2006-09-30,09:56:55

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional  (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe>  [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <CnsMHlp.exe><C:\WINDOWS\Downloaded Program files\CnsMHlp.exe>  [3721.com]
    <vmailmon><d:\Vrv\Client\Vrvmail.exe>  []
    <vrvnet><d:\Vrv\Client\vrvnet.exe>  []
    <xysecond><d:\Vrv\Client\vrvmon.exe>  [BeiXinYuan]
    <YLive.exe><C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe>  [Yahoo! China]
    <yassistse><"C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe">  [Yahoo! China]
    <木马专家><d:\Program Files\木马专家 2006\mmzj.exe>  [Beyond 工作室]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\System32\userinit.exe,>  [Microsoft Corporation]
    <UIHost><logonui.exe>  [Microsoft Corporation]

==================================
启动文件夹
[Adobe Gamma Loader]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk><N>
[IE-Bar]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\IE-Bar.lnk><N>
[Microsoft Office]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk><N>
[Utility Tray]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Utility Tray.lnk><N>
[行动管理员 32]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\行动管理员 32.lnk><N>
[腾讯QQ]
  <C:\Documents and Settings\liuyan\「开始」菜单\程序\启动\腾讯QQ.lnk><N>

==================================
服务
[C-DillaCdaC11BA / C-DillaCdaC11BA]
  <C:\WINDOWS\System32\drivers\CDAC11BA.EXE><Macrovision>
[IMAPI CD-Burning COM Service / ImapiService]
  <C:\WINDOWS\System32\imapi.exe><Microsoft Corporation>
[Intranet Messenger / Mercha2]
  <C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL,Export 1087><N/A>

==================================
浏览器加载项
[超级兔子上网精灵]
  {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <d:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
  {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <d:\Program Files\Tencent\QQ\QQIEHelper.dll, N/A>
[电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <D:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, N/A>
[雅虎助手]
  {406F94F0-504F-4A40-8DFD-58B0666ABEBD} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll, yahoo! china>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll, Xiang Feng Technology>
[KSHScan Control]
  {ACFE8232-03C5-4AEC-AF5E-42B806724096} <C:\WINDOWS\System32\kingsoft\ONLINE~1\KSHScan.ocx, kingsoft>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[上传到QQ网络硬盘]
  <D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用网际快车下载]
  <D:\PROGRA~1\FLASHGET\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <D:\PROGRA~1\FLASHGET\jc_all.htm, N/A>
[导出到 Microsoft Excel(&x)]
  <res://D:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <D:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <D:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================

==================================
正在运行的进程
[PID: 424][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 472][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 496][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 540][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 552][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 720][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 784][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 856][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 876][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 976][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.0 (XPClient.010817-1148)>
[PID: 1244][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2600.0000 (xpclient.010817-1148)>
    [C:\WINDOWS\System32\AcSignIcon.dll]  <Autodesk><16.0.0.86>
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  <Autodesk><16.0.0.86>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <yahoo! china><3, 4, 0, 1091>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  <Yahoo! China><3, 0, 1, 1010>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll]  <Yahoo! China><3, 0, 4, 1006>
    [d:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ywiper.dll]  <Yahoo! China><3, 0, 1, 1001>
    [d:\PROGRA~1\3721\ske\contmenu.dll]  <N/A><N/A>
[PID: 1524][D:\Vrv\Client\Vrvmail.exe]  <><2003-07-25>
    [D:\Vrv\Client\mimepp_core.dll]  <N/A><N/A>
    [C:\WINDOWS\VMailDog.dll]  <北信源><2003-04-29>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [D:\Vrv\Client\vrvcfg.dll]  <N/A><N/A>
    [D:\Vrv\Client\vrvguard.dll]  <N/A><N/A>
    [D:\Vrv\Client\UNARJ.dll]  <N/A><N/A>
    [D:\Vrv\Client\UNZIP.dll]  <N/A><N/A>
    [D:\Vrv\Client\vrvdll.dll]  <N/A><N/A>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1532][D:\Vrv\Client\vrvmon.exe]  <BeiXinYuan><1, 0, 0, 1>
    [D:\Vrv\Client\vrvmonsc.dll]  <BeiXinYuan><1, 0, 0, 1>
    [D:\Vrv\Client\vrvcfg.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [D:\Vrv\Client\vrvdll.dll]  <N/A><N/A>
    [D:\Vrv\Client\UNARJ.dll]  <N/A><N/A>
    [D:\Vrv\Client\UNZIP.dll]  <N/A><N/A>
    [D:\Vrv\Client\vrvguard.dll]  <N/A><N/A>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1540][C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe]  <Yahoo! China><3, 1, 2, 1018>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <yahoo! china><3, 4, 0, 1091>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  <Yahoo! China><3, 0, 1, 1010>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\ynotifier.dll]  <yahoo! china><3, 0, 0, 1000>
[PID: 1548][C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe]  <Yahoo! China><3, 0, 2, 1003>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yAsMenu.dll]  <Yahoo! China><3, 0, 0, 1001>
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yAssecblk.dll]  <Yahoo! China><3, 0, 3, 1005>
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yIEAngel.dll]  <Yahoo! China><3, 0, 1, 1001>
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yMenuInfo.dll]  <Yahoo! China><3, 0, 0, 1000>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1556][D:\Program Files\木马专家 2006\mmzj.exe]  <Beyond 工作室><2,0,0,5>
    [D:\Program Files\木马专家 2006\krnln.fnr]  <><1, 0, 0, 1>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [D:\Program Files\木马专家 2006\iext2.fne]  <><1, 0, 0, 1>
    [D:\Program Files\木马专家 2006\iext.fnr]  <><1, 0, 0, 1>
    [D:\Program Files\木马专家 2006\TrayIcon.fne]  <><1, 0, 0, 1>
    [D:\Program Files\木马专家 2006\EChartBar.fne]  <><1, 0, 0, 1>
    [D:\Program Files\木马专家 2006\ExtMenu.fne]  <><1, 0, 0, 1>
    [D:\Program Files\木马专家 2006\iext3.fne]  <><1, 0, 0, 1>

[C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
    [D:\Program Files\木马专家 2006\dp1.fne]  <N/A><N/A>
    [D:\Program Files\木马专家 2006\shell.fne]  <N/A><N/A>
    [D:\Program Files\木马专家 2006\xplib.fne]  <N/A><N/A>
    [D:\Program Files\木马专家 2006\eAPI.fne]  <><1, 0, 0, 1>
[PID: 1564][C:\WINDOWS\System32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1672][C:\WINDOWS\system32\sistray.exe]  <Silicon Integrated Systems Corporation><0.0.0.3700>
    [C:\WINDOWS\system32\SiSApCom.dll]  <Silicon Integrated Systems Corporation><0.0.0.3700>
    [C:\WINDOWS\system32\SiSBase.dll]  <Silicon Integrated Systems Corporation><6.14.10.3700>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1684][D:\PROGRA~1\FOUNDE~1\AM32.exe]  <N/A><2, 2, 0, 0>
    [D:\PROGRA~1\FOUNDE~1\Am32Res.dll]  <N/A><2, 1, 0, 0>
    [D:\PROGRA~1\FOUNDE~1\plkcom32.dll]  <><2, 1, 0, 0>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [D:\PROGRA~1\FOUNDE~1\SCANDRV.DLL]  <Plustek Inc.><3, 1, 8, 0>
    [d:\PROGRA~1\FOUNDE~1\SCNDRVU.DRV]  <><2, 1, 2, 7>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1692][D:\Program Files\Tencent\QQ\QQ.exe]  <TENCENT><0, 0, 0, 0>
    [D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QQHelperDll.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\BasicCtrlDll.dll]  <Tencent><5, 0, 200, 160>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [D:\Program Files\Tencent\QQ\QQAPI.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\LoginCtrl.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\npkcntc.dll]  <INCA Internet Co., Ltd.><2006, 3, 2, 1>
    [D:\Program Files\Tencent\QQ\npkpdb.dll]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\QQRes.dll]  <tencent><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QQMainFrame.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\CQQApplication.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\NewSkin.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\HostingMgr.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\CameraDll.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\MailSummary.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QQSpace.dll]  <><1, 0, 0, 1>
    [C:\WINDOWS\System32\msdmo.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\QQGroupMng.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\GroupLive.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\UserDefinedHead.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QQPlugin.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\QQAllInOne.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\SCCore.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\QQCustomFace.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\QQPet.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\QQConfigPlugin.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QRingMng.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\PhoneAPI.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\DialerAllinOne.dll]  <tencent><1, 4, 0, 0>
    [D:\Program Files\Tencent\QQ\LongConnection.dll]  <tencent><5, 0, 200, 160>
    [D:\Program Files\Tencent\QQ\QQAvatar.dll]  <N/A><N/A>

[D:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  <><1, 4, 0, 1>
    [C:\WINDOWS\System32\Macromed\Flash\Flash9.ocx]  <Adobe Systems, Inc.><9,0,16,0>
    [D:\Program Files\Tencent\QQ\QQMagicFace.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\QQSceneMng.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\GroupConnection.dll]  <Tencent><5, 0, 202, 170>
    [D:\Program Files\Tencent\QQ\BQQApplication.dll]  <N/A><N/A>
    [D:\Program Files\Tencent\QQ\CommercesMng.dll]  <><1, 0, 0, 1>
    [D:\Program Files\Tencent\QQ\PersonalDesktop.dll]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [D:\Program Files\Tencent\QQ\QQUdpGetFileLib.dll]  <tencent><0, 2, 2, 3>
    [D:\Program Files\Tencent\QQ\QQAddr.dll]  <深圳市腾讯计算机系统有限公司><5, 0, 101, 200>
    [D:\Program Files\Tencent\QQ\QQPhoneHelper.dll]  <腾讯科技（深圳）有限公司><2, 0, 6, 60>
    [D:\Program Files\Tencent\QQ\QQZip.dll]  <tencent><0, 3, 2, 4>
[PID: 1700][C:\WINDOWS\INTEL\RUNDLL32.EXE]  <N/A><N/A>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1748][C:\WINDOWS\System32\alg.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 1792][C:\WINDOWS\System32\drivers\CDAC11BA.EXE]  <Macrovision><4.20.020>
[PID: 1840][C:\WINDOWS\SYSTEM32\RUNDLL32.EXE]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 120][C:\WINDOWS\System32\rundll32.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
    [C:\DOCUME~1\liuyan\TEMPLA~1\258e2e3\1.dll]  <千橡互联><3, 0, 2, 0>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\DOCUME~1\liuyan\TEMPLA~1\258e2e3\3.dll]  <千橡互联><3, 0, 2, 8>
    [C:\DOCUME~1\liuyan\TEMPLA~1\258e2e3\4.dll]  <N/A><N/A>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 1088][C:\WINDOWS\System32\conime.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
[PID: 620][C:\WINDOWS\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)>
[PID: 804][D:\Program Files\3721\ske\TrojanAssistant.exe]  <Yahoo! CN><2.1.2.1003>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\WINDOWS\System32\AcSignIcon.dll]  <Autodesk><16.0.0.86>
    [D:\Program Files\3721\ske\fsk.dll]  <3721.com><2, 1, 2, 1030>
    [D:\Program Files\3721\ske\wmpns.dll]  <---><1, 1, 8, 1324>
    [C:\WINDOWS\System32\ztdll.dll]  <N/A><N/A>
    [D:\Program Files\3721\ske\snpmw.dll]  <---><1, 2, 1, 1335>
[PID: 1776][D:\Program Files\Adobe\Photoshop CS\Photoshop.exe]  <Adobe Systems, Incorporated><8.0.1 (8.0x125)>
    [D:\Program Files\Adobe\Photoshop CS\UID.mr.dll]  <Adobe Systems, Inc.><1, 1, 0, 0>
    [D:\Program Files\Adobe\Photoshop CS\AWSCommonUI.dll]  <Adobe Systems, Incorporated><3.0.0.432>
    [D:\Program Files\Adobe\Photoshop CS\AWSSCL.dll]  <Adobe Systems><4.0.0.34>
    [D:\Program Files\Adobe\Photoshop CS\WebAccessUtils.dll]  <Adobe Systems, Incorporated><3.0.0.432>
    [D:\Program Files\Adobe\Photoshop CS\BIBUtils.dll]  <Adobe Systems Incorporated><1.00.0>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [D:\Program Files\Adobe\Photoshop CS\Photoshop.dll]  <N/A><N/A>
    [D:\Program Files\Adobe\Photoshop CS\PSViews.dll]  <Adobe Systems, Incorporated><8.0.1 (8.0x125)>
    [D:\Program Files\Adobe\Photoshop CS\PSArt.dll]  <Adobe Systems, Incorporated><8.0.1 (8.0x125)>
    [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPBF432E.DLL]  <Hewlett-Packard Company><4.20.0.481>
    [C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPBF432G.DLL]  <Hewlett-Packard Company><4.20.0.481>
    [D:\Program Files\Adobe\Photoshop CS\asn.er.dll]  <Adobe Systems Incorporated><1.51x3, EndUser, Release>
    [D:\Program Files\Adobe\Photoshop CS\增效工具\扩展\FastCore.8BX]  <Adobe Systems, Incorporated><8.0.1 (8.0x126)>
    [D:\Program Files\Adobe\Photoshop CS\PLUGIN.dll]  <Adobe Systems, Incorporated><8.0.1 (8.0x125)>
    [D:\Program Files\Adobe\Photoshop CS\增效工具\扩展\MMXCore.8BX]  <Adobe Systems, Incorporated><8.0.1 (8.0x126)>
    [D:\Program Files\Adobe\Photoshop CS\Required\ADMPlugin.apl]  <Adobe Systems Incorporated><2.84pe69a 02.06.17-00:03:36h>
    [D:\Program Files\Adobe\Photoshop CS\Required\PNGIcons.apl]  <Adobe Systems Incorporated><1.21x7 2001.12.14-1602h.21s>
    [D:\Program Files\Adobe\Photoshop CS\Required\ASDataStream.apl]  <Adobe Systems Incorporated><1.02x7 02.02.15-01:45:06h>
    [D:\Program Files\Adobe\Photoshop CS\增效工具\解析程序\PDF 增效工具.8BI]  <Adobe Systems, Incorporated><8.0.1 (8.0x126)>
    [D:\Program Files\Adobe\Photoshop CS\BIB.dll]  <Adobe Systems Incorporated><1.1.16>
    [D:\Program Files\Adobe\Photoshop CS\JP2KLib.dll]  <Adobe systems Incorporated><1.0.28706>
    [D:\Program Files\Adobe\Photoshop CS\增效工具\文件格式\Camera Raw.8BI]  <Adobe Systems Incorporated><2.0>
    [D:\Program Files\Adobe\Photoshop CS\ACE.dll]  <Adobe Systems Incorporated><2.05.16>
    [D:\Program Files\Adobe\Photoshop CS\AGM.dll]  <Adobe Systems Incorporated><4.12.36>
    [D:\Program Files\Adobe\Photoshop CS\CoolType.dll]  <Adobe Systems Incorporated><4.14.20>
    [C:\WINDOWS\System32\ATMLIB.dll]  <Adobe Systems><5.1 Build 225>
    [D:\Program Files\Adobe\Photoshop CS\AWSCommonSymbols.dll]  <Adobe Systems, Incorporated><3.0.0.432>
    [D:\Program Files\Adobe\Photoshop CS\ARM.dll]  <Adobe Systems, Incorporated><3.0.0.432>
    [D:\Program Files\Adobe\Photoshop CS\FileInfo.dll]  <Adobe Systems, Incorporated><3.0.0.432>
    [D:\Program Files\Adobe\Photoshop CS\增效工具\Adobe Photoshop Only\自动\脚本支持.8li]  <Adobe Systems Incorporated><8.0>
    [D:\Program Files\Adobe\Photoshop CS\ExtendScriptIDE.dll]  <Adobe Systems, Incorporated><3.2.21>
    [D:\Program Files\Adobe\Photoshop CS\ExtendScript.dll]  <Adobe Systems, Incorporated><3.2.21>
    [D:\Program Files\Adobe\Photoshop CS\ScCore.dll]  <Adobe Systems, Incorporated><3.2.21>
    [D:\Program Files\Adobe\Photoshop CS\Tw10122.dat]  <Adobe Systems, Incorporated><8.0.1 (8.0x125)>
    [C:\WINDOWS\System32\JPWB.IME]  <常诚研制><4.00.950>
    [C:\WINDOWS\System32\AcSignIcon.dll]  <Autodesk><16.0.0.86>
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  <Autodesk><16.0.0.86>
[PID: 948][C:\Documents and Settings\All Users\Application Data\clubmember\Cast\GGS\d321559bf9\run.exe]  <N/A><N/A>
[PID: 1096][C:\Program Files\Internet Explorer\iexplore.exe]  <Microsoft Corporation><6.00.2600.0000 (xpclient.010817-1148)>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll]  <Yahoo! China><3, 0, 0, 1000>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll]  <yahoo! china><3, 4, 0, 1091>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]  <Yahoo! China><3, 0, 1, 1010>
    [C:\WINDOWS\System32\AcSignIcon.dll]  <Autodesk><16.0.0.86>
    [D:\Program Files\Super Rabbit\MagicSet\haokanbar.dll]  <Xiang Feng Technology><2, 2, 0, 1612>
    [C:\WINDOWS\System32\Macromed\Flash\Flash9.ocx]  <Adobe Systems, Inc.><9,0,16,0>
[PID: 744][G:\反间谍\扫描病毒日志\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]  <Yahoo! China><3, 0, 2, 1020>
    [C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll]  <Yahoo! China><3, 1, 1, 1017>

==================================
文件关联
.TXT  Error. [notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

请帮我看看吧,我在线等着

为什么都不帮我呢?

打开SREng 启动项目 服务WIN32 删除
[Intranet Messenger / Mercha2]
<C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL,Export 1087><N/A>

重启，安全模式下删除
C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL

木马专家卸掉，不要裸奔上网

谢谢