收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 软件区 解疑答难区 一打开IE金山卫士就报钓鱼网站
12
返回列表 发新帖
楼主: 尘梦幽然
 收起左侧

[系统] 一打开IE金山卫士就报钓鱼网站

[复制链接]
尘梦幽然
 楼主| 发表于 2014-4-19 13:38:05 | 显示全部楼层

RE: 一打开IE金山卫士就报钓鱼网站

伊川书院 发表于 2014-4-19 00:36
没事,重置不会有影响,重启一下就行了

重置了一下,重启,SEP防火墙挂掉了。。
回复

举报

伊川书院
发表于 2014-4-19 13:59:04 | 显示全部楼层
尘梦幽然 发表于 2014-4-19 13:38
重置了一下,重启,SEP防火墙挂掉了。。

1.很神奇的防火墙。

2.http://www.xjgcxm.com/
许继集团的


你看一下是否与你的办公有关

如果没有关系,可以重置IE浏览器或卸载不必要的插件,再看看,如果还是没有用,下载最新版的IE之后,再手删除Internet Explorer文件夹之后,再重装按装IE。


如果是有关系的,是你们公司的网址,可能是AO办公软件插件造成的问题,可以偿试加入白名单看看。
回复

举报

尘梦幽然
 楼主| 发表于 2014-4-19 14:01:31 | 显示全部楼层

RE: 一打开IE金山卫士就报钓鱼网站

伊川书院 发表于 2014-4-19 13:59
1.很神奇的防火墙。

2.http://www.xjgcxm.com/

是许继员工。
插件我至今没找到……汗……金山卫士扫不出。
回复

举报

伊川书院
发表于 2014-4-19 14:02:56 | 显示全部楼层
尘梦幽然 发表于 2014-4-19 14:01
是许继员工。
插件我至今没找到……汗……金山卫士扫不出。

SREng试试

如果是公司,那是一个正常的插件,可以偿试加入白名单。
回复

举报

尘梦幽然
 楼主| 发表于 2014-4-20 11:06:14 | 显示全部楼层
伊川书院 发表于 2014-4-19 14:02
SREng试试

如果是公司,那是一个正常的插件,可以偿试加入白名单。


  3. 2014-04-20,11:03:07

  5. System Repair Engineer 2.8.4.1331
  6. Smallfrogs (http://www.KZTechs.com)

  8. Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能

  10. 以下内容被选中:
  11.     所有的启动项目(包括注册表、启动文件夹、服务等)
  12.     浏览器加载项
  13.     正在运行的进程(包括进程模块信息)
  14.     Winsock 提供者
  15.     计划任务
  16.     API HOOK
  17.     隐藏进程


  20. 启动项目
  21. 注册表
  22. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  23.     <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
  24. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  25.     <CCBCertificate><C:\Program Files\CCBComponents\DMWZ\CCBCertificate.exe>  [(Verified)Beijing Daming Wuzhou Science & Technology Co.,Ltd.]
  26.     <USBKeyTools.exe><C:\Program Files\CCBComponents\HDZB\USBKeyTools.exe>  [(Verified)BeiJing HuaDa ZhiBao Electronic System CO., LTD.]
  27.     <KSafeTray><"c:\program files\ksafe\KSafeTray.exe" -autorun>  [(Verified)Kingsoft Security Co.,Ltd]
  28. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  29.     <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
  30.     <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
  31. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  32.     <AppInit_DLLs><>  [N/A]
  33. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  34.     <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
  35. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  36.     <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
  37. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  38.     <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
  39.     <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
  40.     <WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows]
  41.     <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
  42.     <UPnPMonitor><C:\WINDOWS\system32\upnpui.dll>  [(Verified)Microsoft Windows Component Publisher]
  43. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
  44.     <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
  45. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
  46.     <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
  47. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
  48.     <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
  49. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
  50.     <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
  51. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
  52.     <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  53. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
  54.     <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  55. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
  56.     <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
  57. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
  58.     <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  59. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
  60.     <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  61. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
  62.     <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  63. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
  64.     <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
  65.     <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
  66. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
  67.     <Internet Explorer 版本更新><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows]
  68. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
  69.     <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
  70. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
  71.     <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows]
  72. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
  73.     <Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Corporation]
  74. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
  75.     <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Corporation]
  76. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
  77.     <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
  78. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
  79.     <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
  80. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
  81.     <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
  82. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
  83.     <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Remove.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
  84. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
  85.     <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Component Publisher]
  86. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
  87.     <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
  88. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
  89.     <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
  90. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
  91.     <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
  92. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
  93.     <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows]

  95. ==================================
  96. 启动文件夹
  97. N/A

  99. ==================================
  100. 服务
  101. [Alipay security service / AlipaySecSvc][Running/Auto Start]
  102.   <"C:\Program Files\alipay\alieditplus\AlipaySecSvc.exe"><Alipay Inc.>
  103. [ASP.NET State Service / aspnet_state][Stopped/Manual Start]
  104.   <C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe><(File is missing)>
  105. [CrossLoop Service / CrossLoopService][Stopped/Manual Start]
  106.   <"C:\Documents and Settings\chengbaoren\Local Settings\Application Data\CrossLoop\CrossLoopService.exe" --service><CrossLoop>
  107. [Cisco Systems, Inc. VPN Service / CVPND][Running/Auto Start]
  108.   <"C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe"><Cisco Systems, Inc.>
  109. [FLEXnet Licensing Service / FLEXnet Licensing Service][Stopped/Manual Start]
  110.   <"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"><Macrovision Europe Ltd.>
  111. [HDZB Comm Service For V3.0 / HZ_CommSrv][Running/Auto Start]
  112.   <C:\WINDOWS\system32\HZ_CommSrv.exe><华大智宝电子系统有限公司>
  113. [ICBC Daemon Service / ICBC Daemon Service][Stopped/Manual Start]
  114.   <C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\IcbcDaemon.exe><N/A>
  115. [IconMan_R / IconMan_R][Running/Auto Start]
  116.   <"C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe"><Realsil Microelectronics Inc.>
  117. [KSafe service / KSafeSvc][Stopped/Auto Start]
  118.   <"c:\program files\ksafe\KSafeSvc.exe" -svc><Kingsoft Corporation>
  119. [METrsptSvr / METrsptSvr][Stopped/Manual Start]
  120.   <C:\WINDOWS\system32\svchost -k "METrsptSvr"-->C:\Documents and Settings\All Users\Application Data\Thunder Network\DeviceTips\Program\METrsptSvr.dll><N/A>
  121. [NetMeeting Remote Desktop Sharing / mnmsrvc][Stopped/Manual Start]
  122.   <><(File is missing)>
  123. [Hillstone Secure Connect / SecureConnect][Running/Auto Start]
  124.   <"C:\Program Files\Hillstone\Hillstone Secure Connect\bin\SSLChannel.exe" -s control><Hillstone Networks>
  125. [TightVNC Server / tvnserver][Stopped/Manual Start]
  126.   <"C:\Documents and Settings\chengbaoren\Local Settings\Application Data\CrossLoop\tvnserver.exe" -service><GlavSoft LLC.>
  127. [WatchData ccb V3.2 / WDMonitorCCB][Running/Auto Start]
  128.   <C:\WINDOWS\system32\WatchData\Watchdata CCB OCL CSP v3.2\WDKeyMonitorCCB.exe><Beijing WatchData System Co., Ltd.>

  130. ==================================
  131. 驱动程序
  132. [Lenovo Virtual Power Controller Driver / ACPIVPC][Running/Manual Start]
  133.   <system32\DRIVERS\AcpiVpc.sys><Lenovo Corporation>
  134. [Ambfilt / Ambfilt][Stopped/Manual Start]
  135.   <system32\drivers\Ambfilt.sys><Creative>
  136. [BAPIDRV / BAPIDRV][Running/System Start]
  137.   <system32\DRIVERS\BAPIDRV.sys><360.cn>
  138. [BC / BC][Running/Boot Start]
  139.   <\SystemRoot\system32\Drivers\BC.sys><Kingsoft Corporation>
  140. [bd0001 / bd0001][Stopped/System Start]
  141.   <system32\DRIVERS\bd0001.sys><N/A>
  142. [bd0004 / bd0004][Stopped/System Start]
  143.   <system32\DRIVERS\bd0004.sys><N/A>
  144. [BDMWrench / BDMWrench][Stopped/System Start]
  145.   <system32\DRIVERS\BDMWrench.sys><N/A>
  146. [WIDCOMM USB Bluetooth Driver / BTWUSB][Running/Manual Start]
  147.   <System32\Drivers\btwusb.sys><Broadcom Corporation.>
  148. [Cisco Systems VPN Adapter / CVirtA][Stopped/Manual Start]
  149.   <system32\DRIVERS\CVirtA.sys><Cisco Systems, Inc.>
  150. [Cisco Systems Inc. IPSec Driver / CVPNDRVA][Running/Auto Start]
  151.   <\??\C:\WINDOWS\system32\Drivers\CVPNDRVA.sys><Cisco Systems, Inc.>
  152. [Dritek Keyboard Filter Driver / DKbFltr][Running/Manual Start]
  153.   <system32\DRIVERS\DKbFltr.sys><Dritek System Inc.>
  154. [Deterministic Network Enhancer Miniport / DNE][Running/Manual Start]
  155.   <system32\DRIVERS\dne2000.sys><Deterministic Networks, Inc.>
  156. [Creative AudioPCI (ES1371,ES1373) (WDM) / es1371][Stopped/Manual Start]
  157.   <system32\drivers\es1371mp.sys><Creative Technology Ltd.>
  158. [HUAWEI USB-NDIS miniport / ewusbnet][Stopped/Manual Start]
  159.   <system32\DRIVERS\ewusbnet.sys><Huawei Technologies Co., Ltd.>
  160. [Huawei MobileBroadband USB PNP Device / ew_hwusbdev][Stopped/Manual Start]
  161.   <system32\DRIVERS\ew_hwusbdev.sys><Huawei Technologies Co., Ltd.>
  162. [EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys) / FPSensor][Running/Auto Start]
  163.   <System32\Drivers\FPSensor.sys><EgisTec>
  164. [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  165.   <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
  166. [Intel(R) Management Engine Interface / HECI][Running/Manual Start]
  167.   <system32\DRIVERS\HECI.sys><Intel Corporation>
  168. [Hillstone Virtual Network Adapter / hssvc][Running/Manual Start]
  169.   <system32\DRIVERS\hssvc.sys><Hillstone Network>
  170. [huawei_enumerator / huawei_enumerator][Running/Manual Start]
  171.   <system32\DRIVERS\ew_jubusenum.sys><Huawei Technologies Co., Ltd.>
  172. [Huawei DataCard USB Modem and USB Serial / hwdatacard][Stopped/Manual Start]
  173.   <system32\DRIVERS\ewusbmdm.sys><Huawei Technologies Co., Ltd.>
  174. [ialm / ialm][Running/Manual Start]
  175.   <system32\DRIVERS\igxpmp32.sys><Intel Corporation>
  176. [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  177.   <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
  178. [英特尔(R) 显示器音频 / IntcDAud][Running/Manual Start]
  179.   <system32\DRIVERS\IntcDAud.sys><Intel(R) Corporation>
  180. [kmodurl / kmodurl][Running/System Start]
  181.   <\??\c:\program files\ksafe\kmodurlxp.sys><Kingsoft Corporation>
  182. [ksafebootsafe / ksafebootsafe][Running/Boot Start]
  183.   <\SystemRoot\system32\Drivers\ksafebootsafe.sys><Kingsoft Corporation>
  184. [ksapi / ksapi][Stopped/Manual Start]
  185.   <\??\C:\WINDOWS\system32\drivers\ksapi.sys><Kingsoft Corporation>
  186. [NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller / L1c][Running/Manual Start]
  187.   <system32\DRIVERS\l1c51x86.sys><Atheros Communications, Inc.>
  188. [Monfilt / Monfilt][Stopped/Manual Start]
  189.   <system32\drivers\Monfilt.sys><Creative Technology Ltd.>
  190. [___ Intel(R) Wireless WiFi Link 5000 系列适配器驱动程序(适用于 Windows XP 32 位) / NETwNx32][Running/Manual Start]
  191.   <system32\DRIVERS\NETwNx32.sys><Intel Corporation>
  192. [NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
  193.   <system32\drivers\npf.sys><CACE Technologies>
  194. [PassGuard / PassGuard][Running/Auto Start]
  195.   <\??\C:\WINDOWS\system32\drivers\PassGuard.sys><>
  196. [AMD PCNET Compatable Adapter Driver / PCnet][Stopped/Manual Start]
  197.   <system32\DRIVERS\pcntpci5.sys><AMD Inc.>
  198. [Protector / Protector][Running/Auto Start]
  199.   <\??\C:\WINDOWS\system32\drivers\Protector.sys><www.ISRA.org.cn>
  200. [ProtectorA / ProtectorA][Running/Auto Start]
  201.   <\??\C:\WINDOWS\system32\drivers\ProtectorA.sys><www.ISRA.org.cn>
  202. [NEC Note Keyboard with One-touch start buttons / Ps2Led][Stopped/Manual Start]
  203.   <system32\DRIVERS\Ps2Led.sys><NEC Corporation>
  204. [Ps2LedIF / Ps2LedIF][Running/System Start]
  205.   <\SystemRoot\system32\drivers\ps2ledif.sys><NEC Corporation>
  206. [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  207.   <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
  208. [QQProtect / QQProtect][Running/System Start]
  209.   <\??\C:\WINDOWS\system32\drivers\QQProtect.sys><Tencent>
  210. [RtsUStor.Sys Realtek USB Card Reader / RSUSBSTOR][Running/Manual Start]
  211.   <System32\Drivers\RtsUStor.sys><Realtek Semiconductor Corp.>
  212. [Secdrv / Secdrv][Stopped/Manual Start]
  213.   <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
  214. [SATALink driver accelerator / SiFilter][Stopped/Disabled]
  215.   <\SystemRoot\system32\DRIVERS\SiWinAcc.sys><Silicon Image, Inc.>
  216. [TCP/IP Protocol Driver / Tcpip][Running/System Start]
  217.   <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
  218. [TesSafe / TesSafe][Stopped/Manual Start]
  219.   <\??\C:\WINDOWS\system32\TesSafe.sys><TENCENT>
  220. [viamraid / viamraid][Stopped/Boot Start]
  221.   <\SystemRoot\system32\DRIVERS\viamraid.sys><VIA Technologies inc,.ltd>
  222. [vsdatant / vsdatant][Stopped/Manual Start]
  223.   <\??\C:\WINDOWS\system32\vsdatant.sys><Zone Labs, LLC>

  225. ==================================
  226. 浏览器加载项
  227. [迅雷下载支持组件]
  228.   {DE05CF4A-7B0A-4775-B5E5-396244938679} <C:\Program Files\Thunder Network\Thunder\Thunder BHO Platform\np_tdieplat.dll, (Signed) 深圳市迅雷网络技术有限公司>
  229. []
  230.   {3ABECEEC-DD81-4511-A7FD-B3B657B64892} <, >
  231. [Shockwave Flash Object]
  232.   {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash32_13_0_0_182.ocx, (Signed) Adobe Systems, Inc.>
  233. []
  234.   {00000ADA-7E0D-47C1-986C-F017D09C4304} <, >
  235. []
  236.   {000DA090-57AA-424B-A8F0-621B7C08B8F4} <, >
  237. []
  238.   {08D512D2-7D97-4E22-B7DB-82791106C086} <, >
  239. [Edit Class]
  240.   {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINDOWS\system32\CMBEdit.dll, >
  241. [UPEditorCtrl Class]
  242.   {0E48410F-D1B8-472A-85DB-27F3D77284CE} <C:\WINDOWS\system32\UPEdit\UPEditor.dll, (Signed) 中国银联股份有限公司>
  243. []
  244.   {0F4BF955-A127-41B7-A998-369904AA2578} <, >
  245. []
  246.   {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <, >
  247. [iTrusPTA Class]
  248.   {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\3.7.0.0\pta.dll, (Signed) iTruschina Co., Ltd.>
  249. []
  250.   {1E525898-EE12-4002-9374-82D15147F762} <, >
  251. [迅雷下载支持事件]
  252.   {1E935CBE-2951-48FE-93C8-4B7F1E5AA14E} <C:\Program Files\Thunder Network\Thunder\Thunder BHO Platform\np_tdieplat.dll, (Signed) 深圳市迅雷网络技术有限公司>
  253. [InfoScan Control]
  254.   {1F14548F-6975-40F1-AE24-6E2D1D449B2F} <C:\PROGRA~1\CCBCOM~1\Detector\InfoScan.dll, (Signed) CCB>
  255. [Windows Media Player]
  256.   {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
  257. []
  258.   {23A860E9-0C41-4E01-9206-D3FC0E413645} <, >
  259. [HTML Document]
  260.   {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
  261. []
  262.   {25C68603-9497-45fd-998B-A8D80B8FC591} <, >
  263. [DHTML Edit Control Safe for Scripting for IE5]
  264.   {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
  265. []
  266.   {36C9539B-49D2-01C7-9C6D-10DACDFEA59C} <, >
  267. []
  268.   {3AA9CF07-DF20-48FF-98BE-DED276E40146} <, >
  269. []
  270.   {42839A31-E8DC-4A54-A43B-95BF52DE8125} <, >
  271. [Agent Class]
  272.   {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <C:\Program Files\Thunder Network\Thunder\BHO\ThunderAgent7.9.20.4754.dll, (Signed) 深圳市迅雷网络技术有限公司>
  273. [EditCtrl Class]
  274.   {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\3.7.0.0\aliedit.dll, (Signed) >
  275. []
  276.   {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} <, >
  277. [Shell Name Space]
  278.   {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
  279. []
  280.   {5D578929-E74E-46A2-A810-4F33D011DC52} <, >
  281. []
  282.   {5EF7B131-C278-4034-BC88-2CE28B128681} <, >
  283. [CAntiVersion Object]
  284.   {5EFE0AA6-B28B-41BD-9B3C-02AA3F79EA9A} <C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\ICBC_WIN32\AntiPhishingVer.dll, (Signed) 中国工商银行>
  285. [Windows Media Player]
  286.   {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
  287. []
  288.   {6D53EC84-6AAE-4787-AEEE-F4628F01010C} <, >
  289. [SecCheck Class]
  290.   {6EAAD146-39C4-4F5C-A0A7-DAA160ABD907} <C:\Program Files\alipay\AlipayDHC\1.1.0.0\npAlipaydhc.dll, (Signed) Alipay.com Inc. >
  291. []
  292.   {6EE9CD3E-A386-4DAE-9737-A759DBF927AE} <, >
  293. []
  294.   {70425897-213B-4a9a-943B-2EEFB2124E35} <, >
  295. [AxInputControl Class]
  296.   {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\InputControl.dll, (Signed) >
  297. [BOC ProcessProtect Class]
  298.   {776B71E2-B4CC-4C94-BC7C-09103AA690B6} <C:\WINDOWS\system32\ProcessProtection.dll, (Signed) www.nitsc.cn>
  299. [CertEnroll Class]
  300.   {7978461C-CC22-48F2-BC69-02220D3E101D} <C:\WINDOWS\system32\aliedit\3.7.0.0\itrusenroll.dll, (Signed) iTruschina Co., Ltd.>
  301. []
  302.   {7CCE07A5-A590-4554-B5C3-082840D7012E} <, >
  303. []
  304.   {7DB2D5A0-7241-4E79-B68D-6309F01C5231} <, >
  305. []
  306.   {87515F61-A66C-4319-A0E0-D416CB8059E3} <, >
  307. []
  308.   {876D0712-C780-4347-B56D-C30C520033C5} <, >
  309. [Microsoft Web Browser]
  310.   {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
  311. []
  312.   {889D2FEB-5411-4565-8998-1DD2C5261283} <, >
  313. [XML DOM Document 6.0]
  314.   {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
  315. [XML HTTP 6.0]
  316.   {88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
  317. [AxSubmitControl Class]
  318.   {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\system32\SubmitControl.dll, (Signed) >
  319. [SecCtrl Class]
  320.   {8EB7C6CB-2DA6-4ABE-B2EA-EAC5A372E757} <C:\WINDOWS\system32\aliedit\3.7.0.0\npAliSecCtrl.dll, (Signed) Alipay.com Inc. >
  321. []
  322.   {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
  323. []
  324.   {94C3E4BB-A261-4A83-B437-EA6F7A28CA68} <, >
  325. []
  326.   {96CD6DA7-17F2-4576-82B0-BE4526FB7D6B} <, >
  327. [OFrameObject Class]
  328.   {9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7201.438.(799).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
  329. []
  330.   {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <, >
  331. []
  332.   {9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9C} <, >
  333. []
  334.   {A8502600-B272-4F68-A67B-A0305D46D297} <, >
  335. [APlayer3 Control]
  336.   {A9332148-C691-4B9D-91FC-B9C461DBE9DD} <C:\Documents and Settings\All Users\Application Data\Thunder Network\APlayer\APlayer_3.6.0.665.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
  337. [RMGetLicense Class]
  338.   {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, (Signed) Microsoft Corporation>
  339. [DapCtrl Class]
  340.   {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7201.438.(799).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
  341. []
  342.   {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F9} <, >
  343. []
  344.   {AE7CD045-E861-484F-8273-0445EE161910} <, >
  345. []
  346.   {B126AFB6-E324-1D10-304C-07111FBBD9AE} <, >
  347. [KeyCode Control]
  348.   {B1CE16C6-EE96-44D0-8866-654C5536F810} <C:\PROGRA~1\CCBCOM~1\Detector\CCBENC~1.OCX, (Signed) CCB>
  349. []
  350.   {B1FBC1AD-5644-4084-882A-0F8BA85E7506} <, >
  351. [SearchAssistantOC]
  352.   {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
  353. []
  354.   {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <, >
  355. []
  356.   {BB4491A2-D11A-4C6B-91C0-B53246A3122B} <, >
  357. [InfosecCCBNetSign Class]
  358.   {BC96F5A4-C930-4226-ADAB-59349AE585E9} <C:\WINDOWS\system32\CCBNetSignCom.dll, (Signed) Infosec Technologies Co., Ltd.>
  359. []
  360.   {C09B2F68-1429-BDB7-EE59-6674248D7375} <, >
  361. []
  362.   {C728DAB8-FDF5-4CD7-89DD-879D25794C77} <, >
  363. [AUDIO__MP3 Moniker Class]
  364.   {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
  365. [VIDEO__X_MS_WMV Moniker Class]
  366.   {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
  367. []
  368.   {CD764F38-0DF4-44BE-9D55-0AAAC36D5FBB} <, >
  369. [WDCCBCtrl Class]
  370.   {CE0460F5-48BD-4DC1-A046-0BDCB5A06CEB} <C:\WINDOWS\system32\wdccb.dll, (Signed) >
  371. [Microsoft Url Search Hook]
  372.   {CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
  373. [Shockwave Flash Object]
  374.   {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash32_13_0_0_182.ocx, (Signed) Adobe Systems, Inc.>
  375. []
  376.   {D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} <, >
  377. [InstallHelper Class]
  378.   {DAEB1ABC-48F1-4bb8-82E8-0DAC468F35A4} <C:\Program Files\Tencent\QQmusic\QQMusicInstall\QQMusicMMInstaller.dll, (Signed) Tencent>
  379. [xoliimpl Class]
  380.   {DD5BF6D1-6663-47E0-9DFA-5C343CAF178E} <C:\WINDOWS\xinstaller.dll, (Signed) 深圳市迅雷技术有限公司>
  381. [AccountProtectBHO Class]
  382.   {DDD362CF-523B-4BC9-8FDC-58F93B6BC945} <C:\Documents and Settings\chengbaoren\Application Data\Tencent\QQ\QQAntiPhishing\AccountProtect.dll, (Signed) Tencent>
  383. [迅雷下载支持组件]
  384.   {DE05CF4A-7B0A-4775-B5E5-396244938679} <C:\Program Files\Thunder Network\Thunder\Thunder BHO Platform\np_tdieplat.dll, (Signed) 深圳市迅雷网络技术有限公司>
  385. [PlayerCtrl Class]
  386.   {E05BC2A3-9A46-4a32-80C9-023A473F5B23} <C:\Program Files\Tencent\QQMusic\QzoneMusic\QzoneMusic.dll, (Signed) Tencent>
  387. []
  388.   {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
  389. [BOC Edit Class]
  390.   {E61E8363-041F-455C-8AD0-8A61F1D8E540} <C:\WINDOWS\system32\KeyboardProtection.dll, (Signed) www.nitsc.cn>
  391. []
  392.   {E758BC30-C8C3-4379-B27B-B50E146460A9} <, >
  393. [XML HTTP Request]
  394.   {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
  395. [PPLive Lite Class]
  396.   {EF0D1A14-1033-41A2-A589-240C01EDC078} <C:\Program Files\Internet Explorer\PPLite\plugin\pplugin2.dll, (Signed) >
  397. []
  398.   {F3D0D36F-23F8-4682-A195-74C92B03D4AF} <, >
  399. []
  400.   {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <, >
  401. [XML HTTP]
  402.   {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
  403. []
  404.   {F7E55BDF-9528-46ba-B550-777859627591} <, >
  405. []
  406.   {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
  407. [webmod Class]
  408.   {FEE3C8C5-9BEA-4079-AB36-63ECABFC7392} <C:\WINDOWS\system32\aliedit\3.7.0.0\alidcp.dll, (Signed) Alipay.com Co.,Ltd>
  409. [&使用&迅雷下载]
  410.   <C:\Program Files\Thunder Network\Thunder\BHO\\GetUrl.htm, N/A>
  411. [&使用&迅雷下载全部链接]
  412.   <C:\Program Files\Thunder Network\Thunder\BHO\\GetAllUrl.htm, N/A>
  413. [&使用&迅雷离线下载]
  414.   <C:\Program Files\Thunder Network\Thunder\BHO\OfflineDownload.htm, N/A>
  415. [使用迅雷看看播放器播放]
  416.   <C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEMenu.htm, N/A>
  417. [添加当前页到迅雷看看播放器标签]
  418.   <C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEMenuAddStoreTab.htm, N/A>

  420. ==================================
  421. 正在运行的进程
  422. [PID: 872 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  423. [PID: 1644 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  424. [PID: 1668 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
  425.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  426. [PID: 1712 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
  427. [PID: 1724 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
  428.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  429. [PID: 1864 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  430.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  431. [PID: 2016 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  432.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  433. [PID: 132 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  434.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  435. [PID: 364 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  436.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  437. [PID: 396 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  438.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  439. [PID: 788 / LOCAL SERVICE][C:\WINDOWS\System32\SCardSvr.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
  440.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  441. [PID: 220 / SYSTEM][C:\Program Files\alipay\alieditplus\AlipaySecSvc.exe]  [Alipay Inc. , 1, 0, 41, 0]
  442.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  443. [PID: 332 / SYSTEM][C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe]  [Cisco Systems, Inc., 5.0.04.0300]
  444.     [C:\WINDOWS\system32\vpnapi.dll]  [N/A, ]
  445.     [C:\WINDOWS\system32\vsdata.dll]  [Zone Labs, LLC, 7.0.462.000]
  446.     [C:\WINDOWS\system32\VSINIT.dll]  [Zone Labs, LLC, 7.0.462.000]
  447. [PID: 544 / SYSTEM][C:\WINDOWS\system32\HZ_CommSrv.exe]  [华大智宝电子系统有限公司, 1, 2, 0, 3]
  448.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  449. [PID: 556 / SYSTEM][C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe]  [Realsil Microelectronics Inc., 1.5.3.1]
  450.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  451.     [C:\Program Files\Realtek\Realtek USB 2.0 Card Reader\RsCRLib.dll]  [Realtek Semiconductor Corp., 1.1.3.1]
  452. [PID: 680 / SYSTEM][C:\Program Files\Hillstone\Hillstone Secure Connect\bin\SSLChannel.exe]  [Hillstone Networks, 1, 0, 0, 1]
  453. [PID: 848 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  454.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  455.     [c:\program files\sina\sina_live\2010\live_deamon.dll]  [新浪网技术(中国)有限公司, 1, 0, 0, 1]
  456.     [c:\program files\sina\sina_live\2010\UCLiveCore.dll]  [北京新浪信息技术有限公司, 3, 0, 4, 8]
  457. [PID: 1076 / SYSTEM][C:\WINDOWS\system32\WatchData\Watchdata CCB OCL CSP v3.2\WDKeyMonitorCCB.exe]  [ Beijing WatchData System Co., Ltd., 3, 2, 0, 0]
  458.     [C:\WINDOWS\system32\WatchData\Watchdata CCB OCL CSP v3.2\wdkmgr.dll]  [Watchdata, 2, 1, 1, 40]
  459.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  460. [PID: 1028 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
  461.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  462. [PID: 1508 / chengbaoren][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  463.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  464.     [C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\reghelper\xappex.1.1.1.73.(796).dll]  [深圳市迅雷网络技术有限公司, 1, 1, 1, 73]
  465.     [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 9.0.0.2008061100]
  466.     [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS]  [Adobe Systems, Inc., 9.0.0.0]
  467.     [c:\program files\ksafe\ksfmon.dll]  [Kingsoft Corporation, 4.7.0.4109]
  468.     [c:\program files\ksafe\kwsui.dll]  [Kingsoft Corporation, 2014.03.20.4098]
  469.     [c:\program files\ksafe\kswebshield.dll]  [Kingsoft Corporation, 2014.03.20.4098]
  470.     [C:\Program Files\Adobe\Acrobat 9.0\Acrobat Elements\ContextMenu.chs]  [Adobe Systems Inc., 9.0.5.2008061100\0]
  471.     [C:\Program Files\Tencent\QQ\ShellExt\QQShellExt.dll]  [Tencent, 5.2.10446.0]
  472.     [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.4053]
  473.     [C:\Program Files\Adobe\Acrobat 9.0\Acrobat Elements\ContextMenu.dll]  [Adobe Systems Inc., 9.0.5.2008061100\0]
  474.     [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_b77cec8e\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.4053]
  475.     [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_0ccc058c\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.4053]
  476.     [C:\Program Files\Common Files\Autodesk shared\dwf common\DWFShellExtension.dll]  [Autodesk, Inc., 1.1.0.278]
  477.     [C:\Program Files\Common Files\Autodesk shared\dwf common\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
  478.     [C:\Program Files\Common Files\Autodesk shared\dwf common\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
  479.     [C:\Program Files\360\360zip\360ZipExt.dll]  [360.cn, 2, 0, 0, 1071]
  480. [PID: 1280 / chengbaoren][C:\Program Files\alipay\SafeTransaction\AlipaySafeTran.exe]  [Alipay Inc. , 1, 1, 0, 1]
  481.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  482.     [C:\Program Files\alipay\SafeTransaction\AliPayST.dll]  [阿里巴巴云计算有限公司, 1, 1, 0, 3]
  483. [PID: 1120 / chengbaoren][C:\Program Files\alipay\SafeTransaction\Alipaybsm.exe]  [Alipay Inc. , 1, 0, 0, 36]
  484.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  485.     [C:\WINDOWS\system32\aliedit\3.7.0.0\alidcp.dll]  [Alipay.com Co.,Ltd, 2.0.0.7]
  486. [PID: 944 / chengbaoren][C:\Program Files\CCBComponents\DMWZ\CCBCertificate.exe]  [, 2, 1, 8, 8]
  487.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  488. [PID: 952 / chengbaoren][C:\Program Files\CCBComponents\HDZB\USBKeyTools.exe]  [北京华大智宝电子系统有限公司, 1, 6, 0, 47]
  489.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  490.     [C:\WINDOWS\system32\ccb_hdcsp.dll]  [CIDC, 1, 4, 3, 55]
  491.     [C:\Program Files\CCBComponents\HDZB\HD_Token.dll]  [hdzb, 2, 0, 0, 6]
  492. [PID: 968 / chengbaoren][C:\WINDOWS\RTHDCPL.EXE]  [Realtek Semiconductor Corp., 2.3.4.6]
  493.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  494. [PID: 976 / chengbaoren][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
  495.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  496. [PID: 2276 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  497.     [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  498. [PID: 3712 / chengbaoren][C:\WINDOWS\system32\conime.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
  499.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  500. [PID: 1104 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  501.     [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  502. [PID: 268 / chengbaoren][C:\Program Files\SogouInput\Components\SGImeGuard\1.0.0.20\SGImeGuard.exe]  [Sogou.com Inc., 1.0.0.20]
  503.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  504.     [C:\Documents and Settings\chengbaoren\Application Data\SogouPY\USBDT\USBDTCon.dll]  [北京搜狗科技发展有限公司, 2, 2, 0, 15208]
  505.     [C:\Documents and Settings\chengbaoren\Application Data\SogouPY\USBDT\USBDT.dll]  [北京搜狗科技发展有限公司, 2, 2, 0, 15208]
  506. [PID: 3764 / chengbaoren][C:\Documents and Settings\chengbaoren\桌面\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.4.1331]
  507. [PID: 2296 / chengbaoren][C:\Documents and Settings\chengbaoren\桌面\sreng2\SRE964f1c6b.EXE]  [Smallfrogs Studio, 2.8.4.1331]
  508.     [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  509.     [c:\program files\ksafe\ksfmon.dll]  [Kingsoft Corporation, 4.7.0.4109]

  511. ==================================
  512. 文件关联
  513. N/A

  515. ==================================
  516. Winsock 提供者
  517. N/A

  519. ==================================
  520. Autorun.inf
  521. N/A

  523. ==================================
  524. HOSTS 文件
  525. N/A

  527. ==================================
  528. 进程特权扫描
  529. N/A

  531. ==================================
  532. 计划任务
  533. N/A

  535. ==================================
  536. Windows 安全更新检查
  537. N/A

  539. ==================================
  540. API HOOK
  541. 入口点错误:LoadLibraryExW (危险等级: 高,  被下面模块所HOOK: 0x011402F1)
  542. 入口点错误:CreateProcessA (危险等级: 高,  被下面模块所HOOK: 0x010E02F1)
  543. 入口点错误:CreateProcessW (危险等级: 高,  被下面模块所HOOK: 0x011102F1)

  545. ==================================
  546. 隐藏进程
  547. N/A

  549. ==================================


复制代码
回复

举报

伊川书院
发表于 2014-4-20 14:07:27 | 显示全部楼层
尘梦幽然 发表于 2014-4-20 11:06

确认以下是什么东西:

另外,建议:清理当前系统没用的东西,你也太会折腾了,这样不卡么。


浏览器插件:


[WDCCBCtrl Class]
  {CE0460F5-48BD-4DC1-A046-0BDCB5A06CEB} <C:\WINDOWS\system32\wdccb.dll, (Signed) >


[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\system32\SubmitControl.dll, (Signed) >


[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\InputControl.dll, (Signed) >


驱动:

[BDMWrench / BDMWrench][Stopped/System Start]
  <system32\DRIVERS\BDMWrench.sys><N/A>

回复

举报

尘梦幽然
 楼主| 发表于 2014-4-20 17:38:10 | 显示全部楼层
伊川书院 发表于 2014-4-20 14:07
确认以下是什么东西:

另外,建议:清理当前系统没用的东西,你也太会折腾了,这样不卡么。

现在把百度杀毒+金山卫士,经过我两天的调整,这机子已经不卡了。。
装的网银特别多,但是其他的还好。
回复

举报

12
返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-5-5 13:46 , Processed in 0.096521 second(s), 14 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表