一个特慢的系统...上不了网!高手进来帮帮忙..先谢了!(有日志) bbs.ikaka.com

中国星34420 - 2006-9-29 23:25:00

2006-09-29,22:56:38

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [Microsoft Corporation]
<KavPFW><"C:\KAV2006\KPFW32.EXE"> [Kingsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<KavStart><"C:\KAV2006\KAVStart.exe" -startup> [Kingsoft Corporation]
<MINI_BFYY><C:\Program Files\Ringz Studio\Storm Downloader\StormDownloader.exe> [深圳市三代科技开发有限公司]
<StormCodec_Helper><"d:\Storm Codec\StormSet.exe" /S /opti> []
<CCProxy><D:\代理\ccproxy6.0无限制用户版\ccproxy.exe> []
<SoundMam><C:\WINDOWS\system32\SVOHOST.exe> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{F0A15E44-32B6-41E6-94F9-1D95FE6277B7}><> []
<{81E5F587-B21F-4C00-A9E0-9E3D6AD8CEDF}><> []
<{3225EC74-7898-40F3-8980-B20547BB5545}><> []
<{49582F77-D689-4E0B-A4BB-E9CC47650D08}><> []
<{FA466119-B382-4FFD-8359-420B0913BE68}><> []
<{5D21DD31-3E8E-420F-A74B-9EF33F505344}><C:\WINDOWS\system32\Mqypj.dll> []
<{C960AF31-ABDD-45FD-A4A4-12F11CCBCF0A}><C:\WINDOWS\system32\Fwgy.dll> []
<{C6A6E4B6-34E1-4E73-9403-005E2420D72B}><C:\WINDOWS\system32\Nuejlp.dll> []
<{E12A8063-42FB-41D7-B302-0ABC3CC54CD6}><C:\WINDOWS\system32\Qnxnsi.dll> []
<{0BF5B2F5-2434-42F1-A1AA-3143191BD095}><C:\WINDOWS\system32\Dehe.dll> []
<{82845FAC-E960-4597-8E41-D38F4CA9269D}><C:\WINDOWS\system32\Odvy.dll> []
<{6F7F219D-BC43-4E5F-8C29-5F0550C842F7}><C:\WINDOWS\system32\Hxcijp.dll> []
<{3DFC8674-9DF7-46CE-90CD-E8F852FD5047}><C:\WINDOWS\system32\Bvazzx.dll> []
<{663B77B1-30BA-4D47-A18B-31A241F501E7}><C:\WINDOWS\system32\Hwolo.dll> []
<{2CA2ABB6-2421-409D-8F85-0C3373ECF0DE}><C:\WINDOWS\system32\Omre.dll> []
<{6FAF231C-37AD-4E7C-94C5-E89CBCD25321}><C:\WINDOWS\system32\Mgbnnz.dll> []
<{13501D6B-652D-4C8B-94E6-AE4C72B33E83}><C:\WINDOWS\system32\Fcin.dll> []
<{C50C9732-38F3-4240-965B-196DA30A5D4A}><C:\WINDOWS\system32\Gnqt.dll> []
<{76AB8986-1A25-4B08-9EA3-D727A4C40B68}><C:\WINDOWS\system32\Febsj.dll> []
<{40FC19D3-547F-43A5-9BAC-346E9ED97A7D}><C:\WINDOWS\system32\Uzsr.dll> []
<{4B37E997-04FC-418F-9509-6B43E90C3A21}><C:\WINDOWS\system32\Zzizz.dll> []
<{3DC792BD-8D8E-40D8-BD77-B1D965B2B9F6}><C:\WINDOWS\system32\Htbohf.dll> []
<{63E59F4B-C317-4342-97DF-6D4E1ECE9852}><C:\WINDOWS\system32\Ezrkpf.dll> []
<{98D04D6D-758A-4E0F-805B-562C5B3FAAE4}><C:\WINDOWS\system32\Jamk.dll> []
<{CBDAED92-3844-4C30-AD2B-EE5F4808D48A}><C:\WINDOWS\system32\Dbtp.dll> []
<{CE02B011-A835-4AC7-B741-E3961D045E7C}><C:\WINDOWS\system32\Xgtv.dll> []
<{A175DD28-176A-4811-91E1-DE8F2711AEB8}><C:\WINDOWS\system32\Xufdbm.dll> []
<{8F33B96B-C938-4335-AC56-1311AC07D554}><C:\WINDOWS\system32\Nxby.dll> []
<{CF861C78-02B9-4F8D-B0D2-801618C4C2A7}><C:\WINDOWS\system32\Iswotn.dll> []
<{05C5BAF3-4D3D-4027-B784-49AF8E374625}><C:\WINDOWS\system32\Nqbgf.dll> []
<{D970F1B3-15FC-4667-A9FD-F7C321626677}><C:\WINDOWS\system32\Ajnlwm.dll> []
<{6C812AF3-7ABC-401A-9E6D-7EABD08B7E1E}><C:\WINDOWS\system32\Qvuyo.dll> []
<{BF2AD6D7-1EA5-4563-AA5C-6EA367B3D5D7}><C:\WINDOWS\system32\Zakvr.dll> []
<{E1390CE5-5CBE-4E8F-9B2B-A99808C383DF}><C:\WINDOWS\system32\Yioj.dll> []
<{3F0E019C-49CD-46ED-90E6-4AB0C0BACB9F}><C:\WINDOWS\system32\Lqyl.dll> []
<{D683A088-BCCB-470B-9F17-FFBB8CF0A40A}><C:\WINDOWS\system32\Eeatjx.dll> []
<{2E6CC76D-FBFA-475F-8366-156F6CD705F2}><C:\WINDOWS\system32\Xncfvj.dll> []
<{147F0F4B-4036-4655-917C-6A6E40E856AF}><C:\WINDOWS\system32\Quzaz.dll> []
<{FC53BE44-92BF-4D44-878D-D35589F8008A}><C:\WINDOWS\system32\Zdeay.dll> []
<{38EDA018-59C4-494E-93F6-CD3B8050A8A5}><C:\WINDOWS\system32\Hhgxqm.dll> []
<{AA06CC3F-98CF-4D63-8C6E-321D71294AAB}><C:\WINDOWS\system32\Liln.dll> []
<{50B9CA77-848C-4841-BFB2-6AC7B2E6F96E}><C:\WINDOWS\system32\Cjlw.dll> []
<{E6649894-15F6-4E89-A278-98F8D44B5A14}><C:\WINDOWS\system32\Ltmo.dll> []
<{BF88A363-10E7-4165-93E3-994EB6D3B573}><C:\WINDOWS\system32\Mtogcy.dll> []
<{2841B392-13FD-486C-A063-D303ADE2B580}><C:\WINDOWS\system32\Nwvd.dll> []
<{F5C70885-A972-4395-9459-48B9DC7CEAF8}><C:\WINDOWS\system32\Xoam.dll> []
<{044D1EA2-7315-4FD9-9BCE-861EB136225E}><C:\WINDOWS\system32\Zovxg.dll> []
<{DCC1910F-AFAE-4150-81E0-50AF94C0ABBF}><C:\WINDOWS\system32\Haac.dll> []
<{7FD69F6F-DDEC-4D7D-886C-7D937A15C2EC}><C:\WINDOWS\system32\Ckvbru.dll> []
<{A89705A6-2C28-428D-842A-ABF74346FBB8}><C:\WINDOWS\system32\Choau.dll> []
<{097D8B58-0043-4378-A43D-249E3EADCA63}><C:\WINDOWS\system32\Entwps.dll> []
<{AB6A1309-0043-4B59-A6D8-460E12C07F6E}><C:\WINDOWS\system32\Rtfo.dll> []
<{FE315628-6CFD-4E29-AA81-EDB477AB7F47}><C:\WINDOWS\system32\Jmrb.dll> []
<{D62A1BC9-B514-4AD6-BDC4-54E4B480965B}><C:\WINDOWS\system32\Vpvp.dll> []
<{0BA9FF86-21B9-4689-8C52-3AE60B617783}><C:\WINDOWS\system32\Lytxa.dll> []
<{63C30EE7-1A5D-463E-BDE3-18DD4CE98B12}><C:\WINDOWS\system32\Kuukwo.dll> []
<{2FE760E1-6C75-4ABB-AE6C-5E65B5824472}><C:\WINDOWS\system32\Tjtqe.dll> []
<{65185A2A-CD97-45EB-8E75-BB6267D4CD70}><C:\WINDOWS\system32\Hrwyi.dll> []
<{BD50D44F-FCFA-459C-826E-C2D4B7913606}><C:\WINDOWS\system32\Igtard.dll> []
<{72DDEDDC-0160-49E8-BF7C-A3158CDE90CB}><C:\WINDOWS\system32\Ljqt.dll> []
<{44D14E4B-1DC2-4743-936A-4AD36A6D1B01}><C:\WINDOWS\system32\Nejda.dll> []
<{3EAD6C64-C430-4259-9125-4ADFF1CD7EE5}><C:\WINDOWS\system32\Lpbi.dll> []
<{0275592A-FFA6-460B-858D-066F310D90CE}><C:\WINDOWS\system32\Jxwxh.dll> []
<{8CF83CAA-7801-4B93-9AC9-47DA9FF974C2}><C:\WINDOWS\system32\Thvvb.dll> []
<{8FA724D6-8FE9-4DFA-93E2-4EF93C8DCD3E}><C:\WINDOWS\system32\Axba.dll> []
<{F2840E98-F799-4C78-89C7-D834639A27FB}><C:\WINDOWS\system32\Akpwjl.dll> []
<{DA55782B-C077-48A5-8C83-830E03CB0746}><C:\WINDOWS\system32\Dhzae.dll> []
<{4D524254-1612-41C8-B614-6B57E8952878}><C:\WINDOWS\system32\Ytft.dll> []
<{F6E1BFFF-708B-4568-9386-CDEF5A79C752}><C:\WINDOWS\system32\Swhn.dll> []
<{6DC198EE-2350-48D8-9F37-6C65D0FF1F1F}><C:\WINDOWS\system32\Qlfk.dll> []
<{8841C8A2-D3A2-468C-BA93-853FF4DB0C21}><C:\WINDOWS\system32\Zxbs.dll> []
<{16125AAD-7B75-434C-89B7-631CAD2AB08A}><C:\WINDOWS\system32\Lvfk.dll> []
<{C596BB12-A866-4BCE-9F7C-821364621026}><C:\WINDOWS\system32\Dkrejr.dll> []
<{329D5381-BCFD-40BA-A590-55BD0E467882}><C:\WINDOWS\system32\Rvgcqi.dll> []

中国星34420 - 2006-9-29 23:32:00

==================================
启动文件夹
服务
[Kingsoft Personal Firewall Service / KPfwSvc]
<"C:\KAV2006\KPfwSvc.EXE"><Kingsoft Corporation>
[Kingsoft Antivirus KWatch Service / KWatchSvc]
<C:\KAV2006\KWatch.EXE><Kingsoft Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service]
<"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[Windows Service Pack Installer update service / spupdsvc]
<C:\WINDOWS\system32\spupdsvc.exe><N/A>

==================================
浏览器加载项
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
[]
{0275592A-FFA6-460B-858D-066F310D90CE} <C:\WINDOWS\system32\Jxwxh.dll, N/A>
[]
{044D1EA2-7315-4FD9-9BCE-861EB136225E} <C:\WINDOWS\system32\Zovxg.dll, N/A>
[]
{05C5BAF3-4D3D-4027-B784-49AF8E374625} <C:\WINDOWS\system32\Nqbgf.dll, N/A>
[]
{097D8B58-0043-4378-A43D-249E3EADCA63} <C:\WINDOWS\system32\Entwps.dll, N/A>
[]
{0BA9FF86-21B9-4689-8C52-3AE60B617783} <C:\WINDOWS\system32\Lytxa.dll, N/A>
[]
{0BF5B2F5-2434-42F1-A1AA-3143191BD095} <C:\WINDOWS\system32\Dehe.dll, N/A>
[]
{13501D6B-652D-4C8B-94E6-AE4C72B33E83} <C:\WINDOWS\system32\Fcin.dll, N/A>
[]
{147F0F4B-4036-4655-917C-6A6E40E856AF} <C:\WINDOWS\system32\Quzaz.dll, N/A>
[]
{16125AAD-7B75-434C-89B7-631CAD2AB08A} <C:\WINDOWS\system32\Lvfk.dll, N/A>
[]
{2841B392-13FD-486C-A063-D303ADE2B580} <C:\WINDOWS\system32\Nwvd.dll, N/A>
[]
{2CA2ABB6-2421-409D-8F85-0C3373ECF0DE} <C:\WINDOWS\system32\Omre.dll, N/A>
[]
{2E6CC76D-FBFA-475F-8366-156F6CD705F2} <C:\WINDOWS\system32\Xncfvj.dll, N/A>
[]
{2FE760E1-6C75-4ABB-AE6C-5E65B5824472} <C:\WINDOWS\system32\Tjtqe.dll, N/A>
[]
{329D5381-BCFD-40BA-A590-55BD0E467882} <C:\WINDOWS\system32\Rvgcqi.dll, N/A>
[]
{38EDA018-59C4-494E-93F6-CD3B8050A8A5} <C:\WINDOWS\system32\Hhgxqm.dll, N/A>
[]
{3DC792BD-8D8E-40D8-BD77-B1D965B2B9F6} <C:\WINDOWS\system32\Htbohf.dll, N/A>
[]
{3DFC8674-9DF7-46CE-90CD-E8F852FD5047} <C:\WINDOWS\system32\Bvazzx.dll, N/A>
[]
{3EAD6C64-C430-4259-9125-4ADFF1CD7EE5} <C:\WINDOWS\system32\Lpbi.dll, N/A>
[]
{3F0E019C-49CD-46ED-90E6-4AB0C0BACB9F} <C:\WINDOWS\system32\Lqyl.dll, N/A>
[]
{40FC19D3-547F-43A5-9BAC-346E9ED97A7D} <C:\WINDOWS\system32\Uzsr.dll, N/A>
[]
{44D14E4B-1DC2-4743-936A-4AD36A6D1B01} <C:\WINDOWS\system32\Nejda.dll, N/A>
[]
{4B37E997-04FC-418F-9509-6B43E90C3A21} <C:\WINDOWS\system32\Zzizz.dll, N/A>
[]
{4D524254-1612-41C8-B614-6B57E8952878} <C:\WINDOWS\system32\Ytft.dll, N/A>
[]
{50B9CA77-848C-4841-BFB2-6AC7B2E6F96E} <C:\WINDOWS\system32\Cjlw.dll, N/A>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <D:\qq3\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[]
{5D21DD31-3E8E-420F-A74B-9EF33F505344} <C:\WINDOWS\system32\Mqypj.dll, N/A>
[]
{63C30EE7-1A5D-463E-BDE3-18DD4CE98B12} <C:\WINDOWS\system32\Kuukwo.dll, N/A>
[]
{63E59F4B-C317-4342-97DF-6D4E1ECE9852} <C:\WINDOWS\system32\Ezrkpf.dll, N/A>
[]
{65185A2A-CD97-45EB-8E75-BB6267D4CD70} <C:\WINDOWS\system32\Hrwyi.dll, N/A>
[]
{663B77B1-30BA-4D47-A18B-31A241F501E7} <C:\WINDOWS\system32\Hwolo.dll, N/A>
[]
{6C812AF3-7ABC-401A-9E6D-7EABD08B7E1E} <C:\WINDOWS\system32\Qvuyo.dll, N/A>
[]
{6DC198EE-2350-48D8-9F37-6C65D0FF1F1F} <C:\WINDOWS\system32\Qlfk.dll, N/A>
[]
{6F7F219D-BC43-4E5F-8C29-5F0550C842F7} <C:\WINDOWS\system32\Hxcijp.dll, N/A>
[]
{6FAF231C-37AD-4E7C-94C5-E89CBCD25321} <C:\WINDOWS\system32\Mgbnnz.dll, N/A>
[]
{72DDEDDC-0160-49E8-BF7C-A3158CDE90CB} <C:\WINDOWS\system32\Ljqt.dll, N/A>
[]
{76AB8986-1A25-4B08-9EA3-D727A4C40B68} <C:\WINDOWS\system32\Febsj.dll, N/A>
[]
{7FD69F6F-DDEC-4D7D-886C-7D937A15C2EC} <C:\WINDOWS\system32\Ckvbru.dll, N/A>
[]
{82845FAC-E960-4597-8E41-D38F4CA9269D} <C:\WINDOWS\system32\Odvy.dll, N/A>
[]
{8841C8A2-D3A2-468C-BA93-853FF4DB0C21} <C:\WINDOWS\system32\Zxbs.dll, N/A>
[]
{8CF83CAA-7801-4B93-9AC9-47DA9FF974C2} <C:\WINDOWS\system32\Thvvb.dll, N/A>
[]
{8F33B96B-C938-4335-AC56-1311AC07D554} <C:\WINDOWS\system32\Nxby.dll, N/A>
[]
{8FA724D6-8FE9-4DFA-93E2-4EF93C8DCD3E} <C:\WINDOWS\system32\Axba.dll, N/A>
[]
{98D04D6D-758A-4E0F-805B-562C5B3FAAE4} <C:\WINDOWS\system32\Jamk.dll, N/A>
[]
{A175DD28-176A-4811-91E1-DE8F2711AEB8} <C:\WINDOWS\system32\Xufdbm.dll, N/A>
[]
{A89705A6-2C28-428D-842A-ABF74346FBB8} <C:\WINDOWS\system32\Choau.dll, N/A>
[]
{AA06CC3F-98CF-4D63-8C6E-321D71294AAB} <C:\WINDOWS\system32\Liln.dll, N/A>
[]
{AB6A1309-0043-4B59-A6D8-460E12C07F6E} <C:\WINDOWS\system32\Rtfo.dll, N/A>
[]
{BD50D44F-FCFA-459C-826E-C2D4B7913606} <C:\WINDOWS\system32\Igtard.dll, N/A>
[]
{BF2AD6D7-1EA5-4563-AA5C-6EA367B3D5D7} <C:\WINDOWS\system32\Zakvr.dll, N/A>
[]
{BF88A363-10E7-4165-93E3-994EB6D3B573} <C:\WINDOWS\system32\Mtogcy.dll, N/A>
[]
{C50C9732-38F3-4240-965B-196DA30A5D4A} <C:\WINDOWS\system32\Gnqt.dll, N/A>
[]
{C596BB12-A866-4BCE-9F7C-821364621026} <C:\WINDOWS\system32\Dkrejr.dll, N/A>
[]
{C6A6E4B6-34E1-4E73-9403-005E2420D72B} <C:\WINDOWS\system32\Nuejlp.dll, N/A>
[]
{C960AF31-ABDD-45FD-A4A4-12F11CCBCF0A} <C:\WINDOWS\system32\Fwgy.dll, N/A>
[]
{CBDAED92-3844-4C30-AD2B-EE5F4808D48A} <C:\WINDOWS\system32\Dbtp.dll, N/A>
[]
{CE02B011-A835-4AC7-B741-E3961D045E7C} <C:\WINDOWS\system32\Xgtv.dll, N/A>
[]

zgr稳得起 - 2006-9-29 23:35:00

请用扫描日志\HijackThis1991zww.exe
下载软件网址：天空软件站http://www.skycn.com/soft/15753.html

中国星34420 - 2006-9-29 23:35:00

{CF861C78-02B9-4F8D-B0D2-801618C4C2A7} <C:\WINDOWS\system32\Iswotn.dll, N/A>
[]
{D62A1BC9-B514-4AD6-BDC4-54E4B480965B} <C:\WINDOWS\system32\Vpvp.dll, N/A>
[]
{D683A088-BCCB-470B-9F17-FFBB8CF0A40A} <C:\WINDOWS\system32\Eeatjx.dll, N/A>
[]
{D970F1B3-15FC-4667-A9FD-F7C321626677} <C:\WINDOWS\system32\Ajnlwm.dll, N/A>
[]
{DA55782B-C077-48A5-8C83-830E03CB0746} <C:\WINDOWS\system32\Dhzae.dll, N/A>
[]
{DCC1910F-AFAE-4150-81E0-50AF94C0ABBF} <C:\WINDOWS\system32\Haac.dll, N/A>
[]
{E12A8063-42FB-41D7-B302-0ABC3CC54CD6} <C:\WINDOWS\system32\Qnxnsi.dll, N/A>
[]
{E1390CE5-5CBE-4E8F-9B2B-A99808C383DF} <C:\WINDOWS\system32\Yioj.dll, N/A>
[]
{E6649894-15F6-4E89-A278-98F8D44B5A14} <C:\WINDOWS\system32\Ltmo.dll, N/A>
[]
{F2840E98-F799-4C78-89C7-D834639A27FB} <C:\WINDOWS\system32\Akpwjl.dll, N/A>
[]
{F5C70885-A972-4395-9459-48B9DC7CEAF8} <C:\WINDOWS\system32\Xoam.dll, N/A>
[]
{F6E1BFFF-708B-4568-9386-CDEF5A79C752} <C:\WINDOWS\system32\Swhn.dll, N/A>
[]
{FC53BE44-92BF-4D44-878D-D35589F8008A} <C:\WINDOWS\system32\Zdeay.dll, N/A>
[]
{FE315628-6CFD-4E29-AA81-EDB477AB7F47} <C:\WINDOWS\system32\Jmrb.dll, N/A>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\qq3\QQ.EXE, TENCENT>
[易趣购物]
{DE60714F-AC19-427e-861A-FD60ABDF119A} <http://click2.ad4all.net/url2/urlmanage/url.asp?id=1, N/A>
[QQIEFloatBarCfgCmd Class]
{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <D:\qq3\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[ThunderIEHelper Class]
{0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v14.dll, Thunder Networking Technologies,LTD>
[]
{0275592A-FFA6-460B-858D-066F310D90CE} <C:\WINDOWS\system32\Jxwxh.dll, N/A>
[]
{044D1EA2-7315-4FD9-9BCE-861EB136225E} <C:\WINDOWS\system32\Zovxg.dll, N/A>
[ActiveMovieControl Object]
{05589FA1-C356-11CE-BF01-00AA0055595A} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[]
{05C5BAF3-4D3D-4027-B784-49AF8E374625} <C:\WINDOWS\system32\Nqbgf.dll, N/A>
[]
{097D8B58-0043-4378-A43D-249E3EADCA63} <C:\WINDOWS\system32\Entwps.dll, N/A>
[]
{0BA9FF86-21B9-4689-8C52-3AE60B617783} <C:\WINDOWS\system32\Lytxa.dll, N/A>
[]
{0BF5B2F5-2434-42F1-A1AA-3143191BD095} <C:\WINDOWS\system32\Dehe.dll, N/A>
[]
{13501D6B-652D-4C8B-94E6-AE4C72B33E83} <C:\WINDOWS\system32\Fcin.dll, N/A>
[]
{147F0F4B-4036-4655-917C-6A6E40E856AF} <C:\WINDOWS\system32\Quzaz.dll, N/A>
[]
{16125AAD-7B75-434C-89B7-631CAD2AB08A} <C:\WINDOWS\system32\Lvfk.dll, N/A>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[]
{2841B392-13FD-486C-A063-D303ADE2B580} <C:\WINDOWS\system32\Nwvd.dll, N/A>
[]
{2CA2ABB6-2421-409D-8F85-0C3373ECF0DE} <C:\WINDOWS\system32\Omre.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[]
{2E6CC76D-FBFA-475F-8366-156F6CD705F2} <C:\WINDOWS\system32\Xncfvj.dll, N/A>
[]
{2FE760E1-6C75-4ABB-AE6C-5E65B5824472} <C:\WINDOWS\system32\Tjtqe.dll, N/A>
[]
{329D5381-BCFD-40BA-A590-55BD0E467882} <C:\WINDOWS\system32\Rvgcqi.dll, N/A>
[]
{38EDA018-59C4-494E-93F6-CD3B8050A8A5} <C:\WINDOWS\system32\Hhgxqm.dll, N/A>
[]
{3DC792BD-8D8E-40D8-BD77-B1D965B2B9F6} <C:\WINDOWS\system32\Htbohf.dll, N/A>
[]
{3DFC8674-9DF7-46CE-90CD-E8F852FD5047} <C:\WINDOWS\system32\Bvazzx.dll, N/A>
[]
{3EAD6C64-C430-4259-9125-4ADFF1CD7EE5} <C:\WINDOWS\system32\Lpbi.dll, N/A>
[]
{3F0E019C-49CD-46ED-90E6-4AB0C0BACB9F} <C:\WINDOWS\system32\Lqyl.dll, N/A>
[]
{40FC19D3-547F-43A5-9BAC-346E9ED97A7D} <C:\WINDOWS\system32\Uzsr.dll, N/A>
[]
{44D14E4B-1DC2-4743-936A-4AD36A6D1B01} <C:\WINDOWS\system32\Nejda.dll, N/A>
[]
{4B37E997-04FC-418F-9509-6B43E90C3A21} <C:\WINDOWS\system32\Zzizz.dll, N/A>
[]
{4D524254-1612-41C8-B614-6B57E8952878} <C:\WINDOWS\system32\Ytft.dll, N/A>
[]
{50B9CA77-848C-4841-BFB2-6AC7B2E6F96E} <C:\WINDOWS\system32\Cjlw.dll, N/A>
[HHCtrl Object]
{52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[QQBrowserHelperObject Class]
{54EBD53A-9BC1-480B-966A-843A333CA162} <D:\qq3\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[]
{5D21DD31-3E8E-420F-A74B-9EF33F505344} <C:\WINDOWS\system32\Mqypj.dll, N/A>
[]
{63C30EE7-1A5D-463E-BDE3-18DD4CE98B12} <C:\WINDOWS\system32\Kuukwo.dll, N/A>
[]
{63E59F4B-C317-4342-97DF-6D4E1ECE9852} <C:\WINDOWS\system32\Ezrkpf.dll, N/A>
[]
{65185A2A-CD97-45EB-8E75-BB6267D4CD70} <C:\WINDOWS\system32\Hrwyi.dll, N/A>
[]
{663B77B1-30BA-4D47-A18B-31A241F501E7} <C:\WINDOWS\system32\Hwolo.dll, N/A>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, N/A>
[]
{6C812AF3-7ABC-401A-9E6D-7EABD08B7E1E} <C:\WINDOWS\system32\Qvuyo.dll, N/A>
[]
{6DC198EE-2350-48D8-9F37-6C65D0FF1F1F} <C:\WINDOWS\system32\Qlfk.dll, N/A>
[]
{6F7F219D-BC43-4E5F-8C29-5F0550C842F7} <C:\WINDOWS\system32\Hxcijp.dll, N/A>
[]
{6FAF231C-37AD-4E7C-94C5-E89CBCD25321} <C:\WINDOWS\system32\Mgbnnz.dll, N/A>
[]
{72DDEDDC-0160-49E8-BF7C-A3158CDE90CB} <C:\WINDOWS\system32\Ljqt.dll, N/A>
[]
{76AB8986-1A25-4B08-9EA3-D727A4C40B68} <C:\WINDOWS\system32\Febsj.dll, N/A>
[]
{7FD69F6F-DDEC-4D7D-886C-7D937A15C2EC} <C:\WINDOWS\system32\Ckvbru.dll, N/A>
[]
{82845FAC-E960-4597-8E41-D38F4CA9269D} <C:\WINDOWS\system32\Odvy.dll, N/A>
[]
{8841C8A2-D3A2-468C-BA93-853FF4DB0C21} <C:\WINDOWS\system32\Zxbs.dll, N/A>
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[]
{8CF83CAA-7801-4B93-9AC9-47DA9FF974C2} <C:\WINDOWS\system32\Thvvb.dll, N/A>
[]
{8F33B96B-C938-4335-AC56-1311AC07D554} <C:\WINDOWS\system32\Nxby.dll, N/A>
[]
{8FA724D6-8FE9-4DFA-93E2-4EF93C8DCD3E} <C:\WINDOWS\system32\Axba.dll, N/A>
[]
{98D04D6D-758A-4E0F-805B-562C5B3FAAE4} <C:\WINDOWS\system32\Jamk.dll, N/A>
[]
{A175DD28-176A-4811-91E1-DE8F2711AEB8} <C:\WINDOWS\system32\Xufdbm.dll, N/A>
[]
{A89705A6-2C28-428D-842A-ABF74346FBB8} <C:\WINDOWS\system32\Choau.dll, N/A>
[PhotoUploadCtrl Control]
{A96C48EA-AA88-4BBD-B58C-7B41146A6EAC} <D:\qq3\QZone\PHOTOU~1.OCX, tencent>
[]
{AA06CC3F-98CF-4D63-8C6E-321D71294AAB} <C:\WINDOWS\system32\Liln.dll, N/A>
[]
{AB6A1309-0043-4B59-A6D8-460E12C07F6E} <C:\WINDOWS\system32\Rtfo.dll, N/A>
[Microsoft Scriptlet Component]
{AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[]
{BD50D44F-FCFA-459C-826E-C2D4B7913606} <C:\WINDOWS\system32\Igtard.dll, N/A>
[]
{BF2AD6D7-1EA5-4563-AA5C-6EA367B3D5D7} <C:\WINDOWS\system32\Zakvr.dll, N/A>
[]
{BF88A363-10E7-4165-93E3-994EB6D3B573} <C:\WINDOWS\system32\Mtogcy.dll, N/A>
[]
{C50C9732-38F3-4240-965B-196DA30A5D4A} <C:\WINDOWS\system32\Gnqt.dll, N/A>
[]
{C596BB12-A866-4BCE-9F7C-821364621026} <C:\WINDOWS\system32\Dkrejr.dll, N/A>
[]
{C6A6E4B6-34E1-4E73-9403-005E2420D72B} <C:\WINDOWS\system32\Nuejlp.dll, N/A>
[]
{C960AF31-ABDD-45FD-A4A4-12F11CCBCF0A} <C:\WINDOWS\system32\Fwgy.dll, N/A>
[]
{CBDAED92-3844-4C30-AD2B-EE5F4808D48A} <C:\WINDOWS\system32\Dbtp.dll, N/A>
[]
{CE02B011-A835-4AC7-B741-E3961D045E7C} <C:\WINDOWS\system32\Xgtv.dll, N/A>
[]
{CF861C78-02B9-4F8D-B0D2-801618C4C2A7} <C:\WINDOWS\system32\Iswotn.dll, N/A>
[RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[]
{D62A1BC9-B514-4AD6-BDC4-54E4B480965B} <C:\WINDOWS\system32\Vpvp.dll, N/A>
[]
{D683A088-BCCB-470B-9F17-FFBB8CF0A40A} <C:\WINDOWS\system32\Eeatjx.dll, N/A>
[]
{D970F1B3-15FC-4667-A9FD-F7C321626677} <C:\WINDOWS\system32\Ajnlwm.dll, N/A>
[]
{DA55782B-C077-48A5-8C83-830E03CB0746} <C:\WINDOWS\system32\Dhzae.dll, N/A>
[]
{DCC1910F-AFAE-4150-81E0-50AF94C0ABBF} <C:\WINDOWS\system32\Haac.dll, N/A>
[]
{E12A8063-42FB-41D7-B302-0ABC3CC54CD6} <C:\WINDOWS\system32\Qnxnsi.dll, N/A>
[]
{E1390CE5-5CBE-4E8F-9B2B-A99808C383DF} <C:\WINDOWS\system32\Yioj.dll, N/A>
[]
{E6649894-15F6-4E89-A278-98F8D44B5A14} <C:\WINDOWS\system32\Ltmo.dll, N/A>
[]
{F2840E98-F799-4C78-89C7-D834639A27FB} <C:\WINDOWS\system32\Akpwjl.dll, N/A>
[]
{F5C70885-A972-4395-9459-48B9DC7CEAF8} <C:\WINDOWS\system32\Xoam.dll, N/A>
[]
{F6E1BFFF-708B-4568-9386-CDEF5A79C752} <C:\WINDOWS\system32\Swhn.dll, N/A>
[]
{FC53BE44-92BF-4D44-878D-D35589F8008A} <C:\WINDOWS\system32\Zdeay.dll, N/A>
[]
{FE315628-6CFD-4E29-AA81-EDB477AB7F47} <C:\WINDOWS\system32\Jmrb.dll, N/A>
[&使用暴风下载器下载]
<C:\Program Files\Ringz Studio\Storm Downloader\geturl.htm, N/A>
[&使用迅雷下载]
<C:\Program Files\Thunder Network\Thunder\geturl.htm, N/A>
[&使用迅雷下载全部链接]
<C:\Program Files\Thunder Network\Thunder\getallurl.htm, N/A>
[上传到QQ网络硬盘]
<D:\qq3\AddToNetDisk.htm, N/A>
[导出当前页到超星阅览器(&A)]
<C:\Program Files\SSREADER36\ss_all.htm, N/A>
[导出选中部分到超星阅览器(&S)]
<C:\Program Files\SSREADER36\ss_select.htm, N/A>
[添加到QQ自定义面板]
<D:\qq3\AddPanel.htm, N/A>
[添加到QQ表情]
<D:\qq3\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<D:\qq3\SendMMS.htm, N/A>

中国星34420 - 2006-9-29 23:37:00

=================================
正在运行的进程
[PID: 556][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 616][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 640][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 684][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 696][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 852][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 936][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1048][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1124][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1232][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1476][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\WINDOWS\system32\xunleibho_v14.dll] <Thunder Networking Technologies,LTD><4, 6, 0, 62>
[C:\WINDOWS\system32\Dehe.dll] <N/A><N/A>
[C:\WINDOWS\system32\Fcin.dll] <N/A><N/A>
[C:\WINDOWS\system32\Omre.dll] <N/A><N/A>
[C:\WINDOWS\system32\Htbohf.dll] <N/A><N/A>
[C:\WINDOWS\system32\Bvazzx.dll] <N/A><N/A>
[C:\WINDOWS\system32\Uzsr.dll] <N/A><N/A>
[C:\WINDOWS\system32\Zzizz.dll] <N/A><N/A>
[C:\WINDOWS\system32\Mqypj.dll] <N/A><N/A>
[C:\WINDOWS\system32\Ezrkpf.dll] <N/A><N/A>
[C:\WINDOWS\system32\Hwolo.dll] <N/A><N/A>
[C:\WINDOWS\system32\Hxcijp.dll] <N/A><N/A>
[C:\WINDOWS\system32\Mgbnnz.dll] <N/A><N/A>
[C:\WINDOWS\system32\Febsj.dll] <N/A><N/A>
[C:\WINDOWS\system32\Odvy.dll] <N/A><N/A>
[C:\WINDOWS\system32\Jamk.dll] <N/A><N/A>
[C:\WINDOWS\system32\Gnqt.dll] <N/A><N/A>
[C:\WINDOWS\system32\Nuejlp.dll] <N/A><N/A>
[C:\WINDOWS\system32\Fwgy.dll] <N/A><N/A>
[C:\WINDOWS\system32\Dbtp.dll] <N/A><N/A>
[C:\WINDOWS\system32\Qnxnsi.dll] <N/A><N/A>
[C:\Program Files\WinRAR\rarext.dll] <N/A><N/A>
[C:\KAV2006\KAVEXT.DLL] <Kingsoft Corporation><2005, 8, 5, 16>
[PID: 1544][C:\KAV2006\KWatch.EXE] <Kingsoft Corporation><2005, 9, 27, 51>
[C:\KAV2006\KAVIPC2.DLL] <Kingsoft Corporation><2004, 12, 28, 20>
[C:\KAV2006\KAEPlat.DLL] <Kingsoft Corp.><2005, 12, 29, 56>
[C:\KAV2006\KAEMem.DAT] <Kingsoft><2006, 4, 12, 13>
[C:\KAV2006\KAEUnpack.DAT] <Kingsoft Corp.><2006, 6, 15, 44>
[PID: 1620][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
[PID: 1920][C:\KAV2006\KPfwSvc.EXE] <Kingsoft Corporation><2005, 9, 5, 28>
[PID: 188][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 824][C:\KAV2006\KMailMon.EXE] <Kingsoft Corporation><2006, 4, 12, 106>
[C:\KAV2006\KAntiSpm.dll] <N/A><1, 0, 0, 2>
[C:\KAV2006\KAVIPC2.DLL] <Kingsoft Corporation><2004, 12, 28, 20>
[C:\KAV2006\KAECall2.DLL] <Kingsoft Corporation><2004, 12, 28, 7>
[C:\KAV2006\KAEPlat.DLL] <Kingsoft Corp.><2005, 12, 29, 56>
[C:\KAV2006\KAEMem.DAT] <Kingsoft><2006, 4, 12, 13>
[C:\KAV2006\KAEUnpack.DAT] <Kingsoft Corp.><2006, 6, 15, 44>
[C:\KAV2006\KAConfig.DLL] <Kingsoft Corporation><2005, 3, 23, 30>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[PID: 1360][C:\Program Files\Ringz Studio\Storm Downloader\StormDownloader.exe] <深圳市三代科技开发有限公司><1, 1, 0, 4>
[C:\Program Files\Ringz Studio\Storm Downloader\boost_thread-vc6-mt-1_31.dll] <N/A><N/A>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 260][D:\代理\ccproxy6.0无限制用户版\ccproxy.exe] <><2, 0, 0, 1>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 792][C:\WINDOWS\system32\SVOHOST.exe] <N/A><N/A>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 2004][C:\Program Files\Ringz Studio\Storm Downloader\TDUpdate.exe] <N/A><N/A>
[PID: 2848][C:\WINDOWS\system32\ctfmon.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 3140][C:\WINDOWS\system32\conime.exe] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[C:\Documents and Settings\Administrator\桌面\sreng2\SREng2\SREng.com] <Smallfrogs Studio><2.0.21.505>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[C:\Documents and Settings\Administrator\桌面\sreng2\SREng2\SREng.com] <Smallfrogs Studio><2.0.21.505>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>
[C:\Documents and Settings\Administrator\桌面\sreng2\SREng2\SREng.com] <Smallfrogs Studio><2.0.21.505>
[C:\KAV2006\KMailOEBand.dll] <N/A><2006, 5, 19, 118>
[C:\WINDOWS\system32\winscok.dll] <N/A><N/A>
[C:\KAV2006\KASocket.dll] <Kingsoft Corporation><2005, 2, 22, 233>

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM Error. ["hh.exe" %1]
.HLP Error. [winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

瑞星卡卡安全论坛