各位大虾请看看我扫的日志：


2006-10-26,11:46:47

System Repair Engineer 2.2.6.605
Smallfrogs (http://www.KZTechs.com)

Windows 2000 Professional Service Pack 4 (Build 2195)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><; ctfmon.exe>  [Microsoft Corporation]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
    <run><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <NvCplDaemon><; RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup>  [NVIDIA Corporation]
    <Synchronization Manager><; mobsync.exe /logon>  [Microsoft Corporation]
    <SoundMan><; SOUNDMAN.EXE>  [Avance Logic, Inc.]
    <YLive.exe><; C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe>  [Yahoo! China]
    <yassistse><; "C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe">  [Yahoo! China]
    <UpdateRun><C:\Program Files\Common Files\updat\Update.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [Microsoft Corporation]
    <Userinit><C:\WINNT\system32\userinit.exe,>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\MicroQC]
    <WinlogonNotify: MicroQC><mydll.dll>  [N/A]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><; (无)>  [N/A]

启动文件夹
N/A

==================================
服务
[Windows Install Helper / 8NASCAR]
  <C:\WINNT\SYSTEM32\RUN32.EXE C:\WINNT\SYSTEM32\WBEM\HRNYCV27.DLL,Export 1087><N/A>
[AdsWinIe / AdsWinIe]
  <C:\WINNT\system32\AdsWin.exe -service><N/A>
[Alerter / Alerter]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[Application Management / AppMgmt]
  <C:\WINNT\system32\services.exe><Microsoft Corporation>
[Background Intelligent Transfer Service / BITS]
  <C:\WINNT\System32\svchost.exe -k BITSgroup-->%SystemRoot%\System32\qmgr.dll><Microsoft Corporation>
[Computer Browser / Browser]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[C-DillaCdaC11BA / C-DillaCdaC11BA]
  <C:\WINNT\system32\drivers\CDAC11BA.EXE><Macrovision>
[Symantec Event Manager / ccEvtMgr]
  <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Password Validation / ccPwdSvc]
  <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr]
  <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[Indexing Service / cisvc]
  <C:\WINNT\System32\cisvc.exe><Microsoft Corporation>
[ClipBook / ClipSrv]
  <C:\WINNT\system32\clipsrv.exe><Microsoft Corporation>
[Symantec AntiVirus Definition Watcher / DefWatch]
  <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
[DHCP Client / Dhcp]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[Distributed Link Tracking Null / Distributed Link Tracking ]
  <C:\WINNT\winhost.exe><N/A>
[Logical Disk Manager Administrative Service / dmadmin]
  <C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[Logical Disk Manager / dmserver]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[DNS Client / Dnscache]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[Event Log / Eventlog]
  <C:\WINNT\system32\services.exe><Microsoft Corporation>
[COM+ Event System / EventSystem]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->C:\WINNT\System32\es.dll><Microsoft Corporation>
[Fax Service / Fax]
  <C:\WINNT\system32\faxsvc.exe><Microsoft Corporation>
[KSD2Service / KSD2Service]
  <C:\WINNT\system32\SVCH0ST.exe><N/A>
[Server / lanmanserver]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[Workstation / lanmanworkstation]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[TCP/IP NetBIOS Helper Service / LmHosts]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[Messenger / Messenger]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[NetMeeting Remote Desktop Sharing / mnmsrvc]
  <C:\WINNT\System32\mnmsrvc.exe><Microsoft Corporation>
[Distributed Transaction Coordinator / MSDTC]
  <C:\WINNT\System32\msdtc.exe><Microsoft Corporation>
[Windows Installer / MSIServer]
  <C:\WINNT\system32\msiexec.exe /V><Microsoft Corporation>
[Network DDE / NetDDE]
  <C:\WINNT\system32\netdde.exe><Microsoft Corporation>
[Network DDE DSDM / NetDDEdsdm]
  <C:\WINNT\system32\netdde.exe><Microsoft Corporation>
[Net Logon / Netlogon]
  <C:\WINNT\System32\lsass.exe><Microsoft Corporation>
[Network Connections / Netman]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\netman.dll><Microsoft Corporation>
[Netsvcs / Netsvcs]
  <C:\WINNT\system32\netsvcs.exe><N/A>
[Network Logons / NetWorkLogons]
  <rundll32.exe KB27861012.log,start><Microsoft Corporation>
[NT LM Security Support Provider / NtLmSsp]
  <C:\WINNT\System32\lsass.exe><Microsoft Corporation>
[Removable Storage / NtmsSvc]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\NtmsSvc.dll><Microsoft Corporation>
[NVIDIA Display Driver Service / NVSvc]
  <C:\WINNT\system32\nvsvc32.exe><NVIDIA Corporation>
[Plug and Play / PlugPlay]
  <C:\WINNT\system32\services.exe><Microsoft Corporation>
[IPSEC Policy Agent / PolicyAgent]
  <C:\WINNT\System32\lsass.exe><Microsoft Corporation>
[Protected Storage / ProtectedStorage]
  <C:\WINNT\system32\services.exe><Microsoft Corporation>
[Remote Access Auto Connection Manager / RasAuto]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\rasauto.dll><Microsoft Corporation>
[Remote Access Connection Manager / RasMan]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\rasmans.dll><Microsoft Corporation>
[Routing and Remote Access / RemoteAccess]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mprdim.dll><Microsoft Corporation>
[Remote Registry Service / RemoteRegistry]
  <C:\WINNT\system32\regsvc.exe><Microsoft Corporation>
[Remote Procedure Call (RPC) Locator / RpcLocator]
  <C:\WINNT\System32\locator.exe><Microsoft Corporation>
[Remote Procedure Call (RPC) / RpcSs]
  <C:\WINNT\system32\svchost -k rpcss-->%SystemRoot%\system32\rpcss.dll><Microsoft Corporation>
[QoS RSVP / RSVP]
  <C:\WINNT\System32\rsvp.exe -s><Microsoft Corporation>
[Security Accounts Manager / SamSs]
  <C:\WINNT\system32\lsass.exe><Microsoft Corporation>
[SavRoam / SavRoam]
  <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec>
[Smart Card Helper / SCardDrv]
  <C:\WINNT\System32\SCardSvr.exe><Microsoft Corporation>
[Smart Card / SCardSvr]
  <C:\WINNT\System32\SCardSvr.exe><Microsoft Corporation>
[Task Scheduler / Schedule]
  <C:\WINNT\system32\MSTask.exe><Microsoft Corporation>
[RunAs Service / seclogon]
  <C:\WINNT\system32\services.exe><Microsoft Corporation>
[System Event Notification / SENS]
  <C:\WINNT\system32\svchost.exe -k netsvcs-->%SystemRoot%\system32\sens.dll><Microsoft Corporation>
[Symantec Network Drivers Service / SNDSrvc]
  <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[Symantec SPBBCSvc / SPBBCSvc]
  <"C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe"><Symantec Corporation>
[Print Spooler / Spooler]
  <C:\WINNT\system32\spoolsv.exe><Microsoft Corporation>
[Still Image Service / StiSvc]
  <C:\WINNT\system32\stisvc.exe><Microsoft Corporation>
[Symantec AntiVirus / Symantec AntiVirus]
  <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>
[Performance Logs and Alerts / SysmonLog]
  <C:\WINNT\system32\smlogsvc.exe><Microsoft Corporation>
[Telephony / TapiSrv]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\tapisrv.dll><Microsoft Corporation>
[Telnet / TlntSvr]
  <C:\WINNT\system32\tlntsvr.exe><Microsoft Corporation>
[Distributed Link Tracking Client / TrkWks]
  <C:\WINNT\system32\services.exe><Microsoft Corporation>
[Unigraphics Plot Server (ugiipqd) / ugiipqd]
  <C:\WINNT\system32\spool\ugplot\ugiipqd.exe><Unigraphics Solutions, Inc>
[Unigraphics 许可证服务器（uglmd） / Unigraphics License Server (uglmd)]
  <"D:\Program Files\UGS\License Servers\UGNXFLEXlm\lmgrd.exe"><Macrovision Corporation>
[Uninterruptible Power Supply / UPS]
  <C:\WINNT\System32\ups.exe><Microsoft Corporation>
[Utility Manager / UtilMan]
  <C:\WINNT\System32\UtilMan.exe><Microsoft Corporation>
[Windows Time / W32Time]
  <C:\WINNT\System32\services.exe><Microsoft Corporation>
[windowservices / windowservices]
  <C:\WINNT\xuhuan.exe><Microsoft Corporation>
[Windows Management Instrumentation / WinMgmt]
  <C:\WINNT\System32\WBEM\WinMgmt.exe><Microsoft Corporation>
[Portable Media Serial Number Service / WmdmPmSN]
  <C:\WINNT\System32\svchost.exe -k netsvcs-->C:\WINNT\system32\mspmsnsv.dll><Microsoft Corporation>
[Windows Management Instrumentation Driver Extensions / Wmi]
  <C:\WINNT\system32\Services.exe><Microsoft Corporation>
[Automatic Updates / wuauserv]
  <C:\WINNT\system32\svchost.exe -k wugroup-->C:\WINNT\system32\wuauserv.dll><Microsoft Corporation>

驱动程序
[9 / 9]
  <\SystemRoot\system32\drivers\boot00.sys><N/A>
[99 / 99]
  <\SystemRoot\system32\drivers\boot00.sys><N/A>
[Microsoft ACPI Driver / ACPI]
  <\SystemRoot\System32\DRIVERS\ACPI.sys><Microsoft Corporation>
[ACPIEC / ACPIEC]
  <C:\WINNT\SYSTEM32\DRIVERS\ACPIEC.SYS><Microsoft Corporation>
[ADProt / ADProt]
  <\SystemRoot\system32\drivers\ADProt.sys><腾讯科技（深圳）有限公司>
[aeaudio / aeaudio]
  <system32\drivers\aeaudio.sys><N/A>
[AFD 网络支持环境 / AFD]
  <\SystemRoot\System32\drivers\afd.sys><Microsoft Corporation>
[Intel AGP Bus Filter / agp440]
  <\SystemRoot\System32\DRIVERS\agp440.sys><Microsoft Corporation>
[Service for Avance AC97 Audio (WDM) / ALCXWDM]
  <system32\drivers\ALCXWDM.SYS><Avance Logic, Inc.>
[RAS Asynchronous Media Driver / AsyncMac]
  <System32\DRIVERS\asyncmac.sys><Microsoft Corporation>
[Standard IDE/ESDI Hard Disk Controller / atapi]
  <\SystemRoot\System32\DRIVERS\atapi.sys><Microsoft Corporation>
[ATM ARP Client Protocol / Atmarpc]
  <System32\DRIVERS\atmarpc.sys><Microsoft Corporation>
[Audio Stub Driver / audstub]
  <System32\DRIVERS\audstub.sys><Microsoft Corporation>
[Beep / Beep]
  <C:\WINNT\SYSTEM32\DRIVERS\Beep.SYS><Microsoft Corporation>
[CdaC15BA / CdaC15BA]
  <\??\C:\WINNT\system32\drivers\CDAC15BA.SYS><Macrovision Europe Ltd>
[Cdaudio / Cdaudio]
  <C:\WINNT\SYSTEM32\DRIVERS\Cdaudio.SYS><Microsoft Corporation>
[Cdfs / Cdfs]
  <C:\WINNT\SYSTEM32\DRIVERS\Cdfs.SYS><Microsoft Corporation>
[CD-ROM Driver / Cdrom]
  <System32\DRIVERS\cdrom.sys><Microsoft Corporation>
[d347bus / d347bus]
  <\SystemRoot\system32\DRIVERS\d347bus.sys><>
[d347prt / d347prt]
  <\SystemRoot\System32\Drivers\d347prt.sys><>
[Disk Driver / Disk]
  <\SystemRoot\System32\DRIVERS\disk.sys><Microsoft Corporation>
[Diskperf / Diskperf]
  <C:\WINNT\SYSTEM32\DRIVERS\Diskperf.SYS><Microsoft Corporation>
[dmboot / dmboot]
  <System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio]
  <\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload]
  <\SystemRoot\System32\drivers\dmload.sys><VERITAS Software Corp.>
[Microsoft DirectMusic SW Synth (WDM) / DMusic]
  <system32\drivers\DMusic.sys><Microsoft Corporation>
[DS1410D / DS1410D]
  <SYSTEM32\drivers\DS1410D.SYS><N/A>
[Symantec Eraser Control driver / eeCtrl]
  <\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys><Symantec Corporation>
[EFS / EFS]
  <C:\WINNT\SYSTEM32\DRIVERS\EFS.SYS><Microsoft Corporation>
[Fastfat / Fastfat]
  <C:\WINNT\SYSTEM32\DRIVERS\Fastfat.SYS><Microsoft Corporation>
[Floppy Disk Controller Driver / Fdc]
  <System32\DRIVERS\fdc.sys><Microsoft Corporation>
[Fips / Fips]
  <C:\WINNT\SYSTEM32\DRIVERS\Fips.SYS><Microsoft Corporation>
[Floppy Disk Driver / Flpydisk]
  <System32\DRIVERS\flpydisk.sys><Microsoft Corporation>
[FsVga / FsVga]
  <System32\DRIVERS\fsvga.sys><Microsoft Corporation>
[Volume Manager Driver / Ftdisk]
  <\SystemRoot\System32\DRIVERS\ftdisk.sys><Microsoft Corporation>
[Generic Packet Classifier / Gpc]
  <System32\DRIVERS\msgpc.sys><Microsoft Corporation>
[Hardlock / Hardlock]
  <\??\C:\WINNT\system32\drivers\hardlock.sys><Aladdin Knowledge Systems Ltd.>
[i8042 Keyboard and PS/2 Mouse Port Driver / i8042prt]
  <System32\DRIVERS\i8042prt.sys><Microsoft Corporation>
[IP Traffic Filter Driver / IpFilterDriver]
  <System32\DRIVERS\ipfltdrv.sys><Microsoft Corporation>
[IP in IP Tunnel Driver / IpInIp]
  <System32\DRIVERS\ipinip.sys><Microsoft Corporation>
[IP Network Address Translator / IpNat]
  <System32\DRIVERS\ipnat.sys><Microsoft Corporation>
[IPSEC driver / IPSEC]
  <System32\DRIVERS\ipsec.sys><Microsoft Corporation>
[IR Enumerator Service / IRENUM]
  <System32\DRIVERS\irenum.sys><Microsoft Corporation>
[PnP ISA/EISA Bus Driver / isapnp]
  <\SystemRoot\System32\DRIVERS\isapnp.sys><Microsoft Corporation>
[Keyboard Class Driver / Kbdclass]
  <System32\DRIVERS\kbdclass.sys><Microsoft Corporation>
[Microsoft Kernel Wave Audio Mixer / kmixer]
  <system32\drivers\kmixer.sys><Microsoft Corporation>
[KSecDD / KSecDD]
  <C:\WINNT\SYSTEM32\DRIVERS\KSecDD.SYS><Microsoft Corporation>
[MidiSyn / MidiSyn]
  <system32\drivers\MidiSyn.sys><N/A>
[mnmdd / mnmdd]
  <C:\WINNT\SYSTEM32\DRIVERS\mnmdd.SYS><Microsoft Corporation>
[Modem / Modem]
  <C:\WINNT\SYSTEM32\DRIVERS\Modem.SYS><Microsoft Corporation>
[Mouse Class Driver / Mouclass]
  <System32\DRIVERS\mouclass.sys><Microsoft Corporation>
[MountMgr / MountMgr]
  <C:\WINNT\SYSTEM32\DRIVERS\MountMgr.SYS><Microsoft Corporation>
[MRxSmb / MRxSmb]
  <System32\DRIVERS\mrxsmb.sys><Microsoft Corporation>
[Msfs / Msfs]
  <C:\WINNT\SYSTEM32\DRIVERS\Msfs.SYS><Microsoft Corporation>

[Microsoft Streaming Service Proxy / MSKSSRV]
  <system32\drivers\MSKSSRV.sys><Microsoft Corporation>
[Microsoft Streaming Clock Proxy / MSPCLOCK]
  <system32\drivers\MSPCLOCK.sys><Microsoft Corporation>
[Microsoft Streaming Quality Manager Proxy / MSPQM]
  <system32\drivers\MSPQM.sys><Microsoft Corporation>
[Mup / Mup]
  <C:\WINNT\SYSTEM32\DRIVERS\Mup.SYS><Microsoft Corporation>
[NAVENG / NAVENG]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061020.020\naveng.sys><Symantec Corporation>
[NAVEX15 / NAVEX15]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061020.020\navex15.sys><Symantec Corporation>
[NDIS System Driver / NDIS]
  <C:\WINNT\SYSTEM32\DRIVERS\NDIS.SYS><Microsoft Corporation>
[Remote Access NDIS TAPI Driver / NdisTapi]
  <System32\DRIVERS\ndistapi.sys><Microsoft Corporation>
[NDIS 用户模式 I/O 协议 / Ndisuio]
  <System32\DRIVERS\ndisuio.sys><Microsoft Corporation>
[Remote Access NDIS WAN Driver / NdisWan]
  <System32\DRIVERS\ndiswan.sys><Microsoft Corporation>
[NDIS Proxy / NDProxy]
  <C:\WINNT\SYSTEM32\DRIVERS\NDProxy.SYS><Microsoft Corporation>
[NetBIOS Interface / NetBIOS]
  <System32\DRIVERS\netbios.sys><Microsoft Corporation>
[NetBios over Tcpip / NetBT]
  <System32\DRIVERS\netbt.sys><Microsoft Corporation>
[NetDetect / NetDetect]
  <\SystemRoot\system32\drivers\netdtect.sys><Microsoft Corporation>
[Npfs / Npfs]
  <C:\WINNT\SYSTEM32\DRIVERS\Npfs.SYS><Microsoft Corporation>
[Ntfs / Ntfs]
  <C:\WINNT\SYSTEM32\DRIVERS\Ntfs.SYS><Microsoft Corporation>
[Null / Null]
  <C:\WINNT\SYSTEM32\DRIVERS\Null.SYS><Microsoft Corporation>
[nv / nv]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[IPX Traffic Filter Driver / NwlnkFlt]
  <System32\DRIVERS\nwlnkflt.sys><Microsoft Corporation>
[IPX Traffic Forwarder Driver / NwlnkFwd]
  <System32\DRIVERS\nwlnkfwd.sys><Microsoft Corporation>
[nwlnksipx / nwlnksipx]
  <\??\C:\WINNT\system32\drivers\nwlnksipx.sys><Microsoft Corporation>
[nwupspx / nwupspx]
  <\SystemRoot\system32\drivers\nwupspx.sys><N/A>
[Parallel class driver / Parallel]
  <System32\DRIVERS\parallel.sys><Microsoft Corporation>
[Parallel port driver / Parport]
  <System32\DRIVERS\parport.sys><Microsoft Corporation>
[PartMgr / PartMgr]
  <C:\WINNT\SYSTEM32\DRIVERS\PartMgr.SYS><Microsoft Corporation>
[ParVdm / ParVdm]
  <C:\WINNT\SYSTEM32\DRIVERS\ParVdm.SYS><Microsoft Corporation>
[PCI Bus Driver / PCI]
  <\SystemRoot\System32\DRIVERS\pci.sys><Microsoft Corporation>
[PCIIde / PCIIde]
  <\SystemRoot\System32\DRIVERS\pciide.sys><Microsoft Corporation>
[Pcmcia / Pcmcia]
  <C:\WINNT\SYSTEM32\DRIVERS\Pcmcia.SYS><Microsoft Corporation>
[WAN Miniport (PPTP) / PptpMiniport]
  <System32\DRIVERS\raspptp.sys><Microsoft Corporation>
[Direct Parallel Link Driver / Ptilink]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[qhlgqj1 / qhlgqj11]
  <\SystemRoot\System32\DRIVERS\qhlgqj11.sys><Microsoft Corporation>
[Remote Access Auto Connection Driver / RasAcd]
  <System32\DRIVERS\rasacd.sys><Microsoft Corporation>
[WAN Miniport (L2TP) / Rasl2tp]
  <System32\DRIVERS\rasl2tp.sys><Microsoft Corporation>
[Direct Parallel / Raspti]
  <System32\DRIVERS\raspti.sys><Microsoft Corporation>
[Microsoft Streaming Network Raw Channel Access / RCA]
  <system32\drivers\RCA.sys><Microsoft Corporation>
[Rdbss / Rdbss]
  <System32\DRIVERS\rdbss.sys><Microsoft Corporation>
[Digital CD Audio Playback Filter Driver / redbook]
  <System32\DRIVERS\redbook.sys><Microsoft Corporation>
[Realtek RTL8139-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
  <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[SAVRT / SAVRT]
  <\??\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation>
[SAVRTPEL / SAVRTPEL]
  <\??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation>
[Serenum Filter Driver / serenum]
  <System32\DRIVERS\serenum.sys><Microsoft Corporation>
[Serial port driver / Serial]
  <System32\DRIVERS\serial.sys><Microsoft Corporation>
[SFI Service / sf]
  <system32\drivers\sf.sys><Sonic Focus, Inc>
[High-Capacity Floppy Disk Drive / Sfloppy]
  <System32\DRIVERS\sfloppy.sys><Microsoft Corporation>
[Intel (R) System Management BIOS Service / SMBios]
  <System32\DRIVERS\SMBios.sys><Intel Corporation>
[smcusb / smcusb]
  <\??\C:\WINNT\system32\drivers\smcusb.sys><N/A>
[smwdm / smwdm]
  <system32\drivers\smwdm.sys><N/A>
[SPBBCDrv / SPBBCDrv]
  <\??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys><Symantec Corporation>
[sptd / sptd]
  <\SystemRoot\System32\Drivers\sptd.sys><N/A>
[Srv / Srv]
  <System32\DRIVERS\srv.sys><Microsoft Corporation>
[Software Bus Driver / swenum]
  <System32\DRIVERS\swenum.sys><Microsoft Corporation>
[Microsoft Kernel GS Wavetable Synthesizer / swmidi]
  <system32\drivers\swmidi.sys><Microsoft Corporation>
[SymEvent / SymEvent]
  <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
[SYMREDRV / SYMREDRV]
  <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
[SYMTDI / SYMTDI]
  <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>
[Microsoft System Audio Device / sysaudio]
  <system32\drivers\sysaudio.sys><Microsoft Corporation>
[TCP/IP Protocol Driver / Tcpip]
  <System32\DRIVERS\tcpip.sys><Microsoft Corporation>
[Udfs / Udfs]
  <C:\WINNT\SYSTEM32\DRIVERS\Udfs.SYS><Microsoft Corporation>
[Microsoft USB Universal Host Controller Driver / uhcd]
  <System32\DRIVERS\uhcd.sys><Microsoft Corporation>
[Microcode Update Driver / Update]
  <System32\DRIVERS\update.sys><Microsoft Corporation>
[Microsoft USB 2.0 Enhanced Host Controller Miniport Driver / usbehci]
  <System32\DRIVERS\usbehci.sys><Microsoft Corporation>
[Microsoft USB Standard Hub Driver / usbhub]
  <System32\DRIVERS\usbhub.sys><Microsoft Corporation>
[USB 2.0 Root Hub Support / usbhub20]
  <System32\DRIVERS\usbhub20.sys><Microsoft Corporation>
[Microsoft USB PRINTER Class / usbprint]
  <System32\DRIVERS\usbprint.sys><Microsoft Corporation>
[USB Scanner Driver / usbscan]
  <System32\DRIVERS\usbscan.sys><Microsoft Corporation>
[USB Mass Storage Driver / USBSTOR]
  <System32\DRIVERS\USBSTOR.SYS><Microsoft Corporation>

浏览器加载项
[VAG]
  {F091DAC4-7032-463D-BEEC-CECFCEA94F4C} <C:\WINNT\system32\vagmet.dll, >
[电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\system32\msdxm.ocx, Microsoft Corporation>
[卡卡上网安全助手]
  {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} <C:\WINNT\system32\kakatool.dll, N/A>

==================================
正在运行的进程
[PID: 220][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.00.2195.6601]
[PID: 252][\??\C:\WINNT\system32\csrss.exe]  [Microsoft Corporation, 5.00.2195.6601]
[PID: 248][\??\C:\WINNT\system32\winlogon.exe]  [Microsoft Corporation, 5.00.2195.6714]
[PID: 304][C:\WINNT\system32\services.exe]  [Microsoft Corporation, 5.00.2195.6700]
    [C:\WINNT\system32\dmserver.dll]  [VERITAS Software Corp., 2195.6605.297.3]
[PID: 316][C:\WINNT\system32\lsass.exe]  [Microsoft Corporation, 5.00.2195.6695]
[PID: 488][C:\WINNT\system32\svchost.exe]  [Microsoft Corporation, 5.00.2134.1]
[PID: 516][C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccL35.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 103.5.1.9]
[PID: 544][C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccL35.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\BB.DLL]  [Symantec Corporation, 1,5,1,3]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\SPBBCEVT.DLL]  [Symantec Corporation, 1,5,1,3]
    [C:\Program Files\Common Files\Symantec Shared\ccSet.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETEVT.DLL]  [Symantec Corporation, 103.5.1.9]
[PID: 660][C:\WINNT\system32\spoolsv.exe]  [Microsoft Corporation, 5.00.2195.6659]
    [C:\WINNT\system32\BBPDFPortMon.dll]  [Bluebeam Software, Inc., 1, 0, 0, 1]
    [C:\WINNT\system32\HPBMMON.DLL]  [Hewlett-Packard, 10.00.16]
    [C:\WINNT\system32\hpdomon.dll]  [Hewlett-Packard, 03.42.00]
    [C:\WINNT\system32\HPBHealr.dll]  [N/A, N/A]
    [C:\WINNT\system32\spool\PRTPROCS\W32X86\HPPRN05.DLL]  [Hewlett-Packard Corporation, 60.05.17.02]
[PID: 732][C:\WINNT\system32\drivers\CDAC11BA.EXE]  [Macrovision, 4.20.020]
[PID: 756][C:\Program Files\Symantec AntiVirus\DefWatch.exe]  [Symantec Corporation, 10.0.0.359]
[PID: 776][C:\WINNT\System32\svchost.exe]  [Microsoft Corporation, 5.00.2134.1]
[PID: 576][C:\WINNT\system32\nvsvc32.exe]  [NVIDIA Corporation, 6.14.10.5664]
[PID: 876][C:\WINNT\system32\regsvc.exe]  [Microsoft Corporation, 5.00.2195.6701]
[PID: 828][C:\Program Files\Symantec AntiVirus\SavRoam.exe]  [symantec, 10.0.0.359]
    [C:\Program Files\Common Files\Symantec Shared\SSC\Transman.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\WINNT\system32\CBA.DLL]  [Intel? Corporation, 6.12.0.130 E]
    [C:\WINNT\system32\MsgSys.dll]  [Intel? Corporation, 6.12.0.130 E]
    [C:\WINNT\system32\NTS.dll]  [Intel? Corporation, 6.12.0.130 E]
    [C:\WINNT\system32\PDS.DLL]  [Intel? Corporation, 6.12.0.130 E]
    [c:\program files\common files\symantec shared\ssc\ScsComms.dll]  [Symantec Corporation, 10.0.0.359]
[PID: 896][C:\WINNT\system32\MSTask.exe]  [Microsoft Corporation, 4.71.2195.6704]
    [C:\WINNT\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
[PID: 932][C:\WINNT\system32\stisvc.exe]  [Microsoft Corporation, 5.00.2195.6656]
[PID: 832][C:\Program Files\Symantec AntiVirus\Rtvscan.exe]  [Symantec Corporation, 10.0.0.359]
    [C:\WINNT\system32\CBA.DLL]  [Intel? Corporation, 6.12.0.130 E]
    [C:\WINNT\system32\MsgSys.dll]  [Intel? Corporation, 6.12.0.130 E]
    [C:\WINNT\system32\NTS.dll]  [Intel? Corporation, 6.12.0.130 E]
    [C:\WINNT\system32\PDS.DLL]  [Intel? Corporation, 6.12.0.130 E]
    [C:\Program Files\Symantec AntiVirus\NAVLU.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL]  [Symantec Corporation, 10.0.0.359]
    [c:\program files\common files\symantec shared\ssc\ScsComms.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Symantec AntiVirus\I2ldvp3.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccL35.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ccDec.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\decsdk.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2ID.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2Zip.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2SS.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2GZIP.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2CAB.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2LHA.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2ARJ.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2TNEF.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2LZ.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2AMG.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2RAR.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2TAR.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2RTF.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\Decomposers\Dec2Text.dll]  [Symantec Corporation, 3.02.12.35]
    [C:\Program Files\Common Files\Symantec Shared\ccScan.dll]  [Symantec Corporation, 103.5.1.9]
    [C:\Program Files\Common Files\Symantec Shared\ecmldr32.DLL]  [Symantec Corporation, 1.4.0.11]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061020.020\ccEraser.dll]  [Symantec Corporation, 106.3.0.29]
    [C:\Program Files\Symantec AntiVirus\DefUtDCD.dll]  [Symantec Corporation, 3.1.13a.0]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061020.020\ecmsvr32.dll]  [Symantec Corporation, 61.3.0.18]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061020.020\NAVEX32a.DLL]  [Symantec Corporation, 20061.3.0.12]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061020.020\NAVENG32.DLL]  [Symantec Corporation, 20061.3.0.12]
    [C:\Program Files\Symantec AntiVirus\NAVAP32.DLL]  [Symantec Corporation, 9.5.0.44]
    [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL]  [Symantec Corporation, 9.5.0.44]
    [C:\Program Files\Symantec AntiVirus\IMail.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Symantec AntiVirus\NotesExt.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Symantec AntiVirus\vpmsece3.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Symantec AntiVirus\SymProtectStorage.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCEvt.dll]  [Symantec Corporation, 1,5,1,3]
[PID: 1000][C:\WINNT\system32\spool\ugplot\ugiipqd.exe]  [Unigraphics Solutions, Inc, 2.0.0.21]
    [C:\WINNT\system32\spool\ugplot\libplotq.dll]  [Unigraphics Solutions, Inc, 2.0.0.21]
    [C:\WINNT\system32\spool\ugplot\libsyss.dll]  [Unigraphics Solutions, Inc, 2.0.0.21]
[PID: 1032][D:\Program Files\UGS\License Servers\UGNXFLEXlm\lmgrd.exe]  [Macrovision Corporation, 9, 2, 2, 0]
[PID: 1052][C:\WINNT\xuhuan.exe]  [Microsoft Corporation, 1.0.0.0]
[PID: 1056][D:\Program Files\UGS\License Servers\UGNXFLEXlm\uglmd.exe]  [N/A, N/A]
[PID: 1084][C:\WINNT\System32\WBEM\WinMgmt.exe]  [Microsoft Corporation, 1.50.1085.0100]
[PID: 1096][C:\WINNT\system32\svchost.exe]  [Microsoft Corporation, 5.00.2134.1]
[PID: 1580][C:\WINNT\Explorer.EXE]  [Microsoft Corporation, 5.00.3700.6690]
    [C:\WINNT\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.0.0.86]
    [C:\Herosoft\HeroV8\VCvtShell.dll]  [herosoft, 1, 0, 0, 1]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
    [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll]  [Symantec Corporation, 10.0.0.359]
    [C:\WINNT\system32\vagmet.dll]  [, 1, 0, 0, 1]
[PID: 1704][C:\WINNT\SOUNDMAN.EXE]  [Avance Logic, Inc., 5.0.10]
[PID: 1624][C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe]  [Yahoo! China, 3, 0, 2, 1003]
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yAssecblk.dll]  [Yahoo! China, 3, 0, 5, 1007]
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yMenuInfo.dll]  [Yahoo! China, 3, 0, 0, 1000]
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yIEAngel.dll]  [Yahoo! China, 3, 0, 1, 1001]
    [C:\PROGRA~1\Yahoo!\Assistant\shell\yAsMenu.dll]  [Yahoo! China, 3, 0, 0, 1001]
[PID: 1668][C:\WINNT\system32\ctfmon.exe]  [Microsoft Corporation, 1.00.2409.34 built by: Lab06_N]
[PID: 1852][C:\Program Files\Windows NT\Accessories\wordpad.exe]  [Microsoft Corporation, 5.00.2170.1]
    [C:\WINNT\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.0.0.86]
[PID: 1644][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2800.1106]
    [C:\WINNT\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\WINNT\system32\vagmet.dll]  [, 1, 0, 0, 1]
    [C:\WINNT\system32\Macromed\Flash\Flash8b.ocx]  [Macromedia, Inc., 8,0,24,0]
[PID: 1136][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.2800.1106]
    [C:\WINNT\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [C:\WINNT\system32\vagmet.dll]  [, 1, 0, 0, 1]
    [C:\WINNT\system32\Macromed\Flash\Flash8b.ocx]  [Macromedia, Inc., 8,0,24,0]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
[PID: 1132][C:\Downloads\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]

文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  Error. [AutoCADScriptFile]
.CHM  OK. ["C:\WINNT\hh.exe" %1]
.HLP  Error. [C:\WINNT\winhlp32.exe %1]
.INI  Error. [C:\WINNT\NOTEPAD.EXE %1]
.INF  Error. [C:\WINNT\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

各位大虾帮忙看一看吧。小妹在此谢过了。

忘了说了，我的主页本来是空白页，现在变成了http://xfkz.com 
好像是飘雪论坛的说。

大虾们都去吃饭了？？？？？？？