2006-10-07,01:16:55

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\CTFMON.EXE>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Corporation]
    <KAVPersonal50><"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize>  [Kaspersky Lab]
    <SoundMan><SOUNDMAN.EXE>  [(Verified)Realtek Semiconductor Corp.]
    <ATIPTA><C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe>  [ATI Technologies, Inc.]
    <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [(Verified)Microsoft Corporation]
    <!ewido><"C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized>  [Anti-Malware Development a.s.]
    <R><C:\WINDOWS\system32\rundll32.exe radm.dll s>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <9><C:\WINDOWS\system32\vpcrm.exe>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{57B86673-276A-48B2-BAE7-C6DBB3020EB8}><C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll>  [Anti-Malware Development a.s.]

==================================
启动文件夹
N/A

==================================
服务
[Ati HotKey Poller / Ati HotKey Poller]
  <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart]
  <C:\WINDOWS\system32\ati2sgag.exe><>
[ewido anti-spyware 4.0 guard / ewido anti-spyware 4.0 guard]
  <C:\Program Files\ewido anti-spyware 4.0\guard.exe><Anti-Malware Development a.s.>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[kavsvc / kavsvc]
  <"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe"><Kaspersky Lab>

==================================
驱动程序
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[AMD Processor Driver / AmdK8]
  <system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
[ati2mtag / ati2mtag]
  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[ewido anti-spyware 4.0 driver / ewido anti-spyware 4.0 driver]
  <\??\C:\Program Files\ewido anti-spyware 4.0\guard.sys><N/A>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS]
  <system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB]
  <system32\DRIVERS\fetnd5b.sys><VIA Technologies, Inc.>
[GMSIPCI / GMSIPCI]
  <\??\H:\INSTALL\GMSIPCI.SYS><N/A>
[ids00026 / ids00026]
  <\??\C:\Documents and Settings\All Users\Application Data\Kaspersky Anti-Virus Personal\5.0\bases\ids00026.sys><N/A>
[ids00118 / ids00118]
  <\??\C:\Documents and Settings\All Users\Application Data\Kaspersky Anti-Virus Personal\5.0\bases\ids00118.sys><Kaspersky Lab>
[Klick / Klick]
  <\SystemRoot\System32\drivers\klick.sys><Kaspersky Lab>
[Klif / Klif]
  <System32\drivers\klif.sys><Kaspersky Labs>
[Klin / Klin]
  <\SystemRoot\System32\drivers\klin.sys><Kaspersky Lab>
[Klmc / Klmc]
  <System32\drivers\klmc.sys><Kaspersky Lab>
[klstm / klstm]
  <\??\C:\Documents and Settings\All Users\Application Data\Kaspersky Anti-Virus Personal\5.0\bases\klstm.sys><Kaspersky Lab>
[MSICPL / MSICPL]
  <\??\H:\install4\MSICPL.sys><N/A>
[NTACCESS / NTACCESS]
  <\??\H:\NTACCESS.sys><N/A>
[Direct Parallel Link Driver / Ptilink]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Secdrv / Secdrv]
  <system32\DRIVERS\secdrv.sys><N/A>
[SetupNTGLM7X / SetupNTGLM7X]
  <\??\H:\NTGLM7X.sys><N/A>

==================================
浏览器加载项
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[Office Update Installation Engine]
  {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} <C:\WINDOWS\opuc.dll, Microsoft Corporation>
[Office Update Installation Engine]
  {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} <C:\WINDOWS\opuc.dll, Microsoft Corporation>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\macromed\flash\flash.ocx, Macromedia, Inc.>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>

==================================

==================================
正在运行的进程
[PID: 600][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 664][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 688][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4116]
[PID: 732][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 744][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 900][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4116]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2497]
[PID: 912][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1008][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1104][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1144][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1312][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1496][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1648][C:\Program Files\ewido anti-spyware 4.0\guard.exe]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\ewido anti-spyware 4.0\engine.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
[PID: 1668][C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\FSSync.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\pr_remote.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\ipc.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\CCIFACE.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\rpt.dll]  [Kaspersky Lab, 5.0.227.2]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\prloader.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\prkernel.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\startups.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\prstring.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\l_llio.ppl]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\avp_iont.dll]  [Kaspersky Lab, 5.0.0.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\wdiskio.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\avp1.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\avpgs.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\cab.ppl]  [Kaspersky Lab, 5.0.237.16]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\dtreg.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\ichk2.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\ichstrms.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\klonacci.ppl]  [Kaspersky Lab, 5.0.227.198]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\winreg.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\mailmsg.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\mchk.ppl]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kltrace.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\klcp.dll]  [Kaspersky Lab, 5.0.227.1]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\mdb.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\memmodsc.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\memscan.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\msoe.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\nfio.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\ntfsstrm.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\qio.ppl]  [Kaspersky Lab, 5.0.0.16]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\rar.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\sfdb.ppl]  [Kaspersky Lab, 5.0.227.0]
    [c:\program files\kaspersky lab\kaspersky anti-virus personal\tempfile.ppl]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\wcswmi.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\KLOnAcc.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\CCClientDll.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\scrch_ag.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\KLCKAH.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\CKAHUM.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\CKAHComm.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\mcproxy.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\mailapplayer.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\MchkBL.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\SubjPlugin.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Documents and Settings\All Users\Application Data\Kaspersky Anti-Virus Personal\5.0\bases\avcmhk4.dll]  [Kaspersky Lab, 1, 0, 0, 3]
[PID: 232][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1084][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4116]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2497]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]

[PID: 1368][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [d:\WinRAR\rarext.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\shellex.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\ewido anti-spyware 4.0\context.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [D:\QQ\wz041.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\avpscrch.dll]  [Kaspersky Lab, 1.0.227.342]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\concl.dll]  [Kaspersky Lab, 1.0.227.3]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\FSSync.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\ipc.dll]  [Kaspersky Lab, 5.0.227.0]
[PID: 940][C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\FSSync.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\ipc.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\GuiDlgs.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\COMMON.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\CCIFACE.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\rpt.dll]  [Kaspersky Lab, 5.0.227.2]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\KAVMainWnd.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\COLOC.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\GULOC.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\MALOC.dll]  [Kaspersky Lab, 5.0.227.1]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\AVLOC.dll]  [Kaspersky Lab, 5.0.227.1]
    [D:\QQ\wz041.dll]  [N/A, N/A]
[PID: 780][C:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 5.1.0.38]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]
[PID: 1048][C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe]  [ATI Technologies, Inc., 6.14.10.5142]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [C:\Program Files\ATI Technologies\ATI Control Panel\atipdsxx.dll]  [ATI Technologies, Inc., 6.14.10.5142]
    [C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATRPUIXX.CHS]  [ATI Technologies, Inc., 6.14.10.5142]
    [C:\Program Files\ATI Technologies\ATI Control Panel\atipdxxx.dll]  [ATI Technologies, Inc., 6.14.10.5142]
    [D:\QQ\wz041.dll]  [N/A, N/A]
[PID: 1256][C:\Program Files\ewido anti-spyware 4.0\ewido.exe]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\Program Files\ewido anti-spyware 4.0\engine.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]
[PID: 884][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]
[PID: 3180][D:\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [D:\QQ\CoralAssist.DLL]  [Coral Team, 4.5.0 build 20060515]
    [D:\QQ\CoralQQ.DLL]  [Coral Team, 4.5.3 Build 20060915]
    [D:\QQ\ipsearcher.dll]  [N/A, 1.0.0.4]
    [D:\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [D:\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]
    [D:\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [D:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [D:\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [D:\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [D:\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [D:\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [D:\QQ\WizardCtrl.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQMainFrame.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\macromed\flash\flash.ocx]  [Macromedia, Inc., 6,0,79,0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\avpscrch.dll]  [Kaspersky Lab, 1.0.227.342]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\concl.dll]  [Kaspersky Lab, 1.0.227.3]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\FSSync.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\ipc.dll]  [Kaspersky Lab, 5.0.227.0]
    [D:\QQ\CQQApplication.dll]  [N/A, N/A]
    [D:\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [D:\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [D:\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [D:\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [D:\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [D:\QQ\GroupLive.dll]  [N/A, N/A]
    [D:\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQPlugin.dll]  [N/A, N/A]
    [D:\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [D:\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [D:\QQ\QQAvatar.dll]  [N/A, N/A]
    [D:\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [D:\QQ\QQAllInOne.dll]  [N/A, N/A]
    [D:\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [D:\QQ\QQCustomFace.dll]  [N/A, N/A]
    [D:\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [D:\QQ\QRingMng.dll]  [N/A, N/A]
    [D:\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [D:\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [D:\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [D:\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [D:\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQSceneMng.dll]  [N/A, N/A]
    [D:\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [D:\QQ\BQQApplication.dll]  [N/A, N/A]
    [D:\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
    [D:\QQ\QQZip.dll]  [tencent, 0, 3, 2, 4]
    [C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll]  [Anti-Malware Development a.s., 4, 0, 0, 172]
    [D:\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [D:\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [D:\QQ\QQSettingCtrl.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQMagicFace.dll]  [, 1, 0, 0, 1]
    [D:\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 0, 6, 60]
[PID: 3292][D:\QQ\TIMPlatfrom.exe]  [tencent, 0, 3, 1, 8]
    [D:\QQ\wz041.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 1332][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\QQ\wz041.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\avpscrch.dll]  [Kaspersky Lab, 1.0.227.342]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\concl.dll]  [Kaspersky Lab, 1.0.227.3]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\FSSync.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\ipc.dll]  [Kaspersky Lab, 5.0.227.0]
    [C:\WINDOWS\system32\macromed\flash\flash.ocx]  [Macromedia, Inc., 6,0,79,0]
[PID: 3680][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]
[PID: 2416][G:\暂时\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\system32\radm.dll]  [N/A, N/A]
    [D:\QQ\wz041.dll]  [N/A, N/A]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost
219.139.58.97  www.hao123.com
219.139.58.97  hao123.com
219.139.58.97  www.7b.com.cn
219.139.58.97  7b.com.cn
219.139.58.97  www.7939.com
219.139.58.97  7939.com
219.139.58.97  www.maohehe.com
219.139.58.97  maohehe.com
219.139.58.97  www.sina-baidu.com
219.139.58.97  sina-baidu.com
219.139.58.97  www.maipao.com
219.139.58.97  maipao.com
219.139.58.97  update.virussky.com
219.139.58.97  down.virussky.com
219.139.58.97  www.ycdy.com
219.139.58.97  ycdy.com
219.139.58.97  www.2tu.cn
219.139.58.97  2tu.cn
219.139.58.97  www.91tu.cn
219.139.58.97  91tu.cn
219.139.58.97  www.haotop.com
219.139.58.97  news01.virussky.com
219.139.58.97  news02.virussky.com
219.139.58.97  news03.virussky.com
219.139.58.97  news04.virussky.com
219.139.58.97  www.an85.com
219.139.58.97  an85.com
219.139.58.97  www.360safe.com
219.139.58.97  360safe.com
219.139.58.97  dl.360safe.com
219.139.58.97  bbs.360safe.com
219.139.58.97  www.gao58.com
219.139.58.97  count18.51yes.com
219.139.58.97  www.ok538.com
219.139.58.97  www.3000sss.com
219.139.58.97  3000sss.com
219.139.58.97  www.qq658.com
219.139.58.97  www.53679.com
219.139.58.97  www.17587.net
219.139.58.97  www.17587.com
219.139.58.97  www.an188.com
219.139.58.97  cwzwxm.3322.org
219.139.58.97  www.onediy.net
219.139.58.97  sohu.fswan.com
219.139.58.97  www.hewdq.com
219.139.58.97  go.ipcenter.cn
219.139.58.97  www.32666.com
219.139.58.97  show.googleadsenseagent.com
219.139.58.97  www.2yin.cn
219.139.58.97  2yin.cn
219.139.58.97  www.84442.com
219.139.58.97  www.898333.com
219.139.58.97  hewdq.com
219.139.58.97  84442.com
219.139.58.97  ip.j8lm.com
219.139.58.97  www.j8lm.com
219.139.58.97  wwww.systeel.com.cn
219.139.58.97  go.baibaoxiang.cn
219.139.58.97  www.btbaicai.com
219.139.58.97  btbaicai.com
219.139.58.97  www.2t2t.cn
219.139.58.97  2t2t.cn

==================================

终于粘贴完了,好累啊
熬不住了
两眼皮只打架啊
大虾们快来帮帮忙啊