小弟于昨日误点一程序 然后弹进了DOS命令
结果发现360安全卫士无法运行 相关网站也开不了
进入***文件夹一看只有30几K了 再下载程序***后很多功能也用不了 一点进如正在运行软件就出错退出
用专杀也没查出何故 以下是诊断 各位高手: 非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助! 该诊断报告由360安全卫士提供 诊断时间:
12:42:36 诊断平台: Microsoft Windows XP
Service Pack 2 IE版本: Internet Explorer V6.0. Build: 计算机物理内存:2.00GB - 当前可用内存:1.59GB 100 - 未知 - Process: DubaTool_ [金山毒霸专杀工具] - F:\新任务\其它\DubaTool_***_Killer2\DubaTool_***_Killer2\DubaTool_ - 4d6c59fd3b49 100 - 未知 - Process: 360compkill.exe [] - F:\新任务\其它\360compkill.exe - 100 - 未知 - Process: KillerSet.exe [] - C:\DOCUME~1\左一\LOCALS~1\Temp\RarSFX0\KillerSet.exe - 100 - 未知 - Process: cmdCheckTools.exe [] - C:\DOCUME~1\左一\LOCALS~1\Temp\RarSFX0\check\cmdCheckTools.exe - O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0. O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 up.duba.net O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 shadu.duba.net O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0. O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0. O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0. O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 .cn O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0. O1 - 未知 - Host: 127.0.0.1 O1 - 未知 - Host: 127.0.0.1 dnl-cn1. O1 - 未知 - Host: 127.0.0.1 dnl-cn2. O1 - 未知 - Host: 127.0.0.1 dnl-cn3. O1 - 未知 - Host: 127.0.0.1 dnl-cn4. O1 - 未知 - Host: 127.0.0.1 dnl-cn5. O1 - 未知 - Host: 127.0.0.1 dnl-cn6. O1 - 未知 - Host: 127.0.0.1 dnl-cn7. O1 - 未知 - Host: 127.0.0.1 dnl-cn8. O1 - 未知 - Host: 127.0.0.1 dnl-cn9. O1 - 未知 - Host: 127.0.0.1 dnl-cn10. O1 - 未知 - Host: 127.0.0.1 dnl-cn11. O1 - 未知 - Host: 127.0.0.1 dnl-cn12. O1 - 未知 - Host: 127.0.0.1 dnl-cn13. O1 - 未知 - Host: 127.0.0.1 dnl-cn14. O1 - 未知 - Host: 127.0.0.1 dnl-cn15. O1 - 未知 - Host: 127.0.0.1 dnl-cd1. O1 - 未知 - Host: 127.0.0.1 dnl-cd2. O1 - 未知 - Host: 127.0.0.1 dnl-cd3. O1 - 未知 - Host: 127.0.0.1 dnl-cd4. O1 - 未知 - Host: 127.0.0.1 dnl-cd5. O1 - 未知 - Host: 127.0.0.1 dnl-cd6. O1 - 未知 - Host: 127.0.0.1 dnl-cd7. O1 - 未知 - Host: 127.0.0.1 dnl-cd8. O1 - 未知 - Host: 127.0.0.1 dnl-cd9. O1 - 未知 - Host: 127.0.0.1 dnl-cd10. O1 - 未知 - Host: 127.0.0.1 dnl-cd11. O1 - 未知 - Host: 127.0.0.1 dnl-cd12. O1 - 未知 - Host: 127.0.0.1 dnl-cd13. O1 - 未知 - Host: 127.0.0.1 dnl-cd14. O1 - 未知 - Host: 127.0.0.1 dnl-eu1. O1 - 未知 - Host: 127.0.0.1 dnl-eu2. O1 - 未知 - Host: 127.0.0.1 dnl-eu3. O1 - 未知 - Host: 127.0.0.1 dnl-eu4. O1 - 未知 - Host: 127.0.0.1 dnl-eu5. O1 - 未知 - Host: 127.0.0.1 dnl-eu6. O1 - 未知 - Host: 127.0.0.1 dnl-eu7. O1 - 未知 - Host: 127.0.0.1 dnl-eu8. O1 - 未知 - Host: 127.0.0.1 dnl-eu9. O1 - 未知 - Host: 127.0.0.1 dnl-eu10. O1 - 未知 - Host: 127.0.0.1 dnl-eu11. O1 - 未知 - Host: 127.0.0.1 dnl-eu12. O1 - 未知 - Host: 127.0.0.1 dnl-eu13. O1 - 未知 - Host: 127.0.0.1 dnl-eu14. O1 - 未知 - Host: 127.0.0.1 dnl-eu15. O1 - 未知 - Host: 127.0.0.1 dnl-us1. O1 - 未知 - Host: 127.0.0.1 dnl-us2. O1 - 未知 - Host: 127.0.0.1 dnl-us3. O1 - 未知 - Host: 127.0.0.1 dnl-us4. O1 - 未知 - Host: 127.0.0.1 dnl-us5. O1 - 未知 - Host: 127.0.0.1 dnl-us6. O1 - 未知 - Host: 127.0.0.1 dnl-us7. O1 - 未知 - Host: 127.0.0.1 dnl-us8. O1 - 未知 - Host: 127.0.0.1 dnl-us9. O1 - 未知 - Host: 127.0.0.1 dnl-us10. O1 - 未知 - Host: 127.0.0.1 dnl-us11. O1 - 未知 - Host: 127.0.0.1 dnl-us12. O1 - 未知 - Host: 127.0.0.1 dnl-us13. O1 - 未知 - Host: 127.0.0.1 dnl-us14. O1 - 未知 - Host: 127.0.0.1 dnl-us15. O1 - 未知 - Host: 127.0.0.1 dnl-ru1. O1 - 未知 - Host: 127.0.0.1 dnl-ru2. O1 - 未知 - Host: 127.0.0.1 dnl-ru3. O1 - 未知 - Host: 127.0.0.1 dnl-ru4. O1 - 未知 - Host: 127.0.0.1 dnl-ru5. O1 - 未知 - Host: 127.0.0.1 dnl-ru6. O1 - 未知 - Host: 127.0.0.1 dnl-ru7. O1 - 未知 - Host: 127.0.0.1 dnl-ru8. O1 - 未知 - Host: 127.0.0.1 dnl-ru9. O1 - 未知 - Host: 127.0.0.1 dnl-ru10. O1 - 未知 - Host: 127.0.0.1 dnl-ru11. O1 - 未知 - Host: 127.0.0.1 dnl-ru12. O1 - 未知 - Host: 127.0.0.1 dnl-ru13. O1 - 未知 - Host: 127.0.0.1 dnl-ru14. O1 - 未知 - Host: 127.0.0.1 dnl-ru15. O1 - 未知 - Host: 127.0.0.1 dnl-jp1. O1 - 未知 - Host: 127.0.0.1 dnl-jp2. O1 - 未知 - Host: 127.0.0.1 dnl-jp3. O1 - 未知 - Host: 127.0.0.1 dnl-jp4. O1 - 未知 - Host: 127.0.0.1 dnl-jp5. O1 - 未知 - Host: 127.0.0.1 dnl-jp6. O1 - 未知 - Host: 127.0.0.1 dnl-jp7. O1 - 未知 - Host: 127.0.0.1 dnl-jp8. O1 - 未知 - Host: 127.0.0.1 dnl-jp9. O1 - 未知 - Host: 127.0.0.1 dnl-jp10. O1 - 未知 - Host: 127.0.0.1 dnl-jp11. O1 - 未知 - Host: 127.0.0.1 dnl-jp12. O1 - 未知 - Host: 127.0.0.1 dnl-jp13. O1 - 未知 - Host: 127.0.0.1 dnl-jp14. O1 - 未知 - Host: 127.0.0.1 dnl-jp15. O1 - 未知 - Host: 127.0.0.1 dnl-kr1. O1 - 未知 - Host: 127.0.0.1 dnl-kr2. O1 - 未知 - Host: 127.0.0.1 dnl-kr3. O1 - 未知 - Host: 127.0.0.1 dnl-kr4. O1 - 未知 - Host: 127.0.0.1 dnl-kr5. O1 - 未知 - Host: 127.0.0.1 dnl-kr6. O1 - 未知 - Host: 127.0.0.1 dnl-kr7. O1 - 未知 - Host: 127.0.0.1 dnl-kr8. O1 - 未知 - Host: 127.0.0.1 dnl-kr9. O1 - 未知 - Host: 127.0.0.1 dnl-kr10. O1 - 未知 - Host: 127.0.0.1 dnl-kr11. O1 - 未知 - Host: 127.0.0.1 dnl-kr12. O1 - 未知 - Host: 127.0.0.1 dnl-kr13. O1 - 未知 - Host: 127.0.0.1 dnl-kr14. O1 - 未知 - Host: 127.0.0.1 dnl-kr15. O1 - 未知 - Host: 127.0.0.1 gxgxy.net O2 - 未知 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块] - {01443AEC-0FD1-40fd-9C87-E93D} - C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll O4 - 未知 - HKLM\..\Run: [SkyTel] [Realtek Voice
Manager] SkyTel.EXE O4 - 未知 - HKLM\..\RunOnce: [360safeKill] [] &C:\DOCUME~1\左一\LOCALS~1\Temp\RarSFX0\killer_rodog.exe& -runonce O8 - 未知 - Extra context menu item: 使用WEB迅雷下载 - C:\Program Files\Thunder Network\WebThunder\GetUrl.htm O8 - 未知 - Extra context menu item: 使用WEB迅雷下载全部链接 - C:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm O8 - 未知 - Extra context menu item: 使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\Program\geturl.htm O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm O9 - 未知 - Extra button: 启动迅雷5(HKLM) - C:\Program Files\Thunder Network\Thunder\Thunder.exe O9 - 未知 - Extra button: 浩方对战平台(HKLM) - D:\***\HFGameOPT\GameClient.exe O9 - 未知 - Extra button: 信息检索(HKLM) - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - 未知 - Extra button: 启动WEB迅雷(HKLM) - O15 - 未知 - Trusted Zone: http:localhost O16 - 未知 - DPF: {6AAA-49E9-FD8641B} (WuYou.WySystem) - http://localhost:9090/webexam/Activex/WySystem.cab O16 - 未知 - DPF: {6DBBDB0-944A-21C22BA121F4} (CCtInf) - /perbank/BankControl.cab O23 - 未知 - Service: ccosm [Contrl Center of Storm Media] - C:\Program Files\StormII\stormliv.exe /asservice - (not running) O23 - 未知 - Service: PnpWMmng [完美杀毒伴侣防毒服务] - D:\***\完美卸~1\PnpWMmng.exe - (not running) O23 - 未知 - Service: TabletServicePen [TabletServicePen] - C:\WINDOWS\system32\Pen_Tablet.exe - (not running) O23 - 未知 - Service: VVin1ogonsvs [VVin1ogonsvs] - C:\WINDOWS\system32\VVin1ogons.exe - (not running) ======================================= 100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe - 69b7020441bbb22e3a7780 100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=2 Windows=On SubSystemType=Windows ServerDll=base - fecb355bdfe5dc 100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe - 86ca52d1f5bbaa 100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe - 9ae8fcbe02bb4fb3b5ce1bab 100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe - eaf81ba718e 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch - 1bb906a2e148 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss - 1bb906a2e148 100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k netsvcs - 1bb906a2e148 100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] - C:\WINDOWS\Explorer.EXE - 0b9d9d447e0 100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] - C:\Program Files\360safe\safemon\360Tray.exe - ae6b2eaac4f1 100 - 安全 - Process: conime.exe [console ime ime输入法控制台软件。] - C:\WINDOWS\system32\conime.exe - c22b78af7d0bee38f2d2f 100 - 安全 - Process: NOTEPAD.EXE [notepad字符编辑器用于打开文档。在windows中附带。] - C:\WINDOWS\notepad.exe - ca94f5cd4b O2 - 安全 - BHO: (WebThunder Browser Helper) - [Web迅雷, 支持多资源超线程技术的下载工具。] - {00000AAA-A363-466E-BEF5-9BB68697AA7F} - C:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll O2 - 安全 - BHO: (VnetCookie Class) - [星空极速, 拨号软件。] - {4E83D567-B-B1F0-A513B01DB89A} - C:\PROGRA~1\ChinaNet\VNETTR~1.DLL O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-98-1DD2C5261283} - C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll O4 - 安全 - HKLM\..\Run: [ShStatEXE] [一款杀毒软件。] &C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE& /STANDALONE O4 - 安全 - HKLM\..\Run: [McAfeeUpdaterUI] [mcafee软件升级程序。] &C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe& /StartedFromRunKey O4 - 安全 - HKLM\..\Run: [Network Associates Error Reporting Service] [network associates公司出品的计算机错误报告信息服务相关程序。] &C:\Program Files\Common Files\Network Associates\TalkBack\tbmon.exe& O4 - 安全 - HKLM\..\Run: [RTHDCPL] [realtek声卡特性设置软件相关程序。] RTHDCPL.EXE O4 - 安全 - HKLM\..\Run: [Alcmtr] [一款声卡相关程序。] ALCMTR.EXE O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - 安全 - HKLM\..\Run: [nwiz] [是NVidia的Nview特性相关程序。该程序用于用户对其特性进行配置,将桌面扩展到多台显示器上。 ] nwiz.exe /install O4 - 安全 - HKLM\..\Run: [NvMediaCenter] [是NVidia显示卡相关文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360tray.exe /start O4 - 安全 - HKLM\..\RunOnce: [360Safe] [360安全卫士] Rundll32.exe C:\PROGRA~1\360safe\AntiAdwa.dll,KillAdware O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe O4 - 安全 - Startup folder: [Adobe Gamma Loader.lnk] [adobe用于加载图形参数] C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk O4 - 安全 - Startup folder: [星空极速.lnk] [星空极速拨号客户端。] C:\Documents and Settings\All Users\「开始」菜单\程序\启动\星空极速.lnk O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - 安全 - Extra button: Windows Messenger(HKLM) - C:\Program Files\Messenger\msmsgs.exe O18 - 安全 - Protocol: OFFICE 相关 - {--A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL O18 - 安全 - Protocol: OFFICE 相关 - {2-49B2-880A-1F} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL O23 - 安全 - Service: Ati HotKey Poller [ati显卡相关后台程序。] - C:\WINDOWS\system32\Ati2evxx.exe - (not running) O23 - 安全 - Service: ATI Smart [是一个ati图形显示卡驱程的相关进程。] - C:\WINDOWS\system32\ati2sgag.exe - (not running) O23 - 安全 - Service: McAfeeFramework [是Network Associates公司的E-policy反病毒套装的一部分。] - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe /ServiceStart - (not running) O23 - 安全 - Service: McShield [network associates网络安***装的服务部分。] - &C:\Program Files\Network Associates\VirusScan\mcshield.exe& - (not running) O23 - 安全 - Service: McTaskManager [network associates网络安***装的服务部分。] - &C:\Program Files\Network Associates\VirusScan\vstskmgr.exe& - (not running) O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (not running) ======================================= O31 - 未知 - Notify: AtiExtEvent - C:\WINDOWS\system32\Ati2evxx.dll - ATI Technologies Inc. - ATI External Event Utility DLL Module - 6.14.10.4162 - 118784 - abc66e33dc13589cccb065b15a641a72 O31 - 未知 - SEApproved: {d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -
- 0 - O31 - 未知 - SEApproved: 无效的CLSID:Shell extensions for file compression -
- 0 - O31 - 未知 - SEApproved: 无效的CLSID:加密上下文菜单 -
- 0 - O31 - 未知 - SEApproved: {0DF44EAA-FF21-0A} -
- 0 - O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -
- 0 - O31 - 未知 - SEApproved: {7A9D77BD--0524153} -
- 0 - O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -
- 124416 - 1b089bd19a24b581cc753 O31 - 未知 - SEApproved: {68f-11d0-acc1-} - C:\PROGRAM FILES\ACDSEE\picaview.dll - ACD Systems, Ltd. - PicaView 系统扩展 DLL - 2.0.0.78 - 487424 - 053432fff2be6c5c60f9 O31 - 未知 - SEApproved: {1CDB-3E7C208A5D} - C:\WINDOWS\system32\nvshell.dll -
- 6.14.10.11060 - 466944 - 4450bbaf1b77f2b87ab9c5ee4e69532c O31 - 未知 - SEApproved: {1E9B04FB-F9E5-B-B8DA88302A47} - C:\WINDOWS\system32\nvshell.dll -
- 6.14.10.11060 - 466944 - 4450bbaf1b77f2b87ab9c5ee4e69532c O31 - 未知 - SEApproved: {1E9B04FB-F9E5-B-B8DA88302A48} - C:\WINDOWS\system32\nvshell.dll -
- 6.14.10.11060 - 466944 - 4450bbaf1b77f2b87ab9c5ee4e69532c O31 - 未知 - SEApproved: 无效的CLSID:CorelDRAW Shell Extension Component -
- 0 - O31 - 未知 - Directory Menu: {7E41911F-13AA-11D3-A831-B5} - C:\WINDOWS\system32\WmShell.dll - KillSoft - KillSoft RightMenu - 1.0.0.1 - 69632 - 9ab8f563e185ada865a8a610 O31 - 未知 - Directory Menu: {cda-4c49-9b89-} - C:\Program Files\Network Associates\VirusScan\shext.dll - Network Associates, Inc. - VirusScan Shell Extension - 8.0.0.912 - 13824 - cc9bf98ace67a O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -
- 124416 - 1b089bd19a24b581cc753 O31 - 未知 - LSA: Security Packages - sv1_0.dll -
- 0 - O31 - 未知 - LSA: Security Packages - channel.dll -
- 0 - ======================================= O40 - winlogon.exe - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.dll - ATI External Event Utility DLL Module - abc66e33dc13589cccb065b15a641a72 O40 - Explorer.EXE -
- C:\WINDOWS\system32\nvshell.dll -
- 4450bbaf1b77f2b87ab9c5ee4e69532c ======================================= O41 - PnpWmkDrv - 完美卸载 Driver - C:\WINDOWS\system32\drivers\PnpWmkDrv.sys - (running) - 完美卸载 Driver - Windows (R) 2000 DDK provider - 5b3e48cf1dd79b83dcbfe O41 - sptd - sptd - C:\WINDOWS\system32\drivers\sptd.sys - (running) -
- O41 -
- C:\WINDOWS\system32\Drivers\.sys - (not running) -
- O41 - 00dd1f1d - 00dd1f1d - C:\WINDOWS\system32\Drivers\00dd1f1d.sys - (not running) -
- O41 - Apaidi - Apaidi - C:\WINDOWS\system32\drivers\Apaidi.sys - (not running) -
- f60f0a380c6cf97dc05c7d01adb2c217 O41 - cpuz - cpuz - C:\WINDOWS\system32\cpuz.sys - (not running) -
- O41 - EntDrv51 - EntDrv - C:\WINDOWS\system32\drivers\entdrv51.sys - (not running) - EntDrv - Network Associates, Inc - 4fc86eb75a8ca O41 - GMSIPCI - GMSIPCI - G:\INSTALL\GMSIPCI.SYS - (not running) -
- O41 - NaiAvFilter1 - Anti-Virus File System Filter Driver - C:\WINDOWS\system32\drivers\naiavf5x.sys - (not running) - Anti-Virus File System Filter Driver - Network Associates, Inc. - c2d2e904d1a04e59600c7 O41 - NaiAvTdi1 - Anti-Virus Mini-Firewall Driver - C:\WINDOWS\system32\drivers\mvstdi5x.sys - (not running) - Anti-Virus Mini-Firewall Driver - Network Associates, Inc. - dc2440edac9a177fc8069c O41 - NPF - NPF Driver - TME extensions - C:\WINDOWS\system32\drivers\npf.sys - (not running) - NPF Driver - TME extensions - Politecnico di Torino - f498c5c6fc215ef074f9 O41 - npkcrypt - nProtect KeyCrypt Driver - C:\QQ\npkcrypt.sys - (not running) - nProtect KeyCrypt Driver - INCA Internet Co., Ltd. - 8bcb281a2540e7aff0cd00f9878fe21f O41 - SafeBoxKrnl - SafeBoxKrnl - C:\Program Files\360Safebox\SafeBoxKrnl.sys - (not running) -
- 69a64df261bacfe707e6317249fbaa63 O41 - vmfilter303 - Filter for VM303 with Face Tracking, no photoframe - C:\WINDOWS\system32\drivers\vmfilter303.sys - (not running) - Filter for VM303 with Face Tracking, no photoframe - Vimicro Corporation - ad024a3e451d8df6795eeed5 O41 - XDva076 - XDva076 - C:\WINDOWS\system32\XDva076.sys - (not running) -
- O41 - XDva079 - XDva079 - C:\WINDOWS\system32\XDva079.sys - (not running) -
- O41 - XDva089 - XDva089 - C:\WINDOWS\system32\XDva089.sys - (not running) -
- O41 - XDva090 - XDva090 - C:\WINDOWS\system32\XDva090.sys - (not running) -
- O41 - ZSMC303 - ZSMC303 - C:\WINDOWS\System32\Drivers\usbVM303.sys - (not running) -
- ======================================= [userinit.exe情况] MD5: fd5ccda253eee2fc5e96022 文件大小: 23552 版本信息: 5.1. (xpsp_sp2_rtm.8) 是否签名: 是 未被感染 ======================================= [URL历史情况] [code] /baidu?tn=killsoftcn_dg&word=C:\WINDOWS\system32\autorun.exe%20病毒 /web/navierr.htm?url=.cn/zsgj/RavEdog.exe&domain=.cn&code= /baidu?tn=killsoftcn_dg&word=C:\Program%20Files\Common%20Files\InstallShield\Driver\1050\Intel%2032\IDriverT.exe%20病毒 http://ftp-.cn/pub/download/fixtool.exe /baidu?tn=killsoftcn_dg&word=C:\WINDOWS\system32\autorun.exe%20病毒 http://ftp-.cn/pub/download/safe_pconline.exe /web/navierr.htm?url=.cn/zsgj/RavEdog.exe&domain=.cn&code= /baidu?tn=killsoftcn_dg&word=C:\Program%20Files\Common%20Files\InstallShield\Driver\1050\Intel%2032\IDriverT.exe%20病毒 .cn/zsgj/RavEdog.exe /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=2144015&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=2151062&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=4040734&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=1248375&ver=4.1.8.1006 /libspyerp.dat/libspyerp.dat.1.0.0..0.1220.cab?t=5405546 /siterule.dat/siterule.dat.1.0.1..1.1232.cab?t=2058031 /siterule.dat/siterule.dat.1.0.1..1.1233.cab?t=2058250 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /libspywa.dat/libspywa.dat.1.0.1..1.1441.cab?t=765984 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /siterule.dat/siterule.dat.1.0.1..1.1222.cab?t=706625 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=9934093&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=6633875&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=1353859&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=676078&ver=4.1.8.1006 /libspywa.cab?t=689343 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=762750&ver=4.1.8.1006 /siterule.dat/siterule.dat.1.0.1..1.1232.cab?t=707265 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=902375&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=1060531&ver=4.1.8.1006 /libspywa.dat/libspywa.dat.1.0.1..1.1441.cab?t=677093 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=1396468&ver=4.1.8.1006 /libspywa.cab?t=778156 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=974859&ver=4.1.8.1006 /libspywa.cab?t=914968 /libspyerp.dat/libspyerp.dat.1.0.0..0.1219.cab?t=689421 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=1001796&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=724546&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=3380812&ver=4.1.8.1006 /siterule.dat/siterule.dat.1.0.1..1.1234.cab?t=707609 /libspywa.cab?t=736937 /libspywa.dat/libspywa.dat.1.0.1..1.1441.cab?t=902890 /libspyerp.cab?t=689875 /siterule.dat/siterule.dat.1.0.1..1.1222.cab?t=2057453 /siterule.dat/siterule.dat.1.0.1..1.1233.cab?t=707484 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=2078046&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=1301562&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=1340671&ver=4.1.8.1006 /libspywa.dat/libspywa.dat.1.0.1..1.1441.cab?t=724843 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=1277484&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=2056531&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=2060812&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=2154984&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=2440203&ver=4.1.8.1006 /siterule.dat/siterule.dat.1.0.1..1.1234.cab?t=2058390 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=5413156&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=2000734&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=5360796&ver=4.1.8.1006 /safe/safeup.cab?m=deec6dd702e&protect=11,21,31,41,50,60&t=5405187&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=6634546&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeup.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=4700734&ver=4.1.8.1006 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=693843&ver=4.1.8.1004 /safe/safeupm.cab?type=tray&m=deec6dd702e&t=2673843&ver=4.1.8.1004 /view_down.asp?view_n=1&SoftID=12004&ID=48800&file=/200803/killer_dummycom-v2.2.rar&softname=360磁碟机病毒专杀工具%20v2.2 /web/navierr.htm?url=ftp://210.53.201.139:8888/download/CGVE/2007-04photoman.rar&domain=210.53.201.139&code= http://2./hh/xvidcore-v1.1.0H.rar http://5./200803/killer_dummycom-v2.2.rar [/code] ======================================= bc60fcae594ca9ef784e
楼主发言:1次 发图:0张 | 更多
在线等-_-!!
依然在等-.-b
进入安全模式,杀毒。。
安全模式 没查出来 我用SRENG的诊断 [CODE] ,22:58:57 System Repair Engineer 2.5.16.900 Smallfrogs () Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能 以下内容被选中:
所有的启动项目(包括注册表、启动文件夹、服务等)
浏览器加载项
正在运行的进程(包括进程模块信息)
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描 启动项目 注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
&ctfmon.exe&&C:\WINDOWS\system32\ctfmon.exe&
[(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
&ShStatEXE&&&C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE& /STANDALONE&
[Network Associates, Inc.]
&McAfeeUpdaterUI&&&C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe& /StartedFromRunKey&
[Network Associates, Inc.]
&Network Associates Error Reporting Service&&&C:\Program Files\Common Files\Network Associates\TalkBack\tbmon.exe&&
[Network Associates, Inc.]
&RTHDCPL&&RTHDCPL.EXE&
[(Verified)Microsoft Windows Hardware Compatibility Publisher]
&SkyTel&&SkyTel.EXE&
[(Verified)Microsoft Windows Hardware Compatibility Publisher]
&Alcmtr&&ALCMTR.EXE&
[(Verified)Microsoft Windows Hardware Compatibility Publisher]
&NvCplDaemon&&RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup&
[(Verified)Microsoft Windows Component Publisher]
&nwiz&&nwiz.exe /install&
&NvMediaCenter&&RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit&
[(Verified)Microsoft Windows Hardware Compatibility Publisher] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
&shell&&Explorer.exe&
[(Verified)Microsoft Windows Component Publisher]
&Userinit&&C:\WINDOWS\system32\userinit.exe,&
[(Verified)Microsoft Windows Publisher]
&UIHost&&logonui.exe&
[(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{d38-484f-9b9e-dec}]
&Internet Explorer&&%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE&
[N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\&{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
&Outlook Express&&%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE&
[N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09--FED}]
&Themes Setup&&%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll&
[N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
&Microsoft Outlook Express 6&&&%ProgramFiles%\Outlook Express\setup50.exe& /APP:OE /CALLER:WINNT /user /install&
[N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
&NetMeeting 3.01&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT&
[(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{e7d-11d1-bc44-00c04fd912be}]
&Windows Messenger 4.7&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser&
[(Verified)Microsoft Windows Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
&Microsoft Windows Media Player&&rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub&
[(Verified)Microsoft Windows Component Publisher] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{71-11d2-AF11-00C04FA35D02}]
&通讯簿 6&&&%ProgramFiles%\Outlook Express\setup50.exe& /APP:WAB /CALLER:WINNT /user /install&
[N/A] ================================== 启动文件夹 [Adobe Gamma Loader]
&C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk --& C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.]&&N& [星空极速]
&C:\Documents and Settings\All Users\「开始」菜单\程序\启动\星空极速.lnk --& C:\PROGRA~1\ChinaNet\VNETCL~1.EXE []&&N& ================================== 服务 [Ati HotKey Poller / Ati HotKey Poller][Stopped/Auto Start]
&C:\WINDOWS\system32\Ati2evxx.exe&&ATI Technologies Inc.& [ATI Smart / ATI Smart][Stopped/Auto Start]
&C:\WINDOWS\system32\ati2sgag.exe&&& [Contrl Center of Storm Media / ccosm][Running/Auto Start]
&C:\Program Files\StormII\stormliv.exe /asservice&&北京暴风网际科技有限公司& [InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
&&C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe&&&N/A& [McAfee Framework 服务 / McAfeeFramework][Running/Auto Start]
&C:\Program Files\Network Associates\Common Framework\FrameworkService.exe /ServiceStart&&Network Associates, Inc.& [Network Associates McShield / McShield][Running/Auto Start]
&&C:\Program Files\Network Associates\VirusScan\mcshield.exe&&&Network Associates, Inc.& [Network Associates Task Manager / McTaskManager][Running/Auto Start]
&&C:\Program Files\Network Associates\VirusScan\vstskmgr.exe&&&Network Associates, Inc.& [NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
&C:\WINDOWS\system32\nvsvc32.exe&&NVIDIA Corporation& [PnpWMmng / PnpWMmng][Running/Auto Start]
&D:\***\完美卸~1\PnpWMmng.exe&&完美卸载& [TabletServicePen / TabletServicePen][Running/Auto Start]
&C:\WINDOWS\system32\Pen_Tablet.exe&&Wacom Technology, Corp.& [VVin1ogonsvs / VVin1ogonsvs][Stopped/Auto Start]
&C:\WINDOWS\system32\VVin1ogons.exe&&N/A& [Kingsoft Uplive Service / kaccore][Running/Auto Start]
&&C:\Program Files\Kingsoft\KAC\Service\kaccore.exe&&&Kingsoft Corporation& ================================== 驱动程序 [360AntiArp / 360AntiArp][Running/System Start]
&\??\C:\WINDOWS\system32\drivers\360AntiArp.sys&&360安全中心& [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Stopped/Manual Start]
&system32\drivers\ALCXWDM.SYS&&Realtek Semiconductor Corp.& [AMD Processor Driver / AmdK8][Running/System Start]
&system32\DRIVERS\AmdK8.sys&&Advanced Micro Devices& [Apaidi / Apaidi][Running/Auto Start]
&\??\C:\WINDOWS\system32\drivers\Apaidi.sys&&N/A& [ati2mtag / ati2mtag][Stopped/Manual Start]
&system32\DRIVERS\ati2mtag.sys&&ATI Technologies Inc.& [cpuz / cpuz][Stopped/Manual Start]
&\??\C:\WINDOWS\system32\cpuz.sys&&N/A& [VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
&system32\DRIVERS\fetnd5.sys&&VIA Technologies, Inc.& [GMSIPCI / GMSIPCI][Stopped/Manual Start]
&\??\G:\INSTALL\GMSIPCI.SYS&&N/A& [ATI Function Driver for High Definition Audio Service / HdAudAddService][Stopped/Manual Start]
&system32\drivers\AtiHdAud.sys&&ATI Research Inc.& [Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
&system32\DRIVERS\HDAudBus.sys&&Windows (R) Server 2003 DDK provider& [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
&system32\drivers\RtkHDAud.sys&&Realtek Semiconductor Corp.& [K***BootC / K***BootC][Running/Boot Start]
&\SystemRoot\system32\Drivers\K***BootC.sys&&Kingsoft Corporation& [K***Safe / K***Safe][Running/Auto Start]
&\??\C:\WINDOWS\system32\Drivers\K***Safe.sys&&Kingsoft Corporation& [NaiAvFilter1 / NaiAvFilter1][Running/Manual Start]
&system32\drivers\naiavf5x.sys&&Network Associates, Inc.& [NaiAvTdi1 / NaiAvTdi1][Running/System Start]
&system32\drivers\mvstdi5x.sys&&Network Associates, Inc.& [Netgroup Packet Filter / NPF][Running/Manual Start]
&system32\drivers\npf.sys&&Politecnico di Torino& [npkcrypt / npkcrypt][Running/Auto Start]
&\??\C:\QQ\npkcrypt.sys&&INCA Internet Co., Ltd.& [nv / nv][Running/Manual Start]
&system32\DRIVERS\nv4_mini.sys&&NVIDIA Corporation& [NVIDIA nForce Networking Controller Driver / NVENETFD][Stopped/Manual Start]
&system32\DRIVERS\NVENETFD.sys&&NVIDIA Corporation& [NVIDIA Network Bus Enumerator / nvnetbus][Stopped/Manual Start]
&system32\DRIVERS\nvnetbus.sys&&NVIDIA Corporation& [PnpWmkDrv / PnpWmkDrv][Running/System Start]
&\??\C:\WINDOWS\system32\drivers\PnpWmkDrv.sys&&Windows (R) 2000 DDK provider& [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
&system32\DRIVERS\ptilink.sys&&Parallel Technologies, Inc.& [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
&system32\DRIVERS\RTL8139.SYS&&Realtek Semiconductor Corporation& [Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Stopped/Manual Start]
&system32\DRIVERS\Rtenicxp.sys&&Realtek Semiconductor Corporation& [SafeBoxKrnl / SafeBoxKrnl][Stopped/System Start]
&\??\C:\Program Files\360Safebox\SafeBoxKrnl.sys&&N/A& [Secdrv / Secdrv][Running/Auto Start]
&system32\DRIVERS\secdrv.sys&&Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.& [sptd / sptd][Running/Boot Start]
&\SystemRoot\System32\Drivers\sptd.sys&&N/A& [ViaIde / ViaIde][Running/Boot Start]
&\SystemRoot\system32\DRIVERS\viaide.sys&&Microsoft Corporation& [vmfilter303 / vmfilter303][Stopped/Manual Start]
&system32\drivers\vmfilter303.sys&&Vimicro Corporation& [Wacom Mouse Filter Driver / wacommousefilter][Running/Manual Start]
&system32\DRIVERS\wacommousefilter.sys&&Wacom Technology& [Wacom Virtual Hid Driver / wacomvhid][Running/Manual Start]
&system32\DRIVERS\wacomvhid.sys&&Wacom Technology& [Virtual Keyboard Driver / WacomVKHid][Running/Manual Start]
&system32\DRIVERS\WacomVKHid.sys&&Wacom Technology& [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
&system32\DRIVERS\WSTCODEC.SYS&&Microsoft Corporation& [USB PC Camera (Vimicro301 Neptune) / ZSMC303][Stopped/Manual Start]
&System32\Drivers\usbVM303.sys&&N/A& [EntDrv51 / EntDrv51][Running/Manual Start]
&\??\C:\WINDOWS\system32\drivers\EntDrv51.sys&&Network Associates, Inc& ================================== 浏览器加载项 [WebThunder Browser Helper]
{00000AAA-A363-466E-BEF5-9BB68697AA7F} &C:\Program Files\Thunder Network\WebThunder\WebThunderBHO_Now.dll, Thunder Networking Technologies,LTD& [ThunderAtOnce Class]
{01443AEC-0FD1-40fd-9C87-E93D} &C:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD& [VnetCookie Class]
{4E83D567-B-B1F0-A513B01DB89A} &C:\PROGRA~1\ChinaNet\VNETTR~1.DLL, & [Thunder Browser Helper]
{889D2FEB-98-1DD2C5261283} &C:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD& [SafeMon Class]
{B69F34DD-F0F9-42DC-9EDD-8D} &C:\Program Files\360safe\safemon\safemon.dll, & [启动迅雷5]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} &C:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD& [浩方对战平台]
{0A155D3C-68E2-4215-A47A-E800A446447A} &D:\***\HFGameOPT\GameClient.exe, 上海浩方在线信息技术有限公司& [信息检索(&R)]
{CC-41C8-B9BE-3C9C571A8263} &C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation& [启动WEB迅雷]
{962EFB8E--AC74-AAA4C759B9C6} &, N/A& [Messenger]
{FB5Fd2-BB9E-00C04F795683} &C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation& [WuYou.WySystem]
{6AAA-49E9-FD8641B} &D:\***\初级会计电算化考试练习系统\wyocxdll\WYSYSTEM.OCX, N/A& [CCtInf Class]
{6DBBDB0-944A-21C22BA121F4} &C:\WINDOWS\system32\BANKCE~1.DLL, & [WebThunder Class]
{03507A1A-E0C5-4404-AA26-2D} &, N/A& [EWA Control]
{18226BF8-DC0B-4D81-80E9-A41AE37BB73A} &C:\PROGRA~1\PPLive\SYNACA~2.OCX, Synacast& [WebThunder DapPlayer]
{2EEDA47E-8D5C-4d7e-B4B6-E16E} &C:\Program Files\Thunder Network\WebThunder\DownAndPlay\DapPlayer3.0.41.65.260.dll, ShenZhen Thunder Networking Technologies Ltd.& [Tabular Data Control]
{333C7BC4-460F-11D0-BC04-} &C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation& [Thunder Agent Class]
{-8FB2-4B3B-B29B-8B919B0EACCE} &C:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, Thunder Networking Technologies,LTD& [Shell Name Space]
{DE-11D1-B9F2-00A0C98BC547} &%SystemRoot%\system32\shdocvw.dll, N/A& [XMP Class]
{8-4C41-AACC-52D4D7845851} &C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work, & [XDRM]
{693571CB-54A3-4E90-9D52-EEAE} &C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work, & [Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} &C:\WINDOWS\system32\wmp.dll, Microsoft Corporation& [360SafeLive]
{C--D416CB8059E3} &C:\Program Files\360safe\live.dll, & [RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} &C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation& [SearchAssistantOC]
{B45FF030--85DE-00C04FA35C89} &%SystemRoot%\system32\shdocvw.dll, N/A& [RealPlayer G2 Control]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} &C:\Program Files\StormII\Codec\rmoc3260.dll, RealNetworks, Inc.& [Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-} &C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.& [XPPlayer Class]
{F3E70CEA-956E-49CC-B444-73AFE593AD7F} &C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\pplayer.dll_1_work, Thunder& [使用WEB迅雷下载]
&C:\Program Files\Thunder Network\WebThunder\GetUrl.htm, N/A& [使用WEB迅雷下载全部链接]
&C:\Program Files\Thunder Network\WebThunder\GetAllUrl.htm, N/A& [使用迅雷下载]
&C:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A& [使用迅雷下载全部链接]
&C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A& [导出到 Microsoft Office Excel(&X)]
&res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A& ================================== 正在运行的进程 [PID: 536 / SYSTEM][\SystemRoot\System32\smss.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)] [PID: 592 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)] [PID: 616 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\Ati2evxx.dll]
[ATI Technologies Inc., 6.14.10.4162]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)] [PID: 660 / SYSTEM][C:\WINDOWS\system32\services.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 672 / SYSTEM][C:\WINDOWS\system32\lsass.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 844 / SYSTEM][C:\WINDOWS\system32\svchost.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 912 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 976 / SYSTEM][C:\WINDOWS\System32\svchost.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 1016 / SYSTEM][D:\***\完美卸~1\PnpWMmng.exe]
[完美卸载, 5.1. ] [PID: 1064 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 1112 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 1372 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_gdr.9)]
[C:\WINDOWS\system32\mdimon.dll]
[Microsoft Corporation, 11.3.1897.0]
[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]
[Microsoft Corporation, 11.3.1897.0] [PID: 1600 / 左一][C:\WINDOWS\Explorer.EXE]
[Microsoft Corporation, 6.00. (xpsp_sp2_gdr.4)]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)]
[C:\WINDOWS\system32\nvcpl.dll]
[NVIDIA Corporation, 6.14.10.9371]
[C:\WINDOWS\system32\nvapi.dll]
[N/A, ]
[C:\WINDOWS\system32\nvshell.dll]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002]
[C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]
[Microsoft Corporation, 11.0.5510]
[C:\Program Files\WinRAR\rarext.dll]
[N/A, ]
[C:\Program Files\Network Associates\VirusScan\shext.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\RES04\ShExtRes.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\WINDOWS\system32\WmShell.dll]
[KillSoft, 1.0.0.1]
[C:\PROGRAM FILES\ACDSEE\picaview.dll]
[ACD Systems, Ltd., 2, 0, 0, 78]
[C:\PROGRAM FILES\ACDSEE\PlugIns\IDE_ACDStd.apl]
[ACD Systems, Ltd., 3,0,31,0]
[C:\WINDOWS\system32\MSVCR71.dll]
[Microsoft Corporation, 7.10.3052.4] [PID: 1668 / 左一][C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]
[Network Associates, Inc., 8.0.0.989]
[C:\Program Files\Network Associates\VirusScan\naiwmain.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\RES04\shstat.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\RES04\Product.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\RES04\McShield.dll]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Network Associates\VirusScan\RES04\Shutilrc.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\Graphics.dll]
[Network Associates, Inc., 8.0.0.912] [PID: 1676 / 左一][C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\nailog.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\naCmnLib.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\naXML.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\0804\UpdRes.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\0804\AgentRes.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll]
[Network Associates, Inc., 3.5.0.412] [PID: 1688 / 左一][C:\Program Files\Common Files\Network Associates\TalkBack\tbmon.exe]
[Network Associates, Inc., 2.0.275.0] [PID: 1728 / 左一][C:\WINDOWS\RTHDCPL.EXE]
[Realtek Semiconductor Corp., 2.1.1.4]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)] [PID: 1792 / 左一][C:\WINDOWS\system32\RUNDLL32.EXE]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\NvMcTray.dll]
[NVIDIA Corporation, 6.14.10.9371]
[C:\WINDOWS\system32\nvapi.dll]
[N/A, ] [PID: 1800 / 左一][C:\WINDOWS\system32\ctfmon.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002] [PID: 1856 / 左一][C:\Program Files\ChinaNet\VnetClient.exe]
[, , 16]
[C:\Program Files\ChinaNet\Communicate.dll]
[GDCN, , 1]
[C:\Program Files\ChinaNet\DialModule.dll]
[GDCN, , 14]
[C:\Program Files\ChinaNet\MFC42.DLL]
[Microsoft Corporation, 6.00.8665.0]
[C:\PROGRA~1\ChinaNet\CLIENT~1.DLL]
[, , 1]
[C:\PROGRA~1\ChinaNet\ADVERT~1.OCX]
[, , 15]
[C:\PROGRA~1\ChinaNet\BDSearch.ocx]
[gdcn, , 10]
[C:\PROGRA~1\ChinaNet\PageFram.ocx]
[Workgroup, , 17]
[C:\PROGRA~1\ChinaNet\ACCOUN~1.OCX]
[Workgroup, , 16]
[C:\PROGRA~1\ChinaNet\AccountMgr.dll]
[, , 14]
[C:\PROGRA~1\ChinaNet\PlugIns\PLUGIN~3\VNETPP~1.OCX]
[gdcn, , 1]
[C:\PROGRA~1\ChinaNet\PlugIns\PLUGIN~3\vnetlist.ocx]
[, 1, 8, 0, 20]
[C:\PROGRA~1\ChinaNet\PlugIns\PLUGIN~3\uilib.dll]
[Synacast, 1, 0, 0, 1]
[C:\PROGRA~1\ChinaNet\PlugIns\PLUGIN~3\common.dll]
[, 1, 0, 0, 1]
[C:\PROGRA~1\PPLive\ETS.DLL]
[, 1, 0, 0, 1]
[C:\PROGRA~1\ChinaNet\IcosBar.ocx]
[Workgroup, , 15]
[C:\PROGRA~1\ChinaNet\VnetSkin.ocx]
[GDDC, , 15]
[C:\PROGRA~1\ChinaNet\DialogStyle.dll]
[, 1, 0, 0, 1]
[C:\PROGRA~1\ChinaNet\Timer.ocx]
[, , 11]
[C:\PROGRA~1\ChinaNet\PLUGIN~2.OCX]
[, , 1]
[C:\PROGRA~1\ChinaNet\sign.dll]
[0, , 1]
[C:\Program Files\ChinaNet\NewMessage.dll]
[, , 18]
[C:\PROGRA~1\ChinaNet\PassCtrl.dll]
[GDCN, , 16]
[C:\WINDOWS\system32\wpcap.dll]
[Politecnico di Torino, 3, 0, 0, 18]
[C:\WINDOWS\system32\pthreadVC.dll]
[N/A, ]
[C:\WINDOWS\system32\packet.dll]
[Politecnico di Torino, 3, 0, 0, 18]
[C:\PROGRA~1\ChinaNet\PlugPush.dll]
[, , 20]
[C:\PROGRA~1\ChinaNet\ALLINT~1.DLL]
[, , 18]
[C:\PROGRA~1\ChinaNet\VNETLO~1.OCX]
[, , 17]
[C:\PROGRA~1\ChinaNet\StatNum.dll]
[, , 17]
[C:\PROGRA~1\ChinaNet\VNETON~1.OCX]
[GDCN, 1, 0, 0, 2]
[C:\Program Files\ChinaNet\AllFunctions.dll]
[GDCN, , 10]
[C:\Program Files\ChinaNet\VnetOptLog.dll]
[ , , 15]
[C:\PROGRA~1\ChinaNet\VNETSE~1.OCX]
[, , 11]
[C:\PROGRA~1\ChinaNet\Weather.ocx]
[Microsoft, , 15]
[C:\PROGRA~1\ChinaNet\VNETMI~1.OCX]
[Alex, 1, 0, 0, 1]
[C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx]
[Adobe Systems, Inc., 9,0,124,0]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002]
[C:\Program Files\ChinaNet\Base64.dll]
[N/A, ]
[C:\PROGRA~1\ChinaNet\zylcrypt.dll]
[, 1, 0, 0, 1]
[C:\Program Files\Network Associates\VirusScan\scriptproxy.dll]
[Network Associates, Inc., 8.0.0.992]
[C:\Program Files\Network Associates\VirusScan\mytilus.dll]
[Network Associates, Inc., 8.0.0.316]
[C:\Program Files\Network Associates\VirusScan\Res04\McShield.dll]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]
[McAfee, Inc., 5.2.00] [PID: 2004 / SYSTEM][C:\Program Files\StormII\stormliv.exe]
[北京暴风网际科技有限公司, 3, 8, 6, 20]
[C:\Program Files\StormII\MSVCP60.dll]
[Microsoft Corporation, 6.02.3104.0]
[C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL]
[Microsoft Corporation, 11.0.5510] [PID: 172 / SYSTEM][C:\Program Files\Network Associates\Common Framework\FrameworkService.exe]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\nailog.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\naXML.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\naCmnLib.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\applib.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\0804\AgentRes.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\Logging.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\InternetManager.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\naInet.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\Program Files\Network Associates\Common Framework\UserSpace.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\Management.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\cmalib.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\naPolicyManager.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\PsApi.dll]
[Microsoft Corporation, 4.00]
[C:\Program Files\Network Associates\Common Framework\ScriptSubSys.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\UpdateSubSys.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\Scheduler.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\Common Framework\TCSubSys.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 212 / SYSTEM][C:\Program Files\Network Associates\VirusScan\mcshield.exe]
[Network Associates, Inc., 8.0.0.309]
[C:\Program Files\Network Associates\VirusScan\Res04\McShield.DLL]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Network Associates\VirusScan\FTL.Dll]
[Network Associates, Inc., 8.0.0.135]
[C:\Program Files\Network Associates\VirusScan\naiann.dll]
[Network Associates, Inc., 8.0.0.308]
[C:\Program Files\Network Associates\VirusScan\mytilus.dll]
[Network Associates, Inc., 8.0.0.316]
[C:\Program Files\Network Associates\Common Framework\GenEvtInf.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\VirusScan\NaEventU.DLL]
[Network Associates, Inc., 8.0.0.342]
[C:\Program Files\Network Associates\VirusScan\Res04\naEvtRes.dll]
[Network Associates, Inc., 8.0.0.342]
[C:\Program Files\Network Associates\VirusScan\VSIDSvr.dll]
[Network Associates, Inc., 8.0.0.291]
[C:\Program Files\Common Files\Network Associates\Engine\MCSCAN32.DLL]
[McAfee, Inc., 5.2.00]
[C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\VirusScan\EntSrv.Dll]
[Network Associates, Inc, 8.0.0.448]
[C:\WINDOWS\system32\msxml4.dll]
[Microsoft Corporation, 4.20.9848.0] [PID: 244 / SYSTEM][C:\Program Files\Network Associates\VirusScan\vstskmgr.exe]
[Network Associates, Inc., 8.0.0.1002]
[C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]
[Network Associates, Inc., 8.0.0.989]
[C:\Program Files\Network Associates\VirusScan\naiwmain.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\naicondl.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\RES04\VsTskMgr.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\MIDUtil.Dll]
[McAfee, Inc., 8.0.0.152]
[C:\Program Files\Network Associates\VirusScan\bbcpl.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\coptcpl.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\RES04\Product.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\nvpcpl.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\ftcfg.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\mytilus.dll]
[Network Associates, Inc., 8.0.0.316]
[C:\Program Files\Network Associates\VirusScan\Res04\McShield.dll]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Network Associates\VirusScan\oascpl.dll]
[Network Associates, Inc., 8.0.0.912]
[C:\Program Files\Network Associates\VirusScan\vsodscpl.dll]
[Network Associates, Inc., 8.0.0.989]
[C:\Program Files\Network Associates\VirusScan\ftl.dll]
[Network Associates, Inc., 8.0.0.135]
[C:\Program Files\Network Associates\VirusScan\vsupdcpl.dll]
[Network Associates, Inc., 8.0.0.912] [PID: 296 / SYSTEM][C:\PROGRA~1\NETWOR~1\COMMON~1\naPrdMgr.exe]
[Network Associates, Inc., 3.5.0.412]
[C:\PROGRA~1\NETWOR~1\COMMON~1\nailog.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\PROGRA~1\NETWOR~1\COMMON~1\naCmnLib.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\PROGRA~1\NETWOR~1\COMMON~1\naXML.dll]
[Network Associates, Inc., 3.5.0.474]
[C:\PROGRA~1\NETWOR~1\COMMON~1\0804\AgentRes.dll]
[Network Associates, Inc., 3.5.0.412]
[C:\Program Files\Network Associates\VirusScan\VsPlugin.dll]
[Network Associates, Inc., 8.0.0.989]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 480 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe]
[NVIDIA Corporation, 6.14.10.9371]
[C:\WINDOWS\system32\nvapi.dll]
[N/A, ] [PID: 388 / SYSTEM][C:\WINDOWS\system32\svchost.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448] [PID: 1036 / SYSTEM][C:\WINDOWS\system32\Pen_Tablet.exe]
[Wacom Technology, Corp., 5.0.5-7] [PID: 1200 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe]
[Microsoft Corporation, 5.2. built by: dnsrv(bld4act)] [PID: 1832 / 左一][C:\WINDOWS\system32\WTablet\Pen_TabletUser.exe]
[Wacom Technology, Corp., 5.0.5-7] [PID: 780 / SYSTEM][C:\WINDOWS\system32\Pen_Tablet.exe]
[Wacom Technology, Corp., 5.0.5-7] [PID: 2472 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)] [PID: 3032 / 左一][C:\Program Files\360safe\safemon\360Tray.exe]
[奇虎网, 4, 1, 8, 1003]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002]
[C:\Program Files\360safe\safemon\SafeKrnl.dll]
[奇虎网, 4, 1, 8, 1001]
[C:\Program Files\360safe\AntiAdwa.dll]
[, 4, 1, 5, 1001]
[C:\Program Files\360safe\live.dll]
[, 1, 0, 1, 1027]
[C:\Program Files\360safe\Antieng.dll]
[, 4, 1, 8, 1001] [PID: 3464 / 左一][D:\***\IE\TheWorld 2.0\TheWorld.exe]
[Phoenix Studio, 2, 1, 2, 4]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002]
[C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL]
[Microsoft Corporation, 11.0.5510]
[C:\Program Files\Network Associates\VirusScan\scriptproxy.dll]
[Network Associates, Inc., 8.0.0.992]
[C:\Program Files\Network Associates\VirusScan\mytilus.dll]
[Network Associates, Inc., 8.0.0.316]
[C:\Program Files\Network Associates\VirusScan\Res04\McShield.dll]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]
[McAfee, Inc., 5.2.00]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)]
[C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx]
[Adobe Systems, Inc., 9,0,124,0]
[C:\WINDOWS\system32\WINWB86.IME]
[Microsoft Corporation, 4.00.950] [PID: 2948 / SYSTEM][C:\Program Files\Kingsoft\KAC\Service\kaccore.exe]
[Kingsoft Corporation, ,119]
[C:\Program Files\Kingsoft\KAC\Service\corehelper.dll]
[Kingsoft Corporation, ,119] [PID: 3756 / 左一][C:\WINDOWS\system32\conime.exe]
[Microsoft Corporation, 5.1. (xpsp_sp2_rtm.8)]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002] [PID: 720 / 左一][C:\Program Files\360safe\360Safe.exe]
[奇虎网, 4, 1, 8, 1006]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002]
[C:\Program Files\360safe\AntiAdwa.dll]
[, 4, 1, 5, 1001]
[C:\Program Files\360safe\AntiEng.dll]
[, 4, 1, 8, 1001]
[C:\Program Files\360safe\LeakCheck.dll]
[, 4, 1, 8, 1001]
[C:\Program Files\360safe\CleanHis.dll]
[奇虎网, 4, 0, 0, 1001]
[C:\Program Files\Network Associates\VirusScan\scriptproxy.dll]
[Network Associates, Inc., 8.0.0.992]
[C:\Program Files\Network Associates\VirusScan\mytilus.dll]
[Network Associates, Inc., 8.0.0.316]
[C:\Program Files\Network Associates\VirusScan\Res04\McShield.dll]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]
[McAfee, Inc., 5.2.00]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)] [PID: 3700 / 左一][C:\Program Files\Internet Explorer\iexplore.exe]
[Microsoft Corporation, 6.00. (xpsp_sp2_rtm.8)]
[C:\WINDOWS\system32\EntApi.dll]
[Network Associates, Inc, 8.0.0.448]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002]
[C:\Program Files\Microsoft Office\OFFICE11\msohev.dll]
[Microsoft Corporation, 11.0.5510]
[C:\Program Files\Network Associates\VirusScan\scriptproxy.dll]
[Network Associates, Inc., 8.0.0.992]
[C:\Program Files\Network Associates\VirusScan\mytilus.dll]
[Network Associates, Inc., 8.0.0.316]
[C:\Program Files\Network Associates\VirusScan\Res04\McShield.dll]
[Network Associates, Inc., 8.0.0.251]
[C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll]
[McAfee, Inc., 5.2.00]
[C:\WINDOWS\system32\msacm32.drv]
[Microsoft Corporation, 5.1.2600.0 (xpclient.8)]
[C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx]
[Adobe Systems, Inc., 9,0,124,0]
[C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL]
[Microsoft Corporation, 11.0.5510] [PID: 2380 / 左一][F:\新任务\其它\sreng2\SREng.EXE]
[Smallfrogs Studio, 2.5.16.900]
[C:\Program Files\360safe\safemon\safemon.dll]
[, 4, 1, 5, 1002] ================================== 文件关联 .TXT
Error. [C:\WINDOWS\notepad.exe %1] .EXE
OK. [&%1& %*] .COM
OK. [&%1& %*] .PIF
OK. [&%1& %*] .REG
OK. [regedit.exe &%1&] .BAT
OK. [&%1& %*] .SCR
OK. [&%1& /S] .CHM
Error. [&hh.exe& %1] .HLP
OK. [%SystemRoot%\System32\winhlp32.exe %1] .INI
Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1] .INF
OK. [%SystemRoot%\System32\NOTEPAD.EXE %1] .VBS
OK. [%SystemRoot%\System32\WScript.exe &%1& %*] .JS
OK. [%SystemRoot%\System32\WScript.exe &%1& %*] .LNK
OK. [{0-}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1
localhost 127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
up.duba.net 127.0.0.1
127.0.0.1
127.0.0.1
shadu.duba.net 127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
127.0.0.1
127.0.0.1
.cn 127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
.cn 127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
.cn 127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
127.0.0.1
dnl-cn1. 127.0.0.1
dnl-cn2. 127.0.0.1
dnl-cn3. 127.0.0.1
dnl-cn4. 127.0.0.1
dnl-cn5. 127.0.0.1
dnl-cn6. 127.0.0.1
dnl-cn7. 127.0.0.1
dnl-cn8. 127.0.0.1
dnl-cn9. 127.0.0.1
dnl-cn10. 127.0.0.1
dnl-cn11. 127.0.0.1
dnl-cn12. 127.0.0.1
dnl-cn13. 127.0.0.1
dnl-cn14. 127.0.0.1
dnl-cn15. 127.0.0.1
dnl-cd1. 127.0.0.1
dnl-cd2. 127.0.0.1
dnl-cd3. 127.0.0.1
dnl-cd4. 127.0.0.1
dnl-cd5. 127.0.0.1
dnl-cd6. 127.0.0.1
dnl-cd7. 127.0.0.1
dnl-cd8. 127.0.0.1
dnl-cd9. 127.0.0.1
dnl-cd10. 127.0.0.1
dnl-cd11. 127.0.0.1
dnl-cd12. 127.0.0.1
dnl-cd13. 127.0.0.1
dnl-cd14. 127.0.0.1
dnl-eu1. 127.0.0.1
dnl-eu2. 127.0.0.1
dnl-eu3. 127.0.0.1
dnl-eu4. 127.0.0.1
dnl-eu5. 127.0.0.1
dnl-eu6. 127.0.0.1
dnl-eu7. 127.0.0.1
dnl-eu8. 127.0.0.1
dnl-eu9. 127.0.0.1
dnl-eu10. 127.0.0.1
dnl-eu11. 127.0.0.1
dnl-eu12. 127.0.0.1
dnl-eu13. 127.0.0.1
dnl-eu14. 127.0.0.1
dnl-eu15. 127.0.0.1
dnl-us1. 127.0.0.1
dnl-us2. 127.0.0.1
dnl-us3. 127.0.0.1
dnl-us4. 127.0.0.1
dnl-us5. 127.0.0.1
dnl-us6. 127.0.0.1
dnl-us7. 127.0.0.1
dnl-us8. 127.0.0.1
dnl-us9. 127.0.0.1
dnl-us10. 127.0.0.1
dnl-us11. 127.0.0.1
dnl-us12. 127.0.0.1
dnl-us13. 127.0.0.1
dnl-us14. 127.0.0.1
dnl-us15. 127.0.0.1
dnl-ru1. 127.0.0.1
dnl-ru2. 127.0.0.1
dnl-ru3. 127.0.0.1
dnl-ru4. 127.0.0.1
dnl-ru5. 127.0.0.1
dnl-ru6. 127.0.0.1
dnl-ru7. 127.0.0.1
dnl-ru8. 127.0.0.1
dnl-ru9. 127.0.0.1
dnl-ru10. 127.0.0.1
dnl-ru11. 127.0.0.1
dnl-ru12. 127.0.0.1
dnl-ru13. 127.0.0.1
dnl-ru14. 127.0.0.1
dnl-ru15. 127.0.0.1
dnl-jp1. 127.0.0.1
dnl-jp2. 127.0.0.1
dnl-jp3. 127.0.0.1
dnl-jp4. 127.0.0.1
dnl-jp5. 127.0.0.1
dnl-jp6. 127.0.0.1
dnl-jp7. 127.0.0.1
dnl-jp8. 127.0.0.1
dnl-jp9. 127.0.0.1
dnl-jp10. 127.0.0.1
dnl-jp11. 127.0.0.1
dnl-jp12. 127.0.0.1
dnl-jp13. 127.0.0.1
dnl-jp14. 127.0.0.1
dnl-jp15. 127.0.0.1
dnl-kr1. 127.0.0.1
dnl-kr2. 127.0.0.1
dnl-kr3. 127.0.0.1
dnl-kr4. 127.0.0.1
dnl-kr5. 127.0.0.1
dnl-kr6. 127.0.0.1
dnl-kr7. 127.0.0.1
dnl-kr8. 127.0.0.1
dnl-kr9. 127.0.0.1
dnl-kr10. 127.0.0.1
dnl-kr11. 127.0.0.1
dnl-kr12. 127.0.0.1
dnl-kr13. 127.0.0.1
dnl-kr14. 127.0.0.1
dnl-kr15. ================================== 进程特权扫描 特殊特权被允许: SeLoadDriverPrivilege [PID = 1856, C:\PROGRAM FILES\CHINANET\VNETCLIENT.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 244, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\VSTSKMGR.EXE] 特殊特权被允许: SeLoadDriverPrivilege [PID = 3464, D:\***\IE\THEWORLD 2.0\THEWORLD.EXE] ================================== API HOOK N/A ================================== 隐藏进程 N/A ================================== [/CODE]
不仅360相关网页无法显示 同样无法显示的还有 卡巴 瑞星 等相关的杀毒网
进安全模式启动360先试试看。如果不行的话就重装好了。
请遵守言论规则,不得违反国家法律法规回复(Ctrl+Enter)