我上网从来都不开病毒防火墙
不小心打开了一个小网站下载下来的工具
于是中了一大片流氓软件
经过一个早上的奋战
病毒已经消灭了一大半
但是仍然有一个杀不掉
360、兔子、金山都监测不出来
文件名也很怪异 随机生成的几个字母 见图

症状：一开机explorer.exe CPU达到100
桌面不会显示
把文件删除 启动项删除 重起以后又会生成
ICESWORD也用不了 提示初始化错误 驱动好像也被破坏 想看看线程也看不了

金山清除到这里就清除不下去了……

更正：病毒一旦删除立即再生
且无法更改文件名（任何提示也没有 重命名更改名字以后无效）

服务已经把不正常的删了好多
但是还是没用

我这里安全模式 还是不能动病毒文件（删除立即再生 无法改名 无提示）

日志太多了 论坛要求12000字以内……
我这里安全模式速度极慢
不过也能分段发上来 马上就发

费尔删除工具提示文件正在使用…………

[CODE]

2007-02-03,06:38:51

System Repair Engineer 2.3.13.690
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600)
- 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Corporation]
    <TweakWindow><D:\Program Files\TweakWindow\TweakWin.exe>  [AbsoluteWay]
    <jiajiasr><D:\Program Files\jj4\jiajiasr.exe>  [加加工作组]
    <MSMSGS><; "C:\Program Files\Messenger\msmsgs.exe" /background>  [Microsoft Corporation]
    <KavPFW><"D:\KAV2007\KPFW32.EXE">  [N/A]
    <534mvbt40><C:\WINDOWS\systom.exe>  [N/A]
    <BossKey><; >  [N/A]
    <eMuleAutoStart><; D:\Program Files\eMule\eMule.exe -AutoStart>  [http://www.emule.org.cn]
    <kubao><; C:\Program Files\kubao\kubao.exe -autorun>  [N/A]
    <LetsCool><; C:\Program Files\LetsCool\LetsCool.exe>  [N/A]
    <pbmini><; C:\Program Files\pcast\PodcastbarMini\PodcastBarMiniStater.exe>  [N/A]
    <VoipBuster><; "C:\Program Files\VoipBuster.com\VoipBuster\VoipBuster.exe" -nosplash -minimized>  [N/A]
    <词霸Online自启动><; d:\Program Files\Kingsoft\iciba\Iciba.exe>  [Kingsoft]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Corporation]
    <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Corporation]
    <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Corporation]
    <MemEmpty><D:\memempty\MemEmpty.exe /h>  [www.jpexe.com]
    <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload>  [(Verified)Microsoft Corporation]
    <IMEKRMIG6.1><C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE>  [(Verified)Microsoft Corporation]
    <MSPY2002><C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC>  [(Verified)N/A]
    <Apoint><C:\Program Files\Apoint\Apoint.exe>  [(Verified)Alps Electric Co., Ltd.]
    <TkBellExe><; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)RealNetworks, Inc.]
    <TCmem><D:\TCmem\TCmem.exe>  [天才梦工作室  www.tcmeng.com]
    <KernelFaultCheck><; %systemroot%\system32\dumprep 0 -k>  [N/A]

<KavStart><"D:\KAV2007\KAVStart.exe" -startup>  [N/A]
    <kav><; "D:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe">  [Kaspersky Lab]
    <MSConfig><C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto>  [(Verified)Microsoft Corporation]
    <Desktop><C:\WINDOWS\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll>  [N/A]
    <wsvbs><C:\WINDOWS\wsvbs.exe>  [N/A]
    <CONFIG><C:\DOCUME~1\xhst\LOCALS~1\Temp\8.exe>  [N/A]
    <ats><; C:\WINDOWS\system32\asd\loadqm.exe noshow>  [N/A]
    <CdnCtr><; C:\Program Files\CNNIC\Cdn\cdnup.exe>  [N/A]
    <CnsMHlp.exe><; C:\WINDOWS\Downloaded Program files\CnsMHlp.exe>  [N/A]
    <DAEMON Tools-2052><; "D:\Program Files\D-Tools\daemon.exe"  -lang 2052>  [DAEMON'S HOME]
    <Dell QuickSet><; C:\Program Files\Dell\QuickSet\quickset.exe>  [N/A]
    <dla><; C:\WINDOWS\system32\dla\tfswctrl.exe>  [N/A]
    <DVDLauncher><; "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe">  [CyberLink Corp.]
    <helper.dll><; C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32>  [N/A]
    <ISUSPM Startup><; C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup>  [InstallShield Software Corporation]
    <ISUSScheduler><; "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start>  [InstallShield Software Corporation]
    <MoveSearch><; C:\Program Files\HuaCi\huaci\zsearch.exe>  [N/A]
    <MSService_v1.0><; C:\WINDOWS\system\java.exe>  [N/A]
    <NeroCheck><; ; rem C:\WINDOWS\system32\NeroCheck.exe>  [Ahead Software Gmbh]
    <NetpasAcc><; D:\Program Files\NETPAS\NETPAS ACC\Netpas_Acc.exe>  [N/A]
    <New.net Startup><; rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s>  [N/A]
    <PigUpdate><; C:\DOCUME~1\xhst\LOCALS~1\Temp\dlPig.exe>  [N/A]
    <RavMon><; D:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM>  [N/A]
    <RavTimer><; C:\Program Files\rising\rav\RavTimer.exe>  [N/A]
    <res><; C:\WINDOWS\system32\res.exe>  [N/A]
    <RfwMain><; "d:\Program Files\Rising\Rfw\rfwmain.exe" -Startup>  [N/A]
    <RichMedia><; C:\WINDOWS\system32\Rundll32.exe  "C:\PROGRA~1\hbclient\HBHelper.dll",WaitWindows>  [N/A]
    <sdafdsafds><; D;]XJOEPXT]ufnq]te264/fyf>  [N/A]
    <SKYNET Personal FireWall><; C:\PROGRA~1\SkyNet\FireWall\pfw.exe>  [N/A]
    <SmpartProxy><; D:\proxysetup\EyouProxy.exe>  []
    <spoolsv><; >  [N/A]
    <StormCodec_Helper><; "d:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti>  [N/A]
    <SunJavaUpdateSched><; C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe>  [N/A]
    <SysExplr><; D:\Program Files\Herosoft\HeroV8\SYSEXPLR.EXE>  [N/A]
    <Thunder><; "D:\Program Files\Thunder Network\Thunder\ThunderShell.exe" /s>  [N/A]
    <Update><; C:\Program Files\Common Files\UPDAT\Update.exe>  [N/A]
    <UpdateManager><; "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r>  [N/A]
    <Updater><; C:\PROGRA~1\HenBang\Update\Update.exe>  [N/A]
    <UVS10 Preload><; d:\Program Files\Ulead Systems\Ulead VideoStudio 10\uvPL.exe>  [Ulead Systems, Inc.]
    <VikaClient><; "C:\Program Files\VIKA\vkclient.exe">  [N/A]
    <WebThunder><; d:\Program Files\Thunder Network\WebThunder\WebThunder.exe>  [深圳市迅雷网络技术有限公司]
    <Winrun><; C:\WINDOWS\bqq.exe>  [N/A]
    <yassistse><; "C:\PROGRA~1\Yahoo!\Assistant\yassistse.exe">  [N/A]
    <YLive.exe><; C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe>  [N/A]
    <YOKAssiant><; Rundll32.exe C:\PROGRA~1\YOK.com\SUPERS~1\YOK_SuperSearch.dll,YOKAssiant>  [N/A]
    <zcom><; C:\Program Files\zcom\zPlatform.exe MIN>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    <360Safe><Rundll32.exe D:\PROGRA~1\360safe\AntiAdwa.dll,KillAdware>  [360Safe.com]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Corporation]
    <Userinit><C:\WINDOWS\system32\userinit.exe>  [(Verified)Microsoft Corporation]
    <UIHost><logonui.exe>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Corporation]

<{5EED7056-B89D-4DE8-A060-D285EA746795}><C:\WINDOWS\system32\mslaow.dll>  [N/A]
    <{2D49692C-A5FD-4E29-A3CD-37E9B182FCC6}><C:\Program Files\Internet Explorer\PLUGINS\SystemKb.sys>  [N/A]
    <{4ED6E0B5-F47A-4609-A940-11CF60FDC3C3}><C:\WINDOWS\system32\mctet.dll>  []
    <{DD7D4640-4464-48C0-82FD-21338366D2D2}><C:\Program Files\Internet Explorer\InfoMs.tdm>  [N/A]
    <{F47ECABB-ABDB-4e34-8FE8-28DA859BF1ED}><c:\program files\internet explorer\plugins\fxprzszp.dll>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Corporation]
    <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Corporation]
    <WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Corporation]
    <UPnPMonitor><C:\WINDOWS\system32\upnpui.dll>  [(Verified)Microsoft Corporation]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Corporation]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Corporation]
    <SysChunk><C:\WINDOWS\system32\syschunk.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptimg]
    <WinlogonNotify: cryptimg><cryptimg.dll>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    <WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll>  [Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Corporation]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Corporation]
    <{B63BFF8C-2E25-4CCC-9A01-68807F567AA7}><C:\WINDOWS\system32\BandRes.dll>  []
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><C:\WINDOWS\system32\logon.scr>  [(Verified)Microsoft Corporation]

==================================
启动文件夹
N/A

==================================
服务
[779DF70 / 779DF70][Stopped/Auto Start]
  <C:\WINDOWS\system32\779DF70.EXE -service><Microsoft Corporation>
[AB910C28 / AB910C28][Stopped/Auto Start]
  <C:\WINDOWS\system32\AB910C28.EXE -service><Microsoft Corporation>
[Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[Ati HotKey Poller / Ati HotKey Poller][Stopped/Auto Start]
  <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart][Stopped/Auto Start]
  <C:\WINDOWS\system32\ati2sgag.exe><>
[卡巴斯基反病毒6.0 / AVP][Stopped/Auto Start]
  <"D:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r><Kaspersky Lab>
[Broadcom ASF IP monitoring service v6.0.4 / BAsfIpM][Stopped/Disabled]
  <C:\WINDOWS\system32\basfipm.exe><N/A>
[Intranet Messenger / DATEING][Stopped/Auto Start]
  <C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\SMTPCONFS.DLL,Export 1087><N/A>
[EvtEng / EvtEng][Stopped/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>
[File Replication / File Replication][Stopped/Auto Start]
  <C:\WINDOWS\system32\ntfis.exe><Microsoft Corporation>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[Imsvc / Imsvc][Stopped/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\Webmail.dll><>
[Kingsoft Personal Firewall Service / KPfwSvc][Stopped/Auto Start]
  <"D:\KAV2007\KPfwSvc.EXE"><N/A>
[Kingsoft Antivirus KWatch Service / KWatchSvc][Stopped/Auto Start]
  <D:\KAV2007\KWatch.EXE><N/A>
[Volume Optimization / License][Stopped/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\rxdkl.dll><Microsoft Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A>
[NICCONFIGSVC / NICCONFIGSVC][Stopped/Auto Start]
  <C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe><Dell Inc.>
[RegSrvc / RegSrvc][Stopped/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>
[Spectrum24 Event Monitor / S24EventMonitor][Stopped/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>
[Sample NT Service / SampleService][Stopped/Disabled]
  <C:\WINDOWS\NTService.exe><N/A>
[Ulead Burning Helper / UleadBurningHelper][Stopped/Auto Start]
  <C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe><Ulead Systems, Inc.>
[Windows XP Vista        / Windows XP Vista        ][Stopped/Auto Start]
  <C:\WINDOWS\Win.ini><N/A>
[Windows Management Controllor / WinMgct][Stopped/Auto Start]

<C:\WINDOWS\system32\WinMgCt.exe -k netsvcs><N/A>
[WLANKEEPER / WLANKEEPER][Stopped/Auto Start]
  <C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe><Intel? Corporation>
[Vsn xknj Service / xknj][Stopped/Auto Start]
  <C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\COMMON~1\dqtp\kxxw.dll,Service><Microsoft Corporation>
[Remote Access Connection Management / Remote Access Connection Management][Stopped/Auto Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\system32\ncxml.dll><>
[Windows DHCP Service / WinDHCPsvc][Stopped/Auto Start]
  <C:\WINDOWS\system32\\rundll32.exe windhcp.ocx,input><Microsoft Corporation>

==================================
驱动程序
[abp480n5 / abp480n5][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ABP480N5.SYS><Microsoft Corporation>
[acpidisk / acpidisk][Stopped/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\acpidisk.sys><N/A>
[adpu160m / adpu160m][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\adpu160m.sys><Microsoft Corporation>
[adpu64 / adpu64][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\adpu64.sys><N/A>
[AEGIS Protocol (IEEE 802.1x) v3.1.0.1 / AegisP][Stopped/Auto Start]
  <system32\DRIVERS\AegisP.sys><Meetinghouse Data Communications>
[Aha154x / Aha154x][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\aha154x.sys><Microsoft Corporation>
[aic78u2 / aic78u2][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\aic78u2.sys><Microsoft Corporation>
[aic78xx / aic78xx][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\aic78xx.sys><Microsoft Corporation>
[AliIde / AliIde][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[AMD AGP Bus Filter Driver / amdagp][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[Alps Touch Pad Filter Driver for Windows 2000/XP / ApfiltrService][Running/Manual Start]
  <system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>
[APPDRV / APPDRV][Stopped/System Start]
  <\SystemRoot\SYSTEM32\DRIVERS\APPDRV.SYS><Dell Inc>
[asc / asc][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\asc.sys><Advanced System Products, Inc.>
[asc3350p / asc3350p][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\asc3350p.sys><Microsoft Corporation>
[asc3550 / asc3550][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>
[ast / ast][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\ast.sys><N/A>
[ati2mtag / ati2mtag][Stopped/Manual Start]
  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[Broadcom NetXtreme 57xx Gigabit Controller / b57w2k][Running/Manual Start]
  <system32\DRIVERS\b57xp32.sys><Broadcom Corporation>
[BM Win32 Network Adapter / bmnadapter][Stopped/Manual Start]
  <system32\DRIVERS\bmnet.sys><The OpenVPN Project>
[cd20xrnt / cd20xrnt][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\cd20xrnt.sys><Microsoft Corporation>
[CmdIde / CmdIde][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[d347bus / d347bus][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\d347bus.sys><>
[d347prt / d347prt][Running/Boot Start]
  <\SystemRoot\System32\Drivers\d347prt.sys><>
[dac2w2k / dac2w2k][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\dac2w2k.sys><Mylex Corporation>
[DISK_DRIVE32 / DISK_DRIVE32][Stopped/Manual Start]
  <\??\D:\mxdwg\xg042\disk_1024.sys><N/A>
[dpti2o / dpti2o][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\dpti2o.sys><Microsoft Corporation>
[Intel(R) PRO Adapter Driver / E100B][Stopped/Manual Start]
  <system32\DRIVERS\e100b325.sys><Intel Corporation>
[GTIPCI21 / GTIPCI21][Stopped/Manual Start]
  <system32\DRIVERS\gtipci21.sys><Texas Instruments>
[gwiopm / gwiopm][Stopped/Manual Start]
  <\??\C:\Program Files\Wom\gwiopm.sys><N/A>
[HSFHWICH / HSFHWICH][Stopped/Manual Start]

[/CODE]

<system32\DRIVERS\HSFHWICH.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Stopped/Manual Start]
  <system32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[ini910u / ini910u][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ini910u.sys><Microsoft Corporation>
[Intel Wireless Connection Agent Miniport for Win XP / IWCA][Running/Manual Start]
  <system32\DRIVERS\iwca.sys><Intel Corporation>
[jejjdbbf / jejjdbbf][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\jejjdbbf.sys><中国互联网络信息中心(CNNIC)>
[kdngrh / kdngrh][Running/Boot Start]
  <\SystemRoot\\SystemRoot\System32\drivers\kdngrh.sys><N/A>
[kl1 / kl1][Stopped/Boot Start]
  <\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
[klif / klif][Stopped/System Start]
  <\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
[KNetWch / KNetWch][Stopped/System Start]
  <\??\D:\KAV2007\KNetWch.SYS><N/A>
[KWatch3 / KWatch3][Stopped/System Start]
  <\??\C:\WINDOWS\system32\drivers\KWatch3.SYS><Kingsoft Corporation>
[mdmxsdk / mdmxsdk][Stopped/Auto Start]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[mraid35x / mraid35x][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\mraid35x.sys><American Megatrends Inc.>
[msusbbux / msusbbux][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\msusbbux.sys><Microsoft Corporation>
[ncio / ncio][Stopped/Auto Start]
  <system32\DRIVERS\ncio.sys><N/A>
[Netpas Win32 Virtual Network Adapter / netpasadapter1][Stopped/Manual Start]
  <system32\DRIVERS\netpas.sys><Netpas>
[Netgroup Packet Filter / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><NetGroup - Politecnico di Torino>
[npkcrypt / npkcrypt][Stopped/Auto Start]
  <\??\D:\Program Files\Tencent\qq\npkcrypt.sys><INCA Internet Co., Ltd.>
[nv / nv][Stopped/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[OMCI WDM Device Driver / omci][Running/System Start]
  <system32\DRIVERS\omci.sys><Dell Inc>
[Padus ASPI Shell / pfc][Running/Manual Start]
  <system32\drivers\pfc.sys><Padus, Inc.>
[PSSdk23 / PSSdk23][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\Drivers\PsSdk23.drv><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[ql1080 / ql1080][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql1080.sys><QLogic Corporation>
[Ql10wnt / Ql10wnt][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql10wnt.sys><Microsoft Corporation>
[ql12160 / ql12160][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql12160.sys><QLogic Corporation>
[ql1280 / ql1280][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql1280.sys><QLogic Corporation>
[R0A / R0A][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\a  3383.sys><N/A>
[WLAN Transport / s24trans][Stopped/Auto Start]
  <system32\DRIVERS\s24trans.sys><Intel Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
[SIS AGP Bus Filter / sisagp][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[Sparrow / Sparrow][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sparrow.sys><Adaptec, Inc.>
[SigmaTel C-Major Audio / STAC97][Stopped/Manual Start]
  <system32\drivers\STAC97.sys><SigmaTel, Inc.>
[symc810 / symc810][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>
[symc8xx / symc8xx][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>
[sym_hi / sym_hi][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>
[TosIde / TosIde][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\toside.sys><Microsoft Corporation>
[tvgame1 / tvgame1][Stopped/Manual Start]
  <\??\c:\windows\system32\tvgame.sys><N/A>
[TVICHW32 / TVICHW32][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS><EnTech Taiwan>
[ultra / ultra][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ultra.sys><Promise Technology, Inc.>
[ViaIde / ViaIde][Stopped/Disabled]