2006-11-06,11:32:33

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <RavTask><"C:\Program Files\杀毒软件\Rising\Rav\RavTask.exe" -system>  [Beijing Rising Technology Co., Ltd.]
    <RfwMain><"C:\Program Files\杀毒软件\Rising\Rfw\rfwmain.exe" -Startup>  [Beijing Rising Technology Co., Ltd.]
    <木马清除><D:\木马\mmsk.exe>  [木马杀客]
    <IMJPMIG8.1><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
    <PHIME2002A><; >  [N/A]
    <PHIME2002ASync><; C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    <RavStub><"C:\Program Files\杀毒软件\Rising\Rav\ravstub.exe" /RUNONCE>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <Galaxy><rundll32.exe C:\WINDOWS\system32\ppgaxea.dll,Su>  [N/A]
    <Power><rundll32.exe C:\WINDOWS\system32\alxklt.dll,Start>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{553858A7-4922-4e7e-B1C1-97140C1C16EF}><C:\WINDOWS\system32\ieframe.dll>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\ravss.scr>  [Rising Corp.]

启动文件夹
[腾讯QQ]
  <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\腾讯QQ.lnk --> H:\QQ\QQ.exe [TENCENT]><N>

==================================
服务
[Adobe LM Service / Adobe LM Service]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[ASP.NET State Service / aspnet_state]
  <C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[Autodesk Licensing Service / Autodesk Licensing Service]
  <"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[Human Interface Device Access / HidServ]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Microsoft Update Service / iSPONER]
  <C:\WINDOWS\SYSTEM32\RUNDLLFROMWIN2000.EXE C:\WINDOWS\SYSTEM32\WBEM\TFQWHH61.DLL,Export 1087><Microsoft Corporation>
[NVIDIA Display Driver Service / NVSvc]
  <C:\WINDOWS\system32\nvsvc32.exe><N/A>
[Rising AntiSpam Service / RasProxy]
  <><N/A>
[Event Service / Relations]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\taxlfx83.dll><Microsoft Corporation>
[Rising Proxy  Service / RfwProxySrv]
  <c:\program files\杀毒软件\rising\rfw\rfwproxy.exe><Beijing Rising Technology Co., Ltd.>
[Rising Personal Firewall Service / RfwService]
  <c:\program files\杀毒软件\rising\rfw\rfwsrv.exe><Beijing Rising Technology Co., Ltd.>
[Rising Process Communication Center / RsCCenter]
  <"C:\Program Files\杀毒软件\Rising\Rav\CCenter.exe"><Beijing Rising Technology Co., Ltd.>
[Rising RealTime Monitor / RsRavMon]
  <"C:\Program Files\杀毒软件\Rising\Rav\Ravmond.exe"><Beijing Rising Technology Co., Ltd.>

==================================
驱动程序
[abp480n5 / abp480n5]
  <C:\WINDOWS\SYSTEM32\DRIVERS\abp480n5.SYS><Microsoft Corporation>
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc]
  <system32\drivers\ac97intc.sys><Intel Corporation>
[aic78u2 / aic78u2]
  <C:\WINDOWS\SYSTEM32\DRIVERS\aic78u2.SYS><Microsoft Corporation>
[aic78xx / aic78xx]
  <C:\WINDOWS\SYSTEM32\DRIVERS\aic78xx.SYS><Microsoft Corporation>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM]
  <system32\drivers\ALCXWDM.SYS><N/A>
[AliIde / AliIde]
  <C:\WINDOWS\SYSTEM32\DRIVERS\AliIde.SYS><Acer Laboratories Inc.>
[AMD K8 Processor Driver / AmdK8]
  <System32\DRIVERS\amdk8.sys><Advanced Micro Devices>
[Rising TDI Base Driver / BaseTDI]

<System32\DRIVERS\BaseTDI.SYS><Beijing Rising Technology Co., Ltd.>
[boot000 / boot000]
  <\SystemRoot\system32\drivers\boot000.sys><>
[cd20xrnt / cd20xrnt]
  <C:\WINDOWS\SYSTEM32\DRIVERS\cd20xrnt.SYS><Microsoft Corporation>
[CmdIde / CmdIde]
  <C:\WINDOWS\SYSTEM32\DRIVERS\CmdIde.SYS><CMD Technology, Inc.>
[d347bus / d347bus]
  <\SystemRoot\system32\DRIVERS\d347bus.sys><>
[d347prt / d347prt]
  <\SystemRoot\System32\Drivers\d347prt.sys><>
[ehbcmya / ehbcmyan]
  <\SystemRoot\System32\DRIVERS\ehbcmyan.sys><N/A>
[ESS 1969 Audio Driver (WDM) / es1969]
  <system32\drivers\es1969.sys><ESS Technology Inc.>
[ExpScaner / ExpScaner]
  <\??\C:\Program Files\杀毒软件\Rising\Rav\ExpScan.sys><>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS]
  <system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[gwiopm / gwiopm]
  <\??\C:\Program Files\wom\gwiopm.sys><N/A>
[HookCont / HookCont]
  <\??\C:\Program Files\杀毒软件\Rising\Rav\HOOKCONT.sys><Rising tech Co. ltd>
[HookReg / HookReg]
  <\??\C:\Program Files\杀毒软件\Rising\Rav\HookReg.sys><>
[HookSys / HookSys]
  <\??\C:\Program Files\杀毒软件\Rising\Rav\HookSys.sys><Rising>
[HookUrl / HookUrl]
  <\??\C:\Program Files\杀毒软件\Rising\Rfw\HookUrl.sys><Beijing Rising Technology Co., Ltd.>
[kmsinput / kmsinput]
  <\??\C:\WINDOWS\system32\drivers\kmsinput.sys><N/A>
[MEMSCAN / MEMSCAN]
  <\??\C:\Program Files\杀毒软件\Rising\Rav\MEMSCAN.sys><瑞星软件有限公司>
[mProcRs / mProcRs]
  <\??\c:\program files\杀毒软件\rising\rfw\mProcRs.sys><Beijing Rising Technology Co., Ltd.>
[mraid35x / mraid35x]
  <C:\WINDOWS\SYSTEM32\DRIVERS\mraid35x.SYS><American Megatrends Inc.>
[npkcrypt / npkcrypt]
  <\??\H:\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[nv / nv]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[ql1080 / ql1080]
  <C:\WINDOWS\SYSTEM32\DRIVERS\ql1080.SYS><QLogic Corporation>
[Ql10wnt / Ql10wnt]
  <C:\WINDOWS\SYSTEM32\DRIVERS\Ql10wnt.SYS><Microsoft Corporation>
[ql12160 / ql12160]
  <C:\WINDOWS\SYSTEM32\DRIVERS\ql12160.SYS><QLogic Corporation>
[ql1280 / ql1280]
  <C:\WINDOWS\SYSTEM32\DRIVERS\ql1280.SYS><QLogic Corporation>
[RsFwDrv / RsFwDrv]
  <\??\C:\Program Files\杀毒软件\Rising\Rfw\RsFwDrv.sys><Beijing Rising Technology Co., Ltd.>
[RSPPSYS / RSPPSYS]
  <\??\C:\PROGRAM FILES\杀毒软件\RISING\RAV\RSPPSYS.sys><Rising>
[Secdrv / Secdrv]
  <system32\DRIVERS\secdrv.sys><N/A>
[SiS PCI Fast Ethernet Adapter Driver for NDIS51 / SISNICXP]
  <system32\DRIVERS\sisnicxp.sys><SiS Corporation>
[sispc / sispc]
  <2 - 系统找不到指定的文件。
><N/A>
[SISRAID / SISRAID]
  <\SystemRoot\System32\DRIVERS\SiSRaid.sys><Silicon Integrated Systems>
[Sparrow / Sparrow]
  <C:\WINDOWS\SYSTEM32\DRIVERS\Sparrow.SYS><Adaptec, Inc.>
[symc810 / symc810]
  <C:\WINDOWS\SYSTEM32\DRIVERS\symc810.SYS><Symbios Logic Inc.>
[symc8xx / symc8xx]
  <C:\WINDOWS\SYSTEM32\DRIVERS\symc8xx.SYS><LSI Logic>
[sym_hi / sym_hi]
  <C:\WINDOWS\SYSTEM32\DRIVERS\sym_hi.SYS><LSI Logic>
[sym_u3 / sym_u3]
  <C:\WINDOWS\SYSTEM32\DRIVERS\sym_u3.SYS><LSI Logic>
[TCP/IP Protocol Driver / Tcpip]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[ultra / ultra]
  <C:\WINDOWS\SYSTEM32\DRIVERS\ultra.SYS><Promise Technology, Inc.>
[ViaIde / ViaIde]
  <C:\WINDOWS\SYSTEM32\DRIVERS\ViaIde.SYS><Microsoft Corporation>

==================================
浏览器加载项
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <C:\Program Files\TENCENT\Adplus\SSAddr.dll, Tencent>
[NavBho Class]
  {1169EC0B-1654-4F30-8FC6-F679AD244B3B} <C:\WINDOWS\NavBho.dll, >
[SYM]
  {36BF6929-DCBC-4CCD-A620-C5E3BBA77B95} <C:\WINDOWS\system32\usercrd.dll, N/A>
[启动Web迅雷]
  {962EFB8E-2683-42d4-AC74-AAA4C759B9C6} <http://my.xunlei.com, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <H:\QQ\QQ.EXE, TENCENT>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, N/A>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <D:\Super Rabbit\MagicSet\MagicSet\haokanbar.dll, Xiang Feng Technology>
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corporation>
[WebThunder Browser Helper]
  {00000AAA-A363-466E-BEF5-9BB68697AA7F} <H:\迅雷\WebThunderBHO_013.dll, N/A>
[Google Script Object]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar2.dll, N/A>
[WebThunder Class]
  {03507A1A-E0C5-4404-AA26-205385C0892D} <, N/A>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <C:\Program Files\TENCENT\Adplus\SSAddr.dll, Tencent>
[NavBho Class]
  {1169EC0B-1654-4F30-8FC6-F679AD244B3B} <C:\WINDOWS\NavBho.dll, >
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, Microsoft Corporation>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar2.dll, N/A>

[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[RealPlayer RAM Download Handler]
  {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Yahoo!Photo]
  {33BBE430-0E42-4F12-B075-8D21ACB10DCB} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll, N/A>
[SYM]
  {36BF6929-DCBC-4CCD-A620-C5E3BBA77B95} <C:\WINDOWS\system32\usercrd.dll, N/A>
[超级兔子上网精灵]
  {43869BB3-22FD-4F15-9B46-238106BA2F4E} <D:\Super Rabbit\MagicSet\MagicSet\haokanbar.dll, Xiang Feng Technology>
[HHCtrl Object]
  {52A2AAAE-085D-4187-97EA-8C30DB990436} <C:\WINDOWS\system32\hhctrl.ocx, Microsoft Corporation>
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[DragSearch BHO]
  {62EED7C6-9F02-42F9-B634-98E2899E147B} <C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL, N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[MediaComm Class]
  {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <H:\迅雷\MediaAddin08.dll, Thunder Networking Technologies,LTD>
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, Microsoft Corporation>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_002.dll, N/A>
[PhotoUploadCtrl Control]
  {A96C48EA-AA88-4BBD-B58C-7B41146A6EAC} <H:\QQ\QZone\PHOTOU~1.OCX, tencent>
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar2.dll, N/A>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[卡卡上网安全助手]
  {AFF6E516-CBE5-4F8A-9C2F-38A68013E766} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[H:\QQ\QQPlayerSvr.exe]
  {CD108273-D434-43E6-AA90-1469F97EB398} <, N/A>
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__WAV Moniker Class]
  {CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
  {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\macromed\flash\Flash.ocx, Macromedia, Inc.>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINDOWS\system32\KakaTool.dll, Beijing Rising Technology Co., Ltd.>
[MainBHO Class]
  {DE63E1D9-B5DB-4E7E-8902-5F4F3E3EC532} <C:\WINDOWS\system32\shdoclc2.dll, N/A>
[CPasswordEditCtrl Object]
  {E787FD25-8D7C-4693-AE67-9406BC6E22DF} <C:\WINDOWS\system32\qqedit\qqedit.dll, 腾讯科技（深圳）有限公司>
[IEHlprObj Class]
  {EAACBF9E-4B91-45FF-93ED-B297093951EA} <C:\Program Files\Internet Explorer\PLUGINS\Flash_Player.dll, N/A>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, N/A>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, N/A>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, N/A>
[上传到QQ网络硬盘]
  <H:\QQ\AddToNetDisk.htm, N/A>
[使用Web迅雷下载]
  <H:\迅雷\GetUrl.htm, N/A>
[使用Web迅雷下载全部链接]
  <H:\迅雷\GetAllUrl.htm, N/A>
[使用迅雷下载]
  <, N/A>
[使用迅雷下载全部链接]
  <, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <H:\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <H:\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <H:\QQ\SendMMS.htm, N/A>

==================================
正在运行的进程
[PID: 464][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 528][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 552][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 596][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 608][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 760][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 824][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 888][C:\Program Files\杀毒软件\Rising\Rav\CCenter.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 908][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [c:\windows\system32\taxlfx83.dll]  [Microsoft Corporation, 5.1.2600.0]
[PID: 948][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1048][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1076][C:\Program Files\杀毒软件\Rising\Rav\Ravmond.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 1, 47]
    [C:\Program Files\杀毒软件\Rising\Rav\BWList.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
    [C:\Program Files\杀毒软件\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\Program Files\杀毒软件\Rising\Rav\RsPPsys.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 3]
    [C:\Program Files\杀毒软件\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\杀毒软件\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
    [C:\Program Files\杀毒软件\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\Program Files\杀毒软件\Rising\Rav\RsLog.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
    [C:\Program Files\杀毒软件\Rising\Rav\HOOKSYS.dll]  [Beijing Rising Technology Co., Ltd., 18, 1, 0, 12]
    [C:\Program Files\杀毒软件\Rising\Rav\Scanner.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 33]
    [C:\Program Files\杀毒软件\Rising\Rav\libload.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10]
    [C:\Program Files\杀毒软件\Rising\Rav\VirusLib.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12]
    [C:\Program Files\杀毒软件\Rising\Rav\regmon.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
    [C:\Program Files\杀毒软件\Rising\Rav\psapi.dll]  [Microsoft Corporation, 4.00]
    [C:\Program Files\杀毒软件\Rising\Rav\HookWeb.dll]  [rising, 18, 0, 0, 2]
    [C:\Program Files\杀毒软件\Rising\Rav\MemMon.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 12]
    [C:\Program Files\杀毒软件\Rising\Rav\expscan.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\Program Files\杀毒软件\Rising\Rav\mPorts.dll]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 3]
    [C:\Program Files\杀毒软件\Rising\Rav\MailMon.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\Program Files\杀毒软件\Rising\Rav\SpamEng.dll]  [N/A, 18, 0, 0, 6]
    [C:\Program Files\杀毒软件\Rising\Rav\engine.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 35]
    [C:\Program Files\杀毒软件\Rising\Rav\PostTrt.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 18]
    [C:\Program Files\杀毒软件\Rising\Rav\UnExe.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
    [C:\Program Files\杀毒软件\Rising\Rav\ScanExec.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 15]

[C:\Program Files\杀毒软件\Rising\Rav\ScanEx.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 30]
    [C:\Program Files\杀毒软件\Rising\Rav\RSUnpack.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 19]
    [C:\Program Files\杀毒软件\Rising\Rav\ExtFile.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 24]
    [C:\Program Files\杀毒软件\Rising\Rav\NvFile.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 7]
    [C:\Program Files\杀毒软件\Rising\Rav\ScanMac.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 10]
    [C:\Program Files\杀毒软件\Rising\Rav\ScanSct.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\Program Files\杀毒软件\Rising\Rav\Unpacker.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\Program Files\杀毒软件\Rising\Rav\ExtOLE.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
    [C:\Program Files\杀毒软件\Rising\Rav\RsStore.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 6]
    [C:\Program Files\杀毒软件\Rising\Rav\ScanNet.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
[PID: 1244][c:\program files\杀毒软件\rising\rfw\rfwsrv.exe]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 33]
    [c:\program files\杀毒软件\rising\rfw\RfwRule.dll]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 13]
    [c:\program files\杀毒软件\rising\rfw\rfwlog.dll]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 6]
    [c:\program files\杀毒软件\rising\rfw\Rfwdrv.dll]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 21]
    [c:\program files\杀毒软件\rising\rfw\psapi.dll]  [Microsoft Corporation, 4.00]
    [c:\program files\杀毒软件\rising\rfw\MonDrv.dll]  [rs, 1, 0, 0, 4]
    [c:\program files\杀毒软件\rising\rfw\ProcLib.dll]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 9]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1484][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1616][C:\WINDOWS\SYSTEM32\RUNDLLFROMWIN2000.EXE]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINDOWS\SYSTEM32\WBEM\TFQWHH61.DLL]  [Microsoft Corporation, 5, 1, 2600, 2709]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1888][C:\Program Files\杀毒软件\Rising\Rav\RavStub.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 16]
    [C:\Program Files\杀毒软件\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\Program Files\杀毒软件\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 456][c:\program files\杀毒软件\rising\rfw\RfwMain.exe]  [Beijing Rising Technology Co., Ltd., 4, 0, 0, 52]
    [c:\program files\杀毒软件\rising\rfw\RsGuiLib.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 23]
    [c:\program files\杀毒软件\rising\rfw\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [c:\program files\杀毒软件\rising\rfw\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 480][C:\Program Files\杀毒软件\Rising\Rav\RavTask.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 22]
    [C:\Program Files\杀毒软件\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\Program Files\杀毒软件\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\杀毒软件\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
    [C:\Program Files\杀毒软件\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 740][C:\Program Files\杀毒软件\Rising\Rav\Ravmon.exe]  [Beijing Rising Technology Co., Ltd., 18, 0, 1, 39]
    [C:\Program Files\杀毒软件\Rising\Rav\RsGuiLib.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 26]
    [C:\Program Files\杀毒软件\Rising\Rav\BWList.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 20]
    [C:\Program Files\杀毒软件\Rising\Rav\RSAPPMGR.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 2]
    [C:\Program Files\杀毒软件\Rising\Rav\CfgDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 11]
    [C:\Program Files\杀毒软件\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\Program Files\杀毒软件\Rising\Rav\RsCommX.dll]  [rising, 18, 0, 0, 1]
    [C:\Program Files\杀毒软件\Rising\Rav\PngDll.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 5]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 768][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1008][D:\木马\mmsk.exe]  [木马杀客, 2,0,0,7]
    [D:\木马\krnln.fnr]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\木马\HYExtLib.fne]  [N/A, N/A]
    [D:\木马\TrayIcon.fne]  [, 1, 0, 0, 1]
    [D:\木马\iext2.fne]  [, 1, 0, 0, 1]
    [D:\木马\iext.fne]  [, 1, 0, 0, 1]
    [D:\木马\HtmlView.fne]  [, 1, 0, 0, 1]
    [D:\木马\iext3.fne]  [, 1, 0, 0, 1]
    [D:\木马\xplib.fne]  [N/A, N/A]
    [D:\木马\mmskskin.dll]  [, 2, 0, 0, 6]
    [D:\木马\SkinPPWTL.dll]  [http://www.skinplusplus.com, 2, 1, 0, 0]
    [D:\木马\shell.fne]  [N/A, N/A]
    [D:\木马\EThread.fne]  [N/A, N/A]
    [D:\木马\dp1.fne]  [N/A, N/A]
    [D:\木马\eAPI.fne]  [, 1, 0, 0, 1]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 1064][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1604][H:\QQ\TIMPlatform.exe]  [tencent, 0, 3, 1, 8]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 3472][H:\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [H:\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [H:\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [H:\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [H:\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [H:\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [H:\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [H:\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [H:\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]

[H:\QQ\QQMainFrame.dll]  [N/A, N/A]
    [H:\QQ\CQQApplication.dll]  [N/A, N/A]
    [H:\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [H:\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [H:\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [H:\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\GroupLive.dll]  [N/A, N/A]
    [H:\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [H:\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQPlugin.dll]  [N/A, N/A]
    [H:\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QRingMng.dll]  [N/A, N/A]
    [H:\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [H:\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [H:\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQAvatar.dll]  [N/A, N/A]
    [H:\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [H:\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [H:\QQ\BQQApplication.dll]  [N/A, N/A]
    [H:\QQ\QQAllInOne.dll]  [N/A, N/A]
    [H:\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [H:\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [H:\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [H:\QQ\QQSceneMng.dll]  [N/A, N/A]
    [H:\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 0, 6, 60]
[PID: 2648][H:\QQ\qqpet\qqpet.exe]  [腾讯公司, 2, 43, 101, 2]
    [H:\QQ\qqpet\Pnet.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\qqpet\QQPetResDownload.dll]  [, 6, 1, 101, 1]
    [H:\QQ\qqpet\QQPetCommunity.dll]  [, 6, 3, 101, 1]
    [C:\WINDOWS\system32\macromed\flash\Flash.ocx]  [Macromedia, Inc., 7,0,19,0]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 376][H:\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [H:\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [H:\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [H:\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [H:\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [H:\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [H:\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [H:\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [H:\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [H:\QQ\QQMainFrame.dll]  [N/A, N/A]
    [H:\QQ\CQQApplication.dll]  [N/A, N/A]
    [H:\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [H:\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [H:\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [H:\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\GroupLive.dll]  [N/A, N/A]
    [H:\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQPlugin.dll]  [N/A, N/A]
    [H:\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QRingMng.dll]  [N/A, N/A]
    [H:\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [H:\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [H:\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQAvatar.dll]  [N/A, N/A]
    [H:\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [H:\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [H:\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [H:\QQ\BQQApplication.dll]  [N/A, N/A]
    [H:\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [H:\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [H:\QQ\QQSceneMng.dll]  [N/A, N/A]
    [H:\QQ\QQAllInOne.dll]  [N/A, N/A]
    [H:\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
[PID: 2644][H:\QQ\qqpet\qqpet.exe]  [腾讯公司, 2, 43, 101, 2]
    [H:\QQ\qqpet\Pnet.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\qqpet\QQPetResDownload.dll]  [, 6, 1, 101, 1]
    [H:\QQ\qqpet\QQPetCommunity.dll]  [, 6, 3, 101, 1]
    [C:\WINDOWS\system32\macromed\flash\Flash.ocx]  [Macromedia, Inc., 7,0,19,0]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 3544][H:\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [H:\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [H:\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [H:\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [H:\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [H:\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [H:\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [H:\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [H:\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [H:\QQ\QQMainFrame.dll]  [N/A, N/A]
    [H:\QQ\CQQApplication.dll]  [N/A, N/A]
    [H:\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [H:\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [H:\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [H:\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\GroupLive.dll]  [N/A, N/A]
    [H:\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQPlugin.dll]  [N/A, N/A]
    [H:\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [H:\QQ\QQAvatar.dll]  [N/A, N/A]
    [H:\QQ\QQSettingCtrl.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QRingMng.dll]  [N/A, N/A]
    [H:\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [H:\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [H:\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [H:\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [H:\QQ\BQQApplication.dll]  [N/A, N/A]
    [H:\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [H:\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [H:\QQ\QQSceneMng.dll]  [N/A, N/A]
    [H:\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 0, 6, 60]
    [H:\QQ\videodevice.dll]  [Tencent, 1, 6, 0, 0]
    [H:\QQ\inplus.dll]  [Tencent, 1, 6, 0, 0]
    [C:\WINDOWS\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
    [H:\QQ\QQAllInOne.dll]  [N/A, N/A]
    [H:\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
[PID: 2984][H:\QQ\qqpet\qqpet.exe]  [腾讯公司, 2, 43, 101, 2]
    [H:\QQ\qqpet\Pnet.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\qqpet\QQPetResDownload.dll]  [, 6, 1, 101, 1]
    [H:\QQ\qqpet\QQPetCommunity.dll]  [, 6, 3, 101, 1]
    [C:\WINDOWS\system32\macromed\flash\Flash.ocx]  [Macromedia, Inc., 7,0,19,0]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 1840][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3332][H:\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [H:\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [H:\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180

[C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [H:\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [H:\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [H:\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [H:\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [H:\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [H:\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [H:\QQ\QQMainFrame.dll]  [N/A, N/A]
    [H:\QQ\CQQApplication.dll]  [N/A, N/A]
    [H:\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [H:\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [H:\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [H:\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\GroupLive.dll]  [N/A, N/A]
    [H:\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQPlugin.dll]  [N/A, N/A]
    [H:\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QRingMng.dll]  [N/A, N/A]
    [H:\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [H:\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [H:\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [H:\QQ\QQAvatar.dll]  [N/A, N/A]
    [H:\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [H:\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [H:\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQAllInOne.dll]  [N/A, N/A]
    [H:\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [H:\QQ\BQQApplication.dll]  [N/A, N/A]
    [H:\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [H:\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [H:\QQ\QQSceneMng.dll]  [N/A, N/A]
    [H:\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 0, 6, 60]
[PID: 3304][H:\QQ\qqpet\qqpet.exe]  [腾讯公司, 2, 43, 101, 2]
    [H:\QQ\qqpet\Pnet.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\qqpet\QQPetResDownload.dll]  [, 6, 1, 101, 1]
    [H:\QQ\qqpet\QQPetCommunity.dll]  [, 6, 3, 101, 1]
    [C:\WINDOWS\system32\macromed\flash\Flash.ocx]  [Macromedia, Inc., 7,0,19,0]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 2300][H:\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [H:\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\BasicCtrlDll.dll]  [Tencent, 5, 0, 200, 370]
    [H:\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [H:\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [H:\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [H:\QQ\LoginCtrl.dll]  [, 1, 0, 0, 1]
    [H:\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [H:\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [H:\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [H:\QQ\QQMainFrame.dll]  [N/A, N/A]
    [H:\QQ\CQQApplication.dll]  [N/A, N/A]
    [H:\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [H:\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [H:\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [H:\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
    [H:\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\GroupLive.dll]  [N/A, N/A]
    [H:\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQPlugin.dll]  [N/A, N/A]
    [H:\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQSysMsgMng.dll]  [N/A, N/A]
    [H:\QQ\QRingMng.dll]  [N/A, N/A]
    [H:\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [H:\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [H:\QQ\VPortal.dll]  [, 1, 0, 0, 4]
    [H:\QQ\QQAllInOne.dll]  [N/A, N/A]
    [H:\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [H:\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [H:\QQ\QQAvatar.dll]  [N/A, N/A]
    [H:\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [H:\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [H:\QQ\BQQApplication.dll]  [N/A, N/A]
    [H:\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [H:\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [H:\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 240]
    [H:\QQ\QQSceneMng.dll]  [N/A, N/A]
    [H:\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 0, 6, 60]
    [C:\Program Files\Tencent\QQGame\GamePublic.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\GameLogCore.Dll]  [, 0, 10, 106, 13]
    [C:\Program Files\Tencent\QQGame\Core.dll]  [é??úêDìú???????ú?μí3óD?T1???, 0, 10, 0, 0]
    [C:\Program Files\Tencent\QQGame\NetCenter.dll]  [é??úêDìú???????ú?μí3óD?T1???, 0, 10, 0, 0]
    [C:\Program Files\Tencent\QQGame\CmdCenter.dll]  [深圳市腾讯计算机系统有限公司, 0, 10, 0, 0]
    [C:\Program Files\Tencent\QQGame\HelpDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\ResEx.dll]  [深圳市腾讯计算机系统有限公司, 0, 10, 0, 0]
    [C:\Program Files\Tencent\QQGame\GameLogAidMgr.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQGame\COMToolKit.dll]  [, 1, 0, 0, 3]
    [C:\Program Files\Tencent\QQGame\QQGameAvatar.dll]  [深圳市腾讯计算机系统有限公司                                    Tencent Computer System Ltd., 0, 10, 0, 0]
[PID: 3876][H:\QQ\qqpet\qqpet.exe]  [腾讯公司, 2, 43, 101, 2]
    [H:\QQ\qqpet\Pnet.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [H:\QQ\qqpet\QQPetResDownload.dll]  [, 6, 1, 101, 1]
    [H:\QQ\qqpet\QQPetCommunity.dll]  [, 6, 3, 101, 1]
    [C:\WINDOWS\system32\macromed\flash\Flash.ocx]  [Macromedia, Inc., 7,0,19,0]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
[PID: 2156][C:\WINDOWS\explorer.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.2.54.0]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.2.54.0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
    [H:\AMV转换\AMV\AMV转换\AmvTransform.dll]  [, 1, 0, 0, 1]
    [C:\WINDOWS\system32\RavExt.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 21]
    [C:\Program Files\杀毒软件\Rising\Rav\RSCOMMON.DLL]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]

[C:\WINDOWS\system32\browselc.dll]  [Microsoft Corporation, 6.00.2600.0000]
    [C:\Program Files\TENCENT\Adplus\SSAddr.dll]  [Tencent, 4, 2, 12, 121]
[PID: 1324][H:\System Repair Engineer\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3104][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 7.00.5450.4 (winmain(wmbla).060623-0309)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.2.54.0]
    [D:\Super Rabbit\MagicSet\MagicSet\haokanbar.dll]  [Xiang Feng Technology, 2, 2, 0, 1612]
    [C:\Program Files\TENCENT\Adplus\SSAddr.dll]  [Tencent, 4, 2, 12, 121]
    [C:\WINDOWS\NavBho.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\杀毒软件\Rising\Rav\RavScrCh.dll]  [Beijing Rising Technology Co., Ltd., 18, 0, 0, 4]
    [C:\WINDOWS\system32\macromed\flash\Flash.ocx]  [Macromedia, Inc., 7,0,19,0]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost
127.0.0.1www.ccnnic.com
127.0.0.1www.ccnnlc.com
127.0.0.1www.bodoto.com
127.0.0.1bj.bodoto.com
127.0.0.1nb.bodoto.com
127.0.0.1hangzhou.bodoto.com
127.0.0.1jh.bodoto.com
127.0.0.1shangh.bodoto.com
127.0.0.1my.bodoto.com
127.0.0.1mail.bodoto.com
127.0.0.1www.bodoto.net
127.0.0.1www.bodoto.cn
127.0.0.1www.bodoto.com.cn
127.0.0.1www.bodoto.net.cn
127.0.0.1www.bodoto.org
127.0.0.1www.edmchina.com
127.0.0.1www.edmchina.net
127.0.0.1www.edmchina.cn
127.0.0.1www.edmchina.com.cn
127.0.0.1ad.edmchina.com
127.0.0.1agent.edmchina.com
127.0.0.1sales.edmchina.com
127.0.0.1mail.edmchina.com
127.0.0.1edmchina.com
127.0.0.1edmchina.net
127.0.0.1edmchina.cn
127.0.0.1edmchina.com.cn
127.0.0.1www.pk265.com
127.0.0.1pk265.com
127.0.0.1www.qqbao.com
127.0.0.1www.qqbao.net
127.0.0.1www.qqbao.cn
127.0.0.1www.qqbao.com.cn
127.0.0.1qqbao.com
127.0.0.1qqbao.cn
127.0.0.1qqbao.com.cn
127.0.0.1ad.pvka.com
127.0.0.1da.pvka.com
127.0.0.1www.20060106.com
127.0.0.120060106.com
127.0.0.1www.huajundown.com
127.0.0.1www.huajundown.net
127.0.0.1huajundown.net
127.0.0.1pvka.com.cn

==================================

坛主，救救我电脑！！！谢谢！！！！