卡巴主动防御报警但是查不出毒

显示全部楼层 · 发表于 2007-10-27 22:12:58

卡巴主动防御报警
开机不会立刻报警一般在我打开网络游戏以后就开始没十几秒报一次
报警说有keyloger在记录我的键盘行为
但是没有文件路径，好像说是在核心进程里，
可是执行全盘扫描扫描不到任何病毒

这是防住了病毒还是没防住？
谁有办法帮帮我呢？

下面是生成的日志
各位高手：
非常感谢您留心我这份系统诊断报告，小菜鸟十万火急等待您的帮助！
该诊断报告由360安全卫士提供 http://www.360safe.com
诊断时间: 2007-10-27 21:43:54
诊断平台: Microsoft Windows XP Service Pack 2
IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180
计算机物理内存:1022.05MB - 当前可用内存:542.21MB

100 - 未知 - Process: WLTRAY.EXE [Dell Wireless WLAN Card Wireless Network Tray Applet] - C:\WINDOWS\system32\WLTRAY.exe
100 - 未知 - Process: QQ.exe [QQ] - E:\Program Files\Tencent\QQ.exe
100 - 未知 - Process: TIMPlatform.exe [TIMPlatform] - E:\Program Files\Tencent\TIMPlatform.exe
100 - 未知 - Process: Maxthon.exe [Maxthon Browser] - E:\Program Files\Maxthon2\Maxthon.exe
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.google.com/ig?hl=zh-CN
R1 - 未知 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
O2 - 未知 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - E:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll
O3 - 未知 - Toolbar: (Mofile工具条) - [] - {E15B11CB-523C-4023-9BA3-43FB4E57B579} - C:\WINDOWS\DOWNLO~1\MoUpload.ocx
O4 - 未知 - HKLM\..\Run: [NVHotkey] [NVIDIA Hotkey Service, Version 83.13] rundll32.exe nvHotkey.dll,Start
O4 - 未知 - HKLM\..\Run: [Broadcom Wireless Manager UI] [Dell Wireless WLAN Card Wireless Network Tray Applet] C:\WINDOWS\system32\WLTRAY.exe
O8 - 未知 - Extra context menu item: &使用超级旋风下载 - E:\Program Files\Tencent\QQDownload\geturl.htm
O8 - 未知 - Extra context menu item: &使用超级旋风下载全部链接 - E:\Program Files\Tencent\QQDownload\getAllurl.htm
O8 - 未知 - Extra context menu item: Translate with &Babylon - res://E:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载 - E:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - E:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - 未知 - Extra context menu item: 添加到网络硬盘 - E:\Program Files\Tencent\AddToNetDisk.htm
O8 - 未知 - Extra context menu item: 用比特精灵下载(&B) - E:\Program Files\BitSpirit\bsurl.htm
O9 - 未知 - Extra button: 启动迅雷5(HKLM) - E:\Program Files\Thunder Network\Thunder\Thunder.exe
O16 - 未知 - DPF: {1E0DFFCF-27FF-4574-849B-55007349FEDA} (iTrusPTA) - https://img.alipay.com/download/1101/aliedit.cab
O16 - 未知 - DPF: {7260569F-1D40-4E7F-B95B-2E68D35668B9} (MofileUploadX Control) - http://file.mofile.com/activex/MoUpload.ocx
O16 - 未知 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://moonfaceddr.spaces.live.com/PhotoUpload/MsnPUpld.cab
O21 - 未知 - Protocol Icons: HKCR\http\shell\open\command - "E:\Program Files\Maxthon2\Maxthon.exe" "%1"
O21 - 未知 - Protocol Icons: HKCR\ftp\shell\open\command - "E:\Program Files\Maxthon2\Maxthon.exe" "%1"
O21 - 未知 - Protocol Icons: HKCR\https\shell\open\command - "E:\Program Files\Maxthon2\Maxthon.exe" "%1"
O21 - 未知 - Protocol Icons: HKCR\htmlfile\shell\open\command - "E:\Program Files\Maxthon2\Maxthon.exe" "%1"
O23 - 未知 - Service: AVP [保护计算机远离病毒、木马、蠕虫、间谍软件和计算机犯罪。] - "E:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe" -r - (running)
O23 - 未知 - Service: NICCONFIGSVC [配置内部网卡电源管理设置。] - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe - (running)
O23 - 未知 - Service: wltrysvc [Provides automatic configuration for the 802.11 adapter using the Broadcom supplicant.] - C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe - (running)

显示全部楼层 · 发表于 2007-10-27 22:13:30

=======================================
100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量，ms-dos驱动名称类似lpt1以及com，调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统，用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: WLTRYSVC.EXE [broadcom公司出品的无线网络卡相关程序。] - C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe
100 - 安全 - Process: BCMWLTRY.EXE [一款无线网络软件的相关程序。] - C:\WINDOWS\System32\bcmwltry.exe
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序，用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: scardsvr.exe [对插入在计算机智能卡阅读器中的智能卡进行管理和访问控制。] - C:\WINDOWS\System32\SCardSvr.exe
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: NICCONFIGSVC.exe [戴尔公司出品的计算机电源管理软件相关程序。] - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
100 - 安全 - Process: nvsvc32.exe [nvidia driver helper service在nvida显卡驱动中被安装。] - C:\WINDOWS\system32\nvsvc32.exe
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell，包括开始菜单、任务栏，桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] -
100 - 安全 - Process: stsystra.exe [sigmatel声卡的相关软件程序。] - C:\WINDOWS\stsystra.exe
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] - C:\WINDOWS\system32\rundll32.exe
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: wmiprvse.exe [wmi 提供程序 (wmi provider) 在 wmi 和操作系统、应用程序以及其他系统的组件之间充当中介.此进程为合法的系统进程。] - C:\WINDOWS\system32\wbem\wmiprvse.exe
100 - 安全 - Process: 360Safe.exe [360安全卫士] - E:\Program Files\360safe\360Safe.exe
100 - 安全 - Process: 360tray.exe [360安全卫士实时保护模块] - E:\Program Files\360safe\safemon\360Tray.exe
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
O2 - 安全 - BHO: (QQCycloneHelper Class) - [腾讯出品的超级旋风下载组件相关文件。] - {00000000-12C9-4305-82F9-43058F20E8D2} - E:\Program Files\Tencent\QQDownload\QQIEHelper01.dll
O2 - 安全 - BHO: (Adobe PDF Reader Link Helper) - [Adobe Reader，查看和打印 Adobe 便携文档格式 (PDF) 文件。] - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-5411-4565-8998-1DD2C5261283} - E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
O4 - 安全 - HKLM\..\Run: [MSConfig] [windows系统配置程序。] C:\WINDOWS\system32\msconfig.exe /auto
O4 - 安全 - HKLM\..\Run: [AVP] [卡巴斯基杀毒软件相关程序。] "E:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - 安全 - HKLM\..\Run: [SigmatelSysTrayApp] [sigmatel声卡的相关软件程序。] stsystra.exe
O4 - 安全 - HKLM\..\Run: [nwiz] [是NVidia的Nview特性相关程序。该程序用于用户对其特性进行配置，将桌面扩展到多台显示器上。 ] nwiz.exe /installquiet
O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://E:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - 安全 - Extra button: 卡巴斯基Web反病毒保护插件(HKLM) - E:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O16 - 安全 - DPF: {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (招商银行个人版) - https://site.cmbchina.com/download/CMBEdit.cab
O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (running)
=======================================
O31 - 未知 - Folder Menu: {F9DB5320-233E-11D1-9F84-707F02C10627} - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll - Adobe Systems, Inc. - PDF Shell Extension - 7.0.0.0 - 110592 - 4b0991cd076b617a2231b19a6663c1c9
O31 - 未知 - SODL: {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\SHELL32.dll - Microsoft Corporation - Windows Shell Common Dll - 6.0.2900.3051 - 8311296 -
O31 - 未知 - SODL: {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\SHELL32.dll - Microsoft Corporation - Windows Shell Common Dll - 6.0.2900.3051 - 8311296 -
O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {21569614-B795-46b1-85F4-E737A8DC09AD} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {2559a1f7-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {2559a1f0-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {2559a1f1-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {2559a1f2-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {2559a1f3-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {2559a1f4-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {2559a1f5-21d7-11d4-bdaf-00c04f60b9f0} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {D20EA4E1-3957-11d2-A40B-0C5020524152} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {D20EA4E1-3957-11d2-A40B-0C5020524153} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {5E6AB780-7743-11CF-A12B-00AA004AE837} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {22BF0C20-6DA7-11D0-B373-00A0C9034938} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {91EA3F8B-C99B-11d0-9815-00C04FD91972} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {6413BA2C-B461-11d1-A18A-080036B11A03} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {F61FFEC1-754F-11d0-80CA-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {7BA4C742-9E81-11CF-99D3-00AA004AE837} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {169A0691-8DF9-11d1-A1C4-00C04FD75D13} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {AF4F6510-F982-11d0-8595-00AA004CD6D8} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {01E04581-4EEE-11d0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {A08C11D2-A228-11d0-825B-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {00BB2763-6A77-11D0-A535-00C04FD7D062} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {6756A641-DE71-11d0-831B-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {6935DB93-21E8-4ccc-BEB9-9FE3C77A297A} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {7e653215-fa25-46bd-a339-34a2790f3cb7} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {acf35015-526e-4230-9596-becbe19f0ac9} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {00BB2764-6A77-11D0-A535-00C04FD7D062} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {03C036F1-A186-11D0-824A-00AA005B4383} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {00BB2765-6A77-11D0-A535-00C04FD7D062} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {ECD4FC4E-521C-11D0-B792-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {3CCF8A41-5C85-11d0-9796-00AA00B90ADF} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {ECD4FC4C-521C-11D0-B792-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {ECD4FC4D-521C-11D0-B792-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {DD313E04-FEFF-11d1-8ECD-0000F87A470C} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {EF8AD2D1-AE36-11D1-B2D2-006097DF8C11} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {30D02401-6A81-11d0-8274-00C04FD5AE38} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {3028902F-6374-48b2-8DC6-9725E775B926} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {07798131-AF23-11d1-9111-00A0C98BA67D} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b
O31 - 未知 - SEApproved: {7376D660-C583-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\system32\browseui.dll - Microsoft Corporation - Shell Browser UI Library - 6.0.2900.3199 - 1022464 - 52cf95184a1679d053375ff80e91f42b

显示全部楼层 · 发表于 2007-10-27 22:13:51

O31 - 未知 - SEApproved: {EFA24E61-B078-11d0-89E4-00C04FC9E26E} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {EFA24E62-B078-11d0-89E4-00C04FC9E26E} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {0A89A860-D7B1-11CE-8350-444553540000} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {A5E46E3A-8849-11D1-9D8C-00C04FC99D61} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {131A6951-7F78-11D0-A979-00C04FD705A2} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {9461b922-3c5a-11d2-bf8b-00c04fb93661} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {E7E4BC40-E76A-11CE-A9BB-00AA004AE837} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {FBF23B40-E3F0-101B-8488-00AA003E56F8} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {3C374A40-BAE4-11CF-BF7D-00AA006946EE} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {FF393560-C2A7-11CF-BFF4-444553540000} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {7BD29E00-76C1-11CF-9DD0-00A0C9034933} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {7BD29E01-76C1-11CF-9DD0-00A0C9034933} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {A2B0DD40-CC59-11d0-A3A5-00C04FD706EC} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {67EA19A0-CCEF-11d0-8024-00C04FD75D13} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {3DC7A020-0ACD-11CF-A9BB-00AA004AE837} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {EFA24E64-B078-11d0-89E4-00C04FC9E26E} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {871C5380-42A0-1069-A2EA-08002B30309D} - C:\WINDOWS\system32\shdocvw.dll - Microsoft Corporation - Shell Doc Object and Control Library - 6.0.2900.3199 - 1494016 - 211a4f0f70e3434688491edf13d87c85
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {f39a0dc0-9cc8-11d0-a599-00c04fd64433} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3199 - 150016 - 0b782a03bc8c1fb8a463d5270f870a69
O31 - 未知 - SEApproved: {f3aa0dc0-9cc8-11d0-a599-00c04fd64434} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3199 - 150016 - 0b782a03bc8c1fb8a463d5270f870a69
O31 - 未知 - SEApproved: {f3ba0dc0-9cc8-11d0-a599-00c04fd64435} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3199 - 150016 - 0b782a03bc8c1fb8a463d5270f870a69
O31 - 未知 - SEApproved: {f3da0dc0-9cc8-11d0-a599-00c04fd64437} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3199 - 150016 - 0b782a03bc8c1fb8a463d5270f870a69
O31 - 未知 - SEApproved: {f3ea0dc0-9cc8-11d0-a599-00c04fd64438} - C:\WINDOWS\system32\cdfview.dll - Microsoft Corporation - Channel Definition File Viewer - 6.0.2900.3199 - 150016 - 0b782a03bc8c1fb8a463d5270f870a69
O31 - 未知 - SEApproved: {692F0339-CBAA-47e6-B5B5-3B84DB604E87} - C:\WINDOWS\system32\extmgr.dll - Microsoft Corporation - Extensions Manager - 6.0.2900.3199 - 55808 - 2d4c7f6c77366c0c364ba6ead4752bae
O31 - 未知 - SEApproved: {1CDB2949-8F65-4355-8456-263E7C208A5D} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11019 - 466944 - cb37f7691bf0e03111ee3a92aacf85b3
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A47} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11019 - 466944 - cb37f7691bf0e03111ee3a92aacf85b3
O31 - 未知 - SEApproved: {1E9B04FB-F9E5-4718-997B-B8DA88302A48} - C:\WINDOWS\system32\nvshell.dll -  -  - 6.14.10.11019 - 466944 - cb37f7691bf0e03111ee3a92aacf85b3
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - E:\Program Files\WinRAR\rarext.dll -  -  -  - 128512 - 2b7421a2351fbfa6e29141c46aea6b57
O31 - 未知 - Directory Menu: {A470F8CF-A1E8-4f65-8335-227475AA5C46} - C:\WINDOWS\system32\SHELL32.dll - Microsoft Corporation - Windows Shell Common Dll - 6.0.2900.3051 - 8311296 -
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - E:\Program Files\WinRAR\rarext.dll -  -  -  - 128512 - 2b7421a2351fbfa6e29141c46aea6b57
O31 - 未知 - LSA: Security Packages - C:\WINDOWS\system32\kerberos.dll - Microsoft Corporation - Kerberos Security Package - 5.1.2600.2698 - 295936 - e5f30164055d6441a4def03a97158f49
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -

=======================================

O40 - Explorer.EXE -  - E:\Program Files\Thunder Network\Thunder\Components\ResWorker\DsBho_00.dll - DsBho - 849a49f12eadb082b06f33f3d66bce7a
O40 - Explorer.EXE - Thunder Networking Technologies,LTD - E:\Program Files\Thunder Network\Thunder\Components\ResWorker\DataProcessor_00.dll - DataProcessor - 25b594e0b9781d47976023f35d491c83
O40 - Explorer.EXE - Adobe Systems, Inc. - E:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll - PDF Shell Extension - 4b0991cd076b617a2231b19a6663c1c9
O40 - Explorer.EXE - Microsoft Corporation - C:\WINDOWS\system32\MSVCR71.dll - Microsoft? C Runtime Library - 86f1895ae8c5e8b17d99ece768a70732
O40 - rundll32.exe - NVIDIA Corporation - C:\WINDOWS\system32\nvHotkey.dll - NVIDIA Hotkey Service, Version 83.13 - 0ea63ebb1d375217b96768463548df6b

=======================================

O41 - APPDRV - App Support Driver - C:\WINDOWS\system32\drivers\APPDRV.SYS - (running) - App Support Driver - Dell Inc - ec94e05b76d033b74394e7b2175103cf
O41 - klif - spuper-ptor - C:\WINDOWS\system32\drivers\klif.sys - (running) - spuper-ptor - Kaspersky Lab - c6a8ad1c9698e5b7b4dd8c19257456e8
O41 - netpasadapter1 - Netpas Win32 Virtual Network Driver - C:\WINDOWS\system32\drivers\netpas.sys - (running) - Netpas Win32 Virtual Network Driver - Netpas - e7ae373c97a40ef777758a62d785e7c9
O41 - OMCI - OMCI Device Driver - C:\WINDOWS\system32\drivers\omci.sys - (running) - OMCI Device Driver - Dell Computer Corporation - cec7e2c6c1fa00c7ab2f5434f848ae51
O41 - QKeyService - KeyCrypt - C:\WINDOWS\system32\KeyCrypt.sys - (running) - KeyCrypt -  Tencent Technology (Shenzhen) Company Limited - ecaa6d40a70bee079f3817601bec1692

[已解决] 卡巴主动防御报警但是查不出毒