点什么东西都重启系统，机子老是重启 bbs.ikaka.com

我的疑问 - 2006-7-7 10:09:00

点击文件夹，重启，删除文件程序，重启，点开始也重启，电我的电脑也重启。
自检也重启，没有格式化，直接安装也重启，启动故障恢复控制台也重启。

开机提示：invalid boot.ini file
booting form c:\windows 想修复boot.ini日志也重启。
郁闷中的郁闷。。。

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><; C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
<caishowmanage><; C:\Program Files\CaiShow Tech\CaiShow\UpdateManager.EXE> []
<msnmsgr><; "C:\Program Files\MSN Messenger\msnmsgr.exe" /background> [Microsoft Corporation]
<Skype><; "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized> []
<Yahoo! Pager><; "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet> []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
<run><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<YLive.exe><; > []
<yassistse><; "C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe"> [Yahoo!]
<auto><d:\system\autoxp.bat> []
<MSConfig><C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto> [Microsoft Corporation]
<AddrPlus3><; C:\PROGRA~1\TENCENT\AdPlus\Runner.exe C:\PROGRA~1\TENCENT\AdPlus\QAHook1.dll Rundll32> []
<Cmaudio><; RunDll32 cmicnfg.cpl,CMICtrlWnd> []
<Desktop><; C:\windows\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll> []
<helper.dll><; C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32> []
<pdfFactory Pro 分配器 v2><; "C:\windows\System32\spool\DRIVERS\W32X86\3\fppdis2a.exe" /runonce> [FinePrint Software, LLC]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]

==================================
启动文件夹
服务
[C-DillaCdaC11BA / C-DillaCdaC11BA]
<C:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
[Symantec Event Manager / ccEvtMgr]
<"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Password Validation / ccPwdSvc]
<"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr]
<"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[Symantec AntiVirus Definition Watcher / DefWatch]
<"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
[NetOp Helper ver. 7.65 (2003337) / NetOp Host for NT Service]
<"C:\Program Files\Danware Data\NetOp School\STUDENT\NHOSTSVC.EXE"><Danware Data A/S>
[P4P Service / P4P Service]
<C:\Program Files\Common Files\Sogou PXP\p2psvr.exe><Sohu.com Inc.>
[SavRoam / SavRoam]
<"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec>
[Symantec Network Drivers Service / SNDSrvc]
<"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[Symantec AntiVirus / Symantec AntiVirus]
<"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>
[VIPTray / VIPTray]
<C:\windows\System32\VIPTray.exe><N/A>

==================================

我的疑问 - 2006-7-7 10:09:00

==================================
浏览器加载项
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[wmpdrm]
{0E674588-66B7-4E19-9D0E-2053B800F69F} <C:\windows\system32\wmpdrm.dll, N/A>
[]
{227F9B9C-AA10-4B00-BACF-23158E4D14DF} <C:\windows\system32\Tamql.dll, N/A>
[]
{2781BA60-97CC-4753-9EA5-A8965F123EC6} <C:\windows\system32\Coaq.dll, N/A>
[BrowserHelper Class]
{2D99E8F4-56B7-457B-9A92-61B5D247D263} <C:\windows\system32\WinDefendor.dll, TODO: <公司名>>
[Yahoo!Photo]
{33BBE430-0E42-4f12-B075-8D21ACB10DCB} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll, Yahoo! China>
[AntiFish Class]
{38928D50-8A48-44C2-945F-D2F23F771410} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll, Yahoo.>
[CaiShowBH Class]
{3AF40CB8-B3BA-4E2D-8968-4BF8DB172997} <C:\Program Files\CaiShow Tech\CaiShow\BrowerHelper.dll, TODO: <公司名>>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, N/A>
[]
{50C69338-CD95-4F52-BAEB-B066413E5D4E} <C:\windows\system32\Ebvyav.dll, N/A>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[NetAccelerate Class]
{5673A7C0-95CC-4646-BB07-3BD71234CEF9} <C:\windows\system32\MicrosoftNet.dll, TODO: <公司名>>
[]
{59314216-A2C1-4B1C-B819-6500C1658012} <C:\windows\system32\Merap.dll, N/A>
[]
{5B2FC35D-F651-467A-B7C2-A679EED2B5C4} <C:\windows\system32\Ngnm.dll, N/A>
[]
{7328B113-7F2D-4F47-BF58-43D2C5F7080B} <C:\windows\system32\Roeap.dll, N/A>
[]
{756128A8-7863-474B-944C-C26AC0FFB2AE} <C:\windows\system32\Erez.dll, N/A>
[]
{7E362BCE-BABF-4FE5-9CB5-6BD4E9F2EB3E} <C:\windows\system32\Nofrjz.dll, N/A>
[]
{94782DB7-731F-4803-A694-A5E8C2842699} <C:\windows\system32\Aqorpf.dll, N/A>
[]
{A9930D97-9CF0-42A0-A10D-4F28836579D5} <C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX, N/A>
[Google Toolbar Helper]
{AA58ED58-01DD-4d91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[]
{B7A94596-BE89-4283-9704-2AB0EC622602} <C:\windows\system32\Pubbk.dll, N/A>
[]
{BB9BFAF9-1F88-48EF-BA5A-AA04ACAC7E31} <C:\WINDOWS\system32\Wonn.dll, N/A>
[]
{C531E09C-99D8-465D-BBA8-E5025EBFF2FF} <C:\windows\system32\Zltuz.dll, N/A>
[]
{C761B61B-F1E5-44F1-B2FF-6F85B270A959} <C:\windows\system32\Sbqe.dll, N/A>
[]
{EC500645-D1FA-4B05-84D7-45CAD170D334} <C:\windows\system32\Cgtqn.dll, N/A>
[]
{FDEA2EAA-880E-46BF-BC9A-F340AD9265ED} <C:\WINDOWS\system32\Khdhi.dll, N/A>
[我的订阅]
{8755CE6E-0BF7-4441-8751-FB728941B0B4} <C:\Program Files\P4P\rss.dll, Sohu.com Inc.>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[雅虎助手]
{406F94F0-504F-4a40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, N/A>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[捜狗直通车]
{DBBB7978-AF21-4EF4-9AD1-B2F4BC75696C} <C:\Program Files\P4P\ToolBar.dll, Sohu.com Inc.>
[MMCPlayer Class]
{05C1004E-2596-48E5-8E26-39362985EEB9} <C:\WINDOWS\Downloaded Program Files\MMCShell.dll, Sohu.com Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx, Macromedia, Inc.>
[Google Script Object]
{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[]
{0342DA3B-F0A1-4A3B-8E63-8541B4D0ABC8} <C:\WINDOWS\system32\Vkjre.dll, N/A>
[MMCPlayer Class]
{05C1004E-2596-48E5-8E26-39362985EEB9} <C:\WINDOWS\Downloaded Program Files\MMCShell.dll, Sohu.com Inc.>
[MonitorURL Class]
{08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[wmpdrm]
{0E674588-66B7-4E19-9D0E-2053B800F69F} <C:\windows\system32\wmpdrm.dll, N/A>
[]
{18C94DC2-13DF-492C-9AB3-01B6FFD6A323} <C:\WINDOWS\system32\Nkggh.dll, N/A>
[assist]
{1B0E7716-898E-48CC-9690-4E338E8DE1D3} <C:\Program Files\3721\assist\assist.dll, >
[]
{227F9B9C-AA10-4B00-BACF-23158E4D14DF} <C:\windows\system32\Tamql.dll, N/A>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[]
{2781BA60-97CC-4753-9EA5-A8965F123EC6} <C:\windows\system32\Coaq.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\WINDOWS\system32\dllcache\dhtmled.ocx, Microsoft Corporation>
[BrowserHelper Class]
{2D99E8F4-56B7-457B-9A92-61B5D247D263} <C:\windows\system32\WinDefendor.dll, TODO: <公司名>>
[Tabular Data Control]
{333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
[Yahoo!Photo]
{33BBE430-0E42-4F12-B075-8D21ACB10DCB} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll, Yahoo! China>
[MsHelp Class]
{33C3992F-1963-49BE-88D7-974C8EE564B5} <C:\WINDOWS\system32\MsHelper.dll, Microsofts>
[AntiFish Class]
{38928D50-8A48-44C2-945F-D2F23F771410} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll, Yahoo.>
[CaiShowBH Class]
{3AF40CB8-B3BA-4E2D-8968-4BF8DB172997} <C:\Program Files\CaiShow Tech\CaiShow\BrowerHelper.dll, TODO: <公司名>>

我的疑问 - 2006-7-7 10:10:00

[雅虎助手]
{406F94F0-504F-4A40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, N/A>
[]
{40EE871F-87AF-4214-B14B-D7788400B508} <C:\WINDOWS\system32\Eicnad.dll, N/A>
[HHCtrl Object]
{41B23C28-488E-4E5C-ACE2-BB0BBABE99E8} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, N/A>
[]
{50C69338-CD95-4F52-BAEB-B066413E5D4E} <C:\windows\system32\Ebvyav.dll, N/A>
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[NetAccelerate Class]
{5673A7C0-95CC-4646-BB07-3BD71234CEF9} <C:\windows\system32\MicrosoftNet.dll, TODO: <公司名>>
[Yahoo!Live]
{57421194-58FB-49AE-9B4F-FD48869B9AD4} <C:\PROGRA~1\Yahoo!\ASSIST~1\yaLive.dll, >
[]
{59314216-A2C1-4B1C-B819-6500C1658012} <C:\windows\system32\Merap.dll, N/A>
[]
{5B2FC35D-F651-467A-B7C2-A679EED2B5C4} <C:\windows\system32\Ngnm.dll, N/A>
[DragSearch BHO]
{62EED7C6-9F02-42F9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL, >
[Microsoft 外壳 UI 帮助程序]
{64AB4BB7-111E-11D1-8F79-00C04FC2FBE1} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[]
{6CBFA542-2E36-45E9-A9E5-1BFF4D83CA76} <C:\WINDOWS\system32\Aawmk.dll, N/A>
[BHOImp Class]
{70AFF2CB-9DA2-499C-8D15-900729FCE83D} <C:\Program Files\KooWo\Lyric\lrcsys.dll, N/A>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[]
{7328B113-7F2D-4F47-BF58-43D2C5F7080B} <C:\windows\system32\Roeap.dll, N/A>
[]
{756128A8-7863-474B-944C-C26AC0FFB2AE} <C:\windows\system32\Erez.dll, N/A>
[AutoLive]
{7CA83CF1-3AEA-42D0-A4E3-1594FC6E48B2} <C:\Program Files\3721\Autolive.dll, >
[]
{7E362BCE-BABF-4FE5-9CB5-6BD4E9F2EB3E} <C:\windows\system32\Nofrjz.dll, N/A>
[我的订阅]
{8755CE6E-0BF7-4441-8751-FB728941B0B4} <C:\Program Files\P4P\rss.dll, Sohu.com Inc.>
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[]
{94782DB7-731F-4803-A694-A5E8C2842699} <C:\windows\system32\Aqorpf.dll, N/A>
[]
{A9930D97-9CF0-42A0-A10D-4F28836579D5} <C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX, N/A>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, Google Inc.>
[Fc2Boot Class]
{ABA7CC7F-019D-47DB-A0D2-B3C2B3AC1B44} <C:\WINDOWS\system32\fc2boot.dll, 北京线线通科技开发有限公司>
[Qzone Media Tools]
{AC3A36A8-9BFF-410A-A33D-2279FFEB69D2} <C:\PROGRA~1\Tencent\QQ\VQQPLA~1.OCX, Tencent Technology (Shenzhen) Company Limited>
[HBObject Class]
{AE22AFE5-1EF4-4D25-9E23-D2825FB17DA1} <C:\PROGRA~1\HBClient\hbhelper.dll, N/A>
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Microsoft DirectAnimation Control]
{B6FFC24C-7E13-11D0-9B47-00C04FC2F51D} <C:\WINDOWS\system32\danim.dll, Microsoft Corporation>
[]
{B7A94596-BE89-4283-9704-2AB0EC622602} <C:\windows\system32\Pubbk.dll, N/A>
[]
{BB9BFAF9-1F88-48EF-BA5A-AA04ACAC7E31} <C:\WINDOWS\system32\Wonn.dll, N/A>
[]
{C531E09C-99D8-465D-BBA8-E5025EBFF2FF} <C:\windows\system32\Zltuz.dll, N/A>
[]
{C761B61B-F1E5-44F1-B2FF-6F85B270A959} <C:\windows\system32\Sbqe.dll, N/A>
[Adobe Acrobat Control for ActiveX]
{CA8A9780-280D-11CF-A24D-444553540000} <C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\ActiveX\pdf.ocx, Adobe Systems Incorporated>
[AUDIO__MID Moniker Class]
{CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class]
{CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx, Macromedia, Inc.>
[捜狗直通车]
{DBBB7978-AF21-4EF4-9AD1-B2F4BC75696C} <C:\Program Files\P4P\ToolBar.dll, Sohu.com Inc.>
[Messenger Class]
{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} <, N/A>
[]
{EC500645-D1FA-4B05-84D7-45CAD170D334} <C:\windows\system32\Cgtqn.dll, N/A>
[]
{FC745342-8ACC-4FFE-8AA3-63C34B9F47D6} <C:\WINDOWS\system32\Mtkxhc.dll, N/A>
[]
{FDEA2EAA-880E-46BF-BC9A-F340AD9265ED} <C:\WINDOWS\system32\Khdhi.dll, N/A>
[assist]
{FE3ECAE7-0A37-4506-8A7D-3CC9A04D2CA8} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yassist.dll, N/A>
[pCastPanel Class]
{FEE1002D-90A5-4A5D-AABE-01803FFBCF7A} <C:\windows\system32\pcastctl.dll, >
[Google 搜索(&G)]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
<C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用KuGoo3下载(&K)]
<C:\Program Files\KuGoo3\KuGoo3DownX.htm, N/A>
[使用搜狗直通车下载]
<C:\Program Files\P4P\dl.htm, N/A>
[反向链接]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html, N/A>
[发送图片到手机]
<C:\Program Files\P4P\cx.htm, N/A>
[添加到QQ自定义面板]
<C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[添加到“我的订阅”]
<C:\Program Files\P4P\rss.htm, N/A>
[添加到雅虎订阅(&Y)]
<res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT, N/A>
[用QQ彩信发送该图片]
<C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>
[用炫彩图铃发送该图片]
<C:\Program Files\CaiShow Tech\CaiShow\SendMMS.htm, N/A>
[类似网页]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html, N/A>
[缓存的网页快照]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html, N/A>
[翻译英文字词(&T)]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html, N/A>
[雅虎搜索]
<res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246, N/A>

==================================

我的疑问 - 2006-7-7 10:10:00

正在运行的进程
[PID: 148][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 196][\??\C:\windows\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 220][\??\C:\windows\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 264][C:\windows\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 276][C:\windows\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 436][C:\windows\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 496][C:\windows\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 552][C:\windows\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 876][C:\windows\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.0.0.86>
[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll] <Autodesk><16.0.0.86>
[C:\Program Files\WinRAR\rarext.dll] <N/A><N/A>
[C:\PROGRA~1\3721\ske\contmenu.dll] <N/A><N/A>
[C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll] <Symantec Corporation><9.0.1.1000>
[C:\Program Files\Kingsoft\Powerword 2003\Cjktl32.dll] <N/A><N/A>
[PID: 892][C:\windows\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[G:\SREng2\SREng.com] <Smallfrogs Studio><2.0.21.505>
[C:\Program Files\Kingsoft\Powerword 2003\Cjktl32.dll] <N/A><N/A>
[PID: 1780][C:\Program Files\3721\ske\TrojanAssistant.exe] <Yahoo! CN><2.1.2.1003>
[C:\WINDOWS\system32\AcSignIcon.dll] <Autodesk><16.0.0.86>
[C:\Program Files\3721\ske\fsk.dll] <3721.com><2, 1, 2, 1030>
[C:\Program Files\3721\ske\wmpns.dll] <---><1, 1, 8, 1324>
[PID: 1876][C:\Program Files\Kingsoft\Powerword 2003\XDICT.EXE] <Kingsoft Co, Ltd.><6, 0, 1, 0>
[C:\Program Files\Kingsoft\Powerword 2003\ITextOut.dll] <Kingsoft><1, 1, 0, 0>
[C:\Program Files\Kingsoft\Powerword 2003\CJKTAB32.dll] <N/A><N/A>
[C:\Program Files\Kingsoft\Powerword 2003\XImage32.dll] <N/A><N/A>
[C:\Program Files\Kingsoft\Powerword 2003\xfile.dll] <N/A><N/A>
[C:\Program Files\Kingsoft\Powerword 2003\KPic10.dll] <N/A><N/A>
[C:\Program Files\Kingsoft\Powerword 2003\ijl11.dll] <Intel Corporation><1.1.2>
[C:\Program Files\Kingsoft\Powerword 2003\toTTSEngine50.dll] <Kingsoft Corporation><1, 0, 0, 1>
[C:\Program Files\Kingsoft\Powerword 2003\NormGrab.DLL] <Kingsoft Co, Ltd.><6, 0, 0, 0>
[C:\Program Files\Kingsoft\Powerword 2003\DicMngr.dll] <Kingsoft><1, 0, 0, 0>
[C:\Program Files\Kingsoft\Powerword 2003\DBCore10.dll] <Kingsoft Corp.><1, 0, 0, 0>
[C:\Program Files\Kingsoft\Powerword 2003\XdictGrb.dll] <Kingsoft Co, Ltd.><6, 0, 0, 0>
[C:\Program Files\Kingsoft\Powerword 2003\Cjktl32.dll] <N/A><N/A>
[PID: 1884][C:\Program Files\MSN Messenger\msnmsgr.exe] <Microsoft Corporation><7.5.0324>
[C:\Program Files\Kingsoft\Powerword 2003\Cjktl32.dll] <N/A><N/A>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

瑞星卡卡安全论坛