2007-01-04,11:18:45 System Repair Engineer 2.2.6.605 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能 以下内容被选中: 所有的启动项目(包括注册表、启动文件夹、服务等) 浏览器加载项 正在运行的进程(包括进程模块信息) 文件关联 Winsock 提供者 Autorun.inf HOSTS 文件 启动项目 注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Corporation] <Super Rabbit IEPro><F:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD> [Super Rabbit Soft] <MsnMsgr><"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [N/A] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] (www.dngz.net)为您排除一切电脑故障
<load><> [N/A] <run><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"> [(Verified)Symantec Corporation] <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Corporation] <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation] <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Corporation] <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Corporation] <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.] <vptray><C:\PROGRA~1\SYMANT~1\VPTray.exe> [(Verified)Symantec Corporation] <Thunder><"F:\讯雷\Thunder.exe" /s> [Thunder Networking Technologies,LTD] <SysExplr><F:\3D\superplay3500\SysExplr.exe> [N/A] <!ewido><"C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.814\ewido4.0\ewido.exe" /minimized> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Corporation] <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <UIHost><logonui.exe> [(Verified)Microsoft Corporation] ================================== 启动文件夹 N/A ================================== 服务 [1sass / 1sass] <C:\WINDOWS\1sass.exe><N/A> dngz.net [Symantec Event Manager / ccEvtMgr] <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation> [Symantec Password Validation / ccPwdSvc] <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation> [Symantec Settings Manager / ccSetMgr] <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation> [Symantec AntiVirus Definition Watcher / DefWatch] <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation> [Human Interface Device Access / HidServ] <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A> [Macromedia Licensing Service / Macromedia Licensing Service] <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A> [SavRoam / SavRoam] <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec> [Symantec Network Drivers Service / SNDSrvc] <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation> [Symantec AntiVirus / Symantec AntiVirus] <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation> ================================== 驱动程序 [ADProt / ADProt] <\SystemRoot\system32\drivers\ADProt.sys><腾讯科技(深圳)有限公司> [adpu160m / adpu160m] <C:\WINDOWS\SYSTEM32\DRIVERS\adpu160m.SYS><Adaptec, Inc.> [Service for Realtek AC97 Audio (WDM) / ALCXWDM] <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.> [AliIde / AliIde] <C:\WINDOWS\SYSTEM32\DRIVERS\AliIde.SYS><ALi Corporation> [ati2mtag / ati2mtag] <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.> [btfirst / btfirst] <\SystemRoot\System32\DRIVERS\btfirst.sys><YAHOO Corporation.>(www.dngz.net)
[dac960nt / dac960nt] <C:\WINDOWS\SYSTEM32\DRIVERS\dac960nt.SYS><Mylex Corporation> [dpti2o / dpti2o] <C:\WINDOWS\SYSTEM32\DRIVERS\dpti2o.SYS><Adaptec, Inc.> [VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB] <system32\DRIVERS\fetnd5b.sys><VIA Technologies, Inc.> [USB Serial Converter Driver / FTDIBUS] <system32\drivers\ftdibus.sys><FTDI Ltd.> [USB Serial Port Driver / FTSER2K] <system32\drivers\ftser2k.sys><FTDI Ltd.> [ljnjjase / ljnjjase] <\SystemRoot\\SystemRoot\System32\drivers\ljnjjase.sys><N/A> [mraid35x / mraid35x] <C:\WINDOWS\SYSTEM32\DRIVERS\mraid35x.SYS><LSI Logic Corporation> [NAVENG / NAVENG] <\?\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\naveng.sys><Symantec Corporation> [NAVEX15 / NAVEX15] <\?\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\navex15.sys><Symantec Corporation> [npkcrypt / npkcrypt] <\?\E:\qq\npkcrypt.sys><INCA Internet Co., Ltd.> [ondnyuxs / ondnyuxs] <\SystemRoot\system32\drivers\ondnyuxs.sys><> [Direct Parallel Link Driver / Ptilink] <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [ql12160 / ql12160] <C:\WINDOWS\SYSTEM32\DRIVERS\ql12160.SYS><QLogic Corporation> [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139] <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation> [SAVRT / SAVRT] <\?\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation> [SAVRTPEL / SAVRTPEL] <\?\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation> [Secdrv / Secdrv] <system32\DRIVERS\secdrv.sys><N/A> [Sony USB Filter Driver (SONYPVU1) / SONYPVU1] <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation> dngz.net版权所有 [Samsung Mobile USB Device 1.0 driver (WDM) / ss_bus] <system32\DRIVERS\ss_bus.sys><MCCI> [SAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl] <system32\DRIVERS\ss_mdfl.sys><MCCI> [SAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm] <system32\DRIVERS\ss_mdm.sys><MCCI> [SVKP / SVKP] <\?\C:\WINDOWS\system32\SVKP.sys><AntiCracking> [SymEvent / SymEvent] <\?\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation> [SYMREDRV / SYMREDRV] <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation> [SYMTDI / SYMTDI] <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation> [ultra / ultra] <C:\WINDOWS\SYSTEM32\DRIVERS\ultra.SYS><Promise Technology, Inc.> ================================== 浏览器加载项 [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} <F:\讯雷\ComDlls\XunLeiBHO_006.dll, Thunder Networking Technologies,LTD> [启动迅雷5] {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <F:\讯雷\Thunder.exe, Thunder Networking Technologies,LTD> [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} <E:\qq\QQ.EXE, TENCENT> [Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation> [HTML Document] {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A> [HtmlDlgSafeHelper Class] {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, Microsoft Corporation> [IETag Factory] {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation> [Shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A> [Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation> (www.dngz.net) [Microsoft Web 浏览器] {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation> [Thunder Browser Helper] {889D2FEB-5411-4565-8998-1DD2C5261283} <F:\讯雷\ComDlls\XunLeiBHO_006.dll, Thunder Networking Technologies,LTD> [Microsoft Scriptlet Component] {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation> [RDS.DataSpace] {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\system\msadc\msadco.dll, Microsoft Corporation> [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.> [&使用迅雷下载] <F:\讯雷\Program\GetUrl.htm, N/A> [&使用迅雷下载全部链接] <F:\讯雷\Program\GetAllUrl.htm, N/A> [上传到QQ网络硬盘] <E:\qq\AddToNetDisk.htm, N/A> [添加到QQ自定义面板] <E:\qq\AddPanel.htm, N/A> [添加到QQ表情] <E:\qq\AddEmotion.htm, N/A> [用QQ彩信发送该图片] <E:\qq\SendMMS.htm, N/A> ================================== 正在运行的进程 [PID: 1040][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1088][\?\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1112][\?\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1156][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1168][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1324][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1416][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] (www.dngz.net) [PID: 1524][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1608][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1704][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1856][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)] [PID: 152][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [C:\Program Files\WinRAR\rarext.dll] [N/A, N/A] [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll] [Symantec Corporation, 9.0.0.338] [F:\讯雷\ComDlls\XunLeiBHO_006.dll] [Thunder Networking Technologies,LTD, 5, 0, 0, 3] [PID: 392][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] [RealNetworks, Inc., 0.1.0.3510] [PID: 400][C:\PROGRA~1\SYMANT~1\VPTray.exe] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28] [C:\Program Files\Symantec AntiVirus\Cliscan.dll] [Symantec Corporation, 9.0.0.338] [C:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\Cliproxy.dll] [Symantec Corporation, 9.0.0.338] [PID: 424][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 480][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] [F:\讯雷\ComDlls\XunLeiBHO_006.dll] [Thunder Networking Technologies,LTD, 5, 0, 0, 3] [PID: 488][C:\Program Files\Symantec AntiVirus\DefWatch.exe] [Symantec Corporation, 9.0.0.338] [PID: 576][C:\Program Files\Symantec AntiVirus\SavRoam.exe] [symantec, 1.5.0.0] [C:\Program Files\Common Files\Symantec Shared\SSC\Transman.dll] [Symantec Corporation, 9.0.0.338] (www.dngz.net) [C:\WINDOWS\system32\CBA.DLL] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\MsgSys.dll] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\NTS.dll] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\PDS.DLL] [Intel? Corporation, 6.12.0.112 E] [PID: 668][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 680][C:\Program Files\Symantec AntiVirus\Rtvscan.exe] [Symantec Corporation, 9.0.0.338] [C:\WINDOWS\system32\CBA.DLL] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\MsgSys.dll] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\NTS.dll] [Intel? Corporation, 6.12.0.112 E] [C:\WINDOWS\system32\PDS.DLL] [Intel? Corporation, 6.12.0.112 E] [C:\Program Files\Symantec AntiVirus\NAVLU.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\I2ldvp3.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\ecmldr32.DLL] [Symantec Corp., 1.1.0.3] [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28] [C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL] [Symantec Corporation, 9.0.0.338] [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\ecmsvr32.dll] [Symantec Corporation, 61.3.0.18] [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\NAVEX32a.DLL] [Symantec Corporation, 20061.3.0.12] [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\NAVENG32.DLL] [Symantec Corporation, 20061.3.0.12] [C:\Program Files\Symantec AntiVirus\IMail.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\NotesExt.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\vpmsece.dll] [Symantec Corporation, 9.0.0.338].
[C:\Program Files\Common Files\Symantec Shared\SSC\scandlgs.dll] [Symantec Corporation, 9.0.0.338] [C:\Program Files\Symantec AntiVirus\DecSDK.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2ID.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2ZIP.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2SS.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2GZIP.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2CAB.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2LHA.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2ARJ.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2TNEF.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2LZ.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2AMG.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2TAR.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2RTF.dll] [Symantec Corporation, 3.02.11.32] [C:\Program Files\Symantec AntiVirus\Dec2Text.dll] [Symantec Corporation, 3.02.11.32] [PID: 968][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)] [PID: 864][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2476][F:\新建文件夹 (2)\sreng2\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1](www.dngz.net)版权所有
.EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM Error. [C:\WINDOWS\hh.exe %1] .HLP Error. [C:\WINDOWS\winhlp32.exe %1] .INI Error. [C:\WINDOWS\NOTEPAD.EXE %1] .INF Error. [C:\WINDOWS\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1 localhost ==================================这么多是什么东东啊? 看不懂的:o :L
服务 [1sass / 1sass] <C:\WINDOWS\1sass.exe><N/A> 用sreng禁止这服务,也可以在系统中禁止这服务,,这就是灰鸽子 然后下载本板块置顶工具帖子里面的killbox汉化版,,,,删除工具,, 填入下面路径:删除可能有的文件 C:\WINDOWS\1sass.exe C:\WINDOWS\1sass.dll C:\WINDOWS\1sasshook.dll C:\WINDOWS\1sasskey.dll C:\WINDOWS\1sass.bat
最后用sreng修复关联错误 文件关联 .CHM Error. [C:\WINDOWS\hh.exe %1] .HLP Error. [C:\WINDOWS\winhlp32.exe %1] .INI Error. [C:\WINDOWS\NOTEPAD.EXE %1] .INF Error. [C:\WINDOWS\NOTEPAD.EXE %1]