Process list saved on 15:38:06, 日期 2006-5-26
操作系统: Windows XP SP2 (WinNT 5.01.2600)
[pid] [full path to filename] [file version] [company name]
436 C:\WINDOWS\System32\smss.exe 5.1.2600.2180 Microsoft Corporation
572 C:\WINDOWS\system32\winlogon.exe 5.1.2600.2180 Microsoft Corporation
628 C:\WINDOWS\system32\services.exe 5.1.2600.2180 Microsoft Corporation
640 C:\WINDOWS\system32\lsass.exe 5.1.2600.2180 Microsoft Corporation
800 C:\WINDOWS\system32\svchost.exe 5.1.2600.2180 Microsoft Corporation
916 C:\WINDOWS\System32\svchost.exe 5.1.2600.2180 Microsoft Corporation
1344 C:\WINDOWS\Explorer.EXE 6.0.2900.2180 Microsoft Corporation
1372 C:\WINDOWS\system32\spoolsv.exe 5.1.2600.2696 Microsoft Corporation
1536 C:\WINDOWS\system32\hkcmd.exe 3.0.0.2285 Intel Corporation
1544 C:\WINDOWS\SOUNDMAN.EXE 5.1.0.11 Realtek Semiconductor Corp.
1560 C:\Program Files\Common Files\Real\Update_OB\realsched.exe 0.1.0.3510 RealNetworks, Inc.
1592 C:\WINDOWS\system32\ctfmon.exe 5.1.2600.2180 Microsoft Corporation
1600 E:\东瀛鬼咒\MagicSet\SRIECLI.EXE 7.55.0.0 Super Rabbit Soft
1688 E:\【GDBT.CN】咒怨3\QQ.exe 0.0.0.0 TENCENT
180 E:\【GDBT.CN】咒怨3\TIMPlatform.exe 0.3.1.8 tencent
456 E:\Program Files\TTPlayer\TTPlayer.exe 4.6.7.0 Alen Soft
3540 C:\WINDOWS\system32\taskmgr.exe 5.1.2600.2180 Microsoft Corporation
2152 C:\Program Files\Internet Explorer\IEXPLORE.EXE 6.0.2900.2180 Microsoft Corporation
3272 C:\Program Files\Internet Explorer\IEXPLORE.EXE 6.0.2900.2180 Microsoft Corporation
908 C:\DOCUME~1\Admin\LOCALS~1\Temp\Rar$EX00.656\HijackThis1991zww.exe 1.99.0.1 Soeperman Enterprises Ltd.
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: 超级兔子上网精灵 - {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} - E:\东瀛鬼碇咒鋅\MagicSet\haokanbar.dll (file missing)
O3 - IE工具栏增项: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - E:\东瀛鬼咒\MagicSet\haokanbar.dll
O4 - 启动项HKLM\\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 启动项HKLM\\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 启动项HKLM\\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 启动项HKLM\\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - 启动项HKLM\\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - 启动项HKLM\\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - 启动项HKLM\\Run: [SoundMan] SOUNDMAN.EXE
O4 - 启动项HKLM\\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - 启动项HKLM\\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - 启动项HKLM\\Run: [KAVPersonal50] "E:\ksbj\Kaspersky Anti-Virus Personal Pro\kav.exe" /minimize
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Super Rabbit IEPro] E:\东瀛鬼咒\MagicSet\SRIECLI.EXE /LOAD
O4 - Startup: 腾讯QQ.lnk = ?
O8 - IE右键菜单中的新增项目: &使用迅雷下载 - E:\xunlei\Program\GetUrl.htm
O8 - IE右键菜单中的新增项目: &使用迅雷下载全部链接 - E:\xunlei\Program\GetAllUrl.htm
O8 - IE右键菜单中的新增项目: 上传到QQ网络硬盘 - E:\【GDBT.CN】咒怨3\AddToNetDisk.htm
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - E:\【GDBT.CN】咒怨3\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - E:\【GDBT.CN】咒怨3\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - E:\【GDBT.CN】咒怨3\SendMMS.htm
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - E:\【GDBT.CN】咒怨3\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - E:\【GDBT.CN】咒怨3\QQ.EXE
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1146496078484
O16 - DPF: {A96C48EA-AA88-4BBD-B58C-7B41146A6EAC} (Qzone Media Tools) - http://qz-photo.qq.com/qzone3/QzoneMediaTools.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{27C3B857-0FF7-4404-9B82-1DA76EFD11CA}: NameServer = 202.96.209.134 202.96.209.6
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - NT 服务: kavsvc - Kaspersky Lab - E:\ksbj\Kaspersky Anti-Virus Personal Pro\kavsvc.exe
O23 - NT 服务: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
