附:
2007-05-30,09:41:37

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional  (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <Super Rabbit SRRestore><F:\Program Files\MagicSet\srrest.exe /autosave>  [Super Rabbit Soft]
    <runeip><F:\Program Files\Rising\AntiSpyware\runiep.exe>  [Beijing Rising Technology Co., Ltd.]
    <RavTask><"C:\Program Files\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <RfwMain><"F:\Program Files\Rising\Rfw\rfwmain.exe" -Startup>  [Beijing Rising Technology Co., Ltd.]
    <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k>  [N/A]
    <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot>  [RealNetworks, Inc.]
    <Flashget><"C:\Program Files\FlashGet\FlashGet.exe" /min>  [FlashGet.com]
    <uvmmind><C:\WINDOWS\System32\wocfiba.exe>  [N/A]
    <oymejto><C:\WINDOWS\System32\gnkjkrl.exe>  [N/A]
    <upxdnd><C:\WINDOWS\upxdnd.exe>  [N/A]
    <WSVBRS><C:\WINDOWS\WSVBRS.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><EXPLORER.EXE>  [(Verified)Microsoft Corporation]
    <Userinit><c:\windows\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{32CD708B-60A7-4C00-9377-D73EAA495F0F}><C:\WINDOWS\system32\RavExt.dll>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\System Safety Monitor]
    <WinlogonNotify: System Safety Monitor><SSMWinlogonEx.dll>  [(Verified)System Safety Limited]

==================================
启动文件夹
[QQ游戏启动加速程序]
  <C:\Documents and Settings\your name\「开始」菜单\程序\启动\QQ游戏启动加速程序.lnk --> F:\PROGRA~1\Tencent\QQGame\Accel.exe [深圳市腾讯计算机系统有限公司]><N>
[腾讯QQ]
  <C:\Documents and Settings\your name\「开始」菜单\程序\启动\腾讯QQ.lnk --> F:\PROGRA~1\Tencent\qq\QQ.exe [TENCENT]><N>

<uvmmind><C:\WINDOWS\System32\wocfiba.exe> [N/A]
<oymejto><C:\WINDOWS\System32\gnkjkrl.exe> [N/A]
<upxdnd><C:\WINDOWS\upxdnd.exe> [N/A]
<WSVBRS><C:\WINDOWS\WSVBRS.exe> [N/A]
重点照顾一下

日志贴全.

又一个没好好利用SSM的。

服务
[ASP.NET State Service / aspnet_state]
  <C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Logical Disk Manager / dmserver]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\pwkbypkr.d1l><N/A>
[FECB89B0 / FECB89B0]
  <C:\WINDOWS\System32\FECB89B0.EXE -service><N/A>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[IMAPI CD-Burning COM Service / ImapiService]
  <C:\WINDOWS\System32\imapi.exe><Microsoft Corporation>
[MSSQL$PROJDIV / MSSQL$PROJDIV]
  <C:\MSDE\MSSQL$PROJDIV\Binn\sqlservr.exe -sPROJDIV><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper]
  <C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[Rising Proxy  Service / RfwProxySrv]
  <f:\program files\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <f:\program files\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[WINS Client / RpcPatch]
  <><N/A>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon]
  <"C:\Program Files\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>
[SQLAgent$PROJDIV / SQLAgent$PROJDIV]
  <C:\MSDE\MSSQL$PROJDIV\Binn\sqlagent.EXE -i PROJDIV><Microsoft Corporation>

==================================
驱动程序
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc]
  <system32\drivers\ac97intc.sys><Intel Corporation>
[Rising TDI Base Driver / BaseTDI]
  <System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[ExpScaner / ExpScaner]
  <\??\C:\Program Files\Rising\Rav\ExpScan.sys><>
[HookCont / HookCont]
  <\??\C:\Program Files\Rising\Rav\HOOKCONT.sys><Rising>
[HookReg / HookReg]
  <\??\C:\Program Files\Rising\Rav\HookReg.sys><>
[HookSys / HookSys]
  <\??\C:\Program Files\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl]
  <\??\F:\Program Files\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[Keypro / Keypro]
  <C:\WINDOWS\SYSTEM32\DRIVERS\Keypro.SYS><Microsoft Corporation>
[MEMSCAN / MEMSCAN]
  <\??\C:\Program Files\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs]
  <\??\f:\program files\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[npkcrypt / npkcrypt]
  <\??\F:\Program Files\Tencent\qq\npkcrypt.sys><INCA Internet Co., Ltd.>
[nv4 / nv4]
  <System32\DRIVERS\nv4.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[pwkbypkr / pwkbypkr]
  <\??\C:\WINDOWS\System32\drivers\pwkbypkr.sys><N/A>
[RsAntiSpyware / RsAntiSpyware]
  <\SystemRoot\System32\drivers\RsBoot.sys><Beijing Rising>
[RsFwDrv / RsFwDrv]
  <\??\F:\Program Files\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RsNTGDI / RsNTGDI]
  <\SystemRoot\System32\Drivers\RsNTGdi.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS]
  <\??\C:\Program Files\Rising\Rav\RSPPSYS.sys><Rising>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
  <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[System Safety Monitor 2.0 Core Engine / safemon]
  <\SystemRoot\system32\drivers\safemon.sys><System Safety Limited>
[Secdrv / Secdrv]
  <System32\DRIVERS\secdrv.sys><N/A>
[Sony USB Filter Driver (SONYPVU1) / SONYPVU1]
  <System32\DRIVERS\SONYPVU1.SYS><Sony Corporation>
[Ufkey / Ufkey]
  <C:\WINDOWS\SYSTEM32\DRIVERS\Ufkey.SYS><Microsoft Corporation>

==================================
浏览器加载项
[FGCatchUrl]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\Program Files\FlashGet\jccatch.dll, www.flashget.com>
[FlashGet GetFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\Program Files\FlashGet\getflash.dll, www.flashget.com>
[相关站点]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <F:\Program Files\Tencent\qq\QQ.EXE, TENCENT>
[快车]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\Program Files\FlashGet\FlashGet.exe, FlashGet.com>
[超级兔子上网精灵]
  {FEDF637B-F631-4583-A210-33CC828D42DB} <, N/A>
[Miorosoft Office]
  {1A59BA5B-3A01-437C-83BC-C7D32B4007BD} <C:\Program Files\Miorosoft Office\tbu04516\Miorosoft Office.dll, N/A>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\System32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[&Radio]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, N/A>
[INtess-ICDV3.0 WECC Client Control]
  {017767CF-2834-11D4-98F9-00C0DF242218} <C:\WINDOWS\DOWNLO~1\ICCCtrls.dll, 华为技术有限公司>
[CEnroll Class]
  {127698E4-E730-4E5C-A2B1-21490A70C8A1} <C:\WINDOWS\system32\xenroll.dll, Microsoft Corporation>
[PowerList Control]
  {20C2C286-BDE8-441B-B73D-AFA22D914DA5} <C:\WINDOWS\DOWNLO~1\POWERL~1.OCX, PPStream.com>
[Tencent Safety Online Base Module]
  {C09B522F-8AED-4E21-A65C-DC1AB652BAEE} <C:\WINDOWS\DOWNLO~1\CONFLICT.1\TSOBase.ocx, Tencent Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[WebBasedClientInstall Class]
  {D30CA0FD-1CA0-11D4-AC78-006008A9A8BC} <C:\WINDOWS\Downloaded Program Files\WebInst.Dll, Symantec Corporation>
[FGAutoLive]
  {F90D830D-C175-4bbe-82C7-FF94669A4C42} <C:\Program Files\FlashGet\fgupdate.dll, www.flashget.com>
[FGCatchUrl]
  {FB5DA724-162B-11D3-8B9B-AA70B4B0B524} <C:\Program Files\FlashGet\jccatch.dll, www.flashget.com>

[&使用快车(FlashGet)下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[&使用快车(FlashGet)下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[上传到QQ网络硬盘]
  <F:\Program Files\Tencent\qq\AddToNetDisk.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <F:\Program Files\Tencent\qq\AddPanel.htm, N/A>
[添加到QQ表情]
  <F:\Program Files\Tencent\qq\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <F:\Program Files\Tencent\qq\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 288][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 344][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 368][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\SSMWinlogonEx.dll]  [System Safety Limited, 2.0.8.584]
[PID: 412][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 424][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 580][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\System32\EBSPI.dll]  [N/A, N/A]
[PID: 616][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\System32\EBSPI.dll]  [N/A, N/A]
    [C:\Oracle\Ora81\bin\oci.dll]  [Oracle Corporation, 8.1.4.0.0]
    [C:\Oracle\Ora81\bin\OraClient8.Dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oracore8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oranls8.dll]  [Oracle Corporation, 8.1.3.0.0]
    [C:\Oracle\Ora81\bin\oracommon8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\orageneric8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oranl8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oran8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\orancrypt8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oranro8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\orannms8.dll]  [N/A, N/A]
    [C:\Oracle\Ora81\bin\Nmsp.dll]  [N/A, N/A]
    [C:\Oracle\Ora81\bin\oranldap8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oraldapclnt8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oranhost8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\oranoname8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\orantns8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\orannds8.dll]  [Oracle Corporation, 8.1.5.0.0]
    [C:\Oracle\Ora81\bin\ORATRACE8.dll]  [N/A, N/A]
    [C:\Oracle\Ora81\bin\orapls8.dll]  [Oracle Corporation, 8]
    [C:\Oracle\Ora81\bin\oraslax8.dll]  [Oracle Corporation, 8]
    [C:\Oracle\Ora81\bin\orasql8.dll]  [Oracle Corporation, 8.1.5.0.0]
[PID: 676][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 688][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 784][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.0 (XPClient.010817-1148)]
    [C:\WINDOWS\system32\HPBMMON.DLL]  [Hewlett-Packard, 10.00.14]
    [C:\WINDOWS\system32\hpdomon.dll]  [Hewlett-Packard, 03.42.00]
    [C:\WINDOWS\system32\HPBHealr.dll]  [N/A, N/A]
[PID: 980][C:\MSDE\MSSQL$PROJDIV\Binn\sqlservr.exe]  [Microsoft Corporation, 2000.080.0384.00]
    [C:\WINDOWS\System32\EBSPI.dll]  [N/A, N/A]
[PID: 1084][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1308][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 9]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\upxdnd.dll]  [N/A, N/A]
    [C:\Program Files\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 19, 0, 0, 5]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
[PID: 1552][C:\WINDOWS\System32\wocfiba.exe]  [N/A, N/A]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\EBSPI.dll]  [N/A, N/A]
[PID: 1616][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.0.1622]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
[PID: 1644][C:\WINDOWS\System32\gnkjkrl.exe]  [N/A, N/A]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
[PID: 1700][C:\WINDOWS\System32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
[PID: 1780][F:\Program Files\Trojan Expert 2007\mmzj.exe]  [Beyond 工作室, 2,0,0,7]
    [F:\Program Files\Trojan Expert 2007\krnln.fnr]  [, 1, 0, 0, 1]
    [F:\Program Files\Trojan Expert 2007\iext.fnr]  [, 1, 0, 0, 1]
    [F:\Program Files\Trojan Expert 2007\iext2.fne]  [, 1, 0, 0, 1]
    [F:\Program Files\Trojan Expert 2007\TrayIcon.fne]  [, 1, 0, 0, 1]
    [F:\Program Files\Trojan Expert 2007\EChartBar.fne]  [, 1, 0, 0, 1]
    [F:\Program Files\Trojan Expert 2007\ExtMenu.fne]  [, 1, 0, 0, 1]
    [F:\Program Files\Trojan Expert 2007\iext3.fne]  [, 1, 0, 0, 1]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
    [F:\Program Files\Trojan Expert 2007\dp1.fne]  [N/A, N/A]
    [F:\Program Files\Trojan Expert 2007\shell.fne]  [N/A, N/A]
    [C:\WINDOWS\System32\upxdnd.dll]  [N/A, N/A]
    [F:\Program Files\Trojan Expert 2007\xplib.fne]  [N/A, N/A]
    [F:\Program Files\Trojan Expert 2007\eAPI.fne]  [, 1, 0, 0, 1]
[PID: 712][C:\WINDOWS\System32\conime.exe]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
[PID: 428][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2600.0000 (xpclient.010817-1148)]
    [C:\WINDOWS\System32\KakaTool.dll]  [Beijing Rising Technology Co., Ltd., 2, 0, 3, 0]
    [C:\Program Files\FlashGet\jccatch.dll]  [www.flashget.com, 1, 8, 4, 1007]
    [C:\Program Files\FlashGet\getflash.dll]  [www.flashget.com, 1, 8, 4, 1003]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\upxdnd.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\EBSPI.dll]  [N/A, N/A]
    [C:\Documents and Settings\your name\桌面\SREng\SREng.com]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\System32\WSVBRS.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\upxdnd.dll]  [N/A, N/A]
    [C:\WINDOWS\System32\EBSPI.dll]  [N/A, N/A]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
EBSPI over MSAFD Tcpip [TCP/IP]
    C:\WINDOWS\System32\EBSPI.dll(N/A, N/A)
EBSPI
    C:\WINDOWS\System32\EBSPI.dll(N/A, N/A)

==================================
Autorun.inf
[D:\]
[AutoRun]
open=uvmmind.exe
shell\open=打开(&O)
shell\open\Command=uvmmind.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=uvmmind.exe
[E:\]
[AutoRun]
open=uvmmind.exe
shell\open=打开(&O)
shell\open\Command=uvmmind.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=uvmmind.exe
[F:\]
[AutoRun]
open=uvmmind.exe
shell\open=打开(&O)
shell\open\Command=uvmmind.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=uvmmind.exe

帮帮我

open=uvmmind.exe
shell\open=打开(&O)
shell\open\Command=uvmmind.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=uvmmind.exe
[E:\]
[AutoRun]
open=uvmmind.exe
shell\open=打开(&O)
shell\open\Command=uvmmind.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=uvmmind.exe
[F:\]
[AutoRun]
open=uvmmind.exe
shell\open=打开(&O)
shell\open\Command=uvmmind.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=uvmmind.exe
[C:\WINDOWS\System32\WSVBRS.dll] [N/A, N/A]
[C:\WINDOWS\System32\upxdnd.dll] [N/A, N/A]
[C:\WINDOWS\System32\EBSPI.dll] [N/A, N/A]
[Ufkey / Ufkey]
<C:\WINDOWS\SYSTEM32\DRIVERS\Ufkey.SYS><Microsoft Corporation>
FECB89B0 / FECB89B0]
<C:\WINDOWS\System32\FECB89B0.EXE -service><N/A>
[pwkbypkr / pwkbypkr]
<\??\C:\WINDOWS\System32\drivers\pwkbypkr.sys><N/A>

注意:不要双击D: E: F:盘,右键打开,不要点AUTO..

引用:

【天月来了的贴子】又一个没好好利用SSM的。 ………………

半年前就不用SSM了.