瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 双击“我的电脑”图标,1分钟后才打开

1   1  /  1  页   跳转

[求助] 双击“我的电脑”图标,1分钟后才打开

双击“我的电脑”图标,1分钟后才打开

政府终于放开网络了,感谢一切人
联网后,发现双击“我的电脑”,运行奇慢,有时cpu100%,一分钟后才能打开
右键单击“我的电脑”,其中有“u88连锁加盟网”
请大家帮我看看,谢谢

扫描文件见附件

附件附件:

下载次数:166
文件类型:text/plain
文件大小:
上传时间:2010-5-15 21:19:02
描述:txt

最后编辑轮回了一把 最后编辑于 2010-05-15 21:19:02
分享到:
gototop
 

回复:双击“我的电脑”图标,1分钟后才打开

我居然不能上传附件,只好粘帖了



[CODE]

2010-05-15,20:20:50

System Repair Engineer 2.8.2.1321
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描
    计划任务
    Windows 安全更新检查
    API HOOK
    隐藏进程


启动项目
注册表
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <SrLoader><; D:\超级兔子\MagicSet\SrLoader.exe>  [(Verified)Beijing Gigabit Times Technology Co., Ltd]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
    <Userinit><D:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{D7B21266-AA85-44b8-B516-3B1A69827400}><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Publisher]
    <SysTray><D:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
    <WinlogonNotify: klogon><D:\WINDOWS\system32\klogon.dll>  [(Verified)Kaspersky Lab]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [Microsoft Corporation]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><D:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection D:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe>  [(Verified)Microsoft Windows Publisher]

==================================
最后编辑轮回了一把 最后编辑于 2010-05-15 21:12:42
gototop
 

回复:双击“我的电脑”图标,1分钟后才打开

==================================
启动文件夹
N/A

==================================
服务
[卡巴斯基互联网安全套装 7.0 / AVP][Stopped/Manual Start]
  <"D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r><Kaspersky Lab>
[ServiceLayer / ServiceLayer][Stopped/Manual Start]
  <"D:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe"><Nokia.>
[SmartLinkService / SLService][Running/Auto Start]
  <slserv.exe><Smart Link>
[VJVodServices / vvdsvc][Stopped/Auto Start]
  <D:\WINDOWS\System32\svchost.exe -k vvdsvc-->D:\WINDOWS\system32\nagasoft\vjocx.dll><南京纳加软件有限公司>
[主动防御 / ZhuDongFangYu][Stopped/Manual Start]
  <"D:\Program Files\360\360Safe\deepscan\zhudongfangyu.exe"><360.cn>

==================================
驱动程序
[360SelfProtection / 360SelfProtection][Running/System Start]
  <system32\drivers\360SelfProtection.sys><360安全中心>
[BAPIDRV / BAPIDRV][Running/System Start]
  <\??\D:\WINDOWS\system32\drivers\BAPIDRV.SYS><360.cn>
[C-Media WDM Audio Interface / cmuda][Running/Manual Start]
  <system32\drivers\cmuda.sys><C-Media Inc>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><奇虎网>
[VIA Rhine Family Fast Ethernet Adapter Driver Service / FExxxISB][Running/Manual Start]
  <system32\DRIVERS\fexxx5b.sys><VIA Technologies, Inc.>
[HookPort / HookPort][Running/Boot Start]
  <\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[kl1 / kl1][Running/Boot Start]
  <\SystemRoot\system32\drivers\kl1.sys><Kaspersky Lab>
[klif / klif][Running/System Start]
  <\??\D:\WINDOWS\system32\drivers\klif.sys><Kaspersky Lab>
[Kaspersky Anti-Virus NDIS Filter / klim5][Running/Manual Start]
  <system32\DRIVERS\klim5.sys><Kaspersky Lab>
[MRxSmb / MRxSmb][Running/System Start]
  <system32\DRIVERS\mrxsmb.sys><Microsoft Corporation>
[Scroll Bar Driver / MTC0003_STDSB][Running/Auto Start]
  <system32\STDSB.sys><>
[Mtlmnt5 / Mtlmnt5][Running/Manual Start]
  <system32\DRIVERS\Mtlmnt5.sys><Smart Link>
[Mtlstrm / Mtlstrm][Stopped/Manual Start]
  <system32\DRIVERS\Mtlstrm.sys><Smart Link>
[Nokia USB Generic / Nokia USB Generic][Stopped/Manual Start]
  <system32\drivers\nmwcdc.sys><Nokia>
[Nokia USB Modem / Nokia USB Modem][Stopped/Manual Start]
  <system32\drivers\nmwcdcm.sys><Nokia>
[Nokia USB Phone Parent / Nokia USB Phone Parent][Stopped/Manual Start]
  <system32\drivers\nmwcd.sys><Nokia>
[NtMtlFax / NtMtlFax][Stopped/Manual Start]
  <system32\DRIVERS\NtMtlFax.sys><Smart Link>
[NTSIM / NTSIM][Stopped/Manual Start]
  <\??\D:\WINDOWS\system32\ntsim.sys><VIA Technologies, Inc.>
[Protector / Protector][Running/System Start]
  <system32\drivers\Protector.sys><N/A>
[ProtectorA / ProtectorA][Running/System Start]
  <\??\D:\WINDOWS\system32\drivers\ProtectorA.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[Quantum DeepScanner Servers / quxxxserv][Running/System Start]
  <\??\D:\WINDOWS\system32\drivers\quxxxrv.sys><360安全中心>
[qutmipc / qutmipc][Running/System Start]
  <\??\D:\WINDOWS\system32\drivers\qutmipc.sys><360安全中心>
[RecAgent / RecAgent][Stopped/Manual Start]
  <\??\D:\WINDOWS\system32\DRIVERS\RecAgent.sys><Smart Link>
[SafeBoxKrnl / SafeBoxKrnl][Stopped/System Start]
  <\??\D:\WINDOWS\system32\Drivers\safeboxkrnl.sys><N/A>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SmartLink AMR_PCI Driver / Slntamr][Running/Manual Start]
  <system32\DRIVERS\slntamr.sys><Smart Link>
[SlNtHal / SlNtHal][Stopped/Manual Start]
  <system32\DRIVERS\Slnthal.sys><Smart Link>
[SlWdmSup / SlWdmSup][Running/Manual Start]
  <system32\DRIVERS\SlWdmSup.sys><Smart Link>
[Srv / Srv][Running/Manual Start]
  <system32\DRIVERS\srv.sys><Microsoft Corporation>
[TCP/IP Protocol Driver / Tcpip][Running/System Start]
  <system32\DRIVERS\tcpip.sys><Microsoft Corporation>
[Intel(R) PRO/Wireless 7100 Adapter 驱动程序 / w70n51][Stopped/Manual Start]
  <system32\DRIVERS\w70n51.sys><Intel? Corporation>
[Intel(R) Graphics Platform (SoftBIOS) Driver / {6080A529-897E-4629-A488-ABA0C29B635E}][Running/Manual Start]
  <system32\drivers\ialmsbw.sys><Intel Corporation>
[Intel(R) Graphics Chipset (KCH) Driver / {D31A0762-0CEB-444e-ACFF-B049A1F6FE91}][Running/Manual Start]
  <system32\drivers\ialmkchw.sys><Intel Corporation>
gototop
 

回复:双击“我的电脑”图标,1分钟后才打开

==================================
正在运行的进程
[PID: 840 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 940 / SYSTEM][\??\D:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
[PID: 964 / SYSTEM][\??\D:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
    [D:\WINDOWS\system32\klogon.dll]  [Kaspersky Lab, 7.0.0.125]
[PID: 1008 / SYSTEM][D:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 1020 / SYSTEM][D:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
    [D:\WINDOWS\system32\schannel.dll]  [Microsoft Corporation, 5.1.2600.3487 (xpsp_sp2_gdr.081204-1905)]
[PID: 1180 / SYSTEM][D:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 1268 / NETWORK SERVICE][D:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 1308 / SYSTEM][D:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
    [D:\WINDOWS\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
    [D:\WINDOWS\System32\SCHANNEL.dll]  [Microsoft Corporation, 5.1.2600.3487 (xpsp_sp2_gdr.081204-1905)]
    [D:\WINDOWS\system32\urlmon.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
[PID: 1476 / NETWORK SERVICE][D:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 1532 / LOCAL SERVICE][D:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
    [D:\WINDOWS\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
[PID: 1796 / SYSTEM][D:\WINDOWS\system32\slserv.exe]  [Smart Link, 3.80.01MC15]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
[PID: 400 / zhaodatian][D:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
    [D:\WINDOWS\system32\BROWSEUI.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
    [D:\WINDOWS\system32\SHDOCVW.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
    [D:\WINDOWS\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
    [D:\WINDOWS\system32\urlmon.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
    [D:\迅雷  五\ComDlls\xunleiBHO_Now.dll]  [Thunder Networking Technologies,LTD, 5, 0, 8, 120]
    [D:\迅雷  五\Components\ResWorker\DsBho_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 20]
    [D:\迅雷  五\Components\ResWorker\DataProcessor_00.dll]  [Thunder Networking Technologies,LTD, 1, 0, 0, 16]
    [D:\迅雷  五\ComDlls\TDAtOnce_Now.dll]  [Thunder Networking Technologies,LTD, 1.0.5.34]
    [D:\WINDOWS\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
    [D:\WINDOWS\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
    [D:\Program Files\360\360Safe\safemon\safemon.dll]  [360.cn, 6, 3, 1, 1018]
    [D:\WINDOWS\system32\wmvcore.dll]  [Microsoft Corporation, 9.00.00.3268 (xpsp_sp2_qfe.081107-1345)]
    [D:\WINDOWS\system32\msdmo.dll]  [, ]
    [D:\WINDOWS\system32\igfxpph.dll]  [Intel Corporation, 3.0.0.2172]
    [D:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.2172]
    [D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ShellEx.dll]  [Kaspersky Lab, 7.0.0.125]
[PID: 408 / LOCAL SERVICE][D:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 884 / zhaodatian][D:\WINDOWS\system32\wscntfy.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 856 / SYSTEM][D:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 4636 / zhaodatian][D:\WINDOWS\system32\taskmgr.exe]  [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
[PID: 3000 / zhaodatian][D:\SSM系统监控器\SRENG\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.2.1321]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
[PID: 3008 / zhaodatian][D:\SSM系统监控器\SRENG\SRE2d498061.EXE]  [Smallfrogs Studio, 2.8.2.1321]
    [D:\WINDOWS\system32\SHLWAPI.dll]  [Microsoft Corporation, 6.00.2900.3653 (xpsp_sp2_gdr.091207-1450)]
    [D:\WINDOWS\system32\Secur32.dll]  [Microsoft Corporation, 5.1.2600.3518 (xpsp_sp2_gdr.090203-1250)]
    [D:\WINDOWS\system32\WININET.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]
    [D:\WINDOWS\system32\urlmon.dll]  [Microsoft Corporation, 6.00.2900.3660 (xpsp_sp2_gdr.091216-1517)]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["D:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
进程特权扫描
N/A

==================================
计划任务
N/A

==================================
Windows 安全更新检查
N/A

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]
gototop
 

回复:双击“我的电脑”图标,1分钟后才打开

谢谢楼上。马上去办,
另外,扫描附件已经上传
gototop
 
1   1  /  1  页   跳转
页面顶部
Powered by Discuz!NT