瑞星卡卡安全论坛

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <bgswitch><; C:\WINDOWS\system32\bgswitch.exe>  [N/A]
    <Super Rabbit IEPro><C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD>  [Super Rabbit Soft]
    <BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}><"C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe">  [Nero AG]
    <赛尔教育通><C:\Program Files\赛尔教育通\赛尔教育通>  [N/A]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <BigDogPath><C:\WINDOWS\VM_STI.EXE USB PC Camera 301P>  [N/A]
    <KAV50><"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsprod.exe" -run -n Workstation -v 5.0.0.0 -chkss>  [Kaspersky Lab]
    <HotKeysCmds><; C:\WINDOWS\system32\hkcmd.exe>  [(Verified)Intel Corporation]
    <IgfxTray><; C:\WINDOWS\system32\igfxtray.exe>  [(Verified)Intel Corporation]
    <SoundMan><; SOUNDMAN.EXE>  [(Verified)Realtek Semiconductor Corp.]
    <Thunder><; "C:\Program Files\Thunder Network\Thunder\Thunder.exe" /s>  [N/A]
    <NeroFilterCheck><C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe>  [Nero AG]
    <NWEReboot><>  [N/A]
    <SKYNET Personal FireWall><C:\Program Files\SkyNet\FireWall\PFW.exe>  [sky.net.cn]
    <NetTrafficNonitor><C:\Program Files\网络流量监控系统\NetTrafficMon.exe>  [N/A]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [RealNetworks, Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Corporation]
    <webwork><C:\WINDOWS\webwork\webwork.dll>  [N/A]

==================================
启动文件夹
[Adobe Reader Speed Launch]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Reader Speed Launch.lnk --> C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [Adobe Systems Incorporated]><N>

==================================
服务
[KLBLMain / KLBLMain]
  <"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kavmm.exe" -run bl -n Workstation -v 5.0.0.0 -ttsr 10000000><Kaspersky Lab>
[SmartLinkService / SLService]
  <slserv.exe><>
[StarWind iSCSI Service / StarWindService]
  <C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe><Rocket Division Software>
[VisionService / VisionService]
  <C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\vision\VISVER.DLL,Service><Microsoft Corporation>
[Windows Media Connect Service / WMConnectCDS]
  <C:\Program Files\Windows Media Connect 2\wmccds.exe><Microsoft Corporation>

驱动程序
[00007208 / 00007208]
  <\SystemRoot\system32\drivers\00007208.SYS><N/A>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[ialm / ialm]
  <system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[Klif / Klif]
  <\??\C:\WINDOWS\system32\Drivers\klif.sys><Kaspersky Labs>
[Klmc / Klmc]
  <\SystemRoot\System32\drivers\klmc.sys><Kaspersky Lab>
[Mtlmnt5 / Mtlmnt5]
  <system32\DRIVERS\Mtlmnt5.sys><>
[Mtlstrm / Mtlstrm]
  <system32\DRIVERS\Mtlstrm.sys><>
[npkcrypt / npkcrypt]
  <\??\D:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[npkcusb / npkcusb]
  <\??\D:\Program Files\Tencent\QQ\npkcusb.sys><INCA Internet Co., Ltd.>
[NtMtlFax / NtMtlFax]
  <system32\DRIVERS\NtMtlFax.sys><>
[Direct Parallel Link Driver / Ptilink]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Rising Kaka anti-spyware / RsAntiSpyware]
  <\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
  <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv]
  <system32\DRIVERS\secdrv.sys><N/A>
[SKNFW / SKNFW]
  <\??\C:\WINDOWS\system32\Drivers\SKNFW.sys><N/A>
[SkyProcs / SkyProcs]
  <\??\C:\PROGRA~1\SKYNET\FIREWALL\SkyProcs.sys><N/A>
[SmartLink AMR_PCI Driver / Slntamr]
  <system32\DRIVERS\slntamr.sys><>
[SlNtHal / SlNtHal]
  <system32\DRIVERS\Slnthal.sys><>
[SlWdmSup / SlWdmSup]
  <system32\DRIVERS\SlWdmSup.sys><Vireo Software>
[SMC IrCC Miniport Device Driver / SMCIRDA]
  <system32\DRIVERS\smcirda.sys><SMC>
[sptd / sptd]
  <\SystemRoot\System32\Drivers\sptd.sys><N/A>
[TCP/IP Protocol Driver / Tcpip]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[TSP / TSP]
  <\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Labs>
[vaxscsi / vaxscsi]
  <\SystemRoot\System32\Drivers\vaxscsi.sys><N/A>
[World Standard Teletext Codec / WSTCODEC]
  <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[Windows Driver Foundation - User-mode Driver Framework Platform Driver / WudfPf]
  <system32\DRIVERS\WudfPf.sys><Microsoft Corporation>
[Windows Driver Foundation - User-mode Driver Framework Reflector / WudfRd]
  <system32\DRIVERS\wudfrd.sys><Microsoft Corporation>
[USB PC Camera 301P / ZSMC301b]
  <System32\Drivers\usbVM31b.sys><VM>
[Intel(R) Graphics Platform (SoftBIOS) Driver / {6080A529-897E-4629-A488-ABA0C29B635E}]
  <system32\drivers\ialmsbw.sys><Intel Corporation>

==================================
浏览器加载项
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[IeCatch5 Class]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\PROGRA~1\FLASHGET\jccatch.dll, FlashGet>
[Vision]
  {6671A431-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\vision\vision.dll, >
[超级兔子上网精灵]
  {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD>
[]
  {A9930D97-9CF0-42A0-A10D-4F28836579D5} <C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX, N/A>
[gFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\PROGRA~1\FLASHGET\getflash.dll, N/A>
[MMSAssistMenu]
  {6671A433-5C3D-463d-A7CF-5587F9B7E191} <C:\PROGRA~1\vision\vision.dll, >
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[FlashGet]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\flashget.exe, FlashGet.com>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, N/A>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, N/A>
[IeCatch5 Class]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\PROGRA~1\FLASHGET\jccatch.dll, FlashGet>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Vision]
  {6671A431-5C3D-463D-A7CF-5587F9B7E191} <C:\PROGRA~1\vision\vision.dll, >
[超级兔子上网精灵]
  {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder\ComDlls\XunLeiBHO_002.dll, Thunder Networking Technologies,LTD>
[]
  {A9930D97-9CF0-42A0-A10D-4F28836579D5} <C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX, N/A>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[gFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\PROGRA~1\FLASHGET\getflash.dll, N/A>
[>>彩信发送<<]
  <res://C:\PROGRA~1\vision\vision.dll/mms.htm, N/A>
[上传到QQ网络硬盘]
  <D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用KuGoo3下载(&K)]
  <C:\Program Files\KuGoo3\KuGoo3DownX.htm, N/A>
[使用网际快车下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[使用迅雷下载]
  <C:\Program Files\Thunder\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
  <C:\Program Files\Thunder\Program\GetAllUrl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

[PID: 548][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 608][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 632][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 680][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 692][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 832][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 892][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 932][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1024][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1088][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1244][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[PID: 1400][C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kavmm.exe]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll]  [Kaspersky Lab, 6.00.0000]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klsecur.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsa.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsbl.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\xorio_ex.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\startups.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_server.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\pr_client.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\l_llio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\avp_iont.dll]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\avp1.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\avpgs.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\cab.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\dtreg.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ichk2.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ichstrms.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\klonacci.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\wdiskio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\klondemi.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mailmsg.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\memmodsc.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\memscan.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\msoe.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\nfio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\ntfsstrm.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\report.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\sfdb.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\tempfile.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\winreg.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\AVS.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\CheckTool.DLL]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\xmlparse.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\xmltok.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsbloc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\OnDemand.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\QBackup.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\qbstorage.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsblp.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\OnAccess.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\scrch_ag.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mcproxy.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mcpr.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\mailapplayer.dll]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\mchk.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\SubjPlugin.dll]  [Kaspersky Lab, 5.0.225.0]

[PID: 1492][C:\WINDOWS\system32\slserv.exe]  [ , 2.80.00(24Apr2000)]
[PID: 1524][C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe]  [Rocket Division Software, 2.6.1 Build 0x20050401]
[PID: 1536][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1588][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\PROGRA~1\vision\VISVER.DLL]  [, 1, 2, 0, 7]
[PID: 1836][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.0.2004121400]
    [C:\PROGRA~1\FLASHGET\jccatch.dll]  [FlashGet, 1, 1, 5, 0]
    [C:\PROGRA~1\vision\alvsn.dll]  [N/A, 1, 0, 0, 4]
    [C:\Program Files\Thunder\ComDlls\XunLeiBHO_002.dll]  [Thunder Networking Technologies,LTD, 5, 0, 0, 2]
    [C:\PROGRA~1\vision\vision.dll]  [, 1, 2, 0, 7]
    [C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll]  [Nero AG, 2, 0, 0, 8]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\WINDOWS\system32\igfxpph.dll]  [Intel Corporation, 3.0.0.2285]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.2285]
    [C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll]  [Nero AG, 2, 0, 5, 0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
[PID: 1972][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1684][C:\WINDOWS\VM_STI.EXE]  [VM., 4.2.610.4]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\VM31bPrp.Ax]  [VM, 4.2.815.31]
[PID: 1696][C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsprod.exe]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\KCAStub.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kltrace.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\MSVCP61.dll]  [Kaspersky Lab, 6.00.0000]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klcsc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\FSSync.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\qbstorage.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\pr_remote.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prloader.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\prkernel.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\prstring.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\report.ppl]  [Kaspersky Lab, 5.0.225.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus for workstation 5\nfio.ppl]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\kwsploc.dll]  [Kaspersky Lab, 5.0.225.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus for Workstation 5\klsecur.dll]  [Kaspersky Lab, 5.0.225.0]
[PID: 1892][C:\Program Files\SkyNet\FireWall\PFW.exe]  [sky.net.cn, 2.6.0.123]
[PID: 2076][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.0.3536]
[PID: 2104][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2196][C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE]  [Super Rabbit Soft, 7.85]
    [C:\PROGRA~1\SUPERR~1\MagicSet\shlobj71.ocx]  [Sky Software (http://www.ssware.com), 7, 1, 0, 0]
[PID: 2216][C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe]  [Nero AG, 1, 0, 2, 8]
    [C:\Program Files\Common Files\Ahead\lib\AdvrCntr2.dll]  [Nero AG, 2,5,1, 5400]
    [C:\Program Files\Common Files\Ahead\lib\NMIndexStoreSvrPS.dll]  [Nero AG, 1, 0, 2, 8]
    [C:\Program Files\Common Files\Ahead\lib\NMDataServices.dll]  [Nero AG, 1, 0, 2, 8]
[PID: 3432][D:\Program Files\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]

文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

在线等待～～～拜托了

你还装了卡吧斯基啊！这个和瑞星有冲突的！建议删一个！