我用的是ibm的本本，昨天突然中毒，用木马克星，木马杀客还有norton都杀了一遍，仍然有网页不断弹出，并且有时是在ie中弹出，有时则是在遨游里面，并且ie有个宏搜的流氓软件完全去不掉，郁闷阿。
请看看我的日志，指点一下吧

2006-09-08,13:20:06

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <MSMSGS><; "C:\Program Files\Messenger\msmsgs.exe" /background>  [Microsoft Corporation]
    <Super Rabbit IEPro><C:\其他文件\工具\其他\MagicSet-v7.8\SRIECLI.EXE /LOAD>  [Super Rabbit Soft]
    <ibmmessages><C:\Program Files\IBM\Messages By IBM\ibmmessages.exe>  [IBM]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <{78F05D01-06C1-2052-0715-051222200056}><"C:\Program Files\Common Files\{78F05D01-06C1-2052-0715-051222200056}\Update.exe" mc-110-12-0000603>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
    <run><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe>  [Intel Corporation]
    <TPKMAPHELPER><C:\Program Files\ThinkPad\Utilities\TpKmapAp.exe -helper>  [IBM Corp.]
    <TpShocks><TpShocks.exe>  [IBM Corp.]
    <TPHOTKEY><C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe>  []
    <TP4EX><tp4ex.exe>  [IBM Corporation]
    <EZEJMNAP><C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe>  [IBM Corp.]
    <SynTPLpr><C:\Program Files\Synaptics\SynTP\SynTPLpr.exe>  [Synaptics, Inc.]
    <SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe>  [Synaptics, Inc.]
    <SoundMAXPnP><C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe>  [Analog Devices, Inc.]
    <SoundMAX><C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray>  [Analog Devices, Inc.]
    <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe">  [Symantec Corporation]
    <ibmmessages><C:\Program Files\IBM\Messages By IBM\\ibmmessages.exe>  [IBM]
    <IBMPRC><C:\IBMTOOLS\UTILS\ibmprc.exe>  [IBM Corp.]
    <QCTRAY><C:\Program Files\ThinkPad\ConnectUtilities\QCTRAY.EXE>  [IBM Corp.]
    <QCWLICON><C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE>  [IBM Corp.]
    <PWRMGRTR><rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor>  [IBM Corp.]
    <BLOG><rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog>  []
    <IMEKRMIG6.1><; C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE>  [Microsoft Corporation]
    <MSPY2002><C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC>  []
    <Symantec NetDriver Monitor><C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer>  [Symantec Corporation]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [RealNetworks, Inc.]
    <Super Rabbit Shutdown><C:\其他文件\工具\其他\MagicSet-v7.8\srshut.EXE /LOAD>  [Super Rabbit Soft]
    <WebThunder><; C:\zzProgram Files\Thunder Network\WebThunder\WebThunder.exe>  [深圳市迅雷网络技术有限公司]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\QConGina]
    <WinlogonNotify: QConGina><QConGina.dll>  [IBM Corp.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Syncmgr]
    <WinlogonNotify: Syncmgr><C:\WINDOWS\system32\lvj8091ue.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tphotkey]
    <WinlogonNotify: tphotkey><tphklock.dll>  []
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\REBUSI~1.SCR>  []

==================================
启动文件夹
[Digital Line Detect]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Digital Line Detect.lnk><N>

==================================
服务
[Symantec Event Manager / ccEvtMgr]
  <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Password Validation / ccPwdSvc]
  <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr]
  <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[EvtEng / EvtEng]
  <C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>
[IBM Rapid Restore Ultra Service / IBM Rapid Restore Ultra Service]
  <"C:\Program Files\IBM\IBM Rapid Restore Ultra\rrpcsb.exe"><>
[IBM PM Service / IBMPMSVC]
  <C:\WINDOWS\system32\ibmpmsvc.exe><N/A>
[InstallDriver Table Manager / IDriverT]
  <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Norton AntiVirus Auto-Protect Service / navapsvc]
  <"C:\Program Files\Norton AntiVirus\navapsvc.exe"><Symantec Corporation>
[Norton AntiVirus Firewall Monitor Service / NPFMntor]
  <"C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe"><Symantec Corporation>
[IBM PSA Access Driver Control / PsaSrv]
  <><N/A>
[QCONSVC / QCONSVC]
  <System32\QCONSVC.EXE><IBM Corp.>
[RegSrvc / RegSrvc]
  <C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>
[Spectrum24 Event Monitor / S24EventMonitor]
  <C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>
[SAVScan / SAVScan]
  <"C:\Program Files\Norton AntiVirus\SAVScan.exe"><Symantec Corporation>
[ScriptBlocking Service / SBService]
  <C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe><Symantec Corporation>
[Symantec Network Drivers Service / SNDSrvc]
  <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[SoundMAX Agent Service / SoundMAX Agent Service (default)]
  <C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe><Analog Devices, Inc.>
[Symantec SPBBCSvc / SPBBCSvc]
  <"C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe"><Symantec Corporation>
[IBM HDD APS Logging Service / TPHDEXLGSVC]
  <System32\TPHDEXLG.EXE><IBM Corporation>
[IBM KCU Service / TpKmpSVC]
  <C:\WINDOWS\system32\TpKmpSVC.exe><N/A>

==================================
浏览器加载项
[eToolbox]
  {3DB3AF94-EC14-42C8-B6D6-6336A61C0D07} <C:\Program Files\eToolbox\eToolbox.dll, ChenrsSoft>
[eToolbox(水平)]
  {3DB3AF95-EC14-42C8-B6D6-6336A61C0D07} <C:\Program Files\eToolbox\eToolbox.dll, ChenrsSoft>
[宏网超级搜霸]
  {A790098E-DA46-472A-B77B-683882F78C0D} <C:\WINDOWS\system32\ZGHWIEBAR.dll, 中国宏网>
[ToolBar888]
  {CBCC61FA-0221-4ccc-B409-CEE865CACA3A} <C:\Program Files\ToolBar888\MyToolBar.dll, N/A>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\其他文件\工具\其他\MagicSet-v7.8\haokanbar.dll, N/A>
[Java Plug-in 1.4.2]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\IBM\Java142\jre\bin\NPJPI142.dll, IBM.>
[Java Plug-in 1.4.2]
  {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} <C:\Program Files\IBM\Java142\jre\bin\NPJPI142.dll, IBM.>
[Norton AntiVirus]
  {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} <C:\Program Files\Norton AntiVirus\NavShExt.dll, Symantec Corporation>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\其他文件\工具\其他\MagicSet-v7.8\haokanbar.dll, N/A>
[超级兔子上网精灵]
  {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\其他文件\工具\其他\MagicSet-v7.8\haokanbar.dll, N/A>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[宏网超级搜霸]
  {A790098E-DA46-472A-B77B-683882F78C0D} <C:\WINDOWS\system32\ZGHWIEBAR.dll, 中国宏网>
[DeskbarBHO]
  {A8B28872-3324-4CD2-8AA3-7D555C872D96} <C:\Program Files\Deskbar\deskbar.dll, Deskbar>
[XBTP03129 Class]
  {B07D1F6B-6B8C-4904-8EE8-5E5A2B4624B3} <C:\PROGRA~1\MICRSO~1\SEARCH~1.DLL, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[CNavExtBho Class]
  {BDF3E430-B101-42AD-A544-FADC6B084872} <C:\Program Files\Norton AntiVirus\NavShExt.dll, Symantec Corporation>
[isObject Class]
  {BE0B5843-553A-48C2-9A42-258A1D791AFC} <C:\PROGRA~1\pcast\hbcast.dll, N/A>
[Internet Explorer helper Objects]
  {C277FAA4-F103-42AE-82FD-F4A1AB015F2A} <C:\WINDOWS\system32\MSIEHelp.dll, Microsoft Corporation. All rights reserved.>
[Sun Java2]
  {C61A70F3-505E-4B90-916F-627A8706B4BC} <c:\WINDOWS\system32\COMBoHEvent.dll, N/A>
[ToolBar888]
  {CBCC61FA-0221-4CCC-B409-CEE865CACA3A} <C:\Program Files\ToolBar888\MyToolBar.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\zzprogram files\YHGameCenter\Flash.ocx, Macromedia, Inc.>
[Google 搜索(&G)]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[使用Web迅雷下载]
  <C:\zzProgram Files\Thunder Network\WebThunder\GetUrl.htm, N/A>
[使用网际快车下载]
  <C:\zzprogram files\FlashGet\jc_link.htm, N/A>

==================================
正在运行的进程
[PID: 1188][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\isput.dll]  <N/A><N/A>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL]  <IBM Corp.><1, 0, 0, 0>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\US\PWRMGRRT.DLL]  <N/A><N/A>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRIF.DLL]  <N/A><N/A>
    [C:\WINDOWS\system32\Sensor.dll]  <IBM Corporation><1.30.1.0>
    [C:\WINDOWS\system32\OEMDSPIF.DLL]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [C:\Program Files\Norton AntiVirus\NavShExt.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  <Symantec Corporation><103.0.4.3>
    [C:\Program Files\eToolbox\eToolbox.dll]  <ChenrsSoft><1, 2, 0, 0>
[PID: 3820][C:\WINDOWS\system32\hkcmd.exe]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxhk.dll]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.4317>
[PID: 3840][C:\WINDOWS\system32\rundll32.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\guard.tmp]  <N/A><N/A>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 3944][C:\WINDOWS\system32\TpShocks.exe]  <IBM Corp.><1, 3, 2, 0>
    [C:\Program Files\ThinkPad\TpShocks\MUI\0804\TpShocks.dll]  <IBM Corp.><1, 3, 2, 0>
    [C:\WINDOWS\system32\Sensor.dll]  <IBM Corporation><1.30.1.0>
[PID: 3960][C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\TPHKMGR.exe]  <N/A><N/A>
    [C:\Program Files\ThinkPad\PkgMgr\HOTKEY_2\tphk_2k.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\Oemdspif.dll]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.4317>
    [C:\PROGRA~1\ThinkPad\PkgMgr\HOTKEY\tpfnf7.dll]  <N/A><N/A>
[PID: 3968][C:\Program Files\ThinkPad\PkgMgr\HOTKEY\TPONSCR.exe]  <N/A><N/A>
[PID: 4008][C:\Program Files\ThinkPad\PkgMgr\HOTKEY_1\TpScrex.exe]  <IBM Corporation><1.14>
[PID: 4048][C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe]  <IBM Corp.><1, 0, 0, 0>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\US\EzMApRes.dll]  <N/A><N/A>
[PID: 568][C:\Program Files\Synaptics\SynTP\SynTPLpr.exe]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 692][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\WINDOWS\system32\SynCOM.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\WINDOWS\system32\SynTPAPI.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 1172][C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe]  <Analog Devices, Inc.><5, 0, 2, 2>
    [C:\Program Files\Analog Devices\SoundMAX\SMWDMIF.dll]  <Analog Devices, Inc.><5, 0, 2, 008>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 1512][C:\Program Files\IBM\Messages By IBM\ibmmessages.exe]  <IBM><2.101>
    [C:\WINDOWS\system32\AIBMRUNL.dll]  <N/A><N/A>
    [C:\Program Files\IBM\Messages By IBM\AcpPollingEngine.dll]  <><1, 0, 0, 4>
    [C:\WINDOWS\system32\IbmEgath.dll]  <IBM Corporation><3, 0, 0, 18>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 1556][C:\IBMTOOLS\UTILS\ibmprc.exe]  <IBM Corp.><1, 0, 0, 3>
[PID: 2084][C:\Program Files\ThinkPad\ConnectUtilities\QCTRAY.EXE]  <IBM Corp.><3, 7, 1, 0>
    [C:\Program Files\ThinkPad\ConnectUtilities\QCON.dll]  <IBM Corp.><3, 7, 1, 0>
    [C:\Program Files\ThinkPad\ConnectUtilities\MerlinC201.dll]  <Novatel Wireless Inc.><1, 0, 0, 1>
    [C:\Program Files\ThinkPad\ConnectUtilities\Res\SC\TrayRes.dll]  <N/A><N/A>
    [C:\Program Files\ThinkPad\ConnectUtilities\QCMurPI.DLL]  <IBM Corp.><3, 7, 1, 0>
    [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\C8021CHS.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\MurocAPI.dll]  <Intel Corporation><9, 0, 1, 59>
    [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\Program Files\Intel\Wireless\Bin\D8021Xps.DLL]  <N/A><N/A>
    [C:\Program Files\ThinkPad\ConnectUtilities\ANCA.dll]  <IBM Corp.><8.3>
    [C:\Program Files\ThinkPad\ConnectUtilities\ANC.dll]  <IBM Corp.><8.3>
[PID: 2116][C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE]  <IBM Corp.><3, 7, 1, 0>
    [C:\Program Files\ThinkPad\ConnectUtilities\QCON.dll]  <IBM Corp.><3, 7, 1, 0>
    [C:\Program Files\ThinkPad\ConnectUtilities\MerlinC201.dll]  <Novatel Wireless Inc.><1, 0, 0, 1>

[C:\Program Files\ThinkPad\ConnectUtilities\QCMurPI.DLL]  <IBM Corp.><3, 7, 1, 0>
    [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\C8021CHS.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\MurocAPI.dll]  <Intel Corporation><9, 0, 1, 59>
    [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\Program Files\ThinkPad\ConnectUtilities\Res\SC\IconRes.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 2128][C:\WINDOWS\system32\rundll32.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL]  <IBM Corp.><1, 0, 0, 0>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\US\PWRMGRRT.DLL]  <N/A><N/A>
    [C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRIF.DLL]  <N/A><N/A>
    [C:\WINDOWS\system32\Sensor.dll]  <IBM Corporation><1.30.1.0>
    [C:\WINDOWS\system32\OEMDSPIF.DLL]  <Intel Corporation><3.0.0.4317>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.4317>
[PID: 2276][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  <RealNetworks, Inc.><0.1.0.3018>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 840][C:\其他文件\工具\其他\MagicSet-v7.8\srshut.EXE]  <Super Rabbit Soft><3.90>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 2824][C:\Program Files\Common Files\{78F05D01-06C1-2052-0715-051222200056}\Update.exe]  <N/A><N/A>
[PID: 2860][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 3300][C:\其他文件\工具\其他\MagicSet-v7.8\SRIECLI.EXE]  <Super Rabbit Soft><7.80>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\其他文件\工具\其他\MAGICS~1.8\shlobj71.ocx]  <Sky Software (http://www.ssware.com)><7, 1, 0, 0>
[PID: 3636][C:\Program Files\Digital Line Detect\DLG.exe]  <BVRP Software><1, 0, 0, 1>
    [C:\Program Files\Digital Line Detect\BVRPDIAG.dll]  <BVRP Software><1.0>
    [C:\WINDOWS\system32\MdmXSdk.dll]  <Conexant><1.0.2.006>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 940][C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe]  <Intel><9, 0, 1, 83>
    [C:\PROGRA~1\Intel\Wireless\Bin\IntelAE5.dll]  <Meetinghouse Data Communications><3, 0, 0, 44>
    [C:\PROGRA~1\Intel\Wireless\Bin\TraceAPI.DLL]  <Intel Corporation><9, 0, 1, 83>
    [C:\PROGRA~1\Intel\Wireless\Bin\PsRegApi.dll]  <Intel Corporation><9, 0, 1, 83>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\Program Files\Intel\Wireless\Bin\D8021Xps.DLL]  <N/A><N/A>
[PID: 2796][C:\zzprogram files\BitComet\BitComet.exe]  <www.BitComet.com><0.70>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\scrauth.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\ScrBlock.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  <Symantec Corporation><103.0.4.3>
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  <Symantec Corporation><103.0.4.3>
[PID: 2892][C:\Program Files\Internet Explorer\iexplore.exe]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\WINDOWS\system32\ZGHWIEBAR.dll]  <中国宏网><1.0.0.0>
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\scrauth.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\ScrBlock.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  <Symantec Corporation><103.0.4.3>
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  <Symantec Corporation><103.0.4.3>
    [C:\zzprogram files\YHGameCenter\Flash.ocx]  <Macromedia, Inc.><7,0,19,0>
[PID: 1324][C:\zzProgram Files\Thunder Network\WebThunder\WebThunder.exe]  <深圳市迅雷网络技术有限公司><1, 2, 3, 52>
    [C:\zzProgram Files\Thunder Network\WebThunder\taskmanage.dll]  <Thunder Networking Technologies,LTD><1, 1, 0, 45>
    [C:\zzProgram Files\Thunder Network\WebThunder\download_interface.dll]  <Thunder Networking Technologies,LTD><1, 0, 4, 71>
    [C:\zzProgram Files\Thunder Network\WebThunder\asyn_dns.dll]  <N/A><N/A>
    [C:\zzProgram Files\Thunder Network\WebThunder\RegisterDll.dll]  <Thunder Networking Technologies,LTD><2, 1, 0, 24>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
    [C:\zzProgram Files\Thunder Network\WebThunder\historyinfo_manage.dll]  <Thunder Networking Technologies,LTD><5, 2, 0, 150>
    [C:\zzProgram Files\Thunder Network\WebThunder\UpdateDownload.dll]  <Thunder Networking Technologies,LTD><1, 0, 1, 8>
    [C:\zzProgram Files\Thunder Network\WebThunder\UpdateExec.dll]  <Thunder Networking Technologies,LTD><1, 0, 1, 5>
    [C:\zzProgram Files\Thunder Network\WebThunder\iEmbedShell.dll]  <　><1, 0, 0, 10>
    [C:\zzProgram Files\Thunder Network\WebThunder\iEmbed03.dll]  <　><2, 2, 1, 33>
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\scrauth.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\Script Blocking\ScrBlock.dll]  <Symantec Corporation><11.0.9.16>
    [C:\Program Files\Common Files\Symantec Shared\ccL30.dll]  <Symantec Corporation><103.0.4.3>
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  <Symantec Corporation><103.0.4.3>
    [C:\zzprogram files\YHGameCenter\Flash.ocx]  <Macromedia, Inc.><7,0,19,0>
[PID: 4000][C:\WINDOWS\system32\taskmgr.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 852][C:\其他文件\工具\其他\MagicSet-v7.8\iepro.exe]  <Super Rabbit Soft><7.80>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>
[PID: 3096][C:\其他文件\工具\杀毒\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [C:\WINDOWS\system32\SynTPFcs.dll]  <Synaptics, Inc.><7.5.17.13 08Nov04>

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

下载超级兔子,专业卸载。
http://www.pctutu.com/news.asp?id=92
安装好后，打开“winspeed”“专业卸载,卸载所有提示的垃圾软件，卸载是不要打开任何浏览窗口。卸载不了可以重启后再去卸载。

卸载完后
请到www.27814939.ys168.com,点“我的软件”下载KillBox.exe
重新启动电脑, 开机检测完后, 按[F8]键(可以一直按到启动菜单出来为止), 选择安全模式进入Windows
双击打开KillBox.exe，分别删除
c:\WINDOWS\system32\COMBoHEvent.dll
C:\WINDOWS\system32\isput.dll
C:\WINDOWS\system32\guard.tmp
（删除时勾选“删除前先结束Explorer.EXE进程”不行再试着勾选"删除DLL文件前反注册此文件"
给菜鸟的东东—KillBox的使用技巧
http://forum.ikaka.com/topic.asp?board=28&artid=8160799

关闭所有浏览窗口以及一些不必要的程序
打开System Repair Engineer（也就是你的扫描日志软件SREng.exe），使用“系统修复，浏览器加载项”来删除以下选项
c:\WINDOWS\system32\COMBoHEvent.dll
完后重启，再扫个日志粘上来。