[CODE] 2008-12-08,11:16:22 System Repair Engineer 2.7.0.1210 Smallfrogs (http://www.KZTechs.com) Windows 98 SE - 以下内容被选中: 所有的启动项目(包括注册表、启动文件夹、服务等) 浏览器加载项 正在运行的进程(包括进程模块信息) 文件关联 Winsock 提供者 Autorun.inf HOSTS 文件 进程特权扫描 计划任务 API HOOK 隐藏进程 启动项目 注册表 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] [Microsoft Corporation] [Microsoft Corporation] [Microsoft Corporation] [Microsoft Corporation] [Microsoft Corporation] [Intel Corporation] [Intel Corporation] [File is missing] [Inprise Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices] [Microsoft Corporation] ================================== 启动文件夹 N/A ================================== 服务 N/A ================================== 驱动程序 N/A ================================== 浏览器加载项 [@shdoclc.dll,-866] {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A> [电台(&R)] {8E718888-423F-11D2-876E-00A0C9082467} ================================== 正在运行的进程 [PID: 4294943565][C:\WINDOWS\SYSTEM\MSISIP.DLL] [Microsoft Corporation, 2.0.2600.1] [C:\WINDOWS\SYSTEM\MSSIP32.DLL] [Microsoft Corporation, 5.131.1877.3] [C:\WINDOWS\SYSTEM\IMAGEHLP.DLL] [Microsoft Corporation, 4.00] [C:\WINDOWS\SYSTEM\RSABASE.DLL] [Microsoft Corporation, 5.00.1877.3] [C:\WINDOWS\SYSTEM\SOFTPUB.DLL] [Microsoft Corporation, 5.131.1877.4] [C:\WINDOWS\SYSTEM\MLANG.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\MYDOCS.DLL] [Microsoft Corporation, 4.72.3510.2300] [C:\WINDOWS\SYSTEM\SHDOCVW.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\SHFOLDER.DLL] [Microsoft Corporation, 5.00.2919.200] [C:\WINDOWS\SYSTEM\WININET.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\MSI.DLL] [Microsoft Corporation, 2.0.2600.1] [C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WEB FOLDERS\MSONSEXT.DLL] [, ] [C:\WINDOWS\SYSTEM\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4275] [C:\WINDOWS\SYSTEM\OLE32.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\WSOCK32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MSWSOCK.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WS2_32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WS2HELP.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\DEVMGR32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WMI.DLL] [Microsoft Corporation, 5.00.1755.1] [C:\WINDOWS\SYSTEM\MSCAT32.DLL] [Microsoft Corporation, 5.131.1877.3] [C:\WINDOWS\SYSTEM\WINTRUST.DLL] [Microsoft Corporation, 5.131.1877.3] [C:\WINDOWS\SYSTEM\CRYPT32.DLL] [Microsoft Corporation, 5.131.1877.4] [C:\WINDOWS\SYSTEM\MSOSS.DLL] [Microsoft Corporation, 5.131.1877.3] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\SETUPAPI.DLL] [Microsoft Corporation, 5.00.1671.1] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\WINSPOOL.DRV] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\COMDLG32.DLL] [Microsoft Corporation, 4.72.3510.2300] [C:\WINDOWS\SYSTEM\LZ32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\CFGMGR32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\NTDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WINMM.DLL] [Microsoft Corporation, 4.03.1998] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294945653][C:\WINDOWS\SYSTEM\HPZS9X15.DLL] [HP, 15.00.00.50740] [C:\WINDOWS\SYSTEM\WINMM.DLL] [Microsoft Corporation, 4.03.1998] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\USBMON.DLL] [Microsoft Corporation, 4.10.2223] [C:\WINDOWS\SYSTEM\MSVCRT40.DLL] [Microsoft Corporation, 4.22.0000] [C:\WINDOWS\SYSTEM\SPOOL32.EXE] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\SPOOLSS.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294936609][C:\WINDOWS\SYSTEM\IENPSTUB.DLL] [Microsoft Corporation, 4.71.0831.1] [C:\WINDOWS\SYSTEM\MSLOCUSR.DLL] [Microsoft Corporation, 4.72.3110.0] [C:\WINDOWS\SYSTEM\MPREXE.EXE] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MPRSERV.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\MSPWL32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294837037][C:\WINDOWS\SYSTEM\DDRAW.DLL] [Microsoft Corporation, 4.08.01.0881] [C:\WINDOWS\SYSTEM\NTDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\DSOUND.DLL] [Microsoft Corporation, 4.08.01.0881] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\OLE32.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\DDHELP.EXE] [Microsoft Corporation, 4.08.01.0881] [C:\WINDOWS\SYSTEM\WINMM.DLL] [Microsoft Corporation, 4.03.1998] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294864253][C:\WINDOWS\SYSTEM\MSTASK.DLL] [Microsoft Corporation, 4.71.1955.1] [C:\WINDOWS\SYSTEM\IGFXSRVC.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\IGFXRES.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\IGFXDEV.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\IGFXPPH.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\HCCUTILS.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\MSHTMLED.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\MSLS31.DLL] [Microsoft Corporation, 3.10.337.0] [C:\WINDOWS\SYSTEM\WEBVW.DLL] [Microsoft Corporation, 5.00.0312.0] [C:\WINDOWS\SYSTEM\MSHTML.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\WINMM.DLL] [Microsoft Corporation, 4.03.1998] [C:\WINDOWS\SYSTEM\NETAPI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\NETBIOS.DLL] [N/A, ] [C:\WINDOWS\SYSTEM\JSCRIPT.DLL] [Microsoft Corporation, 5.0.0.3715] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\SHDOCLC.DLL] [Microsoft Corporation, 5.00.2314.1000] [C:\WINDOWS\SYSTEM\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4275] [C:\WINDOWS\SYSTEM\URLMON.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\BROWSELC.DLL] [Microsoft Corporation, 5.00.2314.1000] [C:\WINDOWS\SYSTEM\SHFOLDER.DLL] [Microsoft Corporation, 5.00.2919.200] [C:\WINDOWS\SYSTEM\WININET.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\LINKINFO.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\SETUPAPI.DLL] [Microsoft Corporation, 5.00.1671.1] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\CFGMGR32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WINSPOOL.DRV] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\COMDLG32.DLL] [Microsoft Corporation, 4.72.3510.2300] [C:\WINDOWS\SYSTEM\LZ32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\NTDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WEBCHECK.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\MSI.DLL] [Microsoft Corporation, 2.0.2600.1] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\MLANG.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\MYDOCS.DLL] [Microsoft Corporation, 4.72.3510.2300] [C:\WINDOWS\SYSTEM\SHD401LC.DLL] [Microsoft Corporation, 5.00.2314.1000] [C:\WINDOWS\SYSTEM\BROWSEUI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\SHDOC401.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\OLE32.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\SHDOCVW.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\EXPLORER.EXE] [Microsoft Corporation, 4.72.3110.1] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294869525][C:\WINDOWS\TASKMON.EXE] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294871749][C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\INTERNAT.EXE] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294883237][C:\WINDOWS\SYSTEM\USBUI.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WMI.DLL] [Microsoft Corporation, 5.00.1755.1] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\SYSTRAY.EXE] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\BATMETER.DLL] [Microsoft Corporation, 5.00.0910.1900] [C:\WINDOWS\SYSTEM\POWRPROF.DLL] [Microsoft Corporation, 5.00.0910.1900] [C:\WINDOWS\SYSTEM\SETUPAPI.DLL] [Microsoft Corporation, 5.00.1671.1] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\CFGMGR32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WINSPOOL.DRV] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\COMDLG32.DLL] [Microsoft Corporation, 4.72.3510.2300] [C:\WINDOWS\SYSTEM\LZ32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\NTDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WINMM.DLL] [Microsoft Corporation, 4.03.1998] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294891877][C:\WINDOWS\SYSTEM\IGFXRES.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\IGFXSRVC.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\IGFXDEV.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\IGFXTRAY.EXE] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\HCCUTILS.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4275] [C:\WINDOWS\SYSTEM\OLE32.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294874549][C:\WINDOWS\SYSTEM\IGFXRES.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\IGFXHK.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\IGFXSRVC.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\IGFXDEV.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\HKCMD.EXE] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\HCCUTILS.DLL] [Intel Corporation, 3,0,0,1132] [C:\WINDOWS\SYSTEM\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4275] [C:\WINDOWS\SYSTEM\OLE32.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294887761][C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\PROGRAM FILES\BORLAND\INTERBASE\BIN\IBGUARD.EXE] [Inprise Corporation, WI-V6.0.1.0] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDS32.DLL] [Inprise Corporation, WI-V6.0.1.0] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WSOCK32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MSWSOCK.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WS2_32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WININET.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\WS2HELP.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294792473][C:\WINDOWS\SYSTEM\SHFOLDER.DLL] [Microsoft Corporation, 5.00.2919.200] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\MSAFD.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\RNR20.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\PROGRAM FILES\BORLAND\INTERBASE\BIN\IBSERVER.EXE] [Inprise Corporation, WI-V6.0.1.0] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\MPR.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WSOCK32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MSWSOCK.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WS2_32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WININET.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\WS2HELP.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294833893][C:\WINDOWS\SYSTEM\NETAPI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\NETBIOS.DLL] [N/A, ] [C:\WINDOWS\SYSTEM\WMIEXE.EXE] [Microsoft Corporation, 5.00.1755.1] [C:\WINDOWS\SYSTEM\WMICORE.DLL] [Microsoft Corporation, 5.00.1755.1] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294654481][C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\DESKTOP\SRENG2.7\SRENGLDR.EXE] [Smallfrogs Studio, 2.7.0.1210] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] [PID: 4294641421][C:\WINDOWS\SYSTEM\NETAPI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\NETBIOS.DLL] [N/A, ] [C:\WINDOWS\SYSTEM\WINTRUST.DLL] [Microsoft Corporation, 5.131.1877.3] [C:\WINDOWS\SYSTEM\MSAFD.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\RNR20.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WSOCK32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\MSWSOCK.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHFOLDER.DLL] [Microsoft Corporation, 5.00.2919.200] [C:\WINDOWS\SYSTEM\MLANG.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\INDICDLL.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\RICHED20.DLL] [Microsoft Corporation, 5.0.152.0] [C:\WINDOWS\SYSTEM\CRTDLL.DLL] [Microsoft Corporation, 3.50] [C:\WINDOWS\DESKTOP\SRENG2.7\SRE6E9E.EXE] [Smallfrogs Studio, 2.7.0.1210] [C:\WINDOWS\SYSTEM\WS2_32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\WS2HELP.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\WININET.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\WINMM.DLL] [Microsoft Corporation, 4.03.1998] [C:\WINDOWS\SYSTEM\CRYPT32.DLL] [Microsoft Corporation, 5.131.1877.4] [C:\WINDOWS\SYSTEM\RPCRT4.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\MSOSS.DLL] [Microsoft Corporation, 5.131.1877.3] [C:\WINDOWS\SYSTEM\MSVCRT.DLL] [Microsoft Corporation, 6.00.8797.0] [C:\WINDOWS\SYSTEM\VERSION.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\OLEAUT32.DLL] [Microsoft Corporation, 2.40.4275] [C:\WINDOWS\SYSTEM\OLEDLG.DLL] [Microsoft Corporation, 1.0] [C:\WINDOWS\SYSTEM\MSVCRT20.DLL] [Microsoft Corporation, 2.11.000] [C:\WINDOWS\SYSTEM\OLE32.DLL] [Microsoft Corporation, 4.71.2900] [C:\WINDOWS\SYSTEM\WINSPOOL.DRV] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\COMDLG32.DLL] [Microsoft Corporation, 4.72.3510.2300] [C:\WINDOWS\SYSTEM\SHELL32.DLL] [Microsoft Corporation, 4.72.3612.1700] [C:\WINDOWS\SYSTEM\COMCTL32.DLL] [Microsoft Corporation, 5.80] [C:\WINDOWS\SYSTEM\IMM32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\SHLWAPI.DLL] [Microsoft Corporation, 5.00.2614.3500] [C:\WINDOWS\SYSTEM\USER32.DLL] [Microsoft Corporation, 4.10.2222] [C:\WINDOWS\SYSTEM\GDI32.DLL] [Microsoft Corporation, 4.10.1998] [C:\WINDOWS\SYSTEM\ADVAPI32.DLL] [Microsoft Corporation, 4.80.1675] [C:\WINDOWS\SYSTEM\KERNEL32.DLL] [Microsoft Corporation, 4.10.2222] ================================== 文件关联 .TXT OK. [C:\WINDOWS\NOTEPAD.EXE %1] .EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM OK. ["C:\WINDOWS\hh.exe" %1] .HLP OK. [C:\WINDOWS\winhlp32.exe %1] .INI OK. [C:\WINDOWS\NOTEPAD.EXE %1] .INF OK. [C:\WINDOWS\NOTEPAD.EXE %1] .VBS OK. [C:\WINDOWS\WScript.exe "%1" %*] .JS OK. [C:\WINDOWS\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 MS.w95.spi.osp C:\WINDOWS\SYSTEM\mswsosp.dll(Microsoft Corporation, Microsoft Windows Sockets 2.0 Service Provider) MS.w95.spi.tcp C:\WINDOWS\SYSTEM\msafd.dll(Microsoft Corporation, Microsoft Windows Sockets 2.0 Service Provider) MS.w95.spi.udp C:\WINDOWS\SYSTEM\msafd.dll(Microsoft Corporation, Microsoft Windows Sockets 2.0 Service Provider) MS.w95.spi.raw C:\WINDOWS\SYSTEM\msafd.dll(Microsoft Corporation, Microsoft Windows Sockets 2.0 Service Provider) MS.w95.spi.rsvptcp C:\WINDOWS\SYSTEM\rsvpsp.dll(Microsoft Corporation, Microsoft Windows Rsvp 1.0 Service Provider) MS.w95.spi.rsvpudp C:\WINDOWS\SYSTEM\rsvpsp.dll(Microsoft Corporation, Microsoft Windows Rsvp 1.0 Service Provider) ================================== Autorun.inf [F:\] [autorun] OPEN=_SETIMG\EPSSWT.EXE /NODISP:"ALL" /NOWIZ:"..\EPSETUP.EXE" /ST:"3500,WIN98,WINME" ICON=_SETIMG\CDROMIJ.ICO ================================== HOSTS 文件 N/A ================================== 进程特权扫描 N/A ================================== 计划任务 N/A ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]