[C:\Program Files\Tencent\Q\QQZip.dll] <tencent><0, 3, 2, 4>
[C:\Program Files\Tencent\Q\GroupConnection.dll] <Tencent><5, 0, 202, 170>
[C:\Program Files\Tencent\Q\VqqModule.dll] <><1, 0, 0, 1>
[C:\Program Files\Tencent\Q\QQNetDisk.dll] <深圳腾讯科技><7, 2, 103, 141>
[PID: 2128][C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\mmsk.exe] <木马杀客><2,0,0,6>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\krnln.fnr] <><1, 0, 0, 1>
[C:\WINDOWS\BricoPacks\Vista Inspirat\
ObjectDock\DockShellHook.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 7, 1024>
[C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.dll] <><1, 3, 0, 0>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\HtmlView.fne] <><1, 0, 0, 1>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\iext.fnr] <><1, 0, 0, 1>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\TrayIcon.fne] <><1, 0, 0, 1>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\iext2.fne] <><1, 0, 0, 1>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\iext3.fne] <><1, 0, 0, 1>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\xplib.fne] <N/A><N/A>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\shell.fne] <N/A><N/A>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\dp1.fne] <N/A><N/A>
[C:\Documents and Settings\Owner\桌面\木马杀客\木马杀客 V5.2 Build 0120 绿色特别版\eAPI.fne] <><1, 0, 0, 1>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\PROGRA~1\sina\UC\UCIdleHook.dll] <北京新浪信息技术有限公司><1, 0, 1, 0>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[PID: 2148][C:\Program Files\Internet Explorer\iexplore.exe] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\BricoPacks\Vista Inspirat\
ObjectDock\DockShellHook.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 7, 1024>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 2, 1002>
[C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.dll] <><1, 3, 0, 0>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 4, 1030>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll] < ><2, 0, 1, 1007>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll] <Yahoo!><2, 1, 8, 1048>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yaswiper.dll] <Yahoo><1, 0, 1, 1004>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasiesec.dll] <Yahoo><1, 0, 2, 1003>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasnoad.dll] <><1, 1, 4, 1006>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yzsNetProto.dll] <Yahoo><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll] <Yahoo! China><1, 1, 3, 1035>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll] <Yahoo! China><1, 0, 1, 1015>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[C:\PROGRA~1\sina\UC\UCddt\ddtinit.dll] <北京新浪信息技术有限公司><1, 2, 1, 2>
[C:\PROGRA~1\sina\UC\UCddt\DDTUpdate.dll] <北京新浪信息技术有限公司><1, 2, 0, 9>
[C:\WINDOWS\system32\iScreensaver.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\Program Files\Tencent\Q\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL] <><1, 2, 7, 1006>
[C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX] <N/A><N/A>
[C:\WINDOWS\DOWNLO~1\BaiDuBar.dll] <><2, 0, 0, 0>
[C:\PROGRA~1\sina\UC\UCIdleHook.dll] <北京新浪信息技术有限公司><1, 0, 1, 0>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[c:\progra~1\yahoo!\assist~1\assist\yadfil~1.dll] < ><1, 0, 3, 1002>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrepair.dll] <Yahoo><1, 0, 8, 1321>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yoptimum.dll] <Yahoo><1, 0, 1, 1001>
[C:\PROGRA~1\yahoo!\assistant\Shell\yAssecblk.dll] <Yahoo><1, 0, 2, 1002>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yXPStyle.dll] <Yahoo><1, 0, 2, 1309>
[C:\Flash7.ocx] <Macromedia, Inc.><7,0,14,0>
[C:\WINDOWS\system32\JPWB.IME] <常诚研制><4.00.950>
[PID: 3208][C:\Program Files\Internet Explorer\IEXPLORE.EXE] <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\BricoPacks\Vista Inspirat\
ObjectDock\DockShellHook.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 7, 1024>
[C:\PROGRA~1\Yahoo!\ASSIST~1\yscrblock.dll] <Yahoo><1, 0, 2, 1002>
[C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.dll] <><1, 3, 0, 0>
[C:\PROGRA~1\Yahoo!\ASSIST~1\YAlive.dll] <><2, 0, 4, 1030>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll] < ><2, 0, 1, 1007>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll] <Yahoo!><2, 1, 8, 1048>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yaswiper.dll] <Yahoo><1, 0, 1, 1004>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasiesec.dll] <Yahoo><1, 0, 2, 1003>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasnoad.dll] <><1, 1, 4, 1006>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yzsNetProto.dll] <Yahoo><1, 0, 0, 1>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll] <Yahoo! China><1, 1, 3, 1035>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll] <Yahoo! China><1, 0, 1, 1015>
[C:\WINDOWS\system32\RavExt.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 21>
[C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll] <Adobe Systems Incorporated><6.0.1.2003110300>
[C:\PROGRA~1\sina\UC\UCddt\ddtinit.dll] <北京新浪信息技术有限公司><1, 2, 1, 2>
[C:\PROGRA~1\sina\UC\UCddt\DDTUpdate.dll] <北京新浪信息技术有限公司><1, 2, 0, 9>
[C:\WINDOWS\system32\iScreensaver.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll] <Yahoo.><1, 0, 2, 1002>
[C:\Program Files\Tencent\Q\QQIEHelper.dll] <深圳市腾讯计算机系统有限公司><1, 1, 0, 5>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL] <><1, 2, 7, 1006>
[C:\PROGRA~1\KuGoo3\KUGOO3~1.OCX] <N/A><N/A>
[C:\WINDOWS\DOWNLO~1\BaiDuBar.dll] <><2, 0, 0, 0>
[C:\Program Files\Rising\Rav\RavScrCh.dll] <Beijing Rising Technology Co., Ltd.><18, 0, 0, 4>
[C:\PROGRA~1\sina\UC\UCIdleHook.dll] <北京新浪信息技术有限公司><1, 0, 1, 0>
[C:\Flash7.ocx] <Macromedia, Inc.><7,0,14,0>
[c:\progra~1\yahoo!\assist~1\assist\yadfil~1.dll] < ><1, 0, 3, 1002>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrepair.dll] <Yahoo><1, 0, 8, 1321>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yoptimum.dll] <Yahoo><1, 0, 1, 1001>
[C:\PROGRA~1\yahoo!\assistant\Shell\yAssecblk.dll] <Yahoo><1, 0, 2, 1002>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yXPStyle.dll] <Yahoo><1, 0, 2, 1309>
[PID: 4076][C:\Documents and Settings\Owner\桌面\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505>
[C:\WINDOWS\BricoPacks\Vista Inspirat\
ObjectDock\DockShellHook.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 7, 1024>
[C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.dll] <><1, 3, 0, 0>
[C:\PROGRA~1\sina\UC\UCIdleHook.dll] <北京新浪信息技术有限公司><1, 0, 1, 0>
[PID: 2996][C:\WINDOWS\system32\NOTEPAD.EXE] <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[C:\WINDOWS\BricoPacks\Vista Inspirat\
ObjectDock\DockShellHook.dll] <N/A><N/A>
[C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll] <><2, 0, 7, 1024>
[C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.dll] <><1, 3, 0, 0>
[C:\PROGRA~1\sina\UC\UCIdleHook.dll] <北京新浪信息技术有限公司><1, 0, 1, 0>
==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]
