风微香轻的博客   点击复制博客地址 加入收藏夹
推荐索尼朋友圈
用户数 947
帖子数 113
回复数 814
[加入收藏]
用户数 530
帖子数 38
回复数 208
[加入收藏]
用户数 340
帖子数 503
回复数 2232
[加入收藏]
博客文集 | 用户相册 | 用户信息 | 返回社区 | 给我传呼
风微香轻的博客
 活力地带
给我留言
登录社区
用户注册
访问次数:11137896
文章数量:19229
评论数量:82041
 最新文章列表
航嘉冷静王钻石版2.3电源 额定300W好不好?
数码相机
我想买一个五千元以内的电脑,3D设计型的。请内行给个配置建...
[200高分!!!] 求KOTOKO的完整歌集...(请看清要求)
请大家帮我看看哪台电脑比较好!
神舟优雅260好不好?
帮忙!评价电脑配置!
请帮大家忙推荐一款手机
诺基亚N72 水货
【求助】s500i内存卡读卡的问题~
标题: 电脑经常蓝屏,QQ,音乐,网页……经常弹出框框,然后自动关闭 收起 
2008-03-19 08:34:38
帖子标题:
电脑经常蓝屏,QQ,音乐,网页……经常弹出框框,然后自动关闭

帖子内容:
现象:
历史操作:清楚使用痕迹,系统诊断……

备注:

我的诊断报告:
各位高手:
非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助!
该诊断报告由360安全卫士提供 http://www.360safe.com
诊断时间: 2008-03-14  13:07:58
诊断平台: Microsoft Windows XP  Service Pack 2
IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180
计算机物理内存:447.23MB - 当前可用内存:162.80MB

100 - 未知 - Process: ishare_user.exe [] - C:\Program Files\Dr.COM宽带认证客户端3.39\ishare_user.exe
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.265.com/
O2 - 未知 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll
O4 - 未知 - HKLM\..\Run: [SkyTel] [Realtek Voice  Manager] SkyTel.EXE
O8 - 未知 - Extra context menu item: 使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O9 - 未知 - Extra button: 启动迅雷5(HKLM) - C:\Program Files\Thunder Network\Thunder\Thunder.exe
O10 - 未知 - Winsock LSP: [] [{E70F1AA0-AB8B-11CF-8CA3-00805F48A192}]C:\WINDOWS\system32\TcpIpDog0.dll
O10 - 未知 - Winsock LSP: [] [{E70F1AA0-AB8B-11CF-8CA3-00805F48A192}]C:\WINDOWS\system32\TcpIpDog0.dll
O10 - 未知 - Winsock LSP: [] [{E70F1AA0-AB8B-11CF-8CA3-00805F48A192}]C:\WINDOWS\system32\TcpIpDog0.dll
O10 - 未知 - Winsock LSP: [] [{9D60A9E0-337A-11D0-BD88-0000C082E69A}]C:\WINDOWS\system32\TcpIpDogR0.dll
O10 - 未知 - Winsock LSP: [] [{9D60A9E0-337A-11D0-BD88-0000C082E69A}]C:\WINDOWS\system32\TcpIpDogR0.dll
O18 - 未知 - Protocol: KuGoo - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\WINDOWS\system32\KuGoo3DownXControl.ocx
O18 - 未知 - Protocol: KuGoo3 - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\WINDOWS\system32\KuGoo3DownXControl.ocx
O30 - 未知 - HKCU\..\Desktop: [Scrnsave.exe] [] C:\WINDOWS\system32\Coopen.scr

=======================================

100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序,用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: RTHDCPL.EXE [瑞昱出品的声卡相关程序。] - C:\WINDOWS\RTHDCPL.EXE
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] - C:\WINDOWS\system32\RUNDLL32.EXE
100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] - C:\Program Files\360safe\safemon\360tray.exe
100 - 安全 - Process: VM303_STI.EXE [一款摄像头相关程序。] - C:\WINDOWS\VM303_STI.EXE
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: nvsvc32.exe [nvidia driver helper service在nvida显卡驱动中被安装。] - C:\WINDOWS\system32\nvsvc32.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k imgsvc
100 - 安全 - Process: wdfmgr.exe [windows media player播放器相关程序。] - C:\WINDOWS\system32\wdfmgr.exe
100 - 安全 - Process: conime.exe [console ime ime输入法控制台软件。] - C:\WINDOWS\system32\conime.exe
100 - 安全 - Process: wuauclt.exe [windows操作系统后台程序,用于系统升级。] - C:\WINDOWS\system32\wuauclt.exe
100 - 安全 - Process: TIMPlatform.exe [腾讯即时通讯客户端软件的一部分。] - C:\Program Files\Tencent\qq\TIMPlatform.exe
100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] - C:\Program Files\360safe\360Safe.exe
100 - 安全 - Process: IEXPLORE.EXE [microsoft internet explorer浏览器用于浏览网页。] - C:\Program Files\Internet Explorer\IEXPLORE.EXE
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=about:blank
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=about:blank
O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
O2 - 安全 - BHO: (Google Toolbar Helper) - [Google搜索工具条。] - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - 安全 - Toolbar: (&Google) - [Google IE 客户端工具栏。] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - 安全 - HKLM\..\Run: [RTHDCPL] [realtek声卡特性设置软件相关程序。] RTHDCPL.EXE
O4 - 安全 - HKLM\..\Run: [Alcmtr] [一款声卡相关程序。] ALCMTR.EXE
O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - 安全 - HKLM\..\Run: [nwiz] [是NVidia的Nview特性相关程序。该程序用于用户对其特性进行配置,将桌面扩展到多台显示器上。 ] nwiz.exe /install
O4 - 安全 - HKLM\..\Run: [NvMediaCenter] [是NVidia显示卡相关文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360tray.exe /start
O4 - 安全 - HKLM\..\Run: [BigDog303] [一款摄像头相关程序。] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - 安全 - HKLM\..\Run: [KuGoo3] [一款用于文件共享的软件。] C:\Program Files\KuGoo2007\KuGoo.exe
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (running)

=======================================

O31 - 未知 - Notify: crypt32chain - C:\WINDOWS\system32\crypt32.dll - Microsoft Corporation - Crypto API32 - 5.131.2600.2180 - 590336 - 874e00d6547c913458525f26695938e1
O31 - 未知 - Notify: cryptnet - C:\WINDOWS\system32\cryptnet.dll - Microsoft Corporation - Crypto Network Related API - 5.131.2600.2180 - 63488 - 742dac6208524b5b633675bdb1a09c0c
O31 - 未知 - Notify: cscdll - C:\WINDOWS\system32\cscdll.dll - Microsoft Corporation - Offline Network Agent - 5.1.2600.2180 - 99840 - 57b10583d5b880a93a82f525b817f867
O31 - 未知 - Notify: ScCertProp - C:\WINDOWS\system32\wlnotify.dll - Microsoft Corporation - Common DLL to receive Winlogon notifications - 5.1.2600.2180 - 89088 - d4732d5f6fb51d07c8c115b658fa84de
O31 - 未知 - Notify: Schedule - C:\WINDOWS\system32\wlnotify.dll - Microsoft Corporation - Common DLL to receive Winlogon notifications - 5.1.2600.2180 - 89088 - d4732d5f6fb51d07c8c115b658fa84de
O31 - 未知 - Notify: sclgntfy - C:\WINDOWS\system32\sclgntfy.dll - Microsoft Corporation - Secondary Logon Service Notification DLL - 5.1.2600.2180 - 18944 - 58001a3833a25dbd7460a69cb69c8fe2
O31 - 未知 - Notify: SensLogn - C:\WINDOWS\system32\WlNotify.dll - Microsoft Corporation - Common DLL to receive Winlogon notifications - 5.1.2600.2180 - 89088 - d4732d5f6fb51d07c8c115b658fa84de
O31 - 未知 - Notify: termsrv - C:\WINDOWS\system32\wlnotify.dll - Microsoft Corporation - Common DLL to receive Winlogon notifications - 5.1.2600.2180 - 89088 - d4732d5f6fb51d07c8c115b658fa84de
O31 - 未知 - Notify: wlballoon - C:\WINDOWS\system32\wlnotify.dll - Microsoft Corporation - Common DLL to receive Winlogon notifications - 5.1.2600.2180 - 89088 - d4732d5f6fb51d07c8c115b658fa84de
O31 - 未知 - SODL: {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\SHELL32.dll - Microsoft Corporation - Windows Shell Common Dll - 6.0.2900.3241 - 8312320 -
O31 - 未知 - SODL: {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\SHELL32.dll - Microsoft Corporation - Windows Shell Common Dll - 6.0.2900.3241 - 8312320 -
O31 - 未知 - SODL: {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SODL: {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll - Microsoft Corporation - Systray shell service object - 5.1.2600.2180 - 121344 - 08488e3e73787c1e7b59f0d5c1b8c554
O31 - 未知 - SEApproved: {00022613-0000-0000-C000-000000000046} - C:\WINDOWS\system32\mmsys.cpl - Microsoft Corporation - Control Panel Drivers Applet - 5.1.2600.2180 - 600064 - 085232434a439a6a680380372632f2d4
O31 - 未知 - SEApproved: {176d6597-26d3-11d1-b350-080036a75b03} - C:\WINDOWS\system32\icmui.dll - Microsoft Corporation - Microsoft Color Matching System User Interface DLL - 5.1.2600.0 - 54784 - 25e23917a19873e24457d9bd433108e8
O31 - 未知 - SEApproved: {1F2E5C40-9550-11CE-99D2-00AA006E086C} - C:\WINDOWS\system32\rshx32.dll - Microsoft Corporation - Security Shell Extension - 5.1.2600.2180 - 37888 - 1bc85eebac41ed1ecbb37ef02181a202
O31 - 未知 - SEApproved: {3EA48300-8CF6-101B-84FB-666CCB9BCD32} - C:\WINDOWS\system32\docprop.dll - Microsoft Corporation - OLE DocFile Property Page - 5.1.2600.0 - 46080 - b6f75dd82f6a3596ef934b0e648f4199
O31 - 未知 - SEApproved: {40dd6e20-7c17-11ce-a804-00aa003ca9f6} - C:\WINDOWS\system32\ntshrui.dll - Microsoft Corporation - Shell extensions for sharing - 5.1.2600.2180 - 137216 - 6fd08f1ef02456a30f14b8b37e78cd05
O31 - 未知 - SEApproved: {41E300E0-78B6-11ce-849B-444553540000} - C:\WINDOWS\system32\themeui.dll - Microsoft Corporation - Windows Theme API - 6.0.2900.2180 - 371200 - 65096cf4a9d1281e362e65e52a505eb8
O31 - 未知 - SEApproved: {42071712-76d4-11d1-8b24-00a0c9068ff3} - C:\WINDOWS\system32\deskadp.dll - Microsoft Corporation - Advanced display adapter properties - 6.0.2600.0 - 16384 - 2df0148bcdf1a691e47ae5fe7a3220c0
O31 - 未知 - SEApproved: {42071713-76d4-11d1-8b24-00a0c9068ff3} - C:\WINDOWS\system32\deskmon.dll - Microsoft Corporation - Advanced display monitor properties - 6.0.2600.0 - 16896 - 1ae273152358333693595948a63c0ea7
O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: {4E40F770-369C-11d0-8922-00A024AB2DBB} - C:\WINDOWS\system32\dssec.dll - Microsoft Corporation - Directory Service Security UI - 5.1.2600.2180 - 48640 - 65d1b98f7f3cf1650700e6e67a600d6e
O31 - 未知 - SEApproved: {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8} - C:\WINDOWS\system32\SlayerXP.dll - Microsoft Corporation - Compatibility Tab Shell Extension DLL - 5.1.2600.2180 - 24576 - 3de5dac9fbba388890dbe070bc9bab8a
O31 - 未知 - SEApproved: {56117100-C0CD-101B-81E2-00AA004AE837} - C:\WINDOWS\system32\shscrap.dll - Microsoft Corporation - Shell scrap object handler - 5.1.2600.2180 - 25600 - a082c5ad1601962de5c59e95ec426a6b
O31 - 未知 - SEApproved: {59099400-57FF-11CE-BD94-0020AF85B590} - C:\WINDOWS\system32\diskcopy.dll - Microsoft Corporation - Windows DiskCopy - 6.0.2600.0 - 1501696 - dd9a5ae9be5964086f98030f2765c5e6
O31 - 未知 - SEApproved: {59be4990-f85c-11ce-aff7-00aa003ca9f6} - C:\WINDOWS\system32\ntlanui2.dll - Microsoft Corporation - Network object shell UI - 5.1.2600.0 - 14336 - 36feaeb24262211c77548bd118eb82d6
O31 - 未知 - SEApproved: {5DB2625A-54DF-11D0-B6C4-0800091AA605} - C:\WINDOWS\System32\icmui.dll - Microsoft Corporation - Microsoft Color Matching System User Interface DLL - 5.1.2600.0 - 54784 - 25e23917a19873e24457d9bd433108e8
O31 - 未知 - SEApproved: {675F097E-4C4D-11D0-B6C1-0800091AA605} - C:\WINDOWS\system32\icmui.dll - Microsoft Corporation - Microsoft Color Matching System User Interface DLL - 5.1.2600.0 - 54784 - 25e23917a19873e24457d9bd433108e8
O31 - 未知 - SEApproved: 无效的CLSID:Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {77597368-7b15-11d0-a0c2-080036af3f03} - C:\WINDOWS\system32\printui.dll - Microsoft Corporation - Print UI DLL - 5.1.2600.2180 - 524288 - a524c4b0210e299c3f602b48ea0c7be8
O31 - 未知 - SEApproved: {7988B573-EC89-11cf-9C00-00AA00A14F56} - C:\WINDOWS\system32\dskquoui.dll - Microsoft Corporation - Windows Shell Disk Quota UI DLL - 5.1.2600.0 - 144384 - 43c63e2827663aca2d8af934fa2e8b19
O31 - 未知 - SEApproved: 无效的CLSID:加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {85BBD920-42A0-1069-A2E4-08002B30309D} - C:\WINDOWS\system32\syncui.dll - Microsoft Corporation - Windows Briefcase - 5.1.2600.2180 - 177152 - 88cb75c488f0e5a97051357dc86c3897
O31 - 未知 - SEApproved: {88895560-9AA2-1069-930E-00AA0030EBC8} - C:\WINDOWS\system32\hticons.dll - Hilgraeve, Inc. - HyperTerminal Applet Library - 5.1.2600.0 - 44544 - 455e63cc325be7a6d87059b0e457bcc9
O31 - 未知 - SEApproved: {BD84B380-8CA2-1069-AB1D-08000948F534} - C:\WINDOWS\system32\fontext.dll - Microsoft Corporation - Windows Font Folder - 5.1.2600.2180 - 375808 - edbfdd6bcfa8208ef2b05d0e6c2a760a
O31 - 未知 - SEApproved: {DBCE2480-C732-101B-BE72-BA78E9AD5B27} - C:\WINDOWS\system32\icmui.dll - Microsoft Corporation - Microsoft Color Matching System User Interface DLL - 5.1.2600.0 - 54784 - 25e23917a19873e24457d9bd433108e8
O31 - 未知 - SEApproved: {F37C5810-4D3F-11d0-B4BF-00AA00BBB723} - C:\WINDOWS\system32\rshx32.dll - Microsoft Corporation - Security Shell Extension - 5.1.2600.2180 - 37888 - 1bc85eebac41ed1ecbb37ef02181a202
O31 - 未知 - SEApproved: {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} - C:\WINDOWS\system32\ntshrui.dll - Microsoft Corporation - Shell extensions for sharing - 5.1.2600.2180 - 137216 - 6fd08f1ef02456a30f14b8b37e78cd05
O31 - 未知 - SEApproved: {f92e8c40-3d33-11d2-b1aa-080036a75b03} - C:\WINDOWS\system32\deskperf.dll - Microsoft Corporation - Advanced display performance properties - 5.1.2600.0 - 18432 - 82f4dd2113aff745c63abdba3ecf2c56
O31 - 未知 - SEApproved: {7444C717-39BF-11D1-8CD9-00C04FC29D45} - C:\WINDOWS\system32\cryptext.dll - Microsoft Corporation - Crypto Shell Extensions - 5.131.2600.2180 - 52736 - d8bb430edcd5f3b77b8f67b164f4a7ad
O31 - 未知 - SEApproved: {7444C719-39BF-11D1-8CD9-00C04FC29D45} - C:\WINDOWS\system32\cryptext.dll - Microsoft Corporation - Crypto Shell Extensions - 5.131.2600.2180 - 52736 - d8bb430edcd5f3b77b8f67b164f4a7ad
O31 - 未知 - SEApproved: {7007ACC7-3202-11D1-AAD2-00805FC1270E} - C:\WINDOWS\system32\NETSHELL.dll - Microsoft Corporation - Network Connections Shell - 5.1.2600.2180 - 1655808 - d82cd94b2f86572f36966b700de7e8b5
O31 - 未知 - SEApproved: {992CFFA0-F557-101A-88EC-00DD010CCC48} - C:\WINDOWS\system32\NETSHELL.dll - Microsoft Corporation - Network Connections Shell - 5.1.2600.2180 - 1655808 - d82cd94b2f86572f36966b700de7e8b5
O31 - 未知 - SEApproved: {E211B736-43FD-11D1-9EFB-0000F8757FCD} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 579072 - 4b99b972764984c995b912c174a4e9db
O31 - 未知 - SEApproved: {FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 579072 - 4b99b972764984c995b912c174a4e9db
O31 - 未知 - SEApproved: {905667aa-acd6-11d2-8080-00805f6596d2} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 579072 - 4b99b972764984c995b912c174a4e9db
O31 - 未知 - SEApproved: {3F953603-1008-4f6e-A73A-04AAC7A992F1} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 579072 - 4b99b972764984c995b912c174a4e9db
O31 - 未知 - SEApproved: {83bbcbf3-b28a-4919-a5aa-73027445d672} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 579072 - 4b99b972764984c995b912c174a4e9db
O31 - 未知 - SEApproved: {F0152790-D56E-4445-850E-4F3117DB740C} - C:\WINDOWS\system32\remotepg.dll - Microsoft Corporation - Remote Sessions CPL Extension - 5.1.2600.2180 - 57344 - e5cadd733c68ad1fbc1b0423cd1bd12a
O31 - 未知 - SEApproved: {60254CA5-953B-11CF-8C96-00AA00B8708C} - C:\WINDOWS\system32\wshext.dll - Microsoft Corporation - Microsoft (r) Shell Extension for Windows Script Host - 5.6.0.8820 - 65536 - 864d2a170677372919b6517e1392cbdf
O31 - 未知 - SEApproved: {2206CDB2-19C1-11D1-89E0-00C04FD7A829} - C:\Program Files\Common Files\System\Ole DB\oledb32.dll - Microsoft Corporation - Microsoft Data Access - OLE DB Core Services - 2.81.1117.0 - 487424 - e775d5864f0c24e48a2203d6ec20cb08
O31 - 未知 - SEApproved: {DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF} - C:\WINDOWS\system32\mstask.dll - Microsoft Corporation - Task Scheduler interface DLL - 5.1.2600.2180 - 260608 - 9817ae630a0c072a6fe51a5e39749ae5
O31 - 未知 - SEApproved: {797F1E90-9EDD-11cf-8D8E-00AA0060F5BF} - C:\WINDOWS\system32\mstask.dll - Microsoft Corporation - Task Scheduler interface DLL - 5.1.2600.2180 - 260608 - 9817ae630a0c072a6fe51a5e39749ae5
O31 - 未知 - SEApproved: {D6277990-4C6A-11CF-8D87-00AA0060F5BF} - C:\WINDOWS\system32\mstask.dll - Microsoft Corporation - Task Scheduler interface DLL - 5.1.2600.2180 - 260608 - 9817ae630a0c072a6fe51a5e39749ae5
O31 - 未知 - SEApproved: {2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {2559a1f0-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {2559a1f1-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {2559a1f2-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {2559a1f4-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {2559a1f5-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {D20EA4E1-3957-11d2-A40B-0C5020524152} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {D20EA4E1-3957-11d2-A40B-0C5020524153} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {596AB062-B4D2-4215-9F74-E9109B0A8153} - C:\WINDOWS\system32\twext.dll - Microsoft Corporation - Previous Versions property page - 6.0.3800.2180 - 44032 - bfbce84cf30c37d274d875ef7f1be9ac
O31 - 未知 - SEApproved: {9DB7A13C-F208-4981-8353-73CC61AE2783} - C:\WINDOWS\system32\twext.dll - Microsoft Corporation - Previous Versions property page - 6.0.3800.2180 - 44032 - bfbce84cf30c37d274d875ef7f1be9ac
O31 - 未知 - SEApproved: {875CB1A1-0F29-45de-A1AE-CFB4950D0B78} - C:\WINDOWS\system32\shmedia.dll - Microsoft Corporation - Media File Property Extractor Shell Extension - 6.0.2900.2180 - 147968 - 8ec7b13733ae0a47480538e0cce1833b
O31 - 未知 - SEApproved: {40C3D757-D6E4-4b49-BB41-0E5BBEA28817} - C:\WINDOWS\system32\shmedia.dll - Microsoft Corporation - Media File Property Extractor Shell Extension - 6.0.2900.2180 - 147968 - 8ec7b13733ae0a47480538e0cce1833b
O31 - 未知 - SEApproved: {E4B29F9D-D390-480b-92FD-7DDB47101D71} - C:\WINDOWS\system32\shmedia.dll - Microsoft Corporation - Media File Property Extractor Shell Extension - 6.0.2900.2180 - 147968 - 8ec7b13733ae0a47480538e0cce1833b
O31 - 未知 - SEApproved: {87D62D94-71B3-4b9a-9489-5FE6850DC73E} - C:\WINDOWS\system32\shmedia.dll - Microsoft Corporation - Media File Property Extractor Shell Extension - 6.0.2900.2180 - 147968 - 8ec7b13733ae0a47480538e0cce1833b
O31 - 未知 - SEApproved: {A6FD9E45-6E44-43f9-8644-08598F5A74D9} - C:\WINDOWS\system32\shmedia.dll - Microsoft Corporation - Media File Property Extractor Shell Extension - 6.0.2900.2180 - 147968 - 8ec7b13733ae0a47480538e0cce1833b
O31 - 未知 - SEApproved: {c5a40261-cd64-4ccf-84cb-c394da41d590} - C:\WINDOWS\system32\shmedia.dll - Microsoft Corporation - Media File Property Extractor Shell Extension - 6.0.2900.2180 - 147968 - 8ec7b13733ae0a47480538e0cce1833b
O31 - 未知 - SEApproved: {5E6AB780-7743-11CF-A12B-00AA004AE837} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {22BF0C20-6DA7-11D0-B373-00A0C9034938} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {91EA3F8B-C99B-11d0-9815-00C04FD91972} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {6413BA2C-B461-11d1-A18A-080036B11A03} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {F61FFEC1-754F-11d0-80CA-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {7BA4C742-9E81-11CF-99D3-00AA004AE837} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {30D02401-6A81-11d0-8274-00C04FD5AE38} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {169A0691-8DF9-11d1-A1C4-00C04FD75D13} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {07798131-AF23-11d1-9111-00A0C98BA67D} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {AF4F6510-F982-11d0-8595-00AA004CD6D8} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {01E04581-4EEE-11d0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {A08C11D2-A228-11d0-825B-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {00BB2763-6A77-11D0-A535-00C04FD7D062} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {7376D660-C583-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {6756A641-DE71-11d0-831B-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {6935DB93-21E8-4ccc-BEB9-9FE3C77A297A} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {7e653215-fa25-46bd-a339-34a2790f3cb7} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {acf35015-526e-4230-9596-becbe19f0ac9} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {00BB2764-6A77-11D0-A535-00C04FD7D062} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {03C036F1-A186-11D0-824A-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {00BB2765-6A77-11D0-A535-00C04FD7D062} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {ECD4FC4E-521C-11D0-B792-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {3CCF8A41-5C85-11d0-9796-00AA00B90ADF} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {ECD4FC4C-521C-11D0-B792-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {ECD4FC4D-521C-11D0-B792-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {DD313E04-FEFF-11d1-8ECD-0000F87A470C} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {EF8AD2D1-AE36-11D1-B2D2-006097DF8C11} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {EFA24E61-B078-11d0-89E4-00C04FC9E26E} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {0A89A860-D7B1-11CE-8350-444553540000} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {E7E4BC40-E76A-11CE-A9BB-00AA004AE837} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {A5E46E3A-8849-11D1-9D8C-00C04FC99D61} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {FBF23B40-E3F0-101B-8488-00AA003E56F8} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {3C374A40-BAE4-11CF-BF7D-00AA006946EE} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {FF393560-C2A7-11CF-BFF4-444553540000} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {7BD29E00-76C1-11CF-9DD0-00A0C9034933} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {7BD29E01-76C1-11CF-9DD0-00A0C9034933} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {A2B0DD40-CC59-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {67EA19A0-CCEF-11d0-8024-00C04FD75D13} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {131A6951-7F78-11D0-A979-00C04FD705A2} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {9461b922-3c5a-11d2-bf8b-00c04fb93661} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {3DC7A020-0ACD-11CF-A9BB-00AA004AE837} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {871C5380-42A0-1069-A2EA-08002B30309D} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {EFA24E64-B078-11d0-89E4-00C04FC9E26E} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3268 - 1494016 - f5f5c65a379f4c8353fce3ad254f9821
O31 - 未知 - SEApproved: {9E56BE60-C50F-11CF-9A2C-00A0C90A90CE} - C:\WINDOWS\system32\sendmail.dll - Microsoft Corporation - Send Mail - 6.0.2900.2180 - 54272 - 736995b40ef4b98717b14adaebe9fd1f
O31 - 未知 - SEApproved: {9E56BE61-C50F-11CF-9A2C-00A0C90A90CE} - C:\WINDOWS\system32\sendmail.dll - Microsoft Corporation - Send Mail - 6.0.2900.2180 - 54272 - 736995b40ef4b98717b14adaebe9fd1f
O31 - 未知 - SEApproved: {88C6C381-2E85-11D0-94DE-444553540000} - C:\WINDOWS\system32\occache.dll - Microsoft Corporation - Object Control Viewer - 6.0.2900.2180 - 93696 - 2e5885a25b48afa9bc5847c1d5d1fe58
O31 - 未知 - SEApproved: {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {F5175861-2688-11d0-9C5E-00AA00A45957} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {08165EA0-E946-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {E3A8BDE6-ABCE-11d0-BC4B-00C04FD929DB} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {E8BB6DC0-6B4E-11d0-92DB-00A0C90C2BD7} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {7D559C10-9FE9-11d0-93F7-00AA0059CE02} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {E6CC6978-6B6E-11D0-BECA-00C04FD940BE} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {D8BD2030-6FC9-11D0-864F-00AA006809D9} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} - C:\WINDOWS\system32\webcheck.dll - Microsoft Corporation - Web Site Monitor - 6.0.2900.2180 - 265728 - fefe188339f412ffaaf800b5ba7dbc84
O31 - 未知 - SEApproved: {352EC2B7-8B9A-11D1-B8AE-006008059382} - C:\WINDOWS\system32\appwiz.cpl - Microsoft Corporation - Shell Application Manager - 5.1.2600.2180 - 538112 - 46845f615595c7d87ceef2e8b446b267
O31 - 未知 - SEApproved: {0B124F8F-91F0-11D1-B8B5-006008059382} - C:\WINDOWS\system32\appwiz.cpl - Microsoft Corporation - Shell Application Manager - 5.1.2600.2180 - 538112 - 46845f615595c7d87ceef2e8b446b267
O31 - 未知 - SEApproved: {CFCCC7A0-A282-11D1-9082-006008059382} - C:\WINDOWS\system32\appwiz.cpl - Microsoft Corporation - Shell Application Manager - 5.1.2600.2180 - 538112 - 46845f615595c7d87ceef2e8b446b267
O31 - 未知 - SEApproved: {e84fda7c-1d6a-45f6-b725-cb260c236066} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 434176 - 19d7a19f964aeeb2435bce3b215ff61b
O31 - 未知 - SEApproved: {66e4e4fb-f385-4dd0-8d74-a2efd1bc6178} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 434176 - 19d7a19f964aeeb2435bce3b215ff61b
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {3F30C968-480A-4C6C-862D-EFC0897BB84B} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 434176 - 19d7a19f964aeeb2435bce3b215ff61b
O31 - 未知 - SEApproved: {9DBD2C50-62AD-11d0-B806-00C04FD706EC} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 434176 - 19d7a19f964aeeb2435bce3b215ff61b
O31 - 未知 - SEApproved: {EAB841A0-9550-11cf-8C16-00805F1408F3} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 434176 - 19d7a19f964aeeb2435bce3b215ff61b
O31 - 未知 - SEApproved: {eb9b1153-3b57-4e68-959a-a3266bc3d7fe} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 434176 - 19d7a19f964aeeb2435bce3b215ff61b
O31 - 未知 - SEApproved: {CC6EEFFB-43F6-46c5-9619-51D571967F7D} - C:\WINDOWS\system32\netplwiz.dll - Microsoft Corporation - Map Network Drives/Network Places Wizard - 5.1.2600.2180 - 847360 - f151ef66cb5fc26a647f7422ca93c092
O31 - 未知 - SEApproved: {add36aa8-751a-4579-a266-d66f5202ccbb} - C:\WINDOWS\system32\netplwiz.dll - Microsoft Corporation - Map Network Drives/Network Places Wizard - 5.1.2600.2180 - 847360 - f151ef66cb5fc26a647f7422ca93c092
O31 - 未知 - SEApproved: {6b33163c-76a5-4b6c-bf21-45de9cd503a1} - C:\WINDOWS\system32\netplwiz.dll - Microsoft Corporation - Map Network Drives/Network Places Wizard - 5.1.2600.2180 - 847360 - f151ef66cb5fc26a647f7422ca93c092
O31 - 未知 - SEApproved: {58f1f272-9240-4f51-b6d4-fd63d1618591} - C:\WINDOWS\system32\netplwiz.dll - Microsoft Corporation - Map Network Drives/Network Places Wizard - 5.1.2600.2180 - 847360 - f151ef66cb5fc26a647f7422ca93c092
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:压缩(zipped)文件夹 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {BD472F60-27FA-11cf-B8B4-444553540000} - C:\WINDOWS\system32\zipfldr.dll - Microsoft Corporation - Compressed (zipped) Folders - 6.0.2900.2180 - 328192 - 58f917041fe41eece83f1c80d47a5b5c
O31 - 未知 - SEApproved: {888DCA60-FC0A-11CF-8F0F-00C04FD7D062} - C:\WINDOWS\system32\zipfldr.dll - Microsoft Corporation - Compressed (zipped) Folders - 6.0.2900.2180 - 328192 - 58f917041fe41eece83f1c80d47a5b5c
O31 - 未知 - SEApproved: {f39a0dc0-9cc8-11d0-a599-00c04fd64433} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3268 - 150016 - 42b9458751d81b0dda67a53a2c5bdef5
O31 - 未知 - SEApproved: {f3aa0dc0-9cc8-11d0-a599-00c04fd64434} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3268 - 150016 - 42b9458751d81b0dda67a53a2c5bdef5
O31 - 未知 - SEApproved: {f3ba0dc0-9cc8-11d0-a599-00c04fd64435} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3268 - 150016 - 42b9458751d81b0dda67a53a2c5bdef5
O31 - 未知 - SEApproved: {f3da0dc0-9cc8-11d0-a599-00c04fd64437} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3268 - 150016 - 42b9458751d81b0dda67a53a2c5bdef5
O31 - 未知 - SEApproved: {f3ea0dc0-9cc8-11d0-a599-00c04fd64438} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3268 - 150016 - 42b9458751d81b0dda67a53a2c5bdef5
O31 - 未知 - SEApproved: {692F0339-CBAA-47e6-B5B5-3B84DB604E87} - C:\WINDOWS\system32\extmgr.dll - Microsoft Corporation - Extensions Manager - 6.0.2900.3268 - 55808 - e30c7689862a7d0bfd5ead7a97c0d5aa
O31 - 未知 - SEApproved: {63da6ec0-2e98-11cf-8d82-444553540000} - C:\WINDOWS\system32\msieftp.dll - Microsoft Corporation - Microsoft Internet Explorer FTP Folder Shell Extension - 6.0.2900.2180 - 240128 - 2cd04182aa74b07c64ed1b04d63a9fbb
O31 - 未知 - SEApproved: {883373C3-BF89-11D1-BE35-080036B11A03} - C:\WINDOWS\system32\docprop2.dll - Microsoft Corporation - Microsoft DocProp Shell Ext - 5.1.2600.2180 - 47104 - 68a4e26765ef4a8b7595c90cea2a75ee
O31 - 未知 - SEApproved: {A9CF0EAE-901A-4739-A481-E35B73E47F6D} - C:\WINDOWS\system32\docprop2.dll - Microsoft Corporation - Microsoft DocProp Shell Ext - 5.1.2600.2180 - 47104 - 68a4e26765ef4a8b7595c90cea2a75ee
O31 - 未知 - SEApproved: {8EE97210-FD1F-4B19-91DA-67914005F020} - C:\WINDOWS\system32\docprop2.dll - Microsoft Corporation - Microsoft DocProp Shell Ext - 5.1.2600.2180 - 47104 - 68a4e26765ef4a8b7595c90cea2a75ee
O31 - 未知 - SEApproved: {0EEA25CC-4362-4A12-850B-86EE61B0D3EB} - C:\WINDOWS\system32\docprop2.dll - Microsoft Corporation - Microsoft DocProp Shell Ext - 5.1.2600.2180 - 47104 - 68a4e26765ef4a8b7595c90cea2a75ee
O31 - 未知 - SEApproved: {6A205B57-2567-4A2C-B881-F787FAB579A3} - C:\WINDOWS\system32\docprop2.dll - Microsoft Corporation - Microsoft DocProp Shell Ext - 5.1.2600.2180 - 47104 - 68a4e26765ef4a8b7595c90cea2a75ee
O31 - 未知 - SEApproved: {28F8A4AC-BBB3-4D9B-B177-82BFC914FA33} - C:\WINDOWS\system32\docprop2.dll - Microsoft Corporation - Microsoft DocProp Shell Ext - 5.1.2600.2180 - 47104 - 68a4e26765ef4a8b7595c90cea2a75ee
O31 - 未知 - SEApproved: {8A23E65E-31C2-11d0-891C-00A024AB2DBB} - C:\WINDOWS\system32\dsquery.dll - Microsoft Corporation - Directory Service Find - 5.1.2600.2180 - 235520 - 239ce69cdc3bd018ddc240c2ff65ef68
O31 - 未知 - SEApproved: {9E51E0D0-6E0F-11d2-9601-00C04FA31A86} - C:\WINDOWS\system32\dsquery.dll - Microsoft Corporation - Directory Service Find - 5.1.2600.2180 - 235520 - 239ce69cdc3bd018ddc240c2ff65ef68
O31 - 未知 - SEApproved: {163FDC20-2ABC-11d0-88F0-00A024AB2DBB} - C:\WINDOWS\system32\dsquery.dll - Microsoft Corporation - Directory Service Find - 5.1.2600.2180 - 235520 - 239ce69cdc3bd018ddc240c2ff65ef68
O31 - 未知 - SEApproved: {F020E586-5264-11d1-A532-0000F8757D7E} - C:\WINDOWS\system32\dsquery.dll - Microsoft Corporation - Directory Service Find - 5.1.2600.2180 - 235520 - 239ce69cdc3bd018ddc240c2ff65ef68
O31 - 未知 - SEApproved: {0D45D530-764B-11d0-A1CA-00AA00C16E65} - C:\WINDOWS\system32\dsuiext.dll - Microsoft Corporation - Directory Service Common UI - 5.1.2600.2180 - 112128 - 3e6e0e8484d81a4fb2985b7473230dc6
O31 - 未知 - SEApproved: {62AE1F9A-126A-11D0-A14B-0800361B1103} - C:\WINDOWS\system32\dsuiext.dll - Microsoft Corporation - Directory Service Common UI - 5.1.2600.2180 - 112128 - 3e6e0e8484d81a4fb2985b7473230dc6
O31 - 未知 - SEApproved: {ECF03A33-103D-11d2-854D-006008059367} - C:\WINDOWS\system32\mydocs.dll - Microsoft Corporation - My Documents Folder UI - 6.0.2900.2180 - 88576 - c4037e9c0d602e2568c85e9fb7fde1a0
O31 - 未知 - SEApproved: {ECF03A32-103D-11d2-854D-006008059367} - C:\WINDOWS\system32\mydocs.dll - Microsoft Corporation - My Documents Folder UI - 6.0.2900.2180 - 88576 - c4037e9c0d602e2568c85e9fb7fde1a0
O31 - 未知 - SEApproved: {4a7ded0a-ad25-11d0-98a8-0800361b1103} - C:\WINDOWS\system32\mydocs.dll - Microsoft Corporation - My Documents Folder UI - 6.0.2900.2180 - 88576 - c4037e9c0d602e2568c85e9fb7fde1a0
O31 - 未知 - SEApproved: {750fdf0e-2a26-11d1-a3ea-080036587f03} - C:\WINDOWS\System32\cscui.dll - Microsoft Corporation - Client Side Caching UI - 5.1.2600.2180 - 304128 - 1dc96b546d46b30a0e5289bab85d7252
O31 - 未知 - SEApproved: {10CFC467-4392-11d2-8DB4-00C04FA31A66} - C:\WINDOWS\System32\cscui.dll - Microsoft Corporation - Client Side Caching UI - 5.1.2600.2180 - 304128 - 1dc96b546d46b30a0e5289bab85d7252
O31 - 未知 - SEApproved: {AFDB1F70-2A4C-11d2-9039-00C04F8EEB3E} - C:\WINDOWS\System32\cscui.dll - Microsoft Corporation - Client Side Caching UI - 5.1.2600.2180 - 304128 - 1dc96b546d46b30a0e5289bab85d7252
O31 - 未知 - SEApproved: {143A62C8-C33B-11D1-84FE-00C04FA34A14} - C:\WINDOWS\msagent\agentpsh.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: {ECCDF543-45CC-11CE-B9BF-0080C87CDBA6} - C:\WINDOWS\system32\dfsshlex.dll - Microsoft Corporation - Distributed File System shell extension - 5.1.2600.2180 - 28672 - df583d3594c1259d2456d4167fa67cfc
O31 - 未知 - SEApproved: {60fd46de-f830-4894-a628-6fa81bc0190d} - C:\WINDOWS\system32\photowiz.dll - Microsoft Corporation - Photo Printing Wizard - 5.1.2600.2180 - 167424 - 3823949d3c1e17389c2273b6fb5b4f97
O31 - 未知 - SEApproved: {7A80E4A8-8005-11D2-BCF8-00C04F72C717} - C:\WINDOWS\System32\mmcshext.dll - Microsoft Corporation - MMC Shell Extension DLL - 5.1.2600.2180 - 50688 - 5d1e8bd91c7c27bdcc70e02737c0e9e8
O31 - 未知 - SEApproved: {0CD7A5C0-9F37-11CE-AE65-08002B2E1262} - C:\WINDOWS\system32\cabview.dll - Microsoft Corporation - Cabinet File Viewer Shell Extension - 6.0.2900.2180 - 83456 - b66c66b4dab07d5362fe86882d4c52c8
O31 - 未知 - SEApproved: {32714800-2E5F-11d0-8B85-00AA0044F941} - C:\Program Files\Outlook Express\wabfind.dll - Microsoft Corporation - Find People - 6.0.2900.2180 - 32768 - 1be5d8d105cabc4f1f6668d3ad725299
O31 - 未知 - SEApproved: {8DD448E6-C188-4aed-AF92-44956194EB1F} - C:\WINDOWS\system32\wmpshell.dll - Microsoft Corporation - Windows Media Player Launcher - 10.0.0.3802 - 86016 - 184e6b5c5301631c2d477b0debe5c6b1
O31 - 未知 - SEApproved: {CE3FB1D1-02AE-4a5f-A6E9-D9F1B4073E6C} - C:\WINDOWS\system32\wmpshell.dll - Microsoft Corporation - Windows Media Player Launcher - 10.0.0.3802 - 86016 - 184e6b5c5301631c2d477b0debe5c6b1
O31 - 未知 - SEApproved: {F1B9284F-E9DC-4e68-9D7E-42362A59F0FD} - C:\WINDOWS\system32\wmpshell.dll - Microsoft Corporation - Windows Media Player Launcher - 10.0.0.3802 - 86016 - 184e6b5c5301631c2d477b0debe5c6b1
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 125440 - fd00edb8e782858243cf1469c329ee88
O31 - 未知 - SEApproved: {21569614-B795-46b1-85F4-E737A8DC09AD} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3268 - 1022976 - 430f23a7b8fc42faaee3f165ef12fcad
O31 - 未知 - SEApproved: {640167b4-59b0-47a6-b335-a6b3c0695aea} - C:\WINDOWS\system32\Audiodev.dll - Microsoft Corporation - 便携媒体设备命令行解释器扩展 - 5.2.3802.3802 - 484352 - d56ea61a4265c0cd19764ed7b13c4b30
O31 - 未知 - SEApproved: {cc86590a-b60a-48e6-996b-41d25ed39a1e} - C:\WINDOWS\system32\Audiodev.dll - Microsoft Corporation - 便携媒体设备命令行解释器扩展 - 5.2.3802.3802 - 484352 - d56ea61a4265c0cd19764ed7b13c4b30
O31 - 未知 - SEApproved: {A70C977A-BF00-412C-90B7-034C51DA2439} - C:\WINDOWS\system32\nvcpl.dll - NVIDIA Corporation - NVIDIA Display Properties Extension - 6.14.10.9136 - 7626752 -
O31 - 未知 - SEApproved: {FFB699E0-306A-11d3-8BD1-00104B6F7516} - C:\WINDOWS\system32\nvcpl.dll - NVIDIA Corporation - NVIDIA Display Properties Extension - 6.14.10.9136 - 7626752 -
O31 - 未知 - SEApproved: {1CDB2949-8F65-4355-8456-263E7C208A5D} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11044 - 466944 - 64b7edf5a424b25508be1026879ff6dc
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A47} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11044 - 466944 - 64b7edf5a424b25508be1026879ff6dc
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A48} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11044 - 466944 - 64b7edf5a424b25508be1026879ff6dc
O31 - 未知 - Directory Menu: {A470F8CF-A1E8-4f65-8335-227475AA5C46} - C:\WINDOWS\system32\SHELL32.dll - Microsoft Corporation - Windows Shell Common Dll - 6.0.2900.3241 - 8312320 -
O31 - 未知 - Directory Menu: {750fdf0e-2a26-11d1-a3ea-080036587f03} - C:\WINDOWS\System32\cscui.dll - Microsoft Corporation - Client Side Caching UI - 5.1.2600.2180 - 304128 - 1dc96b546d46b30a0e5289bab85d7252
O31 - 未知 - Directory Menu: {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} - C:\WINDOWS\system32\ntshrui.dll - Microsoft Corporation - Shell extensions for sharing - 5.1.2600.2180 - 137216 - 6fd08f1ef02456a30f14b8b37e78cd05
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 125440 - fd00edb8e782858243cf1469c329ee88
O31 - 未知 - LSA: Authentication Packages - C:\WINDOWS\system32\msv1_0.dll - Microsoft Corporation - Microsoft Authentication Package v1.0 - 5.1.2600.2180 - 129536 - d31b15aa03db1f3b91ee322d4df944d0
O31 - 未知 - LSA: Notification Packages - C:\WINDOWS\system32\scecli.dll - Microsoft Corporation - Windows Security Configuration Editor Client Engine - 5.1.2600.2180 - 171008 - de51b90c8c78cabf53757a9becf002da
O31 - 未知 - LSA: Security Packages - C:\WINDOWS\system32\kerberos.dll - Microsoft Corporation - Kerberos Security Package - 5.1.2600.2698 - 295936 - e5f30164055d6441a4def03a97158f49
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - C:\WINDOWS\system32\digest.dll - Microsoft Corporation - Digest SSPI Authentication Package - 6.0.2900.2180 - 68096 - f223ec0ba1e53eced14aaca1a9568f6c

=======================================

O40 - lsass.exe -  - C:\WINDOWS\system32\TcpIpDog0.dll -  - c48ea62288b1172cf9eb5a818c9cf84f
O40 - svchost.exe -  - C:\WINDOWS\system32\TcpIpDog0.dll -  - c48ea62288b1172cf9eb5a818c9cf84f
O40 - svchost.exe -  - C:\WINDOWS\system32\TcpIpDog0.dll -  - c48ea62288b1172cf9eb5a818c9cf84f
O40 - svchost.exe -  - C:\WINDOWS\system32\TcpIpDog0.dll -  - c48ea62288b1172cf9eb5a818c9cf84f
O40 - svchost.exe -  - C:\WINDOWS\system32\TcpIpDog0.dll -  - c48ea62288b1172cf9eb5a818c9cf84f
O40 - Explorer.EXE - NVIDIA Corporation - C:\WINDOWS\system32\nvcpl.dll - NVIDIA Display Properties Extension -
O40 - Explorer.EXE - NVIDIA Corporation - C:\WINDOWS\system32\NVRSZHC.DLL - NVIDIA Simplified Chinese language resource library - c6dc3f24769092723c09a55c057af7bb
O40 - Explorer.EXE -  - C:\WINDOWS\system32\nvshell.dll -  - 64b7edf5a424b25508be1026879ff6dc
O40 - Explorer.EXE -  - C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll - DsBho - 0b48495affc8b146f18b196f63bae41c
O40 - Explorer.EXE - Thunder Networking Technologies,LTD - C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_00.dll - DataProcessor - 0ab42ab02efbaa96afa49960dd0e6ea3
O40 - Explorer.EXE - Microsoft Corporation - C:\WINDOWS\system32\sti.dll - Still Image Devices client DLL  - edc348d313e6d467e9e94ae919d64619
O40 - RUNDLL32.EXE - NVIDIA Corporation - C:\WINDOWS\system32\NvMcTray.dll - NVIDIA Media Center Library - 130a6f86ccf912624c315ab120a45a22
O40 - RUNDLL32.EXE - NVIDIA Corporation - C:\WINDOWS\system32\NVRSZHC.DLL - NVIDIA Simplified Chinese language resource library - c6dc3f24769092723c09a55c057af7bb
O40 - svchost.exe - Microsoft Corporation - c:\windows\system32\wiaservc.dll - Still Image Devices Service - dc750a7adc5ecb85a12729285fb72653
O40 - svchost.exe - Microsoft Corporation - C:\WINDOWS\system32\sti.dll - Still Image Devices client DLL  - edc348d313e6d467e9e94ae919d64619

=======================================

O41 - gameenum - Game Port Enumerator - C:\WINDOWS\system32\drivers\gameenum.sys - (running) - Game Port Enumerator - Microsoft Corporation - 5f92fd09e5610a5995da7d775eadcd12
O41 - IntcAzAudAddService - Realtek(r) High Definition Audio Function Driver - C:\WINDOWS\system32\drivers\RtkHDAud.sys - (running) - Realtek(r) High Definition Audio Function Driver - Realtek Semiconductor Corp. -
O41 - NVENETFD - NVIDIA Networking Function Driver. - C:\WINDOWS\system32\drivers\NVENETFD.sys - (running) - NVIDIA Networking Function Driver. - NVIDIA Corporation - 4d6f0d3fb17c1ba64942f415c73adcdb
O41 - nvnetbus - NVIDIA Networking Bus Driver. - C:\WINDOWS\system32\drivers\nvnetbus.sys - (running) - NVIDIA Networking Bus Driver. - NVIDIA Corporation - 921e63aa1e1a20302223d016acafb52b
O41 - CCDECODE - WDM Closed Caption VBI Codec - C:\WINDOWS\system32\drivers\CCDECODE.sys - (not running) - WDM Closed Caption VBI Codec - Microsoft Corporation - 6163ed60b684bab19d3352ab22fc48b2
O41 - MSTEE - WDM Tee/Communication Transform Filter  - C:\WINDOWS\system32\drivers\MSTEE.sys - (not running) - WDM Tee/Communication Transform Filter  - Microsoft Corporation - bf13612142995096ab084f2db7f40f77
O41 - NABTSFEC - WDM NABTS/FEC VBI Codec - C:\WINDOWS\system32\drivers\NABTSFEC.sys - (not running) - WDM NABTS/FEC VBI Codec - Microsoft Corporation - 5c8dc6429c43dc6177c1fa5b76290d1a
O41 - NdisIP - Microsoft IP Driver - C:\WINDOWS\system32\drivers\NdisIP.sys - (not running) - Microsoft IP Driver - Microsoft Corporation - 520ce427a8b298f54112857bcf6bde15
O41 - NPF - NPF Driver - TME extensions - C:\WINDOWS\system32\drivers\npf.sys - (not running) - NPF Driver - TME extensions - Politecnico di Torino - f498c5c3399a60933196fc215ef074f9
O41 - SLIP - Microsoft Slip Deframing Filter Minidriver - C:\WINDOWS\system32\drivers\SLIP.sys - (not running) - Microsoft Slip Deframing Filter Minidriver - Microsoft Corporation - 5caeed86821fa2c6139e32e9e05ccdc9
O41 - streamip - Microsoft IP Test Driver - C:\WINDOWS\system32\drivers\StreamIP.sys - (not running) - Microsoft IP Test Driver - Microsoft Corporation - 284c57df5dc7abca656bc2b96a667afb
O41 - vmfilter303 - Filter for VM303 with Face Tracking, no photoframe - C:\WINDOWS\system32\drivers\vmfilter303.sys - (not running) - Filter for VM303 with Face Tracking, no photoframe - Vimicro Corporation - 233509e1ad024a3e451d8df6795eeed5
O41 - WSTCODEC - WDM WST Codec Driver - C:\WINDOWS\system32\drivers\WSTCODEC.SYS - (not running) - WDM WST Codec Driver - Microsoft Corporation - d5842484f05e12121c511aa93f6439ec
O41 - ZSMC303 - Video streaming and Capture Device Driver - C:\WINDOWS\system32\drivers\usbVM303.sys - (not running) - Video streaming and Capture Device Driver - Vimicro Corporation - 4ebe2b569ea7311a883f9d1bd79abcd3

=======================================
360Safe.exe=4.0.3.1006
AntiAdwa.dll=4.0.0.1002
AntiEng.dll=4.0.0.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=4.0.0.1001
live.dll=1.0.1.1022

=======================================
操作历史报告:

=======================================

360安全卫士,彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基7.0
最新免费下载:http://www.360safe.com
点击此处查看原文、参与讨论
固定链接┆ 评论(0)┆阅读(98)
标题: 急急急急急急急急急急急急急 收起 
2008-03-19 08:33:07
各位大侠,现在小弟的电脑出现了很严重的问题,在正常开机情况下屏幕显示\WINDOWS\SYTEM32\CONFIG\SYSTEM 而无法启动XP,屏幕提示使用原始启动盘来修复。发现这种情况我一般是重装系统,可没过多久又会打不开XP。不知道什么地方出问题了。也不像是中毒。请高手帮忙啊
点击此处查看原文、参与讨论
固定链接┆ 评论(0)┆阅读(64)
标题: 我的电脑系统盘部分空间被莫名其妙占用 收起 
2008-03-19 08:33:01
我的电脑系统盘分14G空间,安装系统及其他软件用去3G,但整盘显示却有8G空间已经被使用,由此可见5G空间消失,我格式化几次,整盘也格式化过,但是问题一软存在,恳请高手帮忙。
我电脑的具体情况如下:


各位高手:
非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助!
该诊断报告由360安全卫士提供 http://www.360safe.com
诊断时间: 2008-03-13  14:37:31
诊断平台: Microsoft Windows XP  Service Pack 2
IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180
计算机物理内存:2.00GB - 当前可用内存:1.14GB
100 - 未知 - Process: SoftManager.exe [奇虎360软件管理] - C:\Program Files\360safe\SoftMgr\SoftManager.exe
O23 - 未知 - Service: AVP [保护计算机远离病毒、间谍软件、黑客攻击、计算机犯罪和垃圾邮件.] - "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r - (running)
=======================================
100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序,用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: MDM.EXE [debug除错管理用于调试应用程序和microsoft office中的microsoft script editor脚本编辑器。] - C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] - C:\Program Files\360safe\safemon\360tray.exe
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: AntiArp.exe [360安全卫士ARP防火墙相关程序。] - C:\Program Files\360safe\antiarp\antiarp.exe
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] - C:\WINDOWS\explorer.exe
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] - C:\Program Files\360safe\360safe.exe
100 - 安全 - Process: IEXPLORE.EXE [microsoft internet explorer浏览器用于浏览网页。] - C:\Program Files\Internet Explorer\iexplore.exe
100 - 安全 - Process: wmiprvse.exe [wmi 提供程序 (wmi provider) 在 wmi 和操作系统、应用程序以及其他系统的组件之间充当中介.此进程为合法的系统进程。] - C:\WINDOWS\system32\wbem\wmiprvse.exe
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360tray.exe /start
O4 - 安全 - HKLM\..\Run: [AVP] [卡巴斯基杀毒软件相关程序。] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - 安全 - HKLM\..\Run: [360Antiarp] [360安全卫士ARP防火墙相关程序。] C:\Program Files\360safe\antiarp\antiarp.exe /start
O4 - 安全 - HKLM\..\Run: [IMSCMig] [微软拼音输入法安装工具。  ] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - 安全 - Extra button: 卡巴斯基Web反病毒保护插件(HKLM) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - 安全 - Extra button: Windows Messenger(HKLM) - C:\Program Files\Messenger\msmsgs.exe
O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O18 - 安全 - Protocol: OFFICE 相关 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (not running)
=======================================
O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 121856 - 05c7a9fc5a7e466925c108ffb89cd86c
O31 - 未知 - SEApproved: {1CDB2949-8F65-4355-8456-263E7C208A5D} - C:\WINDOWS\system32\nvshell.dll - NVIDIA Corporation - NVIDIA Desktop Explorer, Version 66.93  - 6.14.10.6693 - 462848 - 02394ea57fa965fc300786c2b5f7489f
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A47} - C:\WINDOWS\system32\nvshell.dll - NVIDIA Corporation - NVIDIA Desktop Explorer, Version 66.93  - 6.14.10.6693 - 462848 - 02394ea57fa965fc300786c2b5f7489f
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A48} - C:\WINDOWS\system32\nvshell.dll - NVIDIA Corporation - NVIDIA Desktop Explorer, Version 66.93  - 6.14.10.6693 - 462848 - 02394ea57fa965fc300786c2b5f7489f
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 121856 - 05c7a9fc5a7e466925c108ffb89cd86c
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -
=======================================
O40 - explorer.exe - NVIDIA Corporation - C:\WINDOWS\system32\NVRSZHC.DLL - NVIDIA Simplified Chinese language resource library - 0fa1c15fb247d2357c526c08d308e2b7
O40 - explorer.exe - NVIDIA Corporation - C:\WINDOWS\system32\nvshell.dll - NVIDIA Desktop Explorer, Version 66.93  - 02394ea57fa965fc300786c2b5f7489f
O40 - explorer.exe - Microsoft Corporation - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\MSVCR80.dll - Microsoft? C Runtime Library - 16d7ddf3b659f7cf1cb9f4dcff4219f0
O40 - explorer.exe - Microsoft Corporation - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\MSVCP80.dll - Microsoft? C++ Runtime Library - 2bc650257fb0867abd54fd460ec2bafc
=======================================
O41 - klif - spuper-ptor - C:\WINDOWS\system32\drivers\klif.sys - (running) - spuper-ptor - Kaspersky Lab - 9256da35cee573515d346b4f3598b72e
=======================================
360Safe.exe=4.0.3.1008
AntiAdwa.dll=4.0.0.1002
AntiEng.dll=4.0.0.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=4.0.0.1001
live.dll=1.0.1.1024
=======================================
操作历史报告:
----------清理恶评及系统插件历史----------
2008-03-13 14:16
清理恶评软件 - yok搜索工具栏 -
2008-03-13 13:14
清理恶评插件 - yok搜索工具栏 - C:\Program Files\yok
----------全面诊断修复历史----------
2008-03-13 11:50
100 - 未知 - wmiadap.exe - ?
2008-03-13 11:51
O8 - 未知 - 添加到反广告条 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O9 - 未知 - 联想 - http://www.lenovo.com
O23 - 未知 - AVP - "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r
2008-03-13 14:22
100 - 未知 - wmiadap.exe - [url=file://\\?\C:\WINDOWS\system32\wbem\wmiadap.exe]\\?\C:\WINDOWS\system32\wbem\wmiadap.exe[/url]
O8 - 未知 - 添加到QQ表情 - C:\Program Files\Tencent\AddEmotion.htm
O8 - 未知 - 添加到反广告条 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - 未知 - 珊瑚虫超级搜索 -
O9 - 未知 - 信息检索 - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
----------修复IE浏览器操作历史----------
2008-03-13 11:29
R0 - 危险 - IE首页 - HKCU\Software\Microsoft\Internet Explorer\Main
R0 - 危险 - IE起始页的默认页 - HKLM\Software\Microsoft\Internet Explorer\Main
O14 - 危险 - Web原始设置IERESET.INF - C:\WINDOWS\inf\iereset.inf
O20 - 危险 - 自启动项AppInit_DLLs - C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
2008-03-13 14:22
R0 - 危险 - IE首页 - HKCU\Software\Microsoft\Internet Explorer\Main
=======================================
360安全卫士,彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基7.0
最新免费下载:http://www.360safe.com
点击此处查看原文、参与讨论
固定链接┆ 评论(4)┆阅读(110)
标题: ~DF55FE.tmp怎么删不掉 收起 
2008-03-19 08:32:30
帖子标题:
~DF55FE.tmp怎么删不掉

帖子内容:
现象:
历史操作:  瑞星上卡卡上网安全助手清理垃圾文件显示此文件为垃圾文件可删不掉

备注:

我的诊断报告:
各位高手:
非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助!
该诊断报告由360安全卫士提供 http://www.360safe.com
诊断时间: 2008-03-14  17:24:54
诊断平台: Microsoft Windows XP  Service Pack 2
IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180
计算机物理内存:254.86MB - 当前可用内存:69.84MB

100 - 未知 - Process: RavMonD.exe [Rising Realtime Moniter] - D:\PROGRAM FILES\RISING\RAV\ravmond.exe
100 - 未知 - Process: RavStub.exe [Rising RavStub] - D:\PROGRAM FILES\RISING\RAV\RavStub.exe
100 - 未知 - Process: RavMon.exe [Rising realtime monitor shell] - D:\PROGRAM FILES\RISING\RAV\RavMon.exe -SYSTEM
100 - 未知 - Process: QvodTerminal.exe [QvodTerminal] - C:\Program Files\QvodPlayer\QvodTerminal.exe
100 - 未知 - Process: RavTask.exe [RavTimer] - D:\Program Files\Rising\Rav\RavTask.exe
100 - 未知 - Process: QQ.exe [QQ] - D:\Program Files\Tencent\QQ\QQ.exe
100 - 未知 - Process: QQ.exe [QQ] - D:\Program Files\Tencent\QQ\QQ.exe
100 - 未知 - Process: TXPlatform.exe [TM2008] - d:\Program Files\Tencent\QQ\TXPlatform.exe
100 - 未知 - Process: RsAgent.exe [RsAgent Application] - D:\Program Files\Rising\Rav\RsAgent.exe
O3 - 未知 - Toolbar: (第三方IE工具栏) - [无效的CLSID:{710EB7A1-45ED-11D0-924A-0020AFC7AC4D}] - {710EB7A1-45ED-11D0-924A-0020AFC7AC4D} -
O3 - 未知 - Toolbar: (第三方IE工具栏) - [无效的CLSID:{1E796980-9CC5-11D1-A83F-00C04FC99D61}] - {1E796980-9CC5-11D1-A83F-00C04FC99D61} -
O4 - 未知 - HKLM\..\RunOnce: [KKDelay] [RunOnce Application] C:\Program Files\Rising\AntiSpyware\RunOnce.exe
O8 - 未知 - Extra context menu item: 使用迅雷下载 - D:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - D:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - 未知 - Extra context menu item: 添加到QQ表情 - d:\Program Files\Tencent\QQ\AddEmotion.htm
O9 - 未知 - Extra button: 访问瑞星网站(HKLM) - http://www.rising.com.cn/?u=RSTB
O9 - 未知 - Extra button: 访问卡卡社区(HKLM) - http://www.ikaka.com/?u=RSTB
O23 - 未知 - Service: gusvc [Google Updater Service] - "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" - (not running)
O23 - 未知 - Service: Qvod Terminal [QVOD媒体播放服务] - C:\Program Files\QvodPlayer\QvodTerminal.exe - (running)
O23 - 未知 - Service: RsCCenter [Rising Process Communication Center] - "d:\Program Files\Rising\Rav\CCenter.exe" - (running)
O23 - 未知 - Service: RsRavMon [Rising RealTime Monitor] - "D:\PROGRAM FILES\RISING\RAV\Ravmond.exe" - (not running)

=======================================

100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: ibmpmsvc.exe [ibm笔记本电源管理相关软件。] - C:\WINDOWS\system32\ibmpmsvc.exe
100 - 安全 - Process: ati2evxx.exe [ati显卡相关后台程序。] - C:\WINDOWS\system32\Ati2evxx.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: CCenter.exe [瑞星杀毒软件控制台相关程序。] - d:\Program Files\Rising\Rav\CCenter.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序,用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: ati2evxx.exe [ati显卡相关后台程序。] - C:\WINDOWS\system32\Ati2evxx.exe
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: SMAgent.exe [一个声卡相关软件。] - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k imgsvc
100 - 安全 - Process: wdfmgr.exe [windows media player播放器相关程序。] - C:\WINDOWS\system32\wdfmgr.exe
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: runiep.exe [卡卡上网安全助手IE防漏墙相关程序。] - C:\Program Files\Rising\AntiSpyware\runiep.exe
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: Ras.exe [卡卡上网安全助手相关进程。] - C:\Program Files\Rising\AntiSpyware\Ras.exe
100 - 安全 - Process: agentsvr.exe [是一个ActiveX插件,用于多媒体程序。] - C:\WINDOWS\msagent\AgentSvr.exe -Embedding
100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] - C:\Program Files\360safe\360Safe.exe
100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] - C:\Program Files\360safe\safemon\360Tray.exe
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
O3 - 安全 - Toolbar: (卡卡上网安全助手) - [卡卡安全助手工具条软件相关程序。] - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\KakaTool.dll
O4 - 安全 - HKLM\..\Run: [RavTask] [瑞星杀毒软件的任务计划程序。] "d:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - 安全 - HKLM\..\Run: [runeip] [卡卡上网安全助手相关程序。] "C:\Program Files\Rising\AntiSpyware\runiep.exe" /startup
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O23 - 安全 - Service: Ati HotKey Poller [ati显卡相关后台程序。] - C:\WINDOWS\system32\Ati2evxx.exe - (running)
O23 - 安全 - Service: IBMPMSVC [IBM笔记本电脑电源管理相关程序。 ] - C:\WINDOWS\system32\ibmpmsvc.exe - (running)
O23 - 安全 - Service: SoundMAX Agent Service (default) [是Analog SoundMAX声卡产品相关程序。] - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe - (running)

=======================================

O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 126464 - fbbab7ee3c52a35a24e6aeae024dd133
O31 - 未知 - SEApproved: 无效的CLSID:Shell Extensions for RealOne Player -  -  -  -  - 0 -
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 126464 - fbbab7ee3c52a35a24e6aeae024dd133
O31 - 未知 - BootExecute:  bsmain -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -

=======================================

O40 - Explorer.EXE - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\AntiSpyware\ieprot.dll - IE Protector - c03fc56e7d933a2478f65ddb371353bb

=======================================

O41 - RsAntiSpyware - Anti-RootKit Driver - C:\WINDOWS\system32\drivers\RsBoot.sys - (running) - Anti-RootKit Driver - Beijing Rising Technology Co., Ltd. - f9edc97f228c046832a24b5a76017912
O41 - ZSMC211 - Video streaming and Capture Device Driver - C:\WINDOWS\system32\drivers\ZS211.sys - (running) - Video streaming and Capture Device Driver - ZSMC Corporation - acba895b45e65232ad54ad7d71ec542f
O41 - npkcrypt - npkcrypt - C:\Program Files\QQ2006\npkcrypt.sys - (not running) -  -  -
O41 - TesSafe - TesSafe NT Driver - C:\WINDOWS\system32\TesSafe.sys - (not running) - TesSafe NT Driver - TENCENT - 16a95cb4d80459d2e8f40660e33194aa
O41 - UIUSys - UIUSys - C:\WINDOWS\system32\drivers\UIUSys.sys - (not running) -  -  -

=======================================
360Safe.exe=4.0.3.1007
AntiAdwa.dll=4.0.0.1002
AntiEng.dll=4.0.0.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=4.0.0.1001
live.dll=1.0.1.1023

=======================================
操作历史报告:

=======================================

360安全卫士,彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基7.0
最新免费下载:http://www.360safe.com
点击此处查看原文、参与讨论
固定链接┆ 评论(1)┆阅读(109)
标题: 360不能启动,请高手帮忙 收起 
2008-03-19 08:32:22
各位高手:
非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助!
该诊断报告由360安全卫士提供 http://www.360safe.com
诊断时间: 2008-03-14  18:47:58
诊断平台: Microsoft Windows XP  Service Pack 2
IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180
计算机物理内存:1023.17MB - 当前可用内存:664.95MB
100 - 未知 - Process: BoBoTurbo.exe [BoBo P2P多媒体网络点播/广播/直播系统 加速器] - C:\WINDOWS\system32\BoBoTurbo\BoBoTurbo.exe
100 - 未知 - Process: WangWang.exe [阿里旺旺(淘宝版)] - C:\Program Files\Alisoft\WangWang\WangWang.EXE
100 - 未知 - Process: ServiceLayer.exe [ServiceLayer Module] - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
100 - 未知 - Process: msnmsgr.exe [Windows Live Messenger] - C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
100 - 未知 - Process: TXPlatform.exe [TM2008] - c:\program files\tencent\qq\TXPlatform.exe
100 - 未知 - Process: WLLoginProxy.exe [WLLoginProxy.exe] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
100 - 未知 - Process: Display3D.exe [] - C:\DOCUME~1\ALLUSE~1\「开始~1\程序\启动\Display3D.exe
100 - 未知 - Process: 360安全卫士诊断工具.exe [] - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.500\360安全卫士诊断工具.exe
O1 - 未知 - Host: 202.108.9.33 tttt.591jx.com
O1 - 未知 - Host: 202.108.9.33 jx.llzjz.cn
O1 - 未知 - Host: 202.108.9.33 eee.avpkav.com
O1 - 未知 - Host: 202.108.9.33 fff.tesekl.info
O1 - 未知 - Host: 202.108.9.33 [url=http://www.dj8910.comwww.dj8910.com[/color[/url]]
O1 - 未知 - Host: 202.108.9.33 test.591jx.com
O1 - 未知 - Host: 202.108.9.33 1.9797aiai.com
O1 - 未知 - Host: 202.108.9.33 2.9797aiai.com
O1 - 未知 - Host: 202.108.9.33 3.9797aiai.com
O1 - 未知 - Host: 202.108.9.33 4.9797aiai.com
O1 - 未知 - Host: 202.108.9.33 5.9797aiai.com
O1 - 未知 - Host: 202.108.9.33 2.kv8.info
O1 - 未知 - Host: 202.108.9.33 [url=http://www.88feel.cnwww.88feel.cn[/color[/url]]
O1 - 未知 - Host: 202.108.9.33 feel.88feel.cn
O1 - 未知 - Host: 202.108.9.33 exe.xinniankl.com
O1 - 未知 - Host: 202.108.9.33 the.microgood.net
O1 - 未知 - Host: 202.108.9.33 xin.xinniankl.com
O2 - 未知 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll
O2 - 未知 - BHO: (浏览器辅助对象(BHO)) - [无效的CLSID:{7E853D72-626A-48EC-A868-BA8D5E23E045}] - {7E853D72-626A-48EC-A868-BA8D5E23E045} -
O2 - 未知 - BHO: (Thunder Browser Helper) - [XunLeiBHO] - {9030D463-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll
O2 - 未知 - BHO: (QQHelper Class) - [腾讯QQ附带的QQZone插件] - {BF182DBF-1283-4BD3-86EE-D3239228770C} - c:\program files\tencent\qq\QQZoneHelper.dll
O3 - 未知 - Toolbar: (第三方IE工具栏) - [无效的CLSID:{710EB7A1-45ED-11D0-924A-0020AFC7AC4D}] - {710EB7A1-45ED-11D0-924A-0020AFC7AC4D} -
O3 - 未知 - Toolbar: (第三方IE工具栏) - [无效的CLSID:{1E796980-9CC5-11D1-A83F-00C04FC99D61}] - {1E796980-9CC5-11D1-A83F-00C04FC99D61} -
O4 - 未知 - HKLM\..\Run: [igzwzslm] [] C:\WINDOWS\gwsmhxuq.exe
O4 - 未知 - Startup folder: [update.exe] [] C:\Documents and Settings\All Users\「开始」菜单\程序\启动\update.exe
O4 - 未知 - Startup folder: [Display3D.exe] [] C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Display3D.exe
O8 - 未知 - Extra context menu item: 使用迅雷下载 - C:\Program Files\Thunder\Program\geturl.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - C:\Program Files\Thunder\Program\getallurl.htm
O8 - 未知 - Extra context menu item: 添加到QQ表情 - c:\program files\tencent\qq\AddEmotion.htm
O18 - 未知 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - 未知 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O23 - 未知 - Service: BoBoTurbo [BoBo P2P控件的智能升级服务和P2P加速服务组件] - C:\WINDOWS\system32\BoBoTurbo\BoBoTurbo.exe - (running)
O23 - 未知 - Service: ServiceLayer [ServiceLayer] - "C:\Program Files\PC Connectivity Solution\ServiceLayer.exe" - (running)
O23 - 未知 - Service: usnjsvc [Messenger 上安装的启用共享情况的服务] - "C:\Program Files\Windows Live\Messenger\usnsvc.exe" - (not running)
O23 - 未知 - Service: WLSetupSvc [Windows Live Setup Service] - "C:\Program Files\Windows Live\installer\WLSetupSvc.exe" - (not running)
O30 - 未知 - HKCU\..\Desktop: [Scrnsave.exe] [My Pictures Slideshow Screensaver] C:\WINDOWS\system32\ssmypics.scr
=======================================
100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: WINLOGON.EXE [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序,用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: nvsvc32.exe [nvidia driver helper service在nvida显卡驱动中被安装。] - C:\WINDOWS\system32\nvsvc32.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k imgsvc
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] - C:\WINDOWS\system32\RUNDLL32.EXE
100 - 安全 - Process: RavTask.exe [瑞星出品的杀毒软件相关程序。] - C:\Program Files\Rising\Rav\RavTask.exe
100 - 安全 - Process: smax4pnp.exe [声卡相关软件。] - C:\Program Files\Analog Devices\Core\smax4pnp.exe
100 - 安全 - Process: LaunchApplication.exe [诺基亚公司出品的手机套件相关程序。] - C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
100 - 安全 - Process: realsched.exe [realone播放器安装时附带的升级提醒程序。] - C:\Program Files\Common Files\Real\Update_OB\realsched.exe
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: conime.exe [console ime ime输入法控制台软件。] - C:\WINDOWS\system32\conime.exe
100 - 安全 - Process: QQ.exe [腾讯公司出品的qq即时通讯软件。] - C:\Program Files\Tencent\qq\QQ.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k HTTPFilter
100 - 安全 - Process: IEXPLORE.EXE [microsoft internet explorer浏览器用于浏览网页。] - C:\Program Files\Internet Explorer\iexplore.exe
100 - 安全 - Process: Thunder5.exe [迅雷P2P下载软件。] - C:\Program Files\Thunder\Program\Thunder5.exe
100 - 安全 - Process: WinRAR.exe [一款解压缩软件,支持.rar和.zip等格式。] - C:\Program Files\WinRAR\WinRAR.exe
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
O2 - 安全 - BHO: (Windows Live 登录帮助程序) - [windows live多用户登陆助手相关插件。] - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - 安全 - HKLM\..\Run: [nwiz] [是NVidia的Nview特性相关程序。该程序用于用户对其特性进行配置,将桌面扩展到多台显示器上。 ] nwiz.exe /install
O4 - 安全 - HKLM\..\Run: [NvMediaCenter] [是NVidia显示卡相关文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - 安全 - HKLM\..\Run: [RavTask] [瑞星杀毒软件的任务计划程序。] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - 安全 - HKLM\..\Run: [SoundMAXPnP] [analog device公司声卡驱动程序。] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - 安全 - HKLM\..\Run: [PCSuiteTrayApplication] [诺基亚公司出品的一款手机同步的软件,用于数据传输。] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - 安全 - HKLM\..\Run: [TkBellExe] [是Real Networks产品定时升级检测程序。] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - 安全 - HKLM\..\Run: [WangWang] [淘宝旺旺软件。] "C:\Program Files\Alisoft\WangWang\WangWang.EXE"
O4 - 安全 - HKLM\..\Run: [360Safebox] [360安全卫士保险箱相关程序。] "C:\Program Files\360Safebox\safeboxTray.exe" /r
O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360tray.exe /start
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O4 - 安全 - HKCU\..\Run: [MsnMsgr] [微软msn即时通讯工具] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - 安全 - Startup folder: [腾讯QQ.lnk] [qq:即时通讯软件] C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\腾讯QQ.lnk
O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O16 - 安全 - DPF: {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (招商银行个人版) - https://site.cmbchina.com/download/CMBEdit.cab
O16 - 安全 - DPF: {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} (中国工商银行个人银行) - https://mybank.icbc.com.cn/icbc/perbank/AXSafeControls.cab
O16 - 安全 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Flash播放器) - http://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (running)
O23 - 安全 - Service: RsCCenter [是瑞星杀毒软件控制台相关程序。] - "C:\Program Files\Rising\Rav\CCenter.exe" - (not running)
O23 - 安全 - Service: RsRavMon [是瑞星杀毒软件相关监控程序。] - "C:\Program Files\Rising\Rav\Ravmond.exe" - (not running)
=======================================
O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID:加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 125440 - 41bb01bd6b374ce13c98493ab4c1ad66
O31 - 未知 - SEApproved: {1CDB2949-8F65-4355-8456-263E7C208A5D} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11044 - 466944 - 64b7edf5a424b25508be1026879ff6dc
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A47} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11044 - 466944 - 64b7edf5a424b25508be1026879ff6dc
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A48} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11044 - 466944 - 64b7edf5a424b25508be1026879ff6dc
O31 - 未知 - SEApproved: {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} - C:\WINDOWS\system32\RavExt.dll - Beijing Rising Technology Co., Ltd. - Rising Shell Ext Module - 19.0.0.9 - 106496 - fa20734a7acabcfe9d727fb343da4e8a
O31 - 未知 - SEApproved: {416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} - C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll - Nokia - Phone Browser - 6.84.83.7 - 562688 - 600d719d720715b28c3234c624e95bab
O31 - 未知 - Directory Menu: {1C7593CB-C1CC-4BA7-BE52-8EEA47F9CB1D} - C:\WINDOWS\system32\RavExt.dll - Beijing Rising Technology Co., Ltd. - Rising Shell Ext Module - 19.0.0.9 - 106496 - fa20734a7acabcfe9d727fb343da4e8a
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 125440 - 41bb01bd6b374ce13c98493ab4c1ad66
O31 - 未知 - BootExecute: bsmain -  -  -  - 0 -
O31 - 未知 - Image Execution: 360rpt.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: 360safe.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: 360safebox.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: 360tray.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: adam.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: AgentSvr.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: AppSvc32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: AtiSrv.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: autoruns.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: avconsol.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: avgrssvc.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: AvMonitor.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: avp.com - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: avp.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: CCenter.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: ccSvcHst.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: EGHOST.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: FileDsty.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: FTCleanerShell.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: FYFireWall.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: HijackThis.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: IceSword.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: iparmo.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: Iparmor.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: isPwdSvc.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: kabaload.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KaScrScn.SCR - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KASMain.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KASTask.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KAV32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KAVDX.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KAVPF.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KAVPFW.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KAVSetup.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KAVStart.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KISLnchr.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KMailMon.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KMFilter.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KPFW32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KPFW32X.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KPfwSvc.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KRegEx.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KRepair.com - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KsLoader.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KVCenter.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KvDetect.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KvfwMcl.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KVMonXP.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KVMonXP_1.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: kvol.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: kvolself.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KvReport.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KVScan.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KVSrvXP.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KVStub.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: kvupload.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: kvwsc.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KvXP.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KvXP_1.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KWatch.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KWatch9x.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: KWatchX.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: MagicSet.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: mcconsol.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: mmqczj.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: mmsk.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: Navapsvc.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: Navapw32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: nod32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: nod32krn.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: nod32kui.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: NPFMntor.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: OllyDBG.EXE - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: OllyICE.EXE - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: PFW.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: PFWLiveUpdate.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: procexp.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: QHSET.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: QQDoctor.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: QQKav.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: Ras.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: RavMonD.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: RavStub.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: RawCopy.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: RegClean.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: RegTool.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: rfwcfg.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: rfwmain.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: rfwProxy.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: rfwsrv.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: rfwstub.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: RsAgent.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: Rsaupd.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: runiep.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: safebank.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: safeboxTray.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: safelive.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: scan32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: shcfg32.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: SmartUp.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: SREng.EXE - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: symlcsvc.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: SysSafe.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: TrojanDetector.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: Trojanwall.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: TrojDie.kxp - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UIHost.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UmxAgent.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UmxAttachment.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UmxCfg.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UmxFwHlp.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UmxPol.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: UpLive.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: vsstat.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: webscanx.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: WinDbg.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - Image Execution: WoptiClean.exe - ntsd -d -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -
=======================================
O40 - Explorer.EXE -  - C:\WINDOWS\system32\rzysdhbx.dll -  - 8a10e427d61ff2815e9bf7249cd96ed8
O40 - Explorer.EXE - Nokia - C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll - Phone Browser - 600d719d720715b28c3234c624e95bab
O40 - Explorer.EXE - Nokia - C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll - PC Suite Common Modules - 0e51263ea765f9ab45aa8f04cadb22b9
O40 - Explorer.EXE - Microsoft Corporation - C:\WINDOWS\system32\MSVCP71.dll - Microsoft? C++ Runtime Library - 561fa2abb31dfa8fab762145f81667c2
O40 - Explorer.EXE - Microsoft Corporation - C:\WINDOWS\system32\MSVCR71.dll - Microsoft? C Runtime Library - 86f1895ae8c5e8b17d99ece768a70732
O40 - Explorer.EXE - Beijing Rising Technology Co., Ltd. - C:\WINDOWS\system32\RavExt.dll - Rising Shell Ext Module - fa20734a7acabcfe9d727fb343da4e8a
O40 - Explorer.EXE - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\RSCOMMON.DLL - Rising Common Function Dynamic Link Library - 58432e6c58f1b4c339adc1a79bf864b6
O40 - RUNDLL32.EXE - NVIDIA Corporation - C:\WINDOWS\system32\NVRSZHC.DLL - NVIDIA Simplified Chinese language resource library - c6dc3f24769092723c09a55c057af7bb
=======================================
O41 - BaseTDI - basetdi - C:\WINDOWS\system32\drivers\basetdi.sys - (running) - basetdi - Beijing Rising Technology Co., Ltd. - 0064810c1b03f2c889130b669a4ce937
O41 - ExpScaner - ExpScan.sy