2006-09-12,21:27:25

System Repair Engineer 2.0.21.505 (2.0 RC 2)
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <bgswitch><C:\WINDOWS\system32\bgswitch.exe>  []
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [Microsoft Corporation]
    <msnmsgr><"C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [Microsoft Corporation]
    <IgfxTray><C:\WINDOWS\system32\igfxtray.exe>  [Intel Corporation]
    <HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe>  [Intel Corporation]
    <_KAVImmuniteSasser><LsassPatch.EXE>  [KingSoft]
    <SKYNET Personal FireWall><C:\PROGRA~1\SkyNet\FireWall\pfw.exe>  [天网]
    <OfficeScanNT Monitor><"C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow>  [Trend Micro Inc.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [Microsoft Corporation]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><; C:\WINDOWS\system32\CTFMON.EXE>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <db2systray.exe DB2><; D:\Program Files\IBM\SQLLIB\BIN\db2systray.exe DB2>  []
    <IMSCMig><; C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [Microsoft Corporation]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <MsnMsgr><; "C:\Program Files\MSN Messenger\msnmsgr.exe" /background>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <NuTCSetupEnviron><; C:\Program Files\Rational\Rational Test\nutcroot\bin\ncoeenv.exe>  []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <Skype><; "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <SoundMan><; SOUNDMAN.EXE>  [Realtek Semiconductor Corp.]
    <SunJavaUpdateSched><; C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe>  []

==================================

启动文件夹
服务
[BEA WebLogic Platform 8.1 NodeManager / BEA WebLogic Platform 8.1 NodeManager]
  <D:\bea\WEBLOG~1\server\bin\beasvc.exe><BEA Systems, Inc.>
[DB2 - DB2-0 / DB2-0]
  <D:\PROGRA~1\IBM\SQLLIB\bin\db2syscs.exe><International Business Machines Corporation>
[DB2DAS - DB2DAS00 / DB2DAS00]
  <"D:\Program Files\IBM\SQLLIB\\bin\db2dasrrm.exe"><International Business Machines Corporation>
[DB2 控制器 / DB2GOVERNOR]
  <"D:\Program Files\IBM\SQLLIB\BIN\db2govds.exe"><International Business Machines Corporation>
[DB2 JDBC Applet 服务器 / DB2JDS]
  <"D:\Program Files\IBM\SQLLIB\BIN\db2jds.exe"><International Business Machines Corporation>
[DB2 许可证服务器 / DB2LICD]
  <"D:\Program Files\IBM\SQLLIB\BIN\db2licd.exe"><International Business Machines Corporation>
[DB2 安全服务器 / DB2NTSECSERVER]
  <"D:\Program Files\IBM\SQLLIB\BIN\db2sec.exe"><International Business Machines Corporation>
[DB2 Remote Command Server / DB2REMOTECMD]
  <"D:\Program Files\IBM\SQLLIB\BIN\db2rcmd.exe"><International Business Machines Corporation>
[OfficeScanNT 实时扫描 / ntrtscan]
  <C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe><Trend Micro Inc.>
[NuTCRACKERService / NuTCRACKERService]
  <C:\WINDOWS\system32\nutsrv4.exe><DataFocus, Inc.>
[OfficeScanNT 个人防火墙 / OfcPfwSvc]
  <C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe><Trend Micro Inc.>
[OracleMTSRecoveryService / OracleMTSRecoveryService]
  <E:\oracle\ora92\bin\omtsreco.exe "OracleMTSRecoveryService"><Oracle Corporation>
[OracleOraHome92Agent / OracleOraHome92Agent]
  <E:\oracle\ora92\bin\agntsrvc.exe><Oracle Corporation>
[OracleOraHome92ClientCache / OracleOraHome92ClientCache]
  <E:\oracle\ora92\BIN\ONRSD.EXE><N/A>
[OracleOraHome92HTTPServer / OracleOraHome92HTTPServer]
  <"E:\oracle\ora92\Apache\Apache\apache.exe" --ntservice><N/A>
[OracleOraHome92PagingServer / OracleOraHome92PagingServer]
  <E:\oracle\ora92/bin/pagntsrv.exe><N/A>
[OracleOraHome92SNMPPeerEncapsulator / OracleOraHome92SNMPPeerEncapsulator]
  <E:\oracle\ora92\BIN\ENCSVC.EXE><N/A>
[OracleOraHome92SNMPPeerMasterAgent / OracleOraHome92SNMPPeerMasterAgent]
  <E:\oracle\ora92\BIN\AGNTSVC.EXE><N/A>
[OracleOraHome92TNSListener / OracleOraHome92TNSListener]
  <E:\oracle\ora92\BIN\TNSLSNR ><N/A>
[OracleServiceDCWORK / OracleServiceDCWORK]
  <e:\oracle\ora92\bin\ORACLE.EXE DCWORK><Oracle Corporation>
[OfficeScanNT 侦听程序 / tmlisten]
  <C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe><Trend Micro Inc.>
[Apache Tomcat / Tomcat5]
  <D:\Tomcat418\bin\tomcat.exe //RS//Tomcat5><N/A>
[WebSphere Embedded Messaging Publish And SubscribeWAS_rjwangsh_server1 / WebSphereEmbeddedMessagingPublishAndSubscribeWAS_rjwangsh_server1]
  <D:/Program Files/IBM/WebSphere MQ/WEMPS/bin/bipservice.exe><N/A>

==================================

浏览器加载项
[ThunderIEHelper Class]
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v11.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[]
  {4E7BD74F-2B8D-469E-85AA-FD60BB9AAE22} <C:\PROGRA~1\UE_TOO~1\UE_TOO~1.DLL, IDM Computer Solutions>
[SFP Class]
  {F236CC5A-F6E4-4011-9EED-C52FDF51CE3D} <C:\WINDOWS\system32\Sbhoplin.dll, 广州众达天网技术有限公司>
[番茄花园]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.tomatolei.com, N/A>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[]
  {4E7BD74F-2B8D-469E-85AA-FD60BB9AAE22} <C:\PROGRA~1\UE_TOO~1\UE_TOO~1.DLL, IDM Computer Solutions>
[ObjWinNTCheck Class]
  {00134F72-5284-44F7-95A8-52A619F70751} <C:\WINDOWS\Downloaded Program Files\WinNTChk.dll, Trend Micro Inc.>
[OfficeScan Corp Edition Web-Deployment SetupINICtrl Class]
  {08D75BB0-D2B5-11D1-88FC-0080C859833B} <C:\WINDOWS\Downloaded Program Files\OfficeScanSetupINI.dll, Trend Micro Inc.>
[OfficeScan Corp Edition Web-Deployment SetupCtrl Class]
  {08D75BC1-D2B5-11D1-88FC-0080C859833B} <C:\WINDOWS\Downloaded Program Files\OfficeScanSetup.dll, Trend Micro Inc.>
[Encrypt Class]
  {35C3D91E-401A-4E45-88A5-F3B32CD72DF4} <C:\WINDOWS\Downloaded Program Files\AtxEnc.dll, Trend Micro Inc.>
[OfficeScan Corp Edition Web-Deployment ObjRemoveCtrl Class]
  {5EFE8CB1-D095-11D1-88FC-0080C859833B} <C:\WINDOWS\Downloaded Program Files\OfficeScanRemoveCtrl.dll, Trend Micro Inc.>
[Java Plug-in 1.4.2_06]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll, JavaSoft / Sun Microsystems, Inc.>
[Java Plug-in 1.4.2_06]
  {CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA} <C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll, JavaSoft / Sun Microsystems, Inc.>
[Loader Class]
  {CDBD9968-7BF1-11D4-9D36-0001029DEBEB} <C:\WINDOWS\Downloaded Program Files\Spider.ocx, Mercury Interactive>
[ThunderIEHelper Class]
  {0005A87D-D626-4B3A-84F9-1D9571695F55} <C:\WINDOWS\system32\xunleibho_v11.dll, Thunder Networking Technologies,LTD>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\WINDOWS\system32\DCwork\dhtmled.ocx, Microsoft Corporation>
[DcworkOcx Control]
  {3DE10180-4375-4269-B3FA-2EC92DCA840F} <C:\WINDOWS\system32\DCwork\DCwork.ocx, lcrj-dyyjs>
[DEInsertTableParam Class]
  {47B0DFC7-B7A3-11D1-ADC5-006008A5848C} <C:\WINDOWS\system32\DCwork\dhtmled.ocx, Microsoft Corporation>
[]
  {4E7BD74F-2B8D-469E-85AA-FD60BB9AAE22} <C:\PROGRA~1\UE_TOO~1\UE_TOO~1.DLL, IDM Computer Solutions>
[Java Plug-in 1.4.2_06]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll, JavaSoft / Sun Microsystems, Inc.>
[DEGetBlockFmtNamesParam Class]
  {8D91090E-B955-11D1-ADC5-006008A5848C} <C:\WINDOWS\system32\DCwork\dhtmled.ocx, Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx, Macromedia, Inc.>
[SFP Class]
  {F236CC5A-F6E4-4011-9EED-C52FDF51CE3D} <C:\WINDOWS\system32\Sbhoplin.dll, 广州众达天网技术有限公司>
[&使用迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\geturl.htm, N/A>
[&使用迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\getallurl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000, N/A>

==================================

正在运行的进程
[PID: 452][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 500][\??\C:\WINDOWS\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 524][\??\C:\WINDOWS\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 568][C:\WINDOWS\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 580][C:\WINDOWS\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 768][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 812][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 896][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [E:\oracle\ora92\bin\oci.dll]  <Oracle Corporation><9.2.0.1.0>
[PID: 936][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 948][C:\WINDOWS\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1056][C:\WINDOWS\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
    [C:\WINDOWS\system32\pxc25pm.dll]  <Tracker Software><2.50.0002>
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\vprproc.dll]  <Windows (R) 2000 DDK provider><5.00.2195.1620>
[PID: 1232][C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcDog.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInAPI.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\TimeString.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPIPC.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInMain.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInTray.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\tmdbg20.dll]  <trend_company_name><1, 0, 0, 1>
[PID: 1244][E:\oracle\ora92\BIN\TNSLSNR.exe]  <N/A><N/A>
    [E:\oracle\ora92\BIN\oransgr9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oran9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oranl9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oranldap9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orannzsbb9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oracore9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oranls9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oraunls9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orageneric9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [E:\oracle\ora92\BIN\oracommon9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [E:\oracle\ora92\BIN\oraclient9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [E:\oracle\ora92\BIN\oravsn9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [E:\oracle\ora92\BIN\orawtc9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [E:\oracle\ora92\BIN\orancrypt9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oranro9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orapls9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [E:\oracle\ora92\BIN\oraslax9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orasnls9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orasql9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oraxml9.dll]  <Oracle Corporation><>
    [E:\oracle\ora92\BIN\oraxsd9.dll]  <Oracle Corporation><>
    [E:\oracle\ora92\BIN\oraldapclnt9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\ORATRACE9.dll]  <N/A><N/A>
    [E:\oracle\ora92\BIN\oranhost9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oranoname9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orancds9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\orantns9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\BIN\oranms.dll]  <Oracle Corporation><9.2.0.0.0>
    [E:\oracle\ora92\BIN\oranmsp.dll]  <Oracle Corporation><9.2.0.0.0>
    [E:\oracle\ora92\bin\orantcp9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\bin\oranipc9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\bin\oranbeq9.dll]  <Oracle Corporation><9.2.0.1.0 Production>

[PID: 1272][C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\TMSOCK.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\loadhttp.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInAPI.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPIPC.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\libTmCAV.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\Pwd.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcDog.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\tmdbg20.dll]  <trend_company_name><1, 0, 0, 1>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInMain.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInTray.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\TmUpdate.dll]  <Trend Micro Inc.><2,6,0,1367>
[PID: 1340][C:\WINDOWS\system32\wdfmgr.exe]  <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)>
[PID: 1436][C:\WINDOWS\system32\nutsrv4.exe]  <DataFocus, Inc.><4.50.0000>
    [C:\WINDOWS\system32\nutmsg4.dll]  <DataFocus, Inc.><4.50.0000>
[PID: 1468][C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwCommon.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\ZLib.dll]  <Trend Micro Inc.><1.31.0.1708>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPIPC.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\tmdbg20.dll]  <trend_company_name><1, 0, 0, 1>
    [C:\Program Files\Trend Micro\OfficeScan Client\tmCfwApi.dll]  <Trend Micro Inc.><1.2.0.1020>
[PID: 1748][C:\WINDOWS\System32\alg.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1868][C:\WINDOWS\TEMP\MT8639.EXE]  <N/A><N/A>
[PID: 1152][C:\WINDOWS\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  <Adobe Systems Incorporated><7.0.0.2004121400>
    [C:\Program Files\Media Player Classic\Codecs\mmfinfo.dll]  <N/A><N/A>
    [C:\Program Files\Media Player Classic\Codecs\mkunicode.dll]  <N/A><N/A>
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  <Adobe Systems, Inc.><7.0.0.0>
    [C:\Program Files\WinRAR\rarext.dll]  <N/A><N/A>
    [C:\Program Files\UltraEdit-32\ue32ctmn.dll]  <><1, 0, 0, 1>
    [C:\Program Files\EmEditor\EMEDSHL.DLL]  <N/A><N/A>
[PID: 776][C:\WINDOWS\system32\hkcmd.exe]  <Intel Corporation><3.0.0.3889>
    [C:\WINDOWS\system32\hccutils.DLL]  <Intel Corporation><3.0.0.3889>
    [C:\WINDOWS\system32\igfxdev.dll]  <Intel Corporation><3.0.0.3889>
    [C:\WINDOWS\system32\igfxsrvc.dll]  <Intel Corporation><3.0.0.3889>
    [C:\WINDOWS\system32\igfxhk.dll]  <Intel Corporation><3.0.0.3889>
    [C:\WINDOWS\system32\igfxres.dll]  <Intel Corporation><3.0.0.3889>
[PID: 1356][C:\PROGRA~1\SkyNet\FireWall\pfw.exe]  <天网><2.7.3.1100>
    [C:\PROGRA~1\SkyNet\FireWall\SKYMISC.DLL]  <N/A><N/A>
[PID: 124][C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\loadhttp.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\Pwd.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInAPI.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPIPC.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\TimeString.dll]  <N/A><N/A>
    [C:\Program Files\Trend Micro\OfficeScan Client\ntmonres.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInMain.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\OfcPlugInTray.dll]  <Trend Micro Inc.><7.0.0.1116>
    [C:\Program Files\Trend Micro\OfficeScan Client\tmdbg20.dll]  <trend_company_name><1, 0, 0, 1>
[PID: 548][C:\WINDOWS\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 2196][C:\WINDOWS\system32\mdm.exe]  <Microsoft Corporation><6.00.8424>

[PID: 2384][e:\oracle\ora92\bin\ORACLE.EXE]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\oraclient9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\oracore9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oranls9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oraunls9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oravsn9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\oracommon9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\orageneric9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\oraxml9.dll]  <Oracle Corporation><>
    [e:\oracle\ora92\bin\oraxsd9.dll]  <Oracle Corporation><>
    [e:\oracle\ora92\bin\orannzsbb9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oran9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oranl9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oranldap9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oraldapclnt9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\orancrypt9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\ORATRACE9.dll]  <N/A><N/A>
    [e:\oracle\ora92\bin\oranro9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oranhost9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oranoname9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\orancds9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\orantns9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oranms.dll]  <Oracle Corporation><9.2.0.0.0>
    [e:\oracle\ora92\bin\oranmsp.dll]  <Oracle Corporation><9.2.0.0.0>
    [e:\oracle\ora92\bin\orapls9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\oraslax9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\orasnls9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\orawtc9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\orasql9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\oraodm9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\oraplp9.dll]  <Oracle Corporation><9.2.0.1.0 Production >
    [e:\oracle\ora92\bin\orajox9.dll]  <N/A><N/A>
    [e:\oracle\ora92\bin\oransgr9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [e:\oracle\ora92\bin\orawwg9.dll]  <Oracle Corporation><8.1.7.0.0>
    [e:\oracle\ora92\bin\ocijdbc9.dll]  <N/A><N/A>
    [E:\oracle\ora92\BIN\ORAIMR9.Dll]  <Oracle Corporation><9.2.0.1.0>
    [E:\oracle\ora92\bin\oranbeq9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\bin\orannts9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
    [E:\oracle\ora92\bin\orantcp9.dll]  <Oracle Corporation><9.2.0.1.0 Production>
[PID: 372][C:\Program Files\MSN Messenger\msnmsgr.exe]  <Microsoft Corporation><8.0.0792.00>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
    [C:\WINDOWS\system32\PYJJ4.IME]  <N/A><N/A>
[PID: 2144][C:\Program Files\Skype\Phone\ContentFilter.exe]  <TOM Online Inc.><1.0.2.0>
[PID: 352][C:\Program Files\Skype\Phone\Skype.exe]  <N/A><N/A>
    [C:\WINDOWS\system32\msdmo.dll]  <N/A><N/A>
[PID: 3040][C:\WINDOWS\system32\msiexec.exe]  <Microsoft Corporation><3.1.4000.1823>
[PID: 3432][C:\Documents and Settings\Administrator\桌面\SREng2\SREng2\SREng.exe]  <Smallfrogs Studio><2.0.21.505>

==================================

文件关联
.TXT  Error. [emeditor.txt]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者

==================================

刚刚上网时突然不断弹出网页，不知道是不是系统中了病毒，求各位大侠帮忙看一下。谢谢^_^

不知道是不是中了什么浏览器劫持病毒了