瑞星卡卡安全论坛

首页 » 技术交流区 » 反病毒/反流氓软件论坛 » 感觉屏幕被劫持了。。。
∮落葉秋霜♂ - 2012-12-3 10:53:00
鼠标总是停顿然后又可以用,或者停顿之后我离手了鼠标移动。感觉像是屏幕被人控制了一样的。。。

求大侠。。。以下是SRENGLOG




用户系统信息:Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.1 (KHTML, like Gecko) Chrome/14.0.802.30 Safari/535.1 SE 2.X MetaSr 1.0
∮落葉秋霜♂ - 2012-12-3 10:53:00
[CODE]

2012-12-03,09:45:04

System Repair Engineer 2.8.4.1331
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 3 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描
    计划任务
    API HOOK
    隐藏进程


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
    <360sd><"C:\Program Files\360\360sd\360sd.exe" /autorun>  [(Verified)360.cn]
    <QQPMDaemon><"C:\Program Files\Tencent\QQPCMgr\Plugins\QQPCB1AndroidJmp\QQPMDaemon.exe">  [(Verified)Tencent Technology(Shenzhen) Company Limited]
    <XLacc><; "C:\Program Files\Thunder Network\Xlacc\bin\XLacc.exe" -startup>  [(Verified)ShenZhen Thunder Networking Technologies Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <360Safetray><"C:\Program Files\360\360safe\safemon\360Tray.exe" /start>  [(Verified)360.cn]
    <AppleSyncNotifier><; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe>  [(Verified)Apple Inc.]
    <APSDaemon><; "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe">  [File is missing]
    <DAEMON Tools-2052><; "C:\Program Files\D-Tools\daemon.exe"  -lang 2052>  [DAEMON'S HOME]
    <ToolBoxFX><; "C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe" /enum:on /alerts:on /notifications:on /systrayIcon:on /fl:on /fr:on /appData:on>  [HP]
    <vmware-tray><; "E:\虚拟机\PRO\vmware-tray.exe">  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows]
    <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
    <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
    <Internet Explorer 版本更新><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    <Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Remove.PerUser.NT>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]

==================================
启动文件夹
N/A

==================================
服务
[360电脑技师服务 / 360js][Running/Auto Start]
  <"C:\Program Files\360\360jishi\360js.exe" /service><360.cn>
[360 杀毒实时防护加载服务 / 360rp][Stopped/Auto Start]
  <"C:\Program Files\360\360sd\360rps.exe"><360.cn>
[Adobe Flash Player Update Service / AdobeFlashPlayerUpdateSvc][Stopped/Disabled]
  <C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe><Adobe Systems Incorporated>
[Alipay security service / AlipaySecSvc][Stopped/Disabled]
  <C:\Program Files\alipay\alieditplus\AlipaySecSvc.exe><Alipay Inc.>
[Alipay alive service / AliveSvc][Stopped/Disabled]
  <C:\Program Files\Common Files\alipay\AliveService\AliveService.exe><Alipay Inc.>
[CNTV CBox Service / CntvCBoxService][Stopped/Disabled]
  <"C:\Program Files\CNTV\CBox\CntvCBoxService.exe"><中国网络电视台>
[Google 更新服务 (gupdate) / gupdate][Stopped/Disabled]
  <C:\Program Files\Google\Update\GoogleUpdate.exe /svc><Google Inc.>
[Google 更新服务 (gupdatem) / gupdatem][Stopped/Disabled]
  <C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc><Google Inc.>
[hpqcxs08 / hpqcxs08][Stopped/Manual Start]
  <C:\WINDOWS\system32\svchost.exe -k hpdevmgmt-->C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll><Hewlett-Packard Co.>
[iPod 服务 / iPod Service][Stopped/Disabled]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[Java Quick Starter / JavaQuickStarterService][Stopped/Manual Start]
  <"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.>
[McAfee Security Scan Component Host Service / McComponentHostService][Stopped/Disabled]
  <"C:\Program Files\McAfee Security Scan\3.0.285\McCHSvc.exe"><McAfee, Inc.>
[Mozilla Maintenance Service / MozillaMaintenance][Stopped/Disabled]
  <C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe><Mozilla Foundation>
[Net Driver HPZ12 / Net Driver HPZ12][Stopped/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k HPZ12-->c:\WINDOWS\system32\HPZinw12.dll><N/A>
[NVIDIA Display Driver Service / nvsvc][Stopped/Disabled]
  <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[Pml Driver HPZ12 / Pml Driver HPZ12][Stopped/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k HPZ12-->c:\WINDOWS\system32\HPZipm12.dll><N/A>
[VMware Agent Service / ufad-ws60][Stopped/Disabled]
  <E:\虚拟机\PRO\vmware-ufad.exe -d "E:\虚拟机\PRO\\" -s ufad-p2v.xml><(File is missing)>
[VMware Authorization Service / VMAuthdService][Stopped/Disabled]
  <"E:\虚拟机\PRO\vmware-authd.exe"><(File is missing)>
[VMware DHCP Service / VMnetDHCP][Stopped/Disabled]
  <C:\WINDOWS\system32\vmnetdhcp.exe><VMware, Inc.>
[VMware USB Arbitration Service / VMUSBArbService][Stopped/Disabled]
  <"C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe"><VMware, Inc.>
[VMware NAT Service / VMware NAT Service][Stopped/Disabled]
  <C:\WINDOWS\system32\vmnat.exe><VMware, Inc.>
[VNC Server Version 4 / WinVNC4][Stopped/Disabled]
  <"C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service><RealVNC Ltd.>
[Windows Presentation Foundation Font Cache 4.0.0.0 / WPFFontCache_v0400][Stopped/Disabled]
  <c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe><(File is missing)>
[主动防御 / ZhuDongFangYu][Running/Auto Start]
  <"C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe"><360.cn>
∮落葉秋霜♂ - 2012-12-3 10:54:00
==================================
驱动程序
[360AntiArp / 360AntiArp][Running/System Start]
  <\SystemRoot\system32\drivers\360AntiArp.sys><360安全中心>
[360Safe Anti Hacker Service / 360AntiHacker][Running/System Start]
  <System32\Drivers\360AntiHacker.sys><360.cn>
[360AvFlt mini-filter driver / 360AvFlt][Running/Manual Start]
  <system32\DRIVERS\360AvFlt.sys><360.cn>
[360boost driver / 360boost][Running/System Start]
  <system32\DRIVERS\360boost.sys><360.cn>
[360Box mini-filter driver / 360Box][Running/System Start]
  <system32\DRIVERS\360Box.sys><360安全中心>
[360Safe Camera Filter Service / 360Camera][Stopped/Manual Start]
  <System32\Drivers\360Camera.sys><360.cn>
[360netmon / 360netmon][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\360netmon.sys><360.cn>
[360SelfProtection / 360SelfProtection][Running/System Start]
  <system32\drivers\360SelfProtection.sys><360安全中心>
[Ambfilt / Ambfilt][Stopped/Manual Start]
  <system32\drivers\Ambfilt.sys><Creative>
[AMD Low Level Device Driver / AmdLLD][Running/Manual Start]
  <system32\DRIVERS\AmdLLD.sys><AMD, Inc.>
[BAPIDRV / BAPIDRV][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\BAPIDRV.SYS><360.cn>
[C-Media USB Sound Interface / cmudau][Stopped/Manual Start]
  <system32\drivers\cmudau.sys><C-Media Inc>
[d347bus / d347bus][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\d347bus.sys><>
[d347prt / d347prt][Running/Boot Start]
  <\SystemRoot\System32\Drivers\d347prt.sys><>
[SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) / dg_ssudbus][Stopped/Manual Start]
  <system32\DRIVERS\ssudbus.sys><DEVGURU Co., LTD.(www.devguru.co.kr)>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><360安全中心>
[GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start]
  <system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.>
[VMware hcmon / hcmon][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\hcmon.sys><VMware, Inc.>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HookPort / HookPort][Running/Boot Start]
  <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[HOSxxx / HOSxxx][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\hosxxx.sys><N/A>
[HPFXBULK / HPFXBULK][Stopped/Manual Start]
  <system32\drivers\hpfxbulk.sys><Hewlett Packard>
[IEEE-1284.4 Driver HPZid412 / HPZid412][Stopped/Manual Start]
  <system32\DRIVERS\HPZid412.sys><HP>
[Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][Stopped/Manual Start]
  <system32\DRIVERS\HPZipr12.sys><HP>
[USB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][Stopped/Manual Start]
  <system32\DRIVERS\HPZius12.sys><HP>
[HWiNFO32/64 Kernel Driver / HWiNFO32][Running/System Start]
  <\??\C:\Program Files\Mydrivers\DGonlineHDinfo\Mydrivers32.SYS><REALiX(tm)>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[Monfilt / Monfilt][Stopped/Manual Start]
  <system32\drivers\Monfilt.sys><Creative Technology Ltd.>
[mv2 / mv2][Running/Manual Start]
  <system32\DRIVERS\mv2.sys><UVNC BVBA>
[nv / nv][Running/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[nvsmu / nvsmu][Running/Manual Start]
  <system32\DRIVERS\nvsmu.sys><NVIDIA Corporation>
[360AntiArp Protocol / Packet][Running/System Start]
  <system32\DRIVERS\ProtoDrv.sys><360安全中心>
[PassGuard / PassGuard][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\PassGuard.sys><>
[Mingwah PC/SC Driver / PcscInfs][Stopped/Manual Start]
  <System32\Drivers\PcscInfs.sys><N/A>
[PECKbdProtector / PECKbdProtector][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\PECKP.SYS><CSII>
[Protector / Protector][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\Protector.sys><www.ISRA.org.cn>
[ProtectorA / ProtectorA][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\ProtectorA.sys><www.ISRA.org.cn>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Rovi Corporation>
[QqNetflpwControl / QqNetflpwControl][Running/System Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\QMNetflowxp.sys><tencent>
[QQSysMon / QQSysMon][Running/Auto Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\QQSysMon.sys><Tencent>
[Quantum DeepScanner Servers / quxxxserv][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\quxxxrv.sys><360.cn>
[qutmipc / qutmipc][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\qutmipc.sys><360.cn>
[ROCKEYNT / ROCKEYNT][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\Rockeynt.sys><FeiTian Tech Co.,Ltd>
[Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SATALink driver accelerator / SiFilter][Running/Boot Start]
  <\SystemRoot\system32\drivers\SiWinAcc.sys><Silicon Image, Inc.>
[SogouNetopt / SogouNetopt][Running/Auto Start]
  <\??\C:\Program Files\SogouExplorer\sogounetopt.sys><Sogou.com>
[SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.) / ssudmdm][Stopped/Manual Start]
  <system32\DRIVERS\ssudmdm.sys><DEVGURU Co., LTD.(www.devguru.co.kr)>
[TAP-Win32 Adapter V9 / tap0901][Running/Manual Start]
  <system32\DRIVERS\tap0901.sys><The OpenVPN Project>
[TAP-Win32 Adapter V9-Xlacc / tapxlacc][Running/Manual Start]
  <system32\DRIVERS\tapxlacc.sys><The OpenVPN Project>
[TcHardWare / TcHardWare][Stopped/Manual Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\QQPCHW.sys><Tencent>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[TCSafeBox / TCSafeBox][Running/System Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\TCSafeBox.sys><Tencent>
[TesSafe / TesSafe][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\TesSafe.sys><TENCENT>
[TSCPM / TSCPM][Running/System Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\tscpm.sys><>
[TsFltMgr / TsFltMgr][Running/Boot Start]
  <\SystemRoot\System32\drivers\TsFltMgr.sys><Tencent>
[TSKSP / TSKSP][Running/System Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\TSKsp.sys><Tencent>
[TSSysKit / TSSysKit][Running/System Start]
  <\??\C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\TSSysKit.sys><Tencent>
[TSysCare / TSysCare][Running/Boot Start]
  <\SystemRoot\system32\Drivers\TSysCare.sys><Tencent>
[USB eKey / UsbKDev][Stopped/Manual Start]
  <system32\DRIVERS\UsbKDev.sys><N/A>
[VirtualBox Host-Only Ethernet Adapter / VBoxNetAdp][Stopped/Manual Start]
  <system32\DRIVERS\VBoxNetAdp.sys><Oracle Corporation>
[VMware vmci / vmci][Running/Auto Start]
  <\??\C:\WINDOWS\system32\Drivers\vmci.sys><VMware, Inc.>
[VMware kbd / vmkbd][Running/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\VMkbd.sys><VMware, Inc.>
[VMware Virtual Ethernet Adapter Driver / VMnetAdapter][Stopped/Manual Start]
  <system32\DRIVERS\vmnetadapter.sys><VMware, Inc.>
[VMware Bridge Protocol / VMnetBridge][Running/Auto Start]
  <system32\DRIVERS\vmnetbridge.sys><VMware, Inc.>
[VMware Network Application Interface / VMnetuserif][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\vmnetuserif.sys><VMware, Inc.>
[VMware vmx86 / vmx86][Running/Auto Start]
  <\??\C:\WINDOWS\system32\Drivers\vmx86.sys><VMware, Inc.>
[vncmirror / vncmirror][Running/Manual Start]
  <system32\DRIVERS\vncmirror.sys><RealVNC Ltd.>
[Vstor2 WS60 Virtual Storage Driver / vstor2-ws60][Stopped/Auto Start]
  <\??\E:\虚拟机\PRO\vstor2-ws60.sys><N/A>

==================================
浏览器加载项
[HelperObject Class]
  {00C6482D-C502-44C8-8409-FCE54AD9C208} <C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll, TechSmith Corporation>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[迅雷FLV视频嗅探及下载支持]
  {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} <C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll, (Signed) 深圳市迅雷网络技术有限公司>
[Java(tm) Plug-In SSV Helper]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre6\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.10.3694.dll, (Signed) 深圳市迅雷网络技术有限公司>
[Adobe PDF Conversion Toolbar Helper]
  {AE7CD045-E861-484f-8273-0445EE161910} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, (Signed) Adobe Systems Incorporated>
[Office Document Cache Handler]
  {B4F3A835-0E21-4959-BA22-42B3008E02FF} <C:\PROGRA~1\MI1933~1\Office14\URLREDIR.DLL, (Signed) Microsoft Corporation>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.cn>
[CITICS ProcessProtect Class]
  {C37F9D60-975D-41f2-A745-4DC934D319AA} <C:\WINDOWS\system32\CITICSPP.dll, (Signed) www.ISRA.org.cn>
[CITICS Antiphishing Class]
  {C8CBC109-B04A-4dda-956E-BFFE0360DADD} <C:\WINDOWS\system32\CITICAP.dll, (Signed) NITSC>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, (Signed) Sun Microsystems, Inc.>
[]
  {00903c7d-93a4-4814-98a9-66351adedf84} <, >
[启动迅雷看看播放器]
∮落葉秋霜♂ - 2012-12-3 10:54:00
{00a03c7d-93a4-4814-98a9-66351adedf84} <, >
[PPLive]
  {95B3F550-91C4-4627-BCC4-521288C52977} <C:\Program Files\PPLive\PPTV\PPLive.exe, (Signed) PPLive Corporation>
[SnagIt]
  {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} <C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll, TechSmith Corporation>
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, (Signed) Adobe Systems Incorporated>
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINDOWS\system32\CMBEdit.dll, >
[UPEditorCtrl Class]
  {0E48410F-D1B8-472A-85DB-27F3D77284CE} <C:\WINDOWS\system32\UPEdit\UPEditor.dll, (Signed) 中国银联股份有限公司>
[GDGetTokenInfo Class]
  {3AA9CF07-DF20-48FF-98BE-DED276E40146} <C:\WINDOWS\system32\GDREAD~1.DLL, (Signed) >
[]
  {3C284567-929B-4ED8-A155-A42D00746B25} <, >
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\3.0.2.0\aliedit.dll, (Signed) >
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\InputControl.dll, (Signed) >
[]
  {77709A87-71F9-41AE-904F-886976F99E3E} <, >
[]
  {7CCE07A5-A590-4554-B5C3-082840D7012E} <, >
[Java Plug-in 1.6.0_31]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[MyDrivers.AsDGWeb Class]
  {94AD8E48-F09F-414C-977D-99DCE2CCADC1} <C:\Program Files\Mydrivers\DGonlineHDinfo\asdgweb.dll, (Signed) 驱动之家>
[MyDrivers.DGWeb Class]
  {A9EA64C1-D146-4B99-86A7-68B1786D82C0} <C:\Program Files\Mydrivers\DGonline\dgweb.dll, (Signed) 驱动之家>
[]
  {B1FBC1AD-5644-4084-882A-0F8BA85E7506} <, >
[Java Plug-in 1.6.0_31]
  {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_31]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_31.dll, (Signed) Sun Microsystems, Inc.>
[]
  {00000000-0593-4356-9CF7-1D8C2B3343C0} <, >
[]
  {00000000-12C9-4305-82F9-43058F20E8D2} <, >
[]
  {00903C7D-93A4-4814-98A9-66351ADEDF84} <, >
[]
  {00A03C7D-93A4-4814-98A9-66351ADEDF84} <, >
[]
  {00B03C7D-93A4-4814-98A9-66351ADEDF84} <, >
[HelperObject Class]
  {00C6482D-C502-44C8-8409-FCE54AD9C208} <C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll, TechSmith Corporation>
[]
  {01443AEC-0FD1-40FD-9C87-E93D1494C233} <, >
[Microsoft Office Template and Media Control]
  {02BCC737-B171-4746-94C9-0D8A0B2C0089} <C:\PROGRA~1\MI1933~1\Office14\IEAWSDC.DLL, (Signed) >
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[Web Browser Applet Control]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[AliCertDOCtrl Class]
  {08D512D2-7D97-4E22-B7DB-82791106C086} <C:\Documents and Settings\Administrator\Application Data\alipay\cf\alicdo.dll, (Signed) Alipay>
[]
  {09FD71F6-D15B-4924-9A24-0BA5BCE52970} <, >
[]
  {0A0DDBD3-6641-40B9-873F-BBDD26D6C14E} <, >
[迅雷FLV视频嗅探及下载支持代理]
  {0C27ADC4-E826-4620-A3A7-990D7E05545F} <C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll, (Signed) 深圳市迅雷网络技术有限公司>
[AliSetupOneClick Class]
  {0C2BA4AD-7E82-4593-845F-E4160E567752} <C:\Documents and Settings\Administrator\Local Settings\Application Data\Alibaba Cloud Computing\AliSetup\0.2.1.19\npAliSetupOneClick.dll, (Signed) alibaba>
[Edit Class]
  {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINDOWS\system32\CMBEdit.dll, >
[UPEditorCtrl Class]
  {0E48410F-D1B8-472A-85DB-27F3D77284CE} <C:\WINDOWS\system32\UPEdit\UPEditor.dll, (Signed) 中国银联股份有限公司>
[迅雷FLV视频嗅探及下载支持]
  {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} <C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll, (Signed) 深圳市迅雷网络技术有限公司>
[WWPicUploadCtrl Class]
  {1D63232D-4F15-4A42-890D-EE617AA1537D} <C:\Program Files\AliWangWang\7.20.21C\modules\1685\WWPictureUpload.dll, (Signed) Alibaba software (Shanghai) Corporation>
[InstallHelper Class]
  {1DABF8D5-8430-4985-9B7F-A30E53D709B3} <C:\WINDOWS\system32\MMInstaller.dll, (Signed) Tencent>
[iTrusPTA Class]
  {1E0DFFCF-27FF-4574-849B-55007349FEDA} <C:\WINDOWS\system32\aliedit\3.0.2.0\pta.dll, (Signed) iTruschina Co., Ltd.>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[]
  {2670000A-7350-4F3C-8081-5663EE0C6C49} <, >
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Basic Class]
  {29B6CFD5-0064-411A-8C42-9890C83F9921} <C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\npQMExtensionsIE.dll, (Signed) Tencent Technology (Shenzhen) Company Limited>
[GDGetTokenInfo Class]
  {3AA9CF07-DF20-48FF-98BE-DED276E40146} <C:\WINDOWS\system32\GDREAD~1.DLL, (Signed) >
[Adobe PDF]
  {47833539-D0C5-4125-9FA8-0819E2EAAC93} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, (Signed) Adobe Systems Incorporated>
[Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <C:\Program Files\Thunder Network\Thunder\BHO\ThunderAgent7.2.10.3694.dll, (Signed) 深圳市迅雷网络技术有限公司>
[EditCtrl Class]
  {488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\WINDOWS\system32\aliedit\3.0.2.0\aliedit.dll, (Signed) >
[QQPYChecker Class]
  {5052B4D0-9DF7-45ef-88EF-F42C0EA33A43} <C:\Program Files\Tencent\QQPinyin\4.4.61223.400\QQImeChecker.dll, (Signed) Tencent>
[]
  {53763D1D-9CA8-4C7C-9756-A8E6B8FC063B} <, >
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[WangWangX Class]
  {5D09DD40-CDC4-4C56-B615-0D1E3B357C2B} <C:\Program Files\AliWangWang\7.20.21C\AliIMX.dll, (Signed) Alibaba software (Shanghai) Corporation.>
[QQLiveOcx Class]
  {5EF7B131-C278-4034-BC88-2CE28B128681} <C:\Program Files\Tencent\QQLive\LiveOcx\LiveOcx.dll, (Signed) Tencent>
[迅雷发行IE支持]
  {5FFF24BC-DC02-4808-B4E0-A8E2C93FE407} <C:\Program Files\Thunder Network\Thunder\BHO\xlfxctrl1.0.1.64.dll, (Signed) 深圳市迅雷网络技术有限公司>
[]
  {6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <, >
[]
  {61F0024B-8278-4999-B7E6-2718426D9FE6} <, >
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[QQLiveFile Class]
  {6B232760-90F1-41c3-9902-C8552C1D8A72} <C:\Program Files\Tencent\QQLive\LiveOcx\FileVersion.dll, (Signed) Tencent>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
  {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[Access UserInfo by Script]
  {6EE9CD3E-A386-4DAE-9737-A759DBF927AE} <C:\Program Files\Thunder Network\Thunder\BHO\UserAgent1.0.2.10.dll, (Signed) 深圳市迅雷网络技术有限公司>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, (Signed) N/A>
[]
  {72853161-30C5-4D22-B7F9-0BBC1D38A37E} <, >
[AxInputControl Class]
  {73E4740C-08EB-4133-896B-8D0A7C9EE3CD} <C:\WINDOWS\system32\InputControl.dll, (Signed) >
[Java(tm) Plug-In SSV Helper]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre6\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
  {77709A87-71F9-41AE-904F-886976F99E3E} <, >
[]
  {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} <, >
[CertEnroll Class]
  {7978461C-CC22-48F2-BC69-02220D3E101D} <C:\WINDOWS\system32\aliedit\3.0.2.0\itrusenroll.dll, (Signed) iTruschina Co., Ltd.>
[]
  {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} <, >
[]
  {7CCE07A5-A590-4554-B5C3-082840D7012E} <, >
[XunleiBHO Class]
  {802F530B-A8F6-4631-AE49-6BACAAC6373E} <C:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.10.3694.dll, (Signed) 深圳市迅雷网络技术有限公司>
[yy_checker]
  {82404416-4C60-47F8-BA06-90BA7261C3AE} <C:\Program Files\Common Files\duowan\yy4.0\YYSSO\1.0.0.3\npChecker.dll, (Signed) 广州多玩信息技术有限公司>
[360SafeLive]
  {87515F61-A66C-4319-A0E0-D416CB8059E3} <C:\Program Files\360\360Safe\Safelive.dll, (Signed) 360.cn>
[迅雷下载支持]
  {889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\BHO\XunleiBHO7.2.10.3694.dll, (Signed) 深圳市迅雷网络技术有限公司>
[XML DOM Document 6.0]
  {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[SSClient Control]
  {8BE80FD3-B35E-CD48-1179-1B592DDEDDA7} <C:\WINDOWS\system32\CIBCLI~1.OCX, 兴业银行>
[AxSubmitControl Class]
  {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\system32\SubmitControl.dll, (Signed) >
[SecCtrl Class]
  {8EB7C6CB-2DA6-4ABE-B2EA-EAC5A372E757} <C:\WINDOWS\system32\aliedit\3.0.2.0\npAliSecCtrl.dll, (Signed) Alipay.com Inc. >
[SnagIt]
  {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} <C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll, TechSmith Corporation>
[]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <, >
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[MyDrivers.AsDGWeb Class]
  {94AD8E48-F09F-414C-977D-99DCE2CCADC1} <C:\Program Files\Mydrivers\DGonlineHDinfo\asdgweb.dll, (Signed) 驱动之家>
[]
  {95B3F550-91C4-4627-BCC4-521288C52977} <, >
[OFrameObject Class]
  {9701758C-4373-482E-B13C-776C048EC890} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7201.431.(672).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[]
  {A0867FD1-79E7-456C-8B41-165A2504FD86} <, >
[APlayer Control]
  {A9322148-C691-4B9D-91FC-B9C461DBE9DD} <C:\Program Files\Common Files\Thunder Network\APlayer\APlayer_001.dll, (Signed) ShenZhen Thunder Networking Technologies, LTD>
[MyDrivers.DGWeb Class]
  {A9EA64C1-D146-4B99-86A7-68B1786D82C0} <C:\Program Files\Mydrivers\DGonline\dgweb.dll, (Signed) 驱动之家>
[DapCtrl Class]
  {ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <C:\Program Files\Common Files\Thunder Network\KanKan\DapCtrl.2.3.7201.431.(672).dll, (Signed) ShenZhen Thunder Networking Technologies Ltd.>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[Adobe PDF Conversion Toolbar Helper]
  {AE7CD045-E861-484F-8273-0445EE161910} <C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll, (Signed) Adobe Systems Incorporated>
[]
  {B0E2F470-0B07-48F0-B3B1-5749505FAE9B} <, >
[]
  {B1FBC1AD-5644-4084-882A-0F8BA85E7506} <, >
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[Office Document Cache Handler]
  {B4F3A835-0E21-4959-BA22-42B3008E02FF} <C:\PROGRA~1\MI1933~1\Office14\URLREDIR.DLL, (Signed) Microsoft Corporation>
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <C:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.cn>
[FTNUpload Class]
  {BDEACC50-F56D-4D60-860F-CF6ED1766D65} <C:\PROGRA~1\COMMON~1\Tencent\TXFTN\TXFTNA~1.DLL, (Signed) Tencent>
[Google Update Plugin]
  {C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D} <C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll, (Signed) Google Inc.>
[CITICS ProcessProtect Class]
  {C37F9D60-975D-41F2-A745-4DC934D319AA} <C:\WINDOWS\system32\CITICSPP.dll, (Signed) www.ISRA.org.cn>
[Google Update Plugin]
  {C442AC41-9200-4770-8CC0-7CDB4F245C55} <C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll, (Signed) Google Inc.>
[KooPlayer Control]
  {C728DAB8-FDF5-4CD7-89DD-879D25794C77} <C:\PROGRA~1\CNTV\CBox\CCTVPL~1.OCX, (Signed) CCTV.COM>
[CITICS Antiphishing Class]
  {C8CBC109-B04A-4DDA-956E-BFFE0360DADD} <C:\WINDOWS\system32\CITICAP.dll, (Signed) NITSC>
[Deployment Toolkit]
  {CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA} <C:\WINDOWS\system32\deployJava1.dll, (Signed) Sun Microsystems, Inc.>
[]
  {CB4C551D-2BF5-40F7-866B-522DBEA65954} <, >
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Microsoft Url Search Hook]
  {CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[]
  {D2517915-48CE-4286-970F-921E881B8C5C} <, >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_110.ocx, (Signed) Adobe Systems, Inc.>
[]
  {D4027C7F-154A-4066-A1AD-4243D8127440} <, >
[QQLive Class]
  {D9EBCF5D-3F8F-4b6a-89BA-70577BE73C62} <C:\Program Files\Tencent\QQLive\LiveAPI.dll, (Signed) Tencent>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[xoliimpl Class]
  {DD5BF6D1-6663-47E0-9DFA-5C343CAF178E} <C:\WINDOWS\xinstaller.dll, (Signed) 深圳市迅雷技术有限公司>
[Microsoft Silverlight]
  {DFEAF541-F3E1-4C24-ACAC-99C30715084A} <C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll, (Signed)  Microsoft Corporation>
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, (Signed) Sun Microsystems, Inc.>
[]
  {E8D8BC8B-2351-4428-8308-B90DD082F084} <, >
[SSOForPTLogin2 Class]
  {EAAED308-7322-4B9B-965E-171933ADD473} <C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.80\Bin\npSSOAxCtrlForPTLogin.dll, (Signed) Tencent>
[TimwpDll.TimwpCheck]
  {ED4CA2E5-0EEA-44C1-AD7E-74A07A7507A4} <C:\PROGRA~1\Tencent\QQ\Bin\Timwp.dll, (Signed) Tencent>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[PPLive Lite Class]
  {EF0D1A14-1033-41A2-A589-240C01EDC078} <C:\Program Files\Internet Explorer\PPLite\plugin\1.0.1.2715\pplugin2.dll, (Signed) >
[]
  {F3E70CEA-956E-49CC-B444-73AFE593AD7F} <, >
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[QQLiveOcxShell Class]
  {F7E55BDF-9528-46ba-B550-777859627591} <C:\Program Files\Tencent\QQLive\LiveOcx\LiveOcx.dll, (Signed) Tencent>
[Microsoft Visio Document]
  {F8CF7A98-2C45-4C8D-9151-2D716989DDAB} <C:\PROGRA~1\MI1933~1\Office14\VVIEWER.DLL, (Signed) Microsoft Corporation>
[]
  {FDAEAB93-6DC0-4A63-81C6-95C88ED36F6A} <, >
[webmod Class]
  {FEE3C8C5-9BEA-4079-AB36-63ECABFC7392} <C:\WINDOWS\system32\aliedit\3.0.2.0\alidcp.dll, (Signed) Alipay.com Co.,Ltd>
[&使用&迅雷下载]
  <C:\Program Files\Thunder Network\Thunder\BHO\geturl.htm, N/A>
[&使用&迅雷下载全部链接]
  <C:\Program Files\Thunder Network\Thunder\BHO\GetAllUrl.htm, N/A>
[&使用&迅雷离线下载]
  <C:\Program Files\Thunder Network\Thunder\BHO\OfflineDownload.htm, N/A>
[使用电驴下载]
  <C:\Program Files\easyMule\IE2EM.htm, N/A>
[使用迅雷看看播放器播放]
  <C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEMenu.htm, N/A>
[添加当前页到迅雷看看播放器标签]
  <C:\Documents and Settings\All Users\Application Data\Thunder Network\XMP4\Core\Program\XmpIEMenuAddStoreTab.htm, N/A>
[转换为 Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换为现有 PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[转换选定的链接为 Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A>
[转换选定的链接为现有 PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A>
[转换选项为 Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换选项为现有 PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[转换链接目标为 Adobe PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换链接目标为现有 PDF]
  <res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
∮落葉秋霜♂ - 2012-12-3 10:55:00
==================================
正在运行的进程
[PID: 1044 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1092 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1116 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 1160 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
[PID: 1172 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 1416 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1520 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 1700 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 200 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 196 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 344 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 372 / SYSTEM][C:\Program Files\360\360safe\deepscan\zhudongfangyu.exe]  [360.cn, 3, 2, 2, 2016]
    [C:\Program Files\360\360safe\deepscan\cloudcom2.dll]  [360.cn, 3, 3, 8, 3025]
    [C:\Program Files\360\360safe\360leakfixplugin.dll]  [360.cn, 1, 0, 0, 1003]
    [C:\Program Files\360\360safe\SoftMgr\360SoftMgrS.dll]  [360.cn, 2, 1, 6, 1280]
    [C:\Program Files\360\360safe\360base.dll]  [360.cn, 1, 0, 0, 1006]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1004]
    [C:\Program Files\360\360safe\360NetBase.dll]  [360.cn, 7, 25, 0, 3]
    [C:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 9, 3]
    [C:\Program Files\360\360safe\deepscan\qutmload.dll]  [360.cn, 7, 2, 1, 1011]
[PID: 676 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.6024 (xpsp_sp3_gdr.100817-1626)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\AdobePDF.dll]  [Adobe Systems Incorporated., 7.0.0.00]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Adobe\Acrobat 7.0\Distillr\adistres.CHS]  [, ]
    [C:\WINDOWS\system32\hppaecpm.dll]  [Hewlett-Packard, 1, 0, 11, 100]
    [C:\WINDOWS\system32\LTKRN11n.dll]  [LEAD Technologies, Inc., 11.5.0.012]
    [C:\WINDOWS\system32\LTFIL11n.DLL]  [LEAD Technologies, Inc., 11.5.0.012]
    [C:\WINDOWS\system32\HpTcpMon.dll]  [Hewlett Packard, 7.01.01.052]
    [C:\WINDOWS\system32\HPTcpMUI.dll]  [Microsoft Corporation, 7.01.01.052]
    [C:\WINDOWS\system32\hpzjrd01.dll]  [Hewlett Packard, 2.01.00.004]
    [C:\WINDOWS\system32\hptcpmib.dll]  [Hewlett Packard, 7.01.01.052]
    [C:\WINDOWS\system32\HPMPW081.DLL]  [Hewlett-Packard, 61.130.04.12834]
    [C:\WINDOWS\system32\HPMPM081.DLL]  [Hewlett-Packard, 61.130.04.12834]
    [C:\WINDOWS\system32\hpmlm121.dll]  [Hewlett-Packard Company, 0.3.262.0]
    [C:\WINDOWS\system32\hppmopjl.dll]  [Hewlett-Packard Company, 0, 3, 261, 5]
    [C:\WINDOWS\system32\rc4mon.dll]  [RICOH CO.,Ltd., 4, 0, 5, 1]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpcpp118.dll]  [Hewlett-Packard Corporation, 61.118.01.11744]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpcpp130.dll]  [Hewlett-Packard Corporation, 61.130.04.12834]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp4wm.DLL]  [Hewlett-Packard Corporation, 60.063.461.42]
    [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\RC00C1B0.dll]  [RICOH COMPANY, LTD., 1.2.0 built by: WinDDK]
[PID: 720 / LOCAL SERVICE][C:\WINDOWS\System32\SCardSvr.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
[PID: 1432 / SYSTEM][C:\Program Files\360\360jishi\360js.exe]  [360.cn, 1, 0, 0, 1]
[PID: 848 / Administrator][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\360\360safe\safemon\360UDiskGuard.dll]  [360.cn, 2, 0, 0, 1027]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 1, 2, 1053]
    [C:\Program Files\360\360safe\safemon\iNetSafe.dll]  [360.cn, 1, 0, 2, 1240]
    [C:\Program Files\360\360safe\360Util.dll]  [360.cn, 1, 0, 0, 1012]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.CHS]  [Adobe Systems, Inc., 7.0.0.0]
    [C:\Program Files\360\360safe\SoftMgr\SoftMgrExt.dll]  [360.cn, 1, 0, 0, 1050]
    [C:\WINDOWS\system32\nvcpl.dll]  [NVIDIA Corporation, 6.14.11.9107]
    [C:\WINDOWS\system32\NVRSZHC.DLL]  [NVIDIA Corporation, 6.14.11.9107]
    [C:\WINDOWS\system32\nvapi.dll]  [NVIDIA Corporation, 6.14.11.9107]
    [C:\WINDOWS\system32\shdoclc.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 7.0.9.2006121800]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.8.71.dll]  [深圳市迅雷网络技术有限公司, 1.0.8.71]
    [C:\WINDOWS\system32\ATL71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Thunder Network\Thunder\BHO\XlBrowserAddinKernel1.0.8.71.dll]  [深圳市迅雷网络技术有限公司, 1.0.8.71]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Tencent\QQPCMgr\7.2.6889.210\QMContextScan.dll]  [Tencent, 7.2.6680.502]
    [C:\WINDOWS\system32\kindling.dll]  [, 3,1,7,452]
    [C:\Program Files\TechSmith\SnagIt 8\SnagItShellExt.dll]  [TechSmith Corporation, 1.0.2.0]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.6195]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\MFC80CHS.DLL]  [Microsoft Corporation, 8.00.50727.6195]
    [C:\Program Files\360\360sd\MenuEx.dll]  [360.cn, 3, 0, 0, 3037]
    [C:\Program Files\360\360safe\Utils\shell360ext.dll]  [360.cn, 7, 5, 0, 1075]
    [C:\Program Files\Tencent\RTX\RTXShlMenu.dll]  [Tencent, 1, 0, 0, 1]
    [C:\Program Files\AliWangWang\7.20.21C\AliIMExt.dll]  [Alibaba software (Shanghai) Corporation., 1.0.0.1]
    [C:\Program Files\NamiRobot\Data\NamipanExt1.dll]  [N/A, ]
    [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll]  [Adobe Systems Inc., 7.0.7.2006011200\0]
    [C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MFC71CHS.DLL]  [Microsoft Corporation, 7.10.3077.0]
    [C:\Program Files\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.chs]  [Adobe Systems Inc., 7.0.0.2004121400\0]
    [C:\Program Files\Tencent\RTX\RTXOLAss.dll]  [Tencent, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
[PID: 1640 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
[PID: 1652 / Administrator][C:\Program Files\360\360sd\360sd.exe]  [360.cn, 3, 0, 0, 3039]
    [C:\Program Files\360\360sd\CrashReport.dll]  [360.cn, 3, 0, 0, 2121]
[PID: 1712 / Administrator][C:\Program Files\Tencent\QQPCMgr\Plugins\QQPCB1AndroidJmp\QQPMDaemon.exe]  [腾讯公司, 1.8.201.1997]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
[PID: 556 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\System32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\System32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 3256 / Administrator][C:\Program Files\360\360sd\360rp.exe]  [360.cn, 3, 0, 0, 3037]
    [C:\Program Files\360\360sd\CrashReport.dll]  [360.cn, 3, 0, 0, 2121]
    [C:\Program Files\360\360safe\deepscan\cloudcom2.dll]  [360.cn, 3, 3, 8, 3025]
    [C:\Program Files\360\360safe\360base.dll]  [360.cn, 1, 0, 0, 1006]
    [C:\Program Files\360\360safe\360conf.dll]  [360.cn, 1, 0, 0, 1004]
    [C:\Program Files\360\360safe\360NetBase.dll]  [360.cn, 7, 25, 0, 3]
    [C:\Program Files\360\360safe\deepscan\Bapi.dll]  [360.cn, 2.0.0.1039]
    [C:\Program Files\360\360safe\deepscan\heavygate.dll]  [360.cn, 3, 7, 9, 3]
    [C:\Program Files\360\360sd\QtQuart.dll]  [360.cn, 3, 0, 0, 3031]
    [C:\Program Files\360\360sd\360AvFlt.dll]  [360.cn, 1.1.0.1009]
    [C:\Program Files\360\360sd\AVEI.dll]  [360.cn, 1, 0, 0, 1011]
    [C:\Program Files\360\360sd\AVEngine.dll]  [360.cn, 1, 0, 0, 1011]
    [C:\Program Files\360\360sd\savapi\savapi3.dll]  [Avira GmbH, 1.3.0.9]
    [C:\Program Files\360\360safe\deepscan\CQhCltHttpW.dll]  [360.cn, 1, 0, 6, 1002]
    [C:\Program Files\360\360sd\360SignCheck.dll]  [360.cn, 3, 0, 0, 2085]
    [C:\Program Files\360\360sd\pluginmgr.dll]  [360.cn, 3, 0, 0, 2113]
    [C:\Program Files\360\360sd\immplugin\Dllhijack.dll]  [360.cn, 3, 0, 0, 2123]
    [C:\Program Files\360\360sd\immplugin\LockAcad.dll]  [360.cn, 3, 0, 0, 2121]
    [C:\Program Files\360\360sd\immplugin\PopTrojan.dll]  [360.cn, 3, 0, 0, 2103]
    [C:\Program Files\360\360safe\netmon\360netctrl.dll]  [360.cn, 5, 3, 13, 2056]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aecore.dll]  [Avira Operations GmbH & Co. KG, 8.1.29.2]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aevdf.dll]  [Avira Operations GmbH & Co. KG, 8.1.2.10]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aescript.dll]  [Avira Operations GmbH & Co. KG, 8.1.4.66]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aescn.dll]  [Avira Operations GmbH & Co. KG, 8.1.9.4]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aesbx.dll]  [Avira Operations GmbH & Co. KG, 8.2.5.12]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aerdl.dll]  [Avira Operations GmbH & Co. KG, 8.2.0.74]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aepack.dll]  [Avira Operations GmbH & Co. KG, 8.3.0.40]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aeoffice.dll]  [Avira Operations GmbH & Co. KG, 8.1.2.50]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aeheur.dll]  [Avira Operations GmbH & Co. KG, 8.1.4.138]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aehelp.dll]  [Avira Operations GmbH & Co. KG, 8.1.25.2]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aegen.dll]  [Avira Operations GmbH & Co. KG, 8.1.6.10]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aeexp.dll]  [Avira Operations GmbH & Co. KG, 8.2.0.10]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aeemu.dll]  [Avira Operations GmbH & Co. KG, 8.1.3.2]
    [C:\Documents and Settings\All Users\Application Data\360SD\AV-3256-3257-oRgQ\aebb.dll]  [Avira Operations GmbH & Co. KG, 8.1.1.4]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 2676 / Administrator][C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMECMNT.EXE]  [Microsoft Corporation, 14.0.4734.1000]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
[PID: 3368 / Administrator][C:\Documents and Settings\Administrator\桌面\工具包\SReng2.8.4.1331\运行助手.exe]  [, 1, 0, 0, 1]
    [C:\Program Files\360\360safe\safemon\safemon.dll]  [360.cn, 8, 1, 2, 1053]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
    [C:\Program Files\Tencent\RTX\RTXOLAss.dll]  [Tencent, 1, 0, 0, 1]
[PID: 4052 / SYSTEM][C:\WINDOWS\system32\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
∮落葉秋霜♂ - 2012-12-3 10:55:00
[PID: 2456 / Administrator][C:\Program Files\Tencent\QQ\Bin\QQ.exe]  [Tencent, 1.87.4921.0]
    [C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.6195]
    [C:\Program Files\Tencent\QQ\Bin\HummerEngine.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\Common.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\zlib.dll]  [, 1.2.5.0]
    [C:\Program Files\Tencent\QQ\Bin\libexpatw.dll]  [, 2.0.1.0]
    [C:\Program Files\Tencent\QQ\Bin\tinyxml.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\KernelUtil.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\xImage.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\libpng.dll]  [, 1.4.9.0]
    [C:\Program Files\Tencent\QQ\Bin\libjpegturbo.dll]  [, 1.2.0.0]
    [C:\Program Files\Tencent\QQ\Bin\GF.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\xGraphic32.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\arkGraphic.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\jgImage.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\jgIOStub.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\AFBase.DLL]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\LoginPanel.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\AFUtil.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\IPC.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\FlashService.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\AFCtrl.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\ProcessSession.DLL]  [Tencent, 1.87.24.0]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Tencent\QQ\Bin\PreloginLogic.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.80\Bin\SSOPlatform.dll]  [Tencent, 1.2.1.80]
    [C:\Program Files\Common Files\Tencent\TXSSO\1.2.1.80\Bin\SSOCommon.DLL]  [Tencent, 1.2.1.11]
    [C:\Program Files\Tencent\QQ\Bin\TaskTray.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\AppFramework.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\MainFrame.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\AppUtil.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\xGui.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\IM.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\SkinMgr.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
    [C:\Program Files\Tencent\QQ\Bin\AppMisc.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\UtilGif.dll]  [Tencent, 1.87.24.0]
    [C:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\SystemMsg.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\ChatFrameApp.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\PluginCommon.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\GroupApp.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.friendssocial\Bin\FriendsSocial.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wblog\Bin\WBlog.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wblog\Bin\WBKernel.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.crm\Bin\CRM.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\VAS.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\InformationBox.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qplus\Bin\QPlus.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\MsgMgr.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.audiovideo\Bin\AudioVideo.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.netdisk\Bin\NetDisk.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.soso\Bin\Soso.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.speeddating\Bin\SpeedDating.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wblog\Bin\WBMisc.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\RTX\RTXOLAss.dll]  [Tencent, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\TRCloudInputLib.dll]  [Tencent, 2.0.20120207]
    [C:\Program Files\Tencent\QQ\Bin\CustomFace.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.paipai\Bin\PaiPai.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
    [C:\Program Files\Tencent\QQ\Bin\QInterLive.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.hrtx\Bin\HRTX.dll]  [TODO: <Company name>, 1.0.0.1]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qzone\Bin\Qzone.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.netbar\Bin\NetBar.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.weather\Bin\Weather.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.gamelife\Bin\GameLife.dll]  [Tencent, 1.87.4921.0]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.paycenter\Bin\PayCenter.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.audiovideo\Bin\VQQGroup.dll]  [Tencent, 1.0.0.1]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.audiovideo\Bin\VP8.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.audiovideo\Bin\TRAE_QT.DLL]  [, 2.0.9002.198]
    [C:\Program Files\Tencent\QQ\Plugin\com.tencent.remotehelp\Bin\RemoteHelp.dll]  [Tencent, 1.87.4921.0]
    [C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_110.ocx]  [Adobe Systems, Inc., 11,5,502,110]
    [C:\WINDOWS\system32\QQPINYIN.IME]  [Tencent, 4.4.61223.400]
    [C:\Program Files\Tencent\QQ\Bin\LongCnn.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\AddrSearch.dll]  [Tencent, 6, 0, 1, 0]
    [C:\Program Files\Tencent\QQ\Bin\Camera.dll]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\SCCore.dll]  [Tencent, 1, 7, 1, 6]
[PID: 2324 / Administrator][C:\Program Files\Tencent\RTX\RTX.exe]  [TENCENT, 0_Forma, 202]
    [C:\Program Files\Tencent\RTX\UIU.dll]  [Tencent, 4,0,0,55]
    [C:\Program Files\Tencent\RTX\Localization.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\HelperU.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Crypt.dll]  [N/A, ]
    [C:\Program Files\Tencent\RTX\TBarDll.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\InfoSvrApi.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\OutSupportNW.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXRes.dll]  [N/A, ]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Tencent\RTX\MainFrameRes.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\NewSkin.dll]  [, 1, 0, 0, 1]
    [C:\PROGRA~1\Tencent\RTX\RTXImage.ocx]  [tencent, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\rtxcapi.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXNetClient.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\StoreComp.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\rtxstore.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\sqlite3.dll]  [N/A, ]
    [C:\Program Files\Tencent\RTX\RTXP2P.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\P2P.Dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\QQNW.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\SessionClient.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\DisGroup.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXCPro.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\BqqZip.dll]  [N/A, ]
    [C:\Program Files\Tencent\RTX\ClientObjects.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXCSDK.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\FileTransfer.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\FileCom.dll]  [Tencent, 4,0,0,7]
    [C:\Program Files\Tencent\RTX\OrgStruct.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\IM.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXSMS.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\LocalTabManager.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\OffMsgModule.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Config.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Watcher.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\ClientRightMgr.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\TAPD.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RCAStoreComp.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RCAModule.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RCAIM.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RCAUserProfile.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\EPortal.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXLogin.dll]  [, 1, 0, 0, 1]
    [C:\PROGRA~1\Tencent\RTX\RTXOrg.ocx]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\UserSelector.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\UserProfile.dll]  [, 1, 0, 0, 1]
    [C:\PROGRA~1\Tencent\RTX\RTXMOB~1.OCX]  [MS User, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXOLAss.dll]  [Tencent, 1, 0, 0, 1]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
    [C:\Program Files\Tencent\RTX\UpdateModule.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\SearchUsers.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Alert.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\BroadCast.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\UserDefineWizard.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXPhone.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\RTXPluginMgr.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\RTX_Calendar.dll]  [董锡军(Terrydong@tencent.com), 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
    [C:\Program Files\Tencent\RTX\AddRCAUser.dll]  [, 1, 0, 0, 1]
    [C:\Program Files\Tencent\RTX\rtxskin.dll]  [Tencent, 3,4,0,32]
    [C:\Program Files\Tencent\RTX\Picture.dll]  [, 4,0,0,55]
    [C:\PROGRA~1\Tencent\RTX\RTXOle.dll]  [Tencent, 4,0,0,55]
[PID: 3636 / Administrator][C:\Program Files\Tencent\QQ\Bin\TXPlatform.exe]  [Tencent, 1.87.4921.0]
    [C:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll]  [Tencent, 1.87.4921.0]
[PID: 1216 / Administrator][C:\Documents and Settings\Administrator\桌面\工具包\SReng2.8.4.1331\sr-engldr.exe]  [Smallfrogs Studio, 2.8.4.1331]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Tencent\RTX\RTXOLAss.dll]  [Tencent, 1, 0, 0, 1]
    [C:\Documents and Settings\Administrator\桌面\工具包\SReng2.8.4.1331\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
[PID: 3964 / Administrator][C:\Program Files\Common Files\PPLiveNetwork\PPAP.exe]  [PPLive Corporation, 3,1,7,452]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\MngModule.dll]  [, 3,1,7,452]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\uilib.dll]  [PPLive Corporation, 3,1,7,452]
    [C:\Program Files\Tencent\RTX\Plugins\rtx_calendar\DktClder.dll]  [N/A, ]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\restore.dll]  [PPLive Corporation, 3,1,4,8440]
    [C:\Program Files\PPLive\PPTV\3.2.2.0022\plugout\client_ap.dll]  [PPTV, 3,1,7,452]
    [C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll]  [Thunder Networking Technologies,LTD, 2, 0,  2,  7]
    [C:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [C:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [C:\WINDOWS\system32\XLaccLSP.dll]  [深圳市迅雷网络技术有限公司, 1.1.32.3616]
    [C:\Program Files\SogouExplorer\sogouipfilter.dll]  [Sogou.com, 3.2.0.4463]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\kernel\peer.dll]  [Synacast, 2, 3, 0, 5314]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\bubblectrl.dll]  [TODO: <Company name>, 3,1,7,452]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\tipsclient.dll]  [, 1, 0, 3, 9]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\TipsDone.dll]  [, 1, 0, 0, 5]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\tipsbubble.dll]  [PPLive Corporation, 1.0.6.8]
    [C:\Program Files\Common Files\PPLiveNetwork\1.0.1.2715\logclient.dll]  [TODO: <Company name>, 1.0.0.8]
    [C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_110.ocx]  [Adobe Systems, Inc., 11,5,502,110]
    [C:\WINDOWS\system32\UxTheme.dll]  [Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
XunLei Net Monitor TCP/IP [XLaccLSP]
    C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll(Thunder Networking Technologies,LTD, net monitor lsp)
XunLei Net Monitor UDP/IP [XLaccLSP]
    C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll(Thunder Networking Technologies,LTD, net monitor lsp)
XunLei Net Monitor RAW/IP [XLaccLSP]
    C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll(Thunder Networking Technologies,LTD, net monitor lsp)
XLaccLSP
    C:\WINDOWS\system32\XLaccLSP.dll(深圳市迅雷网络技术有限公司, 迅雷网游加速器)
XLaccLSP
    C:\WINDOWS\system32\XLaccLSP.dll(深圳市迅雷网络技术有限公司, 迅雷网游加速器)
XLaccLSP
    C:\WINDOWS\system32\XLaccLSP.dll(深圳市迅雷网络技术有限公司, 迅雷网游加速器)
XLaccLSP
    C:\WINDOWS\system32\XLaccLSP.dll(深圳市迅雷网络技术有限公司, 迅雷网游加速器)
XunLei Net Monitor
    C:\Program Files\Common Files\Thunder Network\NetMon\net_monitor2.0.2.7.dll(Thunder Networking Technologies,LTD, net monitor lsp)

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
进程特权扫描
特殊特权被允许: SeLoadDriverPrivilege [PID = 1116, C:\WINDOWS\SYSTEM32\WINLOGON.EXE]
特殊特权被允许: SeLoadDriverPrivilege [PID = 3368, C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\桌面\工具包\SRENG2.8.4.1331\运行助手.EXE]

==================================
计划任务
N/A

==================================
Windows 安全更新检查
N/A

==================================
API HOOK
N/A

==================================
隐藏进程
N/A
天月来了 - 2012-12-3 11:11:00
换鼠标
∮落葉秋霜♂ - 2012-12-3 11:21:00


引用:
原帖由 天月来了 于 2012-12-3 11:11:00 发表
换鼠标




谢谢天月老大。。我刚才我自己也看了半天。。。我没看出端倪
1
查看完整版本: 感觉屏幕被劫持了。。。