nbservice.exe_移动硬盘文件夹变成exe_win7中的exe全都打不开

电脑突然比较卡，调任务管理器发现cpu使用率变得n高，开着网页和QQ得情况下常常70%+，用优化大师的

进程管理发现里面的svchost.exe占用大量的cpu

搞得看网页有时候都卡卡的，而且cpu的跳动也比较大幅度，不知道怎么办，大家帮帮忙解决，谢谢！！！

附扫描日志2009-08-14,14:14:20

System Repair Engineer 2.7.1.1261

Smallfrogs ()

Windows Vista Home Basic Edition Service Pack 2 (Build 6002) - 管理权限用户 - 完整功能

以下内容被选中：

所有的启动项目（包括注册表、启动文件夹、服务等）

浏览器加载项

正在运行的进程（包括进程模块信息）

文件关联

Winsock 提供者

Autorun.inf

HOSTS 文件

进程特权扫描

计划任务

API HOOK

隐藏进程

启动项目

注册表

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]

<load><>[N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

<Windows Defender><%ProgramFiles%\Windows Defender\MSASCui.exe -hide>[(Verified)Microsoft Windows]

<Broadcom Wireless Manager UI><C:\Windows\system32\WLTRAY.exe>[Dell Inc.]

<360Safetray><"D:\Program Files\360\360Safe\safemon\360tray.exe" /start>[(Verified)Qizhi Software (beijing) Co. Ltd]

<mcagent_exe><"C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey>[(Verified)"McAfee, Inc."]

<SigmatelSysTrayApp><%ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe>[(Verified)Microsoft Windows Hardware Compatibility Publisher]

<NvCplDaemon><RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup>[(Verified)Microsoft Windows Hardware Compatibility Publisher]

<NvMediaCenter><RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit>[(Verified)Microsoft Windows Hardware Compatibility Publisher]

<NVHotkey><rundll32.exe C:\Windows\system32\nvHotkey.dll,Start>[(Verified)Microsoft Windows Hardware Compatibility Publisher]

<bacstray><C:\Program Files\Broadcom\BACS\BacsTray.exe>[(Verified)Broadcom Corporation]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

<shell><explorer.exe>[(Verified)Microsoft Windows]

<Userinit><C:\Windows\system32\userinit.exe,>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

<AppInit_DLLs><>[N/A]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

<WebCheck><C:\Windows\System32\webcheck.dll>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist]

<WinlogonNotify: GoToAssist><C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll>[(Verified)Citri]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]

<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]

<Microsoft Windows Media Player><C:\Windows\system32\unregmp2.exe /ShowWMP>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]

<Internet Explorer><C:\Windows\system32\ie4uinit.exe -UserIconConfig>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]

<Browser Customizations><"C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]

<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>[File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]

<Microsoft Windows Mail 7><"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE>[File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]

<Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-E-11cf-8B85-00AA005B4340}]

<Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-E-11cf-8B85-00AA005B4383}]

<Internet Explorer><C:\Windows\system32\ie4uinit.exe -BaseSettings>[(Verified)Microsoft Windows]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]

<N/A><C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install>[(Verified)Microsoft Windows]

[HKEY_CURRENT_USER\Control Panel\Desktop]

<SCRNSE.EXE><C:\Windows\system32\ssBranded.scr>[(Verified)Microsoft Windows]

==================================

启动文件夹

[Digital Line Detect]

<C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk --> C:\PROGRA~1\DIGITA~1\DLG.exe [Avanquest Software ]><N>

[Digital Line Detect]

<C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Digital Line Detect.lnk --> C:\PROGRA~1\DIGITA~1\DLG.exe [Avanquest Software ]><N>

==================================

服务

[Andrea ST Filters Service / AESTFilters][Running/Auto Start]

<C:\Windows\system32\aestsrv.exe><Andrea Electronics Corporation>

[##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## / Bonjour Service][Running/Auto Start]

<"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Computer, Inc.>

[FLEXnet Licensing Service / FLEXnet Licensing Service][Stopped/Manual Start]

<"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"><Macrovision Europe Ltd.>

[GoToAssist / GoToAssist][Stopped/Manual Start]

<"C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe" Start=service><Citrix Online, a division of Citrix Systems, Inc.>

[Google Software Updater / gusvc][Stopped/Manual Start]

<><(File is missing)>

[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]

<"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>

[Kingsoft Basic Service / kaccore][Stopped/Manual Start]

<"C:\Program Files\Kingsoft\KAC\Service\kaccore.exe"><Kingsoft Corporation>

[McAfee Services / mcmscsvc][Running/Auto Start]

<C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe><McAfee, Inc.>

[McAfee Network Agent / McNASvc][Running/Auto Start]

<"c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe"><McAfee, Inc.>

[McAfee Scanner / McODS][Running/Auto Start]

<C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe><McAfee, Inc.>

[McAfee Proxy Service / McProxy][Running/Auto Start]

<c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe><McAfee, Inc.>

[McAfee Real-time Scanner / McShield][Running/Auto Start]

<C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe><McAfee, Inc.>

[McAfee SystemGuards / McSysmon][Running/Manual Start]

<C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe><McAfee, Inc.>

[McAfee Personal Firewall Service / MpfService][Running/Auto Start]

<"C:\Program Files\McAfee\MPF\MPFSrv.exe"><McAfee, Inc.>

[McAfee Anti-Spam Service / MSK80Service][Running/Auto Start]

<"C:\Program Files\McAfee\MSK\MskSrver.exe"><McAfee, Inc.>

[NBService / NBService][Stopped/Manual Start]

<D:\Program Files\nero\Nero 7\Nero BackItUp\NBService.exe><Nero AG>

[NVIDIA Display Driver Service / nvsvc][Running/Auto Start]

<C:\Windows\system32\nvvsvc.exe><NVIDIA Corporation>

[PnkBstrA / PnkBstrA][Stopped/Auto Start]

<><(File is missing)>

[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]

<"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"><N/A>

[SupportSoft Sprocket Service (dellsupportcenter) / sprtsvc_dellsupportcenter][Stopped/Manual Start]

<C:\Program Files\Dell Support Center\bin\sprtsvc.exe /service /p dellsupportcenter><SupportSoft, Inc.>

[SigmaTel Audio Service / STacSV][Running/Auto Start]

<C:\Windows\system32\STacSV.exe><IDT, Inc.>

[stllssvr / stllssvr][Stopped/Manual Start]

<"C:\Program Files\Common Files\SureThing Shared\stllssvr.exe"><MicroVision Development, Inc.>

[VMAuthdService / VMAuthdService][Stopped/Disabled]

<><(File is missing)>

[VMnetDHCP / VMnetDHCP][Stopped/Auto Start]

<C:\Windows\system32\vmnetdhcp.exe><VMware, Inc.>

[vmount2 / vmount2][Stopped/Auto Start]

<><(File is missing)>

[Dell Wireless WLAN Tray Service / wltrysvc][Running/Auto Start]

<C:\Windows\System32\WLTRYSVC.EXE C:\Windows\System32\bcmwltry.exe><N/A>

[XAudioService / XAudioService][Running/Auto Start]

<C:\Windows\system32\DRIVERS\xaudio.exe><Conexant Systems, Inc.>

==================================

驱动程序

[360SelfProtection / 360SelfProtection][Running/System Start]

<system32\drivers\360SelfProtection.sys><360安全中心>

[adp94xx / adp94xx][Stopped/Disabled]

<\SystemRoot\system32\drivers\adp94xx.sys><Adaptec, Inc.>

[adpahci / adpahci][Stopped/Disabled]

<\SystemRoot\system32\drivers\adpahci.sys><Adaptec, Inc.>

[adpu160m / adpu160m][Stopped/Disabled]

<\SystemRoot\system32\drivers\adpu160m.sys><Adaptec, Inc.>

[adpu320 / adpu320][Stopped/Disabled]

<\SystemRoot\system32\drivers\adpu320.sys><Adaptec, Inc.>

[aic78xx / aic78xx][Stopped/Disabled]

<\SystemRoot\system32\drivers\djsvs.sys><Adaptec, Inc.>

[aliide / aliide][Stopped/Disabled]

<\SystemRoot\system32\drivers\aliide.sys><Acer Laboratories Inc.>

[Alps Touch Pad Filter Driver for Windows 2000/XP/Vista / ApfiltrService][Running/Manual Start]

<system32\DRIVERS\Apfiltr.sys><Alps Electric Co., Ltd.>

[arc / arc][Stopped/Disabled]

<\SystemRoot\system32\drivers\arc.sys><Adaptec, Inc.>

[arcsas / arcsas][Stopped/Disabled]

<\SystemRoot\system32\drivers\arcsas.sys><Adaptec, Inc.>

[Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 / b57nd60x][Running/Manual Start]

<system32\DRIVERS\b57nd60x.sys><Broadcom Corporation>

[BCM42RLY / BCM42RLY][Stopped/Manual Start]

<system32\drivers\BCM42RLY.sys><N/A>

[DELL 无线网卡驱动程序 / BCM43XX][Running/Manual Start]

<system32\DRIVERS\bcmwl6.sys><Broadcom Corp.>

[BFSDRV / BFSDRV][Running/Manual Start]

<\??\C:\Windows\system32\drivers\bfsdrv.sys><360安全中心>

[BREGDRV / BREGDRV][Stopped/Manual Start]

<\??\C:\Windows\system32\drivers\bregdrv.sys><360安全中心>

[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]

<\SystemRoot\system32\drivers\brfiltlo.sys><Brother Industries, Ltd.>

[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]

<\SystemRoot\system32\drivers\brfiltup.sys><Brother Industries, Ltd.>

[Brother MFC Serial Port Intece Driver (WDM) / Brserid][Stopped/Disabled]

<\SystemRoot\system32\drivers\brserid.sys><Brother Industries Ltd.>

[Brother WDM Serial driver / BrSerWdm][Stopped/Disabled]

<\SystemRoot\system32\drivers\brserwdm.sys><Brother Industries Ltd.>

[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled]

<\SystemRoot\system32\drivers\brusbmdm.sys><Brother Industries Ltd.>

[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]

<\SystemRoot\system32\drivers\brusbser.sys><Brother Industries Ltd.>

[cmdide / cmdide][Stopped/Disabled]

<\SystemRoot\system32\drivers\cmdide.sys><CMD Technology, Inc.>

[Intel(R) PRO/1000 PCI Express Network Connection Driver / e1express][Stopped/Manual Start]

<system32\DRIVERS\e1e6032.sys><Intel Corporation>

[Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start]

<system32\DRIVERS\E1G60I32.sys><Intel Corporation>

[EagleNT / EagleNT][Stopped/Manual Start]

<\??\C:\Windows\system32\drivers\EagleNT.sys><N/A>

[EfiSystemMon / EfiMon][Running/System Start]

<System32\Drivers\Efimon.sys><奇虎网>

[elxstor / elxstor][Stopped/Disabled]

<\SystemRoot\system32\drivers\elxstor.sys><Emulex>

[VMware hcmon / hcmon][Running/Auto Start]

<\??\C:\Windows\system32\Drivers\hcmon.sys><VMware, Inc.>

[HookPort / HookPort][Running/Boot Start]

<\SystemRoot\System32\Drivers\Hookport.sys><360安全中心>

[HpCISSs / HpCISSs][Stopped/Disabled]

<\SystemRoot\system32\drivers\hpcisss.sys><Hewlett-Packard Company>

[HSF_DPV / HSF_DPV][Running/Manual Start]

<system32\DRIVERS\HSX_DPV.sys><Conexant Systems, Inc.>

[HSXHWAZL / HSXHWAZL][Running/Manual Start]

<system32\DRIVERS\HSXHWAZL.sys><Conexant Systems, Inc.>

[Intel AHCI Controller / iaStor][Running/Boot Start]

<\SystemRoot\system32\drivers\iastor.sys><Intel Corporation>

[Intel RAID Controller Vista / iaStorV][Running/Boot Start]

<\SystemRoot\system32\drivers\iastorv.sys><Intel Corporation>

[iirsp / iirsp][Stopped/Disabled]

<\SystemRoot\system32\drivers\iirsp.sys><Intel Corp./ICP vortex GmbH>

[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]

<system32\DRIVERS\ipinip.sys><N/A>

[ITEATAPI_Service_Install / iteatapi][Stopped/Disabled]

<\SystemRoot\system32\drivers\iteatapi.sys><Integrated Technology Express, Inc.>

[ITERAID_Service_Install / iteraid][Stopped/Disabled]

<\SystemRoot\system32\drivers\iteraid.sys><Integrated Technology Express, Inc.>

[LSI_FC / LSI_FC][Stopped/Disabled]

<\SystemRoot\system32\drivers\lsi_fc.sys><LSI Logic>

[LSI_SAS / LSI_SAS][Stopped/Disabled]

<\SystemRoot\system32\drivers\lsi_sas.sys><LSI Logic>

[LSI_SCSI / LSI_SCSI][Stopped/Disabled]

<\SystemRoot\system32\drivers\lsi_scsi.sys><LSI Logic>

[mdmxsdk / mdmxsdk][Running/Auto Start]

<system32\DRIVERS\mdmxsdk.sys><Conexant>

[megasas / megasas][Stopped/Disabled]

<\SystemRoot\system32\drivers\megasas.sys><LSI Corporation>

[MegaSR / MegaSR][Stopped/Disabled]

<\SystemRoot\system32\drivers\megasr.sys><LSI Corporation, Inc.>

[McAfee Inc. mfeavfk / mfeavfk][Running/Manual Start]

<system32\drivers\mfeavfk.sys><McAfee, Inc.>

[McAfee Inc. mfebopk / mfebopk][Running/Manual Start]

<system32\drivers\mfebopk.sys><McAfee, Inc.>

[McAfee Inc. mfehidk / mfehidk][Running/System Start]

<system32\drivers\mfehidk.sys><McAfee, Inc.>

[McAfee Inc. mferkdk / mferkdk][Stopped/Manual Start]

<system32\drivers\mferkdk.sys><McAfee, Inc.>

[McAfee Inc. mfesmfk / mfesmfk][Running/Manual Start]

<system32\drivers\mfesmfk.sys><McAfee, Inc.>

[Motorola USB CDC ACM Driver / motmodem][Stopped/Manual Start]

<system32\DRIVERS\motmodem.sys><Motorola>

[MPFP / MPFP][Running/System Start]

<System32\Drivers\Mpfp.sys><McAfee, Inc.>

[Mraid35x / Mraid35x][Stopped/Disabled]

<\SystemRoot\system32\drivers\mraid35x.sys><LSI Logic Corporation>

[nfrd960 / nfrd960][Stopped/Disabled]

<\SystemRoot\system32\drivers\nfrd960.sys><IBM Corporation>

[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]

<system32\drivers\npf.sys><CACE Technologies>

[N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled]

<\SystemRoot\system32\drivers\ntrigdigi.sys><N-trig Innovative Technologies>

[nvlddmkm / nvlddmkm][Running/Manual Start]

<system32\DRIVERS\nvlddmkm.sys><NVIDIA Corporation>

[NVIDIA nForce RAID Driver / nvraid][Stopped/Disabled]

<\SystemRoot\system32\drivers\nvraid.sys><NVIDIA Corporation>

[nvstor / nvstor][Stopped/Disabled]

<\SystemRoot\system32\drivers\nvstor.sys><NVIDIA Corporation>

[IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start]

<system32\DRIVERS\nwlnkflt.sys><N/A>

[IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start]

<system32\DRIVERS\nwlnkfwd.sys><N/A>

[p2pfilter / p2pfilter][Stopped/Manual Start]

<\??\D:\Program Files\p2pover\p2pfilter.sys><N/A>

[PxHelp20 / PxHelp20][Running/Boot Start]

<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>

[QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled]

<\SystemRoot\system32\drivers\ql2300.sys><QLogic Corporation>

[QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled]

<\SystemRoot\system32\drivers\ql40xx.sys><QLogic Corporation>

[R300 / R300][Stopped/Manual Start]

<system32\DRIVERS\atikmdag.sys><ATI Technologies Inc.>

[rimmptsk / rimmptsk][Running/Auto Start]

<system32\DRIVERS\rimmptsk.sys><REDC>

[rimsptsk / rimsptsk][Running/Auto Start]

<system32\DRIVERS\rimsptsk.sys><REDC>

[Ricoh xD-Picture Card Driver / rismxdp][Running/Auto Start]

<system32\DRIVERS\rixdptsk.sys><REDC>

[SiSRaid4 / SiSRaid4][Stopped/Disabled]

<\SystemRoot\system32\drivers\sisraid4.sys><Silicon Integrated Systems>

[sptd / sptd][Running/Boot Start]

<\SystemRoot\System32\Drivers\sptd.sys><N/A>

[SRS Labs Audio Sandbox (WDM) / SRS_SSCFilter][Stopped/Manual Start]

<system32\drivers\srs_sscfilter_i386.sys><>

[SigmaTel High Definition Audio CODEC / STHDA][Running/Manual Start]

<system32\drivers\stwrt.sys><IDT, Inc.>

[Symc8xx / Symc8xx][Stopped/Disabled]

<\SystemRoot\system32\drivers\symc8xx.sys><LSI Logic>

[Sym_hi / Sym_hi][Stopped/Disabled]

<\SystemRoot\system32\drivers\sym_hi.sys><LSI Logic>

[Sym_u3 / Sym_u3][Stopped/Disabled]

<\SystemRoot\system32\drivers\sym_u3.sys><LSI Logic>

[tcphoc / tcphoc][Stopped/Manual Start]

<\??\D:\Program Files\download\Thunder Network\Program\tcphoc.sys><N/A>

[uliahci / uliahci][Stopped/Disabled]

<\SystemRoot\system32\drivers\uliahci.sys><ULi Electronics Inc.>

[UlSata / UlSata][Stopped/Disabled]

<\SystemRoot\system32\drivers\ulsata.sys><Promise Technology, Inc.>

[ulsata2 / ulsata2][Stopped/Disabled]

<\SystemRoot\system32\drivers\ulsata2.sys><Promise Technology, Inc.>

[VirtualBox Service / VBoxDrv][Running/System Start]

<system32\DRIVERS\VBoxDrv.sys><N/A>

[VirtualBox USB Monitor Driver / VBoxUSBMon][Running/System Start]

<system32\DRIVERS\VBoxUSBMon.sys><innotek GmbH>

[viaide / viaide][Stopped/Disabled]

<\SystemRoot\system32\drivers\viaide.sys><VIA Technologies, Inc.>

[VMware Virtual Ethernet Adapter Driver / VMnetAdapter][Running/Manual Start]

<system32\DRIVERS\vmnetadapter.sys><VMware, Inc.>

[VMware Bridge Protocol / VMnetBridge][Running/Auto Start]

<system32\DRIVERS\vmnetbridge.sys><VMware, Inc.>

[VMware Network Application Intece / VMnetuserif][Running/Auto Start]

<\??\C:\Windows\system32\drivers\vmnetuserif.sys><VMware, Inc.>

[VMware vmx86 / vmx86][Running/Auto Start]

<\??\C:\Windows\system32\Drivers\vmx86.sys><VMware, Inc.>

[vsmraid / vsmraid][Stopped/Disabled]

<\SystemRoot\system32\drivers\vsmraid.sys><VIA Technologies Inc.,Ltd>

[winachsf / winachsf][Running/Manual Start]

<system32\DRIVERS\HSX_CNXT.sys><Conexant Systems, Inc.>

[XAudio / XAudio][Running/Auto Start]

<system32\DRIVERS\xaudio.sys><Conexant Systems, Inc.>

==================================

浏览器加载项

[ThunderAtOnce Class]

{01443AEC-0FD1-40fd-9C87-E93D1494C233} <D:\Program Files\download\Thunder Network\ComDlls\TDAtOnce_Now.dll, (Signed) 深圳市迅雷网络技术>

[Adobe PDF Reader Link Helper]

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>

[McAfee Phishing Filter]

{27B4851A-3207-45A2-B947-BE8AFE6163AB} <c:\PROGRA~1\mcafee\msk\mskapbho.dll, (Signed) >

[ed2k Dectector]

{56746166-B4-45f4-ADCE-52EAC919BB79} <D:\Program Files\download\Vagaa\Tulei5.dll, eMule Network>

[scriptproxy]

{7DB2D5A0-7241-4E79-B68D-6309F01C5231} <c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll, (Signed) McAfee, Inc.>

[Windows Live 登录帮助程序]

{9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>

[CBBrowerBuddy Class]

[SafeMon Class]

{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.CN>

[浩方电竞平台]

{0A155D3C-68E2-4215-A47A-E800A446447A} <d:\Program Files\Holdfast\platform 5.0\gameclient.exe, (Signed) 上海浩方信息技术>

[信息检索(&R)]

{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL, (Signed) Microsoft Corporation>

[CBBrowerBuddy Class]

[EditCtrl Class]

{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\Windows\system32\aliedit\aliedit.dll, (Signed) >

[PowerCommit Control]

{BEEE2807-1709-4184-A05D-1B2DE01EE4CF} <, >

[ThunderAtOnce Class]

{01443AEC-0FD1-40FD-9C87-E93D1494C233} <D:\Program Files\download\Thunder Network\ComDlls\TDAtOnce_Now.dll, (Signed) 深圳市迅雷网络技术>

[Adobe PDF Reader Link Helper]

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>

[]

{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <, >

[]

{0A155D3C-68E2-4215-A47A-E800A446447A} <, >

[]

{116BA71C-8187-4F15-9A1F-C9D6289155D1} <, >

[HTML Document]

{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\Windows\system32\mshtml.dll, (Signed) Microsoft Corporation>

[McAfee Phishing Filter]

{27B4851A-3207-45A2-B947-BE8AFE6163AB} <c:\PROGRA~1\mcafee\msk\mskapbho.dll, (Signed) >

[]

{2974c985-8151-4de5-b23c-b875f0a8522f} <, >

[]

{30FA9641-9CFE-4D71-A3AA-DF8B6FA02FCC} <, >

[]

{377C180E-6F0E-4D4C-980F-F45BD3D40CF4} <, >

[XML Document]

{48123B-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>

[Thunder Agent Class]

{485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <D:\Program Files\download\Thunder Network\ComDlls\ThunderAgent5.9.5.989.dll, (Signed) 深圳市迅雷网络技术>

[EditCtrl Class]

{488A4255-3236-44B3-8F27-FA1AECAA8844} <C:\Windows\system32\aliedit\aliedit.dll, (Signed) >

[]

{4990272A-0655-4D80-90A7-C18D0FF7A4A9} <, >

[ed2k Dectector]

{56746166-B4-45F4-ADCE-52EAC919BB79} <D:\Program Files\download\Vagaa\Tulei5.dll, eMule Network>

[XMP Class]

{6483F145-A768-41-AACC-52D4D7845851} <, >

[]

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <, >

[MediaComm Class]

{7670648D-461B-42AF-BDFE-46D26AF5EFF2} <D:\Program Files\download\Thunder Network\Components\InMedia\MediaAddin.dll, (Signed) 深圳市迅雷网络技术>

[scriptproxy]

{7DB2D5A0-7241-4E79-B68D-6309F01C5231} <c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll, (Signed) McAfee, Inc.>

[XDownloaddManager Class]

{802F530B-A8F6-4631-AE49-6BACAAC6373E} <D:\Program Files\download\Thunder Network\ComDlls\xunleiBHO_Now.dll, (Signed) 深圳市迅雷网络技术>

[360SafeLive]

{87515F61-A66C-4319-A0E0-D416CB8059E3} <D:\Program Files\360\360Safe\live.dll, (Signed) 360.cn>

[Microsoft Web Browser]

{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation>

[Thunder Browser Helper]

{889D2FEB-5411-4565-8998-1DD2C5261283} <D:\Program Files\download\Thunder Network\ComDlls\xunleiBHO_Now.dll, (Signed) 深圳市迅雷网络技术>

[XML HTTP 5.0]

{88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>

[]

{8AD9C840-044E-11D1-B3E9-00805F499D93} <, >

[Windows Live 登录帮助程序]

{9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>

[]

{92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >

[OFrameObject Class]

{9701758C-4373-482E-B13C-776C048EC890} <, >

[]

{97F14F61-B206-4F9E-B6A4-318E80B13440} <, >

[]

{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} <, >

[]

{998A88A0-A355-809B-831C-B83A80000991} <, >

[]

{998A88A0-A355-809B-831C-B83A80000992} <, >

[VersionDetector Class]

{9EFF1953-9694-47B1-AEF6-B2A3FE8BFE9B} <C:\Program Files\Common Files\Thunder Network\KanKan\vd.1.1.0.22.(46).dll, (Signed) 深圳市迅雷网络技术>

[CBBrowerBuddy Class]

[]

{AA58ED58-01DD-4D91-8333-CF10577473F7} <, >

[]

{ACACC6EB-1FBA-4E13-A729-53AEB2DF54F8} <, >

[]

{ACDC15CD-B675-4C7C-86E9-CA92F2DF2896} <, >

[]

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <, >

[]

{B070D3E3-FEC0-47D9-8E8A-99D4EEB3D3B0} <, >

[SafeMon Class]

{B69F34DD-F0F9-42DC-9EDD-957187DA688D} <D:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.CN>

[PowerCommit Control]

{BEEE2807-1709-4184-A05D-1B2DE01EE4CF} <, >

[]

{C661F36D-DF85-4EF4-83C7-E107B83D04B1} <, >

[]

{C92AE615-4D46-4489-96FA-C5D6A38B3AB1} <, >

[]

{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} <, >

[]

{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} <, >

[Microsoft Url Search Hook]

{CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation>

[Shockwave Flash Object]

{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>

[]

{D5DC8911-DCD3-49CE-AE95-8AD512F2D280} <, >

[]

{DBC80044-A445-435B-BC74-9C25C1C588A9} <, >

[]

{E787FD25-8D7C-4693-AE67-9406BC6E22DF} <, >

[XML HTTP Request]

{ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>

[]

{F3E70CEA-956E-49CC-B444-73AFE593AD7F} <, >

[XML HTTP 3.0]

{F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>

[XML HTTP]

{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>

[&V使用Vagaa哇嘎下载]

<D:\Program Files\download\Vagaa\Data\vg.htm, N/A>

<d:\Program Files\nEO iMAGING\NeoOpenNeo.htm, N/A>

[使用华之城小说下载]

<C:\Windows\system32\getflbookurl.htm, N/A>

[使用迅雷下载]

<D:\Program Files\download\Thunder Network\Program\GetUrl.htm, N/A>

[使用迅雷下载全部链接]

<D:\Program Files\download\Thunder Network\Program\GetAllUrl.htm, N/A>

[导出到 Microsoft Excel(&X)]

<res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A>

[导出到 Microsoft Office Excel(&X)]

<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>

[添加到QQ表情]

<D:\Program Files\Tencent\QQ\Bin\AddEmotion.htm, N/A>

==================================

正在运行的进程

[PID: 440 / SYSTEM][\SystemRoot\System32\smss.exe][(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)]

[PID: 552 / SYSTEM][C:\Windows\system32\csrss.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 604 / SYSTEM][C:\Windows\system32\wininit.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 612 / SYSTEM][C:\Windows\system32\csrss.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 648 / SYSTEM][C:\Windows\system32\services.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 664 / SYSTEM][C:\Windows\system32\lsass.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 672 / SYSTEM][C:\Windows\system32\lsm.exe][(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]

[PID: 824 / SYSTEM][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 880 / SYSTEM][C:\Windows\system32\nvvsvc.exe][NVIDIA Corporation, 7.15.11.7597]

[PID: 892 / SYSTEM][C:\Windows\system32\winlogon.exe][(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]

[PID: 936 / NETWORK SERVICE][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 972 / SYSTEM][C:\Windows\System32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 1056 / LOCAL SERVICE][C:\Windows\System32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[C:\Windows\system32\stapo.dll][IDT, Inc., 1.0.5614.0nd654 cp1]

[C:\Windows\system32\ctapo32.dll][Creative Technology Ltd., 1.0.0.195]

[PID: 1088 / SYSTEM][C:\Windows\System32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 1156 / SYSTEM][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 1264 / SYSTEM][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 1288 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe][(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)]

[PID: 1340 / LOCAL SERVICE][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 1396 / SYSTEM][C:\Windows\system32\rundll32.exe][Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\NVSVC.DLL][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\nvapi.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 1560 / NETWORK SERVICE][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 1728 / SYSTEM][C:\Windows\System32\WLTRYSVC.EXE][N/A, ]

[PID: 1744 / SYSTEM][C:\Windows\System32\bcmwltry.exe][Dell Inc., 4.170.25.12]

[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\3aac7b97549d4ccf0c7dca3d1777f9b4\mscorlib.ni.dll][Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]

[C:\Windows\System32\bcmwlrmt.dll][N/A, ]

[C:\Windows\System32\wltrynt.dll][Broadcom Corporation, 4.170.25.12]

[C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\assembly\NativeImages_v2.0.50727_32\System\34942db56010e4225825bfae8a27559f\System.ni.dll][Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]

[PID: 1768 / SYSTEM][C:\Windows\system32\WLANExt.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\System32\bcmihvsrv.dll][Dell Inc., 4.170.25.17]

[PID: 1872 / SYSTEM][C:\Windows\System32\spoolsv.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\spool\PRTPROCS\W32X86\mdippr.dll][Microsoft Corporation, 11.3.1897.0]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 1908 / LOCAL SERVICE][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 808 / DELL][C:\Windows\system32\Dwm.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\nvd3dum.dll][NVIDIA Corporation, 7.15.11.7597]

[PID: 1500 / DELL][C:\Windows\Explorer.EXE][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[C:\Windows\system32\nvcpl.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\nvapi.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\BCMWLCPL.CPL][Dell Inc., 4.170.25.12]

[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\3aac7b97549d4ccf0c7dca3d1777f9b4\mscorlib.ni.dll][Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]

[C:\Program Files\Common Files\Ahead\Lib\MediaLibraryNSE.dll][Nero AG, 1, 5, 0, 18]

[C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll][Microsoft Corporation, 7.10.3052.4]

[C:\Program Files\Common Files\Ahead\Lib\MFC71U.DLL][Microsoft Corporation, 7.10.3077.0]

[C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll][Microsoft Corporation, 7.10.3077.0]

[D:\Program Files\nero\Nero 7\Nero BackItUp\NBShell.dll][Nero AG, 2, 6, 6, 0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mcctxmnu.dll][McAfee, Inc., 13,3,127,0]

[C:\Program Files\WinRAR\rarext.dll][, ]

[d:\Program Files\365门神\ShellExt365.dll][TODO: <公司名>, 1.0.0.1]

[PID: 244 / DELL][C:\Windows\system32\taskeng.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[C:\Windows\system32\nvapi.dll][NVIDIA Corporation, 7.15.11.7597]

[PID: 2072 / SYSTEM][C:\Windows\system32\taskeng.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 2116 / DELL][C:\Program Files\Windows Defender\MSASCui.exe][Microsoft Corporation, 1.1.1600.0]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 2152 / DELL][C:\Windows\System32\WLTRAY.EXE][Dell Inc., 4.170.25.12]

[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80CHS.DLL][Microsoft Corporation, 8.00.50727.762]

[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\3aac7b97549d4ccf0c7dca3d1777f9b4\mscorlib.ni.dll][Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[C:\Windows\System32\bcmwlrmt.dll][N/A, ]

[C:\Windows\assembly\NativeImages_v2.0.50727_32\System\34942db56010e4225825bfae8a27559f\System.ni.dll][Microsoft Corporation, 2.0.50727.4016 (NetFxQFE.050727-4000)]

[PID: 2404 / DELL][C:\Program Files\McAfee.com\Agent\mcagent.exe][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\McRes.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\2052\McLocRes.dll][McAfee, Inc., 9,3,106,0]

[C:\Program Files\McAfee\MSC\oem\105-207\Mccobres.dll][McAfee, Inc., 9,0,246,0]

[C:\PROGRA~1\McAfee\MSC\Mccobres.dll][McAfee, Inc., 9,3,106,0]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[C:\PROGRA~1\McAfee\MSC\McAltLib.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\COMMON~1\McAfee\MSC\MispLF.dll][McAfee, Inc., 9,3,114,0]

[c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_3_11~1\McUtil.dll][McAfee, Inc., 9,3,114,0]

[c:\PROGRA~1\mcafee\msc\mcuicfg.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll][McAfee, Inc., 3,3,103,0]

[c:\PROGRA~1\mcafee\msc\mcmispps.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee.com\agent\mcagntps.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mccfgpv.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcshllps.dll][McAfee, Inc., 9,3,137,0]

[PID: 2472 / DELL][C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe][IDT, Inc., 1.0.5614.0nd654 cp1]

[C:\Program Files\Sigmatel\C-Major Audio\WDM\STLang.dll][SigmaTel, Inc., 1.0.5469.0nd575 cp1]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[C:\Windows\system32\stapi32.dll][IDT, Inc., 1.0.5614.0nd654 cp1]

[PID: 2536 / DELL][C:\Windows\System32\rundll32.exe][Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\NvMcTray.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\System32\nvapi.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 2552 / DELL][C:\Windows\System32\rundll32.exe][Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\nvHotkey.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 2572 / DELL][C:\Program Files\Digital Line Detect\DLG.exe][Avanquest Software , 1, 0, 0, 2]

[C:\Program Files\Digital Line Detect\BVRPDIAG.dll][BVRP Software, 1.0]

[C:\Windows\system32\MdmXSdk.dll][Conexant, 1.0.2.012]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 2840 / SYSTEM][C:\Windows\system32\aestsrv.exe][Andrea Electronics Corporation, 1.0.32.2]

[PID: 2856 / SYSTEM][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 2892 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe][Apple Computer, Inc., 1,0,3,1]

[PID: 2928 / SYSTEM][C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe][McAfee, Inc., 13,3,127,0]

[c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_3_11~1\McUtil.dll][McAfee, Inc., 9,3,114,0]

[PID: 2972 / SYSTEM][c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe][McAfee, Inc., 3,3,104,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\escnplug.dll][McAfee, Inc., 13,3,130,0]

[C:\PROGRA~1\McAfee\VIRUSS~1\2052\EsPlgRes.dll][McAfee, Inc., 13,3,113,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\mcafee\mps\mps.dll][McAfee, Inc., 11.3.103.0]

[c:\PROGRA~1\mcafee\msk\mskpxplg.dll][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\mps\mpscfg.dll][McAfee, Inc., 11.3.103.0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll][McAfee, Inc., 3,3,103,0]

[c:\PROGRA~1\mcafee\msc\mcsubmgr\9_3_13~1\mcsubmgr.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll][McAfee, Inc., 3,3,103,0]

[C:\Program Files\McAfee\VirusScan\mvslog.dll][McAfee, Inc., 13,3,127,0]

[c:\PROGRA~1\mcafee\mps\mpsevh.dll][McAfee, Inc., 11.3.103.0]

[c:\PROGRA~1\mcafee\mps\mpsmisp.dll][McAfee, Inc., 11.3.103.0]

[c:\PROGRA~1\mcafee\msc\mcmispps.dll][McAfee, Inc., 9,3,137,0]

[PID: 3012 / SYSTEM][C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe][McAfee, Inc., VSCORE.14.0.0.423.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\LockDown.dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\mytilus3.dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\mytilus3_worker.dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\mytilus3_server.dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\RES00\McShield.dll][McAfee, Inc., VSCORE.14.0.0.423]

[C:\PROGRA~1\McAfee\VIRUSS~1\FTL.Dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\naiann.dll][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll][McAfee, Inc., 3,3,103,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mcvsps.dll][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\naiannps.dll][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll][McAfee, Inc., 3,3,103,0]

[C:\PROGRA~1\McAfee\VIRUSS~1\mvslog.dll][McAfee, Inc., 13,3,127,0]

[C:\Program Files\McAfee\VirusScan\Engine\5301.4018\mcscan32.dll][McAfee, Inc., 5.3.00]

[C:\Program Files\McAfee\VirusScan\Engine\5301.4018\mc5300up.001][McAfee, Inc., 5.3.00]

[C:\PROGRA~1\McAfee\VIRUSS~1\mfebopa.dll][McAfee, Inc., SYSCORE.14.0.0.340.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\mfehida.dll][McAfee, Inc., SYSCORE.14.0.0.340.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\mfeavfa.dll][McAfee, Inc., SYSCORE.14.0.0.340.x86]

[PID: 3084 / SYSTEM][C:\Program Files\McAfee\MPF\MPFSrv.exe][McAfee, Inc., 10.3.111.0]

[c:\PROGRA~1\COMMON~1\mcafee\HACKER~1\hwapi.dll][McAfee, Inc., 10.3.104.0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll][McAfee, Inc., 3,3,103,0]

[c:\PROGRA~1\mcafee\mpf\mc\mpfmisp.dll][McAfee, Inc., 10.3.106.0]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[C:\Program Files\McAfee\MPF\2052\L10N.DLL][McAfee, Inc., 10.3.102.0]

[c:\PROGRA~1\mcafee\msc\mcmispps.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mccfgpv.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\McRes.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\2052\McLocRes.dll][McAfee, Inc., 9,3,106,0]

[C:\Program Files\McAfee\MSC\oem\105-207\Mccobres.dll][McAfee, Inc., 9,0,246,0]

[C:\PROGRA~1\McAfee\MSC\Mccobres.dll][McAfee, Inc., 9,3,106,0]

[PID: 3244 / SYSTEM][C:\Program Files\McAfee\MSK\MskSrver.exe][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\msk\mskengn.dll][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\msk\mskwm.dll][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\msk\mskxaif.dll][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\msk\mskupd.dll][McAfee, Inc., 10.3.109.0]

[C:\Program Files\McAfee\MSK\MSKSet.dll][McAfee, Inc., 10.3.109.0]

[C:\Program Files\McAfee\MSK\masecore.dll][McAfee, Inc., 2.1.0.7825]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 3296 / NETWORK SERVICE][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 3340 / SYSTEM][C:\Windows\system32\STacSV.exe][IDT, Inc., 1.0.5614.0nd654 cp1]

[C:\Windows\system32\stapi32.dll][IDT, Inc., 1.0.5614.0nd654 cp1]

[PID: 3656 / LOCAL SERVICE][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 3700 / SYSTEM][C:\Windows\System32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[PID: 3724 / SYSTEM][C:\Windows\system32\SearchIndexer.exe][(Verified) Microsoft Corporation, 7.00.6002.18005 (lh_sp2rtm.090410-1830)]

[PID: 3800 / SYSTEM][C:\Windows\system32\DRIVERS\xaudio.exe][Conexant Systems, Inc., 1.00.00]

[PID: 4088 / SYSTEM][C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_3_11~1\McUtil.dll][McAfee, Inc., 9,3,114,0]

[C:\PROGRA~1\McAfee\MSC\McRes.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\2052\McLocRes.dll][McAfee, Inc., 9,3,106,0]

[C:\Program Files\McAfee\MSC\oem\105-207\Mccobres.dll][McAfee, Inc., 9,0,246,0]

[C:\PROGRA~1\McAfee\MSC\Mccobres.dll][McAfee, Inc., 9,3,106,0]

[C:\PROGRA~1\COMMON~1\McAfee\MSC\sqlite3.dll][McAfee, Inc., 9,3,114,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll][McAfee, Inc., 3,3,103,0]

[c:\PROGRA~1\mcafee\msc\mcmispps.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcsubmgr\9_3_13~1\mcsubmgr.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcshllps.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcmscver.dll][McAfee, Inc., 9,3,162,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mvsap.dll][McAfee, Inc., 13,3,127,0]

[C:\PROGRA~1\McAfee\VIRUSS~1\2052\vscobres.dll][McAfee, Inc., 13,3,126,0]

[c:\PROGRA~1\mcafee\mpf\mc\mpfmisp.dll][McAfee, Inc., 10.3.106.0]

[C:\Program Files\McAfee\MPF\2052\L10N.DLL][McAfee, Inc., 10.3.102.0]

[c:\PROGRA~1\mcafee\msk\mskmisp.dll][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\mps\mpsmspap.dll][McAfee, Inc., 11.3.103.0]

[C:\PROGRA~1\McAfee\MPS\2052\MpsRes.DLL][McAfee, Inc., 11.3.102.0]

[c:\PROGRA~1\mcafee\msc\mcprotpv.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcregobj\9_3_13~1\mcregobj.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\McProHlp.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcdbmgr.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mvsver.dll][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll][McAfee, Inc., 3,3,103,0]

[c:\PROGRA~1\COMMON~1\mcafee\mcproxy\proxyver.dll][McAfee, Inc., 3,3,104,0]

[c:\PROGRA~1\COMMON~1\mcafee\HACKER~1\hwapi.dll][McAfee, Inc., 10.3.104.0]

[c:\PROGRA~1\mcafee\mps\mpsver.dll][McAfee, Inc., 11.3.103.0]

[c:\PROGRA~1\mcafee\mqc\qcmisp.dll][McAfee, Inc., 9,3,102,0]

[c:\PROGRA~1\mcafee\mqc\QcLite.dll][McAfee, Inc., 9,3,102,0]

[c:\PROGRA~1\mcafee\msc\mcnmcver.dll][McAfee, Inc., 3,3,104,0]

[PID: 3632 / DELL][C:\Windows\system32\wbem\unsecapp.exe][(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)]

[PID: 1384 / SYSTEM][C:\Windows\system32\wbem\wmiprvse.exe][(Verified) Microsoft Corporation, 6.0.6002.18005 (lh_sp2rtm.090410-1830)]

[PID: 3184 / SYSTEM][C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe][McAfee, Inc., 13,3,130,0]

[c:\PROGRA~1\mcafee\msc\mcmispps.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\VIRUSS~1\mvslog.dll][McAfee, Inc., 13,3,127,0]

[C:\PROGRA~1\McAfee\VIRUSS~1\mfesmfa.dll][McAfee, Inc., SYSCORE.14.0.0.340.x86]

[C:\PROGRA~1\McAfee\VIRUSS~1\mfehida.dll][McAfee, Inc., SYSCORE.14.0.0.340.x86]

[c:\PROGRA~1\COMMON~1\mcafee\HACKER~1\hwapi.dll][McAfee, Inc., 10.3.104.0]

[c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll][McAfee, Inc., 13,3,130,0]

[PID: 3628 / SYSTEM][c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe][McAfee, Inc., 3,3,104,0]

[c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_3_11~1\McUtil.dll][McAfee, Inc., 9,3,114,0]

[c:\PROGRA~1\mcafee\msc\mcnmcsrv.dll][McAfee, Inc., 3,3,104,0]

[c:\PROGRA~1\mcafee\msc\msv.dll][McAfee, Inc., 3,3,104,0]

[C:\PROGRA~1\McAfee\MSC\McRes.dll][McAfee, Inc., 9,3,137,0]

[C:\PROGRA~1\McAfee\MSC\2052\McLocRes.dll][McAfee, Inc., 9,3,106,0]

[c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll][McAfee, Inc., 3,3,103,0]

[C:\Program Files\McAfee\MSC\oem\105-207\Mccobres.dll][McAfee, Inc., 9,0,246,0]

[C:\PROGRA~1\McAfee\MSC\Mccobres.dll][McAfee, Inc., 9,3,106,0]

[c:\PROGRA~1\mcafee\msc\mcshllps.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcsubmgr\9_3_13~1\mcsubmgr.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\COMMON~1\mcafee\mna\MCNASV~1.DLL][McAfee, Inc., 3,3,104,0]

[c:\PROGRA~1\mcafee\msc\mcnmcsps.dll][McAfee, Inc., 3,3,104,0]

[c:\PROGRA~1\mcafee\mpf\mc\mpfp.dll][McAfee, Inc., 10.3.106.0]

[c:\PROGRA~1\mcafee\msc\mcregobj\9_3_13~1\mcregobj.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\mcafee\msc\mcmismgr.dll][McAfee, Inc., 9,3,137,0]

[c:\PROGRA~1\COMMON~1\mcafee\mna\mcuj.dll][McAfee, Inc., 3,3,104,0]

[PID: 2756 / SYSTEM][C:\Windows\system32\svchost.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 2372 / DELL][C:\Program Files\Windows Media Player\wmpnscfg.exe][Microsoft Corporation, 11.0.6000.6324 (vista_rtm.061101-2205)]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 3756 / DELL][D:\Program Files\Tencent\QQ\Bin\QQ.exe][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\Common.dll][Tencent, 1, 31, 1025, 0]

[C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL][Microsoft Corporation, 8.00.50727.762]

[D:\Program Files\Tencent\QQ\Bin\KernelUtil.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\GF.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\AppUtil.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\MainFrame.dll][Tencent, 1, 31, 1025, 0]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[D:\Program Files\Tencent\QQ\Bin\IM.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\TaskTray.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\Com.Tencent.QQShow\Bin\FlashAvatarDll.dll][Tencent, 1.26.1.26]

[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOPlatform.dll][Tencent, 1.1.1.11]

[C:\Program Files\Common Files\Tencent\TXSSO\Bin\SSOCommon.DLL][Tencent, 1.1.1.3]

[D:\Program Files\Tencent\QQ\Bin\BasicCtrlDll.dll][TENCENT, 8,0,773,1801]

[D:\Program Files\Tencent\QQ\Bin\SkinMgr.dll][Tencent, 1, 31, 1025, 0]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[D:\Program Files\Tencent\QQ\Bin\AppCtrl.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\KernelMisc.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\AppMisc.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\QInterLive.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\SystemMsg.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\ChatFrame.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\GroupApp.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.snsapp\Bin\SNSApp.dll][Tencent, 1, 30, 860, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.paycenter\Bin\PayCenter.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qbar\Bin\QBar.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvipmisc\Bin\QQVipMisc.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.wenwen\Bin\WenWen.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.soso\Bin\Soso.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.NetBar\Bin\NetBar.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.paipai\Bin\PaiPai.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.wireless\Bin\Wireless.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.paipaigift\Bin\PaiPaiGift.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqshow\Bin\QQShow.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qzone\Bin\Qzone.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.audiovideo\Bin\AudioVideo.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.weather\Bin\Weather.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.vas\Bin\VAS.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.crm\Bin\CRM.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.advertisement\Bin\Advertisement.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqpet\Bin\QQPet.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqvip\Bin\QQVip.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.memo\Bin\Memo.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqgame\Bin\QQGame.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.mail\Bin\Mail.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqring\Bin\QQRing.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.today\Bin\Today.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\InformationBox.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\vqqsdl.dll][Tencent, 5, 0, 3, 24]

[D:\Program Files\Tencent\QQ\Bin\ContactInfoFrame.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.filetransfer\Bin\FileTransfer.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\MsgMgr.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Plugin\com.tencent.qqwebsite\Bin\QQWebsite.dll][Tencent, 1, 31, 1025, 0]

[c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[D:\Program Files\Tencent\QQ\Bin\LongCnn.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\ConfigCenter.dll][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\AddrSearch.dll][Tencent, 2, 3, 12, 11]

[PID: 4140 / NETWORK SERVICE][C:\Program Files\Windows Media Player\wmpnetwk.exe][Microsoft Corporation, 11.0.6000.6324 (vista_rtm.061101-2205)]

[PID: 4160 / DELL][C:\Windows\system32\Taskmgr.exe][(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[PID: 4620 / DELL][D:\Program Files\Tencent\QQ\Bin\TXPlatform.exe][Tencent, 1, 31, 1025, 0]

[D:\Program Files\Tencent\QQ\Bin\TXPFProxy.dll][Tencent, 1, 31, 1025, 0]

[PID: 5132 / DELL][D:\Program Files\TheWorld 3\TheWorld.exe][Phoenix Studio, 3, 0, 4, 8]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtAddons\ExtAddons.dll][Phoenix Studio, 1, 0, 2, 1]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtAdfilter\ExtAdfilter.dll][, 1, 0, 1, 1]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtDownload\ExtDownload.dll][Phoenix Studio, 1, 0, 2, 2]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtMinibar\ExtMinibar.dll][Phoenix Studio, 1, 0, 1, 3]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtPages\ExtPages.dll][Phoenix Studio, 1, 0, 2, 4]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtProxy\ExtProxy.dll][Lenovo, 1, 0, 0, 9]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtRssView\ExtRssView.dll][ , 1, 0, 1, 3]

[D:\PROGRA~1\THEWOR~1\Extensions\EXTScreener\EXTScreener.dll][PhoenixStudio, 1, 0, 0, 4]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtSuggest\ExtSuggest.dll][Phoenix Studio, 1, 0, 0, 9]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[PID: 5972 / SYSTEM][C:\Windows\system32\UI0Detect.exe][(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]

[PID: 4468 / DELL][D:\Program Files\TheWorld 3\TheWorld.exe][Phoenix Studio, 3, 0, 4, 8]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[c:\PROGRA~1\mcafee\msk\mskapbho.dll][, ]

[c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll][McAfee, Inc., VSCORE.14.0.0.423.x86]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtAdfilter\ExtAdfilter.dll][, 1, 0, 1, 1]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtProxy\ExtProxy.dll][Lenovo, 1, 0, 0, 9]

[D:\PROGRA~1\THEWOR~1\Extensions\ExtRssView\ExtRssView.dll][ , 1, 0, 1, 3]

[D:\PROGRA~1\THEWOR~1\Extensions\EXTScreener\EXTScreener.dll][PhoenixStudio, 1, 0, 0, 4]

[c:\PROGRA~1\mcafee\msk\MSKSet.dll][McAfee, Inc., 10.3.109.0]

[c:\PROGRA~1\mcafee\msk\2052\MskRes.dll][McAfee, Inc., 10.3.103.0]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

[C:\Windows\system32\nvd3dum.dll][NVIDIA Corporation, 7.15.11.7597]

[C:\Windows\system32\Macromed\Flash\Flash10c.ocx][Adobe Systems, Inc., 10,0,32,18]

[d:\Program Files\K-Lite Codec Pack\Filters\FLVSplitter.ax][Gabest, 1, 0, 0, 5]

[d:\Program Files\K-Lite Codec Pack\Filters\MP4Splitter.ax][Gabest, 1, 0, 0, 5]

[d:\Program Files\Leyu\codec.ax][à?ó?1¤×÷êò, 1, 0, 1, 1]

[C:\Windows\system32\rmsp.ax][Gabest, 1, 0, 1, 1]

[C:\Program Files\Common Files\Ahead\DSFilter\NeMP4Splitter.ax][Nero AG, 4,5,11,0]

[C:\Program Files\Common Files\Ahead\DSFilter\MSVCR71.dll][Microsoft Corporation, 7.10.3052.4]

[C:\Program Files\Common Files\Ahead\DSFilter\NeSplitter.ax][Nero AG, 4,5,11,0]

[d:\Program Files\K-Lite Codec Pack\Filters\MpegSplitter.ax][Gabest, 1, 1, 0, 0]

[d:\Program Files\K-Lite Codec Pack\ffdshow\ffdshow.ax][, 1.0.7.3009]

[PID: 5656 / DELL][D:\Program Files\System Repair Engineer (SREng) v2.7.1.1261 简体中文版\SREngLdr.EXE][Smallfrogs Studio, 2.7.1.1261]

[PID: 2532 / DELL][D:\Program Files\System Repair Engineer (SREng) v2.7.1.1261 简体中文版\SRE9620e6.EXE][Smallfrogs Studio, 2.7.1.1261]

[D:\Program Files\360\360Safe\safemon\safemon.dll][360.CN, 5, 0, 0, 1021]

[C:\Windows\system32\SOGOUPY.IME][Sogou.com Inc., 4.2.3.2810]

[d:\Program Files\SogouInput\4.2.3.2810\Resource.dll][Sogou.com Inc., 4.2.3.2810]

[D:\Program Files\System Repair Engineer (SREng) v2.7.1.1261 简体中文版\Upload\3rdUpd.DLL][Smallfrogs Studio, 2, 1, 0, 15]

[C:\Program Files\Bonjour\mdnsNSP.dll][Apple Computer, Inc., 1,0,3,1]

==================================

文件关联

.TXTOK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.EXEOK. ["%1" %*]

.COMOK. ["%1" %*]

.PIFOK. ["%1" %*]

.REGOK. [regedit.exe "%1"]

.BATOK. ["%1" %*]

.SCROK. ["%1" /S]

.CHMOK. ["%SystemRoot%\hh.exe" %1]

.HLPOK. [%SystemRoot%\winhlp32.exe %1]

.INIOK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.INFOK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.VBSOK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]

.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.LNKOK. [{00021401-0000-0000-C000-000000000046}]

==================================

Winsock 提供者

N/A

==================================

Autorun.inf

N/A

==================================

HOSTS 文件

127.0.0.1 localhost

::1 localhost

==================================

进程特权扫描

N/A

==================================

计划任务

[已启用] \\McDefragTask

c:\PROGRA~1\mcafee\mqc\QcConsol.exe "C:\Windows\system32\defrag.exe" C: -f

[已启用] \\McQcTask

c:\PROGRA~1\mcafee\mqc\QcConsol.exe 14 0

[已启用] \\SogouImeMgr

d:\PROGRA~1\SOGOUI~1\423~1.281\PINYIN~1.EXE /S

[已启用] \\{0422BDCE-263E-449D-AA96-685E9EE103E7}

C:\Windows\system32\pcalua.exe -a "C:\Program Files\QuickTime\QTSystem\QuickTime.cpl"

[已启用] \\{14BB0B73-80FB-45AB-A63A-F343B26CE683}

C:\Windows\system32\pcalua.exe -a D:\TDDOWNLOAD\MultiStage_Recovery_Setup.exe -d D:\TDDOWNLOAD

[已启用] \\{3CF2BA26-B805-404F-9641-DC27C9E6B9F2}

C:\Windows\system32\pcalua.exe -a C:\Users\DELL\Desktop\Storm-3.09.05.10-1\Storm-3.09.05.10-1.exe -d C:\Users\DELL\Desktop\Storm-3.09.05.10-1

[已启用] \\{651A3630-E0-4B64-BE31-ECD5DBA85E30}

C:\Windows\system32\pcalua.exe -a "D:\Program Files\KWMUSIC\Uninstall.exe" -d "D:\Program Files\KWMUSIC"

[已启用] \\{67CC324B-8365-46EA-9EA2-4AF947EBB78F}

C:\Windows\system32\pcalua.exe -a "D:\Program Files\TheWorld2.4.0.9\TheWorld2.4.0.9.exe" -d "D:\Program Files\TheWorld2.4.0.9"

[已启用] \\{6ED3580C-78A3-49A4-9B96-41D91DFFD305}

C:\Windows\system32\pcalua.exe -a C:\Users\DELL\Desktop\Zodiac_Clock_3D_Screensaver\valentine_wish.exe -d C:\Users\DELL\Desktop\Zodiac_Clock_3D_Screensaver

[已启用] \\{C08605C3-D66A-42E2-8991-64F136196C66}

C:\Windows\system32\pcalua.exe -a D:\TDDOWNLOAD\TheWorld_3.0.2.8.exe -d D:\TDDOWNLOAD

[已禁用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)

N/A

[已启用] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)

N/A

[已启用] \Microsoft\Windows\Bluetooth\UninstallDeviceTask

BthUdTask.exe $(Arg0)

[已启用] \Microsoft\Windows\CertificateServicesClient\SystemTask

N/A

[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask

N/A

[已启用] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam

N/A

[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator

%SystemRoot%\System32\wsqmcons.exe

[已启用] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification

%SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0

[已启用] \Microsoft\Windows\Customer Experience Improvement Program\Uploader

%windir%\system32\WSqmCons.exe -u

[已启用] \Microsoft\Windows\Defrag\ManualDefrag

%windir%\system32\defrag.exe

[已启用] \Microsoft\Windows\Defrag\ScheduledDefrag

%windir%\system32\defrag.exe -c -i

[已启用] \Microsoft\Windows\MobilePC\HotStart

N/A

[已启用] \Microsoft\Windows\MobilePC\TMM

N/A

[已启用] \Microsoft\Windows\MUI\LPRemove

%windir%\system32\lpremove.exe

[已启用] \Microsoft\Windows\Multimedia\SystemSoundsService

N/A

[已启用] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI

N/A

[已启用] \Microsoft\Windows\Shell\CrawlStartPages

N/A

[已启用] \Microsoft\Windows\SystemRestore\SR

%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation

[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict1

rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem

[已启用] \Microsoft\Windows\Tcpip\IpAddressConflict2

rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem

[已启用] \Microsoft\Windows\UPnP\UPnPHostConfig

sc.exe config upnphost start= auto

[已启用] \Microsoft\Windows\Windows Error Reporting\QueueReporting

%windir%\system32\wermgr.exe -queuereporting

[已启用] \Microsoft\Windows\Wired\GatherWiredInfo

%windir%\system32\gatherWiredInfo.vbs

[已启用] \Microsoft\Windows\Wireless\GatherWirelessInfo

%windir%\system32\gatherWirelessInfo.vbs

==================================

API HOOK

N/A

==================================

隐藏进程

N/A

==================================

本文来自电脑杂谈，转载请注明本文网址：
http://www.pc-fly.com/a/tongxinshuyu/article-41478-1.html