瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】 SOS!!大师帮我看看,每次扫描电脑都有这两个毒~有日志

1   1  /  1  页   跳转

【求助】 SOS!!大师帮我看看,每次扫描电脑都有这两个毒~有日志

收藏
654654261612
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-10-22
  • 来自:
发表于: 2006-10-22 13:15 | 只看楼主 短消息 资料
字号: 1楼

【求助】 SOS!!大师帮我看看,每次扫描电脑都有这两个毒~有日志

[Main]
Program=超级兔子IE修复专家
Version=V7.78
WindowsVersion=Windows XP
IEVersion=6.0.2900.2180
WinDir=C:\WINDOWS\
WinSystemDir=C:\WINDOWS\system32\
USERPROFILE=C:\Documents and Settings\Administrator
Admin=1
Detail=1
Date=2006-10-22
Time=12:59:50
Code=,
CDCode=,
Reg=0

[Soft]
1=3721网络实名
2=雅虎助手
3=88Dog
Max=3

[IE]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Main
1_Name=Window Title
1_Value=
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Main
2_Name=Local Page
2_Value=C:\WINDOWS\system32\blank.htm
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Main
3_Name=Search Page
3_Value=http://www.yahoo.com.cn
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\Main
4_Name=Start Page
4_Value=about:blank
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\Main
5_Name=Default_page_url
5_Value=
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\Main
6_Name=First Home Page
6_Value=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Internet Explorer\Main
7_Name=Search Page
7_Value=http://www.yahoo.com.cn
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Internet Explorer\Main
8_Name=Start Page
8_Value=http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Internet Explorer\Main
9_Name=Default_page_url
9_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Internet Explorer\Main
10_Name=First Home Page
10_Value=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Internet Explorer\Main
11_Name=Search Page
11_Value=http://www.yahoo.com.cn
12_HKey=HKEY_LOCAL_MACHINE
12_Key=Software\Microsoft\Internet Explorer\Main
12_Name=Start Page
12_Value=http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
Max=12

[IE2]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
1_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
1_FileName=%SystemRoot%\system32\browseui.dll
1_FileSize=1022464
1_FileDate=2006-6-23 19:11:20
1_FileVersion=6.0.2900.2937
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
2_Name={0E5CBF21-D15F-11D0-8301-00AA005B4383}
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8311296
2_FileDate=2006-7-13 21:34:56
2_FileVersion=6.0.2900.2951
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
3_Name={2318C2B1-4965-11D4-9B18-009027A5CD4F}
3_FileName=c:\program files\google\googletoolbar1.dll
3_FileSize=1178624
3_FileDate=2006-10-3 11:58:34
3_FileVersion=3.0.131.0
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser
4_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
4_FileName=%SystemRoot%\system32\browseui.dll
4_FileSize=1022464
4_FileDate=2006-6-23 19:11:20
4_FileVersion=6.0.2900.2937
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Internet Explorer\Toolbar
5_Name={406F94F0-504F-4a40-8DFD-58B0666ABEBD}
5_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
5_FileSize=221184
5_FileDate=2006-5-15 16:12:06
5_FileVersion=2.1.8.1048
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Internet Explorer\Toolbar
6_Name={2318C2B1-4965-11d4-9B18-009027A5CD4F}
6_FileName=c:\program files\google\googletoolbar1.dll
6_FileSize=1178624
6_FileDate=2006-10-3 11:58:34
6_FileVersion=3.0.131.0
Max=6
最后编辑2006-10-22 13:09:41
分享到:
gototop
 
654654261612
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-10-22
  • 来自:
发表于: 2006-10-22 13:16 | 只看楼主 短消息 资料
字号: 2楼

[IE3]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\MenuExt\!搜一搜
1_FileName=res://C:\WINDOWS\DOWNLO~1\CnsMinEx.dll/1003
1_FileVersion=
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\MenuExt\&使用迅雷下载
2_FileName=C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm
2_FileSize=2338
2_FileDate=2006-7-24 15:51:28
2_FileVersion=
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\MenuExt\&使用迅雷下载全部链接
3_FileName=C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm
3_FileSize=695
3_FileDate=2006-3-8 10:49:10
3_FileVersion=
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\MenuExt\Google 搜索(&G)
4_FileName=res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
4_FileVersion=
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\MenuExt\反向链接
5_FileName=res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
5_FileVersion=
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\MenuExt\导出到 Microsoft Office Excel(&X)
6_FileName=res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
6_FileVersion=
7_HKey=HKEY_CURRENT_USER
7_Key=Software\Microsoft\Internet Explorer\MenuExt\类似网页
7_FileName=res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
7_FileVersion=
8_HKey=HKEY_CURRENT_USER
8_Key=Software\Microsoft\Internet Explorer\MenuExt\缓存的网页快照
8_FileName=res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
8_FileVersion=
9_HKey=HKEY_CURRENT_USER
9_Key=Software\Microsoft\Internet Explorer\MenuExt\翻译英文字词(&T)
9_FileName=res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
9_FileVersion=
10_HKey=HKEY_CURRENT_USER
10_Key=Software\Microsoft\Internet Explorer\MenuExt\雅虎搜索
10_FileName=res://C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246
10_FileVersion=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{0062C9BD-B349-40DE-91A0-755F37ACD559}
11_Clsid={1FBA04EE-3024-11D2-8F1F-0000F87ABD16}
11_ButtonText=启动迅雷
11_MenuText=启动迅雷
11_FileName=
11_FileVersion=
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{0A155D3C-68E2-4215-A47A-E800A446447A}
12_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
12_ButtonText=浩方对战平台
12_MenuText=
12_FileName=
12_FileVersion=
13_HKey=HKEY_LOCAL_MACHINE
13_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{507F9113-CD77-4866-BA92-0E86DA3D0B97}
13_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
13_ButtonText=Yahoo 3.5G电邮
13_MenuText=
13_FileName=
13_FileVersion=
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{59BC54A2-56B3-44a0-93E5-432D58746E26}
14_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
14_ButtonText=名品折扣
14_MenuText=
14_FileName=
14_FileVersion=
15_HKey=HKEY_LOCAL_MACHINE
15_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{5D73EE86-05F1-49ed-B850-E423120EC338}
15_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
15_ButtonText=雅虎助手
15_MenuText=
15_FileName=
15_FileVersion=
16_HKey=HKEY_LOCAL_MACHINE
16_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{6354ABE6-05F1-49ed-B850-E423120EC338}
16_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
16_ButtonText=雅虎WIDGET
16_MenuText=
16_FileName=
16_FileVersion=
17_HKey=HKEY_LOCAL_MACHINE
17_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{92780B25-18CC-41C8-B9BE-3C9C571A8263}
17_Clsid={E0DD6CAB-2D10-11D2-8F1A-0000F87ABD16}
17_ButtonText=信息检索
17_MenuText=
17_FileName=
17_FileVersion=
18_HKey=HKEY_LOCAL_MACHINE
18_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96}
18_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
18_ButtonText=情景聊天
18_MenuText=
18_FileName=
18_FileVersion=
19_HKey=HKEY_LOCAL_MACHINE
19_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{ECF2E268-F28C-48d2-9AB7-8F69C11CCB71}
19_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
19_ButtonText=
19_MenuText=修复浏览器
19_FileName=
19_FileVersion=
20_HKey=HKEY_LOCAL_MACHINE
20_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{FD00D911-7529-4084-9946-A29F1BDF4FE5}
20_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
20_ButtonText=
20_MenuText=清理上网记录
20_FileName=
20_FileVersion=
21_HKey=HKEY_CURRENT_USER
21_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping
21_Clsid=
21_ButtonText=
21_MenuText=
21_FileName=
21_FileVersion=
22_HKey=HKEY_LOCAL_MACHINE
22_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33BBE430-0E42-4f12-B075-8D21ACB10DCB}
22_Clsid=Yahoo!Photo
22_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll
22_FileSize=114688
22_FileDate=2006-3-21 13:51:24
22_FileVersion=1.1.3.1035
23_HKey=HKEY_LOCAL_MACHINE
23_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{38928D50-8A48-44C2-945F-D2F23F771410}
23_Clsid=AntiFish Class
23_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll
23_FileSize=167936
23_FileDate=2006-10-11 10:52:04
23_FileVersion=1.0.5.1006
24_HKey=HKEY_LOCAL_MACHINE
24_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{406F94F0-504F-4a40-8DFD-58B0666ABEBD}
24_Clsid=雅虎助手
24_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
24_FileSize=221184
24_FileDate=2006-5-15 16:12:06
24_FileVersion=2.1.8.1048
25_HKey=HKEY_LOCAL_MACHINE
25_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62EED7C6-9F02-42f9-B634-98E2899E147B}
25_Clsid=DragSearch BHO
25_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
25_FileSize=49152
25_FileDate=2005-11-14 19:39:22
25_FileVersion=1.2.7.1006
26_HKey=HKEY_LOCAL_MACHINE
26_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{889D2FEB-5411-4565-8998-1DD2C5261283}
26_Clsid=Thunder Browser Helper
26_FileName=C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll
26_FileSize=49152
26_FileDate=2006-6-3 19:17:12
26_FileVersion=5.0.0.2
27_HKey=HKEY_LOCAL_MACHINE
27_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}
27_Clsid=Google Toolbar Helper
27_FileName=c:\program files\google\googletoolbar1.dll
27_FileSize=1178624
27_FileDate=2006-10-3 11:58:34
27_FileVersion=3.0.131.0
28_HKey=HKEY_LOCAL_MACHINE
28_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D157330A-9EF3-49F8-9A67-4141AC41ADD4}
28_Clsid=CnsHook Class
28_FileName=C:\WINDOWS\DOWNLO~1\CnsHook.dll
28_FileSize=77824
28_FileDate=2006-10-16 16:03:40
28_FileVersion=1.0.4.2
29_HKey=HKEY_LOCAL_MACHINE
29_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{17492023-C23A-453E-A040-C7C580BBF700}
29_Download=http://go.microsoft.com/fwlink/?linkid=39204
29_FileName=C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf
29_FileSize=367
29_FileDate=2006-2-13 19:03:36
29_FileVersion=
30_HKey=HKEY_LOCAL_MACHINE
30_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{3D8F74EE-8692-4F8F-B8D2-7522E732519E}
30_Download=http://game.qq.com/QQGame2.cab
30_FileName=C:\WINDOWS\Downloaded Program Files\WebActivater.inf
30_FileSize=654
30_FileDate=2005-8-24 16:22:04
30_FileVersion=
31_HKey=HKEY_LOCAL_MACHINE
31_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153}
31_Download=http://download.rising.com.cn/register/pcver/autoupgradepad/pcver2006new/OL2006.cab
31_FileName=C:\WINDOWS\Downloaded Program Files\OL2005.inf
31_FileSize=205
31_FileDate=2006-8-31 11:14:52
31_FileVersion=
32_HKey=HKEY_LOCAL_MACHINE
32_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{1A687870-C121-4522-ADB3-35508A343AAC}
32_NameServer=
32_Clsid=
32_FileName=
32_FileVersion=
33_HKey=HKEY_LOCAL_MACHINE
33_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{ACCD67D1-2558-4258-B9D4-4C954BE24D9E}
33_NameServer=202.100.192.68,202.100.199.8
33_Clsid=
33_FileName=
33_FileVersion=
34_HKey=HKEY_LOCAL_MACHINE
34_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{CD4C7BB5-A4AB-43EB-9A73-AC3CC995CFA9}
34_NameServer=
34_Clsid=
34_FileName=
34_FileVersion=
35_HKey=HKEY_LOCAL_MACHINE
35_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{CF7EB0D8-2400-4A3D-8F1D-3471C46DE8E9}
35_NameServer=
35_Clsid=
35_FileName=
35_FileVersion=
Max=35
gototop
 
654654261612
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-10-22
  • 来自:
发表于: 2006-10-22 13:16 | 只看楼主 短消息 资料
字号: 3楼

[Link]
1_HKey=HKEY_CLASSES_ROOT
1_Key=.exe
1_Name=
1_Value=exefile
1_HKeyLink=HKEY_CLASSES_ROOT
1_KeyLink=exefile\shell\open\command
1_NameLink=
1_ValueLink="%1" %*
2_HKey=HKEY_CLASSES_ROOT
2_Key=.com
2_Name=
2_Value=comfile
2_HKeyLink=HKEY_CLASSES_ROOT
2_KeyLink=comfile\shell\open\command
2_NameLink=
2_ValueLink="%1" %*
3_HKey=HKEY_CLASSES_ROOT
3_Key=.lnk
3_Name=
3_Value=lnkfile
3_HKeyLink=HKEY_CLASSES_ROOT
3_KeyLink=lnkfile\CLSID
3_NameLink=
3_ValueLink={00021401-0000-0000-C000-000000000046}
4_HKey=HKEY_CLASSES_ROOT
4_Key=.txt
4_Name=
4_Value=txtfile
4_HKeyLink=HKEY_CLASSES_ROOT
4_KeyLink=txtfile\shell\open\command
4_NameLink=
4_ValueLink=%SystemRoot%\system32\NOTEPAD.EXE %1
4_FileSizeLink=66560
4_FileDateLink=2004-8-17 12:00:00
4_FileVersionLink=5.1.2600.2180
5_HKey=HKEY_CLASSES_ROOT
5_Key=.htm
5_Name=
5_Value=htmlfile
5_HKeyLink=HKEY_CLASSES_ROOT
5_KeyLink=htmlfile\shell\open\command
5_NameLink=
5_ValueLink="E:\max\Maxthon\Maxthon.exe" "%1"
5_FileVersionLink=
6_HKey=HKEY_CLASSES_ROOT
6_Key=.html
6_Name=
6_Value=htmlfile
6_HKeyLink=HKEY_CLASSES_ROOT
6_KeyLink=htmlfile\shell\open\command
6_NameLink=
6_ValueLink="E:\max\Maxthon\Maxthon.exe" "%1"
6_FileVersionLink=
7_HKey=HKEY_CLASSES_ROOT
7_Key=.url
7_Name=
7_Value=InternetShortcut
7_HKeyLink=HKEY_CLASSES_ROOT
7_KeyLink=InternetShortcut\shell\open\command
7_NameLink=
7_ValueLink="E:\程序\上网的家虎\Maxthon\Maxthon.exe" "%1"
7_FileSizeLink=898560
7_FileDateLink=2006-9-29 0:12:42
7_FileVersionLink=1.5.7.82
8_HKey=HKEY_CLASSES_ROOT
8_Key=PROTOCOLS\Filter\text/html
8_Name=CLSID
8_Value=
9_HKey=HKEY_CLASSES_ROOT
9_Key=PROTOCOLS\Filter\text/plain
9_Name=CLSID
9_Value=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
10_Name=
10_Value=http://
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes
11_Name=www
11_Value=http://
Max=11

[Shdoclc]
1_FileSize=498176
1_FileDate=2004-8-17 12:00:00
1_FileVersion=6.0.2900.2180
Max=1

[AppInit_DLLs]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
1_Name=AppInit_DLLs
1_Value=
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
2_Name=Userinit
2_Value=C:\WINDOWS\system32\userinit.exe,
2_FileSize=23552
2_FileDate=2004-8-17 12:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
3_Name=Shell
3_Value=Explorer.exe
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
4_Name=System
3_Value=
Max=4

[WinSock2NameSpace]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001
1_Name=DisplayString
1_Value=Tcpip
1_Enabled=1
1_LibraryPath=%SystemRoot%\System32\mswsock.dll
1_FileSize=240640
1_FileDate=2004-8-17 12:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002
2_Name=DisplayString
2_Value=NTDS
2_Enabled=1
2_LibraryPath=%SystemRoot%\System32\winrnr.dll
2_FileSize=16896
2_FileDate=2004-8-17 12:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003
3_Name=DisplayString
3_Value=网络位置知晓 (NLA) 名称空间
3_Enabled=1
3_LibraryPath=%SystemRoot%\System32\mswsock.dll
3_FileSize=240640
3_FileDate=2004-8-17 12:00:00
Max=3

[WinSock2Protocol]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001
1_Name=PackedCatalogItem
1_FileName=C:\WINDOWS\system32\ESPI11.dll ll
1_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550f       ?诧?谑£往??                              MSAFD Tcpip [TCP/IP]                                                                                                                                                                                                                                           
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002
2_Name=PackedCatalogItem
2_FileName=C:\WINDOWS\system32\ESPI11.dll ll
2_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550?       ?诧?谑£往??                          ?  ?匀????吀挀瀀椀瀀?嬀唀?倀??倀崀                                                                                                                                                                                                                                           
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003
3_Name=PackedCatalogItem
3_FileName=C:\WINDOWS\system32\ESPI11.dll ll
3_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550?      ?诧?谑£往??                     ?    ?  ?匀????吀挀瀀椀瀀?嬀刀?圀??倀崀                                                                                                                                                                                                                                           
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004
4_Name=PackedCatalogItem
4_FileName=C:\WINDOWS\system32\ESPI11.dll l
4_Value=  弘玍?锑è往??                    ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀??????? ??????????????????? ??      ? 悩窝?袽 苀髦?ā 萀?簂?麗??畖? 唿??? ? ? ? ? ?      ?  RSVP UDP Service Provider  ?? 犘?  ?粒?  ??粒?粒  ??鋻??????鋮硼鋻??燿鋻??具??畕? ? ?吀耀?@    唿屵?攀瘀椀挀攀尀笀?????????????????????????????? ??? ?紀 ???? ??? ?紀 ?琂????粓錿塼??? 課畗歞矚8 林?錿?粓 ??    ??粓錿? 堀?錿?粓    X 錿? 堀?  ( 耠???    ???  ? 尀?甀爀爀攀? ? ? ?粓錿
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005
5_Name=PackedCatalogItem
5_FileName=C:\WINDOWS\system32\ESPI11.dll l
5_Value=  弘玍?锑è往??                    ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀??????? ??????????????????? 昀?      ? 悩窝?袽 苀髦?ā ?   ???粓                RSVP TCP Service Provider ? ? 倀?
@ ?????栂?   ??    ???粓 錿??洀錅??    ā ??  ??
 ???? 堀煟???  @ ?? ?  @ā ? ?? ???  ?粓??  ?伀???` ?  ā?鋻| ?鋧虼鋕|?堀? ???粓 錿??洀錅?? ?涽
??    ?  ??      ? ???尀? ? 怀????? ??嘼畕  ????  ???氂鋻煼鋻?? ?涽?
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006
6_Name=PackedCatalogItem
6_FileName=%SystemRoot%\system32\mswsock.dll
6_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550        ?赟???耀?銡?ā              ? ? ? ? ? ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀????? ?????  ???????????????????????紀崀?匀?儀倀????吀??                                                                                                                                                                         
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007
7_Name=PackedCatalogItem
7_FileName=%SystemRoot%\system32\mswsock.dll
7_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550?        ?赟???耀?銡?                    _?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{CF7EB0D8-2400-4A3D-8F1D-3471C46DE8E9}] DATAGRAM 3                                                                                                                                                                         
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008
8_Name=PackedCatalogItem
8_FileName=%SystemRoot%\system32\mswsock.dll
8_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550       ?赟???耀?銡?                     耀        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀????????????????????????????????????紀崀?匀?儀倀????吀?
gototop
 
654654261612
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-10-22
  • 来自:
发表于: 2006-10-22 13:17 | 只看楼主 短消息 资料
字号: 4楼

9_HKey=HKEY_LOCAL_MACHINE
9_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009
9_Name=PackedCatalogItem
9_FileName=%SystemRoot%\system32\mswsock.dll
9_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550?       ?赟???耀?銡Ё                     耀        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀????????????????????????????????????紀崀???吀??刀???                                                                                                                                                                          
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010
10_Name=PackedCatalogItem
10_FileName=%SystemRoot%\system32\mswsock.dll
10_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550        ?赟???耀?銡?                    ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀??????? ??????????????????? ????????紀崀?匀?儀倀????吀??                                                                                                                                                                         
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011
11_Name=PackedCatalogItem
11_FileName=%SystemRoot%\system32\mswsock.dll
11_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550?        ?赟???耀?銡?                    ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀??????? ??????????????????? ????????紀崀???吀??刀????                                                                                                                                                                         
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012
12_Name=PackedCatalogItem
12_FileName=%SystemRoot%\system32\mswsock.dll
12_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550        ?赟???耀?銡?                    _?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{CD4C7BB5-A4AB-43EB-9A73-AC3CC995CFA9}] SEQPACKET 2                                                                                                                                                                         
13_HKey=HKEY_LOCAL_MACHINE
13_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013
13_Name=PackedCatalogItem
13_FileName=%SystemRoot%\system32\mswsock.dll
13_Value= ?赟???耀?銡?ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-3550?        ?赟???耀?銡?                    _?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{CD4C7BB5-A4AB-43EB-9A73-AC3CC995CFA9}] DATAGRAM 2                                                                                                                                                                         
Max=13

[WinSock2Winsock]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=System\CurrentControlSet\Services\Winsock2\Winsock
1_Name=PathName
1_Value=
1_Found=0
Max=1

[WOW]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\WOW
1_Name=cmdline
1_Value=%SystemRoot%\system32\ntvdm.exe -o
1_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
1_FileSize=417280
1_FileDate=2004-8-17 12:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Control\WOW
2_Name=wowcmdline
2_Value=%SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386
2_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
2_FileSize=417280
2_FileDate=2004-8-17 12:00:00
Max=2

[ShellExecuteHooks]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
1_Name={AEB6717E-7E19-11d0-97EE-00C04FD91972}
1_ClsidName=URL 执行挂钩
1_FileName=C:\WINDOWS\system32\shell32.dll
1_FileSize=8311296
1_FileDate=2006-7-13 21:34:56
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
2_Name={E568441B-9EF3-49F8-9A67-4141AC41ADD4}
2_ClsidName=PatchCom
2_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\assist\ypatch.dll
2_FileSize=45056
2_FileDate=2006-9-30 12:33:26
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
3_Name={4BAB150F-DD97-476D-9C1E-41B6CDC0CA7A}
3_ClsidName=HookExecute Class
3_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\yclickon.dll
3_FileSize=61440
3_FileDate=2006-10-1 0:19:32
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
4_Name={32CD708B-60A7-4C00-9377-D73EAA495F0F}
4_ClsidName=ShlExecHack Class
4_FileName=C:\WINDOWS\system32\RavExt.dll
4_FileSize=98304
4_FileDate=2006-8-16 17:12:14
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
5_Name={D157330A-9EF3-49F8-9A67-4141AC41ADD4}
5_ClsidName=CnsHook Class
5_FileName=C:\WINDOWS\DOWNLO~1\CnsHook.dll
5_FileSize=77824
5_FileDate=2006-10-16 16:03:40
Max=5

[ShellServiceObjectDelayLoad]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
1_Name=PostBootReminder
1_Value={7849596a-48ea-486e-8937-a2a3009f31a9}
1_ClsidName=PostBootReminder 对象
1_FileName=%SystemRoot%\system32\SHELL32.dll
1_FileSize=8311296
1_FileDate=2006-7-13 21:34:56
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
2_Name=CDBurn
2_Value={fbeb8a05-beee-4442-804e-409d6c4515e9}
2_ClsidName=烧 CD 的 ShellFolder
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8311296
2_FileDate=2006-7-13 21:34:56
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
3_Name=WebCheck
3_Value={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
3_ClsidName=WebCheck
3_FileName=%SystemRoot%\system32\webcheck.dll
3_FileSize=265728
3_FileDate=2004-8-17 12:00:00
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
4_Name=SysTray
4_Value={35CEC8A3-2BE6-11D2-8773-92E220524153}
4_ClsidName=SysTray
4_FileName=C:\WINDOWS\system32\stobject.dll
4_FileSize=121344
4_FileDate=2004-8-17 12:00:00
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
5_Name=SysTime
5_Value={724C75F1-B757-408D-A50A-4CF99DA35D73}
5_ClsidName=88Dog.Kalendar
5_FileName=C:\PROGRA~1\WinKld\WinKld.dll
5_FileSize=43520
5_FileDate=2006-4-30 15:18:52
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
6_Name=webwork
6_Value={4C611512-2C1D-44b2-A044-872AD2AD5A61}
6_ClsidName=Windows Webwork Theme
6_FileName=C:\WINDOWS\webwork\webwork.dll
6_FileSize=94208
6_FileDate=2006-9-29 19:13:40
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
7_Name=MediaCheck
7_Value={D1F73845-4BAB-4061-A46B-FCF7ECC19217}
7_ClsidName=Direct Media Service
7_FileName=C:\PROGRA~1\Kuree\MService.dll
7_FileSize=20480
7_FileDate=2006-8-9 19:36:40
Max=7

[SharedTaskScheduler]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
1_Name={438755C2-A8BA-11D1-B96B-00A0C90312E1}
1_Value=Browseui 预加载程序
1_FileName=%SystemRoot%\system32\browseui.dll
1_FileSize=1022464
1_FileDate=2006-6-23 19:11:20
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
2_Name={8C7461EF-2B13-11d2-BE35-3078302C2030}
2_Value=组件类别缓存程序
2_FileName=%SystemRoot%\system32\browseui.dll
2_FileSize=1022464
2_FileDate=2006-6-23 19:11:20
Max=2
gototop
 
654654261612
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-10-22
  • 来自:
发表于: 2006-10-22 13:17 | 只看楼主 短消息 资料
字号: 5楼

[ProtocolDefaults]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
1_Name=
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
2_Name=http
2_Value=3
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
3_Name=https
3_Value=3
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
4_Name=ftp
4_Value=3
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
5_Name=file
5_Value=3
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
6_Name=@ivt
6_Value=1
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
7_Name=shell
7_Value=0
Max=7

[BootExecute]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\Session Manager
1_Name=BootExecute
1_Value=autocheck autochk *
Max=1

[AutoRun]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=Software\Microsoft\Windows\CurrentVersion\Run
1_Name=FixCamera
1_Value=c:\windows\fixcamera.exe
1_FileSize=20480
1_FileDate=2005-12-6 13:08:42
1_FileVersion=1.0.0.3
2_HKey=HKEY_LOCAL_MACHINE
2_Key=Software\Microsoft\Windows\CurrentVersion\Run
2_Name=tsnp2std
2_Value=c:\windows\tsnp2std.exe
2_FileSize=106496
2_FileDate=2005-11-24 17:01:06
2_FileVersion=1.1.2.4
3_HKey=HKEY_LOCAL_MACHINE
3_Key=Software\Microsoft\Windows\CurrentVersion\Run
3_Name=snp2std
3_Value=c:\windows\vsnp2std.exe
3_FileSize=344064
3_FileDate=2005-11-23 22:00:20
3_FileVersion=1.0.3.5
4_HKey=HKEY_LOCAL_MACHINE
4_Key=Software\Microsoft\Windows\CurrentVersion\Run
4_Name=RavTask
4_Value="e:\新建文件夹\rising\rav\ravtask.exe" -system
4_FileSize=114688
4_FileDate=2006-8-16 17:12:21
4_FileVersion=18.0.0.22
5_HKey=HKEY_LOCAL_MACHINE
5_Key=Software\Microsoft\Windows\CurrentVersion\Run
5_Name=RfwMain
5_Value="e:\新建文件夹\rising\rfw\rfwmain.exe" -startup
5_FileSize=417792
5_FileDate=2006-10-3 13:32:56
5_FileVersion=4.0.0.52
6_HKey=HKEY_LOCAL_MACHINE
6_Key=Software\Microsoft\Windows\CurrentVersion\Run
6_Name=helper.dll
6_Value=c:\windows\system32\rundll32.exe c:\progra~1\3721\helper.dll,rundll32
6_FileSize=53326
6_FileDate=2006-8-4 19:54:52
6_FileVersion=1.1.0.1325
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Windows\CurrentVersion\RunOnce
7_Name=RavStub
7_Value="e:\新建文件夹\rising\rav\ravstub.exe" /runonce
7_FileSize=90112
7_FileDate=2006-8-16 17:12:17
7_FileVersion=18.0.0.16
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
8_Name=load
8_Value=
9_HKey=HKEY_CURRENT_USER
9_Key=Software\Microsoft\Windows\CurrentVersion\Run
9_Name=ctfmon.exe
9_Value=c:\windows\system32\ctfmon.exe
9_FileSize=15360
9_FileDate=2004-8-17 12:00:00
9_FileVersion=5.1.2600.2180
10_HKey=HKEY_CURRENT_USER
10_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
10_Name=load
10_Value=
Max=10

[ModuleUsage]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/Program Files/QQ2006/mfc42.dll
1_Name=.Owner
1_Value=Unknown Owner
1_Clsid=
1_FileName=C:\Program Files\QQ2006\mfc42.dll
1_FileSize=995383
1_FileDate=2006-2-8 11:46:02
1_FileVersion=6.0.8665.0
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/OL2005.dll
2_Name=.Owner
2_Value={E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153}
2_Clsid=Rising Web Scan Object
2_FileName=C:\WINDOWS\Downloaded Program Files\OL2005.dll
2_FileSize=278528
2_FileDate=2006-8-30 17:14:04
2_FileVersion=18.0.0.7
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL
3_Name=.Owner
3_Value={17492023-C23A-453E-A040-C7C580BBF700}
3_Clsid=Windows Genuine Advantage Validation Tool
3_FileName=C:\WINDOWS\system32\LegitCheckControl.DLL
3_FileSize=519944
3_FileDate=2005-8-6 15:42:52
3_FileVersion=1.5.530.0
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll
4_Name=.Owner
4_Value=Unknown Owner
4_Clsid=
4_FileName=C:\WINDOWS\system32\msvcrt.dll
4_FileSize=343040
4_FileDate=2004-8-17 12:00:00
4_FileVersion=7.0.2600.2180
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll
5_Name=.Owner
5_Value=Unknown Owner
5_Clsid=
5_FileName=C:\WINDOWS\system32\olepro32.dll
5_FileSize=83456
5_FileDate=2004-8-17 12:00:00
5_FileVersion=5.1.2600.2180
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/WebActivater.ocx
6_Name=.Owner
6_Value={3D8F74EE-8692-4F8F-B8D2-7522E732519E}
6_Clsid=WebActivater Control
6_FileName=C:\WINDOWS\system32\WebActivater.ocx
6_FileSize=294963
6_FileDate=2005-9-21 10:55:24
6_FileVersion=1.0.0.2
Max=6

[Process]
1_FileName=C:\WINDOWS\SYSTEM32\SMSS.EXE
1_FileSize=50688
1_FileDate=2004-8-17 12:00:00
1_FileVersion=5.1.2600.2180
2_FileName=C:\WINDOWS\SYSTEM32\WINLOGON.EXE
2_FileSize=487424
2_FileDate=2004-8-17 12:00:00
2_FileVersion=5.1.2600.2180
3_FileName=C:\WINDOWS\SYSTEM32\SERVICES.EXE
3_FileSize=108032
3_FileDate=2004-8-17 12:00:00
3_FileVersion=5.1.2600.2180
4_FileName=C:\WINDOWS\SYSTEM32\LSASS.EXE
4_FileSize=13312
4_FileDate=2004-8-17 12:00:00
4_FileVersion=5.1.2600.2180
5_FileName=C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
5_FileSize=393216
5_FileDate=2005-12-12 11:33:44
5_FileVersion=6.14.10.4124
6_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
6_FileSize=14336
6_FileDate=2004-8-17 12:00:00
6_FileVersion=5.1.2600.2180
7_FileName=E:\新建文件夹\RISING\RAV\CCENTER.EXE
7_FileSize=110592
7_FileDate=2006-8-16 17:12:21
7_FileVersion=18.0.0.3
8_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
8_FileSize=14336
8_FileDate=2004-8-17 12:00:00
8_FileVersion=5.1.2600.2180
9_FileName=E:\新建文件夹\RISING\RAV\RAVMOND.EXE
9_FileSize=233472
9_FileDate=2006-10-3 13:25:52
9_FileVersion=18.0.1.35
10_FileName=C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
10_FileSize=393216
10_FileDate=2005-12-12 11:33:44
10_FileVersion=6.14.10.4124
11_FileName=C:\WINDOWS\EXPLORER.EXE
11_FileSize=976896
11_FileDate=2004-8-17 12:00:00
11_FileVersion=6.0.2900.2180
12_FileName=E:\新建文件夹\RISING\RAV\RAVSTUB.EXE
12_FileSize=90112
12_FileDate=2006-8-16 17:12:17
12_FileVersion=18.0.0.16
13_FileName=C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
13_FileSize=57856
13_FileDate=2005-6-11 7:53:32
13_FileVersion=5.1.2600.2696
14_FileName=C:\WINDOWS\FIXCAMERA.EXE
14_FileSize=20480
14_FileDate=2005-12-6 13:08:42
14_FileVersion=1.0.0.3
15_FileName=C:\WINDOWS\TSNP2STD.EXE
15_FileSize=106496
15_FileDate=2005-11-24 17:01:06
15_FileVersion=1.1.2.4
16_FileName=C:\WINDOWS\VSNP2STD.EXE
16_FileSize=344064
16_FileDate=2005-11-23 22:00:20
16_FileVersion=1.0.3.5
17_FileName=E:\新建文件夹\RISING\RAV\RAVTASK.EXE
17_FileSize=114688
17_FileDate=2006-8-16 17:12:21
17_FileVersion=18.0.0.22
18_FileName=E:\新建文件夹\RISING\RAV\RAVMON.EXE
18_FileSize=610304
18_FileDate=2006-10-3 13:25:52
18_FileVersion=18.0.1.33
19_FileName=C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
19_FileSize=32768
19_FileDate=2004-8-17 12:00:00
19_FileVersion=5.1.2600.2180
20_FileName=C:\WINDOWS\SYSTEM32\CTFMON.EXE
20_FileSize=15360
20_FileDate=2004-8-17 12:00:00
20_FileVersion=5.1.2600.2180
21_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
21_FileSize=14336
21_FileDate=2004-8-17 12:00:00
21_FileVersion=5.1.2600.2180
22_FileName=C:\PROGRA~1\KUREE\KPUPDATE.EXE
22_FileSize=88064
22_FileDate=2006-8-16 19:09:12
22_FileVersion=
23_FileName=C:\WINDOWS\SYSTEM32\REGSVR32.EXE
23_FileSize=13824
23_FileDate=2004-8-17 12:00:00
23_FileVersion=5.1.2600.2180
24_FileName=C:\PROGRA~1\YAHOO!\ASSIST~1\YLIVE.EXE
24_FileSize=65536
24_FileDate=2006-9-29 14:10:16
24_FileVersion=2.0.4.1007
25_FileName=C:\PROGRAM FILES\THUNDER NETWORK\THUNDER\PROGRAM\THUNDER5.EXE
25_FileSize=2100736
25_FileDate=2006-8-10 14:54:10
25_FileVersion=5.3.0.220
26_FileName=E:\新建文件夹\RISING\RAV\RSAGENT.EXE
26_FileSize=106496
26_FileDate=2006-8-16 17:12:14
26_FileVersion=18.0.0.12
27_FileName=C:\WINDOWS\MSAGENT\AGENTSVR.EXE
27_FileSize=256512
27_FileDate=2004-8-17 12:00:00
27_FileVersion=2.0.0.3422
28_FileName=C:\PROGRAM FILES\QQ2006\QQ.EXE
28_FileSize=1364356
28_FileDate=2006-5-9 17:23:22
28_FileVersion=0.0.0.0
29_FileName=C:\PROGRAM FILES\QQ2006\TIMPLATFORM.EXE
29_FileSize=69632
29_FileDate=2006-4-25 16:13:36
29_FileVersion=0.3.1.8
30_FileName=E:\程序\系统优化\IEHELP.EXE
30_FileSize=737792
30_FileDate=2006-8-31 12:39:22
30_FileVersion=7.78.0.0
31_FileName=[SYSTEM PROCESS]
32_FileName=C:\WINDOWS\system32\CSRSS.EXE
32_FileSize=6144
32_FileDate=2004-8-17 12:00:00
32_FileVersion=5.1.2600.2180
33_FileName=C:\WINDOWS\system32\WDFMGR.EXE
33_FileSize=38912
33_FileDate=2005-1-28 1:36:00
33_FileVersion=5.2.3790.1230
34_FileName=C:\WINDOWS\system32\ALG.EXE
34_FileSize=44544
34_FileDate=2004-8-17 12:00:00
34_FileVersion=5.1.2600.2180
Max=34
gototop
 
654654261612
头像
初生襁褓狮
  • 帖子:6
  • 注册: 2006-10-22
  • 来自:
发表于: 2006-10-22 13:18 | 只看楼主 短消息 资料
字号: 6楼

[Hosts]
HostsFile=C:\WINDOWS\system32\Drivers\Etc\Hosts
1_Host=127.0.0.1      localhost
Max=1

[Service]
1_ServiceName=Ati HotKey Poller
1_DisplayName=Ati HotKey Poller
1_Description=
1_Status=已启动
1_StartType=自动
1_ServiceDll=
1_ImagePath=C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE

2_ServiceName=ATI Smart
2_DisplayName=ATI Smart
2_Description=
2_Status=停止
2_StartType=自动
2_ServiceDll=
2_ImagePath=C:\WINDOWS\SYSTEM32\ATI2SGAG.EXE

3_ServiceName=DcomLaunch
3_DisplayName=DCOM Server Process Launcher
3_Description=为 DCOM 服务提供加载功能。
3_Status=已启动
3_StartType=自动
3_ServiceDll=C:\WINDOWS\SYSTEM32\RPCSS.DLL
3_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH

4_ServiceName=HTTPFilter
4_DisplayName=HTTP SSL
4_Description=此服务通过安全套接字层(SSL)实现 HTTP 服务的安全超文本传送协议(HTTPS)。如果此服务被禁用,任何依赖它的服务将无法启动。
4_Status=停止
4_StartType=手动
4_ServiceDll=C:\WINDOWS\SYSTEM32\W3SSL.DLL
4_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K HTTPFILTER

5_ServiceName=NetDDEdsdm
5_DisplayName=Network DDE DSDM
5_Description=管理动态数据交换 (DDE) 网络共享。如果此服务终止,DDE 网络共享将不可用。如果此服务被禁用,任何依赖它的服务将无法启动。
5_Status=停止
5_StartType=已禁用
5_ServiceDll=
5_ImagePath=C:\WINDOWS\SYSTEM32\NETDDE.EXE

6_ServiceName=ose
6_DisplayName=Office Source Engine
6_Description=可保存用于更新和修复的安装文件,并且在下载安装程序更新和 Watson 错误报告时必须使用。
6_Status=停止
6_StartType=手动
6_ServiceDll=
6_ImagePath="C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\SOURCE ENGINE\OSE.EXE"

7_ServiceName=RfwProxySrv
7_DisplayName=Rising Proxy  Service
7_Description=Rising Personal Proxy Service
7_Status=停止
7_StartType=手动
7_ServiceDll=
7_ImagePath=E:\新建文件夹\RISING\RFW\RFWPROXY.EXE

8_ServiceName=RfwService
8_DisplayName=Rising Personal Firewall Service
8_Description=Rising Personal Firewall Service
8_Status=停止
8_StartType=自动
8_ServiceDll=
8_ImagePath=E:\新建文件夹\RISING\RFW\RFWSRV.EXE

9_ServiceName=RsCCenter
9_DisplayName=Rising Process Communication Center
9_Description=
9_Status=已启动
9_StartType=自动
9_ServiceDll=
9_ImagePath="E:\新建文件夹\RISING\RAV\CCENTER.EXE"

10_ServiceName=RsRavMon
10_DisplayName=RsRavMon Service
10_Description=
10_Status=已启动
10_StartType=自动
10_ServiceDll=
10_ImagePath="E:\新建文件夹\RISING\RAV\RAVMOND.EXE"

11_ServiceName=Servicel
11_DisplayName=Servicel
11_Description=
11_Status=已启动
11_StartType=自动
11_ServiceDll=C:\WINDOWS\SYSTEM32\JETSPEED.DLL
11_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

12_ServiceName=UMWdf
12_DisplayName=Windows User Mode Driver Framework
12_Description=启用 Windows 用户模式驱动程序。
12_Status=已启动
12_StartType=自动
12_ServiceDll=
12_ImagePath=C:\WINDOWS\SYSTEM32\WDFMGR.EXE

13_ServiceName=WmdmPmSN
13_DisplayName=Portable Media Serial Number Service
13_Description=Retrieves the serial number of any portable media player connected to this computer. If this service is stopped, protected content might not be down loaded to the device.
13_Status=停止
13_StartType=手动
13_ServiceDll=C:\WINDOWS\SYSTEM32\MSPMSNSV.DLL
13_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

14_ServiceName=wscsvc
14_DisplayName=Security Center
14_Description=监视系统安全设置和配置。
14_Status=已启动
14_StartType=自动
14_ServiceDll=C:\WINDOWS\SYSTEM32\WSCSVC.DLL
14_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

15_ServiceName=xmlprov
15_DisplayName=Network Provisioning Service
15_Description=为自动网络提供管理基于域的 XML 配置文件。
15_Status=停止
15_StartType=手动
15_ServiceDll=C:\WINDOWS\SYSTEM32\XMLPROV.DLL
15_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

Max=15

[END]
Max=1
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT