收藏本站 |切换到宽版 | 更换论坛皮肤
 找回密码  忘记邮箱  QQ快速登录  快速登录  快速注册

卡饭»论坛 软件区 解疑答难区 应用程序正常初始化失败
返回列表 发新帖
查看: 5669|回复: 2
收起左侧

[已解决] 应用程序正常初始化失败

 关闭 [复制链接]
c7h
发表于 2011-5-10 18:20:31 | 显示全部楼层 |阅读模式
开机提示userinit.exe应用程序正常初始化(0xc0000142)失败,不能自动进入桌面,手动运行userinit后正常
通过命令行注册动态链接库时任务管理器中多出数十个regsvr32.exe进程,安装了comodo墙和avast免费版

SREng报告


  3. 2011-05-10,17:37:03

  5. System Repair Engineer 2.8.4.1331
  6. Smallfrogs (http://www.KZTechs.com)

  8. Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能

  10. 以下内容被选中:
  11.     所有的启动项目(包括注册表、启动文件夹、服务等)
  12.     浏览器加载项
  13.     正在运行的进程(包括进程模块信息)
  14.     文件关联
  15.     Winsock 提供者
  16.     Autorun.inf
  17.     HOSTS 文件
  18.     进程特权扫描
  19.     计划任务
  20.     Windows 安全更新检查
  21.     API HOOK
  22.     隐藏进程


  25. 启动项目
  26. 注册表
  27. [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  28.     <ctfmon.exe><D:\WINDOWS.0\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
  29. [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  30.     <load><>  [N/A]
  31. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  32.     <COMODO Internet Security><"D:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h>  [(Verified)Comodo Security Solutions, Inc.]
  33.     <KSafeTray><"D:\Program Files\KSafe\KSafeTray.exe" -autorun>  [(Verified)Kingsoft Security Co.,Ltd]
  34.     <AlcWzrd><ALCWZRD.EXE>  [(Verified)Realtek Semiconductor Corp]
  35.     <avast><"D:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui>  [(Verified)AVAST Software]
  36.     <VFTray><D:\Program Files\VFree\VFTray.exe>  [VirusFree Team.]
  37. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  38.     <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
  39.     <Userinit><D:\WINDOWS.0\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
  40. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  41.     <AppInit_DLLs>< D:\WINDOWS.0\system32\guard32.dll>  [(Verified)Comodo Security Solutions, Inc.]
  42. [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  43.     <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
  44. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
  45.     <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
  46. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
  47.     <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
  48.     <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
  49.     <WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
  50.     <SysTray><D:\WINDOWS.0\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
  51.     <UPnPMonitor><D:\WINDOWS.0\system32\upnpui.dll>  [(Verified)Microsoft Windows Component Publisher]
  52. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
  53.     <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
  54. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
  55.     <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
  56. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
  57.     <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
  58. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
  59.     <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
  60. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
  61.     <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  62. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
  63.     <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  64. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
  65.     <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
  66. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
  67.     <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  68. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
  69.     <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  70. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
  71.     <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
  72. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
  73.     <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
  74.     <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
  75. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
  76.     <Microsoft Windows Media Player><D:\WINDOWS.0\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
  77. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
  78.     <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
  79. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
  80.     <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
  81. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
  82.     <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
  83. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
  84.     <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
  85. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
  86.     <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
  87. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
  88.     <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS.0\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  []
  89. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
  90.     <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS.0\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
  91. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
  92.     <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
  93. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
  94.     <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
  95. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
  96.     <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe>  [(Verified)Microsoft Windows Component Publisher]

  98. ==================================
  99. 启动文件夹
  100. [EyeFoo.exe]
  101.   <D:\Documents and Settings\All Users.WINDOWS.0\「开始」菜单\程序\启动\EyeFoo.exe.lnk --> D:\mxf\lvse\EyeFoo\EyeFoo.exe [EyeFoo Software]><N>
  102. [ProcessTamerTray.exe]
  103.   <D:\Documents and Settings\All Users.WINDOWS.0\「开始」菜单\程序\启动\ProcessTamerTray.exe.lnk --> D:\mxf\lvse\PROCES~1\PROCES~3.EXE []><N>
  104. [SuperF4.exe]
  105.   <D:\Documents and Settings\All Users.WINDOWS.0\「开始」菜单\程序\启动\SuperF4.exe.lnk --> D:\mxf\lvse\SuperF4\SuperF4.exe [Stefan Sundin]><N>

  107. ==================================
  108. 服务
  109. [Ati External Event Utility / Ati External Event Utility][Stopped/Auto Start]
  110.   <D:\WINDOWS.0\system32\Ati2evxx.exe><ATI Technologies Inc.>
  111. [avast! Antivirus / avast! Antivirus][Running/Auto Start]
  112.   <"D:\Program Files\AVAST Software\Avast\AvastSvc.exe"><AVAST Software>
  113. [COMODO Internet Security Helper Service / cmdAgent][Running/Auto Start]
  114.   <"D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"><COMODO>
  115. [Human Interface Device Access / HidServ][Stopped/Disabled]
  116.   <D:\WINDOWS.0\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
  117. [KSafe service / KSafeSvc][Running/Auto Start]
  118.   <"D:\Program Files\KSafe\KSafeSvc.exe" -svc><Kingsoft Corporation>
  119. [VirusFree / VirusFree][Stopped/Auto Start]
  120.   <D:\Program Files\VFree\VFService.exe><VirusFree Inc.>
  121. [Kingsoft Rescue Service / Kingsoft Rescue Service][Running/Auto Start]
  122.   <D:\Program Files\Kingsoft\KSM\ksmsvc.exe><>

  124. ==================================
  125. 驱动程序
  126. [atikmdag / atikmdag][Stopped/Manual Start]
  127.   <system32\DRIVERS\atikmdag.sys><ATI Technologies Inc.>
  128. [COMODO Internet Security Sandbox Driver / cmdGuard][Running/System Start]
  129.   <System32\DRIVERS\cmdguard.sys><COMODO>
  130. [COMODO Internet Security Helper Driver / cmdHlp][Running/System Start]
  131.   <System32\DRIVERS\cmdhlp.sys><COMODO>
  132. [Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  133.   <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
  134. [COMODO Internet Security Firewall Driver / Inspect][Running/Boot Start]
  135.   <\SystemRoot\System32\DRIVERS\inspect.sys><COMODO>
  136. [Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  137.   <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
  138. [kmodurl / kmodurl][Running/System Start]
  139.   <\??\D:\Program Files\KSafe\kmodurl.sys><Kingsoft Corporation>
  140. [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  141.   <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
  142. [Secdrv / Secdrv][Stopped/Manual Start]
  143.   <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
  144. [TCP/IP Protocol Driver / Tcpip][Running/System Start]
  145.   <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
  146. [vfbinmon / vfbinmon][Running/Boot Start]
  147.   <\SystemRoot\system32\drivers\vfbinmon.sys><VirusFree Team Inc.>
  148. [WMDrive / WMDrive][Running/System Start]
  149.   <\??\D:\WINDOWS.0\system32\drivers\WMDrive.sys><WinMount International Inc>
  150. [NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start]
  151.   <system32\DRIVERS\yk51x86.sys><Marvell>
  152. [ksapi / ksapi][Running/Manual Start]
  153.   <\??\D:\WINDOWS.0\system32\drivers\ksapi.sys><Kingsoft Corporation>

  155. ==================================
  156. 浏览器加载项
  157. [VCUrlBHO Class]
  158.   {0130DA3D-8D24-4CC2-9C09-D85AC2AAF1AB} <D:\mxf\lvse\miniMule\modules\VCBHO.dll, (Signed) VeryCD.com>
  159. [IE2EMBHO Class]
  160.   {0A0DDBD3-6641-40B9-873F-BBDD26D6C14E} <D:\mxf\lvse\miniMule\modules\IE2EM.dll, (Signed) VeryCD.com>
  161. [BitComet Helper]
  162.   {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <D:\mxf\lvse\BitComet\tools\BitCometBHO_1.5.4.11.dll, (Signed) BitComet>
  163. [WanWanBrowerHelper Class]
  164.   {433FF083-4046-488D-B22F-1782BA0A284C} <D:\mxf\lvse\131玩玩2010\wwcom.dll, (Signed) 深圳市拾三意网络科技有限公司>
  165. [BitComet]
  166.   {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} <, >
  167. [VCUrlBHO Class]
  168.   {0130DA3D-8D24-4CC2-9C09-D85AC2AAF1AB} <D:\mxf\lvse\miniMule\modules\VCBHO.dll, (Signed) VeryCD.com>
  169. [IE2EMBHO Class]
  170.   {0A0DDBD3-6641-40B9-873F-BBDD26D6C14E} <D:\mxf\lvse\miniMule\modules\IE2EM.dll, (Signed) VeryCD.com>
  171. [BitComet Helper]
  172.   {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <D:\mxf\lvse\BitComet\tools\BitCometBHO_1.5.4.11.dll, (Signed) BitComet>
  173. [WanWanBrowerHelper Class]
  174.   {433FF083-4046-488D-B22F-1782BA0A284C} <D:\mxf\lvse\131玩玩2010\wwcom.dll, (Signed) 深圳市拾三意网络科技有限公司>
  175. [QQPYChecker Class]
  176.   {5052B4D0-9DF7-45ef-88EF-F42C0EA33A43} <D:\Program Files\Tencent\QQPinyin\4.1.1063.400\QQImeChecker.dll, (Signed) Tencent>
  177. [MUWebControl Class]
  178.   {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <D:\WINDOWS.0\system32\muweb1.dll, (Signed) Microsoft Corporation>
  179. []
  180.   {CF223950-14DC-4A1D-AEDB-47C356A8B993} <, >
  181. []
  182.   {D18A0B52-D63C-4ED0-AFC6-C1E3DC1AF43A} <, >
  183. [Shockwave Flash Object]
  184.   {D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS.0\system32\macromed\flash\Flash.ocx, (Signed) Adobe Systems, Inc.>
  185. [ 使用迷你电驴下载]
  186.   <D:\mxf\lvse\miniMule\IE2EM.htm, N/A>
  187. [&使用BitComet下载]
  188.   <res://D:\mxf\lvse\BitComet\BitComet.exe/AddLink.htm, N/A>
  189. [&使用BitComet下载全部链接]
  190.   <res://D:\mxf\lvse\BitComet\BitComet.exe/AddAllLink.htm, N/A>

  192. ==================================
  193. 正在运行的进程
  194. [PID: 688][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  195. [PID: 756][\??\D:\WINDOWS.0\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  196. [PID: 780][\??\D:\WINDOWS.0\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
  197.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  198.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  199.     [D:\WINDOWS.0\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  200.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  201. [PID: 824][D:\WINDOWS.0\system32\services.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  202.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  203.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  204. [PID: 836][D:\WINDOWS.0\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
  205.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  206.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  207.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  208. [PID: 1024][D:\WINDOWS.0\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  209.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  210.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  211.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  212. [PID: 1108][D:\WINDOWS.0\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  213.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  214.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  215.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  216. [PID: 1148][D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe]  [COMODO, 5, 3, 176757, 1236]
  217.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  218.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  219.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  220.     [D:\Program Files\COMODO\COMODO Internet Security\Framework.dll]  [COMODO, 5, 3, 174622, 1216]
  221.     [D:\Program Files\COMODO\COMODO Internet Security\scanners\rkdscan.dll]  [COMODO, 5, 3, 174622, 1216]
  222.     [D:\Program Files\COMODO\COMODO Internet Security\platform.dll]  [COMODO, 5, 3, 174622, 1216]
  223.     [D:\Program Files\COMODO\COMODO Internet Security\scanners\common.cav]  [COMODO, 5, 3, 174622, 1216]
  224.     [D:\Program Files\COMODO\COMODO Internet Security\signmgr.dll]  [COMODO, 5, 3, 174622, 1216]
  225.     [D:\Program Files\COMODO\COMODO Internet Security\scanners\fileid.cav]  [COMODO, 5, 3, 174622, 1216]
  226.     [D:\Program Files\COMODO\COMODO Internet Security\scanners\pkann.dll]  [COMODO, 5, 3, 175443, 1225]
  227.     [D:\Program Files\COMODO\COMODO Internet Security\scanners\mach32.dll]  [COMODO, 5, 3, 174622, 1216]
  228.     [D:\Program Files\COMODO\COMODO Internet Security\scanners\white.cav]  [COMODO, 5, 3, 174622, 1216]
  229. [PID: 1172][D:\WINDOWS.0\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  230.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  231.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  232.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  233.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  234.     [D:\WINDOWS.0\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  235. [PID: 1244][D:\WINDOWS.0\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  236.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  237.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  238.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  239. [PID: 1356][D:\Program Files\AVAST Software\Avast\AvastSvc.exe]  [AVAST Software, 6.0.1091.0]
  240.     [D:\Program Files\AVAST Software\Avast\aswCmnBS.dll]  [AVAST Software, 6.0.1091.0]
  241.     [D:\Program Files\AVAST Software\Avast\aswCmnOS.dll]  [AVAST Software, 6.0.1091.0]
  242.     [D:\Program Files\AVAST Software\Avast\aswCmnIS.dll]  [AVAST Software, 6.0.1091.0]
  243.     [D:\Program Files\AVAST Software\Avast\ashBase.dll]  [AVAST Software, 6.0.1091.0]
  244.     [D:\Program Files\AVAST Software\Avast\aswEngLdr.dll]  [AVAST Software, 6.0.1091.0]
  245.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  246.     [D:\Program Files\AVAST Software\Avast\2052\Base.dll]  [AVAST Software, 6, 0, 999, 0]
  247.     [D:\Program Files\AVAST Software\Avast\ashServ.dll]  [AVAST Software, 6.0.1091.0]
  248.     [D:\Program Files\AVAST Software\Avast\aswAux.dll]  [AVAST Software, 6.0.1091.0]
  249.     [D:\Program Files\AVAST Software\Avast\ashTask.dll]  [AVAST Software, 6.0.1091.0]
  250.     [D:\Program Files\AVAST Software\Avast\ashTaskEx.dll]  [AVAST Software, 6.0.1091.0]
  251.     [D:\Program Files\AVAST Software\Avast\aswLog.dll]  [AVAST Software, 6.0.1091.0]
  252.     [D:\Program Files\AVAST Software\Avast\aswSqLt.dll]  [AVAST Software, 6.0.1091.0]
  253.     [D:\Program Files\AVAST Software\Avast\aswProperty.dll]  [AVAST Software, 6.0.1091.0]
  254.     [D:\Program Files\AVAST Software\Avast\Aavm4h.dll]  [AVAST Software, 6.0.1091.0]
  255.     [D:\Program Files\AVAST Software\Avast\AavmRpch.dll]  [AVAST Software, 6.0.1091.0]
  256.     [D:\Program Files\AVAST Software\Avast\aswIdle.dll]  [AVAST Software, 6.0.1091.0]
  257.     [D:\Program Files\AVAST Software\Avast\aswDld.dll]  [AVAST Software, 6.0.1091.0]
  258.     [D:\Program Files\AVAST Software\Avast\AhResBhv.dll]  [AVAST Software, 6.0.1091.0]
  259.     [D:\Program Files\AVAST Software\Avast\AhResJs.dll]  [AVAST Software, 6.0.1091.0]
  260.     [D:\Program Files\AVAST Software\Avast\AhResMai.dll]  [AVAST Software, 6.0.1091.0]
  261.     [D:\Program Files\AVAST Software\Avast\AhResMes.dll]  [AVAST Software, 6.0.1091.0]
  262.     [D:\Program Files\AVAST Software\Avast\AhResNS.dll]  [AVAST Software, 6.0.1091.0]
  263.     [D:\Program Files\AVAST Software\Avast\AhResP2P.dll]  [AVAST Software, 6.0.1091.0]
  264.     [D:\Program Files\AVAST Software\Avast\AhResStd.dll]  [AVAST Software, 6.0.1091.0]
  265.     [D:\Program Files\AVAST Software\Avast\AhResWS.dll]  [AVAST Software, 6.0.1091.0]
  266.     [D:\Program Files\AVAST Software\Avast\ashMaiSv.dll]  [AVAST Software, 6.0.1091.0]
  267.     [D:\Program Files\AVAST Software\Avast\ashWebSv.dll]  [AVAST Software, 6.0.1091.0]
  268.     [D:\Program Files\AVAST Software\Avast\ashWsFtr.dll]  [AVAST Software, 6.0.1091.0]
  269.     [D:\WINDOWS.0\system32\wininet.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  270.     [D:\Program Files\AVAST Software\Avast\defs\11051000\aswEngin.dll]  [AVAST Software, 6.0.1124.0]
  271.     [D:\Program Files\AVAST Software\Avast\defs\11051000\aswCmnOS.dll]  [AVAST Software, 6.0.1114.0]
  272.     [D:\Program Files\AVAST Software\Avast\defs\11051000\aswCmnIS.dll]  [AVAST Software, 6.0.1016.0]
  273.     [D:\Program Files\AVAST Software\Avast\defs\11051000\aswCmnBS.dll]  [AVAST Software, 6.0.1114.0]
  274.     [D:\Program Files\AVAST Software\Avast\defs\11051000\aswScan.dll]  [AVAST Software, 6.0.1117.0]
  275.     [D:\Program Files\AVAST Software\Avast\defs\11051000\algo.dll]  [N/A, ]
  276.     [D:\Program Files\AVAST Software\Avast\defs\11051000\arPot.dll]  [AVAST Software, 6.0.1085.0]
  277.     [D:\Program Files\AVAST Software\Avast\defs\11051000\aswCleanerDLL.dll]  [AVAST Software, 1, 0, 212, 0]
  278. [PID: 1852][D:\Program Files\KSafe\KSafeSvc.exe]  [Kingsoft Corporation, 2.6.3.1401]
  279.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  280.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  281.     [D:\Program Files\KSafe\kdump.dll]  [Kingsoft Corporation, 2011,03,08,1746]
  282.     [D:\Program Files\KSafe\kxebase.dll]  [Kingsoft Corporation, 2010,5,12,402]
  283.     [D:\Program Files\KSafe\scom.dll]  [Kingsoft Corporation, 2010,5,12,402]
  284.     [D:\Program Files\KSafe\kxecore\kxecore.dll]  [Kingsoft Corporation, 2010,5,12,402]
  285.     [D:\Program Files\KSafe\kse\ksbcommsp.dll]  [Kingsoft Corporation, 2011,02,14,1702]
  286.     [D:\Program Files\KSafe\kexectrl.dll]  [Kingsoft Corporation, 2010,09,18,1422]
  287.     [D:\Program Files\KSafe\kwssp.dll]  [Kingsoft Corporation, 2011.04.21.1401]
  288.     [D:\Program Files\KSafe\json.dll]  [N/A, ]
  289.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  290.     [D:\Program Files\KSafe\netstat.dll]  [Kingsoft Corporation, 2.6.3.1401]
  291.     [D:\Program Files\KSafe\fwproxy.dll]  [Kingsoft Corporation, 2.6.3.1401]
  292.     [D:\Program Files\KSafe\kse\BKReScan.dll]  [Kingsoft Corporation, 2011,03,04,1740]
  293.     [D:\Program Files\KSafe\kse\sqlite.dll]  [Kingsoft Corporation, 2010,03,30,781]
  294.     [D:\Program Files\KSafe\kse\ksbwdet2.dll]  [Kingsoft Corporation, 2011,04,28,1920]
  295.     [D:\Program Files\KSafe\kse\ksecansp.dll]  [Kingsoft Corporation, 2011,04,21,1878]
  296.     [D:\Program Files\KSafe\kse\ksecorex.dll]  [Kingsoft Corporation, 2011,03,29,1600]
  297.     [D:\Program Files\KSafe\KEng\kae\kaecore.dat]  [Kingsoft Corporation, 2010,12,16,1454]
  298.     [D:\Program Files\KSafe\kse\wfs.dll]  [Kingsoft Corporation, 2011,04,20,1616]
  299.     [D:\Program Files\KSafe\KEng\kae\karchive.dat]  [Kingsoft Corporation, 2010,12,16,1454]
  300.     [D:\Program Files\KSafe\KEng\kae\kaearcha.dat]  [Kingsoft Corporation, 2010,12,16,1454]
  301.     [D:\Program Files\KSafe\KEng\kae\kaeolea.dat]  [Kingsoft Corporation, 2010,12,16,1454]
  302.     [D:\Program Files\KSafe\KEng\kae\kaearchb.dat]  [Kingsoft Corporation, 2011,02,14,1540]
  303.     [D:\Program Files\KSafe\KEng\kae\kaeunpak.dat]  [Kingsoft Corporation, 2010,06,30,436]
  304.     [D:\Program Files\KSafe\KEng\kae\kaeunpack.dat]  [Kingsoft Corporation, 2010,07,18,365]
  305.     [D:\Program Files\KSafe\KEng\kae\kaecoref.dat]  [Kingsoft Corporation, 2010,12,16,1454]
  306.     [D:\Program Files\KSafe\KEng\kae\kaecorem.dat]  [Kingsoft Corporation, 2010,10,26,1328]
  307.     [D:\Program Files\KSafe\KEng\kae\kaecorea.dat]  [Kingsoft Corporation, 2010,12,16,1454]
  308. [PID: 2032][D:\WINDOWS.0\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
  309.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  310.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  311.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  312.     [D:\WINDOWS.0\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
  313. [PID: 732][D:\WINDOWS.0\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  314.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  315.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  316.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  317.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  318.     [D:\Program Files\AVAST Software\Avast\ashShell.dll]  [AVAST Software, 6.0.1091.0]
  319.     [D:\mxf\lvse\winmount\WinMTExt.dll]  [WinMount International Inc., 3.4.1015]
  320.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  321.     [D:\WINDOWS.0\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  322. [PID: 2384][D:\Program Files\COMODO\COMODO Internet Security\cfp.exe]  [COMODO, 5, 3, 176757, 1236]
  323.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  324.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  325.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  326.     [D:\WINDOWS.0\system32\UXTHEME.DLL]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  327.     [D:\Program Files\AVAST Software\Avast\ashShell.dll]  [AVAST Software, 6.0.1091.0]
  328.     [D:\mxf\lvse\winmount\WinMTExt.dll]  [WinMount International Inc., 3.4.1015]
  329.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  330.     [D:\WINDOWS.0\system32\QQPINYIN.IME]  [Tencent, 4.1.1063.400]
  331. [PID: 2416][D:\Program Files\KSafe\KSafeTray.exe]  [Kingsoft Corporation, 2.6.3.1402]
  332.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  333.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  334.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  335.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  336.     [D:\Program Files\KSafe\kdump.dll]  [Kingsoft Corporation, 2011,03,08,1746]
  337.     [D:\Program Files\KSafe\ksafedb.dll]  [Kingsoft Corporation, 2.6.3.1401]
  338.     [D:\Program Files\KSafe\krunopt.dll]  [Kingsoft Corporation, 2.6.3.1401]
  339.     [D:\Program Files\KSafe\kwsctrl.dll]  [Kingsoft Corporation, 2.6.3.1401]
  340.     [D:\Program Files\KSafe\kse\bkrescan.dll]  [Kingsoft Corporation, 2011,03,04,1740]
  341.     [D:\Program Files\KSafe\kse\sqlite.dll]  [Kingsoft Corporation, 2010,03,30,781]
  342.     [D:\Program Files\KSafe\ksafeup.dll]  [Kingsoft Corporation, 2.6.3.1401]
  343.     [D:\Program Files\KSafe\zlib1.dll]  [, 1.2.3]
  344.     [D:\Program Files\KSafe\KEng\ksignup.dll]  [Kingsoft Corporation, 1.1.0.1401]
  345.     [D:\Program Files\KSafe\ksafevul.dll]  [Kingsoft Corporation, 2.6.3.1401]
  346.     [D:\Program Files\KSafe\kavmgr.dll]  [Kingsoft Corporation, 2.6.3.1401]
  347.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  348.     [D:\Program Files\AVAST Software\Avast\ashShell.dll]  [AVAST Software, 6.0.1091.0]
  349.     [D:\mxf\lvse\winmount\WinMTExt.dll]  [WinMount International Inc., 3.4.1015]
  350.     [D:\Program Files\KSafe\KEng\KSGMerge.DLL]  [Kingsoft Corporation, 2011,03,25,1594]
  351.     [D:\Program Files\KSafe\kplugeng.dll]  [Kingsoft Corporation, 2.6.3.1401]
  352. [PID: 2532][D:\Program Files\AVAST Software\Avast\avastUI.exe]  [AVAST Software, 6.0.1091.0]
  353.     [D:\Program Files\AVAST Software\Avast\aswUtil.dll]  [AVAST Software, 6.0.1091.0]
  354.     [D:\Program Files\AVAST Software\Avast\ashBase.dll]  [AVAST Software, 6.0.1091.0]
  355.     [D:\Program Files\AVAST Software\Avast\aswEngLdr.dll]  [AVAST Software, 6.0.1091.0]
  356.     [D:\Program Files\AVAST Software\Avast\aswCmnOS.dll]  [AVAST Software, 6.0.1091.0]
  357.     [D:\Program Files\AVAST Software\Avast\aswCmnIS.dll]  [AVAST Software, 6.0.1091.0]
  358.     [D:\Program Files\AVAST Software\Avast\aswCmnBS.dll]  [AVAST Software, 6.0.1091.0]
  359.     [D:\Program Files\AVAST Software\Avast\ashTask.dll]  [AVAST Software, 6.0.1091.0]
  360.     [D:\Program Files\AVAST Software\Avast\aswAux.dll]  [AVAST Software, 6.0.1091.0]
  361.     [D:\Program Files\AVAST Software\Avast\aswLog.dll]  [AVAST Software, 6.0.1091.0]
  362.     [D:\Program Files\AVAST Software\Avast\aswSqLt.dll]  [AVAST Software, 6.0.1091.0]
  363.     [D:\Program Files\AVAST Software\Avast\aswProperty.dll]  [AVAST Software, 6.0.1091.0]
  364.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  365.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  366.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  367.     [D:\Program Files\AVAST Software\Avast\2052\Base.dll]  [AVAST Software, 6, 0, 999, 0]
  368.     [D:\Program Files\AVAST Software\Avast\aswData.dll]  [AVAST Software, 6.0.1091.0]
  369.     [D:\Program Files\AVAST Software\Avast\ashTaskEx.dll]  [AVAST Software, 6.0.1091.0]
  370.     [D:\Program Files\AVAST Software\Avast\Aavm4h.dll]  [AVAST Software, 6.0.1091.0]
  371.     [D:\Program Files\AVAST Software\Avast\AavmRpch.dll]  [AVAST Software, 6.0.1091.0]
  372.     [D:\Program Files\AVAST Software\Avast\2052\UILangRes.dll]  [AVAST Software, 6, 0, 999, 0]
  373.     [D:\Program Files\AVAST Software\Avast\CommonRes.dll]  [AVAST Software, 6.0.1091.0]
  374.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  375.     [D:\WINDOWS.0\system32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0305]
  376.     [D:\Program Files\AVAST Software\Avast\ashShell.dll]  [AVAST Software, 6.0.1091.0]
  377.     [D:\mxf\lvse\winmount\WinMTExt.dll]  [WinMount International Inc., 3.4.1015]
  378.     [D:\WINDOWS.0\system32\QQPINYIN.IME]  [Tencent, 4.1.1063.400]
  379. [PID: 2568][D:\WINDOWS.0\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
  380.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  381.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  382.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  383. [PID: 2628][D:\mxf\lvse\EyeFoo\EyeFoo.exe]  [EyeFoo Software, 2, 98, 11, 0]
  384.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  385.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  386.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  387.     [D:\mxf\lvse\EyeFoo\Factory.dll]  [EyeFoo Software, 1.0.0.3]
  388.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  389.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  390.     [D:\WINDOWS.0\system32\quartz.dll]  [Microsoft Corporation, 6.05.2600.5596]
  391.     [D:\WINDOWS.0\system32\msdmo.dll]  [, ]
  392.     [D:\mxf\lvse\EyeFoo\efLock.dll]  [N/A, ]
  393. [PID: 2636][D:\mxf\lvse\ProcessTamer\ProcessTamerTray.exe]  [, 1, 0, 0, 1]
  394.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  395.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  396. [PID: 2660][D:\mxf\lvse\SuperF4\SuperF4.exe]  [Stefan Sundin, 1.1]
  397.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  398.     [D:\WINDOWS.0\system32\WININET.DLL]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  399.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  400.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  401. [PID: 1504][D:\Program Files\Tencent\QQPinyin\4.1.1063.400\QQPYClipboard.exe]  [Tencent, 4.1.1063.400]
  402.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  403.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  404.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  405.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  406. [PID: 3656][D:\Program Files\Kingsoft\KSM\ksmsvc.exe]  [, 2010,10,27,1479]
  407.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  408.     [D:\WINDOWS.0\system32\guard32.dll]  [COMODO, 5, 3, 174622, 1216]
  409.     [D:\Program Files\Kingsoft\KSM\kdump.dll]  [Kingsoft Corporation, 2010,10,11,1453]
  410.     [D:\Program Files\Kingsoft\KSM\kxestat.dll]  [Kingsoft Corporation, 2009,11,20,309]
  411.     [D:\Program Files\kingsoft\KSM\kxebase.dll]  [Kingsoft Corporation, 2009,11,20,309]
  412.     [D:\Program Files\kingsoft\KSM\scom.dll]  [Kingsoft Corporation, 2009,11,20,309]
  413.     [D:\Program Files\kingsoft\KSM\kxecore\kxelog.dll]  [Kingsoft Corporation, 2009,11,20,309]
  414.     [D:\Program Files\kingsoft\KSM\kxecore\kxecore.dll]  [Kingsoft Corporation, 2010,5,12,402]
  415.     [D:\Program Files\kingsoft\KSM\kxecore\kxestat.dll]  [Kingsoft Corporation, 2009,11,20,309]
  416.     [D:\Program Files\Kingsoft\KSM\ksmcorex.dll]  [Kingsoft Corporation, 2011,05,06,1940]
  417.     [D:\Program Files\Kingsoft\KSM\ksapi.dll]  [Kingsoft Corporation, 2011,05,04,30]
  418.     [D:\Program Files\Kingsoft\KSM\ksmbrfix.dll]  [Kingsoft Corporation, 2010,09,13,1403]
  419.     [D:\Program Files\Kingsoft\KSM\ksbwsspx.dll]  [Kingsoft Corporation, 2010,05,27,1072]
  420.     [D:\Program Files\Kingsoft\KSM\sqlite.dll]  [N/A, ]
  421.     [D:\Program Files\Kingsoft\KSM\ksecorex.dll]  [Kingsoft Corporation, 2011,05,04,1633]
  422.     [D:\Program Files\Kingsoft\KSM\COMRes.dll]  [Microsoft Corporation, 2001.12.4414.258]
  423.     [D:\Program Files\Kingsoft\KSM\kae\kaecore.dat]  [Kingsoft Corporation, 2010,12,28,110]
  424.     [D:\Program Files\Kingsoft\KSM\khandler.dll]  [Kingsoft Corporation, 2011,04,08,1844]
  425.     [D:\Program Files\Kingsoft\KSM\ksreng3.dll]  [Kingsoft Corporation, 2011,05,05,1938]
  426.     [D:\Program Files\Kingsoft\KSM\kcldrep.dll]  [Kingsoft Corporation, 2011,04,25,1905]
  427.     [D:\Program Files\Kingsoft\KSM\ksbwdet2.dll]  [Kingsoft Corporation, 2011,04,28,1920]
  428.     [D:\Program Files\Kingsoft\KSM\kavifr.dll]  [Kingsoft Corporation, 2010,05,25,74]
  429.     [D:\Program Files\Kingsoft\KSM\kae\karchive.dat]  [Kingsoft Corporation, 2010,12,28,110]
  430.     [D:\Program Files\Kingsoft\KSM\kae\kaearcha.dat]  [Kingsoft Corporation, 2010,12,28,110]
  431.     [D:\Program Files\Kingsoft\KSM\kae\kaeolea.dat]  [Kingsoft Corporation, 2010,12,28,110]
  432.     [D:\Program Files\Kingsoft\KSM\kae\kaearchb.dat]  [Kingsoft Corporation, 2010,06,30,436]
  433.     [D:\Program Files\Kingsoft\KSM\kscanner.dll]  [Kingsoft Corporation, 2011,05,04,1936]
  434.     [D:\Program Files\Kingsoft\KSM\kplugeng.dll]  [Kingsoft Corporation, 2.3.0.1188]
  435.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  436.     [D:\Program Files\Kingsoft\KSM\report\kinfoc.dll]  [Kingsoft Corporation, 2010,12,13,213]
  437. [PID: 3988][D:\mxf\lvse\sreng\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.4.1331]
  438.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  439. [PID: 2328][D:\mxf\lvse\sreng\SREb6ad46ea.EXE]  [Smallfrogs Studio, 2.8.4.1331]
  440.     [D:\Program Files\AVAST Software\Avast\snxhk.dll]  [AVAST Software, 6.0.1091.0]
  441.     [D:\WINDOWS.0\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.5583 (xpsp_sp3_gdr.080417-1430)]
  442.     [D:\Program Files\KSafe\ksfmon.dll]  [Kingsoft Corporation, 2.6.3.1402]
  443.     [D:\WINDOWS.0\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
  444.     [D:\WINDOWS.0\system32\sfc_os.dll]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]

  446. ==================================
  447. 文件关联
  448. .TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  449. .EXE  OK. ["%1" %*]
  450. .COM  OK. ["%1" %*]
  451. .PIF  OK. ["%1" %*]
  452. .REG  OK. [regedit.exe "%1"]
  453. .BAT  OK. ["%1" %*]
  454. .SCR  OK. ["%1" /S]
  455. .CHM  OK. ["D:\WINDOWS.0\hh.exe" %1]
  456. .HLP  Error. [%SystemRoot%\winhlp32.exe %1]
  457. .INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  458. .INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
  459. .VBS  Error. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
  460. .JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
  461. .LNK  OK. [{00021401-0000-0000-C000-000000000046}]

  463. ==================================
  464. Winsock 提供者
  465. N/A

  467. ==================================
  468. Autorun.inf
  469. N/A

  471. ==================================
  472. HOSTS 文件
  473. 127.0.0.1       localhost

  475. ==================================
  476. 进程特权扫描
  477. 特殊特权被允许: SeLoadDriverPrivilege [PID = 780, D:\WINDOWS.0\SYSTEM32\WINLOGON.EXE]
  478. 特殊特权被允许: SeDebugPrivilege [PID = 2628, D:\MXF\LVSE\EYEFOO\EYEFOO.EXE]
  479. 特殊特权被允许: SeLoadDriverPrivilege [PID = 2628, D:\MXF\LVSE\EYEFOO\EYEFOO.EXE]
  480. 特殊特权被允许: SeLoadDriverPrivilege [PID = 2636, D:\MXF\LVSE\PROCESSTAMER\PROCESSTAMERTRAY.EXE]
  481. 特殊特权被允许: SeLoadDriverPrivilege [PID = 2660, D:\MXF\LVSE\SUPERF4\SUPERF4.EXE]

  483. ==================================
  484. 计划任务
  485. [已启用] KsafeDelay.job
  486.         D:\Program Files\KSafe\KSafeTray.exe -delayruncheck

  488. ==================================
  489. Windows 安全更新检查
  490. N/A

  492. ==================================
  493. API HOOK
  494. 入口点错误:ChangeServiceConfigA (危险等级: 高,  被下面模块所HOOK: 0x003F0809)
  495. 入口点错误:ChangeServiceConfig2A (危险等级: 高,  被下面模块所HOOK: 0x003F0C11)
  496. 入口点错误:ChangeServiceConfigW (危险等级: 高,  被下面模块所HOOK: 0x003F0A0D)
  497. 入口点错误:ChangeServiceConfig2W (危险等级: 高,  被下面模块所HOOK: 0x003F0E15)
  498. 入口点错误:CreateServiceA (危险等级: 高,  被下面模块所HOOK: 0x003F01FD)
  499. 入口点错误:CreateServiceW (危险等级: 高,  被下面模块所HOOK: 0x003F0401)
  500. 入口点错误:DeleteService (危险等级: 高,  被下面模块所HOOK: 0x003F0605)
  501. 入口点错误:LoadLibraryExW (危险等级: 高,  被下面模块所HOOK: 0x00EF02F1)
  502. 入口点错误:CreateProcessA (危险等级: 高,  被下面模块所HOOK: 0x00E902F1)
  503. 入口点错误:CreateProcessW (危险等级: 高,  被下面模块所HOOK: 0x00EC02F1)
  504. 入口点错误:SetWindowsHookExA (危险等级: 高,  被下面模块所HOOK: 0x003E0605)
  505. 入口点错误:SetWindowsHookExW (危险等级: 高,  被下面模块所HOOK: 0x003E0809)
  506. 入口点错误:UnhookWindowsHookEx (危险等级: 高,  被下面模块所HOOK: 0x003E0A0D)

  508. ==================================
  509. 隐藏进程
  510. N/A

  512. ==================================


复制代码

回复

举报

txt475
发表于 2011-5-31 14:13:45 | 显示全部楼层
中了机器狗病毒。
回复

举报

gffgef
发表于 2011-5-31 15:07:18 | 显示全部楼层
建议将文件用RAR打包上传
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2026-4-5 23:19 , Processed in 0.089850 second(s), 4 queries , Redis On.

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表