我的电脑每秒一卡【求助】 bbs.ikaka.com

笑添糖！ - 2007-4-8 16:24:00

[CODE]
2007-04-08,14:59:42
System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能
以下内容被选中：
所有的启动项目（包括注册表、启动文件夹、服务等）
浏览器加载项
正在运行的进程（包括进程模块信息）
文件关联
Winsock 提供者
Autorun.inf
HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<Sony Ericsson PC Suite><"D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /Minimized> [Sony Ericsson Mobile Communications AB]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher]
<PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Windows Publisher]
<PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Windows Publisher]
<SoundMan><SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [NVIDIA Corporation]
<nwiz><nwiz.exe /install> []
<NvMediaCenter><RunDLL32.exe NvMCTray.dll,NvTaskbarInit> [NVIDIA Corporation]
<NeroCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]
<SunJavaUpdateSched><d:\Program Files\Java\jre1.5.0_03\bin\jusched.exe> [Sun Microsystems, Inc.]
<Vistadrv><C:\Program Files\Vista\Vistadrive\vsdrv.exe> []
<StormCodec_Helper><"C:\Program Files\Ringz Studio\Storm Codec\StormSet.exe" /S /opti> []
<SoDA Startup><D:\Program Files\Rational\SoDAWord\Wizards\SodaStartup.exe StartUp> [N/A]
<NuTCSetupEnviron><D:\Program Files\Rational\Rational Test\nutcroot\bin\ncoeenv.exe> []
<EPSON Stylus C43 Series><C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C43 Series" /O6 "USB001" /M "Stylus C43"> [SEIKO EPSON CORPORATION]
<kis><"D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"> [Kaspersky Lab]
<Thunder><"C:\Program Files\Thunder Network\Thunder\Thunder.exe" /s> [Thunder Networking Technologies,LTD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
<Userinit><C:\Windows\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><?,D:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logomod.exe> [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<SysTime><C:\PROGRA~1\Vista\systool\WinKld\WinKld.dll> [www.88dog.com]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
<WinlogonNotify: klogon><C:\WINDOWS\system32\klogon.dll> [Kaspersky Lab]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\WINDOWS\system32\夜光时~1.SCR> []
==================================
启动文件夹
[启动YzDock]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\启动YzDock.lnk --> C:\PROGRA~1\Vista\YzDock\YzDock.exe [Y'z@Home]><N>
[核新SSL通讯安全代理]
<C:\Documents and Settings\All Users\「开始」菜单\程序\启动\核新SSL通讯安全代理.lnk --> C:\PROGRA~1\hexin\sslproxy\SSLCnt.exe [杭州核新软件技术有限公司]><N>
==================================
服务
[卡巴斯基互联网安全套装 6.0 / AVP][Running/Auto Start]
<"D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r><Kaspersky Lab>
[CVSNT Locking Service 2.5.03.2151 / cvslock][Running/Auto Start]
<"C:\Program Files\CVSNT\cvslock.exe"><N/A>
[CVSNT Dispatch service 2.5.03.2151 / cvsnt][Running/Auto Start]
<"C:\Program Files\CVSNT\cvsservice.exe"><March Hare Software Ltd>
[EPSON Printer Status Agent2 / EPSONStatusAgent2][Stopped/Disabled]
<C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe><SEIKO EPSON CORPORATION>
[Macromedia Licensing Service / Macromedia Licensing Service][Stopped/Manual Start]
<"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><>
[Rational ClearQuest Mail Service / MailService][Stopped/Auto Start]
<"D:\Program Files\Rational\ClearQuest\mailservice.exe"><N/A>
[Microsoft Search / MSSEARCH][Running/Auto Start]
<"C:\Program Files\Common Files\System\MSSearch\Bin\mssearch.exe"><Microsoft Corporation>
[MSSQLSERVER / MSSQLSERVER][Stopped/Manual Start]
<d:\PROGRA~1\MICROS~3\MSSQL\binn\sqlservr.exe><Microsoft Corporation>
[MSSQLServerADHelper / MSSQLServerADHelper][Stopped/Manual Start]
<C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe><Microsoft Corporation>
[MySQL / MySQL][Stopped/Manual Start]
<"C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt" --defaults-file="C:\Program Files\MySQL\MySQL Server 5.0\my.ini" MySQL><N/A>
[NuTCRACKERService / NuTCRACKERService][Running/Auto Start]
<C:\WINDOWS\system32\nutsrv4.exe><DataFocus, Inc.>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[OracleMTSRecoveryService / OracleMTSRecoveryService][Stopped/Manual Start]
<d:\oracle\ora92\bin\omtsreco.exe "OracleMTSRecoveryService"><Oracle Corporation>
[OracleOraHome92Agent / OracleOraHome92Agent][Stopped/Manual Start]
<d:\oracle\ora92\bin\agntsrvc.exe><Oracle Corporation>
[OracleOraHome92ClientCache / OracleOraHome92ClientCache][Stopped/Manual Start]
<d:\oracle\ora92\BIN\ONRSD.EXE><N/A>
[OracleOraHome92HTTPServer / OracleOraHome92HTTPServer][Stopped/Manual Start]
<"d:\oracle\ora92\Apache\Apache\apache.exe" --ntservice><N/A>
[OracleOraHome92PagingServer / OracleOraHome92PagingServer][Stopped/Manual Start]
<d:\oracle\ora92/bin/pagntsrv.exe><N/A>
[OracleOraHome92SNMPPeerEncapsulator / OracleOraHome92SNMPPeerEncapsulator][Stopped/Manual Start]
<d:\oracle\ora92\BIN\ENCSVC.EXE><N/A>
[OracleOraHome92SNMPPeerMasterAgent / OracleOraHome92SNMPPeerMasterAgent][Stopped/Manual Start]
<d:\oracle\ora92\BIN\AGNTSVC.EXE><N/A>
[OracleOraHome92TNSListener / OracleOraHome92TNSListener][Stopped/Manual Start]
<d:\oracle\ora92\BIN\TNSLSNR ><N/A>
[OracleServiceSTE / OracleServiceSTE][Stopped/Manual Start]
<d:\oracle\ora92\bin\ORACLE.EXE STE><Oracle Corporation>
[ProxyServer Service / ProxyServerService][Stopped/Manual Start]
<"D:\Program Files\Rational\Rational Test\rtpxsr.exe"><Rational Software>
[Rational Test Agent Service / RationalTestAgentService][Stopped/Manual Start]
<"D:\Program Files\Rational\Rational Test\rtpsvc.exe"><Rational Software>
[SQLSERVERAGENT / SQLSERVERAGENT][Stopped/Manual Start]
<d:\PROGRA~1\MICROS~3\MSSQL\binn\sqlagent.exe><Microsoft Corporation>
[Apache Tomcat / Tomcat5][Stopped/Manual Start]
<d:\java\Tomcat 5.0\bin\tomcat.exe //RS//Tomcat5><Apache Software Foundation>
[Visual Studio Analyzer RPC bridge / Visual Studio Analyzer RPC bridge][Stopped/Manual Start]
<D:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe><Microsoft Corporation>
[VMware Authorization Service / VMAuthdService][Running/Auto Start]
<d:\Program Files\VMware\VMware Workstation\vmware-authd.exe><VMware, Inc.>
[VMware DHCP Service / VMnetDHCP][Running/Auto Start]
<C:\WINDOWS\system32\vmnetdhcp.exe><VMware, Inc.>
[VMware Virtual Mount Manager Extended / vmount2][Running/Auto Start]
<"C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe"><VMware, Inc.>
[VMware NAT Service / VMware NAT Service][Running/Auto Start]
<C:\WINDOWS\system32\vmnat.exe><VMware, Inc.>

笑添糖！ - 2007-4-8 16:25:00

==================================
驱动程序
[Intel(r) 82801 Audio Driver Install Service (WDM) / ac97intc][Stopped/Manual Start]
<system32\drivers\ac97intc.sys><Intel Corporation>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[AliIde / AliIde][Stopped/Boot Start]
<\SystemRoot\System32\DRIVERS\aliide.sys><N/A>
[AnyDVD / AnyDVD][Running/Manual Start]
<System32\Drivers\AnyDVD.sys><SlySoft, Inc.>
[BdGuard / BdGuard][Running/Boot Start]
<\SystemRoot\system32\drivers\BDGuard.SYS><>
[CdaC15BA / CdaC15BA][Running/Auto Start]
<\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS><Macrovision Europe Ltd>
[CmdIde / CmdIde][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[d347bus / d347bus][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\d347bus.sys><>
[d347prt / d347prt][Running/Boot Start]
<\SystemRoot\System32\Drivers\d347prt.sys><>
[ElbyCDIO Driver / ElbyCDIO][Running/Auto Start]
<System32\Drivers\ElbyCDIO.sys><Elaborate Bytes AG>
[VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver / FETNDIS][Stopped/Manual Start]
<system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
[Sony Ericsson USB Flash Driver / ggsemc][Stopped/Manual Start]
<system32\DRIVERS\ggsemc.sys><Sony Ericsson Mobile Communications>
[giveio / giveio][Running/Boot Start]
<\SystemRoot\system32\giveio.sys><N/A>
[VMware hcmon / hcmon][Running/Auto Start]
<\??\C:\WINDOWS\system32\Drivers\hcmon.sys><VMware, Inc.>
[HWiNFO32 Kernel Driver / HWiNFO32][Running/Auto Start]
<\??\C:\Program Files\HWiNFO32\HWiNFO32.SYS><REALiX(tm)>
[kl1 / kl1][Running/Boot Start]
<\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
[klif / klif][Running/System Start]
<\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
[MegaIDE / MegaIDE][Running/Boot Start]
<\SystemRoot\System32\DRIVERS\MegaIDE.sys><LSI Logic Corporation.>
[npkcrypt / npkcrypt][Running/Auto Start]
<\??\C:\Program Files\Tencent\QQ\npkcrypt.sys><INCA Internet Co., Ltd.>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[PCTINDIS5 NDIS Protocol Driver / PCTINDIS5][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\PCTINDIS5.SYS><PCTEL Inc.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
<system32\DRIVERS\Rtlnicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><N/A>
[usb serial driver / ser2pl][Stopped/Manual Start]
<system32\DRIVERS\ser2pl.sys><Prolific Technology Inc.>
[SNIFFER Protocol Driver / Sniffer][Running/Auto Start]
<system32\DRIVERS\sniffer.sys><N/A>
[speedfan / speedfan][Running/Boot Start]
<\SystemRoot\system32\speedfan.sys><Windows (R) 2000 DDK provider>
[Bubblefish 100 Enternet Virtual Adapter / TAP][Stopped/Manual Start]
<system32\DRIVERS\VNetWorkXP.sys><陈伟>
[TAP-Win32 Adapter V8 / tap0801][Stopped/Manual Start]
<system32\DRIVERS\tap0801.sys><The OpenVPN Project>
[TSP / TSP][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
[VCD VNC Virtual Network Adapter / vcddev][Running/Manual Start]
<system32\DRIVERS\vcdvnic.sys><VNN B.J.>
[VMware Virtual Ethernet Adapter Driver / VMnetAdapter][Stopped/Manual Start]
<system32\DRIVERS\vmnetadapter.sys><VMware, Inc.>
[VMware Bridge Protocol / VMnetBridge][Running/Auto Start]
<system32\DRIVERS\vmnetbridge.sys><VMware, Inc.>
[VMware Network Application Interface / VMnetuserif][Running/Auto Start]
<\??\C:\WINDOWS\system32\drivers\vmnetuserif.sys><VMware, Inc.>
[VMware VMparport / VMparport][Running/Auto Start]
<\??\C:\WINDOWS\system32\Drivers\VMparport.sys><VMware, Inc.>
[VMware vmx86 / vmx86][Running/Auto Start]
<\??\C:\WINDOWS\system32\Drivers\vmx86.sys><VMware, Inc.>
[Vstor2 Virtual Storage Driver / vstor2][Running/Auto Start]
<\??\C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys><VMware, Inc.>
[VIA USB Host Controller Lower Filter / vulfnths][Running/Manual Start]
<\SystemRoot\System32\Drivers\vulfnth.sys><VIA Technologies, Inc.>
[VIA USB Roothub Lower Filter / vulfntrs][Running/Manual Start]
<\SystemRoot\System32\Drivers\vulfntr.sys><VIA Technologies, Inc.>
[Sony Ericsson W550 driver (WDM) / w550bus][Stopped/Manual Start]
<system32\DRIVERS\w550bus.sys><MCCI>
[Sony Ericsson W550 USB WMC Modem Filter / w550mdfl][Stopped/Manual Start]
<system32\DRIVERS\w550mdfl.sys><MCCI>
[Sony Ericsson W550 USB WMC Modem Drivers / w550mdm][Stopped/Manual Start]
<system32\DRIVERS\w550mdm.sys><MCCI>
[Sony Ericsson W550 USB WMC Device Management Drivers / w550mgmt][Stopped/Manual Start]
<system32\DRIVERS\w550mgmt.sys><MCCI>
[Sony Ericsson W550 USB WMC OBEX Interface Drivers / w550obex][Stopped/Manual Start]
<system32\DRIVERS\w550obex.sys><MCCI>

笑添糖！ - 2007-4-8 16:26:00

浏览器加载项
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[IEHandle Class]
{31EBA2E2-58B2-4980-9C41-F12F5F1422C5} <C:\WINDOWS\system32\TPHANDLE.dll, 江苏科建教育软件有限责任公司>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <C:\Program Files\BitComet\tools\BitCometBHO_1.1.2.7.dll, BitComet>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <C:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[NTIECatcher Class]
{C56CB6B0-0D96-11D6-8C65-B2868B609932} <C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, Xi>
[Java Plug-in 1.5.0_11]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll, Sun Microsystems, Inc.>
[启动迅雷5]
{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <C:\Program Files\Thunder Network\Thunder\Thunder.exe, Thunder Networking Technologies,LTD>
[Web反病毒保护]
{1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} <D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll, Kaspersky Lab>
[Edit with Altova X&MLSpy]
{2222EF56-F49E-4d07-A14E-8D2B08766958} <, N/A>
[微软]
{6096E38F-5AC1-4391-8EC4-75DFA92FB32F} <http://www.microsoft.com/china/index.htm, N/A>
[信息检索(&R)]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[QQ]
{c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, TENCENT>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <C:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Edit Class]
{0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} <C:\WINDOWS\system32\CMBEdit.dll, >
[Java Plug-in 1.5.0_03]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <d:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll, Sun Microsystems, Inc.>
[clienttime.client]
{C5D0DFF5-6D39-4F98-88CD-12E8430A6300} <C:\WINDOWS\Downloaded Program Files\client.ocx, NTSC>
[Java Plug-in 1.5.0_03]
{CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} <d:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_11]
{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
[Web Browser Applet Control]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[Recorder Control]
{2423AB16-9F42-457B-A337-FE3B11964DB0} <C:\PROGRA~1\bluesky\BLUESK~1\recorder.ocx, Bluesky Studio (http://www.bluesky.cn)>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[BlueskyVideo Control]
{2EA6D939-4445-43F1-A12B-8CB3DDA8B855} <C:\PROGRA~1\bluesky\BLUESK~1\v2.ocx, 蓝天工作室(http://www.bluesky.cn)>
[Share Control]
{3072B1F1-0C4D-4E76-A7C6-FBAF129DBCC9} <C:\PROGRA~1\bluesky\BLUESK~1\share.ocx, http://www.bluesky.cn>
[IEHandle Class]
{31EBA2E2-58B2-4980-9C41-F12F5F1422C5} <C:\WINDOWS\system32\TPHANDLE.dll, 江苏科建教育软件有限责任公司>
[BitComet Helper]
{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <C:\Program Files\BitComet\tools\BitCometBHO_1.1.2.7.dll, BitComet>
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[PP Control]
{616DACC1-C5E6-4646-B36A-3FA4FC726BAD} <C:\PROGRA~1\bluesky\BLUESK~1\ppc.ocx, Bluesky Studio (http://www.bluesky.cn)>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[PP Control]
{7005341F-8E42-47E3-987B-3DBE6288048C} <C:\PROGRA~1\bluesky\BLUESK~1\pp.ocx, Bluesky Studio (http://www.bluesky.cn)>
[Active Desktop Mover]
{72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[Videohelp Control]
{75B75D86-D88B-4BEA-BC59-BFD9D7300518} <C:\PROGRA~1\bluesky\BLUESK~1\VIDEOH~1.OCX, Bluesky Studio(http://www.bluesky.cn)>
[BandIE Class]
{77FEF28E-EB96-44FF-B511-3185DEA48697} <C:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Microsoft Web 浏览器]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Filetran Control]
{88734439-46D0-42C0-A13F-7E881EE550CF} <C:\PROGRA~1\bluesky\BLUESK~1\filetran.ocx, Bluesky Studio(http://www.bluesky.cn)>
[Thunder Browser Helper]
{889D2FEB-5411-4565-8998-1DD2C5261283} <C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_007.dll, Thunder Networking Technologies,LTD>
[Chat Control]
{94EFE58C-E678-4808-AD65-24CE4B94C1FE} <C:\PROGRA~1\bluesky\BLUESK~1\chat.ocx, Bluesky Studio(http://www.bluesky.cn)>
[Blueskyvoice Control]
{991481A7-4669-4e15-8C24-100404E1F5CB} <C:\PROGRA~1\bluesky\BLUESK~1\BLUESK~1.OCX, 蓝天工作室(http://www.bluesky.cn)>
[Display Control]
{A1D97DB3-E564-4743-B2E7-6F5182CBF406} <C:\PROGRA~1\bluesky\BLUESK~1\display.ocx, Bluesky Studio (http://www.bluesky.cn)>
[Tracechat Control]
{A40335C4-D3D1-4E7B-9130-039CDA5B603C} <C:\PROGRA~1\bluesky\BLUESK~1\TRACEC~1.OCX, bluesky studio>
[RMGetLicense Class]
{A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[百度超级搜霸]
{B580CF65-E151-49C3-B73F-70B13FCA8E86} <C:\PROGRA~1\baidu\bar\baidubar.dll, Baidu.com, Inc.>
[Blueskyvoice Control]
{BA0F088C-72C1-475a-92F8-42391DEF6961} <C:\PROGRA~1\bluesky\BLUESK~1\BLUESK~2.OCX, 蓝天工作室(http://www.bluesky.cn)>
[NTIECatcher Class]
{C56CB6B0-0D96-11D6-8C65-B2868B609932} <C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, Xi>
[Client Control]
{C7B0C764-5D4E-433E-A854-591F28520577} <C:\PROGRA~1\bluesky\BLUESK~1\client.ocx, >
[Play Control]
{CC20DDA1-9A21-4DEC-B5BE-E61E0351FCA9} <C:\PROGRA~1\bluesky\BLUESK~1\play.ocx, Bluesky Studio (http://www.bluesky.cn)>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[&使用BitComet下载]
<res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm, N/A>
[&使用BitComet下载全部链接]
<res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm, N/A>
[&使用BitComet下载本页视频]
<res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm, N/A>
[&使用迅雷下载]
<C:\Program Files\Thunder Network\Thunder\Program\geturl.htm, N/A>
[&使用迅雷下载全部链接]
<C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm, N/A>
[Edit with Altova X&MLSpy]
<D:\Program Files\Altova\XMLSpy2005\spy.htm, N/A>
[上传到QQ网络硬盘]
<C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A>
[使用影音传送带下载]
<C:\Program Files\Xi\NetTransport 2\NTAddLink.html, N/A>
[使用影音传送带下载全部链接]
<C:\Program Files\Xi\NetTransport 2\NTAddList.html, N/A>
[导出到 Microsoft Office Excel(&X)]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
<C:\Program Files\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
<C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
<C:\Program Files\Tencent\QQ\SendMMS.htm, N/A>

笑添糖！ - 2007-4-8 16:26:00

正在运行的进程
[PID: 440][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 516][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 540][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\klogon.dll] [Kaspersky Lab, 6.0.0.299]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\msadp32.acm] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 584][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 596][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\setuid.dll] [March-Hare Software Ltd, setuid.dll 2.1.3.0]
[PID: 1264][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\PROGRA~1\Vista\systool\WinKld\Winkld.dat] [www.88dog.com, 2, 0, 0, 1]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\adialhk.dll] [Kaspersky Lab, 6.0.0.299]
[C:\Program Files\Vista\YzDock\YzDock.dll] [Y'z@Home, 0, 5, 0, 0]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[C:\WINDOWS\system32\nvcpl.dll] [NVIDIA Corporation, 6.14.10.9147]
[C:\WINDOWS\system32\NVRSZHC.DLL] [NVIDIA Corporation, 6.14.10.9147]
[C:\WINDOWS\system32\nvapi.dll] [N/A, ]
[C:\WINDOWS\system32\nvshell.dll] [, ]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[D:\Program Files\Sony Ericsson\Mobile2\File Manager\fmgrgui.dll] [Sony Ericsson Mobile Communications AB, 1, 3, 7, 0]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[D:\Program Files\Sony Ericsson\Mobile2\File Manager\fmgrguil.dll] [Sony Ericsson Mobile Communications AB, 1, 3, 2, 0]
[D:\JAVA\UltraEdit-32\ue32ctmn.dll] [, 1, 0, 0, 1]
[d:\java\EditPlus\eppshell.dll] [N/A, ]
[C:\Program Files\GlobalSCAPE\CuteFTP ZH\Cuteshell.dll] [GlobalSCAPE, Inc., 50, 6, 3, 2]
[C:\WINDOWS\system32\cmext.dll] [Revenger inc., 1.2.1.2]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\shellex.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Rational\ClearCase\bin\ccshelxb.dll] [N/A, ]
[D:\Program Files\Rational\ClearCase\bin\libatriaview.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\LIBRPCSVC.dll] [N/A, ]
[D:\Program Files\Rational\ClearCase\bin\LIBATRIANT.dll] [N/A, ]
[D:\Program Files\Rational\ClearCase\bin\LIBATRIAADM.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriavob.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriaccfs.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriaxdr.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriacredmap.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\LIBATRIATBS.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriamvfs.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriaks.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\LIBEZRPC.dll] [N/A, ]
[D:\Program Files\Rational\ClearCase\bin\LIBATRIADBRPC.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Rational\ClearCase\bin\libatriacm.dll] [IBM Corporation, 6.0.0.389]
[D:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510]
[PID: 1520][C:\WINDOWS\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.34]
[PID: 1596][D:\Program Files\Java\jre1.5.0_03\bin\jusched.exe] [Sun Microsystems, Inc., 5.0.30.7]
[PID: 1716][C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE] [SEIKO EPSON CORPORATION, 3.06]
[PID: 1780][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1792][D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe] [Sony Ericsson Mobile Communications AB, 1.0.4.2]
[C:\Program Files\Common Files\Teleca Shared\Telecalib_logging.dll] [Teleca/Popwire AB, 1, 0, 2, 3]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Teleca Shared\boost_log-vc71-mt-1_32.dll] [N/A, ]
[C:\WINDOWS\system32\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherLg.dll] [Sony Ericsson Mobile Communications AB, 1.0.3.8]
[D:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application LauncherBmp.dll] [Sony Ericsson Mobile Communications AB, 1.0.3.5]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Common Files\Teleca Shared\TC Device Mgmt.dll] [Teleca Software Solutions, 1, 0, 1, 1]
[C:\Program Files\Vista\YzDock\YzDock.dll] [Y'z@Home, 0, 5, 0, 0]
[PID: 1812][C:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe] [Thunder Networking Technologies,LTD, 5, 5, 6, 274]
[C:\Program Files\Thunder Network\Thunder\Program\TaskManager.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 14]
[C:\Program Files\Thunder Network\Thunder\Program\download_interface.dll] [Thunder Networking Technologies,LTD, 2, 12, 2, 56]
[C:\Program Files\Thunder Network\Thunder\Program\asyn_dns.dll] [Thunder Networking Technologies,LTD, 2, 12, 2, 56]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\adialhk.dll] [Kaspersky Lab, 6.0.0.299]
[C:\Program Files\Thunder Network\Thunder\Program\iTargetAD.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 16]
[C:\Program Files\Thunder Network\Thunder\Program\BHOStub.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 8]
[C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx] [Adobe Systems, Inc., 9,0,28,0]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\Program Files\Thunder Network\Thunder\Components\DiagnoseHelper\DiagnoseHelper.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 10]
[C:\Program Files\Thunder Network\Thunder\Components\PortVerify\PortVerify.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 1]
[C:\Program Files\Thunder Network\Thunder\Components\ExplorerHelper\ExplorerHelper.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 1]
[C:\Program Files\Thunder Network\Thunder\Components\DTAG\DTAG.dll] [Thunder Networking Technologies,LTD, 1, 1, 0, 2]
[C:\Program Files\Thunder Network\Thunder\Components\DTAG\ExtractMediaTag.dll] [Thunder Networking Technologies,LTD, 1, 0, 0, 1]
[C:\Program Files\Thunder Network\Thunder\Program\LiveUpdate.dll] [, 1, 0, 1, 17]
[C:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbedShell.dll] [　, 1, 0, 0, 15]
[C:\Program Files\Thunder Network\Thunder\Components\InMedia\iEmbed08.dll] [　, 3, 2, 0, 63]
[C:\Program Files\Vista\YzDock\YzDock.dll] [Y'z@Home, 0, 5, 0, 0]
[C:\Program Files\Thunder Network\Thunder\Components\Community\XLCommunity.dll] [Thunder Networking Technologies,LTD, 1, 0, 4, 15]
[C:\Program Files\Thunder Network\Thunder\Program\RegisterDll.dll] [Thunder Networking Technologies,LTD, 2, 2, 1, 43]
[C:\Program Files\Thunder Network\Thunder\Components\Search\XLSearch.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 7]
[C:\Program Files\Thunder Network\Thunder\Components\P4PClient\P4PClient.dll] [Thunder Networking Technologies,LTD, 1, 0, 2, 14]
[C:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VPSHELL.dll] [, 1, 1, 0, 4]
[C:\Program Files\Thunder Network\Thunder\Components\VPSHELL\VideoPicture.dll] [XunLei, 1, 1, 0, 4]
[C:\Program Files\Thunder Network\Thunder\Components\Tips\TipsClient.dll] [Thunder Networking Technologies,LTD, 2, 1, 1, 50]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scr_ch_pg.dll] [Kaspersky Lab, 1.0.6.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\klscav.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\pr_remote.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\prloader.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\prkernel.ppl] [Kaspersky Lab, 6.0.0.304]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\params.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\pxstub.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\tempfile.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\nfio.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\fsdrvplgn.ppl] [Kaspersky Lab, 6.0.0.299]
[C:\Program Files\Thunder Network\Thunder\Plugins\TingTing\TingTing.dll] [Thunder Networking Technologies,LTD, 1, 1, 1, 12]
[C:\Program Files\Thunder Network\Thunder\Plugins\BhoAdv\bho_adv.dll] [深圳市迅雷网络技术有限公司, 1.0.1.0]
[C:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\ThunderKAV.dll] [深圳市迅雷网络技术有限公司, 1.0.1.17]
[C:\Program Files\Thunder Network\Thunder\Program\XLNet.Dll] [Xunlei, 1, 1, 0, 6]
[C:\Program Files\Thunder Network\Thunder\Program\FloatBar.dll] [Giganology Inc., 1, 0, 0, 2]
[C:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\ikave.dll] [, 5, 0, 0, 62]
[C:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\kave.dll] [Kaspersky Lab., 5, 0, 0, 62]

笑添糖！ - 2007-4-8 16:29:00

========Content========
========Content========
[PID: 1880][C:\Program Files\Vista\YzDock\YzDock.exe] [Y'z@Home, 0, 8, 3, 0]
[C:\Program Files\Vista\YzDock\Languages\Chinese.lang] [" ", 1, 0, 0, 0]
[C:\Program Files\Vista\YzDock\YzDock.dll] [Y'z@Home, 0, 5, 0, 0]
[PID: 1880][D:\Program Files\BitComet Accelerator\BitComet Accelerator.exe] [BitComet Accelerator, 3, 2, 0, 0]
[PID: 1880][C:\WINDOWS\Skinplant\透明媒体播放器\ArrowPlayer.exe] [N/A, ]
[PID: 1880][C:\WINDOWS\Skinplant\透明时钟\Glassy Clock App.exe] [N/A, ]
[PID: 1880][C:\WINDOWS\hh.exe] [Microsoft Corporation, 5.2.3790.2453 (srv03_sp1_gdr.050525-1542)]
[C:\Program Files\Vista\YzDock\docklets\CPUMonitor\CPUMonitor.dll] [N/A, ]
[C:\Program Files\Vista\YzDock\YzDocklet.dll] [Y'z@Home, 2, 0, 0, 0]
[C:\Program Files\Vista\YzDock\docklets\Clock\Clock.dll] [N/A, ]
[PID: 1924][C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe] [Teleca Software Solutions AB, 0.0.1.48]
[C:\Program Files\Common Files\Teleca Shared\Telecalib_logging.dll] [Teleca/Popwire AB, 1, 0, 2, 3]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Teleca Shared\boost_log-vc71-mt-1_32.dll] [N/A, ]
[C:\WINDOWS\system32\msxml4.dll] [Microsoft Corporation, 4.20.9841.0]
[PID: 1116][C:\WINDOWS\system32\nutsrv4.exe] [DataFocus, Inc., 4.50.0000]
[C:\WINDOWS\system32\nutmsg4.dll] [DataFocus, Inc., 4.50.0000]
[PID: 696][C:\Program Files\Common Files\Teleca Shared\Generic.exe] [Teleca Software Solutions, 1, 0, 3, 2]
[C:\Program Files\Common Files\Teleca Shared\Telecalib_logging.dll] [Teleca/Popwire AB, 1, 0, 2, 3]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Common Files\Teleca Shared\boost_log-vc71-mt-1_32.dll] [N/A, ]
[C:\WINDOWS\system32\msxml4.dll] [Microsoft Corporation, 4.20.9841.0]
[C:\Program Files\Common Files\Teleca Shared\TC Device Mgmt.dll] [Teleca Software Solutions, 1, 0, 1, 1]
[D:\Program Files\Sony Ericsson\Mobile2\Device Manager\SpecificMPM.dll] [SonyEricsson, 1, 0, 2, 1]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\anubisps.dll] [N/A, ]
[C:\Program Files\Common Files\Teleca Shared\SpecificUSB.dll] [Teleca Software Solutions, 1, 0, 0, 0]
[PID: 2188][D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe] [Sony Ericsson Mobile Communications AB, 1, 2, 0,1171]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ShowMfcDialog.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,101]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\msmeirsock_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,925]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ms98irsock_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,970]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\msirsock_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,982]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\anubisps.dll] [N/A, ]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\cabmain.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,1207]
[C:\WINDOWS\system32\msxml4.dll] [Microsoft Corporation, 4.20.9841.0]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\xpbtsock_2_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,118]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\cellphone_object.dll] [Sony Ericsson Mobile Communications AB, 1, 0, 0,1175]
[D:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\ecsmoddata.dll] [Sony Ericsson Mobile Communications AB, 1, 2, 0,289]
[PID: 504][C:\Program Files\Maxthon\Maxthon.exe] [Maxthon International Ltd., 1, 5, 6, 39]
[C:\Program Files\Maxthon\maxzlib.dll] [ , 1, 0, 0, 2]
[C:\Program Files\Vista\YzDock\YzDock.dll] [Y'z@Home, 0, 5, 0, 0]
[C:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_007.dll] [Thunder Networking Technologies,LTD, 5, 0, 1, 4]
[C:\WINDOWS\system32\odbcbcp.dll] [Microsoft Corporation, 2000.085.1117.00 (xpsp_sp2_rtm.040803-2158)]
[D:\PROGRA~1\Rational\SQLANY~1\win32\dbctrs8.dll] [iAnywhere Solutions, Inc., 8.0.1.2600]
[C:\PROGRA~1\COMMON~1\System\MSSearch\Bin\msscntrs.dll] [Microsoft Corporation, 9.107.5512.0]
[d:\PROGRA~1\MICROS~3\MSSQL\BINN\SQLCTR80.DLL] [Microsoft Corporation, 2000.080.0194.00]
[C:\PROGRA~1\COMMON~1\SYSTEM\MSMAPI\2052\MSMAPI32.DLL] [Microsoft Corporation, 11.0.6566]
[C:\Program Files\Common Files\Microsoft Shared\office11\mso.dll] [Microsoft Corporation, 11.0.6568]
[d:\Program Files\VMware\VMware Workstation\vmPerfmon.dll] [VMware, Inc., 5.5.0 build-18463]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Maxthon\Services\RealTime\real_time.dll] [, 1, 0, 0, 1]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\adialhk.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scr_ch_pg.dll] [Kaspersky Lab, 1.0.6.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\klscav.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\pr_remote.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\prloader.dll] [Kaspersky Lab, 6.0.0.299]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\prkernel.ppl] [Kaspersky Lab, 6.0.0.304]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\params.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\pxstub.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\tempfile.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\nfio.ppl] [Kaspersky Lab, 6.0.0.299]
[d:\program files\kaspersky lab\kaspersky internet security 6.0\fsdrvplgn.ppl] [Kaspersky Lab, 6.0.0.299]
[C:\WINDOWS\system32\UNISPIM5.IME] [北京紫光华宇软件股份有限公司, 5.0.0.5091]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\msdmo.dll] [, ]
[PID: 3612][C:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\ScanningProcess.exe] [N/A, ]
[C:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\prloader.dll] [Kaspersky Lab, 6.0.1.305]

笑添糖！ - 2007-4-8 16:29:00

[C:\Program Files\Thunder Network\Thunder\Plugins\ThunderKAV\bin\prkernel.ppl] [Kaspersky Lab, 6.0.1.305]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\prefetch.ppl] [Kaspersky Labs, 1, 0, 0, 56]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\avpmgr.ppl] [Kaspersky Lab, 6.0.1.305]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\wdiskio.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\nfio.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\avlib.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\dtreg.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\prutil.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\avp1.ppl] [Kaspersky Lab, 6.0.0.299]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\l_llio.ppl] [Kaspersky Labs, 6.0.9.75]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\ichstrms.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\hashcont.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\hccmp.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\uniarc.ppl] [Kaspersky Lab, 6.0.0.16]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\minizip.ppl] [Kaspersky Lab, 6.0.0.16]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\prseqio.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\hashmd5.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\inflate.ppl] [Kaspersky Lab, 6.0.0.16]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\tempfile.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\cab.ppl] [Kaspersky Lab, 6.0.0.16]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\arj.ppl] [Kaspersky Lab, 6.0.0.16]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\rar.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\mdb.ppl] [Kaspersky Lab, 6.0.0.300]
[C:\WINDOWS\system32\MAPI32.dll] [Microsoft Corporation, 1.0.2536.0 (XPClient.010817-1148)]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\msoe.ppl] [Kaspersky Lab, 6.0.0.276]
[c:\program files\thunder network\thunder\plugins\thunderkav\bin\iwgen.ppl] [Kaspersky Lab, 6.0.0.276]
[PID: 2256][C:\Documents and Settings\new\桌面\sreng2\SREng.EXE] [Smallfrogs Studio, 2.4.12.806]
[C:\Program Files\Vista\YzDock\YzDock.dll] [Y'z@Home, 0, 5, 0, 0]
[D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\adialhk.dll] [Kaspersky Lab, 6.0.0.299]

==================================
文件关联
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[G:\]
[Autorun]
open=Iexplores.exe

==================================
HOSTS 文件
127.0.0.1 localhost

==================================
API HOOK
RVA 错误： LoadLibraryA (危险等级: 一般, 被下面模块所HOOK: Dest Addr: 0xF57D3B25)
RVA 错误： LoadLibraryExA (危险等级: 一般, 被下面模块所HOOK: Dest Addr: 0xF57D3D67)
RVA 错误： LoadLibraryExW (危险等级: 一般, 被下面模块所HOOK: Dest Addr: 0xF57D3F0B)
RVA 错误： LoadLibraryW (危险等级: 一般, 被下面模块所HOOK: Dest Addr: 0xF57D3C49)
RVA 错误： GetProcAddress (危险等级: 高, 被下面模块所HOOK: Dest Addr: 0xF57D3E8F)

==================================
隐藏进程
N/A

==================================

[/CODE]

笑添糖！ - 2007-4-8 16:30:00

Process PID CPU Description Company Name
System Idle Process 0 38.81
Interrupts n/a 20.90 Hardware Interrupts
DPCs n/a 2.99 Deferred Procedure Calls
System 4 1.49
smss.exe 440 Windows NT Session Manager Microsoft Corporation
csrss.exe 516 1.49 Client Server Runtime Process Microsoft Corporation
winlogon.exe 540 Windows NT Logon Application Microsoft Corporation
SERVICES.EXE 584 2.99 Services and Controller app Microsoft Corporation
SVCHOST.EXE 752 Generic Host Process for Win32 Services Microsoft Corporation
CapabilityManager.exe 1924 Capability Manager Teleca Software Solutions AB
Generic.exe 696 Generic Device Management Executable. Teleca Software Solutions
epmworker.exe 2188 CAPI_Worker Module Sony Ericsson Mobile Communications AB
SVCHOST.EXE 796 Generic Host Process for Win32 Services Microsoft Corporation
SVCHOST.EXE 872 Generic Host Process for Win32 Services Microsoft Corporation
SVCHOST.EXE 1020 Generic Host Process for Win32 Services Microsoft Corporation
SVCHOST.EXE 1056 Generic Host Process for Win32 Services Microsoft Corporation
spoolsv.exe 1324 Spooler SubSystem App Microsoft Corporation
avp.exe 1644 2.99 Kaspersky Anti-Virus Kaspersky Lab
cvslock.exe 1692
cvsservice.exe 1964 cvsnt service March Hare Software Ltd
MDM.EXE 192 Machine Debug Manager Microsoft Corporation
nvsvc32.exe 232 NVIDIA Driver Helper Service, Version 91.47 NVIDIA Corporation
SVCHOST.EXE 340 Generic Host Process for Win32 Services Microsoft Corporation
wdfmgr.exe 364 Windows User Mode Driver Manager Microsoft Corporation
vmware-authd.exe 716 4.48 VMware Authorization Service VMware, Inc.
vmount2.exe 644 virtual disk mount service VMware, Inc.
vmnat.exe 972 VMware NAT Service VMware, Inc.
mssearch.exe 836 Microsoft PKM Search Service Microsoft Corporation
nutsrv4.exe 1116 NuTCRACKER Service DataFocus, Inc.
vmnetdhcp.exe 1156 VMware VMnet DHCP service VMware, Inc.
alg.exe 2356 Application Layer Gateway Service Microsoft Corporation
SVCHOST.EXE 2508 Generic Host Process for Win32 Services Microsoft Corporation
LSASS.EXE 596 LSA Shell (Export Version) Microsoft Corporation
EXPLORER.EXE 1264 Windows Explorer Microsoft Corporation
SOUNDMAN.EXE 1520 Realtek Sound Manager Realtek Semiconductor Corp.
jusched.exe 1596 Java(TM) 2 Platform Standard Edition binary Sun Microsystems, Inc.
E_S10IC2.EXE 1716 EPSON Status Monitor 3 SEIKO EPSON CORPORATION
avp.exe 1724 Kaspersky Anti-Virus Kaspersky Lab
ctfmon.exe 1780 CTF Loader Microsoft Corporation
Application Launcher.exe 1792 Application Launcher Sony Ericsson Mobile Communications AB
YzDock.exe 1880 17.91 Y'z@Home
Maxthon.exe 504 Maxthon Web Browser Maxthon International Ltd.
SREng.EXE 2256 2.99 System Repair Engineer Smallfrogs Studio
Foxmail.exe 2400 Internet Mail Client Boda Network Technology Inc.
WinRAR.exe 1364
procexp.exe 1916 2.99 Sysinternals Process Explorer Sysinternals
Thunder5.exe 1812 Thunder Thunder Networking Technologies,LTD
ScanningProcess.exe 3612

瑞星卡卡安全论坛