我家电脑声卡驱动装上去好使，但是重启动后又不好使了（日志） bbs.ikaka.com

我们村里我最帅 - 2006-9-3 19:30:00

2006-09-03,19:20:27

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
<LDM><C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe> [Logitech]
<pyjj><E:\实用软件\拼音加加\jj4\jjsvr4.exe> [加加开发组]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ATIPTA><"C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"> [ATI Technologies, Inc.]
<Logitech Hardware Abstraction Layer><KHALMNPR.EXE> [Logitech Inc.]
<mmtask><"C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"> [Musicmatch Inc.]
<NeroFilterCheck><; C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<HP Software Update><E:\实用软件\hp打印机\HP Software Update\HPWuSchd2.exe> [Hewlett-Packard Co.]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [Microsoft Corporation]
<PHIME2002A><; > []
<PHIME2002ASync><; > []
<StormCodec_Helper><; "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> []
<IESAddr><> []
<MSConfig><C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto> [Microsoft Corporation]
<SoundMan><SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<RavStub><"C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
<WinlogonNotify: AtiExtEvent><Ati2evxx.dll> [ATI Technologies Inc.]

==================================
启动文件夹
[Logitech SetPoint]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech SetPoint.lnk><N>
[Logitech Desktop Messenger]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech Desktop Messenger.lnk><N>
[HP Digital Imaging Monitor]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\HP Digital Imaging Monitor.lnk><N>

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller]
<C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart]
<C:\WINDOWS\system32\ati2sgag.exe><>
[Macromedia Licensing Service / Macromedia Licensing Service]
<"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[Rising Proxy Service / RfwProxySrv]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>

==================================
浏览器加载项
[MyIEHelper Class]
{16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200688_4825.dll, N/A>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[JMX.JmxCenter]
{63859236-76BF-493C-A587-DF479EBA2D4B} <C:\WINDOWS\system32\EJMX.dll, 广州盛行网络有限公司>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[启动迅雷]
{0062C9BD-B349-40DE-91A0-755F37ACD559} <E:\上网软件\迅雷\Thunder.exe, Thunder Networking Technologies,LTD>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[微软]
{6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.microsoft.com/china/index.htm, N/A>
[比较购物搜索(&C)]
{A36ABCF0-1C8F-46e7-A67C-0489DC21B9CC} <C:\WINDOWS\YayaBands.dll, Eastday Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <E:\上网软件\qq2006\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <E:\上网软件\qq2006\QQIEHelper.dll, N/A>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <E:\翻译工具\IEBand.dll, N/A>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Seekmo Toolbar]
{53E0B6E8-A51D-448B-B692-40B67B285543} <C:\Program Files\Seekmo Programs\Seekmo Toolbar\SeekmoTB.dll, Seekmo>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[updatePanelX Control]
{43E839C5-E10F-443A-BC1F-F09CFD2ABC77} <C:\WINDOWS\system32\uusee\internet\updateC.ocx, uusee>
[Downloader Class]
{5932517A-3326-4439-A708-1C98EDB5C549} <C:\WINDOWS\system32\iMopDl.dll, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[MyIEHelper Class]
{16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200688_4825.dll, N/A>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <E:\上网软件\qq2006\QQIEHelper.dll, N/A>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[IEYHlprObj Class]
{5C761D09-377E-4EAC-ADA1-C9CDE39B5674} <C:\WINDOWS\IEYHelper.dll, N/A>
[JMX.JmxCenter]
{63859236-76BF-493C-A587-DF479EBA2D4B} <C:\WINDOWS\system32\EJMX.dll, 广州盛行网络有限公司>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[金山快译(&K)]
{6C3797D2-3FEF-4CD4-B654-D3AE55B4128C} <E:\翻译工具\IEBand.dll, N/A>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <E:\上网软件\迅雷\Components\InMedia\MediaAddin07.dll, Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <E:\上网软件\迅雷\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[NTIECatcher Class]
{C56CB6B0-0D96-11D6-8C65-B2868B609932} <C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, N/A>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[&使用迅雷下载]
<E:\上网软件\迅雷\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<E:\上网软件\迅雷\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
<E:\上网软件\qq2006\AddToNetDisk.htm, N/A>
[使用影音传送带下载]
<C:\Program Files\Xi\NetTransport 2\NTAddLink.html, N/A>
[使用影音传送带下载全部链接]
<C:\Program Files\Xi\NetTransport 2\NTAddList.html, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<E:\上网软件\qq2006\AddPanel.htm, N/A>
[添加到QQ表情]
<E:\上网软件\qq2006\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<E:\上网软件\qq2006\SendMMS.htm, N/A>

==================================

我们村里我最帅 - 2006-9-3 19:31:00

正在运行的进程
[PID: 612][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 672][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 696][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\Ati2evxx.dll] <ATI Technologies Inc.><6.14.10.4117>
[PID: 740][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 752][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 924][C:\WINDOWS\system32\Ati2evxx.exe] <ATI Technologies Inc.><6.14.10.4117>
[C:\WINDOWS\system32\Ati2edxx.dll] <ATI Technologies, Inc.><6, 14, 10, 2497>
[PID: 940][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1016][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 1124][C:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 1140][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 1268][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1352][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1380][C:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 35>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\Program Files\Rising\Rav\HOOKSYS.dll] <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
[C:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32>
[C:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
[C:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
[C:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 34>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[C:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 13>
[C:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\Program Files\Rising\Rav\RSUnpack.dll] <Beijing Rising Technology Co., Ltd.><1, 0, 0, 13>
[C:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[C:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[C:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 1492][c:\program files\rising\rfw\rfwsrv.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
[c:\program files\rising\rfw\RfwRule.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
[c:\program files\rising\rfw\rfwlog.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
[c:\program files\rising\rfw\Rfwdrv.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
[c:\program files\rising\rfw\MonDrv.dll] <rs><1, 0, 0, 4>
[c:\program files\rising\rfw\ProcLib.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1608][C:\WINDOWS\system32\Ati2evxx.exe] <ATI Technologies Inc.><6.14.10.4117>
[C:\WINDOWS\system32\Ati2edxx.dll] <ATI Technologies, Inc.><6, 14, 10, 2497>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1684][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 1788][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[C:\WINDOWS\system32\hpzll3xu.dll] <Hewlett-Packard Company><60.051.641.00>
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp3xu.dll] <Hewlett-Packard Corporation><60.051.641.00>
[PID: 1876][C:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 2040][c:\program files\rising\rfw\RfwMain.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 52>
[c:\program files\rising\rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
[c:\program files\rising\rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[c:\program files\rising\rfw\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 224][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll] <ATI Technologies, Inc.><6.14.10.5157>
[C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 324][C:\WINDOWS\system32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 332][C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe] <Musicmatch Inc.><9.0.0.1>
[C:\Program Files\Musicmatch\Musicmatch Jukebox\MMVCP70.dll] <Sample Corporation><7.00.0000>
[C:\Program Files\Musicmatch\Musicmatch Jukebox\MMVCR70.dll] <Sample Corporation><7.00.0000>
[PID: 384][E:\实用软件\hp打印机\HP Software Update\HPWuSchd2.exe] <Hewlett-Packard Co.><53.0.13.000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 528][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 568][C:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
[C:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 25>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 856][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 968][C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] <Logitech><2.30.04>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\backWeb.dll] <BackWeb Technologies Inc.><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\bwsec.dll] <BackWeb><Version 4.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\clntutil.dll] <N/A><N/A>
[C:\PROGRA~1\Logitech\DESKTO~1\8876480\720~1.157\program\EN\ClientRC.dll] <BackWeb Technologies Inc.><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWfiles-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\BWfiles.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWDocMapExt-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\BWDocMapExt.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\bwscriptext-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\bwscriptext.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\SyncExt.dll] <Logitech><2.30.04>

我们村里我最帅 - 2006-9-3 19:32:00

[PID: 956][E:\实用软件\拼音加加\jj4\jjsvr4.exe] <加加开发组><4.0.0.20>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1248][C:\Program Files\Logitech\SetPoint\SetPoint.exe] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemUtil.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\SetPointCOM.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\kemutb.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\KGame.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemWnd.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\GameHook.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemXML.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\IMHook.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KhalApi.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\LCabHandler.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\KEMHook.dll] <Logitech Inc.><2.47.864>
[PID: 1292][E:\实用软件\hp打印机\Digital Imaging\bin\hpqtra08.exe] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcxm08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpquio08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtra08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtao08.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpotradd.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpftra01.dll] <Hewlett-Packard><1, 0, 0, 2>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqrif08.dll] <Hewlett-Packard Co.><53.0.20.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpodvd09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpoddcomm09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpodio08.dll] <Hewlett-Packard Co.><50.0.165.000>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 2068][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 2112][C:\WINDOWS\system32\wbem\wmiprvse.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2196][C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE] <Logitech Inc.><2.47.842>
[C:\Program Files\Common Files\Logitech\KHAL\KHALAPI.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALITCH.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALMW.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALHPP.DLL] <Logitech Inc.><2.47.864>
[PID: 2716][E:\实用软件\hp打印机\Digital Imaging\bin\hpqSTE08.exe] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqmfc09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtap08.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcxm08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqSTE08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqsti08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcob08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqstv08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqsem08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpocxi08.dll] <Hewlett-Packard Co.><50.0.125.000>
[PID: 3384][E:\上网软件\maxthon\Max.exe] <Maxthon International Ltd.><1, 5, 3, 18>
[E:\上网软件\maxthon\maxzlib.dll] < ><1, 0, 0, 2>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\上网软件\迅雷\ComDlls\XunLeiBHO_002.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 2>
[E:\上网软件\maxthon\Services\RealTime\real_time.dll] <><1, 0, 0, 1>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] <Adobe Systems, Inc.><9,0,16,0>
[C:\WINDOWS\system32\PYJJ4.IME] <加加工作组><4.0.0.21>
[PID: 3396][C:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[PID: 3904][E:\实用软件\网址\sreng2\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

mopery - 2006-9-3 19:35:00

[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
需要用LSPFix 来修复..
LSPFix(汉化版) 下载地址:http://forum.ikaka.com/topic.asp?board=67&artid=5188931
(8楼...)
同时下载WinsockXPFix.exe...(2楼...)
----------------------------------------------------------------
先运行LSPFix ... 勾上我确定要进行修复操作 ...
然后将quartz32.dll移到右边...点下完成...
----------------------------------------------------------------
如果在操作之后不能上网...请用WinsockXPFix.exe 修复一下即可...安全模式下..

其他没发现问题..

我无邪 - 2006-9-3 20:47:00

怎么不好使，重装后，能正常使用，重启后，就不能使用了吗？

我们村里我最帅 - 2006-9-4 21:08:00

对啊，而且第一次打开网站的时候还会弹出一个网页。

我无邪 - 2006-9-4 21:59:00

什么网页？
烦再扫个日志粘上来。

我们村里我最帅 - 2006-9-8 20:31:00

不一定弹出什么网页，这次是这个
http://www.maohehe.com/html/24.html
2006-09-08,20:20:30

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
<LDM><C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe> [Logitech]
<pyjj><E:\实用软件\拼音加加\jj4\jjsvr4.exe> [加加开发组]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ATIPTA><"C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"> [ATI Technologies, Inc.]
<Logitech Hardware Abstraction Layer><KHALMNPR.EXE> [Logitech Inc.]
<mmtask><"C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"> [Musicmatch Inc.]
<NeroFilterCheck><; C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<HP Software Update><E:\实用软件\hp打印机\HP Software Update\HPWuSchd2.exe> [Hewlett-Packard Co.]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [Microsoft Corporation]
<PHIME2002A><; > []
<PHIME2002ASync><; > []
<StormCodec_Helper><; "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> []
<IESAddr><> []
<SoundMan><SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<RavStub><"C:\Program Files\Rising\Rav\ravstub.exe" /RUNONCE> [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
<WinlogonNotify: AtiExtEvent><Ati2evxx.dll> [ATI Technologies Inc.]

==================================
启动文件夹
[Logitech SetPoint]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech SetPoint.lnk><N>
[Logitech Desktop Messenger]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech Desktop Messenger.lnk><N>
[HP Digital Imaging Monitor]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\HP Digital Imaging Monitor.lnk><N>

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller]
<C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart]
<C:\WINDOWS\system32\ati2sgag.exe><>
[Macromedia Licensing Service / Macromedia Licensing Service]
<"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[Rising Proxy Service / RfwProxySrv]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>

我们村里我最帅 - 2006-9-8 20:31:00

==================================
浏览器加载项
[MyIEHelper Class]
{16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200688_4825.dll, N/A>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[JMX.JmxCenter]
{63859236-76BF-493C-A587-DF479EBA2D4B} <C:\WINDOWS\system32\EJMX.dll, 广州盛行网络有限公司>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[启动迅雷]
{0062C9BD-B349-40DE-91A0-755F37ACD559} <E:\上网软件\迅雷\Thunder.exe, Thunder Networking Technologies,LTD>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[微软]
{6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.microsoft.com/china/index.htm, N/A>
[比较购物搜索(&C)]
{A36ABCF0-1C8F-46e7-A67C-0489DC21B9CC} <C:\WINDOWS\YayaBands.dll, Eastday Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <E:\上网软件\qq2006\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <E:\上网软件\qq2006\QQIEHelper.dll, N/A>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <E:\翻译工具\IEBand.dll, N/A>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Seekmo Toolbar]
{53E0B6E8-A51D-448B-B692-40B67B285543} <C:\Program Files\Seekmo Programs\Seekmo Toolbar\SeekmoTB.dll, Seekmo>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[updatePanelX Control]
{43E839C5-E10F-443A-BC1F-F09CFD2ABC77} <C:\WINDOWS\system32\uusee\internet\updateC.ocx, uusee>
[Downloader Class]
{5932517A-3326-4439-A708-1C98EDB5C549} <C:\WINDOWS\system32\iMopDl.dll, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[MyIEHelper Class]
{16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200688_4825.dll, N/A>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <E:\上网软件\qq2006\QQIEHelper.dll, N/A>
[CdnForIE Class]
{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} <C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll, CNNIC>
[IEYHlprObj Class]
{5C761D09-377E-4EAC-ADA1-C9CDE39B5674} <C:\WINDOWS\IEYHelper.dll, N/A>
[JMX.JmxCenter]
{63859236-76BF-493C-A587-DF479EBA2D4B} <C:\WINDOWS\system32\EJMX.dll, 广州盛行网络有限公司>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[金山快译(&K)]
{6C3797D2-3FEF-4CD4-B654-D3AE55B4128C} <E:\翻译工具\IEBand.dll, N/A>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, Xiang Feng Technology>
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <E:\上网软件\迅雷\Components\InMedia\MediaAddin07.dll, Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <E:\上网软件\迅雷\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[NTIECatcher Class]
{C56CB6B0-0D96-11D6-8C65-B2868B609932} <C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, N/A>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[&使用迅雷下载]
<E:\上网软件\迅雷\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<E:\上网软件\迅雷\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
<E:\上网软件\qq2006\AddToNetDisk.htm, N/A>
[使用影音传送带下载]
<C:\Program Files\Xi\NetTransport 2\NTAddLink.html, N/A>
[使用影音传送带下载全部链接]
<C:\Program Files\Xi\NetTransport 2\NTAddList.html, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<E:\上网软件\qq2006\AddPanel.htm, N/A>
[添加到QQ表情]
<E:\上网软件\qq2006\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<E:\上网软件\qq2006\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 380][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 440][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 464][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\Ati2evxx.dll] <ATI Technologies Inc.><6.14.10.4117>
[PID: 508][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 520][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 688][C:\WINDOWS\system32\Ati2evxx.exe] <ATI Technologies Inc.><6.14.10.4117>
[C:\WINDOWS\system32\Ati2edxx.dll] <ATI Technologies, Inc.><6, 14, 10, 2497>
[PID: 704][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 760][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 848][C:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 864][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 980][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1056][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1076][C:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 35>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\Program Files\Rising\Rav\HOOKSYS.dll] <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
[C:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32>
[C:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
[C:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
[C:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 34>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[C:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 15>
[C:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\Program Files\Rising\Rav\RSUnpack.dll] <Beijing Rising Technology Co., Ltd.><1, 0, 0, 13>
[C:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[C:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[C:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>

我们村里我最帅 - 2006-9-8 20:33:00

[PID: 1180][c:\program files\rising\rfw\rfwsrv.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
[c:\program files\rising\rfw\RfwRule.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
[c:\program files\rising\rfw\rfwlog.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
[c:\program files\rising\rfw\Rfwdrv.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
[c:\program files\rising\rfw\MonDrv.dll] <rs><1, 0, 0, 4>
[c:\program files\rising\rfw\ProcLib.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1296][C:\WINDOWS\system32\Ati2evxx.exe] <ATI Technologies Inc.><6.14.10.4117>
[C:\WINDOWS\system32\Ati2edxx.dll] <ATI Technologies, Inc.><6, 14, 10, 2497>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1368][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[E:\实用软件\winrar\rarext.dll] <N/A><N/A>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[F:\娱乐\游戏\金山游~1\Tools\KVD\kscdrush.dll] <金山软件股份有限公司><5, 0, 0, 0>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 1500][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[C:\WINDOWS\system32\hpzll3xu.dll] <Hewlett-Packard Company><60.051.641.00>
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp3xu.dll] <Hewlett-Packard Corporation><60.051.641.00>
[PID: 1588][C:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1732][c:\program files\rising\rfw\RfwMain.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 52>
[c:\program files\rising\rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
[c:\program files\rising\rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[c:\program files\rising\rfw\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1804][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll] <ATI Technologies, Inc.><6.14.10.5157>
[C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1824][C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe] <Musicmatch Inc.><9.0.0.1>
[C:\Program Files\Musicmatch\Musicmatch Jukebox\MMVCP70.dll] <Sample Corporation><7.00.0000>
[C:\Program Files\Musicmatch\Musicmatch Jukebox\MMVCR70.dll] <Sample Corporation><7.00.0000>
[PID: 1832][E:\实用软件\hp打印机\HP Software Update\HPWuSchd2.exe] <Hewlett-Packard Co.><53.0.13.000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 1864][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1888][C:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
[C:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1904][C:\WINDOWS\SOUNDMAN.EXE] <Realtek Semiconductor Corp.><5, 1, 0, 50>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1972][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 2044][C:\WINDOWS\system32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 320][C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] <Logitech><2.30.04>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\backWeb.dll] <BackWeb Technologies Inc.><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\bwsec.dll] <BackWeb><Version 4.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\clntutil.dll] <N/A><N/A>
[C:\PROGRA~1\Logitech\DESKTO~1\8876480\720~1.157\program\EN\ClientRC.dll] <BackWeb Technologies Inc.><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWfiles-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\BWfiles.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWDocMapExt-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\BWDocMapExt.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\bwscriptext-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\bwscriptext.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\SyncExt.dll] <Logitech><2.30.04>
[PID: 276][E:\实用软件\拼音加加\jj4\jjsvr4.exe] <加加开发组><4.0.0.20>

我们村里我最帅 - 2006-9-8 20:33:00

[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 572][C:\Program Files\Logitech\SetPoint\SetPoint.exe] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemUtil.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\SetPointCOM.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\kemutb.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\KGame.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemWnd.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\GameHook.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemXML.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\IMHook.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KhalApi.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\LCabHandler.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\KEMHook.dll] <Logitech Inc.><2.47.864>
[PID: 836][E:\实用软件\hp打印机\Digital Imaging\bin\hpqtra08.exe] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcxm08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpquio08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtra08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtao08.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpotradd.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpftra01.dll] <Hewlett-Packard><1, 0, 0, 2>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqrif08.dll] <Hewlett-Packard Co.><53.0.20.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpodvd09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpoddcomm09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpodio08.dll] <Hewlett-Packard Co.><50.0.165.000>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 1708][C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE] <Logitech Inc.><2.47.842>
[C:\Program Files\Common Files\Logitech\KHAL\KHALAPI.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALITCH.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALMW.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALHPP.DLL] <Logitech Inc.><2.47.864>
[PID: 1712][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[PID: 1000][C:\WINDOWS\system32\wbem\wmiprvse.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2300][E:\实用软件\hp打印机\Digital Imaging\bin\hpqSTE08.exe] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqmfc09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtap08.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcxm08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqSTE08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqsti08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcob08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqstv08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqsem08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpocxi08.dll] <Hewlett-Packard Co.><50.0.125.000>
[PID: 3800][E:\上网软件\maxthon\Max.exe] <Maxthon International Ltd.><1, 5, 3, 18>
[E:\上网软件\maxthon\maxzlib.dll] < ><1, 0, 0, 2>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\上网软件\迅雷\ComDlls\XunLeiBHO_002.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 2>
[E:\上网软件\maxthon\Services\RealTime\real_time.dll] <><1, 0, 0, 1>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] <Adobe Systems, Inc.><9,0,16,0>
[PID: 1996][C:\WINDOWS\system32\wuauclt.exe] <Microsoft Corporation><5.8.0.2469 built by: lab01_n(wmbla)>
[PID: 220][C:\WINDOWS\system32\wbem\wmiprvse.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 3116][E:\实用软件\网址\sreng2\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\quartz32.dll] <><4, 1, 0, 0>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

我无邪 - 2006-9-8 20:45:00

下载这一个兔子，不要用你的那个。
下载超级兔子,专业卸载。
http://www.pctutu.com/news.asp?id=92
安装好后，打开“winspeed”“专业卸载,卸载所有提示的垃圾软件，卸载是不要打开任何浏览窗口。卸载不了可以重启后再去卸载。
卸载完后

请到http://forum.ikaka.com/topic.asp?board=67&artid=5188931，下载，LSPFix.exe，WinsockXPFix这两个软件
重新启动电脑, 开机检测完后, 按[F8]键(可以一直按到启动菜单出来为止), 选择安全模式进入Windows

运行LSPFix.exe
删除
quartz32.dll
附说明一份
LSPFix.exe这个软件主要用来辅助修复HijackThis扫描发现的O10项。
使用时，请关闭所有IE界面和文件夹界面后运行LSPFix，运行后，把要修复的那一个O10项从左边转到右边，点“Finish”即可。（不过这之前，需要在“I know what I`m doing”前面打勾。）
双击我的电脑，工具，文件夹选项，查看，单击选取"显示隐藏文件或文件夹"清除"隐藏受保护的操作系统文件（推荐）"复选框。在提示确定更改时，单击“是”，清除“隐藏已知文件类型的扩展名
删除
C:\WINDOWS\system32\quartz32.dll
修复后重启，如果无法上网，请运行WinsockXPFix，让它修复一下。
回到正常模式，请再扫日志粘上来。
如果总是无法修复
看以下的帖子
解决Winsock LSP“浏览器劫持”的一些方法
http://forum.ikaka.com/topic.asp?board=67&artid=8162074

我们村里我最帅 - 2006-9-8 21:45:00

我突然发现我在登陆搜狐校友录的时候，那个网页的音乐居然可以播放出来，可是播放别的（音乐）的时候就不好使。
2006-09-08,21:35:23

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
<LDM><C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe> [Logitech]
<pyjj><E:\实用软件\拼音加加\jj4\jjsvr4.exe> [加加开发组]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
<run><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<ATIPTA><"C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"> [ATI Technologies, Inc.]
<Logitech Hardware Abstraction Layer><KHALMNPR.EXE> [Logitech Inc.]
<mmtask><"C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe"> [Musicmatch Inc.]
<NeroFilterCheck><; C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<HP Software Update><E:\实用软件\hp打印机\HP Software Update\HPWuSchd2.exe> [Hewlett-Packard Co.]
<RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system> [Beijing Rising Technology Co., Ltd.]
<RfwMain><"C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.]
<IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [Microsoft Corporation]
<PHIME2002A><; > []
<PHIME2002ASync><; > []
<StormCodec_Helper><; "C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> []
<SoundMan><SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
<WinlogonNotify: AtiExtEvent><Ati2evxx.dll> [ATI Technologies Inc.]

==================================
启动文件夹
[Logitech SetPoint]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech SetPoint.lnk><N>
[Logitech Desktop Messenger]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech Desktop Messenger.lnk><N>
[HP Digital Imaging Monitor]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\HP Digital Imaging Monitor.lnk><N>

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller]
<C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart]
<C:\WINDOWS\system32\ati2sgag.exe><>
[Macromedia Licensing Service / Macromedia Licensing Service]
<"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[Rising Proxy Service / RfwProxySrv]
<c:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
<c:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
<"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
<"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>

==================================
浏览器加载项
[MyIEHelper Class]
{16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200688_4825.dll, N/A>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, N/A>
[启动迅雷]
{0062C9BD-B349-40DE-91A0-755F37ACD559} <E:\上网软件\迅雷\Thunder.exe, Thunder Networking Technologies,LTD>
[微软]
{6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.microsoft.com/china/index.htm, N/A>
[比较购物搜索(&C)]
{A36ABCF0-1C8F-46e7-A67C-0489DC21B9CC} <C:\WINDOWS\YayaBands.dll, Eastday Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <E:\上网软件\qq2006\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <E:\上网软件\qq2006\QQIEHelper.dll, N/A>
[金山快译(&K)]
{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} <E:\翻译工具\IEBand.dll, N/A>
[&Google]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, N/A>
[Seekmo Toolbar]
{53E0B6E8-A51D-448B-B692-40B67B285543} <C:\Program Files\Seekmo Programs\Seekmo Toolbar\SeekmoTB.dll, Seekmo>
[Windows Genuine Advantage Validation Tool]
{17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\legitcheckcontrol.dll, Microsoft Corporation>
[updatePanelX Control]
{43E839C5-E10F-443A-BC1F-F09CFD2ABC77} <C:\WINDOWS\system32\uusee\internet\updateC.ocx, uusee>
[Downloader Class]
{5932517A-3326-4439-A708-1C98EDB5C549} <C:\WINDOWS\system32\iMopDl.dll, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[MyIEHelper Class]
{16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\IEHelper\IEHelper200688_4825.dll, N/A>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[超级兔子上网精灵]
{43869BB3-22FD-4F15-9B46-238106BA2F4E} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, N/A>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <E:\上网软件\qq2006\QQIEHelper.dll, N/A>
[IEYHlprObj Class]
{5C761D09-377E-4EAC-ADA1-C9CDE39B5674} <C:\WINDOWS\IEYHelper.dll, N/A>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[金山快译(&K)]
{6C3797D2-3FEF-4CD4-B654-D3AE55B4128C} <E:\翻译工具\IEBand.dll, N/A>
[超级兔子上网精灵]
{7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <E:\实用软件\超级兔子\MagicSet\haokanbar.dll, N/A>
[MediaComm Class]
{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <E:\上网软件\迅雷\Components\InMedia\MediaAddin07.dll, Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <E:\上网软件\迅雷\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD>
[Google Toolbar Helper]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[NTIECatcher Class]
{C56CB6B0-0D96-11D6-8C65-B2868B609932} <C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, N/A>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[&使用迅雷下载]
<E:\上网软件\迅雷\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
<E:\上网软件\迅雷\Program\GetAllUrl.htm, N/A>
[Google 搜索(&G)]
<res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[上传到QQ网络硬盘]
<E:\上网软件\qq2006\AddToNetDisk.htm, N/A>
[使用影音传送带下载]
<C:\Program Files\Xi\NetTransport 2\NTAddLink.html, N/A>
[使用影音传送带下载全部链接]
<C:\Program Files\Xi\NetTransport 2\NTAddList.html, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<E:\上网软件\qq2006\AddPanel.htm, N/A>
[添加到QQ表情]
<E:\上网软件\qq2006\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<E:\上网软件\qq2006\SendMMS.htm, N/A>

我们村里我最帅 - 2006-9-8 21:46:00

==================================
正在运行的进程
[PID: 380][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 440][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 464][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\system32\Ati2evxx.dll] <ATI Technologies Inc.><6.14.10.4117>
[PID: 508][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 520][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 688][C:\WINDOWS\system32\Ati2evxx.exe] <ATI Technologies Inc.><6.14.10.4117>
[C:\WINDOWS\system32\Ati2edxx.dll] <ATI Technologies, Inc.><6, 14, 10, 2497>
[PID: 712][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 768][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 836][C:\Program Files\Rising\Rav\CCenter.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
[PID: 852][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 916][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 940][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 952][C:\Program Files\Rising\Rav\Ravmond.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 35>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsLog.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\Program Files\Rising\Rav\HOOKSYS.dll] <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
[C:\Program Files\Rising\Rav\Scanner.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 32>
[C:\Program Files\Rising\Rav\libload.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\VirusLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
[C:\Program Files\Rising\Rav\regmon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\HookWeb.dll] <rising><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\MemMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
[C:\Program Files\Rising\Rav\expscan.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\mPorts.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 3>
[C:\Program Files\Rising\Rav\MailMon.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Rising\Rav\SpamEng.dll] <N/A><18, 0, 0, 6>
[C:\Program Files\Rising\Rav\engine.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 34>
[C:\Program Files\Rising\Rav\PostTrt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 15>
[C:\Program Files\Rising\Rav\UnExe.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanExec.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\ScanEx.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
[C:\Program Files\Rising\Rav\RSUnpack.dll] <Beijing Rising Technology Co., Ltd.><1, 0, 0, 13>
[C:\Program Files\Rising\Rav\NvFile.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 7>
[C:\Program Files\Rising\Rav\ScanMac.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 9>
[C:\Program Files\Rising\Rav\ScanSct.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 18>
[C:\Program Files\Rising\Rav\Unpacker.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\ExtOLE.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
[PID: 1124][c:\program files\rising\rfw\rfwsrv.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 32>
[c:\program files\rising\rfw\RfwRule.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 13>
[c:\program files\rising\rfw\rfwlog.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 6>
[c:\program files\rising\rfw\Rfwdrv.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 21>
[c:\program files\rising\rfw\MonDrv.dll] <rs><1, 0, 0, 4>
[c:\program files\rising\rfw\ProcLib.dll] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 9>
[PID: 1304][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[C:\WINDOWS\system32\hpzll3xu.dll] <Hewlett-Packard Company><60.051.641.00>
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp3xu.dll] <Hewlett-Packard Corporation><60.051.641.00>
[PID: 1480][C:\WINDOWS\system32\Ati2evxx.exe] <ATI Technologies Inc.><6.14.10.4117>
[C:\WINDOWS\system32\Ati2edxx.dll] <ATI Technologies, Inc.><6, 14, 10, 2497>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1568][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 1620][C:\Program Files\Rising\Rav\RavStub.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 16>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 1836][C:\WINDOWS\system32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 1852][c:\program files\rising\rfw\RfwMain.exe] <Beijing Rising Technology Co., Ltd.><4, 0, 0, 52>
[c:\program files\rising\rfw\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 23>
[c:\program files\rising\rfw\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[c:\program files\rising\rfw\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1036][C:\WINDOWS\System32\alg.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1440][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe] <ATI Technologies, Inc.><6.14.10.5157>

我们村里我最帅 - 2006-9-8 21:47:00

[C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll] <ATI Technologies, Inc.><6.14.10.5157>
[C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll] <ATI Technologies, Inc.><6.14.10.5157>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1408][C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe] <Musicmatch Inc.><9.0.0.1>
[C:\Program Files\Musicmatch\Musicmatch Jukebox\MMVCP70.dll] <Sample Corporation><7.00.0000>
[C:\Program Files\Musicmatch\Musicmatch Jukebox\MMVCR70.dll] <Sample Corporation><7.00.0000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1900][E:\实用软件\hp打印机\HP Software Update\HPWuSchd2.exe] <Hewlett-Packard Co.><53.0.13.000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 1912][C:\Program Files\Rising\Rav\RavTask.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1788][C:\Program Files\Rising\Rav\Ravmon.exe] <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
[C:\Program Files\Rising\Rav\RsGuiLib.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 26>
[C:\Program Files\Rising\Rav\BWList.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
[C:\Program Files\Rising\Rav\RSAPPMGR.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
[C:\Program Files\Rising\Rav\CfgDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
[C:\Program Files\Rising\Rav\RSCOMMON.DLL] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\Program Files\Rising\Rav\RsCommX.dll] <rising><18, 0, 0, 1>
[C:\Program Files\Rising\Rav\PngDll.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 1812][C:\WINDOWS\SOUNDMAN.EXE] <Realtek Semiconductor Corp.><5, 1, 0, 50>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 2104][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 2116][C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] <Logitech><2.30.04>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\backWeb.dll] <BackWeb Technologies Inc.><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\bwsec.dll] <BackWeb><Version 4.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\clntutil.dll] <N/A><N/A>
[C:\PROGRA~1\Logitech\DESKTO~1\8876480\720~1.157\program\EN\ClientRC.dll] <BackWeb Technologies Inc.><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWfiles-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\BWfiles.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWDocMapExt-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\BWDocMapExt.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\bwscriptext-8876480.dll] <Logitech><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\7.2.0.157-8876480SL\Program\bwscriptext.dll] <><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\Desktop Messenger\8876480\Program\SyncExt.dll] <Logitech><2.30.04>
[PID: 2136][E:\实用软件\拼音加加\jj4\jjsvr4.exe] <加加开发组><4.0.0.20>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 2208][C:\WINDOWS\system32\conime.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[PID: 2308][C:\Program Files\Logitech\SetPoint\SetPoint.exe] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemUtil.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\SetPointCOM.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\kemutb.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\KGame.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemWnd.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\GameHook.dll] <Logitech Inc.><2.47.864>
[C:\WINDOWS\system32\KemXML.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\IMHook.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KhalApi.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\LCabHandler.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\KEMHook.dll] <Logitech Inc.><2.47.864>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[PID: 2344][E:\实用软件\hp打印机\Digital Imaging\bin\hpqtra08.exe] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcxm08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpquio08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtra08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtao08.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpotradd.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpftra01.dll] <Hewlett-Packard><1, 0, 0, 2>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqrif08.dll] <Hewlett-Packard Co.><53.0.20.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpodvd09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpoddcomm09.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpodio08.dll] <Hewlett-Packard Co.><50.0.165.000>
[PID: 2396][C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE] <Logitech Inc.><2.47.842>
[C:\Program Files\Common Files\Logitech\KHAL\KHALAPI.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALITCH.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALMW.DLL] <Logitech Inc.><2.47.864>
[C:\Program Files\Common Files\Logitech\KHAL\KHALHPP.DLL] <Logitech Inc.><2.47.864>
[PID: 2588][E:\实用软件\hp打印机\Digital Imaging\bin\hpqSTE08.exe] <Hewlett-Packard Co.><53.0.13.000>

我们村里我最帅 - 2006-9-8 21:47:00

[E:\实用软件\hp打印机\Digital Imaging\bin\hpqmfc09.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqtap08.dll] <Hewlett-Packard Co.><53.0.13.000>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcxm08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqSTE08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqsti08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqcob08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqstv08.dll] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpqsem08.rsc] <Hewlett-Packard Co.><53.0.13.000>
[E:\实用软件\hp打印机\Digital Imaging\bin\hpocxi08.dll] <Hewlett-Packard Co.><50.0.125.000>
[PID: 2716][E:\上网软件\maxthon\Max.exe] <Maxthon International Ltd.><1, 5, 3, 18>
[E:\上网软件\maxthon\maxzlib.dll] < ><1, 0, 0, 2>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>
[E:\上网软件\迅雷\ComDlls\XunLeiBHO_002.dll] <Thunder Networking Technologies,LTD><5, 0, 0, 2>
[E:\上网软件\maxthon\Services\RealTime\real_time.dll] <><1, 0, 0, 1>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] <Adobe Systems, Inc.><9,0,16,0>
[C:\WINDOWS\system32\PYJJ4.IME] <加加工作组><4.0.0.21>
[C:\WINDOWS\system32\msdmo.dll] <N/A><N/A>
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\VSFilter.dll] <Gabest><1, 0, 0, 9>
[C:\WINDOWS\system32\uusee\internet\UFDeMux.ax] <uusee><1, 0, 0, 6>
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\empgdmx.ax] <Elecard Ltd.><1, 0, 19, 51017>
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\OGGSplt.ax] <Gabest><1, 0, 0, 0>
[C:\Program Files\Ringz Studio\Storm Codec\Codecs\RMSplt.ax] <Gabest><1, 0, 1, 0>
[PID: 3324][E:\实用软件\网址\sreng2\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>
[C:\DOCUME~1\new\LOCALS~1\Temp\IadHide5.dll] <BackWeb><Version 7.2.0 (Build 157R)>
[C:\Program Files\Logitech\SetPoint\lgscroll.dll] <Logitech Inc.><2.47.864>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

瑞星卡卡安全论坛