|
|
楼主 |
发表于 2007-7-10 11:00:08
|
显示全部楼层
原帖由 softworm 于 2007-7-10 10:32 发表 
Windows清理助手,先杀一下
解决不了的话,贴SREng的log上来,详见我签名
=======================================================
- 2007-07-10,10:47:06
- System Repair Engineer 2.5.16.900
- Smallfrogs ([url]http://www.KZTechs.com[/url])
- Windows Server 2003 Standard Edition (Build 3790) - 非管理权限用户 - 受限功能
- 以下内容被选中:
- 所有的启动项目(包括注册表、启动文件夹、服务等)
- 浏览器加载项
- 正在运行的进程(包括进程模块信息)
- 文件关联
- Winsock 提供者
- Autorun.inf
- HOSTS 文件
- 进程特权扫描
- 启动项目
- 注册表
- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
- <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
- <QuickTime Task><"D:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
- <H/PC Connection Agent><"D:\Program Files\Microsoft ActiveSync\wcescomm.exe"> [Microsoft Corporation]
- [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
- <load><> [N/A]
- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
- <SoundMan><;SOUNDMAN.EXE> [Realtek Semiconductor Corp.]
- <NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
- <DAEMON Tools-1033><"D:\Program Files\D-Tools\daemon.exe" -lang 1033> [DAEMON'S HOME]
- <IMSCMig><;C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]
- <NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup> [NVIDIA Corporation]
- <nwiz><nwiz.exe /install> [NVIDIA Corporation]
- <QuickTime Task><;"D:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
- <Tweak UI><RUNDLL32.EXE TWEAKUI.CPL,TweakMeUp> [Microsoft Corporation]
- <Acrobat Assistant 7.0><"D:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe"> [Adobe Systems Inc.]
- <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
- <NvMediaCenter><RUNDLL32.EXE C:\WINDOWS\system32\NVMCTRAY.DLL,NvTaskbarInit> [NVIDIA Corporation]
- <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"> [(Verified)Symantec Corporation]
- <vptray><D:\PROGRA~1\SYMANT~1\VPTray.exe> [(Verified)Symantec Corporation]
- <ISUSPM Startup><"C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup> [Macrovision Corporation]
- <ISUSScheduler><"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start> [Macrovision Corporation]
- <WangWang><;"D:\Program Files\Alisoft\WangWang\WangWang.EXE"> [阿里巴巴软件(上海)有限公司]
- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
- <shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
- <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
- <AppInit_DLLs><> [N/A]
- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
- <UIHost><%SystemRoot%\system32\logonui.exe> [(Verified)Microsoft Windows Publisher]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
- <WinlogonNotify: NavLogon><C:\WINDOWS\system32\NavLogon.dll> [(Verified)Symantec Corporation]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
- <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [N/A]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
- <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [N/A]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
- <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows
- Publisher]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
- <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub> [(Verified)Microsoft Windows Publisher]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
- <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [N/A]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
- <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [Microsoft Corporation]
- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
- <IMJPMIG8.1><; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher]
- <PHIME2002A><; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Windows Publisher]
- <PHIME2002ASync><; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Windows Publisher]
- <RaidTool><; C:\Program Files\VIA\RAID\raid_tool.exe> [VIA Technologies]
- ==================================
- 启动文件夹
- [Adobe Acrobat Speed Launcher]
- <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Acrobat Speed Launcher.lnk -->
- C:\WINDOWS\Installer\{AC76BA86-2052-0000-7760-000000000002}\SC_Acrobat.exe [N/A]><N>
- [Adobe Gamma]
- <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma.lnk --> C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.]><N>
- [Suitcase Startup]
- <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Suitcase Startup.lnk --> D:\PROGRA~1\Extensis\SUITCA~1.2\Suitcase.exe [Extensis Inc.]><N>
- ==================================
- 服务
- [Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
- <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
- [Artios License Manager / ArtiosLM][Stopped/Manual Start]
- <C:\WINDOWS\system32\artioslm.exe><N/A>
- [Symantec Event Manager / ccEvtMgr][Running/Auto Start]
- <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
- [Symantec Password Validation / ccPwdSvc][Stopped/Manual Start]
- <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
- [Symantec Settings Manager / ccSetMgr][Running/Auto Start]
- <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
- [Symantec AntiVirus Definition Watcher / DefWatch][Running/Auto Start]
- <"D:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
- [FLEXlm License Manager / FLEXlm License Manager][Running/Auto Start]
- <d:\Esko-Graphics\bg_prog_system_v010\bin_ix86\lmgrd.exe><GLOBEtrotter Software Inc.>
- [Harlequin License Server / HarlequinLicenceServer][Running/Auto Start]
- <C:\Program Files\Common Files\Global Graphics Software\Harlequin License Server\bin\hqn_lsd.exe><>
- [Human Interface Device Access / HidServ][Stopped/Disabled]
- <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
- [InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
- <"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>
- [Intel Alert Handler / Intel Alert Handler][Stopped/Manual Start]
- <C:\WINDOWS\system32\ams_ii\hndlrsvc.exe><Intel? Corporation>
- [Intel Alert Originator / Intel Alert Originator][Stopped/Manual Start]
- <C:\WINDOWS\system32\ams_ii\iao.exe><Intel? Corporation>
- [Intel File Transfer / Intel File Transfer][Stopped/Manual Start]
- <C:\WINDOWS\system32\cba\xfr.exe><Intel? Corporation>
- [LanHelper Service / lhsrvc][Running/Auto Start]
- <D:\Program Files\LanHelper\lhsrvc.exe><N/A>
- [Machine Debug Manager / MDM][Running/Auto Start]
- <"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"><Microsoft Corporation>
- [NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
- <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
- [O&O Defrag / O&O Defrag][Running/Auto Start]
- <C:\WINDOWS\system32\oodag.exe><O&O Software GmbH>
- [Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start]
- <C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\HPZipm12.exe><HP>
- [SavRoam / SavRoam][Stopped/Manual Start]
- <"D:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec>
- [Sentinel Protection Server / SentinelProtectionServer][Running/Auto Start]
- <"C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe"><SafeNet, Inc>
- [Symantec Network Drivers Service / SNDSrvc][Stopped/Manual Start]
- <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
- [SQLAgent$ARTIOSCADDB / SQLAgent$ARTIOSCADDB][Stopped/Manual Start]
- <C:\Program Files\Microsoft SQL Server\MSSQL$ARTIOSCADDB\Binn\sqlagent.EXE -i ARTIOSCADDB><Microsoft Corporation>
- [Sslserver / Sslserver][Stopped/Manual Start]
- <C:\Program Files\SpeedSix\bin\sslserver.exe><N/A>
- [Symantec AntiVirus / Symantec AntiVirus][Running/Auto Start]
- <"D:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>
- [Performance Logs and Alerts / SysmonLog][Stopped/]
- <5 - 拒绝访问。
- ><N/A>
- [Windows User Mode Driver Framework / UMWdf][Stopped/Manual Start]
- <C:\WINDOWS\system32\wdfmgr.exe><N/A>
- [Usbmsvcqfsq / Usbmsvcqfsq][Stopped/Manual Start]
- <><N/A>
- ==================================
- 驱动程序
- [Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
- <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
- [AMD K8 Processor Driver / AmdK8][Stopped/Manual Start]
- <system32\DRIVERS\amdk8.sys><N/A>
- [AMDMSRIO / AMDMSRIO][Stopped/Manual Start]
- <\??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\{55638DD9-D5A9-11D3-B74B-204C4F4F5020}\AMDMSRIO.sys><N/A>
- [ASAPIW2k / ASAPIW2k][Running/Manual Start]
- <system32\drivers\ASAPIW2k.sys><Pinnacle Systems GmbH>
- [bbcap / bbcap][Running/System Start]
- <system32\DRIVERS\bbcap.sys><Windows (R) 2000 DDK provider>
- [cdrblock / cdrblock][Running/System Start]
- <system32\DRIVERS\cdrblock.sys><Canopus Co,. Ltd.>
- [cdrport / cdrport][Running/System Start]
- <system32\DRIVERS\cdrport.sys><Canopus Co,. Ltd.>
- [Cdsys / Cdsys][Stopped/Manual Start]
- <\??\C:\WINDOWS\system32\cdcd.sys><N/A>
- [Coach Digital Camera on USB / CoachUsb][Stopped/Manual Start]
- <system32\DRIVERS\DrvUsb.sys><FotoNation Ltd.>
- [d347bus / d347bus][Running/Boot Start]
- <\SystemRoot\system32\DRIVERS\d347bus.sys><>
- [d347prt / d347prt][Running/Boot Start]
- <\SystemRoot\System32\Drivers\d347prt.sys><>
- [DS1410D / DS1410D][Running/Auto Start]
- <\??\C:\WINDOWS\system32\drivers\ds1410d.sys><N/A>
- [VIA Rhine-Family Fast Ethernet Adapter Driver Service / FETND5BV][Running/Manual Start]
- <system32\DRIVERS\fetnd5bv.sys><VIA Technologies, Inc.>
- [VIA Rhine Family Fast Ethernet Adapter Driver / FETNDIS][Stopped/Manual Start]
- <system32\DRIVERS\fetnd5.sys><VIA Technologies, Inc.>
- [hardlock / hardlock][Running/Auto Start]
- <\??\C:\WINDOWS\system32\drivers\hardlock.sys><Aladdin Knowledge Systems>
- [Haspnt / Haspnt][Running/Auto Start]
- <\??\C:\WINDOWS\system32\drivers\Haspnt.sys><Aladdin Knowledge Systems>
- [IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
- <system32\DRIVERS\ipinip.sys><N/A>
- [NAVENG / NAVENG][Running/Manual Start]
- <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070708.007\naveng.sys><Symantec Corporation>
- [NAVEX15 / NAVEX15][Running/Manual Start]
- <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070708.007\navex15.sys><Symantec Corporation>
- [npkcrypt / npkcrypt][Running/Auto Start]
- <\??\D:\Program Files\Tencent\TM\TMDlls\npkcrypt.sys><INCA Internet Co., Ltd.>
- [NTSIM / NTSIM][Stopped/Manual Start]
- <\??\C:\WINDOWS\system32\ntsim.sys><VIA Networking Technologies, Inc.>
- [nv / nv][Running/Manual Start]
- <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
- [oreans32 / oreans32][Running/System Start]
- <\??\C:\WINDOWS\system32\drivers\oreans32.sys><N/A>
- [Padus ASPI Shell / pfc][Running/Manual Start]
- <system32\drivers\pfc.sys><Padus, Inc.>
- [PnpWmkDrv / PnpWmkDrv][Running/System Start]
- <\??\C:\WINDOWS\system32\drivers\PnpWmkDrv.sys><N/A>
- [Direct Parallel Link Driver / Ptilink][Running/Manual Start]
- <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
- [PxHelp20 / PxHelp20][Running/Boot Start]
- <\SystemRoot\system32\DRIVERS\PxHelp20.sys><Sonic Solutions>
- [Rollight / Rollight][Running/Auto Start]
- <\SystemRoot\System32\drivers\rollight.sys><rollight>
- [SAVRT / SAVRT][Running/System Start]
- <\??\D:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation>
- [SAVRTPEL / SAVRTPEL][Running/Auto Start]
- <\??\D:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation>
- [Secdrv / Secdrv][Stopped/Manual Start]
- <system32\DRIVERS\secdrv.sys><N/A>
- [Sentinel / Sentinel][Running/Auto Start]
- <\SystemRoot\System32\Drivers\SENTINEL.SYS><SafeNet, Inc.>
- [Rainbow USB SuperPro / Sntnlusb][Stopped/Manual Start]
- <system32\DRIVERS\SNTNLUSB.SYS><N/A>
- [SVKP / SVKP][Running/Auto Start]
- <\??\C:\WINDOWS\system32\SVKP.sys><AntiCracking>
- [SymEvent / SymEvent][Running/Manual Start]
- <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
- [SYMREDRV / SYMREDRV][Running/Manual Start]
- <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
- [SYMTDI / SYMTDI][Running/System Start]
- <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>
- [VIA AGP Filter / viaagp1][Running/Boot Start]
- <\SystemRoot\system32\DRIVERS\viaagp1.sys><VIA Technologies, Inc.>
- [viagfx / viagfx][Stopped/Manual Start]
- <system32\DRIVERS\vtmini.sys><Copyright (C) VIA/S3 Graphics Co, Ltd.>
- [ViaIde / ViaIde][Running/Boot Start]
- <\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>
- [viamraid / viamraid][Running/Boot Start]
- <\SystemRoot\system32\drivers\viamraid.sys><VIA Technologies inc,.ltd>
- [vIdeBus / vIdeBus][Running/Boot Start]
- <\SystemRoot\system32\DRIVERS\vIdeBus.sys><VIA Technologies, Inc.>
- [VIA IDE Controller PORT Driver / vIdePort][Running/Boot Start]
- <\SystemRoot\system32\DRIVERS\vIdePort.sys><VIA Technologies, Inc.>
- [VIA USB Host Controller Lower Filter / vulfnths][Running/Manual Start]
- <\SystemRoot\System32\Drivers\vulfnth.sys><VIA Technologies, Inc.>
- [VIA USB Roothub Lower Filter / vulfntrs][Running/Manual Start]
- <\SystemRoot\System32\Drivers\vulfntr.sys><VIA Technologies, Inc.>
- [WinDriver / WinDriver][Running/Auto Start]
- <\SystemRoot\System32\drivers\windrvr.sys><KRFTech>
- [World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
- <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
- [VIMICRO USB PC Camera / ZSMC302][Running/Manual Start]
- <System32\Drivers\usbVM31b.sys><VM>
- ==================================
- 浏览器加载项
- [Adobe PDF Reader Link Helper]
- {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
- [Adobe PDF Conversion Toolbar Helper]
- {AE7CD045-E861-484f-8273-0445EE161910} <D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
- [NTIECatcher Class]
- {C56CB6B0-0D96-11D6-8C65-B2868B609932} <d:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, Xi>
- [FlashFXP Helper for Internet Explorer]
- {E5A1691B-D188-4419-AD02-90002030B8EE} <d:\PROGRA~1\FlashFXP\IEFlash.dll, N/A>
- [CIEStub Class]
- {EBBFE27C-BDF0-11D2-BBE5-00609419F467} <C:\WINDOWS\system32\amcis.dll, >
- [Create Mobile Favorite]
- {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <d:\Program Files\Microsoft ActiveSync\inetrepl.dll, Microsoft Corporation>
- [Create Mobile Favorite]
- {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <d:\Program Files\Microsoft ActiveSync\inetrepl.dll, Microsoft Corporation>
- [信息检索(&R)]
- {92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
- [@shdoclc.dll,-866]
- {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
- [Adobe PDF]
- {47833539-D0C5-4125-9FA8-0819E2EAAC93} <D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
- [@msdxmLC.dll,-1@2052,电台(&R)]
- {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\system32\msdxm.ocx, Microsoft Corporation>
- [AxSubmitControl Class]
- {8D9E0B29-563C-4226-86C1-5FF2AE77E1D2} <C:\WINDOWS\system32\SUBMIT~1.DLL, >
- [Shockwave Flash Object]
- {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx, Adobe Systems, Inc.>
- [Adobe PDF Reader Link Helper]
- {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <D:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll, Adobe Systems Incorporated>
- [Adobe PDF Conversion Toolbar Helper]
- {AE7CD045-E861-484F-8273-0445EE161910} <D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll, Adobe Systems Incorporated>
- [NTIECatcher Class]
- {C56CB6B0-0D96-11D6-8C65-B2868B609932} <d:\Program Files\Xi\NetTransport 2\NTIEHelper.dll, Xi>
- [FlashFXP Helper for Internet Explorer]
- {E5A1691B-D188-4419-AD02-90002030B8EE} <d:\PROGRA~1\FlashFXP\IEFlash.dll, N/A>
- [CIEStub Class]
- {EBBFE27C-BDF0-11D2-BBE5-00609419F467} <C:\WINDOWS\system32\amcis.dll, >
- [导出到 Microsoft Office Excel(&X)]
- <res://D:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000, N/A>
- [转换为 Adobe PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
- [转换为现有 PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
- [转换选定的链接为 Adobe PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A>
- [转换选定的链接为现有 PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A>
- [转换选项为 Adobe PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
- [转换选项为现有 PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
- [转换链接目标为 Adobe PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
- [转换链接目标为现有 PDF]
- <res://D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
- ==================================
- 正在运行的进程
- [PID: 340][C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\HPZipm12.exe] [HP, 9, 0, 0, 0]
- [PID: 2340 / username][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.3790.0 (srv03_rtm.030324-2048)]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\PDFShell.CHS] [Adobe Systems, Inc., 7.0.0.0]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
- [D:\Program Files\WinRAR\rarext.dll] [N/A, ]
- [D:\Program Files\UltraEdit-32\ue32ctmn.dll] [, 1, 0, 0, 1]
- [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll] [Symantec Corporation, 9.0.1.1000]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat Elements\ContextMenu.dll] [Adobe Systems Inc., 7.0.7.2006011200\0]
- [C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
- [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
- [C:\WINDOWS\system32\MFC71CHS.DLL] [Microsoft Corporation, 7.10.3077.0]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat Elements\ContextMenu.chs] [Adobe Systems Inc., 7.0.5.2005092300\0]
- [PID: 2460 / username][D:\Program Files\D-Tools\daemon.exe] [DAEMON'S HOME, 3.47.0.0]
- [C:\WINDOWS\daemon.dll] [, 3.47.0.0]
- [D:\Program Files\D-Tools\PFCTOC.DLL] [Padus(R), Inc., 1, 0, 0, 12]
- [D:\Program Files\D-Tools\Plugins\Images\bw5mount.dll] [, 1.0.2.0]
- [D:\Program Files\D-Tools\Plugins\Images\ccdmount.dll] [GENERIC, 1.02.0.0]
- [D:\Program Files\D-Tools\Plugins\Images\mdsmount.dll] [GENERIC, 1.01.0.0]
- [D:\Program Files\D-Tools\Plugins\Images\nrgmount.dll] [GENERIC, 1.02.0.0]
- [D:\Program Files\D-Tools\Plugins\Images\pdimount.dll] [GENERIC, 1.01.0.0]
- [PID: 2544 / username][D:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe] [Adobe Systems Inc., 7.0.7.2006011200]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.chs] [, ]
- [PID: 2552 / username][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
- [PID: 2560 / username][C:\WINDOWS\system32\RUNDLL32.EXE] [Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
- [C:\WINDOWS\system32\NVMCTRAY.DLL] [NVIDIA Corporation, 6.14.10.5303]
- [PID: 2568 / username][C:\Program Files\Common Files\Symantec Shared\ccApp.exe] [Symantec Corporation, 2.2.1.004]
- [C:\WINDOWS\system32\MSVCP70.dll] [Microsoft Corporation, 7.00.9466.0]
- [C:\WINDOWS\system32\MSVCR70.dll] [Microsoft Corporation, 7.00.9466.0]
- [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll] [Symantec Corporation, 2.2.1.004]
- [C:\Program Files\Symantec\LiveUpdate\ProductRegCom.DLL] [Symantec Corporation, 2.0.39.0]
- [C:\Program Files\Symantec\LiveUpdate\LuComServerPS.DLL] [Symantec Corporation, 2.0.39.0]
- [C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL] [Symantec Corporation, 2.2.1.004]
- [C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL] [Symantec Corporation, 2.2.1.004]
- [C:\WINDOWS\system32\SYMREDIR.dll] [Symantec Corporation, 5.3.5.3]
- [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll] [Symantec Corporation, 2.2.1.004]
- [C:\Program Files\Common Files\Symantec Shared\ccProSub.dll] [Symantec Corporation, 2.2.1.004]
- [D:\Program Files\Symantec AntiVirus\SavEmail.dll] [Symantec Corporation, 9.0.1.1000]
- [PID: 2612 / username][D:\PROGRA~1\SYMANT~1\VPTray.exe] [Symantec Corporation, 9.0.1.1000]
- [D:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28]
- [D:\Program Files\Symantec AntiVirus\Cliscan.dll] [Symantec Corporation, 9.0.1.1000]
- [D:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL] [Symantec Corporation, 9.0.1.1000]
- [D:\Program Files\Symantec AntiVirus\Cliproxy.dll] [Symantec Corporation, 9.0.1.1000]
- [PID: 2664 / username][C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe] [Macrovision Corporation, 4, 60, 100, 37068]
- [PID: 2744 / username][C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE] [Symantec Corporation, 2.0.39.0]
- [C:\Program Files\Symantec\LiveUpdate\LuComServerPS.DLL] [Symantec Corporation, 2.0.39.0]
- [C:\Program Files\Symantec\LiveUpdate\ProductRegCom.DLL] [Symantec Corporation, 2.0.39.0]
- [PID: 2820 / username][D:\Program Files\Microsoft ActiveSync\wcescomm.exe] [Microsoft Corporation, 3.8.0.5004]
- [C:\WINDOWS\system32\CEUTIL.dll] [Microsoft Corporation, 3.8.0.5004]
- [C:\WINDOWS\system32\RAPI.dll] [Microsoft Corporation, 3.8.0.5004]
- [D:\Program Files\Microsoft ActiveSync\TCP2UDP.dll] [Microsoft Corporation, 3.8.0.5004]
- [PID: 3300][C:\WINDOWS\system32\MsgSys.EXE] [Intel? Corporation, 6.12.0.126 E]
- [C:\WINDOWS\system32\NTS.dll] [Intel? Corporation, 6.12.0.126 E]
- [C:\WINDOWS\system32\CBA.DLL] [Intel? Corporation, 6.12.0.126 E]
- [C:\WINDOWS\system32\MsgSys.dll] [Intel? Corporation, 6.12.0.126 E]
- [C:\WINDOWS\system32\PDS.DLL] [Intel? Corporation, 6.12.0.126 E]
- [C:\WINDOWS\system32\NTSU2T.DLL] [Intel Corporation, 6.12.0.0000 E]
- [PID: 1412 / username][D:\Tools\sreng2\SREngPS.EXE] [Smallfrogs Studio, 2.5.16.900]
- [D:\Tools\sreng2\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]
- [PID: 3732 / username][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 6.00.3790.0 (srv03_rtm.030324-2048)]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll] [Adobe Systems Incorporated, 7.0.5.2005092300]
- [C:\WINDOWS\system32\ATL71.DLL] [Microsoft Corporation, 7.10.3077.0]
- [C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.CHS] [Adobe Systems Incorporated, 7.0.0.0]
- [D:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
- [d:\Program Files\Xi\NetTransport 2\NTIEHelper.dll] [Xi, 1.91.12]
- [C:\WINDOWS\system32\amcis.dll] [, 1.00]
- [C:\WINDOWS\system32\advert.dll] [Aureate Media Corporation, 2.01 (build 3)]
- [C:\Program Files\Common Files\Microsoft Shared\INK\PENCHS.DLL] [Microsoft Corporation, 1.0.1038.0]
- ==================================
- 文件关联
- .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
- .EXE OK. ["%1" %*]
- .COM OK. ["%1" %*]
- .PIF OK. ["%1" %*]
- .REG OK. [regedit.exe "%1"]
- .BAT OK. ["%1" %*]
- .SCR OK. ["%1" /S]
- .CHM OK. ["C:\WINDOWS\hh.exe" %1]
- .HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
- .INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
- .INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
- .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
- .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
- .LNK OK. [{00021401-0000-0000-C000-000000000046}]
- ==================================
- Winsock 提供者
- N/A
- ==================================
- Autorun.inf
- N/A
- ==================================
- HOSTS 文件
- 127.0.0.1 localhost
- ==================================
- 进程特权扫描
- N/A
- ==================================
- API HOOK
- N/A
- ==================================
- 隐藏进程
- N/A
- ==================================
|
|
狗仔卡
发表于 2007-7-10 09:51:40
提升卡
置顶卡
变色卡
恢复卡
发表于 2007-7-10 10:30:02