主要问题是任何IE(包括IE6.0,腾讯TencentTraveler，傲游Maxthon等),输入各网址确定后自动关闭。现在只能选中“禁止运行网页脚本”暂时有部分网站不会自动关闭。


Logfile of HijackThis v1.99.1
Scan saved at 9:59:30, on 2006-08-10
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

运行进程:           
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\WINDOWS\SYSTEM\INTERNAT.EXE
C:\WINDOWS\LOADQM.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE
C:\PROGRAM FILES\YAHOO!\ASSISTANT\YLIVE.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\REGEDIT.EXE
C:\WINDOWS\REGEDIT.EXE
C:\WINDOWS\REGEDIT.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
E:\安装\TT\TTRAVELER.EXE
C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\WINWORD.EXE
E:\安装\H\HA-HIJACKTHIS1991-XQB\HIJACKTHIS.EXE

R3 - URLSearchHook: (no name) - {BB936323-19FA-4521-BA29-ECA6A121BC78} - (没有文件) 
O2 - BHO: hbieobj Class - {147E230B-FC8D-4A66-AB96-FFD464A9B2A3} - C:\PROGRA~1\PCAST\HBCAST.DLL
O2 - BHO: AdSwpr - {FCADDC14-BD46-408A-9842-CDBE1C6D37EB} - E:\安装\IE修复专家\IERBAR.DLL
O2 - BHO: ThunderIEHelper - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\SYSTEM\XUNLEIBHO_V14.DLL
O2 - BHO: Anti Fish - {38928D50-8A48-44C2-945F-D2F23F771410} - C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YANGLING.DLL
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\YAHOO!\ASSIST~1\ASSIST\YDRAGS~1.DLL
O2 - BHO: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - (没有文件) 
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - D:\软砑件\FLASHGET\JCCATCH.DLL (文件故障) (文件故障)
O3 - Toolbar: &IE修复专家 - {123249EB-F891-44C4-946F-450064F9080E} - E:\安装\IE修复专家\IERBAR.DLL
O3 - Toolbar: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - D:\软砑件\FLASHGET\FGIEBAR.DLL (文件故障)
O3 - Toolbar: 金山快译(&K) - {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} - C:\PROGRA~1\KINGSOFT\FASTAIT\IEBAND.DLL
O4 - HKLM\..\Run: [RichMedia] C:\WINDOWS\Rundll32.exe  C:\PROGRA~1\PCAST\HBCAST.DLL,WaitWindows
O4 - HKLM\..\Run: [internat.exe] internat.exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] rem  C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [CnsMin] Rundll32.exe C:\WINDOWS\DOWNLO~1\CNSMIN.DLL,Rundll32
O4 - HKLM\..\Run: [cesmain.dll] C:\WINDOWS\rundll32.exe C:\PROGRA~1\3721\CES\CMAIL.DLL,Rundll32
O4 - HKLM\..\Run: [helper.dll] C:\WINDOWS\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [rfw] rem  C:\PROGRAM FILES\RISING\RFW\RFW.EXE
O4 - HKLM\..\Run: [RavTimer] rem  C:\Program Files\rising\Rav\RavTimer.exe
O4 - HKLM\..\Run: [RavMon] rem  C:\Program Files\rising\Rav\RavMon.exe -system
O4 - HKLM\..\Run: [YLive.exe] C:\PROGRA~1\YAHOO!\ASSIST~1\YLive.exe
O4 - HKLM\..\Run: [yassistse] rem  "C:\PROGRAM FILES\YAHOO!\ASSISTANT\YASSISTSE.EXE"
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\rising\Rav\RavTask.exe" -system
O4 - HKLM\..\RunServices: [LoadPowerProfile] rem  Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [ATIPOLAB] ati2evxx.exe
O4 - HKLM\..\RunServices: [RavMon] "C:\Program Files\rising\Rav\RavMon.exe" -system
O4 - HKLM\..\RunServices: [RsCcenter] "C:\Program Files\rising\Rav\CCenter.exe"
O4 - HKLM\..\RunServices: [RavMond] "C:\Program Files\rising\Rav\RavMond.exe"
O4 - HKLM\..\RunOnce: [EK_Entry] C:\WINDOWS\RUNDLL32.EXE C:\WINDOWS\TEMP\ekC2C0.TMP,Rundll32 6
O4 - HKCU\..\Run: [MsnMsgr] rem  "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\MSACNV30.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: 添加到QQ自定义面板 - E:\安装\QQ2005\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - E:\安装\QQ2005\AddEmotion.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - E:\安装\QQ2005\AddToNetDisk.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - E:\安装\QQ2005\SendMMS.htm
O11 - Options group: [!CNS]  网络实名
O17 - HKLM\System\CCS\Services\VxD\MSTCP: NameServer = 211.167.97.67,219.233.241.166

R3 - URLSearchHook: (no name) - {BB936323-19FA-4521-BA29-ECA6A121BC78} - (没有文件)
O2 - BHO: hbieobj Class - {147E230B-FC8D-4A66-AB96-FFD464A9B2A3} - C:\PROGRA~1\PCAST\HBCAST.DLL
修复上面各项

已修复,还是自动关闭

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
修复

英文国际域名域名注册只需30元/年！
详情请访问http://www.ruixun.net
联系QQ：697217

已按照3楼的修复，还是没有什么变化，照样网页自动关闭。

现发一下SREngLOG的日志，哪位高手能帮忙再查看，谢谢。

2006-08-10,16:05:27

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows 98 SE  -

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <MsnMsgr><rem  "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <RichMedia><C:\WINDOWS\Rundll32.exe  C:\PROGRA~1\PCAST\HBCAST.DLL,WaitWindows>  [Shanghai Henbang Technology Co., Ltd]
    <internat.exe><internat.exe>  [Microsoft Corporation]
    <LoadPowerProfile><Rundll32.exe powrprof.dll,LoadCurrentPwrScheme>  [Microsoft Corporation]
    <LoadQM><loadqm.exe>  [Microsoft Corporation]
    <ScanRegistry><C:\WINDOWS\scanregw.exe /autorun>  [Microsoft Corporation]
    <TaskMonitor><rem  C:\WINDOWS\taskmon.exe>  [Microsoft Corporation]
    <SystemTray><SysTray.Exe>  [Microsoft Corporation]
    <CnsMin><Rundll32.exe C:\WINDOWS\DOWNLO~1\CNSMIN.DLL,Rundll32>  [北京三七二一科技有限公司]
    <cesmain.dll><C:\WINDOWS\rundll32.exe C:\PROGRA~1\3721\CES\CMAIL.DLL,Rundll32>  [3721]
    <helper.dll><C:\WINDOWS\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32>  [$]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [RealNetworks, Inc.]
    <rfw><rem  C:\PROGRAM FILES\RISING\RFW\RFW.EXE>  []
    <RavTimer><rem  C:\Program Files\rising\Rav\RavTimer.exe>  []
    <RavMon><rem  C:\Program Files\rising\Rav\RavMon.exe -system>  []
    <YLive.exe><C:\PROGRA~1\YAHOO!\ASSIST~1\YLive.exe>  [ ]
    <yassistse><rem  "C:\PROGRAM FILES\YAHOO!\ASSISTANT\YASSISTSE.EXE">  []
    <RavTask><"C:\Program Files\rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]
    <LoadPowerProfile><rem  Rundll32.exe powrprof.dll,LoadCurrentPwrScheme>  []
    <ATIPOLAB><ati2evxx.exe>  []
    <RavMon><"C:\Program Files\rising\Rav\RavMon.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <RsCcenter><"C:\Program Files\rising\Rav\CCenter.exe">  [Beijing Rising Technology Co., Ltd.]
    <RavMond><"C:\Program Files\rising\Rav\RavMond.exe">  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]

==================================
启动文件夹
[Microsoft Office]
  <C:\WINDOWS\Start Menu\Programs\启动\Microsoft Office.lnk><N>

==================================
服务

==================================

浏览器加载项
[AdSwpr]
  {FCADDC14-BD46-408A-9842-CDBE1C6D37EB} <E:\安装\IE修复专家\IERBAR.DLL, N/A>
[ThunderIEHelper Class]
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\SYSTEM\XUNLEIBHO_V14.DLL, Thunder Networking Technologies,LTD>
[AntiFish Class]
  {38928D50-8A48-44C2-945F-D2F23F771410} <C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YANGLING.DLL, Yahoo.>
[DragSearch BHO]
  {62EED7C6-9F02-42f9-B634-98E2899E147B} <C:\PROGRA~1\YAHOO!\ASSIST~1\ASSIST\YDRAGS~1.DLL,  >
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX, (>
[]
  {A5366673-E8CA-11D3-9CD9-0090271D075B} <D:\软砑件\FLASHGET\JCCATCH.DLL (文件故障), N/A>
[hbieobj Class]
  {147E230B-FC8D-4A66-AB96-FFD464A9B2A3} <C:\PROGRA~1\PCAST\HBCAST.DLL, Shanghai Henbang Technology Co., Ltd>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\SYSTEM\MACROMED\FLASH\FLASH8B.OCX, Macromedia, Inc.>
[添加到QQ自定义面板]
  <E:\安装\QQ2005\AddPanel.htm, N/A>
[添加到QQ表情]
  <E:\安装\QQ2005\AddEmotion.htm, N/A>
[上传到QQ网络硬盘]
  <E:\安装\QQ2005\AddToNetDisk.htm, N/A>
[用QQ彩信发送该图片]
  <E:\安装\QQ2005\SendMMS.htm, N/A>

==================================
正在运行的进程
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHOOK.DLL]  <北京三七二一科技有限公司><1, 0, 2, 7>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294851577][C:\WINDOWS\SYSTEM\SPOOL32.EXE]  <Microsoft Corporation><4.10.1998>
[PID: 4294844865][C:\WINDOWS\SYSTEM\MPREXE.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294873481][C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 3>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\RISING\RAV\ENGINE.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\PROGRAM FILES\RISING\RAV\SPAMENG.DLL]  <N/A><18, 0, 0, 6>
    [C:\PROGRAM FILES\RISING\RAV\MAILMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 5>
    [C:\PROGRAM FILES\RISING\RAV\MEMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\PROGRAM FILES\RISING\RAV\HOOKWEB.DLL]  <rising><18, 0, 0, 2>
    [C:\PROGRAM FILES\RISING\RAV\REGMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 6>
    [C:\PROGRAM FILES\RISING\RAV\VIRUSLIB.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 12>
    [C:\PROGRAM FILES\RISING\RAV\LIBLOAD.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 10>
    [C:\PROGRAM FILES\RISING\RAV\SCANNER.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 30>
    [C:\PROGRAM FILES\RISING\RAV\HOOKSYS.DLL]  <Beijing Rising Technology Co., Ltd.><18, 1, 0, 11>
    [C:\PROGRAM FILES\RISING\RAV\RSLOG.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 20>
    [C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\PROGRAM FILES\RISING\RAV\CFGDLL.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\PROGRAM FILES\RISING\RAV\RSCOMMX.DLL]  <rising><18, 0, 0, 1>
[PID: 4294871225][C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE]  <Beijing Rising Technology Co., Ltd.><18, 0, 1, 33>
    [C:\PROGRAM FILES\RISING\RAV\BWLIST.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 19>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSIO.DLL]  <北京三七二一科技有限公司><1, 0, 2, 7>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMINIO.DLL]  <北京三七二一科技有限公司><1, 0, 3, 6>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294787517][C:\WINDOWS\RUNDLL32.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [D:\软件\WINZIP\WZSHLSTB.DLL]  <WinZip Computing, Inc.><4.1 (32-bit)>
    [C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
    [C:\WINDOWS\SYSTEM\RAVEXT.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YWIPER.DLL]  <N/A><1, 0, 1, 1014>
    [C:\PROGRAM FILES\3721\SKE\CONTMENU.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\WINRAR\RAREXT.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\!SUNV\DFYD\4.0\DFYDE.DLL]  <$><1, 0, 0, 1>
    [C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX]  <(><1, 0, 0, 1>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\ASSIST\YDRAGS~1.DLL]  < ><1, 2, 7, 1006>
    [C:\WINDOWS\SYSTEM\XUNLEIBHO_V14.DLL]  <Thunder Networking Technologies,LTD><4, 6, 0, 62>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YALIVE.DLL]  <$><2, 0, 5, 1031>
    [C:\PROGRAM FILES\3721\AUTOLIVE.DLL]  <$><1, 1, 4, 1026>
    [C:\WINDOWS\SYSTEM\DHCPCSVC.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\3721\ALREX.DLL]  <$><1, 0, 1, 1001>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHOOK.DLL]  <北京三七二一科技有限公司><1, 0, 2, 7>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294711725][C:\WINDOWS\EXPLORER.EXE]  <Microsoft Corporation><4.72.3110.1>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294713025][C:\WINDOWS\SYSTEM\RPCSS.EXE]  <Microsoft Corporation><4.71.2900>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\PROGRAM FILES\PCAST\HBCAST.DLL]  <Shanghai Henbang Technology Co., Ltd><1, 0, 0, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294130257][C:\WINDOWS\RUNDLL32.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294128369][C:\WINDOWS\SYSTEM\INTERNAT.EXE]  <Microsoft Corporation><4.10.2222>
    [C:\WINDOWS\SYSTEM\DHCPCSVC.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294123389][C:\WINDOWS\LOADQM.EXE]  <Microsoft Corporation><5.4.1103.3>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>

[C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
[PID: 4294141257][C:\WINDOWS\SYSTEM\SYSTRAY.EXE]  <Microsoft Corporation><4.10.2222>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
[PID: 4294163137][C:\WINDOWS\RUNDLL32.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\PROGRAM FILES\3721\NOTIFIER.DLL]  <$><1, 0, 0, 5>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
    [C:\PROGRAM FILES\3721\REGKPER.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\3721\AUTOLIVE.DLL]  <$><1, 1, 4, 1026>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
[PID: 4294157521][C:\WINDOWS\RUNDLL32.EXE]  <Microsoft Corporation><4.10.1998>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
[PID: 4294150633][C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE]  <RealNetworks, Inc.><0.1.0.3510>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YALIVE.DLL]  <$><2, 0, 5, 1031>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
[PID: 4294179669][C:\PROGRAM FILES\YAHOO!\ASSISTANT\YLIVE.EXE]  < ><2, 0, 0, 1002>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
    [C:\PROGRAM FILES\RISING\RAV\RSCOMMX.DLL]  <rising><18, 0, 0, 1>
    [C:\PROGRAM FILES\RISING\RAV\CFGDLL.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 11>
    [C:\PROGRAM FILES\RISING\RAV\RSAPPMGR.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 2>
    [C:\PROGRAM FILES\RISING\RAV\RSCOMMON.DLL]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[PID: 4294179929][C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE]  <Beijing Rising Technology Co., Ltd.><18, 0, 0, 22>
[PID: 4294112721][C:\WINDOWS\SYSTEM\WMIEXE.EXE]  <Microsoft Corporation><5.00.1755.1>
    [E:\安装\QQ2005\QQPHONEHELPER.DLL]  <腾讯科技（深圳）有限公司><2, 0, 6, 60>
    [E:\安装\QQ2005\QQSCENEMNG.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQFILETRANSFER.DLL]  <Tencent><5, 0, 202, 180>
    [E:\安装\QQ2005\QQADDR.DLL]  <深圳市腾讯计算机系统有限公司><5, 0, 101, 200>
    [E:\安装\QQ2005\PERSONALDESKTOP.DLL]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [E:\安装\QQ2005\COMMERCESMNG.DLL]  <(><1, 0, 0, 1>
    [E:\安装\QQ2005\BQQAPPLICATION.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQSYSMSGMNG.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQPET.DLL]  < ><1, 0, 0, 1>
    [E:\安装\QQ2005\LONGCONNECTION.DLL]  <tencent><5, 0, 200, 160>
    [E:\安装\QQ2005\FLASHAVATARDLL.DLL]  <(><1, 4, 0, 1>
    [E:\安装\QQ2005\QQAVATAR.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\DIALERALLINONE.DLL]  <tencent><1, 4, 0, 0>
    [E:\安装\QQ2005\PHONEAPI.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\QRINGMNG.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQCONFIGPLUGIN.DLL]  <(><1, 0, 0, 1>
    [E:\安装\QQ2005\QQPLUGIN.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\USERDEFINEDHEAD.DLL]  <(><1, 0, 0, 1>
    [E:\安装\QQ2005\QQGROUPMNG.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\GROUPLIVE.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQSPACE.DLL]  < ><1, 0, 0, 1>
    [E:\安装\QQ2005\MAILSUMMARY.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\HOSTINGMGR.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\CAMERADLL.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\NEWSKIN.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\CQQAPPLICATION.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQMAINFRAME.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQRES.DLL]  <tencent><1, 0, 0, 1>
    [E:\安装\QQ2005\LOGINCTRL.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\NPKCNTC.DLL]  <INCA Internet Co., Ltd.><2006, 3, 2, 1>
    [E:\安装\QQ2005\NPKPDB.DLL]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [E:\安装\QQ2005\TIMPROXY.DLL]  <tencent><0, 3, 2, 4>
    [E:\安装\QQ2005\QQAPI.DLL]  <(><1, 0, 0, 1>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
[PID: 4294045729][E:\安装\QQ2005\QQ.EXE]  <TENCENT><0, 0, 0, 0>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [E:\安装\QQ2005\QQBASECLASSINDLL.DLL]  <,><1, 0, 0, 1>
    [E:\安装\QQ2005\QQHELPERDLL.DLL]  <$><1, 0, 0, 1>
    [E:\安装\QQ2005\BASICCTRLDLL.DLL]  <Tencent><5, 0, 200, 160>
    [C:\WINDOWS\SYSTEM\DCIMAN32.DLL]  <Intel(R) Corp., Microsoft Corp.><4.03.1998>
    [E:\安装\QQ2005\TIMPROXY.DLL]  <tencent><0, 3, 2, 4>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
[PID: 4294026745][E:\安装\QQ2005\TIMPLATFORM.EXE]  <tencent><0, 3, 1, 8>
    [C:\WINDOWS\SYSTEM\ATIMCRAA.DLL]  <ATI Technologies Inc.><4.13.4005>
    [C:\WINDOWS\SYSTEM\ATI2Q9AA.DLL]  <ATI Technologies Inc. ><4.13.6033>
    [C:\WINDOWS\SYSTEM\ATI3DRAA.DLL]  <ATI Technologies Inc.><4.13.8136>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
[PID: 4294262861][C:\WINDOWS\SYSTEM\DDHELP.EXE]  <Microsoft Corporation><4.08.01.0881>
    [E:\安装\TT\PERSONALDESKTOP.DLL]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 4>
    [E:\安装\TT\PLUGINS\TWEATHER\TWEATHER.DLL]  <$><1, 0, 0, 1>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSHOOK.DLL]  <北京三七二一科技有限公司><1, 0, 2, 7>
    [C:\PROGRAM FILES\3721\AUTOLIVE.DLL]  <$><1, 1, 4, 1026>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YALIVE.DLL]  <$><2, 0, 5, 1031>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
[PID: 4294193153][E:\安装\TT\TTRAVELER.EXE]  <腾讯公司><3.0.0.241>
    [C:\WINDOWS\DOWNLOADED PROGRAM FILES\CNSMIN.DLL]  <北京三七二一科技有限公司><1, 5, 3, 1>
    [C:\WINDOWS\SYSTEM\NETBIOS.DLL]  <N/A><N/A>
    [C:\PROGRAM FILES\YAHOO!\ASSISTANT\YHELPER.DLL]  <$><2, 0, 2, 1019>
    [C:\PROGRAM FILES\3721\HELPER.DLL]  <$><1, 1, 0, 1325>
    [C:\PROGRAM FILES\3721\CES\CMAIL.DLL]  <3721><1, 0, 1, 7>
[PID: 4278939321][E:\S\SRENG2\SRENG.EXE]  <Smallfrogs Studio><2.0.21.505>

==================================
文件关联
.TXT  OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [C:\WINDOWS\winhlp32.exe %1]
.INI  OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.INF  OK. [C:\WINDOWS\NOTEPAD.EXE %1]
.VBS  OK. [C:\WINDOWS\WScript.exe "%1" %*]
.JS  OK. [C:\WINDOWS\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

C:\WINDOWS\SYSTEM\NETBIOS.DLL

这是什么东东，我感觉有些可疑呢。

NETBIOS.DLL是NetBIOSAPI库的系统文件，应该没什么可疑的吧