, Microsoft Corporation>
[OWSBrowserUI Class]
{BDEADE43-C265-11D0-BCED-00A0C90AB50F} <E:\TOOL\MICROS~2\OFFICE11\OWSCLT.DLL, Microsoft Corporation>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <D:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[Rising Web Scan Object]
{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <D:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[!搜一搜]
<res://D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246, N/A>
[&使用迅雷下载]
<e:\tool\test\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<e:\tool\test\Thunder\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)]
<res://d:\program files\google\GoogleToolbar2.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
<E:\TOOL\qq\AddToNetDisk.htm, N/A>
[反向链接]
<res://d:\program files\google\GoogleToolbar2.dll/cmbacklinks.html, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://E:\TOOL\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<E:\TOOL\qq\AddPanel.htm, N/A>
[添加到QQ表情]
<E:\TOOL\qq\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<E:\TOOL\qq\SendMMS.htm, N/A>

ttywei - 2006-6-6 15:49:00

[百度--MP3搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUMP3.HTM, N/A>
[百度--图片搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUIMG.HTM, N/A>
[百度--新闻搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUNEWS.HTM, N/A>
[百度--歌词搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDULYRIC.HTM, N/A>
[百度--网页搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUSEARCH.HTM, N/A>
[百度--词典搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDU_DIC.HTM, N/A>
[百度--贴吧搜索]
<RES://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUPOST.HTM, N/A>
[类似网页]
<res://d:\program files\google\GoogleToolbar2.dll/cmsimilar.html, N/A>
[缓存的网页快照]
<res://d:\program files\google\GoogleToolbar2.dll/cmcache.html, N/A>
[翻译英文字词(&T)]
<res://d:\program files\google\GoogleToolbar2.dll/cmwordtrans.html, N/A>

==================================
正在运行的进程
[PID: 644][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 708][\??\D:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 836][\??\D:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\NavLogon.dll] <N/A><N/A>
[PID: 888][D:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 900][D:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1080][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1124][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 1212][D:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 1296][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1408][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1688][D:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 1696][D:\WINDOWS\Explorer.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 3, 1028>
[D:\WINDOWS\system32\xunleibho_v14.dll] <Thunder Networking Technologies,LTD><4, 6, 0, 62>
[E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[D:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 78>
[e:\tool\test\Thunder\ComDlls\XunLeiBHO_001.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 1>
[e:\tool\test\WinRAR\rarext.dll] <N/A><N/A>
[D:\WINDOWS\avshlext.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1944][D:\WINDOWS\SMSS.EXE] <UFO2><0.00.0070>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[PID: 272][E:\TOOL\eTrust EZ Antivirus\ISafe.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\Arclib.dll] <Computer Associates International, Inc.><7.2.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\ISafeEngine.dll] <Computer Associates International, Inc.><Version 12.4.1.0>
[PID: 300][D:\WINDOWS\SOUNDMAN.EXE] <Realtek Semiconductor Corp.><5, 1, 0, 50>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 368][D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE] <Microsoft Corporation><7.00.9466>
[PID: 484][E:\TOOL\eTrust EZ Antivirus\CAVTray.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVScan.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\DriverIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVFrm.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\EZAVLic.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVres.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 316][E:\TOOL\eTrust EZ Antivirus\CAVRID.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVFrm.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVres.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 616][E:\TOOL\SKYNET\FIREWALL\pfw.exe] <广州众达天网技术有限公司><2.7.6.1005>
[E:\TOOL\SKYNET\FIREWALL\SKYMISC.DLL] <N/A><N/A>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>

ttywei - 2006-6-6 15:51:00

[PID: 628][D:\Program Files\Common Files\Real\Update_OB\realsched.exe] <RealNetworks, Inc.><0.1.0.3510>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 636][D:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe] < ><2, 0, 0, 1001>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 3, 1028>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[PID: 696][D:\PROGRA~1\baigoo\bgoomain.exe] <BGoo><1, 0, 0, 1005>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\PROGRA~1\baigoo\bgooex.dll] <><1, 0, 0, 1006>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[PID: 780][E:\TOOL\eTrust EZ Antivirus\VetMsg.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\DriverIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\VetNtMsg.dll] <N/A><N/A>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1328][D:\Program Files\CNNIC\Cdn\cdnup.exe] <><2, 1, 0, 5>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\CNNIC\Cdn\cdnglo.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\cdntdns.dll] <CNNIC><2, 0, 0, 1>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 1520][D:\WINDOWS\LSASS.exe] <KJFlw><0.00.0070>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 1632][D:\Program Files\Logitech\MouseWare\system\em_exec.exe] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\EVENTEX.dll] <Logitech Inc.><9.80.019>
[D:\WINDOWS\system32\COMNCTR.dll] <Logitech Inc.><9.80.019>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Logitech\MouseWare\system\ccresrce.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\Program Files\Logitech\MouseWare\system\GlbResLt.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\devices.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccstmglb.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccustom.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccmsghk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 1724][D:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[PID: 2160][D:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 2196][G:\shadu\sreng2\SREng.exe] <Smallfrogs Studio><2.0.12.350>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\CNNIC\Cdn\cdnspie.dll] <><2, 0, 0, 3>
[D:\Program Files\CNNIC\Cdn\imaoe.dll] <cnnic><2, 0, 0, 1>
[D:\PROGRA~1\baigoo\bgoohk.dll] < ><1, 0, 0, 1005>
[D:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 0, 1013>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\CNNIC\Cdn\cdndet.dll] <><2, 0, 0, 6>
[D:\WINDOWS\system32\cdnns.dll] <CNNIC><2, 0, 0, 0>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE Error. [winfiles]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["D:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
CA ISafe LSP over [MSAFD Tcpip [TCP/IP]]
D:\WINDOWS\system32\VetRedir.dll(Computer Associates International, Inc., ISafe LSP)
CA ISafe LSP
D:\WINDOWS\system32\VetRedir.dll(Computer Associates International, Inc., ISafe LSP)

==================================

ttywei - 2006-6-6 15:57:00

机子老是显示内存不足，然后连接的网页都打不开，说是服务器内部问题。
iedw.exe
应用程序正常初始化（Oxc000012d）失败。。。。

ttywei - 2006-6-6 18:49:00

怎么办啊，磁盘空间很低，内存也不足

我无邪 - 2006-6-6 20:10:00

你这帖子看不到，老是出问题
请下载 System Repair Engineer，使用“智能扫描”，按下“扫描”按钮进行扫描，扫描完成后按下“保存报告”按钮保存报告日志文件（SREng.LOG），把保存的报告日志文件内容复制-粘贴上来
下载网址
http://www.kztechs.com/sreng/sreng2.zip
http://forum.ikaka.com/topic.asp?board=67&artid=5188931
日志一次粘不完，分次粘完，请不要修改。

worldkiller - 2006-6-6 20:38:00

EXE Error. [winfiles]

ttywei - 2006-6-7 9:37:00

没办法，总显示内存严重不足，根本就用不了了，就把系统盘格了，还是附上日志看看还有没有问题，实在不想格别的盘了~~~

2006-06-06,01:34:47

System Repair Engineer 2.0.12.350 (2.0 RC 1)
Windows XP Professional Service Pack 2 - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><D:\WINDOWS\system32\ctfmon.exe>
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002ASync><D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<PHIME2002A><D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvCplDaemon><RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<nwiz><nwiz.exe /install>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NvMediaCenter><RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NVIDIA nTune><"D:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SoundMan><SOUNDMAN.EXE>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CaAvTray><"E:\TOOL\eTrust EZ Antivirus\CAVTray.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<CAVRID><"E:\TOOL\eTrust EZ Antivirus\CAVRID.exe">
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Logitech Utility><Logi_MwX.Exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SKYNET Personal FireWall><E:\TOOL\SKYNET\FIREWALL\pfw.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<BaiduInstall><D:\WINDOWS\system32\rundll32.exe D:\PROGRA~1\baidu\bar\BDBAR_~1\BaiduBar.dll,Install>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<Userinit><D:\WINDOWS\system32\userinit.exe,>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<IMSCMig><; D:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<qcsszjcz><; c:\chenhu2\chenqxms.exe>
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<Super Rabbit SRRestore><; E:\TOOL\MagicSet\srrest.exe /autosave>

==================================
启动文件夹
[电信宽带]
<D:\Documents and Settings\BigWorld\「开始」菜单\程序\启动\电信宽带.lnk><N>

==================================
服务
[CAISafe / CAISafe]
<E:\TOOL\eTrust EZ Antivirus\ISafe.exe><Computer Associates International, Inc.>
[NVIDIA Display Driver Service / NVSvc]
<D:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[VET Message Service / VETMSGNT]
<E:\TOOL\eTrust EZ Antivirus\VetMsg.exe><Computer Associates International, Inc.>

==================================
浏览器加载项
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <D:\WINDOWS\system32\xunleibho_v8.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[浩方对战平台]
{0A155D3C-68E2-4215-A47A-E800A446447A} <E:\TOOL\TEST\浩方对战平台\GameClient.exe, 上海浩方在线信息技术有限公司>
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <E:\TOOL\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <D:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <D:\WINDOWS\system32\xunleibho_v8.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <D:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <D:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <D:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS\system32\macromed\flash\flash.ocx, Macromedia, Inc.>
[&使用迅雷下载]
<e:\tool\test\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<e:\tool\test\Thunder\Program\GetAllUrl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://E:\TOOL\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[百度-搜索MP3]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUMP3.HTM, N/A>
[百度-搜索图片]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUIMG.HTM, N/A>
[百度-搜索新闻]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUNEWS.HTM, N/A>
[百度-搜索歌词]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDULYRIC.HTM, N/A>
[百度-搜索网页]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUSEARCH.HTM, N/A>
[百度-搜索贴吧]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDUPOST.HTM, N/A>
[百度-词典搜索]
<res://D:\PROGRA~1\baidu\bar\baidubar.dll/BAIDU_DIC.HTM, N/A>

ttywei - 2006-6-7 9:39:00

正在运行的进程
[PID: 644][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 708][\??\D:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 836][\??\D:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 880][D:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 892][D:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1048][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1108][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1200][D:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1324][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1396][D:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1624][D:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[e:\tool\test\WinRAR\rarext.dll] <N/A><N/A>
[D:\WINDOWS\avshlext.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[D:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 62>
[D:\WINDOWS\system32\xunleibho_v8.dll] <Thunder Networking Technologies,LTD><4, 5, 1, 33>
[D:\WINDOWS\system32\nvcpl.dll] <NVIDIA Corporation><6.14.10.8194>
[D:\WINDOWS\system32\NVRSZHC.DLL] <NVIDIA Corporation><6.14.10.8194>
[D:\WINDOWS\system32\nvshell.dll] <N/A><N/A>
[D:\WINDOWS\system32\CmdLineExt03.dll] <N/A><N/A>
[PID: 1692][D:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[PID: 1924][D:\WINDOWS\SOUNDMAN.EXE] <Realtek Semiconductor Corp.><5, 1, 0, 50>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 1940][E:\TOOL\eTrust EZ Antivirus\CAVTray.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVScan.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\DriverIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVFrm.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\EZAVLic.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVres.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 1952][E:\TOOL\eTrust EZ Antivirus\CAVRID.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVFrm.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\CAVres.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[PID: 1972][E:\TOOL\SKYNET\FIREWALL\pfw.exe] <广州众达天网技术有限公司><2.7.6.1005>

ttywei - 2006-6-7 9:40:00

[E:\TOOL\SKYNET\FIREWALL\SKYMISC.DLL] <N/A><N/A>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[PID: 1980][D:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 2016][D:\Program Files\Logitech\MouseWare\system\em_exec.exe] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\EVENTEX.dll] <Logitech Inc.><9.80.019>
[D:\WINDOWS\system32\COMNCTR.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccresrce.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\GlbResLt.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\Program Files\Logitech\MouseWare\System\devices.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccstmglb.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccustom.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\system\ccmsghk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[PID: 236][E:\TOOL\eTrust EZ Antivirus\ISafe.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\Arclib.dll] <Computer Associates International, Inc.><7.2.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\ISafeEngine.dll] <Computer Associates International, Inc.><Version 12.4.1.0>
[PID: 248][D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE] <Microsoft Corporation><7.00.9466>
[PID: 308][D:\WINDOWS\system32\nvsvc32.exe] <NVIDIA Corporation><6.14.10.8194>
[PID: 496][E:\TOOL\eTrust EZ Antivirus\VetMsg.exe] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\DriverIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[E:\TOOL\eTrust EZ Antivirus\VetNtMsg.dll] <N/A><N/A>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\iSafProd.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 1572][D:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[PID: 2196][D:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1860][D:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 62>
[D:\WINDOWS\system32\xunleibho_v8.dll] <Thunder Networking Technologies,LTD><4, 5, 1, 33>
[E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\WINDOWS\system32\CHENHU4.IME] <chenhu><5.7>
[D:\PROGRA~1\baidu\bar\BDBar_tmp\BaiduBar.dll] <Baidu.com, Inc.><2, 0, 2, 78>
[D:\PROGRA~1\baidu\bar\bdgdins.dll] <Baidu.com, Inc.><1, 1, 5, 0>
[D:\WINDOWS\system32\macromed\flash\flash.ocx] <Macromedia, Inc.><6,0,79,0>
[PID: 2164][D:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[PID: 3716][D:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\PROGRA~1\baidu\bar\baidubar.dll] <Baidu.com, Inc.><2, 0, 2, 62>
[D:\WINDOWS\system32\xunleibho_v8.dll] <Thunder Networking Technologies,LTD><4, 5, 1, 33>
[E:\TOOL\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>
[D:\WINDOWS\system32\VetRedir.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\ISafeIf.dll] <Computer Associates International, Inc.><Version 11.0.1.4>
[D:\WINDOWS\system32\macromed\flash\flash.ocx] <Macromedia, Inc.><6,0,79,0>
[PID: 1248][G:\shadu\sreng2\streng2\SREng.exe] <Smallfrogs Studio><2.0.12.350>
[D:\Program Files\Logitech\MouseWare\System\LgWndHk.dll] <Logitech Inc.><9.80.019>
[D:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll] <Logitech Inc.><1.1.0>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["D:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
CA ISafe LSP over [MSAFD Tcpip [TCP/IP]]
D:\WINDOWS\system32\VetRedir.dll(Computer Associates International, Inc., ISafe LSP)
CA ISafe LSP
D:\WINDOWS\system32\VetRedir.dll(Computer Associates International, Inc., ISafe LSP)

==================================

瑞星卡卡安全论坛