电脑开机速度突然慢了很多。3分钟了

显示全部楼层 · 发表于 2011-7-3 18:27:57

今天上午电脑不知道怎么了cpu占用率100%做完系统刚好一会电脑开机有事3分钟。。。尤其是进入桌面比较慢求高手帮我看看用sreng做的记录。
[CODE]

2011-07-03,18:18:27

System Repair Engineer 2.8.4.1331
Smallfrogs (http://www.KZTechs.com)

Windows 7 Ultimate Edition  (Build 7600) - 管理权限用户 - 完整功能

以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件
进程特权扫描
计划任务
Windows 安全更新检查
API HOOK
隐藏进程

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SynTPEnh><%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe>  [(Verified)Synaptics Incorporated]
<360Safetray><"D:\Program Files\360\360Safe\safemon\360Tray.exe" /start>  [(Verified)360.cn]
<egui><"C:\Program Files\ESET\ESET NOD32 Antivirus\EsetAct\essact.exe" -waitservice>  [(Verified)Version 2 Limited]
<COMODO Internet Security><"D:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h>  [(Verified)Comodo Security Solutions, Inc.]
<avgnt><"D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avgnt.exe" /min>  [(Verified)Avira GmbH]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><explorer.exe>  [(Verified)Microsoft Windows]
<Userinit><C:\Windows\system32\userinit.exe,>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs>< C:\Windows\system32\guard32.dll>  [(Verified)Comodo Security Solutions, Inc.]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<WebCheck><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><C:\Windows\System32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
<Browser Customizations><"C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Windows><"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Web Platform Customizations><C:\Windows\System32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]

==================================
启动文件夹
N/A

==================================
服务
[Andrea RT Filters Service / AERTFilters][Running/Auto Start]
  <C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe><Andrea Electronics Corporation>
[AMD External Events Utility / AMD External Events Utility][Running/Auto Start]
  <C:\Windows\system32\atiesrxx.exe><AMD>
[Avira FireWall / AntiVirFirewallService][Running/Auto Start]
  <"D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avfwsvc.exe"><Avira GmbH>
[Avira AntiVir MailGuard / AntiVirMailService][Running/Auto Start]
  <"D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avmailc.exe"><Avira GmbH>
[Avira AntiVir 计划程序 / AntiVirSchedulerService][Running/Auto Start]
  <"D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\sched.exe"><Avira GmbH>
[Avira AntiVir Guard / AntiVirService][Running/Auto Start]
  <"D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avguard.exe"><Avira GmbH>
[Avira AntiVir WebGuard / AntiVirWebService][Running/Auto Start]
  <"D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\AVWEBGRD.EXE"><Avira GmbH>
[Apple Mobile Device / Apple Mobile Device][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"><Apple Inc.>
[Bonjour 服务 / Bonjour Service][Running/Auto Start]
  <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.>
[COMODO Internet Security Helper Service / cmdagent][Running/Auto Start]
  <"D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"><COMODO>
[ESET HTTP Server / EhttpSrv][Stopped/Manual Start]
  <"C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe"><ESET>
[ESET Service / ekrn][Running/Auto Start]
  <"C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe"><ESET>
[Intel(R) Rapid Storage Technology / IAStorDataMgrSvc][Running/Auto Start]
  <"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"><Intel Corporation>
[iPod 服务 / iPod Service][Stopped/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[Intel(R) Management and Security Application Local Management Service / LMS][Running/Auto Start]
  <C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe><Intel Corporation>
[Intel(R) Management & Security Application User Notification Service / UNS][Stopped/Manual Start]
  <"C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"><Intel Corporation>
[主动防御 / ZhuDongFangYu][Running/Auto Start]
  <"D:\Program Files\360\360Safe\deepscan\zhudongfangyu.exe"><360.cn>

==================================
驱动程序
[360Box mini-filter driver / 360Box][Stopped/Manual Start]
  <system32\DRIVERS\360Box.sys><360安全中心>
[360netmon / 360netmon][Running/System Start]
  <system32\DRIVERS\360netmon.sys><360.cn>
[360SelfProtection / 360SelfProtection][Running/System Start]
  <system32\drivers\360SelfProtection.sys><360安全中心>
[adp94xx / adp94xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adp94xx.sys><Adaptec, Inc.>
[adpahci / adpahci][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adpahci.sys><Adaptec, Inc.>
[adpu320 / adpu320][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\adpu320.sys><Adaptec, Inc.>
[aic78xx / aic78xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\djsvs.sys><Adaptec, Inc.>
[aliide / aliide][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[amdsata / amdsata][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\amdsata.sys><Advanced Micro Devices>
[amdsbs / amdsbs][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\amdsbs.sys><AMD Technologies Inc.>
[amdxata / amdxata][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\amdxata.sys><Advanced Micro Devices>
[arc / arc][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\arc.sys><Adaptec, Inc.>
[arcsas / arcsas][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\arcsas.sys><Adaptec, Inc.>
[Atheros Extensible Wireless LAN device driver / athr][Running/Manual Start]
  <system32\DRIVERS\athr.sys><Atheros Communications, Inc.>
[ATI Function Driver for High Definition Audio Service / AtiHdmiService][Running/Manual Start]
  <system32\drivers\AtiHdmi.sys><ATI Technologies, Inc.>
[atikmdag / atikmdag][Running/Manual Start]
  <system32\DRIVERS\atikmdag.sys><ATI Technologies Inc.>
[AvFw Packet Filter Miniport / avfwim][Running/Manual Start]
  <system32\DRIVERS\avfwim.sys><Avira GmbH>
[avfwot / avfwot][Running/System Start]
  <system32\DRIVERS\avfwot.sys><Avira GmbH>
[avgntflt / avgntflt][Running/Auto Start]
  <system32\DRIVERS\avgntflt.sys><Avira GmbH>
[avipbb / avipbb][Running/System Start]
  <system32\DRIVERS\avipbb.sys><Avira GmbH>
[Broadcom NetXtreme II VBD / b06bdrv][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\bxvbdx.sys><Broadcom Corporation>
[Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 / b57nd60x][Stopped/Manual Start]
  <system32\DRIVERS\b57nd60x.sys><Broadcom Corporation>
[BAPIDRV / BAPIDRV][Running/System Start]
  <\??\C:\Windows\system32\drivers\BAPIDRV.SYS><360.cn>
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\BrFiltLo.sys><Brother Industries, Ltd.>
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\BrFiltUp.sys><Brother Industries, Ltd.>
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\Brserid.sys><Brother Industries Ltd.>
[Brother WDM Serial driver / BrSerWdm][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrSerWdm.sys><Brother Industries Ltd.>
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrUsbMdm.sys><Brother Industries Ltd.>
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
  <\SystemRoot\System32\Drivers\BrUsbSer.sys><Brother Industries Ltd.>
[COMODO Internet Security Sandbox Driver / cmdGuard][Running/System Start]
  <System32\DRIVERS\cmdguard.sys><COMODO>
[COMODO Internet Security Helper Driver / cmdHlp][Running/System Start]
  <System32\DRIVERS\cmdhlp.sys><COMODO>
[cmdide / cmdide][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[DAEMON Tools Virtual Bus Driver / dtsoftbus01][Running/System Start]
  <system32\DRIVERS\dtsoftbus01.sys><DT Soft Ltd>
[eamonm / eamonm][Running/Auto Start]
  <system32\DRIVERS\eamonm.sys><ESET>
[Broadcom NetXtreme II 10 GigE VBD / ebdrv][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\evbdx.sys><Broadcom Corporation>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><奇虎网>
[ehdrv / ehdrv][Running/System Start]
  <system32\DRIVERS\ehdrv.sys><ESET>
[elxstor / elxstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\elxstor.sys><Emulex>
[epfwwfpr / epfwwfpr][Running/Auto Start]
  <system32\DRIVERS\epfwwfpr.sys><ESET>
[GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start]
  <system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.>
[Hauppauge Consumer Infrared Receiver / hcw85cir][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\hcw85cir.sys><Hauppauge Computer Works, Inc.>
[Intel(R) Management Engine Interface / HECI][Running/Manual Start]
  <system32\DRIVERS\HECI.sys><Intel Corporation>
[HookPort / HookPort][Running/Boot Start]
  <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[HpSAMD / HpSAMD][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\HpSAMD.sys><Hewlett-Packard Company>
[HWiNFO32 Kernel Driver / HWiNFO32][Running/System Start]
  <\??\d:\Program Files\MyDrivers\DriverGenius2011\Mydrivers32.SYS><REALiX(tm)>
[Intel AHCI Controller / iaStor][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\iaStor.sys><Intel Corporation>
[iaStorV / iaStorV][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\iaStorV.sys><Intel Corporation>
[iirsp / iirsp][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\iirsp.sys><Intel Corp./ICP vortex GmbH>
[COMODO Internet Security Firewall Driver / inspect][Running/System Start]
  <system32\DRIVERS\inspect.sys><COMODO>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RTKVHDA.sys><Realtek Semiconductor Corp.>
[LSI_FC / LSI_FC][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_fc.sys><LSI Corporation>
[LSI_SAS / LSI_SAS][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_sas.sys><LSI Corporation>
[LSI_SAS2 / LSI_SAS2][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_sas2.sys><LSI Corporation>
[LSI_SCSI / LSI_SCSI][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\lsi_scsi.sys><LSI Corporation>
[megasas / megasas][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\megasas.sys><LSI Corporation>
[MegaSR / MegaSR][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\MegaSR.sys><LSI Corporation, Inc.>
[MpKsl4fcaeb59 / MpKsl4fcaeb59][Stopped/System Start]
  <\??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1D8588A-BD3D-42FC-9F8D-FCFDCB2F0BC1}\MpKsl4fcaeb59.sys><N/A>
[MpKsl8051a70d / MpKsl8051a70d][Stopped/System Start]
  <\??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1D8588A-BD3D-42FC-9F8D-FCFDCB2F0BC1}\MpKsl8051a70d.sys><N/A>
[nfrd960 / nfrd960][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nfrd960.sys><IBM Corporation>
[nvraid / nvraid][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nvraid.sys><NVIDIA Corporation>
[nvstor / nvstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\nvstor.sys><NVIDIA Corporation>
[ql2300 / ql2300][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\ql2300.sys><QLogic Corporation>
[ql40xx / ql40xx][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\ql40xx.sys><QLogic Corporation>
[Quantum DeepScanner Servers / qutmdserv][Running/System Start]
  <\??\C:\Windows\system32\drivers\qutmdrv.sys><360.cn>
[qutmipc / qutmipc][Running/System Start]
  <\??\C:\Windows\system32\drivers\qutmipc.sys><360.cn>
[RtsUStor.Sys Realtek USB Card Reader / RSUSBSTOR][Stopped/Manual Start]
  <System32\Drivers\RtsUStor.sys><Realtek Semiconductor Corp.>
[Service for HDMI / RTHDMIAzAudService][Stopped/Manual Start]
  <system32\drivers\RtHDMIV.sys><Realtek Semiconductor Corp.>
[Realtek 8167 NT Driver / RTL8167][Running/Manual Start]
  <system32\DRIVERS\Rt86win7.sys><Realtek>
[SiSRaid2 / SiSRaid2][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\SiSRaid2.sys><Silicon Integrated Systems Corp.>
[SiSRaid4 / SiSRaid4][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\sisraid4.sys><Silicon Integrated Systems>
[ssmdrv / ssmdrv][Running/System Start]
  <system32\DRIVERS\ssmdrv.sys><Avira GmbH>
[stexstor / stexstor][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\stexstor.sys><Promise Technology>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
  <system32\DRIVERS\SynTP.sys><Synaptics Incorporated>
[TcHardWare / TcHardWare][Stopped/Manual Start]
  <\??\d:\Program Files\Tencent\QQPCMgr\5.0.1412.204\QQPCHW.sys><Tencent>
[TCSafeBox / TCSafeBox][Running/System Start]
  <\??\d:\Program Files\Tencent\QQPCMgr\5.0.1412.204\TCSafeBox.sys><Tencent>
[TesSafe / TesSafe][Stopped/Manual Start]
  <\??\C:\Windows\system32\TesSafe.sys><TENCENT>
[TSSysKit / TSSysKit][Running/System Start]
  <\??\d:\Program Files\Tencent\QQPCMgr\5.0.1412.204\TSSysKit.sys><Tencent>
[TSysCare / TSysCare][Running/Boot Start]
  <\SystemRoot\system32\Drivers\TSysCare.sys><Tencent>
[viaide / viaide][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\viaide.sys><VIA Technologies, Inc.>
[vsmraid / vsmraid][Stopped/Manual Start]
  <\SystemRoot\system32\DRIVERS\vsmraid.sys><VIA Technologies Inc.,Ltd>

==================================
浏览器加载项
[迅雷FLV视频嗅探及下载支持]
  {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} <d:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.2.48.dll, (Signed) 深圳市迅雷网络技术有限公司>
[QQ电脑管家网页防火墙]
  {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} <d:\Program Files\Tencent\QQPCMgr\5.0.1412.204\TSWebMon.dat, (Signed) Tencent>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <d:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.0.3076.dll, (Signed) 深圳市迅雷网络技术有限公司>
[Windows Live ID Sign-in Helper]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corp.>
[迅雷下载助手]
  {B0E2F470-0B07-48f0-B3B1-5749505FAE9B} <d:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.2.48.dll, (Signed) 深圳市迅雷网络技术有限公司>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.cn>
[启动飞信]
  {814953B0-3DE7-4171-A0DD-A7A38322B6C7} <d:\Program Files\China Mobile\Fetion\Fetion.exe, (Signed) China Mobile>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash10t.ocx, (Signed) Adobe Systems, Inc.>
[迅雷FLV视频嗅探及下载支持]
  {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} <d:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.2.48.dll, (Signed) 深圳市迅雷网络技术有限公司>
[InstallHelper Class]
  {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <C:\Windows\system32\MMInstaller.dll, (Signed) Tencent>
[Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <d:\Program Files\Thunder Network\Thunder\BHO\ThunderAgent7.2.0.3076.dll, (Signed) 深圳市迅雷网络技术有限公司>
[QQPYChecker Class]
  {5052B4D0-9DF7-45ef-88EF-F42C0EA33A43} <d:\Program Files\Tencent\QQPinyin\4.3.1080.400\QQImeChecker.dll, (Signed) Tencent>
[迅雷发行IE支持]
  {5FFF24BC-DC02-4808-B4E0-A8E2C93FE407} <d:\Program Files\Thunder Network\Thunder\BHO\xlfxctrl1.0.1.64.dll, (Signed) 深圳市迅雷网络技术有限公司>
[Access UserInfo by Script]
  {6EE9CD3E-A386-4DAE-9737-A759DBF927AE} <d:\Program Files\Thunder Network\Thunder\BHO\UserAgent1.0.2.10.dll, (Signed) 深圳市迅雷网络技术有限公司>
[QQ电脑管家网页防火墙]
  {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} <d:\Program Files\Tencent\QQPCMgr\5.0.1412.204\TSWebMon.dat, (Signed) Tencent>
[XunleiBHO Class]
  {802F530B-A8F6-4631-AE49-6BACAAC6373E} <d:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.0.3076.dll, (Signed) 深圳市迅雷网络技术有限公司>
[]
  {814953B0-3DE7-4171-A0DD-A7A38322B6C7} <, >
[360SafeLive]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <D:\Program Files\360\360Safe\Safelive.dll, (Signed) 360.cn>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <d:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.0.3076.dll, (Signed) 深圳市迅雷网络技术有限公司>
[Windows Live ID Sign-in Helper]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corp.>
[OFrameObject Class]
  {9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7108.367.(667).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[APlayer Control]
  {A9322148-C691-4B9D-91FC-B9C461DBE9DD} <C:\Program Files\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7108.367.(667).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[迅雷下载助手]
  {B0E2F470-0B07-48F0-B3B1-5749505FAE9B} <d:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.2.48.dll, (Signed) 深圳市迅雷网络技术有限公司>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.cn>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash10t.ocx, (Signed) Adobe Systems, Inc.>
[xoliimpl Class]
  {DD5BF6D1-6663-47E0-9DFA-5C343CAF178E} <C:\Windows\xinstaller.dll, (Signed) 深圳市迅雷技术有限公司>
[PlayerCtrl Class]
  {E05BC2A3-9A46-4a32-80C9-023A473F5B23} <d:\Program Files\Tencent\QQMusic\QzoneMusic.dll, (Signed) Tencent>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <, >
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[使用迅雷下载]
  <d:\Program Files\Thunder Network\Thunder\BHO\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <d:\Program Files\Thunder Network\Thunder\BHO\GetAllUrl.htm, N/A>
[添加到飞信表情]
  <res://d:\Program Files\China Mobile\Fetion\FetionExt.dll/202, N/A>
[通过飞信短信发送]
  <res://d:\Program Files\China Mobile\Fetion\FetionExt.dll/201, N/A>

==================================

显示全部楼层 · 发表于 2011-7-3 18:28:47

正在运行的进程
[PID: 408 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 540 / SYSTEM][C:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 612 / SYSTEM][C:\Windows\system32\wininit.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 624 / SYSTEM][C:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[PID: 672 / SYSTEM][C:\Windows\system32\services.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 688 / SYSTEM][C:\Windows\system32\lsass.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 696 / SYSTEM][C:\Windows\system32\lsm.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 816 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 928 / SYSTEM][C:\Windows\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 968 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 1168 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[PID: 1216 / SYSTEM][C:\Windows\system32\atiesrxx.exe]  [AMD, 6.14.11.1047]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 1252 / LOCAL SERVICE][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\system32\RtkAPO.dll]  [Realtek Semiconductor Corp., 11, 0, 6000, 132]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[PID: 1292 / SYSTEM][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 1332 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[PID: 1444 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[PID: 1528 / SYSTEM][D:\Program Files\360\360Safe\deepscan\zhudongfangyu.exe]  [360.cn, 3, 2, 2, 1022]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\360\360Safe\360leakfixplugin.dll]  [360.cn, 1, 0, 0, 1002]
[D:\Program Files\360\360Safe\SoftMgr\360SoftMgrS.dll]  [360.cn, 2, 1, 6, 1093]
[D:\Program Files\360\360Safe\deepscan\CloudCom2.dll]  [360.cn, 3, 2, 7, 4175]
[D:\Program Files\360\360Safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 4, 0]
[D:\Program Files\360\360Safe\deepscan\qutmload.dll]  [360.cn, 6, 9, 0, 1009]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 1540 / SYSTEM][C:\Windows\system32\atieclxx.exe]  [AMD, 6.14.11.1047]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\system32\atiadlxx.dll]  [Advanced Micro Devices, Inc., 6.14.10.1053]
[PID: 1792 / SYSTEM][C:\Windows\System32\spoolsv.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[PID: 1828 / SYSTEM][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\sched.exe]  [Avira GmbH, 10.00.00.21]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\schedr.dll]  [Avira GmbH, 10.00.04.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avevtlog.dll]  [Avira GmbH, 10.00.00.08]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\cfglib.dll]  [Avira GmbH, 10.00.13.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\sqlite3.dll]  [, 3.06.19.00]
[PID: 1852 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 1940 / SYSTEM][C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe]  [Andrea Electronics Corporation, 1.0.32.10]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 1968 / SYSTEM][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avfwsvc.exe]  [Avira GmbH, 10.1.20.6]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avevtlog.dll]  [Avira GmbH, 10.00.00.08]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\fwrc.dll]  [Avira GmbH, 10.1.5.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\cfglib.dll]  [Avira GmbH, 10.00.13.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\sqlite3.dll]  [, 3.06.19.00]
[PID: 2004 / SYSTEM][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avguard.exe]  [Avira GmbH, 10.00.01.58]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\libdb44.dll]  [Sleepycat Software, 4.4.20]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\AVEvtLog.dll]  [Avira GmbH, 10.00.00.08]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\guardmsg.dll]  [Avira GmbH, 10.00.07.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\cfglib.dll]  [Avira GmbH, 10.00.13.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\sqlite3.dll]  [, 3.06.19.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\AVPREF.DLL]  [Avira GmbH, 10.00.00.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsmtp.dll]  [Avira GmbH, 10.00.00.17]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avipc.dll]  [Avira GmbH, 1.2.0.24]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\AVGIO.DLL]  [Avira GmbH, 10.00.08.02]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aecore.dll]  [Avira GmbH, 8.1.21.1]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aevdf.dll]  [Avira GmbH, 8.1.2.1]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aescript.dll]  [Avira GmbH, 8.1.3.69]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aescn.dll]  [Avira GmbH, 8.1.7.2]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aesbx.dll]  [Avira GmbH, 8.2.1.34]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aerdl.dll]  [Avira GmbH, 8.1.9.12]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aepack.dll]  [Avira GmbH, 8.2.6.9]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\unacev2.dll]  [ACE Compression Software, 2.6.0.3]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aeoffice.dll]  [Avira GmbH, 8.1.1.25]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aeheur.dll]  [Avira GmbH, 8.1.2.136]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aehelp.dll]  [Avira GmbH, 8.1.17.2]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aegen.dll]  [Avira GmbH, 8.1.5.6]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aeemu.dll]  [Avira GmbH, 8.1.3.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\aebb.dll]  [Avira GmbH, 8.1.1.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avesvc.dll]  [Avira GmbH, 10.00.02.02]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avesvcr.dll]  [Avira GmbH, 9.04.00.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\onlcfg.dll]  [Avira GmbH, 1.00.00.03]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\webcat.dll]  [Avira GmbH, 10.00.06.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\webprot.dll]  [Avira GmbH, 10.00.09.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avbb.dll]  [Avira GmbH, 10.00.18.04]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 2040 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe]  [Apple Inc., 2.0.5.0]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 336 / SYSTEM][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avshadow.exe]  [Avira GmbH, 1.0.0.6]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avipc.dll]  [Avira GmbH, 1.2.0.24]
[PID: 608 / SYSTEM][C:\Windows\system32\conhost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 1068 / SYSTEM][C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe]  [ESET, 4.2.71.2 ]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnScan.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnAmon.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEmon.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnDmon.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEpfw.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnUpdate.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\updater.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnMailPlugins.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 1320 / SYSTEM][C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe]  [Intel Corporation, 6.0.0.1184]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 1584 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE]  [Microsoft Corp., 7.250.4225.0]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[PID: 472 / user][C:\Windows\system32\taskhost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
[D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 8, 5, 1020]
[PID: 2256 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe]  [Microsoft Corp., 7.250.4225.0]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 2312 / user][C:\Windows\system32\Dwm.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\system32\atidxx32.dll]  [ATI Technologies Inc. , 8.17.10.0247]
[PID: 2372 / user][C:\Windows\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Users\user\AppData\Roaming\Kingsoft\klive\bin\kliveshellext.dll]  [Kingsoft Corp. Ltd., 1,16,0,638]
[d:\Program Files\Thunder Network\Xmp\affix\DesktopTips\XmpDesktopTips.dll]  [深圳市迅雷网络技术有限公司, 1.0.1.1]
[C:\Windows\system32\ATL71.DLL]  [Microsoft Corporation, 7.10.6101.0]
[C:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.6030.0]
[C:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.6030.0]
[C:\Windows\system32\FXSAPI.dll]  [Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 8, 5, 1020]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\shlext.dll]  [Avira GmbH, 10.00.00.03]
[d:\Program Files\Tencent\QQPCMgr\5.0.1412.204\plugins\FileSmash\QMSoftExt.dll]  [Tencent, 5.0.1411.204]
[C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll]  [ESET, 4.2.71.2 ]
[D:\Program Files\COMODO\COMODO Internet Security\cavshell.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\WinRAR\rarext.dll]  [, ]
[D:\Program Files\360\360Safe\Utils\shell360ext.dll]  [360.cn, 7, 5, 0, 1015]
[D:\Program Files\360\360Safe\360Common.dll]  [360.cn, 7, 3, 0, 1022]
[C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
[c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamchs.dll]  [Advanced Micro Devices, Inc., 6.14.10.2001]
[PID: 2920 / user][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  [Synaptics Incorporated, 15.0.17.4 27May10]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\system32\SynCOM.dll]  [Synaptics Incorporated, 15.0.17.4 27May10]
[C:\Windows\system32\SynTPAPI.dll]  [Synaptics Incorporated, 15.0.17.4 27May10]
[PID: 2936 / user][D:\Program Files\360\360Safe\safemon\360Tray.exe]  [360.cn, 7, 7, 0, 1015]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\360\360Safe\ipc\ipcservice.dll]  [360.CN, 7, 0, 0, 1013]
[D:\Program Files\360\360Safe\ipc\fileMgr.dll]  [360.cn, 6, 9, 1, 1007]
[D:\Program Files\360\360Safe\deepscan\Bapi.dll]  [360.cn, 2.0.0.1020]
[D:\Program Files\360\360Safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 4, 0]
[D:\Program Files\360\360Safe\ipc\yhregd.dll]  [360.cn, 6, 9, 1, 1011]
[D:\Program Files\360\360Safe\ipc\appd.dll]  [360.cn, 7, 0, 0, 1009]
[D:\Program Files\360\360Safe\safemon\360compro.dll]  [360.cn, 6, 9, 0, 1007]
[D:\Program Files\360\360Safe\safemon\360webpro.dll]  [360.CN, 1, 3, 5, 1011]
[D:\Program Files\360\360Safe\safemon\360traylive.dll]  [360安全中心, 7, 1, 0, 1010]
[D:\Program Files\360\360Safe\safemon\360procmon.dll]  [360.CN, 6, 9, 3, 1003]
[D:\Program Files\360\360Safe\safemon\SelfProtectAPI2.dll]  [360.CN, 6, 9, 0, 1005]
[D:\Program Files\360\360Safe\safemon\360SafeCamera.tpi]  [360.cn, 1, 0, 0, 1010]
[D:\Program Files\360\360Safe\safemon\360safemonpro.tpi]  [360.cn, 1, 4, 3, 1001]
[D:\Program Files\360\360Safe\safemon\DsTpi.tpi]  [360.cn, 1, 0, 0, 2001]
[D:\Program Files\360\360Safe\safemon\MicroExamin.tpi]  [360.cn, 8, 0, 0, 1001]
[D:\Program Files\360\360Safe\safemon\Netm.tpi]  [360.cn, 4, 3, 10, 1162]
[D:\Program Files\360\360Safe\safemon\netmon.tpi]  [360.cn, 3, 1, 8, 1011]
[D:\Program Files\360\360Safe\safemon\obTracer.tpi]  [360.cn, 6, 8, 0, 1003]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[D:\Program Files\360\360Safe\deepscan\qutmload.dll]  [360.cn, 6, 9, 0, 1009]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[D:\Program Files\360\360Safe\ipc\qutmipc.dll]  [360.cn, 6, 9, 0, 1001]
[D:\Program Files\360\360Safe\deepscan\deepscan.dll]  [360.cn, 3, 2, 7, 3271]
[D:\Program Files\360\360Safe\ipc\sbmon.dll]  [360安全中心, 1, 0, 0, 1003]
[D:\Program Files\360\360Safe\netmon\Netgm.dll]  [360.cn, 2, 0, 1, 1020]
[D:\Program Files\360\360Safe\SafeLive.dll]  [360.cn, 2, 0, 1, 1003]
[D:\Program Files\360\360Safe\pdown.dll]  [360.cn, 1, 2, 0, 1062]
[D:\Program Files\360\360Safe\360Common.dll]  [360.cn, 7, 3, 0, 1022]
[D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 8, 5, 1020]
[D:\Program Files\360\360Safe\safemon\urlproc.dll]  [360.cn, 1, 2, 8, 1030]
[D:\Program Files\360\360Safe\safemon\urlprocnet.dll]  [360.cn, 1, 2, 4, 1020]
[D:\Program Files\360\360Safe\netmon\mobileflux.dll]  [360.cn, 1, 0, 0, 1001]
[D:\Program Files\360\360Safe\netmon\360netctrl.dll]  [360.cn, 3, 2, 11, 1018]
[D:\Program Files\360\360Safe\deepscan\Identify\Identify.dll]  [360.cn, 1, 2, 0, 1001]
[D:\Program Files\360\360Safe\netmon\sysmon.dll]  [360.cn, 1, 0, 1, 1111]
[D:\Program Files\360\360Safe\netmon\NetmonEP.dll]  [360.cn, 2, 0, 0, 1001]
[D:\Program Files\360\360Safe\deepscan\Cloudcom2.dll]  [360.cn, 3, 2, 7, 4175]
[D:\Program Files\360\360Safe\ipc\PatchCheck.dll]  [360.cn, 1, 1, 0, 1012]
[D:\Program Files\360\360Safe\efiproc.dll]  [奇虎360安全卫士, 1, 0, 0, 1005]
[D:\Program Files\360\360Safe\deepscan\dsplus.dll]  [360.cn, 1, 0, 0, 1007]
[D:\Program Files\360\360Safe\LiveUpd360.dll]  [360.cn, 1, 2, 0, 1062]
[D:\Program Files\360\360Safe\360net.dll]  [360.cn, 1, 1, 18, 1030]
[D:\Program Files\360\360Safe\360P2SP.dll]  [360.cn, 1, 3, 0, 1026]
[D:\Program Files\360\360Safe\combineext.dll]  [360.cn, 1, 0, 0, 1001]
[D:\Program Files\360\360Safe\deepscan\360UC.dll]  [360.cn, 1, 0, 0, 1005]
[D:\Program Files\360\360Safe\360ver.dll]  [奇虎网, 8, 1, 0, 1001]
[D:\Program Files\360\360Safe\Modules\TrayCust.dll]  [360安全中心, 1, 0, 0, 1017]
[PID: 3328 / SYSTEM][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avmailc.exe]  [Avira GmbH, 10.00.01.38]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\antispam.dll]  [Avira GmbH, 10.0.6.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\pcre.dll]  [Avira GmbH, 7.8.0.1]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\sqlite3.dll]  [, 3.06.19.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\libxml2.dll]  [, 2.7.2.1]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\libiconv2.dll]  [Free Software Foundation, 1.11]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\cares.dll]  [, 1.6.0.1]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\asata.dll]  [Avira GmbH, 10.0.6.1]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avipc.dll]  [Avira GmbH, 1.2.0.24]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\mgrs.dll]  [Avira GmbH, 10.00.06.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 3388 / user][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avgnt.exe]  [Avira GmbH, 10.00.13.18]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\ccwkrlib.dll]  [Avira GmbH, 10.00.00.18]
[d:\program files\xiaohongsan\avira\antivir desktop\cfglib.dll]  [Avira GmbH, 10.00.13.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccgen.dll]  [Avira GmbH, 10.00.34.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccgenrc.dll]  [Avira GmbH, 10.00.35.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccguard.dll]  [Avira GmbH, 10.00.28.13]
[d:\program files\xiaohongsan\avira\antivir desktop\ccgrdrc.dll]  [Avira GmbH, 10.00.29.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccgrdw.dll]  [Avira GmbH, 10.00.09.25]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avipc.dll]  [Avira GmbH, 1.2.0.24]
[d:\program files\xiaohongsan\avira\antivir desktop\ccmguard.dll]  [Avira GmbH, 10.00.18.08]
[d:\program files\xiaohongsan\avira\antivir desktop\ccmgrdrc.dll]  [Avira GmbH, 10.00.18.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccupdate.dll]  [Avira GmbH, 10.00.29.10]
[d:\program files\xiaohongsan\avira\antivir desktop\ccupdrc.dll]  [Avira GmbH, 10.00.29.01]
[d:\program files\xiaohongsan\avira\antivir desktop\cclic.dll]  [Avira GmbH, 10.00.09.23]
[d:\program files\xiaohongsan\avira\antivir desktop\cclicrc.dll]  [Avira GmbH, 10.00.09.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccwgrd.dll]  [Avira GmbH, 10.00.22.15]
[d:\program files\xiaohongsan\avira\antivir desktop\ccwgrdrc.dll]  [Avira GmbH, 10.00.22.01]
[d:\program files\xiaohongsan\avira\antivir desktop\ccwgrdw.dll]  [Avira GmbH, 10.00.07.23]
[d:\program files\xiaohongsan\avira\antivir desktop\ccmsg.dll]  [Avira GmbH, 10.00.09.35]
[d:\program files\xiaohongsan\avira\antivir desktop\ccmsgrc.dll]  [Avira GmbH, 10.00.09.00]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\rcimage.dll]  [Avira GmbH, 10.00.00.32]
[d:\program files\xiaohongsan\avira\antivir desktop\ccfwgnt.dll]  [Avira GmbH, 10.00.36.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccfwitf.dll]  [Avira GmbH, 10.00.36.00]
[d:\program files\xiaohongsan\avira\antivir desktop\ccfwrc.dll]  [Avira GmbH, 10.00.35.00]
[d:\program files\xiaohongsan\avira\antivir desktop\cchips.dll]  [Avira GmbH, 10.00.09.00]
[d:\program files\xiaohongsan\avira\antivir desktop\cchipsrc.dll]  [Avira GmbH, 10.00.11.01]
[d:\program files\xiaohongsan\avira\antivir desktop\ccmainrc.dll]  [Avira GmbH, 10.00.11.00]
[D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 8, 5, 1020]
[PID: 3424 / user][C:\Program Files\Synaptics\SynTP\SynTPHelper.exe]  [Synaptics Incorporated, 15.0.17.4 27May10]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 3572 / SYSTEM][D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\AVWEBGRD.EXE]  [Avira GmbH, 10.1.5.0]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avipc.dll]  [Avira GmbH, 1.2.0.24]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\msgclient.dll]  [Avira GmbH, 10.00.01.23]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 3784 / user][C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe]  [ESET, 4.2.71.2 ]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_03ca5532205cb096\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.4053]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll]  [ESET, 4.2.71.2 ]
[C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll]  [ESET, 4.2.71.2 ]
[PID: 752 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[PID: 252 / SYSTEM][C:\Windows\system32\SearchIndexer.exe]  [(Verified) Microsoft Corporation, 7.00.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 3372 / NETWORK SERVICE][C:\Program Files\Windows Media Player\wmpnetwk.exe]  [Microsoft Corporation, 12.0.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 4300 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 5816 / SYSTEM][C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe]  [Intel Corporation, 10.5.1.1002]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\23bc3936180ff789f44259a211dfc7fc\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.4961 (win7RTMGDR.050727-4900)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System\f7048e198c963fa189cff3aea17dfee3\System.ni.dll]  [Microsoft Corporation, 2.0.50727.4957 (win7RTMGDR.050727-4900)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\d9b3bb263a38ca5767baf78cacf380d8\System.ServiceProcess.ni.dll]  [Microsoft Corporation, 2.0.50727.4927 (NetFXspW7.050727-4900)]
[C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgr.dll]  [Intel Corporation, 10.5.1.1002]
[C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorUtil.dll]  [Intel Corporation, 10.5.1.1002]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e8add38eb4f9c07790b5be549c5f0dae\System.Configuration.ni.dll]  [Microsoft Corporation, 2.0.50727.4927 (NetFXspW7.050727-4900)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\682572c507ea7552c3db1842c21bf9c8\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.4927 (NetFXspW7.050727-4900)]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\443b11b528455611c7549b56349a56eb\System.Runtime.Remoting.ni.dll]  [Microsoft Corporation, 2.0.50727.4927 (NetFXspW7.050727-4900)]
[C:\Program Files\Intel\Intel(R) Rapid Storage Technology\zh-CN\IAStorDataMgr.resources.dll]  [Intel Corporation, 10.5.1.1002]
[C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll]  [N/A, ]
[C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI.dll]  [Intel Corporation, 10.5.1.1002]
[C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll]  [Microsoft Corporation, 9.00.30729.6161]
[C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\93e867e55d7df3a8b4bd1aba3af6f18d\WindowsBase.ni.dll]  [Microsoft Corporation, 3.0.6920.5001 built by: Win7RTMGDR]
[C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorCommon.dll]  [Intel Corp., 1.0.0.0]
[PID: 5968 / NETWORK SERVICE][C:\Windows\system32\sppsvc.exe]  [(Verified) Microsoft Corporation, 6.1.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 4652 / user][C:\Windows\system32\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.3.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 8, 5, 1020]
[PID: 5668 / SYSTEM][C:\Windows\system32\SearchProtocolHost.exe]  [(Verified) Microsoft Corporation, 7.00.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 5460 / SYSTEM][C:\Windows\system32\SearchFilterHost.exe]  [(Verified) Microsoft Corporation, 7.00.7600.16385 (win7_rtm.090713-1255)]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 3828 / user][D:\Program Files\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.4.1331]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[PID: 4468 / user][D:\Program Files\sreng2\SREe4ac7b35.EXE]  [Smallfrogs Studio, 2.8.4.1331]
[C:\Windows\system32\guard32.dll]  [COMODO, 5, 4, 189068, 1354]
[D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 8, 5, 1020]
[D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll]  [Avira GmbH, 10.00.00.07]
[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 2.0.5.0]

==================================
文件关联
.TXT  Error. [C:\Windows\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["%SystemRoot%\hh.exe" %1]
.HLP  OK. [%SystemRoot%\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
.JS Error. [C:\Windows\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
AVSDA over [MSAFD Tcpip [TCP/IP]]
D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll(Avira GmbH, AntiVir layered service provider)
AVSDA over [MSAFD Tcpip [UDP/IP]]
D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll(Avira GmbH, AntiVir layered service provider)
AVSDA
D:\Program Files\xiaohongsan\Avira\AntiVir Desktop\avsda.dll(Avira GmbH, AntiVir layered service provider)

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
N/A

==================================
进程特权扫描
N/A

==================================
计划任务
[已禁用] \\Drivergenius drivers check service
      d:\Program Files\MyDrivers\DriverGenius2011\DriverGenius.exe -static
[已启用] \\RunAsStdUser_Task
      C:\Windows\explorer.exe -static
[已启用] \\{C3100A6F-A90B-4AF8-A3F3-5E26AC32A2E8}
      C:\Windows\system32\pcalua.exe -a D:\MyDrivers\update\新建文件夹\hp_sp45635.exe -d D:\MyDrivers\update\新建文件夹
[已禁用] \Apple\AppleSoftwareUpdate
      C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
[已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
      N/A
[已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
      N/A
[已禁用] \Microsoft\Windows\AppID\PolicyConverter
      %windir%\system32\appidpolicyconverter.exe
[已禁用] \Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck
      %windir%\system32\appidcertstorecheck.exe
[已启用] \Microsoft\Windows\Application Experience\AitAgent
      aitagent
[已启用] \Microsoft\Windows\Application Experience\ProgramDataUpdater
      %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
[已启用] \Microsoft\Windows\Autochk\Proxy
      %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
      BthUdTask.exe $(Arg0)
[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask
      N/A
[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask
      N/A
[已禁用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
      N/A
[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
      %SystemRoot%\System32\wsqmcons.exe
[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag
      %windir%\system32\defrag.exe -c
[已禁用] \Microsoft\Windows\Location\Notifications
      %windir%\System32\LocationNotifications.exe
[已启用] \Microsoft\Windows\Maintenance\WinSAT
      N/A
[已禁用] \Microsoft\Windows\Media Center\ActivateWindowsSearch
      %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
[已禁用] \Microsoft\Windows\Media Center\ConfigureInternetTimeService
      %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
[已禁用] \Microsoft\Windows\Media Center\DispatchRecoveryTasks
      %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ehDRMInit
      %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
[已禁用] \Microsoft\Windows\Media Center\InstallPlayReady
      %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
[已启用] \Microsoft\Windows\Media Center\mcupdate
      %SystemRoot%\ehome\mcupdate $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\MediaCenterRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\ObjectStoreRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\OCURActivate
      %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
[已禁用] \Microsoft\Windows\Media Center\OCURDiscovery
      %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\PBDADiscovery
      %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW1
      %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PBDADiscoveryW2
      %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
[已禁用] \Microsoft\Windows\Media Center\PeriodicScanRetry
      %windir%\ehome\MCUpdate.exe -pscn 0
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
      %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\PvrScheduleTask
      %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
[已禁用] \Microsoft\Windows\Media Center\RecordingRestart
      %SystemRoot%\ehome\ehrec /RestartRecording
[已禁用] \Microsoft\Windows\Media Center\RegisterSearch
      %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
[已禁用] \Microsoft\Windows\Media Center\ReindexSearchRoot
      %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\SqlLiteRecoveryTask
      %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
[已禁用] \Microsoft\Windows\Media Center\UpdateRecordPath
      %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
[已启用] \Microsoft\Windows\MobilePC\HotStart
      N/A
[已启用] \Microsoft\Windows\MUI\LPRemove
      %windir%\system32\lpremove.exe
[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService
      N/A
[已启用] \Microsoft\Windows\NetTrace\GatherNetworkInfo
      %windir%\system32\gatherNetworkInfo.vbs
[已禁用] \Microsoft\Windows\Offline Files\Background Synchronization
      N/A
[已禁用] \Microsoft\Windows\Offline Files\Logon Synchronization
      N/A
[已启用] \Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
      %SystemRoot%\System32\powercfg.exe -energy -auto
[已启用] \Microsoft\Windows\Ras\MobilityManager
      N/A
[已禁用] \Microsoft\Windows\SideShow\AutoWake
      N/A
[已启用] \Microsoft\Windows\SideShow\GadgetManager
      N/A
[已禁用] \Microsoft\Windows\SideShow\SessionAgent
      N/A
[已禁用] \Microsoft\Windows\SideShow\SystemDataProviders
      N/A
[已启用] \Microsoft\Windows\SystemRestore\SR
      %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1
      %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2
      %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[已启用] \Microsoft\Windows\Time Synchronization\SynchronizeTime
      %windir%\system32\sc.exe start w32time task_started
[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig
      sc.exe config upnphost start= auto
[已禁用] \Microsoft\Windows\User Profile Service\HiveUploadTask
      N/A
[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting
      %windir%\system32\wermgr.exe -queuereporting
[已启用] \Microsoft\Windows\Windows Media Sharing\UpdateLibrary
      "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
[已启用] \Microsoft\Windows\WindowsBackup\ConfigNotification
      %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
[已禁用] \Microsoft\Windows\WindowsColorSystem\Calibration Loader
      N/A
[已启用] \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
      N/A

==================================
Windows 安全更新检查
N/A

显示全部楼层 · 发表于 2011-7-3 18:29:05

==================================
API HOOK
入口点错误：NtCreateFile (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：NtCreateProcess (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：NtCreateProcessEx (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：NtDeleteFile (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：NtLoadDriver (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：NtSetInformationProcess (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ZwCreateFile (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ZwCreateProcess (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ZwCreateProcessEx (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ZwDeleteFile (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ZwOpenFile (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ZwSetInformationProcess (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：DeleteFileA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：DeleteFileW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：LoadLibraryA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：LoadLibraryExA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：LoadLibraryExW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：LoadLibraryW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：MoveFileA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：MoveFileExA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：MoveFileExW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：MoveFileW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：TerminateProcess (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CreateFileA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CreateFileW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CopyFileA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CopyFileExA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CopyFileExW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CopyFileW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CreateProcessA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：CreateProcessW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：GetProcAddress (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ShellExecuteA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ShellExecuteEx (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ShellExecuteExA (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ShellExecuteExW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)
入口点错误：ShellExecuteW (危险等级: 一般,  被下面模块所HOOK: C:\Windows\system32\guard32.dll)

==================================
隐藏进程
N/A

==================================

[/CODE]

显示全部楼层 · 发表于 2011-7-3 19:07:58

360安全软件问题

显示全部楼层 · 发表于 2011-7-3 21:58:36

我勒个妈呀，那么多，····一个都不会看，用360看看把，在看看驱动会没有升级？

显示全部楼层 · 发表于 2011-7-3 22:54:26

mark a mark

显示全部楼层 · 发表于 2011-7-3 22:57:27

安软可能冲突了吧!
360 comodo avira eset
个人推荐把eset nod32卸载

显示全部楼层 · 发表于 2011-7-3 22:58:46

做梦发表于 2011-7-3 18:29
==================================
API HOOK
入口点错误：NtCreateFile (危险等级: 一般, 被下面模块所 ...

毛豆，NOD32，红伞，360………………太多了，怀疑冲突。

显示全部楼层 · 发表于 2011-7-4 01:57:33

其实一个comodo足矣，～你不经常安装不明软件怕什么中毒！清理优化什么的可以用ASC

显示全部楼层 · 发表于 2011-7-4 07:55:07

youci 发表于 2011-7-3 19:07
360安全软件问题

是安软的的问题。。。。卸载了360和eset就不卡了。。谢谢。

[已解决] 电脑开机速度突然慢了很多。3分钟了