任务管理器打不开。。IE打不开。。！？！

白粥

任务管理器很久以前就打不开了，一直没空搞。。现在居然连IE也打不开了
这几天装了小红伞和Outpost不知是不是有冲突
因为一直用360浏览器，IE什么时候坏的也不清楚。。
360浏览器却能正常使用
我用了360修复IE也没效果
上百度一搜全是这种问题，但没一个能解决的方案。。郁闷
一打开就出现下面这种东西。。
任务管理器就更离谱了，根本就没反应
高手帮我看看~~感激不尽！！！

娃娃2009

中病毒了啊 被删毒软件警用了啊！

白粥

是啊~~小红伞老出现这个提示
但我全面扫描之后又没找到病毒。。

不知什么原因~~~
这东西经常出现
怎么关掉它？？就是让它自动处理

白粥

打开网页经常出现这个~~~
连百度也会出现

渡边

管理器调用出不来是不是被组策略禁了？C版红伞默认是无自动处理功能的，IE打不开有时是杀软冲突导致，先查毒吧！用360看看有无恶意插件。

白粥

用小红伞和Outpost扫描过都没发现病毒
也试过360IE修复功能。。结果都没效。。
百度一下“组策略”。。。看起来很麻烦。。。
请问有没简单直接一点的处理办法
谢谢回答~

quickhelp

故障现象较多。

如果可以的话，用serng扫个日志发上来

白粥

以下是用serng2智能扫描的报告~高手帮我看看有什么问题！感谢~
[CODE]

2009-10-19,14:49:11

System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描
    计划任务
    Windows 安全更新检查
    API HOOK
    隐藏进程


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <360Safebox><"E:\360系列\360safebox\safeboxTray.exe" /r>  [(Verified)Qizhi Software (beijing) Co. Ltd]
    <360Safetray><"E:\360系列\360safe\safemon\360tray.exe" /start>  [(Verified)Qizhi Software (beijing) Co. Ltd]
    <WebPlayerUpdater><"C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayerDeamon.exe" /Hide>  [南京远古科技有限公司]
    <avgnt><"C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min>  [Avira GmbH]
    <OutpostMonitor><"E:\OUTPOS~1\op_mon.exe" /tray /noservice>  [(Verified)Agnitum Ltd.]
    <OutpostFeedBack><"E:\Outpost防火墙\feedback.exe" /dump:os_startup>  [(Verified)Agnitum Ltd.]
    <MSConfig><C:\WINDOWS\system32\msconfig.exe /auto>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><e:\outpos~1\wl_hook.dll>  [(Verified)Agnitum Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
    <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
    <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    <WinlogonNotify: igfxcui><igfxdev.dll>  [Intel Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    <WinlogonNotify: WgaLogon><WgaLogon.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\logon.scr>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <Adobe Reader Speed Launcher><; "D:\阅读器\Reader\Reader_sl.exe">  [(Verified)"Adobe Systems, Incorporated"]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <WangWang><; "E:\淘宝\WangWang\WangWang.exe">  [(Verified)"Alibaba Software(Shanghai)Co,. Ltd"]

==================================
启动文件夹
N/A

==================================
服务
[Agnitum Client Security Service / acssrv][Running/Auto Start]
  <E:\OUTPOS~1\acs.exe><Agnitum Ltd.>
[Avira AntiVir 计划管理 / AntiVirSchedulerService][Running/Auto Start]
  <"C:\Program Files\Avira\AntiVir Desktop\sched.exe"><Avira GmbH>
[Avira AntiVir 监控 / AntiVirService][Running/Auto Start]
  <"C:\Program Files\Avira\AntiVir Desktop\avguard.exe"><Avira GmbH>
[ICBC Daemon Service / ICBC Daemon Service][Running/Auto Start]
  <C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\IcbcDaemon.exe><N/A>
[主动防御 / ZhuDongFangYu][Running/Auto Start]
  <"E:\360系列\360safe\deepscan\zhudongfangyu.exe"><360安全中心>

==================================
驱动程序
[360SelfProtection / 360SelfProtection][Running/System Start]
  <system32\drivers\360SelfProtection.sys><360安全中心>
[Lenovo Virtual Power Controller Driver / ACPIVPC][Running/Manual Start]
  <system32\DRIVERS\AcpiVpc.sys><Lenovo Corporation>
[Agnitum firewall driver / afw][Running/Manual Start]
  <system32\DRIVERS\afw.sys><Agnitum Ltd.>
[afwcore / afwcore][Running/Manual Start]
  <system32\drivers\afwcore.sys><Agnitum Ltd.>
[ahci8086 / ahci8086][Running/Boot Start]
  <\SystemRoot\System32\Drivers\ahci8086.sys><ATI Technologies Inc.>
[AMD K8 Processor Driver / AmdK8][Stopped/Manual Start]
  <System32\drivers\amdk8.sys><Advanced Micro Devices>
[ASWFilt / ASWFilt][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\Filt\ASWFilt.dll><Agnitum Ltd.>
[avgio / avgio][Running/System Start]
  <\??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys><Avira GmbH>
[avgntflt / avgntflt][Running/Auto Start]
  <system32\DRIVERS\avgntflt.sys><Avira GmbH>
[avipbb / avipbb][Running/System Start]
  <system32\DRIVERS\avipbb.sys><Avira GmbH>
[Broadcom NetXtreme Gigabit Ethernet / b57w2k][Running/Manual Start]
  <system32\DRIVERS\b57xp32.sys><Broadcom Corporation>
[BFSDRV / BFSDRV][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\bfsdrv.sys><360安全中心>
[BREGDRV / BREGDRV][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\bregdrv.sys><360安全中心>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><奇虎网>
[Creative AudioPCI (ES1371,ES1373) (WDM) / es1371][Stopped/Manual Start]
  <system32\drivers\es1371mp.sys><Creative Technology Ltd.>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HookPort / HookPort][Running/Boot Start]
  <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\igxpmp32.sys><Intel Corporation>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[KAVBootC / KAVBootC][Stopped/Boot Start]
  <\SystemRoot\system32\Drivers\KAVBootC.sys><Kingsoft Corporation>
[NVIDIA nForce RAID Driver / nvrd32][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\nvrd32.sys><NVIDIA Corporation>
[AMD PCNET Compatable Adapter Driver / PCnet][Stopped/Manual Start]
  <system32\DRIVERS\pcntpci5.sys><AMD Inc.>
[Profos / Profos][Stopped/Manual Start]
  <\??\e:\360系列\360杀毒\360sd\profos.sys><N/A>
[Protector / Protector][Running/System Start]
  <system32\drivers\Protector.sys><N/A>
[ProtectorA / ProtectorA][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\ProtectorA.sys><www.ISRA.org.cn>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Quantum DeepScanner Servers / qutmdserv][Running/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\qutmdrv.sys><360安全中心>
[rimmptsk / rimmptsk][Running/Auto Start]
  <system32\DRIVERS\rimmptsk.sys><REDC>
[rimsptsk / rimsptsk][Running/Auto Start]
  <system32\DRIVERS\rimsptsk.sys><REDC>
[Ricoh xD-Picture Card Driver / rismxdp][Running/Auto Start]
  <system32\DRIVERS\rixdptsk.sys><REDC>
[SafeBoxKrnl / SafeBoxKrnl][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\SafeBoxKrnl.sys><360安全中心>
[SandBox / SandBox][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\SandBox.sys><Agnitum Ltd.>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[smserial / smserial][Running/Manual Start]
  <system32\DRIVERS\smserial.sys><Motorola Inc.>
[ssmdrv / ssmdrv][Running/System Start]
  <system32\DRIVERS\ssmdrv.sys><Avira GmbH>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[Trufos / Trufos][Stopped/Manual Start]
  <\??\e:\360系列\360杀毒\360sd\trufos.sys><N/A>

==================================
浏览器加载项
[QQCycloneHelper Class]
  {00000000-12C9-4305-82F9-43058F20E8D2} <E:\QQ旋风\QQIEHelper01.dll, (Signed) Tencent Technology (Shenzhen) Company Limited>
[ThunderAtOnce Class]
  {01443AEC-0FD1-40fd-9C87-E93D1494C233} <C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[CBBrowerBuddy Class]
  {A412E581-59B2-485E-834F-C5F0C0268C79} <E:\金山\PowerWord Lite\CBEBand.DLL, Copyright (c) Kingsoft Corporation Limited. All rights reserved.>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <G:\\Program Files\\360safe\\safemon\\safemon.dll, N/A>
[ICBC Anti-Phishing class]
  {BB4491A2-D11A-4c6b-91C0-B53246A3122B} <C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\Icbc_AntiPhishing.dll, (Signed) 中国工商银行>
[Quick Tune]
  {44627E97-789B-40d4-B5C2-58BD171129A1} <E:\Outpost防火墙\ie_bar.dll, (Signed) Agnitum Ltd.>
[番茄花园]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.tomatolei.com, N/A>
[CBBrowerBuddy Class]
  {A412E581-59B2-485E-834F-C5F0C0268C79} <E:\金山\PowerWord Lite\CBEBand.DLL, Copyright (c) Kingsoft Corporation Limited. All rights reserved.>
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[OrbitDownloader Class]
  {3D553595-4369-4F5D-AEF0-55B27550DE94} <C:\WINDOWS\Downloaded Program Files\OrbitDownloader.dll, (Signed) Orbit Networks Limited>
[ICBC Security Ctrl]
  {5AB9367B-DD7F-411D-A030-DF7DE5E17AAE} <C:\WINDOWS\DOWNLO~1\NETBAN~1.OCX, Industrial and Commercial Bank of China>
[InfoSecNetSign Class]
  {62B938C4-4190-4F37-8CF0-A92B0A91CC77} <C:\WINDOWS\system32\NetSign.dll, (Signed) Infosec Technologies Co., Ltd.>
[Symantec RuFSI Utility Class]
  {644E432F-49D3-41A1-8DD5-E099162EEEC5} <C:\WINDOWS\Downloaded Program Files\rufsi.dll, (Signed) Symantec Corporation>
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\INPUTC~1.DLL, >
[DLoader Class]
  {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} <C:\WINDOWS\Downloaded Program Files\downloader.dll, (Signed) Sina Com>
[KUpdateObj2 Class]
  {D82303B7-A754-4DCB-8AFC-8CF99435AACE} <C:\WINDOWS\system32\KingSoft\KOS\UpdateOcx2.dll, (Signed) Kingsoft Corporation>
[PPLive Lite Class]
  {EF0D1A14-1033-41A2-A589-240C01EDC078} <C:\Program Files\PPLive\Plugin\pplugin2.dll, (Signed) >
[QQCycloneHelper Class]
  {00000000-12C9-4305-82F9-43058F20E8D2} <E:\QQ旋风\QQIEHelper01.dll, (Signed) Tencent Technology (Shenzhen) Company Limited>
[ThunderAtOnce Class]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[DeepScan Control]
  {3EF9B906-800B-4317-BC21-E02564760244} <C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\Low\360\360ONL~1\DeepScan.ocx, N/A>
[]
  {44627E97-789B-40D4-B5C2-58BD171129A1} <, >
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <C:\Program Files\Thunder\ComDlls\ThunderAgent_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[WangWangX Class]
  {5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} <E:\淘宝\WangWang\AliIMX.dll, (Signed) Alibaba software (Shanghai) Corporation.>
[]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <, >
[XMP Class]
  {6483F145-A768-4C41-AACC-52D4D7845851} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xplayer.dll_1_work, >
[XDRM]
  {693571CB-54A3-4E90-9D52-EEAE1334E2D3} <C:\Documents and Settings\All Users\Application Data\Thunder Network\KanKan\xdrm.dll_1_work, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[WangWangObj Class]
  {6E213FC7-DD5A-4115-B7E6-D4C7838C361E} <E:\淘宝\WangWang\WangWangX6.dll, (Signed) 阿里巴巴软件(上海)有限公司>
[360SafeLive]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <E:\360系列\360safe\Safelive.dll, (Signed) >
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, (Signed) Microsoft Corporation>
[Thunder Browser Helper]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll, (Signed) Thunder Networking Technologies,LTD>
[CBBrowerBuddy Class]
  {A412E581-59B2-485E-834F-C5F0C0268C79} <E:\金山\PowerWord Lite\CBEBand.DLL, Copyright (c) Kingsoft Corporation Limited. All rights reserved.>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.1.5803.60.(451).dll, ShenZhen Thunder Networking Technologies Ltd.>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <G:\\Program Files\\360safe\\safemon\\safemon.dll, N/A>
[ICBC Anti-Phishing class]
  {BB4491A2-D11A-4C6B-91C0-B53246A3122B} <C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\Icbc_AntiPhishing.dll, (Signed) 中国工商银行>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[OLExamin Class]
  {E6320D57-059F-48E3-9BB5-5BE414721EB1} <C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Low\360\360OnlineScan\OLExamin.dll, N/A>
[Thunder DapPlayer]
  {EEDD6FF9-13DE-496B-9A1C-D78B3215E266} <C:\Program Files\Thunder\Components\DownAndPlay\DapPlayer3.0.5712.71.451.dll, ShenZhen Thunder Networking Technologies Ltd.>
[XPPlayer Class]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <C:\Program Files\Common Files\Thunder Network\KanKan\PPlayer.2.0.0.177.(451).dll, Thunder>
[UpdateScan Control]
  {F62FE1C1-8ED4-492B-9001-96FC1BF08A12} <C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\Low\360\360ONL~1\360ONL~1.OCX, N/A>
[使用迅雷下载]
  <C:\Program Files\Thunder\Program\geturl.htm, N/A>
[使用迅雷下载全部链接]
  <C:\Program Files\Thunder\Program\getallurl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ表情]
  <E:\QQ\Bin\AddEmotion.htm, N/A>

==================================

白粥

接上面~
正在运行的进程
[PID: 944 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1020 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1072 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\WgaLogon.dll]  [, ]
[PID: 1128 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_qfe.090206-1316)]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
[PID: 1144 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1348 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1444 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1568 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1700 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1780 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1816 / SYSTEM][E:\360系列\360safe\deepscan\zhudongfangyu.exe]  [360安全中心, 1, 0, 0, 1007]
    [E:\360系列\360safe\deepscan\CloudCom2.dll]  [360安全中心, 3, 0, 0, 1006]
    [E:\360系列\360safe\deepscan\heavygate.dll]  [360安全中心, 3, 6, 11, 0]
    [E:\360系列\360safe\SoftMgr\360SoftMgrS.dll]  [奇虎网, 2, 1, 5, 1005]
    [E:\360系列\360safe\deepscan\qutmload.dll]  [360.CN, 1, 0, 0, 1001]
[PID: 1996 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
[PID: 2040 / SYSTEM][C:\Program Files\Avira\AntiVir Desktop\sched.exe]  [Avira GmbH, 9.00.00.09]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\Program Files\Avira\AntiVir Desktop\schedr.dll]  [Avira GmbH, 8.00.05.00]
    [C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll]  [Avira GmbH, 9.00.00.07]
    [C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll]  [, 3.06.01.00]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 244 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 500 / Administrator][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 9.1.0.2009022700]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS]  [, ]
    [C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\browselc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Thunder\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.5.29]
    [C:\Program Files\Thunder\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 96]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\Program Files\Avira\AntiVir Desktop\shlext.dll]  [Avira GmbH, 9.00.00.04]
    [E:\淘宝\WangWang\AliIMExt.dll]  [Alibaba software (Shanghai) Corporation., 1.0.0.1]
    [C:\WINDOWS\system32\YouKuDesktopShell.dll]  [www.youku.com, 1.2.7.1700]
    [E:\Outpost防火墙\op_shell.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [E:\AIMP\System\aimp_shell.dll]  [AIMP DevTeam, 2.6.0.0]
    [C:\WINDOWS\system32\freeime.ime]  [极点五笔工作室, 7.0.0.0]
[PID: 708 / Administrator][C:\Program Files\VIEWGOOD\WebPlayer 2007\WebPlayerDeamon.exe]  [南京远古科技有限公司, 8.0.0.3]
    [C:\Program Files\VIEWGOOD\WebPlayer 2007\AsyncHttp71.dll]  [南京远古科技, 1, 2, 0, 0]
    [C:\Program Files\VIEWGOOD\WebPlayer 2007\FileOperation.dll]  [VIEWGOOD, 8, 0, 0, 0]
    [C:\Program Files\VIEWGOOD\WebPlayer 2007\zipdll.dll]  [N/A, ]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 716 / Administrator][C:\Program Files\Avira\AntiVir Desktop\avgnt.exe]  [Avira GmbH, 9.00.00.12]
    [C:\Program Files\Avira\AntiVir Desktop\cclib.dll]  [N/A, ]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [c:\program files\avira\antivir desktop\ccgen.dll]  [Avira GmbH, 9.00.00.35]
    [c:\program files\avira\antivir desktop\ccgenrc.dll]  [Avira GmbH, 9.00.17.01]
    [c:\program files\avira\antivir desktop\ccguard.dll]  [Avira GmbH, 9.00.00.19]
    [c:\program files\avira\antivir desktop\ccgrdrc.dll]  [Avira GmbH, 9.00.06.02]
    [c:\program files\avira\antivir desktop\avipc.dll]  [Avira GmbH, 1.1.3.4]
    [c:\program files\avira\antivir desktop\ccupdate.dll]  [Avira GmbH, 9.00.00.16]
    [c:\program files\avira\antivir desktop\ccupdrc.dll]  [Avira GmbH, 9.00.06.01]
    [c:\program files\avira\antivir desktop\cclic.dll]  [Avira GmbH, 9.00.00.06]
    [c:\program files\avira\antivir desktop\cclicrc.dll]  [Avira GmbH, 9.00.01.00]
    [c:\program files\avira\antivir desktop\ccmsg.dll]  [Avira GmbH, 9.00.02.01]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
[PID: 1052 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
[PID: 1772 / SYSTEM][C:\Program Files\Avira\AntiVir Desktop\avguard.exe]  [Avira GmbH, 9.00.01.32]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\Program Files\Avira\AntiVir Desktop\AVEvtLog.dll]  [Avira GmbH, 9.00.00.07]
    [C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll]  [Avira GmbH, 9.00.02.00]
    [C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll]  [, 3.06.01.00]
    [C:\Program Files\Avira\AntiVir Desktop\AVPREF.DLL]  [Avira GmbH, 9.00.03.00]
    [C:\Program Files\Avira\AntiVir Desktop\SMTPLIB.DLL]  [Avira GmbH, 9.02.00.25]
    [C:\Program Files\Avira\AntiVir Desktop\AVGIO.DLL]  [Avira GmbH, 9.00.01.04]
    [C:\Program Files\Avira\AntiVir Desktop\aecore.dll]  [Avira GmbH, 8.1.8.1]
    [C:\Program Files\Avira\AntiVir Desktop\aevdf.dll]  [Avira GmbH, 8.1.1.2]
    [C:\Program Files\Avira\AntiVir Desktop\aescript.dll]  [Avira GmbH, 8.1.2.35]
    [C:\Program Files\Avira\AntiVir Desktop\aescn.dll]  [Avira GmbH, 8.1.2.5]
    [C:\Program Files\Avira\AntiVir Desktop\aerdl.dll]  [Avira GmbH, 8.1.3.2]
    [C:\Program Files\Avira\AntiVir Desktop\aepack.dll]  [Avira GmbH, 8.2.0.0]
    [C:\Program Files\Avira\AntiVir Desktop\unacev2.dll]  [ACE Compression Software, 2.6.0.2]
    [C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll]  [Avira GmbH, 8.1.0.38]
    [C:\Program Files\Avira\AntiVir Desktop\aeheur.dll]  [Avira GmbH, 8.1.0.167]
    [C:\Program Files\Avira\AntiVir Desktop\aehelp.dll]  [Avira GmbH, 8.1.7.0]
    [C:\Program Files\Avira\AntiVir Desktop\aegen.dll]  [Avira GmbH, 8.1.1.67]
    [C:\Program Files\Avira\AntiVir Desktop\aeemu.dll]  [Avira GmbH, 8.1.1.0]
    [C:\Program Files\Avira\AntiVir Desktop\aebb.dll]  [Avira GmbH, 8.1.0.3]
    [C:\Program Files\Avira\AntiVir Desktop\avipc.dll]  [Avira GmbH, 1.1.3.4]
[PID: 356 / SYSTEM][C:\Program Files\ICBCEbankTools\ICBCAntiPhishing\IcbcDaemon.exe]  [N/A, ]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 2528 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [C:\WINDOWS\System32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 3036 / Administrator][C:\WINDOWS\system32\conime.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
[PID: 3084 / Administrator][E:\360系列\360浏览器3.0\360\360se3\360SE.exe]  [360安全中心, 3, 0, 5, 2]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtAddons\ExtAddons.dll]  [360安全中心, 1, 0, 2, 1]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtAdfilter\ExtAdfilter.dll]  [, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtDownload\ExtDownload.dll]  [360, 1, 0, 2, 3]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtPages\ExtPages.dll]  [360安全中心, 1, 0, 2, 3]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtProxy\ExtProxy.dll]  [360, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtSuggest\ExtSuggest.dll]  [360SE, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\Favorites\Favorites.dll]  [360安全中心, 1, 0, 0, 5]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\MiniSearchBar\MiniSearchBar.dll]  [, 1, 0, 0, 2]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\onlinefav\onlinefav.dll]  [, 3, 0, 0, 3]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\pluginbar\pluginbar.dll]  [360, 1, 0, 0, 5]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\SafeCentral\urlproc.dll]  [360.CN, 1, 0, 0, 1006]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\SafeCentral\SafeCentral.dll]  [, 1, 0, 0, 5]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\UICenter\UICenter.dll]  [, 1, 0, 0, 4]
    [C:\WINDOWS\system32\freeime.ime]  [极点五笔工作室, 7.0.0.0]
[PID: 1992 / Administrator][E:\360系列\360浏览器3.0\360\360se3\360SE.exe]  [360安全中心, 3, 0, 5, 2]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtAdfilter\ExtAdfilter.dll]  [, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtProxy\ExtProxy.dll]  [360, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\SafeCentral\SafeCentral.dll]  [, 1, 0, 0, 5]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\SafeCentral\urlproc.dll]  [360.CN, 1, 0, 0, 1006]
    [C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx]  [Adobe Systems, Inc., 10,0,32,18]
    [C:\WINDOWS\system32\freeime.ime]  [极点五笔工作室, 7.0.0.0]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 9.1.0.2009022700]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll]  [Microsoft Corporation, 8.00.50727.762]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.CHS]  [, ]
[PID: 2856 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1280 / Administrator][E:\360系列\360浏览器3.0\360\360se3\360SE.exe]  [360安全中心, 3, 0, 5, 2]
    [e:\outpos~1\wl_hook.dll]  [Agnitum Ltd., 6.7.1.2983.10523]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtAdfilter\ExtAdfilter.dll]  [, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\ExtProxy\ExtProxy.dll]  [360, 1, 0, 0, 9]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\SafeCentral\SafeCentral.dll]  [, 1, 0, 0, 5]
    [E:\360系列\360浏~1.0\360\360se3\Extensions\SafeCentral\urlproc.dll]  [360.CN, 1, 0, 0, 1006]
    [C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx]  [Adobe Systems, Inc., 10,0,32,18]
    [C:\WINDOWS\system32\freeime.ime]  [极点五笔工作室, 7.0.0.0]
[PID: 3192 / Administrator][E:\杂类\修复IE\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.1.1279]
[PID: 2300 / Administrator][E:\杂类\修复IE\SRE2a5ec42f.EXE]  [Smallfrogs Studio, 2.8.1.1279]
    [C:\WINDOWS\system32\uxtheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [E:\360系列\360safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1022]
    [E:\杂类\修复IE\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1       localhost

==================================
进程特权扫描
特殊特权被允许： SeLoadDriverPrivilege [PID = 1072, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 2040, C:\PROGRAM FILES\AVIRA\ANTIVIR DESKTOP\SCHED.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 708, C:\PROGRAM FILES\VIEWGOOD\WEBPLAYER 2007\WEBPLAYERDEAMON.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 716, C:\PROGRAM FILES\AVIRA\ANTIVIR DESKTOP\AVGNT.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 1772, C:\PROGRAM FILES\AVIRA\ANTIVIR DESKTOP\AVGUARD.EXE]
特殊特权被允许： SeLoadDriverPrivilege [PID = 3192, E:\杂类\修复IE\SRENGLDR.EXE]

==================================
计划任务
N/A

==================================
Windows 安全更新检查
Microsoft .NET Framework 版本 1.1，简体中文版
KB829019,  Microsoft .NET Framework 2.0 语言包：x86 (KB829019)
KB940157,  用于 Windows XP 的 Windows 搜索 4.0 (KB940157)
KB110806,  Microsoft .NET Framework 2.0 Service Pack 1 (KB110806) (x86)
KB943729,  用于 Windows XP 的组策略首选项客户端扩展 (KB943729)
KB926140,  用于 Windows XP 的 Windows PowerShell 1.0 (KB926140)
KB905474,  Windows Genuine Advantage 通知 (KB905474)
KB909520,  Microsoft 基本智能卡加密服务提供程序包： x86 (KB909520)
KB971657,  Windows XP 安全更新程序 (KB971657) MS09-041
KB944036,  用于 Windows XP 的 Internet Explorer 8
KB931125,  根证书更新 [2009 年 9 月] (KB931125)
KB890830,  Windows 恶意软件删除工具 - 2009 年 10 月 (KB890830)

==================================
API HOOK
N/A

==================================
隐藏进程
    [1592] C:\WINDOWS\system32\wuauclt.exe

==================================


[/CODE]

白粥

出现这个东西~~~~~~
什么原因。。。郁闷。。。