【回复“westbeck”的帖子】
2006-08-22,09:56:13
System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)
Windows 2000 Professional Service Pack 4 (Build 2195)
- 管理权限用户 - 完整功能
以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<Internat.exe><Internat.exe> [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<Synchronization Manager><mobsync.exe /logon> [Microsoft Corporation]
<SoundMan><SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
<SiSPower><Rundll32.exe SiSPower.dll,ModeAgent> [Silicon Integrated Systems Corporation]
<vptray><D:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe> [Symantec Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [Microsoft Corporation]
<Userinit><C:\WINNT\system32\userinit.exe,C:\WINNT\smss.exe,> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{288BD9BD-F0DC-46B1-81B5-2B61DF8077CE}><C:\WINNT\system32\svchost.dLl> []
<{EFAE7B4A-FA39-4818-ACAC-6B6D851CEFF4}><C:\Program Files\Internet Explorer\WinHook.sys> []
<{C09E3B07-E028-4D8D-B754-76807FA8110C}><C:\WINNT\system32\winfinds.dll> []
<{99F1D023-7CEB-4586-80F7-BB1A98DB7602}><C:\Program Files\Internet Explorer\IEXPLORE.Sys> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
<WinlogonNotify: NavLogon><C:\WINNT\system32\NavLogon.dll> []
==================================
启动文件夹
服务
[DefWatch / DefWatch]
<D:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe><Symantec Corporation>
[Logical Disk Manager Administrative Service / dmadmin]
<C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[Symantec AntiVirus Client / Norton AntiVirus Server]
<D:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe><Symantec Corporation>
[Distributed Link Tracking ClientIkanKan / ServiceIkanKan]
<><N/A>
[Svchost Service For Windows / svchost]
<C:\WINNT\svchost.exe><N/A>
==================================
浏览器加载项
[]
{8D139DD1-6BB5-4103-8C89-41560FF2E107} <C:\WINNT\system32\3721_5.dll, 3721公司<推荐使用>>
[@shdoclc.dll,-866]
{c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[SkyVisionIE Control]
{56961282-7987-4572-B359-4DFD9B6D771D} <C:\WINNT\DOWNLO~1\SKYVIS~1.OCX, >
==================================
正在运行的进程
[PID: 156][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.00.2195.6601>
[PID: 180][\??\C:\WINNT\system32\csrss.exe] <Microsoft Corporation><5.00.2195.6601>
[PID: 200][\??\C:\WINNT\system32\winlogon.exe] <Microsoft Corporation><5.00.2195.6970>
[C:\WINNT\system32\NavLogon.dll] <N/A><N/A>
[PID: 228][C:\WINNT\system32\services.exe] <Microsoft Corporation><5.00.2195.6700>
[C:\WINNT\system32\dmserver.dll] <VERITAS Software Corp.><2195.6605.297.3>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 240][C:\WINNT\system32\lsass.exe] <Microsoft Corporation><5.00.2195.6902>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 420][C:\WINNT\system32\svchost.exe] <Microsoft Corporation><5.00.2134.1>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 448][C:\WINNT\system32\spoolsv.exe] <Microsoft Corporation><5.00.2195.6659>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 480][C:\WINNT\system32\svchost.exe] <Microsoft Corporation><5.00.2134.1>
[PID: 504][D:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe] <Symantec Corporation><8.1.0.821>
[C:\WINNT\system32\CBA.DLL] <Intel? Corporation><6.12.0.105 E>
[C:\WINNT\system32\MsgSys.dll] <Intel? Corporation><6.12.0.105 E>
[C:\WINNT\system32\NTS.dll] <Intel? Corporation><6.12.0.105 E>
[C:\WINNT\system32\PDS.DLL] <Intel? Corporation><6.12.0.105 E>
[D:\PROGRA~1\SYMANT~1\SYMANT~1\NAVLU.dll] <Symantec Corporation><8.1.0.821>
[D:\PROGRA~1\SYMANT~1\SYMANT~1\NAVNTUTL.DLL] <Symantec/Peter Norton Group><1, 0, 0, 1>
[D:\PROGRA~1\SYMANT~1\SYMANT~1\i2ldvp3.dll] <Symantec Corporation><8.1.0.821>
[D:\PROGRA~1\SYMANT~1\SYMANT~1\NAVAPI32.DLL] <Symantec Corp.><4.2.0.7>
[C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060816.020\NAVEX32a.DLL] <Symantec Corporation><20061.2.0.26>
[C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060816.020\NAVENG32.DLL] <Symantec Corporation><20061.2.0.26>
[D:\Program Files\Symantec_Client_Security\Symantec AntiVirus\NAVAP32.DLL] <Symantec Corporation><9.1.0.26>
[C:\PROGRA~1\COMMON~1\SYMANT~1\SSC\Scandlgs.dll] <Symantec Corporation><8.1.0.821>
[PID: 676][C:\WINNT\system32\regsvc.exe] <Microsoft Corporation><5.00.2195.6701>
[PID: 680][C:\WINNT\system32\MSTask.exe] <Microsoft Corporation><4.71.2195.6920>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 720][C:\WINNT\svchost.exe] <N/A><N/A>
[PID: 788][C:\WINNT\System32\WBEM\WinMgmt.exe] <Microsoft Corporation><1.50.1085.0100>
[PID: 804][C:\WINNT\system32\svchost.exe] <Microsoft Corporation><5.00.2134.1>
[PID: 884][C:\WINNT\Explorer.EXE] <Microsoft Corporation><5.00.3700.6690>
[C:\WINNT\regsvr.dll] <N/A><N/A>
[C:\WINNT\system32\svchost.dLl] <N/A><N/A>
[C:\Program Files\Internet Explorer\WinHook.sys] <N/A><N/A>
[C:\WINNT\system32\winfinds.dll] <N/A><N/A>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[C:\WINNT\system32\ALSNDMGR.CPL] <Realtek Semiconductor Corp.><2.2.0.38>
[C:\WINNT\system32\3721_5.dll] <3721公司<推荐使用>><1.0.0.0>
[C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll] <Symantec Corporation><8.1.0.821>
[D:\Program Files\WinRAR\rarext.dll] <N/A><N/A>
[PID: 436][C:\WINNT\SOUNDMAN.EXE] <Realtek Semiconductor Corp.><5.1.0.34>
[C:\Program Files\Internet Explorer\WinHook.sys] <N/A><N/A>
[C:\WINNT\regsvr.dll] <N/A><N/A>
[C:\WINNT\system32\svchost.dLl] <N/A><N/A>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 1104][D:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe] <Symantec Corporation><8.1.0.821>
[C:\Program Files\Internet Explorer\WinHook.sys] <N/A><N/A>
[C:\WINNT\regsvr.dll] <N/A><N/A>
[C:\WINNT\system32\svchost.dLl] <N/A><N/A>
[D:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Cliproxy.dll] <Symantec Corporation><8.1.0.821>
[D:\PROGRA~1\SYMANT~1\SYMANT~1\NAVNTUTL.DLL] <Symantec/Peter Norton Group><1, 0, 0, 1>
[D:\Program Files\Symantec_Client_Security\Symantec AntiVirus\Cliscan.dll] <Symantec Corporation><8.1.0.821>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[C:\WINNT\system32\winfinds.dll] <N/A><N/A>
[PID: 1140][C:\WINNT\system32\Internat.exe] <Microsoft Corporation><5.00.2920.0000>
[C:\Program Files\Internet Explorer\WinHook.sys] <N/A><N/A>
[C:\WINNT\regsvr.dll] <N/A><N/A>
[C:\WINNT\system32\svchost.dLl] <N/A><N/A>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
[PID: 916][C:\WINNT\smss.exe] <N/A><N/A>
[C:\WINNT\regsvr.dll] <N/A><N/A>
[C:\WINNT\system32\winfinds.dll] <N/A><N/A>
[C:\Program Files\Internet Explorer\WinHook.sys] <N/A><N/A>
[C:\WINNT\system32\svchost.dLl] <N/A><N/A>
[PID: 876][D:\HijackThis\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>
[C:\WINNT\regsvr.dll] <N/A><N/A>
[C:\Program Files\Internet Explorer\WinHook.sys] <N/A><N/A>
[C:\WINNT\system32\svchost.dLl] <N/A><N/A>
[C:\WINNT\system32\winfinds.dll] <N/A><N/A>
[C:\WINNT\system32\cn_spi32.dll] <N/A><N/A>
==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINNT\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
==================================
