机子中病毒了，用瑞星杀了后，病毒到是没查到，主页被修改成了www.feixue.net  用了兔子和雅虎助手都没有办法修改，安全模式下也试过了，请高手帮忙看看，小弟在线等回复

[Main]
Program=超级兔子IE修复专家
Version=V7.85
WindowsVersion=Windows XP
IEVersion=6.0.2800.1106
WinDir=C:\WINDOWS\
WinSystemDir=C:\WINDOWS\System32\
USERPROFILE=C:\Documents and Settings\cs&ym
Admin=1
Detail=1
Date=2006-10-24
Time=20:32:37
Code=,
CDCode=,
Reg=0

[Soft]
1=3721网络实名
2=雅虎助手
Max=2

[IE]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Main
1_Name=Window Title
1_Value=Microsoft Internet Explorer
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Main
2_Name=Local Page
2_Value=
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Main
3_Name=Search Page
3_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\Main
4_Name=Start Page
4_Value=www.feixue.net
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\Main
5_Name=Default_page_url
5_Value=http://www.microsoft.com/windows/ie_intl/cn/start/
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\Main
6_Name=First Home Page
6_Value=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Internet Explorer\Main
7_Name=Search Page
7_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Internet Explorer\Main
8_Name=Start Page
8_Value=about:blank
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Internet Explorer\Main
9_Name=Default_page_url
9_Value=http://www.microsoft.com/windows/ie_intl/cn/start/
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Internet Explorer\Main
10_Name=First Home Page
10_Value=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Internet Explorer\Main
11_Name=Search Page
11_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
12_HKey=HKEY_LOCAL_MACHINE
12_Key=Software\Microsoft\Internet Explorer\Main
12_Name=Start Page
12_Value=about:blank
Max=12

[IE2]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
1_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
1_FileName=%SystemRoot%\System32\browseui.dll
1_FileSize=1021952
1_FileDate=2003-3-15 8:00:00
1_FileVersion=6.0.2800.1106
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
2_Name={0E5CBF21-D15F-11D0-8301-00AA005B4383}
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8194048
2_FileDate=2003-3-15 8:00:00
2_FileVersion=6.0.2800.1106
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
3_Name={BD328E49-38AB-42CB-8EEA-73AA4CD2A6FD}
3_FileName=
3_FileVersion=
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
4_Name={C004DEC2-2623-438E-9CA2-C9043AB28508}
4_FileName=
4_FileVersion=
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser
5_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
5_FileName=%SystemRoot%\System32\browseui.dll
5_FileSize=1021952
5_FileDate=2003-3-15 8:00:00
5_FileVersion=6.0.2800.1106
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Internet Explorer\Toolbar
6_Name={406F94F0-504F-4A40-8DFD-58B0666ABEBD}
6_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar0.dll
6_FileSize=327088
6_FileDate=2006-10-19 17:20:18
6_FileVersion=3.1.9.1070
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Internet Explorer\Toolbar
7_Name={8E718888-423F-11D2-876E-00A0C9082467}
7_FileName=C:\WINDOWS\System32\msdxm.ocx
7_FileSize=842268
7_FileDate=2003-3-15 8:00:00
7_FileVersion=6.4.9.1125
Max=7

[IE3]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\MenuExt\&使用迅雷下载
1_FileName=C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm
1_FileSize=2338
1_FileDate=2006-7-24 15:51:28
1_FileVersion=
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\MenuExt\&使用迅雷下载全部链接
2_FileName=C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm
2_FileSize=695
2_FileDate=2006-3-8 10:49:10
2_FileVersion=
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\MenuExt\添加到QQ表情
3_FileName=E:\Program Files\Tencent\QQ\AddEmotion.htm
3_FileSize=534
3_FileDate=2006-5-23 15:35:16
3_FileVersion=
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{507F9113-CD77-4866-BA92-0E86DA3D0B97}
4_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
4_ButtonText=Yahoo 3.5G电邮
4_MenuText=
4_FileName=
4_FileVersion=
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{59BC54A2-56B3-44a0-93E5-432D58746E26}
5_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
5_ButtonText=名品折扣
5_MenuText=
5_FileName=
5_FileVersion=
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{5D73EE86-05F1-49ed-B850-E423120EC338}
6_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
6_ButtonText=雅虎助手
6_MenuText=
6_FileName=
6_FileVersion=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{6354ABE6-05F1-49ed-B850-E423120EC338}
7_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
7_ButtonText=雅虎WIDGET
7_MenuText=
7_FileName=
7_FileVersion=
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
8_Clsid={1FBA04EE-3024-11D2-8F1F-0000F87ABD16}
8_ButtonText=@shdoclc.dll,-866
8_MenuText=@shdoclc.dll,-864
8_FileName=%SystemRoot%\web\related.htm
8_FileSize=749
8_FileDate=2006-10-7 14:29:20
8_FileVersion=
9_HKey=HKEY_LOCAL_MACHINE
9_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}
9_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
9_ButtonText=
9_MenuText=QQ炫彩工具条设置
9_FileName=
9_FileVersion=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96}
10_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
10_ButtonText=情景聊天
10_MenuText=
10_FileName=
10_FileVersion=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{ECF2E268-F28C-48d2-9AB7-8F69C11CCB71}
11_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
11_ButtonText=
11_MenuText=修复浏览器
11_FileName=
11_FileVersion=
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{FD00D911-7529-4084-9946-A29F1BDF4FE5}
12_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
12_ButtonText=
12_MenuText=清理上网记录
12_FileName=
12_FileVersion=
13_HKey=HKEY_CURRENT_USER
13_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping
13_Clsid=
13_ButtonText=
13_MenuText=
13_FileName=
13_FileVersion=
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{889D2FEB-5411-4565-8998-1DD2C5261283}
14_Clsid=Thunder Browser Helper
14_FileName=C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll
14_FileSize=49152
14_FileDate=2006-6-3 11:17:12
14_FileVersion=5.0.0.2
15_HKey=HKEY_LOCAL_MACHINE
15_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D157330A-9EF3-49F8-9A67-4141AC41ADD4}
15_Clsid=CnsHook Class
15_FileName=C:\WINDOWS\downlo~1\cnshook.dll
15_FileSize=77824
15_FileDate=2006-10-16 16:03:40
15_FileVersion=1.0.4.2
16_HKey=HKEY_LOCAL_MACHINE
16_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\DirectAnimation Java Classes
16_Download=file://C:\WINDOWS\Java\classes\dajava.cab
16_FileName=
16_FileVersion=
17_HKey=HKEY_LOCAL_MACHINE
17_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\Microsoft XML Parser for Java
17_Download=file://C:\WINDOWS\Java\classes\xmldso.cab
17_FileName=
17_FileVersion=
18_HKey=HKEY_LOCAL_MACHINE
18_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E787FD25-8D7C-4693-AE67-9406BC6E22DF}
18_Download=https://account.qq.com/qqedit.cab
18_FileName=C:\WINDOWS\Downloaded Program Files\qqedit.inf
18_FileSize=677
18_FileDate=2006-3-27 15:00:16
18_FileVersion=
19_HKey=HKEY_LOCAL_MACHINE
19_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0D318232-5558-4DD8-805C-16D673C8AE51}
19_NameServer=
19_Clsid=
19_FileName=
19_FileVersion=
20_HKey=HKEY_LOCAL_MACHINE
20_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{74F4C43C-3339-493F-9DBD-5231481F59E7}
20_NameServer=
20_Clsid=
20_FileName=
20_FileVersion=
21_HKey=HKEY_LOCAL_MACHINE
21_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{9C149951-9E83-4E80-B20A-B4922E05F09F}
21_NameServer=
21_Clsid=
21_FileName=
21_FileVersion=
22_HKey=HKEY_LOCAL_MACHINE
22_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A4562CAA-5E9E-4BE5-BBD6-B3D05E54128E}
22_NameServer=
22_Clsid=
22_FileName=
22_FileVersion=
Max=22

[Link]
1_HKey=HKEY_CLASSES_ROOT
1_Key=.exe
1_Name=
1_Value=exefile
1_HKeyLink=HKEY_CLASSES_ROOT
1_KeyLink=exefile\shell\open\command
1_NameLink=
1_ValueLink="%1" %*
2_HKey=HKEY_CLASSES_ROOT
2_Key=.com
2_Name=
2_Value=comfile
2_HKeyLink=HKEY_CLASSES_ROOT
2_KeyLink=comfile\shell\open\command
2_NameLink=
2_ValueLink="%1" %*
3_HKey=HKEY_CLASSES_ROOT
3_Key=.lnk
3_Name=
3_Value=lnkfile
3_HKeyLink=HKEY_CLASSES_ROOT
3_KeyLink=lnkfile\CLSID
3_NameLink=
3_ValueLink={00021401-0000-0000-C000-000000000046}
4_HKey=HKEY_CLASSES_ROOT
4_Key=.txt
4_Name=
4_Value=txtfile
4_HKeyLink=HKEY_CLASSES_ROOT
4_KeyLink=txtfile\shell\open\command
4_NameLink=
4_ValueLink=%SystemRoot%\system32\NOTEPAD.EXE %1
4_FileSizeLink=66048
4_FileDateLink=2003-3-15 8:00:00
4_FileVersionLink=5.1.2600.0
5_HKey=HKEY_CLASSES_ROOT
5_Key=.htm
5_Name=
5_Value=htmlfile
5_HKeyLink=HKEY_CLASSES_ROOT
5_KeyLink=htmlfile\shell\open\command
5_NameLink=
5_ValueLink="C:\Program Files\Internet Explorer\iexplore.exe" -nohome
5_FileSizeLink=91136
5_FileDateLink=2003-3-15 8:00:00
5_FileVersionLink=6.0.2800.1106
6_HKey=HKEY_CLASSES_ROOT
6_Key=.html
6_Name=
6_Value=htmlfile
6_HKeyLink=HKEY_CLASSES_ROOT
6_KeyLink=htmlfile\shell\open\command
6_NameLink=
6_ValueLink="C:\Program Files\Internet Explorer\iexplore.exe" -nohome
6_FileSizeLink=91136
6_FileDateLink=2003-3-15 8:00:00
6_FileVersionLink=6.0.2800.1106
7_HKey=HKEY_CLASSES_ROOT
7_Key=.url
7_Name=
7_Value=InternetShortcut
7_HKeyLink=HKEY_CLASSES_ROOT
7_KeyLink=InternetShortcut\shell\open\command
7_NameLink=
7_ValueLink=rundll32.exe shdocvw.dll,OpenURL %l
8_HKey=HKEY_CLASSES_ROOT
8_Key=PROTOCOLS\Filter\text/html
8_Name=CLSID
8_Value=
9_HKey=HKEY_CLASSES_ROOT
9_Key=PROTOCOLS\Filter\text/plain
9_Name=CLSID
9_Value=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
10_Name=
10_Value=http://
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes
11_Name=www
11_Value=http://
Max=11

[Shdoclc]
1_FileSize=548864
1_FileDate=2003-3-15 8:00:00
1_FileVersion=6.0.2600.0
Max=1

[AppInit_DLLs]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
1_Name=AppInit_DLLs
1_Value=
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
2_Name=Userinit
2_Value=C:\WINDOWS\System32\userinit.exe,
2_FileSize=20992
2_FileDate=2003-3-15 8:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
3_Name=Shell
3_Value=Explorer.exe
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
4_Name=System
3_Value=
Max=4

[WinSock2NameSpace]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001
1_Name=DisplayString
1_Value=Tcpip
1_Enabled=1
1_LibraryPath=%SystemRoot%\System32\mswsock.dll
1_FileSize=228352
1_FileDate=2003-3-15 8:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002
2_Name=DisplayString
2_Value=NTDS
2_Enabled=1
2_LibraryPath=%SystemRoot%\System32\winrnr.dll
2_FileSize=14848
2_FileDate=2003-3-15 8:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003
3_Name=DisplayString
3_Value=网络位置知晓 (NLA) 名称空间
3_Enabled=1
3_LibraryPath=%SystemRoot%\System32\mswsock.dll
3_FileSize=228352
3_FileDate=2003-3-15 8:00:00
Max=3

[WinSock2Protocol]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001
1_Name=PackedCatalogItem
1_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
1_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀昀?      ? ????耀?銡?ā              ? ? ? ? ā ?          ?匀????吀挀瀀椀瀀?嬀吀?倀??倀崀                                                                                                                                                                                                                                           
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002
2_Name=PackedCatalogItem
2_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
2_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??      ? ????耀?銡?ā              ? ? ? ? ? ?      ?  MSAFD Tcpip [UDP/IP]                                                                                                                                                                                                                                           
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003
3_Name=PackedCatalogItem
3_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
3_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??      ? ????耀?銡?ā              ? ? ? ? ?  ?    ?  MSAFD Tcpip [RAW/IP]                                                                                                                                                                                                                                           
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004
4_Name=PackedCatalogItem
4_FileName=%SystemRoot%\system32\rsvpsp.dll
4_Value=?揿愀洀瘀椀搀?　?椀渀昀 ā 戀? ccdecode.inf
  ? certclas.inf  ?? communic.inf    ??comnt5.inf    ? corelist.inf  ???cyclad☉       ?鵠?????
龍???唼u 砀??嚇u ? ? ? ? ? ?      ?  RSVP UDP Service Provider ??    ā ?矵?? ??
  捻欿??矵?w ???矵豈?聆氿?封?攀瘀椀挀攀尀笀???????????　???　????????????????　??　紀 ??????　??　紀 ????屐瀂鯁倂?

????蠴畖? ?畕類??墶矷??  ???矚易?坐u 瀀鯁 ??龐矛???矚??矵??矵
?? ??  tt??矵
??矵    X ??矵
??
陳畗  ???SY?倀?? ā ?躐?漀渀琀?矵
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005
5_Name=PackedCatalogItem
5_FileName=%SystemRoot%\system32\rsvpsp.dll
5_Value=?揿愀洀瘀椀搀?　?椀渀昀 ā 戀? ccdecode.inf
  ? certclas.inf  ?? communic.inf    ??comnt5.inf    ? corelist.inf  ???cyclad?       ?鵠?????
ockdow  ?  ? ? ? ? ā ?          刀匀嘀倀?吀?倀?匀攀爀瘀椀挀攀?倀爀漀瘀椀搀攀爀  ?姨?姨???????囝??      ?????? ?囝??囜 搀??矵 ???樀?w 囜囜耂 ā ???t?  ??t?  ?  ??铀? ? ? ā ?t???
??囜    ` 誥矵?蠿????矵 ? ?蠀?  ???w??矵??矵??  ??斴矷????????矵?矚      ?          ? ?????ā ? ??    栀鯊 搀岨?矵?桷鯊 搀岨??
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006
6_Name=PackedCatalogItem
6_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
6_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??      ? 　弘玍?锑è往??
                    耀        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀???????????　???　????????????????　??　紀崀?匀?儀倀????吀?　                                                                                                                                                                         
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007
7_Name=PackedCatalogItem
7_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
7_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??      ? 　弘玍?锑è往??
                    耀        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀???????????　???　????????????????　??　紀崀???吀??刀???　                                                                                                                                                                         
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008
8_Name=PackedCatalogItem
8_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
8_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??        　弘玍?锑è往??
                   ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀???????????　????????????　??????????　紀崀?匀?儀倀????吀??                                                                                                                                                                         
9_HKey=HKEY_LOCAL_MACHINE
9_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009
9_Name=PackedCatalogItem
9_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
9_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??        　弘玍?锑è往??
                   ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀???????????　????????????　??????????　紀崀???吀??刀????                                                                                                                                                                         
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010
10_Name=PackedCatalogItem
10_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
10_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??        　弘玍?锑è往??
                   ＿?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{F9DE49EA-8406-4523-B289-91B8F0BDE0DA}] SEQPACKET 2                                                                                                                                                                         
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011
11_Name=PackedCatalogItem
11_FileName=%SystemRoot%\system32\mswsock.dll c a m v i d 3 0 . i n f
11_Value=
??挀挀搀攀挀漀搀攀?椀渀昀 ā  氀挀攀爀琀挀氀愀猀?椀渀昀  戀瀅挀漀洀洀甀渀椀挀?椀渀昀    ??揿漀洀渀琀??椀渀昀    吀
挀漀爀攀氀椀猀琀?椀渀昀  戀％?揿礀挀氀愀搀??        　弘玍?锑è往??
                   ＿?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{F9DE49EA-8406-4523-B289-91B8F0BDE0DA}] DATAGRAM 2                                                                                                                                                                         
Max=11

[WinSock2Winsock]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=System\CurrentControlSet\Services\Winsock2\Winsock
1_Name=PathName
1_Value=
1_Found=0
Max=1

[WOW]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\WOW
1_Name=cmdline
1_Value=%SystemRoot%\system32\ntvdm.exe -o
1_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
1_FileSize=393216
1_FileDate=2003-3-15 8:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Control\WOW
2_Name=wowcmdline
2_Value=%SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386
2_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
2_FileSize=393216
2_FileDate=2003-3-15 8:00:00
Max=2

[ShellExecuteHooks]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
1_Name={AEB6717E-7E19-11d0-97EE-00C04FD91972}
1_ClsidName=URL 执行挂钩
1_FileName=C:\WINDOWS\System32\shell32.dll
1_FileSize=8194048
1_FileDate=2003-3-15 8:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
2_Name={D157330A-9EF3-49F8-9A67-4141AC41ADD4}
2_ClsidName=CnsHook Class
2_FileName=C:\WINDOWS\downlo~1\cnshook.dll
2_FileSize=77824
2_FileDate=2006-10-16 16:03:40
Max=2

[ShellServiceObjectDelayLoad]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
1_Name=PostBootReminder
1_Value={7849596a-48ea-486e-8937-a2a3009f31a9}
1_ClsidName=PostBootReminder 对象
1_FileName=%SystemRoot%\system32\SHELL32.dll
1_FileSize=8194048
1_FileDate=2003-3-15 8:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
2_Name=CDBurn
2_Value={fbeb8a05-beee-4442-804e-409d6c4515e9}
2_ClsidName=烧 CD 的 ShellFolder
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8194048
2_FileDate=2003-3-15 8:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
3_Name=WebCheck
3_Value={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
3_ClsidName=WebCheck
3_FileName=%SystemRoot%\System32\webcheck.dll
3_FileSize=247296
3_FileDate=2003-3-15 8:00:00
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
4_Name=SysTray
4_Value={35CEC8A3-2BE6-11D2-8773-92E220524153}
4_ClsidName=SysTray
4_FileName=C:\WINDOWS\System32\stobject.dll
4_FileSize=117248
4_FileDate=2003-3-15 8:00:00
Max=4

[SharedTaskScheduler]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
1_Name={438755C2-A8BA-11D1-B96B-00A0C90312E1}
1_Value=Browseui 预加载程序
1_FileName=%SystemRoot%\System32\browseui.dll
1_FileSize=1021952
1_FileDate=2003-3-15 8:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
2_Name={8C7461EF-2B13-11d2-BE35-3078302C2030}
2_Value=组件类别缓存程序
2_FileName=%SystemRoot%\System32\browseui.dll
2_FileSize=1021952
2_FileDate=2003-3-15 8:00:00
Max=2

[ProtocolDefaults]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
1_Name=http
1_Value=3
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
2_Name=https
2_Value=3
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
3_Name=ftp
3_Value=3
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
4_Name=file
4_Value=3
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
5_Name=@ivt
5_Value=1
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
6_Name=shell
6_Value=0
Max=6

[BootExecute]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\Session Manager
1_Name=BootExecute
1_Value=autocheck autochk *
Max=1

[AutoRun]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=Software\Microsoft\Windows\CurrentVersion\Run
1_Name=IMJPMIG8.1
1_Value=; "c:\windows\ime\imjp8_1\imjpmig.exe" /spoil /remadvdef /migration32
1_FileSize=208953
1_FileDate=2003-3-15 8:00:00
1_FileVersion=8.1.4005.0
2_HKey=HKEY_LOCAL_MACHINE
2_Key=Software\Microsoft\Windows\CurrentVersion\Run
2_Name=PHIME2002ASync
2_Value=; c:\windows\system32\ime\tintlgnt\tintsetp.exe /sync
2_FileSize=455168
2_FileDate=2003-3-15 8:00:00
2_FileVersion=5.2.0.2801
3_HKey=HKEY_LOCAL_MACHINE
3_Key=Software\Microsoft\Windows\CurrentVersion\Run
3_Name=PHIME2002A
3_Value=; c:\windows\system32\ime\tintlgnt\tintsetp.exe /imename
3_FileSize=455168
3_FileDate=2003-3-15 8:00:00
3_FileVersion=5.2.0.2801
4_HKey=HKEY_LOCAL_MACHINE
4_Key=Software\Microsoft\Windows\CurrentVersion\Run
4_Name=ATIPTA
4_Value=; c:\program files\ati technologies\ati control panel\atiptaxx.exe
4_FileSize=344064
4_FileDate=2004-9-29 7:15:00
4_FileVersion=6.14.10.5125
5_HKey=HKEY_LOCAL_MACHINE
5_Key=Software\Microsoft\Windows\CurrentVersion\Run
5_Name=TkBellExe
5_Value="c:\program files\common files\real\update_ob\realsched.exe"  -osboot
5_FileSize=180269
5_FileDate=2006-9-14 13:11:07
5_FileVersion=0.1.0.3510
6_HKey=HKEY_LOCAL_MACHINE
6_Key=Software\Microsoft\Windows\CurrentVersion\Run
6_Name=KernelFaultCheck
6_Value=%systemroot%\system32\dumprep 0 -k
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Windows\CurrentVersion\Run
7_Name=桌面图标文字自动透明
7_Value=e:\program files\wom\winmem.exe xp
7_FileSize=198144
7_FileDate=2004-3-7 17:37:38
7_FileVersion=2.9.4.307
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Windows\CurrentVersion\Run
8_Name=RavTask
8_Value="c:\program files\rising\rav\ravtask.exe" -system
8_FileSize=114688
8_FileDate=2006-10-18 17:57:56
8_FileVersion=18.0.0.22
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Windows\CurrentVersion\Run
9_Name=RfwMain
9_Value="c:\program files\rising\rfw\rfwmain.exe" -startup
9_FileSize=417792
9_FileDate=2006-10-17 18:48:30
9_FileVersion=4.0.0.52
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Windows\CurrentVersion\Run
10_Name=yassistse
10_Value="c:\progra~1\yahoo!\assistant\yassistse.exe"
10_FileSize=73728
10_FileDate=2006-9-13 21:27:36
10_FileVersion=3.0.2.1003
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Windows\CurrentVersion\RunServices
11_Name=RavMon
11_Value=c:\program files\rising\rav\ravmon.exe /auto
11_FileSize=610304
11_FileDate=2006-10-18 18:02:07
11_FileVersion=18.0.1.33
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
12_Name=Nice
12_Value=c:\program files\common files\microsoft shared\msinfo\rehtemp.exe
12_FileSize=6814
12_FileDate=2006-10-23 22:56:26
12_FileVersion=
13_HKey=HKEY_LOCAL_MACHINE
13_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
13_Name=load
13_Value=
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
14_Name=run
14_Value=
15_HKey=HKEY_CURRENT_USER
15_Key=Software\Microsoft\Windows\CurrentVersion\Run
15_Name=ctfmon.exe
15_Value=c:\windows\system32\ctfmon.exe
15_FileSize=13312
15_FileDate=2003-3-15 8:00:00
15_FileVersion=5.1.2600.1106
16_HKey=HKEY_CURRENT_USER
16_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
16_Name=load
16_Value=
17_HKey=HKEY_CURRENT_USER
17_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
17_Name=run
17_Value=
Max=17

[Process]
1_FileName=C:\WINDOWS\SYSTEM32\SMSS.EXE
1_FileSize=45568
1_FileDate=2003-3-15 8:00:00
1_FileVersion=5.1.2600.1106
2_FileName=C:\WINDOWS\SYSTEM32\CSRSS.EXE
2_FileSize=4096
2_FileDate=2003-3-15 8:00:00
2_FileVersion=5.1.2600.0
3_FileName=C:\WINDOWS\SYSTEM32\WINLOGON.EXE
3_FileSize=501760
3_FileDate=2003-3-15 8:00:00
3_FileVersion=5.1.2600.1106
4_FileName=C:\WINDOWS\SYSTEM32\SERVICES.EXE
4_FileSize=101376
4_FileDate=2003-3-15 8:00:00
4_FileVersion=5.1.2600.0
5_FileName=C:\WINDOWS\SYSTEM32\LSASS.EXE
5_FileSize=11776
5_FileDate=2003-3-15 8:00:00
5_FileVersion=5.1.2600.1106
6_FileName=C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
6_FileSize=405504
6_FileDate=2004-9-29 8:16:44
6_FileVersion=6.14.10.4107
7_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
7_FileSize=12800
7_FileDate=2003-3-15 8:00:00
7_FileVersion=5.1.2600.0
8_FileName=C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
8_FileSize=110592
8_FileDate=2006-10-18 17:57:56
8_FileVersion=18.0.0.3
9_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
9_FileSize=12800
9_FileDate=2003-3-15 8:00:00
9_FileVersion=5.1.2600.0
10_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
10_FileSize=12800
10_FileDate=2003-3-15 8:00:00
10_FileVersion=5.1.2600.0
11_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
11_FileSize=12800
11_FileDate=2003-3-15 8:00:00
11_FileVersion=5.1.2600.0
12_FileName=C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE
12_FileSize=233472
12_FileDate=2006-10-18 18:02:07
12_FileVersion=18.0.1.35
13_FileName=C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE
13_FileSize=98304
13_FileDate=2006-10-17 18:48:27
13_FileVersion=4.0.0.33
14_FileName=C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
14_FileSize=51200
14_FileDate=2003-3-15 8:00:00
14_FileVersion=5.1.2600.0
15_FileName=C:\PROGRAM FILES\RISING\RAV\RAVSTUB.EXE
15_FileSize=90112
15_FileDate=2006-10-18 17:57:47
15_FileVersion=18.0.0.16
16_FileName=C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
16_FileSize=405504
16_FileDate=2004-9-29 8:16:44
16_FileVersion=6.14.10.4107
17_FileName=C:\WINDOWS\EXPLORER.EXE
17_FileSize=948736
17_FileDate=2003-3-15 8:00:00
17_FileVersion=6.0.2800.1106
18_FileName=C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
18_FileSize=31744
18_FileDate=2003-3-15 8:00:00
18_FileVersion=5.1.2600.0
19_FileName=C:\PROGRAM FILES\RISING\RFW\RFWMAIN.EXE
19_FileSize=417792
19_FileDate=2006-10-17 18:48:30
19_FileVersion=4.0.0.52
20_FileName=C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
20_FileSize=31744
20_FileDate=2003-3-15 8:00:00
20_FileVersion=5.1.2600.0
21_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
21_FileSize=12800
21_FileDate=2003-3-15 8:00:00
21_FileVersion=5.1.2600.0
22_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
22_FileSize=12800
22_FileDate=2003-3-15 8:00:00
22_FileVersion=5.1.2600.0
23_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
23_FileSize=12800
23_FileDate=2003-3-15 8:00:00
23_FileVersion=5.1.2600.0
24_FileName=C:\PROGRAM FILES\ANALOG DEVICES\SOUNDMAX\SMAGENT.EXE
24_FileSize=45056
24_FileDate=2002-9-20 16:50:10
24_FileVersion=3.2.6.0
25_FileName=C:\WINDOWS\SYSTEM32\WDFMGR.EXE
25_FileSize=38912
25_FileDate=2004-8-10 22:05:14
25_FileVersion=5.2.3790.1230
26_FileName=C:\WINDOWS\SYSTEM32\WBEM\SERVICES.EXE
26_FileSize=683520
26_FileDate=2006-10-23 23:04:49
26_FileVersion=1.0.0.0
27_FileName=C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\MSINFO\REHTEMP.EXE
27_FileSize=6814
27_FileDate=2006-10-23 22:56:26
27_FileVersion=
28_FileName=C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE
28_FileSize=180269
28_FileDate=2006-9-14 13:11:07
28_FileVersion=0.1.0.3510
29_FileName=C:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE
29_FileSize=114688
29_FileDate=2006-10-18 17:57:56
29_FileVersion=18.0.0.22
30_FileName=C:\WINDOWS\SYSTEM32\CTFMON.EXE
30_FileSize=13312
30_FileDate=2003-3-15 8:00:00
30_FileVersion=5.1.2600.1106
31_FileName=C:\PROGRAM FILES\RISING\RAV\RAVMON.EXE
31_FileSize=610304
31_FileDate=2006-10-18 18:02:07
31_FileVersion=18.0.1.33
32_FileName=C:\PROGRA~1\YAHOO!\ASSIST~1\YLIVE.EXE
32_FileSize=69632
32_FileDate=2006-10-13 20:45:26
32_FileVersion=3.1.3.1019
33_FileName=E:\PROGRAM FILES\SUPER RABBIT\MAGICSET\IEHELP.EXE
33_FileSize=1359872
33_FileDate=2006-10-10 23:18:02
33_FileVersion=7.85.0.0
34_FileName=[SYSTEM PROCESS]
Max=34

[Hosts]
HostsFile=C:\WINDOWS\System32\Drivers\Etc\Hosts
1_Host=127.0.0.1      localhost
Max=1

[Service]
1_ServiceName=Ati HotKey Poller
1_DisplayName=Ati HotKey Poller
1_Description=
1_Status=已启动
1_StartType=自动
1_ServiceDll=
1_ImagePath=C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE

2_ServiceName=ATI Smart
2_DisplayName=ATI Smart
2_Description=
2_Status=停止
2_StartType=自动
2_ServiceDll=
2_ImagePath=C:\WINDOWS\SYSTEM32\ATI2SGAG.EXE

3_ServiceName=MessageService
3_DisplayName=MessageService
3_Description=支持此计算机收集网络信息,如服务停止则此功能不可用,如服务被禁用任何依赖此服务的服务将无法启动
3_Status=已启动
3_StartType=自动
3_ServiceDll=C:\WINDOWS\SYSTEM32\MSSERVICES\SVCHOST.DLL
3_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K MESSAGESERVICE

4_ServiceName=NetDDEdsdm
4_DisplayName=Network DDE DSDM
4_Description=管理动态数据交换 (DDE) 网络共享。如果此服务终止，DDE 网络共享将不可用。如果此服务被禁用，任何依赖它的服务将无法启动。
4_Status=停止
4_StartType=手动
4_ServiceDll=
4_ImagePath=C:\WINDOWS\SYSTEM32\NETDDE.EXE

5_ServiceName=NTProStorage
5_DisplayName=WindowsNT Protected Storage
5_Description=保护NT环境下的敏感数据(如私钥)的存储，以便防止未授权的服务、过程或用户对其的非法访问。如果此服务被停用，基于NT的保护性存储将不可用。如果此服务被禁用，任何依赖于它的服务将无法启用。
5_Status=已启动
5_StartType=自动
5_ServiceDll=C:\WINDOWS\SYSTEM32\NTPROSTORAGE.DLL
5_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NTPROSTORAGE

6_ServiceName=ReIISAdmin
6_DisplayName=Remote IIS Admin Service
6_Description=允许远程管理服务器上的 Web 和 FTP 服务。如果此服务被停止，服务器将不能通过远程方式运行和管理 Web，FTP，NNTP，SMTP站点，或配置 IIS。如果此服务被禁止，任何明确依赖于它的服务都将不能启动。
6_Status=已启动
6_StartType=自动
6_ServiceDll=C:\WINDOWS\SYSTEM32\REINETINFO.DLL
6_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K REIISADMIN

7_ServiceName=RfwService
7_DisplayName=Rising Personal Firewall Service
7_Description=Rising Personal Firewall Service
7_Status=已启动
7_StartType=自动
7_ServiceDll=
7_ImagePath=C:\PROGRAM FILES\RISING\RFW\RFWSRV.EXE

8_ServiceName=RsCCenter
8_DisplayName=Rising Process Communication Center
8_Description=
8_Status=已启动
8_StartType=自动
8_ServiceDll=
8_ImagePath="C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE"

9_ServiceName=RsRavMon
9_DisplayName=RsRavMon Service
9_Description=
9_Status=已启动
9_StartType=自动
9_ServiceDll=
9_ImagePath="C:\PROGRAM FILES\RISING\RAV\RAVMOND.EXE"

10_ServiceName=SoundMAX Agent Service (default)
10_DisplayName=SoundMAX Agent Service
10_Description=
10_Status=已启动
10_StartType=自动
10_ServiceDll=
10_ImagePath=C:\PROGRAM FILES\ANALOG DEVICES\SOUNDMAX\SMAGENT.EXE

11_ServiceName=UMWdf
11_DisplayName=Windows User Mode Driver Framework
11_Description=启用 Windows 用户模式驱动程序。
11_Status=已启动
11_StartType=自动
11_ServiceDll=
11_ImagePath=C:\WINDOWS\SYSTEM32\WDFMGR.EXE

12_ServiceName=WmdmPmSN
12_DisplayName=Portable Media Serial Number Service
12_Description=Retrieves the serial number of any portable media player connected to this computer. If this service is stopped, protected content might not be down loaded to the device.
12_Status=停止
12_StartType=手动
12_ServiceDll=C:\WINDOWS\SYSTEM32\MSPMSNSV.DLL
12_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

Max=12

[END]
Max=1

请高手帮忙看看 谢谢啦~才装的系统啊~~555~~~~`

看一下这个

http://hi.baidu.com/nslog
下专杀

先看看 谢谢啊

好象不行 运行后提示错误