求救啊大哥救救我呀！！！打开网站老是弹出37SS和XBXBXBXB的网站来啊
查不出毒来，希望大哥帮帮我。

就是开机不动它，隔一会它就自动打开那些垃圾网站了，像WWW.37SS.COM
WWW.XBXBXBXB.COM 还有一些音乐,黄站之类的出来,一出就打开好几个网站,机器变的很慢

大哥帮帮忙啊.

2006-10-30,09:43:17

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <RfwMain><"D:\22\Rising\Rfw\rfwmain.exe" -Startup>  [Beijing Rising Technology Co., Ltd.]
    <Desktop><C:\WINDOWS\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll>  [N/A]
    <RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <Galaxy><rundll32.exe C:\WINDOWS\system32\ppgaxea.dll,Su>  []
    <Power><rundll32.exe C:\WINDOWS\system32\alxklt.dll,Start>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><EXPLORER.EXE>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Corporation]
    <webwork><C:\WINDOWS\webwork\webwork.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\URL]
    <WinlogonNotify: URL><C:\WINDOWS\system32\lv4209hoe.dll>  [N/A]

==================================
启动文件夹
N/A

==================================
服务
[DCOM Server Process Launcher / DcomLaunch]
  <C:\WINDOWS\system32\svchost -k DcomLaunch-->%SystemRoot%\system32\rpcss.dll><Microsoft Corporation>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Indexing Service / IndexingService]
  <C:\WINDOWS\system32\cisrv.exe><Microsoft Corporation>
[Security Machine Manager / Mercha2]
  <C:\WINDOWS\SYSTEM32\RUN32.EXE C:\WINDOWS\SYSTEM32\WBEM\TXFIMA74.DLL,Export 1087><Microsoft Corporation>
[MessageServices / MessageServices]
  <C:\WINDOWS\system32\Svchost.exe -k MessageServices-->C:\WINDOWS\system32\MsServices\update\svchost.dll><N/A>
[Rising Proxy  Service / RfwProxySrv]
  <d:\22\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <d:\22\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Remote Procedure Call (RPC) / RpcSs]
  <C:\WINDOWS\system32\svchost -k rpcss-->%SystemRoot%\system32\rpcss.dll><>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[RsRavMon Service / RsRavMon]
  <"C:\Program Files\Rising\Rav\Ravmond.exe"><N/A>
[Servicel / Servicel]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\jetspeed.dll><N/A>
[Office Backup Engine / Tech]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\mnmbov02.dll><N/A>
[Terminal Services / TermService]
  <C:\WINDOWS\System32\svchost -k DComLaunch-->%SystemRoot%\System32\termsrv.dll><N/A>
[Distributed Link Tracking Server / TrkWsk]
  <C:\WINDOWS\system32\svchost.exe -k netsvsc-->%SystemRoot%\system32\ES2.dll><N/A>
[Windows Media Connect Service / WMConnectCDS]
  <C:\Program Files\Windows Media Connect 2\wmccds.exe><Microsoft Corporation>

==================================
驱动程序
[8150129 / 8150129]
  <C:\WINDOWS\SYSTEM32\DRIVERS\8150129.SYS><N/A>
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc]
  <system32\drivers\ac97intc.sys><Intel Corporation>
[Rising TDI Base Driver / BaseTDI]
  <System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[EagleNT / EagleNT]
  <\??\C:\WINDOWS\system32\drivers\EagleNT.sys><N/A>
[3Com EtherLink XL 90XB/C Adapter Driver / EL90XBC]
  <system32\DRIVERS\el90xbc5.sys><3Com Corporation>
[Creative AudioPCI (ES1371,ES1373) (WDM) / es1371]
  <system32\drivers\es1371mp.sys><Creative Technology Ltd.>
[ExpScaner / ExpScaner]
  <\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
[HookCont / HookCont]
  <\??\C:\Program Files\Rising\Rav\HOOKCONT.sys><Rising tech Co. ltd>
[HookReg / HookReg]
  <\??\C:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys]
  <\??\C:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl]
  <\??\D:\22\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[i81x / i81x]
  <system32\DRIVERS\i81xnt5.sys><Intel(R) Corporation>
[iAimFP0 / iAimFP0]
  <system32\DRIVERS\wADV01nt.sys><Intel(R) Corporation>
[iAimFP1 / iAimFP1]
  <system32\DRIVERS\wADV02NT.sys><Intel(R) Corporation>
[iAimFP2 / iAimFP2]
  <system32\DRIVERS\wADV05NT.sys><Intel(R) Corporation>
[iAimFP3 / iAimFP3]
  <system32\DRIVERS\wSiINTxx.sys><Intel(R) Corporation>
[iAimFP4 / iAimFP4]
  <system32\DRIVERS\wVchNTxx.sys><Intel(R) Corporation>
[iAimFP5 / iAimFP5]
  <system32\DRIVERS\wADV07nt.sys><Intel(R) Corporation>
[iAimFP6 / iAimFP6]
  <system32\DRIVERS\wADV08nt.sys><Intel(R) Corporation>
[iAimFP7 / iAimFP7]
  <system32\DRIVERS\wADV09nt.sys><Intel(R) Corporation>
[iAimTV0 / iAimTV0]
  <system32\DRIVERS\wATV01nt.sys><Intel(R) Corporation>
[iAimTV1 / iAimTV1]
  <system32\DRIVERS\wATV02NT.sys><Intel(R) Corporation>
[iAimTV3 / iAimTV3]
  <system32\DRIVERS\wATV04nt.sys><Intel(R) Corporation>
[iAimTV4 / iAimTV4]
  <system32\DRIVERS\wCh7xxNT.sys><Intel(R) Corporation>
[iAimTV5 / iAimTV5]
  <system32\DRIVERS\wATV10nt.sys><Intel(R) Corporation>
[iAimTV6 / iAimTV6]
  <system32\DRIVERS\wATV06nt.sys><Intel(R) Corporation>
[MEMSCAN / MEMSCAN]
  <\??\C:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs]
  <\??\d:\22\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[MZU_RK / MZU_RK]
  <\??\C:\WINDOWS\system32\MZU_DRV.sys><N/A>
[npkycryp / npkycryp]
  <\??\D:\网络游戏\QQ\npkycryp.sys><N/A>
[Direct Parallel Link Driver / Ptilink]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[RsFwDrv / RsFwDrv]
  <\??\D:\22\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
  <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv]
  <system32\DRIVERS\secdrv.sys><N/A>

==================================
浏览器加载项
[IEMonitor Class]
  {08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\Program Files\DeskAdTop\deskipn.dll, >
[MyIEHelper Class]
  {16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\UserData\IEHelper_5156.dll, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <D:\网络游戏\QQ\QQ.EXE, TENCENT>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[BlueskyVideo Control]
  {2EA6D939-4445-43F1-A12B-8CB3DDA8B855} <C:\WINDOWS\DOWNLO~1\v2.ocx, 蓝天工作室(http://www.bluesky.cn)>
[Blueskyvoice Control]
  {991481A7-4669-4E15-8C24-100404E1F5CB} <C:\WINDOWS\DOWNLO~1\BLUESK~1.OCX, 蓝天工作室(http://www.bluesky.cn)>
[Rising Web Scan Object]
  {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} <C:\WINDOWS\Downloaded Program Files\OL2005.dll, Beijing Rising Technology Co., Ltd.>
[IEMonitor Class]
  {08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\Program Files\DeskAdTop\deskipn.dll, >
[MyIEHelper Class]
  {16B770A0-0E87-4278-B748-2460D64A8386} <C:\Documents and Settings\All Users\Application Data\Microsoft\UserData\IEHelper_5156.dll, N/A>
[PGEdit Class]
  {2BFAA61B-5C83-4865-8281-D8BDBF863061} <C:\Program Files\GnetSecCtrl\PG_ATL_Edit.dll, 银联网络支付集团有限公司>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\kakatool.dll, Beijing Rising Technology Co., Ltd.>
[CPasswordEditCtrl Object]
  {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32\qqedit\qqedit.dll, 腾讯科技（深圳）有限公司>
[&使用迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[&使用迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>
[上传到QQ网络硬盘]
  <D:\网络游戏\QQ\AddToNetDisk.htm, N/A>
[添加到QQ自定义面板]
  <D:\网络游戏\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <D:\网络游戏\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <D:\网络游戏\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 1424][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\ppgaxea.dll]  [, 1, 0, 0, 0]
    [C:\WINDOWS\system32\alxklt.dll]  [, 1, 0, 0, 0]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\sutxre.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\wpsont.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\ccpgen.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\ex\Dhcom.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\ex\kerdpm.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\ex\Pac.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21]
[PID: 1632][D:\22\Rising\Rfw\rfwmain.exe]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 52]
    [D:\22\Rising\Rfw\RsGuiLib.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 23]
    [D:\22\Rising\Rfw\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [D:\22\Rising\Rfw\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
    [D:\22\Rising\Rfw\PSAPI.DLL]  [Microsoft Corporation, 4.00]
[PID: 1668][C:\WINDOWS\system32\rundll32.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\DeskAdTop\Run.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\DeskAdTop\GetCPMWord.dll]  [N/A, N/A]
    [C:\Program Files\DeskAdTop\WebPageParser.dll]  [N/A, N/A]
    [C:\Program Files\DeskAdTop\Charset.dll]  [N/A, N/A]
    [C:\Program Files\DeskAdTop\CreateDomTree.dll]  [N/A, N/A]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
[PID: 1676][C:\Program Files\Rising\Rav\RavTask.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 22]
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
    [C:\Program Files\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
[PID: 1788][C:\Program Files\Rising\Rav\Ravmon.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 1, 33]
    [C:\Program Files\Rising\Rav\RsGuiLib.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 26]
    [C:\Program Files\Rising\Rav\BWList.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 19]
    [C:\Program Files\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\Program Files\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\Program Files\Rising\Rav\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
[PID: 1844][c:\windows\pmsgr.exe]  [Microsoft Corporation, 5.2.3790.1830]
[PID: 228][D:\网络游戏\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [D:\网络游戏\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [D:\网络游戏\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\网络游戏\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [D:\网络游戏\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [D:\网络游戏\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [D:\网络游戏\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [D:\网络游戏\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [D:\网络游戏\QQ\QQMainFrame.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\CQQApplication.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.8825]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\GroupLive.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\QQPlugin.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\QRingMng.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [D:\网络游戏\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [D:\网络游戏\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [D:\网络游戏\QQ\QQAvatar.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [D:\网络游戏\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\网络游戏\QQ\BQQApplication.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21]
    [D:\网络游戏\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [D:\网络游戏\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [D:\网络游戏\QQ\QQSceneMng.dll]  [N/A, N/A]
    [D:\网络游戏\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 0, 6, 60]
[PID: 252][D:\网络游戏\QQ\TIMPlatform.exe]  [tencent, 0, 3, 1, 8]
    [D:\网络游戏\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 3380][D:\Program Files\Chinagames\iGame\iGame.exe]  [深圳网域, 1, 8, 11, 8]
    [D:\Program Files\Chinagames\iGame\GameDevEx.dll]  [, 1, 0, 0, 17]
    [D:\Program Files\Chinagames\iGame\MFC42.DLL]  [Microsoft Corporation, 6.05.3014.0]
    [D:\Program Files\Chinagames\iGame\AvatarImage.dll]  [Macrosoft, 1, 0, 0, 1]
    [D:\Program Files\Chinagames\iGame\MacroAvatar.dll]  [Macrosoft, 1, 0, 0, 1]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Chinagames\iGame\CrashDump.dll]  [szdomain, 1, 6, 2005, 121]
    [D:\Program Files\Chinagames\iGame\dbghelp.dll]  [Microsoft Corporation, 6.2.0013.1 (DbgBuild.030619-2209)]
    [D:\Program Files\Chinagames\iGame\GameRes.dll]  [, 1, 0, 0, 3]
    [D:\Program Files\Chinagames\iGame\PropertyClient.dll]  [, 1, 0, 2, 7]
    [D:\Program Files\Chinagames\iGame\CgPropertyInfoMgr.dll]  [深圳网域, 1, 1, 2, 3]
    [D:\Program Files\Chinagames\iGame\MSVCP60.dll]  [Microsoft Corporation, 6.05.2144.0]
    [D:\Program Files\Chinagames\iGame\XmlMgr.dll]  [, 1, 1, 1, 1]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
    [D:\Program Files\Chinagames\iGame\iServices.DLL]  [深圳网域（中国游戏中心）, 1, 2, 3, 2]
    [D:\Program Files\Chinagames\iGame\UnValidate.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [D:\Program Files\Chinagames\iGame\ChatClient.dll]  [szdomain, 1, 3, 2, 37]
[PID: 3940][D:\网络游戏\TT\TTraveler.exe]  [腾讯公司, 3.1.0.261]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
    [D:\网络游戏\TT\Plugins\QQFloatBar\QQFloatBar4TT2.dll]  [腾讯公司, 1, 1, 0, 5]
    [D:\网络游戏\TT\Plugins\TWeather\TWeather.dll]  [, 1, 0, 0, 3]
    [D:\网络游戏\TT\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 4]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\WINDOWS\system32\WINWB86.IME]  [Microsoft Corporation, 4.00.950]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx]  [Adobe Systems, Inc., 9,0,16,0]
    [C:\WINDOWS\system32\UNISPIM.IME]  [北京清华紫光软件股份有限公司, 3.0.0.3045]
[PID: 2540][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\kakatool.dll]  [Beijing Rising Technology Co., Ltd., 2, 0, 0, 9]
    [C:\Program Files\DeskAdTop\deskipn.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 3580][D:\网络游戏\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\DeskAdTop\fshook.dll]  [, 1, 0, 0, 1]

=================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1www.ccnnic.com
127.0.0.1www.ccnnic.net
127.0.0.1www.ccnnlc.com
127.0.0.1www.ccnnlc.net
127.0.0.1www.bodoto.com
127.0.0.1bj.bodoto.com
127.0.0.1nb.bodoto.com
127.0.0.1hangzhou.bodoto.com
127.0.0.1jh.bodoto.com
127.0.0.1shangh.bodoto.com
127.0.0.1my.bodoto.com
127.0.0.1mail.bodoto.com
127.0.0.1www.bodoto.net
127.0.0.1www.bodoto.cn
127.0.0.1www.bodoto.com.cn
127.0.0.1www.bodoto.net.cn
127.0.0.1www.bodoto.org
127.0.0.1www.edmchina.com
127.0.0.1www.edmchina.net
127.0.0.1www.edmchina.cn
127.0.0.1www.edmchina.com.cn
127.0.0.1ad.edmchina.com
127.0.0.1agent.edmchina.com
127.0.0.1sales.edmchina.com
127.0.0.1mail.edmchina.com
127.0.0.1edmchina.com
127.0.0.1edmchina.net
127.0.0.1edmchina.cn
127.0.0.1edmchina.com.cn
127.0.0.1www.pk265.com
127.0.0.1pk265.com
127.0.0.1www.qqbao.com
127.0.0.1www.qqbao.net
127.0.0.1www.qqbao.cn
127.0.0.1www.qqbao.com.cn
127.0.0.1qqbao.com
127.0.0.1qqbao.com.cn
127.0.0.1ad.pvka.com
127.0.0.1da.pvka.com
127.0.0.1www.20060106.com
127.0.0.120060106.com
127.0.0.1www.huajundown.com
127.0.0.1www.huajundown.net
127.0.0.1huajundown.net
127.0.0.1qqbao.cn

==================================

大哥，求求你帮我看看啊！！急啊！先谢谢了