瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 【求助】 求助高手~~~~SOS!!带报告

1   1  /  1  页   跳转

【求助】 求助高手~~~~SOS!!带报告

收藏
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 02:57 | 显示全部 短消息 资料
字号: 1楼

【求助】 求助高手~~~~SOS!!带报告

我的IE浏览器老是莫名其妙的碳出网页.瑞星也扫不出来什么~~~
请求大侠帮忙,小弟我这感激不尽~~下面附超级兔子扫描出来的报告:


[Main]
Program=超级兔子IE修复专家
Version=V7.78
WindowsVersion=Windows XP
IEVersion=6.0.2900.2180
WinDir=C:\WINDOWS\
WinSystemDir=C:\WINDOWS\system32\
USERPROFILE=C:\Documents and Settings\new
Admin=1
Detail=1
Date=2006-09-03
Time=02:46:11
Code=,
CDCode=,
Reg=0

[Soft]
1=CNNIC 中文上网官方版
2=3721网络实名
3=雅虎助手
4=DMCast/桌面传媒/IE-Bar
5=MMSAssist 彩信通
6=WinStdup/WinKalendar
7=ShareHelper
8=ADPlus/MSPlus 通用搜索
9=酷我歌词
10=88Dog
Max=10

[IE]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Main
1_Name=Window Title
1_Value=Microsoft Internet Explorer
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Main
2_Name=Local Page
2_Value=about:blank
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Main
3_Name=Search Page
3_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\Main
4_Name=Start Page
4_Value=about:blank
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\Main
5_Name=Default_page_url
5_Value=http://www.microsoft.com/windows/ie_intl/cn/start/
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\Main
6_Name=First Home Page
6_Value=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Internet Explorer\Main
7_Name=Search Page
7_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Internet Explorer\Main
8_Name=Start Page
8_Value=about:blank
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Internet Explorer\Main
9_Name=Default_page_url
9_Value=http://www.microsoft.com/windows/ie_intl/cn/start/
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Internet Explorer\Main
10_Name=First Home Page
10_Value=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Internet Explorer\Main
11_Name=Search Page
11_Value=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
12_HKey=HKEY_LOCAL_MACHINE
12_Key=Software\Microsoft\Internet Explorer\Main
12_Name=Start Page
12_Value=about:blank
Max=12
最后编辑2006-09-03 02:54:02
分享到:
gototop
 
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 02:58 | 显示全部 短消息 资料
字号: 2楼

[IE2]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
1_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
1_FileName=%SystemRoot%\system32\browseui.dll
1_FileSize=1022464
1_FileDate=2006-6-23 19:11:20
1_FileVersion=6.0.2900.2937
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
2_Name={0E5CBF21-D15F-11D0-8301-00AA005B4383}
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8311296
2_FileDate=2006-7-13 21:34:56
2_FileVersion=6.0.2900.2951
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser
3_Name={01E04581-4EEE-11D0-BFE9-00AA005B4383}
3_FileName=%SystemRoot%\system32\browseui.dll
3_FileSize=1022464
3_FileDate=2006-6-23 19:11:20
3_FileVersion=6.0.2900.2937
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Internet Explorer\Toolbar
4_Name={406F94F0-504F-4A40-8DFD-58B0666ABEBD}
4_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
4_FileSize=315392
4_FileDate=2006-8-21 14:51:24
4_FileVersion=3.0.7.1051
Max=4

[IE3]
1_HKey=HKEY_CURRENT_USER
1_Key=Software\Microsoft\Internet Explorer\MenuExt\&使用迅雷下载
1_FileName=G:\下载工具\Thunder\Program\GetUrl.htm
1_FileSize=2338
1_FileDate=2006-7-24 15:51:28
1_FileVersion=
2_HKey=HKEY_CURRENT_USER
2_Key=Software\Microsoft\Internet Explorer\MenuExt\&使用迅雷下载全部链接
2_FileName=G:\下载工具\Thunder\Program\GetAllUrl.htm
2_FileSize=695
2_FileDate=2006-3-8 10:49:10
2_FileVersion=
3_HKey=HKEY_CURRENT_USER
3_Key=Software\Microsoft\Internet Explorer\MenuExt\上传到QQ网络硬盘
3_FileName=C:\Program Files\QQ2006\AddToNetDisk.htm
3_FileVersion=
4_HKey=HKEY_CURRENT_USER
4_Key=Software\Microsoft\Internet Explorer\MenuExt\添加到QQ自定义面板
4_FileName=C:\Program Files\QQ2006\AddPanel.htm
4_FileVersion=
5_HKey=HKEY_CURRENT_USER
5_Key=Software\Microsoft\Internet Explorer\MenuExt\添加到QQ表情
5_FileName=C:\Program Files\QQ2006\AddEmotion.htm
5_FileSize=534
5_FileDate=2006-4-25 17:03:22
5_FileVersion=
6_HKey=HKEY_CURRENT_USER
6_Key=Software\Microsoft\Internet Explorer\MenuExt\用QQ彩信发送该图片
6_FileName=C:\Program Files\QQ2006\SendMMS.htm
6_FileSize=519
6_FileDate=2006-4-25 17:03:32
6_FileVersion=
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{0062C9BD-B349-40DE-91A0-755F37ACD559}
7_Clsid={1FBA04EE-3024-11D2-8F1F-0000F87ABD16}
7_ButtonText=启动迅雷
7_MenuText=启动迅雷
7_FileName=
7_FileVersion=
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{0A155D3C-68E2-4215-A47A-E800A446447A}
8_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
8_ButtonText=浩方对战平台
8_MenuText=
8_FileName=
8_FileVersion=
9_HKey=HKEY_LOCAL_MACHINE
9_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{507F9113-CD77-4866-BA92-0E86DA3D0B97}
9_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
9_ButtonText=Yahoo 3.5G电邮
9_MenuText=
9_FileName=
9_FileVersion=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{59BC54A2-56B3-44a0-93E5-432D58746E26}
10_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
10_ButtonText=寻宝乐趣多
10_MenuText=
10_FileName=
10_FileVersion=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{5D73EE86-05F1-49ed-B850-E423120EC338}
11_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
11_ButtonText=雅虎助手
11_MenuText=
11_FileName=
11_FileVersion=
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{6671A433-5C3D-463d-A7CF-5587F9B7E191}
12_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
12_ButtonText=
12_MenuText=彩E精灵设置
12_FileName=
12_FileVersion=
13_HKey=HKEY_LOCAL_MACHINE
13_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{D5C1CCC2-811B-4bf2-BF22-0D3B89600F5B}
13_Clsid=
13_ButtonText=
13_MenuText=
13_FileName=
13_FileVersion=
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}
14_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
14_ButtonText=
14_MenuText=QQ炫彩工具条设置
14_FileName=
14_FileVersion=
15_HKey=HKEY_LOCAL_MACHINE
15_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96}
15_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
15_ButtonText=情景聊天
15_MenuText=
15_FileName=
15_FileVersion=
16_HKey=HKEY_LOCAL_MACHINE
16_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{ECF2E268-F28C-48d2-9AB7-8F69C11CCB71}
16_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
16_ButtonText=
16_MenuText=修复浏览器
16_FileName=
16_FileVersion=
17_HKey=HKEY_LOCAL_MACHINE
17_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\{FD00D911-7529-4084-9946-A29F1BDF4FE5}
17_Clsid={1FBA04EE-3024-11d2-8F1F-0000F87ABD16}
17_ButtonText=
17_MenuText=清理上网记录
17_FileName=
17_FileVersion=
18_HKey=HKEY_CURRENT_USER
18_Key=SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping
18_Clsid=
18_ButtonText=
18_MenuText=
18_FileName=
18_FileVersion=
19_HKey=HKEY_LOCAL_MACHINE
19_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0005A87D-D626-4B3A-84F9-1D9571695F55}
19_Clsid=ThunderIEHelper Class
19_FileName=C:\WINDOWS\system32\xunleibho_v8.dll
19_FileSize=49152
19_FileDate=2005-10-31 16:33:42
19_FileVersion=4.5.1.33
20_HKey=HKEY_LOCAL_MACHINE
20_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33BBE430-0E42-4f12-B075-8D21ACB10DCB}
20_Clsid=Yahoo!Photo
20_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll
20_FileSize=118784
20_FileDate=2006-8-17 18:49:34
20_FileVersion=3.0.2.1004
21_HKey=HKEY_LOCAL_MACHINE
21_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{38928D50-8A48-44C2-945F-D2F23F771410}
21_Clsid=AntiFish Class
21_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll
21_FileSize=163840
21_FileDate=2006-8-3 9:57:44
21_FileVersion=3.0.1.1002
22_HKey=HKEY_LOCAL_MACHINE
22_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{54EBD53A-9BC1-480B-966A-843A333CA162}
22_Clsid=QQBrowserHelperObject Class
22_FileName=C:\Program Files\QQ2006\QQIEHelper.dll
22_FileSize=184320
22_FileDate=2006-4-25 17:09:56
22_FileVersion=1.1.0.5
23_HKey=HKEY_LOCAL_MACHINE
23_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{62EED7C6-9F02-42f9-B634-98E2899E147B}
23_Clsid=DragSearch BHO
23_FileName=C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
23_FileSize=49152
23_FileDate=2006-8-4 11:50:34
23_FileVersion=3.0.0.1000
24_HKey=HKEY_LOCAL_MACHINE
24_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{889D2FEB-5411-4565-8998-1DD2C5261283}
24_Clsid=Thunder Browser Helper
24_FileName=G:\下载工具\Thunder\ComDlls\XunLeiBHO_002.dll
24_FileSize=49152
24_FileDate=2006-6-3 11:17:12
24_FileVersion=5.0.0.2
25_HKey=HKEY_LOCAL_MACHINE
25_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D157330A-9EF3-49F8-9A67-4141AC41ADD4}
25_Clsid=CnsHook Class
25_FileName=C:\WINDOWS\DOWNLO~1\CnsHook.dll
25_FileSize=73728
25_FileDate=2005-10-26 13:10:48
25_FileVersion=1.0.2.7
26_HKey=HKEY_LOCAL_MACHINE
26_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD9936EF-C90D-4914-9EAB-699612B11A47}
26_Clsid=GMBar
26_FileName=C:\WINDOWS\csapix.dll
26_FileSize=348160
26_FileDate=2006-8-5 13:27:50
26_FileVersion=1.0.0.1
27_HKey=HKEY_LOCAL_MACHINE
27_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\_{17492023-C23A-453E-A040-C7C580BBF700}
27_Download=http://go.microsoft.com/fwlink/?linkid=39204
27_FileName=C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf
27_FileSize=367
27_FileDate=2006-2-13 19:03:36
27_FileVersion=
28_HKey=HKEY_LOCAL_MACHINE
28_Key=SOFTWARE\Microsoft\Code Store Database\Distribution Units\{5932517A-3326-4439-A708-1C98EDB5C549}
28_Download=file://C:\Documents and Settings\All Users\Application Data\Share Helper\Cast\GGS\dc756267b3\js\iMopDl.cab
28_FileName=C:\WINDOWS\Downloaded Program Files\iMopDl.inf
28_FileSize=228
28_FileDate=2006-5-23 14:28:52
28_FileVersion=
29_HKey=HKEY_LOCAL_MACHINE
29_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{1A687870-C121-4522-ADB3-35508A343AAC}
29_NameServer=
29_Clsid=
29_FileName=
29_FileVersion=
30_HKey=HKEY_LOCAL_MACHINE
30_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4DE26461-BF34-4D5B-8D21-4144DB0F57ED}
30_NameServer=
30_Clsid=
30_FileName=
30_FileVersion=
31_HKey=HKEY_LOCAL_MACHINE
31_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BB97A3B5-3FB3-40AF-9F22-97464C2B6D9C}
31_NameServer=
31_Clsid=
31_FileName=
31_FileVersion=
32_HKey=HKEY_LOCAL_MACHINE
32_Key=SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{CD4C7BB5-A4AB-43EB-9A73-AC3CC995CFA9}
32_NameServer=
32_Clsid=
32_FileName=
32_FileVersion=
Max=32
gototop
 
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 02:59 | 显示全部 短消息 资料
字号: 3楼

[Link]
1_HKey=HKEY_CLASSES_ROOT
1_Key=.exe
1_Name=
1_Value=exefile
1_HKeyLink=HKEY_CLASSES_ROOT
1_KeyLink=exefile\shell\open\command
1_NameLink=
1_ValueLink="%1" %*
2_HKey=HKEY_CLASSES_ROOT
2_Key=.com
2_Name=
2_Value=comfile
2_HKeyLink=HKEY_CLASSES_ROOT
2_KeyLink=comfile\shell\open\command
2_NameLink=
2_ValueLink="%1" %*
3_HKey=HKEY_CLASSES_ROOT
3_Key=.lnk
3_Name=
3_Value=lnkfile
3_HKeyLink=HKEY_CLASSES_ROOT
3_KeyLink=lnkfile\CLSID
3_NameLink=
3_ValueLink={00021401-0000-0000-C000-000000000046}
4_HKey=HKEY_CLASSES_ROOT
4_Key=.txt
4_Name=
4_Value=txtfile
4_HKeyLink=HKEY_CLASSES_ROOT
4_KeyLink=txtfile\shell\open\command
4_NameLink=
4_ValueLink=%SystemRoot%\system32\NOTEPAD.EXE %1
4_FileSizeLink=66560
4_FileDateLink=2004-8-17 12:00:00
4_FileVersionLink=5.1.2600.2180
5_HKey=HKEY_CLASSES_ROOT
5_Key=.htm
5_Name=
5_Value=htmlfile
5_HKeyLink=HKEY_CLASSES_ROOT
5_KeyLink=htmlfile\shell\open\command
5_NameLink=
5_ValueLink="C:\Program Files\Internet Explorer\iexplore.exe" -nohome
5_FileSizeLink=93184
5_FileDateLink=2004-8-17 20:00:00
5_FileVersionLink=6.0.2900.2180
6_HKey=HKEY_CLASSES_ROOT
6_Key=.html
6_Name=
6_Value=htmlfile
6_HKeyLink=HKEY_CLASSES_ROOT
6_KeyLink=htmlfile\shell\open\command
6_NameLink=
6_ValueLink="C:\Program Files\Internet Explorer\iexplore.exe" -nohome
6_FileSizeLink=93184
6_FileDateLink=2004-8-17 20:00:00
6_FileVersionLink=6.0.2900.2180
7_HKey=HKEY_CLASSES_ROOT
7_Key=.url
7_Name=
7_Value=InternetShortcut
7_HKeyLink=HKEY_CLASSES_ROOT
7_KeyLink=InternetShortcut\shell\open\command
7_NameLink=
7_ValueLink=rundll32.exe shdocvw.dll,OpenURL %l
8_HKey=HKEY_CLASSES_ROOT
8_Key=PROTOCOLS\Filter\text/html
8_Name=CLSID
8_Value=
9_HKey=HKEY_CLASSES_ROOT
9_Key=PROTOCOLS\Filter\text/plain
9_Name=CLSID
9_Value=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
10_Name=
10_Value=http://
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes
11_Name=www
11_Value=http://
Max=11

[Shdoclc]
1_FileSize=498176
1_FileDate=2004-8-17 12:00:00
1_FileVersion=6.0.2900.2180
Max=1

[AppInit_DLLs]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
1_Name=AppInit_DLLs
1_Value=
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
2_Name=Userinit
2_Value=C:\WINDOWS\system32\userinit.exe,
2_FileSize=23552
2_FileDate=2004-8-17 12:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
3_Name=Shell
3_Value=Explorer.exe
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
4_Name=System
3_Value=
Max=4

[WinSock2NameSpace]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001
1_Name=DisplayString
1_Value=Tcpip
1_Enabled=1
1_LibraryPath=%SystemRoot%\System32\mswsock.dll
1_FileSize=240640
1_FileDate=2004-8-17 12:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000002
2_Name=DisplayString
2_Value=NTDS
2_Enabled=1
2_LibraryPath=%SystemRoot%\System32\winrnr.dll
2_FileSize=16896
2_FileDate=2004-8-17 12:00:00
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003
3_Name=DisplayString
3_Value=网络位置知晓 (NLA) 名称空间
3_Enabled=1
3_LibraryPath=%SystemRoot%\System32\mswsock.dll
3_FileSize=240640
3_FileDate=2004-8-17 12:00:00
Max=3

[WinSock2Protocol]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001
1_Name=PackedCatalogItem
1_FileName=C:\WINDOWS\system32\quartz32.dll
1_Value=洀睳潳正搮汬琀椀漀渀渀愀洀攀攀瘀攀渀琀  ???匀??瘀攀渀琀?漀漀琀?爀爀漀爀 ???匀??甀渀挀琀椀漀渀一愀洀攀?瘀攀渀琀? ? asffunctionnameevent1 ??ASFEventFanProblem 潃??f       ??藡????п  ? ?          ? ? ? ? ā ?          ?匀吀?倀?栀愀椀渀?倀爀漀瘀椀搀攀爀 ??尀圀?一?伀圀匀尀猀礀猀琀攀洀??尀焀甀愀爀琀稀???搀氀氀  ?匀吀?倀?倀爀漀瘀椀搀攀爀  ??á?w ??尀錍|? ?蠀?  ??尀錍|??粓??粓???  ?蠀???? ?矛?退? ?堀?                                                                                                                               
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002
2_Name=PackedCatalogItem
2_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
2_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ???替?      ? ????耀?銡?ā              ? ? ? ? ā ?          ?匀????吀挀瀀椀瀀?嬀吀?倀??倀崀                                                                                                                                                                                                                                           
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003
3_Name=PackedCatalogItem
3_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
3_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????      ? ????耀?銡?ā              ? ? ? ? ? ?      ?  MSAFD Tcpip [UDP/IP]                                                                                                                                                                                                                                           
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004
4_Name=PackedCatalogItem
4_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
4_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????      ? ????耀?銡?ā              ? ? ? ? ?  ?    ?  MSAFD Tcpip [RAW/IP]
gototop
 
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 03:00 | 显示全部 短消息 资料
字号: 4楼

5_HKey=HKEY_LOCAL_MACHINE
5_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000005
5_Name=PackedCatalogItem
5_FileName=%SystemRoot%\system32\rsvpsp.dll
5_Value=洀睳潳正搮汬琀椀漀渀渀愀洀攀攀瘀攀渀琀  ???匀??瘀攀渀琀?漀漀琀?爀爀漀爀 ???匀??甀渀挀琀椀漀渀一愀洀攀?瘀攀渀琀? ? asffunctionnameevent1 ??ASFEventFanProblem 潃??☉       ?鵠?????  ???蠂??嚤屵?畕聆?           ?  刀匀嘀倀?唀?倀?匀攀爀瘀椀挀攀?倀爀漀瘀椀搀攀爀 ā ?? 頀灲 ?鋻聼?  ?氂鋻煼鋻| 耀??粒??????粒?粒???粒樘矚橑矚唿呵吀?? ??    ???畕\Device\{3A717362-A63B-4E78-84FF-68D4B108650B} D4B108650B} ?汴矚燎?錿?粓??? ?垊幵?? ???粓錿? 堀?    ??錿?粓 ??粓錿|  堀 ?粓 ??  ? ?涀??  耀??   \Curre  ?  錿?粓
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000006
6_Name=PackedCatalogItem
6_FileName=%SystemRoot%\system32\rsvpsp.dll
6_Value=洀睳潳正搮汬琀椀漀渀渀愀洀攀攀瘀攀渀琀  ???匀??瘀攀渀琀?漀漀琀?爀爀漀爀 ???匀??甀渀挀琀椀漀渀一愀洀攀?瘀攀渀琀? ? asffunctionnameevent1 ??ASFEventFanProblem 潃???       ?鵠?????  ? ??  谀?専錍|?? ? ? ? ā ?          刀匀嘀倀?吀?倀?匀攀爀瘀椀挀攀?倀爀漀瘀椀搀攀爀 ??   ?? ? ??????? ? ??   ?渗専錍|??粓??粓? ?   ?  渗? ? ??? 彘?????  ? ??  ?   ??耀?専?  愀鎨??  浏ā?怂 ?  ā?粒  粒?粒 ??  ?専錍|??粓??粓??  ?? ? 堀?  尀  怀?    尀????   ?????堁?涽???啖u ???涽 ??Ё??粒?粒??  ????
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000007
7_Name=PackedCatalogItem
7_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
7_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????         弘玍?锑è往??                    _?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{BB97A3B5-3FB3-40AF-9F22-97464C2B6D9C}] SEQPACKET 3                                                                                                                                                                         
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000008
8_Name=PackedCatalogItem
8_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
8_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????         弘玍?锑è往??ā              ? ? ? ? ? ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀??????????????? ????????????????????紀崀???吀??刀????                                                                                                                                                                         
9_HKey=HKEY_LOCAL_MACHINE
9_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000009
9_Name=PackedCatalogItem
9_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
9_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????      ?  弘玍?锑è往??ā              ? ? ? ? ?  ?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{4DE26461-BF34-4D5B-8D21-4144DB0F57ED}] SEQPACKET 0                                                                                                                                                                         
10_HKey=HKEY_LOCAL_MACHINE
10_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000010
10_Name=PackedCatalogItem
10_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
10_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????      ?  弘玍?锑è往??ā              ? ? ? ? ?  ?        MSAFD NetBIOS [\Device\NetBT_Tcpip_{4DE26461-BF34-4D5B-8D21-4144DB0F57ED}] DATAGRAM 0                                                                                                                                                                         
11_HKey=HKEY_LOCAL_MACHINE
11_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000011
11_Name=PackedCatalogItem
11_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
11_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????         弘玍?锑è往??ā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-35508A343AAC}] SEQPACKET 1                                                                                                                                                                         
12_HKey=HKEY_LOCAL_MACHINE
12_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000012
12_Name=PackedCatalogItem
12_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
12_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????         弘玍?锑è往?Βā              ? ? ? ? ? ???        MSAFD NetBIOS [\Device\NetBT_Tcpip_{1A687870-C121-4522-ADB3-35508A343AAC}] DATAGRAM 1                                                                                                                                                                         
13_HKey=HKEY_LOCAL_MACHINE
13_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000013
13_Name=PackedCatalogItem
13_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
13_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????         弘玍?锑è往??ā              ? ? ? ? ? ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀????????????????????????????????????紀崀?匀?儀倀????吀??                                                                                                                                                                         
14_HKey=HKEY_LOCAL_MACHINE
14_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000014
14_Name=PackedCatalogItem
14_FileName=%SystemRoot%\system32\mswsock.dll mswsock.dll t i o n n a m e e v e n t 0
14_Value= ??ASFEventBootError ??ASFFunctionNameEvent1 ?愀猀昀昀甀渀挀琀椀漀渀渀愀洀攀攀瘀攀渀琀? ???匀??瘀攀渀琀?愀渀倀爀漀戀氀攀洀 ?????         弘玍?锑è往??ā              ? ? ? ? ? ??        ?匀????一攀琀??伀匀?嬀尀?攀瘀椀挀攀尀一攀琀?吀开吀挀瀀椀瀀开笀????????????????????????????????????紀崀???吀??刀????
gototop
 
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 03:01 | 显示全部 短消息 资料
字号: 5楼

15_HKey=HKEY_LOCAL_MACHINE
15_Key=SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000015
15_Name=PackedCatalogItem
15_FileName=C:\WINDOWS\system32\quartz32.dll
15_Value=洀睳潳正搮汬琀椀漀渀渀愀洀攀攀瘀攀渀琀  ???匀??瘀攀渀琀?漀漀琀?爀爀漀爀 ???匀??甀渀挀琀椀漀渀一愀洀攀?瘀攀渀琀? ? asffunctionnameevent1 ??ASFEventFanProblem 潃??f        釽?????篲??                               MSTCP Provider ??矜???矚  ??粓  ?  ??粓 錿??洀錅??退???  ???勌 ?汷?? 员  ?尀錍|??粓??粓咀呠古    员?瀀??粓?怀??粒??鈐? ???    ?ā                                                                                                                             
Max=15

[WinSock2Winsock]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=System\CurrentControlSet\Services\Winsock2\Winsock
1_Name=PathName
1_Value=
1_Found=0
Max=1

[WOW]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\WOW
1_Name=cmdline
1_Value=%SystemRoot%\system32\ntvdm.exe -o
1_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
1_FileSize=417280
1_FileDate=2004-8-17 12:00:00
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SYSTEM\CurrentControlSet\Control\WOW
2_Name=wowcmdline
2_Value=%SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386
2_Filename=C:\WINDOWS\SYSTEM32\NTVDM.EXE
2_FileSize=417280
2_FileDate=2004-8-17 12:00:00
Max=2

[ShellExecuteHooks]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
1_Name={AEB6717E-7E19-11d0-97EE-00C04FD91972}
1_ClsidName=URL 执行挂钩
1_FileName=C:\WINDOWS\system32\shell32.dll
1_FileSize=8311296
1_FileDate=2006-7-13 21:34:56
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
2_Name={D157330A-9EF3-49F8-9A67-4141AC41ADD4}
2_ClsidName=CnsHook Class
2_FileName=C:\WINDOWS\DOWNLO~1\CnsHook.dll
2_FileSize=73728
2_FileDate=2005-10-26 13:10:48
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
3_Name={32CD708B-60A7-4C00-9377-D73EAA495F0F}
3_ClsidName=ShlExecHack Class
3_FileName=C:\WINDOWS\system32\RavExt.dll
3_FileSize=98304
3_FileDate=2006-8-7 13:23:36
Max=3

[ShellServiceObjectDelayLoad]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
1_Name=PostBootReminder
1_Value={7849596a-48ea-486e-8937-a2a3009f31a9}
1_ClsidName=PostBootReminder 对象
1_FileName=%SystemRoot%\system32\SHELL32.dll
1_FileSize=8311296
1_FileDate=2006-7-13 21:34:56
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
2_Name=CDBurn
2_Value={fbeb8a05-beee-4442-804e-409d6c4515e9}
2_ClsidName=烧 CD 的 ShellFolder
2_FileName=%SystemRoot%\system32\SHELL32.dll
2_FileSize=8311296
2_FileDate=2006-7-13 21:34:56
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
3_Name=WebCheck
3_Value={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
3_ClsidName=WebCheck
3_FileName=%SystemRoot%\system32\webcheck.dll
3_FileSize=265728
3_FileDate=2004-8-17 12:00:00
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
4_Name=SysTray
4_Value={35CEC8A3-2BE6-11D2-8773-92E220524153}
4_ClsidName=SysTray
4_FileName=C:\WINDOWS\system32\stobject.dll
4_FileSize=121344
4_FileDate=2004-8-17 12:00:00
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
5_Name=SysTime
5_Value={724C75F1-B757-408D-A50A-4CF99DA35D73}
5_ClsidName=88Dog.Kalendar
5_FileName=C:\PROGRA~1\WinKld\WinKld.dll
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
6_Name=DelayRun
6_Value={5A6F2F95-3191-433B-8533-EB0B596A7BAC}
6_ClsidName=LoadRun Class
6_FileName=C:\WINDOWS\system\9a8d0f70.dll
7_HKey=HKEY_LOCAL_MACHINE
7_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
7_Name=webwork
7_Value={4C611512-2C1D-44b2-A044-872AD2AD5A61}
7_ClsidName=Windows Webwork Theme
7_FileName=C:\WINDOWS\webwork\webwork.dll
7_FileSize=94208
7_FileDate=2006-8-11 9:44:48
8_HKey=HKEY_LOCAL_MACHINE
8_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
8_Name=themeadp
8_Value={64274C93-3CE7-4663-9C8D-CD2DC8A3590B}
8_ClsidName=Windows Push Theme
8_FileName=C:\WINDOWS\system32\themeadp.dll
8_FileSize=45056
8_FileDate=2006-8-16 23:48:54
Max=8

[SharedTaskScheduler]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
1_Name={438755C2-A8BA-11D1-B96B-00A0C90312E1}
1_Value=Browseui 预加载程序
1_FileName=%SystemRoot%\system32\browseui.dll
1_FileSize=1022464
1_FileDate=2006-6-23 19:11:20
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
2_Name={8C7461EF-2B13-11d2-BE35-3078302C2030}
2_Value=组件类别缓存程序
2_FileName=%SystemRoot%\system32\browseui.dll
2_FileSize=1022464
2_FileDate=2006-6-23 19:11:20
Max=2

[ProtocolDefaults]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
1_Name=http
1_Value=3
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
2_Name=https
2_Value=3
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
3_Name=ftp
3_Value=3
4_HKey=HKEY_LOCAL_MACHINE
4_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
4_Name=file
4_Value=3
5_HKey=HKEY_LOCAL_MACHINE
5_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
5_Name=@ivt
5_Value=1
6_HKey=HKEY_LOCAL_MACHINE
6_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
6_Name=shell
6_Value=0
Max=6

[BootExecute]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SYSTEM\CurrentControlSet\Control\Session Manager
1_Name=BootExecute
1_Value=autocheck autochk /k:C /k:D /k:E /k:F /k:G /k:H /k:I *
Max=1

[AutoRun]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=Software\Microsoft\Windows\CurrentVersion\Run
1_Name=CnsMin
1_Value=rundll32.exe c:\windows\downlo~1\cnsmin.dll,rundll32
1_FileSize=274432
1_FileDate=2006-8-10 10:27:18
1_FileVersion=1.5.3.6
2_HKey=HKEY_LOCAL_MACHINE
2_Key=Software\Microsoft\Windows\CurrentVersion\Run
2_Name=SoundMan
2_Value=soundman.exe
2_FileSize=577536
2_FileDate=2006-1-11 15:08:36
2_FileVersion=5.1.0.51
3_HKey=HKEY_LOCAL_MACHINE
3_Key=Software\Microsoft\Windows\CurrentVersion\Run
3_Name=NvCplDaemon
3_Value=rundll32.exe c:\windows\system32\nvcpl.dll,nvstartup
3_FileSize=7561216
3_FileDate=2006-3-9 15:29:00
3_FileVersion=6.14.10.8421
4_HKey=HKEY_LOCAL_MACHINE
4_Key=Software\Microsoft\Windows\CurrentVersion\Run
4_Name=nwiz
4_Value=nwiz.exe /install
4_FileSize=1519616
4_FileDate=2006-3-9 15:29:00
4_FileVersion=6.14.10.11026
5_HKey=HKEY_LOCAL_MACHINE
5_Key=Software\Microsoft\Windows\CurrentVersion\Run
5_Name=NvMediaCenter
5_Value=rundll32.exe c:\windows\system32\nvmctray.dll,nvtaskbarinit
5_FileSize=86016
5_FileDate=2006-3-9 15:29:00
5_FileVersion=6.14.10.8421
6_HKey=HKEY_LOCAL_MACHINE
6_Key=Software\Microsoft\Windows\CurrentVersion\Run
6_Name=FixCamera
6_Value=c:\windows\fixcamera.exe
6_FileSize=20480
6_FileDate=2005-12-6 13:08:42
6_FileVersion=1.0.0.3
7_HKey=HKEY_LOCAL_MACHINE
7_Key=Software\Microsoft\Windows\CurrentVersion\Run
7_Name=tsnp2std
7_Value=c:\windows\tsnp2std.exe
7_FileSize=106496
7_FileDate=2005-11-24 17:01:06
7_FileVersion=1.1.2.4
8_HKey=HKEY_LOCAL_MACHINE
8_Key=Software\Microsoft\Windows\CurrentVersion\Run
8_Name=snp2std
8_Value=c:\windows\vsnp2std.exe
8_FileSize=344064
8_FileDate=2005-11-23 22:00:20
8_FileVersion=1.0.3.5
9_HKey=HKEY_LOCAL_MACHINE
9_Key=Software\Microsoft\Windows\CurrentVersion\Run
9_Name=poco
9_Value=g:\poco\poco2006.exe
9_FileVersion=
10_HKey=HKEY_LOCAL_MACHINE
10_Key=Software\Microsoft\Windows\CurrentVersion\Run
10_Name=TuoTu
10_Value=g:\tuotu\tuotu.exe /m
10_FileVersion=
11_HKey=HKEY_LOCAL_MACHINE
11_Key=Software\Microsoft\Windows\CurrentVersion\Run
11_Name=YLive.exe
11_Value=c:\progra~1\yahoo!\assist~1\ylive.exe
11_FileSize=57344
11_FileDate=2006-9-1 14:48:36
11_FileVersion=3.0.5.1011
12_HKey=HKEY_LOCAL_MACHINE
12_Key=Software\Microsoft\Windows\CurrentVersion\Run
12_Name=yassistse
12_Value="c:\progra~1\yahoo!\assistant\yassistse.exe"
12_FileSize=73728
12_FileDate=2006-8-4 11:49:04
12_FileVersion=3.0.0.1001
13_HKey=HKEY_LOCAL_MACHINE
13_Key=Software\Microsoft\Windows\CurrentVersion\Run
13_Name=RavTask
13_Value="d:\瑞星杀毒\rising\rav\ravtask.exe" -system
13_FileSize=114688
13_FileDate=2005-12-14 17:28:37
13_FileVersion=18.0.0.22
14_HKey=HKEY_LOCAL_MACHINE
14_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
14_Name=load
14_Value=
15_HKey=HKEY_CURRENT_USER
15_Key=Software\Microsoft\Windows\CurrentVersion\Run
15_Name=ctfmon.exe
15_Value=c:\windows\system32\ctfmon.exe
15_FileSize=15360
15_FileDate=2004-8-17 12:00:00
15_FileVersion=5.1.2600.2180
16_HKey=HKEY_CURRENT_USER
16_Key=Software\Microsoft\Windows\CurrentVersion\Run
16_Name=bgswitch
16_Value=c:\windows\system32\壁纸自动换.exe
16_FileSize=19520
16_FileDate=2004-2-22 16:01:52
16_FileVersion=
17_HKey=HKEY_CURRENT_USER
17_Key=Software\Microsoft\Windows NT\CurrentVersion\Windows
17_Name=load
17_Value=
Max=17
gototop
 
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 03:01 | 显示全部 短消息 资料
字号: 6楼

[ModuleUsage]
1_HKey=HKEY_LOCAL_MACHINE
1_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/OL2005.dll
1_Name=.Owner
1_Value={E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153}
1_Clsid=
1_FileName=C:\WINDOWS\Downloaded Program Files\OL2005.dll
1_FileSize=278528
1_FileDate=2006-2-13 15:57:38
1_FileVersion=18.0.0.6
2_HKey=HKEY_LOCAL_MACHINE
2_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/iMopDl.dll
2_Name=.Owner
2_Value={5932517A-3326-4439-A708-1C98EDB5C549}
2_Clsid=Downloader Class
2_FileName=C:\WINDOWS\system32\iMopDl.dll
2_FileSize=126976
2_FileDate=2006-5-23 14:28:04
2_FileVersion=1.0.0.3
3_HKey=HKEY_LOCAL_MACHINE
3_Key=SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/LegitCheckControl.DLL
3_Name=.Owner
3_Value={17492023-C23A-453E-A040-C7C580BBF700}
3_Clsid=Windows Genuine Advantage Validation Tool
3_FileName=C:\WINDOWS\system32\LegitCheckControl.DLL
3_FileSize=550120
3_FileDate=2006-2-14 9:20:14
3_FileVersion=1.5.512.0
Max=3

[Process]
1_FileName=C:\WINDOWS\SYSTEM32\CSRSS.EXE
1_FileSize=6144
1_FileDate=2004-8-17 12:00:00
1_FileVersion=5.1.2600.2180
2_FileName=C:\WINDOWS\SYSTEM32\WINLOGON.EXE
2_FileSize=487424
2_FileDate=2004-8-17 12:00:00
2_FileVersion=5.1.2600.2180
3_FileName=C:\WINDOWS\SYSTEM32\SERVICES.EXE
3_FileSize=108032
3_FileDate=2004-8-17 12:00:00
3_FileVersion=5.1.2600.2180
4_FileName=C:\WINDOWS\SYSTEM32\LSASS.EXE
4_FileSize=13312
4_FileDate=2004-8-17 12:00:00
4_FileVersion=5.1.2600.2180
5_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
5_FileSize=14336
5_FileDate=2004-8-17 12:00:00
5_FileVersion=5.1.2600.2180
6_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
6_FileSize=14336
6_FileDate=2004-8-17 12:00:00
6_FileVersion=5.1.2600.2180
7_FileName=D:\瑞星杀毒\RISING\RAV\CCENTER.EXE
7_FileSize=110592
7_FileDate=2005-12-14 17:28:37
7_FileVersion=18.0.0.3
8_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
8_FileSize=14336
8_FileDate=2004-8-17 12:00:00
8_FileVersion=5.1.2600.2180
9_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
9_FileSize=14336
9_FileDate=2004-8-17 12:00:00
9_FileVersion=5.1.2600.2180
10_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
10_FileSize=14336
10_FileDate=2004-8-17 12:00:00
10_FileVersion=5.1.2600.2180
11_FileName=D:\瑞星杀毒\RISING\RAV\RAVMOND.EXE
11_FileSize=233472
11_FileDate=2006-8-28 21:51:58
11_FileVersion=18.0.1.35
12_FileName=D:\瑞星杀毒\RISING\RAV\RAVSTUB.EXE
12_FileSize=90112
12_FileDate=2006-8-7 13:23:35
12_FileVersion=18.0.0.16
13_FileName=C:\WINDOWS\SYSTEM32\NVSVC32.EXE
13_FileSize=143436
13_FileDate=2006-3-9 15:29:00
13_FileVersion=6.14.10.8421
14_FileName=C:\WINDOWS\SYSTEM32\SVCHOST.EXE
14_FileSize=14336
14_FileDate=2004-8-17 12:00:00
14_FileVersion=5.1.2600.2180
15_FileName=C:\WINDOWS\SYSTEM32\WDFMGR.EXE
15_FileSize=38912
15_FileDate=2005-1-28 1:36:00
15_FileVersion=5.2.3790.1230
16_FileName=C:\WINDOWS\EXPLORER.EXE
16_FileSize=976896
16_FileDate=2004-8-17 12:00:00
16_FileVersion=6.0.2900.2180
17_FileName=C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
17_FileSize=32768
17_FileDate=2004-8-17 12:00:00
17_FileVersion=5.1.2600.2180
18_FileName=C:\WINDOWS\SYSTEM32\ALG.EXE
18_FileSize=44544
18_FileDate=2004-8-17 12:00:00
18_FileVersion=5.1.2600.2180
19_FileName=C:\WINDOWS\SOUNDMAN.EXE
19_FileSize=577536
19_FileDate=2006-1-11 15:08:36
19_FileVersion=5.1.0.51
20_FileName=C:\WINDOWS\FIXCAMERA.EXE
20_FileSize=20480
20_FileDate=2005-12-6 13:08:42
20_FileVersion=1.0.0.3
21_FileName=C:\WINDOWS\TSNP2STD.EXE
21_FileSize=106496
21_FileDate=2005-11-24 17:01:06
21_FileVersion=1.1.2.4
22_FileName=C:\WINDOWS\VSNP2STD.EXE
22_FileSize=344064
22_FileDate=2005-11-23 22:00:20
22_FileVersion=1.0.3.5
23_FileName=C:\PROGRA~1\YAHOO!\ASSIST~1\YLIVE.EXE
23_FileSize=57344
23_FileDate=2006-9-1 14:48:36
23_FileVersion=3.0.5.1011
24_FileName=C:\PROGRA~1\YAHOO!\ASSISTANT\YASSISTSE.EXE
24_FileSize=73728
24_FileDate=2006-8-4 11:49:04
24_FileVersion=3.0.0.1001
25_FileName=D:\瑞星杀毒\RISING\RAV\RAVTASK.EXE
25_FileSize=114688
25_FileDate=2005-12-14 17:28:37
25_FileVersion=18.0.0.22
26_FileName=C:\WINDOWS\SYSTEM32\CTFMON.EXE
26_FileSize=15360
26_FileDate=2004-8-17 12:00:00
26_FileVersion=5.1.2600.2180
27_FileName=D:\瑞星杀毒\RISING\RAV\RAVMON.EXE
27_FileSize=610304
27_FileDate=2006-8-28 21:51:58
27_FileVersion=18.0.1.33
28_FileName=D:\瑞星杀毒\RISING\RAV\RSAGENT.EXE
28_FileSize=106496
28_FileDate=2005-12-14 17:27:58
28_FileVersion=18.0.0.12
29_FileName=C:\WINDOWS\MSAGENT\AGENTSVR.EXE
29_FileSize=256512
29_FileDate=2004-8-17 12:00:00
29_FileVersion=2.0.0.3422
30_FileName=C:\PROGRAM FILES\QQ2006\QQ.EXE
30_FileSize=1363968
30_FileDate=2006-4-25 17:02:56
30_FileVersion=0.0.0.0
31_FileName=C:\PROGRAM FILES\QQ2006\TIMPLATFORM.EXE
31_FileSize=69632
31_FileDate=2006-4-25 16:13:36
31_FileVersion=0.3.1.8
32_FileName=C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
32_FileSize=57856
32_FileDate=2005-6-11 7:53:32
32_FileVersion=5.1.2600.2696
33_FileName=C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
33_FileSize=32768
33_FileDate=2004-8-17 12:00:00
33_FileVersion=5.1.2600.2180
34_FileName=C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
34_FileSize=93184
34_FileDate=2004-8-17 20:00:00
34_FileVersion=6.0.2900.2180
35_FileName=G:\新建文件夹\IEHELP.EXE
35_FileSize=737792
35_FileDate=2006-8-31 12:39:22
35_FileVersion=7.78.0.0
36_FileName=[SYSTEM PROCESS]
Max=36
gototop
 
小骨头v
头像
初生襁褓狮
  • 帖子:138
  • 注册: 2006-08-06
  • 来自:
发表于: 2006-09-03 03:02 | 显示全部 短消息 资料
字号: 7楼

[Hosts]
HostsFile=C:\WINDOWS\system32\Drivers\Etc\Hosts
1_Host=127.0.0.1      localhost
Max=1

[Service]
1_ServiceName=DcomLaunch
1_DisplayName=DCOM Server Process Launcher
1_Description=为 DCOM 服务提供加载功能。
1_Status=已启动
1_StartType=自动
1_ServiceDll=C:\WINDOWS\SYSTEM32\RPCSS.DLL
1_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST -K DCOMLAUNCH

2_ServiceName=HTTPFilter
2_DisplayName=HTTP SSL
2_Description=此服务通过安全套接字层(SSL)实现 HTTP 服务的安全超文本传送协议(HTTPS)。如果此服务被禁用,任何依赖它的服务将无法启动。
2_Status=停止
2_StartType=手动
2_ServiceDll=C:\WINDOWS\SYSTEM32\W3SSL.DLL
2_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K HTTPFILTER

3_ServiceName=NetDDEdsdm
3_DisplayName=Network DDE DSDM
3_Description=管理动态数据交换 (DDE) 网络共享。如果此服务终止,DDE 网络共享将不可用。如果此服务被禁用,任何依赖它的服务将无法启动。
3_Status=停止
3_StartType=已禁用
3_ServiceDll=
3_ImagePath=C:\WINDOWS\SYSTEM32\NETDDE.EXE

4_ServiceName=NVSvc
4_DisplayName=NVIDIA Display Driver Service
4_Description=Provides system and desktop level support to the NVIDIA display driver
4_Status=已启动
4_StartType=自动
4_ServiceDll=
4_ImagePath=C:\WINDOWS\SYSTEM32\NVSVC32.EXE

5_ServiceName=ose
5_DisplayName=Office Source Engine
5_Description=可保存用于更新和修复的安装文件,并且在下载安装程序更新和 Watson 错误报告时必须使用。
5_Status=停止
5_StartType=手动
5_ServiceDll=
5_ImagePath="C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\SOURCE ENGINE\OSE.EXE"

6_ServiceName=RsCCenter
6_DisplayName=Rising Process Communication Center
6_Description=
6_Status=已启动
6_StartType=自动
6_ServiceDll=
6_ImagePath="D:\瑞星杀毒\RISING\RAV\CCENTER.EXE"

7_ServiceName=RsRavMon
7_DisplayName=RsRavMon Service
7_Description=
7_Status=已启动
7_StartType=自动
7_ServiceDll=
7_ImagePath="D:\瑞星杀毒\RISING\RAV\RAVMOND.EXE"

8_ServiceName=UMWdf
8_DisplayName=Windows User Mode Driver Framework
8_Description=启用 Windows 用户模式驱动程序。
8_Status=已启动
8_StartType=自动
8_ServiceDll=
8_ImagePath=C:\WINDOWS\SYSTEM32\WDFMGR.EXE

9_ServiceName=WmdmPmSN
9_DisplayName=Portable Media Serial Number Service
9_Description=Retrieves the serial number of any portable media player connected to this computer. If this service is stopped, protected content might not be down loaded to the device.
9_Status=停止
9_StartType=手动
9_ServiceDll=C:\WINDOWS\SYSTEM32\MSPMSNSV.DLL
9_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

10_ServiceName=wscsvc
10_DisplayName=Security Center
10_Description=监视系统安全设置和配置。
10_Status=已启动
10_StartType=自动
10_ServiceDll=C:\WINDOWS\SYSTEM32\WSCSVC.DLL
10_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

11_ServiceName=xmlprov
11_DisplayName=Network Provisioning Service
11_Description=为自动网络提供管理基于域的 XML 配置文件。
11_Status=停止
11_StartType=手动
11_ServiceDll=C:\WINDOWS\SYSTEM32\XMLPROV.DLL
11_ImagePath=C:\WINDOWS\SYSTEM32\SVCHOST.EXE -K NETSVCS

Max=11

[END]
Max=1
gototop
 
<<上一主题|下一主题>>
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT