各位高手：
非常感谢您留心我这份系统诊断报告，小菜鸟十万火急等待您的帮助！
该诊断报告由360安全卫士提供 http://www.360.cn
诊断时间: 2008-10-02  14:19:43
诊断平台: Microsoft Windows XP  Service Pack 2
IE版本: Internet Explorer V6.0.2900.2180 Build:62900.2180 
计算机物理内存:1023.28MB - 当前可用内存:547.88MB

O5 - 低危险 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer: NoNetHood=1
100 - 未知 - Process: KeyboardSurrogate.exe [Microsoft Tablet PC Component] - C:\Program Files\Common Files\Microsoft Shared\Ink\KeyboardSurrogate.exe
100 - 未知 - Process: EAZClnt.exe [] - C:\Program Files\Yuguo\EAZClnt.exe
100 - 未知 - Process: SHDSERV.exe [雨过天晴 COM Server Module] - C:\Program Files\Yuguo\shdserv.exe
100 - 未知 - Process: tabbtnu.exe [Tablet PC Buttons Service] - C:\WINDOWS\System32\tabbtnu.exe 8dc
100 - 未知 - Process: TCServer.exe [Microsoft Tablet PC Component] - C:\Program Files\Common Files\Microsoft Shared\Ink\TCServer.exe
100 - 未知 - Process: TRot.exe [TOSHIBA Rotation Utility] - C:\Program Files\TOSHIBA\TOSHIBA Rotation Utility\TRot.exe
100 - 未知 - Process: TAcelMgr.exe [TAcelMgr] - C:\Program Files\TOSHIBA\Acceleration Utilities\TAcelMgr\TAcelMgr.exe
100 - 未知 - Process: TabTip.exe [Microsoft Tablet PC Component] - C:\Program Files\Common Files\Microsoft Shared\Ink\TabTip.exe
100 - 未知 - Process: TSkrMain.exe [TSkrMain] - C:\Program Files\TOSHIBA\Acceleration Utilities\Shaker\TSkrMain.exe
100 - 未知 - Process: CrossMenu.exe [CrossMenu Main] - C:\Program Files\Toshiba\CrossMenu\CrossMenu.exe
100 - 未知 - Process: TapButt.exe [TapButt] - C:\Program Files\Toshiba\TapButton\TapButt.exe
100 - 未知 - Process: TMETEMnu.exe [TOSHIBA MobileExtension] - C:\Program Files\TOSHIBA\东芝移动式扩充3\TMETEMNU.EXE
100 - 未知 - Process: EAZTRAY.exe [雨过天晴电脑保护系统图标程序] - C:\Program Files\Yuguo\EAZTray.exe
100 - 未知 - Process: Amoumain.exe [Amoumain] - C:\Program Files\Win2\Mouse\Amoumain.exe
100 - 未知 - Process: PPLiveVA.exe [PpliveVA 应用程序] - C:\Program Files\PPLiveVA\PPLiveVA.exe
100 - 未知 - Process: notepad.exe [Generic Host Process for Win32 Services] - C:\Documents and Settings\lx2002\「开始」菜单\程序\启动\notepad.exe
100 - 未知 - Process: PPLiveVA.exe [PpliveVA 应用程序] - C:\Program Files\PPLiveVA\PPLiveVA.exe
100 - 未知 - Process: PPLiveVAMonitor.exe [PPLiveVA 应用程序] - C:\Program Files\PPLiveVA\PPLiveVAMonitor.exe
O2 - 未知 - BHO: (Download_Bho Class) - [DownLoadFlv] - {A986E409-30CC-4185-89BB-AB212C104524} - C:\Program Files\PPLiveVA\DownloaderManager.dll
O4 - 未知 - HKLM\..\Run: [TabletWizard] [Microsoft Tablet PC Component] C:\WINDOWS\help\SplshWrp.exe
O4 - 未知 - HKLM\..\Run: [TabletTip] [Microsoft Tablet PC Component] "C:\Program Files\Common Files\microsoft shared\ink\tabtip.exe" /resume
O4 - 未知 - HKLM\..\Run: [TosRotation] [TOSHIBA Rotation Utility] "C:\Program Files\TOSHIBA\TOSHIBA Rotation Utility\TRot.exe"
O4 - 未知 - HKLM\..\Run: [TouchED] [触摸板 开/关 实用程序] C:\Program Files\TOSHIBA\TouchED\TouchED.Exe
O4 - 未知 - HKLM\..\Run: [LTSMMSG] [SoftModem Messaging Applet] LTSMMSG.exe
O4 - 未知 - HKLM\..\Run: [TAcelMgr] [TAcelMgr] C:\Program Files\TOSHIBA\Acceleration Utilities\TAcelMgr\TAcelMgr.exe
O4 - 未知 - HKLM\..\Run: [TSkrMain] [TSkrMain] C:\Program Files\TOSHIBA\Acceleration Utilities\Shaker\TSkrMain.exe
O4 - 未知 - HKLM\..\Run: [00THotkey] [THotkey] C:\WINDOWS\system32\00THotkey.exe
O4 - 未知 - HKLM\..\Run: [CrossMenu] [CrossMenu Main] C:\Program Files\Toshiba\CrossMenu\CrossMenu.exe
O4 - 未知 - HKLM\..\Run: [TapButt] [TapButt] C:\Program Files\Toshiba\TapButton\TapButt.exe
O4 - 未知 - HKLM\..\Run: [] [] 
O4 - 未知 - HKLM\..\Run: [Yuguo] [雨过天晴电脑保护系统图标程序] "C:\Program Files\Yuguo\EAZTray.exe"
O4 - 未知 - HKCU\..\Run: [PPS Accelerator] [] D:\Program Files\PPStream\ppsap.exe
O4 - 未知 - HKCU\..\Run: [PPLiveVA] [] C:\Program Files\PPLiveVA\PPLiveVA.exe /LoadModule PPVA.DLL /M REAL /S 0 /T 0
O4 - 未知 - Startup folder: [notepad.exe] [Generic Host Process for Win32 Services] C:\Documents and Settings\lx2002\「开始」菜单\程序\启动\notepad.exe
O8 - 未知 - Extra context menu item: 使用脱兔下载 - d:\Program Files\Tuotu\TT_one.htm
O8 - 未知 - Extra context menu item: 使用脱兔下载全部链接 - d:\Program Files\Tuotu\TT_all.htm
O9 - 未知 - Extra button: 启动迅雷5(HKLM) - d:\Program Files\Thunder Network\Thunder\Thunder.exe
O9 - 未知 - Extra button: 信息检索(HKLM) - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - 未知 - Extra button: PPLive(HKLM) - D:\Program Files\PPLive\PPLive.exe
O15 - 未知 - Trusted Zone: www.zhuae.com
O16 - 未知 - DPF: {1E0DFFCF-27FF-4574-849B-55007349FEDA} (iTrusPTA) - https://img.alipay.com/download/1101/aliedit.cab
O16 - 未知 - DPF: {78ABDC59-D8E7-44D3-9A76-9A0918C52B4A} (DLoader) - http://download.tv.sina.com.cn/downloader.cab
O23 - 未知 - Service: EAZClientService [EAZClientService] - "C:\Program Files\Yuguo\EAZClnt.exe" - (running)
O23 - 未知 - Service: SHDSERV [SHDSERV] - C:\Program Files\Yuguo\shdserv.exe - (running)
O23 - 未知 - Service: Tmesrv [Tmesrv3] - "C:\Program Files\TOSHIBA\东芝移动式扩充3\Tmesrv31.exe" /Service - (running)

=======================================

100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量，ms-dos驱动名称类似lpt1以及com，调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统，用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序，用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] - 
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k bthsvcs
100 - 安全 - Process: nvsvc32.exe [nvidia driver helper service在nvida显卡驱动中被安装。] - C:\WINDOWS\system32\nvsvc32.exe
100 - 安全 - Process: TMESRV31.exe [东芝移动式扩充相关程序。] - C:\Program Files\TOSHIBA\东芝移动式扩充3\Tmesrv31.exe
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: wisptis.exe [windows墨水服务写字板平台输入子系统。] - C:\WINDOWS\SYSTEM32\WISPTIS.EXE
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell，包括开始菜单、任务栏，桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: wuauclt.exe [windows操作系统后台程序，用于系统升级。] - C:\WINDOWS\system32\wuauclt.exe
100 - 安全 - Process: SmoothView.exe [东芝公司出品的相关程序。] - C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
100 - 安全 - Process: TouchED.exe [东芝笔记本电脑相关软件的一部分。] - C:\Program Files\TOSHIBA\TouchED\TouchED.Exe
100 - 安全 - Process: ltsmmsg.exe [朗讯调制解调器相关软件。] - C:\WINDOWS\LTSMMSG.exe
100 - 安全 - Process: 00THotkey.exe [东芝公司出品的笔记本电脑相关程序。] - C:\WINDOWS\system32\00THotkey.exe
100 - 安全 - Process: TMERzCtl.exe [东芝笔记本电脑相关程序。] - C:\Program Files\TOSHIBA\东芝移动式扩充3\TMERzCtl.EXE
100 - 安全 - Process: avp.exe [卡巴斯基杀毒软件相关程序。] - 
100 - 安全 - Process: AntiArp.exe [360安全卫士ARP防火墙相关程序。] - C:\Program Files\360safe\antiarp\antiarp.exe
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] - C:\WINDOWS\system32\rundll32.exe
100 - 安全 - Process: safeboxTray.exe [360安全卫士保险箱相关程序。] - C:\Program Files\360Safebox\safeboxTray.exe
100 - 安全 - Process: TPSBattM.exe [东芝笔记本电脑相关程序。] - C:\WINDOWS\system32\TPSBattM.exe
100 - 安全 - Process: rundll32.exe [windows rundll32为了需要调用dlls的程序。] - C:\WINDOWS\system32\rundll32.exe
100 - 安全 - Process: wuauclt.exe [windows操作系统后台程序，用于系统升级。] - C:\WINDOWS\system32\wuauclt.exe
100 - 安全 - Process: conime.exe [console ime ime输入法控制台软件。] - C:\WINDOWS\system32\conime.exe
100 - 安全 - Process: 360Safe.exe [360安全卫士相关程序。] - C:\Program Files\360safe\360Safe.exe
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
O2 - 安全 - BHO: (ThunderIEHelper Class) - [迅雷的IE模块。] - {0005A87D-D626-4B3A-84F9-1D9571695F55} - C:\WINDOWS\system32\xunleibho_v8.dll
O2 - 安全 - BHO: (ThunderAtOnce Class) - [迅雷浏览器高级特性支持模块。] - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - d:\Program Files\Thunder Network\Thunder\ComDlls\TDAtOnce_Now.dll
O2 - 安全 - BHO: (CLDown Object) - [脱兔下载， BT电影下载。] - {0BECAB3A-E1F8-45E6-8332-38DD750EBA01} - d:\Program Files\Tuotu\TuoTuHelper_v8.dll
O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll
O4 - 安全 - HKLM\..\Run: [IMJPMIG8.1] [微软Microsoft输入法编辑器程序。] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - 安全 - HKLM\..\Run: [PHIME2002ASync] [输入法软件相关程序。] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - 安全 - HKLM\..\Run: [PHIME2002A] [输入法软件相关程序。] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - 安全 - HKLM\..\Run: [SmoothView] [东芝笔记本电脑相关程序。] C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
O4 - 安全 - HKLM\..\Run: [Apoint] [alps公司为笔记本电脑生产的触控板的驱动程序。] C:\Program Files\Apoint2K\Apoint.exe
O4 - 安全 - HKLM\..\Run: [TPSMain] [东芝笔记本电脑相关程序。] TPSMain.exe
O4 - 安全 - HKLM\..\Run: [000StTHK] [toshiba东芝笔记本热键控制软件。] 000StTHK.exe
O4 - 安全 - HKLM\..\Run: [TMESRV.EXE] [东芝笔记本电脑相关程序。] C:\Program Files\TOSHIBA\东芝移动式扩充3\TMESRV31.EXE /Logon
O4 - 安全 - HKLM\..\Run: [TMERzCtl.EXE] [东芝笔记本电脑相关程序。] C:\Program Files\TOSHIBA\东芝移动式扩充3\TMERzCtl.EXE /Service
O4 - 安全 - HKLM\..\Run: [NvCplDaemon] [是NVIDIA显示卡相关动态链接库文件。] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - 安全 - HKLM\..\Run: [nwiz] [是NVidia的Nview特性相关程序。该程序用于用户对其特性进行配置，将桌面扩展到多台显示器上。 ] nwiz.exe /installquiet /nodetect /keeploaded
O4 - 安全 - HKLM\..\Run: [AVP] [卡巴斯基杀毒软件相关程序。] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - 安全 - HKLM\..\Run: [360Antiarp] [360安全卫士ARP防火墙相关程序。] C:\Program Files\360safe\antiarp\antiarp.exe /start
O4 - 安全 - HKLM\..\Run: [IMSCMig] [微软拼音输入法安装工具。  ] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - 安全 - HKLM\..\Run: [Knight V] [金山游侠v应用程序。] 
O4 - 安全 - HKLM\..\Run: [BluetoothAuthenticationAgent] [蓝牙相关程序。] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - 安全 - HKLM\..\Run: [Tweak UI] [windows自带的系统设置调整软件。] RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp
O4 - 安全 - HKLM\..\Run: [360Safebox] [360安全卫士保险箱相关程序。] "C:\Program Files\360Safebox\safeboxTray.exe" /r
O4 - 安全 - HKLM\..\Run: [WheelMouse] [微软wheelmouse鼠标驱动。] C:\Program Files\Win2\Mouse\Amoumain.exe
O4 - 安全 - HKCU\..\Run: [ctfmon.exe] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O4 - 默认 - HKCU\..\Run: [NVIEW] [nvidia显示卡驱动程序相关] rundll32.exe nview.dll,nViewLoadHook
O8 - 安全 - Extra context menu item: 使用迅雷下载 - D:\Program Files\Thunder Network\Thunder\Program\geturl.htm
O8 - 安全 - Extra context menu item: 使用迅雷下载全部链接 - D:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - 安全 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - 安全 - Extra button: 卡巴斯基Web反病毒保护插件(HKLM) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - 安全 - Extra button: Windows Messenger(HKLM) - C:\Program Files\Messenger\msmsgs.exe
O16 - 安全 - DPF: {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} (中国工商银行个人银行) - https://mybank.icbc.com.cn/icbc/perbank/AxSafeControls.cab
O16 - 安全 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Flash播放器) - http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - 安全 - Protocol: OFFICE 相关 - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O18 - 安全 - Protocol: OFFICE 相关 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O23 - 安全 - Service: AVP [卡巴斯基杀毒软件相关服务。] - "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe" -r - (running)
O23 - 安全 - Service: BthServ [蓝牙支持服务。] - C:\WINDOWS\System32\bthserv.dll - (running)
O23 - 安全 - Service: NVSvc [是NVIDIA显示卡相关程序。] - C:\WINDOWS\system32\nvsvc32.exe - (running)

=======================================

O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 - 
O31 - 未知 - SEApproved: 无效的CLSID：Shell extensions for file compression -  -  -  -  - 0 - 
O31 - 未知 - SEApproved: 无效的CLSID：加密上下文菜单 -  -  -  -  - 0 - 
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 - 
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 - 
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 - 
O31 - 未知 - SEApproved: {C4213067-97B3-4929-9B98-B5600FBBBA13} - C:\Program Files\TOSHIBA\TouchED\TouchED.dll - 东芝公司 - 触摸板 开/关 实用程序 - 2.5.0.0 - 143360 - 752877537845c9c7ffda984bd0c44cfd
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 129024 - 60fe004235a8108446dcfc1e526fde0e
O31 - 未知 - SEApproved: {D0A0186C-6247-4440-B896-9BF99BC154F2} - D:\PROGRA~1\FOLDER~1\FISHEL~1.DLL -  -  -  - 382976 - 34e4305a2f23a6303777b14b6823f858
O31 - 未知 - SEApproved: {CB0877AB-7E94-4073-8194-6F992D27EFAA} - C:\Program Files\Yuguo\eazshell.dll - 南京安悦科技有限公司 - 雨过天晴电脑保护系统程序模块 - 1.3.1.0 - 40960 - 65c8d301edfc9ae469af10143d4c3a88
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - C:\Program Files\WinRAR\rarext.dll -  -  -  - 129024 - 60fe004235a8108446dcfc1e526fde0e
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 - 
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 - 

=======================================

O40 - Explorer.EXE - TOSHIBA Corporation - C:\WINDOWS\system32\TPwrCfg.DLL -  - b58394ff7eab90475a749fec0694217b
O40 - Explorer.EXE - TOSHIBA Corporation - C:\WINDOWS\system32\TPwrReg.dll -  - ddfe50b727439e7ec234ce0cca0e5c34
O40 - Explorer.EXE - TOSHIBA Corporation - C:\WINDOWS\system32\TPSTrace.DLL -  - a0ba7edc72b925fa293e58e8dd53e7c3
O40 - Explorer.EXE - A4Tech Co.,Ltd. - C:\WINDOWS\system32\Amhooker.dll - Amhooker.dll - 248408896f47f7315a9ee73008308ebd
O40 - Explorer.EXE -  - C:\Program Files\Yuguo\idle.dll -  - e62e5b2f9b1d4afa43f471c8457d75ef

=======================================

O41 - Amfilter - A4Tech Mouse Filter Driver - C:\WINDOWS\system32\drivers\Amfilter.sys - (running) - A4Tech Mouse Filter Driver - A4Tech Co.,Ltd. - d716473c4f66c1173d3ca4e679f68743
O41 - Amps2prt - A4Tech PS/2 Port Mouse Filter Driver - C:\WINDOWS\system32\drivers\Amps2prt.sys - (running) - A4Tech PS/2 Port Mouse Filter Driver - A4Tech Co.,Ltd. - f0f3c6865acf65971b9570201dfae68f
O41 - klif - spuper-ptor - C:\WINDOWS\system32\drivers\klif.sys - (running) - spuper-ptor - Kaspersky Lab - 9256da35cee573515d346b4f3598b72e
O41 - prodrv06 - StarForce Protection Environment Driver - C:\WINDOWS\system32\drivers\prodrv06.sys - (running) - StarForce Protection Environment Driver - StarForce Technologies, Inc. - 6c1f735ac47dd97369cba67400fe2d75
O41 - prohlp02 - StarForce Protection Helper Driver - C:\WINDOWS\system32\drivers\prohlp02.sys - (running) - StarForce Protection Helper Driver - StarForce Technologies, Inc. - ca0193b2b57da95cc6310b833e1ee965
O41 - prosync1 - StarForce Protection Synchronization Driver - C:\WINDOWS\system32\drivers\prosync1.sys - (running) - StarForce Protection Synchronization Driver - StarForce Technologies, Inc. - cc3d1bb199cbb576b0fbaaba626b6714
O41 - QuakeDRV - QuakeDRV - C:\WINDOWS\system32\drivers\quakedrv.sys - (running) -  -  - d3333f223425fbca10543b66653b4fbf
O41 - sfhlp01 - StarForce Protection Helper Driver - C:\WINDOWS\system32\drivers\sfhlp01.sys - (running) - StarForce Protection Helper Driver - StarForce Technologies, Inc. - 95654a66531b8a198d0d5d153cc95f8e
O41 - sptd - sptd - C:\WINDOWS\system32\drivers\sptd.sys - (running) -  -  - 
O41 - TMEI3E - Toshiba Mobile Extension Value Added Logical Device Driver - C:\WINDOWS\system32\drivers\TMEI3E.sys - (running) - Toshiba Mobile Extension Value Added Logical Device Driver - Toshiba Corporation - dde020c16673b702d7235b0d96d34fd7
O41 - TVALZ - TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver - C:\WINDOWS\system32\drivers\TVALZ.SYS - (running) - TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver - TOSHIBA Corporation - 9d8fcc6099d641d7c2bdc7f41193bec5
O41 - Amusbprt - A4Tech HID Mouse Filter Driver - C:\WINDOWS\system32\drivers\Amusbprt.sys - (not running) - A4Tech HID Mouse Filter Driver - A4Tech Co.,Ltd. - 0e264a9acb592f3fd91e742983db6a96
O41 - KSKNIGHT - Kingsoft Knight NT Memory Manager - D:\Program Files\Kingsoft\KnightV\KSKnight.sys - (not running) - Kingsoft Knight NT Memory Manager - Kingsoft - 5b958af9897b5af4fbcb41a8e208334a
O41 - NSNDIS5 - NetStumbler NDIS 5.0 Protocol Driver - C:\WINDOWS\system32\nsndis5.sys - (not running) - NetStumbler NDIS 5.0 Protocol Driver - Printing Communications Assoc., Inc. (PCAUSA) - 53f7546e8daefb3a0813f5e19c4613c9
O41 - TVICHW32 - TVicHW32 Driver for Windows NT/2000/XP - C:\WINDOWS\system32\drivers\tvichw32.sys - (not running) - TVicHW32 Driver for Windows NT/2000/XP - EnTech Taiwan - e266683fc95abdec17cd378564e1b54b

=======================================
360Safe.exe=4.2.0.1010
AntiAdwa.dll=4.2.0.1001
AntiEng.dll=4.2.0.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=4.2.0.1002
live.dll=1.0.1.1027

=======================================
操作历史报告：
----------清理恶评及系统插件历史----------

 2007-11-30 00:55
清理恶评软件 - 未知自动运行程序(Autorun) - 

2007-11-30 00:53
清理恶评插件 - 未知自动运行程序(Autorun) - D:\autorun.inf
清理恶评插件 - Explorer.exe木马 - 
2008-05-31 23:51
清理恶评插件 - 可能有风险临时文件 - C:\DOCUME~1\lx2002\LOCALS~1\Temp\dat1.tmp
2008-05-31 23:52
清理其它插件 - Windows临时文件 - C:\DOCUME~1\lx2002\LOCALS~1\Temp\ppl6A.tmp
2008-10-02 14:19
清理恶评插件 - 木马下载者变种n1 - C:\WINDOWS\1.exe

=======================================

360安全卫士，彻底查杀各种流氓软件,全面保护系统安全,并赠送正版卡巴斯基7.0
最新免费下载：http://www.360.cn/download.html