[CODE]

2007-03-21,09:39:15

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows 2000 Professional Service Pack 4 (Build 2195) - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    <FlashPlayerUpdate><C:\WINNT\system32\Macromed\Flash\GetFlash.exe>  [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <Synchronization Manager><mobsync.exe /logon>  [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows 2000 Publisher]
    <Userinit><C:\WINNT\system32\userinit.exe,>  [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
    <WinlogonNotify: NavLogon><C:\WINNT\system32\NavLogon.dll>  [(Verified)Symantec Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><(无)>  [N/A]

==================================
启动文件夹
[腾讯TM]
  <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\腾讯TM.lnk --> C:\PROGRA~1\Tencent\QQ\TMShell.exe []><N>

==================================
服务
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
  <C:\WINNT\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Symantec Event Manager / ccEvtMgr][Running/Auto Start]
  <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Password Validation / ccPwdSvc][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr][Running/Auto Start]
  <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[Symantec AntiVirus Definition Watcher / DefWatch][Running/Auto Start]
  <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
  <C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[EMAP Service / EMAP Service][Stopped/Auto Start]
  <><N/A>

[Intel(R) NMS / NMSSvc][Running/Auto Start]
  <C:\WINNT\system32\NMSSvc.exe><Intel Corporation>
[SavRoam / SavRoam][Running/Auto Start]
  <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec>
[Symantec Network Drivers Service / SNDSrvc][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[Symantec SPBBCSvc / SPBBCSvc][Stopped/Manual Start]
  <C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe><Symantec Corporation>
[Symantec AntiVirus / Symantec AntiVirus][Running/Auto Start]
  <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>
[Portable Media Serial Number Service / WmdmPmSN][Stopped/Manual Start]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->C:\WINNT\system32\mspmsnsv.dll><Microsoft Corporation>

==================================
驱动程序
[2930U2 / 2930U2][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\2930U2.SYS><Adaptec, Inc.>
[3WAREDRV / 3WAREDRV][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\3WAREDRV.SYS><N/A>
[3WAREFLT / 3WAREFLT][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\3WAREFLT.SYS><N/A>
[3WAREGSM / 3WAREGSM][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\3WAREGSM.SYS><N/A>
[3WDRV100 / 3WDRV100][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\3WDRV100.SYS><N/A>
[A320RAID / A320RAID][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\A320RAID.SYS><Adaptec, Inc.>
[AAATIMEO / AAATIMEO][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\AAATIMEO.SYS><Microsoft Corporation>
[AAC / AAC][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AAC.SYS><Adaptec, Inc.>
[AAR1210 / AAR1210][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AAR1210.SYS><Adaptec, Inc.>
[ADF6U160 / ADF6U160][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\ADF6U160.SYS><Adaptec, Inc.>
[adpu160m / adpu160m][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\ADPU160M.SYS><Microsoft Corporation>
[ADPU320 / ADPU320][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\ADPU320.SYS><Adaptec, Inc.>
[AEC6210 / AEC6210][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AEC6210.SYS><ACARD Technology Corp.>
[AEC6260 / AEC6260][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AEC6260.SYS><ACARD Technology Corp.>
[AEC6280 / AEC6280][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AEC6280.SYS><ACARD Technology Corp.>
[AEC67160 / AEC67160][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AEC67160.SYS><ACARD Technology Corp.>
[AEC671X / AEC671X][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AEC671X.SYS><ACARD Technology Corp.>
[AEC68X5 / AEC68X5][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AEC68X5.SYS><ACARD Technology Corp.>
[AFC9XXX / AFC9XXX][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\AFC9XXX.SYS><Adaptec,  Inc.>
[AMDBUSDR / AMDBUSDR][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\AMDBUSDR.SYS><AMD>
[AMDEIDE / AMDEIDE][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\AMDEIDE.SYS><AMD>

[Anfad / Anfad][Stopped/System Start]
  <system32\drivers\Anfad.sys><N/A>
[ASA72XX / ASA72XX][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\ASA72XX.SYS><Adaptec, Inc.>
[CDA1000 / CDA1000][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\CDA1000.SYS><Adaptec, Inc.>
[CLRTYFC / CLRTYFC][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\CLRTYFC.SYS><ATTO Technology, Inc.>
[CMDIDE / CMDIDE][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\CMDIDE.SYS><CMD Technology, Inc.>
[CPQCISSM / CPQCISSM][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\CPQCISSM.SYS><Hewlett-Packard Company>
[CSB6IDE / CSB6IDE][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\CSB6IDE.SYS><ServerWorks Corporation>
[DAC2W2K / DAC2W2K][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\DAC2W2K.SYS><LSI Logic Corporation>
[dmboot / dmboot][Stopped/Disabled]
  <System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
  <\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Running/Boot Start]
  <\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[DMX3191 / DMX3191][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\DMX3191.SYS><Microsoft Corporation>
[DMX3194 / DMX3194][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\DMX3194.SYS><Microsoft Corporation>
[DPTI2O / DPTI2O][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\DPTI2O.SYS><Adaptec, Inc.>
[DPTSCSI / DPTSCSI][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\DPTSCSI.SYS><Distributed Processing Technology Corp.>
[Symantec Eraser Control driver / eeCtrl][Running/System Start]
  <\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys><Symantec Corporation>
[Creative AudioPCI (ES1371,ES1373) (WDM) / es1371][Stopped/Manual Start]
  <system32\drivers\es1371mp.sys><Microsoft Corporation>
[EXPRESFC / EXPRESFC][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\EXPRESFC.SYS><ATTO Technology, Inc.>
[EXPRESS2 / EXPRESS2][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\EXPRESS2.SYS><ATTO Technology, Inc.>
[FAD / FAD][Stopped/System Start]
  <system32\DRIVERS\FAD.sys><N/A>
[FASTSX / FASTSX][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\FASTSX.SYS><Promise Technology, Inc.>
[FASTTRAK / FASTTRAK][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\FASTTRAK.SYS><Promise Technology, Inc.>
[FASTTX2K / FASTTX2K][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\FASTTX2K.SYS><Promise Technology, Inc.>
[fatc9zo / fatc9zo][Running/System Start]
  <\??\C:\WINNT\system32\drivers\fatc9zo.sys><Microsoft Corporation>
[HPT371 / HPT371][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\HPT371.SYS><HighPoint Technologies, Inc.>
[HPT374 / HPT374][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\HPT374.SYS><HighPoint Technologies, Inc.>
[HPT3XX / HPT3XX][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\HPT3XX.SYS><HighPoint Technologies, Inc.>
[HPTMV / HPTMV][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\HPTMV.SYS><HighPoint Technologies, Inc.>
[HPTPRO / HPTPRO][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\HPTPRO.SYS><HighPoint Technologies, Inc.>
[I2OMP / I2OMP][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\I2OMP.SYS><Microsoft Corporation>
[IASTOR / IASTOR][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\IASTOR.SYS><Intel Corporation>
[IFT2000 / IFT2000][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\IFT2000.SYS><Infortrend Technology, Inc.>
[INIA100 / INIA100][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\INIA100.SYS><Initio corp.>
[ITERAID / ITERAID][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\ITERAID.SYS><Integrated Technology Express, Inc.>
[M5228 / M5228][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\M5228.SYS><ALi Corporation.>
[M5281 / M5281][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\M5281.SYS><ALi Corporation>
[MEGAIDE / MEGAIDE][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\MEGAIDE.SYS><LSI Logic Corporation.>
[MRAID2K / MRAID2K][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\MRAID2K.SYS><LSI Logic Corporation>
[mraid35x / mraid35x][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\MRAID35X.SYS><American MegaTrends Inc.>
[NAVENG / NAVENG][Running/Manual Start]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060531.019\naveng.sys><Symantec Corporation>
[NAVEX15 / NAVEX15][Running/Manual Start]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20060531.019\navex15.sys><Symantec Corporation>
[NFRD960 / NFRD960][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\NFRD960.SYS><IBM Corporation>
[NVATABUS / NVATABUS][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\NVATABUS.SYS><NVIDIA Corporation>
[AMD PCNET Compatable Adapter Driver / PCnet][Stopped/Manual Start]
  <system32\DRIVERS\pcntn5m.sys><AMD Inc.>
[PERC2 / PERC2][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\PERC2.SYS><Adaptec, Inc.>

[PNP649R / PNP649R][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\PNP649R.SYS><CMD Technology, Inc.>
[PNP680 / PNP680][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\PNP680.SYS><Silicon Image, Inc.>
[PNP680R / PNP680R][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\PNP680R.SYS><Silicon Image, Inc>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[QL12160 / QL12160][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\QL12160.SYS><QLogic Corporation>
[QL1280 / QL1280][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\QL1280.SYS><QLogic Corporation>
[QL2200 / QL2200][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\QL2200.SYS><N/A>
[QL2300 / QL2300][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\QL2300.SYS><QLogic Corporation>
[QL4000 / QL4000][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\QL4000.SYS><QLogic Corporation>
[QL4010 / QL4010][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\QL4010.SYS><QLogic Corporation>
[RAIDSRC / RAIDSRC][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\RAIDSRC.SYS><Intel>
[SAVRT / SAVRT][Running/System Start]
  <\??\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation>
[SAVRTPEL / SAVRTPEL][Running/System Start]
  <\??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation>
[SI3112 / SI3112][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SI3112.SYS><Silicon Image, Inc.>
[SI3112R / SI3112R][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SI3112R.SYS><Silicon Image, Inc.>
[SI3114 / SI3114][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SI3114.SYS><Silicon Image, Inc.>
[SI3114R / SI3114R][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SI3114R.SYS><Silicon Image, Inc>
[SI3124 / SI3124][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SI3124.SYS><Silicon Image, Inc.>
[SI3124R / SI3124R][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SI3124R.SYS><Silicon Image, Inc>
[SIFILTER / SIFILTER][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\SIWINACC.SYS><Silicon Image, Inc.>
[SiS630 / SiS630][Running/Manual Start]
  <system32\DRIVERS\sis630p.sys><Silicon Integrated Systems Corporation>
[Service for SiS7018 Driver (WDM) / SiS7018][Running/Manual Start]
  <system32\drivers\sis7018.sys><Silicon Integrated Systems Corporation>
[SiS AGP Filter / SISAGP][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\SISAGPx.sys><Silicon Integrated Systems Corporation>
[SISIDE / SISIDE][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\SISIDE.SYS><Silicon Integrated Systems Corp.>
[SiS PCI Fast Ethernet Adapter Driver / SISNIC][Running/Manual Start]
  <system32\DRIVERS\sisnic.sys><SiS Corporation>
[SISRAID / SISRAID][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SISRAID.SYS><Silicon Integrated Systems>
[SISRAID1 / SISRAID1][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SISRAID1.SYS><Silicon Integrated Systems>
[SPBBCDrv / SPBBCDrv][Stopped/Manual Start]
  <\??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys><Symantec Corporation>

[SPTRAK / SPTRAK][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\SPTRAK.SYS><Promise Technology, Inc.>
[SymEvent / SymEvent][Running/Manual Start]
  <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
[SYMMPI / SYMMPI][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SYMMPI.SYS><LSI Logic>
[SYMREDRV / SYMREDRV][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
[SYMTDI / SYMTDI][Running/System Start]
  <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>
[sym_hi / sym_hi][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\SYM_HI.SYS><Symbios Inc.>
[SYM_U3 / SYM_U3][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\SYM_U3.SYS><LSI Logic>
[TRM3X5 / TRM3X5][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\TRM3X5.SYS><Tekram Technology Co., Ltd.>
[u7a / u7a][Running/Boot Start]
  <\SystemRoot\system32\drivers\u7a.sys><N/A>
[ULSATA / ULSATA][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\ULSATA.SYS><Promise Technology, Inc.>
[ULTIMA / ULTIMA][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\ULTIMA.SYS><Aralion INC.>
[ULTRA / ULTRA][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\ULTRA.SYS><Promise Technology, Inc.>
[VIAMRAID / VIAMRAID][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\VIAMRAID.SYS><VIA Technologies inc,.ltd>
[VIAPDSK / VIAPDSK][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\VIAPDSK.SYS><VIA Technologies, Inc.>
[W2KADV / W2KADV][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\W2KADV.SYS><ConnectCom Solutions, Inc.>
[WD7296A / WD7296A][Stopped/Boot Start]
  <\SystemRoot\System32\DRIVERS\WD7296A.SYS><Western Digital Corporation>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
[NIC Management Service Configuration Driver / NMSCFG][Running/Manual Start]
  <\??\C:\WINNT\system32\drivers\NMSCFG.SYS><Intel Corporation>

==================================
浏览器加载项
[MonitorURL Class]
  {08A312BB-5409-49FC-9347-54BB7D069AC6} <C:\PROGRA~1\DESKAD~1\deskipn.dll, >
[Zhongsou Browser Helper]
  {2A0176FE-008B-4706-90F5-BBA532A49731} <C:\Program Files\SearchNet\SNHpr.dll, N/A>
[IE Browser Helper]
  {3CE496D1-1746-41CD-9489-3C0B93DF10E2} <C:\WINNT\Downlo~1\IEHpr.dll, N/A>
[QQBrowserHelperObject Class]
  {54EBD53A-9BC1-480B-966A-843A333CA162} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[QQIEFloatBarCfgCmd Class]
  {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} <C:\Program Files\Tencent\QQ\QQIEHelper.dll, 深圳市腾讯计算机系统有限公司>
[@msdxmLC.dll,-1@2052,电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\system32\msdxm.ocx, Microsoft Corporation>
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINNT\system32\CMBEdit.dll, >
[FileClient Control]
  {9627E9EB-3636-42AF-80C2-3CE2E5541930} <C:\WINNT\DOWNLO~1\FILECL~1.OCX, 新太科技有限公司>
[Update Class]
  {9F1C11AA-197B-4942-BA54-47A8489BB47F} <C:\WINNT\system32\iuctl.dll, Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINNT\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[添加到QQ自定义面板]
  <C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>

日志贴的快点,不然不等你了啊

[添加到QQ表情]
  <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 148][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.00.2195.6601]
[PID: 176][\??\C:\WINNT\system32\csrss.exe]  [Microsoft Corporation, 5.00.2195.6601]
[PID: 172][\??\C:\WINNT\system32\winlogon.exe]  [Microsoft Corporation, 5.00.2195.6997]
    [C:\WINNT\system32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.6673]
    [C:\WINNT\system32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\system32\NavLogon.dll]  [Symantec Corporation, 10.0.1.1000]
[PID: 224][C:\WINNT\system32\services.exe]  [Microsoft Corporation, 5.00.2195.7035]
    [C:\WINNT\system32\dmserver.dll]  [VERITAS Software Corp., 2195.6605.297.3]
[PID: 236][C:\WINNT\system32\lsass.exe]  [Microsoft Corporation, 5.00.2195.7011]
[PID: 396][C:\WINNT\system32\svchost.exe]  [Microsoft Corporation, 5.00.2134.1]
[PID: 424][C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe]  [Symantec Corporation, 103.5.4.3]
    [C:\WINNT\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINNT\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Common Files\Symantec Shared\ccL35.dll]  [Symantec Corporation, 103.5.4.3]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.5.4.3]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 103.5.4.3]
[PID: 1064][C:\WINNT\Explorer.EXE]  [Microsoft Corporation, 5.00.3700.6690]
    [C:\WINNT\AppPatch\AcLayers.DLL]  [Microsoft Corporation, 5.00.2195.6717]
    [C:\WINNT\system32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.6673]
    [C:\WINNT\system32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
[PID: 928][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2800.1106]
    [C:\PROGRA~1\DESKAD~1\deskipn.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\QQIEHelper.dll]  [深圳市腾讯计算机系统有限公司, 1, 1, 0, 5]
    [C:\WINNT\system32\Macromed\Flash\Flash8b.ocx]  [Macromedia, Inc., 8,0,24,0]
    [C:\WINNT\system32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.6673]
    [C:\WINNT\system32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\system32\msadp32.acm]  [Microsoft Corporation, 5.00.2134.1]
[PID: 1260][C:\WINNT\system32\rundll32.exe]  [Microsoft Corporation, 5.00.2134.1]
    [C:\Program Files\DeskAdTop\Run.dll]  [, 1, 0, 0, 1]
[PID: 1156][C:\ebscn_super\TDXW.EXE]  [, ]
    [C:\ebscn_super\TCalc.dll]  [, 1, 0, 0, 1]
    [C:\ebscn_super\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\ebscn_super\MSVCP60.dll]  [Microsoft Corporation, 6.00.8972.0]
    [C:\ebscn_super\Viewthem.dll]  [, 1, 0, 0, 1]
    [C:\ebscn_super\invest.dll]  [, 1.15]
    [C:\ebscn_super\Dbf.dll]  [N/A, ]
    [C:\ebscn_super\Secure.dll]  [通达信, 1.00.00]
    [C:\ebscn_super\TList.dll]  [, 1, 0, 0, 1]
    [C:\ebscn_super\calcer.dll]  [, 1, 0, 0, 1]
    [C:\ebscn_super\Advhq.dll]  [, 1, 0, 0, 1]
[PID: 476][C:\Program Files\WinRAR\WinRAR.exe]  [N/A, ]
[PID: 692][C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.554\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINNT\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]

驱动中,后面是[N/A]的全部删除,貌似都不是好东西

请高手帮忙，多多帮忙