风云小站 » 『 求助专区 』 » 不知道怎么的,刚刚装好的系统,老是有马来哦~~~
本页主题: 不知道怎么的,刚刚装好的系统,老是有马来哦~~~ 打印 | 加为IE收藏 | 复制链接 | 收藏主题 | 上一主题 | 下一主题

□◆.|鉺釘?
级别: 新手上路


精华: 0
发帖: 35
威望: 67 点
风云币: 4340 元
专家分: 0 分
在线时间:12(小时)
注册时间:2007-02-21
最后登录:2008-04-14

 不知道怎么的,刚刚装好的系统,老是有马来哦~~~

管理提醒:
本帖被 cai504 执行锁定操作(2007-05-02)




各位高手:
非常感谢您留心我这份系统诊断报告,小菜鸟十万火急等待您的帮助!
该诊断报告由360安全卫士提供 http://www.360safe.com
诊断时间: 2005-04-30 12:15:59
诊断平台: Microsoft Windows Server 2003 Service Pack 1
IE版本: Internet Explorer V6.0.3790.1830 Build:63790.1830
计算机物理内存:247MB - 当前可用内存:67MB

100 - 未知 - Process: KWatch.EXE [Kingsoft Antivirus KWatch Service] - C:\KAV2007\KWatch.EXE
100 - 未知 - Process: KPFWSvc.EXE [Kingsoft Firewall Service] - C:\KAV2007\KPfwSvc.EXE
100 - 未知 - Process: KAVStart.EXE [Kingsoft Security Center] - C:\KAV2007\KAVStart.exe
100 - 未知 - Process: Trojanwall.exe [Windows木馬清道夫-木馬防火墙] - D:\Program Files\Windows木马清道夫\Trojanwall.exe
100 - 未知 - Process: QQ.exe [QQ] - D:\Program Files\Tencent\QQ\QQ.exe
100 - 未知 - Process: TIMPlatform.exe [TIMPlatform] - d:\Program Files\Tencent\QQ\TIMPlatform.exe
100 - 未知 - Process: Maxthon.exe [Maxthon Web Browser] - D:\Program Files\Maxthon\Maxthon.exe
100 - 未知 - Process: Thunder5.exe [Thunder] - D:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.baidu.com/
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=http://www.google.com
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL=http://www.tomatolei.com
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL=http://www.google.com/ie
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch=http://client.jogo.cn/cdn/browser/customsearch/customsearch-cn.html
R0 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant=http://client.jogo.cn/cdn/browser/sidesearch/sidesearch-cn.html
R1 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=http://www.google.com/ie
R1 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant=http://www.google.com/ie
R1 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Use Search Asst=no
O1 - 未知 - Host: 127.0.0.1 popwin.9983.com
O1 - 未知 - Host: 61.152.169.246 www.npjxjy.com
O1 - 未知 - Host: 61.152.169.246 quxiuu.com
O1 - 未知 - Host: 61.152.169.246 www.23b.cn
O1 - 未知 - Host: 61.152.169.246 www.baidulink.com
O1 - 未知 - Host: 61.152.169.246 www.ookkw.com
O1 - 未知 - Host: 61.152.169.246 www.wu7x.cn
O1 - 未知 - Host: 61.152.169.246 d.qbbd.com
O1 - 未知 - Host: 61.152.169.246 w.qbbd.com
O1 - 未知 - Host: 61.152.169.246 web.77276.com
O1 - 未知 - Host: 61.152.169.246 www.77276.com
O1 - 未知 - Host: 61.152.169.246 www.npjxjy.com
O1 - 未知 - Host: 61.152.169.246 www.baidulink.com
O1 - 未知 - Host: 61.152.169.246 www.ookkw.com
O1 - 未知 - Host: 61.152.169.246 www.wu7x.cn
O1 - 未知 - Host: 61.152.169.246 www.wwwlm.net
O1 - 未知 - Host: 61.152.169.246 dm1.yiall.com
O1 - 未知 - Host: 61.152.169.246 www.my6688.cn
O1 - 未知 - Host: 61.152.169.246 www.union123.com
O1 - 未知 - Host: 61.152.169.246 www.ktan.cn
O1 - 未知 - Host: 61.152.169.246 www.2t2t.cn
O1 - 未知 - Host: 61.152.169.246 www.cq530.com
O1 - 未知 - Host: 61.152.169.246 www.365tc.com
O1 - 未知 - Host: 61.152.169.246 ad.qucha.net
O1 - 未知 - Host: 61.152.169.246 www.tan8.cn
O1 - 未知 - Host: 61.152.169.246 www.itjj.net
O1 - 未知 - Host: 61.152.169.246 www.start188.com
O1 - 未知 - Host: 61.152.169.246 www.at58.cn
O1 - 未知 - Host: 61.152.169.246 union.yxad.com
O1 - 未知 - Host: 61.152.169.246 www.iptan.com
O1 - 未知 - Host: 61.152.169.246 www.ip2008.net
O1 - 未知 - Host: 61.152.169.246 www.yqif.com
O1 - 未知 - Host: 61.152.169.246 www.2t2t.cn
O1 - 未知 - Host: 61.152.169.246 www.688ip.com
O1 - 未知 - Host: 61.152.169.246 www.17tc.com
O1 - 未知 - Host: 61.152.169.246 www1.6tan.com
O1 - 未知 - Host: 61.152.169.246 www2.6tan.com
O1 - 未知 - Host: 61.152.169.246 www.6tan.com
O1 - 未知 - Host: 61.152.169.246 www.zztan.com
O1 - 未知 - Host: 61.152.169.246 www.5tanip.com
O1 - 未知 - Host: 61.152.169.246 www.16tc.com
O1 - 未知 - Host: 61.152.169.246 www.163se.net
O1 - 未知 - Host: 61.152.169.246 www.168080.com
O1 - 未知 - Host: 61.152.169.246 www.baidu8.org
O1 - 未知 - Host: 61.152.169.246 www.nze21.com
O1 - 未知 - Host: 61.152.169.246 www.437799.com
O1 - 未知 - Host: 61.152.169.246 www.168080.com
O1 - 未知 - Host: 61.152.169.246 new2.jixie123.cn
O1 - 未知 - Host: 61.152.169.246 www.18dmm.com
O1 - 未知 - Host: 61.152.169.246 www.souxse.cn
O1 - 未知 - Host: 61.152.169.246 x.vvcyin.com
O1 - 未知 - Host: 61.152.169.246 dm1.yiall.com
O1 - 未知 - Host: 61.152.169.246 www.168080.com
O1 - 未知 - Host: 61.152.169.246 www.nze21.com
O1 - 未知 - Host: 61.152.169.246 www.puma163.com
O1 - 未知 - Host: 61.152.169.246 www.138505.com
O1 - 未知 - Host: 61.152.169.246 www.hyap98.com
O1 - 未知 - Host: 61.152.169.246 x.vvcyin.com
O1 - 未知 - Host: 61.152.169.246 www.puma163.com
O1 - 未知 - Host: 61.152.169.246 www.51liulan.cn
O1 - 未知 - Host: 61.152.169.246 s.gcuj.com
O1 - 未知 - Host: 61.152.169.246 long.down988.cn
O1 - 未知 - Host: 61.152.169.246 0.82211.net
O1 - 未知 - Host: 61.152.169.246 x.vvcyin.com
O1 - 未知 - Host: 61.152.169.246 w.vvcyin.com
O1 - 未知 - Host: 61.152.169.246 cc.wzxqy.com
O1 - 未知 - Host: 61.152.169.246 008.cn
O1 - 未知 - Host: 61.152.169.246 ultimate-best-hgh.0my.net
O1 - 未知 - Host: 61.152.169.246 www.139500.com
O1 - 未知 - Host: 61.152.169.246 www.1yin.net
O1 - 未知 - Host: 61.152.169.246 www.37021.com
O1 - 未知 - Host: 61.152.169.246 www.47555.net
O1 - 未知 - Host: 61.152.169.246 www.511ring.com
O1 - 未知 - Host: 61.152.169.246 me.5e163.com
O1 - 未知 - Host: 61.152.169.246 www.777888.com
O1 - 未知 - Host: 61.152.169.246 www.77ttt.com
O1 - 未知 - Host: 61.152.169.246 www.9p.cn
O1 - 未知 - Host: 61.152.169.246 abcdesign.ru
O1 - 未知 - Host: 61.152.169.246 gutemine.wu-wien.ac.at
O1 - 未知 - Host: 61.152.169.246 math.kobe-u.ac.jp
O1 - 未知 - Host: 61.152.169.246 www.aifind.info
O1 - 未知 - Host: 61.152.169.246 www.allyes.com
O1 - 未知 - Host: 61.152.169.246 www.aogo.net
O1 - 未知 - Host: 61.152.169.246 baltnet.ru
O1 - 未知 - Host: 61.152.169.246 quotes.barchart.com
O1 - 未知 - Host: 61.152.169.246 free.bestialityhost.com
O1 - 未知 - Host: 61.152.169.246 cctv1.net
O1 - 未知 - Host: 61.152.169.246 cctv8.net
O1 - 未知 - Host: 61.152.169.246 www.cctv8.net
O1 - 未知 - Host: 61.152.169.246 ciachoo.pl
O1 - 未知 - Host: 61.152.169.246 www.play.cn.gs
O1 - 未知 - Host: 61.152.169.246 www.cnqb.net
O1 - 未知 - Host: 61.152.169.246 www.feixue.net
O1 - 未知 - Host: 61.152.169.246 www.xiliao.com.cn
O1 - 未知 - Host: 61.152.169.246 alexey.pioneers.com.ru
O1 - 未知 - Host: 61.152.169.246 www.coolcdrom.com
O1 - 未知 - Host: 61.152.169.246 www.coolseach.com
O1 - 未知 - Host: 61.152.169.246 puldk490gj.da.ru
O1 - 未知 - Host: 61.152.169.246 dicto.ru
O1 - 未知 - Host: 61.152.169.246 www.dj3344.com
O1 - 未知 - Host: 61.152.169.246 www.donttrip.org
O1 - 未知 - Host: 61.152.169.246 www.ehomeday.com
O1 - 未知 - Host: 61.152.169.246 elemental.ru
O1 - 未知 - Host: 61.152.169.246 errorguard.com
O1 - 未知 - Host: 61.152.169.246 friendlygreeting.com
O1 - 未知 - Host: 61.152.169.246 zhp.gdynia.pl
O1 - 未知 - Host: 61.152.169.246 www.gg888.net
O1 - 未知 - Host: 61.152.169.246 gin.ru
O1 - 未知 - Host: 61.152.169.246 www.girlchinese.com
O1 - 未知 - Host: 61.152.169.246 glass-master.ru
O1 - 未知 - Host: 61.152.169.246 photo.gornet.ru
O1 - 未知 - Host: 61.152.169.246 relay.great.ru
O1 - 未知 - Host: 61.152.169.246 hack-gegen-rechts.com
O1 - 未知 - Host: 61.152.169.246 hgrstrailer.com
O1 - 未知 - Host: 61.152.169.246 www.homepage.com
O1 - 未知 - Host: 61.152.169.246 hotbar.com
O1 - 未知 - Host: 61.152.169.246 intellect.lvc
O1 - 未知 - Host: 61.152.169.246 interfoodtd.ru
O1 - 未知 - Host: 61.152.169.246 jewishgen.org
O1 - 未知 - Host: 61.152.169.246 www.jixian.net
O1 - 未知 - Host: 61.152.169.246 k2kapital.com
O1 - 未知 - Host: 61.152.169.246 security.kolla.de
O1 - 未知 - Host: 61.152.169.246 www.kuliao.com
O1 - 未知 - Host: 61.152.169.246 laugh-mail.net
O1 - 未知 - Host: 61.152.169.246 7b.com.cn
O1 - 未知 - Host: 61.152.169.246 9505.com
O1 - 未知 - Host: 61.152.169.246 www.piaoxue.com
O1 - 未知 - Host: 61.152.169.246 marketscore.com
O1 - 未知 - Host: 61.152.169.246 www.mir0.com
O1 - 未知 - Host: 61.152.169.246 momentum.ru
O1 - 未知 - Host: 61.152.169.246 www.mtv51.com
O1 - 未知 - Host: 61.152.169.246 www.mydj2005.com
O1 - 未知 - Host: 61.152.169.246 nefkom.net
O1 - 未知 - Host: 61.152.169.246 no-abi2003.de
O1 - 未知 - Host: 61.152.169.246 tdi-router.opola.pl
O1 - 未知 - Host: 61.152.169.246 packages.debian.or.jp
O1 - 未知 - Host: 61.152.169.246 perfectgirls.net
O1 - 未知 - Host: 61.152.169.246 peterstar.ru
O1 - 未知 - Host: 61.152.169.246 pgipearls.com
O1 - 未知 - Host: 61.152.169.246 phg.pl
O1 - 未知 - Host: 61.152.169.246 vip.pnet.pl
O1 - 未知 - Host: 61.152.169.246 sec.polbox.pl
O1 - 未知 - Host: 61.152.169.246 polobeer.de
O1 - 未知 - Host: 61.152.169.246 porno-mania.net
O1 - 未知 - Host: 61.152.169.246 home.profootball.ru
O1 - 未知 - Host: 61.152.169.246 qianbai.com
O1 - 未知 - Host: 61.152.169.246 ad.qingyule.com
O1 - 未知 - Host: 61.152.169.246 www.qq168.net
O1 - 未知 - Host: 61.152.169.246 www.qq3344.com
O1 - 未知 - Host: 61.152.169.246 www.qq92.com
O1 - 未知 - Host: 61.152.169.246 www.qqwz.com
O1 - 未知 - Host: 61.152.169.246 www.qu123.com
O1 - 未知 - Host: 61.152.169.246 republika.pl
O1 - 未知 - Host: 61.152.169.246 www.richfind.com
O1 - 未知 - Host: 61.152.169.246 rollenspielzirkel.de
O1 - 未知 - Host: 61.152.169.246 safer-networking.org
O1 - 未知 - Host: 61.152.169.246 sdsauto.ru
O1 - 未知 - Host: 61.152.169.246 www.searchpage.cc
O1 - 未知 - Host: 61.152.169.246 www.seekeasysoft.net
O1 - 未知 - Host: 61.152.169.246 shadkhan.ru
O1 - 未知 - Host: 61.152.169.246 slavarik.ru
O1 - 未知 - Host: 61.152.169.246 sovea.de
O1 - 未知 - Host: 61.152.169.246 spybot.info
O1 - 未知 - Host: 61.152.169.246 www.start-page.info
O1 - 未知 - Host: 61.152.169.246 lars-s.privat.t-online.de
O1 - 未知 - Host: 61.152.169.246 u.t2cn.com
O1 - 未知 - Host: 61.152.169.246 www.7939.com
O1 - 未知 - Host: 61.152.169.246 www.4199.com
O1 - 未知 - Host: 61.152.169.246 www.3448.com
O1 - 未知 - Host: 61.152.169.246 www.6781.com
O1 - 未知 - Host: 61.152.169.246 it.trendmicro-europe.com
O1 - 未知 - Host: 61.152.169.246 trendmicro.it
O1 - 未知 - Host: 61.152.169.246 truefriends.net
O1 - 未知 - Host: 61.152.169.246 www.tthao.com
O1 - 未知 - Host: 61.152.169.246 www.ttrx.net
O1 - 未知 - Host: 61.152.169.246 tuhart.net
O1 - 未知 - Host: 61.152.169.246 www.unionsky.cn
O1 - 未知 - Host: 61.152.169.246 www.unionsky.com
O1 - 未知 - Host: 61.152.169.246 www.unionsky.net
O1 - 未知 - Host: 61.152.169.246 vconsole.net
O1 - 未知 - Host: 61.152.169.246 virtumonde.com
O1 - 未知 - Host: 61.152.169.246 gamma.vyborg.ru
O1 - 未知 - Host: 61.152.169.246 financial.washingtonpost.com
O1 - 未知 - Host: 61.152.169.246 webpark.pl
O1 - 未知 - Host: 61.152.169.246 wishken.com
O1 - 未知 - Host: 61.152.169.246 www.yeapple.com
O1 - 未知 - Host: 61.152.169.246 www.yibinren.com
O1 - 未知 - Host: 61.152.169.246 www.youmiss.com
O1 - 未知 - Host: 61.152.169.246 www.yysky.net
O1 - 未知 - Host: 61.152.169.246 zelnet.ru
O1 - 未知 - Host: 61.152.169.246 www.zhengdian.com
O1 - 未知 - Host: 61.152.169.246 abc.265.com
O1 - 未知 - Host: 61.152.169.246 555.265.com
O1 - 未知 - Host: 61.152.169.246 www.baidu345.com
O1 - 未知 - Host: 61.152.169.246 www.37ss.com
O1 - 未知 - Host: 61.152.169.246 my123.com
O1 - 未知 - Host: 61.152.169.246 mmm.caifu18.net
O1 - 未知 - Host: 61.152.169.246 www.5117music.com
O1 - 未知 - Host: 61.152.169.246 www.union123.com
O1 - 未知 - Host: 61.152.169.246 www.wu7x.cn
O1 - 未知 - Host: 61.152.169.246 www.97725.com
O1 - 未知 - Host: 61.152.169.246 down.97725.com
O1 - 未知 - Host: 61.152.169.246 ip.315hack.com
O1 - 未知 - Host: 61.152.169.246 ip.54liumang.com
O1 - 未知 - Host: 61.152.169.246 www.41ip.com
O1 - 未知 - Host: 61.152.169.246 xulao.com
O1 - 未知 - Host: 61.152.169.246 www.heixiou.com
O1 - 未知 - Host: 61.152.169.246 www.9cyy.com
O1 - 未知 - Host: 61.152.169.246 www.hunll.com
O1 - 未知 - Host: 61.152.169.246 www.down.hunll.com
O1 - 未知 - Host: 61.152.169.246 do.77276.com
O1 - 未知 - Host: 61.152.169.246 www.baidulink.com
O1 - 未知 - Host: 61.152.169.246 adnx.yygou.cn
O1 - 未知 - Host: 61.152.169.246 222.73.220.45
O1 - 未知 - Host: 61.152.169.246 www.f5game.com
O1 - 未知 - Host: 61.152.169.246 www.guazhan.cn
O1 - 未知 - Host: 61.152.169.246 wm,103715.com
O1 - 未知 - Host: 61.152.169.246 www.my6688.cn
O1 - 未知 - Host: 61.152.169.246 i.96981.com
O1 - 未知 - Host: 61.152.169.246 d.77276.com
O1 - 未知 - Host: 61.152.169.246 www1.cw988.cn
O1 - 未知 - Host: 61.152.169.246 cool.47555.com
O1 - 未知 - Host: 61.152.169.246 www.asdwc.com
O1 - 未知 - Host: 61.152.169.246 55880.cn
O1 - 未知 - Host: 61.152.169.246 cc.wzxqy.com
O1 - 未知 - Host: 61.152.169.246 www.54699.com
O1 - 未知 - Host: 61.152.169.246 ceoww.com
O1 - 未知 - Host: 61.152.169.246 boolom.com
O1 - 未知 - Host: 61.152.169.246 www.boolom.com
O1 - 未知 - Host: 61.152.169.246 adult-novel.cn
O1 - 未知 - Host: 61.152.169.246 ll.chinasese.net
O1 - 未知 - Host: 61.152.169.246 www.tellumore.com
O1 - 未知 - Host: 61.152.169.246 www.o1wg.com
O1 - 未知 - Host: 61.152.169.246 www.qq756.com
O1 - 未知 - Host: 61.152.169.246 ll.chinasese.net
O2 - 未知 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll
O2 - 未知 - BHO: (浏览器辅助对象(BHO)) - [无效的CLSID:{0D42E1BD-09DD-4873-A826-9C7E793EB7B6}] - {0D42E1BD-09DD-4873-A826-9C7E793EB7B6} -
O2 - 未知 - BHO: (Thunder Browser Helper) - [XunLeiBHO] - {55302804-482E-470E-8A57-6795A1487F90} - D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
O8 - 未知 - Extra context menu item: 上传到QQ网络硬盘 - D:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载 - D:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - D:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - 未知 - Extra context menu item: 金山毒霸反钓鱼... - C:\KAV2007\KAF\ShowSet.htm
O14 - 未知 - IERESET.INF: START_PAGE_URL=http://www.tomatolei.com
O21 - 未知 - Protocol Icons: HKCR\http\shell\open\command - "D:\Program Files\Maxthon\Maxthon.exe" "%1"
O21 - 未知 - Protocol Icons: HKCR\ftp\shell\open\command - "D:\Program Files\Maxthon\Maxthon.exe" "%1"
O21 - 未知 - Protocol Icons: HKCR\https\shell\open\command - "D:\Program Files\Maxthon\Maxthon.exe" "%1"
O21 - 未知 - Protocol Icons: HKCR\htmlfile\shell\open\command - "D:\Program Files\Maxthon\Maxthon.exe" "%1"
O22 - 未知 - Filename Extention: .hlp - winhlp32.exe %1
O23 - 未知 - Service: 8FF3DFBA [8FF3DFBA] - C:\WINDOWS\system32\8FF3DFBA.EXE -d - (not running)
O23 - 未知 - Service: DNS Clisent [为此计算机解析和缓冲域名系统 (DNS) 名称。.] - C:\SNOWTEST\System32\RaV.exe - (not running)
O23 - 未知 - Service: gusvc [Google Updater Service] - "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" - (not running)
O23 - 未知 - Service: KPfwSvc [金山网镖网络实时监控服务程序] - "C:\KAV2007\KPfwSvc.EXE" - (running)
O23 - 未知 - Service: ManagementServer [ManagementServer ] - C:\Program Files\Common Files\Common - (error)
O23 - 未知 - Service: TrkSvr [启用同域内的分布式链接跟踪客户端服务,以便在同域内提供更高的可靠性和有效维护。如果此服务被禁用,任何依赖于它的服务将无法启用。] - C:\WINDOWS\system32\trksvr.dll - (not running)
O23 - 未知 - Service: BUZOR [Intranet Messenger] - - (not running)
O23 - 未知 - Service: vqfd [Windows vqfd RunThem] - - (not running)
O23 - 未知 - Service: Indtry [网络通讯路由服务,提供临时的网络路由和服务地址的快速解析功能。无法终止此服务。] - C:\WINDOWS\system32\offco.dll - (not running)
O23 - 未知 - Service: fast [Fast Client] - - (not running)

=======================================

100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量,ms-dos驱动名称类似lpt1以及com,调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统,用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序,用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: msdtc.exe [microsoft distributed transaction coordinator控制多个服务器的传输,被安装在microsoft personal web server和microsoft sql server。] - C:\WINDOWS\system32\msdtc.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k regsvc
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k termsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k tapisrv
100 - 安全 - Process: 360tray.exe [360安全卫士实时监控程序。] - C:\Program Files\360safe\safemon\360Tray.exe
100 - 安全 - Process: soundman.exe [一个软声卡控制台软件。] - C:\WINDOWS\SOUNDMAN.EXE
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: wmiprvse.exe [wmi 提供程序 (wmi provider) 在 wmi 和操作系统、应用程序以及其他系统的组件之间充当中介.此进程为合法的系统进程。] - C:\WINDOWS\system32\wbem\wmiprvse.exe
100 - 安全 - Process: KMailMon.EXE [金山毒霸杀毒软件的相关程序。] - C:\KAV2007\KMailMon.EXE
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell,包括开始菜单、任务栏,桌面和文件管理。] - C:\WINDOWS\explorer.exe
100 - 安全 - Process: conime.exe [console ime ime输入法控制台软件。] - C:\WINDOWS\system32\conime.exe
100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] - C:\Program Files\360safe\360Safe.exe
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default)=http://www.google.com/search?q=%s
O2 - 安全 - BHO: (CBrowseStakeout Class) - [金山毒霸2007反钓鱼插件。] - {55302805-482E-470E-8A57-6795A1487F90} - C:\KAV2007\KAVAFish.DLL
O2 - 安全 - BHO: (Google Toolbar Helper) - [Google搜索工具条。] - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - 安全 - Toolbar: (&Google) - [Google IE 客户端工具栏。] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - 安全 - HKLM\..\Run: [360Safetray] [360safe实时保护功能模块。] C:\Program Files\360safe\safemon\360Tray.exe /start
O4 - 安全 - HKLM\..\Run: [SoundMan] [Realtek声卡相关程序。] SOUNDMAN.EXE
O4 - 安全 - HKLM\..\Run: [IMJPMIG8.1] [微软Microsoft输入法编辑器程序。] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 安全 - HKLM\..\Run: [IMEKRMIG6.1] [一种输入法] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - 安全 - HKLM\..\Run: [KavStart] [金山出品的金山毒霸杀毒软件。] "C:\KAV2007\KAVStart.exe" -startup
O4 - 安全 - HKLM\..\Run: [VStart5.0] [一款音速启动程序。] G:\bog\暗组2007\Anzu.exe
O4 - 安全 - HKLM\..\Run: [Windows木马防火墙] [windows木马防火墙软件。] D:\Program Files\Windows木马清道夫\Trojanwall.exe
O23 - 安全 - Service: KWatchSvc [金山毒霸反病毒软件相关程序。] - C:\KAV2007\KWatch.EXE - (running)
O23 - 安全 - Service: NtFrs [在多个服务器间维护文件目录内容的文件同步。] - C:\WINDOWS\system32\ntfrs.exe - (not running)

=======================================

O40 - csrss.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - winlogon.exe - Microsoft Corporation - C:\WINDOWS\system32\8FF3DFBA.DLL - - b056dc054a2ea43800ad43373d919c87
O40 - winlogon.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - services.exe - Microsoft Corporation - C:\WINDOWS\system32\8FF3DFBA.DLL - - b056dc054a2ea43800ad43373d919c87
O40 - services.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - lsass.exe - Microsoft Corporation - C:\WINDOWS\system32\8FF3DFBA.DLL - - b056dc054a2ea43800ad43373d919c87
O40 - lsass.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Microsoft Corporation - C:\WINDOWS\system32\8FF3DFBA.DLL - - b056dc054a2ea43800ad43373d919c87
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Microsoft Corporation - C:\WINDOWS\system32\8FF3DFBA.DLL - - b056dc054a2ea43800ad43373d919c87
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - svchost.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - explorer.exe - Fygsoft and Microsoft - D:\Program Files\Windows木马清道夫\ProcessHook.dll - Windows木马清道夫组件 - 92cb14430ef3431beaa1f6097c58edbf
O40 - explorer.exe - Kingsoft Corporation - C:\KAV2007\KMailOEBand.dll - KMailOEB Dynamic Link Library - 3ba6a1f607d7f99969c3a82ad2f3d05d
O40 - explorer.exe - Microsoft Corporation - C:\WINDOWS\system32\MSVCP71.dll - Microsoft? C++ Runtime Library - 561fa2abb31dfa8fab762145f81667c2
O40 - explorer.exe - Kingsoft Corporation - C:\KAV2007\KASocket.dll - Kingsoft Antivirus Winsock Module - 4cdac52c4c01170528a285eb6be39ce9
O40 - explorer.exe - Microsoft Corporation - C:\WINDOWS\system32\8FF3DFBA.DLL - - b056dc054a2ea43800ad43373d919c87
O40 - explorer.exe - - C:\WINDOWS\system32\winform.dll - -
O40 - explorer.exe - - C:\WINDOWS\system32\cmdbcs.dll - -
O40 - explorer.exe - - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll - -
O40 - explorer.exe - - C:\WINDOWS\system32\qjsj100.dll - - dbe2dd112be360956962603ede9ea35f
O40 - explorer.exe - Kingsoft Corporation - C:\KAV2007\KAVEXT.DLL - Kingsoft Antivirus Explorer Integration - 1190a468c3b58607afacce2caba3a529
O40 - explorer.exe - - D:\Program Files\Tencent\QQ\qdshm.dll - QQDiskShellMenu Module - 1dc4b691b63c4b18f41d33d53081017d
O40 - explorer.exe - Microsoft Corporation - D:\Program Files\Tencent\QQ\MFC42.DLL - MFCDLL Shared Library - Retail Version - 3c0e5e93b0ed3e933a48f0b886c47be8
O40 - explorer.exe - Fygsoft and Microsoft - d:\PROGRA~1\WINDOW~1\FTCCOM~1.DLL - Com组件菜单 - ccdf1edbe51cd961bc31ae7894d73de0

=======================================

O41 - KNetWch - KNetWatch - C:\KAV2007\KNetWch.SYS - (running) - KNetWatch - Kingsoft Corporation - 2d656396b22d66cb7bf82b182dd1f667
O41 - KWatch3 - Kingsoft Antivirus KWatch Driver - C:\WINDOWS\system32\drivers\KWatch3.SYS - (running) - Kingsoft Antivirus KWatch Driver - Kingsoft Corporation - 9532fe3161a2f3b6bf600532f9830358
O41 - king001 - king001 - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\xpe.sys - (not running) - - -

=======================================
360Safe.exe=3.3.0.1004
AntiAdwa.dll=3.3.0.1004
AntiEng.dll=3.3.0.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=3.0.2.1000
safelive.exe=1.0.0.2007
live.dll=1.0.0.1012

=======================================
操作历史报告:
----------清理恶评软件历史----------

2007-04-30 08:49
清理恶评软件 - 雅虎助手&上网助手 - C:\Program Files\Yahoo!\Assistant
清理恶评软件 - 网络实名 - HKCR\INTERFACE\{BE08F6BC-C3E6-4149-BEB1-CB449E1B372E}
清理恶评软件 - 易趣购物按钮 - C:\Documents and Settings\Administrator\「开始」菜单\程序\易趣购物.lnk
清理恶评软件 - 一搜工具条 - HKCR\TYPELIB\{4158DB95-DE71-41FF-BEA1-2C3D1C679DF1}

2007-04-30 08:50
清理恶评软件 - 雅虎助手&上网助手 - C:\Program Files\Yahoo!\Assistant

2007-04-30 08:54
清理恶评软件 - 雅虎助手&上网助手 -
2005-04-30 10:55
清理恶评软件 - 腾讯QQ附带的QQIEHelper插件 - HKCU\Software\Microsoft\Internet Explorer\MenuExt\用QQ彩信发送该图片
清理恶评软件 - cmdbcs - C:\WINDOWS\system32\cmdbcs.dll
清理恶评软件 - 36sqgw7 - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\upxdnd.dll
清理恶评软件 - 伪TIMPlatform.exe木马 - C:\WINDOWS\system32\ctfnom.exe
清理恶评软件 - msccrt - C:\WINDOWS\system32\msccrt.dll
清理恶评软件 - mppds木马 - C:\WINDOWS\system32\mppds.dll
清理恶评软件 - winform - C:\WINDOWS\system32\winform.dll
清理恶评软件 - upxdnd木马 - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\upxdnd.dll
清理恶评软件 - Gjzo0.dll - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll

2005-04-30 11:32
清理恶评软件 - Cnnic中文上网 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C3853CF-C7E0-4946-B3FA-1ABDB6F48108}
清理恶评软件 - Cnnic无忧上网工具条 - HKLM\SOFTWARE\Cnnic

2005-04-30 11:46
清理恶评软件 - cmdbcs -
清理恶评软件 - 36sqgw7 -
清理恶评软件 - msccrt -
清理恶评软件 - upxdnd木马 -
清理恶评软件 - mppds木马 -
清理恶评软件 - winform -
清理恶评软件 - Gjzo0.dll -
2005-04-30 12:13
清理恶评软件 - 腾讯QQ附带的QQIEHelper插件 - HKCU\Software\Microsoft\Internet Explorer\MenuExt\用QQ彩信发送该图片
清理恶评软件 - cmdbcs - C:\WINDOWS\system32\cmdbcs.dll
清理恶评软件 - 实用网址导航(酷站导航) - C:\WINDOWS\system32\RUNDLL~1.EXE
清理恶评软件 - winform - C:\WINDOWS\system32\winform.dll
清理恶评软件 - meuevfznjceic.dll - C:\WINDOWS\system32\wwff.ini
清理恶评软件 - Gjzo0.dll - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll


----------插件卸载操作历史----------

2007-04-30 09:15
插件管理 - DSIeHelper - C:\Program Files\Thunder Network\Thunder\Components\ResWorker\DSIeHelper.dll
2005-04-30 11:32
插件管理 - TODO: <文件说明> - C:\WINDOWS\system32\a3a7.dll

=======================================

360安全卫士,彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基V6.0
最新免费下载:http://www.360safe.com
[ 此贴被□◆.|鉺釘?在2007-05-02 09:08重新编辑 ]
本帖最近评分记录:
  • 风云币:+3(cai504) 您的问题得以解决,锁帖。
  • 顶端 Posted: 2007-04-30 12:24 | [楼 主]
    □◆.|鉺釘?
    级别: 新手上路


    精华: 0
    发帖: 35
    威望: 67 点
    风云币: 4340 元
    专家分: 0 分
    在线时间:12(小时)
    注册时间:2007-02-21
    最后登录:2008-04-14

     

      好多恶意的程序用金山杀不掉
    开机的时候要等好久桌面才出来``
    进程里好多在百度也找不到的进程,汗```
    顶端 Posted: 2007-04-30 12:25 | 1 楼
    52038
    等我飞出来~。。。。。
    级别: 荣誉会员


    精华: 2
    发帖: 3389
    威望: 1855 点
    风云币: 2084 元
    专家分: 0 分
    论坛群: ☆黄鱼党☆
    在线时间:657(小时)
    注册时间:2006-07-18
    最后登录:2008-04-27

     

    host蛮怪的
    用下360安全卫士
    记得来到大学第一次洗澡只用了一毛钱

    顶端 Posted: 2007-04-30 12:44 | 2 楼
    郑宇鸣
    I'm a vegetable bird
    原创先锋奖
    级别: F.Y.C成员


    精华: 0
    发帖: 3986
    威望: 451 点
    风云币: 1103 元
    专家分: 226 分
    论坛群: 管理团队
    在线时间:1053(小时)
    注册时间:2007-01-07
    最后登录:2008-04-28

     

    Quote:
    引用第2楼52038于2007-04-30 12:44发表的  :
    host蛮怪的
    用下360安全卫士

    hosts文件是正常的 ...这个只是屏蔽了一些拉垃圾网站


    用SREng扫一个吧 ...360的不全
    When you give of yourself, you receive more than you give.
    顶端 Posted: 2007-04-30 14:03 | 3 楼
    □◆.|鉺釘?
    级别: 新手上路


    精华: 0
    发帖: 35
    威望: 67 点
    风云币: 4340 元
    专家分: 0 分
    在线时间:12(小时)
    注册时间:2007-02-21
    最后登录:2008-04-14

     

    2007-04-30,14:42:20

    System Repair Engineer 2.2.6.605
    Smallfrogs (http://www.KZTechs.com)

    Windows Server 2003 Enterprise Edition Service Pack 1 (Build 3790)
    - 管理权限用户 - 完整功能

    以下内容被选中:
        所有的启动项目(包括注册表、启动文件夹、服务等)
        浏览器加载项
        正在运行的进程(包括进程模块信息)
        文件关联
        Winsock 提供者
        Autorun.inf
        HOSTS 文件


    启动项目
    注册表
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
        <swg><C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe>  [(Verified)Google Inc.]
        <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
        <load><>  [N/A]
        <run><>  [N/A]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
        <360Safetray><C:\Program Files\360safe\safemon\360Tray.exe /start>  [奇虎网]
        <SoundMan><SOUNDMAN.EXE>  [Realtek Semiconductor Corp.]
        <IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
        <IMEKRMIG6.1><; C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE>  [(Verified)Microsoft Corporation]
        <KavStart><"C:\KAV2007\KAVStart.exe" -startup>  [Kingsoft Corporation]
        <VStart5.0><G:\bog\暗组2007\Anzu.exe>  [3L软件工作室(3LSoft)]
        <Windows木马防火墙><D:\Program Files\Windows木马清道夫\Trojanwall.exe>  [风云谷]
        <nwizqjsj><C:\WINDOWS\system32\nwizqjsj.exe>  [N/A]
        <tejkjlg><C:\Program Files\Realtek Sound Manager\tejkjlg.exe>  [N/A]
        <Super Rabbit Desktop Set><D:\Program Files\MagicSet\DS.EXE /Load>  [Super Rabbit Software]
        <winform><C:\WINDOWS\winform.exe>  [N/A]
        <cmdbcs><C:\WINDOWS\cmdbcs.exe>  [N/A]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
        <360Safe><Rundll32.exe C:\PROGRA~1\360safe\AntiAdwa.dll,KillAdware>  [360Safe.com]
        <Super Rabbit SRCK><"D:\Program Files\MagicSet\SRCK.exe" /autokill:299>  [Super Rabbit Soft]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
        <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
        <Userinit><C:\WINDOWS\system32\Userinit.exe>  [(Verified)Microsoft Corporation]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
        <AppInit_DLLs><>  [N/A]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
        <UIHost><%SystemRoot%\system32\logonui.exe>  [(Verified)Microsoft Corporation]

    ==================================
    启动文件夹
    [yhfifi]
      <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\yhfifi.lnk --> C:\PROGRA~1\WINDOW~3\yhfifid.exe [N/A]><N>

    ==================================
    服务
    [8FF3DFBA / 8FF3DFBA]
      <C:\WINDOWS\system32\8FF3DFBA.EXE -d><Microsoft Corporation>
    [DNS Clisent / DNS Clisent]
      <C:\SNOWTEST\System32\RaV.exe><N/A>
    [Google Updater Service / gusvc]
      <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
    [Human Interface Device Access / HidServ]
      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
    [Kingsoft Personal Firewall Service / KPfwSvc]
      <"C:\KAV2007\KPfwSvc.EXE"><Kingsoft Corporation>
    [Kingsoft Antivirus KWatch Service / KWatchSvc]
      <C:\KAV2007\KWatch.EXE><Kingsoft Corporation>
    [Windows vqfd RunThem / vqfd]
      <2 - 系统找不到指定的文件。
    ><N/A>
    [Fast Client / fast]
      <2 - 系统找不到指定的文件。
    ><N/A>
    [Automatic    / Automatic ]
      <C:\Program Files\msn\msn.cc><N/A>
    [Security Center / Security Center]
      <C:\Program Files\Common Files\Real\Update_OB\realschd><N/A>
    [Gray_Pigeon_Server1.23 / GrayPigeonServer1.23]
      <2 - 系统找不到指定的文件。
    ><N/A>
    [Intranet Messenger / BUZOR]
      <C:\WINDOWS\SYSTEM32\RUNDLL2KXP.EXE C:\WINDOWS\SYSTEM32\WBEM\INNVL.DLL,Export 1087><N/A>
    [System Security / Indtry]
      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\eeejx.dll><N/A>

    ==================================
    驱动程序
    [Service for Realtek AC97 Audio (WDM) / ALCXWDM]
      <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
    [IP in IP Tunnel Driver / IpInIp]
      <system32\DRIVERS\ipinip.sys><N/A>
    [king001 / king001]
      <\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\xpe.sys><N/A>
    [KNetWch / KNetWch]
      <\??\C:\KAV2007\KNetWch.SYS><Kingsoft Corporation>
    [KWatch3 / KWatch3]
      <\??\C:\WINDOWS\system32\drivers\KWatch3.SYS><Kingsoft Corporation>
    [Direct Parallel Link Driver / Ptilink]
      <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
    [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]
      <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
    [Secdrv / Secdrv]
      <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>

    ==================================
    浏览器加载项
    [ThunderAtOnce Class]
      {01443AEC-0FD1-40fd-9C87-E93D1494C233} <D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
    [Thunder Browser Helper]
      {889D2FEB-5411-4565-8998-1DD2C5261283} <D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
    [&Google]
      {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
    [Google Script Object]
      {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar1.dll, N/A>
    [ThunderAtOnce Class]
      {01443AEC-0FD1-40FD-9C87-E93D1494C233} <D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll, Thunder Networking Technologies,LTD>
    [&Google]
      {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
    [HTML Document]
      {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
    [Thunder Agent Class]
      {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <D:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, Thunder Networking Technologies,LTD>
    [Jpeg Class]
      {4970DA77-DB06-4EB9-AAB5-77AF0CC77310} <C:\WINDOWS\system32\a3a7.dll, TODO: <公司名>>
    [Thunder Browser Helper]
      {55302804-482E-470E-8A57-6795A1487F90} <D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
    [CBrowseStakeout Class]
      {55302805-482E-470E-8A57-6795A1487F90} <C:\KAV2007\KAVAFish.DLL, Kingsoft Corporation>
    [MediaComm Class]
      {7670648D-461B-42AF-BDFE-46D26AF5EFF2} <C:\Program Files\Thunder Network\Thunder\Components\InMedia\MediaAddin12.dll, Thunder Networking Technologies,LTD>
    [Microsoft Web 浏览器]
      {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
    [Thunder Browser Helper]
      {889D2FEB-5411-4565-8998-1DD2C5261283} <D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll, Thunder Networking Technologies,LTD>
    [Google Toolbar Helper]
      {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
    [NavigatMon Class]
      {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360safe\safemon\safemon.dll, N/A>
    [RDS.DataSpace]
      {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
    [Shockwave Flash Object]
      {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\KAV2007\Flash.OCX, Macromedia, Inc.>
    [XML HTTP Request]
      {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
    [XML HTTP]
      {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
    [上传到QQ网络硬盘]
      <D:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
    [使用迅雷下载]
      <D:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A>
    [使用迅雷下载全部链接]
      <D:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A>
    [金山毒霸反钓鱼...]
      <C:\KAV2007\KAF\ShowSet.htm, N/A>

    ==================================
    正在运行的进程
    [PID: 380][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 404][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\l.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 448][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 460][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 636][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 720][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
    [PID: 760][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 808][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
    [PID: 824][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
    [PID: 912][C:\KAV2007\KWatch.EXE]  [Kingsoft Corporation, 2007, 2, 12, 84]
        [C:\KAV2007\KAVIPC2.DLL]  [Kingsoft Corporation, 2007, 1, 15, 30]
        [C:\KAV2007\KAEPlat.DLL]  [Kingsoft Corp., 2007, 2, 4, 61]
        [C:\KAV2007\KAEMem.DAT]  [Kingsoft, 2006, 9, 25, 16]
        [C:\KAV2007\KAEUnpack.DAT]  [Kingsoft Corp., 2007, 3, 12, 114]
        [C:\KAV2007\KAVQuara.DLL]  [Kingsoft Corporation, 2007, 1, 25, 1]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 1112][C:\WINDOWS\system32\msdtc.exe]  [Microsoft Corporation, 2001.12.4720.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
    [PID: 1488][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
    [PID: 1972][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 1996][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 1656][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\system32\a79e.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\1a3a.dll]  [  , 1, 0, 0, 3]
    [PID: 3180][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
    [PID: 1936][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
    [PID: 3516][C:\Program Files\360safe\safemon\360Tray.exe]  [奇虎网, 3, 3, 0, 1004]
        [C:\Program Files\360safe\safemon\SafeKrnl.dll]  [奇虎网, 3, 2, 0, 1001]
        [C:\Program Files\360safe\AntiAdwa.dll]  [360Safe.com, 3, 3, 0, 1004]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\l.dll]  [N/A, N/A]
        [C:\Program Files\360safe\live.dll]  [360safe.COM, 1, 0, 0, 1012]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\cmdbcs.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
    [PID: 1692][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [D:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.0.4]
        [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 2, 17]
        [C:\KAV2007\KAScript.DLL]  [Kingsoft Corporation, 2007, 3, 6, 75]
        [C:\KAV2007\KAEPlat.DLL]  [Kingsoft Corp., 2007, 2, 4, 61]
        [C:\KAV2007\KAEMem.DAT]  [Kingsoft, 2006, 9, 25, 16]
        [C:\KAV2007\KAEUnpack.DAT]  [Kingsoft Corp., 2007, 3, 12, 114]
        [C:\KAV2007\Flash.OCX]  [Macromedia, Inc., 7,0,19,0]
        [C:\Program Files\Thunder Network\Thunder\Components\VPShell\RealMediaSplitter.ax]  [Gabest, 1, 0, 1, 0]
        [C:\WINDOWS\system32\mpg2splt.ax]  [N/A, N/A]
        [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\cmdbcs.dll]  [N/A, N/A]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll]  [N/A, N/A]
        [D:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 2, 17]
    [PID: 2652][D:\Program Files\Tencent\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
        [D:\Program Files\Tencent\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\BasicCtrlDll.dll]  [Tencent, 7, 0, 101, 80]
        [D:\Program Files\Tencent\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
        [d:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
        [D:\Program Files\Tencent\QQ\LoginCtrl.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\LoginCtrlRes.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQMainFrame.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\CQQApplication.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQKnowledgeSearch.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQAllInOne.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\GroupLive.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
        [C:\WINDOWS\system32\msdmo.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
        [D:\Program Files\Tencent\QQ\QQAvatar.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\QQSysMsgMng.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQPlugin.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
        [D:\Program Files\Tencent\QQ\QRingMng.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\QQFileTransfer.dll]  [Tencent, 0, 3, 3, 5]
        [D:\Program Files\Tencent\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
        [D:\Program Files\Tencent\QQ\QQPet.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\BQQApplication.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
        [D:\Program Files\Tencent\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
        [D:\Program Files\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 280]
        [D:\Program Files\Tencent\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
        [D:\Program Files\Tencent\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
        [D:\Program Files\Tencent\QQ\QQSceneMng.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\QQPhoneHelper.dll]  [腾讯科技(深圳)有限公司, 2, 1, 8, 81]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\cmdbcs.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\QQCustomFace.dll]  [N/A, N/A]
        [D:\Program Files\Tencent\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
        [C:\KAV2007\KAScript.DLL]  [Kingsoft Corporation, 2007, 3, 6, 75]
        [D:\Program Files\Tencent\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [PID: 2004][d:\Program Files\Tencent\QQ\TIMPlatform.exe]  [tencent, 0, 3, 1, 8]
        [d:\Program Files\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [PID: 2816][C:\WINDOWS\explorer.exe]  [Microsoft Corporation, 6.00.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\l.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\cmdbcs.dll]  [N/A, N/A]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\qjsj100.dll]  [N/A, N/A]
        [C:\KAV2007\KAVEXT.DLL]  [Kingsoft Corporation, 2005, 8, 5, 16]
        [D:\Program Files\Tencent\QQ\qdshm.dll]  [, 1, 0, 101, 20]
        [C:\Program Files\WinRAR\rarext.dll]  [N/A, N/A]
        [d:\PROGRA~1\WINDOW~1\FTCCOM~1.DLL]  [Fygsoft and Microsoft, 3.0.0.71]
        [C:\KAV2007\KAScript.DLL]  [Kingsoft Corporation, 2007, 3, 6, 75]
        [C:\KAV2007\KAEPlat.DLL]  [Kingsoft Corp., 2007, 2, 4, 61]
        [C:\KAV2007\KAEMem.DAT]  [Kingsoft, 2006, 9, 25, 16]
        [C:\KAV2007\KAEUnpack.DAT]  [Kingsoft Corp., 2007, 3, 12, 114]
        [D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 2, 17]
    [PID: 1884][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
    [PID: 680][C:\WINDOWS\system32\temp2.exe]  [N/A, N/A]
        [C:\Program Files\Common Files\Microsoft Shared\MSINFO\C2ECBB6B.dll]  [N/A, N/A]
    [PID: 3272][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)]
    [PID: 1696][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.3790.1830 (srv03_sp1_rtm.050324-1447)]
    [PID: 1528][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.3790.1830 (srv03_sp1_rtm.050324-1447)]
        [C:\WINDOWS\TEMP\my.dll]  [N/A, N/A]
    [PID: 2320][D:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe]  [Thunder Networking Technologies,LTD, 5, 6, 1, 292]
        [D:\Program Files\Thunder Network\Thunder\Program\TaskManager.dll]  [Thunder Networking Technologies,LTD, 1, 1, 0, 20]
        [D:\Program Files\Thunder Network\Thunder\Program\download_interface.dll]  [Thunder Networking Technologies,LTD, 2, 14, 2, 77]
        [D:\Program Files\Thunder Network\Thunder\Program\stlport_vc646.dll]  [STLport Consulting, Inc., 4.6.2003.1031]
        [D:\Program Files\Thunder Network\Thunder\Program\asyn_dns.dll]  [Thunder Networking Technologies,LTD, 2, 14, 2, 77]
        [D:\Program Files\Thunder Network\Thunder\Program\BHOStub.dll]  [Thunder Networking Technologies,LTD, 1, 1, 0, 8]
        [D:\Program Files\Thunder Network\Thunder\Program\FloatBar.dll]  [Giganology Inc., 1, 0, 0, 2]
        [D:\Program Files\Thunder Network\Thunder\Components\DownAndPlay\DownAndPlay.dll]  [, 1, 0, 0, 2]
        [D:\Program Files\Thunder Network\Thunder\Program\iTargetAD.dll]  [Thunder Networking Technologies,LTD, 1, 0, 2, 26]
        [C:\KAV2007\Flash.OCX]  [Macromedia, Inc., 7,0,19,0]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\cmdbcs.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
        [D:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbedShell.dll]  [ , 1, 0, 0, 17]
        [D:\Program Files\Thunder Network\Thunder\Components\Community\XLCommunity.dll]  [Thunder Networking Technologies,LTD, 1, 0, 6, 26]
        [D:\Program Files\Thunder Network\Thunder\Program\LiveUpdate.dll]  [Thunder Networking Technologies,LTD, 1, 1, 1, 20]
        [D:\Program Files\Thunder Network\Thunder\Components\Search\XLSearch.dll]  [Thunder Networking Technologies,LTD, 1, 1, 1, 10]
        [D:\Program Files\Thunder Network\Thunder\Components\P4PClient\P4PClient.dll]  [Thunder Networking Technologies,LTD, 2, 2, 1, 46]
        [D:\Program Files\Thunder Network\Thunder\Components\DiagnoseHelper\DiagnoseHelper.dll]  [Thunder Networking Technologies,LTD, 1, 1, 1, 16]
        [D:\Program Files\Thunder Network\Thunder\Components\ExplorerHelper\ExplorerHelper.dll]  [Thunder Networking Technologies,LTD, 1, 0, 4, 15]
        [D:\Program Files\Thunder Network\Thunder\Components\Tips\TipsClient.dll]  [Thunder Networking Technologies,LTD, 2, 1, 3, 58]
        [D:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VPSHELL.dll]  [XunLei, 1, 2, 0, 8]
        [D:\Program Files\Thunder Network\Thunder\Components\UserExperience\UserExperience.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 1]
        [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsXlCom.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 4]
        [C:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbed09.dll]  [ , 3, 3, 0, 80]
        [D:\Program Files\Thunder Network\Thunder\Program\RegisterDll.dll]  [Thunder Networking Technologies,LTD, 2, 13, 2, 61]
        [D:\Program Files\Thunder Network\Thunder\Plugins\BhoAdv\bho_adv.dll]  [深圳市迅雷网络技术有限公司, 1.0.1.0]
        [C:\KAV2007\KAScript.DLL]  [Kingsoft Corporation, 2007, 3, 6, 75]
        [D:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VideoPicture.dll]  [XunLei, 1, 2, 0, 9]
        [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 1]
        [D:\Program Files\Thunder Network\Thunder\Program\XLNet.Dll]  [Thunder Networking Technologies,LTD, 1, 2, 0, 8]
        [D:\Program Files\Thunder Network\Thunder\Components\ResWorker\MediaWorker.dll]  [Thunder Networking Technologies,LTD, 1, 2, 0, 8]
    [PID: 356][C:\Documents and Settings\Administrator\桌面\42006113122516\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\cmdbcs.dll]  [N/A, N/A]
        [C:\WINDOWS\system32\winform.dll]  [N/A, N/A]
        [C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\l.dll]  [N/A, N/A]

    ==================================
    文件关联
    .TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
    .EXE  OK. ["%1" %*]
    .COM  OK. ["%1" %*]
    .PIF  OK. ["%1" %*]
    .REG  OK. [regedit.exe "%1"]
    .BAT  OK. ["%1" %*]
    .SCR  OK. ["%1" /S]
    .CHM  Error. ["hh.exe" %1]
    .HLP  Error. [winhlp32.exe %1]
    .INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
    .INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
    .VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
    .JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
    .LNK  OK. [{00021401-0000-0000-C000-000000000046}]

    ==================================
    Winsock 提供者
    N/A

    ==================================
    Autorun.inf
    N/A

    ==================================
    HOSTS 文件
    127.0.0.1        localhost
    127.0.0.1        popwin.9983.com
    61.152.169.246    www.npjxjy.com
    61.152.169.246    quxiuu.com
    61.152.169.246    www.23b.cn
    61.152.169.246    www.baidulink.com
    61.152.169.246    www.ookkw.com
    61.152.169.246    www.wu7x.cn
    61.152.169.246    d.qbbd.com
    61.152.169.246    w.qbbd.com
    61.152.169.246    web.77276.com
    61.152.169.246    www.77276.com
    61.152.169.246    www.npjxjy.com
    61.152.169.246    www.baidulink.com
    61.152.169.246    www.ookkw.com
    61.152.169.246    www.wu7x.cn
    61.152.169.246    www.wwwlm.net
    61.152.169.246    dm1.yiall.com
    61.152.169.246    www.my6688.cn
    61.152.169.246    www.union123.com
    61.152.169.246    www.ktan.cn
    61.152.169.246    www.2t2t.cn
    61.152.169.246    www.cq530.com
    61.152.169.246    www.365tc.com
    61.152.169.246    ad.qucha.net
    61.152.169.246    www.tan8.cn
    61.152.169.246    www.itjj.net
    61.152.169.246    www.start188.com
    61.152.169.246    www.at58.cn
    61.152.169.246    union.yxad.com
    61.152.169.246    www.iptan.com
    61.152.169.246    www.ip2008.net
    61.152.169.246    www.yqif.com
    61.152.169.246    www.2t2t.cn
    61.152.169.246    www.688ip.com
    61.152.169.246    www.17tc.com
    61.152.169.246    www1.6tan.com
    61.152.169.246    www2.6tan.com
    61.152.169.246    www.6tan.com
    61.152.169.246    www.zztan.com
    61.152.169.246    www.5tanip.com
    61.152.169.246    www.16tc.com
    61.152.169.246    www.163se.net
    61.152.169.246    www.168080.com
    61.152.169.246    www.baidu8.org
    61.152.169.246    www.nze21.com
    61.152.169.246    www.437799.com
    61.152.169.246    www.168080.com
    61.152.169.246    new2.jixie123.cn
    61.152.169.246    www.18dmm.com
    61.152.169.246    www.souxse.cn
    61.152.169.246    x.vvcyin.com
    61.152.169.246    dm1.yiall.com
    61.152.169.246    www.168080.com
    61.152.169.246    www.nze21.com
    61.152.169.246    www.puma163.com
    61.152.169.246    www.138505.com
    61.152.169.246    www.hyap98.com
    61.152.169.246    x.vvcyin.com
    61.152.169.246    www.puma163.com
    61.152.169.246    www.51liulan.cn
    61.152.169.246    s.gcuj.com
    61.152.169.246    long.down988.cn
    61.152.169.246    0.82211.net
    61.152.169.246    x.vvcyin.com
    61.152.169.246    w.vvcyin.com
    61.152.169.246    cc.wzxqy.com
    61.152.169.246    008.cn
    61.152.169.246    ultimate-best-hgh.0my.net
    61.152.169.246    www.139500.com
    61.152.169.246    www.1yin.net
    61.152.169.246    www.37021.com
    61.152.169.246    www.47555.net
    61.152.169.246    www.511ring.com
    61.152.169.246    me.5e163.com
    61.152.169.246    www.777888.com
    61.152.169.246    www.77ttt.com
    61.152.169.246    www.9p.cn
    61.152.169.246    abcdesign.ru
    61.152.169.246    gutemine.wu-wien.ac.at
    61.152.169.246    math.kobe-u.ac.jp
    61.152.169.246    www.aifind.info
    61.152.169.246    www.allyes.com
    61.152.169.246    www.aogo.net
    61.152.169.246    baltnet.ru
    61.152.169.246    quotes.barchart.com
    61.152.169.246    free.bestialityhost.com
    61.152.169.246    cctv1.net
    61.152.169.246    cctv8.net
    61.152.169.246    www.cctv8.net
    61.152.169.246    ciachoo.pl
    61.152.169.246    www.play.cn.gs
    61.152.169.246    www.cnqb.net
    61.152.169.246    www.feixue.net
    61.152.169.246    www.xiliao.com.cn
    61.152.169.246    alexey.pioneers.com.ru
    61.152.169.246    www.coolcdrom.com
    61.152.169.246    www.coolseach.com
    61.152.169.246    puldk490gj.da.ru
    61.152.169.246    dicto.ru
    61.152.169.246    www.dj3344.com
    61.152.169.246    www.donttrip.org
    61.152.169.246    www.ehomeday.com
    61.152.169.246    elemental.ru
    61.152.169.246    errorguard.com
    61.152.169.246    friendlygreeting.com
    61.152.169.246    zhp.gdynia.pl
    61.152.169.246    www.gg888.net
    61.152.169.246    gin.ru
    61.152.169.246    www.girlchinese.com
    61.152.169.246    glass-master.ru
    61.152.169.246    photo.gornet.ru
    61.152.169.246    relay.great.ru
    61.152.169.246    hack-gegen-rechts.com
    61.152.169.246    hgrstrailer.com
    61.152.169.246    www.homepage.com
    61.152.169.246    hotbar.com
    61.152.169.246    intellect.lvc
    61.152.169.246    interfoodtd.ru
    61.152.169.246    jewishgen.org
    61.152.169.246    www.jixian.net
    61.152.169.246    k2kapital.com
    61.152.169.246    security.kolla.de
    61.152.169.246    www.kuliao.com
    61.152.169.246    laugh-mail.net
    61.152.169.246    7b.com.cn
    61.152.169.246    9505.com
    61.152.169.246    www.piaoxue.com
    61.152.169.246    marketscore.com
    61.152.169.246    www.mir0.com
    61.152.169.246    momentum.ru
    61.152.169.246    www.mtv51.com
    61.152.169.246    www.mydj2005.com
    61.152.169.246    nefkom.net
    61.152.169.246    no-abi2003.de
    61.152.169.246    tdi-router.opola.pl
    61.152.169.246    packages.debian.or.jp
    61.152.169.246    perfectgirls.net
    61.152.169.246    peterstar.ru
    61.152.169.246    pgipearls.com
    61.152.169.246    phg.pl
    61.152.169.246    vip.pnet.pl
    61.152.169.246    sec.polbox.pl
    61.152.169.246    polobeer.de
    61.152.169.246    porno-mania.net
    61.152.169.246    home.profootball.ru
    61.152.169.246    qianbai.com
    61.152.169.246    ad.qingyule.com
    61.152.169.246    www.qq168.net
    61.152.169.246    www.qq3344.com
    61.152.169.246    www.qq92.com
    61.152.169.246    www.qqwz.com
    61.152.169.246    www.qu123.com
    61.152.169.246    republika.pl
    61.152.169.246    www.richfind.com
    61.152.169.246    rollenspielzirkel.de
    61.152.169.246    safer-networking.org
    61.152.169.246    sdsauto.ru
    61.152.169.246    www.searchpage.cc
    61.152.169.246    www.seekeasysoft.net
    61.152.169.246    shadkhan.ru
    61.152.169.246    slavarik.ru
    61.152.169.246    sovea.de
    61.152.169.246    spybot.info
    61.152.169.246    www.start-page.info
    61.152.169.246    lars-s.privat.t-online.de
    61.152.169.246    u.t2cn.com
    61.152.169.246    www.7939.com
    61.152.169.246    www.4199.com
    61.152.169.246    www.3448.com
    61.152.169.246    www.6781.com
    61.152.169.246    it.trendmicro-europe.com
    61.152.169.246    trendmicro.it
    61.152.169.246    truefriends.net
    61.152.169.246    www.tthao.com
    61.152.169.246    www.ttrx.net
    61.152.169.246    tuhart.net
    61.152.169.246    www.unionsky.cn
    61.152.169.246    www.unionsky.com
    61.152.169.246    www.unionsky.net
    61.152.169.246    vconsole.net
    61.152.169.246    virtumonde.com
    61.152.169.246    gamma.vyborg.ru
    61.152.169.246    financial.washingtonpost.com
    61.152.169.246    webpark.pl
    61.152.169.246    wishken.com
    61.152.169.246    www.yeapple.com
    61.152.169.246    www.yibinren.com
    61.152.169.246    www.youmiss.com
    61.152.169.246    www.yysky.net
    61.152.169.246    zelnet.ru
    61.152.169.246    www.zhengdian.com
    61.152.169.246    abc.265.com
    61.152.169.246    555.265.com
    61.152.169.246    www.baidu345.com
    61.152.169.246    www.37ss.com
    61.152.169.246    my123.com
    61.152.169.246    mmm.caifu18.net
    61.152.169.246    www.5117music.com
    61.152.169.246    www.union123.com
    61.152.169.246    www.wu7x.cn
    61.152.169.246    www.97725.com
    61.152.169.246    down.97725.com
    61.152.169.246    ip.315hack.com
    61.152.169.246    ip.54liumang.com
    61.152.169.246    www.41ip.com
    61.152.169.246    xulao.com
    61.152.169.246    www.heixiou.com
    61.152.169.246    www.9cyy.com
    61.152.169.246    www.hunll.com
    61.152.169.246    www.down.hunll.com
    61.152.169.246    do.77276.com
    61.152.169.246    www.baidulink.com
    61.152.169.246    adnx.yygou.cn
    61.152.169.246    222.73.220.45
    61.152.169.246    www.f5game.com
    61.152.169.246    www.guazhan.cn
    61.152.169.246    wm,103715.com
    61.152.169.246    www.my6688.cn
    61.152.169.246    i.96981.com
    61.152.169.246    d.77276.com
    61.152.169.246    www1.cw988.cn
    61.152.169.246    cool.47555.com
    61.152.169.246    www.asdwc.com
    61.152.169.246    55880.cn
    61.152.169.246    cc.wzxqy.com
    61.152.169.246    www.54699.com
    61.152.169.246    ceoww.com
    61.152.169.246    boolom.com
    61.152.169.246    www.boolom.com
    61.152.169.246    adult-novel.cn
    61.152.169.246    ll.chinasese.net
    61.152.169.246    www.tellumore.com
    61.152.169.246    www.o1wg.com
    61.152.169.246    www.qq756.com
    61.152.169.246    ll.chinasese.net

    ==================================
    顶端 Posted: 2007-04-30 14:44 | 4 楼
    郑宇鸣
    I'm a vegetable bird
    原创先锋奖
    级别: F.Y.C成员


    精华: 0
    发帖: 3986
    威望: 451 点
    风云币: 1103 元
    专家分: 226 分
    论坛群: 管理团队
    在线时间:1053(小时)
    注册时间:2007-01-07
    最后登录:2008-04-28

     

    建议在进行修复操作前关闭其他所有的无关程序,断开网络连接,并建议将以下内容***粘贴到记事本保存后以便操作。
    请运行刚才用来做智能扫描的工具SREng
    启动项目->服务里,选择win32应用程序服务,找到下列项后,选择删除服务,按设置->  确认删除:
    [IP in IP Tunnel Driver / IpInIp]
      <system32\DRIVERS\ipinip.sys><N/A>
    [king001 / king001]
      <\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\xpe.sys><N/A>

     
    启动项目->服务里,选择驱动程序,找到下列驱动后,选择删除服务,按设置->  确认删除:
    [Windows vqfd RunThem / vqfd]
      <2 - 系统找不到指定的文件。><N/A>
    [Fast Client / fast]
      <2 - 系统找不到指定的文件。><N/A>
    [Automatic    / Automatic ]
      <C:\Program Files\msn\msn.cc><N/A>
    [Security Center / Security Center]
      <C:\Program Files\Common Files\Real\Update_OB\realschd><N/A>
    [Gray_Pigeon_Server1.23 / GrayPigeonServer1.23]
      <2 - 系统找不到指定的文件。><N/A>
    [Intranet Messenger / BUZOR]
      <C:\WINDOWS\SYSTEM32\RUNDLL2KXP.EXE C:\WINDOWS\SYSTEM32\WBEM\INNVL.DLL,Export 1087><N/A>
    [System Security / Indtry]
      <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\eeejx.dll><N/A>
    启动项目->注册表里,找到下列项后,选择删除
    [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
        <load><>  [N/A]
        <run><>  [N/A]
    <nwizqjsj><C:\WINDOWS\system32\nwizqjsj.exe>  [N/A]
        <tejkjlg><C:\Program Files\Realtek Sound Manager\tejkjlg.exe>  [N/A]
        <winform><C:\WINDOWS\winform.exe>  [N/A]
        <cmdbcs><C:\WINDOWS\cmdbcs.exe>  [N/A]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
        <AppInit_DLLs><>  [N/A]

      还有就是 取消C:\PROGRA~1\WINDOW~3\yhfifid.exe 的开机运行!
    重启电脑后,删除上述提到的所有文件 如果无法删除请用unlocker(解锁删除)或killbox工具(重启删除模式)处理或者直接用IceSword删除,并删除以下文件
    C:\WINDOWS\system32\a79e.dll
    C:\WINDOWS\system32\1a3a.dll
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\l.dll
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll
    C:\WINDOWS\system32\cmdbcs.dll
    C:\WINDOWS\system32\winform.dll
    C:\WINDOWS\system32\mpg2splt.ax
    C:\WINDOWS\system32\msdmo.dll
    C:\WINDOWS\system32\temp2.exe
    C:\WINDOWS\TEMP\my.dll
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Gjzo0.dll

    如果问题已经解决,请修改主题分类为“已解决”。
    [ 此贴被郑宇鸣在2007-04-30 15:46重新编辑 ]
    When you give of yourself, you receive more than you give.
    顶端 Posted: 2007-04-30 15:37 | 5 楼
    rongzhijie7
    一直是新手
    助人为乐奖
    级别: 风云精英


    精华: 0
    发帖: 4800
    威望: 2557 点
    风云币: 152009 元
    专家分: 0 分
    在线时间:313(小时)
    注册时间:2006-08-20
    最后登录:2008-04-29

     

    按照楼上的办法,同时建议进入安全模式中杀毒
    如果不能病毒并非感染你其他分区的文件,我建议你重做好系统之后安装光盘版杀软,升级病毒库之后彻底杀毒~


    欢迎光临我的BLOG[真NB·中国]——http://realnb.cn
    顶端 Posted: 2007-04-30 18:48 | 6 楼
    yoyoma
    级别: 资深会员


    精华: 0
    发帖: 1548
    威望: 1380 点
    风云币: 2303 元
    专家分: 0 分
    在线时间:196(小时)
    注册时间:2007-04-29
    最后登录:2008-04-27

     

    太长了!我用NOD32还可以!
    本帖最近评分记录:
  • 风云币:-8(kaspersky) 本版禁止灌水,请阅读置顶 ..
  • 螃蟹立着走
    顶端 Posted: 2007-04-30 19:08 | 7 楼
    jamesgu
    级别: 新手上路


    精华: 0
    发帖: 97
    威望: 111 点
    风云币: 3836 元
    专家分: 0 分
    在线时间:15(小时)
    注册时间:2007-05-01
    最后登录:2008-04-18

     

    建议安装卡巴查杀
    顶端 Posted: 2007-05-02 13:30 | 8 楼
    帖子浏览记录 版块浏览记录
    风云小站 » 『 求助专区 』
    感谢,曾经的版主
    Total 0.021583(s) query 6, Time now is:11-06 00:21, Gzip enabled 渝ICP备20004412号-1

    Powered by PHPWind v6.3.2 Certificate Code © 2003-07 PHPWind.com Corporation
    Skin by Chen Bo