IE被劫持了.弹出www.3tip.net/flashget14.html【求助】 bbs.ikaka.com

powhow - 2007-1-21 23:09:00

[CODE]

2007-01-21,22:51:15

System Repair Engineer 2.3.13.690
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Runing Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File

Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><E:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Corporation]
<MsnMsgr><"E:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [Microsoft Corporation]
<MSMSGS><; "E:\Program Files\Messenger\msmsgs.exe" /background> [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"E:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Corporation]
<PHIME2002ASync><E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Corporation]
<PHIME2002A><E:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Corporation]
<SoundMAXPnP><E:\Program Files\Analog Devices\Core\smax4pnp.exe> [Analog Devices, Inc.]
<NvCplDaemon><RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup> [(Verified)NVIDIA Corporation]
<nwiz><nwiz.exe /install> [N/A]
<NvMediaCenter><RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit> [(Verified)NVIDIA Corporation]
<RemoteControl><"E:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"> [Cyberlink Corp.]
<InCD><E:\Program Files\Ahead\InCD\InCD.exe> [Nero AG]
<NeroFilterCheck><E:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<LGODDFU><"E:\Program Files\lg_fwupdate\fwupdate.exe" blrun> [N/A]
<adx.exe><E:\Program Files\real\adx.exe> [Microsoft Corporation]
<avast!><E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe> [(Verified)N/A]
<SoundMAX><; "E:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray> [Analog Devices, Inc.]
<WinampAgent><; E:\Program Files\Winamp\winampa.exe> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Corporation]
<Userinit><E:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{54D9498B-CF93-414F-8984-8CE7FDE0D391}><E:\Program Files\ewido anti-malware\shellhook.dll> [N/A]
<{BDD2212C-1FA6-4044-A230-70><> [N/A]

powhow - 2007-1-21 23:10:00

==================================
Startup Folders
N/A

==================================
Services
[avast! iAVS4 Control Service / aswUpdSv][Running/Auto Start]
<"E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"><N/A>
[ATK Keyboard Service / ATKKeyboardService][Running/Auto Start]
<E:\WINDOWS\ATKKBService.exe><ASUSTeK COMPUTER INC.>
[avast! Antivirus / avast! Antivirus][Running/Auto Start]
<"E:\Program Files\Alwil Software\Avast4\ashServ.exe"><N/A>
[avast! Mail Scanner / avast! Mail Scanner][Running/Manual Start]
<"E:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service><ALWIL Software>
[avast! Web Scanner / avast! Web Scanner][Running/Manual Start]
<"E:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service><ALWIL Software>
[ewido security suite control / ewido security suite control][Running/Auto Start]
<E:\Program Files\ewido anti-malware\ewidoctrl.exe><ewido networks>
[ewido security suite guard / ewido security suite guard][Stopped/Disabled]
<E:\Program Files\ewido anti-malware\ewidoguard.exe><ewido networks>
[Human Interface Device Access / HidServ][Stopped/Disabled]
<E:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
<"E:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"><Macrovision Corporation>
[InCD Helper / InCDsrv][Running/Auto Start]
<E:\Program Files\Ahead\InCD\InCDsrv.exe><Nero AG>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
<E:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>

==================================
Drivers
[ADI UAA Function Driver for High Definition Audio Service / ADIHdAudAddService][Running/Manual Start]
<system32\drivers\ADIHdAud.sys><Analog Devices, Inc.>
[AE Audio Service / AEAudio][Running/Manual Start]
<system32\drivers\AEAudio.sys><Andrea Electronics Corporation>
[AMD Processor Driver / AmdK8][Running/System Start]
<system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
[Enhanced Display Driver Helper Service / asuskbnt][Running/System Start]
<system32\drivers\atkkbnt.sys><ASUSTeK COMPUTER INC.>
[axwhisky / axwhisky][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\axwhisky.sys><>
[axwskbus / axwskbus][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\axwskbus.sys><>
[EIO / EIO][Running/Auto Start]
<\??\E:\WINDOWS\system32\drivers\EIO.sys><ASUSTeK Computer Inc.>
[ewido security suite driver / ewido security suite driver][Running/System Start]
<\??\E:\Program Files\ewido anti-malware\guard.sys><N/A>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
<system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[InCDPass / InCDPass][Running/System Start]
<System32\DRIVERS\InCDPass.sys><Nero AG>
[ATK0110 ACPI UTILITY / MTsensor][Running/Manual Start]
<system32\DRIVERS\ASACPI.sys><>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[nvata / nvata][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\nvata.sys><NVIDIA Corporation>
[NVIDIA nForce Networking Controller Driver / NVENETFD][Running/Manual Start]
<system32\DRIVERS\NVENETFD.sys><NVIDIA Corporation>
[NVIDIA Network Bus Enumerator / nvnetbus][Running/Manual Start]
<system32\DRIVERS\nvnetbus.sys><NVIDIA Corporation>
[直接平行連接埠連結驅動程式 / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Secdrv / Secdrv][Running/Auto Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SenFilt Service / SenFiltService][Running/Manual Start]
<system32\drivers\Senfilt.sys><Sensaura>
[STEC3 / STEC3][Running/Auto Start]
<\??\E:\WINDOWS\system32\STEC3.sys><AntiCracking>

powhow - 2007-1-21 23:15:00

==================================
Browser Add-ons
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx, >
[IeCatch5 Class]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <E:\PROGRA~1\FlashGet\jccatch.dll, FlashGet>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <E:\Program Files\BitComet\tools\BitCometBHO.dll, BitComet>
[BHOHelper Class]
{67A90DD5-128D-43AB-B97C-565D2DD42A28} <E:\Program Files\real\atloader.dll, Microsoft Corporation>
[BHOHelper Class]
{67A90DD6-128D-43AB-B97C-565D2DD42A28} <E:\Program Files\real\atloader.dll, Microsoft Corporation>
[FlashGet]
{D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <E:\PROGRA~1\FlashGet\flashget.exe, FlashGet.com>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <E:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[FlashGet Bar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} <E:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <E:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <E:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <E:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx, >
[IeCatch5 Class]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <E:\PROGRA~1\FlashGet\jccatch.dll, FlashGet>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <E:\Program Files\BitComet\tools\BitCometBHO.dll, BitComet>
[BHOHelper Class]
{67A90DD5-128D-43AB-B97C-565D2DD42A28} <E:\Program Files\real\atloader.dll, Microsoft Corporation>
[BHOHelper Class]
{67A90DD6-128D-43AB-B97C-565D2DD42A28} <E:\Program Files\real\atloader.dll, Microsoft Corporation>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <E:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <E:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <E:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[FlashGet Bar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} <E:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[ADXAutoLive]
{E5212437-921F-44a3-8865-11C0B9BA4AF2} <E:\PROGRA~1\real\autolive.dll, Microsoft Corporation>
[&使用BitComet下載本頁視頻]
<res://E:\Program Files\BitComet\BitComet.exe/AddVideo.htm, N/A>
[使用 FlashGet 下載]
<E:\PROGRA~1\FlashGet\jc_link.htm, N/A>
[使用BitComet下載全部鏈接]
<res://E:\Program Files\BitComet\BitComet.exe/AddAllLink.htm, N/A>
[使用BitComet下載鏈接(&B)]
<res://E:\Program Files\BitComet\BitComet.exe/AddLink.htm, N/A>
[全部使用 FlashGet 下載]
<E:\PROGRA~1\FlashGet\jc_all.htm, N/A>

powhow - 2007-1-21 23:16:00

==================================
Running Processes
[PID: 600][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 680][\??\E:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 704][\??\E:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 748][E:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 764][E:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 916][E:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 976][E:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1072][E:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1092][E:\Program Files\Ahead\InCD\InCDsrv.exe] [Nero AG, 4, 3, 18, 0]
[E:\Program Files\Common Files\Ahead\Lib\DriveLocker.dll] [Ahead Software AG, 1, 0, 0, 17]
[E:\Program Files\Ahead\InCD\incdshx.dll] [Nero AG, 4, 3, 18, 0]
[PID: 1220][E:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1384][E:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1476][E:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\ewido anti-malware\shellhook.dll] [N/A, N/A]
[E:\Program Files\real\adx.dll] [Microsoft Corporation, 5, 1, 2607, 119]
[E:\Program Files\real\atloader.dll] [Microsoft Corporation, 5, 1, 2607, 119]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[E:\Program Files\real\urlcatch.dll] [Microsoft Corporation, 5, 1, 2607, 119]
[E:\Program Files\real\autolive.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\WINDOWS\system32\nvcpl.dll] [NVIDIA Corporation, 6.14.10.8265]
[E:\WINDOWS\system32\NVRSZHT.DLL] [NVIDIA Corporation, 6.14.10.8265]
[E:\Program Files\Ahead\InCD\incdshx.dll] [Nero AG, 4, 3, 18, 0]
[E:\WINDOWS\system32\nvshell.dll] [N/A, N/A]
[E:\PROGRA~1\FlashGet\jccatch.dll] [FlashGet, 1, 1, 5, 0]
[E:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx] [, 1, 0, 0, 1]
[PID: 1656][E:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1808][E:\Program Files\Analog Devices\Core\smax4pnp.exe] [Analog Devices, Inc., 6, 0, 0, 61]
[E:\Program Files\Analog Devices\Core\SMWDMIF.dll] [Analog Devices, Inc., 6, 0, 4400, 9]
[PID: 1844][E:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe] [Cyberlink Corp., 6.00.1027]
[E:\Program Files\CyberLink DVD Solution\PowerDVD\CLRCEngine2.dll] [CyberLink Corp., 3.2.2021 ]
[PID: 1856][E:\Program Files\Ahead\InCD\InCD.exe] [Nero AG, 4, 3, 18, 0]
[E:\Program Files\Ahead\InCD\InCdApi.dll] [Nero AG, 4, 3, 18, 0]
[E:\Program Files\Common Files\Ahead\Lib\DriveLocker.dll] [Ahead Software AG, 1, 0, 0, 17]
[E:\Program Files\Ahead\InCD\incdshx.dll] [Nero AG, 4, 3, 18, 0]
[PID: 1876][E:\Program Files\lg_fwupdate\fwupdate.exe] [BL, 1.00]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[PID: 1896][E:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe] [N/A, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\Base.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\Lang.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruijs.dll] [N/A, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll] [Codejock Software, 1, 9, 4, 0]
[e:\program files\alwil software\avast4\ahruimai.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruimes.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruins.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruiout.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruip2p.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruistd.dll] [ALWIL Software, 4, 7, 936, 0]
[e:\program files\alwil software\avast4\ahruiws.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AavmGuih.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[PID: 224][E:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 232][E:\Program Files\MSN Messenger\MsnMsgr.Exe] [Microsoft Corporation, 7.5.0311]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[E:\WINDOWS\system32\msdmo.dll] [N/A, N/A]
[E:\Program Files\Alwil Software\Avast4\AhAScr.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]

powhow - 2007-1-21 23:16:00

[PID: 516][E:\Program Files\Alwil Software\Avast4\aswUpdSv.exe] [N/A, N/A]
[E:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[PID: 532][E:\WINDOWS\ATKKBService.exe] [ASUSTeK COMPUTER INC., 1, 0, 0, 0]
[PID: 548][E:\Program Files\Alwil Software\Avast4\ashServ.exe] [N/A, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswEngin.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswScan.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswInteg.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswIdle.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\Base.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\UNACEV2.DLL] [N/A, N/A]
[E:\Program Files\Alwil Software\Avast4\AhResJs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhResMai.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ahResMes.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhResNS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhResOut.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ahResP2P.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhResStd.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhResWS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashSSqlt.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[PID: 616][E:\Program Files\ewido anti-malware\ewidoctrl.exe] [ewido networks, 3, 0, 0, 1]
[E:\Program Files\ewido anti-malware\lang.dll] [privat, 1, 0, 0, 1]
[PID: 660][E:\WINDOWS\system32\nvsvc32.exe] [NVIDIA Corporation, 6.14.10.8265]
[PID: 1488][E:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)]
[PID: 2248][E:\Program Files\Alwil Software\Avast4\ashMaiSv.exe] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashUInt.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\XT1922.dll] [Codejock Software, 1, 9, 4, 0]
[E:\Program Files\Alwil Software\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhResMai.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\Base.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswEngin.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswScan.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\Lang.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\langmai.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[PID: 2300][E:\Program Files\Alwil Software\Avast4\ashWebSv.exe] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ChineseT\Base.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\ashWsFtr.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswScan.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\AhResWs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\Alwil Software\Avast4\aswEngin.dll] [ALWIL Software, 4, 7, 936, 0]
[PID: 2324][E:\WINDOWS\system32\wscntfy.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[PID: 2632][E:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3436][E:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]
[E:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx] [, 1, 0, 0, 1]
[E:\PROGRA~1\FlashGet\jccatch.dll] [FlashGet, 1, 1, 5, 0]
[E:\Program Files\BitComet\tools\BitCometBHO.dll] [BitComet, 20061213]
[E:\Program Files\real\atloader.dll] [Microsoft Corporation, 5, 1, 2607, 119]
[E:\Program Files\real\urlcatch.dll] [Microsoft Corporation, 5, 1, 2607, 119]
[E:\Program Files\Alwil Software\Avast4\AhAScr.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\WINDOWS\system32\Macromed\Flash\Flash9.ocx] [Adobe Systems, Inc., 9,0,16,0]
[PID: 272][E:\Documents and Settings\Yeung Chung Man\桌面\sreng2\SREng.EXE] [Smallfrogs Studio, 2.3.13.690]
[E:\Program Files\Alwil Software\Avast4\AhJsctNs.dll] [ALWIL Software, 4, 7, 936, 0]
[E:\Program Files\real\bhomgr.dll] [Microsoft Corporation, 5, 1, 2606, 1229]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["E:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1 localhost
127.0.0.1 update.111222.cn
127.0.0.1 msg.ppstream.com

==================================
API HOOK
N/A

==================================

[/CODE]

瑞星卡卡安全论坛